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", 0x1000}], 0x1, &(0x7f0000006700)=[@mark={{0x14, 0x1, 0x24, 0x9}}, @timestamping={{0x14, 0x1, 0x25, 0xffff7fff}}], 0x30}}], 0x8, 0x20008091)

03:15:14 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x22, &(0x7f0000000000)={@random="a151fa5c5c98", @local, @val={@void, {0x8100, 0x5, 0x1, 0x3}}, {@can={0xc, {{0x0, 0x0, 0x0, 0x1}, 0x3, 0x2, 0x0, 0x0, "eec6177fcbe483dd"}}}}, &(0x7f0000000040)={0x0, 0x3, [0x449, 0xc5b, 0x312, 0xb12]})

03:15:14 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
read$FUSE(0xffffffffffffffff, &(0x7f00000002c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2020)
ptrace$cont(0x9, r1, 0x3f, 0x4)
sched_setaffinity(0x0, 0x0, 0x0) (async, rerun: 32)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async, rerun: 32)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) (async)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
fork()
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
r4 = socket$inet6(0xa, 0x1, 0x8010000000000084)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)

03:15:14 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x22, &(0x7f0000000000)={@random="a151fa5c5c98", @local, @val={@void, {0x8100, 0x5, 0x1, 0x3}}, {@can={0xc, {{0x0, 0x0, 0x0, 0x1}, 0x3, 0x2, 0x0, 0x0, "eec6177fcbe483dd"}}}}, &(0x7f0000000040)={0x0, 0x3, [0x449, 0xc5b, 0x312, 0xb12]})
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x22, &(0x7f0000000000)={@random="a151fa5c5c98", @local, @val={@void, {0x8100, 0x5, 0x1, 0x3}}, {@can={0xc, {{0x0, 0x0, 0x0, 0x1}, 0x3, 0x2, 0x0, 0x0, "eec6177fcbe483dd"}}}}, &(0x7f0000000040)={0x0, 0x3, [0x449, 0xc5b, 0x312, 0xb12]}) (async)

03:15:14 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
connect$802154_dgram(r1, &(0x7f0000000080)={0x24, @short={0x2, 0xffff, 0xfffe}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:14 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
bind$802154_dgram(r0, &(0x7f0000000080)={0x24, @short={0x2, 0x3, 0xfffe}}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
bind$802154_dgram(r0, &(0x7f0000000080)={0x24, @short={0x2, 0x3, 0xfffe}}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)

03:15:14 executing program 2:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='f2fs_sync_file_exit\x00', r1}, 0x10)

03:15:14 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x22, &(0x7f0000000000)={@random="a151fa5c5c98", @local, @val={@void, {0x8100, 0x5, 0x1, 0x3}}, {@can={0xc, {{0x0, 0x0, 0x0, 0x1}, 0x3, 0x2, 0x0, 0x0, "eec6177fcbe483dd"}}}}, &(0x7f0000000040)={0x0, 0x3, [0x449, 0xc5b, 0x312, 0xb12]})

03:15:15 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
read$FUSE(0xffffffffffffffff, &(0x7f00000002c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2020)
ptrace$cont(0x9, r1, 0x3f, 0x4)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
fork()
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6(0xa, 0x1, 0x8010000000000084)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)

03:15:15 executing program 1:
r0 = accept4$rose(0xffffffffffffffff, &(0x7f0000000180)=@full={0xb, @remote, @netrom, 0x0, [@null, @netrom, @null, @remote, @default]}, &(0x7f00000001c0)=0x40, 0x0)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000001400)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, <r3=>0x0, <r4=>0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, <r5=>0x0})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f0000000080)={0x40000000})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r2, 0x50009418, &(0x7f0000000400)={{}, r4, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16=r5]}, @devid})
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r6, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_int(r6, 0x0, 0x22, &(0x7f00000000c0)=0x7, 0x4)
setsockopt$inet_group_source_req(r6, 0x0, 0x2e, &(0x7f00000004c0)={0x1, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @dev}}}, 0x108)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r6, 0x84009422, &(0x7f00000018c0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, <r7=>0x0}})
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r')
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ')
sendmsg$NLBL_CIPSOV4_C_REMOVE(r8, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r7, @ANYRES32=r5, @ANYRESOCT, @ANYRES32=r3, @ANYRES32, @ANYRES64, @ANYRESHEX=r1], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000200)={r7, "5d1a1fb523f2556b8d794e164a0a94a9"})
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[], 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000040)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@canfd={0xd, {{0x3}, 0x29, 0x0, 0x0, 0x0, "deb32d3cd61f86d0dbdfedd7eb0d7ad80a7075075dba3a9a4b39ef68019b5d2211ecb09d0fca05c1b52dc526fa48ce5a5f52d41c92723eff74a88728edd823f6"}}}}, &(0x7f00000000c0)={0x0, 0x1, [0xb3d, 0x897, 0xcd3, 0x641]})

