last executing test programs:

1m25.857807827s ago: executing program 0 (id=1568):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x1f00, &(0x7f0000001840)=[{&(0x7f0000000580)="6700000011008188040f56ecdb4cb9cca7480ef436000000e3bd6efb440009000e000a0010000000ba80010000005a8c3774fa0af3dc59a933c1e7a6d3361d83b20000319cdf5656826edaaa11032701c61ec666d482078ccebcb9a4f187f7a4e98f09cdc2649f", 0x67}], 0x1, 0x0, 0x1f00}, 0x0)

1m25.818253948s ago: executing program 0 (id=1570):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000006c0)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x11, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000800000000000000000000000850000007d000000b7080000000000007b8af8ff00000000b7080000161300027b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000950000000000000040bba354cba268b81faf008d3823be7cd26184ea048caa606f3f8d9808af551d1d2f3f59298c641b7759fd510ba8fdff49c5f83ef243de992acbe12d5bc5242c48d618ee9440a61e31ae00c9660a81e056983b24ce27212cc5c8ea6bed32cdbe7da4eb6a5f2c0965072b60735188b02c8dc2c45fd456e05a4f8cd75683a26213874cb95d8c69fc1796cdca8d4b35ea0e64a74c0505b061a9e9e237b276724642e5a96202edef00a9e2522d473b71a791aba0c4607c39a427987dc8c297340be1e7d14fae6bba4d"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000003f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20}, 0x15)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_pressure(r2, &(0x7f00000000c0)='cpu.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r3, &(0x7f0000000080)={'full', 0x20, 0x2000000007, 0x20, 0x10000000fffff}, 0x2f)

1m25.798255919s ago: executing program 2 (id=1571):
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10)
socket$kcm(0x28, 0x5, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socket$kcm(0xa, 0x1, 0x106)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
openat$cgroup_freezer_state(0xffffffffffffffff, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x4020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xc, 0x1c, &(0x7f00000005c0)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8000000}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x2, 0x810}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x2, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000000080)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1m25.701694723s ago: executing program 1 (id=1572):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000001d40)={r2, 0xf, 0x25, 0x4, 0x0, 0x0, 0xfffffffd, 0x0, 0xfffffffffffffdb5, 0xffd9, 0x0, 0x0, 0x4, 0x0, 0xc}, 0x27)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={r1, 0x0, 0x0}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x1, 0x800}, 0x28)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r3=>0xffffffffffffffff})
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x10}}], 0x10}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfdef)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r4)
socketpair(0x3, 0x4, 0x86e, &(0x7f00000003c0))
bpf$MAP_CREATE(0x0, &(0x7f0000001c00)=@base={0xb, 0x5, 0x7, 0x9, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x10, 0x4, &(0x7f0000001880)=ANY=[@ANYBLOB="1800000000000000000000000000000071101e000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x18}, 0x94)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080), 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="12000000040000040800"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)

1m25.673233105s ago: executing program 0 (id=1573):
r0 = gettid()
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x8, 0x81, 0x0, 0x0, 0x6, 0x0, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x800, 0x5}, 0x18, 0x10000, 0x0, 0x5, 0x7, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) (async, rerun: 32)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="0105000000fd090000840000000501000cef0000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES16=r0, @ANYRESOCT=r0], 0x48) (rerun: 32)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r2}, 0x38)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000040)={r2, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={<r4=>0xffffffffffffffff}) (async)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x2a, &(0x7f0000000100)=r5, 0x4)
r6 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000780), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x10, 0x17, &(0x7f0000000900)=ANY=[@ANYBLOB="180000007f000000000000009c1c985e18110000", @ANYRES32=r1, @ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x800, 0xc6, &(0x7f0000000680)=""/198, 0x41000, 0xf2b3eb499769a59, '\x00', r3, @fallback, r5, 0x8, &(0x7f0000000100)={0x0, 0x3}, 0x8, 0x10, &(0x7f00000001c0)={0x3, 0x4, 0x0, 0xfffffff9}, 0x10, 0xffffffffffffffff, r6, 0x0, &(0x7f00000007c0)=[r2, r2, r2, r2, r2, r2, r2, r2], 0x0, 0x10, 0x10}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
r7 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0xff, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0xd, 0x9}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x2, 0xffffffffffffffff, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) (async)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f00000008c0), 0x10000, 0x0) (async, rerun: 32)
r9 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000003c0), 0x4) (rerun: 32)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="1b00000000000000000000000600000000000000", @ANYRES32=r2, @ANYBLOB="fc7f00000000000000000000000000000084bd70", @ANYRES32=r3, @ANYRES32=r9, @ANYBLOB="03000000010000000500"/28], 0x50) (async)
ioctl$TUNSETNOCSUM(r8, 0x400454c8, 0x1) (async)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="0100000004000000040000000900000000000000130fe46c1a545c89056e377e8f3a0f6ac349ceed44dfc0d55e8a13b67f2b8968a079c61fc54b66096fd2f79ba653ca1e977e4354bb6497b0609021c2a540cdd3066bed7a7d", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r10}, &(0x7f0000000200), &(0x7f0000000300)}, 0x20) (async)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000400)={r11}, 0xc) (async)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x6, 0x8}, 0x11c, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0xfffffeff}, 0x0, 0xffffffffffbfffff, r7, 0x0) (async)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYRES64=r0], &(0x7f0000000340)='syzkaller\x00', 0x0, 0xfffffffffffffef6}, 0x94) (async, rerun: 32)
socket$kcm(0x11, 0x200000000000002, 0x300) (async, rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94) (async, rerun: 64)
r13 = socket$kcm(0x2, 0xa, 0x0) (rerun: 64)
setsockopt$sock_attach_bpf(r13, 0x1, 0x2e, &(0x7f0000000640)=r6, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[], 0x0}, 0x94) (async)
close(0x3)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r12, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e0ffff200000000021000aac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)

1m25.305801601s ago: executing program 0 (id=1576):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000000280)={&(0x7f0000000100)=@abs, 0x6e, &(0x7f0000000700)=[{&(0x7f00000003c0)=""/155, 0x9b}, {&(0x7f0000000480)=""/178, 0xb2}, {&(0x7f0000000200)=""/30, 0x1e}, {&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f00000005c0)=""/153, 0x99}, {&(0x7f0000000680)=""/97, 0x61}], 0x6}, 0x2000)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0xa, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x5}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x10040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x425, 0x8001}, 0x0, 0x10001, 0x3f, 0x4, 0x0, 0x3, 0x0, 0x0, 0xffffffff, 0x0, 0x9}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080010000000e8fe55a1180015000600142603600e120500211dff000401a8001600a400014020", 0x39}], 0x1}, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[], 0xfe33)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYRES8=r2, @ANYRES32=r2, @ANYRES8=r1], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000080), &(0x7f0000000240)=r4}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r4, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1}, 0x50)

1m24.781706283s ago: executing program 2 (id=1579):
r0 = perf_event_open(&(0x7f00000014c0)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/30], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r2, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x3, 0x4, &(0x7f0000000580)=@framed={{0x18, 0x2, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x200}, [@call={0x85, 0x0, 0x0, 0x30}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r2, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000005c0)={r1, 0xe0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000240)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000300)=[0x0, 0x0], 0x0, 0x89, &(0x7f0000000340)=[{}], 0x8, 0x10, &(0x7f0000000380), &(0x7f0000000440), 0x8, 0xe2, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1b00"/20, @ANYRES32=r0, @ANYBLOB="0010000000000000000021000000000000000000190fce09e60f66157c1dae9decfbbbad6b3158f30d6a647f5a2d74c500a3e4c4407b438085e3e0315d49528ae2addfa7e6638475e8a3fa63acee4b9731c18e426fb2f81f2093801323fc64f1436a763842254a4ba80d137365ae085870d652e234f8db73a073001cea86c20c2297d5b90d4e", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000030000000200"/28], 0x50)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2, 0x2}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x1}]}]}}, 0x0, 0x5a}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x12, 0x4, &(0x7f0000000bc0)=ANY=[@ANYBLOB="180000000000000000000000fcffffff850000004000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @cgroup_sock_addr=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1e, 0x2, 0x0, &(0x7f0000000000))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000100))
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000018110000", @ANYRES32=r3], 0x0, 0x10000002, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="1c0000001d008103e00f80ecdb4cb9f207", 0x11}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000200)=ANY=[], 0xfe33)

1m24.744699535s ago: executing program 1 (id=1580):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100), 0x8)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0a000000040000000600000023"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000b00), &(0x7f0000000300), 0x55, r0}, 0x38)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x13, 0xd, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @func={0x85, 0x0, 0x1, 0x0, 0x5}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x1, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x4}, 0x50)
r4 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, 0xffffffffffffffff)
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r6, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r6, &(0x7f00000000c0)={&(0x7f0000000100)=@ieee802154={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0002}}}, 0x80, &(0x7f0000000480)=[{&(0x7f00000007c0)="27031c0016001400020000000000000006e1f0000000890900000002ee1680ca82973d2bd4b836954268e611c00aab9715732c9fb7", 0x35}, {&(0x7f0000001980)="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", 0x91e}], 0x2}, 0x24000008)
r7 = openat$cgroup(r5, &(0x7f0000000380)='syz0\x00', 0x200002, 0x0)
openat$cgroup_devices(r7, &(0x7f00000003c0)='devices.deny\x00', 0x2, 0x0)
bpf$PROG_BIND_MAP(0x23, &(0x7f00000001c0)={r2, r3}, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x28)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xf, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x3}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0xe, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000001800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x8, 0x1006, &(0x7f00000030c0)=""/4102, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)

1m24.440966438s ago: executing program 1 (id=1581):
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x101840, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x7b)
ioctl$TUNSETCARRIER(r0, 0x400454e2, &(0x7f0000000440)=0x1)
ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x9)
r1 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYRES8=r1], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x8, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x6f6e, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x35, 0x43a1bd76, 0x6, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext={0x0, 0x1000000}, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, r3, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r5 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x80}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, r4, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc8910610700fa6fa26fa7088c60897d4a6148a1c1e43f00001bde605cbeac671e8e8fdecb035865e362ead91b1979a5ae30705b52710aeee835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5bc6d3fd0500000022eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd21142525815b91076ccb7b37b41215c184e731fb13d100323b77f613af02b6f3259d6f3ac85da4fe304ecfca2be5f4a8b3910a8f0a88d082ac161c4a3c1132831a88f199f67aca8f4698996d076250b2b75cdc7776b8cab72716149f70efb190007832c6077da0df4c63a226284cd6a2e5ec5bb28f18dd44821065b9758fd159c490421901361244c01bfa0cddbc726f2b4ceace9f9309f507e6a7135b33f418af0a63bfb480c2feced947dae1d7dc19c4f1807b17c559c27be4d18b2e0a3cf26832d7fc97cea307de1852f90317b501bf66473eb6dac986d7b5682abc3a5ea1dabde56b9e3a56ba20a65dc0df39edd5f34ed22a8f0c6594a894901e455d0369e407dae0f4fb4e181415153000000b6b384cb4bbfd4edfd70cd7324de228e1047a61292abe63fc71063a9040bd927779d56ef0f4725dfb3822ce1e24632f7d51a0e65bd5664fcd3e4a0b0388b842115b5689769438f9763a55956288e78b6cad0ff3f310722b4a5cc4f25a69753fcc8ece189808e6f2f71ca2337d0de3a9feaa3f4cd2a2c69d21daec3751aca69f0a6f5b0af65aace6d04dad91c67e57a0f7b8accb3f8d9b787e002e56a7149c2d10a268884e695256ddb9c17853e29689f41667522e6932294"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYRES32=r3], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000980)=ANY=[], 0x10)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000540)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={0xffffffffffffffff, 0x138, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180000000000000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={0xffffffffffffffff, 0x0, &(0x7f0000000000)=""/10, 0x2}, 0x20)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x100, 0x200000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
syz_open_procfs$namespace(0x0, &(0x7f0000000000))

1m24.440253398s ago: executing program 2 (id=1582):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000fcffffff00000000000000118500000036000000180100006400002500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000001800000850000000600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="178d048604bf0bfb1945d7430008", 0x0, 0x501, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)

1m24.331370302s ago: executing program 3 (id=1583):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100), 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000038000000380000000300000001000000000000010000ffff0f000000000000000000000105000000100000000000000000000003"], 0x0, 0x53, 0x0, 0x3}, 0x28)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x1}, 0x1828a6, 0xca, 0x2, 0x0, 0x4, 0x400000, 0x0, 0x0, 0xe, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg$unix(r0, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x1c0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf0, 0x1, 0x0, 0x0, 0x0, 0x400000000000000b, 0x1509, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x76, 0x1ef7}, 0x172e4, 0x4, 0x0, 0x0, 0x2, 0xfffff271, 0x0, 0x0, 0x0, 0x0, 0x24}, 0x0, 0x1, 0xffffffffffffffff, 0x2)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[@ANYRES8=r1, @ANYBLOB="3e0002"], 0x9a)

1m24.223099937s ago: executing program 0 (id=1584):
r0 = perf_event_open(&(0x7f0000004cc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9, 0x400, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaf1f, 0x1, @perf_bp={0x0, 0x8}, 0x100410, 0x200, 0x3, 0x1, 0x9, 0x9, 0xfffd, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000480)='syzkaller\x00'}, 0x94)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r1, &(0x7f0000003540)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)="5c00000014006b04c84e21020af32c6e0a0675f800250002500100000017d34460bc24eab556a705251e6182949a36c23d3b48dfd8cdbf9367b498fa51f60a64c9f4d4938037e786a6d0bdd70000b6c0504bb9189d9193e9bd1c1b78", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510640002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1b, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="b400000000000000693cc0edbd5a733ea30000000000000095c0a923f8653a00"], &(0x7f0000000080)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = socket$kcm(0x10, 0x3, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
r6 = perf_event_open$cgroup(&(0x7f0000000380)={0x0, 0x80, 0x71, 0xed, 0x0, 0x4, 0x0, 0x6e47, 0x1004, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x3, @perf_config_ext={0x2}, 0x18010, 0x7, 0xfffffff9, 0x8, 0x9, 0x8, 0x0, 0x0, 0x4, 0x0, 0x8}, 0xffffffffffffffff, 0x9, r0, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r6)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r7, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r7, 0x0, 0x0}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x50)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0xce5, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3}, 0x50)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r5, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000cd03000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0xedf0e51957efc755, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r8}, &(0x7f0000000240), &(0x7f0000000380)=r9}, 0x20)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=r8, @ANYBLOB="0800000000000000000000000000000000000000fd81b92b242d48be7bbca6005faa767eba047a1e3f737e3f2a97ff944c4666e35a150813e37da041e6acdd", @ANYRES32, @ANYRES32, @ANYBLOB="03000000000000000400"/28], 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r5, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r10=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x2, &(0x7f0000000300)=ANY=[@ANYBLOB="6d650000060000000000000001000000f66f5d"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', r10, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYRES32=r10, @ANYRES32, @ANYBLOB="0100000002000000040000"], 0x50)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000340)=r5, 0x4)

1m24.123232211s ago: executing program 0 (id=1585):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x20538, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x1d, 0x17, &(0x7f00000001c0)=ANY=[@ANYBLOB="bff3709817d3a8b4ed2b903b1800000000000000000000000000000018110000c083b5af861169a293025a997b0802d525bfb4f766b21750a83c9d5b145154767f4ae22595c332deb040590803e0b9a2b0016385ebbd5200984bfcda51e6a42aa3d250fbbe71a7f7a83139528250", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf09000600000000650901000000000066000000ffffff80180100002020702500000000002020207b9a00fe000000005e9100000000000037010000f8ffffffb702000008000000b70300000000000056000000060000002c93000000000000b5030000000000008500000076000000b7000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1802000002800000000000000000000085000000200000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b0000009500"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/15], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='cachefiles_mark_failed\x00', r2}, 0x18)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x35, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES16], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x3a, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r5, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r4, 0x40047459, &(0x7f0000000180))
ioctl$TUNGETVNETLE(r4, 0x40047459, &(0x7f0000001200))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0xe, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0x34}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000480)='memory.events\x00', 0x100002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x4, 0x0, 0x0, 0x5}, 0x94)
r7 = socket$kcm(0x2, 0x1000000000000005, 0x0)
sendmsg$inet(r7, &(0x7f0000007940)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="20000000000000008400000002000000940404"], 0x20}, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40305829, &(0x7f0000000040)=0x20000)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@fallback, 0x0, 0x1, 0x93, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, <r8=>0x0}, 0x40)
ioctl$PERF_EVENT_IOC_RESET(r6, 0x2403, 0x9)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000002c0)={@cgroup=r6, 0xffffffffffffffff, 0x31, 0x20, 0x0, @void, @void, @void, @value, r8}, 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)={@cgroup, r1, 0x10, 0x14, 0x0, @void, @value=r1, @void, @void, r8}, 0x20)

1m24.069856624s ago: executing program 2 (id=1586):
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000180)=@o_path={&(0x7f0000000000)='./file0\x00'}, 0x18) (async)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000710426000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48) (async)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000080)="d8000000100081044e81f782db44b904021d080b01000000e8fe55a1010115000600142603600e120800040000001101a80016000a00034006000d00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4688df216265e43bf66f282ac027812cfbd3f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40d", 0xd8}], 0x1}, 0x0)

1m24.069705154s ago: executing program 3 (id=1587):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x11, 0xf, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x6}, {0x66, 0x0, 0x64, 0x80ffffff}}, [], {{0x4, 0x1, 0x2, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1m24.003171477s ago: executing program 1 (id=1588):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={&(0x7f0000000880)={0x2, 0x4e1d, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="280000000000000000000000070000008307040097ff00070f09"], 0x28}, 0x0)

1m23.91745433s ago: executing program 3 (id=1589):
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext={0xffffffff00000000, 0x100000000}, 0x0, 0x0, 0x0, 0x20000000, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

1m23.789676926s ago: executing program 1 (id=1590):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000012c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000030095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34664c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbcebddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cfd7c3a1d37a6ab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ed8dba2f23b01a9aeb980aff9fa3a64709270c701db801f44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af4c0eb97fca585ec6bf58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef3b7cda42013d53046da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea2a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f76062adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b441233151122b41a8d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225a53072423b907c6682f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd1f539bd43007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711d7219ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a26c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29754f928c59306ce105ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc05fea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efdb36b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800000000000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351ba332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d9890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b0783883ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a139d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fcc49a729f11ab377f7132c543d29646a9378eea0761b7ed9d2172e33ed87c6513c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828bf209d0"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)

1m23.720280989s ago: executing program 1 (id=1591):
r0 = perf_event_open(&(0x7f00000014c0)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/30], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r2, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x3, 0x4, &(0x7f0000000580)=@framed={{0x18, 0x2, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x200}, [@call={0x85, 0x0, 0x0, 0x30}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r2, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000005c0)={r1, 0xe0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000240)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000002c0), &(0x7f0000000300)=[0x0, 0x0], 0x0, 0x89, &(0x7f0000000340)=[{}], 0x8, 0x10, &(0x7f0000000380), &(0x7f0000000440), 0x8, 0xe2, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1b00"/20, @ANYRES32=r0, @ANYBLOB="0010000000000000000021000000000000000000190fce09e60f66157c1dae9decfbbbad6b3158f30d6a647f5a2d74c500a3e4c4407b438085e3e0315d49528ae2addfa7e6638475e8a3fa63acee4b9731c18e426fb2f81f2093801323fc64f1436a763842254a4ba80d137365ae085870d652e234f8db73a073001cea86c20c2297d5b90d4e", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000030000000200"/28], 0x50)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2, 0x2}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x1}]}]}}, 0x0, 0x5a}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x12, 0x4, &(0x7f0000000bc0)=ANY=[@ANYBLOB="180000000000000000000000fcffffff850000004000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @cgroup_sock_addr=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1e, 0x2, 0x0, &(0x7f0000000000))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000100))
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000018110000", @ANYRES32=r3], 0x0, 0x10000002, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="1c0000001d008103e00f80ecdb4cb9f207", 0x11}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000200)=ANY=[], 0xfe33)

1m23.582263345s ago: executing program 3 (id=1592):
socket$kcm(0x2, 0x3, 0x2)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="4c000000150097f87059ae08060c040002ff0f020000000000000187ac1414aaa69d35a2cca84708f7abca1bac1414aabd7c493872f750375ed08a560400000003c48f93b82a03000000461e", 0x4c}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{0x0, 0x2, 0x1, 0x4}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x4, 0x10}]}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="7f0000017f00000a0000000800"/28, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030029000b12d25a80648c2594f90124fc60100c020000000400053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

1m23.393898023s ago: executing program 3 (id=1593):
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000540)=@framed={{}, [@printk={@i, {}, {}, {}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x5}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3ff}, {0x85, 0x0, 0x0, 0x72}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1m23.325371316s ago: executing program 2 (id=1594):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="61124c00000000006113500000020f00bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000f020000d706000020000000620a04ff0ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffcd35010000000000ce040000000000001c000000000000009500000000000000db13d5d8b741f2cdaabc8383c8f56bb5df3083d20f8c2bf304000000815dcf0066d7ded3c5c49a08a503ea6d54f7f3125a8200578ac0836d6454745e70a27444003c5b20451b624db6f5320e9befc1e00b8b32917c4d30d16b7edb732bc3ac330b16c442aff70d27659bc58e296b16750c5577c848754b4894b07f15bab1c640a5c0c4fd62f9db829b301ef67fd2b2736f3af0c54af2412313b17c4c8081c4ed0572261960e227d34cfbfdb247bc2351c9d8363a8cb18b7330604da78b0aba47545f9a25a80dd7d28a5ae41824f611dd2de6dd581c52698f9542a444a8a3969946faded5275c00"/420], &(0x7f0000000100)='GPL\x00'}, 0x48)

1m23.211714351s ago: executing program 3 (id=1595):
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
r0 = socket$kcm(0x1e, 0x5, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_config_ext={0x0, 0x3fff8001}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x4, 0x3fff8000}, 0x0, 0x1000000000032, 0x43a1bd76, 0x7, 0x9, 0x6, 0x4, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x4, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r1, 0x29, 0x24, 0x0, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={&(0x7f0000000cc0)=@l2tp6={0xa, 0x0, 0x1000, @mcast1, 0x7, 0x83}, 0x80, &(0x7f0000000180)}, 0x800)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
gettid()
close(0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=<r3=>0xffffffffffffffff, @ANYBLOB="0100000000002c0000000000e768e7c172cbb0c26c977f820a3d05b2ca243c787e98", @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00'], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000014c0)={0x18, 0xf, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xc9ea}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000100)='syzkaller\x00', 0x7, 0x6a, &(0x7f0000000140)=""/106, 0x41100, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000040)=ANY=[@ANYRES32=r3], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3e}, 0x94)
sendmsg$kcm(r0, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@id, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000300)="d5", 0x1}], 0x1}, 0x0)
r4 = socket$kcm(0x29, 0x2, 0x0)
recvmsg$kcm(r4, &(0x7f0000000480)={&(0x7f00000000c0)=@x25, 0x80, &(0x7f0000000380)}, 0x40000001)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0xc000000, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904, 0x50}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x29, 0x5, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x4)
close(r6)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000780)="5c00000011006bcc9e3be35c6e17aa31076b876c1d0000007ea6f464160af36514001ac00800020004000200060000000364bc24eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000000400))

1m23.061746918s ago: executing program 2 (id=1596):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r1}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$unix(r3, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20040}, 0x20000000)
recvmsg$unix(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000002400)=""/4096, 0x1000}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000580)="6700000011008188040f56ecdb4cb9cca7480ef434000000e3bd6efb440009000e000a0010000000ba80010000005a8c3774fa0af3dc59a933c1e7a6d3361d83b20000319cdf5656826edaaa11032701c61ec666d482078ccebcb9a4f187f7a4e98f09cdc2649f", 0x67}], 0x1}, 0x7000000)
socket$kcm(0x29, 0x7, 0x0)
socket$kcm(0x29, 0x5, 0x0)

