last executing test programs:

2.15395874s ago: executing program 3 (id=6459):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0xbaa}, 0x48)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, 0x0, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, &(0x7f00000002c0)=""/251, &(0x7f0000000940), &(0x7f0000000200), 0xa7c, r0}, 0x38)
close(0xffffffffffffffff)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0, 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20f42, 0x0)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x7fffffffffd, 0x1, 0x0, 0x0, 0x704a, 0x0, 0x0, 0x9}, 0x0, 0x2000000000007, 0xffffffffffffffff, 0xb)
r1 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$inet(r1, &(0x7f0000000380)={&(0x7f0000000100)={0x2, 0x0, @dev}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000240)="b2", 0x1}, {&(0x7f0000000180)="23480d95ed94c4265b88f5532b5a63b5a84615cc674c206880d2eade17b1b60edf2ac4126ba663cce2046c70b60f7f5cfd0c621f483e40757769dbdf76ebcf74e4400bc1d6a8", 0xffe0}], 0x3a}, 0x80) (fail_nth: 31)

2.118695446s ago: executing program 2 (id=6461):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000710444000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48) (async)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546000677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5467a932b77674e802a0d42bc6099ad238af770b5ed8925161729298700000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3ac3209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b135ab6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809b5b9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed3957f813567f7a95435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac559eaf39027ceb379a902d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385beef3282830689da6b53b263339863297771429d120000003341bf4abacac94500fca0493cf29b33dcc9ffffffffffffffd39f6ce0c6ff01589646efd1cf870cd7bb2366fdf870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1293b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd000c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301fb997316dbf17866fb84d4173731efe895ff2e1c55ef08235a0126e01254c44060926e90109b598502d3e959efc71f665c4d75cf2458e3542c9062ece84c99a861887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc74aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7ad333545794f37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea139376f24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8e3070000001e48418046c216c1f895778cb25122a2a998de0842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec84ac3571f02f647b3385b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba2f58ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df986741517abf11389b751f4e109b60000000000000000d6d5210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750890ae71555b3228b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288d139bd3da230ed05a8fe64680b0a3f9f2dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b9100000000a55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c776f4b4ce07e1c6fa66fcfc7a228805f76785efc0ceb1c8e5729c66418d169fc03aa18854693ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7e478950aa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab848753203b458b97ec1afb079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7db3c4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6c30ebc660309e1e245b0fdf9743af932cd6db49a47613808bad959719c0000000000378ac2e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6ca0400966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e3030108000000000000c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bffef97dcecc467ace456597685c5870d25f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c0000000000000000000000bfb0bba79344643b1d8daa9f38e4b62c1e2af68c6f5054b078acd74b4a9c944e4505da485a3a4154387a0a88372091cd397b09c5888a06431df3f68abf0b366c4d5f8bea7b29c257ed756dff7a21c6b661cbdd43de65afd7f661d5c84f915c90e3d6ea012b68b787eb01d8320000000000000060176dacba0ec503a37fae6b472ec369c79ee6a420c0fd8d8d82fe136d5af6c30bfeb0a7275babfdb96a127aa9386e0671c6454245a18c1c8c49552cff5d27b547cdc34c0858c77a47a9ff86ee9fbd9ceda428716a4218821176d8067997527230fa67d26950d3e4f2750fa7c872874ad3a2d11f9f6eb08e6d7b6fa257b04d8ce36360f524e3dfd2211641f3d2637d86b80681eca50ce0eecafdd22d41fa515c15591e70ded4b70efac3cb42fb352d82e8f7573e8ed8248da356fa91a252976d3a4d8c1843a8d5bb7f5f1028453a0562a3ea93117076dd4940b7df50d78289fe66197525f6095f8662d232970bef61b03fa83027963a1a2e07cfee30c0d0b4c5877f93b3637ca21eab5afcf5d4638dfe8f9202aaad51c979049dd76d65368cbd4187d9f74257c7c4a23ac4a34eec5aa17e78c5167216f5e72138d20f8325dd5f8f96c32189c904eaef580987f1ce601a7cdc35461db9981ac42f9e24b0699bbe4e3d986e38952b0b7938eefd9e7a292bbb66367ad77045fdc18855c81c031dedd185c723238373fc698d676791d04f1ff5f0825a6619e844882f31ed190233d58ecee949e310bf2b1a51b8a33ae65a06d2b6ad386bf8dc49dd328bcd75d1843a13d68560175a18af7efc3c0f20e32f84f6aaaf000000000000000000000013a6c66bce74a8fb9092023df695da2714a7933d699d42de2bc4a85e0a0e22228290a7a7553ab93a16e42453ed86869a02df2f47d4088fac1772d3cd955c81cbf91c2ca7942942f61723b558079b82547844f92df2499c4b2c2ef2539e5daa8d8727baaa6b5755e6f83bbfca00000000000000000000007925d0f1256330b9e2aa9a18cea8e009116f63c6c7d8f7f95bf0f6731e5eb1dcdc534f357b9f08e7a9a3aebeca145d695053b5bef004ca24e6c57ed10f01488d38b8b0b68d93e3cf630837915d518fde2115e66615786fe7b9216de958119cf762cac77ac829a02f48e72c0d2841880b2c"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000700)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000140)='au', 0x0, 0x1}, 0x50) (async)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000003600)={0x6, 0x10, &(0x7f0000000100)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9f21, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@ldst={0x3, 0x3, 0x3, 0x0, 0x0, 0x18}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='syzkaller\x00', 0x1, 0xd4, &(0x7f0000000440)=""/212, 0x0, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={0x1, 0x58, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0x10) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
ioctl$TUNGETVNETLE(r3, 0x800454dd, &(0x7f0000000040))
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="11000000040000000400000001"], 0x48)
r5 = socket$kcm(0x2c, 0x3, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r4}, &(0x7f0000000080), &(0x7f00000001c0)=r5}, 0x20) (async, rerun: 32)
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e0, &(0x7f00000002c0)={r5, r3}) (async, rerun: 32)
close(r5)
ioctl$SIOCSIFHWADDR(r3, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="0100008d8dff"})
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0300"/14, @ANYRES32=r1, @ANYBLOB='\t\x00'/20, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="0200000001000000050000000a00"/28], 0x50)

1.983298558s ago: executing program 2 (id=6462):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x4, @perf_bp={0x0, 0xa}, 0x0, 0x4, 0x0, 0x1, 0x0, 0x3, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_config_ext={0x1ff, 0x200}, 0x8000, 0x4, 0x43a1bd76, 0x4, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r2 = socket$kcm(0x2, 0x200000000000001, 0x106)
setsockopt$sock_attach_bpf(r2, 0x600, 0x1a, 0x0, 0x1c)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x84}, [@ldst={0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff0}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x40f00, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f0000000140)={0x5, 0x80, 0x8, 0x9, 0x5f, 0x5, 0x0, 0x6, 0x80530, 0xd, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x100, 0x0, @perf_config_ext={0x5, 0xec2b}, 0x10002, 0x5, 0x6, 0x3, 0x1, 0x2, 0x40, 0x0, 0x2, 0x0, 0x400})
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
socket$kcm(0x2, 0x5, 0x84)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x147b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000680)=ANY=[@ANYBLOB="1c0000001a000200000000000000c28517eb8a6fc197a9712a2819fbd98efdacdf3dc0223805416a0bde581408f1bc993d6b82114e529ea5fe5ba02fa085b6058a01d4bcbc3759d66bd714c95080444cd1f248053d22b24705ada197b31be60919d2d3565f9e1a4f0b2186a626e2f0359845ff9b53dfadf8eda9"], 0xfe33)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/27], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x3, 0xc, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$inet(r4, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@ip_retopts={{0x10, 0x110, 0x2}}], 0x10}, 0x0)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
close(0xffffffffffffffff)
socket$kcm(0xa, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000040000000400000009"], 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r5)
r6 = socket$kcm(0x10, 0x2, 0x0)
r7 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r7, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="020a000202000000e4a17c45c8d260c9", 0x10}], 0x1}, 0x0)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="d8000000180081054e81f782db4cb904021d080006007c09e8fe55a10a0015800a00142603600e1208000f0000000406a80016c0b00003400400027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1}, 0x0)

1.982533868s ago: executing program 1 (id=6463):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x6, 0x804, 0x0, 0x7}, {0x10400002, 0x4, 0x0, 0x5}], 0x10, 0xfffffffd}, 0x94)
r1 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
close(r1)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0)
socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r5)
recvmsg$unix(r4, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f0000000600)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000400), 0x12)
r8 = openat$cgroup_int(r6, &(0x7f0000000040)='cpuset.memory_spread_slab\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f0000000180)=0x3, 0x12)
r9 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, 0xffffffffffffffff)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x10, 0x4, 0x3, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
socket$kcm(0x11, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="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"/420], &(0x7f0000000100)='GPL\x00'}, 0x48)

1.645156045s ago: executing program 3 (id=6464):
socket$kcm(0xa, 0x3, 0x87)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0xfe, 0xbd, 0x0, 0x0, 0x0, 0x0, 0x4401, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x4}, 0x0, 0xc8, 0x6, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x8020)
write$cgroup_subtree(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102038700fe08000e40000200875a65969ff57b00ff020000003b00000000000000000001"], 0xfdef)

1.458537256s ago: executing program 3 (id=6466):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYRES32=0x0], 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r1, 0x0, 0x0}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000000)={r1, &(0x7f00000002c0)="468db75efeb4706248c730ad34a0b9216b4bafcd6e6eb260c830610e3d4db08b1d084dff56e4b0805a98006341bbe876a117af4a2a9e05dd9aa35d723ef2126a652ce3f663424b60e6f093fad4ff2e4df8aff6be77776a2348ec70eb4b69e4e6b894a490fb1e"}, 0x20)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r1}, 0x8)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1}, 0x1090da, 0x0, 0x0, 0x0, 0x0, 0x4, 0x749}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e64, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x200088c0)
close(0xffffffffffffffff)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="1e03"], 0xffdd)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x50)
socket$kcm(0x11, 0x3, 0x300)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)="39000000140081ae10003c000500018311001f9f660fcf066505acb612f691f3bd3508abca1be6eeb89c44ebb37358582bdbb7d553b4", 0x36}], 0x1}, 0x0)
syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x20, 0x0, 0x0, 0xffff, 0x8a410, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x2, @perf_config_ext, 0x8018, 0x0, 0x3, 0x9, 0x4, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x80020, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x111a, 0x7fff, 0x6, 0x0, 0x0, 0x2, 0x0, 0x0, 0xb, 0x0, 0xfffffffffffffffc}, 0x0, 0x2, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r3, 0x29, 0x23, &(0x7f0000000040), 0xcf)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2141, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x29, 0x7}, 0x828, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a00140000000280", 0x2a}, {&(0x7f0000000400)="6a718e5e", 0x4}], 0x2}, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x12, 0x0, 0x0, 0x0, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x42fbd5dcab7bee29, @perf_bp={0x0, 0x5}, 0x106c48, 0xc8, 0x1000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x4, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_config_ext={0x1ff, 0x200}, 0x8000, 0xcdd, 0x43a1bd76, 0x4, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1.456743086s ago: executing program 1 (id=6467):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000400000000000000018000000c00", @ANYRES32, @ANYBLOB="00000000000001000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00@\x00'/28], 0x50)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, 0x0, &(0x7f0000000c40)=[{}, {0xfffffffd, 0x4, 0x10006, 0x3}]}, 0x94)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000380)={<r3=>r1})
sendmsg$inet(r3, 0x0, 0x0)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000800)={@cgroup, 0x1, 0x1, 0x5, &(0x7f0000000700)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f0000000740)=[0x0, 0x0], &(0x7f0000000780)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, <r6=>0x0}, 0x40)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000880)={0x5, <r7=>0x0}, 0x8)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000008c0)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB='!\x00\x00\x001 \x00\x00', @ANYRES32=r5, @ANYBLOB="0f89867f35e9e70e7508c708c513be8e531804696a4a8d6e78b27bf4bb0648b53d6cf6b773fda25108a94477da001f1fe7ba6e60e99bc4c775f7e30b0939d25031e5de808c52904dc93012e553017cfebe99e28fc39a207f73f1de793935fb80d89f28ee223eb830bdfbebf43f5ae4743c076e9819b0ad6817f5596294afa15f8cf3a7e3e9e9c45099b9ca75f8dad5513d0e57a83bdf03ec780ad3331559ca8c5dc42affa59d5fec7224a7b48c854783c5eb6879ca3b3b5722c853e04234d5415253222ee128b57e204b7c2550000000000000", @ANYRES32=r7, @ANYBLOB, @ANYRES64=r6], 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000003c0)={@fallback=r1, r2, 0x30, 0x0, 0x0, @void, @value=r2, @void, @void, r6}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="20000000fdffffff0500000001000000084c0000", @ANYRES32=r0, @ANYRESOCT, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="0000000000000000030000000000"], 0x50)
socket$kcm(0x2, 0x2, 0x0)
r8 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000240)={@fallback=r8, 0x0, 0x1, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f0000000140)=[0x0], &(0x7f00000001c0)=[0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r8, 0x40042408, r9)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000340)='cgroup.type\x00')
openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000300), 0x2, 0x0)
r10 = socket$kcm(0x10, 0x2, 0x4)
close(r10)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000140)="5800000013006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514001ac008000200f6ff0200050005c05e776189eab556a705251e618294ff0051f60a84c9f4d4938037e786c6c953000000000000000000", 0x58}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

1.407669645s ago: executing program 2 (id=6468):
socket$kcm(0xa, 0x1, 0x106)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x4c, &(0x7f0000000000), 0x4)
sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x4000000)
recvmsg$unix(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffff64}, 0x40000040)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x5}, 0x100e64, 0xc78}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x841e, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x8}, 0x82, 0x4, 0x4, 0x5, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340), 0xd58495bc, 0x0, 0xffffffffffffffff, 0xffffffffffffff5b}, 0x42)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c80)={r2, 0x2000012, 0x100e, 0x2, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0x7ffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000810000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030031000b12d25a80648c2594f90324fc60100c044002200600053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

1.177859453s ago: executing program 0 (id=6469):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x2, @perf_bp={0x0, 0xa}, 0x104105, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_clone(0x206000, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000040)="a72d11a15c048c0a7d63aebc5cea1f81510ff6091475aeec600831aa9d3944e60bc2ad06a619c560aa0118b28f68f1eb14549d633b4b23f179fb680716faa43414787559be90843c35ab30acad8a6740140e0072", 0x54}], 0x1}, 0x0)
r2 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000760091"], 0xfe33)
r3 = socket$kcm(0xa, 0x2, 0x88)
recvmsg(r3, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x41)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f848120000005e0c0000000000000e000a001400000002800000121f", 0x2e}], 0x1}, 0x0)

1.118484713s ago: executing program 1 (id=6470):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x8094)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$kcm(0x21, 0x2, 0x2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8919, 0x0)
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e24, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab"], 0x10b8}, 0x200008c0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x0, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000780)=ANY=[], 0x50)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f1, &(0x7f0000000080))
socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000080)=@framed={{0x18, 0x3}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r1}, @generic={0x66}, @initr0, @exit, @alu={0x7, 0x0, 0xa, 0x3}]}, &(0x7f0000000000)='GPL\x00'}, 0x90)

759.493333ms ago: executing program 0 (id=6471):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xd18c9b35, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030036000b05d25a806c8c6f94f90224fc60100005000a000200053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0)

751.433984ms ago: executing program 2 (id=6472):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r0, &(0x7f0000000b40)={&(0x7f0000000080)={0x2, 0x4e20, @remote}, 0x10, &(0x7f00000000c0)=[{0x0, 0x4f}], 0x1, &(0x7f0000000180)=[@ip_pktinfo={{0x2f, 0x0, 0x7, {0x0, @dev, @loopback}}}], 0x30}, 0x0)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000500)=0xffffffffffffffff, 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x3, 0x5, &(0x7f0000000140)=ANY=[@ANYRES8=r1], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6cab2ea9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000040)="40d174b28bf781c274386d178550", 0x0, 0x1200801, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$kcm(0x10, 0x2, 0x10)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000004c0)}, 0x4011)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x48844)
recvmsg(0xffffffffffffffff, 0x0, 0x20)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000080)="5c00000013006bec9e3be35c6e17aa31076b876c1d0000007ea60864160af3653c001ac004000202080002", 0x2b}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90324fc602f00001550000100feff000037153e370248018080351700d1bd", 0x33fe0}], 0x1}, 0x0)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60000, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10}, 0x0, 0xca, 0x0, 0x2, 0x0, 0x10, 0x0, 0x0, 0xfffffffe, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r6)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0xb, 0x1509, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xe}, 0x0, 0x4, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x2, &(0x7f0000000200)=ANY=[@ANYBLOB="85feff0fc9"], 0x0}, 0x94)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000200)=ANY=[@ANYRES8=r6, @ANYRES8=r8], 0x12)
r9 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_ext={0x1c, 0x10, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000007000000000000000100000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000008500000079000000bf91000000000000b7020000020000008500000084000000b70000000000000095000000000000004e0f8732a2c05c7686eb3cca7d9680975bb61299a4dcb5db38ab0fab42c6d2cfab5d0f2e48342877"], &(0x7f00000001c0)='syzkaller\x00', 0x2, 0x2f, &(0x7f0000000200)=""/47, 0x41100, 0x54, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0x3, 0x1, 0x80}, 0x10, 0x1fa4d, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0xb}, 0x94)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f00000003c0)={r3, r9})

730.822128ms ago: executing program 1 (id=6473):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYBLOB='\x00'/17, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x48)
r2 = gettid()
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001240)={&(0x7f0000000600)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000d40)=[{&(0x7f0000000c40)="4ec54e5a799ac46863962f814262a58979bcff720b8523f38165c45cd519ab83588482c979b389bd6243c70a021c362c414eb701636d98e6c686a5dde30478d49de9c86cac57d6033f9dcfaced", 0x4d}], 0x1, &(0x7f00000011c0)=[@cred={{0x1c, 0x1, 0x2, {r2, 0xee01, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [r3, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xee00}}}, @rights={{0x14, 0x1, 0x1, [r1]}}], 0x78, 0x4040084}, 0x81)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0xff, 0x5, 0x0, 0x2, 0x46c04, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_config_ext={0xfffffffffffffff8, 0x8}, 0x1081, 0xc8, 0x0, 0x5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7400}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$unix(r5, &(0x7f0000001f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, 0x8c4)
recvmsg$unix(r4, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000580)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce81e6971100fe08000e40000200875a65969ff57b00ff020000000000000000000000000001e2"], 0xfdef)
r7 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8003}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x8, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, 0xffffffffffffffff)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000700)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x13}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r8, 0x18000000000002a0, 0x12, 0x0, &(0x7f00000002c0)="d2ff03076003008cb89e08f088a8", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

664.383769ms ago: executing program 0 (id=6474):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x6, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000010e7ffffbca30000000000002403000040feffff720af0ff0000000071a4f0ff000000001f040000000000002e0a0200000000002604"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x94)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0xfd, 0x0, 0x0, 0xd2, 0x0, 0x0, 0x60300, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}, 0x8000, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="8fedcb790700117df37538e486dd6317ce22000000000000000000070000000000007fc5f603ff65ec5deb000071673fa79d93014b8e7781c2"], 0xfdef)

578.964213ms ago: executing program 3 (id=6475):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8000}, [@call={0x85, 0x0, 0x0, 0x75}]}, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0xcdd, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x4)
perf_event_open(&(0x7f0000000540)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x80000001, 0x1}, 0x0, 0x10000, 0x8, 0x3, 0x8, 0x2020007, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x2a040, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x1, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000400)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socket$kcm(0x2, 0x3, 0x84)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r2)
perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x10, 0x3, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff}, 0x2c7d06707e8423b4)
sendmsg$kcm(r3, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x1)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r7 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r7, 0x0, 0x23, 0x0, 0x0)

539.03376ms ago: executing program 1 (id=6476):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x4, @perf_bp={0x0, 0xa}, 0x0, 0x4, 0x0, 0x1, 0x0, 0x3, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_config_ext={0x1ff, 0x200}, 0x8000, 0x4, 0x43a1bd76, 0x4, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r2 = socket$kcm(0x2, 0x200000000000001, 0x106)
setsockopt$sock_attach_bpf(r2, 0x600, 0x1a, 0x0, 0x1c)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x84}, [@ldst={0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff0}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x40f00, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f0000000140)={0x5, 0x80, 0x8, 0x9, 0x5f, 0x5, 0x0, 0x6, 0x80530, 0xd, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x100, 0x0, @perf_config_ext={0x5, 0xec2b}, 0x10002, 0x5, 0x6, 0x3, 0x1, 0x2, 0x40, 0x0, 0x2, 0x0, 0x400})
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
socket$kcm(0x2, 0x5, 0x84)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x147b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000680)=ANY=[@ANYBLOB="1c0000001a000200000000000000c28517eb8a6fc197a9712a2819fbd98efdacdf3dc0223805416a0bde581408f1bc993d6b82114e529ea5fe5ba02fa085b6058a01d4bcbc3759d66bd714c95080444cd1f248053d22b24705ada197b31be60919d2d3565f9e1a4f0b2186a626e2f0359845ff9b53dfadf8eda9"], 0xfe33)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x3, 0xc, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$inet(r4, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@ip_retopts={{0x10, 0x110, 0x2}}], 0x10}, 0x0)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
close(0xffffffffffffffff)
socket$kcm(0xa, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000040000000400000009"], 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r5)
r6 = socket$kcm(0x10, 0x2, 0x0)
r7 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r7, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="020a000202000000e4a17c45c8d260c9", 0x10}], 0x1}, 0x0)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="d8000000180081054e81f782db4cb904021d080006007c09e8fe55a10a0015800a00142603600e1208000f0000000406a80016c0b00003400400027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1}, 0x0)

459.567543ms ago: executing program 0 (id=6477):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = perf_event_open(&(0x7f0000001100)={0x5, 0x80, 0x9, 0x8, 0xb, 0xfb, 0x0, 0x3c, 0xc002, 0xf, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x18842, 0x0, 0x7, 0x7, 0x9, 0x3, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000001100)={0x5, 0x80, 0xb, 0x5, 0xb, 0x7, 0x0, 0x3c, 0xc002, 0x20, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x18a62, 0x5, 0x7ffffffc, 0x3, 0x7, 0x3, 0x7, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, r2, 0x3)

453.279234ms ago: executing program 2 (id=6485):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYBLOB='\x00'/17, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x48)
r2 = gettid()
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001240)={&(0x7f0000000600)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000d40)=[{&(0x7f0000000c40)="4ec54e5a799ac46863962f814262a58979bcff720b8523f38165c45cd519ab83588482c979b389bd6243c70a021c362c414eb701636d98e6c686a5dde30478d49de9c86cac57d6033f9dcfaced", 0x4d}], 0x1, &(0x7f00000011c0)=[@cred={{0x1c, 0x1, 0x2, {r2, 0xee01, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [r3, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xee00}}}, @rights={{0x14, 0x1, 0x1, [r1]}}], 0x78, 0x4040084}, 0x81)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0xff, 0x5, 0x0, 0x2, 0x46c04, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_config_ext={0xfffffffffffffff8, 0x8}, 0x1081, 0xc8, 0x0, 0x5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7400}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$unix(r5, &(0x7f0000001f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, 0x8c4)
recvmsg$unix(r4, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000580)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce81e6971100fe08000e40000200875a65969ff57b00ff020000000000000000000000000001e2"], 0xfdef)
r7 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8003}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x8, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, 0xffffffffffffffff)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000700)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x13}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r8, 0x18000000000002a0, 0x12, 0x0, &(0x7f00000002c0)="d2ff03076003008cb89e08f088a8", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