03:15:15 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
connect$802154_dgram(r1, &(0x7f0000000080)={0x24, @short={0x2, 0xffff, 0xfffe}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:15 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x5a, &(0x7f0000000000)={@empty, @empty, @val={@void, {0x8100, 0x5, 0x1, 0x1}}, {@canfd={0xd, {{0x3, 0x0, 0x1}, 0x32, 0x1, 0x0, 0x0, "76c5a437dd3e30ca90ba29dac0763cb65d9cd7f7c50d0f578649a4be5a2e5060a7389ccc06317f0326a0ff013091396db38da3977750c3777f536ca7c0d070c5"}}}}, &(0x7f0000000080)={0x0, 0x4, [0x3e7, 0xff6, 0x8b1, 0xc4d]})

03:15:15 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
bind$802154_dgram(r0, &(0x7f0000000080)={0x24, @short={0x2, 0x3, 0xfffe}}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:15 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x5a, &(0x7f0000000000)={@empty, @empty, @val={@void, {0x8100, 0x5, 0x1, 0x1}}, {@canfd={0xd, {{0x3, 0x0, 0x1}, 0x32, 0x1, 0x0, 0x0, "76c5a437dd3e30ca90ba29dac0763cb65d9cd7f7c50d0f578649a4be5a2e5060a7389ccc06317f0326a0ff013091396db38da3977750c3777f536ca7c0d070c5"}}}}, &(0x7f0000000080)={0x0, 0x4, [0x3e7, 0xff6, 0x8b1, 0xc4d]})
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x5a, &(0x7f0000000000)={@empty, @empty, @val={@void, {0x8100, 0x5, 0x1, 0x1}}, {@canfd={0xd, {{0x3, 0x0, 0x1}, 0x32, 0x1, 0x0, 0x0, "76c5a437dd3e30ca90ba29dac0763cb65d9cd7f7c50d0f578649a4be5a2e5060a7389ccc06317f0326a0ff013091396db38da3977750c3777f536ca7c0d070c5"}}}}, &(0x7f0000000080)={0x0, 0x4, [0x3e7, 0xff6, 0x8b1, 0xc4d]}) (async)

[ 1212.241721][ T4992] device lo entered promiscuous mode
[ 1212.366340][ T4998] Y­4��`Ò˜: renamed from lo
03:15:15 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x5a, &(0x7f0000000000)={@empty, @empty, @val={@void, {0x8100, 0x5, 0x1, 0x1}}, {@canfd={0xd, {{0x3, 0x0, 0x1}, 0x32, 0x1, 0x0, 0x0, "76c5a437dd3e30ca90ba29dac0763cb65d9cd7f7c50d0f578649a4be5a2e5060a7389ccc06317f0326a0ff013091396db38da3977750c3777f536ca7c0d070c5"}}}}, &(0x7f0000000080)={0x0, 0x4, [0x3e7, 0xff6, 0x8b1, 0xc4d]})

03:15:15 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async)
r0 = getpid() (async)
read$FUSE(0xffffffffffffffff, &(0x7f00000002c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2020)
ptrace$cont(0x9, r1, 0x3f, 0x4)
sched_setaffinity(0x0, 0x0, 0x0) (async)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) (async)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) (async)
fork()
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
r4 = socket$inet6(0xa, 0x1, 0x8010000000000084) (async)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)

03:15:15 executing program 1:
r0 = accept4$rose(0xffffffffffffffff, &(0x7f0000000180)=@full={0xb, @remote, @netrom, 0x0, [@null, @netrom, @null, @remote, @default]}, &(0x7f00000001c0)=0x40, 0x0)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000001400)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, <r3=>0x0, <r4=>0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, <r5=>0x0})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f0000000080)={0x40000000})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r2, 0x50009418, &(0x7f0000000400)={{}, r4, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16=r5]}, @devid})
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r6, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_int(r6, 0x0, 0x22, &(0x7f00000000c0)=0x7, 0x4)
setsockopt$inet_group_source_req(r6, 0x0, 0x2e, &(0x7f00000004c0)={0x1, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @dev}}}, 0x108)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r6, 0x84009422, &(0x7f00000018c0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, <r7=>0x0}})
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r')
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ')
sendmsg$NLBL_CIPSOV4_C_REMOVE(r8, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r7, @ANYRES32=r5, @ANYRESOCT, @ANYRES32=r3, @ANYRES32, @ANYRES64, @ANYRESHEX=r1], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000200)={r7, "5d1a1fb523f2556b8d794e164a0a94a9"})
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[], 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000040)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@canfd={0xd, {{0x3}, 0x29, 0x0, 0x0, 0x0, "deb32d3cd61f86d0dbdfedd7eb0d7ad80a7075075dba3a9a4b39ef68019b5d2211ecb09d0fca05c1b52dc526fa48ce5a5f52d41c92723eff74a88728edd823f6"}}}}, &(0x7f00000000c0)={0x0, 0x1, [0xb3d, 0x897, 0xcd3, 0x641]})

03:15:15 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
connect$802154_dgram(r1, &(0x7f0000000080)={0x24, @short={0x2, 0xffff, 0xfffe}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10) (async)
connect$802154_dgram(r1, &(0x7f0000000080)={0x24, @short={0x2, 0xffff, 0xfffe}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)

