last executing test programs:

6.294504254s ago: executing program 2 (id=2882):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/26], 0x50)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000015c0)={&(0x7f0000001300)=@ieee802154={0x24, @short={0x2, 0x3, 0xaaa3}}, 0x80, &(0x7f00000014c0)=[{&(0x7f0000004040)}, {&(0x7f0000005040)="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", 0xffc}, {&(0x7f0000001380)="4462e7530689fd11b7b9f10dc43bbe5e1456d74ce550", 0x16}, {&(0x7f00000013c0)="800d6cc0f690b1fc72c8cf222fa2405ebadf6dc07b73bd061fcfc7330bea37c1eed34f899a312f47ca11e24d5c4d7736fbcf464b17d21a739d97598fac8d1037fe98913cf054310b6365bc734b72bca515c03dadedfe1b8b0d662b35d2675f9e1146f70d9a034b4ca8f1df412521aa50dac22eaa546d8d46309338d6489eda84ab3ee525146e5423999aa3e0d95d19bdbd25ab5ff662edf9b278874323cc9b037281f6321cefd3bddc654fab898df221cb5b0804222b2b9590b73546a59eaa59f2ae8b8bacee3fdb0e9189d65701c25b75daff759ad28ef710c475d11a82cb057df22c50f1e9003674a3b4d005faaa59137ebefe50b18764fbfc54673f", 0xfd}], 0x4, 0x0, 0x88}, 0x24008016)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000006c0)="5c00000013006bcd9e3fe3dc6e48aa310b6b8703100000001f03000000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5", 0x56}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4014)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0xff, 0x0, 0x3, 0x40002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6c}, 0x11000, 0x0, 0x0, 0x6, 0x0, 0x10000, 0x4e04}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x5, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0xffffffffffffffff, 0x3f, 0x2, 0x0, 0x3, 0x2, 0x0, 0x2000, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$kcm(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x2e}], 0x1}, 0x8080)

5.064359899s ago: executing program 2 (id=2887):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r2=>0x0, <r3=>0x0})
close(r2)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
r4 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r4, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='\x00\x00\x00'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r5=>0x0, <r6=>0x0})
close(r5)
setsockopt$sock_attach_bpf(r6, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)

4.84746655s ago: executing program 2 (id=2891):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440))
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@ptr]}}, 0x0, 0x26}, 0x28)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x9d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x1}, 0x80000, 0xca, 0x0, 0x0, 0x0, 0x400000, 0xfffc, 0x0, 0xe, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg$unix(r0, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x1c0)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYRES8=r1, @ANYBLOB="3eca", @ANYRES8=r2], 0x9a)

4.679073538s ago: executing program 2 (id=2895):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000000040000cd00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0xff, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, @perf_config_ext={0x9}, 0x104002, 0xa1b7, 0x0, 0x0, 0x6f00000000000, 0xffffffff, 0x0, 0x0, 0xffffbffe, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x89f1, &(0x7f0000000080))

4.505578905s ago: executing program 1 (id=2897):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x17, 0x0, 0x4, 0xff, 0x80, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b774e90000000000850000005800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x17, &(0x7f0000000c80)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x2}, {0x85, 0x0, 0x0, 0x51}}, {{0x5, 0x0, 0x5, 0x9, 0x0, 0x1, 0x8000000}}, [@printk={@d}]}, &(0x7f0000000000)='GPL\x00'}, 0x7b)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x40000020)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'lo\x00', 0x2})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000004c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0x23, &(0x7f0000000000), 0x4)
write$cgroup_devices(r3, &(0x7f0000000200)=ANY=[], 0x9)
recvmsg$unix(r2, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x15}, 0x0)

4.461978229s ago: executing program 1 (id=2906):
r0 = socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xb, 0xe, &(0x7f0000003fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x171}, 0x48)
mkdir(&(0x7f0000000100)='./file0\x00', 0x38)
r1 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000310081044e81f782db44b904021d080005000000e8fe55a1180015000600142603600e120900210000090401a80016000a00014006f5ff00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb5", 0x93}], 0x1}, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="180000007600"], 0xfe33)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@llc={0x1a, 0x30f, 0x1, 0x0, 0x6, 0x4, @broadcast}, 0x80, 0x0}, 0x30000040)
socketpair(0x22, 0x800, 0x7fff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000140)='cpu.max.burst\x00', 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000006c0)="5c00000013006bcd9e3fe3dc6e48aa310b6b8703100000001f03000000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

4.4561435s ago: executing program 2 (id=2907):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="5c00000026006bab9a3fe3d86e17aa31106b876c1d0000007ea60864160af36504001a0038001d004231a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb5b64f69853362ac3407173ec", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4080)
recvmsg$kcm(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2020)
recvmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, 0x0}, 0x40000100)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xe8001, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
recvmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)

3.614518735s ago: executing program 0 (id=2909):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x93, &(0x7f00000003c0)=""/147}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x10002)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0x0}, 0x50)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b00)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x7f}, {{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1c}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x3, 0xa, 0x2}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x4, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3.613677095s ago: executing program 1 (id=2910):
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
gettid()
bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x3, 0x8, 0x2, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000d000)={0xa, 0x3, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], &(0x7f0000014ff5)='GPL\x00', 0x2, 0x103a, &(0x7f0000014000)=""/4096, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2a3}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, &(0x7f0000000b80), 0x0}, 0x50)
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x109a42, 0x0)
ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000040)=r0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1, 0x9, 0x492f, 0x5, 0x41, 0x1, 0xfffffffc}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040), &(0x7f0000000140), 0xca, r3}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000340)={r3, &(0x7f00000001c0), &(0x7f0000000300)=""/16}, 0x20)

2.391043799s ago: executing program 0 (id=2899):
r0 = socket$kcm(0xa, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x10, 0x2, &(0x7f00000004c0)=ANY=[@ANYBLOB="9110f8ff0000000095"], &(0x7f0000000000)='GPL\x00'}, 0x94)
r1 = socket$kcm(0x2, 0x3, 0x84)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x108b84, 0x4, 0x0, 0x1, 0x0, 0x8001, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
sendmsg$inet(r1, &(0x7f0000000700)={&(0x7f0000000280)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="280000000000000000000000070000000717a87f000001ac141400e0000001ac1e0001ac1414bb011c000000000000000000000008000000", @ANYRES64=r1], 0x48}, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x541b, &(0x7f0000000640))
setsockopt$sock_attach_bpf(r0, 0x29, 0x18, &(0x7f0000000100), 0x120)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000480)="5c00000012006bab9a3fe3d86e17aa0b046b876c1d0048380019001931a0e69ee517d34460bc06000000a701251e6182949a3651f60a84c9f4d4938037e70e4509c51c268811000000000000000000002571cd53b9851b30599980bc", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d2f, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x401}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x8000)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030025000b12d25a80648c2594f90224fc60100c034002bf0900053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x600300)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000200)=""/160, 0xa0}, {&(0x7f0000000940)=""/187, 0xbb}, {&(0x7f0000005980)=""/4118, 0x1016}, {&(0x7f0000000a00)=""/4054, 0xfffffffffffffe05}], 0x4}, 0x40012102)

2.390772489s ago: executing program 1 (id=2900):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$kcm(0xa, 0x2, 0x73)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
socketpair(0x28, 0x1, 0x28, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)=r0}, 0x20)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x2000000, 0x7}, 0x800, 0x9, 0x6, 0x6, 0xfffffffffdf7bbfe, 0x0, 0x5, 0x0, 0xfffffffe, 0x0, 0x3}, 0x0, 0x4000000000e, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x10, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f1, &(0x7f0000000080))

2.390579809s ago: executing program 3 (id=2901):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r2=>0x0, <r3=>0x0})
close(r2)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
r4 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r4, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='\x00\x00\x00'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r5=>0x0, <r6=>0x0})
close(r5)
setsockopt$sock_attach_bpf(r6, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)

2.226979055s ago: executing program 0 (id=2902):
socket$kcm(0x10, 0x2, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
close(0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000feffffff00000000000000001801000020646c2500000000002020207b1ae8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000004000000850000000600000085000000230000009500"], 0x0, 0xfffffffe, 0x0, 0x0, 0x727c45cd4283345, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x3fc, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x5}, 0x100e64, 0xc78}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r3, &(0x7f0000000180), 0x40001)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

2.18326922s ago: executing program 3 (id=2903):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000000c0)="1c0000001a", 0x5}, {&(0x7f0000000140)="03000000fb73fc8040250080f2dc06a9258f2e", 0x13}], 0x2}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180000000000000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
ioctl$PERF_EVENT_IOC_REFRESH(r3, 0x2402, 0x7f)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r5 = socket$kcm(0xa, 0x2, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x3, 0x4, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x7, 0x61, 0x11, 0x4c}, [@call={0x85, 0x0, 0x0, 0x15}]}, &(0x7f0000000ac0)='GPL\x00', 0x6, 0x0, 0x0, 0x41000}, 0x94)
sendmsg$kcm(r5, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x4e23, 0x0, @local}, 0x80, 0x0, 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="c805"], 0x5c8}, 0xf7e5)
write$cgroup_subtree(r5, 0x0, 0xfdef)

2.002239858s ago: executing program 0 (id=2905):
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0x12, &(0x7f00000008c0)=r3, 0x4)
r4 = socket$kcm(0x11, 0x200000000000002, 0x300)
r5 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x1)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r8)
recvmsg$unix(r7, &(0x7f0000000400)={0x0, 0xfffffffffffffc9a, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r9=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x107, 0x12, &(0x7f00000008c0)=r9, 0x4)
close(r4)

1.876691901s ago: executing program 0 (id=2908):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x40000000001, 0xffffffffffffffff, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = perf_event_open$cgroup(&(0x7f0000000200)={0x5, 0x80, 0x2, 0x8, 0x8, 0xb, 0x0, 0x1, 0x4000, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0xd, 0x0, @perf_config_ext={0x4, 0x7}, 0x100, 0x0, 0x348, 0x6, 0x1, 0x2000000, 0x9, 0x0, 0x6cfdcfa4, 0x0, 0x9}, r0, 0x6, r0, 0x1)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000140)=']$]*\x00')
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x100)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x86bf2056334f3ae6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open$cgroup(&(0x7f0000000e40)={0x5, 0x80, 0x6, 0x7, 0x81, 0x75, 0x0, 0x3, 0x40400, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x4, @perf_bp={0x0, 0x8}, 0x10c510, 0x7, 0x80000000, 0x3, 0x400403, 0x3, 0x8, 0x0, 0x8000006, 0x0, 0x8}, 0xffffffffffffffff, 0x0, r0, 0x2)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$kcm(0xa, 0x1, 0x0)
sendmsg$kcm(r4, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x4001, 0x0, @empty}, 0x80, 0x0}, 0x20000001)
sendmsg(r4, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000440)="a6", 0xffffff58}], 0x1}, 0x40001)

1.868493822s ago: executing program 3 (id=2918):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000000c0)="1c0000001a", 0x5}, {&(0x7f0000000140)="03000000fb73fc8040250080f2dc06a9258f2e", 0x13}], 0x2}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180000000000000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
ioctl$PERF_EVENT_IOC_REFRESH(r3, 0x2402, 0x7f)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r5 = socket$kcm(0xa, 0x2, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x3, 0x4, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x7, 0x61, 0x11, 0x4c}, [@call={0x85, 0x0, 0x0, 0x15}]}, &(0x7f0000000ac0)='GPL\x00', 0x6, 0x0, 0x0, 0x41000}, 0x94)
sendmsg$kcm(r5, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x4e23, 0x0, @local}, 0x80, 0x0, 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="c805"], 0x5c8}, 0xf7e5)
write$cgroup_subtree(r5, 0x0, 0xfdef)

1.499474049s ago: executing program 0 (id=2911):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0, r0}, 0x18)
syz_clone(0x41064400, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001240)}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x13240, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110c230000)
ioctl$TUNSETOFFLOAD(r2, 0x8010743f, 0xf0ff1f00000000)

1.499265869s ago: executing program 3 (id=2912):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, r1, 0xa)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1c}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x18}}, [@snprintf={{0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x3, 0xa, 0x2}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x1a}, {0x3, 0x0, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x4, 0x0, 0xa, 0x9}, {0x18, 0x2, 0x2, 0x0, r2}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x94)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000040)={0x1, 0x0, 0x0}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x88001)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)

1.216725787s ago: executing program 3 (id=2913):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="0040020000000000000000000000000000001700", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/27], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$cgroup_pid(r1, &(0x7f0000000000), 0x2a979d)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000580)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000001db685000000230000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200000a000000b703000000000000850000007500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='percpu_free_percpu\x00', r2}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000540)=@base={0x6, 0x4, 0x70be, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x11, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000020000000000000000000000850000009b000000b7080000000000007b8af8ff00000000b7080000003c00007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000020000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0xe, 0x0, &(0x7f00000003c0)="386d178529a39dea18dd3f87d7a5", 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

528.276187ms ago: executing program 3 (id=2914):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x93, &(0x7f00000003c0)=""/147}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x10002)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0x0}, 0x50)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b00)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x7f}, {{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1c}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x3, 0xa, 0x2}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x4, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

157.187235ms ago: executing program 1 (id=2915):
socket$kcm(0x1e, 0x1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x10)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0x1}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x6, 0x0, 0xffda, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000240)='ns/user\x00')
socket$kcm(0x10, 0x400000002, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x5}, 0x100e64, 0xc78, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10}}], 0xa0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x10, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x4}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'wlan0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8946, &(0x7f0000000080))

57.188925ms ago: executing program 2 (id=2916):
socket$kcm(0x2b, 0x1, 0x0)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, @perf_config_ext={0x9, 0x2}, 0x1000, 0x4, 0x0, 0x8, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], 0x0, 0x6, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x10021, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x4861}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
ioctl$SIOCSIFHWADDR(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.avg_queue_size\x00', 0x26e1, 0x0)
close(r3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r3, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="0100008d8dff"})
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001540)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0)

0s ago: executing program 1 (id=2917):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1005a2, 0x0, 0x5, 0x6, 0x10000, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="6f50aa8100000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r0}, 0x10)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x2a040, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r1}, 0x0, 0x0}, 0x20)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000280)=0x2d5, 0x12)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x43, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x180, 0x4, 0x28}, 0x50)

kernel console output (not intermixed with test programs):