347.180412ms ago: executing program 1 (id=6478):
socket$kcm(0x2, 0x200000000000001, 0x0)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x2000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$kcm(0xa, 0x2, 0x73)
close(0xffffffffffffffff)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="d8000000100081044e81f782db44b904021d08000b000000e8fe55a1180015000600142603600e1209000d00e803c9", 0x2f}], 0x1}, 0x40001)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfe33)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000001000850000002200000085"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000001980)=ANY=[@ANYBLOB="b702000000000090bfa300000000000007030000f0ffffff7a0af0ff0200000079a4f0ff00000000b706000000000081ad64020000000000450404000100ff0f1704000001130a00b7050000010000006a0af2fe000000008500000009000000b700000000000000950000000000000000e154cd8445974b26c933f7ffffffffe4fbffffff55bb2007ee51050512b5b42128aa090a79507df79f298129daa7a6b2f91af50342115e17392ac627c87881c000006146001e04aeacea799a22a2fa798b5adc43eb27d53319d0ad229e5752548300000000dbc2777df150b7cdd77b85b941092314fd085f028f2ed1a4535550614e09d6378198a6097a670838337af20fd55a87ac0394b2f92ffab7d153d62058d0a413b2173619ccf55520f22c9ca8b6712f3024b7041b1df65b3e1b9bf115646d14ce53d13d0ccacda1ef0900094fa737c28b99938512c816fdcceaede3faedc51d29a47fc813a2ec00f4c7a53ac271d6d7f4ea6bf97f2f33e2ea2e534300bcb3fdc4b4861004eefbda7f54f82a804da4f85db47a4a69bf9bc5fa96ee293fbd165a5a68488e40b030166565a097b1b44b451de736bb6d43db8db03d4b7745fef1d04ec633dee254a6d491b849a5a787e814c4fd21a18986252a70f8f92eb6f0e8c7db4bf23242a1f2c28159f09943b1b0452d1b72183aacf4a84f9130b775dd4e9e3070756f97ad791fa99dac06b57479321a0574fb30ff0000001989425f5d0b79f6584d0416d7c4bb9f547b328c8ddc20ea011bf5742e0e0d4334db8b20ce3f9f16cb7fc20fb4791ec85821d0c48fb657c29b309c73f0977e7cde65a82b94c461d7962b0d2277a84af326f37f3e2c25a61ec45c3af97a8f17da954aff3fc8c108755f01000000010000006e7dac1aba4b33dc7de058a4dfa7e85a8bdf1d41a2d8bda74d66f47cc180f82c5f573c6d294d3665016ac59dda0fde4745db06753a7ac74a2d32f7528751313694bf5700b20ef0c248ddd3da32396a614cacad4aff2066bb5d4045c958559b7dcb98a6273b8c651e24d9f679e4fbe948dfb4cc4a389469608241730459f0123fd39206000000000000eb55dad46de56ef907b059b90b8aa49afb9a79ae5498f6589880ed6eea7f9c670012be05e7de0940313c5870786554df26236ebced9390cb6941b8375d936a7d2120eca291963eb2d537d8ee4de5c183c960119451c31539b22809e1d7f0cda06a9fa87d64cb77872a2cd8a104e16bb1a2bacf13464ca03aff14a9aa4bd9539f5096412b92012e095b84c20243ff98df3347f0e399d1b9f27e3c33269c0e153b28b2d4410572bc45b98d2de10c21d3ea02208d304d455c36300000000022320178b00cc6ed7966130b547dbf8b497af002000000cd1d000000200008000000000000001abc11c800000000000000000000000928ee53595a779d243a48cea769470424d20a04c04b2c4324ab7f4a5c81921f0128dfd70b438af60b060000000000000056642b49b745f3bf2c4af38ffb7d748308eea09fc361b4735efbf3411718d6ee7aebf9ef679dbfae9fb4a79f8a836804ed3a1079b0282a12043408cd60b687dcff91af19010000000000000000456f7d2a42bd13da202274f20675eb781925441578e93046aaddea8ec4ca37f71c2710a7ea8ae0dc214e1cc275b26adfa892e6de92000000000000000000ddff004cff9ec7ffff35e62f4eeee50e5bafecea4d4134f9d006c8d6883eca5c9c58c9e93311ab5009c68c73de2f04f15d005387577f480000ea65559eb00e76e9d0ada201bcbb5c252b28a60ca770663da451790cc36000906d5a9fad98c308e39bd5ffb6151d79c1cee1cd102e3c8e63e9fba05e3633be3f00000015762e5f5a3a0bc33fdbe28a5ffc83f2b485185cc92fe7f791e8f6429309d6adab4b7e6d8e5bf024ed8f8a005f2bbf96c89739f5cf1e750d50517a59a3ad09e8802e8f4f535447cc0fc9d5f99a73145dfcedad69da9cd4375c624600e78f4458542b14f29611f95d4a31838eeb20c20bb82aa31771cd379ec83554cea5e6539db7384e1f58d81f2f2653c4d9818708e27c89b552d7fcd116bce9c764c714c9402c21d181aac59efb28d4f91652f6750b6ec962802c0320f8059195729d60c534ee8e8ff0755b67fe4c25edb85bcff24c757aa8090000000000008c420eb44b4f66e3a37aaf000000c42a570f0e9dd5fd545470f862f8c3c14fa9ecd1e877b0d8ca84c044859e85e6158f9184bc61a9a284db80e4636c25b96174327d82761c26e329555f9290af4100000000000000749efd3763655500344bae34137f5ab0d534b8d63e4ca3b671f2de1cdf519192c6b59a601fd419adc16e2055b85058f793484305d7a1759782e4c571ee855a47bc00edf5e9020c09ab004321610b857e8717764b633b21cb32f0eb3280e09758bd445ab91d20baca005472b79d7b574a247f1d2fe45b3c4e93da3d51de647c10dd49944dc87c92fe8bad99ca332af00f191b66b6a6f732a91f0e2e9190e4b448da7de018c58e950767f9b320be61e58c79d497247d278888901d442ad7f8536605a644e9e3d769db497c3960dfde12182334caee994adc38a436367a54b9e182b78e9a0ceb9a2c4f63902c1ad1a7c5a08d0920a23c2a86abbdf357849a651733e57f31019876026888c8ccb85c86b4f8ffffff7f000000002c331fca0e541b7ca211c28ed61c52573d9308a13d115b43f8b1894c8fa8a14dc4810f61ae96bf704526a8919bc700002100000000000000000001000027c9a46157a3609b6fd9843ee19ec647249a9375de5858818f3c4a4fa6ce46f4d42b07199de8b99231ace58c77819ee214e49666c464d35ca9b5143ed3b3dc8c17a23692759ccf5a205311b7ab22532697b861dfb54609fd88e6043bd52ae84c1bb0c8a6c769f952283a1f4e3842edb3d42c68a27ef6a1296dfff4a979369b0e8ebc62887aa46e820a74f91381ccc198e353047db70686d147357024eb3cb94f1e89cb5ba0a56aa046b4dc521a3d9356b4b8b5917c4c860495b240e80063bde261fd00000000007271e28ef6806bc8e139c49b91c76bea3858f78fbd8d31330d89069f9648a2ff93060ff073b3a113e47edf76f7d116d2b0976cf2ec447c030931651dd315003b7a6a5433a2bb3c035fc6846abe389b25c988f0bbb889560ae99ec4b227eda2e63a1c31a2c2bd48a822cbe92b6524e0cd8020ecaa34e19e7141d5e221509342bfe7d294d1eb3de6a50ca0301f89c2ee627e949c68b3a4a426a9b7d503a26e9a714ee5f72d8805dd1bfbd081f6a5d1f1289dfe14cb9194e26a44fac273461fc5c0e0a33db7f2d43ea8086cf059f40fa2640b6bfb74dd35f5a31059c01517cf4b6641fce9a24b96767b837ca037a1199735c375c705c798e0e208e4a5259d0bfa526b462af45a6eab34000000000000000000000000c4426344ec1a3366515dee221e747f55d7dd02534bc503b9b28277c253e410986bef2111a99cc448d652929f8a67a6a1d3f00dcad91aff428aade3f85714a1d3ef29acd4d49b62339c10c2ec0dac4728288e78980c1184d8223edbccbf9258b7374e79a1f8bf3fb73cfd1e76982f3d899f71e495f0ba8c6dbb7bbdfc399847a11921f97eba0ea14c4fed9a71eedb97c02461792e4a48dac16c60c3fcaab222025d78963c3ac899fa8b63f58a30212c9b2d7fe751e2046b78f86e22861b6504c667350244dd6d9189a8b9c45f8aaff9db694811ca86ed978f23eed7459c0382074170cf1e25b0e9ba3d1cc309353eea4cd8ab96bafda393276bdd8d32ead8db9e1b54d2d3d50e2815268fc1a6ec566981bc8ca2a4583f3d40e817433d0f4f25cfe6cc1897449ba5f26a9d66ac73e6f5c401376f23a314e0b9ff997d22f3e34b7524642c248aa813edaa626f00000021f8547d393dabe616fbbde21c90be00b5a22671395c7a69c6dd4d022ffc97ddb6aa025131652d409da1d8cfc3d219d4b1c1b7b8170d7c33d91db2b73f7ae02485a209a2474b5d0790d05c01bec623056e4d3f4d3149373a28b26a15a1fcce73d57e6eaf7e6f315fe275ebc9ef7aeca277dde01dde724f419803a2172a7833ceab38d21ca4f1dea5e1f4d8824167b21dd289dd4e6ecfba9e163bdbc48e1e758ecde05c10809c9edfa6d77c652fd742e6dad13d2a397bebe3ea8bc087d3720e2202f36c7719ae34f042e19dc08a3323a3d94098a7ec171469352bab1662c3e4d4803c565cfcce32dad628fade43a4844abb230ce608726fd87e93c405a96cf638c41510f26e9da5f3167f1595ece2f4b79fcc59c32ec9eb70267848da14dc91f13fdcd07b61b7bd0450e7899efc3d99a1993f78cb650f1eaaee7647be7ec71a75d511b47e1d36ee74bafbb2a8fa8d13b5ba0b93f914f5d0d5d1fb60774816ec207ced0ddfbc784ac8aa06d58b7a05b1d81488c833a1d48e57121175b5290e7f"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000240)={0x0, 0x1}, 0x10}, 0x94)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="d8000000140081044e81f782db44b9040220080207000000040000a118000200e000000100000e1208000f0100810401a80016ea1f000840032e5f54c92011148ed08734843c8802033d0803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000400)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000580)="d8000000180081064e81f782db4cb904021d0800fd027c05e8fe55a10a000b000140020203600e41b0000900ac0006031100000016000500000000000004015c3b61c1d67f6f94007134cf6efb8000a007", 0x51}], 0x1}, 0x20000844)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000300)=ANY=[@ANYBLOB="05000000000000007111a800000000008510000002000000850000000700000095000000000000009500a50500000000cc8cebcc863c8bf0c260faf4be40ba5fb4cc0e315e97a6d6df5b0b989e45895311df18c83f4ae1cb757ff6eb3e48861ae8795d17df"], &(0x7f0000000080)='GPL\x00', 0x5, 0x144, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="5eaa000000000000611067000000000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000880)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000002400000024000000020000000000000b000000000000000000000009020000000000"], 0x0, 0x3e}, 0x20)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='hugetlb.1GB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r4)
socket$kcm(0x10, 0x2, 0x10)
ioctl$SIOCSIFHWADDR(r4, 0x8b05, &(0x7f0000000000)={'wlan1\x00', @broadcast})
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000006c0)={r3, 0x20, &(0x7f00000003c0)={0x0, 0x0, <r5=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=r5, 0x4)

346.453972ms ago: executing program 0 (id=6487):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x823, 0x4, 0x4, 0x5, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000000004000000120000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)

223.725643ms ago: executing program 3 (id=6479):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000400000000000000018000000c00", @ANYRES32, @ANYBLOB="00000000000001000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00@\x00'/28], 0x50)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, 0x0, &(0x7f0000000c40)=[{}, {0xfffffffd, 0x4, 0x10006, 0x3}]}, 0x94)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000380)={<r3=>r1})
sendmsg$inet(r3, 0x0, 0x0)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000800)={@cgroup, 0x1, 0x1, 0x5, &(0x7f0000000700)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f0000000740)=[0x0, 0x0], &(0x7f0000000780)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, <r6=>0x0}, 0x40)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000880)={0x5, <r7=>0x0}, 0x8)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000008c0)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB='!\x00\x00\x001 \x00\x00', @ANYRES32=r5, @ANYBLOB="0f89867f35e9e70e7508c708c513be8e531804696a4a8d6e78b27bf4bb0648b53d6cf6b773fda25108a94477da001f1fe7ba6e60e99bc4c775f7e30b0939d25031e5de808c52904dc93012e553017cfebe99e28fc39a207f73f1de793935fb80d89f28ee223eb830bdfbebf43f5ae4743c076e9819b0ad6817f5596294afa15f8cf3a7e3e9e9c45099b9ca75f8dad5513d0e57a83bdf03ec780ad3331559ca8c5dc42affa59d5fec7224a7b48c854783c5eb6879ca3b3b5722c853e04234d5415253222ee128b57e204b7c2550000000000000", @ANYRES32=r7, @ANYBLOB, @ANYRES64=r6], 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000003c0)={@fallback=r1, r2, 0x30, 0x0, 0x0, @void, @value=r2, @void, @void, r6}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="20000000fdffffff0500000001000000084c0000", @ANYRES32=r0, @ANYRESOCT, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="00000000000000000300"/21], 0x50)
socket$kcm(0x2, 0x2, 0x0)
r8 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000240)={@fallback=r8, 0x0, 0x1, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f0000000140)=[0x0], &(0x7f00000001c0)=[0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r8, 0x40042408, r9)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000340)='cgroup.type\x00')
openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000300), 0x2, 0x0)
r10 = socket$kcm(0x10, 0x2, 0x4)
close(r10)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000140)="5800000013006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514001ac008000200f6ff0200050005c05e776189eab556a705251e618294ff0051f60a84c9f4d4938037e786c6c953000000000000000000", 0x58}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

222.821883ms ago: executing program 2 (id=6480):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x3, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300005500000085000000d000000095"], &(0x7f0000000340)='GPL\x00'}, 0x94)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x2, 0x2, 0x73)
sendmsg$inet(r2, &(0x7f0000000580)={&(0x7f00000000c0)={0x4, 0x0, @loopback}, 0x10, 0x0}, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f0000000100)={0x5, 0x80, 0x6, 0xe7, 0xf5, 0xd, 0x0, 0x5, 0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0xb, 0x2, @perf_config_ext={0x6b, 0x5}, 0x0, 0x7, 0x97, 0xa, 0x8, 0x3, 0x3, 0x0, 0x45, 0x0, 0x8})
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair(0x2b, 0x1, 0xa87b, &(0x7f0000000080))
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xd}, 0xb000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x28, 0x0, &(0x7f0000000440)="e06921e8682d85ff9782762f86dd6ff3e6bd5ff4e19c69569c634783843be51a42e223a6f2bfb0fd", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

174.336881ms ago: executing program 0 (id=6481):
r0 = perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000005, 0x80100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000300), 0x4}, 0x11540}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x9, 0x1, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x9, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000bc0)={{r1}, &(0x7f0000000b40), &(0x7f0000000b80)}, 0x20)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
socket$kcm(0xa, 0x3, 0x87)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r4)
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0x18}, 0x8020)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x2, 0xffffffffffffffff, 0x10000}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000d40)={0x11, 0xd, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x4000}, [@call={0x85, 0x0, 0x0, 0x8}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r7, r6}, 0xc)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r8, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r8, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r10)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48)
socket$kcm(0xa, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0xf, &(0x7f0000000940)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r11}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000007c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x40, '\x00', r9}, 0x94)
write$cgroup_subtree(r5, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102038700fe08000e40000200875a65969ff57b00ff020000000000000000000000000001"], 0xfdef)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=@base={0x6, 0x4, 0x4, 0x8}, 0x50)
r13 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r12}, 0x48)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000700)={r13, &(0x7f0000000580), 0x0}, 0x20)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/ipc\x00')

0s ago: executing program 3 (id=6482):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x8094)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$kcm(0x21, 0x2, 0x2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8919, 0x0)
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e24, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab"], 0x10b8}, 0x200008c0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x0, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000780)=ANY=[], 0x50)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f1, &(0x7f0000000080))
socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000080)=@framed={{0x18, 0x3}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r1}, @generic={0x66}, @initr0, @exit, @alu={0x7, 0x0, 0xa, 0x3}]}, &(0x7f0000000000)='GPL\x00'}, 0x90)

kernel console output (not intermixed with test programs):