03:15:15 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff)
setsockopt$WPAN_SECURITY(r1, 0x0, 0x1, &(0x7f0000000080)=0x1, 0x4)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r2}, 0x10)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @none={0x0, 0xfffd}}, 0x14)
sendmmsg$sock(r2, &(0x7f0000000080), 0x0, 0x0)

03:15:16 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000000)={{{@in6=@initdev, @in=@loopback}}, {{@in6=@dev}, 0x0, @in=@remote}}, &(0x7f0000000100)=0xe8)
fspick(r0, &(0x7f0000000140)='./file0\x00', 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa080045000024e18e62a9da90d5c6ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0)

03:15:16 executing program 2:
prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f00000001c0))
prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000200))
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
r1 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x101}, 0x509, 0x0, 0x0, 0x2, 0x0, 0x0, 0x9a, 0x0, 0x0, 0x0, 0x40000000000000}, 0x0, 0xffffffffffffffff, r0, 0x0)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
perf_event_open$cgroup(&(0x7f0000000140)={0x3, 0x80, 0x9, 0x6, 0x4, 0x48, 0x0, 0x200, 0x2800, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x10001, 0x2, @perf_bp={&(0x7f0000000100), 0x6}, 0x0, 0x3, 0x2, 0x8, 0x70b, 0x1, 0x401, 0x0, 0x31, 0x0, 0x6}, 0xffffffffffffffff, 0xd, r1, 0x4)
getsockopt$SO_TIMESTAMP(r2, 0x1, 0x0, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r2, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:16 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
r1 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff)
setsockopt$WPAN_SECURITY(r1, 0x0, 0x1, &(0x7f0000000080)=0x1, 0x4) (async)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r2}, 0x10) (async)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @none={0x0, 0xfffd}}, 0x14) (async)
sendmmsg$sock(r2, &(0x7f0000000080), 0x0, 0x0)

