last executing test programs:

1.932988308s ago: executing program 0 (id=4719):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_config_ext={0x1ff, 0x200}, 0x8000, 0xcdd, 0x43a1bd76, 0x4, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000}, 0x94)
r2 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x4, 0x3, 0x0, 0x0, 0x0, 0x10000, 0x48, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x1, 0x2, 0x10, 0x12, 0x0, 0x0, 0xfffd, 0x0, 0x2}, 0x0, 0x7, 0xffffffffffffffff, 0x0)
close(r4)
sendmsg$inet(r2, &(0x7f0000000840)={&(0x7f0000000280)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000740)=[{&(0x7f00000002c0)='\'', 0x1}], 0x1}, 0x48000)
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r2, 0x84, 0x11, &(0x7f0000000000)=r5, 0x8)
r6 = socket$kcm(0x11, 0x2, 0x300)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r7], 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000180)=r8, 0x4)
r9 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x8, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018020000", @ANYRES32=r9, @ANYBLOB="0000000000000000b703000000000000850000000d000000b70000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r10, 0x0, 0x36, 0x0, &(0x7f0000000900)="c1dfb080cd21d308098ee68886dd", 0x0, 0xadf0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r7, 0x58, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r11=>0x0}}, 0x10)
r12 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r13 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000004c0)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x4, &(0x7f0000000040)=ANY=[@ANYRES16=r12], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, r13}, 0x94)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="030000000ef2a30295d3da52fd148a0604000000040000000a03000000000000", @ANYRES32=r7, @ANYBLOB='\a\x00'/20, @ANYRES32=r11, @ANYRES32=r13, @ANYBLOB="01000000030000000300"/28], 0x50)

1.806243321s ago: executing program 2 (id=4721):
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x6)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x0, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7c, 0x2, @perf_bp={&(0x7f0000000040)}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0xfffffffc, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x1808, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={&(0x7f0000000600), 0xb}, 0x0, 0x8001, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x24}, 0x94)
perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000d40)={<r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000b00)={0x0, 0xf22fff7f, &(0x7f0000000180)=[{&(0x7f0000000080)="31de76fb398bc62d058b8a96924594f5476a0824be53f7a5949f80614c42391e4b80412938c955d34d37eb96ba7849c3eb823bb36724bd6f6d0219cfe5c884afcd2bdea5acf9c877c03dcdbbb3e47417b6707c27d4c5c1db1924071f6b6f23c7d199c799c9b0c41101e625fcdb7bbfd12a3eeeef4540a5698f058aaf6a141e5d333929b92a7f64e925bf0ef424c3ef29fcd5fd4721c547fde6abe4d47048b64511693624b0d786711abe4a66e250fcbfe95ac9037e58f331b26b6ed0d08e5c73ba4c49", 0xc00e}], 0x9, &(0x7f00000001c0)=ANY=[@ANYBLOB="000026d4f47f00000000000011000000000000000000140000000000000000000000020000000000000000000000140000000000000000000000020000000000000000000000110000000000000000000000000000110000000000000002000000010000000000000000000000000000000000000000000000070000008300000000960000206a77bdd1a004129054e7704a00"/158], 0xf}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='cpuset.mems\x00', 0x2, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x210})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89f1, &(0x7f0000000080))
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x8, 0x3, 0x1, 0x5, 0x0, 0x2, 0x400, 0x4, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_config_ext={0x9, 0x2}, 0x101000, 0x1, 0x5, 0x3, 0x5, 0x8d70, 0xf001, 0x0, 0x6, 0x0, 0x1000}, 0x0, 0x8, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r4)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={0x0, 0xffffffffffffffff, 0x0, 0x3b, &(0x7f0000000000)='/proc/sys/net/ipv4\x00\x00s/sync_\x00le\xf44.\xab%\xf8\xff\xff\xff\xff\xff\xff\xff=\x11\xc8\xdd\x15\xcc\xd2\xf1d\'%\x11c\x91l,'}, 0x30)

1.697893184s ago: executing program 1 (id=4722):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x2, 0x1c, &(0x7f0000000200)=ANY=[@ANYBLOB="18d0ff0000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8a00fe00000000bfa200000000000007020000f8ffffffb703000008000000b704000002ec0000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000000000008500000008000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.524104079s ago: executing program 2 (id=4723):
perf_event_open(&(0x7f0000000840)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640bd, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_config_ext={0x98, 0x2}, 0x8002, 0x6, 0x43a1bd74, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r0, 0x2000012, 0xe, 0x0, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

1.372657763s ago: executing program 1 (id=4724):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0900000003000000040001000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) (async)
close(0x3) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0x1}, 0x50) (async)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x40000004, 0xa021, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0, 0xc}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r2 = socket$kcm(0x28, 0x5, 0x0) (async)
r3 = socket$kcm(0x2, 0x922000000001, 0x106)
setsockopt$sock_attach_bpf(r3, 0x29, 0x43, 0x0, 0x0) (async)
close(r2) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000900)=ANY=[@ANYBLOB="18020000faffffff0000000000003e7c8500000005000000850000002a00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b000000000000000000000000000400000000002300b47c044134a9cfb12ba029e6801821dabf1e0b24eafb3025915ebf65d3561cdb7e5b1211c2587b6d378cb9ef092440bdcd4ce119f80b62218ad969cd09b47245cb68482b31b4003e0c1545a292f2e5427637e1192de3986f2fdf0845e8fa869508776aa2b796bfccec7b5a2e8744614d83a56ec3081c63caed0c892ba557514ce058683e56e5859e05bd6fe50ba589d1f8e6f258dc2fa1914353ae3dd9bf108ea443a23da95e3a8f9a8e", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48) (async)
r6 = socket$kcm(0xa, 0x1, 0x106)
setsockopt$sock_attach_bpf(r6, 0x0, 0xc, 0x0, 0x45)
bpf$TOKEN_CREATE(0x24, &(0x7f00000003c0)={0x0, r6}, 0x8) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x15, 0x13, &(0x7f00000004c0)=@raw=[@ldst={0x1, 0x1, 0x0, 0x4d944edb56e6b2f5, 0x5, 0xfffffffffffffffc, 0x8}, @cb_func={0x18, 0x6, 0x4, 0x0, 0x4}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff7}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}, @ldst={0x3, 0x2, 0x1, 0xa, 0x2, 0x10, 0x1}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @jmp={0x5, 0x1, 0x7, 0x4, 0x0, 0x4, 0x8}], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94) (async)
r8 = syz_clone(0x0, 0x0, 0x1c, 0x0, 0x0, 0x0)
r9 = perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x9, 0x0, 0x480000000000002b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x0, 0x4, 0x98, 0x4, 0x4e53, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, r10)
r11 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000003c0)="89000000120081ae08060cdc030000007f1be3f74001000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120c00014009080c00000000009bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x4) (async)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000001640)={0x0, 0x0, 0x0}, 0x0) (async)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000740)={@fallback, r7, 0x3e, 0x5, 0xffffffffffffffff, @void, @value=r4}, 0x20)
sendmsg$kcm(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000035000b63d25a80648c2594f90724fc60", 0x14}], 0x1}, 0x0) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r4, 0x27, 0xe, 0x85, &(0x7f0000000000)="f928320a", 0x0, 0x1, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (async)
r12 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r12, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03001d000b63d25a80648c2594f90124fc60100c030002000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4000}, 0x3500000000000000)
r13 = perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x8, 0x0, 0xff, 0x0, 0xc7, 0x42a14, 0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x9, 0x1, @perf_config_ext={0x9, 0x101}, 0x10a080, 0x4, 0x1, 0x1, 0xda1, 0xab0, 0x0, 0x0, 0x50000, 0x0, 0xb}, 0x0, 0x9, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_REFRESH(r13, 0x2402, 0xd) (async)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000340)={r1, &(0x7f00000001c0)="7eed74bab3ce0ba16a590f16f19f7752834f9dbe62063a0a3797b015", &(0x7f00000002c0)=""/98, 0x4}, 0x20) (async)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000380)={r4, r5}, 0xc)

1.310593664s ago: executing program 2 (id=4726):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000840)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x10, 0x3, 0x10)
close(r0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000180)=@o_path={0x0}, 0x18)
r1 = socket$kcm(0x10, 0x100000000002, 0x4)
sendmsg$kcm(r1, &(0x7f00000039c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000200)="39000000140081ae00002c000500015601618575e285af014a31ba377a1b2cc32b38d3aa2a7029740000000000000000000000000000000200", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)

1.09389666s ago: executing program 2 (id=4728):
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext={0x0, 0xa00000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x7, 0xa, 0x2, 0xff, 0x0, 0x4, 0x2eb2c, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x2, 0x5}, 0x4060, 0xeab9, 0xc56, 0x7, 0x7ffd, 0x7ff, 0x4, 0x0, 0x2, 0x0, 0xfffffffffffffff7}, 0xffffffffffffffff, 0x5, r0, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x40000004, 0xa021, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0, 0xc}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000540)='syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r2, &(0x7f00000005c0)='rdma.current\x00', 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x10, &(0x7f00000008c0)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000000000000850000001c00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$unix(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000002c0)="e7", 0x1}], 0x1, 0xfffffffffffffffd, 0x0, 0x804}, 0x8800)
sendmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000200)='a', 0x1}], 0x1, 0x0, 0x0, 0x20004004}, 0x15)
recvmsg$unix(r4, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x10002)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0xe, 0x0, &(0x7f0000000100)="178d048604bf0bfb1945d7430008", 0x0, 0x501, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)

1.09325557s ago: executing program 1 (id=4729):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94) (async)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) (async)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
socket$kcm(0x2, 0x3, 0x84)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) (async)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94) (async)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x3, 0x0, 0x0, 0x4, 0x0, 0x2, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x4, @perf_config_ext={0x7fffffff, 0x4}, 0x0, 0x2, 0x2, 0x1, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x20000002}, 0x0, 0xc, 0xffffffffffffffff, 0x0) (async)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c"], 0xfdef) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x11, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x4, &(0x7f0000000580)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xb5}]}, &(0x7f00000000c0)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000080)=',@}-,)(\x00')

718.14703ms ago: executing program 1 (id=4732):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x1c, 0xd, &(0x7f0000000080)=ANY=[@ANYBLOB="18020000000c0000000000000000000085100000010000009500000000000000180000000001000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000002885000000c700000095"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x1b, &(0x7f00000001c0)=""/152, 0x41000, 0xa}, 0x23)

717.97045ms ago: executing program 0 (id=4733):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f00000001c0)="2e00000010008188040f46ecdb4cb9cca7480ef40f000000e3bd6efb010509000b000a000d000003ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)

680.649491ms ago: executing program 3 (id=4734):
perf_event_open(&(0x7f0000000840)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640bd, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_config_ext={0x98, 0x2}, 0x8002, 0x6, 0x43a1bd74, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r0, 0x2000012, 0xe, 0x0, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

573.890294ms ago: executing program 0 (id=4735):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000140)=ANY=[@ANYBLOB="180600000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x0, 0xf3, 0xa, 0x0, 0x0, 0xd006e1258c4875cc, 0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0, 0x9}, 0x10cc92, 0xc8, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7fe}, 0x0, 0x1, 0xffffffffffffffff, 0x1)
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="0900120000000000f37538e486dd630080fc09042c00db5bffffffffff000000060300060023000000000000000000000000ac1414aa2c"], 0xfdef)

506.158136ms ago: executing program 1 (id=4736):
r0 = socket$kcm(0xa, 0x6, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000008c0)={0x0, 0x4, 0x3, 0x5}, 0x10}, 0x94)
r1 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f00000001c0)="39000000140081ae0000dc676f97daf01e2357f9ffffffffffffff0521018701546fabca1b4e8a06a6580e88370200c54c1960b89c40ebb373", 0x39}], 0x1}, 0x0)
r3 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r3, 0x29, 0xb, &(0x7f00000000c0), 0xb9)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x1}, 0x828, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000000)=']{\\&@}\x00')
setsockopt$sock_attach_bpf(r0, 0x29, 0x4a, 0x0, 0x0)

506.020376ms ago: executing program 3 (id=4737):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xe, 0x0, &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x94)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)='cpuset.mem_hardwall\x00', 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6gre0\x00', 0x210})
socketpair(0x1, 0x80000, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, &(0x7f00000001c0), &(0x7f0000000240)=r0}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x1f4, 0x0, 0x0, 0x0, 0x0, 0x300, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe, 0x6}, 0x50)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f1, &(0x7f0000000080))

453.699488ms ago: executing program 3 (id=4738):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="d8000000310081044e81f782db44b904021d080005000000e8fe55", 0x1b}], 0x1}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="33fe00004a00530c8e5eb88edc5a9c0e0a"], 0xfe33)
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"/2767], &(0x7f00000001c0)='GPL\x00'}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={0xffffffffffffffff, 0xe0, &(0x7f0000000500)={0x0, <r0=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r1=>0x0, 0x0, 0x0, 0x0, 0x1, 0x8, &(0x7f00000000c0)=[0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xdd, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x10, &(0x7f00000001c0), &(0x7f0000000200), 0x8, 0x9a, 0x8, 0x8, &(0x7f0000000240)}}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', r1, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r2 = socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0xfd, 0x0, 0xfd, 0x0, 0xb0, 0x25108, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x5}, 0x2a10, 0x3, 0x3, 0x0, 0x400da4f, 0x2000a, 0x0, 0x0, 0xfffffff8}, 0x0, 0x3, 0xffffffffffffffff, 0x1)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1d, 0xfffffffffffffffe, &(0x7f00000000c0)="d5231f25b5f85be12036902ce1a29123e3c1d41aa6d9c06ff230c473bf", 0x0, 0x8000, 0x9}, 0x50)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000040), 0xcf)
sendmsg$kcm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000040)="d80000001a00810a1d08007b490d4f1e81f8d804000100ff05142603600e12727bcc8e7a01e300a8001600200003400400000003a84942de4fe3aefb8000a007a290457f01e84460dd89b316277ce06bbace8017cbec4cce1b141993c034e653fe8efe7c9f8775730d16a4683f5aeb4edbb57a5025c4679ee5354f20d53aaf46b6b60db798262f3d40fad95667e006dcdf63951fd809d5e1cace5019999eece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e780000000000000000000000000000000064c69672c01ffb2d359e0000000000", 0xd8}], 0x1}, 0x8880)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000380)={r0}, 0x4)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r4)
setsockopt$sock_attach_bpf(r3, 0x1, 0x4c, &(0x7f0000000340), 0x4)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000280)="89000000120081ae08060cdc030ec0007f03e3f70000000000e272f750375ed08a56331dbf9ed7a15e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08120800020004000000bdad446b9bbc7ace5b0dd385dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff00"/137, 0x89}], 0x1}, 0x0)

439.837148ms ago: executing program 0 (id=4739):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000580)=@generic={&(0x7f0000000440)='./file0\x00', 0x0, 0x18}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000dc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xfe, 0x0, &(0x7f0000000100)="b9ff03076844268cb89e14f086dd47e0ffff00128700631177fbac141416e000030a44079f03fec0000000000000845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0xfe, 0x60000000, 0x1, 0x40, &(0x7f0000000000)="e2", &(0x7f00000002c0)="605d2a5de8c22c301d05c189d58a7514e67c7ec8e92ff58edc6a54d36fe4717af1adaaff852107929146f653ac43b6df49db674372d2a62ffde6c3246c330ea3", 0x2}, 0x50)

338.86255ms ago: executing program 3 (id=4740):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)

210.093904ms ago: executing program 1 (id=4741):
r0 = syz_clone(0x40188100, &(0x7f00000001c0), 0x0, &(0x7f0000000240), &(0x7f0000000140), 0x0)
perf_event_open(0x0, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r1, &(0x7f0000001b00)={&(0x7f0000000600)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f00000019c0)}, 0x5)
r2 = socket$kcm(0x11, 0x2, 0x0)
r3 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d33, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x3efd7ab4c41335d9, @perf_bp={&(0x7f0000000240), 0x3}, 0x50, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r4 = socket$kcm(0x2, 0x922000000001, 0x106)
setsockopt$sock_attach_bpf(r4, 0x6, 0x1f, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x40000004, 0xa161, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_config_ext={0x7, 0x7fffffffffffffff}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x40, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000a00)=ANY=[@ANYBLOB="9feb010018000000000006000000040000000000000e03000000000000000300000000f6ff0700000000000000000000000204000000000000000000000a0200f18cf7cdd9afe78e0b80eddef19a36c99c290000000000616100"], 0x0, 0x52}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x1c, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}}, &(0x7f0000000080)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41000}, 0x94)
socket$kcm(0xa, 0x5, 0x0)
socket$kcm(0x10, 0x2, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/time\x00')
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x9}, 0x4000, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1b, 0x0, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xa, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="9d46446720ab56bfb1f14cfcb3383092a7941a"], &(0x7f0000000100)='GPL\x00'}, 0x94)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89a0, &(0x7f0000000080))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0xe8, 0x5, 0xd, 0x7, 0x0, 0x7fffffff, 0x7a5d4, 0x5, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xdfffffff, 0x0, @perf_bp={0x0, 0xf}, 0x2, 0x1, 0x7, 0x4, 0x7f, 0x8, 0xe, 0x0, 0x20002, 0x0, 0x4}, 0x0, 0x4, 0xffffffffffffffff, 0x1)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x89f0, &(0x7f0000000080))
write$cgroup_subtree(r3, &(0x7f00000002c0)={[{0x2b, 'pids'}, {0x2d, 'rdma'}]}, 0xc)
r7 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES32=r8], 0x10)
setsockopt$sock_attach_bpf(r2, 0x107, 0xf, &(0x7f00000005c0), 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000440)={@fallback=r7, 0x2, 0x0, 0x9, &(0x7f0000000200)=[0x0, 0x0, 0x0], 0x3, 0x0, &(0x7f0000000340)=[0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)

209.803604ms ago: executing program 0 (id=4742):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x56, 0x60, &(0x7f0000000100)="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", 0x0, 0xfb, 0x60000000, 0x0, 0x0, &(0x7f0000000000), &(0x7f0000001c40)="beb61ec2ca90080239f2a54e2368fa761313c3a024a98109ba1e2e7b780d03c54b7a83d56fce397842e724674507d531762055fca371ea775f418df7bee236c9b9968146efb3232ae3413b617445e98bb644a892b9337f1a9135d9f30457a8ffb21aef4a95a155fab70a40b086056b0f63331a66b3457c", 0x2}, 0x2c)

209.086434ms ago: executing program 3 (id=4743):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xfd, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3a, &(0x7f0000000300), ""/16, <r0=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa6, 0x8, 0x0, 0x0}}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = socket$kcm(0x2, 0x922000000001, 0x106)
setsockopt$sock_attach_bpf(r2, 0x29, 0x43, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000100)='cpuset.cpus\x00', 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f0000001140)=ANY=[@ANYBLOB='1-2:5/6'], 0x31)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1c0000001a00910c07a551559a257aac81"], 0xfe33)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x64}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x70)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0xc8, 0xefff, 0x8, 0xf9, 0x0, 0x6, 0x0, 0xea}, 0x0, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r6)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000500)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0xc00, '\x00', r0, 0xffffffffffffffff, 0x5, 0x3, 0x4}, 0x50)
r8 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)="d8000000190081054e81f782db4cb904021d080000000000000000070a000a000900142603600e1208001e0000050401a8000500027c035c0461c1d67f6f94007134cf6efb8001a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c3f5aeb4edbb57a5025ccca9e008026f6e6ddba61f5fad95667e006dcdf639500bfeb789d00000000000000d5e1cace81ed6c117ab5d6d69bda4039e81f86f60f0bffece0b42a9ecbee5de6ccd40dd6e4edef3985000092954b43370e970392", 0xd8}], 0x1}, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000001a80)={r7, &(0x7f0000001980)="75a70ca5fd053631264b808e3a62da2198a0b9ba67a42ac8c0e855facd900cfb8629b97256a6c2c39164c4cbe7ceddcf57a3e4185c19ca996e6a04d8a4643aa38c93cb26935b641b51d2aded5b3681f9f0dc302b4a89f14572af407015905ead9af681c29c6f49b70ed4c9f5d8491f60b3f8c9ee3600fc389e0f3038f1f8f0c2c3bc421788ffffc7feff0ec82839238f47a27e89c53530a32b3cc1feca54882b3697d0b6009bd125ea1f6265ae6f6fe6c63dbd10c3915cef470a2906c76d1fbb13a43ea23f9a9414b8670e5d1590f89571a3192b8d76"}, 0x20)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r9=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000580)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce81ea032c00fe08000e40000200875a65969ff57b00ff020000000000000000000000000001"], 0xfdef)
sendmsg(r5, &(0x7f0000001940)={0x0, 0x0, &(0x7f0000001880)=[{&(0x7f00000000c0)="8add8b281fef0af54737a1d5b8895a9eb92e6f6eb6382584d5e26a3a1cbfc6406e91401a6ade7007fcc17d4db909bb7dab677a1ff5606b97cde73e7c2c87fc10bcb566e896e60e6598e4b22cef941b63f8fb987142c03ced6d2ffbc5cb2463c8117486a3", 0x64}, {&(0x7f0000000140)="4709e7a4de64ff8212ae2d746a9b2696bfe26b0187823f31e102eb0e17775e470ef99321e709b13760d694b043b2854e77525b9a284f01238a6599e080751c3d28e1c636b53e25583a1250923b52e36ad44a77c5d97f6bd03869e7be48c1c98a1e46e9dc898b521ba651c427270308fc87ed7038062eb1849d70205b255be4de469c3b89b1fca6ebfe7917049042cb124d819c784531457849391a15667a51", 0x9f}, {&(0x7f0000000200)="6db6347143542ef10ef2ee5457a135988ddbf6c74944c5027d1bde91e562001f27380551f614a78891cdad973e6adb3d5b0790955ffccbc2c4f5a512ff16920d47f8cd8c7436bb", 0x47}, {&(0x7f0000000280)="0d6cf3d7c31c30a396d6da4930fcb8f8ae67dd00207f49ed5da91ffe689c506fb668e5ed10ca938d9b5dea99b08a0c4e62303089e2a80370373f89e53fb29e244f288d6a2245494d78e07b43dffbf1aacb722e6002a78703057e8d4f361e9e657fc2343e63424054c75595d26ab5e8e79ecd86cd86e6948d73c87702262af308ad58e23bf30c670b04330532f647802153c6ca3bd59cee6e201ef1e5f7b094d36d84", 0xa2}, {&(0x7f0000000780)="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", 0x1000}, {&(0x7f0000001780)="161ba47007d3305b15cc4b30dc62fdeb18f3b4e5af77975b34f00950f673ab00d38e181427688a85883f152f36d946fd4a7293ae2e7564e40cea6329bc7e8dd359c14c670b899d4e0f8082d13bf4af28ed8ec35a223b0a4f9f494cbaa7643d41871d93d6303ac64b37ba69d95efa6315007a3bf11c95b8fb9564cfabd9c8a995e8f7d78852fccf1b3f22d6dcbf2f5c61504eba836515de44c3386eb420216f98e346ee58037d5efe89984d1b7b683a8b26215f32f2cc0efcf3477d238d95023b537fb27fd63513cc8f8afda3b3f51388588950", 0xd3}], 0x6, &(0x7f0000001900)}, 0x840)