1m7.492937071s ago: executing program 32 (id=1585):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x20538, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x1d, 0x17, &(0x7f00000001c0)=ANY=[@ANYBLOB="bff3709817d3a8b4ed2b903b1800000000000000000000000000000018110000c083b5af861169a293025a997b0802d525bfb4f766b21750a83c9d5b145154767f4ae22595c332deb040590803e0b9a2b0016385ebbd5200984bfcda51e6a42aa3d250fbbe71a7f7a83139528250", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf09000600000000650901000000000066000000ffffff80180100002020702500000000002020207b9a00fe000000005e9100000000000037010000f8ffffffb702000008000000b70300000000000056000000060000002c93000000000000b5030000000000008500000076000000b7000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1802000002800000000000000000000085000000200000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b0000009500"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/15], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='cachefiles_mark_failed\x00', r2}, 0x18)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x35, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES16], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x3a, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r5, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r4, 0x40047459, &(0x7f0000000180))
ioctl$TUNGETVNETLE(r4, 0x40047459, &(0x7f0000001200))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0xe, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0x34}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000480)='memory.events\x00', 0x100002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x4, 0x0, 0x0, 0x5}, 0x94)
r7 = socket$kcm(0x2, 0x1000000000000005, 0x0)
sendmsg$inet(r7, &(0x7f0000007940)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="20000000000000008400000002000000940404"], 0x20}, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40305829, &(0x7f0000000040)=0x20000)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@fallback, 0x0, 0x1, 0x93, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, <r8=>0x0}, 0x40)
ioctl$PERF_EVENT_IOC_RESET(r6, 0x2403, 0x9)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000002c0)={@cgroup=r6, 0xffffffffffffffff, 0x31, 0x20, 0x0, @void, @void, @void, @value, r8}, 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)={@cgroup, r1, 0x10, 0x14, 0x0, @void, @value=r1, @void, @void, r8}, 0x20)

1m7.366292376s ago: executing program 33 (id=1591):
r0 = perf_event_open(&(0x7f00000014c0)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/30], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r2, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x3, 0x4, &(0x7f0000000580)=@framed={{0x18, 0x2, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x200}, [@call={0x85, 0x0, 0x0, 0x30}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r2, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000005c0)={r1, 0xe0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000240)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000002c0), &(0x7f0000000300)=[0x0, 0x0], 0x0, 0x89, &(0x7f0000000340)=[{}], 0x8, 0x10, &(0x7f0000000380), &(0x7f0000000440), 0x8, 0xe2, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1b00"/20, @ANYRES32=r0, @ANYBLOB="0010000000000000000021000000000000000000190fce09e60f66157c1dae9decfbbbad6b3158f30d6a647f5a2d74c500a3e4c4407b438085e3e0315d49528ae2addfa7e6638475e8a3fa63acee4b9731c18e426fb2f81f2093801323fc64f1436a763842254a4ba80d137365ae085870d652e234f8db73a073001cea86c20c2297d5b90d4e", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000030000000200"/28], 0x50)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2, 0x2}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x1}]}]}}, 0x0, 0x5a}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x12, 0x4, &(0x7f0000000bc0)=ANY=[@ANYBLOB="180000000000000000000000fcffffff850000004000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @cgroup_sock_addr=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1e, 0x2, 0x0, &(0x7f0000000000))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000100))
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000018110000", @ANYRES32=r3], 0x0, 0x10000002, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="1c0000001d008103e00f80ecdb4cb9f207", 0x11}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000200)=ANY=[], 0xfe33)

240.13µs ago: executing program 34 (id=1596):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r1}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$unix(r3, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20040}, 0x20000000)
recvmsg$unix(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000002400)=""/4096, 0x1000}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000580)="6700000011008188040f56ecdb4cb9cca7480ef434000000e3bd6efb440009000e000a0010000000ba80010000005a8c3774fa0af3dc59a933c1e7a6d3361d83b20000319cdf5656826edaaa11032701c61ec666d482078ccebcb9a4f187f7a4e98f09cdc2649f", 0x67}], 0x1}, 0x7000000)
socket$kcm(0x29, 0x7, 0x0)
socket$kcm(0x29, 0x5, 0x0)

0s ago: executing program 35 (id=1595):
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
r0 = socket$kcm(0x1e, 0x5, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_config_ext={0x0, 0x3fff8001}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x4, 0x3fff8000}, 0x0, 0x1000000000032, 0x43a1bd76, 0x7, 0x9, 0x6, 0x4, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x4, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r1, 0x29, 0x24, 0x0, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={&(0x7f0000000cc0)=@l2tp6={0xa, 0x0, 0x1000, @mcast1, 0x7, 0x83}, 0x80, &(0x7f0000000180)}, 0x800)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
gettid()
close(0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=<r3=>0xffffffffffffffff, @ANYBLOB="0100000000002c0000000000e768e7c172cbb0c26c977f820a3d05b2ca243c787e98", @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00'], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000014c0)={0x18, 0xf, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xc9ea}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000100)='syzkaller\x00', 0x7, 0x6a, &(0x7f0000000140)=""/106, 0x41100, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000040)=ANY=[@ANYRES32=r3], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3e}, 0x94)
sendmsg$kcm(r0, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@id, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000300)="d5", 0x1}], 0x1}, 0x0)
r4 = socket$kcm(0x29, 0x2, 0x0)
recvmsg$kcm(r4, &(0x7f0000000480)={&(0x7f00000000c0)=@x25, 0x80, &(0x7f0000000380)}, 0x40000001)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0xc000000, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904, 0x50}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x29, 0x5, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x4)
close(r6)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000780)="5c00000011006bcc9e3be35c6e17aa31076b876c1d0000007ea6f464160af36514001ac00800020004000200060000000364bc24eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000000400))

kernel console output (not intermixed with test programs):