03:15:16 executing program 1:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000140))
perf_event_open(&(0x7f0000000600)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xdb45}}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x3}, 0x6)
write(r0, &(0x7f0000000000)="07000300010000", 0x7)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r0, 0x3f)
ioctl$BTRFS_IOC_QGROUP_LIMIT(0xffffffffffffffff, 0x8030942b, &(0x7f0000000040)={0x8, {0x1, 0x81, 0x0, 0x0, 0x5}})
perf_event_open(&(0x7f00000003c0)={0x3, 0x80, 0x6e, 0x7f, 0x50, 0x1, 0x0, 0xffffffffffffffe0, 0x1008, 0x4, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1d93, 0x0, @perf_bp={&(0x7f0000000380)}, 0x40500, 0x81, 0xda, 0x1, 0x2, 0x1, 0xad9, 0x0, 0x7ff, 0x0, 0x6}, 0x0, 0xa, 0xffffffffffffffff, 0x8)
sendfile(0xffffffffffffffff, r0, 0x0, 0x9)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f0000000100)={'icmp6\x00'}, &(0x7f0000000140)=0x1e)
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
sendmmsg(r2, &(0x7f0000006140)=[{{&(0x7f0000000080)=@alg={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-serpent-avx\x00'}, 0x80, &(0x7f0000000180), 0x0, &(0x7f00000001c0)=[{0x30, 0x111, 0x5, "89d36117f7448a5e446f4ddb90e3314247231a481232963c52030c92"}, {0x78, 0x10a, 0x6c, "f8774f638f01e3a7b7dc5ea9e6504f596ca7b398601de60e4d10552763f13da6632ea03b53dd80d35b2e863fb35513b3bf78a16117c94f84a50d4673ec0f8768ede734a93993fa70fa6a37eb10c3060112324d996587d8bf917d5c3af72d21e2f501"}], 0xa8}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000280)="dba3a826b3d7c830b6b9316b6e135e03e59315efd793a45b8d8e2a3495d41ed14e48d2d03ee3a06b0797f6b1c143bd6076fac4ba29dcd65b0ff7fd6102342d8be89f32de0bdf7ab5b26178b62a5c2878f297fbf1ffe969fdaa137b0fa0ad151a5e08150ca49f4dcc61d8dbcc3b29ddbf1c0f02d2db1c37171663c85e22770e70f10bc31d45b2091c36106d5c98a6b6ecddb4dcbf36492d9cad3be2959bd96749527ff0c6d9223225dd02510366b86cc92d82a9e3e038a0882177c69b239dc33ee9", 0xc1}, {&(0x7f00000063c0)="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", 0x12f}, {&(0x7f0000006300)="cc01b5e3c160a23f9c8dc50841ebed57d6df873345a33836bd90017ade26a0dd926960438bd0150eebae4f8f22bed6261e62c39175ea2aecb4349666926a9bac674f85fbd18a602c1b4123d7eb38e6340ab3cfa646fd98f2e9f393ffffffffa8e94fde81150d5889e1b114fa11727b670df60c3be2fe67b7e4fda3aa999291fbd7b02b81ad6a907560e4f8d0343351627bc48937a3754703172adc916769c0f14953bddf9fe964", 0xa7}], 0x3, &(0x7f00000004c0)=[{0x20, 0x6, 0x5, "358de7098f22097955eeaf0c"}], 0x20}}, {{0x0, 0x0, &(0x7f0000001a40)=[{&(0x7f0000000500)="6a1d7ec63e6928aa5ec9b4a0a2e7ee73673a620fa97c5684c0175ef37280485ef92c", 0x22}, {0x0}, {&(0x7f00000005c0)="3f208a4292fbfdbbf4a64d19085aa2b82ba88081a760a507f8e304a455a477f842235a02c791fffd935efb7559f26829ff14c6670c33f28241f3e8e65da4392044b376b99e", 0x45}, {&(0x7f0000000640)="150abfceca286c9bec3072950c605624c4893daa95f2cff979b197bdc6c16d29a257e3c2e7ef5fc0b97e32f14786aafe1fb76dedf435e52d1e73538387b373d5593fefb4504b43079e38863c7294c2ea3910aa985fc2c28b6021793bab58d568c99cc9a265c0bee4cd8ff431ccfc9da4f169027c040fa1d9e9352474dca5e98b43d1a75e09ee7b7d95a62779092f", 0x8e}, {&(0x7f0000000700)="ad078503344691fb8ad0a7d83106020fdbf7ce284c3fbe7130a94e8c47b5b1f7b8f154b7174736d8a3dfaee02131865337243ba969bf951173156806b38a13687df6255c48e6933a0b1f85b393073fb53f72bd6778d54328319cd58c357c1a835ffbed9bd4be5612bb94badd33b5138456a3618ff9aac5b0164b077f6ebbd7d52dffe723e9ee8d43ae4655ded9610c0786eae0ea31809402ba9c84149ca0f45de7fa1cf9a58060281da5d2", 