last executing test programs:

5m39.621648905s ago: executing program 2 (id=85):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x29d79aef00aa9813)
recvmsg$kcm(r0, 0x0, 0x2122)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='afs_make_fs_call1\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, 0x0, &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0x0, &(0x7f0000000000)=ANY=[@ANYRES16=r1, @ANYRES32, @ANYRESDEC], 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x400000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_bp={0x0, 0x3}, 0x11efa, 0x4, 0x7, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x24}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xe8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r3, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000000)='cpu&\t\t')
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bond0\x00', 0x8000})
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020732500000000002020207b1af8ff00000000bfa100000000000020010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000100)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls=0x71, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89b0, &(0x7f0000000080))
r6 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x501001, 0x0)
ioctl$TUNSETOFFLOAD(r7, 0x400454d0, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000140)={[{0x2d, 'memory'}, {0x2d, 'cpuset'}, {0x2b, 'pids'}, {0x2d, 'memory'}]}, 0x1e)
r8 = socket$kcm(0x10, 0x7, 0x4)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}, 0x0)
r9 = openat$tun(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$TUNSETFILTEREBPF(r9, 0x800454e1, &(0x7f00000002c0)=r2)

5m39.346646006s ago: executing program 2 (id=94):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000100)=[{&(0x7f0000000040)="1800000072006bcd9e3fe3dc6e080000070900000ec00000", 0x18}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

5m39.32802741s ago: executing program 2 (id=95):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0x86}]}, &(0x7f0000000100)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

5m39.246595926s ago: executing program 2 (id=96):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001040)=ANY=[@ANYBLOB="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"], 0x520}}, 0x0)

5m39.246386908s ago: executing program 2 (id=97):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='/proc///\x00\x82q\xee\x00!\xbd\xc2\x98#YP\xee\x9c2G\xf0\x81x\x97'}, 0x30)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

5m39.041116337s ago: executing program 2 (id=101):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="040100001a0001000000000000000000e00000020000000000000000000000002001000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000aa000000003c000000e000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b00000000000000000000000a000000000000000000000014000e"], 0x104}}, 0x0)

5m23.270991082s ago: executing program 32 (id=101):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="040100001a0001000000000000000000e00000020000000000000000000000002001000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000aa000000003c000000e000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b00000000000000000000000a000000000000000000000014000e"], 0x104}}, 0x0)

38.409396906s ago: executing program 3 (id=4274):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket(0x840000000002, 0x3, 0xff)
sendmsg$kcm(r2, &(0x7f0000002800)={&(0x7f0000001680)=@in={0x2, 0x4e20, @remote}, 0x80, &(0x7f0000001080)=[{&(0x7f0000001100)="ebb28f7fab10e643c0a56b5b8e343e18682962867a4af0ca2a3c261fe42309c51759fc7281c8e44b4f9381efa5", 0x2d}, {0x0}], 0x2}, 0x4000)

38.257265009s ago: executing program 3 (id=4279):
socket$kcm(0x15, 0x5, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f0000000440)=""/183}, 0x20)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6gre0\x00', 0x210})
r0 = getpid()
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
perf_event_open(0x0, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
openat$ppp(0xffffffffffffff9c, 0x0, 0x109801, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={0xffffffffffffffff, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, @perf_config_ext, 0x800, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2ff}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f1, &(0x7f0000000080))

38.180882628s ago: executing program 3 (id=4280):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020642500000000002020ff0f1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

38.121091863s ago: executing program 3 (id=4281):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="905d429b000000000000000000000000001006"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r1, 0x34}, 0x10)

38.12087811s ago: executing program 3 (id=4282):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x140070, 0x0)

37.107668291s ago: executing program 3 (id=4284):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x6, &(0x7f0000000280)=ANY=[@ANYBLOB="05000000000000007911b000000000008510000002000000850000003900000095000007000000009500a5050000000016c776df0b173b0d932a4d8add48dfd29e247fae04bd17145a8b"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x6}, 0x70)

21.610193923s ago: executing program 33 (id=4284):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x6, &(0x7f0000000280)=ANY=[@ANYBLOB="05000000000000007911b000000000008510000002000000850000003900000095000007000000009500a5050000000016c776df0b173b0d932a4d8add48dfd29e247fae04bd17145a8b"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x6}, 0x70)

16.246497692s ago: executing program 0 (id=4573):
socket$kcm(0x10, 0x2, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="18010000200000000000000000000000850000006d0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008230000b7040000000000008500000001000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000060ff850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
syz_clone(0x108200, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = perf_event_open$cgroup(&(0x7f00000011c0)={0x3, 0x80, 0x4, 0x3, 0x61, 0x76, 0x0, 0xfffffffffffffff9, 0x8000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001140), 0xb}, 0x412, 0xdcc8, 0x5, 0x2, 0x81, 0x10000, 0x1, 0x0, 0x81, 0x0, 0x4c}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1000}, 0x108800}, 0x0, 0xffffffffffffffff, r2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848360000005e140602000000000e000a00100000000a8000001294", 0x2e}], 0x1}, 0x0)

16.070651044s ago: executing program 4 (id=4574):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000040)="a72d11a15c048c0a7d63aebc5cea1f81510ff6091475aeec600831aa9d3944e60bc2ad06a619c560aa0118b28f68f1eb14549d633b4b23f179fb680716faa43414787559be90843c35ab30acad8a", 0x4e}], 0x1}, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8912, &(0x7f0000000080))

16.070493117s ago: executing program 4 (id=4575):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000001580)="d80000001a0081044e81f782db4cb9040a1d0800fe007ca20e0000a115001f00ff11142603600e12080005007a010401a80016002000034004000000035c0461c9c67f6f940071342e875fab7cb6cec6cf6efb8000a007a290457f0189b3d7a37077646f948017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b141993c034e653fe8efe7c9f8775730d16a4683f5aeb4edbb57a56e2b0137bdfc65025ccca9ee5350db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d9345", 0xd8}], 0x1}, 0x0)

15.981241609s ago: executing program 0 (id=4576):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000040900010073797a30000000002c000000030a01080000000000000000010000000900030073797a32000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d6574610000000014000280080001400000001208000240000000", @ANYBLOB="01488c"], 0xc4}}, 0x4004)

15.980885709s ago: executing program 4 (id=4577):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000100)=@o_path={0x0}, 0x18)
r1 = socket$kcm(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x400000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x24}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x1, 0x7, 0x0, 0x1}, 0x48)
setsockopt$sock_attach_bpf(r1, 0x29, 0x30, &(0x7f0000000100)=r0, 0x5042)

15.920358009s ago: executing program 0 (id=4578):
r0 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x1b, 0x1, 0x0, 0x0}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'wlan1\x00', 0x800})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8946, &(0x7f0000000080))
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00'}, 0x10)
write$cgroup_subtree(r1, 0x0, 0x3c)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0xa0000, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x1, @perf_config_ext={0xfffffffffffffffe, 0x1946}, 0x801, 0x0, 0x0, 0x4, 0x3fe, 0x7fffffff, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x80, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xe, 0x4, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x50}, [@call={0x85, 0x0, 0x0, 0xa0}]}, &(0x7f0000000080)='syzkaller\x00'}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x5, 0x1, 0x100}, 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000080)=@bpf_lsm={0x6, 0x8, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000}, [@call={0x85, 0x0, 0x0, 0x2e}, @ldst={0x3, 0x0, 0x3, 0x0, 0x0, 0x18}, @map_val={0x18, 0x0, 0x2, 0x0, r3}, @generic={0x6, 0x1, 0x2, 0x400, 0x3a8b78e9}]}, &(0x7f0000000140)='syzkaller\x00', 0x5}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2000000000000015000200071b1700bd030100000000009500000000000000bc26080000000000bf67000000000000070300000fff0700670200001f00000016060a000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9b"], 0x0}, 0x94)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7ffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r4 = socket$kcm(0x2, 0x200000000000001, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x3e, &(0x7f0000000500), 0x4)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000640)=@newtaction={0x6c, 0x30, 0xffff, 0xfffffffe, 0x25dfdbfb, {}, [{0x58, 0x1, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0xaf, 0x1, 0x6, 0x1000, 0x10}, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xff000000}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

15.867643633s ago: executing program 4 (id=4581):
socket$kcm(0x2, 0x922000000001, 0x106)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3c, 0x7}, 0x100008, 0x0, 0x0, 0x8, 0x3fd, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x80002, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100c, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x94)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000030c0)=[{&(0x7f0000000340)="1400000016001963d25a80648c56915a19aa2bfe", 0x14}], 0x1}, 0x0)

15.820294099s ago: executing program 0 (id=4582):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r0, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x4, 0x600, 0x1}}, 0x20)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x8c42, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, @perf_bp={0x0, 0xf}, 0x1000, 0x2, 0xa9eb, 0x8, 0x0, 0x0, 0x806}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
perf_event_open$cgroup(&(0x7f0000000000)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12144, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, @perf_bp={&(0x7f0000000080), 0xc}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x34000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0xc8, 0xfffffffe, 0x0, 0x9, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r4)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000fffe8000000000000010"], 0xfdef)
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0xffffffffffffffae}, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000000)=ANY=[], 0xfdef)

15.820060228s ago: executing program 1 (id=4583):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000002ec0), 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000000)={r0, 0x60, &(0x7f0000001100)}, 0x10)

15.760708616s ago: executing program 1 (id=4584):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000020000000000000000000003000000000300000002000000fcff1500000000000000000105000000100000000000000000000004"], 0x0, 0x4e}, 0x28)

15.760506689s ago: executing program 1 (id=4585):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x6, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x7}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

15.679879421s ago: executing program 1 (id=4586):
r0 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={&(0x7f0000000100)=@in={0x2, 0x4e21, @remote}, 0x80, &(0x7f0000000000)=[{&(0x7f00000006c0)='@', 0x1}], 0x1, &(0x7f0000000180)=[{0x3f, 0x84, 0x8, "eeb4fe8ba15e3999ef"}, {0x10, 0x10a, 0x10}], 0x30}, 0x41)

15.679671738s ago: executing program 0 (id=4587):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000e, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_bp={0x0}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xf7fff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x122}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r9, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

15.679513125s ago: executing program 1 (id=4588):
socket$kcm(0x2, 0x922000000001, 0x106)
perf_event_open(&(0x7f0000000b80)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa4}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d2d, 0x298, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff01, 0x4, @perf_bp={0x0, 0xe}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000d80)=@newtaction={0x68, 0x30, 0xffff, 0x4000, 0x0, {0x0, 0x0, 0x1300}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x7f, 0x0, 0x1, 0x3, 0x7}, 0x3}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x2404c080}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair(0x1e, 0x1, 0x0, 0x0)
close(0xffffffffffffffff)
socket$kcm(0x10, 0x2, 0x10)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10e, 0x2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

15.679334205s ago: executing program 4 (id=4589):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x9, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="18020000040000000000000000000000850000004100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000180000850000008200000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xe, 0x0, &(0x7f00000008c0)="ce82c4fa994fa3f91a51a0fb03d1", 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x80002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100c, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r2, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_TARGET_REV={0x8}, @NFTA_TARGET_NAME={0x8, 0x1, 'LED\x00'}]}}}, {0x10, 0x1, 0x0, 0x1, @inner={{0xa}, @void}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x8c}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="a50a00c7ac041b0f0080ffff466ef3171a65c1610001000000"], &(0x7f0000000000)='GPL\x00'}, 0x80)

15.498741414s ago: executing program 4 (id=4590):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x1000000000000005, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x55, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x5c}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x0, 0xc884}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0x0, 0x37, 0x0, 0x0, 0x1}, 0x28)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0xa, 0x9, 0x8, 0x2}, 0x48)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r0, &(0x7f00000000c0), &(0x7f0000000000)=""/10, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000200)={r0, &(0x7f0000000080), &(0x7f0000000000)=""/10, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000b40)={r0, &(0x7f0000000a80), &(0x7f0000000ac0)=""/68}, 0x20)

15.246260908s ago: executing program 1 (id=4591):
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000717c33ba830a6fda79cabe8eb53e6e00"/43], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000027c0)=ANY=[@ANYBLOB="07000000040000000000000000", @ANYBLOB='\x00'/10, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000940)={{}, &(0x7f00000008c0), &(0x7f0000000900)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r3}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x3, @perf_bp={0x0, 0x4}, 0x6000, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/mnt\x00')
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x21, 0x800, 0x6, &(0x7f0000000000))
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r1, 0x0, 0x0}, 0x10)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080), 0xc)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440))

15.246105625s ago: executing program 0 (id=4592):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700000095"], &(0x7f0000000080)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x0, 0x2000, 0x2000, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xd8, 0xc4, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b710e9246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fde4303d5f2b1e63e9e52ae4b197fd72de1f71801e1f9f1369d1f530", &(0x7f0000000280)="bf049fd184f7b03c21d9bcddc4eef9ebb6a0da3eb91c56454e873dd7336ccf21a1eeb8da7adf80d6e06ef46c7f36222fadaed2103c286468b3f44adee51445bd1bedf8fcc1c0b9fdc8b3829b1bf0c9d2d409cdecb12ad033e299c029331993ae9760345bf7feb91ee96b0eee19454ad3dbce5019b68c114ff1921a9b4665744c7784ac6736101a70592d83c448a84c31ec60bb901d96ea99471d823ee523318878ee704a8d9502b566cad45587cb74ea8259c1c0a926fc09499395b2db5af40bb6f4c526", 0x0, 0x8000}, 0x24)

151.841139ms ago: executing program 34 (id=4592):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700000095"], &(0x7f0000000080)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x0, 0x2000, 0x2000, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xd8, 0xc4, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b710e9246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fde4303d5f2b1e63e9e52ae4b197fd72de1f71801e1f9f1369d1f530", &(0x7f0000000280)="bf049fd184f7b03c21d9bcddc4eef9ebb6a0da3eb91c56454e873dd7336ccf21a1eeb8da7adf80d6e06ef46c7f36222fadaed2103c286468b3f44adee51445bd1bedf8fcc1c0b9fdc8b3829b1bf0c9d2d409cdecb12ad033e299c029331993ae9760345bf7feb91ee96b0eee19454ad3dbce5019b68c114ff1921a9b4665744c7784ac6736101a70592d83c448a84c31ec60bb901d96ea99471d823ee523318878ee704a8d9502b566cad45587cb74ea8259c1c0a926fc09499395b2db5af40bb6f4c526", 0x0, 0x8000}, 0x24)

92.978028ms ago: executing program 35 (id=4591):
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000717c33ba830a6fda79cabe8eb53e6e00"/43], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000027c0)=ANY=[@ANYBLOB="07000000040000000000000000", @ANYBLOB='\x00'/10, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000940)={{}, &(0x7f00000008c0), &(0x7f0000000900)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r3}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x3, @perf_bp={0x0, 0x4}, 0x6000, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/mnt\x00')
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x21, 0x800, 0x6, &(0x7f0000000000))
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r1, 0x0, 0x0}, 0x10)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080), 0xc)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440))

0s ago: executing program 36 (id=4590):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x1000000000000005, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x55, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x5c}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x0, 0xc884}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0x0, 0x37, 0x0, 0x0, 0x1}, 0x28)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0xa, 0x9, 0x8, 0x2}, 0x48)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r0, &(0x7f00000000c0), &(0x7f0000000000)=""/10, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000200)={r0, &(0x7f0000000080), &(0x7f0000000000)=""/10, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000b40)={r0, &(0x7f0000000a80), &(0x7f0000000ac0)=""/68}, 0x20)

kernel console output (not intermixed with test programs):