T22720]  ? load_image+0x420/0x420
[  994.738285][T22720]  ? __lock_acquire+0x7d40/0x7d40
[  994.743431][T22720]  ? __virt_addr_valid+0x18c/0x540
[  994.748581][T22720]  should_fail_ex+0x39d/0x4d0
[  994.753283][T22720]  _copy_from_user+0x2f/0xe0
[  994.757876][T22720]  bpf_test_init+0xde/0x140
[  994.762467][T22720]  bpf_prog_test_run_xdp+0x4d1/0x10e0
[  994.768152][T22720]  ? dev_put+0x80/0x80
[  994.772421][T22720]  ? dev_put+0x80/0x80
[  994.776763][T22720]  bpf_prog_test_run+0x321/0x390
[  994.781710][T22720]  __sys_bpf+0x49d/0x890
[  994.785969][T22720]  ? bpf_link_show_fdinfo+0x390/0x390
[  994.791347][T22720]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  994.797509][T22720]  __x64_sys_bpf+0x7c/0x90
[  994.802025][T22720]  do_syscall_64+0x55/0xa0
[  994.806530][T22720]  ? clear_bhb_loop+0x40/0x90
[  994.811204][T22720]  ? clear_bhb_loop+0x40/0x90
[  994.815967][T22720]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  994.822032][T22720] RIP: 0033:0x7f541039c819
[  994.826531][T22720] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  994.846226][T22720] RSP: 002b:00007f541130d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  994.854831][T22720] RAX: ffffffffffffffda RBX: 00007f5410615fa0 RCX: 00007f541039c819
[  994.863054][T22720] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  994.871044][T22720] RBP: 00007f541130d090 R08: 0000000000000000 R09: 0000000000000000
[  994.879468][T22720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  994.887610][T22720] R13: 00007f5410616038 R14: 00007f5410615fa0 R15: 00007ffcd55a9428
[  994.895878][T22720]  </TASK>
[  994.909546][T22722] FAULT_INJECTION: forcing a failure.
[  994.909546][T22722] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  994.927465][T22722] CPU: 1 PID: 22722 Comm: syz.1.5556 Not tainted syzkaller #0
[  994.935511][T22722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  994.945593][T22722] Call Trace:
[  994.949039][T22722]  <TASK>
[  994.952053][T22722]  dump_stack_lvl+0x18c/0x250
[  994.956765][T22722]  ? show_regs_print_info+0x20/0x20
[  994.962005][T22722]  ? load_image+0x420/0x420
[  994.966962][T22722]  ? __lock_acquire+0x7d40/0x7d40
[  994.972051][T22722]  ? snprintf+0xe9/0x140
[  994.976332][T22722]  should_fail_ex+0x39d/0x4d0
[  994.981156][T22722]  _copy_to_user+0x2f/0xa0
[  994.985637][T22722]  simple_read_from_buffer+0xe7/0x150
[  994.991077][T22722]  proc_fail_nth_read+0x1e8/0x260
[  994.996137][T22722]  ? proc_fault_inject_write+0x360/0x360
[  995.001984][T22722]  ? fsnotify_perm+0x271/0x5e0
[  995.006864][T22722]  ? proc_fault_inject_write+0x360/0x360
[  995.012532][T22722]  vfs_read+0x28b/0x970
[  995.016723][T22722]  ? kernel_read+0x1e0/0x1e0
[  995.021334][T22722]  ? __fget_files+0x28/0x4b0
[  995.025967][T22722]  ? __fget_files+0x28/0x4b0
[  995.030649][T22722]  ? __fget_files+0x43d/0x4b0
[  995.035335][T22722]  ? __fdget_pos+0x2a3/0x330
[  995.040016][T22722]  ? ksys_read+0x75/0x260
[  995.044561][T22722]  ksys_read+0x150/0x260
[  995.048855][T22722]  ? vfs_write+0x990/0x990
[  995.053293][T22722]  ? lockdep_hardirqs_on+0x98/0x150
[  995.058581][T22722]  do_syscall_64+0x55/0xa0
[  995.063018][T22722]  ? clear_bhb_loop+0x40/0x90
[  995.067787][T22722]  ? clear_bhb_loop+0x40/0x90
[  995.072887][T22722]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  995.079160][T22722] RIP: 0033:0x7f7dc795d04e
[  995.083663][T22722] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  995.104236][T22722] RSP: 002b:00007f7dc5bf5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  995.112828][T22722] RAX: ffffffffffffffda RBX: 00007f7dc5bf66c0 RCX: 00007f7dc795d04e
[  995.121075][T22722] RDX: 000000000000000f RSI: 00007f7dc5bf60a0 RDI: 0000000000000005
[  995.129215][T22722] RBP: 00007f7dc5bf6090 R08: 0000000000000000 R09: 0000000000000000
[  995.137273][T22722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  995.145414][T22722] R13: 00007f7dc7c16038 R14: 00007f7dc7c15fa0 R15: 00007ffd3b6432e8
[  995.153392][T22722]  </TASK>
[  995.258166][T22735] FAULT_INJECTION: forcing a failure.
[  995.258166][T22735] name failslab, interval 1, probability 0, space 0, times 0
[  995.271570][T22735] CPU: 1 PID: 22735 Comm: syz.1.5560 Not tainted syzkaller #0
[  995.279163][T22735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  995.289339][T22735] Call Trace:
[  995.292732][T22735]  <TASK>
[  995.295794][T22735]  dump_stack_lvl+0x18c/0x250
[  995.300885][T22735]  ? show_regs_print_info+0x20/0x20
[  995.306226][T22735]  ? load_image+0x420/0x420
[  995.311024][T22735]  ? __might_sleep+0xe0/0xe0
[  995.315856][T22735]  ? __lock_acquire+0x7d40/0x7d40
[  995.321013][T22735]  should_fail_ex+0x39d/0x4d0
[  995.325752][T22735]  should_failslab+0x9/0x20
[  995.330348][T22735]  slab_pre_alloc_hook+0x59/0x310
[  995.335418][T22735]  ? __lock_acquire+0x7d40/0x7d40
[  995.340743][T22735]  kmem_cache_alloc_node+0x60/0x320
[  995.346164][T22735]  ? __alloc_skb+0x103/0x2c0
[  995.351065][T22735]  __alloc_skb+0x103/0x2c0
[  995.355596][T22735]  netlink_sendmsg+0x66a/0xbf0
[  995.360490][T22735]  ? netlink_getsockopt+0x590/0x590
[  995.365725][T22735]  ? aa_sock_msg_perm+0x94/0x150
[  995.370697][T22735]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  995.376069][T22735]  ? security_socket_sendmsg+0x80/0xa0
[  995.382007][T22735]  ? netlink_getsockopt+0x590/0x590
[  995.387465][T22735]  ____sys_sendmsg+0x5ba/0x960
[  995.392444][T22735]  ? __asan_memset+0x22/0x40
[  995.397081][T22735]  ? __sys_sendmsg_sock+0x30/0x30
[  995.402578][T22735]  ? __import_iovec+0x5f2/0x850
[  995.407476][T22735]  ? import_iovec+0x73/0xa0
[  995.412542][T22735]  ___sys_sendmsg+0x2a6/0x360
[  995.418321][T22735]  ? get_pid_task+0x20/0x1e0
[  995.423940][T22735]  ? __sys_sendmsg+0x2a0/0x2a0
[  995.428891][T22735]  ? __lock_acquire+0x7d40/0x7d40
[  995.434159][T22735]  __se_sys_sendmsg+0x1c2/0x2b0
[  995.439071][T22735]  ? __x64_sys_sendmsg+0x80/0x80
[  995.444154][T22735]  ? lockdep_hardirqs_on+0x98/0x150
[  995.449398][T22735]  do_syscall_64+0x55/0xa0
[  995.453891][T22735]  ? clear_bhb_loop+0x40/0x90
[  995.458601][T22735]  ? clear_bhb_loop+0x40/0x90
[  995.463397][T22735]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  995.469594][T22735] RIP: 0033:0x7f7dc799c819
[  995.474030][T22735] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  995.494024][T22735] RSP: 002b:00007f7dc5bf6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  995.502580][T22735] RAX: ffffffffffffffda RBX: 00007f7dc7c15fa0 RCX: 00007f7dc799c819
[  995.510675][T22735] RDX: 0000000000000010 RSI: 00002000000003c0 RDI: 0000000000000003
[  995.518776][T22735] RBP: 00007f7dc5bf6090 R08: 0000000000000000 R09: 0000000000000000
[  995.526851][T22735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  995.535024][T22735] R13: 00007f7dc7c16038 R14: 00007f7dc7c15fa0 R15: 00007ffd3b6432e8
[  995.543218][T22735]  </TASK>
[  996.283057][T22742] netlink: 'syz.1.5561': attribute type 10 has an invalid length.
[  996.369678][T22742] team0: Port device wlan1 added
[  996.738891][T22765] netlink: 16098 bytes leftover after parsing attributes in process `syz.1.5571'.
[  997.150215][T22770] netlink: 'syz.1.5573': attribute type 29 has an invalid length.
[  997.166360][T22770] netlink: 'syz.1.5573': attribute type 29 has an invalid length.
[  997.240067][T22773] netlink: 'syz.3.5574': attribute type 21 has an invalid length.
[  997.250630][T22773] netlink: 164 bytes leftover after parsing attributes in process `syz.3.5574'.
[  997.471502][T22784] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5578'.
[  997.560228][T22781] net_ratelimit: 16 callbacks suppressed
[  997.560264][T22781] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  997.613159][T22784] openvswitch: netlink: Tunnel attr 2548 out of range max 16
[  997.729863][T22793] netlink: 11254 bytes leftover after parsing attributes in process `syz.0.5581'.
[  997.756312][T22793] netlink: 'syz.0.5581': attribute type 7 has an invalid length.
[  997.764626][T22793] netlink: 11254 bytes leftover after parsing attributes in process `syz.0.5581'.
[  997.893004][T22783] netlink: 'syz.3.5579': attribute type 10 has an invalid length.
[  997.929457][T22783] bond0: (slave wlan1): Releasing backup interface
[  998.069497][T22783] team0: Port device wlan1 added
[  998.411831][T22812] netlink: 'syz.1.5588': attribute type 21 has an invalid length.
[  998.427845][T22812] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5588'.
[  999.049404][T22843] netlink: 'syz.1.5599': attribute type 29 has an invalid length.
[  999.070497][T22843] netlink: 'syz.1.5599': attribute type 29 has an invalid length.
[  999.103754][T22843] netlink: 'syz.1.5599': attribute type 29 has an invalid length.
[  999.136053][T22843] netlink: 'syz.1.5599': attribute type 29 has an invalid length.
[  999.160742][T22843] netlink: 'syz.1.5599': attribute type 29 has an invalid length.
[  999.198035][T22843] netlink: 'syz.1.5599': attribute type 29 has an invalid length.
[  999.254412][T22845] netlink: 203516 bytes leftover after parsing attributes in process `syz.2.5600'.
[  999.264730][T22845] netlink: 4612 bytes leftover after parsing attributes in process `syz.2.5600'.
[  999.275142][T22845] netlink: 9 bytes leftover after parsing attributes in process `syz.2.5600'.
[  999.309511][T22833] netlink: 'syz.0.5595': attribute type 10 has an invalid length.
[  999.412920][T22833] team0: Device ipvlan1 failed to register rx_handler
[  999.601114][T22852] netlink: 'syz.2.5601': attribute type 21 has an invalid length.
[  999.610166][T22852] netlink: 164 bytes leftover after parsing attributes in process `syz.2.5601'.
[  999.961586][T22874] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.5611'.
[  999.962446][T22863] FAULT_INJECTION: forcing a failure.
[  999.962446][T22863] name failslab, interval 1, probability 0, space 0, times 0
[  999.983950][T22863] CPU: 1 PID: 22863 Comm: syz.2.5606 Not tainted syzkaller #0
[  999.991608][T22863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1000.001802][T22863] Call Trace:
[ 1000.005648][T22863]  <TASK>
[ 1000.008665][T22863]  dump_stack_lvl+0x18c/0x250
[ 1000.013493][T22863]  ? show_regs_print_info+0x20/0x20
[ 1000.018734][T22863]  ? load_image+0x420/0x420
[ 1000.023290][T22863]  ? skb_network_protocol+0x51f/0x780
[ 1000.028814][T22863]  should_fail_ex+0x39d/0x4d0
[ 1000.033559][T22863]  should_failslab+0x9/0x20
[ 1000.038126][T22863]  slab_pre_alloc_hook+0x59/0x310
[ 1000.043234][T22863]  kmem_cache_alloc+0x5a/0x2d0
[ 1000.048057][T22863]  ? skb_clone+0x1eb/0x370
[ 1000.052638][T22863]  skb_clone+0x1eb/0x370
[ 1000.056912][T22863]  ? dev_queue_xmit_nit+0x212/0xbb0
[ 1000.062165][T22863]  dev_queue_xmit_nit+0x24d/0xbb0
[ 1000.067287][T22863]  ? dev_queue_xmit_nit+0x2d/0xbb0
[ 1000.072566][T22863]  ? validate_xmit_skb+0x949/0xf60
[ 1000.077825][T22863]  dev_hard_start_xmit+0x148/0x740
[ 1000.083122][T22863]  __dev_queue_xmit+0x19a3/0x3660
[ 1000.088502][T22863]  ? __dev_queue_xmit+0x265/0x3660
[ 1000.093786][T22863]  ? netdev_core_pick_tx+0x340/0x340
[ 1000.099204][T22863]  ? __copy_skb_header+0xa3/0x4a0
[ 1000.104276][T22863]  ? __asan_memcpy+0x40/0x70
[ 1000.109178][T22863]  ? __skb_clone+0x63/0x790
[ 1000.114431][T22863]  ? __skb_clone+0x480/0x790
[ 1000.119171][T22863]  ? skb_clone+0x21f/0x370
[ 1000.123731][T22863]  __netlink_deliver_tap+0x5ab/0x830
[ 1000.129203][T22863]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1000.134463][T22863]  netlink_deliver_tap+0x19c/0x1b0
[ 1000.139623][T22863]  netlink_unicast+0x72c/0x8d0
[ 1000.144568][T22863]  netlink_sendmsg+0x8d0/0xbf0
[ 1000.149547][T22863]  ? netlink_getsockopt+0x590/0x590
[ 1000.154840][T22863]  ? aa_sock_msg_perm+0x94/0x150
[ 1000.160182][T22863]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1000.165665][T22863]  ? security_socket_sendmsg+0x80/0xa0
[ 1000.171389][T22863]  ? netlink_getsockopt+0x590/0x590
[ 1000.176743][T22863]  ____sys_sendmsg+0x5ba/0x960
[ 1000.181673][T22863]  ? __asan_memset+0x22/0x40
[ 1000.186422][T22863]  ? __sys_sendmsg_sock+0x30/0x30
[ 1000.191485][T22863]  ? __import_iovec+0x5f2/0x850
[ 1000.196412][T22863]  ? import_iovec+0x73/0xa0
[ 1000.200983][T22863]  ___sys_sendmsg+0x2a6/0x360
[ 1000.205920][T22863]  ? get_pid_task+0x20/0x1e0
[ 1000.210605][T22863]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1000.215939][T22863]  ? __lock_acquire+0x7d40/0x7d40
[ 1000.221270][T22863]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1000.226258][T22863]  ? __x64_sys_sendmsg+0x80/0x80
[ 1000.231391][T22863]  ? lockdep_hardirqs_on+0x98/0x150
[ 1000.236828][T22863]  do_syscall_64+0x55/0xa0
[ 1000.241361][T22863]  ? clear_bhb_loop+0x40/0x90
[ 1000.246156][T22863]  ? clear_bhb_loop+0x40/0x90
[ 1000.250875][T22863]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1000.256802][T22863] RIP: 0033:0x7f447d39c819
[ 1000.261351][T22863] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1000.281272][T22863] RSP: 002b:00007f447e287028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1000.289939][T22863] RAX: ffffffffffffffda RBX: 00007f447d615fa0 RCX: 00007f447d39c819
[ 1000.298204][T22863] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[ 1000.306236][T22863] RBP: 00007f447e287090 R08: 0000000000000000 R09: 0000000000000000
[ 1000.314458][T22863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1000.322473][T22863] R13: 00007f447d616038 R14: 00007f447d615fa0 R15: 00007ffe0f3f3b38
[ 1000.330571][T22863]  </TASK>
[ 1000.347738][T22863] netlink: 'syz.2.5606': attribute type 10 has an invalid length.
[ 1000.483132][T22863] team0: Device ipvlan1 failed to register rx_handler
[ 1000.791635][T22887] FAULT_INJECTION: forcing a failure.
[ 1000.791635][T22887] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1000.821272][T22887] CPU: 0 PID: 22887 Comm: syz.2.5615 Not tainted syzkaller #0
[ 1000.829150][T22887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1000.839406][T22887] Call Trace:
[ 1000.842796][T22887]  <TASK>
[ 1000.845746][T22887]  dump_stack_lvl+0x18c/0x250
[ 1000.850820][T22887]  ? show_regs_print_info+0x20/0x20
[ 1000.856158][T22887]  ? load_image+0x420/0x420
[ 1000.860893][T22887]  ? __might_fault+0xaa/0x120
[ 1000.865613][T22887]  ? __lock_acquire+0x7d40/0x7d40
[ 1000.870759][T22887]  should_fail_ex+0x39d/0x4d0
[ 1000.875552][T22887]  _copy_from_user+0x2f/0xe0
[ 1000.880170][T22887]  __sys_bpf+0x23e/0x890
[ 1000.884465][T22887]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1000.889964][T22887]  ? lock_chain_count+0x20/0x20
[ 1000.894823][T22887]  __x64_sys_bpf+0x7c/0x90
[ 1000.899322][T22887]  do_syscall_64+0x55/0xa0
[ 1000.903992][T22887]  ? clear_bhb_loop+0x40/0x90
[ 1000.908782][T22887]  ? clear_bhb_loop+0x40/0x90
[ 1000.913460][T22887]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1000.919757][T22887] RIP: 0033:0x7f447d39c819
[ 1000.924395][T22887] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1000.944283][T22887] RSP: 002b:00007f447e287028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1000.952791][T22887] RAX: ffffffffffffffda RBX: 00007f447d615fa0 RCX: 00007f447d39c819
[ 1000.960883][T22887] RDX: 0000000000000050 RSI: 0000200000000080 RDI: 000000000000000a
[ 1000.969113][T22887] RBP: 00007f447e287090 R08: 0000000000000000 R09: 0000000000000000
[ 1000.977268][T22887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1000.985236][T22887] R13: 00007f447d616038 R14: 00007f447d615fa0 R15: 00007ffe0f3f3b38
[ 1000.993783][T22887]  </TASK>
[ 1002.220959][T22916] team0 (unregistering): Port device team_slave_0 removed
[ 1002.256651][T22916] team0 (unregistering): Port device team_slave_1 removed
[ 1002.330330][T22916] team0 (unregistering): Port device wlan1 removed
[ 1003.583314][T22961] netlink: 703 bytes leftover after parsing attributes in process `syz.1.5639'.
[ 1004.742124][T22976] syzkaller0: entered promiscuous mode
[ 1004.755340][T22976] syzkaller0: entered allmulticast mode
[ 1007.179751][T22988] C: renamed from team_slave_0
[ 1007.193434][T22988] validate_nla: 5 callbacks suppressed
[ 1007.193448][T22988] netlink: 'syz.2.5649': attribute type 1 has an invalid length.
[ 1007.209944][T22988] netlink: 152 bytes leftover after parsing attributes in process `syz.2.5649'.
[ 1007.226717][T22988] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[ 1007.600234][T22998] netlink: 203516 bytes leftover after parsing attributes in process `syz.1.5653'.
[ 1007.655294][T22998] netlink: 4612 bytes leftover after parsing attributes in process `syz.1.5653'.
[ 1007.723973][T22998] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5653'.
[ 1007.960074][T23004] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5654'.
[ 1008.055528][T23004] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5654'.
[ 1008.205462][T23008] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5651'.
[ 1008.214878][T23008] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5651'.
[ 1008.259536][T23008] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5651'.
[ 1009.592188][T23043] netlink: 'syz.0.5666': attribute type 10 has an invalid length.
[ 1010.126318][T23051] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5668'.
[ 1010.402324][T23051] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5668'.
[ 1010.602984][T23044] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5668'.
[ 1010.798693][T20036] Bluetooth: hci4: command 0x0406 tx timeout
[ 1011.227106][T23088] netlink: 'syz.0.5682': attribute type 10 has an invalid length.
[ 1011.955524][T23093] netlink: 'syz.3.5684': attribute type 21 has an invalid length.
[ 1011.964032][T23093] netlink: 164 bytes leftover after parsing attributes in process `syz.3.5684'.
[ 1012.239059][T23103] FAULT_INJECTION: forcing a failure.
[ 1012.239059][T23103] name failslab, interval 1, probability 0, space 0, times 0
[ 1012.255952][T23103] CPU: 1 PID: 23103 Comm: syz.3.5690 Not tainted syzkaller #0
[ 1012.263475][T23103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1012.273628][T23103] Call Trace:
[ 1012.276909][T23103]  <TASK>
[ 1012.279842][T23103]  dump_stack_lvl+0x18c/0x250
[ 1012.284558][T23103]  ? show_regs_print_info+0x20/0x20
[ 1012.289846][T23103]  ? load_image+0x420/0x420
[ 1012.294349][T23103]  ? __might_sleep+0xe0/0xe0
[ 1012.298972][T23103]  ? __lock_acquire+0x7d40/0x7d40
[ 1012.304094][T23103]  should_fail_ex+0x39d/0x4d0
[ 1012.308862][T23103]  should_failslab+0x9/0x20
[ 1012.313537][T23103]  slab_pre_alloc_hook+0x59/0x310
[ 1012.318715][T23103]  ? __lock_acquire+0x7d40/0x7d40
[ 1012.323735][T23103]  ? kvmalloc_node+0x70/0x180
[ 1012.328434][T23103]  ? kvmalloc_node+0x70/0x180
[ 1012.333126][T23103]  __kmem_cache_alloc_node+0x53/0x250
[ 1012.338527][T23103]  ? __schedule_delayed_monitor_work+0x200/0x200
[ 1012.344873][T23103]  ? kvmalloc_node+0x70/0x180
[ 1012.349638][T23103]  __kmalloc_node+0xa4/0x230
[ 1012.354327][T23103]  kvmalloc_node+0x70/0x180
[ 1012.358846][T23103]  bpf_test_run_xdp_live+0x1c2/0x1b20
[ 1012.364360][T23103]  ? 0xffffffffa0004080
[ 1012.368520][T23103]  ? 0xffffffffa0004080
[ 1012.372685][T23103]  ? bpf_dispatcher_change_prog+0xcbf/0xf10
[ 1012.378573][T23103]  ? 0xffffffffa0004080
[ 1012.382728][T23103]  ? xdp_convert_md_to_buff+0x330/0x330
[ 1012.388378][T23103]  ? trace_raw_output_bpf_test_finish+0xd0/0xd0
[ 1012.394883][T23103]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1012.400369][T23103]  bpf_prog_test_run_xdp+0x7ca/0x10e0
[ 1012.405785][T23103]  ? lock_chain_count+0x20/0x20
[ 1012.410741][T23103]  ? dev_put+0x80/0x80
[ 1012.415104][T23103]  ? dev_put+0x80/0x80
[ 1012.419427][T23103]  bpf_prog_test_run+0x321/0x390
[ 1012.424534][T23103]  __sys_bpf+0x49d/0x890
[ 1012.429172][T23103]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1012.434551][T23103]  ? lock_chain_count+0x20/0x20
[ 1012.439747][T23103]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1012.446378][T23103]  __x64_sys_bpf+0x7c/0x90
[ 1012.450979][T23103]  do_syscall_64+0x55/0xa0
[ 1012.455413][T23103]  ? clear_bhb_loop+0x40/0x90
[ 1012.460178][T23103]  ? clear_bhb_loop+0x40/0x90
[ 1012.464947][T23103]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1012.470958][T23103] RIP: 0033:0x7f9c97b9c819
[ 1012.475463][T23103] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1012.495859][T23103] RSP: 002b:00007f9c98b2a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1012.504279][T23103] RAX: ffffffffffffffda RBX: 00007f9c97e15fa0 RCX: 00007f9c97b9c819
[ 1012.512786][T23103] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[ 1012.521226][T23103] RBP: 00007f9c98b2a090 R08: 0000000000000000 R09: 0000000000000000
[ 1012.529298][T23103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1012.537459][T23103] R13: 00007f9c97e16038 R14: 00007f9c97e15fa0 R15: 00007ffd45a569b8
[ 1012.545656][T23103]  </TASK>
[ 1012.763261][T23113] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5692'.
[ 1013.066257][T23117] netlink: 'syz.0.5694': attribute type 21 has an invalid length.
[ 1013.074776][T23117] netlink: 164 bytes leftover after parsing attributes in process `syz.0.5694'.
[ 1013.285260][T23129] netlink: 'syz.2.5697': attribute type 3 has an invalid length.
[ 1013.296118][T23129] netlink: 'syz.2.5697': attribute type 1 has an invalid length.
[ 1013.304080][T23129] netlink: 116 bytes leftover after parsing attributes in process `syz.2.5697'.
[ 1013.313696][T23129] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[ 1014.577121][T23155] netlink: 'syz.2.5706': attribute type 29 has an invalid length.
[ 1014.597113][T23155] netlink: 'syz.2.5706': attribute type 29 has an invalid length.
[ 1014.624513][T23155] netlink: 'syz.2.5706': attribute type 29 has an invalid length.
[ 1014.647062][T23158] netlink: 'syz.1.5705': attribute type 21 has an invalid length.
[ 1014.675341][T23158] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5705'.
[ 1014.954083][T23174] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.5711'.