T5773] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   66.994240][ T5779] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   66.999440][ T5773] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   67.002266][ T5779] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   67.015300][ T5773] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   67.016599][ T5779] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   67.023382][ T5773] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   67.030885][ T5779] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   67.044850][ T5779] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   67.051944][ T5779] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   67.066281][ T5779] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   67.073685][ T5779] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   67.490296][ T5766] chnl_net:caif_netlink_parms(): no params data found
[   67.601885][ T5769] chnl_net:caif_netlink_parms(): no params data found
[   67.646621][ T5770] chnl_net:caif_netlink_parms(): no params data found
[   67.657533][ T5771] chnl_net:caif_netlink_parms(): no params data found
[   67.706150][ T5766] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.713258][ T5766] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.721242][ T5766] bridge_slave_0: entered allmulticast mode
[   67.728119][ T5766] bridge_slave_0: entered promiscuous mode
[   67.737238][ T5766] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.744317][ T5766] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.751564][ T5766] bridge_slave_1: entered allmulticast mode
[   67.758230][ T5766] bridge_slave_1: entered promiscuous mode
[   67.854749][ T5766] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.864132][ T5769] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.872696][ T5769] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.882046][ T5769] bridge_slave_0: entered allmulticast mode
[   67.889608][ T5769] bridge_slave_0: entered promiscuous mode
[   67.902585][ T5769] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.909865][ T5769] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.917374][ T5769] bridge_slave_1: entered allmulticast mode
[   67.924036][ T5769] bridge_slave_1: entered promiscuous mode
[   67.936967][ T5766] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   68.024176][ T5769] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   68.034216][ T5770] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.041974][ T5770] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.049557][ T5770] bridge_slave_0: entered allmulticast mode
[   68.057674][ T5770] bridge_slave_0: entered promiscuous mode
[   68.075976][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.083090][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.090592][ T5771] bridge_slave_0: entered allmulticast mode
[   68.098163][ T5771] bridge_slave_0: entered promiscuous mode
[   68.108486][ T5766] team0: Port device team_slave_0 added
[   68.114640][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.122326][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.134454][ T5771] bridge_slave_1: entered allmulticast mode
[   68.141352][ T5771] bridge_slave_1: entered promiscuous mode
[   68.160145][ T5769] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   68.171809][ T5770] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.179144][ T5770] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.186600][ T5770] bridge_slave_1: entered allmulticast mode
[   68.193251][ T5770] bridge_slave_1: entered promiscuous mode
[   68.202380][ T5766] team0: Port device team_slave_1 added
[   68.251458][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   68.290946][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   68.305586][ T5769] team0: Port device team_slave_0 added
[   68.313654][ T5770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   68.326186][ T5770] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   68.336192][ T5766] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.343145][ T5766] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.369490][ T5766] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.393269][ T5769] team0: Port device team_slave_1 added
[   68.415839][ T5766] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.422789][ T5766] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.448844][ T5766] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.496739][ T5770] team0: Port device team_slave_0 added
[   68.505535][ T5770] team0: Port device team_slave_1 added
[   68.513368][ T5771] team0: Port device team_slave_0 added
[   68.533048][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.540077][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.566135][ T5769] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.590104][ T5771] team0: Port device team_slave_1 added
[   68.628195][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.635333][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.661417][ T5769] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.699512][ T5766] hsr_slave_0: entered promiscuous mode
[   68.705916][ T5766] hsr_slave_1: entered promiscuous mode
[   68.720562][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.727670][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.754023][ T5770] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.768347][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.775477][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.801691][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.821963][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.831338][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.859881][ T5770] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.884552][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.891543][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.917640][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.948823][ T5769] hsr_slave_0: entered promiscuous mode
[   68.957629][ T5769] hsr_slave_1: entered promiscuous mode
[   68.963640][ T5769] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   68.972077][ T5769] Cannot create hsr debugfs directory
[   69.000155][   T51] Bluetooth: hci0: command tx timeout
[   69.031107][ T5770] hsr_slave_0: entered promiscuous mode
[   69.040030][ T5770] hsr_slave_1: entered promiscuous mode
[   69.047502][ T5770] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   69.055238][ T5770] Cannot create hsr debugfs directory
[   69.075024][   T51] Bluetooth: hci1: command tx timeout
[   69.143679][ T5771] hsr_slave_0: entered promiscuous mode
[   69.150746][ T5771] hsr_slave_1: entered promiscuous mode
[   69.155326][   T51] Bluetooth: hci2: command tx timeout
[   69.156451][ T5773] Bluetooth: hci3: command tx timeout
[   69.167907][ T5771] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   69.175844][ T5771] Cannot create hsr debugfs directory
[   69.449701][ T5766] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   69.480671][ T5766] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   69.505675][ T5766] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   69.526851][ T5766] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   69.562512][ T5769] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   69.575405][ T5769] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   69.598230][ T5769] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   69.609286][ T5769] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   69.667918][ T5771] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   69.680311][ T5771] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   69.689727][ T5771] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   69.700958][ T5771] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   69.793280][ T5770] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   69.808057][ T5770] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   69.821245][ T5770] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   69.847067][ T5770] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   69.962038][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.981699][ T5769] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.005940][ T5766] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.022628][ T5771] 8021q: adding VLAN 0 to HW filter on device team0
[   70.040027][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.047346][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.069717][ T5769] 8021q: adding VLAN 0 to HW filter on device team0
[   70.089054][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.096228][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.111113][ T5766] 8021q: adding VLAN 0 to HW filter on device team0
[   70.132763][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.139920][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.149765][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.156882][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.172295][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.179443][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.191944][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.199046][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.273200][ T5771] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   70.313323][ T5770] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.407205][ T5770] 8021q: adding VLAN 0 to HW filter on device team0
[   70.456148][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.463315][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.499818][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.506991][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.711319][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.871366][ T5766] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.881532][ T5771] veth0_vlan: entered promiscuous mode
[   70.918746][ T5769] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.956701][ T5771] veth1_vlan: entered promiscuous mode
[   70.981247][ T5770] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.042917][ T5766] veth0_vlan: entered promiscuous mode
[   71.065787][ T5769] veth0_vlan: entered promiscuous mode
[   71.075917][ T5773] Bluetooth: hci0: command tx timeout
[   71.118360][ T5769] veth1_vlan: entered promiscuous mode
[   71.124747][ T5770] veth0_vlan: entered promiscuous mode
[   71.134081][ T5771] veth0_macvtap: entered promiscuous mode
[   71.142679][ T5766] veth1_vlan: entered promiscuous mode
[   71.155257][ T5773] Bluetooth: hci1: command tx timeout
[   71.159080][ T5771] veth1_macvtap: entered promiscuous mode
[   71.176287][ T5770] veth1_vlan: entered promiscuous mode
[   71.194291][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.206971][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.233768][ T5771] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.242876][ T5773] Bluetooth: hci2: command tx timeout
[   71.245886][ T5773] Bluetooth: hci3: command tx timeout
[   71.250844][ T5771] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.262724][ T5771] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.271706][ T5771] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.310897][ T5766] veth0_macvtap: entered promiscuous mode
[   71.327832][ T5766] veth1_macvtap: entered promiscuous mode
[   71.377958][ T5769] veth0_macvtap: entered promiscuous mode
[   71.388341][ T5770] veth0_macvtap: entered promiscuous mode
[   71.418923][  T141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.431134][  T141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.443018][ T5770] veth1_macvtap: entered promiscuous mode
[   71.458643][ T5766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.470685][ T5766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.483490][ T5766] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.492107][ T5769] veth1_macvtap: entered promiscuous mode
[   71.527296][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.537929][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.548227][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.562858][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[   71.563166][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.573217][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[   71.581374][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.597472][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.602436][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.616480][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.629951][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.634809][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.651707][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.661662][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.672188][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.689691][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.706007][ T5766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.724141][ T5766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.741149][ T5766] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.753352][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.769474][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.780176][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.792222][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.803622][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.818734][ T5769] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.828817][ T5769] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.838287][ T5769] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.847311][ T5769] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.860599][ T5766] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.869869][ T5766] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.879498][ T5766] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.888552][ T5766] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.900907][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.911865][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.922132][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.932821][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.942692][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.953265][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.966147][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.038228][ T5770] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.047670][ T5770] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.057095][ T5770] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.066622][ T5770] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.119137][ T5855] Zero length message leads to an empty skb
[   72.135356][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.143194][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.205003][    C0] hrtimer: interrupt took 75939 ns
[   72.231916][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.276566][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.300085][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.333578][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.444072][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.472887][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.542105][ T3487] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.604730][ T3487] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.732265][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.789077][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.165659][ T5773] Bluetooth: hci0: command tx timeout
[   73.237187][ T5773] Bluetooth: hci1: command tx timeout
[   73.317303][ T5773] Bluetooth: hci3: command tx timeout
[   73.322757][ T5773] Bluetooth: hci2: command tx timeout
[   73.353953][ T5773] Bluetooth: hci0: unexpected event 0x08 length: 15 > 4
[   74.158992][ T5773] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[   74.248777][ T5901] netlink: 'syz.2.20': attribute type 1 has an invalid length.
[   74.274149][ T5901] netlink: 'syz.2.20': attribute type 4 has an invalid length.
[   74.297298][ T5901] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.20'.
[   74.746286][ T5916] netlink: 194488 bytes leftover after parsing attributes in process `syz.0.27'.
[   75.020727][ T5924] warning: `syz.0.28' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   75.042948][ T5773] Bluetooth: hci1: unexpected subevent 0x0a length: 15 < 30
[   75.237473][ T5773] Bluetooth: hci0: command tx timeout
[   75.318030][ T5773] Bluetooth: hci1: command tx timeout
[   75.363744][ T5939] netlink: 203516 bytes leftover after parsing attributes in process `syz.2.36'.
[   75.373371][ T5939] netlink: zone id is out of range
[   75.380644][ T5939] netlink: del zone limit has 8 unknown bytes
[   75.394912][ T5773] Bluetooth: hci3: command tx timeout
[   75.404910][ T5773] Bluetooth: hci2: command tx timeout
[   75.436912][ T5940] netlink: 'syz.1.35': attribute type 21 has an invalid length.
[   75.445179][ T5940] IPv6: NLM_F_CREATE should be specified when creating new route
[   75.453671][ T5940] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   75.461367][ T5940] IPv6: NLM_F_CREATE should be set when creating new route
[   75.469111][ T5940] IPv6: NLM_F_CREATE should be set when creating new route
[   75.476599][ T5940] IPv6: NLM_F_CREATE should be set when creating new route
[   75.624539][ T5945] syzkaller0: entered promiscuous mode
[   75.644983][ T5945] syzkaller0: entered allmulticast mode
[   78.699589][ T5988] netlink: 'syz.2.55': attribute type 28 has an invalid length.