156.782116ms ago: executing program 2 (id=4744):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xb, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000041ffffff000300000800000091114d000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)

94.009637ms ago: executing program 3 (id=4745):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99f0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000001c0)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xc3}, 0x50) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x3, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)) (async)
socket$kcm(0x10, 0x2, 0x0) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000680)={@fallback=r1, r1, 0x2f, 0x0, 0x0, @void, @value=r1}, 0x20)
openat$tun(0xffffffffffffff9c, 0x0, 0x20000, 0x0) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0x1, 0x1}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c3a00000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000080000850000002d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x19, 0x4, 0x4, 0x2}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
r4 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x8}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x16, 0x10, &(0x7f0000000040)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffff5}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x8300, 0x0, 0xffffffffffffffbf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.memory_pressure\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0x5, 0x5, 0x1000, 0x0, 0x1, 0x8, '\x00', 0x0, r7, 0x3, 0x4, 0x2, 0x1}, 0x50) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000008000000000000000400000073110a000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x66, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
r8 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r8, 0x1, 0x3e, &(0x7f0000000180)=r7, 0x4) (async)
sendmsg$inet(r8, &(0x7f0000000140)={&(0x7f0000000100)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="2c000000000000000000000007000000071c05"], 0x30}, 0x40880)
setsockopt$sock_attach_bpf(r7, 0x1, 0x32, &(0x7f0000000000)=r7, 0x4)

30.086299ms ago: executing program 0 (id=4746):
perf_event_open(&(0x7f0000000840)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640bd, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_config_ext={0x98, 0x2}, 0x8002, 0x6, 0x43a1bd74, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r0, 0x2000012, 0xe, 0x0, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

0s ago: executing program 2 (id=4747):
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, @perf_bp={0x0}, 0x200, 0x2, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x11, 0x3, 0x0)
r1 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r1, 0x107, 0xe, &(0x7f0000000000), 0x4)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94)
r3 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={&(0x7f0000000100)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000000000)=[{&(0x7f00000000c0)="80", 0x1}], 0x1, &(0x7f0000001540)=ANY=[@ANYBLOB="20000000000000008400000008000000941f6721e757691d0200000000000000180000000000000084"], 0x38}, 0x41)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000)=r2, 0x40)
sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x4}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="2703021c590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accbe1ba0777cfbf6ae77256da82f6184b8a34f9015cc99e570000003c21c90b000000000000721a5dbb56a3d9e16e7c2179c9b5b24722944820e624fc5b17d0822ca4232c98a9936ba722475ca5", 0x72}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b700c9e37eed5653ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d33330e2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb00"/135, 0xfca6}, {&(0x7f0000001400)="7f4ba13c5a27118dc920175650f0c9ba1809dd13a6e2d5b38f40adfa278c09e0e3bd05add4d780cd753b50f06f3b51f43761c7783f38ceaefc2dad57889d8b3a2d21314410f64ec2fa92e3a14b0141b39c020021d1edd011fbccb808a317fff4cf49aab12da619d67102048ec43c76cdb9d395e8b7b6e589d788aeeecb5080fc3d5ec6ccd656e49c0a642671d3fc363b46240bbc46ad965399b71db3c8f2b269b20870a3d2a6a8de5213b0f9d41c510c827056b7284391da244ec7653648b670f9a3483b314d861992ed7fb369eda093e1643c300b94d996fc592adb22c379be070ce5cd806da85a492dd4199cceb4c5b750222485325cf1073bf87e93bdf7da8af8f5f626541afd142e24ee8f4be9f038453c0edf500deabfe4d1a7a9de51df012bc2f3b767b3c03be6ace8c37ad571323cd363116e01f98a8ff8148d3900a65b788e99ddf9d9a2383f1730c7868d2dd031034bce5a77bd1ef3385105968be7bd830bde788092f657be36f89ea55ced486e18982d01339ed04a934a43c7b3be5e6bd03cbe773a938f621809345ec07cfceb013e3d76d500d97c8bee6ff54980ac3d221fcb35724ba64adb29ae8db909e097d78ff9542196635a14266944b850c9d436e96cc806a88090cbfc9db7ce83231bc043ded67966cfd68b800f6030a85f6bb070a2a5b372be2dacea7884b42e76e164af04e47f90ce0694623dce23cd1471f1a6029f68331317073e1a2d8cfb16f821c867d35a609649cf36aa781fa0a381f934844366d4e3ab8dd239c6ec35c15f307a7ed07869aacec38d787fd9c08e9dda1a28bf1a15b004bb1d88aa429ee8e927f5a1e1445685d8923cad92c90c79726d5e73dfe741de35498842cf51a4f09b97b1c14d33213705b95e84a8853fab4e1ced6faecea9d9203b038594bceb202a9d47f862c4f1853db9a0a7bf98ed9d2e3012358b38d092bd1ed7efb1a9e582ac5ef30c9b476e185f537f40ae8189528b480436122a939967e8d862e01172245ebced9f5251dd302e7e974c1db40be1e9e79799c27384caf6485e7c469b77cd6b28f71e39f84d2adbe074dd2bed6636e6853655adc3d1a47eff697e8edba53e6b281aea94798d82da7d3e86d09d869e5e345316eeeced4e15fc39234a0b0104e0b205c95eda632d0e86b095b284f441a62cb0e7262bc1967ee75f5c2d459011b0c15f4c85b02150a8834eda7f84cc96dde04e4abbdf5985a9c7218797820251b5804cae80c9a726afddf36793ae52cfb38e4e19740d6e07e4ed7c01001ab87b7fb12d5b70a75938d234c83d863b1763aec37b41d204fc319c6e802734ed681ea179fe6cad4857c3ca0e236e7b9867688d8bd7749e919f2d4f57f2249c9ccaf76a23760569b0fbde2db12ca0169e74982c1f4f0494aae13f4838b3f50d9ab0f6e328250d6fc34c0156e4b754c5c648b4ef8af32c91859f9706048f029634cefd0d767e8b7743262cb8a468ad37dfa47a745495e3f03cfa1d4ed71af55453c0a25fa1122a9054bcc4d9960c9a54f36b6db55154ab7dd19890d9f8ff3549e0fbd5a655319566b7f9c72be0242e7ffb59020356c3ffb5b9c43858e69d7b677a9bc5b8a64721a51b75a254e07199a73726834bea05901455ad53b38116b953c970b2002d0d1f91deb73ccb7266fbb21aa8555599daed7585575ef3efbd737f2523018ba4645d862889d5c3d91b12f04166db8bffecde54ee278d0d5351f3bf1f8902ff3f4c24a8c0c8a4e6addc9baadc471813589324d3128a1b193137c15c01be9f367317b1c885301ff8e9df728efa37df27f65eb0464055091f2ed469fdab48f413e3978f73ff9dffeb85453e841f86594612ac91b50add8d14910748bfa903033662f3e735ce6d299ce52338a96035aa89f63bd59d151fb20c38125236cbc0d795ac6f8da4cafc74714ed62a23b017e15adcaade58385b78c6945fb30a2539c42b1e415879433b9fb6966c6d19ed19f9f90cbd360d936a8b9f8e03bca5a83c063651b4636a7783bbda6417c83e470a16dfb115344a527436242ace9341432b5816b5e6609d97d600e142ca3cf74cbc00e1d9ee203cdfad339ce460b294f3931c5bd8ae6da8fc14d66a01bae4a212ef3d914e58c13217c8ad91628636b56257c7ca41b404cc2d4b5d50e26ebefc74656c62b1b4e9b6c5b6cc8d79101460f719d95925630bf99e042018439c50026513d680ea573620132ded57dea9e2da4e16f17dbc171642b1e80a3f41311ee73441302285668792160db6614fdb30d25a5719d2ae03ab98ea167597c48dd8197e7faf6189d801134462027901506c5ff1ae2558d96722217f65131d2f429693ae9fae19c101319473608976d08cc1c0d98f789b0c364e8aca574321ab2857af1015f1588afd313503085db4d99961a9391db06c10477ceb44199f1648594e8f9b452fafdab49b1962d02ee77ebd31b7931174a729fa943cb18102130e7e08eaba77df066069c2c3564fc85881ba0dad12c4f06a9e6dea9fea53931ff85e38505eb7ad60a52e2a8a248b3f4d0d55eee31f75f110c70e3b12409a79a5a98b0156c6d2a5d94604b8fa202b12746a365c708c671316cc0ffff6e9b7139b337953be22672a4910e1eb28cccc023b77028e20a6d377a339372f0dc235069f41c2692b0a3a7e0f315f4aebeef435a46b2e8b8462739293f9184c01b1434e87bf3fd48be54bf437056a1d2cff0c7aa52578013f96b1d5100ca936ff029cfd6f9a093621f684196ed7e1d363a97c647c34fe5f2370e7ab9dc718a1fc317779ab8a04bc12c01b778d17eea0b546bce03475fc6373c860714df0322dde550186c553ebd61ed18c0b80655f0827a63d209117ca23b026c1ad30bac4d43a4611292c7049f855b829a3a17fd2b83c142078beed8ca07b7cb7cd624705ccc160246c81174a4d3a9f2057caffe84b1ac073375e065c1ff4e9e22e7d87b3adb40ff796132e4ed86e5fc9f9616f8e4116be96497621692fb516e9316cfd15ad01742a1de4aa35fe02861236295823edf4c48fc37faf55226044e393a3733d58e8ef0f0c7941bc30f09739f37dea2f395f2e9e9b2c31a11923a2d6c9b14f1bacce15094cbbd6445f3581c6d45b76943b4d0db8fd4d4acbdb91780f57c872827abd7a1f13290a0d17dda220493476c92ce65e33f07afcf763aec0e67450f547101f1a5ada0f760c8f12137679324e22c7a13fdf78575115acb0ae4a2818b7b3ead27eea5eccba6f7a34c61819382eebfad742a3c603c6d2f332726996b3e8fcbdfd56b436c1173b1b3bc1ab66a717e31f2f918f0bea3f4801e04c14c881c59324fd9bc38745dd0e47da6bc8e98fe74a760304d74f17cd3cfceb33503397cf592d2b6a51b641d559ba8d6dc449e19b289fd1a4b3772b3998181e787723fe3893362d8f3e346c0ab0abe933e9bdd9a82b377914018377af9d2cbc58ab4fc08cea2623174239cea585603b8acd20da923a44799b1745c3bd65640508f96a0d92a6a2fd8314573f10b4f6e6cbf61e8828bd6e69b1b0c47f5795917a5035b3424dc3cadd2aadbbafb9d18349fab41d79ba13660f2c9400ff87784b26c3e88785db8522c93d3d4f12608736a235c8b9fff98a17934fe36792cb1992ea1b72b5e151cfe82b4ebc4f510882e4b34ee9f6ada188b104ba36e8acbd7bafe39b32f957da45c2743017545fd61667d36d58952de0cdbacb3abc549e1001bf6d9b19f9a353bb84bd152e04c061c691b514d6f1b36a8895424ce210a4cd75d537443a2791dc68e9fff510358f7586d3b73ed04223e683adf6a1c79d3bc92aa595cc6167", 0xa91}], 0x3}, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