 after parsing attributes in process `syz.2.618'.
[  146.556331][ T7795] validate_nla: 2 callbacks suppressed
[  146.556361][ T7795] netlink: 'syz.0.621': attribute type 10 has an invalid length.
[  146.625916][ T7795] netlink: 40 bytes leftover after parsing attributes in process `syz.0.621'.
[  146.671339][ T7792] netlink: 'syz.0.621': attribute type 10 has an invalid length.
[  146.691602][ T7792] netlink: 40 bytes leftover after parsing attributes in process `syz.0.621'.
[  146.748295][ T7794] netlink: 'syz.3.622': attribute type 10 has an invalid length.
[  146.786065][ T7794] netlink: 40 bytes leftover after parsing attributes in process `syz.3.622'.
[  146.851454][ T7796] netlink: 'syz.3.622': attribute type 10 has an invalid length.
[  146.876520][ T7796] netlink: 40 bytes leftover after parsing attributes in process `syz.3.622'.
[  147.118133][ T7817] netlink: 'syz.3.630': attribute type 9 has an invalid length.
[  147.133265][ T7817] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.630'.
[  147.511687][ T7833] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.636'.
[  147.907495][ T7840] syzkaller0: entered promiscuous mode
[  147.932224][ T7840] syzkaller0: entered allmulticast mode
[  148.082500][ T7854] netlink: 'syz.1.645': attribute type 33 has an invalid length.
[  148.147041][ T7854] netlink: 164 bytes leftover after parsing attributes in process `syz.1.645'.
[  148.185590][ T7847] sctp: [Deprecated]: syz.0.640 (pid 7847) Use of struct sctp_assoc_value in delayed_ack socket option.
[  148.185590][ T7847] Use struct sctp_sack_info instead
[  148.464753][ T7866] netlink: 'syz.1.649': attribute type 10 has an invalid length.
[  148.506828][ T7866] netlink: 55 bytes leftover after parsing attributes in process `syz.1.649'.
[  148.889664][ T7868] netlink: 132 bytes leftover after parsing attributes in process `syz.3.651'.
[  149.413759][ T7890] netlink: 'syz.2.658': attribute type 21 has an invalid length.
[  149.749430][ T7904] netlink: 'syz.2.663': attribute type 10 has an invalid length.
[  150.105442][ T7917] syzkaller0: entered promiscuous mode
[  150.112108][ T7917] syzkaller0: entered allmulticast mode
[  150.294941][ T7918] sctp: [Deprecated]: syz.2.667 (pid 7918) Use of struct sctp_assoc_value in delayed_ack socket option.
[  150.294941][ T7918] Use struct sctp_sack_info instead
[  150.327482][ T7924] FAULT_INJECTION: forcing a failure.
[  150.327482][ T7924] name failslab, interval 1, probability 0, space 0, times 0
[  150.353153][ T7924] CPU: 0 PID: 7924 Comm: syz.3.670 Not tainted syzkaller #0
[  150.360495][ T7924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  150.370571][ T7924] Call Trace:
[  150.375442][ T7924]  <TASK>
[  150.378445][ T7924]  dump_stack_lvl+0x16c/0x230
[  150.383153][ T7924]  ? sctp_sendmsg+0x155c/0x27e0
[  150.388024][ T7924]  ? ___sys_sendmsg+0x220/0x290
[  150.392912][ T7924]  ? show_regs_print_info+0x20/0x20
[  150.398141][ T7924]  ? load_image+0x3b0/0x3b0
[  150.402721][ T7924]  should_fail_ex+0x39d/0x4d0
[  150.407433][ T7924]  should_failslab+0x9/0x20
[  150.411957][ T7924]  slab_pre_alloc_hook+0x59/0x310
[  150.417013][ T7924]  ? sctp_add_bind_addr+0x8c/0x360
[  150.422158][ T7924]  __kmem_cache_alloc_node+0x53/0x260
[  150.427558][ T7924]  ? sctp_add_bind_addr+0x8c/0x360
[  150.432694][ T7924]  kmalloc_trace+0x2a/0xe0
[  150.437134][ T7924]  sctp_add_bind_addr+0x8c/0x360
[  150.442099][ T7924]  sctp_copy_local_addr_list+0x30c/0x4e0
[  150.447760][ T7924]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  150.453502][ T7924]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  150.459595][ T7924]  ? sctp_v6_is_any+0x64/0x70
[  150.464292][ T7924]  ? sctp_copy_one_addr+0x8c/0x350
[  150.469425][ T7924]  sctp_bind_addr_copy+0xb3/0x3c0
[  150.474474][ T7924]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  150.480835][ T7924]  sctp_connect_new_asoc+0x2da/0x690
[  150.486145][ T7924]  ? __sctp_connect+0xd20/0xd20
[  150.491014][ T7924]  ? __local_bh_enable_ip+0x12e/0x1c0
[  150.496508][ T7924]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  150.502078][ T7924]  ? security_sctp_bind_connect+0x89/0xb0
[  150.507819][ T7924]  sctp_sendmsg+0x155c/0x27e0
[  150.512526][ T7924]  ? sctp_getsockopt+0xb60/0xb60
[  150.517480][ T7924]  ? aa_sk_perm+0x7fc/0x930
[  150.522005][ T7924]  ? aa_af_perm+0x2b0/0x2b0
[  150.526526][ T7924]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  150.532948][ T7924]  ? sock_rps_record_flow+0x19/0x400
[  150.538233][ T7924]  ? inet_send_prepare+0x260/0x260
[  150.543339][ T7924]  ? inet_sendmsg+0xe9/0x2f0
[  150.547926][ T7924]  ? inet_send_prepare+0x260/0x260
[  150.553038][ T7924]  ____sys_sendmsg+0x5bf/0x950
[  150.557816][ T7924]  ? __asan_memset+0x22/0x40
[  150.562407][ T7924]  ? __sys_sendmsg_sock+0x30/0x30
[  150.567435][ T7924]  ? __import_iovec+0x5f2/0x860
[  150.572289][ T7924]  ? import_iovec+0x73/0xa0
[  150.576789][ T7924]  ___sys_sendmsg+0x220/0x290
[  150.581467][ T7924]  ? __sys_sendmsg+0x270/0x270
[  150.586245][ T7924]  ? __lock_acquire+0x7c80/0x7c80
[  150.591277][ T7924]  __se_sys_sendmsg+0x1a5/0x270
[  150.596124][ T7924]  ? __x64_sys_sendmsg+0x80/0x80
[  150.601069][ T7924]  ? lockdep_hardirqs_on+0x98/0x150
[  150.606258][ T7924]  do_syscall_64+0x55/0xb0
[  150.610674][ T7924]  ? clear_bhb_loop+0x40/0x90
[  150.615340][ T7924]  ? clear_bhb_loop+0x40/0x90
[  150.620006][ T7924]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  150.625891][ T7924] RIP: 0033:0x7fc2c518f749
[  150.630296][ T7924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.650341][ T7924] RSP: 002b:00007fc2c5fac038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  150.659188][ T7924] RAX: ffffffffffffffda RBX: 00007fc2c53e5fa0 RCX: 00007fc2c518f749
[  150.667150][ T7924] RDX: 0000000020000054 RSI: 0000200000002dc0 RDI: 0000000000000003
[  150.675125][ T7924] RBP: 00007fc2c5fac090 R08: 0000000000000000 R09: 0000000000000000
[  150.683090][ T7924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  150.691056][ T7924] R13: 00007fc2c53e6038 R14: 00007fc2c53e5fa0 R15: 00007ffeacc1a8d8
[  150.699037][ T7924]  </TASK>
[  150.761771][ T7930] netlink: 'syz.0.672': attribute type 10 has an invalid length.
[  151.397251][    C1] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[  151.435641][ T7955] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  151.443799][ T7955] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  151.468911][ T7956] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  151.475335][ T7956] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  151.803316][ T7969] syzkaller0: tun_chr_ioctl cmd 2147767521
[  151.863978][ T7963] validate_nla: 1 callbacks suppressed
[  151.864001][ T7963] netlink: 'syz.1.684': attribute type 10 has an invalid length.
[  151.881553][ T7963] __nla_validate_parse: 3 callbacks suppressed
[  151.881583][ T7963] netlink: 40 bytes leftover after parsing attributes in process `syz.1.684'.
[  151.901310][ T7972] syzkaller0: tun_chr_ioctl cmd 1074025675
[  151.908629][ T7972] syzkaller0: persist enabled
[  151.915681][ T7972] sctp: [Deprecated]: syz.3.686 (pid 7972) Use of struct sctp_assoc_value in delayed_ack socket option.
[  151.915681][ T7972] Use struct sctp_sack_info instead
[  151.926367][ T7964] netlink: 'syz.1.684': attribute type 10 has an invalid length.
[  151.936390][ T7972] syzkaller0: create flow: hash 3000587176 index 1
[  151.957025][ T7964] netlink: 40 bytes leftover after parsing attributes in process `syz.1.684'.
[  151.996543][ T7974] FAULT_INJECTION: forcing a failure.
[  151.996543][ T7974] name failslab, interval 1, probability 0, space 0, times 0
[  152.009847][ T7974] CPU: 0 PID: 7974 Comm: syz.2.688 Not tainted syzkaller #0
[  152.017142][ T7974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  152.027194][ T7974] Call Trace:
[  152.030471][ T7974]  <TASK>
[  152.033391][ T7974]  dump_stack_lvl+0x16c/0x230
[  152.038072][ T7974]  ? show_regs_print_info+0x20/0x20
[  152.043261][ T7974]  ? load_image+0x3b0/0x3b0
[  152.047755][ T7974]  ? __might_sleep+0xe0/0xe0
[  152.052335][ T7974]  ? __lock_acquire+0x7c80/0x7c80
[  152.057351][ T7974]  should_fail_ex+0x39d/0x4d0
[  152.062022][ T7974]  should_failslab+0x9/0x20
[  152.066518][ T7974]  slab_pre_alloc_hook+0x59/0x310
[  152.071536][ T7974]  ? kernfs_fop_write_iter+0x159/0x520
[  152.076987][ T7974]  ? kernfs_fop_write_iter+0x159/0x520
[  152.082450][ T7974]  __kmem_cache_alloc_node+0x53/0x260
[  152.087831][ T7974]  ? kernfs_fop_write_iter+0x159/0x520
[  152.093284][ T7974]  __kmalloc+0xa4/0x240
[  152.097437][ T7974]  kernfs_fop_write_iter+0x159/0x520
[  152.102721][ T7974]  vfs_write+0x43b/0x940
[  152.106962][ T7974]  ? file_end_write+0x250/0x250
[  152.111808][ T7974]  ? __fget_files+0x44a/0x4d0
[  152.116488][ T7974]  ? __fdget_pos+0x2a3/0x330
[  152.121070][ T7974]  ? ksys_write+0x75/0x250
[  152.125495][ T7974]  ksys_write+0x147/0x250
[  152.129829][ T7974]  ? __ia32_sys_read+0x90/0x90
[  152.134589][ T7974]  ? lockdep_hardirqs_on+0x98/0x150
[  152.139783][ T7974]  do_syscall_64+0x55/0xb0
[  152.144191][ T7974]  ? clear_bhb_loop+0x40/0x90
[  152.148860][ T7974]  ? clear_bhb_loop+0x40/0x90
[  152.153527][ T7974]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  152.159410][ T7974] RIP: 0033:0x7fe0deb8f749
[  152.163810][ T7974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.183409][ T7974] RSP: 002b:00007fe0df940038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  152.191815][ T7974] RAX: ffffffffffffffda RBX: 00007fe0dede5fa0 RCX: 00007fe0deb8f749
[  152.199778][ T7974] RDX: 0000000000000012 RSI: 00002000000005c0 RDI: 0000000000000006
[  152.207753][ T7974] RBP: 00007fe0df940090 R08: 0000000000000000 R09: 0000000000000000
[  152.215723][ T7974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.223692][ T7974] R13: 00007fe0dede6038 R14: 00007fe0dede5fa0 R15: 00007ffc8deaa318
[  152.231683][ T7974]  </TASK>
[  152.305418][ T7977] netlink: 'syz.2.689': attribute type 21 has an invalid length.
[  152.315055][ T7977] netlink: 164 bytes leftover after parsing attributes in process `syz.2.689'.
[  152.637067][ T7968] syzkaller0: delete flow: hash 3000587176 index 1
[  153.220483][ T8012] warning: `syz.2.699' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  153.305092][ T8012] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  153.630265][ T8027] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  153.846070][ T8034] netlink: 'syz.1.707': attribute type 39 has an invalid length.
[  153.875045][ T8034] veth0_macvtap: left promiscuous mode
[  154.328673][ T8054] netlink: 'syz.2.713': attribute type 9 has an invalid length.
[  154.364599][ T8054] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.713'.
[  154.652305][ T8053] delete_channel: no stack
[  155.436052][ T8077] netlink: 60 bytes leftover after parsing attributes in process `syz.2.723'.
[  155.444974][ T8077] caif0: entered allmulticast mode
[  155.477667][ T8079] netlink: 'syz.0.725': attribute type 10 has an invalid length.
[  155.491712][ T8079] bridge0: port 3(team0) entered disabled state
[  155.498516][ T8079] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.507607][ T8079] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.540277][ T8079] bridge0: port 3(team0) entered blocking state
[  155.546758][ T8079] bridge0: port 3(team0) entered forwarding state
[  155.554069][ T8079] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.561338][ T8079] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.568936][ T8079] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.576204][ T8079] bridge0: port 1(bridge_slave_0) entered forwarding state
[  155.620122][ T8079] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  156.054646][ T3552] wlan1: Trigger new scan to find an IBSS to join
[  156.258393][ T8093] netlink: 201392 bytes leftover after parsing attributes in process `syz.2.730'.
[  156.277104][ T8093] netlink: zone id is out of range
[  156.295164][ T8093] netlink: zone id is out of range
[  156.301959][ T8093] netlink: zone id is out of range
[  156.309419][ T8093] netlink: zone id is out of range
[  156.316468][ T8093] netlink: zone id is out of range
[  156.326414][ T8093] netlink: zone id is out of range
[  156.493749][ T8105] netlink: 'syz.1.735': attribute type 10 has an invalid length.
[  156.493771][ T8105] netlink: 40 bytes leftover after parsing attributes in process `syz.1.735'.
[  156.495553][ T8106] netlink: 10 bytes leftover after parsing attributes in process `syz.1.735'.
[  157.351283][ T8121] syzkaller0: tun_chr_ioctl cmd 2147767521
[  157.382733][ T8093] netlink: zone id is out of range
[  157.393436][ T8093] netlink: zone id is out of range
[  157.403461][ T8093] netlink: zone id is out of range
[  157.410226][ T8093] netlink: zone id is out of range
[  157.423770][ T8122] syzkaller0: tun_chr_ioctl cmd 1074025675
[  157.423790][ T8122] syzkaller0: persist enabled
[  157.423947][ T8122] sctp: [Deprecated]: syz.3.740 (pid 8122) Use of struct sctp_assoc_value in delayed_ack socket option.
[  157.423947][ T8122] Use struct sctp_sack_info instead
[  157.424835][ T8122] syzkaller0: create flow: hash 73556230 index 1
[  157.541304][ T8093] netlink: zone id is out of range
[  157.546529][ T8093] netlink: zone id is out of range
[  157.551672][ T8093] netlink: zone id is out of range
[  157.557821][ T8093] netlink: zone id is out of range
[  157.562963][ T8093] netlink: zone id is out of range
[  157.568382][ T8093] netlink: zone id is out of range
[  157.723255][ T8132] netlink: 'syz.1.744': attribute type 46 has an invalid length.
[  157.731343][ T8132] netlink: 'syz.1.744': attribute type 46 has an invalid length.
[  157.798238][ T8132] netlink: 'syz.1.744': attribute type 3 has an invalid length.
[  157.810012][ T8132] netlink: 130984 bytes leftover after parsing attributes in process `syz.1.744'.
[  158.242345][ T8120] syzkaller0: delete flow: hash 73556230 index 1
[  158.831508][ T8159] syzkaller0: entered promiscuous mode
[  158.837749][ T8159] syzkaller0: entered allmulticast mode
[  159.742840][ T8194] FAULT_INJECTION: forcing a failure.
[  159.742840][ T8194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  159.757419][ T8194] CPU: 0 PID: 8194 Comm: syz.3.766 Not tainted syzkaller #0
[  159.764748][ T8194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  159.774821][ T8194] Call Trace:
[  159.778113][ T8194]  <TASK>
[  159.781054][ T8194]  dump_stack_lvl+0x16c/0x230
[  159.785771][ T8194]  ? show_regs_print_info+0x20/0x20
[  159.790990][ T8194]  ? load_image+0x3b0/0x3b0
[  159.795526][ T8194]  ? __might_fault+0xaa/0x120
[  159.800227][ T8194]  ? __lock_acquire+0x7c80/0x7c80
[  159.805276][ T8194]  should_fail_ex+0x39d/0x4d0
[  159.809988][ T8194]  _copy_from_user+0x2f/0xe0
[  159.814599][ T8194]  ___sys_sendmsg+0x159/0x290
[  159.819313][ T8194]  ? __sys_sendmsg+0x270/0x270
[  159.824328][ T8194]  __se_sys_sendmsg+0x1a5/0x270
[  159.829212][ T8194]  ? __x64_sys_sendmsg+0x80/0x80
[  159.834188][ T8194]  ? lockdep_hardirqs_on+0x98/0x150
[  159.839418][ T8194]  do_syscall_64+0x55/0xb0
[  159.843865][ T8194]  ? clear_bhb_loop+0x40/0x90
[  159.848561][ T8194]  ? clear_bhb_loop+0x40/0x90
[  159.853265][ T8194]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  159.859187][ T8194] RIP: 0033:0x7fc2c518f749
[  159.863618][ T8194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.883249][ T8194] RSP: 002b:00007fc2c5f8b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  159.891693][ T8194] RAX: ffffffffffffffda RBX: 00007fc2c53e6090 RCX: 00007fc2c518f749
[  159.899680][ T8194] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  159.907738][ T8194] RBP: 00007fc2c5f8b090 R08: 0000000000000000 R09: 0000000000000000
[  159.915715][ T8194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.923690][ T8194] R13: 00007fc2c53e6128 R14: 00007fc2c53e6090 R15: 00007ffeacc1a8d8
[  159.931662][ T8194]  </TASK>
[  160.052770][ T2951] wlan1: Trigger new scan to find an IBSS to join
[  160.960510][ T8193] netlink: 'syz.3.766': attribute type 10 has an invalid length.
[  160.968385][ T8193] netlink: 40 bytes leftover after parsing attributes in process `syz.3.766'.
[  160.981682][ T8198] netlink: 'syz.0.768': attribute type 10 has an invalid length.
[  161.006377][ T8198] netlink: 40 bytes leftover after parsing attributes in process `syz.0.768'.
[  161.027991][ T1322] wlan1: Creating new IBSS network, BSSID 06:d6:c5:f1:9a:7d
[  161.051845][ T8200] netlink: 'syz.0.768': attribute type 10 has an invalid length.
[  161.085220][ T8200] netlink: 40 bytes leftover after parsing attributes in process `syz.0.768'.
[  161.435868][ T8219] netlink: 152 bytes leftover after parsing attributes in process `syz.3.775'.
[  161.530186][ T8219] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.775'.
[  161.551847][ T8224] FAULT_INJECTION: forcing a failure.
[  161.551847][ T8224] name failslab, interval 1, probability 0, space 0, times 0
[  161.585286][ T8219] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.775'.
[  161.599582][ T8224] CPU: 1 PID: 8224 Comm: syz.2.777 Not tainted syzkaller #0
[  161.606920][ T8224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  161.616999][ T8224] Call Trace:
[  161.620293][ T8224]  <TASK>
[  161.623244][ T8224]  dump_stack_lvl+0x16c/0x230
[  161.627963][ T8224]  ? sctp_sendmsg+0x155c/0x27e0
[  161.632834][ T8224]  ? ___sys_sendmsg+0x220/0x290
[  161.637711][ T8224]  ? show_regs_print_info+0x20/0x20
[  161.642943][ T8224]  ? load_image+0x3b0/0x3b0
[  161.647487][ T8224]  should_fail_ex+0x39d/0x4d0
[  161.652196][ T8224]  should_failslab+0x9/0x20
[  161.656724][ T8224]  slab_pre_alloc_hook+0x59/0x310
[  161.661776][ T8224]  ? sctp_add_bind_addr+0x8c/0x360
[  161.666914][ T8224]  __kmem_cache_alloc_node+0x53/0x260
[  161.672316][ T8224]  ? sctp_add_bind_addr+0x8c/0x360
[  161.677450][ T8224]  kmalloc_trace+0x2a/0xe0
[  161.681893][ T8224]  sctp_add_bind_addr+0x8c/0x360
[  161.686888][ T8224]  sctp_copy_local_addr_list+0x30c/0x4e0
[  161.692990][ T8224]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  161.698735][ T8224]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  161.704831][ T8224]  ? sctp_v6_is_any+0x64/0x70
[  161.709539][ T8224]  ? sctp_copy_one_addr+0x8c/0x350
[  161.714680][ T8224]  sctp_bind_addr_copy+0xb3/0x3c0
[  161.719739][ T8224]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  161.726099][ T8224]  sctp_connect_new_asoc+0x2da/0x690
[  161.731411][ T8224]  ? __sctp_connect+0xd20/0xd20
[  161.736280][ T8224]  ? __local_bh_enable_ip+0x12e/0x1c0
[  161.741678][ T8224]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  161.747598][ T8224]  ? security_sctp_bind_connect+0x89/0xb0
[  161.753348][ T8224]  sctp_sendmsg+0x155c/0x27e0
[  161.758062][ T8224]  ? sctp_getsockopt+0xb60/0xb60
[  161.763027][ T8224]  ? aa_sk_perm+0x7fc/0x930
[  161.767564][ T8224]  ? aa_af_perm+0x2b0/0x2b0
[  161.772087][ T8224]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  161.778529][ T8224]  ? sock_rps_record_flow+0x19/0x400
[  161.783841][ T8224]  ? inet_send_prepare+0x260/0x260
[  161.788976][ T8224]  ? inet_sendmsg+0xe9/0x2f0
[  161.793596][ T8224]  ? inet_send_prepare+0x260/0x260
[  161.798732][ T8224]  ____sys_sendmsg+0x5bf/0x950
[  161.803531][ T8224]  ? __asan_memset+0x22/0x40
[  161.808145][ T8224]  ? __sys_sendmsg_sock+0x30/0x30
[  161.813196][ T8224]  ? __import_iovec+0x5f2/0x860
[  161.818079][ T8224]  ? import_iovec+0x73/0xa0
[  161.822609][ T8224]  ___sys_sendmsg+0x220/0x290
[  161.827312][ T8224]  ? __sys_sendmsg+0x270/0x270
[  161.832125][ T8224]  ? __lock_acquire+0x7c80/0x7c80
[  161.837205][ T8224]  __se_sys_sendmsg+0x1a5/0x270
[  161.842082][ T8224]  ? __x64_sys_sendmsg+0x80/0x80
[  161.847050][ T8224]  ? lockdep_hardirqs_on+0x98/0x150
[  161.852261][ T8224]  do_syscall_64+0x55/0xb0
[  161.856697][ T8224]  ? clear_bhb_loop+0x40/0x90
[  161.861394][ T8224]  ? clear_bhb_loop+0x40/0x90
[  161.866098][ T8224]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  161.872013][ T8224] RIP: 0033:0x7fe0deb8f749
[  161.876444][ T8224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.896075][ T8224] RSP: 002b:00007fe0df940038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  161.904517][ T8224] RAX: ffffffffffffffda RBX: 00007fe0dede5fa0 RCX: 00007fe0deb8f749
[  161.912509][ T8224] RDX: 0000000020000054 RSI: 0000200000002dc0 RDI: 0000000000000003
[  161.920504][ T8224] RBP: 00007fe0df940090 R08: 0000000000000000 R09: 0000000000000000
[  161.928495][ T8224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  161.936485][ T8224] R13: 00007fe0dede6038 R14: 00007fe0dede5fa0 R15: 00007ffc8deaa318
[  161.944489][ T8224]  </TASK>
[  161.987561][ T8222] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.775'.
[  162.022956][ T8227] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.775'.
[  162.067689][ T8229] netlink: 4 bytes leftover after parsing attributes in process `syz.0.779'.
[  162.780447][ T8253] FAULT_INJECTION: forcing a failure.
[  162.780447][ T8253] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.795441][ T8253] CPU: 0 PID: 8253 Comm: syz.0.789 Not tainted syzkaller #0
[  162.802763][ T8253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  162.812838][ T8253] Call Trace:
[  162.816134][ T8253]  <TASK>
[  162.819074][ T8253]  dump_stack_lvl+0x16c/0x230
[  162.823779][ T8253]  ? show_regs_print_info+0x20/0x20
[  162.829002][ T8253]  ? load_image+0x3b0/0x3b0
[  162.833524][ T8253]  ? __might_fault+0xaa/0x120
[  162.838216][ T8253]  ? __lock_acquire+0x7c80/0x7c80
[  162.843261][ T8253]  should_fail_ex+0x39d/0x4d0
[  162.847965][ T8253]  _copy_from_iter+0x1d3/0x1290
[  162.852851][ T8253]  ? __virt_addr_valid+0x18c/0x540
[  162.857980][ T8253]  ? __lock_acquire+0x7c80/0x7c80
[  162.863026][ T8253]  ? copyout_mc+0x70/0x70
[  162.867373][ T8253]  ? __virt_addr_valid+0x18c/0x540
[  162.872504][ T8253]  ? __virt_addr_valid+0x18c/0x540
[  162.877630][ T8253]  ? __virt_addr_valid+0x469/0x540
[  162.882761][ T8253]  ? __check_object_size+0x506/0xa30
[  162.888074][ T8253]  kernfs_fop_write_iter+0x1a4/0x520
[  162.893388][ T8253]  vfs_write+0x43b/0x940
[  162.897648][ T8253]  ? file_end_write+0x250/0x250
[  162.902495][ T8253]  ? __fget_files+0x44a/0x4d0
[  162.907175][ T8253]  ? __fdget_pos+0x2a3/0x330
[  162.911758][ T8253]  ? ksys_write+0x75/0x250
[  162.916169][ T8253]  ksys_write+0x147/0x250
[  162.920496][ T8253]  ? __ia32_sys_read+0x90/0x90
[  162.925259][ T8253]  ? lockdep_hardirqs_on+0x98/0x150
[  162.930459][ T8253]  do_syscall_64+0x55/0xb0
[  162.934875][ T8253]  ? clear_bhb_loop+0x40/0x90