[ 1014.976625][T23174] bridge_slave_1: default FDB implementation only supports local addresses
[ 1016.110570][T23193] netlink: 'syz.0.5718': attribute type 21 has an invalid length.
[ 1016.133153][T23193] netlink: 164 bytes leftover after parsing attributes in process `syz.0.5718'.
[ 1016.189618][T23196] netlink: 'syz.3.5719': attribute type 29 has an invalid length.
[ 1016.215792][T23196] netlink: 'syz.3.5719': attribute type 29 has an invalid length.
[ 1016.242419][T23199] netlink: 208092 bytes leftover after parsing attributes in process `syz.1.5720'.
[ 1017.046652][T23222] netlink: 164 bytes leftover after parsing attributes in process `syz.2.5728'.
[ 1017.722550][T23228] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5730'.
[ 1017.776113][T23236] netlink: 208092 bytes leftover after parsing attributes in process `syz.2.5733'.
[ 1018.933695][T23259] validate_nla: 13 callbacks suppressed
[ 1018.933731][T23259] netlink: 'syz.0.5747': attribute type 29 has an invalid length.
[ 1019.007779][T23259] netlink: 'syz.0.5747': attribute type 29 has an invalid length.
[ 1019.030886][T23259] netlink: 'syz.0.5747': attribute type 29 has an invalid length.
[ 1019.052296][T23256] netlink: 'syz.0.5747': attribute type 29 has an invalid length.
[ 1019.064588][T23256] netlink: 'syz.0.5747': attribute type 29 has an invalid length.
[ 1019.109037][T23254] netlink: 'syz.3.5739': attribute type 10 has an invalid length.
[ 1019.352494][T23264] netlink: 'syz.1.5741': attribute type 21 has an invalid length.
[ 1019.389533][T23264] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5741'.
[ 1019.556928][T23274] netlink: 'syz.3.5744': attribute type 21 has an invalid length.
[ 1019.589485][T23274] netlink: 164 bytes leftover after parsing attributes in process `syz.3.5744'.
[ 1019.607889][T23283] netlink: 132 bytes leftover after parsing attributes in process `syz.1.5749'.
[ 1019.620622][T23283] netlink: 16255 bytes leftover after parsing attributes in process `syz.1.5749'.
[ 1019.647910][T23283] netlink: 132 bytes leftover after parsing attributes in process `syz.1.5749'.
[ 1020.003896][T23298] netlink: 'syz.1.5752': attribute type 29 has an invalid length.
[ 1020.018829][T23298] netlink: 'syz.1.5752': attribute type 29 has an invalid length.
[ 1020.360376][T23307] FAULT_INJECTION: forcing a failure.
[ 1020.360376][T23307] name failslab, interval 1, probability 0, space 0, times 0
[ 1020.386016][T23307] CPU: 1 PID: 23307 Comm: syz.3.5757 Not tainted syzkaller #0
[ 1020.393635][T23307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1020.404072][T23307] Call Trace:
[ 1020.407495][T23307]  <TASK>
[ 1020.410460][T23307]  dump_stack_lvl+0x18c/0x250
[ 1020.415442][T23307]  ? sctp_sendmsg+0x1575/0x28c0
[ 1020.420428][T23307]  ? ___sys_sendmsg+0x2a6/0x360
[ 1020.425494][T23307]  ? show_regs_print_info+0x20/0x20
[ 1020.430740][T23307]  ? load_image+0x420/0x420
[ 1020.435292][T23307]  should_fail_ex+0x39d/0x4d0
[ 1020.440274][T23307]  should_failslab+0x9/0x20
[ 1020.444826][T23307]  slab_pre_alloc_hook+0x59/0x310
[ 1020.449898][T23307]  ? sctp_add_bind_addr+0x8c/0x360
[ 1020.455084][T23307]  __kmem_cache_alloc_node+0x53/0x250
[ 1020.460758][T23307]  ? sctp_add_bind_addr+0x8c/0x360
[ 1020.465995][T23307]  kmalloc_trace+0x2a/0xe0
[ 1020.470548][T23307]  sctp_add_bind_addr+0x8c/0x360
[ 1020.475607][T23307]  sctp_copy_local_addr_list+0x315/0x4f0
[ 1020.481465][T23307]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[ 1020.487302][T23307]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[ 1020.493518][T23307]  ? sctp_v4_is_any+0x35/0x60
[ 1020.498274][T23307]  ? sctp_copy_one_addr+0x8c/0x350
[ 1020.503422][T23307]  sctp_bind_addr_copy+0xb3/0x3c0
[ 1020.508477][T23307]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[ 1020.514936][T23307]  sctp_connect_new_asoc+0x2f9/0x6a0
[ 1020.520339][T23307]  ? __sctp_connect+0xd80/0xd80
[ 1020.525211][T23307]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1020.530692][T23307]  ? _local_bh_enable+0xa0/0xa0
[ 1020.535644][T23307]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[ 1020.541484][T23307]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[ 1020.547555][T23307]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[ 1020.553102][T23307]  ? security_sctp_bind_connect+0x89/0xb0
[ 1020.558840][T23307]  sctp_sendmsg+0x1575/0x28c0
[ 1020.563974][T23307]  ? sctp_getsockopt+0xb60/0xb60
[ 1020.569187][T23307]  ? aa_sk_perm+0x83c/0x970
[ 1020.573701][T23307]  ? aa_af_perm+0x330/0x330
[ 1020.578388][T23307]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[ 1020.584891][T23307]  ? sock_rps_record_flow+0x19/0x3f0
[ 1020.590185][T23307]  ? inet_sendmsg+0x7c/0x2f0
[ 1020.594873][T23307]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1020.600344][T23307]  ? security_socket_sendmsg+0x80/0xa0
[ 1020.605900][T23307]  ? inet_send_prepare+0x260/0x260
[ 1020.611018][T23307]  ____sys_sendmsg+0x5ba/0x960
[ 1020.615954][T23307]  ? __lock_acquire+0x7d40/0x7d40
[ 1020.621063][T23307]  ? __asan_memset+0x22/0x40
[ 1020.625739][T23307]  ? __sys_sendmsg_sock+0x30/0x30
[ 1020.631079][T23307]  ? __import_iovec+0x5f2/0x850
[ 1020.635933][T23307]  ? import_iovec+0x73/0xa0
[ 1020.640531][T23307]  ___sys_sendmsg+0x2a6/0x360
[ 1020.645199][T23307]  ? get_pid_task+0x20/0x1e0
[ 1020.649792][T23307]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1020.654594][T23307]  ? __lock_acquire+0x7d40/0x7d40
[ 1020.659724][T23307]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1020.664662][T23307]  ? __x64_sys_sendmsg+0x80/0x80
[ 1020.669644][T23307]  ? lockdep_hardirqs_on+0x98/0x150
[ 1020.675018][T23307]  do_syscall_64+0x55/0xa0
[ 1020.679474][T23307]  ? clear_bhb_loop+0x40/0x90
[ 1020.684156][T23307]  ? clear_bhb_loop+0x40/0x90
[ 1020.688847][T23307]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1020.694823][T23307] RIP: 0033:0x7f9c97b9c819
[ 1020.699258][T23307] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1020.719423][T23307] RSP: 002b:00007f9c98b2a028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1020.728143][T23307] RAX: ffffffffffffffda RBX: 00007f9c97e15fa0 RCX: 00007f9c97b9c819
[ 1020.736114][T23307] RDX: 0000000040004044 RSI: 0000200000000140 RDI: 0000000000000003
[ 1020.744503][T23307] RBP: 00007f9c98b2a090 R08: 0000000000000000 R09: 0000000000000000
[ 1020.752647][T23307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1020.760702][T23307] R13: 00007f9c97e16038 R14: 00007f9c97e15fa0 R15: 00007ffd45a569b8
[ 1020.768860][T23307]  </TASK>
[ 1021.349707][T23318] __nla_validate_parse: 1 callbacks suppressed
[ 1021.349731][T23318] netlink: 164 bytes leftover after parsing attributes in process `syz.3.5761'.
[ 1022.441785][T23340] netlink: 10 bytes leftover after parsing attributes in process `syz.3.5765'.
[ 1022.629982][T23342] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.5768'.
[ 1023.140892][T23349] netlink: 1 bytes leftover after parsing attributes in process `syz.1.5771'.
[ 1023.274569][T23352] mac80211_hwsim hwsim54 wlan1: entered promiscuous mode
[ 1023.285485][T23352] mac80211_hwsim hwsim54 wlan1: entered allmulticast mode
[ 1023.550220][T23356] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5774'.
[ 1024.775194][T23382] pim6reg: tun_chr_ioctl cmd 2147767521
[ 1025.014623][T23396] validate_nla: 11 callbacks suppressed
[ 1025.014663][T23396] netlink: 'syz.2.5788': attribute type 21 has an invalid length.
[ 1025.050578][T23396] netlink: 164 bytes leftover after parsing attributes in process `syz.2.5788'.
[ 1025.169750][T23402] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.5790'.
[ 1025.300497][T23407] netlink: 'syz.2.5792': attribute type 10 has an invalid length.
[ 1025.311332][T23407] netlink: 55 bytes leftover after parsing attributes in process `syz.2.5792'.
[ 1025.523200][T20036] Bluetooth: hci3: ISO packet for unknown connection handle 2622
[ 1026.166226][T20036] Bluetooth: hci1: command 0x0406 tx timeout
[ 1026.607126][T23420] netlink: 'syz.0.5796': attribute type 21 has an invalid length.
[ 1026.616243][T23420] netlink: 164 bytes leftover after parsing attributes in process `syz.0.5796'.
[ 1026.928450][T23436] netlink: 'syz.0.5801': attribute type 21 has an invalid length.
[ 1026.942636][T23436] netlink: 164 bytes leftover after parsing attributes in process `syz.0.5801'.
[ 1027.055642][T23442] netlink: 'syz.1.5797': attribute type 10 has an invalid length.
[ 1027.063481][T23441] netlink: 'syz.2.5803': attribute type 9 has an invalid length.
[ 1027.074309][T23441] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.5803'.
[ 1028.199134][T23470] netlink: 'syz.2.5812': attribute type 21 has an invalid length.
[ 1028.208443][T23470] netlink: 164 bytes leftover after parsing attributes in process `syz.2.5812'.
[ 1028.644445][T23477] netlink: 'syz.3.5814': attribute type 29 has an invalid length.
[ 1028.666972][T23477] netlink: 'syz.3.5814': attribute type 29 has an invalid length.
[ 1028.709807][T23482] netlink: 'syz.3.5814': attribute type 29 has an invalid length.
[ 1029.030879][T23488] FAULT_INJECTION: forcing a failure.
[ 1029.030879][T23488] name failslab, interval 1, probability 0, space 0, times 0
[ 1029.060686][T23488] CPU: 1 PID: 23488 Comm: syz.0.5816 Not tainted syzkaller #0
[ 1029.068230][T23488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1029.078326][T23488] Call Trace:
[ 1029.081797][T23488]  <TASK>
[ 1029.084839][T23488]  dump_stack_lvl+0x18c/0x250
[ 1029.089639][T23488]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1029.096801][T23488]  ? show_regs_print_info+0x20/0x20
[ 1029.102391][T23488]  ? load_image+0x420/0x420
[ 1029.107046][T23488]  should_fail_ex+0x39d/0x4d0
[ 1029.111754][T23488]  should_failslab+0x9/0x20
[ 1029.116289][T23488]  slab_pre_alloc_hook+0x59/0x310
[ 1029.121350][T23488]  kmem_cache_alloc_node+0x60/0x320
[ 1029.126568][T23488]  ? __alloc_skb+0x103/0x2c0
[ 1029.131180][T23488]  __alloc_skb+0x103/0x2c0
[ 1029.135709][T23488]  alloc_skb_with_frags+0xca/0x7b0
[ 1029.140852][T23488]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[ 1029.147506][T23488]  sock_alloc_send_pskb+0x883/0x9a0
[ 1029.152868][T23488]  ? sock_kzfree_s+0x50/0x50
[ 1029.157648][T23488]  ? __lock_acquire+0x7d40/0x7d40
[ 1029.162809][T23488]  ? sock_def_readable+0xad/0x420
[ 1029.167880][T23488]  ? sock_def_readable+0xad/0x420
[ 1029.173002][T23488]  ? sock_def_readable+0x2ac/0x420
[ 1029.178219][T23488]  unix_stream_sendmsg+0x48b/0xbf0
[ 1029.183418][T23488]  ? unix_show_fdinfo+0x270/0x270
[ 1029.188461][T23488]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[ 1029.194903][T23488]  ? __might_fault+0xaa/0x120
[ 1029.199785][T23488]  ? aa_sock_msg_perm+0x94/0x150
[ 1029.204751][T23488]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1029.210231][T23488]  ? security_socket_sendmsg+0x80/0xa0
[ 1029.215829][T23488]  ? unix_show_fdinfo+0x270/0x270
[ 1029.221158][T23488]  ____sys_sendmsg+0x5ba/0x960
[ 1029.226041][T23488]  ? __sanitizer_cov_trace_const_cmp4+0x8/0x90
[ 1029.232427][T23488]  ? __sys_sendmsg_sock+0x30/0x30
[ 1029.237790][T23488]  ? __import_iovec+0x3fa/0x850
[ 1029.242938][T23488]  ? import_iovec+0x73/0xa0
[ 1029.247495][T23488]  ___sys_sendmsg+0x2a6/0x360
[ 1029.252227][T23488]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1029.257158][T23488]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1029.262036][T23488]  ? __x64_sys_sendmsg+0x80/0x80
[ 1029.267362][T23488]  ? syscall_enter_from_user_mode+0x2e/0x80
[ 1029.273301][T23488]  do_syscall_64+0x55/0xa0
[ 1029.277734][T23488]  ? clear_bhb_loop+0x40/0x90
[ 1029.282548][T23488]  ? clear_bhb_loop+0x40/0x90
[ 1029.287250][T23488]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1029.293246][T23488] RIP: 0033:0x7f541039c819
[ 1029.297712][T23488] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1029.317516][T23488] RSP: 002b:00007f541130d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1029.326061][T23488] RAX: ffffffffffffffda RBX: 00007f5410615fa0 RCX: 00007f541039c819
[ 1029.334402][T23488] RDX: 0000000000000000 RSI: 0000200000000b00 RDI: 0000000000000008
[ 1029.342476][T23488] RBP: 00007f541130d090 R08: 0000000000000000 R09: 0000000000000000
[ 1029.350471][T23488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1029.358460][T23488] R13: 00007f5410616038 R14: 00007f5410615fa0 R15: 00007ffcd55a9428
[ 1029.366554][T23488]  </TASK>
[ 1029.446080][T23484] delete_channel: no stack
[ 1030.553978][T23503] validate_nla: 9 callbacks suppressed
[ 1030.554002][T23503] netlink: 'syz.1.5822': attribute type 21 has an invalid length.
[ 1030.569643][T23503] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5822'.
[ 1030.717959][T23516] netlink: 'syz.3.5827': attribute type 10 has an invalid length.
[ 1030.726209][T23516] netlink: 55 bytes leftover after parsing attributes in process `syz.3.5827'.
[ 1031.303173][T23542] netlink: 'syz.2.5831': attribute type 9 has an invalid length.
[ 1031.324805][T23542] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.5831'.
[ 1031.360489][T23521] netlink: 'syz.0.5829': attribute type 39 has an invalid length.
[ 1031.473012][T23532] syzkaller0: entered promiscuous mode
[ 1031.479686][T23532] syzkaller0: entered allmulticast mode
[ 1031.491407][T23535] netlink: 'syz.2.5831': attribute type 10 has an invalid length.
[ 1031.874089][T23541] syzkaller0: mtu greater than device maximum
[ 1031.989067][T23544] netlink: 'syz.2.5831': attribute type 9 has an invalid length.
[ 1032.022876][T23544] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.5831'.
[ 1032.393184][T23556] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.5832'.
[ 1032.718909][T23562] netlink: 'syz.2.5837': attribute type 21 has an invalid length.
[ 1032.742967][T23562] netlink: 164 bytes leftover after parsing attributes in process `syz.2.5837'.
[ 1033.118542][T23566] netlink: 'syz.1.5840': attribute type 10 has an invalid length.
[ 1033.136188][T23566] netlink: 55 bytes leftover after parsing attributes in process `syz.1.5840'.
[ 1034.042946][T23577] netlink: 'syz.0.5841': attribute type 10 has an invalid length.
[ 1034.091048][T23565] delete_channel: no stack
[ 1034.987541][T23584] FAULT_INJECTION: forcing a failure.
[ 1034.987541][T23584] name failslab, interval 1, probability 0, space 0, times 0
[ 1035.005261][T23584] CPU: 0 PID: 23584 Comm: syz.0.5843 Not tainted syzkaller #0
[ 1035.013211][T23584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1035.023530][T23584] Call Trace:
[ 1035.027002][T23584]  <TASK>
[ 1035.030046][T23584]  dump_stack_lvl+0x18c/0x250
[ 1035.034847][T23584]  ? show_regs_print_info+0x20/0x20
[ 1035.040315][T23584]  ? load_image+0x420/0x420
[ 1035.044863][T23584]  ? __might_sleep+0xe0/0xe0
[ 1035.049499][T23584]  ? __lock_acquire+0x7d40/0x7d40
[ 1035.054659][T23584]  should_fail_ex+0x39d/0x4d0
[ 1035.059387][T23584]  should_failslab+0x9/0x20
[ 1035.063963][T23584]  slab_pre_alloc_hook+0x59/0x310
[ 1035.069048][T23584]  ? __lock_acquire+0x7d40/0x7d40
[ 1035.074249][T23584]  ? kvmalloc_node+0x70/0x180
[ 1035.079273][T23584]  ? kvmalloc_node+0x70/0x180
[ 1035.084169][T23584]  __kmem_cache_alloc_node+0x53/0x250
[ 1035.089774][T23584]  ? __schedule_delayed_monitor_work+0x200/0x200
[ 1035.096176][T23584]  ? kvmalloc_node+0x70/0x180
[ 1035.100887][T23584]  __kmalloc_node+0xa4/0x230
[ 1035.105625][T23584]  kvmalloc_node+0x70/0x180
[ 1035.110361][T23584]  bpf_test_run_xdp_live+0x1c2/0x1b20
[ 1035.115795][T23584]  ? bpf_dispatcher_xdp+0x800/0x1000
[ 1035.121232][T23584]  ? bpf_dispatcher_xdp+0x800/0x1000
[ 1035.126771][T23584]  ? bpf_dispatcher_change_prog+0xcbf/0xf10
[ 1035.132693][T23584]  ? bpf_dispatcher_xdp+0x800/0x1000
[ 1035.138143][T23584]  ? xdp_convert_md_to_buff+0x330/0x330
[ 1035.143744][T23584]  ? trace_raw_output_bpf_test_finish+0xd0/0xd0
[ 1035.150273][T23584]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1035.156685][T23584]  bpf_prog_test_run_xdp+0x7ca/0x10e0
[ 1035.162334][T23584]  ? dev_put+0x80/0x80
[ 1035.166537][T23584]  ? dev_put+0x80/0x80
[ 1035.170651][T23584]  bpf_prog_test_run+0x321/0x390
[ 1035.175624][T23584]  __sys_bpf+0x49d/0x890
[ 1035.180151][T23584]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1035.185927][T23584]  ? lock_chain_count+0x20/0x20
[ 1035.190891][T23584]  __x64_sys_bpf+0x7c/0x90
[ 1035.195606][T23584]  do_syscall_64+0x55/0xa0
[ 1035.200055][T23584]  ? clear_bhb_loop+0x40/0x90
[ 1035.205017][T23584]  ? clear_bhb_loop+0x40/0x90
[ 1035.209734][T23584]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1035.215661][T23584] RIP: 0033:0x7f541039c819
[ 1035.220207][T23584] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1035.240233][T23584] RSP: 002b:00007f541130d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1035.248772][T23584] RAX: ffffffffffffffda RBX: 00007f5410615fa0 RCX: 00007f541039c819
[ 1035.256773][T23584] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[ 1035.264856][T23584] RBP: 00007f541130d090 R08: 0000000000000000 R09: 0000000000000000
[ 1035.272848][T23584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1035.280934][T23584] R13: 00007f5410616038 R14: 00007f5410615fa0 R15: 00007ffcd55a9428
[ 1035.289124][T23584]  </TASK>
[ 1035.434664][T23590] FAULT_INJECTION: forcing a failure.
[ 1035.434664][T23590] name failslab, interval 1, probability 0, space 0, times 0
[ 1035.465653][T23590] CPU: 1 PID: 23590 Comm: syz.1.5845 Not tainted syzkaller #0
[ 1035.473279][T23590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1035.481779][T23587] netlink: 'syz.3.5844': attribute type 10 has an invalid length.
[ 1035.483607][T23590] Call Trace:
[ 1035.483666][T23590]  <TASK>
[ 1035.483676][T23590]  dump_stack_lvl+0x18c/0x250
[ 1035.483707][T23590]  ? sctp_sendmsg+0x1575/0x28c0
[ 1035.483728][T23590]  ? ___sys_sendmsg+0x2a6/0x360
[ 1035.483748][T23590]  ? show_regs_print_info+0x20/0x20
[ 1035.517816][T23590]  ? load_image+0x420/0x420
[ 1035.522465][T23590]  should_fail_ex+0x39d/0x4d0
[ 1035.527295][T23590]  should_failslab+0x9/0x20
[ 1035.531828][T23590]  slab_pre_alloc_hook+0x59/0x310
[ 1035.536890][T23590]  ? sctp_add_bind_addr+0x8c/0x360
[ 1035.542016][T23590]  __kmem_cache_alloc_node+0x53/0x250
[ 1035.547629][T23590]  ? sctp_add_bind_addr+0x8c/0x360
[ 1035.549111][T23593] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.5844'.
[ 1035.552844][T23590]  kmalloc_trace+0x2a/0xe0
[ 1035.552877][T23590]  sctp_add_bind_addr+0x8c/0x360
[ 1035.552899][T23590]  sctp_copy_local_addr_list+0x315/0x4f0
[ 1035.577430][T23590]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[ 1035.583259][T23590]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[ 1035.589441][T23590]  ? sctp_v6_is_any+0x64/0x70
[ 1035.594157][T23590]  ? sctp_copy_one_addr+0x8c/0x350
[ 1035.599380][T23590]  sctp_bind_addr_copy+0xb3/0x3c0
[ 1035.604600][T23590]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[ 1035.611147][T23590]  sctp_connect_new_asoc+0x2f9/0x6a0
[ 1035.616724][T23590]  ? __sctp_connect+0xd80/0xd80
[ 1035.621865][T23590]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1035.627782][T23590]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[ 1035.633423][T23590]  ? security_sctp_bind_connect+0x89/0xb0
[ 1035.639202][T23590]  sctp_sendmsg+0x1575/0x28c0
[ 1035.643909][T23590]  ? sctp_getsockopt+0xb60/0xb60
[ 1035.649030][T23590]  ? aa_sk_perm+0x83c/0x970
[ 1035.653543][T23590]  ? aa_af_perm+0x330/0x330
[ 1035.658216][T23590]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[ 1035.664812][T23590]  ? sock_rps_record_flow+0x19/0x3f0
[ 1035.670108][T23590]  ? inet_sendmsg+0xe9/0x2f0
[ 1035.674702][T23590]  ? inet_send_prepare+0x260/0x260
[ 1035.679824][T23590]  ____sys_sendmsg+0x5ba/0x960
[ 1035.684756][T23590]  ? __lock_acquire+0x7d40/0x7d40
[ 1035.689779][T23590]  ? __asan_memset+0x22/0x40
[ 1035.694629][T23590]  ? __sys_sendmsg_sock+0x30/0x30
[ 1035.699867][T23590]  ? __import_iovec+0x5f2/0x850
[ 1035.704824][T23590]  ? import_iovec+0x73/0xa0
[ 1035.709498][T23590]  ___sys_sendmsg+0x2a6/0x360
[ 1035.714259][T23590]  ? get_pid_task+0x20/0x1e0
[ 1035.718851][T23590]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1035.723655][T23590]  ? __lock_acquire+0x7d40/0x7d40
[ 1035.728700][T23590]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1035.733560][T23590]  ? __x64_sys_sendmsg+0x80/0x80
[ 1035.738605][T23590]  ? lockdep_hardirqs_on+0x98/0x150
[ 1035.744027][T23590]  do_syscall_64+0x55/0xa0
[ 1035.748470][T23590]  ? clear_bhb_loop+0x40/0x90
[ 1035.753231][T23590]  ? clear_bhb_loop+0x40/0x90
[ 1035.758007][T23590]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1035.763990][T23590] RIP: 0033:0x7f7dc799c819
[ 1035.768411][T23590] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1035.788731][T23590] RSP: 002b:00007f7dc5bf6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1035.797322][T23590] RAX: ffffffffffffffda RBX: 00007f7dc7c15fa0 RCX: 00007f7dc799c819
[ 1035.805390][T23590] RDX: 0000000000000041 RSI: 0000200000002dc0 RDI: 0000000000000003
[ 1035.813528][T23590] RBP: 00007f7dc5bf6090 R08: 0000000000000000 R09: 0000000000000000
[ 1035.821518][T23590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1035.830027][T23590] R13: 00007f7dc7c16038 R14: 00007f7dc7c15fa0 R15: 00007ffd3b6432e8
[ 1035.838275][T23590]  </TASK>
[ 1035.997642][T23596] validate_nla: 1 callbacks suppressed
[ 1035.997659][T23596] netlink: 'syz.3.5844': attribute type 9 has an invalid length.
[ 1036.013988][T23596] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.5844'.
[ 1036.069198][T23599] netlink: 'syz.1.5847': attribute type 21 has an invalid length.
[ 1036.098802][T23599] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5847'.
[ 1036.313736][T23609] netlink: 1 bytes leftover after parsing attributes in process `syz.1.5850'.
[ 1036.697048][T23613] netlink: 207508 bytes leftover after parsing attributes in process `syz.3.5851'.
[ 1036.789587][T23618] netlink: 'syz.0.5855': attribute type 10 has an invalid length.