91.688556][T17156]  <TASK>
[  691.691567][T17156]  dump_stack_lvl+0x18c/0x250
[  691.696311][T17156]  ? show_regs_print_info+0x20/0x20
[  691.701573][T17156]  ? load_image+0x420/0x420
[  691.706119][T17156]  ? __might_sleep+0xe0/0xe0
[  691.710736][T17156]  ? __lock_acquire+0x7d40/0x7d40
[  691.715795][T17156]  ? trace_contention_end+0x39/0xe0
[  691.721042][T17156]  should_fail_ex+0x39d/0x4d0
[  691.725767][T17156]  should_failslab+0x9/0x20
[  691.730303][T17156]  slab_pre_alloc_hook+0x59/0x310
[  691.735388][T17156]  ? mutex_lock_nested+0x20/0x20
[  691.740405][T17156]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  691.746083][T17156]  ? ftrace_profile_set_filter+0xd0/0x200
[  691.751855][T17156]  __kmem_cache_alloc_node+0x53/0x250
[  691.757279][T17156]  ? ftrace_profile_set_filter+0xd0/0x200
[  691.763040][T17156]  kmalloc_trace+0x2a/0xe0
[  691.767578][T17156]  ftrace_profile_set_filter+0xd0/0x200
[  691.773181][T17156]  perf_ioctl+0xa9a/0x24a0
[  691.777659][T17156]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  691.783171][T17156]  ? perf_poll+0x1b0/0x1b0
[  691.787658][T17156]  ? __fget_files+0x28/0x4b0
[  691.792306][T17156]  ? __fget_files+0x28/0x4b0
[  691.796955][T17156]  ? bpf_lsm_file_ioctl+0x9/0x10
[  691.801921][T17156]  ? security_file_ioctl+0x80/0xa0
[  691.807093][T17156]  ? perf_poll+0x1b0/0x1b0
[  691.811576][T17156]  __se_sys_ioctl+0xfd/0x170
[  691.816227][T17156]  do_syscall_64+0x55/0xa0
[  691.820688][T17156]  ? clear_bhb_loop+0x40/0x90
[  691.825426][T17156]  ? clear_bhb_loop+0x40/0x90
[  691.830159][T17156]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  691.836095][T17156] RIP: 0033:0x7f3b0b79cdd9
[  691.840556][T17156] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  691.860207][T17156] RSP: 002b:00007f3b0c73c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  691.868669][T17156] RAX: ffffffffffffffda RBX: 00007f3b0ba15fa0 RCX: 00007f3b0b79cdd9
[  691.876676][T17156] RDX: 0000200000000100 RSI: 0000000040082406 RDI: 0000000000000004
[  691.884690][T17156] RBP: 00007f3b0c73c090 R08: 0000000000000000 R09: 0000000000000000
[  691.892717][T17156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  691.900732][T17156] R13: 00007f3b0ba16038 R14: 00007f3b0ba15fa0 R15: 00007ffd2b22dd78
[  691.908746][T17156]  </TASK>
[  692.177459][T17174] netlink: 'syz.2.3723': attribute type 21 has an invalid length.
[  692.188225][T17174] netlink: 164 bytes leftover after parsing attributes in process `syz.2.3723'.
[  692.206556][T17176] netlink: 'syz.2.3723': attribute type 21 has an invalid length.
[  692.214732][T17176] netlink: 164 bytes leftover after parsing attributes in process `syz.2.3723'.
[  692.333197][T17180] FAULT_INJECTION: forcing a failure.
[  692.333197][T17180] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  692.350056][T17180] CPU: 1 PID: 17180 Comm: syz.2.3725 Not tainted syzkaller #0
[  692.357592][T17180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  692.367683][T17180] Call Trace:
[  692.370993][T17180]  <TASK>
[  692.373972][T17180]  dump_stack_lvl+0x18c/0x250
[  692.378682][T17180]  ? show_regs_print_info+0x20/0x20
[  692.383927][T17180]  ? load_image+0x420/0x420
[  692.388477][T17180]  ? __might_fault+0xaa/0x120
[  692.393185][T17180]  ? __lock_acquire+0x7d40/0x7d40
[  692.398234][T17180]  should_fail_ex+0x39d/0x4d0
[  692.402951][T17180]  _copy_from_iter+0x1d9/0x12e0
[  692.407831][T17180]  ? rep_movs_alternative+0x4a/0x90
[  692.413056][T17180]  ? _copy_from_iter+0x24e/0x12e0
[  692.418102][T17180]  ? __virt_addr_valid+0x18c/0x540
[  692.423267][T17180]  ? __lock_acquire+0x7d40/0x7d40
[  692.428312][T17180]  ? copyout_mc+0x70/0x70
[  692.432669][T17180]  ? copyout_mc+0x70/0x70
[  692.437025][T17180]  ? __virt_addr_valid+0x18c/0x540
[  692.442166][T17180]  ? page_copy_sane+0x16a/0x270
[  692.447046][T17180]  copy_page_from_iter+0x7b/0x100
[  692.452106][T17180]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  692.457950][T17180]  unix_stream_sendmsg+0x562/0xbf0
[  692.463095][T17180]  ? unix_show_fdinfo+0x270/0x270
[  692.468150][T17180]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  692.474592][T17180]  ? __might_fault+0xaa/0x120
[  692.479283][T17180]  ? aa_sock_msg_perm+0x94/0x150
[  692.484269][T17180]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  692.489577][T17180]  ? security_socket_sendmsg+0x80/0xa0
[  692.495071][T17180]  ? unix_show_fdinfo+0x270/0x270
[  692.500124][T17180]  ____sys_sendmsg+0x5ba/0x960
[  692.504923][T17180]  ? __sys_sendmsg_sock+0x30/0x30
[  692.509967][T17180]  ? __import_iovec+0x5f2/0x850
[  692.514862][T17180]  ? import_iovec+0x73/0xa0
[  692.519403][T17180]  ___sys_sendmsg+0x2a6/0x360
[  692.524108][T17180]  ? get_pid_task+0x20/0x1e0
[  692.528738][T17180]  ? __sys_sendmsg+0x2a0/0x2a0
[  692.533546][T17180]  ? __lock_acquire+0x7d40/0x7d40
[  692.538626][T17180]  __se_sys_sendmsg+0x1c2/0x2b0
[  692.543500][T17180]  ? __x64_sys_sendmsg+0x80/0x80
[  692.548507][T17180]  ? lockdep_hardirqs_on+0x98/0x150
[  692.553758][T17180]  do_syscall_64+0x55/0xa0
[  692.558202][T17180]  ? clear_bhb_loop+0x40/0x90
[  692.562910][T17180]  ? clear_bhb_loop+0x40/0x90
[  692.567617][T17180]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  692.573545][T17180] RIP: 0033:0x7f3b0b79cdd9
[  692.577989][T17180] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  692.597617][T17180] RSP: 002b:00007f3b0c73c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  692.606073][T17180] RAX: ffffffffffffffda RBX: 00007f3b0ba15fa0 RCX: 00007f3b0b79cdd9
[  692.614063][T17180] RDX: 0000000000008841 RSI: 0000200000000500 RDI: 0000000000000004
[  692.622050][T17180] RBP: 00007f3b0c73c090 R08: 0000000000000000 R09: 0000000000000000
[  692.630044][T17180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  692.638051][T17180] R13: 00007f3b0ba16038 R14: 00007f3b0ba15fa0 R15: 00007ffd2b22dd78
[  692.646061][T17180]  </TASK>
[  692.847952][T17187] netlink: 15119 bytes leftover after parsing attributes in process `syz.2.3728'.
[  693.276566][T17199] netlink: 'syz.1.3732': attribute type 10 has an invalid length.
[  693.335073][T17200] netlink: 'syz.3.3733': attribute type 10 has an invalid length.
[  693.349887][ T5778] Bluetooth: hci4: command 0x0406 tx timeout
[  693.378406][T17200] mac80211_hwsim hwsim39 wlan1: entered promiscuous mode
[  693.390592][T17200] mac80211_hwsim hwsim39 wlan1: entered allmulticast mode
[  693.419255][T17200] team0: Port device wlan1 added
[  693.562468][T17197] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  694.004011][T17218] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3736'.
[  694.483059][T17227] netlink: 176 bytes leftover after parsing attributes in process `syz.2.3743'.
[  694.861572][T17241] netlink: 128 bytes leftover after parsing attributes in process `syz.3.3748'.
[  694.871153][T17241] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3748'.
[  695.058196][T17252] FAULT_INJECTION: forcing a failure.
[  695.058196][T17252] name failslab, interval 1, probability 0, space 0, times 0
[  695.080791][T17252] CPU: 1 PID: 17252 Comm: syz.0.3752 Not tainted syzkaller #0
[  695.088326][T17252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  695.098424][T17252] Call Trace:
[  695.101737][T17252]  <TASK>
[  695.104704][T17252]  dump_stack_lvl+0x18c/0x250
[  695.109422][T17252]  ? sctp_sendmsg+0x1575/0x28c0
[  695.114304][T17252]  ? ___sys_sendmsg+0x2a6/0x360
[  695.119185][T17252]  ? show_regs_print_info+0x20/0x20
[  695.124430][T17252]  ? load_image+0x420/0x420
[  695.128980][T17252]  should_fail_ex+0x39d/0x4d0
[  695.133686][T17252]  should_failslab+0x9/0x20
[  695.138228][T17252]  slab_pre_alloc_hook+0x59/0x310
[  695.143303][T17252]  ? sctp_add_bind_addr+0x8c/0x360
[  695.148435][T17252]  __kmem_cache_alloc_node+0x53/0x250
[  695.153863][T17252]  ? sctp_add_bind_addr+0x8c/0x360
[  695.158999][T17252]  kmalloc_trace+0x2a/0xe0
[  695.163446][T17252]  sctp_add_bind_addr+0x8c/0x360
[  695.168407][T17252]  sctp_copy_local_addr_list+0x315/0x4f0
[  695.174064][T17252]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  695.179803][T17252]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  695.185899][T17252]  ? sctp_v4_is_any+0x35/0x60
[  695.190607][T17252]  ? sctp_copy_one_addr+0x8c/0x350
[  695.195748][T17252]  sctp_bind_addr_copy+0xb3/0x3c0
[  695.200813][T17252]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  695.207203][T17252]  sctp_connect_new_asoc+0x2f9/0x6a0
[  695.212550][T17252]  ? __sctp_connect+0xd80/0xd80
[  695.217431][T17252]  ? __local_bh_enable_ip+0x13a/0x1c0
[  695.222826][T17252]  ? _local_bh_enable+0xa0/0xa0
[  695.227711][T17252]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  695.233543][T17252]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  695.239376][T17252]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  695.244951][T17252]  ? security_sctp_bind_connect+0x89/0xb0
[  695.250697][T17252]  sctp_sendmsg+0x1575/0x28c0
[  695.255421][T17252]  ? sctp_getsockopt+0xb60/0xb60
[  695.260386][T17252]  ? aa_sk_perm+0x83c/0x970
[  695.264946][T17252]  ? aa_af_perm+0x330/0x330
[  695.269487][T17252]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  695.275937][T17252]  ? sock_rps_record_flow+0x19/0x3f0
[  695.281264][T17252]  ? inet_sendmsg+0x7c/0x2f0
[  695.285882][T17252]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  695.291193][T17252]  ? security_socket_sendmsg+0x80/0xa0
[  695.296700][T17252]  ? inet_send_prepare+0x260/0x260
[  695.301863][T17252]  ____sys_sendmsg+0x5ba/0x960
[  695.306658][T17252]  ? __lock_acquire+0x7d40/0x7d40
[  695.311759][T17252]  ? __asan_memset+0x22/0x40
[  695.316387][T17252]  ? __sys_sendmsg_sock+0x30/0x30
[  695.321438][T17252]  ? __import_iovec+0x5f2/0x850
[  695.326323][T17252]  ? import_iovec+0x73/0xa0
[  695.330857][T17252]  ___sys_sendmsg+0x2a6/0x360
[  695.335560][T17252]  ? __sys_sendmsg+0x2a0/0x2a0
[  695.340374][T17252]  ? __lock_acquire+0x7d40/0x7d40
[  695.345448][T17252]  __se_sys_sendmsg+0x1c2/0x2b0
[  695.350332][T17252]  ? __x64_sys_sendmsg+0x80/0x80
[  695.355302][T17252]  ? lockdep_hardirqs_on+0x98/0x150
[  695.360537][T17252]  do_syscall_64+0x55/0xa0
[  695.364983][T17252]  ? clear_bhb_loop+0x40/0x90
[  695.369698][T17252]  ? clear_bhb_loop+0x40/0x90
[  695.374407][T17252]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  695.380325][T17252] RIP: 0033:0x7f8bc699cdd9
[  695.384768][T17252] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  695.404437][T17252] RSP: 002b:00007f8bc77c6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  695.412872][T17252] RAX: ffffffffffffffda RBX: 00007f8bc6c15fa0 RCX: 00007f8bc699cdd9
[  695.420865][T17252] RDX: 00000000000080d1 RSI: 0000200000000140 RDI: 0000000000000003
[  695.428859][T17252] RBP: 00007f8bc77c6090 R08: 0000000000000000 R09: 0000000000000000
[  695.436860][T17252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  695.444873][T17252] R13: 00007f8bc6c16038 R14: 00007f8bc6c15fa0 R15: 00007ffcee407008
[  695.452902][T17252]  </TASK>
[  695.460465][ T7037] wlan1: Trigger new scan to find an IBSS to join
[  695.652123][T17265] FAULT_INJECTION: forcing a failure.
[  695.652123][T17265] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  695.673480][T17265] CPU: 1 PID: 17265 Comm: syz.2.3757 Not tainted syzkaller #0
[  695.681011][T17265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  695.691134][T17265] Call Trace:
[  695.694474][T17265]  <TASK>
[  695.697452][T17265]  dump_stack_lvl+0x18c/0x250
[  695.702203][T17265]  ? show_regs_print_info+0x20/0x20
[  695.707467][T17265]  ? load_image+0x420/0x420
[  695.712038][T17265]  ? __lock_acquire+0x7d40/0x7d40
[  695.717107][T17265]  ? snprintf+0xe9/0x140
[  695.721389][T17265]  should_fail_ex+0x39d/0x4d0
[  695.726105][T17265]  _copy_to_user+0x2f/0xa0
[  695.730563][T17265]  simple_read_from_buffer+0xe7/0x150
[  695.735975][T17265]  proc_fail_nth_read+0x1e8/0x260
[  695.741036][T17265]  ? proc_fault_inject_write+0x360/0x360
[  695.746703][T17265]  ? fsnotify_perm+0x271/0x5e0
[  695.751517][T17265]  ? proc_fault_inject_write+0x360/0x360
[  695.757208][T17265]  vfs_read+0x28b/0x970
[  695.761461][T17265]  ? kernel_read+0x1e0/0x1e0
[  695.766128][T17265]  ? __fget_files+0x28/0x4b0
[  695.770756][T17265]  ? __fget_files+0x28/0x4b0
[  695.775377][T17265]  ? __fget_files+0x43d/0x4b0
[  695.780099][T17265]  ? __fdget_pos+0x2a3/0x330
[  695.784730][T17265]  ? ksys_read+0x75/0x260
[  695.789097][T17265]  ksys_read+0x150/0x260
[  695.793385][T17265]  ? vfs_write+0x990/0x990
[  695.797842][T17265]  ? lockdep_hardirqs_on+0x98/0x150
[  695.803082][T17265]  do_syscall_64+0x55/0xa0
[  695.807525][T17265]  ? clear_bhb_loop+0x40/0x90
[  695.812241][T17265]  ? clear_bhb_loop+0x40/0x90
[  695.816950][T17265]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  695.822915][T17265] RIP: 0033:0x7f3b0b75d60e
[  695.827368][T17265] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  695.847039][T17265] RSP: 002b:00007f3b0c73bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  695.855514][T17265] RAX: ffffffffffffffda RBX: 00007f3b0c73c6c0 RCX: 00007f3b0b75d60e
[  695.863513][T17265] RDX: 000000000000000f RSI: 00007f3b0c73c0a0 RDI: 0000000000000005
[  695.871504][T17265] RBP: 00007f3b0c73c090 R08: 0000000000000000 R09: 0000000000000000
[  695.879499][T17265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  695.887497][T17265] R13: 00007f3b0ba16038 R14: 00007f3b0ba15fa0 R15: 00007ffd2b22dd78
[  695.895516][T17265]  </TASK>
[  696.025550][T17262] netlink: 830 bytes leftover after parsing attributes in process `syz.0.3755'.
[  696.242017][T17271] FAULT_INJECTION: forcing a failure.
[  696.242017][T17271] name failslab, interval 1, probability 0, space 0, times 0
[  696.256099][T17271] CPU: 0 PID: 17271 Comm: syz.2.3760 Not tainted syzkaller #0
[  696.263614][T17271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  696.273703][T17271] Call Trace:
[  696.277028][T17271]  <TASK>
[  696.279998][T17271]  dump_stack_lvl+0x18c/0x250
[  696.284730][T17271]  ? show_regs_print_info+0x20/0x20
[  696.289992][T17271]  ? load_image+0x420/0x420
[  696.294542][T17271]  ? __might_sleep+0xe0/0xe0
[  696.299176][T17271]  ? __lock_acquire+0x7d40/0x7d40
[  696.304246][T17271]  should_fail_ex+0x39d/0x4d0
[  696.308977][T17271]  should_failslab+0x9/0x20
[  696.313523][T17271]  slab_pre_alloc_hook+0x59/0x310
[  696.318586][T17271]  kmem_cache_alloc_node+0x60/0x320
[  696.323805][T17271]  ? kmem_cache_free+0xf8/0x270
[  696.328786][T17271]  ? __alloc_skb+0x103/0x2c0
[  696.333406][T17271]  __alloc_skb+0x103/0x2c0
[  696.337845][T17271]  pfkey_sendmsg+0xd61/0x10e0
[  696.342547][T17271]  ? __lock_acquire+0x1273/0x7d40
[  696.347593][T17271]  ? pfkey_release+0x320/0x320
[  696.352402][T17271]  ? aa_sock_msg_perm+0x94/0x150
[  696.357364][T17271]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  696.362684][T17271]  ? security_socket_sendmsg+0x80/0xa0
[  696.368175][T17271]  ? pfkey_release+0x320/0x320
[  696.372956][T17271]  ____sys_sendmsg+0x5ba/0x960
[  696.377742][T17271]  ? __asan_memset+0x22/0x40
[  696.382372][T17271]  ? __sys_sendmsg_sock+0x30/0x30
[  696.387420][T17271]  ? __import_iovec+0x5f2/0x850
[  696.392314][T17271]  ? import_iovec+0x73/0xa0
[  696.396844][T17271]  ___sys_sendmsg+0x2a6/0x360
[  696.401551][T17271]  ? get_pid_task+0x20/0x1e0
[  696.406172][T17271]  ? __sys_sendmsg+0x2a0/0x2a0
[  696.410981][T17271]  ? __lock_acquire+0x7d40/0x7d40
[  696.416084][T17271]  __se_sys_sendmsg+0x1c2/0x2b0
[  696.420985][T17271]  ? __x64_sys_sendmsg+0x80/0x80
[  696.425965][T17271]  ? lockdep_hardirqs_on+0x98/0x150
[  696.431223][T17271]  do_syscall_64+0x55/0xa0
[  696.435686][T17271]  ? clear_bhb_loop+0x40/0x90
[  696.440399][T17271]  ? clear_bhb_loop+0x40/0x90
[  696.445104][T17271]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  696.451019][T17271] RIP: 0033:0x7f3b0b79cdd9
[  696.455450][T17271] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  696.475084][T17271] RSP: 002b:00007f3b0c73c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  696.483533][T17271] RAX: ffffffffffffffda RBX: 00007f3b0ba15fa0 RCX: 00007f3b0b79cdd9
[  696.491538][T17271] RDX: 0000000000000000 RSI: 0000200000003780 RDI: 0000000000000004
[  696.499524][T17271] RBP: 00007f3b0c73c090 R08: 0000000000000000 R09: 0000000000000000
[  696.507509][T17271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  696.515498][T17271] R13: 00007f3b0ba16038 R14: 00007f3b0ba15fa0 R15: 00007ffd2b22dd78
[  696.523493][T17271]  </TASK>
[  696.574494][T17273] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.3759'.
[  697.631654][T17319] validate_nla: 4 callbacks suppressed
[  697.631691][T17319] netlink: 'syz.2.3775': attribute type 33 has an invalid length.
[  697.674202][T17319] netlink: 160 bytes leftover after parsing attributes in process `syz.2.3775'.
[  697.742226][T17322] netlink: 'syz.3.3776': attribute type 46 has an invalid length.
[  697.777476][T17322] netlink: 'syz.3.3776': attribute type 46 has an invalid length.
[  697.786599][T17324] netlink: 10 bytes leftover after parsing attributes in process `syz.0.3777'.
[  697.801571][T17322] netlink: 'syz.3.3776': attribute type 46 has an invalid length.
[  697.846746][T17322] netlink: 'syz.3.3776': attribute type 46 has an invalid length.
[  698.097054][T17338] netlink: 'syz.0.3783': attribute type 27 has an invalid length.
[  698.110789][T17338] netlink: 2418 bytes leftover after parsing attributes in process `syz.0.3783'.
[  698.149139][T17338] netlink: 'syz.0.3783': attribute type 13 has an invalid length.
[  698.159777][T17338] netlink: 172 bytes leftover after parsing attributes in process `syz.0.3783'.
[  698.244228][   T49] wlan1: Trigger new scan to find an IBSS to join
[  698.986811][T17338] erspan0: refused to change device tx_queue_len
[  699.323135][T17358] netlink: 'syz.2.3789': attribute type 3 has an invalid length.
[  699.335184][T17358] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3789'.
[  699.380347][T17361] netlink: 'syz.3.3792': attribute type 15 has an invalid length.
[  699.388209][T17361] netlink: 16098 bytes leftover after parsing attributes in process `syz.3.3792'.
[  699.440834][T17361] sctp: [Deprecated]: syz.3.3792 (pid 17361) Use of int in maxseg socket option.
[  699.440834][T17361] Use struct sctp_assoc_value instead
[  700.145925][T17373] FAULT_INJECTION: forcing a failure.
[  700.145925][T17373] name failslab, interval 1, probability 0, space 0, times 0
[  700.169711][T17373] CPU: 1 PID: 17373 Comm: syz.2.3796 Not tainted syzkaller #0
[  700.177236][T17373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  700.187346][T17373] Call Trace:
[  700.190667][T17373]  <TASK>
[  700.193644][T17373]  dump_stack_lvl+0x18c/0x250
[  700.198368][T17373]  ? sctp_sendmsg+0x1575/0x28c0
[  700.203267][T17373]  ? ___sys_sendmsg+0x2a6/0x360
[  700.208143][T17373]  ? show_regs_print_info+0x20/0x20
[  700.213376][T17373]  ? load_image+0x420/0x420
[  700.217938][T17373]  should_fail_ex+0x39d/0x4d0
[  700.222662][T17373]  should_failslab+0x9/0x20
[  700.227196][T17373]  slab_pre_alloc_hook+0x59/0x310
[  700.232262][T17373]  ? sctp_add_bind_addr+0x8c/0x360
[  700.237401][T17373]  __kmem_cache_alloc_node+0x53/0x250
[  700.242802][T17373]  ? sctp_add_bind_addr+0x8c/0x360
[  700.247939][T17373]  kmalloc_trace+0x2a/0xe0
[  700.252406][T17373]  sctp_add_bind_addr+0x8c/0x360
[  700.257392][T17373]  sctp_copy_local_addr_list+0x315/0x4f0
[  700.263060][T17373]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  700.268805][T17373]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  700.274902][T17373]  ? sctp_v4_is_any+0x35/0x60
[  700.279623][T17373]  ? sctp_copy_one_addr+0x8c/0x350
[  700.284761][T17373]  sctp_bind_addr_copy+0xb3/0x3c0
[  700.289812][T17373]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  700.296179][T17373]  sctp_connect_new_asoc+0x2f9/0x6a0
[  700.301497][T17373]  ? __sctp_connect+0xd80/0xd80
[  700.306369][T17373]  ? __local_bh_enable_ip+0x13a/0x1c0
[  700.311768][T17373]  ? _local_bh_enable+0xa0/0xa0
[  700.316688][T17373]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  700.322534][T17373]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  700.328370][T17373]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  700.333945][T17373]  ? security_sctp_bind_connect+0x89/0xb0
[  700.339696][T17373]  sctp_sendmsg+0x1575/0x28c0
[  700.344397][T17373]  ? sctp_getsockopt+0xb60/0xb60
[  700.349357][T17373]  ? aa_sk_perm+0x83c/0x970
[  700.353900][T17373]  ? aa_af_perm+0x330/0x330
[  700.358426][T17373]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  700.364869][T17373]  ? sock_rps_record_flow+0x19/0x3f0
[  700.370181][T17373]  ? inet_sendmsg+0x7c/0x2f0
[  700.374792][T17373]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  700.380105][T17373]  ? security_socket_sendmsg+0x80/0xa0
[  700.385586][T17373]  ? inet_send_prepare+0x260/0x260
[  700.390738][T17373]  ____sys_sendmsg+0x5ba/0x960
[  700.395528][T17373]  ? __lock_acquire+0x7d40/0x7d40
[  700.400601][T17373]  ? __asan_memset+0x22/0x40
[  700.405221][T17373]  ? __sys_sendmsg_sock+0x30/0x30
[  700.410273][T17373]  ? __import_iovec+0x5f2/0x850
[  700.415172][T17373]  ? import_iovec+0x73/0xa0
[  700.419717][T17373]  ___sys_sendmsg+0x2a6/0x360
[  700.424416][T17373]  ? get_pid_task+0x20/0x1e0
[  700.429046][T17373]  ? __sys_sendmsg+0x2a0/0x2a0
[  700.433856][T17373]  ? __lock_acquire+0x7d40/0x7d40
[  700.438932][T17373]  __se_sys_sendmsg+0x1c2/0x2b0
[  700.443798][T17373]  ? __x64_sys_sendmsg+0x80/0x80
[  700.448820][T17373]  ? lockdep_hardirqs_on+0x98/0x150
[  700.454050][T17373]  do_syscall_64+0x55/0xa0
[  700.458491][T17373]  ? clear_bhb_loop+0x40/0x90