0xab}, {&(0x7f00000007c0)="0a42ab8783fcdfe3c58505c3e2a5458a9af4bb0381293a7630bcd2cfeccedd2f6f518896a569f7393ff492ff9b76f6ef4dd1d6d156896f50e1ee47e4e2e0d81c6ba8e2b224e6218d6717525dcfd3a65a892d2ac01ac644508a2712fdac39208d57772cf6667f2f72effdc6441db923b6f0c1950aa81fb08128fcb61ef10e7103d586d80fc512fb65a4f3032c05a7a58ae1fb8c6210642397ad50c14fc221277fff7a655fb3a45220d3a0a3fbe49a3ba711cba22d65a4cbd65aecd9f4707d9be31c8b1ddf585763b0a20f4afbb9bc99cd23450dd440c26b3eeae53a59dd027c29b07e23460741c5a11935c32fedb583e0", 0xf0}, {&(0x7f00000008c0)="2b4084622ac2b85dbd631514993353585d530e61ce8075ee85b206c15c31fd2a92e52735ff2879fcbe62ba9ad4a0a4b38acda996d662602e68dc4d2502f4f88f322b9839f1b2f18c50c55ce32091a4b599b846e830095f20382c698ad63c2215d0a65acc4eabdb6bd6e582467cb4c91dde1166094befc3ae4e7040fb0ac66722c5552941bad3117601f0768e8b7f8c8b387068de944fb8f0e7eaedac15f53e885413d4b3d54eda177809ab9031cdb3a2eb6cffe0a12d54783a59f2852d2aad82ea62e7eae31c5d714ad316a13eb6ecc37156b1e48a488a952780b8334ddbd47c7196709f998946eef8dcdaed1f205a69497da982014f5dfba35f908c90912d7548a24f2858dc255548e381bcc3959961c992b859a553f454324a99922e1c934f46f927cdb8e03b09a862e5bcd4e187a18b21ded2fbb03ec4033dd07671aacda49badb798241910a78447b5af31097be36f1c5d18cef36d8d116462fdd87d799ed1925ec749582705f30706599518e8a999cc863e91d4b19f4e7b2b0de17070cc9e084bdd3908c2929a1d4d706a5c4efec72f4d6281af66101177e665dc5d565ee2c2e0b9bf83969cd3c8c20a17bdd8f0ad3b35621beca138e64baf061a5ef874bdb1b0506ac940522473797fdca557a3e96a925adae0e2a28f04f6cc91004cf76b9006320d86ffa88736f2bc08d4b3e4418492d5438d8c72f4a08165cf1aadbd7aaea141305210adbec4870f8c0bf78c28edf570fcf9802039e31f28ce8e38c7c66e5e8fb3922de8c5afe57caeb93a73a79d5dd870c82b36c265fbb2df19ef5ce24e8d1cbce0eb97a106bafa26f0ce14abdd7259b15adc409539ca95092116a623f37e87db86502bf12678fb302cd6d7f1e0f42c47be47acb7fac8638b93437a8fc10186660bd06f01091600ad8524fa9a489e22409a362a6ee8434f6563eb812960683e14723bb6d56e5b07f78012ef1728ab10c21fa4cec93c52994739d3a8970707840ef758771d69912cbae47bd68523bbfc3f2e778fc2656f844644c71cf912ac4d2eeb57e3920593824c1e8b8568d46f9b82c576e69274e208b2465c07f7163767241da4057c9f31b33382bd982a7a8e436f85ca4b06b049b43a3a8de2ef10d7d98c5a6bcbf44f845ddfba52aa1e7852e8d73d2754697ee233578336ab0a183df761b6b624129d531ad33a8338da8bd18e6c1adc8ef632934b8c536516b7fb05cb36d7af252416f68d2ba383e039dc4d24dbd0db82758bb9a618c47b1cd019adad0d82c7f00e9db69d441334cf9c6d93fd36a4cfd4add27f88aa7a29bfa752e0c33b5041ba7124987459e0475b9e8778363181004c1a376b3384711ee48175eff469e92497d5cf96e7b22fe36d741e459958bf96a6f34877729c2ab11aded101f40401c011ad0fd5dae195428f4b46742dfc94fc695b796b6fdfa27c6d47488d2e1f186249ae557ffac68a3709422c785354c6558b502ca54b112bf67a4adacaf90cb0d7efbf8030255a92dd764c816bb2b96efcfbcfea1b165e2bb2bd3b24ab5f6ed6e6af8b5b3beb070a67782f9ced8084ee29aac49402223580f8fee77ccd01e17dc89a527e421f5683e08d03ac6c01c5b6f8e909443fc41c636b494e986b01b608b8a1325b076860523823ba2df21d7538b98a550a4f96b73370161d298a50de213c71db68cca578798fd59d1aab921d1791d6f43cb9a1966f876a4f1d0e54bd82acf27392339c605a4810c475a136b2b096dc919e33227af5aa732e76a4aba4282e98b0094824f8c1244b627df3418f3b2c2ffaf05e3a3dcd166cefb484889f384bd2d7b78062eff2919396f259504ec3e72b8601efc6349933ce114ab0864aac3d73f5e25860308d017b9e05d70a27833f99542e05766a22afd788f8ce999d11528f00636d6734e9b11a92aac02d25e5bd79236e64ee3164125f8e6703129e28f3a54af54735a4f319227875c03c86abc8ce4b9c337d59e466cf9edb85f85b3181ec388da11e7f6f0e89c2a080433fde5c221f158e5fec97fe423bf72453d42b5dcc27a92422d13a6c4aa2eeb8f66bbab033a46eb358f9dd8f46d0a3e6e169cd3db6edebcae445194fc1479d42e9249804217d2d394c61db76182a7223afb97aa1a479473b7735afc446e1c273db5074fddc6b2f91f39f2280cb9d42402e92d0f69e539265b81b8529b5f368eab60aa085660943eb04d30ed6120985e6c239735abdfb1ce9a1f61807a7ed56e30846e05331bb6c55f58ae1a7e04c9ffadb0be895eda92a08e60bacb1fa1efd26cb2e9a7aae086cd24c0ab157f8621fd9df45872e6ccea3682a79686e558b07