[  162.939544][ T8253]  ? clear_bhb_loop+0x40/0x90
[  162.944212][ T8253]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  162.950095][ T8253] RIP: 0033:0x7f534bf8f749
[  162.954500][ T8253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.974099][ T8253] RSP: 002b:00007f534cdbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  162.982502][ T8253] RAX: ffffffffffffffda RBX: 00007f534c1e5fa0 RCX: 00007f534bf8f749
[  162.990464][ T8253] RDX: 0000000000000012 RSI: 00002000000005c0 RDI: 0000000000000006
[  162.998427][ T8253] RBP: 00007f534cdbe090 R08: 0000000000000000 R09: 0000000000000000
[  163.006390][ T8253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.014348][ T8253] R13: 00007f534c1e6038 R14: 00007f534c1e5fa0 R15: 00007ffe9650e938
[  163.022327][ T8253]  </TASK>
[  163.446207][ T8272] netlink: 'syz.1.794': attribute type 29 has an invalid length.
[  163.464258][ T8272] netlink: 'syz.1.794': attribute type 29 has an invalid length.
[  163.485471][ T8273] netlink: 'syz.1.794': attribute type 29 has an invalid length.
[  164.237637][ T8290] netlink: 'syz.3.802': attribute type 27 has an invalid length.
[  164.255288][ T8290] netlink: 164 bytes leftover after parsing attributes in process `syz.3.802'.
[  164.618571][ T8299] netlink: 4 bytes leftover after parsing attributes in process `syz.2.806'.
[  164.661646][ T8304] netlink: 'syz.1.808': attribute type 10 has an invalid length.
[  165.054990][ T8312] netlink: 60 bytes leftover after parsing attributes in process `syz.2.812'.
[  165.186575][ T8312] netlink: 'syz.2.812': attribute type 29 has an invalid length.
[  165.195536][ T8312] netlink: 'syz.2.812': attribute type 29 has an invalid length.
[  165.363739][ T8323] IPv6: NLM_F_CREATE should be specified when creating new route
[  165.653186][ T8338] netlink: 'syz.2.822': attribute type 4 has an invalid length.
[  165.670509][ T8338] netlink: 140 bytes leftover after parsing attributes in process `syz.2.822'.
[  165.913519][ T8346] netlink: 60 bytes leftover after parsing attributes in process `syz.3.825'.
[  167.077436][ T8390] : entered promiscuous mode
[  167.096189][ T8390] : entered allmulticast mode
[  167.103373][ T8397] netlink: 'syz.1.844': attribute type 9 has an invalid length.
[  167.135955][ T8397] netlink: 154020 bytes leftover after parsing attributes in process `syz.1.844'.
[  167.572871][ T8413] mac80211_hwsim hwsim8 wlan0: entered allmulticast mode
[  167.599537][ T8413] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode
[  167.644126][ T8413] netlink: 'syz.0.852': attribute type 9 has an invalid length.
[  167.666804][ T8413] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.852'.
[  168.168046][ T8427] netlink: 60 bytes leftover after parsing attributes in process `syz.1.857'.
[  168.337715][ T8433] syzkaller0: tun_chr_ioctl cmd 2147767521
[  168.405813][ T8436] syzkaller0: tun_chr_ioctl cmd 1074025675
[  168.413459][ T8436] syzkaller0: persist enabled
[  168.421167][ T8436] sctp: [Deprecated]: syz.3.860 (pid 8436) Use of struct sctp_assoc_value in delayed_ack socket option.
[  168.421167][ T8436] Use struct sctp_sack_info instead
[  168.443563][ T8436] syzkaller0: create flow: hash 1840052625 index 1
[  168.868153][ T8449] syzkaller0: left promiscuous mode
[  168.888229][ T8449] syzkaller0: left allmulticast mode
[  169.154228][ T8432] syzkaller0: delete flow: hash 1840052625 index 1
[  169.577395][ T8472] validate_nla: 2 callbacks suppressed
[  169.577411][ T8472] netlink: 'syz.2.875': attribute type 10 has an invalid length.
[  169.661557][ T8472] netlink: 55 bytes leftover after parsing attributes in process `syz.2.875'.
[  169.674751][ T8477] netlink: 60 bytes leftover after parsing attributes in process `syz.3.874'.
[  169.705478][ T8477] netlink: 60 bytes leftover after parsing attributes in process `syz.3.874'.
[  169.738249][ T8469] netlink: 60 bytes leftover after parsing attributes in process `syz.3.874'.
[  169.756251][ T8473] netlink: 'syz.0.876': attribute type 10 has an invalid length.
[  169.785277][ T8473] netlink: 40 bytes leftover after parsing attributes in process `syz.0.876'.
[  169.810732][ T8478] FAULT_INJECTION: forcing a failure.
[  169.810732][ T8478] name failslab, interval 1, probability 0, space 0, times 0
[  169.842147][ T8478] CPU: 1 PID: 8478 Comm: syz.0.876 Not tainted syzkaller #0
[  169.849479][ T8478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  169.859549][ T8478] Call Trace:
[  169.860711][ T8476] netlink: 'syz.1.877': attribute type 10 has an invalid length.
[  169.862827][ T8478]  <TASK>
[  169.862837][ T8478]  dump_stack_lvl+0x16c/0x230
[  169.862868][ T8478]  ? show_regs_print_info+0x20/0x20
[  169.883382][ T8478]  ? load_image+0x3b0/0x3b0
[  169.884698][ T8476] netlink: 40 bytes leftover after parsing attributes in process `syz.1.877'.
[  169.887888][ T8478]  ? __might_sleep+0xe0/0xe0
[  169.887911][ T8478]  ? __lock_acquire+0x7c80/0x7c80
[  169.887933][ T8478]  should_fail_ex+0x39d/0x4d0
[  169.887960][ T8478]  should_failslab+0x9/0x20
[  169.887981][ T8478]  slab_pre_alloc_hook+0x59/0x310
[  169.888002][ T8478]  ? __lock_acquire+0x7c80/0x7c80
[  169.888021][ T8478]  kmem_cache_alloc_node+0x60/0x330
[  169.888042][ T8478]  ? __alloc_skb+0x108/0x2c0
[  169.888070][ T8478]  __alloc_skb+0x108/0x2c0
[  169.888095][ T8478]  netlink_sendmsg+0x65b/0xbe0
[  169.944622][ T8478]  ? netlink_getsockopt+0x580/0x580
[  169.949850][ T8478]  ? aa_sock_msg_perm+0x94/0x150
[  169.954808][ T8478]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  169.960114][ T8478]  ? security_socket_sendmsg+0x80/0xa0
[  169.961852][ T8476] netlink: 'syz.1.877': attribute type 10 has an invalid length.
[  169.965573][ T8478]  ? netlink_getsockopt+0x580/0x580
[  169.965600][ T8478]  ____sys_sendmsg+0x5bf/0x950
[  169.983266][ T8478]  ? __asan_memset+0x22/0x40
[  169.984816][ T8476] netlink: 40 bytes leftover after parsing attributes in process `syz.1.877'.
[  169.987854][ T8478]  ? __sys_sendmsg_sock+0x30/0x30
[  169.987879][ T8478]  ? __import_iovec+0x5f2/0x860
[  169.987909][ T8478]  ? import_iovec+0x73/0xa0
[  169.987935][ T8478]  ___sys_sendmsg+0x220/0x290
[  169.987961][ T8478]  ? __sys_sendmsg+0x270/0x270
[  169.988003][ T8478]  ? __lock_acquire+0x7c80/0x7c80
[  169.988043][ T8478]  __se_sys_sendmsg+0x1a5/0x270
[  169.988068][ T8478]  ? __x64_sys_sendmsg+0x80/0x80
[  169.988105][ T8478]  ? lockdep_hardirqs_on+0x98/0x150
[  169.988126][ T8478]  do_syscall_64+0x55/0xb0
[  170.045106][ T8478]  ? clear_bhb_loop+0x40/0x90
[  170.049813][ T8478]  ? clear_bhb_loop+0x40/0x90
[  170.054514][ T8478]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  170.060429][ T8478] RIP: 0033:0x7f534bf8f749
[  170.064863][ T8478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.084494][ T8478] RSP: 002b:00007f534cd9d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  170.092939][ T8478] RAX: ffffffffffffffda RBX: 00007f534c1e6090 RCX: 00007f534bf8f749
[  170.100927][ T8478] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  170.108912][ T8478] RBP: 00007f534cd9d090 R08: 0000000000000000 R09: 0000000000000000
[  170.116904][ T8478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.124891][ T8478] R13: 00007f534c1e6128 R14: 00007f534c1e6090 R15: 00007ffe9650e938
[  170.132899][ T8478]  </TASK>
[  170.423672][ T8495] netlink: 'syz.1.884': attribute type 3 has an invalid length.
[  170.479525][ T8497] FAULT_INJECTION: forcing a failure.
[  170.479525][ T8497] name failslab, interval 1, probability 0, space 0, times 0
[  170.538118][ T8497] CPU: 1 PID: 8497 Comm: syz.3.885 Not tainted syzkaller #0
[  170.545461][ T8497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  170.555531][ T8497] Call Trace:
[  170.558821][ T8497]  <TASK>
[  170.561762][ T8497]  dump_stack_lvl+0x16c/0x230
[  170.566474][ T8497]  ? show_regs_print_info+0x20/0x20
[  170.571690][ T8497]  ? load_image+0x3b0/0x3b0
[  170.576212][ T8497]  ? __might_sleep+0xe0/0xe0
[  170.580820][ T8497]  ? __lock_acquire+0x7c80/0x7c80
[  170.585857][ T8497]  ? __might_sleep+0xe0/0xe0
[  170.590461][ T8497]  should_fail_ex+0x39d/0x4d0
[  170.595172][ T8497]  should_failslab+0x9/0x20
[  170.599701][ T8497]  slab_pre_alloc_hook+0x59/0x310
[  170.604753][ T8497]  kmem_cache_alloc_lru+0x4d/0x2e0
[  170.609893][ T8497]  ? sock_alloc_inode+0x28/0xc0
[  170.614767][ T8497]  sock_alloc_inode+0x28/0xc0
[  170.619459][ T8497]  ? sockfs_init_fs_context+0xb0/0xb0
[  170.624846][ T8497]  new_inode_pseudo+0x63/0x1d0
[  170.629619][ T8497]  __sock_create+0x12d/0x940
[  170.634205][ T8497]  ? __might_fault+0xaa/0x120
[  170.638869][ T8497]  ? __might_fault+0xc6/0x120
[  170.643539][ T8497]  __sys_socketpair+0x1c1/0x550
[  170.648394][ T8497]  __x64_sys_socketpair+0x9b/0xb0
[  170.653415][ T8497]  do_syscall_64+0x55/0xb0
[  170.657823][ T8497]  ? clear_bhb_loop+0x40/0x90
[  170.662498][ T8497]  ? clear_bhb_loop+0x40/0x90
[  170.667167][ T8497]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  170.673051][ T8497] RIP: 0033:0x7fc2c518f749
[  170.677456][ T8497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.697051][ T8497] RSP: 002b:00007fc2c5fac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  170.705452][ T8497] RAX: ffffffffffffffda RBX: 00007fc2c53e5fa0 RCX: 00007fc2c518f749
[  170.713410][ T8497] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000028
[  170.721369][ T8497] RBP: 00007fc2c5fac090 R08: 0000000000000000 R09: 0000000000000000
[  170.729328][ T8497] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[  170.737290][ T8497] R13: 00007fc2c53e6038 R14: 00007fc2c53e5fa0 R15: 00007ffeacc1a8d8
[  170.745258][ T8497]  </TASK>
[  170.768180][ T8497] net_ratelimit: 275 callbacks suppressed
[  170.768215][ T8497] socket: no more sockets
[  171.074093][ T8510] netlink: 67 bytes leftover after parsing attributes in process `syz.1.889'.
[  171.187222][ T8514] FAULT_INJECTION: forcing a failure.
[  171.187222][ T8514] name failslab, interval 1, probability 0, space 0, times 0
[  171.201428][ T8514] CPU: 0 PID: 8514 Comm: syz.3.891 Not tainted syzkaller #0
[  171.208758][ T8514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  171.218826][ T8514] Call Trace:
[  171.222123][ T8514]  <TASK>
[  171.225067][ T8514]  dump_stack_lvl+0x16c/0x230
[  171.229774][ T8514]  ? show_regs_print_info+0x20/0x20
[  171.234989][ T8514]  ? load_image+0x3b0/0x3b0
[  171.239520][ T8514]  ? __lock_acquire+0x7c80/0x7c80
[  171.244564][ T8514]  ? kasan_set_track+0x5f/0x70
[  171.249350][ T8514]  should_fail_ex+0x39d/0x4d0
[  171.254051][ T8514]  should_failslab+0x9/0x20
[  171.258573][ T8514]  slab_pre_alloc_hook+0x59/0x310
[  171.263616][ T8514]  ? __kthread_create_on_node+0x1c7/0x3e0
[  171.269353][ T8514]  ? __kthread_create_on_node+0x1c7/0x3e0
[  171.275098][ T8514]  __kmem_cache_alloc_node+0x53/0x260
[  171.280507][ T8514]  ? __kthread_create_on_node+0x1c7/0x3e0
[  171.286247][ T8514]  __kmalloc_node_track_caller+0xa2/0x230
[  171.291996][ T8514]  kvasprintf+0xdd/0x190
[  171.296259][ T8514]  ? bust_spinlocks+0xd0/0xd0
[  171.300960][ T8514]  __kthread_create_on_node+0x1c7/0x3e0
[  171.306538][ T8514]  ? kthread_create_on_node+0x120/0x120
[  171.312116][ T8514]  ? trace_contention_end+0x39/0xe0
[  171.317332][ T8514]  ? __mutex_lock+0x304/0xcc0
[  171.322026][ T8514]  ? psi_trigger_create+0xb30/0xb30
[  171.327241][ T8514]  ? psi_trigger_create+0xb30/0xb30
[  171.332460][ T8514]  kthread_create_on_node+0xde/0x120
[  171.337776][ T8514]  ? tsk_fork_get_node+0x70/0x70
[  171.342748][ T8514]  psi_trigger_create+0x542/0xb30
[  171.347797][ T8514]  ? update_averages+0x4d0/0x4d0
[  171.352751][ T8514]  ? css_put+0x57/0x290
[  171.356921][ T8514]  ? css_put+0x1be/0x290
[  171.361177][ T8514]  pressure_write+0x271/0x2e0
[  171.365873][ T8514]  ? cgroup_cpu_pressure_show+0x230/0x230
[  171.371609][ T8514]  cgroup_file_write+0x2fc/0x660
[  171.376566][ T8514]  ? read_lock_is_recursive+0x20/0x20
[  171.381971][ T8514]  ? cgroup_seqfile_stop+0xd0/0xd0
[  171.387113][ T8514]  ? cgroup_seqfile_stop+0xd0/0xd0
[  171.392232][ T8514]  kernfs_fop_write_iter+0x3b6/0x520
[  171.397538][ T8514]  vfs_write+0x43b/0x940
[  171.401805][ T8514]  ? file_end_write+0x250/0x250
[  171.406678][ T8514]  ? __fget_files+0x44a/0x4d0
[  171.411376][ T8514]  ? __fdget_pos+0x2a3/0x330
[  171.415983][ T8514]  ? ksys_write+0x75/0x250
[  171.420422][ T8514]  ksys_write+0x147/0x250
[  171.424771][ T8514]  ? __ia32_sys_read+0x90/0x90
[  171.429551][ T8514]  ? lockdep_hardirqs_on+0x98/0x150
[  171.434772][ T8514]  do_syscall_64+0x55/0xb0
[  171.439212][ T8514]  ? clear_bhb_loop+0x40/0x90
[  171.443901][ T8514]  ? clear_bhb_loop+0x40/0x90
[  171.448602][ T8514]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  171.454516][ T8514] RIP: 0033:0x7fc2c518f749
[  171.458939][ T8514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.478552][ T8514] RSP: 002b:00007fc2c5fac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  171.486961][ T8514] RAX: ffffffffffffffda RBX: 00007fc2c53e5fa0 RCX: 00007fc2c518f749
[  171.494926][ T8514] RDX: 000000000000002f RSI: 0000200000000080 RDI: 0000000000000004
[  171.502886][ T8514] RBP: 00007fc2c5fac090 R08: 0000000000000000 R09: 0000000000000000
[  171.510849][ T8514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.518806][ T8514] R13: 00007fc2c53e6038 R14: 00007fc2c53e5fa0 R15: 00007ffeacc1a8d8
[  171.526781][ T8514]  </TASK>
[  171.564554][ T8519] netlink: 48 bytes leftover after parsing attributes in process `syz.1.892'.
[  171.579540][ T8518] netlink: 48 bytes leftover after parsing attributes in process `syz.1.892'.
[  171.602640][ T8518] netlink: 'syz.1.892': attribute type 10 has an invalid length.
[  171.736919][ T8518] 8021q: adding VLAN 0 to HW filter on device batadv0
[  171.744890][ T8518] batadv0: entered promiscuous mode
[  171.799206][ T8518] batadv0: entered allmulticast mode
[  171.805620][ T8518] team0: Port device batadv0 added
[  171.851123][ T8519] netlink: 'syz.1.892': attribute type 10 has an invalid length.
[  172.073514][   T11] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  172.083100][   T11] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  172.282898][ T8543] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  172.316628][ T8543] openvswitch: netlink: Message has 1 unknown bytes.
[  172.708462][ T8554] netlink: 'syz.2.905': attribute type 10 has an invalid length.
[  174.003206][ T8590] netlink: 'syz.0.921': attribute type 4 has an invalid length.
[  174.927299][ T8623] __nla_validate_parse: 8 callbacks suppressed
[  174.927319][ T8623] netlink: 60 bytes leftover after parsing attributes in process `syz.1.935'.
[  175.162080][ T8626] netlink: 'syz.0.938': attribute type 29 has an invalid length.
[  175.178983][ T8626] netlink: 'syz.0.938': attribute type 29 has an invalid length.
[  175.195578][ T8626] netlink: 'syz.0.938': attribute type 29 has an invalid length.
[  175.590869][ T8648] netlink: 60 bytes leftover after parsing attributes in process `syz.1.947'.
[  175.591280][ T8646] netlink: 'syz.3.946': attribute type 10 has an invalid length.
[  175.653966][ T8646] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  176.271831][ T8675] netlink: 'syz.2.955': attribute type 10 has an invalid length.
[  176.279848][ T8675] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  176.323756][ T8675] batman_adv: batadv0: Removing interface: batadv_slave_0
[  176.403966][ T8675] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  176.597497][ T8682] netlink: 60 bytes leftover after parsing attributes in process `syz.2.958'.
[  176.751995][ T8689] netlink: 'syz.1.961': attribute type 25 has an invalid length.
[  177.303174][ T8711] netlink: 60 bytes leftover after parsing attributes in process `syz.3.970'.
[  177.516071][ T8718] netlink: 9286 bytes leftover after parsing attributes in process `syz.2.973'.
[  177.583490][ T8720] syzkaller0: tun_chr_ioctl cmd 2147767521
[  177.659610][ T8725] syzkaller0: tun_chr_ioctl cmd 1074025675
[  177.665477][ T8725] syzkaller0: persist enabled
[  177.705193][ T8725] sctp: [Deprecated]: syz.3.974 (pid 8725) Use of struct sctp_assoc_value in delayed_ack socket option.
[  177.705193][ T8725] Use struct sctp_sack_info instead
[  177.762976][ T8725] syzkaller0: create flow: hash 631477813 index 1
[  177.771268][ T8729] netlink: 'syz.1.977': attribute type 21 has an invalid length.
[  177.783302][ T8729] netlink: 'syz.1.977': attribute type 1 has an invalid length.
[  178.154332][ T8737] netlink: 'syz.1.979': attribute type 10 has an invalid length.
[  178.166097][ T8737] netlink: 40 bytes leftover after parsing attributes in process `syz.1.979'.
[  178.191479][ T8736] netlink: 168 bytes leftover after parsing attributes in process `syz.0.980'.
[  178.209653][ T8734] netlink: 'syz.1.979': attribute type 10 has an invalid length.
[  178.230393][ T8734] netlink: 40 bytes leftover after parsing attributes in process `syz.1.979'.
[  178.376063][ T8719] syzkaller0: delete flow: hash 631477813 index 1
[  178.777777][ T8742] netlink: 40 bytes leftover after parsing attributes in process `syz.0.989'.
[  178.835979][ T8742] netlink: 40 bytes leftover after parsing attributes in process `syz.0.989'.
[  179.104625][ T8755] batadv0: entered promiscuous mode
[  179.132623][ T8755] batadv0: entered allmulticast mode
[  179.146411][ T8755] bridge0: port 4(batadv0) entered blocking state
[  179.159797][ T8755] bridge0: port 4(batadv0) entered disabled state
[  179.171280][ T8755] bridge0: port 4(batadv0) entered blocking state
[  179.177911][ T8755] bridge0: port 4(batadv0) entered forwarding state
[  179.284558][   T49] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  179.293861][   T49] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  179.512877][ T8772] FAULT_INJECTION: forcing a failure.
[  179.512877][ T8772] name failslab, interval 1, probability 0, space 0, times 0
[  179.526800][ T8772] CPU: 0 PID: 8772 Comm: syz.3.995 Not tainted syzkaller #0
[  179.534118][ T8772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  179.544174][ T8772] Call Trace:
[  179.547448][ T8772]  <TASK>
[  179.550371][ T8772]  dump_stack_lvl+0x16c/0x230
[  179.555047][ T8772]  ? show_regs_print_info+0x20/0x20
[  179.560236][ T8772]  ? load_image+0x3b0/0x3b0
[  179.564730][ T8772]  ? __lock_acquire+0x7c80/0x7c80
[  179.569745][ T8772]  ? __asan_memset+0x22/0x40
[  179.574329][ T8772]  should_fail_ex+0x39d/0x4d0
[  179.579008][ T8772]  should_failslab+0x9/0x20
[  179.583506][ T8772]  slab_pre_alloc_hook+0x59/0x310
[  179.588529][ T8772]  kmem_cache_alloc+0x5a/0x2e0
[  179.593289][ T8772]  ? security_inode_alloc+0x34/0x110
[  179.598578][ T8772]  security_inode_alloc+0x34/0x110
[  179.603680][ T8772]  inode_init_always+0x8fc/0xc90
[  179.608613][ T8772]  new_inode_pseudo+0x95/0x1d0
[  179.613367][ T8772]  __sock_create+0x12d/0x940
[  179.617952][ T8772]  ? __might_fault+0xaa/0x120
[  179.622615][ T8772]  ? __might_fault+0xc6/0x120
[  179.627283][ T8772]  __sys_socketpair+0x1c1/0x550
[  179.632130][ T8772]  __x64_sys_socketpair+0x9b/0xb0
[  179.637146][ T8772]  do_syscall_64+0x55/0xb0
[  179.641551][ T8772]  ? clear_bhb_loop+0x40/0x90
[  179.646223][ T8772]  ? clear_bhb_loop+0x40/0x90
[  179.650890][ T8772]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  179.656774][ T8772] RIP: 0033:0x7fc2c518f749
[  179.661178][ T8772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.680776][ T8772] RSP: 002b:00007fc2c5fac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  179.689186][ T8772] RAX: ffffffffffffffda RBX: 00007fc2c53e5fa0 RCX: 00007fc2c518f749
[  179.697149][ T8772] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000028
[  179.705108][ T8772] RBP: 00007fc2c5fac090 R08: 0000000000000000 R09: 0000000000000000
[  179.713066][ T8772] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[  179.721028][ T8772] R13: 00007fc2c53e6038 R14: 00007fc2c53e5fa0 R15: 00007ffeacc1a8d8
[  179.729001][ T8772]  </TASK>
[  179.747789][ T8772] socket: no more sockets
[  180.129623][ T8790] FAULT_INJECTION: forcing a failure.
[  180.129623][ T8790] name failslab, interval 1, probability 0, space 0, times 0
[  180.186177][ T8790] CPU: 1 PID: 8790 Comm: syz.0.1001 Not tainted syzkaller #0
[  180.193600][ T8790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  180.203674][ T8790] Call Trace:
[  180.206962][ T8790]  <TASK>
[  180.209902][ T8790]  dump_stack_lvl+0x16c/0x230
[  180.214599][ T8790]  ? sctp_sendmsg+0x155c/0x27e0
[  180.219457][ T8790]  ? ___sys_sendmsg+0x220/0x290
[  180.224322][ T8790]  ? show_regs_print_info+0x20/0x20
[  180.229519][ T8790]  ? load_image+0x3b0/0x3b0
[  180.234023][ T8790]  should_fail_ex+0x39d/0x4d0
[  180.238713][ T8790]  should_failslab+0x9/0x20
[  180.243211][ T8790]  slab_pre_alloc_hook+0x59/0x310
[  180.248234][ T8790]  ? sctp_add_bind_addr+0x8c/0x360
[  180.253346][ T8790]  __kmem_cache_alloc_node+0x53/0x260
[  180.258718][ T8790]  ? sctp_add_bind_addr+0x8c/0x360
[  180.263825][ T8790]  kmalloc_trace+0x2a/0xe0
[  180.268237][ T8790]  sctp_add_bind_addr+0x8c/0x360
[  180.273171][ T8790]  sctp_copy_local_addr_list+0x30c/0x4e0
[  180.278803][ T8790]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  180.284531][ T8790]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  180.290608][ T8790]  ? sctp_v6_is_any+0x64/0x70
[  180.295296][ T8790]  ? sctp_copy_one_addr+0x8c/0x350
[  180.300416][ T8790]  sctp_bind_addr_copy+0xb3/0x3c0
[  180.305446][ T8790]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  180.311777][ T8790]  sctp_connect_new_asoc+0x2da/0x690
[  180.317084][ T8790]  ? __sctp_connect+0xd20/0xd20
[  180.321924][ T8790]  ? __local_bh_enable_ip+0x12e/0x1c0
[  180.327293][ T8790]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  180.332835][ T8790]  ? security_sctp_bind_connect+0x89/0xb0
[  180.338549][ T8790]  sctp_sendmsg+0x155c/0x27e0
[  180.343226][ T8790]  ? sctp_getsockopt+0xb60/0xb60
[  180.348157][ T8790]  ? aa_sk_perm+0x7fc/0x930
[  180.352658][ T8790]  ? aa_af_perm+0x2b0/0x2b0
[  180.357153][ T8790]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  180.363567][ T8790]  ? sock_rps_record_flow+0x19/0x400
[  180.368844][ T8790]  ? inet_send_prepare+0x260/0x260
[  180.373962][ T8790]  ? inet_sendmsg+0xe9/0x2f0
[  180.378553][ T8790]  ? inet_send_prepare+0x260/0x260
[  180.383659][ T8790]  ____sys_sendmsg+0x5bf/0x950
[  180.388428][ T8790]  ? __asan_memset+0x22/0x40
[  180.393018][ T8790]  ? __sys_sendmsg_sock+0x30/0x30
[  180.398038][ T8790]  ? __import_iovec+0x5f2/0x860
[  180.402892][ T8790]  ? import_iovec+0x73/0xa0
[  180.407390][ T8790]  ___sys_sendmsg+0x220/0x290
[  180.412064][ T8790]  ? __sys_sendmsg+0x270/0x270