[  700.463201][T17373]  ? clear_bhb_loop+0x40/0x90
[  700.467912][T17373]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  700.473929][T17373] RIP: 0033:0x7f3b0b79cdd9
[  700.478370][T17373] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  700.497995][T17373] RSP: 002b:00007f3b0c73c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  700.506430][T17373] RAX: ffffffffffffffda RBX: 00007f3b0ba15fa0 RCX: 00007f3b0b79cdd9
[  700.514427][T17373] RDX: 00000000000080d1 RSI: 0000200000000140 RDI: 0000000000000003
[  700.522440][T17373] RBP: 00007f3b0c73c090 R08: 0000000000000000 R09: 0000000000000000
[  700.530430][T17373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  700.538432][T17373] R13: 00007f3b0ba16038 R14: 00007f3b0ba15fa0 R15: 00007ffd2b22dd78
[  700.546445][T17373]  </TASK>
[  700.596872][T17376] netlink: 'syz.1.3797': attribute type 1 has an invalid length.
[  700.606309][T17376] netlink: 161700 bytes leftover after parsing attributes in process `syz.1.3797'.
[  700.842592][T17385] FAULT_INJECTION: forcing a failure.
[  700.842592][T17385] name failslab, interval 1, probability 0, space 0, times 0
[  700.856475][T17385] CPU: 1 PID: 17385 Comm: syz.2.3800 Not tainted syzkaller #0
[  700.863994][T17385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  700.874084][T17385] Call Trace:
[  700.877395][T17385]  <TASK>
[  700.880366][T17385]  dump_stack_lvl+0x18c/0x250
[  700.885085][T17385]  ? sctp_sendmsg+0x1575/0x28c0
[  700.889958][T17385]  ? ___sys_sendmsg+0x2a6/0x360
[  700.894851][T17385]  ? show_regs_print_info+0x20/0x20
[  700.900100][T17385]  ? load_image+0x420/0x420
[  700.904653][T17385]  should_fail_ex+0x39d/0x4d0
[  700.909363][T17385]  should_failslab+0x9/0x20
[  700.913898][T17385]  slab_pre_alloc_hook+0x59/0x310
[  700.918967][T17385]  ? sctp_add_bind_addr+0x8c/0x360
[  700.924099][T17385]  __kmem_cache_alloc_node+0x53/0x250
[  700.929515][T17385]  ? sctp_add_bind_addr+0x8c/0x360
[  700.934657][T17385]  kmalloc_trace+0x2a/0xe0
[  700.939119][T17385]  sctp_add_bind_addr+0x8c/0x360
[  700.944107][T17385]  sctp_copy_local_addr_list+0x315/0x4f0
[  700.949769][T17385]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  700.955511][T17385]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  700.961632][T17385]  ? sctp_v4_is_any+0x35/0x60
[  700.966349][T17385]  ? sctp_copy_one_addr+0x8c/0x350
[  700.971495][T17385]  sctp_bind_addr_copy+0xb3/0x3c0
[  700.976558][T17385]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  700.982927][T17385]  sctp_connect_new_asoc+0x2f9/0x6a0
[  700.988242][T17385]  ? __sctp_connect+0xd80/0xd80
[  700.993122][T17385]  ? __local_bh_enable_ip+0x13a/0x1c0
[  700.998514][T17385]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  701.004078][T17385]  ? security_sctp_bind_connect+0x89/0xb0
[  701.009825][T17385]  sctp_sendmsg+0x1575/0x28c0
[  701.014569][T17385]  ? sctp_getsockopt+0xb60/0xb60
[  701.019564][T17385]  ? aa_sk_perm+0x83c/0x970
[  701.024121][T17385]  ? aa_af_perm+0x330/0x330
[  701.028682][T17385]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  701.035123][T17385]  ? sock_rps_record_flow+0x19/0x3f0
[  701.040441][T17385]  ? inet_sendmsg+0xe9/0x2f0
[  701.045087][T17385]  ? inet_send_prepare+0x260/0x260
[  701.050237][T17385]  ____sys_sendmsg+0x5ba/0x960
[  701.055028][T17385]  ? __lock_acquire+0x7d40/0x7d40
[  701.060084][T17385]  ? __sys_sendmsg_sock+0x30/0x30
[  701.065128][T17385]  ? __import_iovec+0x5f2/0x850
[  701.070008][T17385]  ? import_iovec+0x73/0xa0
[  701.074533][T17385]  ___sys_sendmsg+0x2a6/0x360
[  701.079228][T17385]  ? get_pid_task+0x20/0x1e0
[  701.083856][T17385]  ? __sys_sendmsg+0x2a0/0x2a0
[  701.088665][T17385]  ? __lock_acquire+0x7d40/0x7d40
[  701.093758][T17385]  __se_sys_sendmsg+0x1c2/0x2b0
[  701.098627][T17385]  ? __x64_sys_sendmsg+0x80/0x80
[  701.103604][T17385]  ? lockdep_hardirqs_on+0x98/0x150
[  701.108838][T17385]  do_syscall_64+0x55/0xa0
[  701.113277][T17385]  ? clear_bhb_loop+0x40/0x90
[  701.117982][T17385]  ? clear_bhb_loop+0x40/0x90
[  701.122684][T17385]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  701.128779][T17385] RIP: 0033:0x7f3b0b79cdd9
[  701.133227][T17385] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  701.152861][T17385] RSP: 002b:00007f3b0c73c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  701.161325][T17385] RAX: ffffffffffffffda RBX: 00007f3b0ba15fa0 RCX: 00007f3b0b79cdd9
[  701.169338][T17385] RDX: 000000000000088c RSI: 0000200000004bc0 RDI: 0000000000000004
[  701.177342][T17385] RBP: 00007f3b0c73c090 R08: 0000000000000000 R09: 0000000000000000
[  701.185335][T17385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  701.193339][T17385] R13: 00007f3b0ba16038 R14: 00007f3b0ba15fa0 R15: 00007ffd2b22dd78
[  701.201357][T17385]  </TASK>
[  701.208044][ T7048] wlan1: Trigger new scan to find an IBSS to join
[  701.303616][T17393] netlink: 168 bytes leftover after parsing attributes in process `syz.0.3803'.
[  703.825702][   T49] wlan1: Creating new IBSS network, BSSID 66:cc:39:7e:be:9a
[  704.128036][T17403] bridge_slave_1: left allmulticast mode
[  704.134698][T17403] bridge_slave_1: left promiscuous mode
[  704.146315][T17403] bridge0: port 2(bridge_slave_1) entered disabled state
[  704.184331][T17403] bridge_slave_0: left allmulticast mode
[  704.226238][T17403] bridge_slave_0: left promiscuous mode
[  704.251954][T17403] bridge0: port 1(bridge_slave_0) entered disabled state
[  704.589975][T17410] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3808'.
[  704.608771][T17425] sctp: [Deprecated]: syz.1.3813 (pid 17425) Use of int in maxseg socket option.
[  704.608771][T17425] Use struct sctp_assoc_value instead
[  704.650994][T17418] validate_nla: 1 callbacks suppressed
[  704.651008][T17418] netlink: 'syz.1.3813': attribute type 15 has an invalid length.
[  704.690363][T17418] netlink: 16098 bytes leftover after parsing attributes in process `syz.1.3813'.
[  705.416605][T17440] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3819'.
[  705.430152][T17440] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3819'.
[  705.440096][T17437] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3819'.
[  705.735111][T17444] delete_channel: no stack
[  705.748345][T17444] delete_channel: no stack
[  705.908340][T17452] FAULT_INJECTION: forcing a failure.
[  705.908340][T17452] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  705.947314][T17452] CPU: 0 PID: 17452 Comm: syz.2.3825 Not tainted syzkaller #0
[  705.954859][T17452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  705.964960][T17452] Call Trace:
[  705.968265][T17452]  <TASK>
[  705.971226][T17452]  dump_stack_lvl+0x18c/0x250
[  705.975943][T17452]  ? show_regs_print_info+0x20/0x20
[  705.981178][T17452]  ? load_image+0x420/0x420
[  705.985719][T17452]  ? __lock_acquire+0x7d40/0x7d40
[  705.990779][T17452]  ? snprintf+0xe9/0x140
[  705.995057][T17452]  should_fail_ex+0x39d/0x4d0
[  705.999772][T17452]  _copy_to_user+0x2f/0xa0
[  706.004216][T17452]  simple_read_from_buffer+0xe7/0x150
[  706.009620][T17452]  proc_fail_nth_read+0x1e8/0x260
[  706.014671][T17452]  ? proc_fault_inject_write+0x360/0x360
[  706.020345][T17452]  ? fsnotify_perm+0x271/0x5e0
[  706.025140][T17452]  ? proc_fault_inject_write+0x360/0x360
[  706.030802][T17452]  vfs_read+0x28b/0x970
[  706.034991][T17452]  ? kernel_read+0x1e0/0x1e0
[  706.039604][T17452]  ? __fget_files+0x28/0x4b0
[  706.044216][T17452]  ? __fget_files+0x28/0x4b0
[  706.048823][T17452]  ? __fget_files+0x43d/0x4b0
[  706.053532][T17452]  ? __fdget_pos+0x2a3/0x330
[  706.058147][T17452]  ? ksys_read+0x75/0x260
[  706.062540][T17452]  ksys_read+0x150/0x260
[  706.066814][T17452]  ? vfs_write+0x990/0x990
[  706.071263][T17452]  ? lockdep_hardirqs_on+0x98/0x150
[  706.076492][T17452]  do_syscall_64+0x55/0xa0
[  706.080942][T17452]  ? clear_bhb_loop+0x40/0x90
[  706.085674][T17452]  ? clear_bhb_loop+0x40/0x90
[  706.090381][T17452]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  706.096301][T17452] RIP: 0033:0x7f3b0b75d60e
[  706.100741][T17452] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  706.120365][T17452] RSP: 002b:00007f3b0c73bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  706.128796][T17452] RAX: ffffffffffffffda RBX: 00007f3b0c73c6c0 RCX: 00007f3b0b75d60e
[  706.136798][T17452] RDX: 000000000000000f RSI: 00007f3b0c73c0a0 RDI: 0000000000000004
[  706.144796][T17452] RBP: 00007f3b0c73c090 R08: 0000000000000000 R09: 0000000000000000
[  706.152795][T17452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  706.160807][T17452] R13: 00007f3b0ba16038 R14: 00007f3b0ba15fa0 R15: 00007ffd2b22dd78
[  706.168819][T17452]  </TASK>
[  706.274733][T17458] delete_channel: no stack
[  706.290197][T17458] delete_channel: no stack
[  706.337509][T17458] FAULT_INJECTION: forcing a failure.
[  706.337509][T17458] name failslab, interval 1, probability 0, space 0, times 0
[  706.389813][T17458] CPU: 1 PID: 17458 Comm: syz.0.3828 Not tainted syzkaller #0
[  706.397341][T17458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  706.407439][T17458] Call Trace:
[  706.410755][T17458]  <TASK>
[  706.413723][T17458]  dump_stack_lvl+0x18c/0x250
[  706.418461][T17458]  ? show_regs_print_info+0x20/0x20
[  706.423712][T17458]  ? load_image+0x420/0x420
[  706.428269][T17458]  ? __might_sleep+0xe0/0xe0
[  706.432901][T17458]  ? __lock_acquire+0x7d40/0x7d40
[  706.437963][T17458]  should_fail_ex+0x39d/0x4d0
[  706.442674][T17458]  should_failslab+0x9/0x20
[  706.447221][T17458]  slab_pre_alloc_hook+0x59/0x310
[  706.452283][T17458]  ? apparmor_sk_alloc_security+0x77/0x100
[  706.458112][T17458]  __kmem_cache_alloc_node+0x53/0x250
[  706.463518][T17458]  ? apparmor_sk_alloc_security+0x77/0x100
[  706.469363][T17458]  kmalloc_trace+0x2a/0xe0
[  706.473834][T17458]  apparmor_sk_alloc_security+0x77/0x100
[  706.479499][T17458]  security_sk_alloc+0x6e/0xa0
[  706.484292][T17458]  sk_prot_alloc+0x101/0x210
[  706.488935][T17458]  ? sk_alloc+0x24/0x360
[  706.493213][T17458]  sk_alloc+0x3a/0x360
[  706.497302][T17458]  ? bpf_ctx_init+0x163/0x1a0
[  706.501998][T17458]  ? bpf_prog_test_run_skb+0x273/0x12b0
[  706.507569][T17458]  bpf_prog_test_run_skb+0x3a5/0x12b0
[  706.512958][T17458]  ? __fget_files+0x28/0x4b0
[  706.517570][T17458]  ? __fget_files+0x28/0x4b0
[  706.522197][T17458]  ? __fget_files+0x43d/0x4b0
[  706.526914][T17458]  ? cpu_online+0x60/0x60
[  706.531271][T17458]  bpf_prog_test_run+0x321/0x390
[  706.536240][T17458]  __sys_bpf+0x49d/0x890
[  706.540513][T17458]  ? bpf_link_show_fdinfo+0x390/0x390
[  706.545913][T17458]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  706.552104][T17458]  __x64_sys_bpf+0x7c/0x90
[  706.556568][T17458]  do_syscall_64+0x55/0xa0
[  706.561016][T17458]  ? clear_bhb_loop+0x40/0x90
[  706.565722][T17458]  ? clear_bhb_loop+0x40/0x90
[  706.570433][T17458]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  706.576357][T17458] RIP: 0033:0x7f8bc699cdd9
[  706.580796][T17458] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  706.600532][T17458] RSP: 002b:00007f8bc77c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  706.608967][T17458] RAX: ffffffffffffffda RBX: 00007f8bc6c15fa0 RCX: 00007f8bc699cdd9
[  706.616975][T17458] RDX: 000000000000002c RSI: 0000200000000080 RDI: 000000000000000a
[  706.624966][T17458] RBP: 00007f8bc77c6090 R08: 0000000000000000 R09: 0000000000000000
[  706.632963][T17458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  706.640977][T17458] R13: 00007f8bc6c16038 R14: 00007f8bc6c15fa0 R15: 00007ffcee407008
[  706.649024][T17458]  </TASK>
[  707.719450][T17485] netlink: 668 bytes leftover after parsing attributes in process `syz.1.3840'.
[  707.762383][T17485] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  707.797630][T17485] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  707.872765][T17482] can: request_module (can-proto-0) failed.
[  708.161139][T17507] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3845'.
[  708.360099][T17509] netlink: 'syz.1.3844': attribute type 10 has an invalid length.
[  708.368643][T17509] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3844'.
[  709.319754][T17521] FAULT_INJECTION: forcing a failure.
[  709.319754][T17521] name failslab, interval 1, probability 0, space 0, times 0
[  709.359090][T17521] CPU: 0 PID: 17521 Comm: syz.2.3850 Not tainted syzkaller #0
[  709.366720][T17521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  709.376825][T17521] Call Trace:
[  709.380151][T17521]  <TASK>
[  709.383119][T17521]  dump_stack_lvl+0x18c/0x250
[  709.387897][T17521]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  709.394103][T17521]  ? show_regs_print_info+0x20/0x20
[  709.399367][T17521]  ? load_image+0x420/0x420
[  709.403938][T17521]  should_fail_ex+0x39d/0x4d0
[  709.408675][T17521]  should_failslab+0x9/0x20
[  709.413238][T17521]  slab_pre_alloc_hook+0x59/0x310
[  709.418324][T17521]  ? sctp_add_bind_addr+0x8c/0x360
[  709.423480][T17521]  __kmem_cache_alloc_node+0x53/0x250
[  709.428908][T17521]  ? sctp_add_bind_addr+0x8c/0x360
[  709.434062][T17521]  kmalloc_trace+0x2a/0xe0
[  709.438551][T17521]  sctp_add_bind_addr+0x8c/0x360
[  709.443529][T17521]  sctp_copy_local_addr_list+0x315/0x4f0
[  709.449187][T17521]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  709.454946][T17521]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  709.461036][T17521]  ? sctp_v4_is_any+0x35/0x60
[  709.465754][T17521]  ? sctp_copy_one_addr+0x8c/0x350
[  709.470936][T17521]  sctp_bind_addr_copy+0xb3/0x3c0
[  709.476168][T17521]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  709.482523][T17521]  sctp_connect_new_asoc+0x2f9/0x6a0
[  709.487830][T17521]  ? __sctp_connect+0xd80/0xd80
[  709.492711][T17521]  ? __local_bh_enable_ip+0x13a/0x1c0
[  709.498123][T17521]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  709.503690][T17521]  ? security_sctp_bind_connect+0x89/0xb0
[  709.509436][T17521]  sctp_sendmsg+0x1575/0x28c0
[  709.514154][T17521]  ? sctp_getsockopt+0xb60/0xb60
[  709.519127][T17521]  ? lock_chain_count+0x20/0x20
[  709.524023][T17521]  ? inet_send_prepare+0x260/0x260
[  709.529165][T17521]  ? sctp_getsockopt+0xb60/0xb60
[  709.534136][T17521]  ? inet_send_prepare+0x260/0x260
[  709.539278][T17521]  ____sys_sendmsg+0x5ba/0x960
[  709.544059][T17521]  ? __lock_acquire+0x7d40/0x7d40
[  709.549118][T17521]  ? __asan_memset+0x22/0x40
[  709.553736][T17521]  ? __sys_sendmsg_sock+0x30/0x30
[  709.558772][T17521]  ? __import_iovec+0x5f2/0x850
[  709.563664][T17521]  ? import_iovec+0x73/0xa0
[  709.568196][T17521]  ___sys_sendmsg+0x2a6/0x360
[  709.572907][T17521]  ? __sys_sendmsg+0x2a0/0x2a0
[  709.577706][T17521]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[  709.584003][T17521]  __se_sys_sendmsg+0x1c2/0x2b0
[  709.588885][T17521]  ? __x64_sys_sendmsg+0x80/0x80
[  709.593853][T17521]  ? lockdep_hardirqs_on+0x98/0x150
[  709.599076][T17521]  do_syscall_64+0x55/0xa0
[  709.603513][T17521]  ? clear_bhb_loop+0x40/0x90
[  709.608211][T17521]  ? clear_bhb_loop+0x40/0x90
[  709.612917][T17521]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  709.619010][T17521] RIP: 0033:0x7f3b0b79cdd9
[  709.623491][T17521] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  709.643135][T17521] RSP: 002b:00007f3b0c73c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  709.651599][T17521] RAX: ffffffffffffffda RBX: 00007f3b0ba15fa0 RCX: 00007f3b0b79cdd9
[  709.659592][T17521] RDX: 0000000004000810 RSI: 0000200000000980 RDI: 0000000000000005
[  709.667602][T17521] RBP: 00007f3b0c73c090 R08: 0000000000000000 R09: 0000000000000000
[  709.675604][T17521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  709.683696][T17521] R13: 00007f3b0ba16038 R14: 00007f3b0ba15fa0 R15: 00007ffd2b22dd78
[  709.691713][T17521]  </TASK>
[  710.444645][T17531] IPv6: pim6reg1: Disabled Multicast RS
[  710.483799][T17531] netlink: 'syz.2.3854': attribute type 10 has an invalid length.
[  710.531332][T17531] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  710.567634][T17531] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  711.345343][T17546] netlink: 'syz.3.3858': attribute type 10 has an invalid length.
[  711.434275][T17546] netlink: 2 bytes leftover after parsing attributes in process `syz.3.3858'.
[  711.498035][T17546] bond0: entered promiscuous mode
[  711.526801][T17546] bond_slave_0: entered promiscuous mode
[  711.569965][T17546] bond_slave_1: entered promiscuous mode
[  713.976170][T17568] netlink: 'syz.3.3866': attribute type 10 has an invalid length.
[  714.021320][T17568] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  714.073681][T17568] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  717.305683][T17611] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  717.490669][T17619] netlink: 'syz.2.3885': attribute type 21 has an invalid length.
[  717.509100][T17619] netlink: 128 bytes leftover after parsing attributes in process `syz.2.3885'.
[  717.520037][T17619] netlink: 'syz.2.3885': attribute type 5 has an invalid length.
[  717.539933][T17619] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3885'.
[  717.660978][T17627] FAULT_INJECTION: forcing a failure.
[  717.660978][T17627] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  717.702309][T17627] CPU: 0 PID: 17627 Comm: syz.1.3890 Not tainted syzkaller #0
[  717.709856][T17627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  717.719976][T17627] Call Trace:
[  717.723318][T17627]  <TASK>
[  717.726315][T17627]  dump_stack_lvl+0x18c/0x250
[  717.731094][T17627]  ? show_regs_print_info+0x20/0x20
[  717.736398][T17627]  ? load_image+0x420/0x420
[  717.740983][T17627]  ? __might_fault+0xaa/0x120
[  717.745731][T17627]  ? __lock_acquire+0x7d40/0x7d40
[  717.750844][T17627]  should_fail_ex+0x39d/0x4d0
[  717.755624][T17627]  _copy_from_iter+0x1d9/0x12e0
[  717.760541][T17627]  ? rep_movs_alternative+0x4a/0x90
[  717.765839][T17627]  ? _copy_from_iter+0x24e/0x12e0
[  717.770934][T17627]  ? __virt_addr_valid+0x18c/0x540
[  717.776115][T17627]  ? __lock_acquire+0x7d40/0x7d40
[  717.781199][T17627]  ? copyout_mc+0x70/0x70
[  717.785619][T17627]  ? copyout_mc+0x70/0x70
[  717.790022][T17627]  ? __virt_addr_valid+0x18c/0x540
[  717.795295][T17627]  ? page_copy_sane+0x16a/0x270
[  717.800229][T17627]  copy_page_from_iter+0x7b/0x100
[  717.805338][T17627]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  717.811239][T17627]  tun_get_user+0x15db/0x3ca0
[  717.816005][T17627]  ? aa_file_perm+0x11b/0xee0
[  717.820785][T17627]  ? rcu_read_unlock+0xa0/0xa0
[  717.825635][T17627]  ? tun_get+0x1c/0x2e0
[  717.829857][T17627]  ? __lock_acquire+0x7d40/0x7d40
[  717.834970][T17627]  ? tun_get+0x1c/0x2e0
[  717.839224][T17627]  tun_chr_write_iter+0x119/0x200
[  717.844327][T17627]  vfs_write+0x46c/0x990
[  717.848684][T17627]  ? file_end_write+0x250/0x250
[  717.853613][T17627]  ? __fget_files+0x43d/0x4b0
[  717.858372][T17627]  ? __fdget_pos+0x1d8/0x330
[  717.863024][T17627]  ? ksys_write+0x75/0x260
[  717.867502][T17627]  ksys_write+0x150/0x260
[  717.871886][T17627]  ? __ia32_sys_read+0x90/0x90
[  717.876728][T17627]  ? lockdep_hardirqs_on+0x98/0x150
[  717.882000][T17627]  do_syscall_64+0x55/0xa0
[  717.886458][T17627]  ? clear_bhb_loop+0x40/0x90
[  717.891182][T17627]  ? clear_bhb_loop+0x40/0x90
[  717.895916][T17627]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  717.901871][T17627] RIP: 0033:0x7efdd239cdd9
[  717.906333][T17627] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  717.926010][T17627] RSP: 002b:00007efdd05f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  717.934500][T17627] RAX: ffffffffffffffda RBX: 00007efdd2615fa0 RCX: 00007efdd239cdd9
[  717.942521][T17627] RDX: 000000000000fdef RSI: 0000200000000840 RDI: 00000000000000c8
[  717.950556][T17627] RBP: 00007efdd05f6090 R08: 0000000000000000 R09: 0000000000000000
[  717.958578][T17627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  717.966604][T17627] R13: 00007efdd2616038 R14: 00007efdd2615fa0 R15: 00007ffe2ecde3c8
[  717.974662][T17627]  </TASK>
[  719.075004][T17650] netlink: 'syz.0.3895': attribute type 29 has an invalid length.
[  719.109132][T17650] netlink: 'syz.0.3895': attribute type 29 has an invalid length.
[  719.127869][T17648] netlink: 'syz.0.3895': attribute type 29 has an invalid length.
[  719.163602][T17650] netlink: 188 bytes leftover after parsing attributes in process `syz.0.3895'.
[  719.617778][T17660] 
€Â0: renamed from batadv_slave_1 (while UP)
[  719.637352][T17669] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.3900'.
[  719.660720][T17669] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.3900'.
[  719.700610][T17670] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.3900'.
[  719.978419][T17678] netlink: 'syz.0.3903': attribute type 10 has an invalid length.
[  720.025313][T17678] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3903'.
[  720.059865][T17678] veth0_vlan: entered allmulticast mode
[  720.080960][T17678] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[  720.188632][T17684] netlink: 'syz.3.3905': attribute type 10 has an invalid length.
[  720.208250][T17684] netlink: 9279 bytes leftover after parsing attributes in process `syz.3.3905'.
[  720.249313][T17684] nr0: port 1(hsr0) entered blocking state
[  720.255782][T17684] nr0: port 1(hsr0) entered disabled state
[  720.270288][T17684] hsr0: entered allmulticast mode
[  720.286125][T17684] hsr_slave_0: entered allmulticast mode
[  720.296506][T17684] hsr_slave_1: entered allmulticast mode
[  720.391549][T17674] delete_channel: no stack
[  720.464252][T17699] netlink: 156 bytes leftover after parsing attributes in process `syz.3.3910'.