[ T7149] bridge_slave_0: entered allmulticast mode
[   97.033816][ T7149] bridge_slave_0: entered promiscuous mode
[   97.047608][ T7149] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.051001][ T7149] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.063422][ T7149] bridge_slave_1: entered allmulticast mode
[   97.067740][ T7149] bridge_slave_1: entered promiscuous mode
[   97.165176][ T7149] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   97.171850][ T7149] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   97.260912][ T7149] team0: Port device team_slave_0 added
[   97.267957][ T7149] team0: Port device team_slave_1 added
[   97.322234][ T7149] batman_adv: batadv0: Adding interface: batadv_slave_0
[   97.326973][ T7149] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   97.336385][ T7149] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   97.343083][ T7149] batman_adv: batadv0: Adding interface: batadv_slave_1
[   97.348398][ T7149] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   97.359749][ T7149] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   97.429498][ T7149] hsr_slave_0: entered promiscuous mode
[   97.432015][ T7149] hsr_slave_1: entered promiscuous mode
[   97.441255][ T7149] debugfs: 'hsr0' already exists in 'hsr'
[   97.446479][ T7149] Cannot create hsr debugfs directory
[   97.525748][ T7187] netlink: 63503 bytes leftover after parsing attributes in process `syz.0.504'.
[   97.750681][ T7149] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.886559][ T7149] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.009633][ T7149] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.088369][ T7149] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.240680][ T7149] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   98.256852][ T7149] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   98.269873][ T7149] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   98.280556][ T7149] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   98.463381][ T5238] Bluetooth: hci0: command tx timeout
[   98.611045][ T7149] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.645623][ T7149] 8021q: adding VLAN 0 to HW filter on device team0
[   98.677226][   T32] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.679944][   T32] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.685181][   T32] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.687719][   T32] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.798486][ T7149] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.819661][ T7149] veth0_vlan: entered promiscuous mode
[   98.826074][ T7149] veth1_vlan: entered promiscuous mode
[   98.873033][ T7149] veth0_macvtap: entered promiscuous mode
[   98.883491][ T7149] veth1_macvtap: entered promiscuous mode
[   98.904046][ T7149] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.918479][ T7149] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.937164][   T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.940210][   T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.023668][ T5238] Bluetooth: hci1: command tx timeout
[   99.059182][   T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.062965][   T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.166683][ T1095] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.180030][ T1095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.213066][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.228721][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.418058][ T7280] netlink: 104 bytes leftover after parsing attributes in process `syz.3.533'.
[   99.631202][ T7296] netlink: 'syz.0.537': attribute type 2 has an invalid length.
[   99.735732][ T7291] netlink: 48 bytes leftover after parsing attributes in process `syz.3.536'.
[   99.741197][ T7291] syz.3.536 uses obsolete (PF_INET,SOCK_PACKET)
[  100.573277][ T5238] Bluetooth: hci0: command tx timeout
[  102.624767][ T5238] Bluetooth: hci0: command tx timeout
[  103.376907][ T7380] netlink: 76 bytes leftover after parsing attributes in process `syz.1.563'.
[  103.579683][ T7403] netlink: 11562 bytes leftover after parsing attributes in process `syz.3.573'.
[  104.057817][ T7434] netlink: 'syz.3.589': attribute type 7 has an invalid length.
[  104.704660][ T5238] Bluetooth: hci0: command tx timeout
[  104.721175][ T7452] netlink: 202920 bytes leftover after parsing attributes in process `syz.1.596'.
[  104.765744][ T7454] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  104.822717][ T7456] sctp: [Deprecated]: syz.0.598 (pid 7456) Use of struct sctp_assoc_value in delayed_ack socket option.
[  104.822717][ T7456] Use struct sctp_sack_info instead
[  106.232971][ T7498] netlink: 132 bytes leftover after parsing attributes in process `syz.0.615'.
[  108.817880][ T7564] netlink: 'syz.3.646': attribute type 3 has an invalid length.
[  108.821066][ T7564] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.646'.
[  109.022293][ T7574] netlink: 277 bytes leftover after parsing attributes in process `syz.1.651'.
[  109.170922][ T7584] netlink: 12 bytes leftover after parsing attributes in process `syz.1.656'.
[  109.177003][ T7584] netlink: 32 bytes leftover after parsing attributes in process `syz.1.656'.
[  110.487143][ T7602] netlink: 56 bytes leftover after parsing attributes in process `syz.0.663'.
[  110.500751][ T7602] netlink: 24 bytes leftover after parsing attributes in process `syz.0.663'.
[  111.952201][ T7627] netlink: 32 bytes leftover after parsing attributes in process `syz.0.675'.
[  111.959500][ T7627] netlink: 32 bytes leftover after parsing attributes in process `syz.0.675'.
[  112.071273][ T7630] netlink: 830 bytes leftover after parsing attributes in process `syz.1.676'.
[  112.277112][ T7644] syzkaller0: tun_chr_ioctl cmd 2147767506
[  113.902100][ T7705] netlink: 'syz.0.710': attribute type 1 has an invalid length.
[  113.906679][ T7705] netlink: 4 bytes leftover after parsing attributes in process `syz.0.710'.
[  113.990196][ T7699] netlink: 60 bytes leftover after parsing attributes in process `syz.3.707'.
[  116.359086][ T7798] netlink: 132 bytes leftover after parsing attributes in process `syz.1.752'.
[  117.189844][ T7822] netlink: 'syz.3.759': attribute type 39 has an invalid length.
[  118.179990][ T5238] Bluetooth: hci2: unexpected event 0x03 length: 15 > 11
[  118.434875][ T7862] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  119.801310][ T7894] netlink: 'syz.1.787': attribute type 39 has an invalid length.
[  120.147983][ T7912] netlink: 'syz.1.795': attribute type 1 has an invalid length.
[  121.826455][ T7977] netlink: 32 bytes leftover after parsing attributes in process `syz.1.824'.
[  121.830406][ T7977] netlink: 46 bytes leftover after parsing attributes in process `syz.1.824'.
[  121.838386][ T7977] netlink: 46 bytes leftover after parsing attributes in process `syz.1.824'.
[  122.016959][ T7984] veth1_macvtap: left promiscuous mode
[  122.097950][ T7987] veth1_macvtap: entered promiscuous mode
[  122.103948][ T7987] macsec0: entered promiscuous mode
[  122.106292][ T7987] macsec0: entered allmulticast mode
[  122.108501][ T7987] veth1_macvtap: entered allmulticast mode
[  122.197727][ T7992] netlink: 763 bytes leftover after parsing attributes in process `syz.1.830'.
[  123.658577][ T8032] netlink: 132 bytes leftover after parsing attributes in process `syz.1.847'.
[  125.037893][ T8061] batadv_slave_1: entered promiscuous mode
[  125.040439][ T8061] batadv_slave_1: entered allmulticast mode
[  125.182964][ T8074] netlink: 60 bytes leftover after parsing attributes in process `syz.0.863'.
[  125.190290][ T8069] netlink: 60 bytes leftover after parsing attributes in process `syz.0.863'.
[  125.194311][ T8074] netlink: 60 bytes leftover after parsing attributes in process `syz.0.863'.
[  125.801118][ T8119] netlink: 'syz.3.885': attribute type 1 has an invalid length.
[  125.808453][ T8119] netlink: 'syz.3.885': attribute type 4 has an invalid length.
[  125.811241][ T8119] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.885'.
[  126.545956][ T8133] netlink: 4 bytes leftover after parsing attributes in process `syz.3.891'.
[  127.091936][ T8147] netlink: 'syz.0.895': attribute type 2 has an invalid length.
[  127.102484][ T8147] netlink: 'syz.0.895': attribute type 1 has an invalid length.
[  128.435890][ T8173] netlink: 'syz.0.908': attribute type 21 has an invalid length.
[  128.534663][ T8188] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.916'.
[  128.586810][ T8195] netlink: 168 bytes leftover after parsing attributes in process `syz.0.919'.
[  128.654800][ T8205] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  128.657373][ T8205] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  128.768737][ T5238] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  128.872720][ T8222] netlink: 'syz.0.932': attribute type 27 has an invalid length.
[  128.879520][ T8222] netlink: 'syz.0.932': attribute type 1 has an invalid length.
[  128.882924][ T8222] bridge0: port 1(bridge_slave_0) entered learning state
[  128.910556][ T8224] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:0603:0500:0023 with DS=0x32
[  129.005274][ T8232] netlink: 1010 bytes leftover after parsing attributes in process `syz.3.937'.
[  129.009209][ T8232] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[  129.111133][ T8236] netlink: 4 bytes leftover after parsing attributes in process `syz.3.940'.
[  129.177260][ T8244] netlink: 830 bytes leftover after parsing attributes in process `syz.1.943'.
[  129.355649][ T8258] netlink: 17 bytes leftover after parsing attributes in process `syz.0.949'.
[  129.360536][ T8258] netlink: zone id is out of range
[  129.362877][ T8258] netlink: zone id is out of range
[  129.368776][ T8258] netlink: zone id is out of range
[  129.371120][ T8258] netlink: zone id is out of range
[  129.373819][ T8258] netlink: zone id is out of range
[  129.376056][ T8258] netlink: zone id is out of range
[  129.378295][ T8258] netlink: zone id is out of range
[  129.381278][ T8258] netlink: zone id is out of range
[  129.392667][ T8258] netlink: zone id is out of range
[  129.502614][ T8274] netlink: 'syz.0.957': attribute type 1 has an invalid length.
[  129.513562][ T8263] netlink: 'syz.1.952': attribute type 16 has an invalid length.
[  129.516324][ T8263] netlink: 168 bytes leftover after parsing attributes in process `syz.1.952'.
[  129.667713][ T8288] netlink: 8 bytes leftover after parsing attributes in process `syz.0.962'.
[  129.877820][ T8304] netlink: 92 bytes leftover after parsing attributes in process `syz.0.970'.
[  129.977740][ T8313] netlink: 20 bytes leftover after parsing attributes in process `syz.1.974'.
[  129.981116][ T8313] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  130.785113][ T5852] Bluetooth: hci0: command tx timeout
[  132.170093][ T8415] C: renamed from team_slave_0 (while UP)
[  132.556078][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  132.558827][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  132.561730][ T8415] netlink: 'syz.3.1021': attribute type 4 has an invalid length.
[  132.625814][ T8421] netlink: 'syz.3.1024': attribute type 21 has an invalid length.
[  132.628538][ T8421] netlink: 'syz.3.1024': attribute type 1 has an invalid length.
[  136.239952][ T8455] ksmbd: Unknown IPC event: 3, ignore.
[  137.088663][ T8464] __nla_validate_parse: 7 callbacks suppressed
[  137.088675][ T8464] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1041'.
[  137.097077][ T8464] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1041'.
[  137.302497][ T8466] syzkaller0: entered promiscuous mode
[  137.305363][ T8466] syzkaller0: entered allmulticast mode
[  137.351148][ T8469] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.1043'.
[  137.402652][ T8473] netlink: 'syz.0.1045': attribute type 17 has an invalid length.
[  137.412060][ T8473] netlink: 'syz.0.1045': attribute type 16 has an invalid length.
[  137.452806][ T8473] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1045'.
[  137.876702][ T8484] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1048'.
[  138.071385][ T8486] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1049'.
[  138.439065][ T5852] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  138.758704][ T8519] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1061'.
[  138.847597][ T8529] IPv6: Can't replace route, no match found
[  139.410028][ T8547] netlink: 'syz.3.1072': attribute type 64 has an invalid length.
[  140.018321][ T8570] sit0: entered allmulticast mode
[  140.031050][ T8570] sit0: entered promiscuous mode
[  141.940428][ T8602] delete_channel: no stack
[  141.975931][ T8629] netlink: 'syz.3.1103': attribute type 10 has an invalid length.
[  141.983775][ T8629] team0: Cannot enslave team device to itself
[  144.823178][    C1] clocksource: Long readout interval, skipping watchdog check: cs_nsec: 2246552361 wd_nsec: 2246536015
[  146.393163][    C1] sched: DL replenish lagged too much
[  150.196416][ T8657] netlink: 'syz.3.1113': attribute type 4 has an invalid length.
[  150.287671][ T8664] net_ratelimit: 78 callbacks suppressed
[  150.287688][ T8664] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  150.591027][ T8680] netlink: 208344 bytes leftover after parsing attributes in process `syz.1.1123'.
[  150.619079][ T8680] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  150.622631][ T8680] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  150.781492][ T8694] netlink: 'syz.1.1130': attribute type 10 has an invalid length.
[  150.785133][ T8694] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1130'.
[  150.790763][ T8694] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  151.071668][ T8707] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1134'.
[  151.587358][ T8739] netlink: 'syz.0.1149': attribute type 1 has an invalid length.
[  151.590340][ T8739] netlink: 201392 bytes leftover after parsing attributes in process `syz.0.1149'.
[  152.052044][ T8765] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1161'.
[  152.276406][ T8775] netlink: 'syz.3.1166': attribute type 11 has an invalid length.
[  152.319060][ T8777] netlink: 'syz.3.1167': attribute type 14 has an invalid length.
[  152.577671][ T8787] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1172'.
[  153.155672][ T8803] netlink: 'syz.1.1176': attribute type 3 has an invalid length.
[  153.227606][ T8805] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1177'.
[  153.622539][ T8819] netlink: 'syz.0.1184': attribute type 2 has an invalid length.
[  153.627079][ T8819] netlink: 51 bytes leftover after parsing attributes in process `syz.0.1184'.
[  153.798176][ T8831] openvswitch: netlink: nsh attribute has 8 unknown bytes.
[  153.968917][ T8840] netlink: 735 bytes leftover after parsing attributes in process `syz.3.1192'.
[  154.267982][ T8855] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1200'.
[  154.546792][ T5852] Bluetooth: hci0: unexpected event 0x36 length: 15 > 7
[  155.626625][ T8939] __nla_validate_parse: 2 callbacks suppressed
[  155.626642][ T8939] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1236'.
[  155.728792][ T8941] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1237'.
[  155.785912][ T8943] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1238'.
[  155.876350][ T8943] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  155.885811][ T8943] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  155.891099][ T8943] bond0 (unregistering): Released all slaves
[  155.960631][ T8954] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  156.017685][ T8956] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1244'.
[  156.171410][ T8965] netlink: 'syz.1.1248': attribute type 21 has an invalid length.
[  156.215943][ T8965] netlink: 'syz.1.1248': attribute type 21 has an invalid length.
[  156.224722][ T8965] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1248'.
[  157.298334][   T33] audit: type=1107 audit(1757435226.635:2): pid=9012 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  158.744600][ T9058] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1288'.
[  158.748295][ T9057] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1288'.
[  158.752461][ T9057] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1288'.
[  161.338751][ T9083] netlink: 'syz.1.1298': attribute type 29 has an invalid length.
[  161.362520][ T9083] netlink: 'syz.1.1298': attribute type 29 has an invalid length.
[  161.774650][ T9102] netlink: 'syz.1.1307': attribute type 10 has an invalid length.
[  161.894732][ T9108] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1310'.
[  161.982079][ T9114] netlink: 'syz.0.1313': attribute type 10 has an invalid length.
[  162.120825][ T9124] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1318'.
[  162.272195][ T5852] Bluetooth: hci1: unexpected event 0x0f length: 15 > 4
[  162.489846][ T9152] netlink: 'syz.1.1332': attribute type 1 has an invalid length.
[  162.498096][ T9152] netlink: 'syz.1.1332': attribute type 2 has an invalid length.
[  162.685110][ T5852] Bluetooth: hci0: unexpected subevent 0x0e length: 150 > 15
[  162.688364][ T5852] Bluetooth: hci0: Unable to find connection for dst 00:00:00:00:00:00 sid 0x00
[  163.342585][ T9173] netlink: 'syz.3.1341': attribute type 39 has an invalid length.
[  165.039673][ T9209] tmpfs: Bad value for 'uid'
[  165.041763][ T9209] tmpfs: Bad value for 'uid'
[  165.196830][ T9212] x_tables: ip_tables: udp match: only valid for protocol 17
[  165.932812][ T9220] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1359'.
[  165.937309][ T9218] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  166.686065][ T9257] netlink: 'syz.3.1374': attribute type 6 has an invalid length.
[  167.109723][ T9278] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  167.284033][ T9282] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1385'.
[  167.488515][ T9290] netlink: 9286 bytes leftover after parsing attributes in process `syz.1.1389'.
[  167.609221][ T9298] netlink: 'syz.0.1393': attribute type 3 has an invalid length.
[  167.612714][ T9298] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.1393'.
[  168.187715][ T9330] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  168.311664][ T5852] Bluetooth: hci1: unexpected event 0x04 length: 15 > 10
[  168.312036][ T5852] Bluetooth: hci1: connection err: -111
[  168.429855][ T9344] netlink: 'syz.0.1414': attribute type 2 has an invalid length.
[  168.441581][ T9344] netlink: 'syz.0.1414': attribute type 8 has an invalid length.
[  168.447399][ T9344] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1414'.
[  168.817294][ T9353] netlink: 'syz.3.1418': attribute type 1 has an invalid length.
[  168.819993][ T9353] netlink: 16098 bytes leftover after parsing attributes in process `syz.3.1418'.
[  169.268475][ T9365] netlink: 'syz.1.1423': attribute type 1 has an invalid length.
[  169.292646][ T9344] erspan0 speed is unknown, defaulting to 1000
[  170.236579][ T9413] netlink: 'syz.3.1447': attribute type 1 has an invalid length.
[  170.579764][ T9428] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1453'.
[  170.669654][ T9428] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1453'.
[  171.376604][ T9428] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1453'.
[  171.449585][ T9448] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1460'.
[  171.455098][ T9448] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1460'.
[  172.407114][ T5741] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  172.560450][ T9490] netlink: 'syz.1.1475': attribute type 10 has an invalid length.
[  173.187886][ T5741] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.264450][ T5741] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.317829][ T5741] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.529302][ T9518] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1488'.
[  173.547740][ T9518] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1488'.
[  173.877342][ T5238] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  173.881854][ T5238] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  173.885926][ T5238] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  173.895145][ T5238] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  173.899022][ T5238] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  173.952952][ T9525] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1490'.
[  173.958876][ T5741] bridge_slave_1: left allmulticast mode
[  173.968135][ T5741] bridge_slave_1: left promiscuous mode
[  173.971625][ T5741] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.996684][ T5741] bridge_slave_0: left allmulticast mode
[  173.999332][ T5741] bridge_slave_0: left promiscuous mode
[  174.001877][ T5741] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.057724][ T9531] netlink: 'syz.0.1491': attribute type 4 has an invalid length.
[  174.061047][ T9531] netlink: 'syz.0.1491': attribute type 3 has an invalid length.
[  174.073016][ T9531] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.1491'.
[  174.567840][ T9545] netlink: 'syz.0.1495': attribute type 3 has an invalid length.