ba58d8f4b443d2ef4159609b6e63fd436fcced5e9b884f7bc28d0f375bb251098d3f67582c51d754a4004a312c49ae6d00ef1a258de87e5b00966a530f2dde2978a942fdd6226129cb5aa3c93953c76ff09974335503b1e68e0adcd96b93f23ca5ab9861b646fa2cb0e748b1639e59b39ef8f2dd3a377c84969a9e99ff31461c9098e87304f7aec9ddf2aba5c5e2706b1351fd8ce5d84437d50a6c2ff71ee649d45e4623a7eada0c34fb27a3ef78d202bda838b692f9f93ddf4b5f1c1e9b88abbc9873d04feb5b2e3e6396a08b361e910287317579033a03914db6af2d0a5e40e08a1638178fdd086546b42218a1afa385c604796c526689cfc23f9b45edeabb6f27a22db2b56ebe699dc4ac377f9f3c8e04041667a9252a5071e762160c69d44d96502cf7f0b654f22cafbe0fe4ab1fa22b50bae72db444bcd9e9fb4cbef36e9a25d4d89eb156e24931fb7cb39e94e23c17d235a32017a95e704ebcecb1c987ac77453d01a09fe464e8ee42a9096f783501dc194eefd49c4b2f56563a253fdaf6ded74eff594c0be482319ddb3b286b6f64c4453f2ba0d3ecae2d17f067d128627e0cadbf8a46f790cfe7fc75c8c1cc2b3e2b83d994d6a4f179147765371614ebe1413dd80f2733894027d534480eac5a76131474c83396a574125be66cf8926d52fb2f51e433ccf6316f377bcb4c9e6e725b0cd66b2242c080cbddd70b0999598f668ae07695518ea3d015ae4e73d17ea99afceaaed2575f5fb5cb5424d68245d4e5584723167b1fda528e4363ab64af587ee519a11abf3bfed961b92de1d1ebd1c5cb69f0998691c78a41f4aedecd4ee0ad03456d54be0cc29a6ad23ea54e3a150c867975105902bf0bbc20e9f5385399d5e0c5511c627273204af5fa13fdb79c59086b2544789c9561839fe8923fca110365367db54da24ed640cab965a114b1629b67a1556c2e8f78666ab7d7c1c1d7b161b07071d5016da8539068056677c3a0e2cad4c1868b392b7815bfeab40ddebf7b755594bdcd28d927067b649e4442e9170c23921189501ad83d57d80be46adee107951c08d763606755611421fdb49602f7b078563ee824bb56aa0ec6429246f884d9b3749cedbfeeb137f92f6af279eae846dc11bbf6ff400172b6d80a77495e5c8227a8c8d5898099a1a38ceec6919675f7a97f06f021f20268d06698f04a311ecf796848d062cf2edf6a4df5f00d60b9b32bbe5bd06ed2ea727b34533f2b74309f9f60cae92222c88abe42cfa4c6cdd17ba60f8f22322f2ea11ab628085740351f6a01528691ad4293572d659feaa2168d60fe7f9ecb89df5f9ca1b8e6e705bb7f4ab4dc7c4c6418333e83380614b3025055d5bdf0af525dffe03a6754ddeed29e700cb6e290659d5499e193e42cbed4c161783fffc5b5622fe7d40309882943acf77ec0b7680a400e7f3b89f0189e6b4e8dacd7bf5fd62f162d3f5f28387097cd5569d0535f89f26cbef9a883d01f08ab0c3db5c4c3f437c0e353a67d07eeb31cdc8285cd52e6adfa04242b06a69a428f4f1dd9380c054be63f12ff49d26702973a6900d1cdf8fe0c022af6fe7a2aa7b320070b18e6101ea1b0e9f790edf80e8b0a8b1d119cc2f7c0f5c00838977397461abf3b1d78658674ee6d9b4e89e06eec3be10d6883eb5d0f720687eed4c031cfa6fbc8ddc7855c2060a60e12a32f106b4b6cc119089dc884aed6b6c46d607accd84d74e8386c4e0e6c921d0ee7d9041eb2c848dd3aa44d70fc97d7c15d481416170ca218652f4e309464f2974a633c8a0e04c71540906ec8d0fb8666a4efca9918250e381ed2c117d041123b51c90fdd238f198012ef3e357da402000b02445954e1a3fbcb7548dc21ccd767fe45759d68da668febca6f9b5e289690951312452d66d39fa68f3e8605e88e0ae7ae305e9726803aa062665f073cc7954cca177bee7851258d23a20cd244bc3df7fe045b28bdf4ca07974817d11adb707ad63eea9cc5821d529d35ae99ff375296f3f6beeee395c59e11062900dd342ce5ffd7176b41d12e5a86542d760af6d220f28faa37efcb2aadf564c76e55971b725ce23c29a73d30ecf20f43b80115e2389dff1a2da337960a01f70c503b36e3dbb955aa2d41ea7b0d6946672725a02e0293687f17699234c6a7c3a65df904dc3a60f09c898da2929f1fef0b6989e26d6b5f6f154df5a25a9d3706009b094826ee541965b2e07fc9d26fee1e70e5f9e0efdda1b4650ac3336168cae2bdb4b00426d307d616a8d92c444ef9567062311eb9d8bf09c4ee1d3ba9e69ebdc18fd9a7a853fcbd0b6fe5e010cf79939f67650006e4976de5bfccb1ae7f8f61067bc78c5c00aa1099de82b8bf3e572b6a7798e25f2df21b6d2193d40400973ad2c505deecd88245dcc81ba2cae9f8453c00260693e79712806c139f27589256576c0970fcc7a6afb24308b13bcb9715b065e5851480e7edc847b9d9f3e4b30403c139ac55d0e41ad968c1affb9075e57aeb8ac0c449a5908c3baa6d676a78b96dae1474ee33620e7ae0465ab923c8244c6b0ca70c4acc3c094aa7aa2f67a39ee1204e50cee52c4862c1dddbc7ec457293b8173000f372cc2dfbbeba6e1fe0ebb647a6562803f3b8c108232963b0995e47b04bfb68625d16daddbe19bdb316ca52f6c8d50d8471d82fd2273c0d6bfe6ffed4cb2b70b830204c24f0f8cf4e05f638a16771024a3deb4e88bb9727f75cb02ddee2c5d2d19d13ebff6d6d822edab65300082df67173208140c13a6342869d2361cfed8c1d371a6c5d02bb043048ff82049573d1ab62858bd291a0c3ca65659b14a9006f0123ce6da70e0f4984e268308cd6605b526b83b34a640b7728924d043b13cfa04c8ed2fd6f2e5fc101ba76c2ae186fbf9c6010d15e6905f4bb97eec4638034667edd99fd450bf44f1eea367ae3877e03ef87f5e4467a949d3faa5c9ff60286edce0059ec9957e7dcbef895aeca9cf3e9559da00e1776cb23b48707115676a8e990830b22543ce9d12756f6584b8d855b59ffe6a47d6f5d38adbe8053356434357d9abfcdd22cc473146c997947fbb97f8a1de300cceec367be6d75db3181574ea3ffa2f612bc1c00f1da1a65dee20998d9a8b3bbc42cb1bc7b854a19841fc205b57b370e9f7b6b200200482dfc08784188da428a523d138b7dc4e767e8049b576819474457844020522b6be062a006001a11bcadef5fcd4ea1b04de0c86f358e4e6dd8a5461e690b0f6364120a1900a822916b9b1911f849b947f776e9b5ab5656aee17de5fd905e8612ef5bcdd47dfc0c2e8fdd06f746bfe7349b9c60689bffebdc503c9d1f6e785044ae1ed8a35857d1e8dac2ae49537852a47281388a603c8ee52adcb885dd359c6df5b625ca65db4b9ffdeb68aef60c994ba3", 0xfe0}, {&(0x7f00000018c0)="fbacf2574adebf875ce348aa23bc8188aa5a425cc0ab193c1fcc995021cab0d94b6cf6ef82917adde965d246d741e25a2d46778daa0935dc89d61e72ff1cf828793072a927677a4a0c629174fc89cf5907e6945467d000eeab387c035949c32873d89e2dfdbc1a5de1fb2958034ee8f665a7016fef1966", 0x77}, {&(0x7f0000001940)="92ac86c5e1f8a61de03dfec89dd5152991b9cafb0c5c8657b9dc39b40f85c05ac3ebad0305ce447e1fdb9b36eb1541cba24f642772c0c4ee6a6f8f9aa1a997960b9d48e931a843a4e6a4e649f00e0a5432c8662199a74afc9d9fb78845be7999cd8b3158365a31e3b8e59d43f75dfd14f7d0c587eae3f689571d7b4eabe0c5de6f39ea96a22872001abbb195d89289b3a94e35caed8460504a936562558aab106a50bb79332a713bdd4d7e14", 0xac}, {&(0x7f0000001a00)="462390a96d573535a56bdc93ff", 0xd}], 0xa, &(0x7f0000001b00)=[{0x48, 0x11, 0x8e39, "fa4f9d43b8eb4617b2a7044d55a9f4553db2cbcf06502e0b26a7abe5374a7a8c1cef9d139668372cccc14c8051e8c1e8cc195c817471"}, {0xa8, 0x117, 0x7, "d1a185acdada83ce59392ff822c75005b16193ed7921b2ffa8b3ef700121903950a613862ecb0fa40bce5e90db888b95b864e27bef302d96a84e135c4314d6b90bb5a6f96fb0530332516636513fff5ae957c49b293f50d745fea1ab7f1c9d85d61cffabbce6fe2db4563d1148c3a33b3d1ce449926d25f086e2e165a75a196e1a5916221e57c33afb7f44e9f47d60de2b0adb57"}, {0xf0, 0x6, 0x101, "32c0487d5f06e1439805bddbdb39e7c2dd0fa792c6f30e5ff1055d3b740ddf279f9df2e1c3f23b91d730f070ddb7052a2bab082444097cbe135f995b9834697cb120fb75f2c3d1b6b681e907a6e264b6ace988ee356118117738b73b03e2629fd131eca358b554e29af173a8cc43b36b1ea8c0f7abf7d2ab478aacd8208a419b1213f207ea03f10c078e4843d8d1217fe5882317df778e3817e36c8b8d97a3e876b48d3a7f3e1923fb4f50834b5c7b573cb747528034914ba94f31a43519ddd57012e97e66254cad5d9db77de4342c224631dfeb58c0ebcc72"}, {0x78, 0x117, 0x0, "b46b08896b7ea066e8cf3d6e6ee9803da4be3d69159f4a5e8eeefdb4dc60cb8dd3afb83c3b757cbda3781e3044c0f20677584dddf1567a5d7bb6c3b9c0ed7e0c2ccb59956404d84bac22738f97b3de5456590ef7001e63a92dc0fa89f328c28b4b316bf6"}, {0xd8, 0xff, 0x4, "f30c1997a2b94e461da494cf02e33ab567543e3d655b6a7245d2aa03497aaebbbbec78e2f20e85524bd8028114df7f4edde2f857190e17b3b2747f8e535e3e6e829cb98017a35bfa6463be744f806f02d33502ac08acc41f16718901dbf14df8c164222c0303eb85d848546b861f8e36030062a01825f4614c0db99f756d7cc95ab80db66864f79bd0c351a23814671e5e84ae65da518835c8d19065ccfc0778abaad464be0bbbbde5d6b727cf9857c5ae1c67e30e14ae1441f5ddab8b838bf960774a"}, {0xe8, 0x36, 