[   78.991188][ T5993] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[   79.400373][ T6003] sctp: [Deprecated]: syz.0.62 (pid 6003) Use of int in max_burst socket option deprecated.
[   79.400373][ T6003] Use struct sctp_assoc_value instead
[   81.879325][   T28] cfg80211: failed to load regulatory.db
[   82.466004][ T6014] netlink: 'syz.3.66': attribute type 10 has an invalid length.
[   82.546899][ T6014] batman_adv: batadv0: Adding interface: team0
[   82.584092][ T6015] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.65'.
[   82.597789][ T6014] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.655359][ T6014] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   83.210987][ T6015] syz.2.65 (6015) used greatest stack depth: 20264 bytes left
[   83.303795][ T6025] Driver unsupported XDP return value 0 on prog  (id 52) dev N/A, expect packet loss!
[   83.413965][ T6027] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   83.652352][ T6029] netlink: 203516 bytes leftover after parsing attributes in process `syz.2.73'.
[   83.687125][ T6029] netlink: zone id is out of range
[   83.694429][ T6029] netlink: del zone limit has 8 unknown bytes
[   86.252798][ T6073] tc_dump_action: action bad kind
[   87.499713][ T6101] tc_dump_action: action bad kind
[   89.336342][ T6125] netlink: 203516 bytes leftover after parsing attributes in process `syz.1.112'.
[   89.360143][ T6125] netlink: zone id is out of range
[   89.375653][ T6125] netlink: del zone limit has 8 unknown bytes
[   89.820182][ T6137] tc_dump_action: action bad kind
[   91.925860][ T6159] netlink: 203516 bytes leftover after parsing attributes in process `syz.3.126'.
[   91.948384][ T6159] netlink: zone id is out of range
[   91.965709][ T6159] netlink: del zone limit has 8 unknown bytes
[   96.240754][ T6201] netlink: 'syz.1.145': attribute type 28 has an invalid length.
[  100.335081][ T6238] netlink: 'syz.3.157': attribute type 28 has an invalid length.
[  108.865811][ T6303] netlink: 'syz.2.178': attribute type 21 has an invalid length.
[  108.883498][ T6303] IPv6: NLM_F_CREATE should be specified when creating new route
[  108.923072][ T6303] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  108.930589][ T6303] IPv6: NLM_F_CREATE should be set when creating new route
[  108.938270][ T6303] IPv6: NLM_F_CREATE should be set when creating new route
[  108.945854][ T6303] IPv6: NLM_F_CREATE should be set when creating new route
[  110.739556][ T6344] netlink: 'syz.3.194': attribute type 21 has an invalid length.
[  110.765959][ T6344] IPv6: NLM_F_CREATE should be specified when creating new route
[  110.792520][ T6344] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  110.799937][ T6344] IPv6: NLM_F_CREATE should be set when creating new route
[  110.807644][ T6344] IPv6: NLM_F_CREATE should be set when creating new route
[  110.815156][ T6344] IPv6: NLM_F_CREATE should be set when creating new route
[  112.231332][ T6387] netlink: 'syz.0.211': attribute type 21 has an invalid length.
[  112.250394][ T6387] IPv6: NLM_F_CREATE should be specified when creating new route
[  112.283512][ T6387] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  112.291013][ T6387] IPv6: NLM_F_CREATE should be set when creating new route
[  112.298769][ T6387] IPv6: NLM_F_CREATE should be set when creating new route
[  112.306383][ T6387] IPv6: NLM_F_CREATE should be set when creating new route
[  112.346449][ T6389] netlink: 830 bytes leftover after parsing attributes in process `syz.2.216'.
[  112.351687][ T6392] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.217'.
[  112.565115][ T5773] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  113.215290][ T6407] Ÿë
: port 1(veth0_to_bridge) entered blocking state
[  113.222420][ T6407] Ÿë
: port 1(veth0_to_bridge) entered disabled state
[  113.268454][ T6407] veth0_to_bridge: entered allmulticast mode
[  113.286185][ T6407] veth0_to_bridge: entered promiscuous mode
[  113.365321][ T6411] Ÿë
: port 2(veth0_to_team) entered blocking state
[  113.382368][ T6411] Ÿë
: port 2(veth0_to_team) entered disabled state
[  113.415101][ T6411] veth0_to_team: entered allmulticast mode
[  113.439038][ T6411] veth0_to_team: entered promiscuous mode
[  118.299759][ T6433] netlink: 830 bytes leftover after parsing attributes in process `syz.0.232'.
[  118.489276][ T6449] netlink: 'syz.3.240': attribute type 21 has an invalid length.
[  118.501495][ T6449] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  118.660245][ T6454] netlink: 'syz.3.242': attribute type 2 has an invalid length.
[  118.835819][ T6461] syz.3.245 uses obsolete (PF_INET,SOCK_PACKET)
[  119.484451][ T6479] netlink: 'syz.1.252': attribute type 21 has an invalid length.
[  119.508201][ T6479] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  119.812856][ T6485] netlink: 'syz.2.255': attribute type 2 has an invalid length.
[  122.623849][ T6517] netlink: 'syz.1.268': attribute type 2 has an invalid length.
[  122.679916][ T6519] netlink: 144 bytes leftover after parsing attributes in process `syz.3.275'.
[  123.651470][ T6540] Ÿë
: port 1(veth0_to_bridge) entered blocking state
[  123.687573][ T6540] Ÿë
: port 1(veth0_to_bridge) entered disabled state
[  123.724522][ T6540] veth0_to_bridge: entered allmulticast mode
[  123.805234][ T6540] veth0_to_bridge: entered promiscuous mode
[  123.870392][ T6542] Ÿë
: port 2(veth0_to_team) entered blocking state
[  123.909131][ T6542] Ÿë
: port 2(veth0_to_team) entered disabled state
[  123.965003][ T6542] veth0_to_team: entered allmulticast mode
[  123.972111][ T6542] veth0_to_team: entered promiscuous mode
[  124.454243][ T6551] netlink: 830 bytes leftover after parsing attributes in process `syz.1.281'.
[  128.848173][ T6569] wg2: entered promiscuous mode
[  128.866384][ T6569] wg2: entered allmulticast mode
[  128.894076][ T6566] wg2: left promiscuous mode
[  128.901866][ T6566] wg2: left allmulticast mode
[  129.163795][ T6575] Ÿë
: port 1(veth0_to_bridge) entered blocking state
[  129.180500][ T6575] Ÿë
: port 1(veth0_to_bridge) entered disabled state
[  129.188829][ T6575] veth0_to_bridge: entered allmulticast mode
[  129.201572][ T6575] veth0_to_bridge: entered promiscuous mode
[  130.313924][ T6575] Ÿë
: port 2(veth0_to_team) entered blocking state
[  130.327968][ T6575] Ÿë
: port 2(veth0_to_team) entered disabled state
[  130.345080][ T6575] veth0_to_team: entered allmulticast mode
[  130.352170][ T6575] veth0_to_team: entered promiscuous mode
[  132.246243][ T6612] netlink: 'syz.0.302': attribute type 1 has an invalid length.
[  132.271553][ T6612] netlink: 181400 bytes leftover after parsing attributes in process `syz.0.302'.
[  133.003896][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  133.013810][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  133.882384][ T6607] wg2: entered promiscuous mode
[  133.888995][ T6607] wg2: entered allmulticast mode
[  133.952252][ T6622] Ÿë
: port 1(veth0_to_team) entered blocking state
[  134.000256][ T6622] Ÿë
: port 1(veth0_to_team) entered disabled state
[  134.040224][ T6622] veth0_to_team: entered allmulticast mode
[  134.063343][ T6622] veth0_to_team: entered promiscuous mode
[  136.023223][ T6645] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.319'.
[  136.860923][ T6658] wg2: entered promiscuous mode
[  136.890284][ T6658] wg2: entered allmulticast mode
[  137.859114][ T6675] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.327'.
[  140.581982][ T6675] debugfs: Directory '!!ô' with parent 'ieee80211' already present!
[  140.738193][ T6689] wg2: entered promiscuous mode
[  140.743825][ T6689] wg2: entered allmulticast mode
[  150.984934][ T6782] netlink: 'syz.1.374': attribute type 10 has an invalid length.
[  151.072425][ T6782] veth1_macvtap: left promiscuous mode
[  151.480596][ T6798] wg2: left promiscuous mode
[  151.487774][ T6798] wg2: left allmulticast mode
[  151.508976][ T6798] wg2: entered promiscuous mode
[  151.524831][ T6798] wg2: entered allmulticast mode
[  152.935409][ T6828] netlink: 'syz.3.392': attribute type 10 has an invalid length.
[  153.004909][ T6828] veth1_macvtap: left promiscuous mode
[  154.287734][ T6869] netlink: 'syz.0.408': attribute type 10 has an invalid length.
[  154.331518][ T6869] veth1_macvtap: left promiscuous mode
[  155.196730][ T6885] netlink: 'syz.3.414': attribute type 1 has an invalid length.
[  155.204621][ T6885] netlink: 181400 bytes leftover after parsing attributes in process `syz.3.414'.
[  156.650681][ T6922] netlink: 'syz.1.429': attribute type 1 has an invalid length.
[  156.673078][ T6922] netlink: 181400 bytes leftover after parsing attributes in process `syz.1.429'.
[  156.956363][   T51] Bluetooth: hci2: unexpected event 0x09 length: 15 > 3
[  159.118457][ T6952] netlink: 'syz.2.441': attribute type 1 has an invalid length.
[  159.141137][ T6952] netlink: 181400 bytes leftover after parsing attributes in process `syz.2.441'.
[  159.779921][ T6961] netlink: 'syz.1.446': attribute type 1 has an invalid length.
[  161.513000][   T51] Bluetooth: hci0: unexpected event 0x09 length: 15 > 3
[  161.755625][ T6996] netlink: 'syz.1.461': attribute type 39 has an invalid length.
[  162.085975][ T7003] netlink: 'syz.2.471': attribute type 1 has an invalid length.
[  162.392331][ T7006] syzkaller0: entered promiscuous mode
[  162.397995][ T7006] syzkaller0: entered allmulticast mode
[  162.497474][ T7011] netlink: 'syz.3.473': attribute type 1 has an invalid length.
[  164.810383][ T7042] netlink: 'syz.0.477': attribute type 1 has an invalid length.
[  165.102541][ T7054] netlink: 'syz.0.490': attribute type 1 has an invalid length.
[  165.222823][   T51] Bluetooth: hci1: unexpected subevent 0x0a length: 150 > 30
[  165.385365][ T5773] Bluetooth: hci0: unexpected subevent 0x0c length: 150 > 5
[  165.663794][ T7071] netlink: 'syz.0.491': attribute type 1 has an invalid length.
[  165.689997][ T7071] netlink: 181400 bytes leftover after parsing attributes in process `syz.0.491'.
[  166.055514][ T7085] netlink: 'syz.2.496': attribute type 1 has an invalid length.
[  167.005247][ T7096] netlink: 'syz.1.500': attribute type 10 has an invalid length.
[  167.129922][ T7096] team0: Device hsr_slave_0 failed to register rx_handler
[  167.315081][ T5773] Bluetooth: hci1: command tx timeout
[  167.349240][ T7102] netlink: 'syz.2.503': attribute type 10 has an invalid length.
[  167.386925][ T7104] netlink: 'syz.3.504': attribute type 1 has an invalid length.
[  167.395319][ T7104] netlink: 181400 bytes leftover after parsing attributes in process `syz.3.504'.
[  167.414230][ T7096] syz.1.500 (7096) used greatest stack depth: 20104 bytes left
[  167.458577][ T7102] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  169.802426][ T7144] netlink: 'syz.0.517': attribute type 1 has an invalid length.
[  169.820120][ T7144] netlink: 181400 bytes leftover after parsing attributes in process `syz.0.517'.
[  171.292614][ T7162] syzkaller0: entered promiscuous mode
[  171.298536][ T7162] syzkaller0: entered allmulticast mode
[  171.313934][ T7164] netlink: 'syz.2.533': attribute type 39 has an invalid length.
[  173.662110][ T7197] netlink: 'syz.0.539': attribute type 39 has an invalid length.
[  174.456152][ T7212] netlink: 'syz.0.546': attribute type 10 has an invalid length.
[  174.503600][ T7212] team0: Device hsr_slave_0 failed to register rx_handler
[  175.104571][ T7228] netlink: 'syz.1.553': attribute type 33 has an invalid length.
[  175.113183][ T7228] netlink: 152 bytes leftover after parsing attributes in process `syz.1.553'.
[  175.134924][ T7226] netlink: 'syz.3.552': attribute type 39 has an invalid length.
[  178.132768][ T7264] netlink: 'syz.3.567': attribute type 39 has an invalid length.
[  178.217844][ T7266] netlink: 'syz.0.568': attribute type 10 has an invalid length.
[  178.268117][ T7266] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  178.325684][ T7266] syz.0.568 (7266) used greatest stack depth: 19944 bytes left
[  180.772325][ T7310] netlink: 'syz.2.584': attribute type 10 has an invalid length.
[  180.868010][ T7310] team0: Device hsr_slave_0 failed to register rx_handler
[  181.104643][ T7316] netlink: 'syz.3.588': attribute type 33 has an invalid length.
[  181.152956][ T7316] netlink: 152 bytes leftover after parsing attributes in process `syz.3.588'.
[  182.305243][ T7342] netlink: 'syz.3.599': attribute type 10 has an invalid length.
[  182.362573][ T7342] team0: Device hsr_slave_0 failed to register rx_handler
[  185.472397][ T7367] netlink: 'syz.3.612': attribute type 10 has an invalid length.
[  185.481584][ T7367] team0: Device hsr_slave_0 failed to register rx_handler
[  185.658847][ T5773] Bluetooth: hci0: unexpected subevent 0x0a length: 150 > 30
[  185.667138][ T5773] Bluetooth: hci0: Invalid handle: 0x8000 > 0x0eff
[  186.227052][ T7390] syz.1.610[7390] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  186.227179][ T7390] syz.1.610[7390] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  187.056032][ T7403] netlink: 152 bytes leftover after parsing attributes in process `syz.2.616'.
[  187.162846][ T7408] netlink: 'syz.3.617': attribute type 33 has an invalid length.
[  187.214971][ T7408] netlink: 36 bytes leftover after parsing attributes in process `syz.3.617'.
[  187.248607][   T51] Bluetooth: hci2: unexpected subevent 0x0a length: 150 > 30
[  187.257807][   T51] Bluetooth: hci2: Invalid handle: 0x8000 > 0x0eff
[  188.673780][ T7434] syz.3.637[7434] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.691834][ T7434] syz.3.637[7434] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.982393][   T51] Bluetooth: hci1: unexpected subevent 0x0a length: 150 > 30
[  189.002308][   T51] Bluetooth: hci1: Invalid handle: 0x8000 > 0x0eff
[  191.397971][ T5780] Bluetooth: hci1: command 0x0406 tx timeout
[  191.398044][ T5767] Bluetooth: hci3: command 0x0406 tx timeout
[  191.404174][ T5780] Bluetooth: hci2: command 0x0406 tx timeout
[  191.474894][ T5779] Bluetooth: hci0: command 0x0406 tx timeout
[  192.590447][ T7483] syz.0.643[7483] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  192.590571][ T7483] syz.0.643[7483] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  193.842828][ T7509] syz.2.656[7509] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  193.861652][ T7509] syz.2.656[7509] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  194.043637][ T7511] sock: sock_set_timeout: `syz.3.658' (pid 7511) tries to set negative timeout
[  194.170246][ T7516] netlink: 'syz.2.657': attribute type 33 has an invalid length.
[  194.225137][ T7516] netlink: 36 bytes leftover after parsing attributes in process `syz.2.657'.
[  194.311356][ T7520] Ÿë
: port 2(syz_tun) entered blocking state
[  194.325179][ T7520] Ÿë
: port 2(syz_tun) entered disabled state
[  194.347458][ T7520] syz_tun: entered allmulticast mode
[  194.357212][ T7520] syz_tun: entered promiscuous mode
[  194.437862][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  194.444205][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  195.571749][ T7544] netlink: 'syz.3.673': attribute type 10 has an invalid length.
[  196.935390][ T7544] hsr_slave_0: left promiscuous mode
[  196.958794][ T7544] hsr_slave_1: left promiscuous mode
[  197.015450][ T7550] netlink: 'syz.0.674': attribute type 12 has an invalid length.
[  197.024116][ T7550] netlink: 132 bytes leftover after parsing attributes in process `syz.0.674'.
[  197.360279][ T7562] netlink: 'syz.1.676': attribute type 33 has an invalid length.
[  197.382269][ T7562] netlink: 36 bytes leftover after parsing attributes in process `syz.1.676'.
[  201.503689][ T7613] netlink: 'syz.0.690': attribute type 33 has an invalid length.
[  201.531482][ T7613] netlink: 36 bytes leftover after parsing attributes in process `syz.0.690'.
[  203.435449][ T7639] Ÿë
: port 3(syz_tun) entered blocking state
[  203.442572][ T7639] Ÿë
: port 3(syz_tun) entered disabled state
[  203.452316][ T7639] syz_tun: entered allmulticast mode
[  203.462039][ T7639] syz_tun: entered promiscuous mode
[  203.762538][ T7650] netlink: 'syz.3.707': attribute type 33 has an invalid length.
[  203.771331][ T7650] netlink: 36 bytes leftover after parsing attributes in process `syz.3.707'.
[  205.545211][ T7679] netlink: 'syz.2.717': attribute type 12 has an invalid length.
[  205.571104][ T7679] netlink: 132 bytes leftover after parsing attributes in process `syz.2.717'.
[  205.670370][ T7689] netlink: 'syz.1.720': attribute type 33 has an invalid length.
[  205.689026][ T7689] netlink: 36 bytes leftover after parsing attributes in process `syz.1.720'.
[  206.804349][ T7705] syzkaller0: entered promiscuous mode
[  206.850219][ T7705] syzkaller0: entered allmulticast mode
[  209.097102][ T7712] netlink: 'syz.1.730': attribute type 12 has an invalid length.
[  209.104993][ T7712] netlink: 132 bytes leftover after parsing attributes in process `syz.1.730'.
[  211.041461][ T7763] netlink: 'syz.3.746': attribute type 12 has an invalid length.
[  211.051237][ T7763] netlink: 132 bytes leftover after parsing attributes in process `syz.3.746'.
[  213.723813][ T5083] Bluetooth: hci1: unexpected event 0x0b length: 15 > 11
[  214.586878][ T7836] netlink: 'syz.1.775': attribute type 29 has an invalid length.
[  214.675784][ T7836] netlink: 'syz.1.775': attribute type 29 has an invalid length.
[  216.701731][ T5083] Bluetooth: hci0: unexpected event 0x0b length: 15 > 11
[  217.732730][ T7939] syzkaller0: entered promiscuous mode
[  217.772388][ T7939] syzkaller0: entered allmulticast mode
[  218.090237][ T5083] Bluetooth: hci2: unexpected event 0x0b length: 15 > 11
[  224.311943][ T8056] delete_channel: no stack
[  228.497347][ T8108] netlink: 'syz.1.835': attribute type 29 has an invalid length.