[  174.689301][ T5741] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  174.695978][ T5741] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  174.700999][ T5741] bond0 (unregistering): Released all slaves
[  174.741694][ T9519] erspan0 speed is unknown, defaulting to 1000
[  174.807793][ T9547] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1496'.
[  175.758248][ T9519] chnl_net:caif_netlink_parms(): no params data found
[  175.826203][ T9569] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1500'.
[  175.921882][ T9579] netlink: 16375 bytes leftover after parsing attributes in process `syz.0.1502'.
[  175.952782][ T5741] hsr_slave_0: left promiscuous mode
[  175.957589][ T5741] hsr_slave_1: left promiscuous mode
[  175.963036][ T5741] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  175.970414][ T5741] batman_adv: batadv0: Removing interface: batadv_slave_0
[  175.979458][ T5741] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  175.985157][ T5852] Bluetooth: hci1: command tx timeout
[  175.987979][ T5741] batman_adv: batadv0: Removing interface: batadv_slave_1
[  176.011382][ T5741] veth1_macvtap: left promiscuous mode
[  176.015587][ T5741] veth0_macvtap: left promiscuous mode
[  176.018103][ T5741] veth1_vlan: left promiscuous mode
[  176.020340][ T5741] veth0_vlan: left promiscuous mode
[  177.383455][ T5741] team0 (unregistering): Port device team_slave_1 removed
[  177.412637][ T5741] team0 (unregistering): Port device C removed
[  177.701224][ T5898] infiniband syz0: ib_query_port failed (-19)
[  177.702169][ T9602] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1509'.
[  177.735584][ T9519] bridge0: port 1(bridge_slave_0) entered blocking state
[  177.740983][ T9519] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.745410][ T9519] bridge_slave_0: entered allmulticast mode
[  177.749710][ T9519] bridge_slave_0: entered promiscuous mode
[  177.760661][ T9519] bridge0: port 2(bridge_slave_1) entered blocking state
[  177.767715][ T9519] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.770705][ T9605] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1510'.
[  177.775568][ T9519] bridge_slave_1: entered allmulticast mode
[  177.778632][ T9606] netlink: 193500 bytes leftover after parsing attributes in process `syz.0.1511'.
[  177.787272][ T9519] bridge_slave_1: entered promiscuous mode
[  177.860108][ T9519] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  177.872013][ T9519] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  177.956716][ T9519] team0: Port device team_slave_0 added
[  177.969932][ T9613] netlink: 'syz.1.1514': attribute type 4 has an invalid length.
[  177.989580][ T9519] team0: Port device team_slave_1 added
[  178.063280][ T5852] Bluetooth: hci1: command tx timeout
[  178.082996][ T9519] batman_adv: batadv0: Adding interface: batadv_slave_0
[  178.096178][ T9519] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  178.139468][ T9519] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  178.167157][ T9519] batman_adv: batadv0: Adding interface: batadv_slave_1
[  178.170019][ T9519] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  178.181262][ T9519] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  178.197694][ T9624] netlink: 'syz.1.1517': attribute type 2 has an invalid length.
[  178.241025][ T9519] hsr_slave_0: entered promiscuous mode
[  178.244286][ T9519] hsr_slave_1: entered promiscuous mode
[  178.247284][ T9519] debugfs: 'hsr0' already exists in 'hsr'
[  178.249178][ T9519] Cannot create hsr debugfs directory
[  178.298654][ T9630] openvswitch: netlink: IP tunnel attribute has 16 unknown bytes.
[  178.386306][ T9632] netlink: 'syz.0.1521': attribute type 1 has an invalid length.
[  178.810722][ T9654] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  178.819273][ T9654] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  178.975912][ T9519] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  178.992718][ T9519] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  179.009525][ T9519] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  179.021327][ T9519] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  179.127347][ T9519] 8021q: adding VLAN 0 to HW filter on device bond0
[  179.142108][ T9519] 8021q: adding VLAN 0 to HW filter on device team0
[  179.161247][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.164311][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[  179.221558][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.224589][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[  179.481992][ T9519] 8021q: adding VLAN 0 to HW filter on device batadv0
[  179.510921][ T9519] veth0_vlan: entered promiscuous mode
[  179.518607][ T9519] veth1_vlan: entered promiscuous mode
[  179.538859][ T9519] veth0_macvtap: entered promiscuous mode
[  179.553568][ T9519] veth1_macvtap: entered promiscuous mode
[  179.576121][ T9519] batman_adv: batadv0: Interface activated: batadv_slave_0
[  179.590565][ T9519] batman_adv: batadv0: Interface activated: batadv_slave_1
[  179.604270][ T5876] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.609985][ T5876] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.617526][ T5876] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  179.621144][ T5876] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  179.849245][ T1095] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  179.852804][ T1095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  179.902146][   T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  179.906753][   T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  180.152841][ T5238] Bluetooth: hci1: command tx timeout
[  180.386378][ T9740] tap0: tun_chr_ioctl cmd 2147767517
[  180.713253][ T5238] Bluetooth: hci2: command 0x0406 tx timeout
[  181.788565][ T9787] netlink: 'syz.3.1559': attribute type 10 has an invalid length.
[  181.794569][ T9787] __nla_validate_parse: 2 callbacks suppressed
[  181.794634][ T9787] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1559'.
[  181.801757][ T9787] veth0_vlan: entered allmulticast mode
[  181.807813][ T9787] bridge0: port 3(veth0_vlan) entered blocking state
[  181.810817][ T9787] bridge0: port 3(veth0_vlan) entered disabled state
[  181.835139][ T9787] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[  182.021483][ T9792] netlink: 763 bytes leftover after parsing attributes in process `syz.3.1561'.
[  182.042328][ T9792] netlink: 'syz.3.1561': attribute type 10 has an invalid length.
[  182.050731][ T9792] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1561'.
[  182.058213][ T9792] team0: entered promiscuous mode
[  182.061276][ T9792] team_slave_0: entered promiscuous mode
[  182.091423][ T9792] team_slave_1: entered promiscuous mode
[  182.097911][ T9792] team0: entered allmulticast mode
[  182.100216][ T9792] team_slave_0: entered allmulticast mode
[  182.102503][ T9792] team_slave_1: entered allmulticast mode
[  182.232464][ T5852] Bluetooth: hci1: command tx timeout
[  182.709394][ T9792] bridge0: port 3(team0) entered blocking state
[  182.730690][ T9792] bridge0: port 3(team0) entered disabled state
[  182.748645][ T9792] bridge0: port 3(team0) entered blocking state
[  182.751864][ T9792] bridge0: port 3(team0) entered forwarding state
[  182.809092][ T9794] netlink: 'syz.1.1562': attribute type 21 has an invalid length.
[  182.811660][ T9794] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1562'.
[  182.974848][ T9810] netlink: zone id is out of range
[  182.976844][ T9810] netlink: zone id is out of range
[  182.979349][ T9810] netlink: zone id is out of range
[  182.981498][ T9810] netlink: zone id is out of range
[  182.984743][ T9810] netlink: zone id is out of range
[  182.986676][ T9810] netlink: zone id is out of range
[  182.988690][ T9810] netlink: zone id is out of range
[  182.990534][ T9810] netlink: zone id is out of range
[  183.135221][ T9822] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1576'.
[  183.182597][ T9827] netlink: 'syz.1.1578': attribute type 2 has an invalid length.
[  183.196218][ T9827] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1578'.
[  183.238239][ T9834] netlink: 'syz.0.1582': attribute type 1 has an invalid length.
[  183.309369][ T9842] net_ratelimit: 11 callbacks suppressed
[  183.309380][ T9842] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  184.247826][ T9870] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.1598'.
[  184.251810][ T9870] netlink: zone id is out of range
[  184.255459][ T9870] netlink: get zone limit has 8 unknown bytes
[  184.368854][ T9872] netlink: 'syz.3.1599': attribute type 29 has an invalid length.
[  184.392564][ T9872] netlink: 'syz.3.1599': attribute type 29 has an invalid length.
[  184.405418][ T9872] netlink: 'syz.3.1599': attribute type 29 has an invalid length.
[  184.420187][ T9872] netlink: 'syz.3.1599': attribute type 29 has an invalid length.
[  184.932290][ T9898] netlink: 1 bytes leftover after parsing attributes in process `syz.1.1611'.
[  185.318330][ T9912] netlink: 'syz.0.1617': attribute type 29 has an invalid length.
[  185.325189][ T9912] netlink: 'syz.0.1617': attribute type 10 has an invalid length.
[  185.370400][ T9912] 8021q: adding VLAN 0 to HW filter on device bond0
[  185.387527][ T9912] team0: Port device bond0 added
[  185.498935][ T9922] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1621'.
[  186.138744][ T9966] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1641'.
[  187.211774][ T9999] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1655'.
[  187.270163][T10005] netlink: 1010 bytes leftover after parsing attributes in process `syz.3.1657'.
[  187.277538][T10005] veth0_to_bond: default FDB implementation only supports local addresses
[  187.976088][  T793] page_pool_release_retry() stalled pool shutdown: id 57, 1 inflight 61 sec
[  188.000618][T10025] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1665'.
[  188.005257][T10025] bond_slave_0: entered promiscuous mode
[  188.007511][T10025] bond_slave_1: entered promiscuous mode
[  188.120411][T10027] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1666'.
[  188.202208][T10029] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  188.568643][T10038] netlink: 100 bytes leftover after parsing attributes in process `syz.3.1671'.
[  189.757776][T10065] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1683'.
[  190.413933][T10101] Dead loop on virtual device ip6_vti0, fix it urgently!
[  191.370684][T10113] netlink: 'syz.0.1703': attribute type 21 has an invalid length.
[  191.374453][T10113] IPv6: NLM_F_CREATE should be specified when creating new route
[  191.542120][T10117] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  191.552008][T10117] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  191.821128][T10137] openvswitch: netlink: VXLAN extension message has 10 unknown bytes.
[  192.273326][T10160] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1723'.
[  192.278304][T10160] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1723'.
[  192.348077][T10162] netlink: 'syz.0.1724': attribute type 39 has an invalid length.
[  193.122977][T10180] openvswitch: netlink: IP tunnel dst address not specified
[  193.996636][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  193.999376][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  194.579637][T10199] tmpfs: Bad value for 'gid'
[  194.581705][T10199] tmpfs: Bad value for 'gid'
[  194.621050][T10203] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1743'.
[  194.661802][T10205] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1744'.
[  194.682021][T10207] netlink: 'syz.3.1745': attribute type 2 has an invalid length.
[  194.739766][T10213] netlink: 'syz.0.1748': attribute type 21 has an invalid length.
[  194.742352][T10213] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1748'.
[  194.747066][T10213] netlink: 'syz.0.1748': attribute type 5 has an invalid length.
[  194.749768][T10213] netlink: 'syz.0.1748': attribute type 6 has an invalid length.
[  194.752331][T10213] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1748'.
[  194.798629][ T5852] Bluetooth: hci1: unexpected event 0x0b length: 15 > 11
[  194.990157][T10225] netlink: 'syz.1.1754': attribute type 9 has an invalid length.
[  194.996693][T10225] netlink: 204732 bytes leftover after parsing attributes in process `syz.1.1754'.
[  195.171985][T10235] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  195.276210][T10242] netlink: 65055 bytes leftover after parsing attributes in process `syz.0.1760'.
[  196.415473][T10253] wg2: entered promiscuous mode
[  196.422037][T10253] wg2: entered allmulticast mode
[  196.535156][T10271] erspan0 speed is unknown, defaulting to 1000
[  197.243459][T10308] netlink: 4595 bytes leftover after parsing attributes in process `syz.0.1790'.
[  197.248381][T10308] netlink: 4595 bytes leftover after parsing attributes in process `syz.0.1790'.
[  197.298968][T10310] netlink: 'syz.3.1791': attribute type 2 has an invalid length.
[  197.301592][T10310] netlink: 'syz.3.1791': attribute type 1 has an invalid length.
[  197.305668][T10310] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.1791'.
[  197.308763][T10310] nbd: couldn't find a device at index 16
[  197.445805][T10320] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1796'.
[  197.567033][T10332] netlink: 203516 bytes leftover after parsing attributes in process `syz.3.1802'.
[  197.570890][T10332] netlink: 6320 bytes leftover after parsing attributes in process `syz.3.1802'.
[  198.045309][T10359] netlink: 'syz.3.1813': attribute type 3 has an invalid length.
[  198.047949][T10359] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1813'.
[  198.131019][T10361] netlink: 'syz.3.1814': attribute type 3 has an invalid length.
[  198.143483][T10361] netlink: 4264 bytes leftover after parsing attributes in process `syz.3.1814'.
[  198.149196][T10361] netlink: 'syz.3.1814': attribute type 3 has an invalid length.
[  198.154374][T10361] netlink: 4264 bytes leftover after parsing attributes in process `syz.3.1814'.
[  198.207247][T10367] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1817'.
[  198.668767][T10394] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1827'.
[  198.675469][T10394] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1827'.
[  199.178921][T10414] syz.0.1834: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  199.193815][T10414] CPU: 1 UID: 0 PID: 10414 Comm: syz.0.1834 Not tainted syzkaller #0 PREEMPT(full) 
[  199.193859][T10414] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  199.193867][T10414] Call Trace:
[  199.193877][T10414]  <TASK>
[  199.193885][T10414]  dump_stack_lvl+0x189/0x250
[  199.193923][T10414]  ? __pfx_dump_stack_lvl+0x10/0x10
[  199.193947][T10414]  ? __pfx__printk+0x10/0x10
[  199.193974][T10414]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  199.193994][T10414]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  199.194022][T10414]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  199.194051][T10414]  warn_alloc+0x214/0x310
[  199.194081][T10414]  ? stack_depot_save_flags+0x40/0x860
[  199.194130][T10414]  ? __pfx_warn_alloc+0x10/0x10
[  199.194167][T10414]  ? kasan_save_track+0x4f/0x80
[  199.194190][T10414]  ? xskq_create+0x56/0x170
[  199.194205][T10414]  ? xsk_init_queue+0xb0/0x110
[  199.194217][T10414]  ? xsk_setsockopt+0x57b/0x8d0
[  199.194229][T10414]  ? do_sock_setsockopt+0x17c/0x1b0
[  199.194240][T10414]  ? __x64_sys_setsockopt+0x13f/0x1b0
[  199.194248][T10414]  ? do_syscall_64+0xfa/0x3b0
[  199.194264][T10414]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.194310][T10414]  __vmalloc_node_range_noprof+0x125/0x12f0
[  199.194424][T10414]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  199.194466][T10414]  ? __kasan_kmalloc+0x93/0xb0
[  199.194498][T10414]  vmalloc_user_noprof+0xad/0xf0
[  199.194522][T10414]  ? xskq_create+0xbf/0x170
[  199.194546][T10414]  xskq_create+0xbf/0x170
[  199.194577][T10414]  xsk_init_queue+0xb0/0x110
[  199.194606][T10414]  xsk_setsockopt+0x57b/0x8d0
[  199.194636][T10414]  ? __pfx_xsk_setsockopt+0x10/0x10
[  199.194657][T10414]  ? __pfx_aa_sk_perm+0x10/0x10
[  199.194688][T10414]  ? __fget_files+0x2a/0x420
[  199.194699][T10414]  ? aa_sock_opt_perm+0xff/0x1b0
[  199.194725][T10414]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  199.194739][T10414]  ? __pfx_xsk_setsockopt+0x10/0x10
[  199.194764][T10414]  do_sock_setsockopt+0x17c/0x1b0
[  199.194797][T10414]  __x64_sys_setsockopt+0x13f/0x1b0
[  199.194856][T10414]  do_syscall_64+0xfa/0x3b0
[  199.194873][T10414]  ? lockdep_hardirqs_on+0x9c/0x150
[  199.194893][T10414]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.194907][T10414]  ? exc_page_fault+0x9f/0xf0
[  199.194938][T10414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.194951][T10414] RIP: 0033:0x7fce2f58ebe9
[  199.194967][T10414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.194977][T10414] RSP: 002b:00007fce30442038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  199.194991][T10414] RAX: ffffffffffffffda RBX: 00007fce2f7c6090 RCX: 00007fce2f58ebe9
[  199.194999][T10414] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000006
[  199.195005][T10414] RBP: 00007fce2f611e19 R08: 0000000000000004 R09: 0000000000000000
[  199.195013][T10414] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[  199.195019][T10414] R13: 00007fce2f7c6128 R14: 00007fce2f7c6090 R15: 00007ffedd732fa8
[  199.195081][T10414]  </TASK>
[  199.195122][T10414] Mem-Info:
[  199.471921][T10414] active_anon:9174 inactive_anon:0 isolated_anon:0
[  199.471921][T10414]  active_file:15234 inactive_file:38289 isolated_file:0
[  199.471921][T10414]  unevictable:1768 dirty:104 writeback:0
[  199.471921][T10414]  slab_reclaimable:9983 slab_unreclaimable:56523
[  199.471921][T10414]  mapped:18007 shmem:2420 pagetables:1132
[  199.471921][T10414]  sec_pagetables:0 bounce:0
[  199.471921][T10414]  kernel_misc_reclaimable:0
[  199.471921][T10414]  free:268586 free_pcp:22186 free_cma:0
[  199.493486][T10414] Node 0 active_anon:18644kB inactive_anon:0kB active_file:46976kB inactive_file:7300kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:17952kB dirty:212kB writeback:0kB shmem:4924kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:2512kB pagetables:2144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  199.506418][T10414] Node 1 active_anon:18052kB inactive_anon:0kB active_file:13960kB inactive_file:145856kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:54076kB dirty:204kB writeback:0kB shmem:4756kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9500kB pagetables:2180kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  199.526352][T10414] Node 0 DMA free:15360kB boost:0kB min:640kB low:800kB high:960kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  199.536253][T10414] lowmem_reserve[]: 0 811
[  199.540138][ T5876] bridge0: port 3(batadv0) entered disabled state
[  199.547802][ T5876] bridge_slave_1: left allmulticast mode
[  199.549737][ T5876] bridge_slave_1: left promiscuous mode
[  199.551860][ T5876] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.559451][ T5876] bridge_slave_0: left allmulticast mode
[  199.561505][ T5876] bridge_slave_0: left promiscuous mode
[  199.564814][ T5876] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.569262][T10414]  811 811 811
[  199.570726][T10414] Node 0 DMA32 free:389136kB boost:0kB min:33660kB low:42072kB high:50484kB reserved_highatomic:0KB free_highatomic:0KB active_anon:18644kB inactive_anon:0kB active_file:46976kB inactive_file:7300kB unevictable:3536kB writepending:212kB present:1556484kB managed:830956kB mlocked:0kB bounce:0kB free_pcp:49956kB local_pcp:14960kB free_cma:0kB
[  199.585281][T10414] lowmem_reserve[]: 0 0 0 0 0
[  199.587884][T10414] Node 1 DMA32 free:458616kB boost:0kB min:19192kB low:23988kB high:28784kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:524152kB managed:458616kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  199.608072][T10414] lowmem_reserve[]: 0 0 854 854 854
[  199.610568][T10414] Node 1 Normal free:210528kB boost:0kB min:36612kB low:45764kB high:54916kB reserved_highatomic:0KB free_highatomic:0KB active_anon:17984kB inactive_anon:0kB active_file:13960kB inactive_file:145856kB unevictable:3536kB writepending:204kB present:1048576kB managed:874952kB mlocked:0kB bounce:0kB free_pcp:39884kB local_pcp:19692kB free_cma:0kB
[  199.627606][T10414] lowmem_reserve[]: 0 0 0 0 0
[  199.629858][T10414] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  199.635470][T10414] Node 0 DMA32: 972*4kB (UME) 466*8kB (UME) 446*16kB (UME) 552*32kB (UME) 223*64kB (UME) 257*128kB (UM) 56*256kB (UME) 17*512kB (UME) 9*1024kB (UME) 2*2048kB (UE) 68*4096kB (UM) = 394464kB
[  199.645395][T10414] Node 1 DMA32: 2*4kB (M) 2*8kB (M) 2*16kB (M) 2*32kB (M) 2*64kB (M) 1*128kB (M) 2*256kB (M) 2*512kB (M) 2*1024kB (M) 2*2048kB (M) 110*4096kB (M) = 458616kB
[  199.652366][T10414] Node 1 Normal: 134*4kB (M) 113*8kB (UME) 276*16kB (UME) 205*32kB (UME) 104*64kB (UME) 72*128kB (UM) 49*256kB (UM) 7*512kB (UME) 4*1024kB (U) 1*2048kB (E) 39*4096kB (UM) = 210304kB
[  199.663326][T10414] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  199.671057][T10414] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  199.682207][T10414] 55945 total pagecache pages