[  720.486040][T17699] netlink: 156 bytes leftover after parsing attributes in process `syz.3.3910'.
[  721.599940][T17724] delete_channel: no stack
[  722.187178][T17767] FAULT_INJECTION: forcing a failure.
[  722.187178][T17767] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  722.201900][T17767] CPU: 0 PID: 17767 Comm: syz.3.3936 Not tainted syzkaller #0
[  722.209432][T17767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  722.219538][T17767] Call Trace:
[  722.222882][T17767]  <TASK>
[  722.225870][T17767]  dump_stack_lvl+0x18c/0x250
[  722.230634][T17767]  ? show_regs_print_info+0x20/0x20
[  722.235888][T17767]  ? load_image+0x420/0x420
[  722.240445][T17767]  ? __might_fault+0xaa/0x120
[  722.245156][T17767]  ? __lock_acquire+0x7d40/0x7d40
[  722.250226][T17767]  should_fail_ex+0x39d/0x4d0
[  722.254956][T17767]  _copy_from_iter+0x1d9/0x12e0
[  722.259849][T17767]  ? __might_fault+0xaa/0x120
[  722.264594][T17767]  ? _copy_from_iter+0x24e/0x12e0
[  722.269710][T17767]  ? __virt_addr_valid+0x18c/0x540
[  722.274863][T17767]  ? __lock_acquire+0x7d40/0x7d40
[  722.279967][T17767]  ? copyout_mc+0x70/0x70
[  722.284444][T17767]  ? copyout_mc+0x70/0x70
[  722.288811][T17767]  ? __virt_addr_valid+0x18c/0x540
[  722.293960][T17767]  ? page_copy_sane+0x16a/0x270
[  722.298873][T17767]  copy_page_from_iter+0x7b/0x100
[  722.303952][T17767]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  722.309814][T17767]  tun_get_user+0x15db/0x3ca0
[  722.314545][T17767]  ? aa_file_perm+0x11b/0xee0
[  722.319264][T17767]  ? rcu_read_unlock+0xa0/0xa0
[  722.324124][T17767]  ? tun_get+0x1c/0x2e0
[  722.328330][T17767]  ? __lock_acquire+0x7d40/0x7d40
[  722.333396][T17767]  ? tun_get+0x1c/0x2e0
[  722.337596][T17767]  tun_chr_write_iter+0x119/0x200
[  722.342680][T17767]  vfs_write+0x46c/0x990
[  722.346974][T17767]  ? file_end_write+0x250/0x250
[  722.351876][T17767]  ? __fget_files+0x43d/0x4b0
[  722.356619][T17767]  ? __fdget_pos+0x1d8/0x330
[  722.361251][T17767]  ? ksys_write+0x75/0x260
[  722.365716][T17767]  ksys_write+0x150/0x260
[  722.370089][T17767]  ? __ia32_sys_read+0x90/0x90
[  722.374906][T17767]  ? lockdep_hardirqs_on+0x98/0x150
[  722.380151][T17767]  do_syscall_64+0x55/0xa0
[  722.384605][T17767]  ? clear_bhb_loop+0x40/0x90
[  722.389319][T17767]  ? clear_bhb_loop+0x40/0x90
[  722.394030][T17767]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  722.400030][T17767] RIP: 0033:0x7fe5d239cdd9
[  722.404487][T17767] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  722.424167][T17767] RSP: 002b:00007fe5d31ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  722.432616][T17767] RAX: ffffffffffffffda RBX: 00007fe5d2615fa0 RCX: 00007fe5d239cdd9
[  722.440616][T17767] RDX: 000000000000fdef RSI: 0000200000000100 RDI: 00000000000000c8
[  722.448628][T17767] RBP: 00007fe5d31ef090 R08: 0000000000000000 R09: 0000000000000000
[  722.456644][T17767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  722.464661][T17767] R13: 00007fe5d2616038 R14: 00007fe5d2615fa0 R15: 00007ffc0a387888
[  722.472697][T17767]  </TASK>
[  723.663431][T17798] netlink: 'syz.1.3945': attribute type 9 has an invalid length.
[  723.680200][T17798] __nla_validate_parse: 4 callbacks suppressed
[  723.680235][T17798] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.3945'.
[  724.857583][T17839] netlink: 'syz.0.3962': attribute type 10 has an invalid length.
[  724.876710][T17839] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3962'.
[  724.909711][T17839] bond0: entered promiscuous mode
[  724.921924][T17839] bond_slave_0: entered promiscuous mode
[  724.938295][T17839] bond_slave_1: entered promiscuous mode
[  725.357061][T17855] netlink: 'syz.0.3965': attribute type 9 has an invalid length.
[  725.388774][T17855] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.3965'.
[  726.019215][T17870] netlink: 'syz.3.3973': attribute type 21 has an invalid length.
[  726.037548][T17870] netlink: 128 bytes leftover after parsing attributes in process `syz.3.3973'.
[  726.059983][T17870] netlink: 'syz.3.3973': attribute type 4 has an invalid length.
[  726.067773][T17870] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3973'.
[  726.535991][T17893] netlink: 'syz.1.3981': attribute type 21 has an invalid length.
[  726.557194][T17893] netlink: 156 bytes leftover after parsing attributes in process `syz.1.3981'.
[  726.718237][T17901] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.3984'.
[  726.832880][T17905] netlink: 'syz.2.3983': attribute type 9 has an invalid length.
[  726.849828][T17905] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.3983'.
[  727.298099][T17912] netlink: 'syz.1.3987': attribute type 6 has an invalid length.
[  727.318080][T17912] netlink: 140 bytes leftover after parsing attributes in process `syz.1.3987'.
[  727.363137][T17914] netlink: 209756 bytes leftover after parsing attributes in process `syz.3.3988'.
[  728.247776][T17924] syzkaller0: entered promiscuous mode
[  728.304287][T17924] syzkaller0: entered allmulticast mode
[  733.250361][T17953] netlink: 'syz.1.4000': attribute type 9 has an invalid length.
[  733.258428][T17953] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.4000'.
[  733.258712][T17956] netlink: 'syz.3.4002': attribute type 10 has an invalid length.
[  733.283559][T17956] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4002'.
[  733.301581][T17956] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  733.668508][T17967] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.4007'.
[  737.034511][T18001] netlink: 'syz.0.4015': attribute type 9 has an invalid length.
[  737.069680][T18001] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.4015'.
[  737.636354][T18010] can: request_module (can-proto-0) failed.
[  738.743580][T18050] netlink: 'syz.3.4040': attribute type 9 has an invalid length.
[  738.792228][T18050] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.4040'.
[  739.019171][ T7062] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.162577][ T7062] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.325706][ T7062] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.412781][T18060] netlink: 'syz.0.4045': attribute type 29 has an invalid length.
[  739.422004][T18060] netlink: 'syz.0.4045': attribute type 29 has an invalid length.
[  739.586171][ T7062] bond0: (slave netdevsim0): Releasing backup interface
[  739.616674][ T7062] netdevsim netdevsim2 netdevsim0 (unregistering): left promiscuous mode
[  739.637494][ T7062] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.888582][ T5778] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  739.899144][ T5778] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  739.914547][ T5778] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  739.931059][ T5778] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  739.953021][ T5778] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  739.962224][ T5778] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  740.363892][ T7062] ip6gretap0 (unregistering): left allmulticast mode
[  740.376055][ T7062] ip6gretap0 (unregistering): left promiscuous mode
[  740.388797][ T7062] Ÿë
: port 1(ip6gretap0) entered disabled state
[  740.666287][T18071] netlink: 'syz.0.4050': attribute type 39 has an invalid length.
[  741.547769][T18115] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.4057'.
[  741.999235][   T51] Bluetooth: hci3: command tx timeout
[  743.898915][T18126] FAULT_INJECTION: forcing a failure.
[  743.898915][T18126] name failslab, interval 1, probability 0, space 0, times 0
[  743.911896][T18126] CPU: 0 PID: 18126 Comm: syz.3.4061 Not tainted syzkaller #0
[  743.919401][T18126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  743.929498][T18126] Call Trace:
[  743.932813][T18126]  <TASK>
[  743.935786][T18126]  dump_stack_lvl+0x18c/0x250
[  743.940533][T18126]  ? sctp_sendmsg+0x1575/0x28c0
[  743.945438][T18126]  ? ___sys_sendmsg+0x2a6/0x360
[  743.950335][T18126]  ? show_regs_print_info+0x20/0x20
[  743.955589][T18126]  ? load_image+0x420/0x420
[  743.960206][T18126]  should_fail_ex+0x39d/0x4d0
[  743.964939][T18126]  should_failslab+0x9/0x20
[  743.969481][T18126]  slab_pre_alloc_hook+0x59/0x310
[  743.974560][T18126]  ? sctp_add_bind_addr+0x8c/0x360
[  743.979700][T18126]  __kmem_cache_alloc_node+0x53/0x250
[  743.985123][T18126]  ? sctp_add_bind_addr+0x8c/0x360
[  743.990281][T18126]  kmalloc_trace+0x2a/0xe0
[  743.994755][T18126]  sctp_add_bind_addr+0x8c/0x360
[  743.999738][T18126]  sctp_copy_local_addr_list+0x315/0x4f0
[  744.005415][T18126]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  744.011173][T18126]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  744.017294][T18126]  ? sctp_v4_is_any+0x35/0x60
[  744.022014][T18126]  ? sctp_copy_one_addr+0x8c/0x350
[  744.027177][T18126]  sctp_bind_addr_copy+0xb3/0x3c0
[  744.032234][T18126]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  744.038606][T18126]  sctp_connect_new_asoc+0x2f9/0x6a0
[  744.043934][T18126]  ? __sctp_connect+0xd80/0xd80
[  744.048817][T18126]  ? __local_bh_enable_ip+0x13a/0x1c0
[  744.054235][T18126]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  744.059836][T18126]  ? security_sctp_bind_connect+0x89/0xb0
[  744.065635][T18126]  sctp_sendmsg+0x1575/0x28c0
[  744.070396][T18126]  ? sctp_getsockopt+0xb60/0xb60
[  744.075372][T18126]  ? aa_sk_perm+0x83c/0x970
[  744.079961][T18126]  ? aa_af_perm+0x330/0x330
[  744.084511][T18126]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  744.090978][T18126]  ? sock_rps_record_flow+0x19/0x3f0
[  744.096310][T18126]  ? inet_sendmsg+0xe9/0x2f0
[  744.100951][T18126]  ? inet_send_prepare+0x260/0x260
[  744.106106][T18126]  ____sys_sendmsg+0x5ba/0x960
[  744.110913][T18126]  ? __lock_acquire+0x7d40/0x7d40
[  744.115993][T18126]  ? __asan_memset+0x22/0x40
[  744.120727][T18126]  ? __sys_sendmsg_sock+0x30/0x30
[  744.125791][T18126]  ? __import_iovec+0x5f2/0x850
[  744.130694][T18126]  ? import_iovec+0x73/0xa0
[  744.135239][T18126]  ___sys_sendmsg+0x2a6/0x360
[  744.139968][T18126]  ? get_pid_task+0x20/0x1e0
[  744.144622][T18126]  ? __sys_sendmsg+0x2a0/0x2a0
[  744.149457][T18126]  ? __lock_acquire+0x7d40/0x7d40
[  744.154562][T18126]  __se_sys_sendmsg+0x1c2/0x2b0
[  744.159559][T18126]  ? __x64_sys_sendmsg+0x80/0x80
[  744.164562][T18126]  ? lockdep_hardirqs_on+0x98/0x150
[  744.169820][T18126]  do_syscall_64+0x55/0xa0
[  744.174270][T18126]  ? clear_bhb_loop+0x40/0x90
[  744.178975][T18126]  ? clear_bhb_loop+0x40/0x90
[  744.183689][T18126]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  744.189695][T18126] RIP: 0033:0x7fe5d239cdd9
[  744.194138][T18126] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  744.213772][T18126] RSP: 002b:00007fe5d31ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  744.222236][T18126] RAX: ffffffffffffffda RBX: 00007fe5d2615fa0 RCX: 00007fe5d239cdd9
[  744.230239][T18126] RDX: 00000000000040f0 RSI: 0000200000000240 RDI: 0000000000000003
[  744.238247][T18126] RBP: 00007fe5d31ef090 R08: 0000000000000000 R09: 0000000000000000
[  744.246240][T18126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  744.254244][T18126] R13: 00007fe5d2616038 R14: 00007fe5d2615fa0 R15: 00007ffc0a387888
[  744.262260][T18126]  </TASK>
[  744.266787][   T51] Bluetooth: hci3: command tx timeout
[  744.445135][T18133] netlink: 'syz.3.4063': attribute type 21 has an invalid length.
[  744.546595][T18133] netlink: 14 bytes leftover after parsing attributes in process `syz.3.4063'.
[  744.735381][T18133] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  744.771924][T18133] bond_slave_0: left promiscuous mode
[  744.834866][T18133] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  744.845837][T18133] bond_slave_1: left promiscuous mode
[  744.895109][T18133] bond0 (unregistering): (slave netdevsim0): Releasing backup interface
[  744.909433][T18133] netdevsim netdevsim3 netdevsim0: left promiscuous mode
[  744.943671][T18133] bond0 (unregistering): Released all slaves
[  745.075351][T18150] netlink: 'syz.1.4067': attribute type 9 has an invalid length.
[  745.089845][T18150] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.4067'.
[  745.122790][T18072] chnl_net:caif_netlink_parms(): no params data found
[  746.225412][T18175] netlink: 'syz.0.4079': attribute type 6 has an invalid length.
[  746.233571][T18175] netlink: 'syz.0.4079': attribute type 1 has an invalid length.
[  746.241734][T18175] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.4079'.
[  746.265866][T18072] bridge0: port 1(bridge_slave_0) entered blocking state
[  746.283186][T18072] bridge0: port 1(bridge_slave_0) entered disabled state
[  746.294396][T18072] bridge_slave_0: entered allmulticast mode
[  746.305185][T18072] bridge_slave_0: entered promiscuous mode
[  746.312202][   T51] Bluetooth: hci3: command tx timeout
[  746.334954][T18176] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.4071'.
[  746.389035][T18072] bridge0: port 2(bridge_slave_1) entered blocking state
[  746.406317][T18072] bridge0: port 2(bridge_slave_1) entered disabled state
[  746.414727][T18072] bridge_slave_1: entered allmulticast mode
[  746.428737][T18072] bridge_slave_1: entered promiscuous mode
[  747.604742][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  747.611926][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[  748.389754][   T51] Bluetooth: hci3: command tx timeout
[  749.672135][T18072] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  749.718986][T18072] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  749.912521][T18072] team0: Port device team_slave_0 added
[  749.952669][T18072] team0: Port device team_slave_1 added
[  750.162899][ T7062] hsr_slave_0: left promiscuous mode
[  750.219783][ T7062] hsr_slave_1: left promiscuous mode
[  750.230459][ T7062] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  750.237926][ T7062] batman_adv: batadv0: Removing interface: batadv_slave_0
[  750.277425][ T7062] batman_adv: batadv0: Interface deactivated: 
€Â0
[  750.302002][ T7062] batman_adv: batadv0: Removing interface: 
€Â0
[  750.326158][ T7062] batman_adv: batadv0: Interface deactivated: veth1_virt_wifi
[  750.335741][ T7062] batman_adv: batadv0: Removing interface: veth1_virt_wifi
[  750.349420][ T7062] bridge_slave_1: left allmulticast mode
[  750.355296][ T7062] bridge_slave_1: left promiscuous mode
[  750.380128][ T7062] bridge0: port 2(bridge_slave_1) entered disabled state
[  750.412752][ T7062] bridge_slave_0: left allmulticast mode
[  750.419463][ T7062] bridge_slave_0: left promiscuous mode
[  750.425460][ T7062] bridge0: port 1(bridge_slave_0) entered disabled state
[  750.471476][ T7062] veth1_macvtap: left promiscuous mode
[  750.477307][ T7062] veth0_macvtap: left promiscuous mode
[  750.483364][ T7062] veth1_vlan: left allmulticast mode
[  750.489121][ T7062] veth1_vlan: left promiscuous mode
[  750.501173][ T7062] veth0_vlan: left promiscuous mode
[  750.912114][ T7062] team0 (unregistering): Port device macvlan0 removed
[  751.251324][ T7062] team0 (unregistering): Port device team_slave_1 removed
[  751.299389][ T7062] team0 (unregistering): Port device C removed
[  751.342500][ T7062] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  751.355695][ T7062] bond_slave_1 (unregistering): left promiscuous mode
[  751.395962][ T7062] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  751.404883][ T7062] bond_slave_0 (unregistering): left promiscuous mode
[  751.648696][ T7062] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  751.657689][ T7062] batadv0 (unregistering): left promiscuous mode
[  751.756752][ T7062] bond0 (unregistering): Released all slaves
[  751.877875][T18072] batman_adv: batadv0: Adding interface: batadv_slave_0
[  751.885198][T18072] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  751.911543][T18072] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  751.922948][T18213] 
@ÿ: renamed from bond_slave_0 (while UP)
[  751.937978][T18193] netlink: 'syz.0.4078': attribute type 10 has an invalid length.
[  751.984323][T18193] team0: Port device wlan1 added
[  752.100840][T18072] batman_adv: batadv0: Adding interface: batadv_slave_1
[  752.107843][T18072] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  752.147633][T18072] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  752.311770][T18072] hsr_slave_0: entered promiscuous mode
[  752.338220][T18072] hsr_slave_1: entered promiscuous mode
[  753.281607][T18256] netlink: 15119 bytes leftover after parsing attributes in process `syz.1.4092'.
[  753.839020][T18072] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  753.936807][T18072] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  753.995879][T18072] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  754.022096][T18072] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  754.087908][T18275] netlink: 'syz.1.4095': attribute type 10 has an invalid length.
[  754.128406][T18275] mac80211_hwsim hwsim41 wlan1: left promiscuous mode
[  754.136152][T18275] mac80211_hwsim hwsim41 wlan1: left allmulticast mode
[  754.189305][T18275] mac80211_hwsim hwsim41 wlan1: entered promiscuous mode
[  754.197805][T18275] mac80211_hwsim hwsim41 wlan1: entered allmulticast mode
[  754.210919][T18275] team0: Port device wlan1 added
[  754.355372][T18072] 8021q: adding VLAN 0 to HW filter on device bond0
[  754.446235][T18072] 8021q: adding VLAN 0 to HW filter on device team0
[  754.487303][ T3520] bridge0: port 1(bridge_slave_0) entered blocking state
[  754.494533][ T3520] bridge0: port 1(bridge_slave_0) entered forwarding state
[  754.565194][ T3520] bridge0: port 2(bridge_slave_1) entered blocking state
[  754.572490][ T3520] bridge0: port 2(bridge_slave_1) entered forwarding state
[  754.896224][T18305] netlink: 'syz.0.4101': attribute type 10 has an invalid length.
[  754.925962][T18305] team0: Device hsr_slave_0 is up. Set it down before adding it as a team port
[  755.092761][T18072] 8021q: adding VLAN 0 to HW filter on device batadv0
[  755.206809][T18072] veth0_vlan: entered promiscuous mode
[  755.244785][T18072] veth1_vlan: entered promiscuous mode
[  755.362375][T18072] veth0_macvtap: entered promiscuous mode
[  755.398825][T18072] veth1_macvtap: entered promiscuous mode
[  755.450940][T18072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  755.482312][T18072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  755.505461][T18072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  755.541007][T18072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  755.559572][T18072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  755.580315][T18072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  755.602265][T18072] batman_adv: batadv0: Interface activated: batadv_slave_0
[  755.642675][T18072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  755.669624][T18072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  755.699755][T18072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  755.719786][T18072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  755.746324][T18072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  755.769272][T18072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  755.783008][T18332] FAULT_INJECTION: forcing a failure.
[  755.783008][T18332] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  755.799303][T18072] batman_adv: batadv0: Interface activated: batadv_slave_1
[  755.816271][T18332] CPU: 1 PID: 18332 Comm: syz.0.4112 Not tainted syzkaller #0
[  755.823812][T18332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  755.833922][T18332] Call Trace:
[  755.837240][T18332]  <TASK>
[  755.840208][T18332]  dump_stack_lvl+0x18c/0x250
[  755.844944][T18332]  ? show_regs_print_info+0x20/0x20
[  755.850204][T18332]  ? load_image+0x420/0x420
[  755.854777][T18332]  ? __might_fault+0xaa/0x120
[  755.859502][T18332]  ? __lock_acquire+0x7d40/0x7d40
[  755.864576][T18332]  should_fail_ex+0x39d/0x4d0
[  755.869309][T18332]  _copy_from_iter+0x1d9/0x12e0
[  755.874221][T18332]  ? rep_movs_alternative+0x4a/0x90
[  755.879472][T18332]  ? _copy_from_iter+0x24e/0x12e0
[  755.884540][T18332]  ? __virt_addr_valid+0x18c/0x540
[  755.889697][T18332]  ? __lock_acquire+0x7d40/0x7d40
[  755.894783][T18332]  ? copyout_mc+0x70/0x70
[  755.899161][T18332]  ? copyout_mc+0x70/0x70
[  755.903577][T18332]  ? __virt_addr_valid+0x18c/0x540
[  755.908740][T18332]  ? page_copy_sane+0x16a/0x270
[  755.913646][T18332]  copy_page_from_iter+0x7b/0x100
[  755.918734][T18332]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  755.924601][T18332]  unix_stream_sendmsg+0x562/0xbf0
[  755.929781][T18332]  ? unix_show_fdinfo+0x270/0x270
[  755.934854][T18332]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  755.941334][T18332]  ? __might_fault+0xaa/0x120
[  755.946085][T18332]  ? aa_sock_msg_perm+0x94/0x150
[  755.951076][T18332]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  755.956406][T18332]  ? security_socket_sendmsg+0x80/0xa0
[  755.961916][T18332]  ? unix_show_fdinfo+0x270/0x270
[  755.966982][T18332]  ____sys_sendmsg+0x5ba/0x960
[  755.971796][T18332]  ? __sys_sendmsg_sock+0x30/0x30
[  755.976869][T18332]  ? __import_iovec+0x5f2/0x850
[  755.981806][T18332]  ? import_iovec+0x73/0xa0
[  755.986394][T18332]  ___sys_sendmsg+0x2a6/0x360
[  755.991148][T18332]  ? get_pid_task+0x20/0x1e0
[  755.995814][T18332]  ? __sys_sendmsg+0x2a0/0x2a0
[  756.000642][T18332]  ? __lock_acquire+0x7d40/0x7d40
[  756.005762][T18332]  __se_sys_sendmsg+0x1c2/0x2b0
[  756.010665][T18332]  ? __x64_sys_sendmsg+0x80/0x80
[  756.015683][T18332]  ? lockdep_hardirqs_on+0x98/0x150