[  228.544152][ T8104] netlink: 830 bytes leftover after parsing attributes in process `syz.2.832'.
[  228.556435][ T8108] netlink: 'syz.1.835': attribute type 29 has an invalid length.
[  230.282522][ T8140] netlink: 830 bytes leftover after parsing attributes in process `syz.3.846'.
[  230.493696][ T8147] netlink: 'syz.0.847': attribute type 29 has an invalid length.
[  230.508257][ T8147] netlink: 'syz.0.847': attribute type 29 has an invalid length.
[  231.056234][ T8156] netlink: 'syz.3.852': attribute type 10 has an invalid length.
[  231.095527][ T8156] vlan0: entered allmulticast mode
[  231.100735][ T8156] veth0_vlan: entered allmulticast mode
[  231.154258][ T8156] team0: Port device vlan0 added
[  231.739116][ T8173] netlink: 'syz.2.861': attribute type 29 has an invalid length.
[  231.778318][ T8173] netlink: 'syz.2.861': attribute type 29 has an invalid length.
[  231.801454][ T8175] netlink: 830 bytes leftover after parsing attributes in process `syz.0.860'.
[  235.505206][ T8220] netlink: 'syz.3.873': attribute type 29 has an invalid length.
[  235.519827][ T8220] netlink: 'syz.3.873': attribute type 29 has an invalid length.
[  235.624650][ T8226] netlink: 830 bytes leftover after parsing attributes in process `syz.1.872'.
[  236.722718][ T8255] netlink: 'syz.3.890': attribute type 29 has an invalid length.
[  236.748763][ T8252] netlink: 830 bytes leftover after parsing attributes in process `syz.2.889'.
[  236.774143][ T8255] netlink: 'syz.3.890': attribute type 29 has an invalid length.
[  236.962391][ T8263] netlink: 'syz.3.893': attribute type 10 has an invalid length.
[  236.970581][ T8263] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.893'.
[  236.980160][ T8263] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  237.046960][ T8264] netlink: 'syz.1.891': attribute type 33 has an invalid length.
[  237.069195][ T8264] netlink: 36 bytes leftover after parsing attributes in process `syz.1.891'.
[  239.123571][ T8288] netlink: 'syz.1.901': attribute type 29 has an invalid length.
[  239.169795][ T8288] netlink: 'syz.1.901': attribute type 29 has an invalid length.
[  239.287064][ T8294] netlink: 9275 bytes leftover after parsing attributes in process `syz.1.904'.
[  240.071157][ T8308] netlink: 'syz.3.908': attribute type 33 has an invalid length.
[  240.095618][ T8308] netlink: 36 bytes leftover after parsing attributes in process `syz.3.908'.
[  240.309394][ T5083] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  240.373965][ T8318] netlink: 'syz.2.914': attribute type 29 has an invalid length.
[  241.746602][ T8336] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  242.057281][ T3487] wlan1: Created IBSS using preconfigured BSSID 00:8d:8d:ff:00:00
[  242.105033][ T3487] wlan1: Creating new IBSS network, BSSID 00:8d:8d:ff:00:00
[  242.354835][ T5083] Bluetooth: hci2: command 0x0406 tx timeout
[  245.619029][ T8360] validate_nla: 1 callbacks suppressed
[  245.619067][ T8360] netlink: 'syz.2.929': attribute type 33 has an invalid length.
[  245.637695][ T8360] netlink: 36 bytes leftover after parsing attributes in process `syz.2.929'.
[  246.185306][ T8369] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.196308][ T8369] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.220953][ T8369] bridge0: entered allmulticast mode
[  246.276340][ T8374] bridge_slave_1: left allmulticast mode
[  246.282135][ T8374] bridge_slave_1: left promiscuous mode
[  246.292935][ T8374] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.303499][ T8374] bridge_slave_0: left allmulticast mode
[  246.313950][ T8374] bridge_slave_0: left promiscuous mode
[  246.322450][ T8374] bridge0: port 1(bridge_slave_0) entered disabled state
[  247.008503][ T8394] netlink: 9275 bytes leftover after parsing attributes in process `syz.3.944'.
[  248.525866][ T8418] netlink: 'syz.0.949': attribute type 33 has an invalid length.
[  248.538168][ T8418] netlink: 36 bytes leftover after parsing attributes in process `syz.0.949'.
[  250.040201][ T8436] netlink: 'syz.0.966': attribute type 33 has an invalid length.
[  250.085005][ T8436] netlink: 36 bytes leftover after parsing attributes in process `syz.0.966'.
[  250.452293][ T8442] netlink: 9275 bytes leftover after parsing attributes in process `syz.2.963'.
[  250.479188][ T8445] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  250.497441][ T7890] wlan1: Created IBSS using preconfigured BSSID 00:8d:8d:ff:00:00
[  250.514180][ T7890] wlan1: Creating new IBSS network, BSSID 00:8d:8d:ff:00:00
[  253.227557][ T5083] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  254.407381][ T8485] netlink: 9275 bytes leftover after parsing attributes in process `syz.0.978'.
[  255.314884][ T5779] Bluetooth: hci1: command 0x0406 tx timeout
[  255.711024][ T8494] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.983'.
[  255.895587][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  255.901963][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  263.587833][ T8586] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1019'.
[  263.976915][ T8600] netlink: 'syz.1.1025': attribute type 10 has an invalid length.
[  264.001380][ T8600] macvlan0: entered promiscuous mode
[  264.006984][ T8600] macvlan0: entered allmulticast mode
[  264.032134][ T8600] veth1_vlan: entered allmulticast mode
[  264.043653][ T8600] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  264.088403][ T8603] sctp: [Deprecated]: syz.3.1026 (pid 8603) Use of struct sctp_assoc_value in delayed_ack socket option.
[  264.088403][ T8603] Use struct sctp_sack_info instead
[  264.956324][ T8607] bridge0: port 2(bridge_slave_1) entered disabled state
[  264.965946][ T8607] bridge0: port 1(bridge_slave_0) entered disabled state
[  265.039752][ T8607] bridge0: entered allmulticast mode
[  265.126268][ T8607] bridge_slave_1: left allmulticast mode
[  265.132096][ T8607] bridge_slave_1: left promiscuous mode
[  265.176971][ T8607] bridge0: port 2(bridge_slave_1) entered disabled state
[  265.222477][ T8607] bridge_slave_0: left allmulticast mode
[  265.260533][ T8607] bridge_slave_0: left promiscuous mode
[  265.293132][ T8607] bridge0: port 1(bridge_slave_0) entered disabled state
[  265.327444][ T8616] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1032'.
[  265.864258][ T5779] Bluetooth: hci2: unexpected event 0x31 length: 15 > 6
[  265.947262][ T8623] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  266.800759][ T8643] netlink: 'syz.0.1045': attribute type 15 has an invalid length.
[  266.809688][ T8643] netlink: 11254 bytes leftover after parsing attributes in process `syz.0.1045'.
[  266.851237][ T8646] bridge0: port 2(bridge_slave_1) entered disabled state
[  266.859207][ T8646] bridge0: port 1(bridge_slave_0) entered disabled state
[  266.908959][ T8646] bridge0: entered allmulticast mode
[  266.953778][ T8648] bridge_slave_1: left allmulticast mode
[  266.962044][ T8648] bridge_slave_1: left promiscuous mode
[  266.971118][ T8648] bridge0: port 2(bridge_slave_1) entered disabled state
[  266.994273][ T8648] bridge_slave_0: left allmulticast mode
[  267.000654][ T8648] bridge_slave_0: left promiscuous mode
[  267.055101][ T8648] bridge0: port 1(bridge_slave_0) entered disabled state
[  269.697823][ T8670] netlink: 'syz.1.1056': attribute type 1 has an invalid length.
[  269.706604][ T8670] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1056'.
[  272.402999][ T8688] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  272.509249][ T8692] bridge0: port 2(bridge_slave_1) entered disabled state
[  272.517925][ T8692] bridge0: port 1(bridge_slave_0) entered disabled state
[  272.530371][ T8692] bridge0: entered allmulticast mode
[  272.635944][ T8692] bridge0: port 2(bridge_slave_1) entered disabled state
[  272.673692][ T8692] bridge_slave_0: left allmulticast mode
[  272.681252][ T8692] bridge_slave_0: left promiscuous mode
[  272.689324][ T8692] bridge0: port 1(bridge_slave_0) entered disabled state
[  275.299729][ T8710] sctp: [Deprecated]: syz.1.1068 (pid 8710) Use of struct sctp_assoc_value in delayed_ack socket option.
[  275.299729][ T8710] Use struct sctp_sack_info instead
[  276.396425][ T8720] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  277.276988][ T8730] netlink: 'syz.3.1077': attribute type 15 has an invalid length.
[  277.307916][ T8730] netlink: 11254 bytes leftover after parsing attributes in process `syz.3.1077'.
[  277.442706][ T8738] netlink: 'syz.3.1081': attribute type 1 has an invalid length.
[  277.451641][ T8738] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.1081'.
[  277.461791][ T8738] netlink: 9 bytes leftover after parsing attributes in process `syz.3.1081'.
[  277.608196][ T8744] sctp: [Deprecated]: syz.2.1082 (pid 8744) Use of struct sctp_assoc_value in delayed_ack socket option.
[  277.608196][ T8744] Use struct sctp_sack_info instead
[  277.627365][ T8741] netlink: 'syz.1.1090': attribute type 15 has an invalid length.
[  277.635790][ T8741] netlink: 11254 bytes leftover after parsing attributes in process `syz.1.1090'.
[  277.863317][ T8751] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  279.626733][ T8776] netlink: 'syz.1.1094': attribute type 10 has an invalid length.
[  279.698305][ T8776] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  279.748813][ T8778] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1095'.
[  279.933971][ T8780] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  280.694313][ T8795] netlink: 'syz.0.1102': attribute type 1 has an invalid length.
[  280.716395][ T8795] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1102'.
[  281.555575][ T8803] syz.2.1103 (8803) used obsolete PPPIOCDETACH ioctl
[  282.067172][ T5779] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  282.130720][ T8814] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  282.760503][ T8834] pim6reg1: entered promiscuous mode
[  282.780594][ T8834] pim6reg1: entered allmulticast mode
[  283.843416][ T8846] netlink: 'syz.0.1121': attribute type 10 has an invalid length.
[  283.855952][ T8846] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1121'.
[  283.881967][ T8846] dummy0: entered promiscuous mode
[  283.907717][ T8846] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  284.101211][ T8855] syz.0.1125[8855] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  284.101333][ T8855] syz.0.1125[8855] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  284.231358][ T8860] pim6reg1: entered promiscuous mode
[  284.274878][ T8860] pim6reg1: entered allmulticast mode
[  285.305832][ T8869] netlink: 'syz.0.1137': attribute type 1 has an invalid length.
[  285.327450][ T8869] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.1137'.
[  285.372898][ T8869] netlink: 9 bytes leftover after parsing attributes in process `syz.0.1137'.
[  285.901343][ T8884] netlink: 'syz.0.1135': attribute type 10 has an invalid length.
[  285.931691][ T8884] dummy0: left promiscuous mode
[  289.382207][ T8902] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1141'.
[  289.434116][ T8902] debugfs: Directory '!!ô!' with parent 'ieee80211' already present!
[  289.560036][ T8904] pim6reg1: entered promiscuous mode
[  289.595086][ T8904] pim6reg1: entered allmulticast mode
[  290.180927][ T8910] netlink: 'syz.2.1146': attribute type 1 has an invalid length.
[  290.204901][ T8910] netlink: 5 bytes leftover after parsing attributes in process `syz.2.1146'.
[  290.732743][ T8920] netlink: 'syz.3.1151': attribute type 10 has an invalid length.
[  290.964419][ T8930] syz.2.1155[8930] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  290.964558][ T8930] syz.2.1155[8930] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  293.311947][ T5083] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  294.924913][ T8956] netlink: 'syz.2.1162': attribute type 10 has an invalid length.
[  295.702214][ T8981] netlink: 'syz.3.1174': attribute type 10 has an invalid length.
[  297.666928][ T8981] team0: Port device veth1_macvtap added
[  298.218249][ T8985] netlink: 'syz.2.1175': attribute type 10 has an invalid length.
[  298.744162][ T9008] netlink: 'syz.2.1185': attribute type 10 has an invalid length.
[  298.874466][ T9008] team0: Port device wlan1 added
[  298.921885][ T9007] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  298.981893][ T9008] syz.2.1185 (9008) used greatest stack depth: 18024 bytes left
[  299.128224][ T9017] netlink: 'syz.1.1189': attribute type 10 has an invalid length.
[  299.220097][ T9017] team0: Port device veth1_macvtap added
[  299.431915][ T9022] syzkaller0: entered promiscuous mode
[  299.438170][ T9022] syzkaller0: entered allmulticast mode
[  300.214706][ T9034] netlink: 'syz.1.1196': attribute type 10 has an invalid length.
[  300.291635][ T9034] team0: Port device wlan1 added
[  300.415145][ T5083] Bluetooth: hci3: unexpected event 0x08 length: 15 > 4
[  300.424234][ T9032] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  300.699662][ T9050] netlink: 'syz.2.1201': attribute type 10 has an invalid length.
[  300.849576][ T9050] team0: Device veth1_macvtap failed to register rx_handler
[  301.155421][ T9062] netlink: 188 bytes leftover after parsing attributes in process `syz.0.1206'.
[  301.279859][ T9068] syzkaller0: entered promiscuous mode
[  301.285582][ T9068] syzkaller0: entered allmulticast mode
[  303.346137][ T9082] netlink: 'syz.0.1215': attribute type 10 has an invalid length.
[  303.369850][ T9082] team0: Port device veth1_macvtap added
[  303.502561][ T9093] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1220'.
[  303.525969][ T9093] debugfs: Directory '!!ô!' with parent 'ieee80211' already present!
[  303.631332][ T9095] syzkaller0: entered promiscuous mode
[  303.641833][ T9095] syzkaller0: entered allmulticast mode
[  305.345741][ T5083] Bluetooth: hci0: unknown advertising packet type: 0x20
[  306.438346][ T9152] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1243'.
[  306.952739][ T9163] netlink: 'syz.2.1247': attribute type 3 has an invalid length.
[  306.969434][ T9163] netlink: 'syz.2.1247': attribute type 1 has an invalid length.
[  306.980753][ T9163] netlink: 181400 bytes leftover after parsing attributes in process `syz.2.1247'.
[  307.303495][ T9167] netlink: 'syz.0.1258': attribute type 10 has an invalid length.
[  309.773749][ T9191] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1256'.
[  317.322271][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  317.329092][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  319.016254][ T9323] netlink: 209820 bytes leftover after parsing attributes in process `syz.2.1311'.
[  322.363089][ T9318] netlink: 'syz.3.1308': attribute type 10 has an invalid length.
[  322.532136][ T9346] netlink: 55631 bytes leftover after parsing attributes in process `syz.0.1320'.
[  322.544631][ T9346] netlink: 6324 bytes leftover after parsing attributes in process `syz.0.1320'.
[  322.558991][ T9346] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1320'.
[  322.738041][ T9348] netlink: 'syz.1.1322': attribute type 3 has an invalid length.
[  322.761347][ T9348] netlink: 130984 bytes leftover after parsing attributes in process `syz.1.1322'.
[  324.729099][ T9374] netlink: 'syz.2.1330': attribute type 10 has an invalid length.
[  324.764098][ T9374] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1330'.
[  324.838244][ T9374] team0: Port device syz_tun added
[  324.887475][ T9376] netlink: 55631 bytes leftover after parsing attributes in process `syz.3.1340'.
[  324.897668][ T9376] netlink: 6324 bytes leftover after parsing attributes in process `syz.3.1340'.
[  324.918221][ T9376] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1340'.
[  325.170204][ T9387] syzkaller0: entered promiscuous mode
[  325.176861][ T9387] syzkaller0: entered allmulticast mode
[  327.963578][ T9413] netlink: 'syz.0.1353': attribute type 10 has an invalid length.
[  327.971933][ T9413] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1353'.
[  328.026902][ T9413] team0: Port device syz_tun added
[  328.057434][ T9412] netlink: 55631 bytes leftover after parsing attributes in process `syz.1.1345'.
[  328.087813][ T9412] netlink: 6324 bytes leftover after parsing attributes in process `syz.1.1345'.
[  328.114181][ T9412] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1345'.
[  329.137261][ T9434] syzkaller0: entered promiscuous mode
[  329.142936][ T9434] syzkaller0: entered allmulticast mode
[  331.901825][ T9449] netlink: 'syz.1.1360': attribute type 10 has an invalid length.
[  331.909797][ T9449] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1360'.
[  331.932151][ T9449] syz_tun: left allmulticast mode
[  331.938886][ T9449] syz_tun: left promiscuous mode
[  331.946579][ T9449] Ÿë
: port 2(syz_tun) entered disabled state
[  331.960961][ T9449] team0: Port device syz_tun added
[  334.341140][ T5083] Bluetooth: hci2: unexpected subevent 0x0a length: 150 > 30
[  334.349312][ T5083] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0'
[  334.359911][ T5083] CPU: 0 PID: 5083 Comm: kworker/u5:1 Not tainted syzkaller #0
[  334.367516][ T5083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  334.377606][ T5083] Workqueue: hci2 hci_rx_work
[  334.382431][ T5083] Call Trace:
[  334.385738][ T5083]  <TASK>
[  334.388771][ T5083]  dump_stack_lvl+0x16c/0x230
[  334.393475][ T5083]  ? show_regs_print_info+0x20/0x20
[  334.398693][ T5083]  ? load_image+0x3b0/0x3b0
[  334.403238][ T5083]  sysfs_create_dir_ns+0x256/0x280
[  334.408379][ T5083]  ? hci_rx_work+0x43a/0xd80
[  334.412989][ T5083]  ? sysfs_warn_dup+0xa0/0xa0
[  334.417691][ T5083]  ? do_raw_spin_unlock+0x121/0x230
[  334.422893][ T5083]  kobject_add_internal+0x6b8/0xc70
[  334.428100][ T5083]  kobject_add+0x156/0x220