[ 1036.792484][T23622] FAULT_INJECTION: forcing a failure.
[ 1036.792484][T23622] name failslab, interval 1, probability 0, space 0, times 0
[ 1036.811748][T23622] CPU: 1 PID: 23622 Comm: syz.1.5856 Not tainted syzkaller #0
[ 1036.819613][T23622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1036.826884][T23618] netlink: 55 bytes leftover after parsing attributes in process `syz.0.5855'.
[ 1036.830457][T23622] Call Trace:
[ 1036.830473][T23622]  <TASK>
[ 1036.830481][T23622]  dump_stack_lvl+0x18c/0x250
[ 1036.830516][T23622]  ? show_regs_print_info+0x20/0x20
[ 1036.856673][T23622]  ? load_image+0x420/0x420
[ 1036.861327][T23622]  ? __might_sleep+0xe0/0xe0
[ 1036.865939][T23622]  ? __lock_acquire+0x7d40/0x7d40
[ 1036.871074][T23622]  should_fail_ex+0x39d/0x4d0
[ 1036.875892][T23622]  should_failslab+0x9/0x20
[ 1036.880493][T23622]  slab_pre_alloc_hook+0x59/0x310
[ 1036.885708][T23622]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1036.891423][T23622]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1036.897592][T23622]  __kmem_cache_alloc_node+0x53/0x250
[ 1036.903432][T23622]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1036.909929][T23622]  __kmalloc+0xa4/0x230
[ 1036.914215][T23622]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 1036.920315][T23622]  tomoyo_path_number_perm+0x248/0x620
[ 1036.926250][T23622]  ? tomoyo_path_number_perm+0x217/0x620
[ 1036.932531][T23622]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 1036.938002][T23622]  ? ksys_write+0x1c4/0x260
[ 1036.942546][T23622]  ? __fget_files+0x28/0x4b0
[ 1036.947319][T23622]  ? __fget_files+0x28/0x4b0
[ 1036.952006][T23622]  security_file_ioctl+0x70/0xa0
[ 1036.956946][T23622]  __se_sys_ioctl+0x48/0x170
[ 1036.961711][T23622]  do_syscall_64+0x55/0xa0
[ 1036.966208][T23622]  ? clear_bhb_loop+0x40/0x90
[ 1036.970967][T23622]  ? clear_bhb_loop+0x40/0x90
[ 1036.975727][T23622]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1036.981703][T23622] RIP: 0033:0x7f7dc799c819
[ 1036.986393][T23622] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1037.006804][T23622] RSP: 002b:00007f7dc5bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1037.015592][T23622] RAX: ffffffffffffffda RBX: 00007f7dc7c15fa0 RCX: 00007f7dc799c819
[ 1037.023583][T23622] RDX: 0000200000000040 RSI: 00000000000089e0 RDI: 0000000000000006
[ 1037.031579][T23622] RBP: 00007f7dc5bf6090 R08: 0000000000000000 R09: 0000000000000000
[ 1037.039592][T23622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1037.047671][T23622] R13: 00007f7dc7c16038 R14: 00007f7dc7c15fa0 R15: 00007ffd3b6432e8
[ 1037.056086][T23622]  </TASK>
[ 1037.107007][T23622] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1037.448331][T23633] netlink: 'syz.1.5860': attribute type 9 has an invalid length.
[ 1037.457133][T23633] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.5860'.
[ 1037.610433][T23629] netlink: 'syz.3.5859': attribute type 21 has an invalid length.
[ 1037.639722][T23629] netlink: 164 bytes leftover after parsing attributes in process `syz.3.5859'.
[ 1037.684421][T23631] netlink: 'syz.1.5860': attribute type 10 has an invalid length.
[ 1038.216345][T23634] netlink: 'syz.1.5860': attribute type 9 has an invalid length.
[ 1038.261043][T23634] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.5860'.
[ 1038.474314][T23642] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5862'.
[ 1039.011649][T23656] netlink: 'syz.2.5867': attribute type 10 has an invalid length.
[ 1039.025440][T23656] batman_adv: batadv0: Removing interface: netdevsim0
[ 1039.184591][T23656] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1039.224153][T23658] netlink: 'syz.1.5869': attribute type 21 has an invalid length.
[ 1039.255326][T23658] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5869'.
[ 1039.475978][T23671] netlink: 'syz.0.5870': attribute type 10 has an invalid length.
[ 1039.554811][T23675] FAULT_INJECTION: forcing a failure.
[ 1039.554811][T23675] name failslab, interval 1, probability 0, space 0, times 0
[ 1039.614569][T23675] CPU: 1 PID: 23675 Comm: syz.3.5874 Not tainted syzkaller #0
[ 1039.622438][T23675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1039.632784][T23675] Call Trace:
[ 1039.636116][T23675]  <TASK>
[ 1039.639155][T23675]  dump_stack_lvl+0x18c/0x250
[ 1039.643888][T23675]  ? sctp_sendmsg+0x1575/0x28c0
[ 1039.648882][T23675]  ? ___sys_sendmsg+0x2a6/0x360
[ 1039.654057][T23675]  ? show_regs_print_info+0x20/0x20
[ 1039.659748][T23675]  ? load_image+0x420/0x420
[ 1039.664563][T23675]  should_fail_ex+0x39d/0x4d0
[ 1039.669303][T23675]  should_failslab+0x9/0x20
[ 1039.673847][T23675]  slab_pre_alloc_hook+0x59/0x310
[ 1039.679035][T23675]  ? sctp_add_bind_addr+0x8c/0x360
[ 1039.684353][T23675]  __kmem_cache_alloc_node+0x53/0x250
[ 1039.689766][T23675]  ? sctp_add_bind_addr+0x8c/0x360
[ 1039.694913][T23675]  kmalloc_trace+0x2a/0xe0
[ 1039.699350][T23675]  sctp_add_bind_addr+0x8c/0x360
[ 1039.704295][T23675]  sctp_copy_local_addr_list+0x315/0x4f0
[ 1039.709928][T23675]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[ 1039.715642][T23675]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[ 1039.721826][T23675]  ? sctp_v4_is_any+0x35/0x60
[ 1039.726515][T23675]  ? sctp_copy_one_addr+0x8c/0x350
[ 1039.731628][T23675]  sctp_bind_addr_copy+0xb3/0x3c0
[ 1039.736650][T23675]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[ 1039.743070][T23675]  sctp_connect_new_asoc+0x2f9/0x6a0
[ 1039.748581][T23675]  ? __sctp_connect+0xd80/0xd80
[ 1039.753899][T23675]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1039.759375][T23675]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[ 1039.765011][T23675]  ? security_sctp_bind_connect+0x89/0xb0
[ 1039.770736][T23675]  sctp_sendmsg+0x1575/0x28c0
[ 1039.775509][T23675]  ? sctp_getsockopt+0xb60/0xb60
[ 1039.780445][T23675]  ? aa_sk_perm+0x83c/0x970
[ 1039.785141][T23675]  ? aa_af_perm+0x330/0x330
[ 1039.789645][T23675]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[ 1039.796085][T23675]  ? sock_rps_record_flow+0x19/0x3f0
[ 1039.801383][T23675]  ? inet_sendmsg+0xe9/0x2f0
[ 1039.805983][T23675]  ? inet_send_prepare+0x260/0x260
[ 1039.811574][T23675]  ____sys_sendmsg+0x5ba/0x960
[ 1039.816459][T23675]  ? __lock_acquire+0x7d40/0x7d40
[ 1039.821693][T23675]  ? __asan_memset+0x22/0x40
[ 1039.826289][T23675]  ? __sys_sendmsg_sock+0x30/0x30
[ 1039.831517][T23675]  ? __import_iovec+0x5f2/0x850
[ 1039.836425][T23675]  ? import_iovec+0x73/0xa0
[ 1039.841049][T23675]  ___sys_sendmsg+0x2a6/0x360
[ 1039.845761][T23675]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1039.850555][T23675]  ? trace_call_bpf+0xc3/0x6c0
[ 1039.855348][T23675]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1039.860374][T23675]  ? __x64_sys_sendmsg+0x80/0x80
[ 1039.865321][T23675]  ? lockdep_hardirqs_on+0x98/0x150
[ 1039.870609][T23675]  do_syscall_64+0x55/0xa0
[ 1039.875028][T23675]  ? clear_bhb_loop+0x40/0x90
[ 1039.879700][T23675]  ? clear_bhb_loop+0x40/0x90
[ 1039.884472][T23675]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1039.890365][T23675] RIP: 0033:0x7f9c97b9c819
[ 1039.894804][T23675] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1039.915179][T23675] RSP: 002b:00007f9c98b2a028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1039.923698][T23675] RAX: ffffffffffffffda RBX: 00007f9c97e15fa0 RCX: 00007f9c97b9c819
[ 1039.932010][T23675] RDX: 00000000000003e8 RSI: 00002000000004c0 RDI: 0000000000000004
[ 1039.939981][T23675] RBP: 00007f9c98b2a090 R08: 0000000000000000 R09: 0000000000000000
[ 1039.948210][T23675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1039.956186][T23675] R13: 00007f9c97e16038 R14: 00007f9c97e15fa0 R15: 00007ffd45a569b8
[ 1039.964163][T23675]  </TASK>
[ 1040.055554][T23674] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5881'.
[ 1040.559132][T23690] netlink: 55 bytes leftover after parsing attributes in process `syz.1.5879'.
[ 1040.679578][T23698] batman_adv: batadv0: Removing interface: netdevsim0
[ 1040.859010][T23698] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1040.882825][T23700] netlink: 193500 bytes leftover after parsing attributes in process `syz.2.5884'.
[ 1041.001474][T23704] netlink: 207508 bytes leftover after parsing attributes in process `syz.1.5885'.
[ 1041.044821][T23707] dvmrp1: tun_chr_ioctl cmd 2148553947
[ 1041.150978][T23714] FAULT_INJECTION: forcing a failure.
[ 1041.150978][T23714] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1041.176448][T23714] CPU: 1 PID: 23714 Comm: syz.1.5889 Not tainted syzkaller #0
[ 1041.184405][T23714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1041.194669][T23714] Call Trace:
[ 1041.197983][T23714]  <TASK>
[ 1041.200955][T23714]  dump_stack_lvl+0x18c/0x250
[ 1041.205685][T23714]  ? show_regs_print_info+0x20/0x20
[ 1041.210938][T23714]  ? load_image+0x420/0x420
[ 1041.215676][T23714]  ? __might_fault+0xaa/0x120
[ 1041.220944][T23714]  ? __lock_acquire+0x7d40/0x7d40
[ 1041.226189][T23714]  should_fail_ex+0x39d/0x4d0
[ 1041.230919][T23714]  _copy_from_user+0x2f/0xe0
[ 1041.235739][T23714]  ___sys_sendmsg+0x1c7/0x360
[ 1041.235767][T23714]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1041.235797][T23714]  ? trace_call_bpf+0xc3/0x6c0
[ 1041.235819][T23714]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1041.235858][T23714]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1041.261823][T23714]  ? __x64_sys_sendmsg+0x80/0x80
[ 1041.266862][T23714]  ? lockdep_hardirqs_on+0x98/0x150
[ 1041.272257][T23714]  do_syscall_64+0x55/0xa0
[ 1041.276794][T23714]  ? clear_bhb_loop+0x40/0x90
[ 1041.281787][T23714]  ? clear_bhb_loop+0x40/0x90
[ 1041.287581][T23714]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1041.293896][T23714] RIP: 0033:0x7f7dc799c819
[ 1041.298506][T23714] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1041.319430][T23714] RSP: 002b:00007f7dc5bf6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1041.327947][T23714] RAX: ffffffffffffffda RBX: 00007f7dc7c15fa0 RCX: 00007f7dc799c819
[ 1041.336198][T23714] RDX: 00000000000080d1 RSI: 0000200000000140 RDI: 000000000000000a
[ 1041.344346][T23714] RBP: 00007f7dc5bf6090 R08: 0000000000000000 R09: 0000000000000000
[ 1041.352877][T23714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1041.360882][T23714] R13: 00007f7dc7c16038 R14: 00007f7dc7c15fa0 R15: 00007ffd3b6432e8
[ 1041.369282][T23714]  </TASK>
[ 1041.548182][T23723] validate_nla: 4 callbacks suppressed
[ 1041.548200][T23723] netlink: 'syz.1.5893': attribute type 10 has an invalid length.
[ 1041.562297][T23723] netlink: 55 bytes leftover after parsing attributes in process `syz.1.5893'.
[ 1041.629476][T23725] netlink: 'syz.2.5890': attribute type 21 has an invalid length.
[ 1041.913216][T23732] netlink: 'syz.3.5895': attribute type 10 has an invalid length.
[ 1041.924301][T23732] batman_adv: batadv0: Removing interface: netdevsim0
[ 1041.954062][T23735] netlink: 'syz.2.5897': attribute type 3 has an invalid length.
[ 1042.033374][T23732] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1042.324105][T23741] netlink: get zone limit has 4 unknown bytes
[ 1042.521800][T23753] lo: entered allmulticast mode
[ 1042.614454][T23757] netlink: 'syz.3.5905': attribute type 10 has an invalid length.
[ 1042.623133][T23757] __nla_validate_parse: 4 callbacks suppressed
[ 1042.623146][T23757] netlink: 55 bytes leftover after parsing attributes in process `syz.3.5905'.
[ 1043.058854][T23761] netlink: 'syz.1.5906': attribute type 21 has an invalid length.
[ 1043.074542][T23761] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5906'.
[ 1043.107999][T23768] netlink: 1 bytes leftover after parsing attributes in process `syz.2.5909'.
[ 1043.260113][T23771] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.5910'.
[ 1043.319762][T23772] netlink: 'syz.1.5911': attribute type 10 has an invalid length.
[ 1043.364569][T23772] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1043.366932][T23775] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1043.663187][T23782] netlink: 'syz.2.5915': attribute type 29 has an invalid length.
[ 1043.679843][T23782] netlink: 'syz.2.5915': attribute type 29 has an invalid length.
[ 1043.702426][T23786] netlink: 'syz.2.5915': attribute type 29 has an invalid length.
[ 1044.048606][T23802] netlink: 164 bytes leftover after parsing attributes in process `syz.3.5920'.
[ 1044.243971][T23806] netlink: 1 bytes leftover after parsing attributes in process `syz.1.5921'.
[ 1044.342809][T23810] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1044.350703][T23810] IPv6: NLM_F_CREATE should be set when creating new route
[ 1044.358454][T23810] IPv6: NLM_F_CREATE should be set when creating new route
[ 1044.366159][T23810] IPv6: NLM_F_CREATE should be set when creating new route
[ 1044.834642][T23832] netlink: 14 bytes leftover after parsing attributes in process `syz.1.5931'.
[ 1044.845473][T23832] netlink: get zone limit has 4 unknown bytes
[ 1045.023182][T23841] netlink: 164 bytes leftover after parsing attributes in process `syz.2.5933'.
[ 1047.208053][T23868] bond0: (slave netdevsim0): Releasing backup interface
[ 1047.237281][T23868] batman_adv: batadv0: Adding interface: netdevsim0
[ 1047.244127][T23868] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1047.277059][T23868] batman_adv: batadv0: Not using interface netdevsim0 (retrying later): interface not active
[ 1047.366678][T23877] delete_channel: no stack
[ 1047.455991][T23884] netlink: 1 bytes leftover after parsing attributes in process `syz.2.5946'.
[ 1047.501722][T23880] validate_nla: 8 callbacks suppressed
[ 1047.501792][T23880] netlink: 'syz.3.5944': attribute type 21 has an invalid length.
[ 1047.520989][T23880] netlink: 164 bytes leftover after parsing attributes in process `syz.3.5944'.
[ 1048.083509][T23888] netlink: 14 bytes leftover after parsing attributes in process `syz.2.5947'.
[ 1048.106612][T23888] netlink: get zone limit has 4 unknown bytes
[ 1048.137737][T23896] netlink: 'syz.3.5948': attribute type 29 has an invalid length.
[ 1048.158260][T23895] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5950'.
[ 1048.179831][T23896] netlink: 'syz.3.5948': attribute type 29 has an invalid length.
[ 1048.416080][T23900] netlink: 'syz.0.5951': attribute type 10 has an invalid length.
[ 1048.435324][T23900] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5951'.
[ 1048.455387][T23900] team0: entered promiscuous mode
[ 1048.465129][T23900] team_slave_0: entered promiscuous mode
[ 1048.495214][T23900] team_slave_1: entered promiscuous mode
[ 1048.501353][T23900] virt_wifi0: entered promiscuous mode
[ 1048.535268][T23900] mac80211_hwsim hwsim56 wlan1: entered promiscuous mode
[ 1048.557515][T23900] team0: entered allmulticast mode
[ 1048.562733][T23900] team_slave_0: entered allmulticast mode
[ 1048.575050][T23900] team_slave_1: entered allmulticast mode
[ 1048.585042][T23900] virt_wifi0: entered allmulticast mode
[ 1048.590855][T23900] mac80211_hwsim hwsim56 wlan1: entered allmulticast mode
[ 1048.613356][T23900] bridge0: port 3(team0) entered blocking state
[ 1048.630365][T23900] bridge0: port 3(team0) entered disabled state
[ 1048.657810][T23900] bridge0: port 3(team0) entered blocking state
[ 1048.664291][T23900] bridge0: port 3(team0) entered forwarding state
[ 1049.327930][T23913] netlink: 1 bytes leftover after parsing attributes in process `syz.0.5955'.
[ 1049.474541][T23919] netlink: 'syz.0.5958': attribute type 10 has an invalid length.
[ 1049.484233][T23919] netlink: 55 bytes leftover after parsing attributes in process `syz.0.5958'.
[ 1049.499086][T23915] netlink: 'syz.3.5956': attribute type 21 has an invalid length.
[ 1049.547898][T23915] netlink: 164 bytes leftover after parsing attributes in process `syz.3.5956'.
[ 1049.742015][T23927] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.5961'.
[ 1050.183494][ T5770] Bluetooth: hci4: ACL packet for unknown connection handle 0
[ 1051.354080][T23947] netlink: 1 bytes leftover after parsing attributes in process `syz.1.5967'.
[ 1051.573378][T23958] netlink: 'syz.2.5969': attribute type 21 has an invalid length.
[ 1051.614187][T23958] netlink: 164 bytes leftover after parsing attributes in process `syz.2.5969'.
[ 1051.796782][T23964] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.5972'.
[ 1051.997887][T23971] netlink: 'syz.0.5976': attribute type 10 has an invalid length.
[ 1052.100134][T23971] ip6gretap0: refused to change device tx_queue_len
[ 1052.816385][T24000] FAULT_INJECTION: forcing a failure.
[ 1052.816385][T24000] name failslab, interval 1, probability 0, space 0, times 0
[ 1052.834061][T24000] CPU: 1 PID: 24000 Comm: syz.2.5986 Not tainted syzkaller #0
[ 1052.842380][T24000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1052.853806][T24000] Call Trace:
[ 1052.857179][T24000]  <TASK>
[ 1052.860126][T24000]  dump_stack_lvl+0x18c/0x250
[ 1052.864898][T24000]  ? show_regs_print_info+0x20/0x20
[ 1052.870275][T24000]  ? load_image+0x420/0x420
[ 1052.874776][T24000]  ? __might_sleep+0xe0/0xe0
[ 1052.879536][T24000]  ? __lock_acquire+0x7d40/0x7d40
[ 1052.884645][T24000]  should_fail_ex+0x39d/0x4d0
[ 1052.889354][T24000]  should_failslab+0x9/0x20
[ 1052.894061][T24000]  slab_pre_alloc_hook+0x59/0x310
[ 1052.899228][T24000]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1052.905218][T24000]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1052.911020][T24000]  __kmem_cache_alloc_node+0x53/0x250
[ 1052.916870][T24000]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1052.922810][T24000]  __kmalloc+0xa4/0x230
[ 1052.926998][T24000]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 1052.932554][T24000]  tomoyo_path_number_perm+0x248/0x620
[ 1052.938075][T24000]  ? tomoyo_path_number_perm+0x217/0x620
[ 1052.943791][T24000]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 1052.949356][T24000]  ? ksys_write+0x1c4/0x260
[ 1052.953884][T24000]  ? __fget_files+0x28/0x4b0
[ 1052.958469][T24000]  ? __fget_files+0x28/0x4b0
[ 1052.963150][T24000]  security_file_ioctl+0x70/0xa0
[ 1052.968176][T24000]  __se_sys_ioctl+0x48/0x170
[ 1052.972868][T24000]  do_syscall_64+0x55/0xa0
[ 1052.977286][T24000]  ? clear_bhb_loop+0x40/0x90
[ 1052.981969][T24000]  ? clear_bhb_loop+0x40/0x90
[ 1052.986648][T24000]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1052.992625][T24000] RIP: 0033:0x7f447d39c819
[ 1052.997059][T24000] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1053.016842][T24000] RSP: 002b:00007f447e287028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1053.025559][T24000] RAX: ffffffffffffffda RBX: 00007f447d615fa0 RCX: 00007f447d39c819
[ 1053.033547][T24000] RDX: 0000200000000040 RSI: 0000000000008935 RDI: 0000000000000003
[ 1053.041699][T24000] RBP: 00007f447e287090 R08: 0000000000000000 R09: 0000000000000000
[ 1053.049694][T24000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1053.057936][T24000] R13: 00007f447d616038 R14: 00007f447d615fa0 R15: 00007ffe0f3f3b38
[ 1053.066017][T24000]  </TASK>
[ 1053.094075][T24000] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1053.539910][T24026] __nla_validate_parse: 2 callbacks suppressed
[ 1053.539941][T24026] netlink: 1 bytes leftover after parsing attributes in process `syz.0.5992'.
[ 1053.870044][T24043] netlink: 1 bytes leftover after parsing attributes in process `syz.0.6004'.
[ 1053.891092][T24044] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5997'.
[ 1054.214677][T24053] netlink: 'syz.3.6001': attribute type 10 has an invalid length.
[ 1054.348135][T24053] team0 (unregistering): Port device team_slave_0 removed
[ 1054.368508][T24053] team0 (unregistering): Port device team_slave_1 removed
[ 1054.397001][T24053] team0 (unregistering): Port device virt_wifi0 removed
[ 1054.419183][T24053] team0 (unregistering): Port device wlan1 removed
[ 1054.801215][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.807968][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.879815][T24071] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.6010'.
[ 1055.054235][T24078] netlink: 'syz.3.6013': attribute type 10 has an invalid length.
[ 1055.073660][T24078] hsr_slave_0: left promiscuous mode
[ 1055.082516][T24078] hsr_slave_1: left promiscuous mode
[ 1055.704806][T24101] netlink: 1 bytes leftover after parsing attributes in process `syz.1.6020'.
[ 1056.141298][T24112] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.6025'.
[ 1056.288252][T24113] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.6023'.
[ 1056.399585][T24115] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6026'.
[ 1056.409626][T24115] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6026'.
[ 1056.470687][T24115] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6026'.
[ 1058.384914][T24158] netlink: 'syz.1.6040': attribute type 29 has an invalid length.
[ 1058.395398][T24158] netlink: 'syz.1.6040': attribute type 29 has an invalid length.
[ 1058.526835][T24163] netlink: 'syz.3.6042': attribute type 10 has an invalid length.
[ 1059.562175][T24186] netlink: 'syz.3.6050': attribute type 10 has an invalid length.
[ 1059.579895][T24186] __nla_validate_parse: 3 callbacks suppressed
[ 1059.579909][T24186] netlink: 55 bytes leftover after parsing attributes in process `syz.3.6050'.
[ 1059.699812][T24190] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.6052'.
[ 1059.917340][T24202] netlink: 'syz.1.6062': attribute type 10 has an invalid length.
[ 1059.973820][T24202] bond0: (slave netdevsim0): Releasing backup interface
[ 1060.027758][T24204] netlink: 1 bytes leftover after parsing attributes in process `syz.0.6057'.
[ 1060.199432][T24210] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.6061'.
[ 1060.341916][T24216] netlink: 'syz.2.6063': attribute type 10 has an invalid length.
[ 1060.363830][T24216] netlink: 55 bytes leftover after parsing attributes in process `syz.2.6063'.