[  199.688458][T10414] 0 pages in swap cache
[  199.690583][T10414] Free swap  = 124996kB
[  199.692853][T10414] Total swap = 124996kB
[  199.699681][T10414] 786301 pages RAM
[  199.702980][T10414] 0 pages HighMem/MovableOnly
[  199.720949][T10414] 241330 pages reserved
[  199.722388][T10414] 0 pages cma reserved
[  200.106738][ T5876] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  200.112927][ T5876] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  200.120726][ T5876] bond0 (unregistering): Released all slaves
[  200.131341][ T5898] erspan0 speed is unknown, defaulting to 1000
[  200.137855][ T5898] infiniband syz2: ib_query_port failed (-19)
[  200.776490][ T5876] hsr_slave_0: left promiscuous mode
[  200.779380][ T5876] hsr_slave_1: left promiscuous mode
[  200.787208][ T5876] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  200.790457][ T5876] batman_adv: batadv0: Removing interface: batadv_slave_0
[  200.795496][ T5876] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  200.798598][ T5876] batman_adv: batadv0: Removing interface: batadv_slave_1
[  200.809901][ T5876] veth1_macvtap: left promiscuous mode
[  200.811845][ T5876] veth0_macvtap: left promiscuous mode
[  200.815234][ T5876] veth1_vlan: left promiscuous mode
[  200.817251][ T5876] veth0_vlan: left promiscuous mode
[  201.209354][ T5876] team0 (unregistering): Port device team_slave_1 removed
[  201.260615][ T5876] team0 (unregistering): Port device team_slave_0 removed
[  201.873020][T10471] openvswitch: netlink: IP tunnel dst address not specified
[  202.032701][T10480] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  202.122345][T10488] netlink: 'syz.0.1862': attribute type 4 has an invalid length.
[  202.913452][T10531] __nla_validate_parse: 9 callbacks suppressed
[  202.913468][T10531] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1882'.
[  203.858900][T10560] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1894'.
[  204.240923][T10566] netlink: 22 bytes leftover after parsing attributes in process `syz.3.1897'.
[  204.618302][T10568] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1898'.
[  204.819032][T10580] bridge_slave_1: left allmulticast mode
[  204.821389][T10580] bridge_slave_1: left promiscuous mode
[  204.826120][T10580] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.835657][T10580] bridge_slave_0: left allmulticast mode
[  204.837573][T10580] bridge_slave_0: left promiscuous mode
[  204.839655][T10580] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.954505][T10583] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  206.658113][T10612] netlink: 9286 bytes leftover after parsing attributes in process `syz.1.1916'.
[  207.162422][T10624] netlink: 'syz.3.1920': attribute type 1 has an invalid length.
[  207.166333][T10624] netlink: 'syz.3.1920': attribute type 2 has an invalid length.
[  207.169730][T10624] netlink: 'syz.3.1920': attribute type 4 has an invalid length.
[  207.173033][T10624] netlink: 'syz.3.1920': attribute type 1 has an invalid length.
[  207.177250][T10624] netlink: 'syz.3.1920': attribute type 2 has an invalid length.
[  207.180854][T10624] netlink: 130080 bytes leftover after parsing attributes in process `syz.3.1920'.
[  207.186411][T10624] netlink: 'syz.3.1920': attribute type 1 has an invalid length.
[  207.191343][T10624] netlink: 'syz.3.1920': attribute type 2 has an invalid length.
[  207.398346][T10634] option changes via remount are deprecated (pid=10631 comm=syz.0.1924)
[  207.656936][T10643] netlink: 17279 bytes leftover after parsing attributes in process `syz.1.1928'.
[  208.146922][T10649] team0: Port device team_slave_0 removed
[  208.151119][T10649] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  208.870656][T10689] wg2: entered promiscuous mode
[  208.872926][T10689] wg2: entered allmulticast mode
[  209.048015][T10695] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1950'.
[  209.106083][T10703] netlink: 'syz.3.1954': attribute type 14 has an invalid length.
[  209.263100][T10713] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1959'.
[  209.488196][T10736] netlink: 'syz.0.1964': attribute type 21 has an invalid length.
[  209.492036][T10736] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1964'.
[  209.722304][T10750] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  210.661478][T10774] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1978'.
[  210.981913][T10796] netlink: 'syz.1.1985': attribute type 11 has an invalid length.
[  211.000225][T10796] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1985'.
[  211.028733][T10787] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  212.334355][T10833] netlink: 'syz.1.2005': attribute type 13 has an invalid length.
[  213.167274][T10836] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2006'.
[  213.212977][T10833] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  213.461841][T10855] bridge0: port 3(team0) entered disabled state
[  213.464329][T10855] bridge0: port 2(bridge_slave_1) entered disabled state
[  213.467742][T10855] bridge0: port 1(bridge_slave_0) entered disabled state
[  213.475453][T10855] bridge0: entered allmulticast mode
[  213.509782][T10857] netlink: 'syz.1.2013': attribute type 29 has an invalid length.
[  213.567339][T10855] bridge0: port 3(team0) entered disabled state
[  213.590119][T10861] openvswitch: netlink: Message has 4 unknown bytes.
[  213.629262][T10855] bridge_slave_1: left allmulticast mode
[  213.632870][T10855] bridge_slave_1: left promiscuous mode
[  213.637073][T10855] bridge0: port 2(bridge_slave_1) entered disabled state
[  213.674350][T10855] bridge_slave_0: left allmulticast mode
[  213.677291][T10855] bridge_slave_0: left promiscuous mode
[  213.681240][T10855] bridge0: port 1(bridge_slave_0) entered disabled state
[  214.140966][T10878] netlink: 'syz.0.2023': attribute type 46 has an invalid length.
[  214.147201][T10878] netlink: 55 bytes leftover after parsing attributes in process `syz.0.2023'.
[  214.257995][T10888] netlink: 10 bytes leftover after parsing attributes in process `syz.3.2028'.
[  214.563329][T10905] tap0: tun_chr_ioctl cmd 1074025677
[  214.565547][T10905] tap0: linktype set to 0
[  214.721182][T10914] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2040'.
[  214.733235][T10914] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2040'.
[  214.737765][T10914] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2040'.
[  214.864939][T10918] netlink: 92 bytes leftover after parsing attributes in process `syz.0.2042'.
[  217.132814][T10998] netlink: 146936 bytes leftover after parsing attributes in process `syz.3.2079'.
[  217.141572][T10998] openvswitch: netlink: Message has 6 unknown bytes.
[  217.157687][T11001] netlink: 'syz.0.2076': attribute type 1 has an invalid length.
[  217.172687][T11001] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2076'.
[  217.228005][T11002] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  217.241092][T11002] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  217.814910][ T5852] Bluetooth: hci0: unexpected event 0x03 length: 15 > 11
[  217.899644][T11021] netlink: 'syz.0.2087': attribute type 21 has an invalid length.
[  218.281177][T11037] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  219.258357][T11072] netlink: 'syz.1.2108': attribute type 39 has an invalid length.
[  220.431481][T11089] netlink: 'syz.0.2115': attribute type 29 has an invalid length.
[  220.493023][T11098] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  220.582287][T11099] delete_channel: no stack
[  220.623337][T11109] netlink: 14 bytes leftover after parsing attributes in process `syz.1.2124'.
[  221.067328][T11121] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  221.531335][T11125] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.2131'.
[  221.675662][ T5238] Bluetooth: hci0: command 0x0406 tx timeout
[  221.729851][T11134] netlink: 'syz.1.2135': attribute type 11 has an invalid length.
[  221.732617][T11134] netlink: 'syz.1.2135': attribute type 11 has an invalid length.
[  221.882509][T11140] netlink: 'syz.0.2136': attribute type 3 has an invalid length.
[  221.887704][T11140] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.2136'.
[  221.975198][T11156] netlink: 16255 bytes leftover after parsing attributes in process `syz.1.2141'.
[  222.020572][T11160] netlink: 'syz.3.2143': attribute type 39 has an invalid length.
[  222.506592][T11173] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  222.510580][T11173] CPU: 1 UID: 0 PID: 11173 Comm: syz.1.2148 Not tainted syzkaller #0 PREEMPT(full) 
[  222.510597][T11173] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  222.510604][T11173] Call Trace:
[  222.510609][T11173]  <TASK>
[  222.510615][T11173]  dump_stack_lvl+0x189/0x250
[  222.510640][T11173]  ? __pfx_dump_stack_lvl+0x10/0x10
[  222.510654][T11173]  ? __pfx__printk+0x10/0x10
[  222.510676][T11173]  ? kernfs_path_from_node+0x2f/0x290
[  222.510691][T11173]  ? kernfs_path_from_node+0x250/0x290
[  222.510703][T11173]  ? kernfs_path_from_node+0x2f/0x290
[  222.510719][T11173]  sysfs_warn_dup+0x8e/0xa0
[  222.510731][T11173]  sysfs_do_create_link_sd+0xc0/0x110
[  222.510745][T11173]  device_add_class_symlinks+0x1cf/0x240
[  222.510762][T11173]  device_add+0x475/0xb50
[  222.510803][T11173]  wiphy_register+0x1ba6/0x28d0
[  222.510834][T11173]  ? __pfx_wiphy_register+0x10/0x10
[  222.510850][T11173]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  222.510870][T11173]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  222.510894][T11173]  ieee80211_register_hw+0x3425/0x4080
[  222.510922][T11173]  ? ieee80211_register_hw+0x1431/0x4080
[  222.510942][T11173]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  222.510958][T11173]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  222.510979][T11173]  ? __hrtimer_setup+0x187/0x210
[  222.510991][T11173]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  222.511009][T11173]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  222.511046][T11173]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  222.511060][T11173]  ? trace_kmalloc+0x1f/0xd0
[  222.511074][T11173]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  222.511088][T11173]  ? kstrndup+0xbf/0x160
[  222.511109][T11173]  hwsim_new_radio_nl+0xea4/0x1b10
[  222.511126][T11173]  ? __pfx___nla_validate_parse+0x10/0x10
[  222.511154][T11173]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  222.511179][T11173]  ? __nla_parse+0x40/0x60
[  222.511199][T11173]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  222.511220][T11173]  genl_family_rcv_msg_doit+0x215/0x300
[  222.511239][T11173]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  222.511268][T11173]  ? bpf_lsm_capable+0x9/0x20
[  222.511283][T11173]  ? security_capable+0x7e/0x2e0
[  222.511307][T11173]  genl_rcv_msg+0x60e/0x790
[  222.511326][T11173]  ? __pfx_genl_rcv_msg+0x10/0x10
[  222.511341][T11173]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  222.511358][T11173]  ? __copy_skb_header+0xc0/0x550
[  222.511372][T11173]  ? __pfx_ref_tracker_free+0x10/0x10
[  222.511393][T11173]  netlink_rcv_skb+0x208/0x470
[  222.511409][T11173]  ? __lock_acquire+0xab9/0xd20
[  222.511428][T11173]  ? __pfx_genl_rcv_msg+0x10/0x10
[  222.511441][T11173]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  222.511472][T11173]  ? down_read+0x1ad/0x2e0
[  222.511486][T11173]  genl_rcv+0x28/0x40
[  222.511498][T11173]  netlink_unicast+0x82f/0x9e0
[  222.511519][T11173]  ? __pfx_netlink_unicast+0x10/0x10
[  222.511536][T11173]  ? netlink_sendmsg+0x642/0xb30
[  222.511551][T11173]  ? skb_put+0x11b/0x210
[  222.511567][T11173]  netlink_sendmsg+0x805/0xb30
[  222.511591][T11173]  ? __pfx_netlink_sendmsg+0x10/0x10
[  222.511612][T11173]  ? aa_sock_msg_perm+0xf1/0x1d0
[  222.511626][T11173]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  222.511639][T11173]  ? __pfx_netlink_sendmsg+0x10/0x10
[  222.511656][T11173]  __sock_sendmsg+0x21c/0x270
[  222.511674][T11173]  ____sys_sendmsg+0x505/0x830
[  222.511692][T11173]  ? __pfx_____sys_sendmsg+0x10/0x10
[  222.511711][T11173]  ? import_iovec+0x74/0xa0
[  222.511728][T11173]  ___sys_sendmsg+0x21f/0x2a0
[  222.511743][T11173]  ? __pfx____sys_sendmsg+0x10/0x10
[  222.511806][T11173]  ? __fget_files+0x2a/0x420
[  222.511818][T11173]  ? __fget_files+0x3a0/0x420
[  222.511838][T11173]  __x64_sys_sendmsg+0x19b/0x260
[  222.511853][T11173]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  222.511875][T11173]  ? rcu_is_watching+0x15/0xb0
[  222.511892][T11173]  ? do_syscall_64+0xbe/0x3b0
[  222.511914][T11173]  do_syscall_64+0xfa/0x3b0
[  222.511931][T11173]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.511943][T11173]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  222.511958][T11173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.511969][T11173] RIP: 0033:0x7f9aa2d8ebe9
[  222.511980][T11173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.511990][T11173] RSP: 002b:00007f9aa3b7a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  222.512005][T11173] RAX: ffffffffffffffda RBX: 00007f9aa2fc6090 RCX: 00007f9aa2d8ebe9
[  222.512012][T11173] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000009
[  222.512018][T11173] RBP: 00007f9aa2e11e19 R08: 0000000000000000 R09: 0000000000000000
[  222.512026][T11173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  222.512033][T11173] R13: 00007f9aa2fc6128 R14: 00007f9aa2fc6090 R15: 00007ffe59d722e8
[  222.512053][T11173]  </TASK>
[  222.885116][T11177] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2150'.
[  222.888407][T11177] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2150'.
[  223.036842][T11188] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2154'.
[  223.285441][T11195] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2158'.
[  223.314230][T11195] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2158'.
[  223.472723][ T5852] Bluetooth: hci0: unexpected event for opcode 0x0000
[  223.494353][T11211] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2164'.
[  223.702322][T11217] C: renamed from team_slave_0
[  223.707466][T11217] netlink: 'syz.0.2167': attribute type 3 has an invalid length.
[  223.710893][T11217] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  224.154209][T11230] syz.3.2172 (11230) used obsolete PPPIOCDETACH ioctl
[  224.503910][T11223] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  224.748849][ T5852] Bluetooth: hci1: unexpected event 0x08 length: 151 > 4
[  224.888288][T11250] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  224.894863][T11250] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  227.504112][ T5852] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  227.508677][ T5852] Bluetooth: hci0: Injecting HCI hardware error event
[  227.513516][ T5852] Bluetooth: hci0: hardware error 0x00
[  228.071549][T11280] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  228.076529][T11280] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  228.490466][T11287] netlink: 'syz.3.2193': attribute type 10 has an invalid length.
[  228.494510][T11287] __nla_validate_parse: 7 callbacks suppressed
[  228.494519][T11287] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2193'.
[  228.499606][T11287] bond0: entered promiscuous mode
[  228.937006][T11297] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2198'.
[  229.060406][T11307] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2203'.
[  229.064449][T11307] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2203'.
[  229.199948][ T5238] Bluetooth: hci1: unexpected subevent 0x0e length: 150 > 15
[  229.203896][ T5238] Bluetooth: hci1: Unable to find connection for dst 00:00:00:00:00:00 sid 0x00
[  229.407769][T11333] netlink: 'syz.3.2215': attribute type 32 has an invalid length.
[  229.930777][T11361] netlink: 763 bytes leftover after parsing attributes in process `syz.1.2222'.
[  230.024385][ T5852] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  230.262365][ T5852] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  230.668541][T11368] netlink: 16410 bytes leftover after parsing attributes in process `syz.0.2227'.
[  230.769611][T11374] netlink: 'syz.3.2230': attribute type 29 has an invalid length.
[  230.774656][T11374] netlink: 'syz.3.2230': attribute type 29 has an invalid length.
[  231.007679][T11380] tmpfs: Bad value for 'gid'
[  231.024192][T11380] tmpfs: Bad value for 'gid'
[  231.250649][T11404] netlink: 'syz.1.2240': attribute type 2 has an invalid length.
[  231.256046][T11404] netlink: 'syz.1.2240': attribute type 8 has an invalid length.
[  231.258961][T11404] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2240'.
[  232.276056][T11440] netlink: 'syz.1.2255': attribute type 21 has an invalid length.
[  232.279377][T11440] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2255'.
[  232.284988][T11440] siw: device registration error -23
[  232.657133][T11461] netlink: 'syz.0.2265': attribute type 13 has an invalid length.
[  232.850735][T11465] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2267'.
[  232.979541][T11473] netlink: 'syz.0.2271': attribute type 1 has an invalid length.
[  232.983346][T11473] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2271'.
[  234.911337][T11505] delete_channel: no stack
[  236.129097][T11528] netlink: 144 bytes leftover after parsing attributes in process `syz.3.2293'.
[  236.243376][T11537] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2298'.
[  236.564580][T11552] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2305'.
[  236.859162][   T33] audit: type=1107 audit(1757435306.195:3): pid=11569 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  237.430328][T11590] netlink: 'syz.1.2321': attribute type 11 has an invalid length.
[  237.436230][T11590] netlink: 140 bytes leftover after parsing attributes in process `syz.1.2321'.
[  238.222767][T11628] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.2338'.
[  238.968561][T11647] netlink: 'syz.3.2347': attribute type 21 has an invalid length.
[  238.971208][T11647] netlink: 164 bytes leftover after parsing attributes in process `syz.3.2347'.
[  239.008583][T11651] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2349'.
[  239.216288][T11661] veth0_vlan: entered allmulticast mode
[  239.355100][T11669] veth0_vlan: left promiscuous mode
[  239.357682][T11669] veth0_vlan: entered promiscuous mode
[  240.315199][T11700] netlink: 'syz.1.2368': attribute type 21 has an invalid length.
[  240.318659][T11700] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2368'.
[  240.445770][T11705] netlink: 193500 bytes leftover after parsing attributes in process `syz.1.2370'.
[  240.780207][T11719] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2377'.
[  241.215406][T11740] netlink: 'syz.1.2386': attribute type 1 has an invalid length.
[  241.218848][T11740] __nla_validate_parse: 1 callbacks suppressed
[  241.218856][T11740] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2386'.
[  241.225961][T11740] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2386'.
[  241.740441][T11776] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2401'.
[  242.026332][T11795] netlink: 'syz.3.2408': attribute type 2 has an invalid length.
[  242.040687][T11795] : entered promiscuous mode
[  242.295904][T11806] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2413'.
[  242.568744][T11825] netlink: 'syz.3.2422': attribute type 10 has an invalid length.
[  242.572162][T11825] macvlan0: entered allmulticast mode
[  242.577693][T11825] veth1_vlan: entered allmulticast mode
[  242.580832][T11825] macvlan0: entered promiscuous mode
[  242.583782][T11825] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  242.762750][T11843] syzkaller0: entered promiscuous mode
[  242.765365][T11843] syzkaller0: entered allmulticast mode
[  243.752435][T11848] netlink: 18187 bytes leftover after parsing attributes in process `syz.0.2433'.
[  243.778825][T11854] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2436'.
[  243.853000][T11860] : renamed from vlan0 (while UP)
[  244.300670][T11878] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2447'.
[  244.390204][T11899] netlink: 830 bytes leftover after parsing attributes in process `syz.0.2453'.
[  244.393482][T11899] bond_slave_0: entered promiscuous mode
[  244.395419][T11899] bond_slave_1: entered promiscuous mode
[  245.957400][T11951] svc: failed to register nfsdv3 RPC service (errno 22).
[  245.974281][T11951] svc: failed to register nfsaclv3 RPC service (errno 22).
[  246.179848][T11960] netlink: 'syz.3.2478': attribute type 40 has an invalid length.
[  246.514294][T11970] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2482'.
[  247.289669][T11970] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  247.587757][T11996] netlink: 9275 bytes leftover after parsing attributes in process `syz.1.2494'.
[  247.614223][T11995] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2492'.
[  247.664499][T11995] netlink: 'syz.0.2492': attribute type 10 has an invalid length.
[  247.841680][T11995] batman_adv: batadv0: Adding interface: netdevsim0
[  247.894063][T11995] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  247.899552][T12011] netlink: 220 bytes leftover after parsing attributes in process `syz.3.2501'.