[  756.020944][T18332]  do_syscall_64+0x55/0xa0
[  756.025456][T18332]  ? clear_bhb_loop+0x40/0x90
[  756.030181][T18332]  ? clear_bhb_loop+0x40/0x90
[  756.034919][T18332]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  756.040861][T18332] RIP: 0033:0x7f8bc699cdd9
[  756.045321][T18332] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  756.064971][T18332] RSP: 002b:00007f8bc77c6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  756.073437][T18332] RAX: ffffffffffffffda RBX: 00007f8bc6c15fa0 RCX: 00007f8bc699cdd9
[  756.081474][T18332] RDX: 0000000000008841 RSI: 0000200000000500 RDI: 0000000000000004
[  756.089490][T18332] RBP: 00007f8bc77c6090 R08: 0000000000000000 R09: 0000000000000000
[  756.097560][T18332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  756.105578][T18332] R13: 00007f8bc6c16038 R14: 00007f8bc6c15fa0 R15: 00007ffcee407008
[  756.113655][T18332]  </TASK>
[  756.162094][T18072] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  756.171183][T18072] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  756.179999][T18072] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  756.199294][T18072] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  758.627698][ T3520] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  758.646447][ T3520] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  758.793675][ T7037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  758.807155][ T7037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  759.233467][T18362] tap0: tun_chr_ioctl cmd 1074025677
[  759.248571][T18362] tap0: linktype set to 270
[  759.256846][T18364] netlink: 'syz.3.4116': attribute type 10 has an invalid length.
[  762.870397][T18423] netlink: 10 bytes leftover after parsing attributes in process `syz.3.4125'.
[  763.654183][T18450] netlink: 830 bytes leftover after parsing attributes in process `syz.3.4130'.
[  764.073847][T18467] netlink: 144316 bytes leftover after parsing attributes in process `syz.3.4136'.
[  764.133940][T18467] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4136'.
[  764.164505][T18469] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.4136'.
[  764.196191][T18471] netlink: 'syz.0.4137': attribute type 17 has an invalid length.
[  764.244056][T18471] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4137'.
[  764.322988][T18471] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  764.868294][T18487] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  765.011953][T18495] FAULT_INJECTION: forcing a failure.
[  765.011953][T18495] name failslab, interval 1, probability 0, space 0, times 0
[  765.040073][T18495] CPU: 0 PID: 18495 Comm: syz.3.4143 Not tainted syzkaller #0
[  765.047611][T18495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  765.057734][T18495] Call Trace:
[  765.061114][T18495]  <TASK>
[  765.064082][T18495]  dump_stack_lvl+0x18c/0x250
[  765.068813][T18495]  ? sctp_sendmsg+0x1575/0x28c0
[  765.073710][T18495]  ? ___sys_sendmsg+0x2a6/0x360
[  765.078613][T18495]  ? show_regs_print_info+0x20/0x20
[  765.083885][T18495]  ? load_image+0x420/0x420
[  765.088451][T18495]  should_fail_ex+0x39d/0x4d0
[  765.093185][T18495]  should_failslab+0x9/0x20
[  765.097735][T18495]  slab_pre_alloc_hook+0x59/0x310
[  765.102811][T18495]  ? sctp_add_bind_addr+0x8c/0x360
[  765.107973][T18495]  __kmem_cache_alloc_node+0x53/0x250
[  765.113382][T18495]  ? sctp_add_bind_addr+0x8c/0x360
[  765.118511][T18495]  kmalloc_trace+0x2a/0xe0
[  765.122959][T18495]  sctp_add_bind_addr+0x8c/0x360
[  765.127927][T18495]  sctp_copy_local_addr_list+0x315/0x4f0
[  765.133582][T18495]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  765.139317][T18495]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  765.145424][T18495]  ? sctp_v4_is_any+0x35/0x60
[  765.150130][T18495]  ? sctp_copy_one_addr+0x8c/0x350
[  765.155300][T18495]  sctp_bind_addr_copy+0xb3/0x3c0
[  765.160352][T18495]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  765.166716][T18495]  sctp_connect_new_asoc+0x2f9/0x6a0
[  765.172049][T18495]  ? __sctp_connect+0xd80/0xd80
[  765.176930][T18495]  ? __local_bh_enable_ip+0x13a/0x1c0
[  765.182324][T18495]  ? _local_bh_enable+0xa0/0xa0
[  765.187193][T18495]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  765.193022][T18495]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  765.198867][T18495]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  765.204466][T18495]  ? security_sctp_bind_connect+0x89/0xb0
[  765.210227][T18495]  sctp_sendmsg+0x1575/0x28c0
[  765.214961][T18495]  ? sctp_getsockopt+0xb60/0xb60
[  765.219941][T18495]  ? aa_sk_perm+0x83c/0x970
[  765.224514][T18495]  ? aa_af_perm+0x330/0x330
[  765.229045][T18495]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  765.235485][T18495]  ? sock_rps_record_flow+0x19/0x3f0
[  765.240797][T18495]  ? inet_sendmsg+0x7c/0x2f0
[  765.245428][T18495]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  765.250766][T18495]  ? security_socket_sendmsg+0x80/0xa0
[  765.256259][T18495]  ? inet_send_prepare+0x260/0x260
[  765.261411][T18495]  ____sys_sendmsg+0x5ba/0x960
[  765.266215][T18495]  ? __lock_acquire+0x7d40/0x7d40
[  765.271273][T18495]  ? __asan_memset+0x22/0x40
[  765.275910][T18495]  ? __sys_sendmsg_sock+0x30/0x30
[  765.280978][T18495]  ? __import_iovec+0x5f2/0x850
[  765.285869][T18495]  ? import_iovec+0x73/0xa0
[  765.290423][T18495]  ___sys_sendmsg+0x2a6/0x360
[  765.295126][T18495]  ? get_pid_task+0x20/0x1e0
[  765.299749][T18495]  ? __sys_sendmsg+0x2a0/0x2a0
[  765.304562][T18495]  ? __lock_acquire+0x7d40/0x7d40
[  765.309638][T18495]  __se_sys_sendmsg+0x1c2/0x2b0
[  765.314509][T18495]  ? __x64_sys_sendmsg+0x80/0x80
[  765.319493][T18495]  ? lockdep_hardirqs_on+0x98/0x150
[  765.324729][T18495]  do_syscall_64+0x55/0xa0
[  765.329159][T18495]  ? clear_bhb_loop+0x40/0x90
[  765.333879][T18495]  ? clear_bhb_loop+0x40/0x90
[  765.338614][T18495]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  765.344531][T18495] RIP: 0033:0x7fe5d239cdd9
[  765.348985][T18495] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  765.368612][T18495] RSP: 002b:00007fe5d31ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  765.377045][T18495] RAX: ffffffffffffffda RBX: 00007fe5d2615fa0 RCX: 00007fe5d239cdd9
[  765.385034][T18495] RDX: 00000000000080d1 RSI: 0000200000000140 RDI: 0000000000000003
[  765.393017][T18495] RBP: 00007fe5d31ef090 R08: 0000000000000000 R09: 0000000000000000
[  765.401018][T18495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  765.409007][T18495] R13: 00007fe5d2616038 R14: 00007fe5d2615fa0 R15: 00007ffc0a387888
[  765.417007][T18495]  </TASK>
[  766.290592][T18518] netlink: 'syz.3.4149': attribute type 2 has an invalid length.
[  766.305923][T18518] netlink: 'syz.3.4149': attribute type 4 has an invalid length.
[  766.334537][T18518] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4149'.
[  767.443277][T18529] delete_channel: no stack
[  767.459471][T18529] delete_channel: no stack
[  769.191668][T18579] netlink: 'syz.2.4175': attribute type 10 has an invalid length.
[  769.426356][T18579] macvlan0: entered promiscuous mode
[  769.439858][T18579] macvlan0: entered allmulticast mode
[  769.487643][T18579] veth1_vlan: entered allmulticast mode
[  769.514509][T18579] team0: Port device macvlan0 added
[  770.225461][T18599] netlink: 'syz.0.4181': attribute type 21 has an invalid length.
[  770.359731][T18600] netlink: 121460 bytes leftover after parsing attributes in process `syz.0.4181'.
[  770.406278][T18600] netlink: 22828 bytes leftover after parsing attributes in process `syz.0.4181'.
[  770.454106][T18602] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4183'.
[  770.493983][T18603] netlink: 'syz.3.4183': attribute type 10 has an invalid length.
[  770.525454][T18603] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4183'.
[  770.564468][T18603] veth0_vlan: entered allmulticast mode
[  770.662817][T18603] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[  770.746805][T18606] netlink: 1 bytes leftover after parsing attributes in process `syz.3.4183'.
[  771.369147][T18628] delete_channel: no stack
[  771.382520][T18628] delete_channel: no stack
[  771.641893][T18632] netlink: 668 bytes leftover after parsing attributes in process `syz.2.4193'.
[  771.670339][T18632] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  771.678784][T18632] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  771.804449][T18638] netlink: 'syz.0.4194': attribute type 9 has an invalid length.
[  771.814460][T18638] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.4194'.
[  771.884696][T18643] netlink: 'syz.3.4198': attribute type 21 has an invalid length.
[  771.897465][T18643] netlink: 168 bytes leftover after parsing attributes in process `syz.3.4198'.
[  771.907519][T18645] netlink: 'syz.2.4199': attribute type 33 has an invalid length.
[  771.915246][T18643] netlink: 184 bytes leftover after parsing attributes in process `syz.3.4198'.
[  771.925853][T18645] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.4199'.
[  771.941828][T18643] netlink: 'syz.3.4198': attribute type 10 has an invalid length.
[  771.953254][T18643] batadv0: entered promiscuous mode
[  771.958641][T18643] batadv0: entered allmulticast mode
[  771.965540][T18643] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  773.750250][T18697] netlink: 'syz.0.4215': attribute type 9 has an invalid length.
[  774.200389][T18715] netlink: 'syz.3.4224': attribute type 3 has an invalid length.
[  774.434673][T18728] sctp: [Deprecated]: syz.1.4223 (pid 18728) Use of int in max_burst socket option deprecated.
[  774.434673][T18728] Use struct sctp_assoc_value instead
[  774.455223][T18729] netlink: 'syz.2.4227': attribute type 25 has an invalid length.
[  774.485540][T18729] netlink: 'syz.2.4227': attribute type 9 has an invalid length.
[  774.875192][T18746] netlink: 'syz.0.4234': attribute type 1 has an invalid length.
[  774.893741][T18746] netlink: 'syz.0.4234': attribute type 3 has an invalid length.
[  775.474357][T18759] __nla_validate_parse: 6 callbacks suppressed
[  775.474417][T18759] netlink: 2 bytes leftover after parsing attributes in process `syz.2.4240'.
[  775.497814][T18759] hsr0: entered promiscuous mode
[  775.518709][T18759] bridge0: port 3(hsr0) entered blocking state
[  775.528613][T18759] bridge0: port 3(hsr0) entered disabled state
[  775.554268][T18759] hsr0: entered allmulticast mode
[  775.565288][T18759] hsr_slave_0: entered allmulticast mode
[  775.571960][T18759] hsr_slave_1: entered allmulticast mode
[  775.622152][T18759] bridge0: port 3(hsr0) entered blocking state
[  775.629135][T18759] bridge0: port 3(hsr0) entered forwarding state
[  776.141972][T18789] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4253'.
[  776.171930][T18789] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  776.642332][T18813] netlink: 64859 bytes leftover after parsing attributes in process `syz.0.4263'.
[  776.704160][T18816] mac80211_hwsim hwsim60 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  776.819859][T18818] validate_nla: 3 callbacks suppressed
[  776.819878][T18818] netlink: 'syz.0.4263': attribute type 16 has an invalid length.
[  776.848674][T18818] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4263'.
[  777.200669][T18823] netlink: 56537 bytes leftover after parsing attributes in process `syz.3.4265'.
[  777.259408][T18826] netlink: 'syz.1.4266': attribute type 10 has an invalid length.
[  777.279909][T18826] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4266'.
[  777.303596][T18826] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  778.004833][T18854] netlink: 'syz.1.4278': attribute type 33 has an invalid length.
[  778.027668][T18854] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4278'.
[  778.115287][T18856] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.4277'.
[  779.274606][ T7048] wlan1: Trigger new scan to find an IBSS to join
[  781.177102][T18868] netlink: 'syz.1.4280': attribute type 10 has an invalid length.
[  783.190040][ T7048] wlan1: Trigger new scan to find an IBSS to join
[  783.975710][T18868] veth1_vlan: left allmulticast mode
[  784.106354][ T7032] wlan1: Creating new IBSS network, BSSID 92:e9:32:77:01:5b
[  784.220476][T18881] hsr0: left allmulticast mode
[  784.230727][T18881] hsr_slave_0: left allmulticast mode
[  784.255228][T18881] hsr_slave_1: left allmulticast mode
[  784.280049][T18881] bridge0: port 3(hsr0) entered disabled state
[  784.325124][T18881] bridge_slave_1: left allmulticast mode
[  784.364336][T18881] bridge_slave_1: left promiscuous mode
[  784.375899][T18881] bridge0: port 2(bridge_slave_1) entered disabled state
[  784.462533][T18886] netlink: 'syz.0.4290': attribute type 3 has an invalid length.
[  784.523361][T18886] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4290'.
[  787.249680][T18881] bridge_slave_0: left allmulticast mode
[  787.255389][T18881] bridge_slave_0: left promiscuous mode
[  787.266223][T18881] bridge0: port 1(bridge_slave_0) entered disabled state
[  787.405087][T18889] netlink: 'syz.0.4291': attribute type 2 has an invalid length.
[  787.422347][T18879] netlink: 'syz.3.4287': attribute type 10 has an invalid length.
[  787.422709][T18889] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.4291'.
[  787.437720][T18879] netlink: 2 bytes leftover after parsing attributes in process `syz.3.4287'.
[  787.456909][T18879] hsr0: left allmulticast mode
[  787.461985][T18879] hsr_slave_0: left allmulticast mode
[  787.467659][T18879] hsr_slave_1: left allmulticast mode
[  787.473501][T18879] nr0: port 1(hsr0) entered disabled state
[  792.503718][T18968] netlink: 140 bytes leftover after parsing attributes in process `syz.0.4320'.
[  795.383524][T18978] netlink: 'syz.3.4324': attribute type 4 has an invalid length.
[  795.399583][T18978] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.4324'.
[  795.620531][T18991] netlink: 'syz.3.4330': attribute type 29 has an invalid length.
[  795.629110][T18991] netlink: 'syz.3.4330': attribute type 29 has an invalid length.
[  795.639665][T18991] netlink: 'syz.3.4330': attribute type 29 has an invalid length.
[  797.083287][T19030] netlink: 'syz.0.4344': attribute type 21 has an invalid length.
[  797.099682][T19030] IPv6: NLM_F_CREATE should be specified when creating new route
[  797.344508][T19048] netlink: 'syz.2.4350': attribute type 3 has an invalid length.
[  797.353790][T19048] netlink: 132 bytes leftover after parsing attributes in process `syz.2.4350'.
[  798.161186][T19060] netlink: 202652 bytes leftover after parsing attributes in process `syz.1.4352'.
[  799.214051][T19081] netlink: 'syz.0.4359': attribute type 29 has an invalid length.
[  799.239216][T19081] netlink: 'syz.0.4359': attribute type 29 has an invalid length.
[  799.259579][T19081] netlink: 'syz.0.4359': attribute type 29 has an invalid length.
[  800.869642][ T5778] Bluetooth: hci1: command 0x0406 tx timeout
[  803.631101][T19129] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4376'.
[  804.051072][T19136] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.4377'.
[  804.110913][T19136] bridge_slave_1: default FDB implementation only supports local addresses
[  806.097272][T19138] netlink: 'syz.2.4378': attribute type 10 has an invalid length.
[  806.130901][T19138] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4378'.
[  806.145128][T19138] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  809.037230][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  809.048375][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[  809.844646][T19176] netlink: 156 bytes leftover after parsing attributes in process `syz.2.4391'.
[  809.907445][T19181] netlink: 132 bytes leftover after parsing attributes in process `syz.2.4391'.
[  813.631704][T19218] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4407'.
[  813.688927][ T7032] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  813.897061][ T7032] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  814.035185][ T7032] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  814.111253][ T7048] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  814.157685][ T7032] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  815.197846][ T5778] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  815.229234][ T5778] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  815.243345][ T5778] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  815.251962][ T5778] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  815.270209][ T5778] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  815.277687][ T5778] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  816.228715][T19296] FAULT_INJECTION: forcing a failure.
[  816.228715][T19296] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  816.244296][T19296] CPU: 0 PID: 19296 Comm: syz.1.4434 Not tainted syzkaller #0
[  816.251822][T19296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  816.261930][T19296] Call Trace:
[  816.265258][T19296]  <TASK>
[  816.268239][T19296]  dump_stack_lvl+0x18c/0x250
[  816.272991][T19296]  ? show_regs_print_info+0x20/0x20
[  816.278410][T19296]  ? load_image+0x420/0x420
[  816.282997][T19296]  ? __lock_acquire+0x7d40/0x7d40
[  816.288078][T19296]  ? snprintf+0xe9/0x140
[  816.292375][T19296]  should_fail_ex+0x39d/0x4d0
[  816.297128][T19296]  _copy_to_user+0x2f/0xa0
[  816.301608][T19296]  simple_read_from_buffer+0xe7/0x150
[  816.307047][T19296]  proc_fail_nth_read+0x1e8/0x260
[  816.312235][T19296]  ? proc_fault_inject_write+0x360/0x360
[  816.317940][T19296]  ? fsnotify_perm+0x271/0x5e0
[  816.322774][T19296]  ? proc_fault_inject_write+0x360/0x360
[  816.328487][T19296]  vfs_read+0x28b/0x970
[  816.332703][T19296]  ? kernel_read+0x1e0/0x1e0
[  816.337368][T19296]  ? __fget_files+0x28/0x4b0
[  816.342003][T19296]  ? __fget_files+0x28/0x4b0
[  816.346628][T19296]  ? __fget_files+0x43d/0x4b0
[  816.351348][T19296]  ? __fdget_pos+0x2a3/0x330
[  816.355990][T19296]  ? ksys_read+0x75/0x260
[  816.360357][T19296]  ksys_read+0x150/0x260
[  816.364635][T19296]  ? vfs_write+0x990/0x990
[  816.369083][T19296]  ? lockdep_hardirqs_on+0x98/0x150
[  816.374322][T19296]  do_syscall_64+0x55/0xa0
[  816.378775][T19296]  ? clear_bhb_loop+0x40/0x90
[  816.383484][T19296]  ? clear_bhb_loop+0x40/0x90
[  816.388197][T19296]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  816.394123][T19296] RIP: 0033:0x7efdd235d60e
[  816.398561][T19296] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  816.418200][T19296] RSP: 002b:00007efdd05f5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  816.426648][T19296] RAX: ffffffffffffffda RBX: 00007efdd05f66c0 RCX: 00007efdd235d60e
[  816.434666][T19296] RDX: 000000000000000f RSI: 00007efdd05f60a0 RDI: 0000000000000004
[  816.442676][T19296] RBP: 00007efdd05f6090 R08: 0000000000000000 R09: 0000000000000000
[  816.450685][T19296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  816.458682][T19296] R13: 00007efdd2616038 R14: 00007efdd2615fa0 R15: 00007ffe2ecde3c8
[  816.466698][T19296]  </TASK>
[  816.686064][T19256] chnl_net:caif_netlink_parms(): no params data found
[  816.995692][ T7032] hsr_slave_0: left promiscuous mode
[  817.031294][ T7032] hsr_slave_1: left promiscuous mode
[  817.042304][ T7032] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  817.080662][ T7032] batman_adv: batadv0: Removing interface: batadv_slave_0
[  817.125904][ T7032] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  817.136907][ T7032] batman_adv: batadv0: Removing interface: batadv_slave_1
[  817.249011][ T7032] veth1_macvtap: left promiscuous mode
[  817.255631][ T7032] veth0_macvtap: left promiscuous mode
[  817.263634][ T7032] veth1_vlan: left allmulticast mode
[  817.274732][ T7032] veth1_vlan: left promiscuous mode
[  817.280984][ T7032] veth0_vlan: left promiscuous mode
[  817.351208][ T5778] Bluetooth: hci3: command tx timeout
[  818.524841][T19346] FAULT_INJECTION: forcing a failure.
[  818.524841][T19346] name failslab, interval 1, probability 0, space 0, times 0
[  818.542953][T19346] CPU: 1 PID: 19346 Comm: syz.1.4446 Not tainted syzkaller #0
[  818.550549][T19346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  818.560681][T19346] Call Trace:
[  818.564025][T19346]  <TASK>
[  818.567031][T19346]  dump_stack_lvl+0x18c/0x250
[  818.571799][T19346]  ? sctp_sendmsg+0x1575/0x28c0
[  818.576728][T19346]  ? ___sys_sendmsg+0x2a6/0x360
[  818.581673][T19346]  ? show_regs_print_info+0x20/0x20
[  818.586968][T19346]  ? load_image+0x420/0x420
[  818.591606][T19346]  should_fail_ex+0x39d/0x4d0
[  818.596389][T19346]  should_failslab+0x9/0x20
[  818.600973][T19346]  slab_pre_alloc_hook+0x59/0x310
[  818.606091][T19346]  ? sctp_add_bind_addr+0x8c/0x360
[  818.611287][T19346]  __kmem_cache_alloc_node+0x53/0x250
[  818.616768][T19346]  ? sctp_add_bind_addr+0x8c/0x360
[  818.621968][T19346]  kmalloc_trace+0x2a/0xe0
[  818.626487][T19346]  sctp_add_bind_addr+0x8c/0x360
[  818.631512][T19346]  sctp_copy_local_addr_list+0x315/0x4f0
[  818.637233][T19346]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  818.643037][T19346]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  818.649223][T19346]  ? sctp_v4_is_any+0x35/0x60
[  818.653974][T19346]  ? sctp_copy_one_addr+0x8c/0x350
[  818.659185][T19346]  sctp_bind_addr_copy+0xb3/0x3c0
[  818.664300][T19346]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  818.670725][T19346]  sctp_connect_new_asoc+0x2f9/0x6a0
[  818.676164][T19346]  ? __sctp_connect+0xd80/0xd80
[  818.681092][T19346]  ? __local_bh_enable_ip+0x13a/0x1c0
[  818.686578][T19346]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  818.692222][T19346]  ? security_sctp_bind_connect+0x89/0xb0