[ 1060.651474][T24225] netlink: 'syz.1.6064': attribute type 10 has an invalid length.
[ 1060.992342][T24238] netlink: 1 bytes leftover after parsing attributes in process `syz.2.6069'.
[ 1061.038006][ T5770] Bluetooth: hci3: ACL packet for unknown connection handle 0
[ 1061.292568][T24252] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.6074'.
[ 1061.560250][T24265] netlink: 'syz.3.6073': attribute type 10 has an invalid length.
[ 1061.629692][T24265] bond0: (slave netdevsim0): Releasing backup interface
[ 1062.453348][T24265] batman_adv: batadv0: Adding interface: netdevsim0
[ 1062.473731][T24265] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1062.506276][T24265] batman_adv: batadv0: Not using interface netdevsim0 (retrying later): interface not active
[ 1062.542341][T24277] netlink: 'syz.0.6078': attribute type 10 has an invalid length.
[ 1062.586758][T24277] bond0: (slave netdevsim0): Releasing backup interface
[ 1062.597027][T24277] batman_adv: batadv0: Adding interface: netdevsim0
[ 1062.614075][T24277] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1062.649567][T24277] batman_adv: batadv0: Not using interface netdevsim0 (retrying later): interface not active
[ 1062.683342][T24285] netlink: 1 bytes leftover after parsing attributes in process `syz.1.6081'.
[ 1062.861905][T24292] netlink: 63503 bytes leftover after parsing attributes in process `syz.1.6085'.
[ 1062.894644][T24292] netlink: 'syz.1.6085': attribute type 7 has an invalid length.
[ 1062.907169][T24292] netlink: 'syz.1.6085': attribute type 6 has an invalid length.
[ 1062.977181][T24299] netlink: 1 bytes leftover after parsing attributes in process `syz.2.6096'.
[ 1063.108400][T24306] FAULT_INJECTION: forcing a failure.
[ 1063.108400][T24306] name failslab, interval 1, probability 0, space 0, times 0
[ 1063.122882][T24306] CPU: 0 PID: 24306 Comm: syz.1.6092 Not tainted syzkaller #0
[ 1063.130492][T24306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1063.140760][T24306] Call Trace:
[ 1063.144075][T24306]  <TASK>
[ 1063.147044][T24306]  dump_stack_lvl+0x18c/0x250
[ 1063.151780][T24306]  ? show_regs_print_info+0x20/0x20
[ 1063.157034][T24306]  ? load_image+0x420/0x420
[ 1063.161684][T24306]  ? __might_sleep+0xe0/0xe0
[ 1063.166341][T24306]  ? __lock_acquire+0x7d40/0x7d40
[ 1063.171425][T24306]  should_fail_ex+0x39d/0x4d0
[ 1063.176171][T24306]  should_failslab+0x9/0x20
[ 1063.180807][T24306]  slab_pre_alloc_hook+0x59/0x310
[ 1063.185887][T24306]  ? kasan_set_track+0x5f/0x70
[ 1063.190712][T24306]  kmem_cache_alloc_node+0x60/0x320
[ 1063.196277][T24306]  ? genl_rcv+0x28/0x40
[ 1063.200483][T24306]  ? __alloc_skb+0x103/0x2c0
[ 1063.205151][T24306]  __alloc_skb+0x103/0x2c0
[ 1063.209728][T24306]  netlink_dump+0x1ec/0xe50
[ 1063.214306][T24306]  ? netlink_lookup+0x200/0x200
[ 1063.219364][T24306]  ? __asan_memset+0x22/0x40
[ 1063.224093][T24306]  ? genl_start+0x493/0x6b0
[ 1063.228667][T24306]  __netlink_dump_start+0x5f1/0x810
[ 1063.234057][T24306]  genl_family_rcv_msg_dumpit+0x214/0x310
[ 1063.239829][T24306]  ? genl_rcv_msg+0x7a0/0x7a0
[ 1063.244548][T24306]  ? genl_get_cmd+0x7f1/0x920
[ 1063.249496][T24306]  ? genl_family_rcv_msg_doit+0x310/0x310
[ 1063.255268][T24306]  ? genl_start+0x6b0/0x6b0
[ 1063.260005][T24306]  ? genl_dumpit+0x1a0/0x1a0
[ 1063.264792][T24306]  genl_rcv_msg+0x5e5/0x7a0
[ 1063.269421][T24306]  ? genl_bind+0x360/0x360
[ 1063.273981][T24306]  ? tipc_net_stop+0x130/0x130
[ 1063.278952][T24306]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[ 1063.285646][T24306]  ? ref_tracker_free+0x690/0x840
[ 1063.290720][T24306]  netlink_rcv_skb+0x241/0x4d0
[ 1063.295504][T24306]  ? genl_bind+0x360/0x360
[ 1063.299926][T24306]  ? netlink_ack+0x1180/0x1180
[ 1063.304747][T24306]  ? __lock_acquire+0x7d40/0x7d40
[ 1063.309819][T24306]  ? down_read+0x1ac/0x2e0
[ 1063.314265][T24306]  genl_rcv+0x28/0x40
[ 1063.318258][T24306]  netlink_unicast+0x751/0x8d0
[ 1063.323050][T24306]  netlink_sendmsg+0x8d0/0xbf0
[ 1063.327848][T24306]  ? netlink_getsockopt+0x590/0x590
[ 1063.333064][T24306]  ? aa_sock_msg_perm+0x94/0x150
[ 1063.338041][T24306]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1063.343332][T24306]  ? security_socket_sendmsg+0x80/0xa0
[ 1063.348968][T24306]  ? netlink_getsockopt+0x590/0x590
[ 1063.354202][T24306]  ____sys_sendmsg+0x5ba/0x960
[ 1063.359197][T24306]  ? __asan_memset+0x22/0x40
[ 1063.363836][T24306]  ? __sys_sendmsg_sock+0x30/0x30
[ 1063.368953][T24306]  ? __import_iovec+0x5f2/0x850
[ 1063.373827][T24306]  ? import_iovec+0x73/0xa0
[ 1063.378354][T24306]  ___sys_sendmsg+0x2a6/0x360
[ 1063.383046][T24306]  ? get_pid_task+0x20/0x1e0
[ 1063.387742][T24306]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1063.392546][T24306]  ? __lock_acquire+0x7d40/0x7d40
[ 1063.397797][T24306]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1063.402660][T24306]  ? __x64_sys_sendmsg+0x80/0x80
[ 1063.407839][T24306]  ? lockdep_hardirqs_on+0x98/0x150
[ 1063.413250][T24306]  do_syscall_64+0x55/0xa0
[ 1063.417771][T24306]  ? clear_bhb_loop+0x40/0x90
[ 1063.422553][T24306]  ? clear_bhb_loop+0x40/0x90
[ 1063.427606][T24306]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1063.433535][T24306] RIP: 0033:0x7f7dc799c819
[ 1063.438086][T24306] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1063.458177][T24306] RSP: 002b:00007f7dc5bf6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1063.466719][T24306] RAX: ffffffffffffffda RBX: 00007f7dc7c15fa0 RCX: 00007f7dc799c819
[ 1063.474983][T24306] RDX: 0000000020000800 RSI: 00002000000001c0 RDI: 0000000000000004
[ 1063.483235][T24306] RBP: 00007f7dc5bf6090 R08: 0000000000000000 R09: 0000000000000000
[ 1063.491492][T24306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1063.499569][T24306] R13: 00007f7dc7c16038 R14: 00007f7dc7c15fa0 R15: 00007ffd3b6432e8
[ 1063.507690][T24306]  </TASK>
[ 1063.692930][T24319] netlink: 'syz.1.6093': attribute type 1 has an invalid length.
[ 1063.701017][T24319] netlink: 'syz.1.6093': attribute type 2 has an invalid length.
[ 1064.588239][T24339] validate_nla: 16 callbacks suppressed
[ 1064.588260][T24339] netlink: 'syz.3.6099': attribute type 10 has an invalid length.
[ 1064.749623][T24344] __nla_validate_parse: 3 callbacks suppressed
[ 1064.749644][T24344] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.6102'.
[ 1064.800854][T24344] bridge_slave_1: default FDB implementation only supports local addresses
[ 1064.971699][T24348] netlink: 'syz.2.6104': attribute type 29 has an invalid length.
[ 1065.004031][T24348] netlink: 'syz.2.6104': attribute type 29 has an invalid length.
[ 1065.028251][T24351] netlink: 'syz.2.6104': attribute type 29 has an invalid length.
[ 1065.098460][T24351] netlink: 'syz.2.6104': attribute type 29 has an invalid length.
[ 1065.107757][T24351] netlink: 'syz.2.6104': attribute type 29 has an invalid length.
[ 1066.379098][T24370] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.6112'.
[ 1066.421379][T24372] netlink: 'syz.1.6113': attribute type 39 has an invalid length.
[ 1067.019909][T24399] netlink: 1 bytes leftover after parsing attributes in process `syz.0.6122'.
[ 1067.115144][T20036] Bluetooth: hci0: command 0x0406 tx timeout
[ 1067.168683][T24405] netlink: 207508 bytes leftover after parsing attributes in process `syz.3.6125'.
[ 1067.385420][T24409] netlink: 'syz.1.6124': attribute type 10 has an invalid length.
[ 1067.524222][T24411] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.6126'.
[ 1067.897402][T24423] netlink: 1 bytes leftover after parsing attributes in process `syz.0.6131'.
[ 1067.917972][T24420] netlink: 'syz.1.6128': attribute type 10 has an invalid length.
[ 1067.941937][T24420] netlink: 'syz.1.6128': attribute type 9 has an invalid length.
[ 1067.950859][T24420] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.6128'.
[ 1068.081586][T24428] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.6128'.
[ 1068.240643][T24434] netlink: 55 bytes leftover after parsing attributes in process `syz.2.6135'.
[ 1068.303049][T24435] netlink: 126304 bytes leftover after parsing attributes in process `syz.0.6134'.
[ 1069.141444][T24453] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1069.150374][T24453] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1069.182606][T24453] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1069.190653][T24453] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1069.199362][T24453] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1069.207520][T24453] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1069.223337][T24453] bond0: (slave bridge0): Enslaving as an active interface with an up link
[ 1069.754791][T24468] validate_nla: 19 callbacks suppressed
[ 1069.754810][T24468] netlink: 'syz.0.6148': attribute type 10 has an invalid length.
[ 1069.769994][T24471] __nla_validate_parse: 3 callbacks suppressed
[ 1069.770010][T24471] netlink: 121460 bytes leftover after parsing attributes in process `syz.3.6145'.
[ 1069.793187][T24471] netlink: 21096 bytes leftover after parsing attributes in process `syz.3.6145'.
[ 1069.808108][T24471] tipc: Started in network mode
[ 1069.813235][T24471] tipc: Node identity 1a, cluster identity 4711
[ 1069.820019][T24471] tipc: Node number set to 26
[ 1069.993744][T24478] netlink: 'syz.1.6155': attribute type 10 has an invalid length.
[ 1070.012070][T24478] netlink: 55 bytes leftover after parsing attributes in process `syz.1.6155'.
[ 1070.034533][T24479] netlink: 1047 bytes leftover after parsing attributes in process `syz.2.6146'.
[ 1070.178772][T24481] netlink: 'syz.3.6147': attribute type 10 has an invalid length.
[ 1070.319183][T24483] netlink: 'syz.2.6149': attribute type 1 has an invalid length.
[ 1070.351251][T24483] netlink: 'syz.2.6149': attribute type 2 has an invalid length.
[ 1070.395451][T24483] netlink: 'syz.2.6149': attribute type 2 has an invalid length.
[ 1070.404441][T24483] netlink: 'syz.2.6149': attribute type 3 has an invalid length.
[ 1070.439294][T24483] netlink: 'syz.2.6149': attribute type 4 has an invalid length.
[ 1070.477136][T24483] netlink: 'syz.2.6149': attribute type 5 has an invalid length.
[ 1070.524620][T24483] netlink: 'syz.2.6149': attribute type 6 has an invalid length.
[ 1070.557844][T24483] netlink: 126304 bytes leftover after parsing attributes in process `syz.2.6149'.
[ 1070.584199][T24492] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6151'.
[ 1071.297525][T24504] netlink: 1 bytes leftover after parsing attributes in process `syz.2.6164'.
[ 1072.010910][T24522] netlink: 164 bytes leftover after parsing attributes in process `syz.1.6162'.
[ 1072.154106][T24529] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.6165'.
[ 1072.339348][T24537] netlink: 1 bytes leftover after parsing attributes in process `syz.1.6168'.
[ 1072.949715][T24548] debugfs: Directory '!!ô' with parent 'ieee80211' already present!
[ 1073.577575][T24583] batadv0: entered promiscuous mode
[ 1073.591621][T24583] batadv0: entered allmulticast mode
[ 1073.603972][T24583] bridge0: port 3(batadv0) entered blocking state
[ 1073.613269][T24583] bridge0: port 3(batadv0) entered disabled state
[ 1073.633229][T24583] bridge0: port 3(batadv0) entered blocking state
[ 1073.640100][T24583] bridge0: port 3(batadv0) entered forwarding state
[ 1073.793237][T24593] bridge_slave_1: default FDB implementation only supports local addresses
[ 1073.803990][T24591] Â: renamed from pim6reg1
[ 1073.806591][ T8718] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[ 1073.818464][ T8718] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[ 1073.907213][T24597] tun0: tun_chr_ioctl cmd 1074025677
[ 1073.915734][T24597] tun0: linktype set to 776
[ 1074.549073][T24621] batadv0: entered promiscuous mode
[ 1074.554891][T24621] batadv0: entered allmulticast mode
[ 1074.566451][T24621] bridge0: port 4(batadv0) entered blocking state
[ 1074.586917][T24621] bridge0: port 4(batadv0) entered disabled state
[ 1074.608065][T24621] bridge0: port 4(batadv0) entered blocking state
[ 1074.615064][T24621] bridge0: port 4(batadv0) entered forwarding state
[ 1074.883532][ T8722] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[ 1074.893266][ T8722] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[ 1074.978622][T24644] validate_nla: 21 callbacks suppressed
[ 1074.978642][T24644] netlink: 'syz.0.6207': attribute type 10 has an invalid length.
[ 1075.031424][T24644] __nla_validate_parse: 19 callbacks suppressed
[ 1075.031551][T24644] netlink: 55 bytes leftover after parsing attributes in process `syz.0.6207'.
[ 1075.284045][T24650] netlink: 'syz.2.6210': attribute type 21 has an invalid length.
[ 1075.292797][T24650] netlink: 164 bytes leftover after parsing attributes in process `syz.2.6210'.
[ 1075.616135][T24655] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.6212'.
[ 1075.843985][T24668] netlink: 'syz.0.6215': attribute type 10 has an invalid length.
[ 1075.882123][T24668] netlink: 132 bytes leftover after parsing attributes in process `syz.0.6215'.
[ 1075.901864][T24668] bridge0: port 3(team0) entered disabled state
[ 1075.920213][T24668] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[ 1075.995492][T24674] netlink: 'syz.3.6216': attribute type 10 has an invalid length.
[ 1076.254257][T24683] netlink: 'syz.2.6222': attribute type 10 has an invalid length.
[ 1076.262634][T24683] netlink: 55 bytes leftover after parsing attributes in process `syz.2.6222'.
[ 1076.617355][T24689] netlink: 207508 bytes leftover after parsing attributes in process `syz.1.6223'.
[ 1076.667632][T24689] netlink: 'syz.1.6223': attribute type 10 has an invalid length.
[ 1076.685123][T24689] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6223'.
[ 1076.714281][T24690] FAULT_INJECTION: forcing a failure.
[ 1076.714281][T24690] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1076.744590][T24690] CPU: 0 PID: 24690 Comm: syz.2.6224 Not tainted syzkaller #0
[ 1076.752353][T24690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1076.762695][T24690] Call Trace:
[ 1076.765998][T24690]  <TASK>
[ 1076.768933][T24690]  dump_stack_lvl+0x18c/0x250
[ 1076.773624][T24690]  ? show_regs_print_info+0x20/0x20
[ 1076.778913][T24690]  ? load_image+0x420/0x420
[ 1076.783417][T24690]  ? __might_fault+0xaa/0x120
[ 1076.788202][T24690]  ? __lock_acquire+0x7d40/0x7d40
[ 1076.793308][T24690]  should_fail_ex+0x39d/0x4d0
[ 1076.798019][T24690]  _copy_to_user+0x2f/0xa0
[ 1076.802541][T24690]  bpf_test_finish+0x206/0x650
[ 1076.807497][T24690]  ? convert___skb_to_skb+0x590/0x590
[ 1076.812863][T24690]  ? convert_skb_to___skb+0x420/0x420
[ 1076.818289][T24690]  bpf_prog_test_run_skb+0xcc3/0x12b0
[ 1076.823676][T24690]  ? cpu_online+0x60/0x60
[ 1076.828010][T24690]  bpf_prog_test_run+0x321/0x390
[ 1076.832952][T24690]  __sys_bpf+0x49d/0x890
[ 1076.837278][T24690]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1076.842685][T24690]  ? lock_chain_count+0x20/0x20
[ 1076.847644][T24690]  __x64_sys_bpf+0x7c/0x90
[ 1076.852090][T24690]  do_syscall_64+0x55/0xa0
[ 1076.856512][T24690]  ? clear_bhb_loop+0x40/0x90
[ 1076.861187][T24690]  ? clear_bhb_loop+0x40/0x90
[ 1076.865873][T24690]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1076.871781][T24690] RIP: 0033:0x7f447d39c819
[ 1076.876292][T24690] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1076.896169][T24690] RSP: 002b:00007f447e287028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1076.904800][T24690] RAX: ffffffffffffffda RBX: 00007f447d615fa0 RCX: 00007f447d39c819
[ 1076.912862][T24690] RDX: 0000000000000028 RSI: 0000200000000080 RDI: 000000000000000a
[ 1076.920942][T24690] RBP: 00007f447e287090 R08: 0000000000000000 R09: 0000000000000000
[ 1076.929276][T24690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1076.937421][T24690] R13: 00007f447d616038 R14: 00007f447d615fa0 R15: 00007ffe0f3f3b38
[ 1076.945490][T24690]  </TASK>
[ 1077.108814][T24698] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.6227'.
[ 1077.143365][T24700] netlink: 203516 bytes leftover after parsing attributes in process `syz.2.6229'.
[ 1077.151251][T24703] FAULT_INJECTION: forcing a failure.
[ 1077.151251][T24703] name failslab, interval 1, probability 0, space 0, times 0
[ 1077.160998][T24700] netlink: 6116 bytes leftover after parsing attributes in process `syz.2.6229'.
[ 1077.167400][T24703] CPU: 1 PID: 24703 Comm: syz.0.6236 Not tainted syzkaller #0
[ 1077.183612][T24703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1077.194253][T24703] Call Trace:
[ 1077.197738][T24703]  <TASK>
[ 1077.200766][T24703]  dump_stack_lvl+0x18c/0x250
[ 1077.205594][T24703]  ? show_regs_print_info+0x20/0x20
[ 1077.210894][T24703]  ? load_image+0x420/0x420
[ 1077.215475][T24703]  ? __might_sleep+0xe0/0xe0
[ 1077.220205][T24703]  ? __lock_acquire+0x7d40/0x7d40
[ 1077.225448][T24703]  ? stack_trace_save+0xaa/0x100
[ 1077.230424][T24703]  ? stack_trace_snprint+0xf0/0xf0
[ 1077.235670][T24703]  should_fail_ex+0x39d/0x4d0
[ 1077.240976][T24703]  should_failslab+0x9/0x20
[ 1077.245795][T24703]  slab_pre_alloc_hook+0x59/0x310
[ 1077.250954][T24703]  ? kasan_set_track+0x5f/0x70
[ 1077.255733][T24703]  ? kasan_set_track+0x4e/0x70
[ 1077.260870][T24703]  ? __kasan_kmalloc+0x8f/0xa0
[ 1077.266020][T24703]  kmem_cache_alloc_node+0x60/0x320
[ 1077.271423][T24703]  ? netlink_sendmsg+0x8d0/0xbf0
[ 1077.276847][T24703]  ? __alloc_skb+0x103/0x2c0
[ 1077.281906][T24703]  __alloc_skb+0x103/0x2c0
[ 1077.286429][T24703]  netlink_dump+0x1ec/0xe50
[ 1077.291328][T24703]  ? end_current_label_crit_section+0x170/0x170
[ 1077.297691][T24703]  ? end_current_label_crit_section+0x170/0x170
[ 1077.304425][T24703]  ? netlink_lookup+0x200/0x200
[ 1077.309864][T24703]  ? ns_capable+0x89/0xe0
[ 1077.314407][T24703]  ? __inet_diag_dump_start+0x886/0x9f0
[ 1077.320114][T24703]  __netlink_dump_start+0x5f1/0x810
[ 1077.325800][T24703]  inet_diag_rcv_msg_compat+0x215/0x440
[ 1077.331576][T24703]  ? __inet_diag_dump+0x380/0x380
[ 1077.336819][T24703]  ? sock_diag_rcv_msg+0xd1/0x600
[ 1077.342292][T24703]  ? inet_diag_rcv_msg_compat+0x440/0x440
[ 1077.348136][T24703]  ? inet_diag_dump_start_compat+0x20/0x20
[ 1077.354041][T24703]  ? inet_diag_dump+0x50/0x50
[ 1077.358749][T24703]  ? __inet_diag_dump+0x380/0x380
[ 1077.363783][T24703]  sock_diag_rcv_msg+0x3d8/0x600
[ 1077.368732][T24703]  netlink_rcv_skb+0x241/0x4d0
[ 1077.373679][T24703]  ? sock_diag_bind+0xb0/0xb0
[ 1077.378390][T24703]  ? netlink_ack+0x1180/0x1180
[ 1077.383284][T24703]  ? __lock_acquire+0x7d40/0x7d40
[ 1077.388317][T24703]  ? net_generic+0x1e/0x240
[ 1077.393042][T24703]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1077.398444][T24703]  sock_diag_rcv+0x2a/0x40
[ 1077.402980][T24703]  netlink_unicast+0x751/0x8d0
[ 1077.408047][T24703]  netlink_sendmsg+0x8d0/0xbf0
[ 1077.413007][T24703]  ? perf_trace_lock+0x304/0x3b0
[ 1077.417954][T24703]  ? netlink_getsockopt+0x590/0x590
[ 1077.423169][T24703]  ? aa_sock_msg_perm+0x94/0x150
[ 1077.428209][T24703]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1077.433497][T24703]  ? security_socket_sendmsg+0x80/0xa0
[ 1077.438967][T24703]  ? netlink_getsockopt+0x590/0x590
[ 1077.444204][T24703]  ____sys_sendmsg+0x5ba/0x960
[ 1077.449719][T24703]  ? __asan_memset+0x22/0x40
[ 1077.454366][T24703]  ? __sys_sendmsg_sock+0x30/0x30
[ 1077.459508][T24703]  ? __import_iovec+0x5f2/0x850
[ 1077.464385][T24703]  ? import_iovec+0x73/0xa0
[ 1077.469118][T24703]  ___sys_sendmsg+0x2a6/0x360
[ 1077.473827][T24703]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1077.478909][T24703]  ? __lock_acquire+0x7d40/0x7d40
[ 1077.483977][T24703]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1077.488847][T24703]  ? __x64_sys_sendmsg+0x80/0x80
[ 1077.493810][T24703]  ? lockdep_hardirqs_on+0x98/0x150
[ 1077.499024][T24703]  do_syscall_64+0x55/0xa0
[ 1077.503589][T24703]  ? clear_bhb_loop+0x40/0x90
[ 1077.508356][T24703]  ? clear_bhb_loop+0x40/0x90
[ 1077.513217][T24703]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1077.519247][T24703] RIP: 0033:0x7f541039c819
[ 1077.523758][T24703] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1077.543918][T24703] RSP: 002b:00007f541130d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1077.552611][T24703] RAX: ffffffffffffffda RBX: 00007f5410615fa0 RCX: 00007f541039c819
[ 1077.560608][T24703] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[ 1077.568847][T24703] RBP: 00007f541130d090 R08: 0000000000000000 R09: 0000000000000000
[ 1077.577244][T24703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1077.585245][T24703] R13: 00007f5410616038 R14: 00007f5410615fa0 R15: 00007ffcd55a9428
[ 1077.593467][T24703]  </TASK>
[ 1077.718841][T24710] netlink: 'syz.3.6228': attribute type 10 has an invalid length.
[ 1077.797356][T24712] netlink: 'syz.0.6232': attribute type 10 has an invalid length.
[ 1078.474776][T24730] netlink: 'syz.1.6239': attribute type 10 has an invalid length.
[ 1078.569460][T24726] tap1: tun_chr_ioctl cmd 1074025677
[ 1078.594448][T24726] tap1: linktype set to 778
[ 1079.042858][T24735] FAULT_INJECTION: forcing a failure.
[ 1079.042858][T24735] name failslab, interval 1, probability 0, space 0, times 0
[ 1079.077065][T24735] CPU: 0 PID: 24735 Comm: syz.0.6241 Not tainted syzkaller #0
[ 1079.084794][T24735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1079.095022][T24735] Call Trace:
[ 1079.098776][T24735]  <TASK>
[ 1079.101736][T24735]  dump_stack_lvl+0x18c/0x250
[ 1079.106861][T24735]  ? show_regs_print_info+0x20/0x20
[ 1079.112537][T24735]  ? load_image+0x420/0x420
[ 1079.117328][T24735]  ? __might_sleep+0xe0/0xe0
[ 1079.122296][T24735]  ? __lock_acquire+0x7d40/0x7d40
[ 1079.127356][T24735]  should_fail_ex+0x39d/0x4d0
[ 1079.132434][T24735]  should_failslab+0x9/0x20
[ 1079.137133][T24735]  slab_pre_alloc_hook+0x59/0x310
[ 1079.142339][T24737] netlink: 'syz.2.6242': attribute type 1 has an invalid length.
[ 1079.150512][T24735]  ? __lock_acquire+0x7d40/0x7d40