[  247.915597][T11995] batman_adv: batadv0: Not using interface netdevsim0 (retrying later): interface not active
[  247.919763][T12011] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  250.255731][T12079] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2530'.
[  250.542809][T12117] netlink: 'syz.1.2549': attribute type 11 has an invalid length.
[  250.555444][T12117] netlink: 148 bytes leftover after parsing attributes in process `syz.1.2549'.
[  250.717988][T12133] netlink: 264 bytes leftover after parsing attributes in process `syz.1.2556'.
[  250.722824][T12133] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2556'.
[  251.542273][T12144] netlink: 16399 bytes leftover after parsing attributes in process `syz.3.2561'.
[  253.111794][ T5852] Bluetooth: hci1: unexpected cc 0x1004 length: 12 > 11
[  253.979486][T12165] netlink: 16178 bytes leftover after parsing attributes in process `syz.3.2569'.
[  254.693268][T12200] netlink: 268 bytes leftover after parsing attributes in process `syz.1.2584'.
[  254.697087][T12200] unsupported nla_type 65024
[  255.141164][T12216] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  255.428052][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  255.430753][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  255.441095][T12235] netlink: 'syz.3.2600': attribute type 4 has an invalid length.
[  255.762509][T12241] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  255.889289][T12262] netlink: 'syz.0.2611': attribute type 7 has an invalid length.
[  256.739884][T12270] mac80211_hwsim hwsim6 wlan0: left promiscuous mode
[  256.791993][T12277] netlink: 'syz.1.2617': attribute type 2 has an invalid length.
[  256.827671][T12279] netlink: 'syz.3.2620': attribute type 1 has an invalid length.
[  256.976053][T12294] syzkaller0: entered promiscuous mode
[  256.978110][T12294] syzkaller0: entered allmulticast mode
[  257.185783][T12313] netlink: 'syz.3.2635': attribute type 4 has an invalid length.
[  257.188233][T12313] netlink: 'syz.3.2635': attribute type 16 has an invalid length.
[  257.195087][ T5852] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  257.198725][ T5852] Bluetooth: hci1: Injecting HCI hardware error event
[  257.202623][ T5238] Bluetooth: hci1: hardware error 0x00
[  257.203301][T12313] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2635'.
[  257.262751][T12319] bpf: Bad value for 'gid'
[  258.857453][T12350] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2649'.
[  259.119603][T12333] netlink: 'syz.1.2643': attribute type 41 has an invalid length.
[  259.123414][T12347] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  259.263523][ T5238] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  259.769443][T12395] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2670'.
[  259.820022][T12400] netlink: 147608 bytes leftover after parsing attributes in process `syz.1.2673'.
[  259.829092][T12400] netlink: 62239 bytes leftover after parsing attributes in process `syz.1.2673'.
[  259.888227][T12407] netlink: 55631 bytes leftover after parsing attributes in process `syz.3.2676'.
[  259.955417][T12413] C: renamed from team_slave_0 (while UP)
[  259.970252][T12413] netlink: 164 bytes leftover after parsing attributes in process `syz.1.2679'.
[  260.115381][T12413] mac80211_hwsim hwsim17 wlan0: entered allmulticast mode
[  260.131199][T12421] mac80211_hwsim hwsim17 wlan0: entered promiscuous mode
[  260.978916][T12436] netlink: 136 bytes leftover after parsing attributes in process `syz.3.2686'.
[  261.552989][T12466] netlink: 'syz.3.2701': attribute type 2 has an invalid length.
[  261.557555][T12466] netlink: 'syz.3.2701': attribute type 1 has an invalid length.
[  261.822335][T12474] netlink: 5844 bytes leftover after parsing attributes in process `syz.3.2705'.
[  262.771004][T12504] netlink: 'syz.0.2718': attribute type 10 has an invalid length.
[  262.817972][T12504] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2718'.
[  263.038509][T12512] netlink: 'syz.1.2722': attribute type 33 has an invalid length.
[  263.042903][T12512] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2722'.
[  263.195018][T12521] netlink: 830 bytes leftover after parsing attributes in process `syz.3.2726'.
[  263.721625][T12528] macsec0: entered promiscuous mode
[  263.725187][T12528] macsec0: entered allmulticast mode
[  263.727614][T12528] veth1_macvtap: entered allmulticast mode
[  263.737187][T12530] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2730'.
[  263.977741][T12548] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2739'.
[  263.981336][T12548] openvswitch: netlink: Missing key (keys=40, expected=100)
[  264.189864][T12571] netlink: 'syz.1.2750': attribute type 10 has an invalid length.
[  264.232105][T12575] netlink: 'syz.0.2752': attribute type 1 has an invalid length.
[  264.270626][T12571] veth1_macvtap (unregistering): left allmulticast mode
[  264.699792][T12604] C: renamed from team_slave_0 (while UP)
[  264.705047][T12604] netlink: 'syz.3.2764': attribute type 1 has an invalid length.
[  264.708691][T12604] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2764'.
[  265.301322][T12616] netlink: 'syz.1.2769': attribute type 19 has an invalid length.
[  265.338515][T12619] netlink: 'syz.0.2771': attribute type 3 has an invalid length.
[  265.341224][T12619] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.2771'.
[  265.409330][T12626] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2774'.
[  265.413749][T12626] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2774'.
[  265.742540][T12642] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2782'.
[  266.466795][T12664] netlink: 'syz.1.2791': attribute type 4 has an invalid length.
[  266.484076][T12664] team0: Port device dummy0 added
[  266.787831][T12682] validate_nla: 1 callbacks suppressed
[  266.787842][T12682] netlink: 'syz.3.2799': attribute type 22 has an invalid length.
[  267.670205][T12709] IPv6: NLM_F_CREATE should be specified when creating new route
[  267.748056][T12718] netlink: 'syz.1.2815': attribute type 10 has an invalid length.
[  269.229870][T12755] tap0: tun_chr_ioctl cmd 1074812118
[  269.251477][T12757] __nla_validate_parse: 1 callbacks suppressed
[  269.251493][T12757] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2832'.
[  272.995263][T12800] netlink: 'syz.0.2849': attribute type 3 has an invalid length.
[  273.000122][T12800] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2849'.
[  273.044578][T12802] netlink: 'syz.0.2850': attribute type 1 has an invalid length.
[  274.188148][T12826] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2861'.
[  274.256430][T12826] netlink: 'syz.1.2861': attribute type 10 has an invalid length.
[  274.342989][T12826] batman_adv: batadv0: Adding interface: netdevsim0
[  274.348458][T12826] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  274.360300][T12826] batman_adv: batadv0: Not using interface netdevsim0 (retrying later): interface not active
[  274.566526][T12838] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2871'.
[  274.708707][T12844] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2867'.
[  275.700278][T12887] netlink: 763 bytes leftover after parsing attributes in process `syz.0.2886'.
[  276.016409][T12911] netlink: 'syz.0.2897': attribute type 2 has an invalid length.
[  278.930062][T13019] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2947'.
[  279.124518][T13029] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.2952'.
[  279.397008][T13039] netlink: 'syz.1.2956': attribute type 10 has an invalid length.
[  279.399969][T13039] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2956'.
[  279.410101][T13039] batman_adv: batadv0: Adding interface: hsr_slave_1
[  279.413391][T13039] batman_adv: batadv0: The MTU of interface hsr_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  279.425527][T13039] batman_adv: batadv0: Interface activated: hsr_slave_1
[  279.874126][T13054] netlink: 'syz.3.2963': attribute type 7 has an invalid length.
[  281.193730][T13113] netlink: 67 bytes leftover after parsing attributes in process `syz.0.2989'.
[  281.399230][T13128] 0: renamed from bond_slave_1 (while UP)
[  283.028246][T13202] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3028'.
[  283.898689][T13252] syzkaller0: entered promiscuous mode
[  283.900253][T13254] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3046'.
[  283.900876][T13252] syzkaller0: entered allmulticast mode
[  283.905725][T13254] netlink: 6 bytes leftover after parsing attributes in process `syz.3.3046'.
[  283.960927][T13262] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3050'.
[  283.966964][T13262] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3050'.
[  285.988963][T13318] syz.1.3074: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  285.995157][T13318] CPU: 1 UID: 0 PID: 13318 Comm: syz.1.3074 Not tainted syzkaller #0 PREEMPT(full) 
[  285.995173][T13318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  285.995181][T13318] Call Trace:
[  285.995185][T13318]  <TASK>
[  285.995191][T13318]  dump_stack_lvl+0x189/0x250
[  285.995212][T13318]  ? __pfx_dump_stack_lvl+0x10/0x10
[  285.995225][T13318]  ? __pfx__printk+0x10/0x10
[  285.995241][T13318]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  285.995255][T13318]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  285.995268][T13318]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  285.995282][T13318]  warn_alloc+0x214/0x310
[  285.995299][T13318]  ? stack_depot_save_flags+0x40/0x860
[  285.995316][T13318]  ? __pfx_warn_alloc+0x10/0x10
[  285.995333][T13318]  ? kasan_save_track+0x4f/0x80
[  285.995347][T13318]  ? xskq_create+0x56/0x170
[  285.995359][T13318]  ? xsk_init_queue+0xb0/0x110
[  285.995371][T13318]  ? xsk_setsockopt+0x57b/0x8d0
[  285.995382][T13318]  ? do_sock_setsockopt+0x17c/0x1b0
[  285.995391][T13318]  ? __x64_sys_setsockopt+0x13f/0x1b0
[  285.995399][T13318]  ? do_syscall_64+0xfa/0x3b0
[  285.995413][T13318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.995428][T13318]  __vmalloc_node_range_noprof+0x125/0x12f0
[  285.995460][T13318]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  285.995479][T13318]  ? __kasan_kmalloc+0x93/0xb0
[  285.995494][T13318]  vmalloc_user_noprof+0xad/0xf0
[  285.995508][T13318]  ? xskq_create+0xbf/0x170
[  285.995522][T13318]  xskq_create+0xbf/0x170
[  285.995537][T13318]  xsk_init_queue+0xb0/0x110
[  285.995550][T13318]  xsk_setsockopt+0x57b/0x8d0
[  285.995564][T13318]  ? __pfx_xsk_setsockopt+0x10/0x10
[  285.995576][T13318]  ? __pfx_aa_sk_perm+0x10/0x10
[  285.995594][T13318]  ? __fget_files+0x2a/0x420
[  285.995630][T13318]  ? aa_sock_opt_perm+0xff/0x1b0
[  285.995644][T13318]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  285.995657][T13318]  ? __pfx_xsk_setsockopt+0x10/0x10
[  285.995671][T13318]  do_sock_setsockopt+0x17c/0x1b0
[  285.995685][T13318]  __x64_sys_setsockopt+0x13f/0x1b0
[  285.995699][T13318]  do_syscall_64+0xfa/0x3b0
[  285.995714][T13318]  ? lockdep_hardirqs_on+0x9c/0x150
[  285.995728][T13318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.995738][T13318]  ? exc_page_fault+0x9f/0xf0
[  285.995754][T13318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.995764][T13318] RIP: 0033:0x7f9aa2d8ebe9
[  285.995774][T13318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  285.995782][T13318] RSP: 002b:00007f9aa3b9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  285.995793][T13318] RAX: ffffffffffffffda RBX: 00007f9aa2fc5fa0 RCX: 00007f9aa2d8ebe9
[  285.995801][T13318] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000005
[  285.995807][T13318] RBP: 00007f9aa2e11e19 R08: 0000000000000004 R09: 0000000000000000
[  285.995813][T13318] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[  285.995819][T13318] R13: 00007f9aa2fc6038 R14: 00007f9aa2fc5fa0 R15: 00007ffe59d722e8
[  285.995838][T13318]  </TASK>
[  285.995844][T13318] Mem-Info:
[  286.117809][T13318] active_anon:9111 inactive_anon:0 isolated_anon:0
[  286.117809][T13318]  active_file:15715 inactive_file:38324 isolated_file:0
[  286.117809][T13318]  unevictable:1768 dirty:59 writeback:0
[  286.117809][T13318]  slab_reclaimable:9943 slab_unreclaimable:68574
[  286.117809][T13318]  mapped:18042 shmem:2436 pagetables:1070
[  286.117809][T13318]  sec_pagetables:0 bounce:0
[  286.117809][T13318]  kernel_misc_reclaimable:0
[  286.117809][T13318]  free:257159 free_pcp:20711 free_cma:0
[  286.132710][T13318] Node 0 active_anon:18536kB inactive_anon:0kB active_file:47096kB inactive_file:7384kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:18080kB dirty:204kB writeback:0kB shmem:4952kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:2264kB pagetables:2044kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  286.143779][T13318] Node 1 active_anon:17908kB inactive_anon:0kB active_file:15764kB inactive_file:145912kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:54088kB dirty:32kB writeback:0kB shmem:4792kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9332kB pagetables:2236kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  286.154221][T13318] Node 0 DMA free:15360kB boost:0kB min:640kB low:800kB high:960kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  286.163907][T13318] lowmem_reserve[]: 0 811 811 811 811
[  286.165758][T13318] Node 0 DMA32 free:368364kB boost:0kB min:33660kB low:42072kB high:50484kB reserved_highatomic:0KB free_highatomic:0KB active_anon:18536kB inactive_anon:0kB active_file:47096kB inactive_file:7384kB unevictable:3536kB writepending:204kB present:1556484kB managed:830956kB mlocked:0kB bounce:0kB free_pcp:40292kB local_pcp:17144kB free_cma:0kB
[  286.176417][T13318] lowmem_reserve[]: 0 0 0 0 0
[  286.178016][T13318] Node 1 DMA32 free:458616kB boost:0kB min:19192kB low:23988kB high:28784kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:524152kB managed:458616kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  286.188513][T13318] lowmem_reserve[]: 0 0 854 854 854
[  286.190426][T13318] Node 1 Normal free:184280kB boost:0kB min:36612kB low:45764kB high:54916kB reserved_highatomic:0KB free_highatomic:0KB active_anon:17908kB inactive_anon:0kB active_file:15764kB inactive_file:145912kB unevictable:3536kB writepending:32kB present:1048576kB managed:874952kB mlocked:0kB bounce:0kB free_pcp:43496kB local_pcp:25024kB free_cma:0kB
[  286.209213][T13318] lowmem_reserve[]: 0 0 0 0 0
[  286.210937][T13318] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  286.217955][T13318] Node 0 DMA32: 193*4kB (UME) 279*8kB (UME) 463*16kB (UME) 174*32kB (ME) 338*64kB (UME) 305*128kB (UM) 71*256kB (UME) 22*512kB (UME) 9*1024kB (UME) 1*2048kB (E) 61*4096kB (UM) = 367212kB
[  286.230530][T13318] Node 1 DMA32: 2*4kB (M) 2*8kB (M) 2*16kB (M) 2*32kB (M) 2*64kB (M) 1*128kB (M) 2*256kB (M) 2*512kB (M) 2*1024kB (M) 2*2048kB (M) 110*4096kB (M) = 458616kB
[  286.237562][T13318] Node 1 Normal: 2*4kB (UM) 164*8kB (UE) 361*16kB (UME) 315*32kB (UME) 169*64kB (UME) 77*128kB (UME) 58*256kB (UME) 9*512kB (UME) 4*1024kB (M) 2*2048kB (ME) 29*4096kB (M) = 184280kB
[  286.247082][T13318] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  286.251070][T13318] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  286.254620][T13318] 56475 total pagecache pages
[  286.256530][T13318] 0 pages in swap cache
[  286.258269][T13318] Free swap  = 124996kB
[  286.260106][T13318] Total swap = 124996kB
[  286.261978][T13318] 786301 pages RAM
[  286.263776][T13318] 0 pages HighMem/MovableOnly
[  286.265929][T13318] 241330 pages reserved
[  286.267805][T13318] 0 pages cma reserved
[  287.721388][T13381] netlink: 104 bytes leftover after parsing attributes in process `syz.3.3102'.
[  287.993379][T13405] netlink: 'syz.0.3113': attribute type 2 has an invalid length.
[  289.539498][T13443] netlink: 'syz.1.3132': attribute type 5 has an invalid length.
[  289.591915][T13445] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3133'.
[  289.827200][T13467] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3141'.
[  289.946576][T13477] netlink: 'syz.0.3147': attribute type 29 has an invalid length.
[  289.950306][T13477] netlink: 'syz.0.3147': attribute type 29 has an invalid length.
[  290.916727][T13520] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:0603:0000:0023 with DS=0x31
[  291.559382][T13541] sctp: [Deprecated]: syz.3.3175 (pid 13541) Use of struct sctp_assoc_value in delayed_ack socket option.
[  291.559382][T13541] Use struct sctp_sack_info instead
[  291.675470][T13547] netlink: 'syz.3.3178': attribute type 2 has an invalid length.
[  291.679212][T13547] netlink: 16098 bytes leftover after parsing attributes in process `syz.3.3178'.
[  291.812162][T13550] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.3177'.
[  291.817507][T13550] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.3177'.
[  292.196230][T13573] netlink: 'syz.1.3189': attribute type 4 has an invalid length.
[  292.199700][T13573] netlink: 211448 bytes leftover after parsing attributes in process `syz.1.3189'.
[  292.339095][T13586] delete_channel: no stack
[  292.341216][T13586] delete_channel: no stack
[  292.406294][T13592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3199'.
[  292.458114][T13596] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3201'.
[  292.467937][T13596] : entered promiscuous mode
[  296.052875][T13660] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.3230'.
[  296.056742][T13660] netlink: zone id is out of range
[  296.058781][T13660] netlink: get zone limit has 8 unknown bytes
[  297.414985][T13727] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  297.418476][T13727] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  297.891141][T13757] netlink: 182 bytes leftover after parsing attributes in process `syz.3.3274'.
[  298.888796][T13787] option changes via remount are deprecated (pid=13786 comm=syz.3.3285)
[  299.099217][T13797] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.3289'.
[  299.154259][T13801] netlink: 'syz.1.3291': attribute type 9 has an invalid length.
[  299.330451][T13811] netlink: 'syz.3.3294': attribute type 1 has an invalid length.
[  299.491836][T13820] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3299'.
[  299.497552][T13820] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3299'.
[  299.501353][T13820] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3299'.
[  299.643016][T13838] netlink: 196 bytes leftover after parsing attributes in process `syz.0.3307'.
[  299.771851][T13839] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  300.018990][T13861] netlink: 'syz.0.3319': attribute type 10 has an invalid length.
[  300.036756][T13861] team0: Device ipvlan1 failed to register rx_handler
[  300.360853][T13879] netlink: 'syz.0.3329': attribute type 291 has an invalid length.
[  300.750045][ T5852] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  300.757349][ T5852] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  300.762105][ T5852] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  300.769299][ T5852] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  300.773084][ T5852] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  301.005469][T13891] chnl_net:caif_netlink_parms(): no params data found
[  301.382953][T13891] bridge0: port 1(bridge_slave_0) entered blocking state
[  301.386105][T13891] bridge0: port 1(bridge_slave_0) entered disabled state
[  301.388995][T13891] bridge_slave_0: entered allmulticast mode
[  301.391834][T13891] bridge_slave_0: entered promiscuous mode
[  301.395465][T13891] bridge0: port 2(bridge_slave_1) entered blocking state
[  301.397993][T13891] bridge0: port 2(bridge_slave_1) entered disabled state
[  301.400390][T13891] bridge_slave_1: entered allmulticast mode
[  301.403520][T13891] bridge_slave_1: entered promiscuous mode
[  301.422384][T13891] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  301.427896][T13891] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  301.465404][T13891] team0: Port device team_slave_0 added
[  301.473914][T13891] team0: Port device team_slave_1 added
[  301.596723][ T5877] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.610223][T13891] batman_adv: batadv0: Adding interface: batadv_slave_0
[  301.612583][T13891] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.621638][T13891] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  301.627331][T13891] batman_adv: batadv0: Adding interface: batadv_slave_1
[  301.629873][T13891] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.663060][T13891] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  301.684960][ T5877] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.739702][T13891] hsr_slave_0: entered promiscuous mode
[  301.742136][T13891] hsr_slave_1: entered promiscuous mode
[  301.775012][ T5877] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.841050][ T5877] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  302.039191][T13938] netlink: 'syz.0.3353': attribute type 1 has an invalid length.
[  302.344302][ T5877] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  302.348147][ T5877] bond_slave_0: left promiscuous mode
[  302.351778][ T5877] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  302.357378][ T5877] bond_slave_1: left promiscuous mode