[  334.432513][ T5083]  ? __rwlock_init+0x150/0x150
[  334.437359][ T5083]  ? kobject_init+0x1e0/0x1e0
[  334.442042][ T5083]  ? _raw_spin_unlock+0x28/0x40
[  334.446890][ T5083]  ? get_device_parent+0x366/0x390
[  334.452000][ T5083]  device_add+0x408/0xc20
[  334.456331][ T5083]  hci_conn_add_sysfs+0xd5/0x1e0
[  334.461267][ T5083]  le_conn_complete_evt+0xf36/0x1500
[  334.466558][ T5083]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  334.472792][ T5083]  ? bt_info+0x160/0x160
[  334.477037][ T5083]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  334.482665][ T5083]  ? skb_pull_data+0xfb/0x200
[  334.487341][ T5083]  hci_le_enh_conn_complete_evt+0x189/0x460
[  334.493234][ T5083]  ? hci_le_remote_conn_param_req_evt+0xcc0/0xcc0
[  334.499640][ T5083]  ? hci_remote_host_features_evt+0x160/0x160
[  334.505733][ T5083]  hci_event_packet+0x795/0x1210
[  334.510691][ T5083]  ? bis_list+0x290/0x290
[  334.515024][ T5083]  ? lockdep_hardirqs_on+0x98/0x150
[  334.520219][ T5083]  ? hci_send_to_monitor+0xd7/0x4f0
[  334.525415][ T5083]  hci_rx_work+0x43a/0xd80
[  334.529841][ T5083]  ? process_scheduled_works+0x957/0x15b0
[  334.535559][ T5083]  process_scheduled_works+0xa45/0x15b0
[  334.541134][ T5083]  ? assign_work+0x400/0x400
[  334.545725][ T5083]  ? assign_work+0x39e/0x400
[  334.550355][ T5083]  worker_thread+0xa55/0xfc0
[  334.554947][ T5083]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  334.560833][ T5083]  ? _raw_spin_unlock+0x40/0x40
[  334.565676][ T5083]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  334.571591][ T5083]  kthread+0x2fa/0x390
[  334.575680][ T5083]  ? pr_cont_work+0x560/0x560
[  334.580355][ T5083]  ? kthread_blkcg+0xd0/0xd0
[  334.584947][ T5083]  ret_from_fork+0x48/0x80
[  334.589355][ T5083]  ? kthread_blkcg+0xd0/0xd0
[  334.593936][ T5083]  ret_from_fork_asm+0x11/0x20
[  334.598707][ T5083]  </TASK>
[  334.604219][ T5083] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  334.618332][ T5083] Bluetooth: hci2: failed to register connection device
[  334.675855][ T9485] netlink: 'syz.0.1369': attribute type 3 has an invalid length.
[  334.685672][ T9485] netlink: 130984 bytes leftover after parsing attributes in process `syz.0.1369'.
[  335.011110][ T9490] netlink: 'syz.2.1382': attribute type 3 has an invalid length.
[  335.019536][ T9490] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.1382'.
[  335.049763][ T9492] syzkaller0: entered promiscuous mode
[  335.055386][ T9492] syzkaller0: entered allmulticast mode
[  335.283999][ T9499] netlink: 'syz.3.1372': attribute type 10 has an invalid length.
[  335.293449][ T9499] netlink: 168 bytes leftover after parsing attributes in process `syz.3.1372'.
[  335.389967][ T9499] syz_tun: left allmulticast mode
[  335.405368][ T9499] syz_tun: left promiscuous mode
[  335.413959][ T9499] Ÿë
: port 3(syz_tun) entered disabled state
[  335.452482][ T9499] team0: Port device syz_tun added
[  341.762696][ T5083] Bluetooth: hci0: unexpected subevent 0x0a length: 150 > 30
[  341.770659][ T5083] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[  341.781259][ T5083] CPU: 1 PID: 5083 Comm: kworker/u5:1 Not tainted syzkaller #0
[  341.788838][ T5083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  341.798913][ T5083] Workqueue: hci0 hci_rx_work
[  341.803625][ T5083] Call Trace:
[  341.806918][ T5083]  <TASK>
[  341.809861][ T5083]  dump_stack_lvl+0x16c/0x230
[  341.814568][ T5083]  ? show_regs_print_info+0x20/0x20
[  341.819786][ T5083]  ? load_image+0x3b0/0x3b0
[  341.824332][ T5083]  sysfs_create_dir_ns+0x256/0x280
[  341.829480][ T5083]  ? hci_rx_work+0x43a/0xd80
[  341.834088][ T5083]  ? sysfs_warn_dup+0xa0/0xa0
[  341.838790][ T5083]  ? do_raw_spin_unlock+0x121/0x230
[  341.844009][ T5083]  kobject_add_internal+0x6b8/0xc70
[  341.849229][ T5083]  kobject_add+0x156/0x220
[  341.853647][ T5083]  ? __rwlock_init+0x150/0x150
[  341.858410][ T5083]  ? kobject_init+0x1e0/0x1e0
[  341.863081][ T5083]  ? _raw_spin_unlock+0x28/0x40
[  341.867937][ T5083]  ? get_device_parent+0x366/0x390
[  341.873051][ T5083]  device_add+0x408/0xc20
[  341.877394][ T5083]  hci_conn_add_sysfs+0xd5/0x1e0
[  341.882337][ T5083]  le_conn_complete_evt+0xf36/0x1500
[  341.887626][ T5083]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  341.893863][ T5083]  ? bt_info+0x160/0x160
[  341.898116][ T5083]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  341.903745][ T5083]  ? skb_pull_data+0xfb/0x200
[  341.908416][ T5083]  hci_le_enh_conn_complete_evt+0x189/0x460
[  341.914300][ T5083]  ? hci_le_remote_conn_param_req_evt+0xcc0/0xcc0
[  341.920706][ T5083]  ? hci_remote_host_features_evt+0x160/0x160
[  341.926771][ T5083]  hci_event_packet+0x795/0x1210
[  341.931709][ T5083]  ? bis_list+0x290/0x290
[  341.936035][ T5083]  ? lockdep_hardirqs_on+0x98/0x150
[  341.941226][ T5083]  ? hci_send_to_monitor+0xd7/0x4f0
[  341.946419][ T5083]  hci_rx_work+0x43a/0xd80
[  341.950843][ T5083]  ? process_scheduled_works+0x957/0x15b0
[  341.956559][ T5083]  process_scheduled_works+0xa45/0x15b0
[  341.962119][ T5083]  ? assign_work+0x400/0x400
[  341.966703][ T5083]  ? assign_work+0x39e/0x400
[  341.971293][ T5083]  worker_thread+0xa55/0xfc0
[  341.975890][ T5083]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  341.981794][ T5083]  ? _raw_spin_unlock+0x40/0x40
[  341.986651][ T5083]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  341.992559][ T5083]  kthread+0x2fa/0x390
[  341.996626][ T5083]  ? pr_cont_work+0x560/0x560
[  342.001297][ T5083]  ? kthread_blkcg+0xd0/0xd0
[  342.005883][ T5083]  ret_from_fork+0x48/0x80
[  342.010305][ T5083]  ? kthread_blkcg+0xd0/0xd0
[  342.014890][ T5083]  ret_from_fork_asm+0x11/0x20
[  342.019663][ T5083]  </TASK>
[  342.023991][ T5083] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  342.039104][ T5083] Bluetooth: hci0: failed to register connection device
[  342.530279][ T9560] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  344.651774][ T9580] syzkaller0: entered promiscuous mode
[  344.657761][ T9580] syzkaller0: entered allmulticast mode
[  348.566815][ T9630] netlink: 'syz.0.1422': attribute type 29 has an invalid length.
[  349.453745][ T9630] netlink: 'syz.0.1422': attribute type 29 has an invalid length.
[  351.967396][ T9677] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  352.386780][ T9699] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  355.930145][ T9733] netlink: 'syz.2.1464': attribute type 10 has an invalid length.
[  355.978046][ T9733] hsr_slave_0 (unregistering): left promiscuous mode
[  356.252052][ T9751] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  357.029921][ T9775] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  357.037502][ T9775] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  358.217066][ T5779] Bluetooth: hci1: unexpected event 0x32 length: 15 > 9
[  360.464986][ T5779] Bluetooth: hci0: unexpected event 0x32 length: 15 > 9
[  362.373268][ T9868] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  362.661892][ T5779] Bluetooth: hci2: unexpected event 0x32 length: 15 > 9
[  364.391989][ T9893] syzkaller0: entered promiscuous mode
[  364.443034][ T9893] syzkaller0: entered allmulticast mode
[  368.375485][ T9920] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  368.429962][ T9925] Q±6ã×\b‹¡Y­4��: renamed from lo (while UP)
[  369.543551][ T9943] netlink: 'syz.0.1550': attribute type 10 has an invalid length.
[  369.649374][ T9943] team0: Port device geneve1 added
[  369.787742][ T9952] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  371.763063][ T9971] netlink: 'syz.3.1561': attribute type 39 has an invalid length.
[  372.140193][ T9986] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  372.439352][ T9995] netlink: 'syz.1.1578': attribute type 10 has an invalid length.
[  372.484932][ T9995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  372.532194][ T9995] batman_adv: batadv0: Removing interface: batadv_slave_0
[  372.591025][ T9995] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  376.262589][T10005] Q±6ã×\b‹¡Y­4��: renamed from lo (while UP)
[  376.276062][T10014] netlink: 'syz.0.1577': attribute type 10 has an invalid length.
[  376.329601][T10014] 8021q: adding VLAN 0 to HW filter on device bond0
[  376.352667][T10014] team0: Port device bond0 added
[  378.759904][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  378.766963][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  380.609695][T10044] Q±6ã×\b‹¡Y­4��: renamed from lo (while UP)
[  380.899492][T10058] netlink: 'syz.2.1593': attribute type 10 has an invalid length.
[  380.932006][T10058] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  380.994263][T10058] batman_adv: batadv0: Removing interface: batadv_slave_0
[  381.153036][T10058] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  382.660889][T10097] netlink: 196 bytes leftover after parsing attributes in process `syz.3.1609'.
[  382.684390][T10097] netlink: 'syz.3.1609': attribute type 29 has an invalid length.
[  382.697453][T10097] netlink: 'syz.3.1609': attribute type 29 has an invalid length.
[  382.709220][T10097] netlink: 'syz.3.1609': attribute type 29 has an invalid length.
[  382.731438][T10097] netlink: 'syz.3.1609': attribute type 29 has an invalid length.
[  382.817529][T10095] netlink: 'syz.1.1606': attribute type 10 has an invalid length.
[  382.868973][T10095] team0: Port device geneve1 added
[  383.022898][T10101] netlink: 'syz.3.1622': attribute type 6 has an invalid length.
[  383.040017][T10101] netlink: 168 bytes leftover after parsing attributes in process `syz.3.1622'.
[  383.178164][T10107] netlink: 'syz.2.1621': attribute type 10 has an invalid length.
[  383.339878][T10107] team0: Port device geneve1 added
[  383.670214][T10118] netlink: 'syz.0.1614': attribute type 10 has an invalid length.
[  383.687577][T10118] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  383.749451][T10118] batman_adv: batadv0: Removing interface: batadv_slave_0
[  383.844177][T10118] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  384.558082][T10140] netlink: 'syz.3.1629': attribute type 10 has an invalid length.
[  384.827782][T10140] team0: Port device geneve1 added
[  384.862757][T10148] netlink: 'syz.2.1633': attribute type 9 has an invalid length.
[  384.880982][T10148] netlink: 49779 bytes leftover after parsing attributes in process `syz.2.1633'.
[  385.092220][T10155] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  385.122109][T10155] syzkaller0: entered promiscuous mode
[  385.138890][T10155] syzkaller0: entered allmulticast mode
[  385.260502][T10159] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  385.320405][T10159] batman_adv: batadv0: Removing interface: batadv_slave_0
[  385.381893][T10159] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  387.722005][T10188] validate_nla: 1 callbacks suppressed
[  387.722019][T10188] netlink: 'syz.3.1643': attribute type 10 has an invalid length.
[  393.988187][T10285] netlink: 'syz.2.1689': attribute type 10 has an invalid length.
[  394.078833][T10290] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  394.099130][T10290] syzkaller0: entered promiscuous mode
[  394.128530][T10290] syzkaller0: entered allmulticast mode
[  397.131163][T10315] netlink: 'syz.2.1694': attribute type 10 has an invalid length.
[  397.357739][T10327] netlink: 'syz.3.1699': attribute type 9 has an invalid length.
[  397.384677][T10327] netlink: 49779 bytes leftover after parsing attributes in process `syz.3.1699'.
[  398.984013][T10352] netlink: 'syz.2.1707': attribute type 10 has an invalid length.
[  399.218398][T10357] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  399.287009][T10357] syzkaller0: entered promiscuous mode
[  399.305262][T10357] syzkaller0: entered allmulticast mode
[  402.248011][T10387] netlink: 'syz.2.1720': attribute type 10 has an invalid length.
[  403.419087][T10409] netlink: 'syz.3.1730': attribute type 10 has an invalid length.
[  403.528933][T10411] syzkaller0: entered promiscuous mode
[  403.534544][T10411] syzkaller0: entered allmulticast mode
[  404.825326][ T5779] Bluetooth: hci1: unexpected event 0x0b length: 151 > 11
[  406.405332][T10455] netlink: 'syz.0.1742': attribute type 10 has an invalid length.
[  406.835293][ T5779] Bluetooth: hci1: command 0x0406 tx timeout
[  407.641886][T10472] netlink: 9275 bytes leftover after parsing attributes in process `syz.1.1750'.
[  408.921031][ T5083] Bluetooth: hci1: command 0x0406 tx timeout
[  413.281806][ T5779] Bluetooth: hci3: unexpected event 0x0b length: 151 > 11
[  413.432671][ T5779] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  414.551660][ T5779] Bluetooth: hci0: unexpected event 0x0b length: 151 > 11
[  414.633682][T10579] netlink: 'syz.2.1788': attribute type 39 has an invalid length.
[  415.919517][T10599] netlink: 'syz.1.1796': attribute type 39 has an invalid length.
[  416.003741][T10599] team0: Port device syz_tun removed
[  416.048383][T10600] netlink: 'syz.0.1802': attribute type 10 has an invalid length.
[  417.553841][T10627] syzkaller0: entered promiscuous mode
[  417.563543][T10627] syzkaller0: entered allmulticast mode
[  418.486347][ T5779] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  418.499918][ T5779] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0'
[  418.509356][ T5779] CPU: 1 PID: 5779 Comm: kworker/u5:5 Not tainted syzkaller #0
[  418.516924][ T5779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  418.526979][ T5779] Workqueue: hci2 hci_rx_work
[  418.531670][ T5779] Call Trace:
[  418.534947][ T5779]  <TASK>
[  418.537871][ T5779]  dump_stack_lvl+0x16c/0x230
[  418.542551][ T5779]  ? show_regs_print_info+0x20/0x20
[  418.547747][ T5779]  ? load_image+0x3b0/0x3b0
[  418.552264][ T5779]  sysfs_create_dir_ns+0x256/0x280
[  418.557378][ T5779]  ? hci_rx_work+0x43a/0xd80
[  418.561971][ T5779]  ? sysfs_warn_dup+0xa0/0xa0
[  418.566653][ T5779]  ? do_raw_spin_unlock+0x121/0x230
[  418.571852][ T5779]  kobject_add_internal+0x6b8/0xc70
[  418.577052][ T5779]  kobject_add+0x156/0x220
[  418.581460][ T5779]  ? __rwlock_init+0x150/0x150
[  418.586219][ T5779]  ? kobject_init+0x1e0/0x1e0
[  418.590892][ T5779]  ? _raw_spin_unlock+0x28/0x40
[  418.595739][ T5779]  ? get_device_parent+0x366/0x390
[  418.600851][ T5779]  device_add+0x408/0xc20
[  418.605177][ T5779]  hci_conn_add_sysfs+0xd5/0x1e0
[  418.610110][ T5779]  le_conn_complete_evt+0xf36/0x1500
[  418.615398][ T5779]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  418.621633][ T5779]  ? bt_info+0x160/0x160
[  418.625876][ T5779]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  418.631501][ T5779]  ? skb_pull_data+0xfb/0x200
[  418.636195][ T5779]  hci_le_conn_complete_evt+0x187/0x440
[  418.641733][ T5779]  ? hci_remote_host_features_evt+0x160/0x160
[  418.647799][ T5779]  hci_event_packet+0x795/0x1210
[  418.652750][ T5779]  ? bis_list+0x290/0x290
[  418.657078][ T5779]  ? lockdep_hardirqs_on+0x98/0x150
[  418.662270][ T5779]  ? hci_send_to_monitor+0xd7/0x4f0
[  418.667463][ T5779]  hci_rx_work+0x43a/0xd80
[  418.671876][ T5779]  ? process_scheduled_works+0x957/0x15b0
[  418.677587][ T5779]  process_scheduled_works+0xa45/0x15b0
[  418.683143][ T5779]  ? assign_work+0x400/0x400
[  418.687732][ T5779]  ? assign_work+0x39e/0x400
[  418.692354][ T5779]  worker_thread+0xa55/0xfc0
[  418.696943][ T5779]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  418.702845][ T5779]  kthread+0x2fa/0x390
[  418.706904][ T5779]  ? pr_cont_work+0x560/0x560
[  418.711573][ T5779]  ? kthread_blkcg+0xd0/0xd0
[  418.716163][ T5779]  ret_from_fork+0x48/0x80
[  418.720579][ T5779]  ? kthread_blkcg+0xd0/0xd0
[  418.725159][ T5779]  ret_from_fork_asm+0x11/0x20
[  418.729933][ T5779]  </TASK>
[  418.733882][ T5779] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  418.747849][ T5779] Bluetooth: hci2: failed to register connection device
[  418.832574][ T5779] Bluetooth: hci1: unexpected subevent 0x0a length: 150 > 30
[  418.930641][T10641] netlink: 16399 bytes leftover after parsing attributes in process `syz.3.1810'.
[  421.969721][T10674] syzkaller0: entered promiscuous mode
[  421.980307][T10674] syzkaller0: entered allmulticast mode
[  422.104121][T10676] netlink: 'syz.0.1824': attribute type 10 has an invalid length.
[  424.283964][T10692] netlink: 'syz.0.1832': attribute type 39 has an invalid length.
[  424.318364][T10692] team0: Port device syz_tun removed
[  424.744578][ T5779] Bluetooth: hci1: Malformed LE Event: 0x0b
[  424.806019][ T5779] Bluetooth: hci3: unexpected subevent 0x0a length: 150 > 30
[  425.247255][T10720] syzkaller0: entered promiscuous mode
[  425.258219][T10720] syzkaller0: entered allmulticast mode
[  428.094746][T10749] syzkaller0: entered promiscuous mode
[  428.100294][T10749] syzkaller0: entered allmulticast mode
[  430.080578][T10764] netlink: 'syz.0.1860': attribute type 39 has an invalid length.
[  430.363052][T10773] delete_channel: no stack
[  430.396861][T10772] syzkaller0: entered promiscuous mode
[  430.414829][T10772] syzkaller0: entered allmulticast mode
[  432.692453][T10799] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.1873'.
[  433.223625][T10802] syzkaller0: entered promiscuous mode
[  433.239737][T10802] syzkaller0: entered allmulticast mode
[  436.257403][T10839] netlink: 'syz.0.1890': attribute type 49 has an invalid length.
[  436.302667][T10844] delete_channel: no stack
[  436.543964][ T5779] Bluetooth: hci1: unexpected event 0x08 length: 15 > 4
[  437.120493][T10866] netlink: 'syz.3.1900': attribute type 39 has an invalid length.
[  437.493340][T10871] delete_channel: no stack
[  437.529470][T10872] syzkaller0: entered promiscuous mode
[  437.547137][T10872] syzkaller0: entered allmulticast mode
[  438.427991][T10893] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.1909'.