[  180.416842][ T8790]  ? __lock_acquire+0x7c80/0x7c80
[  180.421886][ T8790]  __se_sys_sendmsg+0x1a5/0x270
[  180.426733][ T8790]  ? __x64_sys_sendmsg+0x80/0x80
[  180.431676][ T8790]  ? lockdep_hardirqs_on+0x98/0x150
[  180.436865][ T8790]  do_syscall_64+0x55/0xb0
[  180.441269][ T8790]  ? clear_bhb_loop+0x40/0x90
[  180.445941][ T8790]  ? clear_bhb_loop+0x40/0x90
[  180.450612][ T8790]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  180.456494][ T8790] RIP: 0033:0x7f534bf8f749
[  180.460898][ T8790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.480495][ T8790] RSP: 002b:00007f534cdbe038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  180.488899][ T8790] RAX: ffffffffffffffda RBX: 00007f534c1e5fa0 RCX: 00007f534bf8f749
[  180.496859][ T8790] RDX: 0000000020000054 RSI: 0000200000002dc0 RDI: 0000000000000003
[  180.504821][ T8790] RBP: 00007f534cdbe090 R08: 0000000000000000 R09: 0000000000000000
[  180.512778][ T8790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  180.520740][ T8790] R13: 00007f534c1e6038 R14: 00007f534c1e5fa0 R15: 00007ffe9650e938
[  180.528711][ T8790]  </TASK>
[  180.576933][ T8796] FAULT_INJECTION: forcing a failure.
[  180.576933][ T8796] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.616580][ T8796] CPU: 1 PID: 8796 Comm: syz.1.1004 Not tainted syzkaller #0
[  180.624001][ T8796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  180.634069][ T8796] Call Trace:
[  180.637361][ T8796]  <TASK>
[  180.640306][ T8796]  dump_stack_lvl+0x16c/0x230
[  180.645011][ T8796]  ? show_regs_print_info+0x20/0x20
[  180.650232][ T8796]  ? load_image+0x3b0/0x3b0
[  180.654750][ T8796]  ? __lock_acquire+0x7c80/0x7c80
[  180.659792][ T8796]  ? snprintf+0xdb/0x120
[  180.664059][ T8796]  should_fail_ex+0x39d/0x4d0
[  180.668758][ T8796]  _copy_to_user+0x2f/0xa0
[  180.673197][ T8796]  simple_read_from_buffer+0xe7/0x150
[  180.678597][ T8796]  proc_fail_nth_read+0x1e3/0x250
[  180.683644][ T8796]  ? proc_fault_inject_write+0x340/0x340
[  180.689296][ T8796]  ? fsnotify_perm+0x271/0x5e0
[  180.694075][ T8796]  ? proc_fault_inject_write+0x340/0x340
[  180.699720][ T8796]  vfs_read+0x27e/0x920
[  180.703900][ T8796]  ? kernel_read+0x1e0/0x1e0
[  180.708510][ T8796]  ? __fget_files+0x28/0x4d0
[  180.713123][ T8796]  ? __fget_files+0x44a/0x4d0
[  180.717828][ T8796]  ? __fdget_pos+0x2a3/0x330
[  180.722432][ T8796]  ? ksys_read+0x75/0x250
[  180.726784][ T8796]  ksys_read+0x147/0x250
[  180.731048][ T8796]  ? vfs_write+0x940/0x940
[  180.735480][ T8796]  ? lockdep_hardirqs_on+0x98/0x150
[  180.740694][ T8796]  do_syscall_64+0x55/0xb0
[  180.745125][ T8796]  ? clear_bhb_loop+0x40/0x90
[  180.749814][ T8796]  ? clear_bhb_loop+0x40/0x90
[  180.754486][ T8796]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  180.760371][ T8796] RIP: 0033:0x7fb6bbb8e15c
[  180.764776][ T8796] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  180.784381][ T8796] RSP: 002b:00007fb6bcaaf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  180.792787][ T8796] RAX: ffffffffffffffda RBX: 00007fb6bbde5fa0 RCX: 00007fb6bbb8e15c
[  180.800765][ T8796] RDX: 000000000000000f RSI: 00007fb6bcaaf0a0 RDI: 0000000000000005
[  180.808736][ T8796] RBP: 00007fb6bcaaf090 R08: 0000000000000000 R09: 0000000000000000
[  180.816699][ T8796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.824660][ T8796] R13: 00007fb6bbde6038 R14: 00007fb6bbde5fa0 R15: 00007ffe2c9656f8
[  180.832635][ T8796]  </TASK>
[  180.874872][ T8802] __nla_validate_parse: 4 callbacks suppressed
[  180.874888][ T8802] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1006'.
[  180.890418][ T8803] FAULT_INJECTION: forcing a failure.
[  180.890418][ T8803] name failslab, interval 1, probability 0, space 0, times 0
[  180.904653][ T8803] CPU: 1 PID: 8803 Comm: syz.0.1007 Not tainted syzkaller #0
[  180.912055][ T8803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  180.922139][ T8803] Call Trace:
[  180.925433][ T8803]  <TASK>
[  180.928379][ T8803]  dump_stack_lvl+0x16c/0x230
[  180.933085][ T8803]  ? show_regs_print_info+0x20/0x20
[  180.938303][ T8803]  ? load_image+0x3b0/0x3b0
[  180.942830][ T8803]  ? __might_sleep+0xe0/0xe0
[  180.947451][ T8803]  ? __lock_acquire+0x7c80/0x7c80
[  180.952507][ T8803]  should_fail_ex+0x39d/0x4d0
[  180.957210][ T8803]  should_failslab+0x9/0x20
[  180.961717][ T8803]  slab_pre_alloc_hook+0x59/0x310
[  180.966744][ T8803]  kmem_cache_alloc+0x5a/0x2e0
[  180.971508][ T8803]  ? security_inode_alloc+0x34/0x110
[  180.976800][ T8803]  security_inode_alloc+0x34/0x110
[  180.981906][ T8803]  inode_init_always+0x8fc/0xc90
[  180.986833][ T8803]  ? iget_locked+0x20a/0x840
[  180.991418][ T8803]  iget_locked+0x221/0x840
[  180.995829][ T8803]  kernfs_get_inode+0x4f/0x700
[  181.000592][ T8803]  cgroup_attach_permissions+0x26a/0x9d0
[  181.006241][ T8803]  __cgroup_procs_write+0x1e5/0x350
[  181.011453][ T8803]  cgroup_procs_write+0x27/0x50
[  181.016309][ T8803]  ? cgroup_procs_next+0xa0/0xa0
[  181.021250][ T8803]  cgroup_file_write+0x2fc/0x660
[  181.026192][ T8803]  ? read_lock_is_recursive+0x20/0x20
[  181.031565][ T8803]  ? cgroup_seqfile_stop+0xd0/0xd0
[  181.036683][ T8803]  ? cgroup_seqfile_stop+0xd0/0xd0
[  181.041787][ T8803]  kernfs_fop_write_iter+0x3b6/0x520
[  181.047074][ T8803]  vfs_write+0x43b/0x940
[  181.051316][ T8803]  ? file_end_write+0x250/0x250
[  181.056162][ T8803]  ? __fget_files+0x44a/0x4d0
[  181.060862][ T8803]  ? __fdget_pos+0x2a3/0x330
[  181.065462][ T8803]  ? ksys_write+0x75/0x250
[  181.069896][ T8803]  ksys_write+0x147/0x250
[  181.074239][ T8803]  ? __ia32_sys_read+0x90/0x90
[  181.079006][ T8803]  ? lockdep_hardirqs_on+0x98/0x150
[  181.084200][ T8803]  do_syscall_64+0x55/0xb0
[  181.088618][ T8803]  ? clear_bhb_loop+0x40/0x90
[  181.093292][ T8803]  ? clear_bhb_loop+0x40/0x90
[  181.097967][ T8803]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  181.103854][ T8803] RIP: 0033:0x7f534bf8f749
[  181.108263][ T8803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.127863][ T8803] RSP: 002b:00007f534cdbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  181.136270][ T8803] RAX: ffffffffffffffda RBX: 00007f534c1e5fa0 RCX: 00007f534bf8f749
[  181.144231][ T8803] RDX: 0000000000000012 RSI: 00002000000005c0 RDI: 0000000000000006
[  181.152206][ T8803] RBP: 00007f534cdbe090 R08: 0000000000000000 R09: 0000000000000000
[  181.160176][ T8803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  181.168142][ T8803] R13: 00007f534c1e6038 R14: 00007f534c1e5fa0 R15: 00007ffe9650e938
[  181.176127][ T8803]  </TASK>
[  182.002162][ T8836] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1019'.
[  182.080628][ T8836] validate_nla: 4 callbacks suppressed
[  182.080672][ T8836] netlink: 'syz.2.1019': attribute type 29 has an invalid length.
[  182.107599][ T8836] netlink: 'syz.2.1019': attribute type 29 has an invalid length.
[  182.260641][ T8846] netlink: 'syz.2.1025': attribute type 10 has an invalid length.
[  182.592931][ T8854] netlink: 'syz.1.1027': attribute type 10 has an invalid length.
[  182.620401][ T8854] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  182.682855][ T8854] batman_adv: batadv0: Removing interface: batadv_slave_0
[  182.724666][ T8854] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  182.988961][ T8869] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1034'.
[  183.003406][ T8869] netlink: 'syz.2.1034': attribute type 29 has an invalid length.
[  183.014876][ T8869] netlink: 'syz.2.1034': attribute type 29 has an invalid length.
[  183.205983][ T8873] netlink: 'syz.3.1036': attribute type 4 has an invalid length.
[  183.229231][ T8873] netlink: 140 bytes leftover after parsing attributes in process `syz.3.1036'.
[  183.241875][ T8876] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1037'.
[  183.667034][ T8899] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1045'.
[  183.685703][ T8899] netlink: 'syz.1.1045': attribute type 29 has an invalid length.
[  183.694372][ T8899] netlink: 'syz.1.1045': attribute type 29 has an invalid length.
[  184.179147][ T8922] netlink: 'syz.3.1055': attribute type 4 has an invalid length.
[  184.254778][ T8924] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1057'.
[  184.721315][ T8936] mac80211_hwsim hwsim11 wlan0: entered promiscuous mode
[  184.734385][ T8936] mac80211_hwsim hwsim11 wlan0: entered allmulticast mode
[  185.375221][ T8946] FAULT_INJECTION: forcing a failure.
[  185.375221][ T8946] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.396922][ T8946] CPU: 1 PID: 8946 Comm: syz.2.1066 Not tainted syzkaller #0
[  185.404338][ T8946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  185.414419][ T8946] Call Trace:
[  185.417716][ T8946]  <TASK>
[  185.420652][ T8946]  dump_stack_lvl+0x16c/0x230
[  185.425349][ T8946]  ? show_regs_print_info+0x20/0x20
[  185.430561][ T8946]  ? load_image+0x3b0/0x3b0
[  185.435076][ T8946]  ? __might_fault+0xaa/0x120
[  185.439761][ T8946]  ? __lock_acquire+0x7c80/0x7c80
[  185.444804][ T8946]  should_fail_ex+0x39d/0x4d0
[  185.449505][ T8946]  _copy_from_user+0x2f/0xe0
[  185.454106][ T8946]  ___sys_sendmsg+0x159/0x290
[  185.458804][ T8946]  ? __sys_sendmsg+0x270/0x270
[  185.463600][ T8946]  ? __lock_acquire+0x7c80/0x7c80
[  185.468657][ T8946]  __se_sys_sendmsg+0x1a5/0x270
[  185.473520][ T8946]  ? perf_trace_preemptirq_template+0x281/0x340
[  185.479775][ T8946]  ? __x64_sys_sendmsg+0x80/0x80
[  185.484745][ T8946]  ? lockdep_hardirqs_on+0x98/0x150
[  185.489956][ T8946]  do_syscall_64+0x55/0xb0
[  185.494382][ T8946]  ? clear_bhb_loop+0x40/0x90
[  185.499070][ T8946]  ? clear_bhb_loop+0x40/0x90
[  185.503758][ T8946]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  185.509670][ T8946] RIP: 0033:0x7fe0deb8f749
[  185.514103][ T8946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.533724][ T8946] RSP: 002b:00007fe0df940038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  185.542157][ T8946] RAX: ffffffffffffffda RBX: 00007fe0dede5fa0 RCX: 00007fe0deb8f749
[  185.550145][ T8946] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  185.558126][ T8946] RBP: 00007fe0df940090 R08: 0000000000000000 R09: 0000000000000000
[  185.566115][ T8946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.574102][ T8946] R13: 00007fe0dede6038 R14: 00007fe0dede5fa0 R15: 00007ffc8deaa318
[  185.582110][ T8946]  </TASK>
[  185.908714][ T8954] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1067'.
[  186.299485][ T8965] team_slave_0: left promiscuous mode
[  186.310471][ T8965] team_slave_0: left allmulticast mode
[  186.460322][ T8965] team0: Port device team_slave_0 removed
[  186.472277][ T8965] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  186.695963][ T8982] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1081'.
[  187.059686][ T8999] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1088'.
[  187.319393][ T9010] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1093'.
[  187.450281][ T9010] validate_nla: 8 callbacks suppressed
[  187.450313][ T9010] netlink: 'syz.3.1093': attribute type 29 has an invalid length.
[  187.507093][ T9010] netlink: 'syz.3.1093': attribute type 29 has an invalid length.
[  187.897891][ T9040] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1104'.
[  187.996340][ T9040] netlink: 'syz.1.1104': attribute type 29 has an invalid length.
[  188.005557][ T9040] netlink: 'syz.1.1104': attribute type 29 has an invalid length.
[  188.559871][ T9054] netlink: 'syz.2.1109': attribute type 10 has an invalid length.
[  188.586856][ T9056] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1110'.
[  188.641482][ T9054] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1109'.
[  188.670177][ T9056] netlink: 'syz.3.1110': attribute type 29 has an invalid length.
[  188.732174][ T9057] netlink: 'syz.2.1109': attribute type 10 has an invalid length.
[  188.762344][ T9057] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1109'.
[  188.772175][ T9056] netlink: 'syz.3.1110': attribute type 29 has an invalid length.
[  188.939040][ T9061] syzkaller0: entered promiscuous mode
[  188.944565][ T9061] syzkaller0: entered allmulticast mode
[  188.996038][ T9072] netlink: 'syz.3.1113': attribute type 10 has an invalid length.
[  189.020199][ T9072] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1113'.
[  189.043189][ T9064] FAULT_INJECTION: forcing a failure.
[  189.043189][ T9064] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  189.066891][ T9062] sctp: [Deprecated]: syz.1.1111 (pid 9062) Use of struct sctp_assoc_value in delayed_ack socket option.
[  189.066891][ T9062] Use struct sctp_sack_info instead
[  189.073484][ T9064] CPU: 0 PID: 9064 Comm: syz.3.1113 Not tainted syzkaller #0
[  189.090615][ T9064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  189.091647][ T9078] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1116'.
[  189.100666][ T9064] Call Trace:
[  189.100678][ T9064]  <TASK>
[  189.100686][ T9064]  dump_stack_lvl+0x16c/0x230
[  189.100715][ T9064]  ? show_regs_print_info+0x20/0x20
[  189.100736][ T9064]  ? load_image+0x3b0/0x3b0
[  189.100756][ T9064]  ? __might_fault+0xaa/0x120
[  189.100772][ T9064]  ? __lock_acquire+0x7c80/0x7c80
[  189.100797][ T9064]  should_fail_ex+0x39d/0x4d0
[  189.100822][ T9064]  _copy_from_iter+0x1d3/0x1290
[  189.100843][ T9064]  ? slab_post_alloc_hook+0x8a/0x4d0
[  189.100864][ T9064]  ? __virt_addr_valid+0x18c/0x540
[  189.100885][ T9064]  ? __lock_acquire+0x7c80/0x7c80
[  189.100902][ T9064]  ? rcu_is_watching+0x15/0xb0
[  189.100927][ T9064]  ? copyout_mc+0x70/0x70
[  189.100946][ T9064]  ? __virt_addr_valid+0x18c/0x540
[  189.100967][ T9064]  ? __virt_addr_valid+0x18c/0x540
[  189.100987][ T9064]  ? __virt_addr_valid+0x469/0x540
[  189.101009][ T9064]  ? __check_object_size+0x506/0xa30
[  189.101036][ T9064]  netlink_sendmsg+0x75c/0xbe0
[  189.101068][ T9064]  ? netlink_getsockopt+0x580/0x580
[  189.101100][ T9064]  ? aa_sock_msg_perm+0x94/0x150
[  189.101121][ T9064]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  189.101140][ T9064]  ? security_socket_sendmsg+0x80/0xa0
[  189.101159][ T9064]  ? netlink_getsockopt+0x580/0x580
[  189.101181][ T9064]  ____sys_sendmsg+0x5bf/0x950
[  189.101213][ T9064]  ? __asan_memset+0x22/0x40
[  189.101233][ T9064]  ? __sys_sendmsg_sock+0x30/0x30
[  189.101254][ T9064]  ? __import_iovec+0x5f2/0x860
[  189.101285][ T9064]  ? import_iovec+0x73/0xa0
[  189.101311][ T9064]  ___sys_sendmsg+0x220/0x290
[  189.101338][ T9064]  ? __sys_sendmsg+0x270/0x270
[  189.101381][ T9064]  ? __lock_acquire+0x7c80/0x7c80
[  189.101423][ T9064]  __se_sys_sendmsg+0x1a5/0x270
[  189.101449][ T9064]  ? __x64_sys_sendmsg+0x80/0x80
[  189.101489][ T9064]  ? lockdep_hardirqs_on+0x98/0x150
[  189.101510][ T9064]  do_syscall_64+0x55/0xb0
[  189.101529][ T9064]  ? clear_bhb_loop+0x40/0x90
[  189.101547][ T9064]  ? clear_bhb_loop+0x40/0x90
[  189.101567][ T9064]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  189.101583][ T9064] RIP: 0033:0x7fc2c518f749
[  189.303383][ T9064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.322984][ T9064] RSP: 002b:00007fc2c5fac038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  189.331403][ T9064] RAX: ffffffffffffffda RBX: 00007fc2c53e5fa0 RCX: 00007fc2c518f749
[  189.339381][ T9064] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  189.347348][ T9064] RBP: 00007fc2c5fac090 R08: 0000000000000000 R09: 0000000000000000
[  189.355309][ T9064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  189.363271][ T9064] R13: 00007fc2c53e6038 R14: 00007fc2c53e5fa0 R15: 00007ffeacc1a8d8
[  189.371263][ T9064]  </TASK>
[  189.389171][ T9066] delete_channel: no stack
[  189.962898][ T9099] netlink: 'syz.2.1121': attribute type 29 has an invalid length.
[  189.993310][ T9106] FAULT_INJECTION: forcing a failure.
[  189.993310][ T9106] name failslab, interval 1, probability 0, space 0, times 0
[  190.012623][ T9106] CPU: 0 PID: 9106 Comm: syz.1.1124 Not tainted syzkaller #0
[  190.020040][ T9106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  190.030114][ T9106] Call Trace:
[  190.033405][ T9106]  <TASK>
[  190.036350][ T9106]  dump_stack_lvl+0x16c/0x230
[  190.041054][ T9106]  ? sctp_sendmsg+0x155c/0x27e0
[  190.045921][ T9106]  ? ___sys_sendmsg+0x220/0x290
[  190.050794][ T9106]  ? show_regs_print_info+0x20/0x20
[  190.056015][ T9106]  ? load_image+0x3b0/0x3b0
[  190.060554][ T9106]  should_fail_ex+0x39d/0x4d0
[  190.065256][ T9106]  should_failslab+0x9/0x20
[  190.069781][ T9106]  slab_pre_alloc_hook+0x59/0x310
[  190.074841][ T9106]  ? sctp_add_bind_addr+0x8c/0x360
[  190.080063][ T9106]  __kmem_cache_alloc_node+0x53/0x260
[  190.085455][ T9106]  ? sctp_add_bind_addr+0x8c/0x360
[  190.090576][ T9106]  kmalloc_trace+0x2a/0xe0
[  190.095017][ T9106]  sctp_add_bind_addr+0x8c/0x360
[  190.100001][ T9106]  sctp_copy_local_addr_list+0x30c/0x4e0
[  190.105674][ T9106]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  190.111494][ T9106]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  190.117578][ T9106]  ? sctp_v6_is_any+0x64/0x70
[  190.122274][ T9106]  ? sctp_copy_one_addr+0x8c/0x350
[  190.127406][ T9106]  sctp_bind_addr_copy+0xb3/0x3c0
[  190.132446][ T9106]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  190.138787][ T9106]  sctp_connect_new_asoc+0x2da/0x690
[  190.144082][ T9106]  ? __sctp_connect+0xd20/0xd20
[  190.148947][ T9106]  ? __local_bh_enable_ip+0x12e/0x1c0
[  190.154337][ T9106]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  190.159891][ T9106]  ? security_sctp_bind_connect+0x89/0xb0
[  190.165623][ T9106]  sctp_sendmsg+0x155c/0x27e0
[  190.170319][ T9106]  ? sctp_getsockopt+0xb60/0xb60
[  190.175264][ T9106]  ? aa_sk_perm+0x7fc/0x930
[  190.179787][ T9106]  ? aa_af_perm+0x2b0/0x2b0
[  190.184293][ T9106]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  190.190717][ T9106]  ? sock_rps_record_flow+0x19/0x400
[  190.196009][ T9106]  ? inet_send_prepare+0x260/0x260
[  190.201124][ T9106]  ? inet_sendmsg+0xe9/0x2f0
[  190.205718][ T9106]  ? inet_send_prepare+0x260/0x260
[  190.210834][ T9106]  ____sys_sendmsg+0x5bf/0x950
[  190.215613][ T9106]  ? __asan_memset+0x22/0x40
[  190.220226][ T9106]  ? __sys_sendmsg_sock+0x30/0x30
[  190.225274][ T9106]  ? __import_iovec+0x5f2/0x860
[  190.230150][ T9106]  ? import_iovec+0x73/0xa0
[  190.234665][ T9106]  ___sys_sendmsg+0x220/0x290
[  190.239361][ T9106]  ? __sys_sendmsg+0x270/0x270
[  190.244158][ T9106]  ? __lock_acquire+0x7c80/0x7c80
[  190.249217][ T9106]  __se_sys_sendmsg+0x1a5/0x270
[  190.254099][ T9106]  ? __x64_sys_sendmsg+0x80/0x80
[  190.259070][ T9106]  ? lockdep_hardirqs_on+0x98/0x150
[  190.264276][ T9106]  do_syscall_64+0x55/0xb0
[  190.268705][ T9106]  ? clear_bhb_loop+0x40/0x90
[  190.273392][ T9106]  ? clear_bhb_loop+0x40/0x90
[  190.278076][ T9106]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  190.283977][ T9106] RIP: 0033:0x7fb6bbb8f749
[  190.288395][ T9106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.308006][ T9106] RSP: 002b:00007fb6bcaaf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  190.316424][ T9106] RAX: ffffffffffffffda RBX: 00007fb6bbde5fa0 RCX: 00007fb6bbb8f749
[  190.324402][ T9106] RDX: 0000000020000054 RSI: 0000200000002dc0 RDI: 0000000000000003
[  190.332381][ T9106] RBP: 00007fb6bcaaf090 R08: 0000000000000000 R09: 0000000000000000
[  190.340355][ T9106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  190.348323][ T9106] R13: 00007fb6bbde6038 R14: 00007fb6bbde5fa0 R15: 00007ffe2c9656f8
[  190.356309][ T9106]  </TASK>
[  190.997138][ T9125] __nla_validate_parse: 2 callbacks suppressed
[  190.997155][ T9125] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1125'.
[  191.028970][ T9125] bridge0: port 4(batadv0) entered blocking state
[  191.035653][ T9125] bridge0: port 4(batadv0) entered disabled state
[  191.042384][ T9119] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  191.074634][ T9125] batadv0: entered allmulticast mode
[  191.081747][ T9125] batadv0: entered promiscuous mode
[  191.088194][ T9125] bridge0: port 4(batadv0) entered blocking state
[  191.094769][ T9125] bridge0: port 4(batadv0) entered forwarding state
[  191.371997][ T9148] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1135'.
[  191.406118][ T5106] Bluetooth: hci0: command 0x0406 tx timeout
[  191.412245][ T5106] Bluetooth: hci2: command 0x0406 tx timeout
[  191.413345][ T5785] Bluetooth: hci3: command 0x0406 tx timeout
[  191.467770][ T9119] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  191.477099][ T9119] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  192.151483][ T9186] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1152'.
[  192.268620][ T9195] netlink: 140 bytes leftover after parsing attributes in process `syz.1.1156'.
[  192.324321][ T9197] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1157'.
[  192.821990][ T9215] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1165'.
[  192.842511][ T9215] validate_nla: 9 callbacks suppressed
[  192.842543][ T9215] netlink: 'syz.3.1165': attribute type 29 has an invalid length.
[  192.862864][ T9215] netlink: 'syz.3.1165': attribute type 29 has an invalid length.
[  193.711343][ T9252] FAULT_INJECTION: forcing a failure.
[  193.711343][ T9252] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  193.745530][ T9252] CPU: 0 PID: 9252 Comm: syz.0.1182 Not tainted syzkaller #0
[  193.752971][ T9252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  193.763051][ T9252] Call Trace:
[  193.766344][ T9252]  <TASK>
[  193.769463][ T9252]  dump_stack_lvl+0x16c/0x230
[  193.774167][ T9252]  ? show_regs_print_info+0x20/0x20
[  193.779391][ T9252]  ? load_image+0x3b0/0x3b0
[  193.783913][ T9252]  ? __lock_acquire+0x7c80/0x7c80
[  193.788962][ T9252]  should_fail_ex+0x39d/0x4d0
[  193.793671][ T9252]  _copy_from_user+0x2f/0xe0
[  193.798281][ T9252]  __copy_msghdr+0x3bb/0x580
[  193.802899][ T9252]  ___sys_sendmsg+0x1a6/0x290
[  193.807620][ T9252]  ? __sys_sendmsg+0x270/0x270
[  193.812444][ T9252]  ? __lock_acquire+0x7c80/0x7c80
[  193.817517][ T9252]  __se_sys_sendmsg+0x1a5/0x270
[  193.822396][ T9252]  ? __x64_sys_sendmsg+0x80/0x80
[  193.827376][ T9252]  ? lockdep_hardirqs_on+0x98/0x150
[  193.832599][ T9252]  do_syscall_64+0x55/0xb0
[  193.837037][ T9252]  ? clear_bhb_loop+0x40/0x90
[  193.841735][ T9252]  ? clear_bhb_loop+0x40/0x90
[  193.846444][ T9252]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  193.852353][ T9252] RIP: 0033:0x7f534bf8f749