[  302.361151][ T5877] bond0 (unregistering): (slave macvlan0): Releasing backup interface
[  302.365154][ T5877] macvlan0: left promiscuous mode
[  302.367473][ T5877] veth1_vlan: left allmulticast mode
[  302.370412][ T5877] bond0 (unregistering): Released all slaves
[  302.399229][T13950] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.3359'.
[  302.455221][ T5877] : left promiscuous mode
[  302.589649][T13961] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3361'.
[  302.863675][ T5238] Bluetooth: hci1: command tx timeout
[  302.897348][ T5877] hsr_slave_0: left promiscuous mode
[  302.916703][ T5877] hsr_slave_1: left promiscuous mode
[  302.918907][ T5877] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  302.921339][ T5877] batman_adv: batadv0: Removing interface: batadv_slave_0
[  302.928953][ T5877] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  302.931372][ T5877] batman_adv: batadv0: Removing interface: batadv_slave_1
[  302.960387][ T5877] veth1_macvtap: left allmulticast mode
[  302.971669][ T5877] veth1_macvtap: left promiscuous mode
[  302.976793][ T5877] veth0_macvtap: left promiscuous mode
[  302.978637][ T5877] veth1_vlan: left promiscuous mode
[  304.738957][ T5877] team_slave_1 (unregistering): left promiscuous mode
[  304.741248][ T5877] team_slave_1 (unregistering): left allmulticast mode
[  304.745526][ T5877] team0 (unregistering): Port device team_slave_1 removed
[  304.780105][ T5877] C (unregistering): left promiscuous mode
[  304.782106][ T5877] C (unregistering): left allmulticast mode
[  304.788344][ T5877] team0 (unregistering): Port device C removed
[  304.897849][T14003] openvswitch: netlink: Missing key (keys=2000040, expected=2000)
[  304.943411][ T5238] Bluetooth: hci1: command tx timeout
[  305.220806][T14012] netlink: 'syz.0.3382': attribute type 10 has an invalid length.
[  305.236636][T13891] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  305.328115][T14012] team0 (unregistering): Port device team_slave_1 removed
[  305.331206][T14012] bond_slave_0: left promiscuous mode
[  305.334044][T14012] 0: left promiscuous mode
[  305.338241][T14012] team0 (unregistering): Port device bond0 removed
[  305.349895][T13891] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  305.361569][T13891] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  305.388021][T13891] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  305.488717][T13891] 8021q: adding VLAN 0 to HW filter on device bond0
[  305.501604][T14027] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3386'.
[  305.502383][T13891] 8021q: adding VLAN 0 to HW filter on device team0
[  305.519196][ T1089] bridge0: port 1(bridge_slave_0) entered blocking state
[  305.521581][ T1089] bridge0: port 1(bridge_slave_0) entered forwarding state
[  305.535136][ T1089] bridge0: port 2(bridge_slave_1) entered blocking state
[  305.537525][ T1089] bridge0: port 2(bridge_slave_1) entered forwarding state
[  305.695742][T13891] 8021q: adding VLAN 0 to HW filter on device batadv0
[  305.752168][T13891] veth0_vlan: entered promiscuous mode
[  305.767762][T13891] veth1_vlan: entered promiscuous mode
[  305.801621][T13891] veth0_macvtap: entered promiscuous mode
[  305.814621][T13891] veth1_macvtap: entered promiscuous mode
[  305.831896][T13891] batman_adv: batadv0: Interface activated: batadv_slave_0
[  305.849242][T13891] batman_adv: batadv0: Interface activated: batadv_slave_1
[  305.855789][ T5741] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  305.876421][ T5741] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  305.890026][ T5741] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  305.907120][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  305.995371][ T3805] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  306.005488][ T3805] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  306.054622][ T3823] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  306.058039][ T3823] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  306.320640][T14088] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3403'.
[  306.338534][T14088] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3403'.
[  306.542055][T14101] mac80211_hwsim hwsim7 wlan1: entered promiscuous mode
[  306.544824][T14101] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  306.549748][T14101] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3406'.
[  306.585502][T14103] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3410'.
[  306.713099][T14113] netlink: 64 bytes leftover after parsing attributes in process `syz.3.3414'.
[  306.790793][T14119] netlink: 'syz.1.3418': attribute type 21 has an invalid length.
[  306.797530][T14119] netlink: 156 bytes leftover after parsing attributes in process `syz.1.3418'.
[  307.023409][ T5238] Bluetooth: hci1: command tx timeout
[  307.087851][T14137] openvswitch: netlink: Flow actions attr not present in new flow.
[  307.135790][T14141] netlink: 92 bytes leftover after parsing attributes in process `syz.3.3428'.
[  307.504305][T14147] netlink: 'syz.3.3430': attribute type 11 has an invalid length.
[  307.507179][T14147] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.3430'.
[  307.735573][   T33] audit: type=1107 audit(1757435377.065:4): pid=14167 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  308.042209][T14186] netlink: 14 bytes leftover after parsing attributes in process `syz.3.3446'.
[  308.104095][T14186] hsr_slave_0: left promiscuous mode
[  308.116936][T14186] hsr_slave_1: left promiscuous mode
[  309.108691][ T5238] Bluetooth: hci1: command tx timeout
[  309.996885][T14245] netlink: 'syz.3.3471': attribute type 10 has an invalid length.
[  310.230709][T14253] raw_sendmsg: syz.3.3475 forgot to set AF_INET. Fix it!
[  310.538167][T14265] netlink: 64859 bytes leftover after parsing attributes in process `syz.1.3481'.
[  310.609388][T14273] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  311.090367][T14297] mac80211_hwsim hwsim18 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  311.232903][T14303] sit0: entered allmulticast mode
[  311.240650][T14303] sit0: entered promiscuous mode
[  312.804800][T14335] netlink: 112 bytes leftover after parsing attributes in process `syz.0.3513'.
[  312.808720][T14335] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3513'.
[  312.954366][T14349] netlink: 'syz.1.3519': attribute type 1 has an invalid length.
[  313.527626][T14369] debugfs: '!' already exists in 'ieee80211'
[  313.798253][T14383] netlink: 4068 bytes leftover after parsing attributes in process `syz.1.3534'.
[  314.402884][T14401] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3540'.
[  314.709948][T14414] proc: Unknown parameter 'u'
[  314.792597][T14422] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3551'.
[  314.800067][T14422] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3551'.
[  316.377087][T14480] netlink: 'syz.1.3575': attribute type 1 has an invalid length.
[  316.460102][T14485] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3577'.
[  316.552344][T14487] netlink: 56 bytes leftover after parsing attributes in process `syz.1.3578'.
[  316.562614][T14487] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3578'.
[  316.993720][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  316.996831][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  317.142694][T14500] netlink: 'syz.3.3584': attribute type 6 has an invalid length.
[  317.236609][T14506] netlink: 26 bytes leftover after parsing attributes in process `syz.0.3587'.
[  317.446215][T14519] sctp: [Deprecated]: syz.0.3591 (pid 14519) Use of struct sctp_assoc_value in delayed_ack socket option.
[  317.446215][T14519] Use struct sctp_sack_info instead
[  318.350612][T14546] syzkaller0: tun_chr_ioctl cmd 2147767506
[  318.358313][T14556] sock: sock_timestamping_bind_phc: sock not bind to device
[  318.590319][T14569] mac80211_hwsim hwsim30 wlan1: entered promiscuous mode
[  318.603012][T14569] mac80211_hwsim hwsim30 wlan1: entered allmulticast mode
[  320.625719][T14666] netlink: 64859 bytes leftover after parsing attributes in process `syz.3.3651'.
[  321.341670][T14697] option changes via remount are deprecated (pid=14694 comm=syz.1.3665)
[  322.775333][T14727] netlink: 'syz.3.3677': attribute type 10 has an invalid length.
[  323.007712][T14734] veth0_vlan: entered allmulticast mode
[  323.093260][T14740] netlink: 'syz.0.3683': attribute type 8 has an invalid length.
[  323.534295][T14756] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3691'.
[  323.581686][T14759] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.3691'.
[  328.221581][T14871] netlink: 'syz.3.3739': attribute type 10 has an invalid length.
[  328.231328][T14871] netlink: 55 bytes leftover after parsing attributes in process `syz.3.3739'.
[  328.715832][T14878] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3742'.
[  329.098586][T14876] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3741'.
[  329.277758][T14901] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3753'.
[  330.094756][T14909] netlink: 16255 bytes leftover after parsing attributes in process `syz.1.3755'.
[  333.768624][T14968] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.3781'.
[  333.771861][T14968] netlink: 5 bytes leftover after parsing attributes in process `syz.0.3781'.
[  333.935075][T14977] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3785'.
[  334.032359][T14986] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.3790'.
[  334.305664][T15008] sock: sock_timestamping_bind_phc: sock not bind to device
[  334.390881][T15018] netlink: 7 bytes leftover after parsing attributes in process `syz.3.3804'.
[  334.406910][T15018] netlink: 7 bytes leftover after parsing attributes in process `syz.3.3804'.
[  334.594506][ T5238] Bluetooth: hci1: unexpected subevent 0x12 length: 150 > 5
[  334.935383][T15040] netlink: 1 bytes leftover after parsing attributes in process `syz.0.3813'.
[  334.975193][T15042] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3814'.
[  335.675216][T15054] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3819'.
[  336.101216][T15068] netlink: 'syz.3.3826': attribute type 9 has an invalid length.
[  336.110801][T15068] netlink: 212160 bytes leftover after parsing attributes in process `syz.3.3826'.
[  336.327861][T15078] netlink: 'syz.1.3830': attribute type 39 has an invalid length.
[  337.642832][T15166] netlink: 'syz.1.3869': attribute type 9 has an invalid length.
[  339.355560][T15221] syzkaller0: entered promiscuous mode
[  339.357877][T15221] syzkaller0: entered allmulticast mode
[  339.634015][T15238] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  339.992534][T15260] netlink: 'syz.3.3909': attribute type 10 has an invalid length.
[  340.025184][T15260] team0: Port device geneve1 added
[  340.766951][T15299] netlink: 'syz.0.3927': attribute type 10 has an invalid length.
[  340.858949][T15301] __nla_validate_parse: 4 callbacks suppressed
[  340.858968][T15301] netlink: 193500 bytes leftover after parsing attributes in process `syz.1.3928'.
[  341.217526][T15319] netlink: 'syz.3.3937': attribute type 10 has an invalid length.
[  341.246828][T15322] veth1_macvtap: left allmulticast mode
[  341.249423][T15322] veth1_macvtap: left promiscuous mode
[  341.251904][T15322] macsec0: left allmulticast mode
[  342.408294][T15355] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3949'.
[  342.411346][T15355] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3949'.
[  342.547229][T15361] netlink: 'syz.3.3952': attribute type 13 has an invalid length.
[  344.317072][T15423] mac80211_hwsim hwsim7 wlan1: left promiscuous mode
[  344.851650][T15439] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3985'.
[  344.856020][T15439] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3985'.
[  344.859737][T15439] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3985'.
[  345.252338][T15458] netlink: 152 bytes leftover after parsing attributes in process `syz.1.3994'.
[  345.257291][T15458] netlink: 6 bytes leftover after parsing attributes in process `syz.1.3994'.
[  345.488990][T15464] netlink: 'syz.1.3997': attribute type 2 has an invalid length.
[  345.491977][T15464] netlink: 137592 bytes leftover after parsing attributes in process `syz.1.3997'.
[  345.926994][T15478] netlink: 10 bytes leftover after parsing attributes in process `syz.0.4003'.
[  346.113821][T15484] netlink: 'syz.0.4005': attribute type 9 has an invalid length.
[  346.117168][T15484] netlink: 211924 bytes leftover after parsing attributes in process `syz.0.4005'.
[  346.208635][T15490] netlink: 68 bytes leftover after parsing attributes in process `syz.1.4006'.
[  346.689506][T15502] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4012'.
[  347.840546][T15553] sctp: [Deprecated]: syz.3.4037 (pid 15553) Use of int in maxseg socket option.
[  347.840546][T15553] Use struct sctp_assoc_value instead
[  348.278052][T15560] netlink: 'syz.3.4039': attribute type 1 has an invalid length.
[  348.281906][T15560] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.4039'.
[  349.591478][T15585] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4046'.
[  349.596142][T15585] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  349.600917][T15585] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  349.653031][T15590] netlink: 180 bytes leftover after parsing attributes in process `syz.1.4048'.
[  349.730064][T15597] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  349.942558][T15609] netlink: 'syz.1.4055': attribute type 10 has an invalid length.
[  350.000152][T15610] netlink: 'syz.1.4055': attribute type 11 has an invalid length.
[  350.003822][T15610] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.4055'.
[  351.365260][T15609] team0: Port device wlan1 added
[  352.241234][T15628] netlink: 'syz.0.4064': attribute type 10 has an invalid length.
[  352.245491][T15628] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4064'.
[  352.249721][T15628] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  352.415724][T15643] netlink: 'syz.0.4071': attribute type 3 has an invalid length.
[  352.548544][T15651] netlink: 'syz.0.4074': attribute type 13 has an invalid length.
[  352.550561][T15653] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4075'.
[  352.552131][T15651] netlink: 'syz.0.4074': attribute type 17 has an invalid length.
[  353.177879][T15651] bond_slave_0: entered promiscuous mode
[  353.180992][T15651] 0: entered promiscuous mode
[  353.216000][T15651] 8021q: adding VLAN 0 to HW filter on device bond0
[  353.246228][T15668] netlink: 'syz.1.4078': attribute type 10 has an invalid length.
[  353.252338][T15651] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  353.501671][T15679] netlink: 180 bytes leftover after parsing attributes in process `syz.0.4082'.
[  354.098574][T15705] netlink: 'syz.3.4094': attribute type 10 has an invalid length.
[  354.101318][T15705] netlink: 65015 bytes leftover after parsing attributes in process `syz.3.4094'.
[  354.354117][T15718] netlink: 9280 bytes leftover after parsing attributes in process `syz.1.4100'.
[  356.398739][T15750] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4113'.
[  356.860077][T15777] mac80211_hwsim hwsim30 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  356.899343][T15793] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4132'.
[  356.917186][T15793] siw: device registration error -23
[  357.134652][T15805] netlink: 'syz.1.4138': attribute type 10 has an invalid length.
[  357.139603][T15805] netlink: 168 bytes leftover after parsing attributes in process `syz.1.4138'.
[  357.289400][T15818] syzkaller1: tun_chr_ioctl cmd 1074025677
[  357.292200][T15818] syzkaller1: linktype set to 1
[  357.304303][T15820] netlink: 60 bytes leftover after parsing attributes in process `syz.0.4145'.
[  357.720454][T15838] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4152'.
[  357.811713][T15839] ksmbd: Daemon and kernel module version mismatch. ksmbd: 36, kernel module: 1. User-space ksmbd should terminate.
[  358.349750][T15869] netlink: 'syz.1.4167': attribute type 6 has an invalid length.
[  358.551113][T15887] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  358.741155][T15914] netlink: 208192 bytes leftover after parsing attributes in process `syz.3.4189'.
[  358.750307][T15914] netlink: 'syz.3.4189': attribute type 1 has an invalid length.
[  358.752876][T15914] netlink: 'syz.3.4189': attribute type 2 has an invalid length.
[  358.906621][T15921] netlink: 'syz.1.4193': attribute type 27 has an invalid length.
[  358.909832][T15921] netlink: 'syz.1.4193': attribute type 4 has an invalid length.
[  358.909911][T15919] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  358.912757][T15921] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4193'.
[  359.128907][T15943] netlink: 'syz.3.4200': attribute type 10 has an invalid length.
[  359.177475][T15948] netlink: 'syz.1.4201': attribute type 21 has an invalid length.
[  359.180907][T15948] IPv6: NLM_F_CREATE should be specified when creating new route
[  359.190882][T15948] IPv6: Can't replace route, no match found
[  359.227963][T15953] netlink: 'syz.1.4204': attribute type 4 has an invalid length.
[  359.230796][T15953] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4204'.
[  359.238924][T15953] batman_adv: batadv0: Interface deactivated: hsr_slave_1
[  359.243576][T15953] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  359.395718][T15962] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4207'.
[  360.047086][T15997] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4224'.
[  360.123988][T16003] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4226'.
[  360.595126][T16026] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4236'.
[  360.599101][T16026] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4236'.
[  361.235071][T16042] syzkaller0: entered promiscuous mode
[  361.237340][T16042] syzkaller0: entered allmulticast mode
[  362.640684][T16069] netlink: 1 bytes leftover after parsing attributes in process `syz.1.4249'.
[  362.745778][T16077] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4255'.
[  362.749259][T16077] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4255'.
[  362.752794][T16077] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4255'.
[  363.408336][T16090] netlink: 'syz.1.4261': attribute type 2 has an invalid length.
[  363.461247][T16092] netlink: 1010 bytes leftover after parsing attributes in process `syz.1.4262'.
[  363.569459][T16096] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4264'.
[  364.322222][T16132] mac80211_hwsim hwsim18 wlan1: entered allmulticast mode
[  366.197858][T16151] lo speed is unknown, defaulting to 1000
[  366.201910][T16151] lo speed is unknown, defaulting to 1000
[  366.218477][T16151] lo speed is unknown, defaulting to 1000
[  366.305288][T16151] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  366.481921][T16151] lo speed is unknown, defaulting to 1000
[  366.500510][T16151] lo speed is unknown, defaulting to 1000
[  366.515621][T16151] lo speed is unknown, defaulting to 1000
[  367.854376][T16193] netlink: 'syz.0.4309': attribute type 30 has an invalid length.
[  368.205404][T16212] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  369.066158][T16242] netlink: 22 bytes leftover after parsing attributes in process `syz.1.4332'.
[  369.708800][T16270] netlink: 'syz.1.4345': attribute type 10 has an invalid length.
[  369.744445][T16270] netlink: 2 bytes leftover after parsing attributes in process `syz.1.4345'.
[  372.334436][T16315] netlink: 71 bytes leftover after parsing attributes in process `syz.1.4365'.
[  372.366114][T16317] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4366'.
[  372.372273][T16317] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4366'.
[  373.126737][T16348] syzkaller0: entered promiscuous mode
[  373.128708][T16348] syzkaller0: entered allmulticast mode
[  374.948389][T16380] netlink: 'syz.0.4389': attribute type 28 has an invalid length.
[  374.951783][T16380] netlink: 'syz.0.4389': attribute type 29 has an invalid length.
[  374.955297][T16380] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4389'.
[  375.696276][T16404] netlink: 'syz.1.4400': attribute type 2 has an invalid length.
[  375.702515][T16404] netlink: 85376 bytes leftover after parsing attributes in process `syz.1.4400'.
[  376.069613][T16415] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4405'.
[  376.236735][T16428] netlink: 'syz.0.4412': attribute type 21 has an invalid length.
[  376.239619][T16428] netlink: 128 bytes leftover after parsing attributes in process `syz.0.4412'.
[  376.242719][T16428] netlink: 'syz.0.4412': attribute type 4 has an invalid length.
[  376.247889][T16428] netlink: 'syz.0.4412': attribute type 3 has an invalid length.
[  376.250484][T16428] netlink: 3 bytes leftover after parsing attributes in process `syz.0.4412'.
[  376.317566][T16432] netlink: 16375 bytes leftover after parsing attributes in process `syz.1.4414'.
[  376.339536][T16436] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4416'.
[  376.575980][T16450] netlink: 14593 bytes leftover after parsing attributes in process `syz.0.4422'.