[  818.698033][T19346]  sctp_sendmsg+0x1575/0x28c0
[  818.702836][T19346]  ? sctp_getsockopt+0xb60/0xb60
[  818.707881][T19346]  ? aa_sk_perm+0x83c/0x970
[  818.712496][T19346]  ? aa_af_perm+0x330/0x330
[  818.717086][T19346]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  818.723592][T19346]  ? sock_rps_record_flow+0x19/0x3f0
[  818.728968][T19346]  ? inet_sendmsg+0xe9/0x2f0
[  818.733639][T19346]  ? inet_send_prepare+0x260/0x260
[  818.738847][T19346]  ____sys_sendmsg+0x5ba/0x960
[  818.743688][T19346]  ? __lock_acquire+0x7d40/0x7d40
[  818.748827][T19346]  ? __asan_memset+0x22/0x40
[  818.753500][T19346]  ? __sys_sendmsg_sock+0x30/0x30
[  818.758594][T19346]  ? __import_iovec+0x5f2/0x850
[  818.763548][T19346]  ? import_iovec+0x73/0xa0
[  818.768136][T19346]  ___sys_sendmsg+0x2a6/0x360
[  818.772944][T19346]  ? __sys_sendmsg+0x2a0/0x2a0
[  818.777870][T19346]  ? __lock_acquire+0x7d40/0x7d40
[  818.783071][T19346]  __se_sys_sendmsg+0x1c2/0x2b0
[  818.788006][T19346]  ? __x64_sys_sendmsg+0x80/0x80
[  818.793069][T19346]  ? lockdep_hardirqs_on+0x98/0x150
[  818.798352][T19346]  do_syscall_64+0x55/0xa0
[  818.802885][T19346]  ? clear_bhb_loop+0x40/0x90
[  818.807633][T19346]  ? clear_bhb_loop+0x40/0x90
[  818.812387][T19346]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  818.818364][T19346] RIP: 0033:0x7efdd239cdd9
[  818.822856][T19346] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  818.842538][T19346] RSP: 002b:00007efdd05f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  818.851034][T19346] RAX: ffffffffffffffda RBX: 00007efdd2615fa0 RCX: 00007efdd239cdd9
[  818.859083][T19346] RDX: 00000000000040f0 RSI: 0000200000000240 RDI: 0000000000000003
[  818.867127][T19346] RBP: 00007efdd05f6090 R08: 0000000000000000 R09: 0000000000000000
[  818.875169][T19346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  818.883214][T19346] R13: 00007efdd2616038 R14: 00007efdd2615fa0 R15: 00007ffe2ecde3c8
[  818.891299][T19346]  </TASK>
[  819.093072][ T7032] team0 (unregistering): Port device macvlan0 removed
[  819.431509][ T5778] Bluetooth: hci3: command tx timeout
[  819.594664][ T7032] team0 (unregistering): Port device team_slave_1 removed
[  819.654210][ T7032] team0 (unregistering): Port device team_slave_0 removed
[  819.712503][ T7032] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  819.772658][ T7032] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  821.052740][ T7032] bond0 (unregistering): Released all slaves
[  821.297663][T19256] bridge0: port 1(bridge_slave_0) entered blocking state
[  821.337879][T19256] bridge0: port 1(bridge_slave_0) entered disabled state
[  821.378816][T19256] bridge_slave_0: entered allmulticast mode
[  821.414038][T19256] bridge_slave_0: entered promiscuous mode
[  821.426227][T19256] bridge0: port 2(bridge_slave_1) entered blocking state
[  821.435984][T19256] bridge0: port 2(bridge_slave_1) entered disabled state
[  821.443842][T19256] bridge_slave_1: entered allmulticast mode
[  821.467778][T19256] bridge_slave_1: entered promiscuous mode
[  821.513536][ T5778] Bluetooth: hci3: command tx timeout
[  821.551755][T19377] netlink: 'syz.0.4456': attribute type 10 has an invalid length.
[  821.588386][T19377] netlink: 2 bytes leftover after parsing attributes in process `syz.0.4456'.
[  821.599631][T19377] hsr0: entered promiscuous mode
[  821.691060][T19256] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  821.703873][T19256] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  821.793538][T19256] team0: Port device team_slave_0 added
[  821.803992][T19256] team0: Port device team_slave_1 added
[  821.864523][T19256] batman_adv: batadv0: Adding interface: batadv_slave_0
[  821.877381][T19256] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  821.913972][T19256] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  821.935593][T19256] batman_adv: batadv0: Adding interface: batadv_slave_1
[  821.944326][T19256] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  821.975288][T19256] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  822.137648][T19256] hsr_slave_0: entered promiscuous mode
[  822.216023][T19256] hsr_slave_1: entered promiscuous mode
[  823.589664][ T5778] Bluetooth: hci3: command tx timeout
[  829.316225][T19256] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  829.334988][T19256] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  829.346983][T19256] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  829.395042][T19256] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  829.639997][T19256] 8021q: adding VLAN 0 to HW filter on device bond0
[  829.675387][T19256] 8021q: adding VLAN 0 to HW filter on device team0
[  829.712407][ T7037] bridge0: port 1(bridge_slave_0) entered blocking state
[  829.719639][ T7037] bridge0: port 1(bridge_slave_0) entered forwarding state
[  829.762791][ T7037] bridge0: port 2(bridge_slave_1) entered blocking state
[  829.770068][ T7037] bridge0: port 2(bridge_slave_1) entered forwarding state
[  829.916077][T19256] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  830.409078][T19256] 8021q: adding VLAN 0 to HW filter on device batadv0
[  830.498004][T19256] veth0_vlan: entered promiscuous mode
[  830.527628][T19256] veth1_vlan: entered promiscuous mode
[  830.617592][T19256] veth0_macvtap: entered promiscuous mode
[  830.631662][T19256] veth1_macvtap: entered promiscuous mode
[  830.651708][T19256] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  830.666760][T19256] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.692530][T19256] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  830.704579][T19256] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.730496][T19256] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  830.749634][T19256] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.771948][T19256] batman_adv: batadv0: Interface activated: batadv_slave_0
[  830.814321][T19256] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  830.843794][T19256] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.866066][T19256] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  830.888622][T19256] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.908859][T19256] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  830.978394][T19256] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  831.000494][T19256] batman_adv: batadv0: Interface activated: batadv_slave_1
[  831.026666][T19256] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  831.043996][T19256] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  831.054403][T19256] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  831.068667][T19256] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  831.498504][T19489] netlink: 'syz.3.4478': attribute type 10 has an invalid length.
[  831.507735][T19489] netlink: 2 bytes leftover after parsing attributes in process `syz.3.4478'.
[  831.800604][ T7032] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  831.808674][ T7032] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  831.884138][T19502] netlink: 'syz.1.4482': attribute type 10 has an invalid length.
[  831.933993][T19512] netlink: 'syz.0.4484': attribute type 9 has an invalid length.
[  831.952130][ T7032] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  831.961120][T19512] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.4484'.
[  831.970435][ T7032] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  832.147779][T19513] netlink: 'syz.0.4484': attribute type 9 has an invalid length.
[  832.170729][T19513] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.4484'.
[  832.409377][T19520] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4409'.
[  832.548773][T19533] netlink: 'syz.1.4489': attribute type 10 has an invalid length.
[  832.557655][T19533] team0: Device hsr_slave_0 is up. Set it down before adding it as a team port
[  833.121906][T19540] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  833.128858][T19540] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  834.025228][T19568] netlink: 'syz.1.4498': attribute type 33 has an invalid length.
[  834.063166][T19568] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4498'.
[  834.106473][T19568] netlink: 134736 bytes leftover after parsing attributes in process `syz.1.4498'.
[  835.277326][T19598] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  835.283977][T19598] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  835.666638][T19612] netlink: 208064 bytes leftover after parsing attributes in process `syz.2.4509'.
[  835.689730][T19612] netlink: 'syz.2.4509': attribute type 1 has an invalid length.
[  835.710729][T19615] netlink: 208064 bytes leftover after parsing attributes in process `syz.2.4509'.
[  835.741125][T19615] netlink: 'syz.2.4509': attribute type 1 has an invalid length.
[  836.332336][T19630] netlink: 'syz.3.4510': attribute type 10 has an invalid length.
[  836.359535][T19630] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4510'.
[  836.838302][T19648] FAULT_INJECTION: forcing a failure.
[  836.838302][T19648] name failslab, interval 1, probability 0, space 0, times 0
[  836.859623][T19648] CPU: 1 PID: 19648 Comm: syz.2.4515 Not tainted syzkaller #0
[  836.867157][T19648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  836.877250][T19648] Call Trace:
[  836.880569][T19648]  <TASK>
[  836.883529][T19648]  dump_stack_lvl+0x18c/0x250
[  836.888263][T19648]  ? sctp_sendmsg+0x1575/0x28c0
[  836.893158][T19648]  ? ___sys_sendmsg+0x2a6/0x360
[  836.898039][T19648]  ? show_regs_print_info+0x20/0x20
[  836.903277][T19648]  ? load_image+0x420/0x420
[  836.907826][T19648]  should_fail_ex+0x39d/0x4d0
[  836.912554][T19648]  should_failslab+0x9/0x20
[  836.917094][T19648]  slab_pre_alloc_hook+0x59/0x310
[  836.922159][T19648]  ? sctp_add_bind_addr+0x8c/0x360
[  836.927312][T19648]  __kmem_cache_alloc_node+0x53/0x250
[  836.932735][T19648]  ? sctp_add_bind_addr+0x8c/0x360
[  836.937894][T19648]  kmalloc_trace+0x2a/0xe0
[  836.942346][T19648]  sctp_add_bind_addr+0x8c/0x360
[  836.947342][T19648]  sctp_copy_local_addr_list+0x315/0x4f0
[  836.952999][T19648]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  836.958744][T19648]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  836.964834][T19648]  ? sctp_v4_is_any+0x35/0x60
[  836.969536][T19648]  ? sctp_copy_one_addr+0x8c/0x350
[  836.974678][T19648]  sctp_bind_addr_copy+0xb3/0x3c0
[  836.979729][T19648]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  836.986082][T19648]  sctp_connect_new_asoc+0x2f9/0x6a0
[  836.991396][T19648]  ? __sctp_connect+0xd80/0xd80
[  836.996268][T19648]  ? __local_bh_enable_ip+0x13a/0x1c0
[  837.001669][T19648]  ? _local_bh_enable+0xa0/0xa0
[  837.006544][T19648]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  837.012383][T19648]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  837.018281][T19648]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  837.023905][T19648]  ? security_sctp_bind_connect+0x89/0xb0
[  837.029667][T19648]  sctp_sendmsg+0x1575/0x28c0
[  837.034393][T19648]  ? sctp_getsockopt+0xb60/0xb60
[  837.039403][T19648]  ? aa_sk_perm+0x83c/0x970
[  837.043952][T19648]  ? aa_af_perm+0x330/0x330
[  837.048484][T19648]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  837.054953][T19648]  ? sock_rps_record_flow+0x19/0x3f0
[  837.060276][T19648]  ? inet_sendmsg+0x7c/0x2f0
[  837.064899][T19648]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  837.070209][T19648]  ? security_socket_sendmsg+0x80/0xa0
[  837.075707][T19648]  ? inet_send_prepare+0x260/0x260
[  837.080859][T19648]  ____sys_sendmsg+0x5ba/0x960
[  837.085665][T19648]  ? __lock_acquire+0x7d40/0x7d40
[  837.090737][T19648]  ? __asan_memset+0x22/0x40
[  837.095360][T19648]  ? __sys_sendmsg_sock+0x30/0x30
[  837.100402][T19648]  ? __import_iovec+0x5f2/0x850
[  837.105277][T19648]  ? import_iovec+0x73/0xa0
[  837.109799][T19648]  ___sys_sendmsg+0x2a6/0x360
[  837.114508][T19648]  ? get_pid_task+0x20/0x1e0
[  837.119130][T19648]  ? __sys_sendmsg+0x2a0/0x2a0
[  837.123933][T19648]  ? __lock_acquire+0x7d40/0x7d40
[  837.129025][T19648]  __se_sys_sendmsg+0x1c2/0x2b0
[  837.133903][T19648]  ? __x64_sys_sendmsg+0x80/0x80
[  837.138934][T19648]  ? lockdep_hardirqs_on+0x98/0x150
[  837.144181][T19648]  do_syscall_64+0x55/0xa0
[  837.148630][T19648]  ? clear_bhb_loop+0x40/0x90
[  837.153338][T19648]  ? clear_bhb_loop+0x40/0x90
[  837.158064][T19648]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  837.164090][T19648] RIP: 0033:0x7fd6b459cdd9
[  837.168548][T19648] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  837.188202][T19648] RSP: 002b:00007fd6b5419028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  837.196656][T19648] RAX: ffffffffffffffda RBX: 00007fd6b4815fa0 RCX: 00007fd6b459cdd9
[  837.204665][T19648] RDX: 00000000000080d1 RSI: 0000200000000140 RDI: 0000000000000003
[  837.212675][T19648] RBP: 00007fd6b5419090 R08: 0000000000000000 R09: 0000000000000000
[  837.220671][T19648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  837.228666][T19648] R13: 00007fd6b4816038 R14: 00007fd6b4815fa0 R15: 00007ffe71703528
[  837.236686][T19648]  </TASK>
[  837.268550][T19651] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4513'.
[  837.374313][T19652] netlink: 'syz.0.4516': attribute type 39 has an invalid length.
[  837.533195][T19661] FAULT_INJECTION: forcing a failure.
[  837.533195][T19661] name failslab, interval 1, probability 0, space 0, times 0
[  837.558516][T19661] CPU: 0 PID: 19661 Comm: syz.2.4518 Not tainted syzkaller #0
[  837.566055][T19661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  837.576169][T19661] Call Trace:
[  837.579488][T19661]  <TASK>
[  837.582458][T19661]  dump_stack_lvl+0x18c/0x250
[  837.587196][T19661]  ? show_regs_print_info+0x20/0x20
[  837.592457][T19661]  ? load_image+0x420/0x420
[  837.597019][T19661]  ? __might_sleep+0xe0/0xe0
[  837.601672][T19661]  ? __lock_acquire+0x7d40/0x7d40
[  837.606758][T19661]  should_fail_ex+0x39d/0x4d0
[  837.611516][T19661]  should_failslab+0x9/0x20
[  837.616087][T19661]  slab_pre_alloc_hook+0x59/0x310
[  837.621180][T19661]  kmem_cache_alloc+0x5a/0x2d0
[  837.626000][T19661]  ? skb_clone+0x1eb/0x370
[  837.630465][T19661]  skb_clone+0x1eb/0x370
[  837.634763][T19661]  ? pfkey_broadcast_one+0x7d/0x340
[  837.640020][T19661]  pfkey_broadcast_one+0x9b/0x340
[  837.645100][T19661]  ? pfkey_broadcast+0x39c/0x3e0
[  837.650186][T19661]  pfkey_broadcast+0x3a9/0x3e0
[  837.654998][T19661]  ? pfkey_broadcast+0x48/0x3e0
[  837.659920][T19661]  pfkey_sendmsg+0xe92/0x10e0
[  837.664700][T19661]  ? __lock_acquire+0x1273/0x7d40
[  837.669784][T19661]  ? pfkey_release+0x320/0x320
[  837.674625][T19661]  ? aa_sock_msg_perm+0x94/0x150
[  837.679621][T19661]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  837.684994][T19661]  ? security_socket_sendmsg+0x80/0xa0
[  837.690556][T19661]  ? pfkey_release+0x320/0x320
[  837.695366][T19661]  ____sys_sendmsg+0x5ba/0x960
[  837.700192][T19661]  ? __asan_memset+0x22/0x40
[  837.704847][T19661]  ? __sys_sendmsg_sock+0x30/0x30
[  837.709924][T19661]  ? __import_iovec+0x5f2/0x850
[  837.714845][T19661]  ? import_iovec+0x73/0xa0
[  837.719404][T19661]  ___sys_sendmsg+0x2a6/0x360
[  837.724158][T19661]  ? __sys_sendmsg+0x2a0/0x2a0
[  837.729024][T19661]  ? __lock_acquire+0x7d40/0x7d40
[  837.734134][T19661]  __se_sys_sendmsg+0x1c2/0x2b0
[  837.739067][T19661]  ? __x64_sys_sendmsg+0x80/0x80
[  837.744094][T19661]  ? lockdep_hardirqs_on+0x98/0x150
[  837.749361][T19661]  do_syscall_64+0x55/0xa0
[  837.753839][T19661]  ? clear_bhb_loop+0x40/0x90
[  837.758576][T19661]  ? clear_bhb_loop+0x40/0x90
[  837.763334][T19661]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  837.769282][T19661] RIP: 0033:0x7fd6b459cdd9
[  837.773745][T19661] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  837.793402][T19661] RSP: 002b:00007fd6b5419028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  837.801871][T19661] RAX: ffffffffffffffda RBX: 00007fd6b4815fa0 RCX: 00007fd6b459cdd9
[  837.809896][T19661] RDX: 0000000000000000 RSI: 0000200000003780 RDI: 0000000000000004
[  837.817912][T19661] RBP: 00007fd6b5419090 R08: 0000000000000000 R09: 0000000000000000
[  837.825928][T19661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  837.833960][T19661] R13: 00007fd6b4816038 R14: 00007fd6b4815fa0 R15: 00007ffe71703528
[  837.842035][T19661]  </TASK>
[  838.216302][T19679] netlink: 14975 bytes leftover after parsing attributes in process `syz.3.4525'.
[  838.326407][T19683] netlink: 6 bytes leftover after parsing attributes in process `syz.3.4529'.
[  838.336309][T19683] openvswitch: netlink: Flow key attr not present in new flow.
[  838.392845][T19686] netlink: 10 bytes leftover after parsing attributes in process `syz.0.4527'.
[  838.680613][T19698] netlink: 'syz.3.4533': attribute type 33 has an invalid length.
[  838.700359][T19698] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4533'.
[  839.520535][T19721] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.4540'.
[  839.542714][T19721] bridge_slave_1: default FDB implementation only supports local addresses
[  839.602517][T19724] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4543'.
[  839.924388][T19728] netlink: 'syz.1.4541': attribute type 10 has an invalid length.
[  839.949744][T19728] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4541'.
[  840.609014][T19748] netlink: 830 bytes leftover after parsing attributes in process `syz.3.4550'.
[  841.795359][T19754] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4553'.
[  842.196325][T19776] netlink: 'syz.0.4561': attribute type 10 has an invalid length.
[  842.213289][T19776] batman_adv: batadv0: Adding interface: veth1_virt_wifi
[  842.242924][T19776] batman_adv: batadv0: The MTU of interface veth1_virt_wifi is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  842.308531][T19776] batman_adv: batadv0: Interface activated: veth1_virt_wifi
[  842.837911][T19791] delete_channel: no stack
[  842.852598][T19791] delete_channel: no stack
[  845.024532][T19812] FAULT_INJECTION: forcing a failure.
[  845.024532][T19812] name failslab, interval 1, probability 0, space 0, times 0
[  845.079940][T19812] CPU: 1 PID: 19812 Comm: syz.1.4575 Not tainted syzkaller #0
[  845.087473][T19812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  845.097577][T19812] Call Trace:
[  845.100906][T19812]  <TASK>
[  845.103881][T19812]  dump_stack_lvl+0x18c/0x250
[  845.108622][T19812]  ? sctp_sendmsg+0x1575/0x28c0
[  845.113519][T19812]  ? ___sys_sendmsg+0x2a6/0x360
[  845.118420][T19812]  ? show_regs_print_info+0x20/0x20
[  845.123698][T19812]  ? load_image+0x420/0x420
[  845.128294][T19812]  should_fail_ex+0x39d/0x4d0
[  845.133044][T19812]  should_failslab+0x9/0x20
[  845.137608][T19812]  slab_pre_alloc_hook+0x59/0x310
[  845.142704][T19812]  ? sctp_add_bind_addr+0x8c/0x360
[  845.147878][T19812]  __kmem_cache_alloc_node+0x53/0x250
[  845.153322][T19812]  ? sctp_add_bind_addr+0x8c/0x360
[  845.158574][T19812]  kmalloc_trace+0x2a/0xe0
[  845.163047][T19812]  sctp_add_bind_addr+0x8c/0x360
[  845.168043][T19812]  sctp_copy_local_addr_list+0x315/0x4f0
[  845.173737][T19812]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  845.179500][T19812]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  845.185617][T19812]  ? sctp_v4_is_any+0x35/0x60
[  845.190342][T19812]  ? sctp_copy_one_addr+0x8c/0x350
[  845.195534][T19812]  sctp_bind_addr_copy+0xb3/0x3c0
[  845.200610][T19812]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  845.207006][T19812]  sctp_connect_new_asoc+0x2f9/0x6a0
[  845.212360][T19812]  ? __sctp_connect+0xd80/0xd80
[  845.217257][T19812]  ? __local_bh_enable_ip+0x13a/0x1c0
[  845.222687][T19812]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  845.228309][T19812]  ? security_sctp_bind_connect+0x89/0xb0
[  845.234101][T19812]  sctp_sendmsg+0x1575/0x28c0
[  845.238840][T19812]  ? sctp_getsockopt+0xb60/0xb60
[  845.243834][T19812]  ? aa_sk_perm+0x83c/0x970
[  845.248401][T19812]  ? aa_af_perm+0x330/0x330
[  845.252960][T19812]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  845.259518][T19812]  ? sock_rps_record_flow+0x19/0x3f0
[  845.264857][T19812]  ? inet_sendmsg+0xe9/0x2f0
[  845.269510][T19812]  ? inet_send_prepare+0x260/0x260
[  845.274718][T19812]  ____sys_sendmsg+0x5ba/0x960
[  845.279536][T19812]  ? __lock_acquire+0x7d40/0x7d40
[  845.284617][T19812]  ? __sys_sendmsg_sock+0x30/0x30
[  845.289773][T19812]  ? __import_iovec+0x5f2/0x850
[  845.294708][T19812]  ? import_iovec+0x73/0xa0
[  845.299258][T19812]  ___sys_sendmsg+0x2a6/0x360
[  845.303981][T19812]  ? get_pid_task+0x20/0x1e0
[  845.308641][T19812]  ? __sys_sendmsg+0x2a0/0x2a0
[  845.313483][T19812]  ? __lock_acquire+0x7d40/0x7d40
[  845.318583][T19812]  __se_sys_sendmsg+0x1c2/0x2b0
[  845.323480][T19812]  ? __x64_sys_sendmsg+0x80/0x80
[  845.328490][T19812]  ? lockdep_hardirqs_on+0x98/0x150
[  845.333741][T19812]  do_syscall_64+0x55/0xa0
[  845.338192][T19812]  ? clear_bhb_loop+0x40/0x90
[  845.342915][T19812]  ? clear_bhb_loop+0x40/0x90
[  845.347671][T19812]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  845.353623][T19812] RIP: 0033:0x7efdd239cdd9
[  845.358101][T19812] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  845.377760][T19812] RSP: 002b:00007efdd05f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  845.386226][T19812] RAX: ffffffffffffffda RBX: 00007efdd2615fa0 RCX: 00007efdd239cdd9
[  845.394251][T19812] RDX: 000000000000088c RSI: 0000200000004bc0 RDI: 0000000000000004