[  193.856775][ T9252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.876385][ T9252] RSP: 002b:00007f534cdbe038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  193.884880][ T9252] RAX: ffffffffffffffda RBX: 00007f534c1e5fa0 RCX: 00007f534bf8f749
[  193.892848][ T9252] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  193.900817][ T9252] RBP: 00007f534cdbe090 R08: 0000000000000000 R09: 0000000000000000
[  193.908781][ T9252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.916772][ T9252] R13: 00007f534c1e6038 R14: 00007f534c1e5fa0 R15: 00007ffe9650e938
[  193.924756][ T9252]  </TASK>
[  194.466948][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  194.473313][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  195.219691][ T9289] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  195.228583][ T9293] netlink: 'syz.3.1195': attribute type 12 has an invalid length.
[  195.272679][ T9293] netlink: 197276 bytes leftover after parsing attributes in process `syz.3.1195'.
[  195.462001][ T9305] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1200'.
[  195.471593][ T9306] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1201'.
[  195.511971][ T9305] netlink: 'syz.0.1200': attribute type 29 has an invalid length.
[  195.516147][ T9306] netlink: 'syz.2.1201': attribute type 29 has an invalid length.
[  195.537752][ T9305] netlink: 'syz.0.1200': attribute type 29 has an invalid length.
[  195.568390][ T9306] netlink: 'syz.2.1201': attribute type 29 has an invalid length.
[  196.107907][ T9336] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1213'.
[  196.128782][ T9334] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1214'.
[  196.148838][ T9336] netlink: 'syz.3.1213': attribute type 29 has an invalid length.
[  196.162047][ T9334] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  196.172886][ T9336] netlink: 'syz.3.1213': attribute type 29 has an invalid length.
[  196.195568][ T9334] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  196.317763][ T9340] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1216'.
[  196.588597][ T9352] netlink: 'syz.2.1219': attribute type 10 has an invalid length.
[  196.649826][ T9352] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1219'.
[  196.664021][ T9349] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1219'.
[  197.005203][ T9374] netlink: 55 bytes leftover after parsing attributes in process `syz.0.1227'.
[  197.025314][ T9374] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  197.132007][ T9374] batman_adv: batadv0: Removing interface: virt_wifi0
[  197.211845][ T9385] sctp: [Deprecated]: syz.1.1230 (pid 9385) Use of struct sctp_assoc_value in delayed_ack socket option.
[  197.211845][ T9385] Use struct sctp_sack_info instead
[  197.345601][ T9394] FAULT_INJECTION: forcing a failure.
[  197.345601][ T9394] name failslab, interval 1, probability 0, space 0, times 0
[  197.358601][ T9394] CPU: 1 PID: 9394 Comm: syz.3.1234 Not tainted syzkaller #0
[  197.366002][ T9394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  197.376053][ T9394] Call Trace:
[  197.379325][ T9394]  <TASK>
[  197.382253][ T9394]  dump_stack_lvl+0x16c/0x230
[  197.386925][ T9394]  ? sctp_sendmsg+0x155c/0x27e0
[  197.391769][ T9394]  ? ___sys_sendmsg+0x220/0x290
[  197.396703][ T9394]  ? show_regs_print_info+0x20/0x20
[  197.401893][ T9394]  ? load_image+0x3b0/0x3b0
[  197.406399][ T9394]  should_fail_ex+0x39d/0x4d0
[  197.411076][ T9394]  should_failslab+0x9/0x20
[  197.415577][ T9394]  slab_pre_alloc_hook+0x59/0x310
[  197.420600][ T9394]  ? sctp_add_bind_addr+0x8c/0x360
[  197.425704][ T9394]  __kmem_cache_alloc_node+0x53/0x260
[  197.431076][ T9394]  ? sctp_add_bind_addr+0x8c/0x360
[  197.436182][ T9394]  kmalloc_trace+0x2a/0xe0
[  197.440593][ T9394]  sctp_add_bind_addr+0x8c/0x360
[  197.445527][ T9394]  sctp_copy_local_addr_list+0x30c/0x4e0
[  197.451163][ T9394]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  197.456877][ T9394]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  197.462935][ T9394]  ? sctp_v6_is_any+0x64/0x70
[  197.467601][ T9394]  ? sctp_copy_one_addr+0x8c/0x350
[  197.472706][ T9394]  sctp_bind_addr_copy+0xb3/0x3c0
[  197.477737][ T9394]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  197.484055][ T9394]  sctp_connect_new_asoc+0x2da/0x690
[  197.489344][ T9394]  ? __sctp_connect+0xd20/0xd20
[  197.494183][ T9394]  ? __local_bh_enable_ip+0x12e/0x1c0
[  197.499550][ T9394]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  197.505095][ T9394]  ? security_sctp_bind_connect+0x89/0xb0
[  197.510804][ T9394]  sctp_sendmsg+0x155c/0x27e0
[  197.515477][ T9394]  ? sctp_getsockopt+0xb60/0xb60
[  197.520404][ T9394]  ? aa_sk_perm+0x7fc/0x930
[  197.524902][ T9394]  ? aa_af_perm+0x2b0/0x2b0
[  197.529395][ T9394]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  197.535809][ T9394]  ? sock_rps_record_flow+0x19/0x400
[  197.541084][ T9394]  ? inet_send_prepare+0x260/0x260
[  197.546186][ T9394]  ? inet_sendmsg+0xe9/0x2f0
[  197.550768][ T9394]  ? inet_send_prepare+0x260/0x260
[  197.555866][ T9394]  ____sys_sendmsg+0x5bf/0x950
[  197.560629][ T9394]  ? __asan_memset+0x22/0x40
[  197.565209][ T9394]  ? __sys_sendmsg_sock+0x30/0x30
[  197.570242][ T9394]  ? __import_iovec+0x5f2/0x860
[  197.575093][ T9394]  ? import_iovec+0x73/0xa0
[  197.579588][ T9394]  ___sys_sendmsg+0x220/0x290
[  197.584260][ T9394]  ? __sys_sendmsg+0x270/0x270
[  197.589032][ T9394]  ? __lock_acquire+0x7c80/0x7c80
[  197.594064][ T9394]  __se_sys_sendmsg+0x1a5/0x270
[  197.598909][ T9394]  ? __x64_sys_sendmsg+0x80/0x80
[  197.603856][ T9394]  ? lockdep_hardirqs_on+0x98/0x150
[  197.609045][ T9394]  do_syscall_64+0x55/0xb0
[  197.613450][ T9394]  ? clear_bhb_loop+0x40/0x90
[  197.618118][ T9394]  ? clear_bhb_loop+0x40/0x90
[  197.622785][ T9394]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  197.628664][ T9394] RIP: 0033:0x7fc2c518f749
[  197.633069][ T9394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.653099][ T9394] RSP: 002b:00007fc2c5fac038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  197.661535][ T9394] RAX: ffffffffffffffda RBX: 00007fc2c53e5fa0 RCX: 00007fc2c518f749
[  197.669502][ T9394] RDX: 0000000020000054 RSI: 0000200000002dc0 RDI: 0000000000000003
[  197.677463][ T9394] RBP: 00007fc2c5fac090 R08: 0000000000000000 R09: 0000000000000000
[  197.685424][ T9394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  197.693383][ T9394] R13: 00007fc2c53e6038 R14: 00007fc2c53e5fa0 R15: 00007ffeacc1a8d8
[  197.701358][ T9394]  </TASK>
[  197.782206][ T9400] FAULT_INJECTION: forcing a failure.
[  197.782206][ T9400] name failslab, interval 1, probability 0, space 0, times 0
[  197.798269][ T9400] CPU: 0 PID: 9400 Comm: syz.0.1236 Not tainted syzkaller #0
[  197.805684][ T9400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  197.815754][ T9400] Call Trace:
[  197.819029][ T9400]  <TASK>
[  197.821952][ T9400]  dump_stack_lvl+0x16c/0x230
[  197.826638][ T9400]  ? show_regs_print_info+0x20/0x20
[  197.831830][ T9400]  ? load_image+0x3b0/0x3b0
[  197.836327][ T9400]  ? __might_sleep+0xe0/0xe0
[  197.840910][ T9400]  ? __lock_acquire+0x7c80/0x7c80
[  197.845928][ T9400]  should_fail_ex+0x39d/0x4d0
[  197.850603][ T9400]  should_failslab+0x9/0x20
[  197.855100][ T9400]  slab_pre_alloc_hook+0x59/0x310
[  197.860130][ T9400]  ? allocate_cgrp_cset_links+0xc9/0x320
[  197.865757][ T9400]  __kmem_cache_alloc_node+0x53/0x260
[  197.871124][ T9400]  ? allocate_cgrp_cset_links+0xc9/0x320
[  197.876745][ T9400]  kmalloc_trace+0x2a/0xe0
[  197.881155][ T9400]  allocate_cgrp_cset_links+0xc9/0x320
[  197.886606][ T9400]  find_css_set+0x9dc/0x1540
[  197.891193][ T9400]  ? cgroup_migrate_prepare_dst+0x6f0/0x6f0
[  197.897172][ T9400]  ? mark_lock+0x94/0x320
[  197.901507][ T9400]  cgroup_migrate_prepare_dst+0x130/0x6f0
[  197.907233][ T9400]  cgroup_attach_task+0x527/0x830
[  197.912252][ T9400]  ? proc_nr_inodes+0x230/0x230
[  197.917109][ T9400]  ? cgroup_attach_task+0x1f3/0x830
[  197.922302][ T9400]  ? cgroup_migrate_execute+0xf30/0xf30
[  197.927935][ T9400]  ? cgroup_attach_permissions+0x4eb/0x9d0
[  197.933745][ T9400]  ? revert_creds+0xae/0xc0
[  197.938241][ T9400]  __cgroup_procs_write+0x23a/0x350
[  197.943450][ T9400]  cgroup_procs_write+0x27/0x50
[  197.948299][ T9400]  ? cgroup_procs_next+0xa0/0xa0
[  197.953229][ T9400]  cgroup_file_write+0x2fc/0x660
[  197.958160][ T9400]  ? read_lock_is_recursive+0x20/0x20
[  197.963528][ T9400]  ? cgroup_seqfile_stop+0xd0/0xd0
[  197.968640][ T9400]  ? cgroup_seqfile_stop+0xd0/0xd0
[  197.973740][ T9400]  kernfs_fop_write_iter+0x3b6/0x520
[  197.979025][ T9400]  vfs_write+0x43b/0x940
[  197.983271][ T9400]  ? file_end_write+0x250/0x250
[  197.988118][ T9400]  ? __fget_files+0x44a/0x4d0
[  197.992792][ T9400]  ? __fdget_pos+0x2a3/0x330
[  197.997370][ T9400]  ? ksys_write+0x75/0x250
[  198.001779][ T9400]  ksys_write+0x147/0x250
[  198.006108][ T9400]  ? __ia32_sys_read+0x90/0x90
[  198.010868][ T9400]  ? lockdep_hardirqs_on+0x98/0x150
[  198.016060][ T9400]  do_syscall_64+0x55/0xb0
[  198.020466][ T9400]  ? clear_bhb_loop+0x40/0x90
[  198.025133][ T9400]  ? clear_bhb_loop+0x40/0x90
[  198.029822][ T9400]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  198.035732][ T9400] RIP: 0033:0x7f534bf8f749
[  198.040158][ T9400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.059772][ T9400] RSP: 002b:00007f534cdbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  198.068187][ T9400] RAX: ffffffffffffffda RBX: 00007f534c1e5fa0 RCX: 00007f534bf8f749
[  198.076150][ T9400] RDX: 0000000000000012 RSI: 00002000000005c0 RDI: 0000000000000006
[  198.084125][ T9400] RBP: 00007f534cdbe090 R08: 0000000000000000 R09: 0000000000000000
[  198.092086][ T9400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.100046][ T9400] R13: 00007f534c1e6038 R14: 00007f534c1e5fa0 R15: 00007ffe9650e938
[  198.108025][ T9400]  </TASK>
[  198.115152][ T9107] wlan1: Trigger new scan to find an IBSS to join
[  198.590847][ T9421] validate_nla: 2 callbacks suppressed
[  198.590865][ T9421] netlink: 'syz.1.1245': attribute type 10 has an invalid length.
[  198.778176][ T9426] FAULT_INJECTION: forcing a failure.
[  198.778176][ T9426] name failslab, interval 1, probability 0, space 0, times 0
[  198.794094][ T9427] netlink: 'syz.0.1246': attribute type 10 has an invalid length.
[  198.799404][ T9426] CPU: 0 PID: 9426 Comm: syz.1.1248 Not tainted syzkaller #0
[  198.809347][ T9426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  198.819417][ T9426] Call Trace:
[  198.822703][ T9426]  <TASK>
[  198.825646][ T9426]  dump_stack_lvl+0x16c/0x230
[  198.830346][ T9426]  ? show_regs_print_info+0x20/0x20
[  198.835567][ T9426]  ? load_image+0x3b0/0x3b0
[  198.840091][ T9426]  ? __lock_acquire+0x7c80/0x7c80
[  198.845142][ T9426]  should_fail_ex+0x39d/0x4d0
[  198.849829][ T9426]  should_failslab+0x9/0x20
[  198.854334][ T9426]  slab_pre_alloc_hook+0x59/0x310
[  198.859364][ T9426]  ? apparmor_sk_alloc_security+0x77/0x100
[  198.865163][ T9426]  __kmem_cache_alloc_node+0x53/0x260
[  198.870531][ T9426]  ? apparmor_sk_alloc_security+0x77/0x100
[  198.876326][ T9426]  kmalloc_trace+0x2a/0xe0
[  198.880736][ T9426]  apparmor_sk_alloc_security+0x77/0x100
[  198.886360][ T9426]  security_sk_alloc+0x6e/0xa0
[  198.891140][ T9426]  sk_prot_alloc+0x101/0x210
[  198.895725][ T9426]  sk_alloc+0x3a/0x360
[  198.899789][ T9426]  ? __lock_acquire+0x7c80/0x7c80
[  198.904805][ T9426]  __vsock_create+0x3b/0x920
[  198.909391][ T9426]  vsock_create+0x132/0x3b0
[  198.913884][ T9426]  __sock_create+0x4a6/0x940
[  198.918475][ T9426]  __sys_socketpair+0x1c1/0x550
[  198.923322][ T9426]  __x64_sys_socketpair+0x9b/0xb0
[  198.928342][ T9426]  do_syscall_64+0x55/0xb0
[  198.932752][ T9426]  ? clear_bhb_loop+0x40/0x90
[  198.937421][ T9426]  ? clear_bhb_loop+0x40/0x90
[  198.942087][ T9426]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  198.947976][ T9426] RIP: 0033:0x7fb6bbb8f749
[  198.952382][ T9426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.971980][ T9426] RSP: 002b:00007fb6bcaaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  198.980473][ T9426] RAX: ffffffffffffffda RBX: 00007fb6bbde5fa0 RCX: 00007fb6bbb8f749
[  198.988433][ T9426] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000028
[  198.996404][ T9426] RBP: 00007fb6bcaaf090 R08: 0000000000000000 R09: 0000000000000000
[  199.004363][ T9426] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[  199.012323][ T9426] R13: 00007fb6bbde6038 R14: 00007fb6bbde5fa0 R15: 00007ffe2c9656f8
[  199.020298][ T9426]  </TASK>
[  199.732825][ T9462] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1259'.
[  199.774635][ T9462] netlink: 'syz.1.1259': attribute type 29 has an invalid length.
[  199.801226][ T9462] netlink: 'syz.1.1259': attribute type 29 has an invalid length.
[  199.937066][ T9465] netlink: 'syz.3.1260': attribute type 7 has an invalid length.
[  200.921658][ T9496] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1270'.
[  200.964079][ T9496] netlink: 'syz.1.1270': attribute type 29 has an invalid length.
[  200.996453][ T9496] netlink: 'syz.1.1270': attribute type 29 has an invalid length.
[  201.273680][ T9512] netlink: 201392 bytes leftover after parsing attributes in process `syz.2.1277'.
[  201.339393][ T9510] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1276'.
[  201.444297][ T9515] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1278'.
[  201.460081][ T9517] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1278'.
[  201.784432][ T9527] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1282'.
[  201.809078][ T9527] netlink: 'syz.2.1282': attribute type 29 has an invalid length.
[  201.824746][ T9527] netlink: 'syz.2.1282': attribute type 29 has an invalid length.
[  202.037740][ T9533] FAULT_INJECTION: forcing a failure.
[  202.037740][ T9533] name failslab, interval 1, probability 0, space 0, times 0
[  202.053797][   T42] wlan1: Trigger new scan to find an IBSS to join
[  202.072998][ T9533] CPU: 1 PID: 9533 Comm: syz.2.1285 Not tainted syzkaller #0
[  202.080414][ T9533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  202.090486][ T9533] Call Trace:
[  202.090959][ T9535] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1286'.
[  202.093765][ T9533]  <TASK>
[  202.093776][ T9533]  dump_stack_lvl+0x16c/0x230
[  202.093806][ T9533]  ? show_regs_print_info+0x20/0x20
[  202.115536][ T9533]  ? load_image+0x3b0/0x3b0
[  202.120064][ T9533]  ? __might_sleep+0xe0/0xe0
[  202.124680][ T9533]  ? __lock_acquire+0x7c80/0x7c80
[  202.129721][ T9533]  ? __lock_acquire+0x1260/0x7c80
[  202.134773][ T9533]  should_fail_ex+0x39d/0x4d0
[  202.135625][ T9535] netlink: 'syz.3.1286': attribute type 29 has an invalid length.
[  202.139461][ T9533]  should_failslab+0x9/0x20
[  202.139487][ T9533]  slab_pre_alloc_hook+0x59/0x310
[  202.139510][ T9533]  ? trace_event_raw_event_lock+0x230/0x230
[  202.139534][ T9533]  ? sock_kmalloc+0x96/0xf0
[  202.167227][ T9533]  ? sock_kmalloc+0x96/0xf0
[  202.171755][ T9533]  __kmem_cache_alloc_node+0x53/0x260
[  202.177166][ T9533]  ? sock_kmalloc+0x96/0xf0
[  202.181687][ T9533]  __kmalloc+0xa4/0x240
[  202.185872][ T9533]  sock_kmalloc+0x96/0xf0
[  202.190221][ T9533]  ____sys_sendmsg+0x1b8/0x950
[  202.195016][ T9533]  ? __asan_memset+0x22/0x40
[  202.199628][ T9533]  ? __sys_sendmsg_sock+0x30/0x30
[  202.204677][ T9533]  ? __import_iovec+0x3fa/0x860
[  202.209558][ T9533]  ? import_iovec+0x73/0xa0
[  202.214091][ T9533]  ___sys_sendmsg+0x220/0x290
[  202.218810][ T9533]  ? __sys_sendmsg+0x270/0x270
[  202.223621][ T9533]  ? __lock_acquire+0x7c80/0x7c80
[  202.228684][ T9533]  __se_sys_sendmsg+0x1a5/0x270
[  202.233537][ T9533]  ? __x64_sys_sendmsg+0x80/0x80
[  202.238479][ T9533]  ? lockdep_hardirqs_on+0x98/0x150
[  202.243670][ T9533]  do_syscall_64+0x55/0xb0
[  202.248086][ T9533]  ? clear_bhb_loop+0x40/0x90
[  202.252774][ T9533]  ? clear_bhb_loop+0x40/0x90
[  202.257456][ T9533]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  202.263363][ T9533] RIP: 0033:0x7fe0deb8f749
[  202.267791][ T9533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.287389][ T9533] RSP: 002b:00007fe0df940038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  202.295794][ T9533] RAX: ffffffffffffffda RBX: 00007fe0dede5fa0 RCX: 00007fe0deb8f749
[  202.303751][ T9533] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  202.311712][ T9533] RBP: 00007fe0df940090 R08: 0000000000000000 R09: 0000000000000000
[  202.319690][ T9533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  202.327664][ T9533] R13: 00007fe0dede6038 R14: 00007fe0dede5fa0 R15: 00007ffc8deaa318
[  202.335646][ T9533]  </TASK>
[  202.783791][ T9550] netlink: 126588 bytes leftover after parsing attributes in process `syz.1.1293'.
[  202.854290][ T9550] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1293'.
[  203.189131][ T9555] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1293'.
[  203.206460][   T42] wlan1: Creating new IBSS network, BSSID 0a:1e:45:78:60:bf
[  203.394060][ T9559] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1296'.
[  203.623654][ T9568] validate_nla: 4 callbacks suppressed
[  203.623670][ T9568] netlink: 'syz.1.1299': attribute type 9 has an invalid length.
[  203.971972][ T9581] netlink: 'syz.1.1303': attribute type 25 has an invalid length.
[  204.403436][ T9598] netlink: 'syz.3.1309': attribute type 39 has an invalid length.
[  204.627579][ T9606] bridge0: port 4(batadv0) entered disabled state
[  204.634437][ T9606] bridge0: port 3(team0) entered disabled state
[  204.641570][ T9606] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.649131][ T9606] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.712227][ T5791] Bluetooth: hci1: ISO packet for unknown connection handle 13
[  204.715444][ T9606] bridge0: entered allmulticast mode
[  205.256546][ T9619] netlink: 'syz.2.1317': attribute type 3 has an invalid length.
[  206.412334][ T9641] FAULT_INJECTION: forcing a failure.
[  206.412334][ T9641] name failslab, interval 1, probability 0, space 0, times 0
[  206.433939][ T9641] CPU: 1 PID: 9641 Comm: syz.1.1325 Not tainted syzkaller #0
[  206.441373][ T9641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  206.451447][ T9641] Call Trace:
[  206.454741][ T9641]  <TASK>
[  206.457687][ T9641]  dump_stack_lvl+0x16c/0x230
[  206.462393][ T9641]  ? sctp_sendmsg+0x155c/0x27e0
[  206.467255][ T9641]  ? ___sys_sendmsg+0x220/0x290
[  206.472117][ T9641]  ? show_regs_print_info+0x20/0x20
[  206.477330][ T9641]  ? load_image+0x3b0/0x3b0
[  206.481843][ T9641]  should_fail_ex+0x39d/0x4d0
[  206.486526][ T9641]  should_failslab+0x9/0x20
[  206.491036][ T9641]  slab_pre_alloc_hook+0x59/0x310
[  206.496058][ T9641]  ? sctp_add_bind_addr+0x8c/0x360
[  206.501164][ T9641]  __kmem_cache_alloc_node+0x53/0x260
[  206.506797][ T9641]  ? sctp_add_bind_addr+0x8c/0x360
[  206.511903][ T9641]  kmalloc_trace+0x2a/0xe0
[  206.516315][ T9641]  sctp_add_bind_addr+0x8c/0x360
[  206.521248][ T9641]  sctp_copy_local_addr_list+0x30c/0x4e0
[  206.526880][ T9641]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  206.532597][ T9641]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  206.538660][ T9641]  ? sctp_v6_is_any+0x64/0x70
[  206.543329][ T9641]  ? sctp_copy_one_addr+0x8c/0x350
[  206.548438][ T9641]  sctp_bind_addr_copy+0xb3/0x3c0
[  206.553459][ T9641]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  206.559780][ T9641]  sctp_connect_new_asoc+0x2da/0x690
[  206.565056][ T9641]  ? __sctp_connect+0xd20/0xd20
[  206.569893][ T9641]  ? __local_bh_enable_ip+0x12e/0x1c0
[  206.575260][ T9641]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  206.580803][ T9641]  ? security_sctp_bind_connect+0x89/0xb0
[  206.586603][ T9641]  sctp_sendmsg+0x155c/0x27e0
[  206.591279][ T9641]  ? sctp_getsockopt+0xb60/0xb60
[  206.596207][ T9641]  ? aa_sk_perm+0x7fc/0x930
[  206.600708][ T9641]  ? aa_af_perm+0x2b0/0x2b0
[  206.605202][ T9641]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  206.611619][ T9641]  ? sock_rps_record_flow+0x19/0x400
[  206.616898][ T9641]  ? inet_send_prepare+0x260/0x260
[  206.622000][ T9641]  ? inet_sendmsg+0xe9/0x2f0
[  206.626580][ T9641]  ? inet_send_prepare+0x260/0x260
[  206.631681][ T9641]  ____sys_sendmsg+0x5bf/0x950
[  206.636465][ T9641]  ? __asan_memset+0x22/0x40
[  206.641060][ T9641]  ? __sys_sendmsg_sock+0x30/0x30
[  206.646084][ T9641]  ? __import_iovec+0x5f2/0x860
[  206.650935][ T9641]  ? import_iovec+0x73/0xa0
[  206.655432][ T9641]  ___sys_sendmsg+0x220/0x290
[  206.660105][ T9641]  ? __sys_sendmsg+0x270/0x270
[  206.664877][ T9641]  ? __lock_acquire+0x7c80/0x7c80
[  206.669913][ T9641]  __se_sys_sendmsg+0x1a5/0x270
[  206.674772][ T9641]  ? __x64_sys_sendmsg+0x80/0x80
[  206.679716][ T9641]  ? lockdep_hardirqs_on+0x98/0x150
[  206.684907][ T9641]  do_syscall_64+0x55/0xb0
[  206.689319][ T9641]  ? clear_bhb_loop+0x40/0x90
[  206.693986][ T9641]  ? clear_bhb_loop+0x40/0x90
[  206.698664][ T9641]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  206.704565][ T9641] RIP: 0033:0x7fb6bbb8f749
[  206.708975][ T9641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.728576][ T9641] RSP: 002b:00007fb6bcaaf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  206.736982][ T9641] RAX: ffffffffffffffda RBX: 00007fb6bbde5fa0 RCX: 00007fb6bbb8f749
[  206.744944][ T9641] RDX: 0000000020000054 RSI: 0000200000002dc0 RDI: 0000000000000003
[  206.752908][ T9641] RBP: 00007fb6bcaaf090 R08: 0000000000000000 R09: 0000000000000000
[  206.760869][ T9641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  206.768829][ T9641] R13: 00007fb6bbde6038 R14: 00007fb6bbde5fa0 R15: 00007ffe2c9656f8
[  206.776803][ T9641]  </TASK>
[  207.000735][ T9649] FAULT_INJECTION: forcing a failure.
[  207.000735][ T9649] name failslab, interval 1, probability 0, space 0, times 0
[  207.021293][ T9649] CPU: 0 PID: 9649 Comm: syz.0.1328 Not tainted syzkaller #0
[  207.028718][ T9649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  207.039232][ T9649] Call Trace:
[  207.042525][ T9649]  <TASK>
[  207.045474][ T9649]  dump_stack_lvl+0x16c/0x230
[  207.050176][ T9649]  ? show_regs_print_info+0x20/0x20
[  207.055401][ T9649]  ? load_image+0x3b0/0x3b0
[  207.059930][ T9649]  ? __might_sleep+0xe0/0xe0
[  207.064536][ T9649]  ? __lock_acquire+0x7c80/0x7c80
[  207.069576][ T9649]  should_fail_ex+0x39d/0x4d0
[  207.074249][ T9649]  should_failslab+0x9/0x20
[  207.078742][ T9649]  slab_pre_alloc_hook+0x59/0x310
[  207.083758][ T9649]  ? allocate_cgrp_cset_links+0xc9/0x320
[  207.089383][ T9649]  __kmem_cache_alloc_node+0x53/0x260
[  207.094746][ T9649]  ? allocate_cgrp_cset_links+0xc9/0x320
[  207.100378][ T9649]  kmalloc_trace+0x2a/0xe0