[  439.762424][T10886] syzkaller0: entered promiscuous mode
[  439.772500][T10886] syzkaller0: entered allmulticast mode
[  440.203965][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  440.210348][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  441.767985][T10911] delete_channel: no stack
[  442.440172][T10916] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1916'.
[  444.497149][T10926] netlink: 'syz.1.1921': attribute type 49 has an invalid length.
[  444.623868][T10940] syz.3.1926[10940] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  444.623999][T10940] syz.3.1926[10940] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  444.640427][T10932] syzkaller0: entered promiscuous mode
[  444.700353][T10932] syzkaller0: entered allmulticast mode
[  444.793584][T10942] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.1927'.
[  447.114224][T10951] netlink: 'syz.1.1937': attribute type 30 has an invalid length.
[  447.972892][T10956] IPv6: NLM_F_REPLACE set, but no existing node found!
[  448.073512][T10962] netlink: 17279 bytes leftover after parsing attributes in process `syz.2.1933'.
[  448.368237][T10968] netlink: 'syz.2.1935': attribute type 49 has an invalid length.
[  449.122693][T10984] netlink: 'syz.3.1943': attribute type 30 has an invalid length.
[  449.970638][T10991] netlink: 17279 bytes leftover after parsing attributes in process `syz.1.1945'.
[  451.131855][T11001] netlink: 'syz.3.1949': attribute type 49 has an invalid length.
[  451.524726][T11014] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1951'.
[  451.650191][T11013] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1951'.
[  452.266830][T11022] netlink: 'syz.0.1954': attribute type 30 has an invalid length.
[  454.708018][T11033] netlink: 'syz.2.1963': attribute type 49 has an invalid length.
[  454.889954][ T5779] Bluetooth: hci2: unexpected event 0x01 length: 151 > 1
[  455.070242][T11047] netlink: 'syz.0.1976': attribute type 49 has an invalid length.
[  455.444316][T11060] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1969'.
[  455.491264][T11059] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1969'.
[  456.239637][T11080] netlink: 'syz.0.1981': attribute type 49 has an invalid length.
[  456.372180][ T5779] Bluetooth: hci1: unexpected event 0x01 length: 151 > 1
[  456.490779][ T5779] Bluetooth: hci3: adv larger than maximum supported
[  456.871160][T11106] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1988'.
[  457.033716][T11104] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1988'.
[  457.482750][T11114] netlink: 'syz.0.1994': attribute type 49 has an invalid length.
[  457.789112][ T5779] Bluetooth: hci0: adv larger than maximum supported
[  458.028745][ T5779] Bluetooth: hci0: unexpected event 0x01 length: 151 > 1
[  458.233950][T11143] netlink: 'syz.3.2006': attribute type 49 has an invalid length.
[  458.574562][T11153] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.2007'.
[  458.628291][T11150] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.2007'.
[  458.853935][T11155] syz.0.2011[11155] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  458.854295][T11155] syz.0.2011[11155] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  458.908561][ T5779] Bluetooth: hci1: adv larger than maximum supported
[  461.274765][T11173] syzkaller0: entered promiscuous mode
[  461.288262][T11173] syzkaller0: entered allmulticast mode
[  462.869572][T11182] IPv6: NLM_F_REPLACE set, but no existing node found!
[  463.095586][T11189] netlink: 'syz.1.2018': attribute type 49 has an invalid length.
[  463.274082][ T5779] Bluetooth: hci3: unexpected event 0x01 length: 151 > 1
[  465.669454][T11218] netlink: 'syz.2.2029': attribute type 21 has an invalid length.
[  466.050791][T11233] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2033'.
[  466.068826][T11230] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2033'.
[  466.425513][ T5779] Bluetooth: hci3: unexpected event 0x01 length: 151 > 1
[  469.556675][ T5779] Bluetooth: hci3: unexpected event 0x08 length: 15 > 4
[  469.785590][ T5779] Bluetooth: hci3: unexpected subevent 0x0c length: 150 > 5
[  469.922069][T11281] syz.1.2048[11281] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  469.922192][T11281] syz.1.2048[11281] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  470.008067][ T5779] Bluetooth: hci3: unexpected event 0x01 length: 151 > 1
[  471.343966][ T5779] Bluetooth: hci1: unexpected event 0x05 length: 15 > 4
[  471.639263][ T5779] Bluetooth: hci3: command 0x0406 tx timeout
[  473.510836][T11307] netlink: 'syz.3.2061': attribute type 21 has an invalid length.
[  474.778227][T11323] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.2065'.
[  474.801064][T11322] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.2065'.
[  475.228767][T11334] netlink: 'syz.1.2071': attribute type 21 has an invalid length.
[  475.244985][T11334] netlink: 'syz.1.2071': attribute type 3 has an invalid length.
[  475.252753][T11334] netlink: 144 bytes leftover after parsing attributes in process `syz.1.2071'.
[  475.510287][T11345] syz.2.2075[11345] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  475.510422][T11345] syz.2.2075[11345] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  476.534923][T11359] netlink: 'syz.2.2081': attribute type 10 has an invalid length.
[  476.719634][T11367] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.2082'.
[  476.743979][T11364] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.2082'.
[  476.990029][ T5083] Bluetooth: hci1: unexpected event 0x08 length: 15 > 4
[  477.454016][T11388] syz.0.2090[11388] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  477.481842][T11388] syz.0.2090[11388] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  479.000703][ T5083] Bluetooth: hci1: command 0x0406 tx timeout
[  479.751879][T11433] syz.2.2109[11433] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  479.755997][T11433] syz.2.2109[11433] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  480.434219][T11446] netlink: 'syz.3.2114': attribute type 21 has an invalid length.
[  480.455710][T11446] netlink: 'syz.3.2114': attribute type 3 has an invalid length.
[  480.463492][T11446] netlink: 144 bytes leftover after parsing attributes in process `syz.3.2114'.
[  483.690956][T11469] netlink: 'syz.0.2123': attribute type 21 has an invalid length.
[  483.700279][T11469] netlink: 'syz.0.2123': attribute type 3 has an invalid length.
[  483.708172][T11469] netlink: 144 bytes leftover after parsing attributes in process `syz.0.2123'.
[  485.026661][T11487] netlink: 'syz.1.2130': attribute type 29 has an invalid length.
[  485.040479][T11487] netlink: 'syz.1.2130': attribute type 29 has an invalid length.
[  485.551631][T11494] syzkaller0: entered promiscuous mode
[  485.557424][T11494] syzkaller0: entered allmulticast mode
[  487.223813][T11496] netlink: 'syz.2.2135': attribute type 21 has an invalid length.
[  487.232060][T11496] netlink: 'syz.2.2135': attribute type 3 has an invalid length.
[  487.246119][T11496] netlink: 144 bytes leftover after parsing attributes in process `syz.2.2135'.
[  489.110805][ T5779] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  489.118608][ T5779] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[  489.128350][ T5779] CPU: 0 PID: 5779 Comm: kworker/u5:5 Not tainted syzkaller #0
[  489.135921][ T5779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  489.145999][ T5779] Workqueue: hci0 hci_rx_work
[  489.150704][ T5779] Call Trace:
[  489.154002][ T5779]  <TASK>
[  489.156951][ T5779]  dump_stack_lvl+0x16c/0x230
[  489.161677][ T5779]  ? show_regs_print_info+0x20/0x20
[  489.166893][ T5779]  ? load_image+0x3b0/0x3b0
[  489.171437][ T5779]  sysfs_create_dir_ns+0x256/0x280
[  489.176575][ T5779]  ? hci_rx_work+0x43a/0xd80
[  489.181183][ T5779]  ? sysfs_warn_dup+0xa0/0xa0
[  489.185888][ T5779]  ? do_raw_spin_unlock+0x121/0x230
[  489.191113][ T5779]  kobject_add_internal+0x6b8/0xc70
[  489.196344][ T5779]  kobject_add+0x156/0x220
[  489.200813][ T5779]  ? __rwlock_init+0x150/0x150
[  489.205601][ T5779]  ? kobject_init+0x1e0/0x1e0
[  489.210296][ T5779]  ? _raw_spin_unlock+0x28/0x40
[  489.215171][ T5779]  ? get_device_parent+0x366/0x390
[  489.220313][ T5779]  device_add+0x408/0xc20
[  489.224676][ T5779]  hci_conn_add_sysfs+0xd5/0x1e0
[  489.229621][ T5779]  le_conn_complete_evt+0xf36/0x1500
[  489.234914][ T5779]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  489.241158][ T5779]  ? bt_info+0x160/0x160
[  489.245399][ T5779]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  489.251027][ T5779]  ? skb_pull_data+0xfb/0x200
[  489.255704][ T5779]  hci_le_conn_complete_evt+0x187/0x440
[  489.261244][ T5779]  ? hci_remote_host_features_evt+0x160/0x160
[  489.267309][ T5779]  hci_event_packet+0x795/0x1210
[  489.272244][ T5779]  ? bis_list+0x290/0x290
[  489.276567][ T5779]  ? lockdep_hardirqs_on+0x98/0x150
[  489.281759][ T5779]  ? hci_send_to_monitor+0xd7/0x4f0
[  489.286952][ T5779]  hci_rx_work+0x43a/0xd80
[  489.291371][ T5779]  ? process_scheduled_works+0x957/0x15b0
[  489.297086][ T5779]  process_scheduled_works+0xa45/0x15b0
[  489.302641][ T5779]  ? assign_work+0x400/0x400
[  489.307230][ T5779]  ? assign_work+0x39e/0x400
[  489.311817][ T5779]  worker_thread+0xa55/0xfc0
[  489.316404][ T5779]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  489.322308][ T5779]  kthread+0x2fa/0x390
[  489.326364][ T5779]  ? pr_cont_work+0x560/0x560
[  489.331032][ T5779]  ? kthread_blkcg+0xd0/0xd0
[  489.335612][ T5779]  ret_from_fork+0x48/0x80
[  489.340021][ T5779]  ? kthread_blkcg+0xd0/0xd0
[  489.344603][ T5779]  ret_from_fork_asm+0x11/0x20
[  489.349375][ T5779]  </TASK>
[  489.362277][ T5779] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  489.376324][ T5779] Bluetooth: hci0: failed to register connection device
[  489.590553][T11528] netlink: 'syz.1.2148': attribute type 21 has an invalid length.
[  489.600776][T11528] netlink: 'syz.1.2148': attribute type 3 has an invalid length.
[  489.609393][T11528] netlink: 144 bytes leftover after parsing attributes in process `syz.1.2148'.
[  491.394871][ T5083] Bluetooth: hci0: command 0x0406 tx timeout
[  491.693986][ T5083] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  491.702095][ T5083] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0'
[  491.711542][ T5083] CPU: 1 PID: 5083 Comm: kworker/u5:1 Not tainted syzkaller #0
[  491.719103][ T5083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  491.729168][ T5083] Workqueue: hci3 hci_rx_work
[  491.733849][ T5083] Call Trace:
[  491.737120][ T5083]  <TASK>
[  491.740045][ T5083]  dump_stack_lvl+0x16c/0x230
[  491.744717][ T5083]  ? show_regs_print_info+0x20/0x20
[  491.749907][ T5083]  ? load_image+0x3b0/0x3b0
[  491.754416][ T5083]  sysfs_create_dir_ns+0x256/0x280
[  491.759550][ T5083]  ? hci_rx_work+0x43a/0xd80
[  491.764133][ T5083]  ? sysfs_warn_dup+0xa0/0xa0
[  491.768899][ T5083]  ? do_raw_spin_unlock+0x121/0x230
[  491.774096][ T5083]  kobject_add_internal+0x6b8/0xc70
[  491.779296][ T5083]  kobject_add+0x156/0x220
[  491.783709][ T5083]  ? __rwlock_init+0x150/0x150
[  491.788491][ T5083]  ? kobject_init+0x1e0/0x1e0
[  491.793173][ T5083]  ? _raw_spin_unlock+0x28/0x40
[  491.798030][ T5083]  ? get_device_parent+0x366/0x390
[  491.803150][ T5083]  device_add+0x408/0xc20
[  491.807505][ T5083]  hci_conn_add_sysfs+0xd5/0x1e0
[  491.812446][ T5083]  le_conn_complete_evt+0xf36/0x1500
[  491.817737][ T5083]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  491.823974][ T5083]  ? bt_info+0x160/0x160
[  491.828214][ T5083]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  491.833840][ T5083]  ? skb_pull_data+0xfb/0x200
[  491.838514][ T5083]  hci_le_conn_complete_evt+0x187/0x440
[  491.844054][ T5083]  ? hci_remote_host_features_evt+0x160/0x160
[  491.850116][ T5083]  hci_event_packet+0x795/0x1210
[  491.855056][ T5083]  ? bis_list+0x290/0x290
[  491.859381][ T5083]  ? lockdep_hardirqs_on+0x98/0x150
[  491.864583][ T5083]  ? hci_send_to_monitor+0xd7/0x4f0
[  491.869794][ T5083]  hci_rx_work+0x43a/0xd80
[  491.874215][ T5083]  ? process_scheduled_works+0x957/0x15b0
[  491.879982][ T5083]  process_scheduled_works+0xa45/0x15b0
[  491.885544][ T5083]  ? assign_work+0x400/0x400
[  491.890131][ T5083]  ? assign_work+0x39e/0x400
[  491.894723][ T5083]  worker_thread+0xa55/0xfc0
[  491.899303][ T5083]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  491.905192][ T5083]  ? _raw_spin_unlock+0x40/0x40
[  491.910032][ T5083]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  491.915943][ T5083]  kthread+0x2fa/0x390
[  491.920004][ T5083]  ? pr_cont_work+0x560/0x560
[  491.924677][ T5083]  ? kthread_blkcg+0xd0/0xd0
[  491.929258][ T5083]  ret_from_fork+0x48/0x80
[  491.933666][ T5083]  ? kthread_blkcg+0xd0/0xd0
[  491.938248][ T5083]  ret_from_fork_asm+0x11/0x20
[  491.943017][ T5083]  </TASK>
[  491.948262][ T5083] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  491.964793][ T5083] Bluetooth: hci3: failed to register connection device
[  492.618148][T11553] netlink: 'syz.2.2159': attribute type 21 has an invalid length.
[  492.661131][T11553] netlink: 'syz.2.2159': attribute type 3 has an invalid length.
[  492.671772][T11553] netlink: 144 bytes leftover after parsing attributes in process `syz.2.2159'.
[  494.035707][ T5779] Bluetooth: hci3: command 0x0406 tx timeout
[  494.143899][ T5779] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  494.151760][ T5779] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0'
[  494.161453][ T5779] CPU: 1 PID: 5779 Comm: kworker/u5:5 Not tainted syzkaller #0
[  494.169336][ T5779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  494.179421][ T5779] Workqueue: hci2 hci_rx_work
[  494.184139][ T5779] Call Trace:
[  494.187446][ T5779]  <TASK>
[  494.190393][ T5779]  dump_stack_lvl+0x16c/0x230
[  494.195098][ T5779]  ? show_regs_print_info+0x20/0x20
[  494.200329][ T5779]  ? load_image+0x3b0/0x3b0
[  494.204881][ T5779]  sysfs_create_dir_ns+0x256/0x280
[  494.210034][ T5779]  ? hci_rx_work+0x43a/0xd80
[  494.214653][ T5779]  ? sysfs_warn_dup+0xa0/0xa0
[  494.219427][ T5779]  ? do_raw_spin_unlock+0x121/0x230
[  494.224656][ T5779]  kobject_add_internal+0x6b8/0xc70
[  494.229903][ T5779]  kobject_add+0x156/0x220
[  494.234353][ T5779]  ? __rwlock_init+0x150/0x150
[  494.239419][ T5779]  ? kobject_init+0x1e0/0x1e0
[  494.245002][ T5779]  ? _raw_spin_unlock+0x28/0x40
[  494.249975][ T5779]  ? get_device_parent+0x366/0x390
[  494.255122][ T5779]  device_add+0x408/0xc20
[  494.259496][ T5779]  hci_conn_add_sysfs+0xd5/0x1e0
[  494.264558][ T5779]  le_conn_complete_evt+0xf36/0x1500
[  494.269885][ T5779]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  494.276154][ T5779]  ? bt_info+0x160/0x160
[  494.280435][ T5779]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  494.286106][ T5779]  ? skb_pull_data+0xfb/0x200
[  494.290830][ T5779]  hci_le_conn_complete_evt+0x187/0x440
[  494.296467][ T5779]  ? hci_remote_host_features_evt+0x160/0x160
[  494.302587][ T5779]  hci_event_packet+0x795/0x1210
[  494.307568][ T5779]  ? bis_list+0x290/0x290
[  494.311929][ T5779]  ? lockdep_hardirqs_on+0x98/0x150
[  494.317157][ T5779]  ? hci_send_to_monitor+0xd7/0x4f0
[  494.322384][ T5779]  hci_rx_work+0x43a/0xd80
[  494.326841][ T5779]  ? process_scheduled_works+0x957/0x15b0
[  494.332590][ T5779]  process_scheduled_works+0xa45/0x15b0
[  494.338199][ T5779]  ? assign_work+0x400/0x400
[  494.342828][ T5779]  ? assign_work+0x39e/0x400
[  494.347457][ T5779]  worker_thread+0xa55/0xfc0
[  494.352076][ T5779]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  494.358029][ T5779]  kthread+0x2fa/0x390
[  494.362116][ T5779]  ? pr_cont_work+0x560/0x560
[  494.366818][ T5779]  ? kthread_blkcg+0xd0/0xd0
[  494.371430][ T5779]  ret_from_fork+0x48/0x80
[  494.375875][ T5779]  ? kthread_blkcg+0xd0/0xd0
[  494.380495][ T5779]  ret_from_fork_asm+0x11/0x20
[  494.385308][ T5779]  </TASK>
[  494.390702][ T5779] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  494.409631][ T5779] Bluetooth: hci2: failed to register connection device
[  496.430302][ T5083] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  496.438656][ T5083] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0'
[  496.448308][ T5779] Bluetooth: hci2: command 0x0406 tx timeout
[  496.454392][ T5083] CPU: 1 PID: 5083 Comm: kworker/u5:1 Not tainted syzkaller #0
[  496.462052][ T5083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  496.472135][ T5083] Workqueue: hci1 hci_rx_work
[  496.476932][ T5083] Call Trace:
[  496.480234][ T5083]  <TASK>
[  496.483189][ T5083]  dump_stack_lvl+0x16c/0x230
[  496.487899][ T5083]  ? show_regs_print_info+0x20/0x20
[  496.493139][ T5083]  ? load_image+0x3b0/0x3b0
[  496.497707][ T5083]  sysfs_create_dir_ns+0x256/0x280
[  496.502856][ T5083]  ? hci_rx_work+0x43a/0xd80
[  496.507474][ T5083]  ? sysfs_warn_dup+0xa0/0xa0
[  496.512196][ T5083]  ? do_raw_spin_unlock+0x121/0x230
[  496.517520][ T5083]  kobject_add_internal+0x6b8/0xc70
[  496.522751][ T5083]  kobject_add+0x156/0x220
[  496.527175][ T5083]  ? __rwlock_init+0x150/0x150
[  496.531943][ T5083]  ? kobject_init+0x1e0/0x1e0
[  496.536626][ T5083]  ? _raw_spin_unlock+0x28/0x40
[  496.541486][ T5083]  ? get_device_parent+0x366/0x390
[  496.546608][ T5083]  device_add+0x408/0xc20
[  496.550945][ T5083]  hci_conn_add_sysfs+0xd5/0x1e0
[  496.555900][ T5083]  le_conn_complete_evt+0xf36/0x1500
[  496.561206][ T5083]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  496.567468][ T5083]  ? bt_info+0x160/0x160
[  496.571740][ T5083]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  496.577382][ T5083]  ? skb_pull_data+0xfb/0x200