[  377.011085][T16458] netlink: 'syz.0.4425': attribute type 10 has an invalid length.
[  377.125065][T16460] netlink: 'syz.0.4426': attribute type 13 has an invalid length.
[  377.356452][T16464] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4428'.
[  378.332683][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  378.341318][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  379.537237][T16484] netlink: 9286 bytes leftover after parsing attributes in process `syz.1.4437'.
[  381.139597][T16532] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  381.142935][T16532] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  381.146514][T16532] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  381.149946][T16532] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  381.153669][T16532] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  381.180498][T16530] lo speed is unknown, defaulting to 1000
[  381.186548][T16538] netlink: 124 bytes leftover after parsing attributes in process `syz.1.4460'.
[  381.196866][T16538] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4460'.
[  381.305757][T16530] chnl_net:caif_netlink_parms(): no params data found
[  381.375113][T16530] bridge0: port 1(bridge_slave_0) entered blocking state
[  381.377545][T16530] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.379957][T16530] bridge_slave_0: entered allmulticast mode
[  381.382723][T16530] bridge_slave_0: entered promiscuous mode
[  381.386453][T16530] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.388865][T16530] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.400825][T16530] bridge_slave_1: entered allmulticast mode
[  381.404740][T16530] bridge_slave_1: entered promiscuous mode
[  381.432327][T16530] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  381.438077][T16530] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  381.465245][T16530] team0: Port device team_slave_0 added
[  381.468890][T16530] team0: Port device team_slave_1 added
[  381.482300][T16561] netlink: 104 bytes leftover after parsing attributes in process `syz.1.4468'.
[  381.490195][T16530] batman_adv: batadv0: Adding interface: batadv_slave_0
[  381.492806][T16530] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  381.502430][T16530] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  381.511654][T16530] batman_adv: batadv0: Adding interface: batadv_slave_1
[  381.514277][T16530] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  381.523709][T16530] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  381.559891][T16530] hsr_slave_0: entered promiscuous mode
[  381.562710][T16530] hsr_slave_1: entered promiscuous mode
[  381.636113][T16563] netlink: 1053 bytes leftover after parsing attributes in process `syz.1.4469'.
[  381.686157][T16530] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  381.691085][T16530] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  381.695798][T16530] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  381.700998][T16530] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  381.721969][T16530] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.725066][T16530] bridge0: port 2(bridge_slave_1) entered forwarding state
[  381.728768][T16530] bridge0: port 1(bridge_slave_0) entered blocking state
[  381.731991][T16530] bridge0: port 1(bridge_slave_0) entered forwarding state
[  381.797872][T16530] 8021q: adding VLAN 0 to HW filter on device bond0
[  381.808405][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.812768][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.822237][T16580] netlink: 13 bytes leftover after parsing attributes in process `syz.1.4474'.
[  381.823380][T16530] 8021q: adding VLAN 0 to HW filter on device team0
[  381.836708][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  381.839817][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  381.864887][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.868002][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  381.985210][T16530] 8021q: adding VLAN 0 to HW filter on device batadv0
[  382.122476][T16530] veth0_vlan: entered promiscuous mode
[  382.130446][T16530] veth1_vlan: entered promiscuous mode
[  382.155309][T16530] veth0_macvtap: entered promiscuous mode
[  382.162151][T16530] veth1_macvtap: entered promiscuous mode
[  382.211026][T16530] batman_adv: batadv0: Interface activated: batadv_slave_0
[  382.222585][T16530] batman_adv: batadv0: Interface activated: batadv_slave_1
[  382.238285][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  382.246966][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  382.250899][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  382.276540][ T5877] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  382.329075][T16597] netlink: zone id is out of range
[  382.331483][T16597] netlink: zone id is out of range
[  382.334658][T16597] netlink: zone id is out of range
[  382.336739][T16597] netlink: zone id is out of range
[  382.339221][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  382.342623][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  382.349168][T16597] netlink: zone id is out of range
[  382.351460][T16597] netlink: zone id is out of range
[  382.355168][T16597] netlink: zone id is out of range
[  382.358093][T16597] netlink: zone id is out of range
[  382.360169][T16597] netlink: zone id is out of range
[  382.362011][T16597] netlink: zone id is out of range
[  382.377768][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  382.380409][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  383.186167][T16532] Bluetooth: hci1: command tx timeout
[  384.038317][T16669] netlink: 763 bytes leftover after parsing attributes in process `syz.1.4507'.
[  384.049716][T16669] netlink: 'syz.1.4507': attribute type 10 has an invalid length.
[  384.057687][T16669] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4507'.
[  384.062311][T16669] team0: entered promiscuous mode
[  384.069188][T16669] C: entered promiscuous mode
[  384.079573][T16672] netlink: 'syz.4.4510': attribute type 10 has an invalid length.
[  384.082806][T16669] team_slave_1: entered promiscuous mode
[  384.090734][T16669] dummy0: entered promiscuous mode
[  384.112245][T16669] mac80211_hwsim hwsim18 wlan1: entered promiscuous mode
[  384.119163][T16669] team0: entered allmulticast mode
[  384.122008][T16669] C: entered allmulticast mode
[  384.125211][T16669] team_slave_1: entered allmulticast mode
[  384.128260][T16669] dummy0: entered allmulticast mode
[  384.260822][T16672] geneve0: entered promiscuous mode
[  384.333983][T16672] bond0: (slave geneve0): Enslaving as an active interface with an up link
[  384.630654][T16699] netlink: 40227 bytes leftover after parsing attributes in process `syz.0.4523'.
[  384.720942][T16706] netlink: 'syz.4.4527': attribute type 1 has an invalid length.
[  384.802105][T16714] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4531'.
[  384.830357][T16716] netlink: 'syz.1.4532': attribute type 21 has an invalid length.
[  385.265877][T16532] Bluetooth: hci1: command tx timeout
[  385.622973][T16779] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4563'.
[  385.670309][T16783] netlink: 'syz.4.4565': attribute type 2 has an invalid length.
[  385.675965][T16783] netlink: 'syz.4.4565': attribute type 1 has an invalid length.
[  386.197666][T16782] lo speed is unknown, defaulting to 1000
[  386.284217][T16800] netlink: 'syz.0.4573': attribute type 10 has an invalid length.
[  386.299513][T16800] veth0_vlan: left allmulticast mode
[  386.388798][ T5296] udevd[5296]: worker [16529] terminated by signal 32 (Unknown signal 32)
[  386.398005][ T5296] udevd[5296]: worker [16529] failed while handling '/devices/virtual/block/loop4'
[  386.451583][T16807] netlink: 'syz.4.4575': attribute type 31 has an invalid length.
[  387.945701][T16532] Bluetooth: hci1: command tx timeout
[  389.983685][T16532] Bluetooth: hci1: command tx timeout
[  403.369731][ T5852] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  403.375238][ T5852] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  403.380512][ T5852] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  403.384356][ T5852] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  403.388770][ T5852] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  403.392063][ T5852] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  403.397664][ T5852] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  403.400835][ T5852] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  403.409541][ T5852] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  403.414074][ T5852] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  403.743346][T16856] lo speed is unknown, defaulting to 1000
[  403.810374][T16855] lo speed is unknown, defaulting to 1000
[  403.849707][ T5238] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  403.923337][T16859] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  403.977905][T16859] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  404.053327][ T5238] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  404.133328][ T5238] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  404.519930][T16861] lo speed is unknown, defaulting to 1000
[  404.548358][T16855] chnl_net:caif_netlink_parms(): no params data found
[  405.503370][ T5238] Bluetooth: hci4: command tx timeout
[  405.506000][ T5238] Bluetooth: hci3: command tx timeout
[  406.351923][T16860] Bluetooth: hci5: command tx timeout
[  407.583516][T16860] Bluetooth: hci3: command tx timeout
[  407.585822][T16860] Bluetooth: hci4: command tx timeout
[  408.401551][ T5238] Bluetooth: hci5: command tx timeout
[  409.666037][ T5238] Bluetooth: hci4: command tx timeout
[  409.668329][ T5238] Bluetooth: hci3: command tx timeout
[  410.470851][T16860] Bluetooth: hci5: command tx timeout
[  411.743514][T16860] Bluetooth: hci3: command tx timeout
[  411.747071][ T5238] Bluetooth: hci4: command tx timeout
[  412.548506][T16860] Bluetooth: hci5: command tx timeout
[  439.987431][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  439.989781][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  464.556713][T16532] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  464.564066][T16532] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  464.569027][T16532] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  464.604251][ T5852] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  464.608683][T16532] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  464.612467][ T5852] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  464.617391][ T5852] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  464.620692][ T5852] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  464.624525][ T5852] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  464.629834][T16532] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  464.635219][T16532] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  464.639254][T16532] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  464.644521][T16532] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  464.661191][T16859] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  464.699399][T16883] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  466.863290][T16860] Bluetooth: hci7: command tx timeout
[  466.865974][T16860] Bluetooth: hci8: command tx timeout
[  466.868350][T16860] Bluetooth: hci6: command tx timeout
[  468.943915][T16860] Bluetooth: hci8: command tx timeout
[  468.946181][T16860] Bluetooth: hci7: command tx timeout
[  468.950084][T16884] Bluetooth: hci6: command tx timeout
[  471.027777][T16884] Bluetooth: hci6: command tx timeout
[  471.030139][T16884] Bluetooth: hci7: command tx timeout
[  471.032443][T16884] Bluetooth: hci8: command tx timeout
[  473.133238][T16884] Bluetooth: hci8: command tx timeout
[  473.135518][T16884] Bluetooth: hci7: command tx timeout
[  473.137643][T16884] Bluetooth: hci6: command tx timeout
[  492.063170][    C0] rcu: INFO: rcu_preempt self-detected stall on CPU
[  492.066538][    C0] rcu: 	0-....: (10305 ticks this GP) idle=2bf4/1/0x4000000000000000 softirq=68306/68306 fqs=4263
[  492.073193][    C0] rcu: 	         hardirqs   softirqs   csw/system
[  492.075843][    C0] rcu: 	 number:   761918          0            0
[  492.078480][    C0] rcu: 	cputime:    37591      14858           73   ==> 52460(ms)
[  492.081790][    C0] rcu: 	(t=10501 jiffies g=56645 q=3143 ncpus=2)
[  492.084469][    C0] CPU: 0 UID: 0 PID: 16844 Comm: syz.1.4591 Not tainted syzkaller #0 PREEMPT(full) 
[  492.084480][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  492.084486][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x2f/0x70
[  492.084504][    C0] Code: 8b 04 24 65 48 8b 0c 25 08 40 a0 92 65 8b 15 c8 93 e0 10 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 35 83 b9 3c 16 00 00 00 <74> 2c 8b 91 18 16 00 00 83 fa 02 75 21 48 8b 91 20 16 00 00 48 8b
[  492.084512][    C0] RSP: 0018:ffffc90000006fc8 EFLAGS: 00000246
[  492.084522][    C0] RAX: ffffffff82238fe0 RBX: dffffc0000000000 RCX: ffff888108b00000
[  492.084529][    C0] RDX: 0000000000000100 RSI: 0000000000000004 RDI: ffff88813fef3a10
[  492.084535][    C0] RBP: ffff88801a441d01 R08: ffffffff99b21f8f R09: 1ffffffff33643f1
[  492.084541][    C0] R10: dffffc0000000000 R11: fffffbfff33643f2 R12: 00000000000000a7
[  492.084547][    C0] R13: dffffc0000000000 R14: ffff888136526000 R15: ffff88813fef3a10
[  492.084554][    C0] FS:  00007f9aa3b9b6c0(0000) GS:ffff8880b861c000(0000) knlGS:0000000000000000
[  492.084562][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  492.084568][    C0] CR2: 0000000100000000 CR3: 000000001fbc2000 CR4: 00000000000006f0
[  492.084597][    C0] DR0: 0000000000000000 DR1: 0000200000000300 DR2: 0000000000000000
[  492.084604][    C0] DR3: 0000200000000300 DR6: 00000000ffff0ff0 DR7: 00000000000f0602
[  492.084611][    C0] Call Trace:
[  492.084617][    C0]  <IRQ>
[  492.084620][    C0]  check_canary+0x20/0x980
[  492.084635][    C0]  ? kfence_guarded_free+0x221/0x4c0
[  492.084652][    C0]  kfence_guarded_free+0x25a/0x4c0
[  492.084665][    C0]  ? ieee80211_inform_bss+0xbd9/0x10a0
[  492.084677][    C0]  kfree+0x23e/0x440
[  492.084693][    C0]  ieee80211_inform_bss+0xbd9/0x10a0
[  492.084709][    C0]  ? __pfx_ieee80211_inform_bss+0x10/0x10
[  492.084718][    C0]  ? do_raw_spin_lock+0x121/0x290
[  492.084737][    C0]  ? __pfx_ieee80211_inform_bss+0x10/0x10
[  492.084748][    C0]  cfg80211_inform_single_bss_data+0xd05/0x1ac0
[  492.084767][    C0]  ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[  492.084789][    C0]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  492.084805][    C0]  ? cfg80211_inform_bss_data+0x1e8/0x3b30
[  492.084818][    C0]  cfg80211_inform_bss_data+0x1fb/0x3b30
[  492.084828][    C0]  ? ktime_get+0x3e/0x1f0
[  492.084839][    C0]  ? ktime_get+0x3e/0x1f0
[  492.084853][    C0]  ? ktime_get+0x3e/0x1f0
[  492.084862][    C0]  ? ktime_get+0x3e/0x1f0
[  492.084873][    C0]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  492.084883][    C0]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  492.084896][    C0]  ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[  492.084906][    C0]  ? do_raw_spin_unlock+0x4d/0x240
[  492.084920][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  492.084930][    C0]  ? sched_clock+0x3f/0x60
[  492.084943][    C0]  ? sched_clock_cpu+0x74/0x430
[  492.084954][    C0]  ? lapic_next_event+0x11/0x20
[  492.084964][    C0]  ? clockevents_program_event+0x24d/0x360
[  492.084978][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[  492.084998][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  492.085020][    C0]  ? ieee80211_bss_info_update+0x2dc/0x9e0
[  492.085032][    C0]  cfg80211_inform_bss_frame_data+0x3d7/0x730
[  492.085047][    C0]  ? ieee80211_bss_info_update+0x2dc/0x9e0
[  492.085116][    C0]  ieee80211_bss_info_update+0x746/0x9e0
[  492.085131][    C0]  ? __pfx_ieee80211_bss_info_update+0x10/0x10
[  492.085149][    C0]  ? ieee80211_get_channel_khz+0xd3/0x8a0
[  492.085159][    C0]  ? ieee80211_get_channel_khz+0x15b/0x8a0
[  492.085170][    C0]  ieee80211_scan_rx+0x593/0xa20
[  492.085186][    C0]  ieee80211_rx_list+0x201c/0x2a90
[  492.085198][    C0]  ? hrtimer_interrupt+0x889/0xaa0
[  492.085212][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  492.085224][    C0]  ? __pfx_ieee80211_rx_list+0x10/0x10
[  492.085243][    C0]  ? ieee80211_rx_napi+0xca/0x3d0
[  492.085254][    C0]  ? ieee80211_rx_napi+0xca/0x3d0
[  492.085272][    C0]  ? ieee80211_rx_napi+0xca/0x3d0
[  492.085282][    C0]  ieee80211_rx_napi+0x1a8/0x3d0
[  492.085294][    C0]  ? __pfx_ieee80211_rx_napi+0x10/0x10
[  492.085309][    C0]  ? skb_dequeue+0x10e/0x150
[  492.085322][    C0]  ieee80211_handle_queued_frames+0xe8/0x1f0
[  492.085342][    C0]  tasklet_action_common+0x36c/0x580
[  492.085358][    C0]  ? __pfx_tasklet_action_common+0x10/0x10
[  492.085372][    C0]  ? workqueue_softirq_action+0xd4/0x150
[  492.085385][    C0]  handle_softirqs+0x286/0x870
[  492.085397][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  492.085410][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  492.085422][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  492.085434][    C0]  __irq_exit_rcu+0xca/0x1f0
[  492.085444][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  492.085458][    C0]  irq_exit_rcu+0x9/0x30
[  492.085466][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  492.085479][    C0]  </IRQ>
[  492.085482][    C0]  <TASK>
[  492.085486][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  492.085496][    C0] RIP: 0010:preempt_schedule_irq+0xb0/0x150
[  492.085508][    C0] Code: 24 20 f6 44 24 21 02 74 0c 90 0f 0b 48 f7 03 08 00 00 00 74 64 bf 01 00 00 00 e8 fb 88 15 f6 e8 36 e3 4c f6 fb bf 01 00 00 00 <e8> 5b ab ff ff 48 c7 44 24 40 00 00 00 00 9c 8f 44 24 40 8b 44 24
[  492.085515][    C0] RSP: 0018:ffffc9000296fa20 EFLAGS: 00000282
[  492.085524][    C0] RAX: b8add813fe59d200 RBX: 0000000000000000 RCX: b8add813fe59d200
[  492.085530][    C0] RDX: 0000000000000006 RSI: ffffffff8d9b6ad4 RDI: 0000000000000001
[  492.085536][    C0] RBP: ffffc9000296fad0 R08: ffffffff8fa38137 R09: 1ffffffff1f47026
[  492.085542][    C0] R10: dffffc0000000000 R11: fffffbfff1f47027 R12: 0000000000000000
[  492.085548][    C0] R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff9200052df44
[  492.085566][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  492.085577][    C0]  ? smp_call_function_single+0xa0/0x590
[  492.085592][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  492.085603][    C0]  irqentry_exit+0x6f/0x90
[  492.085613][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  492.085622][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x31/0x70
[  492.085633][    C0] Code: 24 65 48 8b 0c 25 08 40 a0 92 65 8b 15 c8 93 e0 10 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 35 83 b9 3c 16 00 00 00 74 2c <8b> 91 18 16 00 00 83 fa 02 75 21 48 8b 91 20 16 00 00 48 8b 32 48
[  492.085639][    C0] RSP: 0018:ffffc9000296fb98 EFLAGS: 00000246
[  492.085646][    C0] RAX: ffffffff81f01bcb RBX: 0000000000000000 RCX: ffff888108b00000
[  492.085652][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  492.085658][    C0] RBP: ffffc9000296fcf0 R08: ffffffff8fa38137 R09: 1ffffffff1f47026
[  492.085664][    C0] R10: dffffc0000000000 R11: fffffbfff1f47027 R12: 1ffff11021160002
[  492.085670][    C0] R13: ffff888108b00014 R14: ffffc9000296fc20 R15: dffffc0000000000
[  492.085682][    C0]  ? perf_install_in_context+0x6cb/0x8f0
[  492.085698][    C0]  perf_install_in_context+0x6cb/0x8f0
[  492.085715][    C0]  ? __pfx_perf_install_in_context+0x10/0x10
[  492.085724][    C0]  ? find_get_pmu_context+0x7cd/0x890
[  492.085734][    C0]  ? __pfx___perf_install_in_context+0x10/0x10
[  492.085753][    C0]  ? anon_inode_getfile+0x106/0x1a0
[  492.085762][    C0]  ? perf_event__header_size+0x168/0x230
[  492.085776][    C0]  __se_sys_perf_event_open+0x193a/0x1d70
[  492.085795][    C0]  ? __pfx___se_sys_perf_event_open+0x10/0x10
[  492.085804][    C0]  ? lapic_next_event+0x11/0x20
[  492.085829][    C0]  ? do_syscall_64+0xbe/0x3b0
[  492.085840][    C0]  ? __x64_sys_perf_event_open+0x20/0xc0
[  492.085852][    C0]  do_syscall_64+0xfa/0x3b0
[  492.085865][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.085873][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  492.085885][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.085893][    C0] RIP: 0033:0x7f9aa2d8ebe9
[  492.085903][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  492.085910][    C0] RSP: 002b:00007f9aa3b9b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  492.085918][    C0] RAX: ffffffffffffffda RBX: 00007f9aa2fc5fa0 RCX: 00007f9aa2d8ebe9
[  492.085924][    C0] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000000100
[  492.085930][    C0] RBP: 00007f9aa2e11e19 R08: 0000000000000000 R09: 0000000000000000
[  492.085936][    C0] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  492.085942][    C0] R13: 00007f9aa2fc6038 R14: 00007f9aa2fc5fa0 R15: 00007ffe59d722e8
[  492.085958][    C0]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  501.204112][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  501.206864][ T1364] ieee802154 phy1 wpan1: encryption failed: -22