[  207.104791][ T9649]  allocate_cgrp_cset_links+0xc9/0x320
[  207.110245][ T9649]  find_css_set+0x9dc/0x1540
[  207.114833][ T9649]  ? cgroup_migrate_prepare_dst+0x6f0/0x6f0
[  207.120727][ T9649]  ? mark_lock+0x94/0x320
[  207.125056][ T9649]  cgroup_migrate_prepare_dst+0x130/0x6f0
[  207.130768][ T9649]  cgroup_attach_task+0x527/0x830
[  207.135789][ T9649]  ? proc_nr_inodes+0x230/0x230
[  207.140639][ T9649]  ? cgroup_attach_task+0x1f3/0x830
[  207.145823][ T9649]  ? cgroup_migrate_execute+0xf30/0xf30
[  207.151358][ T9649]  ? cgroup_attach_permissions+0x4eb/0x9d0
[  207.157154][ T9649]  ? revert_creds+0xae/0xc0
[  207.161650][ T9649]  __cgroup_procs_write+0x23a/0x350
[  207.166859][ T9649]  cgroup_procs_write+0x27/0x50
[  207.171709][ T9649]  ? cgroup_procs_next+0xa0/0xa0
[  207.176638][ T9649]  cgroup_file_write+0x2fc/0x660
[  207.181564][ T9649]  ? read_lock_is_recursive+0x20/0x20
[  207.186920][ T9649]  ? cgroup_seqfile_stop+0xd0/0xd0
[  207.192025][ T9649]  ? cgroup_seqfile_stop+0xd0/0xd0
[  207.197122][ T9649]  kernfs_fop_write_iter+0x3b6/0x520
[  207.202399][ T9649]  vfs_write+0x43b/0x940
[  207.206634][ T9649]  ? file_end_write+0x250/0x250
[  207.211474][ T9649]  ? __fget_files+0x44a/0x4d0
[  207.216147][ T9649]  ? __fdget_pos+0x2a3/0x330
[  207.220734][ T9649]  ? ksys_write+0x75/0x250
[  207.225157][ T9649]  ksys_write+0x147/0x250
[  207.229488][ T9649]  ? __ia32_sys_read+0x90/0x90
[  207.234239][ T9649]  ? lockdep_hardirqs_on+0x98/0x150
[  207.239451][ T9649]  do_syscall_64+0x55/0xb0
[  207.243886][ T9649]  ? clear_bhb_loop+0x40/0x90
[  207.248568][ T9649]  ? clear_bhb_loop+0x40/0x90
[  207.253264][ T9649]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  207.259167][ T9649] RIP: 0033:0x7f534bf8f749
[  207.263574][ T9649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.283174][ T9649] RSP: 002b:00007f534cdbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  207.291578][ T9649] RAX: ffffffffffffffda RBX: 00007f534c1e5fa0 RCX: 00007f534bf8f749
[  207.299540][ T9649] RDX: 0000000000000012 RSI: 00002000000005c0 RDI: 0000000000000006
[  207.307512][ T9649] RBP: 00007f534cdbe090 R08: 0000000000000000 R09: 0000000000000000
[  207.315481][ T9649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.323461][ T9649] R13: 00007f534c1e6038 R14: 00007f534c1e5fa0 R15: 00007ffe9650e938
[  207.331460][ T9649]  </TASK>
[  207.440886][ T9657] sctp: [Deprecated]: syz.1.1329 (pid 9657) Use of struct sctp_assoc_value in delayed_ack socket option.
[  207.440886][ T9657] Use struct sctp_sack_info instead
[  207.610745][ T9662] netlink: 'syz.2.1333': attribute type 29 has an invalid length.
[  207.624284][ T9662] netlink: 'syz.2.1333': attribute type 29 has an invalid length.
[  208.410102][ T9684] netlink: 'syz.2.1338': attribute type 10 has an invalid length.
[  208.465560][ T9684] __nla_validate_parse: 3 callbacks suppressed
[  208.480145][ T9684] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1338'.
[  208.513488][ T9685] netlink: 'syz.2.1338': attribute type 10 has an invalid length.
[  208.539561][ T9685] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1338'.
[  208.554610][ T9685] FAULT_INJECTION: forcing a failure.
[  208.554610][ T9685] name failslab, interval 1, probability 0, space 0, times 0
[  208.570024][ T9685] CPU: 1 PID: 9685 Comm: syz.2.1338 Not tainted syzkaller #0
[  208.577430][ T9685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  208.587497][ T9685] Call Trace:
[  208.590783][ T9685]  <TASK>
[  208.593721][ T9685]  dump_stack_lvl+0x16c/0x230
[  208.598422][ T9685]  ? show_regs_print_info+0x20/0x20
[  208.603641][ T9685]  ? load_image+0x3b0/0x3b0
[  208.608151][ T9685]  ? __might_sleep+0xe0/0xe0
[  208.612742][ T9685]  ? __lock_acquire+0x7c80/0x7c80
[  208.617771][ T9685]  should_fail_ex+0x39d/0x4d0
[  208.622452][ T9685]  should_failslab+0x9/0x20
[  208.626949][ T9685]  slab_pre_alloc_hook+0x59/0x310
[  208.631963][ T9685]  ? lockdep_hardirqs_on+0x98/0x150
[  208.637149][ T9685]  kmem_cache_alloc_node+0x60/0x330
[  208.642338][ T9685]  ? __alloc_skb+0x108/0x2c0
[  208.646929][ T9685]  __alloc_skb+0x108/0x2c0
[  208.651337][ T9685]  netlink_ack+0x376/0x1110
[  208.655849][ T9685]  ? __dev_queue_xmit+0x245/0x35a0
[  208.660957][ T9685]  ? netlink_dump+0xde0/0xde0
[  208.665623][ T9685]  ? ref_tracker_free+0x634/0x7d0
[  208.670634][ T9685]  ? __copy_skb_header+0xa7/0x550
[  208.675656][ T9685]  netlink_rcv_skb+0x29a/0x480
[  208.680420][ T9685]  ? rtnetlink_bind+0x80/0x80
[  208.685086][ T9685]  ? netlink_ack+0x1110/0x1110
[  208.689846][ T9685]  ? __lock_acquire+0x7c80/0x7c80
[  208.694861][ T9685]  ? netlink_deliver_tap+0x2e/0x1b0
[  208.700054][ T9685]  netlink_unicast+0x751/0x8d0
[  208.704816][ T9685]  netlink_sendmsg+0x8c1/0xbe0
[  208.709579][ T9685]  ? netlink_getsockopt+0x580/0x580
[  208.714769][ T9685]  ? aa_sock_msg_perm+0x94/0x150
[  208.719695][ T9685]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  208.724968][ T9685]  ? security_socket_sendmsg+0x80/0xa0
[  208.730418][ T9685]  ? netlink_getsockopt+0x580/0x580
[  208.735607][ T9685]  ____sys_sendmsg+0x5bf/0x950
[  208.740375][ T9685]  ? __asan_memset+0x22/0x40
[  208.744957][ T9685]  ? __sys_sendmsg_sock+0x30/0x30
[  208.749972][ T9685]  ? __import_iovec+0x5f2/0x860
[  208.754819][ T9685]  ? import_iovec+0x73/0xa0
[  208.759319][ T9685]  ___sys_sendmsg+0x220/0x290
[  208.763994][ T9685]  ? __sys_sendmsg+0x270/0x270
[  208.768767][ T9685]  ? __lock_acquire+0x7c80/0x7c80
[  208.773818][ T9685]  __se_sys_sendmsg+0x1a5/0x270
[  208.778666][ T9685]  ? __x64_sys_sendmsg+0x80/0x80
[  208.783607][ T9685]  ? lockdep_hardirqs_on+0x98/0x150
[  208.788795][ T9685]  do_syscall_64+0x55/0xb0
[  208.793203][ T9685]  ? clear_bhb_loop+0x40/0x90
[  208.797867][ T9685]  ? clear_bhb_loop+0x40/0x90
[  208.802533][ T9685]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  208.808413][ T9685] RIP: 0033:0x7fe0deb8f749
[  208.812817][ T9685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.832410][ T9685] RSP: 002b:00007fe0dcdd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  208.840812][ T9685] RAX: ffffffffffffffda RBX: 00007fe0dede6180 RCX: 00007fe0deb8f749
[  208.848771][ T9685] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  208.856728][ T9685] RBP: 00007fe0dcdd5090 R08: 0000000000000000 R09: 0000000000000000
[  208.864688][ T9685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.872649][ T9685] R13: 00007fe0dede6218 R14: 00007fe0dede6180 R15: 00007ffc8deaa318
[  208.880623][ T9685]  </TASK>
[  208.910701][ T9687] netlink: 'syz.0.1342': attribute type 29 has an invalid length.
[  208.946961][ T9687] netlink: 'syz.0.1342': attribute type 29 has an invalid length.
[  209.869562][ T9715] netlink: 'syz.1.1351': attribute type 4 has an invalid length.
[  209.880641][ T9715] netlink: 140 bytes leftover after parsing attributes in process `syz.1.1351'.
[  210.112148][ T9726] netlink: 'syz.1.1353': attribute type 29 has an invalid length.
[  210.128274][ T9726] netlink: 'syz.1.1353': attribute type 29 has an invalid length.
[  210.845612][ T9746] delete_channel: no stack
[  210.863594][ T9746] delete_channel: no stack
[  211.291976][ T9760] netlink: 'syz.1.1366': attribute type 29 has an invalid length.
[  211.312596][ T9760] netlink: 'syz.1.1366': attribute type 29 has an invalid length.
[  211.885901][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  212.137461][ T9788] netlink: 'syz.0.1377': attribute type 3 has an invalid length.
[  212.175617][ T9788] netlink: 16098 bytes leftover after parsing attributes in process `syz.0.1377'.
[  212.391686][ T9786] delete_channel: no stack
[  212.472743][ T9791] netlink: 'syz.3.1378': attribute type 29 has an invalid length.
[  212.492418][ T9791] netlink: 'syz.3.1378': attribute type 29 has an invalid length.
[  212.895445][ T9805] FAULT_INJECTION: forcing a failure.
[  212.895445][ T9805] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  212.918873][ T9805] CPU: 1 PID: 9805 Comm: syz.1.1383 Not tainted syzkaller #0
[  212.926291][ T9805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  212.936349][ T9805] Call Trace:
[  212.939623][ T9805]  <TASK>
[  212.942545][ T9805]  dump_stack_lvl+0x16c/0x230
[  212.947227][ T9805]  ? show_regs_print_info+0x20/0x20
[  212.952423][ T9805]  ? load_image+0x3b0/0x3b0
[  212.956928][ T9805]  ? __might_fault+0xaa/0x120
[  212.961602][ T9805]  ? __lock_acquire+0x7c80/0x7c80
[  212.966626][ T9805]  should_fail_ex+0x39d/0x4d0
[  212.971304][ T9805]  strncpy_from_user+0x36/0x2e0
[  212.976171][ T9805]  getname_flags+0xf6/0x500
[  212.980689][ T9805]  do_sys_openat2+0xcb/0x1c0
[  212.985273][ T9805]  ? perf_trace_preemptirq_template+0x281/0x340
[  212.991515][ T9805]  ? do_sys_open+0xe0/0xe0
[  212.995928][ T9805]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  213.001905][ T9805]  ? lock_chain_count+0x20/0x20
[  213.006755][ T9805]  __x64_sys_openat+0x139/0x160
[  213.011777][ T9805]  do_syscall_64+0x55/0xb0
[  213.016189][ T9805]  ? clear_bhb_loop+0x40/0x90
[  213.020855][ T9805]  ? clear_bhb_loop+0x40/0x90
[  213.025524][ T9805]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  213.031413][ T9805] RIP: 0033:0x7fb6bbb8f749
[  213.035823][ T9805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.055423][ T9805] RSP: 002b:00007fb6bcaaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  213.063833][ T9805] RAX: ffffffffffffffda RBX: 00007fb6bbde5fa0 RCX: 00007fb6bbb8f749
[  213.071819][ T9805] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  213.079813][ T9805] RBP: 00007fb6bcaaf090 R08: 0000000000000000 R09: 0000000000000000
[  213.087792][ T9805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.095772][ T9805] R13: 00007fb6bbde6038 R14: 00007fb6bbde5fa0 R15: 00007ffe2c9656f8
[  213.103762][ T9805]  </TASK>
[  214.910454][ T9837] validate_nla: 3 callbacks suppressed
[  214.910470][ T9837] netlink: 'syz.2.1397': attribute type 39 has an invalid length.
[  215.233461][ T9844] netlink: 'syz.1.1399': attribute type 17 has an invalid length.
[  215.247707][ T9844] netlink: 'syz.1.1399': attribute type 16 has an invalid length.
[  215.266587][ T9844] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1399'.
[  215.588383][ T9858] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1405'.
[  215.622832][ T9858] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1405'.
[  215.632583][ T9855] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1405'.
[  215.703723][ T9862] FAULT_INJECTION: forcing a failure.
[  215.703723][ T9862] name failslab, interval 1, probability 0, space 0, times 0
[  215.750258][ T9862] CPU: 1 PID: 9862 Comm: syz.2.1409 Not tainted syzkaller #0
[  215.757673][ T9862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  215.767732][ T9862] Call Trace:
[  215.771003][ T9862]  <TASK>
[  215.773926][ T9862]  dump_stack_lvl+0x16c/0x230
[  215.778599][ T9862]  ? show_regs_print_info+0x20/0x20
[  215.783785][ T9862]  ? load_image+0x3b0/0x3b0
[  215.788281][ T9862]  ? __might_sleep+0xe0/0xe0
[  215.792862][ T9862]  ? __lock_acquire+0x7c80/0x7c80
[  215.797882][ T9862]  should_fail_ex+0x39d/0x4d0
[  215.802554][ T9862]  should_failslab+0x9/0x20
[  215.807049][ T9862]  slab_pre_alloc_hook+0x59/0x310
[  215.812071][ T9862]  kmem_cache_alloc+0x5a/0x2e0
[  215.816830][ T9862]  ? getname_flags+0xbb/0x500
[  215.821501][ T9862]  getname_flags+0xbb/0x500
[  215.826010][ T9862]  do_sys_openat2+0xcb/0x1c0
[  215.830589][ T9862]  ? perf_trace_preemptirq_template+0x281/0x340
[  215.836826][ T9862]  ? do_sys_open+0xe0/0xe0
[  215.841235][ T9862]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  215.847229][ T9862]  ? lock_chain_count+0x20/0x20
[  215.852063][ T9862]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  215.858035][ T9862]  __x64_sys_openat+0x139/0x160
[  215.862881][ T9862]  do_syscall_64+0x55/0xb0
[  215.867292][ T9862]  ? clear_bhb_loop+0x40/0x90
[  215.871958][ T9862]  ? clear_bhb_loop+0x40/0x90
[  215.876626][ T9862]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  215.882508][ T9862] RIP: 0033:0x7fe0deb8df90
[  215.886914][ T9862] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44
[  215.906510][ T9862] RSP: 002b:00007fe0df93ff10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  215.914914][ T9862] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fe0deb8df90
[  215.922873][ T9862] RDX: 0000000000000002 RSI: 00007fe0df93ffa0 RDI: 00000000ffffff9c
[  215.931014][ T9862] RBP: 00007fe0df93ffa0 R08: 0000000000000000 R09: 0000000000000000
[  215.938976][ T9862] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  215.946970][ T9862] R13: 00007fe0dede6038 R14: 00007fe0dede5fa0 R15: 00007ffc8deaa318
[  215.954940][ T9862]  </TASK>
[  216.024620][ T9863] delete_channel: no stack
[  216.042963][ T5791] Bluetooth: hci3: unexpected event 0x14 length: 15 > 6
[  216.398221][ T9876] netlink: 'syz.3.1416': attribute type 10 has an invalid length.
[  216.572827][ T9884] netlink: 'syz.2.1418': attribute type 10 has an invalid length.
[  216.595924][ T9884] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1418'.
[  216.644917][ T9886] netlink: 'syz.0.1419': attribute type 4 has an invalid length.
[  216.659679][ T9886] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1419'.
[  216.708975][ T9886] .þ: renamed from bond0 (while UP)
[  216.739271][ T9883] netlink: 'syz.2.1418': attribute type 10 has an invalid length.
[  216.751314][ T9883] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1418'.
[  217.014297][ T9902] netlink: 'syz.3.1425': attribute type 10 has an invalid length.
[  217.055833][ T9902] netlink: 55 bytes leftover after parsing attributes in process `syz.3.1425'.
[  217.098482][ T9902] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  217.171469][ T9907] netlink: 'syz.0.1428': attribute type 29 has an invalid length.
[  217.183900][ T9902] batman_adv: batadv0: Removing interface: virt_wifi0
[  217.196050][ T9907] netlink: 'syz.0.1428': attribute type 29 has an invalid length.
[  217.206763][ T9911] FAULT_INJECTION: forcing a failure.
[  217.206763][ T9911] name failslab, interval 1, probability 0, space 0, times 0
[  217.224332][ T9911] CPU: 0 PID: 9911 Comm: syz.2.1430 Not tainted syzkaller #0
[  217.231735][ T9911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  217.241801][ T9911] Call Trace:
[  217.245081][ T9911]  <TASK>
[  217.248009][ T9911]  dump_stack_lvl+0x16c/0x230
[  217.252683][ T9911]  ? sctp_sendmsg+0x155c/0x27e0
[  217.257529][ T9911]  ? ___sys_sendmsg+0x220/0x290
[  217.262382][ T9911]  ? show_regs_print_info+0x20/0x20
[  217.267577][ T9911]  ? load_image+0x3b0/0x3b0
[  217.272089][ T9911]  should_fail_ex+0x39d/0x4d0
[  217.276767][ T9911]  should_failslab+0x9/0x20
[  217.281264][ T9911]  slab_pre_alloc_hook+0x59/0x310
[  217.286286][ T9911]  ? sctp_add_bind_addr+0x8c/0x360
[  217.291393][ T9911]  __kmem_cache_alloc_node+0x53/0x260
[  217.296764][ T9911]  ? sctp_add_bind_addr+0x8c/0x360
[  217.301889][ T9911]  kmalloc_trace+0x2a/0xe0
[  217.306309][ T9911]  sctp_add_bind_addr+0x8c/0x360
[  217.311244][ T9911]  sctp_copy_local_addr_list+0x30c/0x4e0
[  217.316876][ T9911]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  217.322599][ T9911]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  217.328661][ T9911]  ? sctp_v6_is_any+0x64/0x70
[  217.333339][ T9911]  ? sctp_copy_one_addr+0x8c/0x350
[  217.338450][ T9911]  sctp_bind_addr_copy+0xb3/0x3c0
[  217.343468][ T9911]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  217.349787][ T9911]  sctp_connect_new_asoc+0x2da/0x690
[  217.355062][ T9911]  ? __sctp_connect+0xd20/0xd20
[  217.359901][ T9911]  ? __local_bh_enable_ip+0x12e/0x1c0
[  217.365267][ T9911]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  217.370808][ T9911]  ? security_sctp_bind_connect+0x89/0xb0
[  217.376522][ T9911]  sctp_sendmsg+0x155c/0x27e0
[  217.381195][ T9911]  ? sctp_getsockopt+0xb60/0xb60
[  217.386120][ T9911]  ? aa_sk_perm+0x7fc/0x930
[  217.390617][ T9911]  ? aa_af_perm+0x2b0/0x2b0
[  217.395108][ T9911]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  217.401517][ T9911]  ? sock_rps_record_flow+0x19/0x400
[  217.406793][ T9911]  ? inet_send_prepare+0x260/0x260
[  217.411891][ T9911]  ? inet_sendmsg+0xe9/0x2f0
[  217.416469][ T9911]  ? inet_send_prepare+0x260/0x260
[  217.421570][ T9911]  ____sys_sendmsg+0x5bf/0x950
[  217.426332][ T9911]  ? __asan_memset+0x22/0x40
[  217.430917][ T9911]  ? __sys_sendmsg_sock+0x30/0x30
[  217.435932][ T9911]  ? __import_iovec+0x5f2/0x860
[  217.440780][ T9911]  ? import_iovec+0x73/0xa0
[  217.445278][ T9911]  ___sys_sendmsg+0x220/0x290
[  217.449950][ T9911]  ? __sys_sendmsg+0x270/0x270
[  217.454728][ T9911]  ? __lock_acquire+0x7c80/0x7c80
[  217.459769][ T9911]  __se_sys_sendmsg+0x1a5/0x270
[  217.464616][ T9911]  ? __x64_sys_sendmsg+0x80/0x80
[  217.469563][ T9911]  ? lockdep_hardirqs_on+0x98/0x150
[  217.474752][ T9911]  do_syscall_64+0x55/0xb0
[  217.479161][ T9911]  ? clear_bhb_loop+0x40/0x90
[  217.483824][ T9911]  ? clear_bhb_loop+0x40/0x90
[  217.488495][ T9911]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  217.494380][ T9911] RIP: 0033:0x7fe0deb8f749
[  217.498790][ T9911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.518386][ T9911] RSP: 002b:00007fe0df940038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  217.526790][ T9911] RAX: ffffffffffffffda RBX: 00007fe0dede5fa0 RCX: 00007fe0deb8f749
[  217.534746][ T9911] RDX: 0000000020000054 RSI: 0000200000002dc0 RDI: 0000000000000003
[  217.542707][ T9911] RBP: 00007fe0df940090 R08: 0000000000000000 R09: 0000000000000000
[  217.550664][ T9911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  217.558628][ T9911] R13: 00007fe0dede6038 R14: 00007fe0dede5fa0 R15: 00007ffc8deaa318
[  217.566603][ T9911]  </TASK>
[  218.130429][ T9932] syzkaller0: entered promiscuous mode
[  218.147823][ T9932] syzkaller0: entered allmulticast mode
[  218.296264][ T9940] sctp: [Deprecated]: syz.2.1437 (pid 9940) Use of struct sctp_assoc_value in delayed_ack socket option.
[  218.296264][ T9940] Use struct sctp_sack_info instead
[  219.024735][ T9962] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  219.618270][ T9981] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1454'.
[  219.636140][ T9983] netlink: 140 bytes leftover after parsing attributes in process `syz.3.1456'.
[  221.876878][T10029] validate_nla: 3 callbacks suppressed
[  221.876921][T10029] netlink: 'syz.1.1474': attribute type 10 has an invalid length.
[  221.925604][T10029] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1474'.
[  222.032594][T10027] netlink: 'syz.1.1474': attribute type 10 has an invalid length.
[  222.041040][T10027] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1474'.
[  223.472316][T10058] netlink: 'syz.2.1486': attribute type 25 has an invalid length.
[  223.895679][T10071] netlink: 'syz.3.1487': attribute type 10 has an invalid length.
[  223.912342][T10071] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1487'.
[  223.986304][T10071] netlink: 'syz.3.1487': attribute type 10 has an invalid length.
[  224.015640][T10071] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1487'.
[  224.090055][T10077] netlink: 'syz.1.1490': attribute type 29 has an invalid length.
[  224.102516][T10077] netlink: 'syz.1.1490': attribute type 29 has an invalid length.
[  224.747300][T10094] netlink: 'syz.1.1499': attribute type 10 has an invalid length.
[  224.755321][T10094] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1499'.
[  225.183244][T10104] netlink: 'syz.3.1502': attribute type 29 has an invalid length.
[  225.208668][T10104] netlink: 'syz.3.1502': attribute type 29 has an invalid length.
[  226.272997][T10123] FAULT_INJECTION: forcing a failure.
[  226.272997][T10123] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  226.298818][T10123] CPU: 0 PID: 10123 Comm: syz.2.1507 Not tainted syzkaller #0
[  226.306330][T10123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  226.316403][T10123] Call Trace:
[  226.319692][T10123]  <TASK>
[  226.322631][T10123]  dump_stack_lvl+0x16c/0x230
[  226.327330][T10123]  ? show_regs_print_info+0x20/0x20
[  226.332548][T10123]  ? load_image+0x3b0/0x3b0
[  226.337066][T10123]  ? __might_fault+0xaa/0x120
[  226.341758][T10123]  ? __lock_acquire+0x7c80/0x7c80
[  226.346801][T10123]  should_fail_ex+0x39d/0x4d0
[  226.351502][T10123]  strncpy_from_user+0x36/0x2e0
[  226.356373][T10123]  getname_flags+0xf6/0x500
[  226.360897][T10123]  do_sys_openat2+0xcb/0x1c0
[  226.365500][T10123]  ? perf_trace_preemptirq_template+0x281/0x340
[  226.371766][T10123]  ? do_sys_open+0xe0/0xe0
[  226.376195][T10123]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  226.382197][T10123]  ? lock_chain_count+0x20/0x20
[  226.387067][T10123]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  226.393062][T10123]  __x64_sys_openat+0x139/0x160
[  226.397931][T10123]  do_syscall_64+0x55/0xb0
[  226.402361][T10123]  ? clear_bhb_loop+0x40/0x90
[  226.407062][T10123]  ? clear_bhb_loop+0x40/0x90
[  226.411761][T10123]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  226.417670][T10123] RIP: 0033:0x7fe0deb8df90
[  226.422099][T10123] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44
[  226.441722][T10123] RSP: 002b:00007fe0df93ff10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  226.450163][T10123] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fe0deb8df90
[  226.458151][T10123] RDX: 0000000000000002 RSI: 00007fe0df93ffa0 RDI: 00000000ffffff9c
[  226.466146][T10123] RBP: 00007fe0df93ffa0 R08: 0000000000000000 R09: 0000000000000000
[  226.474135][T10123] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  226.482127][T10123] R13: 00007fe0dede6038 R14: 00007fe0dede5fa0 R15: 00007ffc8deaa318
[  226.490138][T10123]  </TASK>
[  226.496452][T10126] bridge0: port 4(batadv0) entered disabled state
[  226.503184][T10126] bridge0: port 3(team0) entered disabled state
[  226.509874][T10126] bridge0: port 2(bridge_slave_1) entered disabled state
[  226.517479][T10126] bridge0: port 1(bridge_slave_0) entered disabled state
[  226.526344][T10126] bridge0: entered allmulticast mode
[  227.197210][T10146] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1518'.
[  227.552808][T10145] validate_nla: 4 callbacks suppressed
[  227.552956][T10145] netlink: 'syz.2.1520': attribute type 10 has an invalid length.
[  227.688442][T10145] hsr_slave_0: left promiscuous mode
[  227.822310][T10145] hsr_slave_1: left promiscuous mode
[  228.650615][T10168] netlink: 'syz.2.1526': attribute type 29 has an invalid length.
[  228.677413][T10168] netlink: 'syz.2.1526': attribute type 29 has an invalid length.