[  845.402283][T19812] RBP: 00007efdd05f6090 R08: 0000000000000000 R09: 0000000000000000
[  845.410304][T19812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  845.418330][T19812] R13: 00007efdd2616038 R14: 00007efdd2615fa0 R15: 00007ffe2ecde3c8
[  845.426366][T19812]  </TASK>
[  846.114434][T19810] __nla_validate_parse: 1 callbacks suppressed
[  846.114477][T19810] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.4573'.
[  846.377093][T19810] debugfs: Directory '!!ô' with parent 'ieee80211' already present!
[  846.691066][T19845] netlink: 'syz.2.4587': attribute type 15 has an invalid length.
[  846.717123][T19841] netlink: 668 bytes leftover after parsing attributes in process `syz.3.4586'.
[  846.748208][T19841] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  846.779419][T19841] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  847.052645][T19849] netlink: 201392 bytes leftover after parsing attributes in process `syz.2.4589'.
[  847.083423][T19849] netlink: zone id is out of range
[  847.100627][T19849] netlink: zone id is out of range
[  847.111865][T19849] netlink: zone id is out of range
[  847.118812][T19849] netlink: zone id is out of range
[  847.175499][T19849] netlink: zone id is out of range
[  847.200940][T19849] netlink: zone id is out of range
[  847.206583][T19849] netlink: zone id is out of range
[  847.215180][T19849] netlink: zone id is out of range
[  847.867334][T19873] netlink: 'syz.3.4598': attribute type 2 has an invalid length.
[  847.967055][T19873] netlink: 164 bytes leftover after parsing attributes in process `syz.3.4598'.
[  848.901348][T19888] delete_channel: no stack
[  848.913433][T19888] delete_channel: no stack
[  848.958468][T19885] netlink: 201392 bytes leftover after parsing attributes in process `syz.3.4603'.
[  849.141979][T19865] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4594'.
[  849.327199][T19865] debugfs: Directory '!!ô' with parent 'ieee80211' already present!
[  849.591911][T19904] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4610'.
[  850.433181][T19922] netlink: 201392 bytes leftover after parsing attributes in process `syz.1.4616'.
[  850.652475][T19929] netlink: 60 bytes leftover after parsing attributes in process `syz.0.4627'.
[  850.692274][T19931] delete_channel: no stack
[  850.697421][T19931] delete_channel: no stack
[  850.946378][T19939] netlink: 14 bytes leftover after parsing attributes in process `syz.0.4623'.
[  853.746700][T19939] team0: Port device team_slave_0 removed
[  853.844053][T19951] netlink: 'syz.2.4628': attribute type 1 has an invalid length.
[  853.852867][T19951] netlink: 'syz.2.4628': attribute type 3 has an invalid length.
[  853.907794][T19951] netlink: 132 bytes leftover after parsing attributes in process `syz.2.4628'.
[  854.046568][T19959] dvmrp1: tun_chr_ioctl cmd 1074025677
[  854.057585][T19959] dvmrp1: linktype set to 823
[  855.363696][T20000] mac80211_hwsim hwsim62 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  855.497434][T20005] FAULT_INJECTION: forcing a failure.
[  855.497434][T20005] name failslab, interval 1, probability 0, space 0, times 0
[  855.519931][T20005] CPU: 1 PID: 20005 Comm: syz.3.4648 Not tainted syzkaller #0
[  855.527556][T20005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  855.537661][T20005] Call Trace:
[  855.540969][T20005]  <TASK>
[  855.543931][T20005]  dump_stack_lvl+0x18c/0x250
[  855.548657][T20005]  ? sctp_sendmsg+0x1575/0x28c0
[  855.553543][T20005]  ? ___sys_sendmsg+0x2a6/0x360
[  855.558450][T20005]  ? show_regs_print_info+0x20/0x20
[  855.563688][T20005]  ? load_image+0x420/0x420
[  855.568241][T20005]  should_fail_ex+0x39d/0x4d0
[  855.572962][T20005]  should_failslab+0x9/0x20
[  855.577505][T20005]  slab_pre_alloc_hook+0x59/0x310
[  855.582581][T20005]  ? sctp_add_bind_addr+0x8c/0x360
[  855.587721][T20005]  __kmem_cache_alloc_node+0x53/0x250
[  855.593134][T20005]  ? sctp_add_bind_addr+0x8c/0x360
[  855.598270][T20005]  kmalloc_trace+0x2a/0xe0
[  855.602720][T20005]  sctp_add_bind_addr+0x8c/0x360
[  855.607697][T20005]  sctp_copy_local_addr_list+0x315/0x4f0
[  855.613360][T20005]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  855.619115][T20005]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  855.625207][T20005]  ? sctp_v4_is_any+0x35/0x60
[  855.629905][T20005]  ? sctp_copy_one_addr+0x8c/0x350
[  855.635076][T20005]  sctp_bind_addr_copy+0xb3/0x3c0
[  855.640137][T20005]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  855.646506][T20005]  sctp_connect_new_asoc+0x2f9/0x6a0
[  855.651831][T20005]  ? __sctp_connect+0xd80/0xd80
[  855.656718][T20005]  ? __local_bh_enable_ip+0x13a/0x1c0
[  855.662142][T20005]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  855.667724][T20005]  ? security_sctp_bind_connect+0x89/0xb0
[  855.673483][T20005]  sctp_sendmsg+0x1575/0x28c0
[  855.678212][T20005]  ? sctp_getsockopt+0xb60/0xb60
[  855.683197][T20005]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  855.689385][T20005]  ? lockdep_hardirqs_on+0x98/0x150
[  855.694631][T20005]  ? inet_sendmsg+0x18a/0x2f0
[  855.699345][T20005]  ? inet_sendmsg+0xe9/0x2f0
[  855.703976][T20005]  ? inet_send_prepare+0x260/0x260
[  855.709124][T20005]  ____sys_sendmsg+0x5ba/0x960
[  855.713921][T20005]  ? __lock_acquire+0x7d40/0x7d40
[  855.718982][T20005]  ? __asan_memset+0x22/0x40
[  855.723604][T20005]  ? __sys_sendmsg_sock+0x30/0x30
[  855.728658][T20005]  ? __import_iovec+0x5f2/0x850
[  855.733540][T20005]  ? import_iovec+0x73/0xa0
[  855.738068][T20005]  ___sys_sendmsg+0x2a6/0x360
[  855.742789][T20005]  ? __sys_sendmsg+0x2a0/0x2a0
[  855.747624][T20005]  __se_sys_sendmsg+0x1c2/0x2b0
[  855.752508][T20005]  ? __x64_sys_sendmsg+0x80/0x80
[  855.757488][T20005]  ? syscall_enter_from_user_mode+0x2e/0x80
[  855.763418][T20005]  do_syscall_64+0x55/0xa0
[  855.767859][T20005]  ? clear_bhb_loop+0x40/0x90
[  855.772571][T20005]  ? clear_bhb_loop+0x40/0x90
[  855.777283][T20005]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  855.783214][T20005] RIP: 0033:0x7fe5d239cdd9
[  855.787664][T20005] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  855.807304][T20005] RSP: 002b:00007fe5d31ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  855.815795][T20005] RAX: ffffffffffffffda RBX: 00007fe5d2615fa0 RCX: 00007fe5d239cdd9
[  855.823828][T20005] RDX: 0000000004000810 RSI: 0000200000000980 RDI: 0000000000000005
[  855.831831][T20005] RBP: 00007fe5d31ef090 R08: 0000000000000000 R09: 0000000000000000
[  855.839873][T20005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  855.847874][T20005] R13: 00007fe5d2616038 R14: 00007fe5d2615fa0 R15: 00007ffc0a387888
[  855.855989][T20005]  </TASK>
[  855.947415][T20010] netlink: 64859 bytes leftover after parsing attributes in process `syz.0.4649'.
[  856.054008][T20012] netlink: 'syz.1.4650': attribute type 10 has an invalid length.
[  856.062493][T20012] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4650'.
[  856.078326][T20012] net_ratelimit: 58 callbacks suppressed
[  856.078343][T20012] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  859.279865][ T7044] wlan1: Trigger new scan to find an IBSS to join
[  859.500657][T20036] netlink: 'syz.0.4659': attribute type 21 has an invalid length.
[  859.514876][T20036] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4659'.
[  859.538932][T20036] netlink: 60 bytes leftover after parsing attributes in process `syz.0.4659'.
[  859.747320][T20047] netlink: 64859 bytes leftover after parsing attributes in process `syz.3.4663'.
[  859.925468][T20054] mac80211_hwsim hwsim61 wlan0: entered promiscuous mode
[  859.940896][T20054] mac80211_hwsim hwsim61 wlan0: entered allmulticast mode
[  859.953421][T20053] netlink: 'syz.0.4666': attribute type 33 has an invalid length.
[  859.964326][T20053] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4666'.
[  860.458375][T20070] syzkaller0: entered promiscuous mode
[  860.479524][T20070] syzkaller0: entered allmulticast mode
[  860.514497][T20072] netlink: 'syz.3.4673': attribute type 21 has an invalid length.
[  860.539557][T20072] netlink: 'syz.3.4673': attribute type 10 has an invalid length.
[  860.554332][T20072] netlink: 13070 bytes leftover after parsing attributes in process `syz.3.4673'.
[  860.691494][T20081] netlink: 9275 bytes leftover after parsing attributes in process `syz.2.4676'.
[  860.831547][T20089] netlink: 64859 bytes leftover after parsing attributes in process `syz.2.4678'.
[  862.229928][ T7062] wlan1: Trigger new scan to find an IBSS to join
[  863.160054][ T7044] wlan1: Creating new IBSS network, BSSID f6:e7:ba:ce:5d:c2
[  863.211027][T20121] netlink: 'syz.3.4691': attribute type 2 has an invalid length.
[  863.239632][T20121] netlink: 'syz.3.4691': attribute type 1 has an invalid length.
[  863.247586][T20121] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4691'.
[  864.052977][T20135] netlink: 'syz.3.4697': attribute type 10 has an invalid length.
[  864.099718][T20135] netlink: 156 bytes leftover after parsing attributes in process `syz.3.4697'.
[  866.931103][T20154] FAULT_INJECTION: forcing a failure.
[  866.931103][T20154] name failslab, interval 1, probability 0, space 0, times 0
[  866.948758][T20154] CPU: 0 PID: 20154 Comm: syz.0.4704 Not tainted syzkaller #0
[  866.956286][T20154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  866.966398][T20154] Call Trace:
[  866.969720][T20154]  <TASK>
[  866.972895][T20154]  dump_stack_lvl+0x18c/0x250
[  866.977641][T20154]  ? show_regs_print_info+0x20/0x20
[  866.982902][T20154]  ? load_image+0x420/0x420
[  866.987474][T20154]  ? __might_sleep+0xe0/0xe0
[  866.992156][T20154]  ? __lock_acquire+0x7d40/0x7d40
[  866.997240][T20154]  should_fail_ex+0x39d/0x4d0
[  867.001983][T20154]  should_failslab+0x9/0x20
[  867.006542][T20154]  slab_pre_alloc_hook+0x59/0x310
[  867.011633][T20154]  ? kvmalloc_node+0x70/0x180
[  867.016365][T20154]  ? kvmalloc_node+0x70/0x180
[  867.021082][T20154]  __kmem_cache_alloc_node+0x53/0x250
[  867.026525][T20154]  ? kvmalloc_node+0x70/0x180
[  867.031254][T20154]  __kmalloc_node+0xa4/0x230
[  867.035903][T20154]  kvmalloc_node+0x70/0x180
[  867.040468][T20154]  page_pool_create+0x1eb/0x5c0
[  867.045372][T20154]  bpf_test_run_xdp_live+0x203/0x1b20
[  867.050817][T20154]  ? verify_lock_unused+0x140/0x140
[  867.056070][T20154]  ? kasan_set_track+0x4e/0x70
[  867.060881][T20154]  ? __kasan_kmalloc+0x8f/0xa0
[  867.065701][T20154]  ? __kmalloc+0xb4/0x230
[  867.070097][T20154]  ? bpf_test_init+0x9f/0x140
[  867.074809][T20154]  ? bpf_prog_test_run+0x321/0x390
[  867.079965][T20154]  ? __sys_bpf+0x49d/0x890
[  867.084440][T20154]  ? __x64_sys_bpf+0x7c/0x90
[  867.089143][T20154]  ? do_syscall_64+0x55/0xa0
[  867.093802][T20154]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  867.099946][T20154]  ? xdp_convert_md_to_buff+0x330/0x330
[  867.105742][T20154]  ? __lock_acquire+0x7d40/0x7d40
[  867.110829][T20154]  ? __virt_addr_valid+0x18c/0x540
[  867.115999][T20154]  ? trace_raw_output_bpf_test_finish+0xd0/0xd0
[  867.122284][T20154]  ? _copy_from_user+0xa5/0xe0
[  867.127122][T20154]  ? bpf_test_init+0x119/0x140
[  867.131935][T20154]  ? xdp_convert_md_to_buff+0x5b/0x330
[  867.137449][T20154]  bpf_prog_test_run_xdp+0x7ca/0x10e0
[  867.142886][T20154]  ? dev_put+0x80/0x80
[  867.147032][T20154]  ? dev_put+0x80/0x80
[  867.151162][T20154]  bpf_prog_test_run+0x321/0x390
[  867.156262][T20154]  __sys_bpf+0x49d/0x890
[  867.160583][T20154]  ? bpf_link_show_fdinfo+0x390/0x390
[  867.166008][T20154]  ? lock_chain_count+0x20/0x20
[  867.170923][T20154]  __x64_sys_bpf+0x7c/0x90
[  867.175384][T20154]  do_syscall_64+0x55/0xa0
[  867.179850][T20154]  ? clear_bhb_loop+0x40/0x90
[  867.184573][T20154]  ? clear_bhb_loop+0x40/0x90
[  867.189294][T20154]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  867.195238][T20154] RIP: 0033:0x7f8bc699cdd9
[  867.199698][T20154] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  867.219346][T20154] RSP: 002b:00007f8bc77c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  867.227803][T20154] RAX: ffffffffffffffda RBX: 00007f8bc6c15fa0 RCX: 00007f8bc699cdd9
[  867.235813][T20154] RDX: 0000000000000050 RSI: 0000200000000340 RDI: 000000000000000a
[  867.243822][T20154] RBP: 00007f8bc77c6090 R08: 0000000000000000 R09: 0000000000000000
[  867.251828][T20154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  867.259846][T20154] R13: 00007f8bc6c16038 R14: 00007f8bc6c15fa0 R15: 00007ffcee407008
[  867.267884][T20154]  </TASK>
[  867.324395][T20154] page_pool_create() gave up with errno -12
[  867.547780][T20164] netlink: 'syz.1.4707': attribute type 64 has an invalid length.
[  869.508435][T20232] netlink: 'syz.0.4733': attribute type 10 has an invalid length.
[  869.529571][T20232] netlink: 2 bytes leftover after parsing attributes in process `syz.0.4733'.
[  869.982291][T20249] netlink: 'syz.3.4743': attribute type 5 has an invalid length.
[  895.431718][   T49] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  926.969571][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  926.975950][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[  939.119591][ T5778] Bluetooth: hci3: command 0x0406 tx timeout
[  975.209452][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  975.216192][    C1] rcu: 	1-....: (10458 ticks this GP) idle=bb5c/1/0x4000000000000000 softirq=79839/79839 fqs=5239
[  975.227803][    C1] rcu: 	         hardirqs   softirqs   csw/system
[  975.234244][    C1] rcu: 	 number:  1254747          0            0
[  975.240683][    C1] rcu: 	cputime:    18024      34455           69   ==> 52490(ms)
[  975.248533][    C1] rcu: 	(t=10501 jiffies g=105461 q=454 ncpus=2)
[  975.254902][    C1] CPU: 1 PID: 20256 Comm: syz.1.4741 Not tainted syzkaller #0
[  975.262399][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  975.272501][    C1] RIP: 0010:native_apic_msr_write+0x39/0x50
[  975.278446][    C1] Code: 74 2a 83 ff 30 74 25 eb 10 81 ff d0 00 00 00 74 1b 81 ff e0 00 00 00 74 13 c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <66> 90 c3 89 f6 31 d2 e9 7b f8 23 03 66 2e 0f 1f 84 00 00 00 00 00
[  975.298089][    C1] RSP: 0018:ffffc900001f0638 EFLAGS: 00000246
[  975.304190][    C1] RAX: 00000000000000f6 RBX: 0000000000000200 RCX: 000000000000083f
[  975.312194][    C1] RDX: 0000000000000000 RSI: 00000000000000f6 RDI: 000000000000083f
[  975.320206][    C1] RBP: 0000000000000000 R08: ffffc900001f05a7 R09: 1ffff9200003e0b4
[  975.328211][    C1] R10: dffffc0000000000 R11: fffff5200003e0b5 R12: 0000000000000001
[  975.336216][    C1] R13: 0000000000000001 R14: ffffffff8d22e3e8 R15: 0000000000000020
[  975.344221][    C1] FS:  00007efdd05d56c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  975.353181][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  975.359814][    C1] CR2: 00007fd6b534da08 CR3: 000000007effa000 CR4: 00000000003506e0
[  975.367828][    C1] DR0: 0000000000000000 DR1: 0000200000000300 DR2: 0000000000000000
[  975.375827][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  975.383829][    C1] Call Trace:
[  975.387158][    C1]  <IRQ>
[  975.390029][    C1]  arch_irq_work_raise+0x68/0x70
[  975.395015][    C1]  irq_work_queue+0x99/0x140
[  975.399639][    C1]  __kfence_alloc+0x2a0/0x3d0
[  975.404361][    C1]  ? __stack_depot_save+0x1f/0x630
[  975.409519][    C1]  ? kfence_guarded_free+0x4b0/0x4b0
[  975.414855][    C1]  ? kasan_set_track+0x5f/0x70
[  975.419647][    C1]  ? kasan_set_track+0x4e/0x70
[  975.424438][    C1]  ? __kasan_slab_alloc+0x6c/0x80
[  975.429508][    C1]  ? slab_post_alloc_hook+0x6e/0x4b0
[  975.434828][    C1]  ? kmem_cache_alloc_node+0x14c/0x320
[  975.440315][    C1]  ? __alloc_skb+0x103/0x2c0
[  975.444932][    C1]  ? ndisc_alloc_skb+0xa6/0x450
[  975.449808][    C1]  ? ndisc_send_rs+0x2a6/0x610
[  975.454596][    C1]  ? addrconf_rs_timer+0x2d5/0x630
[  975.459734][    C1]  ? call_timer_fn+0x189/0x540
[  975.464521][    C1]  ? __run_timers+0x542/0x800
[  975.469222][    C1]  ? run_timer_softirq+0x67/0xf0
[  975.474175][    C1]  ? handle_softirqs+0x280/0x820
[  975.479134][    C1]  ? __irq_exit_rcu+0xd3/0x190
[  975.483917][    C1]  ? irq_exit_rcu+0x9/0x20
[  975.488457][    C1]  ? sysvec_apic_timer_interrupt+0xa4/0xc0
[  975.494309][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  975.500488][    C1]  ? _raw_spin_unlock_irqrestore+0xc0/0x120
[  975.506442][    C1]  ? __unfreeze_partials+0x190/0x210
[  975.511759][    C1]  ? put_cpu_partial+0x17c/0x250
[  975.516717][    C1]  ? __slab_free+0x319/0x400
[  975.521332][    C1]  ? qlist_free_all+0x75/0xd0
[  975.526036][    C1]  ? kasan_quarantine_reduce+0x143/0x160
[  975.531706][    C1]  ? __kasan_slab_alloc+0x22/0x80
[  975.536759][    C1]  ? slab_post_alloc_hook+0x6e/0x4b0
[  975.542085][    C1]  ? kmem_cache_alloc_lru+0x111/0x2d0
[  975.547484][    C1]  ? sock_alloc_inode+0x28/0xc0
[  975.552366][    C1]  ? new_inode_pseudo+0x63/0x1d0
[  975.557342][    C1]  ? __sock_create+0x12d/0x940
[  975.562136][    C1]  ? __sys_socket+0xd7/0x1a0
[  975.566889][    C1]  ? __x64_sys_socket+0x7a/0x90
[  975.571794][    C1]  ? do_syscall_64+0x55/0xa0
[  975.576422][    C1]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  975.582555][    C1]  ? slab_pre_alloc_hook+0x59/0x310
[  975.587798][    C1]  ? __kasan_slab_alloc+0x6c/0x80
[  975.592859][    C1]  kmem_cache_alloc_node+0x2b4/0x320
[  975.598189][    C1]  ? kmalloc_reserve+0x95/0x240
[  975.603077][    C1]  kmalloc_reserve+0x95/0x240
[  975.607810][    C1]  __alloc_skb+0x138/0x2c0
[  975.612258][    C1]  ndisc_alloc_skb+0xa6/0x450
[  975.617018][    C1]  ndisc_send_rs+0x2a6/0x610
[  975.621652][    C1]  ? ipv6_get_lladdr+0x378/0x3e0
[  975.626652][    C1]  addrconf_rs_timer+0x2d5/0x630
[  975.631627][    C1]  ? addrconf_disable_policy_idev+0x480/0x480
[  975.637728][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  975.643746][    C1]  call_timer_fn+0x189/0x540
[  975.648362][    C1]  ? addrconf_disable_policy_idev+0x480/0x480
[  975.654462][    C1]  ? call_timer_fn+0xd2/0x540
[  975.659183][    C1]  ? __run_timers+0x800/0x800
[  975.663891][    C1]  ? addrconf_disable_policy_idev+0x480/0x480
[  975.669990][    C1]  __run_timers+0x542/0x800
[  975.674533][    C1]  ? detach_timer+0x2b0/0x2b0
[  975.679249][    C1]  run_timer_softirq+0x67/0xf0
[  975.684042][    C1]  handle_softirqs+0x280/0x820
[  975.688830][    C1]  ? __irq_exit_rcu+0xd3/0x190
[  975.693626][    C1]  ? do_softirq+0x1a0/0x1a0
[  975.698166][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  975.703394][    C1]  __irq_exit_rcu+0xd3/0x190
[  975.708008][    C1]  ? irq_exit_rcu+0x20/0x20
[  975.712539][    C1]  irq_exit_rcu+0x9/0x20
[  975.716803][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  975.722471][    C1]  </IRQ>
[  975.725430][    C1]  <TASK>
[  975.728387][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  975.734399][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xc0/0x120
[  975.740935][    C1] Code: c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f7 44 24 20 00 02 00 00 41 c6 04 07 f8 75 4b f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> 0b 74 cc f6 65 8b 05 4c a1 73 75 85 c0 74 3c 48 c7 04 24 0e 36
[  975.760584][    C1] RSP: 0018:ffffc9000475fae0 EFLAGS: 00000206
[  975.766678][    C1] RAX: dffffc0000000004 RBX: 0000000000000a06 RCX: 722658736d199e00
[  975.774677][    C1] RDX: dffffc0000000000 RSI: ffffffff8acac9e0 RDI: 0000000000000001
[  975.782674][    C1] RBP: ffffc9000475fb68 R08: ffffffff911c652f R09: 1ffffffff2238ca5
[  975.790671][    C1] R10: dffffc0000000000 R11: fffffbfff2238ca6 R12: dffffc0000000000
[  975.798678][    C1] R13: 0000000000000000 R14: ffff888017c409c0 R15: 1ffff920008ebf5c
[  975.806885][    C1]  ? _raw_spin_unlock+0x40/0x40
[  975.811786][    C1]  __unfreeze_partials+0x190/0x210
[  975.816930][    C1]  put_cpu_partial+0x17c/0x250
[  975.821754][    C1]  ? put_cpu_partial+0x6e/0x250
[  975.826645][    C1]  __slab_free+0x319/0x400
[  975.831093][    C1]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  975.837019][    C1]  ? _raw_spin_unlock+0x40/0x40
[  975.841900][    C1]  ? __phys_addr+0xba/0x170
[  975.846435][    C1]  qlist_free_all+0x75/0xd0
[  975.850973][    C1]  kasan_quarantine_reduce+0x143/0x160
[  975.856462][    C1]  __kasan_slab_alloc+0x22/0x80
[  975.861346][    C1]  slab_post_alloc_hook+0x6e/0x4b0
[  975.866495][    C1]  kmem_cache_alloc_lru+0x111/0x2d0
[  975.871729][    C1]  ? sock_alloc_inode+0x28/0xc0
[  975.876621][    C1]  sock_alloc_inode+0x28/0xc0
[  975.881333][    C1]  ? sockfs_init_fs_context+0xb0/0xb0
[  975.886736][    C1]  new_inode_pseudo+0x63/0x1d0
[  975.891532][    C1]  __sock_create+0x12d/0x940
[  975.896152][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  975.902350][    C1]  __sys_socket+0xd7/0x1a0
[  975.906807][    C1]  __x64_sys_socket+0x7a/0x90
[  975.911526][    C1]  do_syscall_64+0x55/0xa0
[  975.915969][    C1]  ? clear_bhb_loop+0x40/0x90
[  975.920676][    C1]  ? clear_bhb_loop+0x40/0x90
[  975.925387][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  975.931299][    C1] RIP: 0033:0x7efdd239cdd9
[  975.935761][    C1] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  975.955397][    C1] RSP: 002b:00007efdd05d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  975.963856][    C1] RAX: ffffffffffffffda RBX: 00007efdd2616090 RCX: 00007efdd239cdd9
[  975.971854][    C1] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000010
[  975.979859][    C1] RBP: 00007efdd2432d69 R08: 0000000000000000 R09: 0000000000000000
[  975.987857][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  975.995868][    C1] R13: 00007efdd2616128 R14: 00007efdd2616090 R15: 00007ffe2ecde3c8
[  976.003980][    C1]  </TASK>