[ 1079.155858][T24735]  ? dev_ethtool+0x129/0x18d0
[ 1079.161589][T24735]  __kmem_cache_alloc_node+0x53/0x250
[ 1079.167102][T24735]  ? __might_fault+0xaa/0x120
[ 1079.172252][T24735]  ? dev_ethtool+0x129/0x18d0
[ 1079.176981][T24735]  kmalloc_trace+0x2a/0xe0
[ 1079.181617][T24735]  dev_ethtool+0x129/0x18d0
[ 1079.186604][T24735]  ? ethtool_get_module_eeprom_call+0x170/0x170
[ 1079.192977][T24735]  ? __lock_acquire+0x7d40/0x7d40
[ 1079.198613][T24735]  ? __might_fault+0xaa/0x120
[ 1079.203340][T24735]  ? full_name_hash+0x92/0xe0
[ 1079.208044][T24735]  ? dev_load+0x21/0x1f0
[ 1079.212851][T24735]  dev_ioctl+0x392/0x1140
[ 1079.217554][T24735]  sock_do_ioctl+0x239/0x310
[ 1079.222170][T24735]  ? sock_show_fdinfo+0xb0/0xb0
[ 1079.227191][T24735]  sock_ioctl+0x5ba/0x7e0
[ 1079.231554][T24735]  ? sock_poll+0x3e0/0x3e0
[ 1079.236065][T24735]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 1079.241037][T24735]  ? security_file_ioctl+0x80/0xa0
[ 1079.246193][T24735]  ? sock_poll+0x3e0/0x3e0
[ 1079.250712][T24735]  __se_sys_ioctl+0xfd/0x170
[ 1079.255577][T24735]  do_syscall_64+0x55/0xa0
[ 1079.260273][T24735]  ? clear_bhb_loop+0x40/0x90
[ 1079.264959][T24735]  ? clear_bhb_loop+0x40/0x90
[ 1079.269995][T24735]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1079.276606][T24735] RIP: 0033:0x7f541039c819
[ 1079.281036][T24735] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1079.301197][T24735] RSP: 002b:00007f541130d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1079.309791][T24735] RAX: ffffffffffffffda RBX: 00007f5410615fa0 RCX: 00007f541039c819
[ 1079.318058][T24735] RDX: 0000200000000080 RSI: 0000000000008946 RDI: 0000000000000004
[ 1079.326131][T24735] RBP: 00007f541130d090 R08: 0000000000000000 R09: 0000000000000000
[ 1079.335479][T24735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1079.343460][T24735] R13: 00007f5410616038 R14: 00007f5410615fa0 R15: 00007ffcd55a9428
[ 1079.351814][T24735]  </TASK>
[ 1079.734784][T24753] FAULT_INJECTION: forcing a failure.
[ 1079.734784][T24753] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1079.755521][T24753] CPU: 0 PID: 24753 Comm: syz.3.6247 Not tainted syzkaller #0
[ 1079.763318][T24753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1079.774096][T24753] Call Trace:
[ 1079.777431][T24753]  <TASK>
[ 1079.780463][T24753]  dump_stack_lvl+0x18c/0x250
[ 1079.785373][T24753]  ? show_regs_print_info+0x20/0x20
[ 1079.791224][T24753]  ? load_image+0x420/0x420
[ 1079.795781][T24753]  ? __lock_acquire+0x7d40/0x7d40
[ 1079.801018][T24753]  ? mark_lock+0x94/0x320
[ 1079.805471][T24753]  should_fail_ex+0x39d/0x4d0
[ 1079.810203][T24753]  prepare_alloc_pages+0x1e2/0x5f0
[ 1079.815387][T24753]  __alloc_pages+0x134/0x460
[ 1079.820101][T24753]  ? zone_statistics+0x170/0x170
[ 1079.825203][T24753]  ? do_wp_page+0x7ca/0x35f0
[ 1079.829822][T24753]  ? do_wp_page+0xfc5/0x35f0
[ 1079.834794][T24753]  __folio_alloc+0x10/0x20
[ 1079.839237][T24753]  vma_alloc_folio+0x47a/0x8f0
[ 1079.844137][T24753]  do_wp_page+0x1243/0x35f0
[ 1079.848694][T24753]  ? folio_put+0xd0/0xd0
[ 1079.853063][T24753]  ? do_raw_spin_lock+0x11f/0x2c0
[ 1079.858135][T24753]  ? __rwlock_init+0x150/0x150
[ 1079.862939][T24753]  handle_mm_fault+0x135d/0x4c00
[ 1079.867998][T24753]  ? handle_mm_fault+0xe7/0x4c00
[ 1079.872989][T24753]  ? numa_migrate_prep+0x350/0x350
[ 1079.878309][T24753]  ? lock_chain_count+0x20/0x20
[ 1079.883292][T24753]  ? lock_mm_and_find_vma+0x9c/0x2f0
[ 1079.888882][T24753]  do_user_addr_fault+0x730/0x12c0
[ 1079.894279][T24753]  exc_page_fault+0x64/0x100
[ 1079.899118][T24753]  asm_exc_page_fault+0x26/0x30
[ 1079.904011][T24753] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 1079.910516][T24753] Code: 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 29 f8 48 01
[ 1079.931351][T24753] RSP: 0018:ffffc90003857ce0 EFLAGS: 00050202
[ 1079.937645][T24753] RAX: ffffffff842a2201 RBX: 000000000014000e RCX: 000000000013758e
[ 1079.945861][T24753] RDX: 0000000000000000 RSI: ffff888032a08a80 RDI: 0000200000009000
[ 1079.953935][T24753] RBP: ffff888032800000 R08: 0000000000000005 R09: 0000000000000006
[ 1079.961933][T24753] R10: dffffc0000000000 R11: ffffed1006568001 R12: 000020000014058e
[ 1079.970012][T24753] R13: ffff888032a00000 R14: 0000200000000580 R15: ffff888032a00000
[ 1079.978131][T24753]  ? _copy_to_user+0x51/0xa0
[ 1079.982848][T24753]  _copy_to_user+0x85/0xa0
[ 1079.987283][T24753]  map_get_next_key+0x4fd/0x620
[ 1079.992314][T24753]  ? map_get_next_key+0x2d7/0x620
[ 1079.997641][T24753]  __sys_bpf+0x715/0x890
[ 1080.002180][T24753]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1080.007663][T24753]  ? lock_chain_count+0x20/0x20
[ 1080.012703][T24753]  __x64_sys_bpf+0x7c/0x90
[ 1080.017205][T24753]  do_syscall_64+0x55/0xa0
[ 1080.021734][T24753]  ? clear_bhb_loop+0x40/0x90
[ 1080.026427][T24753]  ? clear_bhb_loop+0x40/0x90
[ 1080.031222][T24753]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1080.037316][T24753] RIP: 0033:0x7f9c97b9c819
[ 1080.041735][T24753] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1080.061532][T24753] RSP: 002b:00007f9c98b09028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1080.070123][T24753] RAX: ffffffffffffffda RBX: 00007f9c97e16090 RCX: 00007f9c97b9c819
[ 1080.078286][T24753] RDX: 0000000000000020 RSI: 0000200000000b80 RDI: 0000000000000004
[ 1080.087155][T24753] RBP: 00007f9c98b09090 R08: 0000000000000000 R09: 0000000000000000
[ 1080.095572][T24753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1080.104171][T24753] R13: 00007f9c97e16128 R14: 00007f9c97e16090 R15: 00007ffd45a569b8
[ 1080.112361][T24753]  </TASK>
[ 1080.180815][T24758] __nla_validate_parse: 9 callbacks suppressed
[ 1080.180847][T24758] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.6251'.
[ 1080.848750][T24768] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.6255'.
[ 1081.540155][T24783] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.6261'.
[ 1082.297543][T24806] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.6270'.
[ 1082.943263][T24812] netlink: 60 bytes leftover after parsing attributes in process `syz.3.6272'.
[ 1082.954742][T24812] netlink: 60 bytes leftover after parsing attributes in process `syz.3.6272'.
[ 1082.977105][T24811] netlink: 60 bytes leftover after parsing attributes in process `syz.3.6272'.
[ 1083.069356][T24816] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.6274'.
[ 1083.193350][T24820] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.6283'.
[ 1083.938130][T24839] FAULT_INJECTION: forcing a failure.
[ 1083.938130][T24839] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1083.962180][T24839] CPU: 0 PID: 24839 Comm: syz.3.6281 Not tainted syzkaller #0
[ 1083.970754][T24839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1083.981222][T24839] Call Trace:
[ 1083.984517][T24839]  <TASK>
[ 1083.987470][T24839]  dump_stack_lvl+0x18c/0x250
[ 1083.992551][T24839]  ? show_regs_print_info+0x20/0x20
[ 1083.997824][T24839]  ? load_image+0x420/0x420
[ 1084.002620][T24839]  ? __lock_acquire+0x7d40/0x7d40
[ 1084.007760][T24839]  should_fail_ex+0x39d/0x4d0
[ 1084.012638][T24839]  _copy_from_user+0x2f/0xe0
[ 1084.017433][T24839]  __copy_msghdr+0x3bb/0x580
[ 1084.022126][T24839]  ___sys_sendmsg+0x214/0x360
[ 1084.026814][T24839]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1084.031682][T24839]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1084.037730][T24839]  ? lockdep_hardirqs_on+0x98/0x150
[ 1084.042973][T24839]  ? kasan_check_range+0x97/0x290
[ 1084.048188][T24839]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1084.053234][T24839]  ? __x64_sys_sendmsg+0x80/0x80
[ 1084.058226][T24839]  ? syscall_enter_from_user_mode+0x2e/0x80
[ 1084.064256][T24839]  do_syscall_64+0x55/0xa0
[ 1084.068942][T24839]  ? clear_bhb_loop+0x40/0x90
[ 1084.073784][T24839]  ? clear_bhb_loop+0x40/0x90
[ 1084.078598][T24839]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1084.084896][T24839] RIP: 0033:0x7f9c97b9c819
[ 1084.089606][T24839] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1084.109524][T24839] RSP: 002b:00007f9c98b2a028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1084.118431][T24839] RAX: ffffffffffffffda RBX: 00007f9c97e15fa0 RCX: 00007f9c97b9c819
[ 1084.126421][T24839] RDX: 00000000000080d1 RSI: 0000200000000140 RDI: 0000000000000009
[ 1084.134697][T24839] RBP: 00007f9c98b2a090 R08: 0000000000000000 R09: 0000000000000000
[ 1084.142781][T24839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1084.150849][T24839] R13: 00007f9c97e16038 R14: 00007f9c97e15fa0 R15: 00007ffd45a569b8
[ 1084.159629][T24839]  </TASK>
[ 1084.361210][T24849] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.6286'.
[ 1084.391164][T24849] bridge_slave_1: default FDB implementation only supports local addresses
[ 1084.410575][T24850] validate_nla: 1 callbacks suppressed
[ 1084.410594][T24850] netlink: 'syz.1.6285': attribute type 21 has an invalid length.
[ 1085.338506][T24874] netlink: 'syz.1.6296': attribute type 27 has an invalid length.
[ 1085.346577][T24874] __nla_validate_parse: 3 callbacks suppressed
[ 1085.346594][T24874] netlink: 164 bytes leftover after parsing attributes in process `syz.1.6296'.
[ 1085.390044][T24875] netlink: 1047 bytes leftover after parsing attributes in process `syz.2.6297'.
[ 1085.644650][T24885] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.6302'.
[ 1085.658873][T24888] syz.1.6303[24888] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1085.659070][T24888] syz.1.6303[24888] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1086.165302][T24898] FAULT_INJECTION: forcing a failure.
[ 1086.165302][T24898] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1086.192442][T24898] CPU: 1 PID: 24898 Comm: syz.1.6307 Not tainted syzkaller #0
[ 1086.200044][T24898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1086.210126][T24898] Call Trace:
[ 1086.213418][T24898]  <TASK>
[ 1086.216368][T24898]  dump_stack_lvl+0x18c/0x250
[ 1086.221286][T24898]  ? show_regs_print_info+0x20/0x20
[ 1086.226602][T24898]  ? load_image+0x420/0x420
[ 1086.231305][T24898]  ? __lock_acquire+0x7d40/0x7d40
[ 1086.236557][T24898]  should_fail_ex+0x39d/0x4d0
[ 1086.241418][T24898]  prepare_alloc_pages+0x1e2/0x5f0
[ 1086.247279][T24898]  __alloc_pages+0x134/0x460
[ 1086.252069][T24898]  ? zone_statistics+0x170/0x170
[ 1086.257215][T24898]  ? handle_mm_fault+0xe7/0x4c00
[ 1086.262238][T24898]  __folio_alloc+0x10/0x20
[ 1086.266860][T24898]  vma_alloc_folio+0x47a/0x8f0
[ 1086.272031][T24898]  handle_mm_fault+0x1b3b/0x4c00
[ 1086.277108][T24898]  ? handle_mm_fault+0xe7/0x4c00
[ 1086.282561][T24898]  ? numa_migrate_prep+0x350/0x350
[ 1086.287891][T24898]  ? lock_chain_count+0x20/0x20
[ 1086.292851][T24898]  ? lock_mm_and_find_vma+0x9c/0x2f0
[ 1086.298156][T24898]  do_user_addr_fault+0x730/0x12c0
[ 1086.303397][T24898]  exc_page_fault+0x64/0x100
[ 1086.308021][T24898]  asm_exc_page_fault+0x26/0x30
[ 1086.312886][T24898] RIP: 0010:put_cmsg+0x203/0x5f0
[ 1086.317863][T24898] Code: 23 32 10 f9 48 89 df 4c 89 ee e8 e8 2f 10 f9 4c 89 f0 4c 01 e8 0f 88 e4 02 00 00 4c 39 e8 0f 82 db 02 00 00 0f 01 cb 0f ae e8 <4d> 89 75 00 8b 44 24 08 41 89 45 08 8b 44 24 0c 41 89 45 0c 49 83
[ 1086.337845][T24898] RSP: 0018:ffffc90004897620 EFLAGS: 00050202
[ 1086.344024][T24898] RAX: 0000200000002955 RBX: 0000200000002955 RCX: ffff88802b648000
[ 1086.352089][T24898] RDX: 0000000000000000 RSI: 0000200000002940 RDI: 0000200000002955
[ 1086.360346][T24898] RBP: 0000000000000005 R08: ffff88802b648000 R09: 0000000000000003
[ 1086.368932][T24898] R10: 0000000000000002 R11: 0000000000000000 R12: dffffc0000000000
[ 1086.376942][T24898] R13: 0000200000002940 R14: 0000000000000015 R15: ffffc90004897830
[ 1086.384969][T24898]  __sock_recv_timestamp+0x3f4/0x1350
[ 1086.390558][T24898]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[ 1086.396738][T24898]  ? kernel_sendmsg_locked+0x120/0x120
[ 1086.402309][T24898]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1086.408427][T24898]  ? _raw_spin_unlock+0x40/0x40
[ 1086.413326][T24898]  ? __skb_try_recv_datagram+0x3da/0x4d0
[ 1086.419064][T24898]  ? __skb_datagram_iter+0x6bc/0x780
[ 1086.424473][T24898]  ? skb_copy_datagram_iter+0x200/0x200
[ 1086.430057][T24898]  ? skb_copy_datagram_iter+0xb1/0x200
[ 1086.435747][T24898]  __unix_dgram_recvmsg+0x72d/0xd80
[ 1086.441338][T24898]  ? unix_unhash+0x10/0x10
[ 1086.445808][T24898]  ? aa_af_perm+0x330/0x330
[ 1086.450331][T24898]  ? __lock_acquire+0x1273/0x7d40
[ 1086.455399][T24898]  ? verify_lock_unused+0x140/0x140
[ 1086.460616][T24898]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[ 1086.465926][T24898]  ? security_socket_recvmsg+0x89/0xb0
[ 1086.471397][T24898]  ? unix_dgram_recvmsg+0xad/0xd0
[ 1086.476550][T24898]  ? unix_dgram_sendmsg+0x16d0/0x16d0
[ 1086.482021][T24898]  ____sys_recvmsg+0x2ce/0x5e0
[ 1086.486982][T24898]  ? __sys_recvmsg_sock+0x50/0x50
[ 1086.492131][T24898]  ? import_iovec+0x73/0xa0
[ 1086.496821][T24898]  ___sys_recvmsg+0x216/0x590
[ 1086.501643][T24898]  ? __sys_recvmsg+0x2a0/0x2a0
[ 1086.506517][T24898]  ? ksys_write+0x1c4/0x260
[ 1086.511063][T24898]  ? __fget_files+0x43d/0x4b0
[ 1086.515767][T24898]  __x64_sys_recvmsg+0x20c/0x2e0
[ 1086.520783][T24898]  ? ___sys_recvmsg+0x590/0x590
[ 1086.525754][T24898]  ? lockdep_hardirqs_on+0x98/0x150
[ 1086.531052][T24898]  do_syscall_64+0x55/0xa0
[ 1086.535644][T24898]  ? clear_bhb_loop+0x40/0x90
[ 1086.540369][T24898]  ? clear_bhb_loop+0x40/0x90
[ 1086.545155][T24898]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1086.551239][T24898] RIP: 0033:0x7f7dc799c819
[ 1086.555675][T24898] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1086.575911][T24898] RSP: 002b:00007f7dc5bf6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[ 1086.584440][T24898] RAX: ffffffffffffffda RBX: 00007f7dc7c15fa0 RCX: 00007f7dc799c819
[ 1086.592527][T24898] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000004
[ 1086.600704][T24898] RBP: 00007f7dc5bf6090 R08: 0000000000000000 R09: 0000000000000000
[ 1086.609054][T24898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1086.617039][T24898] R13: 00007f7dc7c16038 R14: 00007f7dc7c15fa0 R15: 00007ffd3b6432e8
[ 1086.625130][T24898]  </TASK>
[ 1086.774855][T24906] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.6310'.
[ 1086.998089][T24919] netlink: 'syz.0.6314': attribute type 10 has an invalid length.
[ 1087.022773][T24919] netlink: 55 bytes leftover after parsing attributes in process `syz.0.6314'.
[ 1087.056983][T24920] netlink: 'syz.1.6313': attribute type 10 has an invalid length.
[ 1087.143055][T24925] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.6316'.
[ 1087.899559][T24941] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.6323'.
[ 1088.015477][T24947] netlink: 'syz.1.6325': attribute type 10 has an invalid length.
[ 1088.030057][T24947] netlink: 55 bytes leftover after parsing attributes in process `syz.1.6325'.
[ 1088.404158][T24962] netlink: 'syz.1.6337': attribute type 21 has an invalid length.
[ 1088.440479][T24962] netlink: 164 bytes leftover after parsing attributes in process `syz.1.6337'.
[ 1088.484851][T24965] netlink: 'syz.3.6329': attribute type 10 has an invalid length.
[ 1088.626157][T24966] netlink: 'syz.0.6330': attribute type 10 has an invalid length.
[ 1088.836214][T24975] netlink: 144316 bytes leftover after parsing attributes in process `syz.0.6334'.
[ 1088.889172][T24979] netlink: 'syz.3.6336': attribute type 10 has an invalid length.
[ 1088.979418][T24983] netlink: 'syz.2.6339': attribute type 10 has an invalid length.
[ 1089.292661][T24991] FAULT_INJECTION: forcing a failure.
[ 1089.292661][T24991] name failslab, interval 1, probability 0, space 0, times 0
[ 1089.306120][T24991] CPU: 1 PID: 24991 Comm: syz.3.6342 Not tainted syzkaller #0
[ 1089.314007][T24991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1089.324168][T24991] Call Trace:
[ 1089.327629][T24991]  <TASK>
[ 1089.330709][T24991]  dump_stack_lvl+0x18c/0x250
[ 1089.335458][T24991]  ? show_regs_print_info+0x20/0x20
[ 1089.340677][T24991]  ? load_image+0x420/0x420
[ 1089.345183][T24991]  ? __might_sleep+0xe0/0xe0
[ 1089.350133][T24991]  ? __lock_acquire+0x7d40/0x7d40
[ 1089.355264][T24991]  should_fail_ex+0x39d/0x4d0
[ 1089.360039][T24991]  should_failslab+0x9/0x20
[ 1089.364588][T24991]  slab_pre_alloc_hook+0x59/0x310
[ 1089.369624][T24991]  ? sk_prot_alloc+0xe7/0x210
[ 1089.374406][T24991]  ? sk_prot_alloc+0xe7/0x210
[ 1089.379603][T24991]  __kmem_cache_alloc_node+0x53/0x250
[ 1089.384980][T24991]  ? sk_prot_alloc+0xe7/0x210
[ 1089.389746][T24991]  __kmalloc+0xa4/0x230
[ 1089.393900][T24991]  sk_prot_alloc+0xe7/0x210
[ 1089.398449][T24991]  ? sk_alloc+0x24/0x360
[ 1089.402775][T24991]  sk_alloc+0x3a/0x360
[ 1089.407187][T24991]  ? bpf_ctx_init+0x163/0x1a0
[ 1089.412066][T24991]  ? bpf_prog_test_run_skb+0x273/0x12b0
[ 1089.417612][T24991]  bpf_prog_test_run_skb+0x3a5/0x12b0
[ 1089.423157][T24991]  ? __fget_files+0x28/0x4b0
[ 1089.427831][T24991]  ? __fget_files+0x28/0x4b0
[ 1089.432416][T24991]  ? __fget_files+0x43d/0x4b0
[ 1089.437124][T24991]  ? cpu_online+0x60/0x60
[ 1089.441450][T24991]  bpf_prog_test_run+0x321/0x390
[ 1089.446490][T24991]  __sys_bpf+0x49d/0x890
[ 1089.451086][T24991]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1089.456487][T24991]  ? lock_chain_count+0x20/0x20
[ 1089.461626][T24991]  __x64_sys_bpf+0x7c/0x90
[ 1089.466234][T24991]  do_syscall_64+0x55/0xa0
[ 1089.470821][T24991]  ? clear_bhb_loop+0x40/0x90
[ 1089.475513][T24991]  ? clear_bhb_loop+0x40/0x90
[ 1089.480251][T24991]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1089.486246][T24991] RIP: 0033:0x7f9c97b9c819
[ 1089.490874][T24991] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1089.510831][T24991] RSP: 002b:00007f9c98b2a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1089.519280][T24991] RAX: ffffffffffffffda RBX: 00007f9c97e15fa0 RCX: 00007f9c97b9c819
[ 1089.527275][T24991] RDX: 0000000000000050 RSI: 00002000000002c0 RDI: 000000000000000a
[ 1089.535472][T24991] RBP: 00007f9c98b2a090 R08: 0000000000000000 R09: 0000000000000000
[ 1089.543534][T24991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1089.551506][T24991] R13: 00007f9c97e16038 R14: 00007f9c97e15fa0 R15: 00007ffd45a569b8
[ 1089.559589][T24991]  </TASK>
[ 1089.710445][T24997] validate_nla: 5 callbacks suppressed
[ 1089.710466][T24997] netlink: 'syz.3.6343': attribute type 10 has an invalid length.
[ 1089.980572][T25005] netlink: 'syz.3.6344': attribute type 10 has an invalid length.
[ 1090.050732][ T5770] Bluetooth: hci0: unexpected event 0x3c length: 15 > 7
[ 1090.270536][T25013] netlink: 'syz.3.6349': attribute type 10 has an invalid length.
[ 1090.470195][T25023] __nla_validate_parse: 8 callbacks suppressed
[ 1090.470216][T25023] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.6356'.
[ 1090.685943][T25029] netlink: 'syz.0.6354': attribute type 10 has an invalid length.
[ 1091.196095][T25035] netlink: 'syz.1.6361': attribute type 10 has an invalid length.
[ 1091.204178][T25035] netlink: 55 bytes leftover after parsing attributes in process `syz.1.6361'.
[ 1091.216942][T25037] FAULT_INJECTION: forcing a failure.
[ 1091.216942][T25037] name failslab, interval 1, probability 0, space 0, times 0
[ 1091.238831][T25037] CPU: 1 PID: 25037 Comm: syz.3.6360 Not tainted syzkaller #0
[ 1091.246528][T25037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1091.257491][T25037] Call Trace:
[ 1091.260966][T25037]  <TASK>
[ 1091.264226][T25037]  dump_stack_lvl+0x18c/0x250
[ 1091.269244][T25037]  ? show_regs_print_info+0x20/0x20
[ 1091.275199][T25037]  ? load_image+0x420/0x420
[ 1091.280324][T25037]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1091.286185][T25037]  ? lockdep_hardirqs_on+0x98/0x150
[ 1091.291905][T25037]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1091.298209][T25037]  should_fail_ex+0x39d/0x4d0
[ 1091.303380][T25037]  should_failslab+0x9/0x20
[ 1091.308098][T25037]  slab_pre_alloc_hook+0x59/0x310
[ 1091.313597][T25037]  ? sctp_get_port_local+0xe65/0x1620
[ 1091.319622][T25037]  ? sctp_add_bind_addr+0x8c/0x360
[ 1091.324780][T25037]  __kmem_cache_alloc_node+0x53/0x250
[ 1091.330328][T25037]  ? sctp_add_bind_addr+0x8c/0x360
[ 1091.335583][T25037]  kmalloc_trace+0x2a/0xe0
[ 1091.340035][T25037]  sctp_add_bind_addr+0x8c/0x360
[ 1091.345022][T25037]  ? sctp_auto_asconf_init+0x15c/0x1e0
[ 1091.350688][T25037]  sctp_do_bind+0x616/0x990
[ 1091.355228][T25037]  sctp_connect_new_asoc+0x26a/0x6a0
[ 1091.360543][T25037]  ? __sctp_connect+0xd80/0xd80
[ 1091.365421][T25037]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1091.370877][T25037]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[ 1091.376628][T25037]  ? security_sctp_bind_connect+0x89/0xb0
[ 1091.382467][T25037]  sctp_sendmsg+0x1575/0x28c0
[ 1091.387174][T25037]  ? sctp_getsockopt+0xb60/0xb60
[ 1091.392275][T25037]  ? aa_sk_perm+0x83c/0x970
[ 1091.397086][T25037]  ? aa_af_perm+0x330/0x330
[ 1091.401690][T25037]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[ 1091.408295][T25037]  ? sock_rps_record_flow+0x19/0x3f0
[ 1091.413690][T25037]  ? inet_sendmsg+0xe9/0x2f0
[ 1091.418283][T25037]  ? inet_send_prepare+0x260/0x260
[ 1091.423455][T25037]  ____sys_sendmsg+0x5ba/0x960
[ 1091.428225][T25037]  ? __lock_acquire+0x7d40/0x7d40
[ 1091.433440][T25037]  ? __asan_memset+0x22/0x40
[ 1091.438586][T25037]  ? __sys_sendmsg_sock+0x30/0x30
[ 1091.443898][T25037]  ? __import_iovec+0x5f2/0x850
[ 1091.448867][T25037]  ? import_iovec+0x73/0xa0
[ 1091.453557][T25037]  ___sys_sendmsg+0x2a6/0x360
[ 1091.458245][T25037]  ? get_pid_task+0x20/0x1e0
[ 1091.462853][T25037]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1091.467680][T25037]  ? __lock_acquire+0x7d40/0x7d40
[ 1091.472747][T25037]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1091.477630][T25037]  ? __x64_sys_sendmsg+0x80/0x80