[  228.685663][T10170] netlink: 'syz.1.1527': attribute type 10 has an invalid length.
[  229.383036][T10186] netlink: 'syz.2.1532': attribute type 10 has an invalid length.
[  229.395905][T10186] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1532'.
[  229.717018][T10193] sctp: [Deprecated]: syz.2.1536 (pid 10193) Use of struct sctp_assoc_value in delayed_ack socket option.
[  229.717018][T10193] Use struct sctp_sack_info instead
[  229.879838][T10188] netlink: 'syz.1.1534': attribute type 10 has an invalid length.
[  231.223879][T10188] hsr_slave_0: left promiscuous mode
[  231.251471][T10188] hsr_slave_1: left promiscuous mode
[  231.445257][T10206] netlink: 'syz.3.1541': attribute type 4 has an invalid length.
[  231.453775][T10206] netlink: 140 bytes leftover after parsing attributes in process `syz.3.1541'.
[  231.603302][T10215] netlink: 'syz.0.1544': attribute type 39 has an invalid length.
[  231.730314][T10218] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.1544'.
[  231.774283][T10218] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  231.783789][T10218] openvswitch: netlink: Message has 1 unknown bytes.
[  232.494016][T10236] netlink: 'syz.0.1549': attribute type 10 has an invalid length.
[  232.540786][T10236] hsr_slave_0: left promiscuous mode
[  232.682720][T10236] hsr_slave_1: left promiscuous mode
[  233.078771][T10236] syz.0.1549 (10236) used greatest stack depth: 19208 bytes left
[  233.236393][   T49] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  233.373787][T10274] FAULT_INJECTION: forcing a failure.
[  233.373787][T10274] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  233.413435][T10274] CPU: 1 PID: 10274 Comm: syz.3.1562 Not tainted syzkaller #0
[  233.420963][T10274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  233.431040][T10274] Call Trace:
[  233.434337][T10274]  <TASK>
[  233.437293][T10274]  dump_stack_lvl+0x16c/0x230
[  233.442005][T10274]  ? show_regs_print_info+0x20/0x20
[  233.447237][T10274]  ? load_image+0x3b0/0x3b0
[  233.451753][T10274]  ? __lock_acquire+0x7c80/0x7c80
[  233.456791][T10274]  ? snprintf+0xdb/0x120
[  233.461049][T10274]  should_fail_ex+0x39d/0x4d0
[  233.465738][T10274]  _copy_to_user+0x2f/0xa0
[  233.470160][T10274]  simple_read_from_buffer+0xe7/0x150
[  233.475535][T10274]  proc_fail_nth_read+0x1e3/0x250
[  233.480553][T10274]  ? proc_fault_inject_write+0x340/0x340
[  233.486179][T10274]  ? fsnotify_perm+0x271/0x5e0
[  233.490933][T10274]  ? proc_fault_inject_write+0x340/0x340
[  233.496552][T10274]  vfs_read+0x27e/0x920
[  233.500702][T10274]  ? kernel_read+0x1e0/0x1e0
[  233.505281][T10274]  ? __fget_files+0x28/0x4d0
[  233.509861][T10274]  ? __fget_files+0x44a/0x4d0
[  233.514533][T10274]  ? __fdget_pos+0x2a3/0x330
[  233.519114][T10274]  ? ksys_read+0x75/0x250
[  233.523446][T10274]  ksys_read+0x147/0x250
[  233.527682][T10274]  ? vfs_write+0x940/0x940
[  233.532094][T10274]  ? lockdep_hardirqs_on+0x98/0x150
[  233.537286][T10274]  do_syscall_64+0x55/0xb0
[  233.541695][T10274]  ? clear_bhb_loop+0x40/0x90
[  233.546364][T10274]  ? clear_bhb_loop+0x40/0x90
[  233.551031][T10274]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  233.556921][T10274] RIP: 0033:0x7fc2c518e15c
[  233.561331][T10274] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  233.580943][T10274] RSP: 002b:00007fc2c5fac030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  233.589699][T10274] RAX: ffffffffffffffda RBX: 00007fc2c53e5fa0 RCX: 00007fc2c518e15c
[  233.597664][T10274] RDX: 000000000000000f RSI: 00007fc2c5fac0a0 RDI: 0000000000000004
[  233.605625][T10274] RBP: 00007fc2c5fac090 R08: 0000000000000000 R09: 0000000000000000
[  233.613587][T10274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.621546][T10274] R13: 00007fc2c53e6038 R14: 00007fc2c53e5fa0 R15: 00007ffeacc1a8d8
[  233.629519][T10274]  </TASK>
[  235.453357][ T5791] Bluetooth: hci3: unknown advertising packet type: 0xff
[  235.453435][ T5791] Bluetooth: hci3: unknown advertising packet type: 0x80
[  235.462886][ T5791] Bluetooth: hci3: unknown advertising packet type: 0x09
[  235.470157][ T5791] Bluetooth: hci3: Malformed LE Event: 0x02
[  236.243319][T10348] netlink: 'syz.3.1592': attribute type 1 has an invalid length.
[  236.252563][T10348] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.1592'.
[  253.151620][   T51] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  253.160756][   T51] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  253.174274][   T51] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  253.182616][   T51] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  253.191052][   T51] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  253.199753][   T51] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  253.292732][ T5791] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  253.308773][ T5791] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  253.319262][ T5791] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  253.331229][ T5791] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  253.345014][ T5791] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  253.352600][ T5791] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  259.455600][ T5791] Bluetooth: hci4: command tx timeout
[  259.461516][ T5791] Bluetooth: hci5: command tx timeout
[  260.363267][ T5791] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  260.373668][ T5797] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  260.387004][ T5797] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  260.395135][ T5797] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  260.412147][ T5797] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  260.421245][ T5797] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  260.487469][   T51] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  260.501782][   T51] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  260.511562][   T51] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  260.547037][   T51] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  260.554857][   T51] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  260.562849][   T51] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  261.486104][ T5797] Bluetooth: hci5: command tx timeout
[  261.491561][ T5797] Bluetooth: hci4: command tx timeout
[  262.526111][ T5797] Bluetooth: hci6: command tx timeout
[  262.606323][ T5797] Bluetooth: hci7: command tx timeout
[  262.972704][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  262.984043][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  263.566005][   T51] Bluetooth: hci5: command tx timeout
[  263.573028][ T5797] Bluetooth: hci4: command tx timeout
[  264.462465][ T1012] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  264.606128][ T5797] Bluetooth: hci6: command tx timeout
[  264.686449][ T5797] Bluetooth: hci7: command tx timeout
[  280.139042][ T5797] Bluetooth: hci4: command tx timeout
[  280.144482][ T5797] Bluetooth: hci5: command tx timeout
[  280.149946][ T5797] Bluetooth: hci6: command tx timeout
[  280.155365][ T5797] Bluetooth: hci7: command tx timeout
[  282.206019][   T51] Bluetooth: hci7: command tx timeout
[  282.211484][   T51] Bluetooth: hci6: command tx timeout
[  318.486534][ T5797] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  318.496579][ T5797] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  318.504324][ T5797] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  318.515608][ T5797] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  318.524187][ T5797] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  318.532912][ T5797] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  318.594427][   T51] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  318.624693][   T51] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  318.634144][   T51] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  318.646007][   T51] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  318.653796][   T51] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  318.661340][   T51] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  320.562367][ T5797] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  320.571223][ T5797] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  320.580277][ T5797] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  320.588962][ T5797] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  320.597220][ T5797] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  320.604652][ T5797] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  320.612072][ T5791] Bluetooth: hci8: command tx timeout
[  320.686330][   T51] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  320.694482][ T5791] Bluetooth: hci9: command tx timeout
[  320.719240][   T51] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  320.728472][   T51] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  320.741186][   T51] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  320.750338][   T51] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[  320.770290][   T51] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  322.686029][ T5797] Bluetooth: hci8: command tx timeout
[  322.692336][   T51] Bluetooth: hci10: command tx timeout
[  322.766177][   T51] Bluetooth: hci9: command tx timeout
[  322.846018][   T51] Bluetooth: hci11: command tx timeout
[  324.766002][ T5797] Bluetooth: hci8: command tx timeout
[  324.772480][   T51] Bluetooth: hci10: command tx timeout
[  324.846170][   T51] Bluetooth: hci9: command tx timeout
[  324.933730][   T51] Bluetooth: hci11: command tx timeout
[  326.845882][   T51] Bluetooth: hci10: command tx timeout
[  326.851427][   T51] Bluetooth: hci8: command tx timeout
[  326.931248][   T51] Bluetooth: hci9: command tx timeout
[  327.005991][   T51] Bluetooth: hci11: command tx timeout
[  328.925976][   T51] Bluetooth: hci10: command tx timeout
[  329.090015][   T51] Bluetooth: hci11: command tx timeout
[  344.995739][    C0] rcu: INFO: rcu_preempt self-detected stall on CPU
[  345.002509][    C0] rcu: 	0-....: (10492 ticks this GP) idle=6d04/1/0x4000000000000000 softirq=29861/29866 fqs=2964
[  345.013841][    C0] rcu: 	         hardirqs   softirqs   csw/system
[  345.020248][    C0] rcu: 	 number:  1479235          0            0
[  345.026641][    C0] rcu: 	cputime:    15451      37038           44   ==> 52510(ms)
[  345.034428][    C0] rcu: 	(t=10503 jiffies g=32681 q=2494 ncpus=2)
[  345.040771][    C0] CPU: 0 PID: 10332 Comm: syz.0.1585 Not tainted syzkaller #0
[  345.048236][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  345.058296][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x60
[  345.064367][    C0] Code: 00 0f 0b 0f 1f 80 00 00 00 00 f3 0f 1e fa 53 48 89 fb e8 13 00 00 00 48 8b 3d dc ef c4 0c 48 89 de 5b e9 13 9e 56 00 cc cc cc <f3> 0f 1e fa 48 8b 04 24 65 48 8b 0d 30 15 7e 7e 65 8b 15 31 15 7e
[  345.084137][    C0] RSP: 0018:ffffc90000005e90 EFLAGS: 00000212
[  345.090197][    C0] RAX: ffffffff8eb29bb8 RBX: ffffffff8eb29bbc RCX: ffff88802b0f5a00
[  345.098161][    C0] RDX: 0000000000000100 RSI: ffffffff88ea3b27 RDI: ffffffff88ea30f8
[  345.106121][    C0] RBP: ffffffff8eb29bbc R08: ffffc90000006030 R09: 0000000000000016
[  345.114084][    C0] R10: 0000000000000004 R11: 0000000000000100 R12: ffffffff8eb29bc0
[  345.122047][    C0] R13: ffffffff88ea30f8 R14: ffffffff88ea3b27 R15: ffffffff8eb29bbc
[  345.130009][    C0] FS:  00007f534cdbe6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  345.138932][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  345.145502][    C0] CR2: 0000000100000000 CR3: 0000000034e69000 CR4: 00000000003506f0
[  345.153468][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  345.161429][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  345.169389][    C0] Call Trace:
[  345.172657][    C0]  <IRQ>
[  345.175491][    C0]  unwind_next_frame+0x501/0x2970
[  345.180523][    C0]  ? ip_sublist_rcv+0xa37/0xd20
[  345.185374][    C0]  ? ip_sublist_rcv+0xa38/0xd20
[  345.190223][    C0]  ? ip_sublist_rcv+0xa38/0xd20
[  345.195067][    C0]  ? stack_trace_save+0xe0/0xe0
[  345.199917][    C0]  arch_stack_walk+0x144/0x190
[  345.204673][    C0]  ? ip_sublist_rcv+0xa38/0xd20
[  345.209518][    C0]  stack_trace_save+0x9c/0xe0
[  345.214188][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  345.219314][    C0]  ? memset_orig+0x56/0xac
[  345.223734][    C0]  kasan_set_track+0x4e/0x70
[  345.228321][    C0]  ? kasan_set_track+0x4e/0x70
[  345.233077][    C0]  ? kasan_save_free_info+0x2e/0x50
[  345.238278][    C0]  ? ____kasan_slab_free+0x126/0x1e0
[  345.243557][    C0]  ? slab_free_freelist_hook+0x130/0x1b0
[  345.249191][    C0]  ? kmem_cache_free+0xf8/0x280
[  345.254038][    C0]  ? skb_release_data+0x60a/0x800
[  345.259063][    C0]  ? kfree_skb_reason+0x10e/0x170
[  345.264088][    C0]  ? dev_kfree_skb_any_reason+0x10c/0x120
[  345.269803][    C0]  ? free_old_xmit_skbs+0x114/0x3c0
[  345.274997][    C0]  ? start_xmit+0x161/0x1420
[  345.279597][    C0]  ? dev_hard_start_xmit+0x246/0x740
[  345.284889][    C0]  ? sch_direct_xmit+0x252/0x4a0
[  345.289829][    C0]  ? __dev_queue_xmit+0x173e/0x35a0
[  345.295038][    C0]  ? ip_finish_output2+0xd21/0x11d0
[  345.300237][    C0]  ? __ip_queue_xmit+0x10aa/0x1a10
[  345.305347][    C0]  ? __tcp_transmit_skb+0x1c97/0x32a0
[  345.310712][    C0]  ? tcp_rcv_established+0xb00/0x1cf0
[  345.316079][    C0]  ? tcp_v4_do_rcv+0x4ed/0xb80
[  345.320838][    C0]  ? tcp_v4_rcv+0x2334/0x2a50
[  345.325507][    C0]  ? ip_protocol_deliver_rcu+0x20e/0x3f0
[  345.331132][    C0]  ? ip_local_deliver_finish+0x2ca/0x510
[  345.336759][    C0]  ? NF_HOOK+0x303/0x390
[  345.340994][    C0]  ? ip_sublist_rcv+0xa38/0xd20
[  345.345886][    C0]  ? kmem_cache_free+0xf8/0x280
[  345.350741][    C0]  kasan_save_free_info+0x2e/0x50
[  345.355772][    C0]  ____kasan_slab_free+0x126/0x1e0
[  345.360890][    C0]  slab_free_freelist_hook+0x130/0x1b0
[  345.366355][    C0]  ? skb_release_data+0x60a/0x800
[  345.371384][    C0]  kmem_cache_free+0xf8/0x280
[  345.376062][    C0]  skb_release_data+0x60a/0x800
[  345.380922][    C0]  kfree_skb_reason+0x10e/0x170
[  345.385777][    C0]  dev_kfree_skb_any_reason+0x10c/0x120
[  345.391317][    C0]  ? refcount_dec_and_test+0x70/0x70
[  345.396600][    C0]  free_old_xmit_skbs+0x114/0x3c0
[  345.401622][    C0]  ? virtqueue_napi_schedule+0x40/0x40
[  345.407089][    C0]  start_xmit+0x161/0x1420
[  345.411494][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  345.417652][    C0]  dev_hard_start_xmit+0x246/0x740
[  345.422767][    C0]  sch_direct_xmit+0x252/0x4a0
[  345.427524][    C0]  ? mrp_pdu_parse_vecattr_event+0x2a0/0x2a0
[  345.433515][    C0]  __dev_queue_xmit+0x173e/0x35a0
[  345.438544][    C0]  ? __dev_queue_xmit+0x245/0x35a0
[  345.443649][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  345.448839][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  345.454984][    C0]  ? netdev_core_pick_tx+0x340/0x340
[  345.460277][    C0]  ? __asan_memcpy+0x40/0x70
[  345.464872][    C0]  ? eth_header+0x11b/0x200
[  345.469372][    C0]  ? llc_sysctl_exit+0x70/0x70
[  345.474131][    C0]  ? neigh_resolve_output+0x618/0x730
[  345.479513][    C0]  ? ip_finish_output2+0x45c/0x11d0
[  345.484705][    C0]  ip_finish_output2+0xd21/0x11d0
[  345.489728][    C0]  ? ip_finish_output2+0x45c/0x11d0
[  345.494924][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  345.501069][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  345.506261][    C0]  ? ip_fragment+0x210/0x210
[  345.510848][    C0]  ? ip_finish_output+0x3ef/0x4c0
[  345.515869][    C0]  __ip_queue_xmit+0x10aa/0x1a10
[  345.520805][    C0]  ? __ip_queue_xmit+0x5c/0x1a10
[  345.525744][    C0]  __tcp_transmit_skb+0x1c97/0x32a0
[  345.530938][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  345.537100][    C0]  ? __tcp_send_ack+0x5a0/0x5a0
[  345.541953][    C0]  ? __tcp_send_ack+0x176/0x5a0
[  345.546796][    C0]  tcp_rcv_established+0xb00/0x1cf0
[  345.551990][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  345.558132][    C0]  ? rt_is_expired+0x1c/0x2d0
[  345.562814][    C0]  ? tcp_check_space+0xae0/0xae0
[  345.567746][    C0]  ? rt_is_expired+0x1c/0x2d0
[  345.572415][    C0]  ? rt_is_expired+0x250/0x2d0
[  345.577178][    C0]  tcp_v4_do_rcv+0x4ed/0xb80
[  345.581768][    C0]  tcp_v4_rcv+0x2334/0x2a50
[  345.586264][    C0]  ? __lock_acquire+0x7c80/0x7c80
[  345.591309][    C0]  ? tcp_filter+0x90/0x90
[  345.595636][    C0]  ip_protocol_deliver_rcu+0x20e/0x3f0
[  345.601088][    C0]  ? ip_local_deliver_finish+0x1cb/0x510
[  345.606715][    C0]  ip_local_deliver_finish+0x2ca/0x510
[  345.612173][    C0]  NF_HOOK+0x303/0x390
[  345.616239][    C0]  ? fib_multipath_hash+0x1a10/0x1a10
[  345.621605][    C0]  ? NF_HOOK+0x390/0x390
[  345.625837][    C0]  ? NF_HOOK+0x9b/0x390
[  345.629983][    C0]  ? ip_local_deliver+0x1b0/0x1b0
[  345.635006][    C0]  ? NF_HOOK+0x390/0x390
[  345.639242][    C0]  ? ip_rcv_finish_core+0xd8f/0x1bc0
[  345.644522][    C0]  ? ip_local_deliver+0x122/0x1b0
[  345.649542][    C0]  ip_sublist_rcv+0xa38/0xd20
[  345.654241][    C0]  ? ip_list_rcv+0x430/0x430
[  345.658824][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  345.664016][    C0]  ? ip_rcv_core+0xdb0/0xdb0
[  345.668603][    C0]  ? ip_list_rcv+0x24c/0x430
[  345.673191][    C0]  ip_list_rcv+0x3e3/0x430
[  345.677612][    C0]  ? ip_rcv_finish+0x250/0x250
[  345.682371][    C0]  ? arp_rcv+0x2f0/0x4e0
[  345.686608][    C0]  ? ip_rcv_finish+0x250/0x250
[  345.691368][    C0]  __netif_receive_skb_list_core+0x2cc/0x740
[  345.697348][    C0]  ? set_rps_cpu+0x6a0/0x6a0
[  345.701926][    C0]  ? netif_receive_skb_list_internal+0x90c/0xc60
[  345.708255][    C0]  netif_receive_skb_list_internal+0x91b/0xc60
[  345.714401][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  345.720551][    C0]  ? netif_receive_skb_list_internal+0x4ad/0xc60
[  345.726871][    C0]  ? netif_receive_skb_core+0x230/0x230
[  345.732413][    C0]  ? netif_receive_skb_list_internal+0x10/0xc60
[  345.738650][    C0]  napi_gro_receive+0x565/0xb00
[  345.743500][    C0]  receive_buf+0x218c/0x3780
[  345.748086][    C0]  ? detach_buf_split+0x91a/0xb80
[  345.753109][    C0]  ? virtnet_poll_tx+0x530/0x530
[  345.758038][    C0]  ? virtqueue_get_buf_ctx+0x697/0xd10
[  345.763495][    C0]  virtnet_poll+0x61f/0x1180
[  345.768087][    C0]  ? refill_work+0x220/0x220
[  345.772671][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  345.778831][    C0]  __napi_poll+0xc0/0x460
[  345.783154][    C0]  net_rx_action+0x5ea/0xbf0
[  345.787744][    C0]  ? net_tx_action+0x950/0x950
[  345.792496][    C0]  ? detach_timer+0x2b0/0x2b0
[  345.797175][    C0]  handle_softirqs+0x280/0x820
[  345.801931][    C0]  ? __irq_exit_rcu+0xc7/0x190
[  345.806686][    C0]  ? do_softirq+0x180/0x180
[  345.811181][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  345.816384][    C0]  __irq_exit_rcu+0xc7/0x190
[  345.820964][    C0]  ? irq_exit_rcu+0x20/0x20
[  345.825461][    C0]  irq_exit_rcu+0x9/0x20
[  345.829691][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  345.835323][    C0]  </IRQ>
[  345.838244][    C0]  <TASK>
[  345.841165][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  345.847138][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xa9/0x110
[  345.853633][    C0] Code: 74 05 e8 aa 1b 13 f7 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4b f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> c2 96 e2 f6 65 8b 05 b3 cd 8a 75 85 c0 74 3c 48 c7 04 24 0e 36
[  345.873241][    C0] RSP: 0018:ffffc900036f7aa0 EFLAGS: 00000206
[  345.879303][    C0] RAX: 947eaadd6e435f00 RBX: 0000000000000a02 RCX: 947eaadd6e435f00
[  345.887271][    C0] RDX: dffffc0000000000 RSI: ffffffff8aaabce0 RDI: 0000000000000001
[  345.895232][    C0] RBP: ffffc900036f7b28 R08: ffffffff8e4a8e2f R09: 1ffffffff1c951c5
[  345.903194][    C0] R10: dffffc0000000000 R11: fffffbfff1c951c6 R12: dffffc0000000000
[  345.911160][    C0] R13: dffffc0000000000 R14: ffff88805c9bb0c0 R15: 1ffff920006def54
[  345.919143][    C0]  ? _raw_spin_unlock+0x40/0x40
[  345.923988][    C0]  ? task_dead_fair+0x79/0x1a0
[  345.928743][    C0]  finish_task_switch+0x43a/0x920
[  345.933766][    C0]  __schedule+0x14da/0x44d0
[  345.938273][    C0]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  345.944242][    C0]  ? lock_chain_count+0x20/0x20
[  345.949086][    C0]  ? asan.module_dtor+0x20/0x20
[  345.953931][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  345.959135][    C0]  preempt_schedule_irq+0xb5/0x140
[  345.964239][    C0]  ? preempt_schedule_notrace+0x110/0x110
[  345.969961][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  345.975768][    C0]  irqentry_exit+0x67/0x70
[  345.980179][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  345.986154][    C0] RIP: 0010:syscall_enter_from_user_mode+0x2e/0x80
[  345.992648][    C0] Code: 41 56 53 48 89 f3 49 89 fe 48 8b 7c 24 10 e8 e9 fa ff ff 66 90 66 90 e8 80 bf 1c f7 e8 3b bf 1c f7 fb 65 48 8b 05 62 71 94 75 <48> 8b 70 08 40 f6 c6 3f 74 0b 4c 89 f7 5b 41 5e e9 fd 50 03 f7 48
[  346.012243][    C0] RSP: 0018:ffffc900036f7f08 EFLAGS: 00000286
[  346.018300][    C0] RAX: ffff88802b0f5a00 RBX: 00000000000000ca RCX: 947eaadd6e435f00
[  346.026261][    C0] RDX: dffffc0000000000 RSI: ffffffff8aaabce0 RDI: ffffffff8afc6f40
[  346.034224][    C0] RBP: ffffc900036f7f48 R08: ffffffff8e4a8e2f R09: 1ffffffff1c951c5
[  346.042206][    C0] R10: dffffc0000000000 R11: fffffbfff1c951c6 R12: 0000000000000000
[  346.050166][    C0] R13: 0000000000000000 R14: ffffc900036f7f58 R15: 0000000000000000
[  346.058148][    C0]  ? syscall_enter_from_user_mode+0x25/0x80
[  346.064033][    C0]  do_syscall_64+0x28/0xb0
[  346.068442][    C0]  ? clear_bhb_loop+0x40/0x90
[  346.073109][    C0]  ? clear_bhb_loop+0x40/0x90
[  346.077777][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  346.083667][    C0] RIP: 0033:0x7f534bf8f749
[  346.088077][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.107672][    C0] RSP: 002b:00007f534cdbe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  346.116078][    C0] RAX: ffffffffffffffda RBX: 00007f534c1e5fa8 RCX: 00007f534bf8f749
[  346.124038][    C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f534c1e5fa8
[  346.132003][    C0] RBP: 00007f534c1e5fa0 R08: 0000000000000000 R09: 0000000000000000
[  346.139962][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  346.147921][    C0] R13: 00007f534c1e6038 R14: 00007ffe9650e850 R15: 00007ffe9650e938
[  346.155898][    C0]  </TASK>