VM DIAGNOSIS:
16:32:41  Registers:
info registers vcpu 0

CPU#0
RAX=1ffffffff33bdc60 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=0000000000000000 RDI=0000000000000020 RBP=ffffffff99dee630 RSP=ffffc90000006290
R8 =ffff888108d30237 R9 =1ffff110211a6046 R10=dffffc0000000000 R11=ffffffff854f07a0
R12=dffffc0000000000 R13=0000000000000000 R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854f0817 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f9aa3b9b6c0 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000100000000 CR3=000000001fbc2000 CR4=000006f0
DR0=0000000000000000 DR1=0000200000000300 DR2=0000000000000000 DR3=0000200000000300 
DR6=00000000ffff0ff0 DR7=00000000000f0602
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 00007f9aa2e12e53
XMM06=0000000000000000 00007f9aa2e12e4d XMM07=0000000000000000 00007f9aa2e12e61
XMM08=0000000000000000 00007f9aa2e12ee7 XMM09=0000000000000000 00007f9aa2e12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff81b44e0b RBX=1ffff11009608341 RCX=ffff88810a633980 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000000 RBP=ffffc900073277e0 RSP=ffffc90007327660
R8 =ffffffff8fa38137 R9 =1ffffffff1f47026 R10=dffffc0000000000 R11=fffffbfff1f47027
R12=ffff88804b041a08 R13=dffffc0000000000 R14=ffff88813663b1c0 R15=0000000000000000
RIP=ffffffff81b44df3 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f5c72691817 CR3=000000000df36000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000001 XMM01=0000000000000000 00007f5c74997d20
XMM02=d003001000000045 0210000200000000 XMM03=0806060168e60008 0002e00300100002
XMM04=0000000000000000 000000000000000e XMM05=0000000000000000 000000000003bf12
XMM06=1b88030408001b80 03028e0800000047 XMM07=1410000600000000 00000000000005f0
XMM08=0000000000000210 a756b5ea00000046 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