[ 1091.482608][T25037]  ? lockdep_hardirqs_on+0x98/0x150
[ 1091.488018][T25037]  do_syscall_64+0x55/0xa0
[ 1091.492669][T25037]  ? clear_bhb_loop+0x40/0x90
[ 1091.497725][T25037]  ? clear_bhb_loop+0x40/0x90
[ 1091.502426][T25037]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1091.508338][T25037] RIP: 0033:0x7f9c97b9c819
[ 1091.512944][T25037] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1091.533305][T25037] RSP: 002b:00007f9c98b2a028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1091.541931][T25037] RAX: ffffffffffffffda RBX: 00007f9c97e15fa0 RCX: 00007f9c97b9c819
[ 1091.550029][T25037] RDX: 0000000000004000 RSI: 0000200000000840 RDI: 0000000000000005
[ 1091.558206][T25037] RBP: 00007f9c98b2a090 R08: 0000000000000000 R09: 0000000000000000
[ 1091.566362][T25037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1091.574692][T25037] R13: 00007f9c97e16038 R14: 00007f9c97e15fa0 R15: 00007ffd45a569b8
[ 1091.582767][T25037]  </TASK>
[ 1091.819262][T25054] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.6368'.
[ 1091.833726][T25054] bridge_slave_1: default FDB implementation only supports local addresses
[ 1093.397241][T25080] netlink: 'syz.1.6374': attribute type 10 has an invalid length.
[ 1093.442376][T25083] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.6378'.
[ 1093.463485][T25083] bridge_slave_1: default FDB implementation only supports local addresses
[ 1093.812528][T25092] netlink: 1 bytes leftover after parsing attributes in process `syz.0.6382'.
[ 1093.843592][T25090] netlink: 'syz.1.6381': attribute type 8 has an invalid length.
[ 1093.855295][T25090] netlink: 'syz.1.6381': attribute type 6 has an invalid length.
[ 1093.864012][T25090] netlink: 144448 bytes leftover after parsing attributes in process `syz.1.6381'.
[ 1093.975428][T25097] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1094.300850][T25102] netlink: 'syz.1.6385': attribute type 10 has an invalid length.
[ 1094.525781][T25109] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.6388'.
[ 1094.607667][T25107] netlink: 'syz.3.6387': attribute type 21 has an invalid length.
[ 1094.619357][T25107] netlink: 164 bytes leftover after parsing attributes in process `syz.3.6387'.
[ 1094.637209][T25113] netlink: 60 bytes leftover after parsing attributes in process `syz.0.6389'.
[ 1094.647902][T25113] netlink: 60 bytes leftover after parsing attributes in process `syz.0.6389'.
[ 1094.883001][T25123] netlink: 'syz.2.6390': attribute type 10 has an invalid length.
[ 1094.970943][T25119] netlink: 'syz.1.6399': attribute type 21 has an invalid length.
[ 1095.721012][T25139] __nla_validate_parse: 5 callbacks suppressed
[ 1095.721039][T25139] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.6398'.
[ 1095.814275][T25144] netlink: 'syz.3.6401': attribute type 9 has an invalid length.
[ 1095.867146][T25144] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.6401'.
[ 1095.915738][T25148] netlink: 1 bytes leftover after parsing attributes in process `syz.0.6403'.
[ 1096.027076][T25149] netlink: 'syz.2.6400': attribute type 10 has an invalid length.
[ 1096.196272][T25151] netlink: 'syz.3.6401': attribute type 9 has an invalid length.
[ 1096.243405][T25151] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.6401'.
[ 1096.306446][T25156] netlink: 'syz.0.6405': attribute type 21 has an invalid length.
[ 1096.329859][T25156] netlink: 164 bytes leftover after parsing attributes in process `syz.0.6405'.
[ 1096.506034][T25159] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.6407'.
[ 1097.640189][T25176] netlink: 1047 bytes leftover after parsing attributes in process `syz.2.6413'.
[ 1097.671076][T25179] netlink: 'syz.3.6414': attribute type 21 has an invalid length.
[ 1097.679944][T25179] netlink: 164 bytes leftover after parsing attributes in process `syz.3.6414'.
[ 1097.822737][T25184] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.6416'.
[ 1097.999997][T25191] netlink: 'syz.3.6417': attribute type 30 has an invalid length.
[ 1098.047984][T25193] FAULT_INJECTION: forcing a failure.
[ 1098.047984][T25193] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1098.062177][T25193] CPU: 1 PID: 25193 Comm: syz.2.6419 Not tainted syzkaller #0
[ 1098.069778][T25193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1098.079862][T25193] Call Trace:
[ 1098.083242][T25193]  <TASK>
[ 1098.086188][T25193]  dump_stack_lvl+0x18c/0x250
[ 1098.090906][T25193]  ? show_regs_print_info+0x20/0x20
[ 1098.096134][T25193]  ? load_image+0x420/0x420
[ 1098.100690][T25193]  ? __might_fault+0xaa/0x120
[ 1098.105465][T25193]  ? __lock_acquire+0x7d40/0x7d40
[ 1098.110600][T25193]  should_fail_ex+0x39d/0x4d0
[ 1098.115477][T25193]  _copy_from_user+0x2f/0xe0
[ 1098.120076][T25193]  __sys_bpf+0x23e/0x890
[ 1098.124334][T25193]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1098.129826][T25193]  ? lock_chain_count+0x20/0x20
[ 1098.134794][T25193]  __x64_sys_bpf+0x7c/0x90
[ 1098.139226][T25193]  do_syscall_64+0x55/0xa0
[ 1098.143772][T25193]  ? clear_bhb_loop+0x40/0x90
[ 1098.148465][T25193]  ? clear_bhb_loop+0x40/0x90
[ 1098.153187][T25193]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1098.159349][T25193] RIP: 0033:0x7f447d39c819
[ 1098.163986][T25193] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1098.184162][T25193] RSP: 002b:00007f447e287028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1098.192859][T25193] RAX: ffffffffffffffda RBX: 00007f447d615fa0 RCX: 00007f447d39c819
[ 1098.200851][T25193] RDX: 0000000000000010 RSI: 0000200000000580 RDI: 000000000000000f
[ 1098.208969][T25193] RBP: 00007f447e287090 R08: 0000000000000000 R09: 0000000000000000
[ 1098.217317][T25193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1098.225676][T25193] R13: 00007f447d616038 R14: 00007f447d615fa0 R15: 00007ffe0f3f3b38
[ 1098.233691][T25193]  </TASK>
[ 1098.714882][T25202] FAULT_INJECTION: forcing a failure.
[ 1098.714882][T25202] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1098.728827][T25202] CPU: 0 PID: 25202 Comm: syz.1.6422 Not tainted syzkaller #0
[ 1098.736323][T25202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1098.746414][T25202] Call Trace:
[ 1098.749704][T25202]  <TASK>
[ 1098.752721][T25202]  dump_stack_lvl+0x18c/0x250
[ 1098.757844][T25202]  ? show_regs_print_info+0x20/0x20
[ 1098.763047][T25202]  ? load_image+0x420/0x420
[ 1098.767673][T25202]  ? shmem_get_folio_gfp+0x138f/0x2aa0
[ 1098.773145][T25202]  ? __lock_acquire+0x7d40/0x7d40
[ 1098.778259][T25202]  ? __rwlock_init+0x150/0x150
[ 1098.783024][T25202]  should_fail_ex+0x39d/0x4d0
[ 1098.787808][T25202]  copy_page_from_iter_atomic+0x2a8/0x1580
[ 1098.793724][T25202]  ? shmem_get_folio_gfp+0x26d8/0x2aa0
[ 1098.799198][T25202]  ? iov_iter_zero+0x1170/0x1170
[ 1098.804143][T25202]  ? shmem_write_begin+0x1cf/0x420
[ 1098.809339][T25202]  generic_perform_write+0x353/0x5c0
[ 1098.814808][T25202]  ? generic_file_direct_write+0x3e0/0x3e0
[ 1098.820722][T25202]  ? down_write+0x16e/0x200
[ 1098.825242][T25202]  ? file_update_time+0x98/0x1a0
[ 1098.830532][T25202]  shmem_file_write_iter+0xfb/0x120
[ 1098.835732][T25202]  vfs_write+0x46c/0x990
[ 1098.840067][T25202]  ? file_end_write+0x250/0x250
[ 1098.844916][T25202]  ? __fget_files+0x43d/0x4b0
[ 1098.849693][T25202]  ? __fdget_pos+0x2a3/0x330
[ 1098.854281][T25202]  ? ksys_write+0x75/0x260
[ 1098.858797][T25202]  ksys_write+0x150/0x260
[ 1098.863224][T25202]  ? __ia32_sys_read+0x90/0x90
[ 1098.868004][T25202]  ? lockdep_hardirqs_on+0x98/0x150
[ 1098.873212][T25202]  do_syscall_64+0x55/0xa0
[ 1098.877803][T25202]  ? clear_bhb_loop+0x40/0x90
[ 1098.882474][T25202]  ? clear_bhb_loop+0x40/0x90
[ 1098.887269][T25202]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1098.893257][T25202] RIP: 0033:0x7f7dc799c819
[ 1098.897795][T25202] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1098.917669][T25202] RSP: 002b:00007f7dc5bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1098.926172][T25202] RAX: ffffffffffffffda RBX: 00007f7dc7c15fa0 RCX: 00007f7dc799c819
[ 1098.934224][T25202] RDX: 00000000002a979d RSI: 0000200000000000 RDI: 0000000000000004
[ 1098.942278][T25202] RBP: 00007f7dc5bf6090 R08: 0000000000000000 R09: 0000000000000000
[ 1098.950332][T25202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1098.958406][T25202] R13: 00007f7dc7c16038 R14: 00007f7dc7c15fa0 R15: 00007ffd3b6432e8
[ 1098.966649][T25202]  </TASK>
[ 1099.803925][T25213] netlink: 'syz.0.6426': attribute type 21 has an invalid length.
[ 1099.815364][T25213] netlink: 164 bytes leftover after parsing attributes in process `syz.0.6426'.
[ 1099.992161][T25220] netlink: 'syz.1.6429': attribute type 29 has an invalid length.
[ 1100.001555][T25220] netlink: 'syz.1.6429': attribute type 29 has an invalid length.
[ 1100.016266][T25220] netlink: 'syz.1.6429': attribute type 29 has an invalid length.
[ 1100.024637][T25220] netlink: 'syz.1.6429': attribute type 29 has an invalid length.
[ 1100.055651][T25220] netlink: 'syz.1.6429': attribute type 29 has an invalid length.
[ 1100.640720][T25237] netlink: 'syz.3.6435': attribute type 2 has an invalid length.
[ 1100.659670][T25237] netlink: 'syz.3.6435': attribute type 8 has an invalid length.
[ 1100.676138][T25241] netlink: 'syz.1.6434': attribute type 10 has an invalid length.
[ 1100.969276][T25247] __nla_validate_parse: 3 callbacks suppressed
[ 1100.969297][T25247] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.6440'.
[ 1100.992175][T25247] bridge_slave_1: default FDB implementation only supports local addresses
[ 1101.001764][T25245] netlink: 'syz.2.6439': attribute type 21 has an invalid length.
[ 1101.012784][T25245] netlink: 164 bytes leftover after parsing attributes in process `syz.2.6439'.
[ 1101.113793][T25252] netlink: 152 bytes leftover after parsing attributes in process `syz.3.6442'.
[ 1101.197492][T25255] netlink: 830 bytes leftover after parsing attributes in process `syz.2.6443'.
[ 1101.297586][T25257] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.6444'.
[ 1101.525179][T25263] netlink: 'syz.0.6447': attribute type 6 has an invalid length.
[ 1101.556592][T25263] netlink: 164 bytes leftover after parsing attributes in process `syz.0.6447'.
[ 1101.648393][T25265] netlink: 180 bytes leftover after parsing attributes in process `syz.3.6448'.
[ 1101.850712][T25268] netlink: 132 bytes leftover after parsing attributes in process `syz.2.6449'.
[ 1101.900624][T25273] netlink: 164 bytes leftover after parsing attributes in process `syz.1.6451'.
[ 1102.266602][T25284] netlink: 1 bytes leftover after parsing attributes in process `syz.1.6455'.
[ 1102.503921][T25297] FAULT_INJECTION: forcing a failure.
[ 1102.503921][T25297] name failslab, interval 1, probability 0, space 0, times 0
[ 1102.520409][T25297] CPU: 0 PID: 25297 Comm: syz.3.6459 Not tainted syzkaller #0
[ 1102.527974][T25297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1102.538146][T25297] Call Trace:
[ 1102.541442][T25297]  <TASK>
[ 1102.544493][T25297]  dump_stack_lvl+0x18c/0x250
[ 1102.549220][T25297]  ? sctp_sendmsg+0x1575/0x28c0
[ 1102.554097][T25297]  ? ___sys_sendmsg+0x2a6/0x360
[ 1102.559086][T25297]  ? show_regs_print_info+0x20/0x20
[ 1102.564334][T25297]  ? load_image+0x420/0x420
[ 1102.568975][T25297]  should_fail_ex+0x39d/0x4d0
[ 1102.573815][T25297]  should_failslab+0x9/0x20
[ 1102.578442][T25297]  slab_pre_alloc_hook+0x59/0x310
[ 1102.583520][T25297]  ? sctp_add_bind_addr+0x8c/0x360
[ 1102.588725][T25297]  __kmem_cache_alloc_node+0x53/0x250
[ 1102.594227][T25297]  ? sctp_add_bind_addr+0x8c/0x360
[ 1102.599371][T25297]  kmalloc_trace+0x2a/0xe0
[ 1102.603909][T25297]  sctp_add_bind_addr+0x8c/0x360
[ 1102.608892][T25297]  sctp_copy_local_addr_list+0x315/0x4f0
[ 1102.614653][T25297]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[ 1102.621272][T25297]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[ 1102.627532][T25297]  ? sctp_v4_is_any+0x35/0x60
[ 1102.632293][T25297]  ? sctp_copy_one_addr+0x8c/0x350
[ 1102.637580][T25297]  sctp_bind_addr_copy+0xb3/0x3c0
[ 1102.642778][T25297]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[ 1102.649115][T25297]  sctp_connect_new_asoc+0x2f9/0x6a0
[ 1102.654399][T25297]  ? __sctp_connect+0xd80/0xd80
[ 1102.659362][T25297]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1102.664910][T25297]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[ 1102.670564][T25297]  ? security_sctp_bind_connect+0x89/0xb0
[ 1102.676382][T25297]  sctp_sendmsg+0x1575/0x28c0
[ 1102.681150][T25297]  ? sctp_getsockopt+0xb60/0xb60
[ 1102.686259][T25297]  ? aa_sk_perm+0x83c/0x970
[ 1102.690766][T25297]  ? aa_af_perm+0x330/0x330
[ 1102.695267][T25297]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[ 1102.701778][T25297]  ? sock_rps_record_flow+0x19/0x3f0
[ 1102.707067][T25297]  ? inet_sendmsg+0xe9/0x2f0
[ 1102.711705][T25297]  ? inet_send_prepare+0x260/0x260
[ 1102.716912][T25297]  ____sys_sendmsg+0x5ba/0x960
[ 1102.721675][T25297]  ? __asan_memset+0x22/0x40
[ 1102.726350][T25297]  ? __sys_sendmsg_sock+0x30/0x30
[ 1102.731453][T25297]  ? __import_iovec+0x3fa/0x850
[ 1102.736398][T25297]  ? import_iovec+0x73/0xa0
[ 1102.741074][T25297]  ___sys_sendmsg+0x2a6/0x360
[ 1102.745923][T25297]  ? get_pid_task+0x20/0x1e0
[ 1102.750599][T25297]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1102.755636][T25297]  ? __lock_acquire+0x7d40/0x7d40
[ 1102.760940][T25297]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1102.765881][T25297]  ? __x64_sys_sendmsg+0x80/0x80
[ 1102.770911][T25297]  ? lockdep_hardirqs_on+0x98/0x150
[ 1102.776280][T25297]  do_syscall_64+0x55/0xa0
[ 1102.780771][T25297]  ? clear_bhb_loop+0x40/0x90
[ 1102.785447][T25297]  ? clear_bhb_loop+0x40/0x90
[ 1102.790207][T25297]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1102.796094][T25297] RIP: 0033:0x7f9c97b9c819
[ 1102.800608][T25297] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1102.820739][T25297] RSP: 002b:00007f9c98b2a028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1102.829244][T25297] RAX: ffffffffffffffda RBX: 00007f9c97e15fa0 RCX: 00007f9c97b9c819
[ 1102.837393][T25297] RDX: 0000000000000080 RSI: 0000200000000380 RDI: 0000000000000006
[ 1102.846227][T25297] RBP: 00007f9c98b2a090 R08: 0000000000000000 R09: 0000000000000000
[ 1102.854201][T25297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1102.862513][T25297] R13: 00007f9c97e16038 R14: 00007f9c97e15fa0 R15: 00007ffd45a569b8
[ 1102.870670][T25297]  </TASK>
[ 1104.547391][    C1] 
[ 1104.547401][    C1] ================================
[ 1104.547406][    C1] WARNING: inconsistent lock state
[ 1104.547416][    C1] syzkaller #0 Not tainted
[ 1104.547425][    C1] --------------------------------
[ 1104.547430][    C1] inconsistent {INITIAL USE} -> {IN-NMI} usage.
[ 1104.547438][    C1] syz.0.6481/25361 [HC1[1]:SC0[0]:HE0:SE1] takes:
[ 1104.547457][    C1] ffff88806ad7bd20 (&htab->lockdep_key){....}-{2:2}, at: htab_lock_bucket+0x17d/0x300
[ 1104.547513][    C1] {INITIAL USE} state was registered at:
[ 1104.547523][    C1]   lock_acquire+0x19e/0x420
[ 1104.547540][    C1]   _raw_spin_lock+0x2e/0x40
[ 1104.547559][    C1]   htab_lock_bucket+0x17d/0x300
[ 1104.547574][    C1]   htab_lru_map_update_elem+0x2c6/0x990
[ 1104.547590][    C1]   bpf_map_update_value+0x660/0x720
[ 1104.547604][    C1]   map_update_elem+0x57b/0x700
[ 1104.547619][    C1]   __sys_bpf+0x6b5/0x890
[ 1104.547634][    C1]   __x64_sys_bpf+0x7c/0x90
[ 1104.547648][    C1]   do_syscall_64+0x55/0xa0
[ 1104.547662][    C1]   entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1104.547681][    C1] irq event stamp: 2032
[ 1104.547687][    C1] hardirqs last  enabled at (2031): [<ffffffff8a9004f3>] _raw_spin_unlock_irq+0x23/0x50
[ 1104.547710][    C1] hardirqs last disabled at (2032): [<ffffffff8a862903>] exc_debug+0x73/0x140
[ 1104.547730][    C1] softirqs last  enabled at (1808): [<ffffffff8196f317>] bpf_map_alloc_id+0x87/0xd0
[ 1104.547750][    C1] softirqs last disabled at (1806): [<ffffffff8196f2b1>] bpf_map_alloc_id+0x21/0xd0
[ 1104.547772][    C1] 
[ 1104.547772][    C1] other info that might help us debug this:
[ 1104.547777][    C1]  Possible unsafe locking scenario:
[ 1104.547777][    C1] 
[ 1104.547781][    C1]        CPU0
[ 1104.547785][    C1]        ----
[ 1104.547788][    C1]   lock(&htab->lockdep_key);
[ 1104.547798][    C1]   <Interrupt>
[ 1104.547802][    C1]     lock(&htab->lockdep_key);
[ 1104.547812][    C1] 
[ 1104.547812][    C1]  *** DEADLOCK ***
[ 1104.547812][    C1] 
[ 1104.547816][    C1] 1 lock held by syz.0.6481/25361:
[ 1104.547826][    C1]  #0: ffff88806b831c68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x1b7/0x1b10
[ 1104.547871][    C1] 
[ 1104.547871][    C1] stack backtrace:
[ 1104.547876][    C1] CPU: 1 PID: 25361 Comm: syz.0.6481 Not tainted syzkaller #0
[ 1104.547895][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1104.547904][    C1] Call Trace:
[ 1104.547910][    C1]  <#DB>
[ 1104.547917][    C1]  dump_stack_lvl+0x18c/0x250
[ 1104.547947][    C1]  ? show_regs_print_info+0x20/0x20
[ 1104.547982][    C1]  ? print_usage_bug+0x475/0x690
[ 1104.548001][    C1]  ? verify_lock_unused+0x18/0x140
[ 1104.548027][    C1]  lock_acquire+0x2c2/0x420
[ 1104.548051][    C1]  ? htab_lock_bucket+0x17d/0x300
[ 1104.548073][    C1]  ? read_lock_is_recursive+0x20/0x20
[ 1104.548112][    C1]  _raw_spin_lock+0x2e/0x40
[ 1104.548129][    C1]  ? htab_lock_bucket+0x17d/0x300
[ 1104.548148][    C1]  htab_lock_bucket+0x17d/0x300
[ 1104.548169][    C1]  ? htab_lru_map_delete_node+0x760/0x760
[ 1104.548192][    C1]  ? verify_lock_unused+0x18/0x140
[ 1104.548211][    C1]  ? jhash+0x34e/0x740
[ 1104.548227][    C1]  htab_lru_map_delete_elem+0x1a4/0x650
[ 1104.548247][    C1]  ? htab_lru_map_update_elem+0x990/0x990
[ 1104.548261][    C1]  ? perf_callchain+0x220/0x220
[ 1104.548286][    C1]  bpf_prog_69bf374aa003a95d+0x46/0x4a
[ 1104.548309][    C1]  bpf_overflow_handler+0x1fc/0x510
[ 1104.548336][    C1]  ? __perf_event_overflow+0x4f8/0x630
[ 1104.548352][    C1]  ? bpf_overflow_handler+0xde/0x510
[ 1104.548373][    C1]  ? tp_perf_event_destroy+0x20/0x20
[ 1104.548395][    C1]  ? __perf_event_account_interrupt+0x187/0x280
[ 1104.548408][    C1]  __perf_event_overflow+0x447/0x630
[ 1104.548424][    C1]  perf_swevent_event+0x319/0x570
[ 1104.548437][    C1]  ? perf_tp_event+0x1520/0x1520
[ 1104.548456][    C1]  perf_bp_event+0x319/0x430
[ 1104.548471][    C1]  ? perf_event_free_bpf_prog+0x120/0x120
[ 1104.548510][    C1]  ? lock_acquire+0x2c2/0x420
[ 1104.548526][    C1]  hw_breakpoint_exceptions_notify+0x23e/0x670
[ 1104.548543][    C1]  notifier_call_chain+0x197/0x380
[ 1104.548557][    C1]  ? atomic_notifier_call_chain+0x26/0x180
[ 1104.548570][    C1]  atomic_notifier_call_chain+0xda/0x180
[ 1104.548583][    C1]  notify_die+0x145/0x1a0
[ 1104.548596][    C1]  ? srcu_init_notifier_head+0x90/0x90
[ 1104.548613][    C1]  ? rcu_is_watching+0x15/0xb0
[ 1104.548627][    C1]  notify_debug+0x2e/0x50
[ 1104.548637][    C1]  exc_debug+0xde/0x140
[ 1104.548649][    C1]  asm_exc_debug+0x1e/0x40
[ 1104.548661][    C1] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 1104.548672][    C1] Code: 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 29 f8 48 01
[ 1104.548680][    C1] RSP: 0018:ffffc9000f81f978 EFLAGS: 00050206
[ 1104.548688][    C1] RAX: ffffffff8427e501 RBX: 0000000000001000 RCX: 0000000000000fff
[ 1104.548695][    C1] RDX: 0000000000000001 RSI: 0000200000000301 RDI: ffff88806cbdc001
[ 1104.548701][    C1] RBP: ffffc9000f81fad8 R08: ffff88806cbdcfff R09: 1ffff1100d97b9ff
[ 1104.548708][    C1] R10: dffffc0000000000 R11: ffffed100d97ba00 R12: ffff88806cbdc000
[ 1104.548715][    C1] R13: 0000200000000300 R14: ffffc9000f81fdb8 R15: 1ffff92001f03fb7
[ 1104.548727][    C1]  ? _copy_from_iter+0x1a1/0x12e0
[ 1104.548748][    C1]  </#DB>
[ 1104.548751][    C1]  <TASK>
[ 1104.548754][    C1]  _copy_from_iter+0x24e/0x12e0
[ 1104.548768][    C1]  ? pipe_write+0x713/0x1b10
[ 1104.548786][    C1]  ? copyout_mc+0x70/0x70
[ 1104.548799][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1104.548811][    C1]  ? lock_chain_count+0x20/0x20
[ 1104.548820][    C1]  ? _raw_spin_lock_irq+0xbb/0xf0
[ 1104.548831][    C1]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1104.548842][    C1]  ? page_copy_sane+0x4e/0x270
[ 1104.548856][    C1]  copy_page_from_iter+0x7b/0x100
[ 1104.548877][    C1]  pipe_write+0x868/0x1b10
[ 1104.548906][    C1]  ? pipe_read+0x1310/0x1310
[ 1104.548919][    C1]  ? end_current_label_crit_section+0x149/0x170
[ 1104.548933][    C1]  ? common_file_perm+0x198/0x1f0
[ 1104.548950][    C1]  vfs_write+0x46c/0x990
[ 1104.548967][    C1]  ? file_end_write+0x250/0x250
[ 1104.548983][    C1]  ? __fget_files+0x43d/0x4b0
[ 1104.549009][    C1]  ? __fdget_pos+0x1d8/0x330
[ 1104.549019][    C1]  ? ksys_write+0x75/0x260
[ 1104.549032][    C1]  ksys_write+0x150/0x260
[ 1104.549046][    C1]  ? __ia32_sys_read+0x90/0x90
[ 1104.549060][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[ 1104.549074][    C1]  do_syscall_64+0x55/0xa0
[ 1104.549082][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1104.549092][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1104.549104][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1104.549114][    C1] RIP: 0033:0x7f541039c819
[ 1104.549123][    C1] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1104.549131][    C1] RSP: 002b:00007f541130d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1104.549140][    C1] RAX: ffffffffffffffda RBX: 00007f5410615fa0 RCX: 00007f541039c819
[ 1104.549146][    C1] RDX: 000000000000fdef RSI: 0000200000000300 RDI: 0000000000000000
[ 1104.549152][    C1] RBP: 00007f5410432c91 R08: 0000000000000000 R09: 0000000000000000
[ 1104.549157][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1104.549163][    C1] R13: 00007f5410616038 R14: 00007f5410615fa0 R15: 00007ffcd55a9428
[ 1104.549180][    C1]  </TASK>