[  496.582067][ T5083]  hci_le_conn_complete_evt+0x187/0x440
[  496.587628][ T5083]  ? hci_remote_host_features_evt+0x160/0x160
[  496.593701][ T5083]  hci_event_packet+0x795/0x1210
[  496.598654][ T5083]  ? bis_list+0x290/0x290
[  496.602992][ T5083]  ? lockdep_hardirqs_on+0x98/0x150
[  496.608194][ T5083]  ? hci_send_to_monitor+0xd7/0x4f0
[  496.613391][ T5083]  hci_rx_work+0x43a/0xd80
[  496.617811][ T5083]  ? process_scheduled_works+0x957/0x15b0
[  496.623531][ T5083]  process_scheduled_works+0xa45/0x15b0
[  496.629093][ T5083]  ? assign_work+0x400/0x400
[  496.633687][ T5083]  ? assign_work+0x39e/0x400
[  496.638279][ T5083]  worker_thread+0xa55/0xfc0
[  496.642866][ T5083]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  496.648755][ T5083]  ? _raw_spin_unlock+0x40/0x40
[  496.653597][ T5083]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  496.659498][ T5083]  kthread+0x2fa/0x390
[  496.663660][ T5083]  ? pr_cont_work+0x560/0x560
[  496.668341][ T5083]  ? kthread_blkcg+0xd0/0xd0
[  496.672924][ T5083]  ret_from_fork+0x48/0x80
[  496.677337][ T5083]  ? kthread_blkcg+0xd0/0xd0
[  496.681963][ T5083]  ret_from_fork_asm+0x11/0x20
[  496.686746][ T5083]  </TASK>
[  496.691709][ T5083] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  496.705761][ T5083] Bluetooth: hci1: failed to register connection device
[  498.055521][T11630] netlink: 'syz.1.2193': attribute type 10 has an invalid length.
[  498.063490][T11630] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2193'.
[  498.119092][T11630] batman_adv: batadv0: Adding interface: virt_wifi0
[  498.175157][T11630] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  498.206163][T11630] batman_adv: batadv0: Interface activated: virt_wifi0
[  498.757956][ T5083] Bluetooth: hci1: command 0x0406 tx timeout
[  501.637964][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  501.644329][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  502.212131][T11696] netlink: 830 bytes leftover after parsing attributes in process `syz.3.2222'.
[  502.227717][T11696] bond_slave_0: entered promiscuous mode
[  502.233719][T11696] bond_slave_1: entered promiscuous mode
[  503.549670][T11732] syz.0.2238[11732] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  503.549811][T11732] syz.0.2238[11732] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  503.691528][ T5083] Bluetooth: hci1: unexpected subevent 0x0a length: 150 > 30
[  503.711597][ T5083] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0'
[  503.722374][ T5083] CPU: 1 PID: 5083 Comm: kworker/u5:1 Not tainted syzkaller #0
[  503.729968][ T5083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  503.740042][ T5083] Workqueue: hci1 hci_rx_work
[  503.744749][ T5083] Call Trace:
[  503.748043][ T5083]  <TASK>
[  503.750999][ T5083]  dump_stack_lvl+0x16c/0x230
[  503.755714][ T5083]  ? show_regs_print_info+0x20/0x20
[  503.760932][ T5083]  ? load_image+0x3b0/0x3b0
[  503.765483][ T5083]  sysfs_create_dir_ns+0x256/0x280
[  503.770636][ T5083]  ? hci_rx_work+0x43a/0xd80
[  503.775258][ T5083]  ? sysfs_warn_dup+0xa0/0xa0
[  503.779982][ T5083]  ? do_raw_spin_unlock+0x121/0x230
[  503.785202][ T5083]  kobject_add_internal+0x6b8/0xc70
[  503.790411][ T5083]  kobject_add+0x156/0x220
[  503.794825][ T5083]  ? __rwlock_init+0x150/0x150
[  503.799602][ T5083]  ? kobject_init+0x1e0/0x1e0
[  503.804290][ T5083]  ? _raw_spin_unlock+0x28/0x40
[  503.809146][ T5083]  ? get_device_parent+0x366/0x390
[  503.814267][ T5083]  device_add+0x408/0xc20
[  503.818617][ T5083]  hci_conn_add_sysfs+0xd5/0x1e0
[  503.823558][ T5083]  le_conn_complete_evt+0xf36/0x1500
[  503.828858][ T5083]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  503.835095][ T5083]  ? bt_info+0x160/0x160
[  503.839339][ T5083]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  503.844969][ T5083]  ? skb_pull_data+0xfb/0x200
[  503.849649][ T5083]  hci_le_enh_conn_complete_evt+0x189/0x460
[  503.855547][ T5083]  ? hci_le_remote_conn_param_req_evt+0xcc0/0xcc0
[  503.861953][ T5083]  ? hci_remote_host_features_evt+0x160/0x160
[  503.868019][ T5083]  hci_event_packet+0x795/0x1210
[  503.872963][ T5083]  ? bis_list+0x290/0x290
[  503.877293][ T5083]  ? lockdep_hardirqs_on+0x98/0x150
[  503.882504][ T5083]  ? hci_send_to_monitor+0xd7/0x4f0
[  503.887700][ T5083]  hci_rx_work+0x43a/0xd80
[  503.892113][ T5083]  ? process_scheduled_works+0x957/0x15b0
[  503.897832][ T5083]  process_scheduled_works+0xa45/0x15b0
[  503.903395][ T5083]  ? assign_work+0x400/0x400
[  503.907999][ T5083]  ? assign_work+0x39e/0x400
[  503.912593][ T5083]  worker_thread+0xa55/0xfc0
[  503.917182][ T5083]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  503.923075][ T5083]  ? _raw_spin_unlock+0x40/0x40
[  503.927924][ T5083]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  503.933842][ T5083]  kthread+0x2fa/0x390
[  503.937909][ T5083]  ? pr_cont_work+0x560/0x560
[  503.942622][ T5083]  ? kthread_blkcg+0xd0/0xd0
[  503.947216][ T5083]  ret_from_fork+0x48/0x80
[  503.951637][ T5083]  ? kthread_blkcg+0xd0/0xd0
[  503.956227][ T5083]  ret_from_fork_asm+0x11/0x20
[  503.961008][ T5083]  </TASK>
[  503.969646][ T5083] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  503.984204][ T5083] Bluetooth: hci1: failed to register connection device
[  504.565730][T11745] netlink: 'syz.3.2241': attribute type 10 has an invalid length.
[  504.594972][T11745] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2241'.
[  504.617028][T11745] batman_adv: batadv0: Adding interface: virt_wifi0
[  504.623693][T11745] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  504.662307][T11745] batman_adv: batadv0: Interface activated: virt_wifi0
[  504.840993][T11750] syz.1.2252[11750] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  504.841118][T11750] syz.1.2252[11750] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  506.252379][T11765] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.2248'.
[  508.277807][ T5083] Bluetooth: hci2: unexpected event 0x0b length: 15 > 11
[  508.593160][ T5083] Bluetooth: hci0: unexpected subevent 0x0a length: 150 > 30
[  508.608250][ T5083] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  508.785946][T11797] syz.1.2264[11797] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  508.786070][T11797] syz.1.2264[11797] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  511.499665][T11827] netlink: 'syz.1.2273': attribute type 10 has an invalid length.
[  511.718807][T11827] 8021q: adding VLAN 0 to HW filter on device team0
[  511.812348][T11827] bond0: (slave team0): Enslaving as an active interface with an up link
[  512.813939][T11844] syz.1.2281[11844] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  512.814090][T11844] syz.1.2281[11844] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  514.426022][T11870] netlink: 830 bytes leftover after parsing attributes in process `syz.0.2288'.
[  514.467420][T11870] bond_slave_0: entered promiscuous mode
[  514.473185][T11870] bond_slave_1: entered promiscuous mode
[  514.527366][T11872] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.2291'.
[  514.974999][T11879] netlink: 'syz.2.2293': attribute type 10 has an invalid length.
[  515.176476][T11879] 8021q: adding VLAN 0 to HW filter on device team0
[  515.205872][T11885] syz.3.2295[11885] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  515.205996][T11885] syz.3.2295[11885] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  515.218252][T11879] bond0: (slave team0): Enslaving as an active interface with an up link
[  516.674706][ T5856] page_pool_release_retry() stalled pool shutdown 1 inflight 60 sec
[  516.792872][T11910] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2303'.
[  516.802354][T11910] bond_slave_0: entered promiscuous mode
[  516.808380][T11910] bond_slave_1: entered promiscuous mode
[  516.814304][T11910] team_slave_0: entered promiscuous mode
[  516.820299][T11910] team_slave_1: entered promiscuous mode
[  516.826062][T11910] mac80211_hwsim hwsim9 wlan1: entered promiscuous mode
[  516.833752][T11910] syz_tun: entered promiscuous mode
[  516.839066][T11910] geneve1: entered promiscuous mode
[  517.859132][T11920] syz.1.2314[11920] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  517.859255][T11920] syz.1.2314[11920] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  519.071820][T11926] netlink: 'syz.0.2306': attribute type 10 has an invalid length.
[  519.246586][T11926] 8021q: adding VLAN 0 to HW filter on device team0
[  520.012623][T11946] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  520.020145][T11946] IPv6: NLM_F_CREATE should be set when creating new route
[  520.027743][T11946] IPv6: NLM_F_CREATE should be set when creating new route
[  520.035181][T11946] IPv6: NLM_F_CREATE should be set when creating new route
[  521.533310][ T5779] Bluetooth: hci0: Malformed LE Event: 0x0d
[  521.565305][T11977] netlink: 'syz.3.2325': attribute type 10 has an invalid length.
[  521.573360][T11977] batman_adv: batadv0: Removing interface: team0
[  521.680365][T11977] 8021q: adding VLAN 0 to HW filter on device team0
[  521.835398][T11977] team_slave_0: entered promiscuous mode
[  521.841333][T11977] team_slave_1: entered promiscuous mode
[  521.847166][T11977] syz_tun: entered promiscuous mode
[  521.864383][T11977] bond0: (slave team0): Enslaving as an active interface with an up link
[  522.647163][ T5779] Bluetooth: hci0: unexpected event 0x09 length: 15 > 3
[  522.716104][T11987] syz.2.2330[11987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  522.723204][T11987] syz.2.2330[11987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  523.052246][T11994] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.2333'.
[  524.207954][T12011] netlink: 'syz.1.2342': attribute type 10 has an invalid length.
[  525.633282][T12019] syzkaller0: entered promiscuous mode
[  525.649176][T12019] syzkaller0: entered allmulticast mode
[  527.234476][ T5779] Bluetooth: hci1: unknown advertising packet type: 0x65
[  528.664185][T12037] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.2349'.
[  528.829532][ T5779] Bluetooth: hci3: unexpected subevent 0x0e length: 150 > 15
[  529.802628][T12068] syzkaller0: entered promiscuous mode
[  529.830976][T12068] syzkaller0: entered allmulticast mode
[  529.896128][T12075] netlink: 'syz.2.2368': attribute type 21 has an invalid length.
[  529.917209][T12075] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  529.924492][T12075] IPv6: NLM_F_CREATE should be set when creating new route
[  529.931919][T12075] IPv6: NLM_F_CREATE should be set when creating new route
[  529.939240][T12075] IPv6: NLM_F_CREATE should be set when creating new route
[  530.069411][T12079] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.2370'.
[  532.388056][T12101] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.2387'.
[  533.196083][T12122] syzkaller0: entered promiscuous mode
[  533.208809][T12122] syzkaller0: entered allmulticast mode
[  533.554645][T12130] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.2392'.
[  535.594526][T12147] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  535.601979][T12147] IPv6: NLM_F_CREATE should be set when creating new route
[  535.609511][T12147] IPv6: NLM_F_CREATE should be set when creating new route
[  535.617038][T12147] IPv6: NLM_F_CREATE should be set when creating new route
[  535.682050][T12152] netlink: 'syz.2.2400': attribute type 10 has an invalid length.
[  536.304911][T12162] netlink: 'syz.2.2403': attribute type 10 has an invalid length.
[  536.339909][T12162] team_slave_0: left promiscuous mode
[  536.352944][T12162] team_slave_1: left promiscuous mode
[  536.376027][T12162] mac80211_hwsim hwsim9 wlan1: left promiscuous mode
[  536.394147][T12162] syz_tun: left promiscuous mode
[  536.409048][T12162] geneve1: left promiscuous mode
[  536.560403][T12164] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  536.568174][T12164] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  536.880741][T12173] netlink: 'syz.2.2408': attribute type 21 has an invalid length.
[  536.892235][T12173] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2408'.
[  536.974401][T12171] syzkaller0: entered promiscuous mode
[  536.987253][T12171] syzkaller0: entered allmulticast mode
[  539.367753][T12191] netlink: 'syz.3.2415': attribute type 10 has an invalid length.
[  539.636669][T12196] netlink: 'syz.0.2417': attribute type 10 has an invalid length.
[  539.768570][T12196] 8021q: adding VLAN 0 to HW filter on device team0
[  540.331417][T12211] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  540.458439][T12213] syzkaller0: entered promiscuous mode
[  540.464031][T12213] syzkaller0: entered allmulticast mode
[  542.389057][T12232] netlink: 'syz.3.2437': attribute type 21 has an invalid length.
[  542.402965][T12232] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2437'.
[  542.577276][T12234] syzkaller0: entered promiscuous mode
[  542.588940][T12234] syzkaller0: entered allmulticast mode
[  542.691044][T12240] netlink: 'syz.3.2430': attribute type 10 has an invalid length.
[  542.729742][T12240] team_slave_0: left promiscuous mode
[  542.744418][T12240] team_slave_1: left promiscuous mode
[  542.759296][T12240] syz_tun: left promiscuous mode
[  542.790941][T12239] netlink: 'syz.1.2429': attribute type 10 has an invalid length.
[  545.192586][T12262] netlink: 'syz.0.2441': attribute type 21 has an invalid length.
[  545.204759][T12261] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.2442'.
[  545.212261][T12262] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2441'.
[  545.593013][T12274] netlink: 'syz.3.2447': attribute type 10 has an invalid length.
[  545.884517][T12279] syzkaller0: entered promiscuous mode
[  545.891490][T12279] syzkaller0: entered allmulticast mode
[  547.767658][T12290] netlink: 'syz.1.2453': attribute type 21 has an invalid length.
[  547.778089][T12290] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2453'.
[  547.920316][T12296] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.2455'.
[  548.130937][T12303] netlink: 'syz.1.2458': attribute type 10 has an invalid length.
[  550.201658][T12324] netlink: 'syz.3.2468': attribute type 21 has an invalid length.
[  550.210727][T12324] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2468'.
[  550.418226][T12327] netlink: 'syz.0.2479': attribute type 21 has an invalid length.
[  550.494300][T12327] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2479'.
[  550.636759][T12335] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.2482'.
[  551.783642][T12356] netlink: 'syz.1.2484': attribute type 21 has an invalid length.
[  551.848761][T12356] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2484'.
[  553.962800][T12391] netlink: 'syz.1.2499': attribute type 10 has an invalid length.
[  555.755576][T12420] netlink: 'syz.0.2506': attribute type 10 has an invalid length.
[  556.190108][T12430] syzkaller0: entered promiscuous mode
[  556.207652][T12430] syzkaller0: entered allmulticast mode
[  556.227879][ T1310] syzkaller0: tun_net_xmit 48
[  556.259927][T12432] syzkaller0: tun_chr_ioctl cmd 2147767520
[  556.265910][T12430] syzkaller0: tun_net_xmit 1280
[  556.266192][T12430] syzkaller0: create flow: hash 848623139 index 2
[  556.397987][T12429] syzkaller0: delete flow: hash 848623139 index 2
[  559.021861][T12452] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  559.056215][T12452] batman_adv: batadv0: Removing interface: batadv_slave_1
[  559.082634][T12452] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  559.095010][T12452] batman_adv: batadv0: Removing interface: virt_wifi0
[  562.691943][T12494] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2542'.
[  563.187691][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  563.194264][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  565.778894][T12518] netlink: 126588 bytes leftover after parsing attributes in process `syz.1.2553'.
[  565.903800][T12524] syzkaller0: entered promiscuous mode
[  565.909596][T12524] syzkaller0: entered allmulticast mode
[  565.917227][ T3487] syzkaller0: tun_net_xmit 48
[  565.948072][T12529] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2556'.
[  565.971369][T12524] syzkaller0: tun_chr_ioctl cmd 2147767520
[  565.982090][T12524] syzkaller0: tun_net_xmit 1280
[  567.343354][T12560] netlink: 126588 bytes leftover after parsing attributes in process `syz.0.2569'.
[  568.516736][T12556] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2567'.
[  569.871361][T12588] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.2579'.
[  570.045386][T12590] netlink: 126588 bytes leftover after parsing attributes in process `syz.3.2580'.
[  570.964178][T12594] syzkaller0: entered promiscuous mode
[  570.969908][T12594] syzkaller0: entered allmulticast mode
[  572.746791][T12608] netlink: 14 bytes leftover after parsing attributes in process `syz.3.2595'.
[  573.029620][T12620] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2587'.
[  573.339634][T12632] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2602'.
[  576.111119][T12651] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  576.128742][T12651] batman_adv: batadv0: Removing interface: batadv_slave_1
[  576.848744][T12651] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  576.861143][T12651] batman_adv: batadv0: Removing interface: virt_wifi0
[  576.937816][T12656] netlink: 14 bytes leftover after parsing attributes in process `syz.0.2604'.
[  577.092967][T12667] netlink: 'syz.2.2609': attribute type 10 has an invalid length.
[  577.110809][T12667] netlink: 55 bytes leftover after parsing attributes in process `syz.2.2609'.
[  581.516184][T12698] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  581.524313][T12698] batman_adv: batadv0: Removing interface: batadv_slave_1
[  582.150351][T12705] netlink: 14 bytes leftover after parsing attributes in process `syz.2.2623'.
[  582.760815][T12731] netlink: 'syz.1.2634': attribute type 10 has an invalid length.
[  582.768902][T12731] netlink: 55 bytes leftover after parsing attributes in process `syz.1.2634'.
[  587.031239][T12750] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  587.040591][T12750] batman_adv: batadv0: Removing interface: batadv_slave_1
[  587.226249][T12758] netlink: 'syz.0.2652': attribute type 15 has an invalid length.
[  588.083145][T12782] syzkaller0: entered promiscuous mode
[  588.089026][T12782] syzkaller0: entered allmulticast mode
[  591.166942][T12819] syzkaller0: entered promiscuous mode
[  591.172567][T12819] syzkaller0: entered allmulticast mode
[  592.898054][T12834] sctp: [Deprecated]: syz.0.2682 (pid 12834) Use of int in maxseg socket option.
[  592.898054][T12834] Use struct sctp_assoc_value instead
[  593.721184][T12830] syzkaller0: entered promiscuous mode
[  593.726743][T12830] syzkaller0: entered allmulticast mode
[  595.296285][T12850] mac80211_hwsim hwsim5 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  595.296337][ T7890] wlan1: Created IBSS using preconfigured BSSID 00:8d:ff:ff:00:00
[  595.313403][T12848] netlink: 'syz.2.2681': attribute type 15 has an invalid length.
[  595.321413][ T7890] wlan1: Creating new IBSS network, BSSID 00:8d:ff:ff:00:00
[  597.088666][T12887] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  597.268690][T12891] netlink: 'syz.1.2698': attribute type 15 has an invalid length.
[  598.375765][T12915] netlink: 'syz.1.2708': attribute type 10 has an invalid length.
[  598.422855][T12915] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2708'.
[  598.446325][T12915] team0: entered promiscuous mode
[  598.461147][T12915] team_slave_0: entered promiscuous mode
[  598.476177][T12915] team_slave_1: entered promiscuous mode
[  598.489590][T12915] veth1_macvtap: entered promiscuous mode
[  598.503129][T12915] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode
[  598.534736][T12915] geneve1: entered promiscuous mode
[  598.540993][T12915] team0: entered allmulticast mode
[  598.546834][T12915] team_slave_0: entered allmulticast mode
[  598.552738][T12915] team_slave_1: entered allmulticast mode
[  598.559561][T12915] veth1_macvtap: entered allmulticast mode
[  598.567136][T12915] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  598.576187][T12915] geneve1: entered allmulticast mode
[  598.587811][T12915] 8021q: adding VLAN 0 to HW filter on device team0
[  598.613124][T12915] bond0: (slave team0): Releasing backup interface
[  598.661487][T12915] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  598.691789][T12917] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  599.949203][T12947] syzkaller0: entered promiscuous mode
[  599.954868][T12947] syzkaller0: entered allmulticast mode
[  601.684647][T12958] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  601.694220][ T1090] wlan1: Created IBSS using preconfigured BSSID 00:8d:8d:ff:00:00
[  601.702301][T12957] netlink: 'syz.0.2722': attribute type 10 has an invalid length.
[  601.724667][ T1090] wlan1: Creating new IBSS network, BSSID 00:8d:8d:ff:00:00
[  601.733854][T12957] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2722'.
[  601.747548][T12957] team0: entered promiscuous mode
[  601.752798][T12957] team_slave_0: entered promiscuous mode
[  601.760829][T12957] team_slave_1: entered promiscuous mode
[  601.767434][T12957] veth1_macvtap: entered promiscuous mode
[  601.773336][T12957] geneve1: entered promiscuous mode
[  601.780407][T12957] bond0: entered promiscuous mode
[  601.786022][T12957] batadv_slave_0: entered promiscuous mode
[  601.803800][T12957] team0: entered allmulticast mode
[  601.810922][T12957] team_slave_0: entered allmulticast mode
[  601.817469][T12957] team_slave_1: entered allmulticast mode
[  601.823518][T12957] veth1_macvtap: entered allmulticast mode
[  601.830157][T12957] geneve1: entered allmulticast mode
[  601.836213][T12957] bond0: entered allmulticast mode
[  601.841721][T12957] bond_slave_0: entered allmulticast mode
[  601.847661][T12957] bond_slave_1: entered allmulticast mode
[  601.853432][T12957] batadv_slave_0: entered allmulticast mode
[  601.861446][T12957] 8021q: adding VLAN 0 to HW filter on device team0
[  601.869721][T12957] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  601.937247][T12963] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  602.488957][T12984] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  602.569009][T12986] syzkaller0: entered promiscuous mode
[  602.574984][T12986] syzkaller0: entered allmulticast mode
[  604.983057][T12993] netlink: 'syz.3.2740': attribute type 10 has an invalid length.
[  604.991030][T12993] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2740'.
[  605.000422][T12993] team_slave_0: entered promiscuous mode
[  605.006475][T12993] team_slave_1: entered promiscuous mode
[  605.012412][T12993] syz_tun: entered promiscuous mode
[  605.018485][T12993] team0: entered promiscuous mode
[  605.023914][T12993] vlan0: entered promiscuous mode
[  605.029819][T12993] veth1_macvtap: entered promiscuous mode
[  605.036172][T12993] geneve1: entered promiscuous mode
[  605.041554][T12993] team0: entered allmulticast mode
[  605.047101][T12993] team_slave_0: entered allmulticast mode
[  605.053609][T12993] team_slave_1: entered allmulticast mode
[  605.059905][T12993] veth1_macvtap: entered allmulticast mode
[  605.066245][T12993] syz_tun: entered allmulticast mode
[  605.071689][T12993] geneve1: entered allmulticast mode
[  605.080804][T12993] 8021q: adding VLAN 0 to HW filter on device team0
[  605.089493][T12993] bond0: (slave team0): Releasing backup interface
[  605.103860][T12993] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  605.137182][T13011] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  605.146908][ T1310] wlan1: Created IBSS using preconfigured BSSID 00:8d:ff:ff:00:00
[  605.165125][ T1310] wlan1: Creating new IBSS network, BSSID 00:8d:ff:ff:00:00
[  606.273817][T13042] netlink: 'syz.2.2759': attribute type 10 has an invalid length.
[  606.299864][T13042] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2759'.
[  606.312549][T13042] team_slave_0: entered promiscuous mode
[  606.320286][T13042] team_slave_1: entered promiscuous mode
[  606.327507][T13042] mac80211_hwsim hwsim9 wlan1: entered promiscuous mode
[  606.336793][T13042] syz_tun: entered promiscuous mode
[  606.342951][T13042] geneve1: entered promiscuous mode
[  606.356265][T13042] team0: entered promiscuous mode
[  606.373668][T13042] team0: entered allmulticast mode
[  606.380689][T13042] team_slave_0: entered allmulticast mode
[  606.387138][T13042] team_slave_1: entered allmulticast mode
[  606.393926][T13042] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  606.402322][T13042] syz_tun: entered allmulticast mode
[  606.408454][T13042] geneve1: entered allmulticast mode
[  606.429625][T13042] 8021q: adding VLAN 0 to HW filter on device team0
[  606.439687][T13042] bond0: (slave team0): Releasing backup interface
[  606.458179][T13042] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  607.297516][T13074] netlink: 'syz.2.2776': attribute type 4 has an invalid length.
[  607.316252][T13074] netlink: 140 bytes leftover after parsing attributes in process `syz.2.2776'.
[  607.930246][T13090] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.2781'.
[  607.940646][T13090] tc_dump_action: action bad kind
[  608.404335][T13107] netlink: 'syz.2.2791': attribute type 10 has an invalid length.
[  608.420470][T13107] bridge_slave_1: entered promiscuous mode
[  608.435203][T13107] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  608.608890][T13115] netlink: 'syz.2.2795': attribute type 9 has an invalid length.
[  608.624611][T13115] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.2795'.
[  609.378027][T13134] netlink: 'syz.0.2804': attribute type 1 has an invalid length.
[  609.413204][T13134] netlink: 'syz.0.2804': attribute type 17 has an invalid length.
[  609.434707][T13134] netlink: 'syz.0.2804': attribute type 16 has an invalid length.
[  609.442667][T13134] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2804'.
[  609.957033][ T5083] Bluetooth: hci1: Opcode 0x206a failed: -110
[  609.958618][ T5779] Bluetooth: hci1: command 0x0406 tx timeout
[  610.157782][T13162] netlink: 'syz.3.2815': attribute type 9 has an invalid length.
[  610.166485][T13162] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.2815'.
[  610.282020][T13166] netlink: 'syz.0.2818': attribute type 4 has an invalid length.
[  610.308736][T13166] netlink: 140 bytes leftover after parsing attributes in process `syz.0.2818'.
[  610.465805][T13174] netlink: 'syz.3.2821': attribute type 1 has an invalid length.
[  610.500361][T13178] netlink: 'syz.0.2824': attribute type 3 has an invalid length.
[  610.502513][T13174] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2821'.
[  610.583705][T13177] netlink: 140 bytes leftover after parsing attributes in process `syz.1.2832'.
[  610.946267][T13186] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2827'.
[  610.983515][T13186] 8021q: adding VLAN 0 to HW filter on device team0
[  610.995193][T13186] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  611.926327][T13206] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.2834'.
[  612.056156][T13211] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2835'.
[  612.494456][T13226] validate_nla: 17 callbacks suppressed
[  612.494473][T13226] netlink: 'syz.2.2845': attribute type 3 has an invalid length.
[  612.508226][T13226] netlink: 'syz.2.2845': attribute type 16 has an invalid length.
[  612.516204][T13226] netlink: 'syz.2.2845': attribute type 18 has an invalid length.
[  612.525106][T13226] netlink: 'syz.2.2845': attribute type 20 has an invalid length.
[  612.532953][T13226] netlink: 'syz.2.2845': attribute type 25 has an invalid length.
[  613.882930][T13216] netlink: 'syz.3.2838': attribute type 4 has an invalid length.
[  613.890870][T13216] netlink: 140 bytes leftover after parsing attributes in process `syz.3.2838'.
[  614.046760][T13238] netlink: 'syz.0.2848': attribute type 9 has an invalid length.
[  614.056939][T13238] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.2848'.
[  614.619277][T13261] netlink: 'syz.1.2858': attribute type 4 has an invalid length.
[  614.629536][T13261] netlink: 140 bytes leftover after parsing attributes in process `syz.1.2858'.
[  615.149678][T13275] netlink: 'syz.3.2864': attribute type 9 has an invalid length.
[  615.178347][T13275] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.2864'.
[  617.556910][T13318] netlink: 'syz.2.2882': attribute type 10 has an invalid length.
[  617.706255][T13318] team0: left promiscuous mode
[  617.765455][T13318] team_slave_0: left promiscuous mode
[  617.828931][T13318] team_slave_1: left promiscuous mode
[  617.894247][T13318] mac80211_hwsim hwsim9 wlan1: left promiscuous mode
[  618.015797][T13318] syz_tun: left promiscuous mode
[  618.096385][T13318] geneve1: left promiscuous mode
[  618.171763][T13318] team0: left allmulticast mode
[  618.260612][T13318] team_slave_0: left allmulticast mode
[  618.288024][T13318] team_slave_1: left allmulticast mode
[  618.293589][T13318] mac80211_hwsim hwsim9 wlan1: left allmulticast mode
[  618.475977][T13318] syz_tun: left allmulticast mode
[  618.524865][T13318] geneve1: left allmulticast mode
[  619.419582][T13353] netlink: 'syz.1.2906': attribute type 10 has an invalid length.
[  619.452129][T13353] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2906'.
[  619.498035][T13353] 8021q: adding VLAN 0 to HW filter on device team0
[  619.518261][T13353] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  623.752165][T13396] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  623.763096][ T7893] wlan1: Created IBSS using preconfigured BSSID 00:8d:ff:ff:00:00
[  623.778456][ T7893] wlan1: Creating new IBSS network, BSSID 00:8d:ff:ff:00:00
[  623.802263][   T11] ------------[ cut here ]------------
[  623.808576][   T11] WARNING: CPU: 1 PID: 11 at net/wireless/ibss.c:37 __cfg80211_ibss_joined+0x3c2/0x430
[  623.818599][   T11] Modules linked in:
[  623.822524][   T11] CPU: 1 PID: 11 Comm: kworker/u4:0 Not tainted syzkaller #0
[  623.830270][   T11] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  623.840798][   T11] Workqueue: cfg80211 cfg80211_event_work
[  623.846874][   T11] RIP: 0010:__cfg80211_ibss_joined+0x3c2/0x430
[  623.853361][   T11] Code: 00 00 00 48 3b 84 24 80 00 00 00 75 5c 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 e7 e5 ba f7 0f 0b eb c3 e8 de e5 ba f7 <0f> 0b 4c 8b 6c 24 18 eb b5 e8 d0 e5 ba f7 0f 0b e9 e8 fd ff ff e8
[  623.873724][   T11] RSP: 0018:ffffc90000107a20 EFLAGS: 00010293
[  623.880189][   T11] RAX: ffffffff89cac522 RBX: dffffc0000000000 RCX: ffff888019e7bc00
[  623.888514][   T11] RDX: 0000000000000000 RSI: ffffffff8aaabce0 RDI: ffffffff8afc73a0
[  623.896896][   T11] RBP: ffffc90000107af8 R08: ffffffff90d9656f R09: 1ffffffff21b2cad
[  623.904977][   T11] R10: dffffc0000000000 R11: fffffbfff21b2cae R12: ffff88805c528c90
[  623.912968][   T11] R13: 1ffff92000020f4c R14: ffff88801fbf35f8 R15: 000000000000001f
[  623.921019][   T11] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  623.930033][   T11] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  623.936709][   T11] CR2: 0000200000001000 CR3: 0000000076357000 CR4: 00000000003506e0
[  623.944776][   T11] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  623.952763][   T11] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  623.961191][   T11] Call Trace:
[  623.964490][   T11]  <TASK>
[  623.967515][   T11]  ? mutex_lock_nested+0x20/0x20
[  623.972477][   T11]  ? trace_rdev_return_void+0x1c0/0x1c0
[  623.978351][   T11]  cfg80211_process_wdev_events+0x3bc/0x550
[  623.984276][   T11]  cfg80211_process_rdev_events+0xa1/0x110
[  623.990167][   T11]  cfg80211_event_work+0x2f/0x40
[  623.995159][   T11]  ? process_scheduled_works+0x957/0x15b0
[  624.000895][   T11]  process_scheduled_works+0xa45/0x15b0
[  624.006564][   T11]  ? assign_work+0x400/0x400
[  624.011180][   T11]  ? assign_work+0x39e/0x400
[  624.015880][   T11]  worker_thread+0xa55/0xfc0
[  624.020524][   T11]  kthread+0x2fa/0x390
[  624.024723][   T11]  ? pr_cont_work+0x560/0x560
[  624.029417][   T11]  ? kthread_blkcg+0xd0/0xd0
[  624.034009][   T11]  ret_from_fork+0x48/0x80
[  624.038532][   T11]  ? kthread_blkcg+0xd0/0xd0
[  624.043135][   T11]  ret_from_fork_asm+0x11/0x20
[  624.048008][   T11]  </TASK>
[  624.051040][   T11] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  624.058405][   T11] CPU: 1 PID: 11 Comm: kworker/u4:0 Not tainted syzkaller #0
[  624.065785][   T11] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  624.075854][   T11] Workqueue: cfg80211 cfg80211_event_work
[  624.081602][   T11] Call Trace:
[  624.084889][   T11]  <TASK>
[  624.087811][   T11]  dump_stack_lvl+0x16c/0x230
[  624.092489][   T11]  ? show_regs_print_info+0x20/0x20
[  624.097675][   T11]  ? load_image+0x3b0/0x3b0
[  624.102181][   T11]  panic+0x2c0/0x710
[  624.106071][   T11]  ? bpf_jit_dump+0xd0/0xd0
[  624.110571][   T11]  ? ret_from_fork_asm+0x11/0x20
[  624.115505][   T11]  __warn+0x2e0/0x470
[  624.119478][   T11]  ? __cfg80211_ibss_joined+0x3c2/0x430
[  624.125014][   T11]  ? __cfg80211_ibss_joined+0x3c2/0x430
[  624.130545][   T11]  report_bug+0x2be/0x4f0
[  624.134861][   T11]  ? __cfg80211_ibss_joined+0x3c2/0x430
[  624.140394][   T11]  ? __cfg80211_ibss_joined+0x3c2/0x430
[  624.145928][   T11]  ? __cfg80211_ibss_joined+0x3c4/0x430
[  624.151465][   T11]  handle_bug+0xcf/0x120
[  624.155696][   T11]  exc_invalid_op+0x1a/0x50
[  624.160185][   T11]  asm_exc_invalid_op+0x1a/0x20
[  624.165024][   T11] RIP: 0010:__cfg80211_ibss_joined+0x3c2/0x430
[  624.171179][   T11] Code: 00 00 00 48 3b 84 24 80 00 00 00 75 5c 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 e7 e5 ba f7 0f 0b eb c3 e8 de e5 ba f7 <0f> 0b 4c 8b 6c 24 18 eb b5 e8 d0 e5 ba f7 0f 0b e9 e8 fd ff ff e8
[  624.190953][   T11] RSP: 0018:ffffc90000107a20 EFLAGS: 00010293
[  624.197019][   T11] RAX: ffffffff89cac522 RBX: dffffc0000000000 RCX: ffff888019e7bc00
[  624.204978][   T11] RDX: 0000000000000000 RSI: ffffffff8aaabce0 RDI: ffffffff8afc73a0
[  624.212959][   T11] RBP: ffffc90000107af8 R08: ffffffff90d9656f R09: 1ffffffff21b2cad
[  624.220915][   T11] R10: dffffc0000000000 R11: fffffbfff21b2cae R12: ffff88805c528c90
[  624.228879][   T11] R13: 1ffff92000020f4c R14: ffff88801fbf35f8 R15: 000000000000001f
[  624.236846][   T11]  ? __cfg80211_ibss_joined+0x3c2/0x430
[  624.242391][   T11]  ? mutex_lock_nested+0x20/0x20
[  624.247316][   T11]  ? trace_rdev_return_void+0x1c0/0x1c0
[  624.252856][   T11]  cfg80211_process_wdev_events+0x3bc/0x550
[  624.258750][   T11]  cfg80211_process_rdev_events+0xa1/0x110
[  624.264547][   T11]  cfg80211_event_work+0x2f/0x40
[  624.269474][   T11]  ? process_scheduled_works+0x957/0x15b0
[  624.275185][   T11]  process_scheduled_works+0xa45/0x15b0
[  624.280734][   T11]  ? assign_work+0x400/0x400
[  624.285315][   T11]  ? assign_work+0x39e/0x400
[  624.289981][   T11]  worker_thread+0xa55/0xfc0
[  624.294576][   T11]  kthread+0x2fa/0x390
[  624.298628][   T11]  ? pr_cont_work+0x560/0x560
[  624.303295][   T11]  ? kthread_blkcg+0xd0/0xd0
[  624.307870][   T11]  ret_from_fork+0x48/0x80
[  624.312272][   T11]  ? kthread_blkcg+0xd0/0xd0
[  624.316846][   T11]  ret_from_fork_asm+0x11/0x20
[  624.321609][   T11]  </TASK>
[  624.324952][   T11] Kernel Offset: disabled
[  624.329325][   T11] Rebooting in 86400 seconds..