0x2, "d032d31903a12a848f9491e448c13f2a8252bba28f357026c76445c10d9a1e9cdfe1bcb47040ea5113af8f01e6cc3a716c7ea7756b86d30ca602aa53a45819a2ae2a83d7a849173179f7329b62b5b0610873a559c3df30825eb022e4eca67036eb91919f4953d4bc29d0c4999db91b62f2090b27f771d11b99281b94b1a066a1d7ee51a0ee768eb700ea46b593bf3ecdb5470ff6b8b90f19ffaf4a7631b068dead2132a1290beb6591242c83a990e68ac0f55205ec71978545a07cda085c51e945218b1cab9903ec7efe4dd7864b1dede02338bebf"}, {0x20, 0x1, 0x7, "d105a4086aae2d828c2fbb72"}, {0xff0, 0x0, 0x4, "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"}], 0x1428}}, {{&(0x7f0000002f80)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e24, 0x1f, @ipv4={'\x00', '\xff\xff', @empty}, 0x2}}, 0x80, &(0x7f0000004400)=[{&(0x7f0000003000)="d3162a8a7ada4fb598d946779457bf9d9234ce284e59c2264258f2a2746c52b096468782b91d1f1abfd2310a7427845e67474caf151865109dd1029a1fa00af1e9ac50281f2a5a3e53b692ec0915f68e445525d905dcb5d5", 0x58}, {&(0x7f0000003140)="00182ab9184e8b5cfd84267aa4f669ab7a63a5439548be38454b820a19d2fcdd21d08f027cf00e99f06ba5351c190f88c728c5cda3ce41e20abefd0ceb7791d63fd579d1dc7399e0804c6aa82b46dc84f5fe482ad78d205a21797fd2e811c3f15206f3259c224268826ee8695c0bdb30003d0aa5880429b3eb964dd0c6aa23f24683635b65b325fc9e172fc443e7c1204a0eea998c20638db06782059eed1ae6395c655a56c7425a9da05cc0abc07ff6007767eba03c490d795e2a867d0ca0824baf8f3099cfa473240d7237bd8972704469a33852b95b03d2f9535b045760d92823f01a294f7db17e", 0xe9}, {&(0x7f0000003240)}, {&(0x7f0000003300)="271b56f966082f9621471508c750a904229ace6227a7d573ef8159433c7eb2140a296a6cdcbdc709eb28bca1aafff320f2406135b89b78ca0a71248bc46e17443ab29e89583b48f0153bbe6a46e3193cb27c0790778c5b740dc416c8ae070a0ab11be779b98c5a728b78a4cd9d72f88f610ecc04549f7b4db6c3c11489e58bfa716ba362d1", 0x85}, {&(0x7f00000033c0)="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", 0x680}, {&(0x7f00000043c0)="52db7f314eabb72f074479a8ed", 0xd}], 0x6, &(0x7f0000004480)=[{0x88, 0x10f, 0x7, "b99b290945ffe1772d4f7c8ac538c7c5feac012c97f9a2f3baba822bc659044bc648e12aae190cc7fb1b89b9be05cfca1389399d8a9befab8b499bb2e25c4d9fb4c55b61dc3726c4319554586e647558b33059930bdf508cab8ee085a3dc836ea4015f413b56f940e807d2e9adacc20bca96f25ffc77"}, {0xb8, 0x3a, 0x3, "669bdf0e5933753b5f629307cbc2fc0b85a4e68debefa5e7a073b4a58093cd5bd77f85ba8cb6f4626702d99654690f661c29e729662359b77cd1514075c49c2f9f68586d9e4ccdb196b70e93734efd0ad5d134880840d763a17db458e2d41011ebef6107069424662db66f0a0511ec575b2a7169057c62e3bebc812ab78d8949e2514a12ff14f49a09979a490778ec8c4b4d0e81d7b23d5f45548d6e313487c0ba72"}], 0x140}}, {{0x0, 0x0, &(0x7f0000005a80)=[{&(0x7f0000004880)="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", 0xe00}, {&(0x7f0000005880)="5f7b923f8c623272781c3ad39b08dd72812706860c651982920308470aaccfb00f10f6c6dd9b46fd129af86868b182ccc5d41f27f8a0cde6c8641af459f5612929bde08313a94d", 0x47}, {&(0x7f0000005900)}, {&(0x7f00000059c0)="660763d2c7c7e021738c8df3b649e11da599c16cfaaf6e89dcec5f634ffc8008c6da58330caf77caf2c83dd464f5440bf8bc421fed61d637503f9dfb27ee6ce38adb35a34813d7ad3c41972358364a9a9afa53a157f284df56f1dd9e982279ab4f94aab0367d69d08a2866d03d6f6c8f26f40394786d62a0ac3f4d5701247cf8c0b3", 0x82}], 0x4}}, {{0x0, 0x0, &(0x7f0000005e40)=[{&(0x7f0000005b40)="74ee0828cf90e527a8f9f0545bd80ccbfa3c3d57df6507a03596", 0x1a}, {&(0x7f0000005b80)="72a0bc6dfb528e7224f76f75c14e1f4eaeffdd681db809260f9c91d5fd8ab2efe58ba19f05e881560bdc0793020fcdbc9949e73288bd2ebe4549ca6d45d8d8530060025e6e09956adb2997700982cf788d8947a1aa6e565c24383d192a62060d810622cc705004d8679be7f843f678f54077959880b56d4c7cf05c68f8eb599307b0d5cb053d21b6b43d2b14013238ba37199293", 0x94}, {&(0x7f0000005c40)="978d67f19f69989a8a725bd54e7463b3ab7a5cc5dc6bab58e6a26af2f3356aa43879d9a34944fc3794eceeef03f4311cdcff3874463ffb81a43f3268ff844e233312d8f5b26bca4deabd88468157edf453c528ab0718e43d251a012ccf247db739ad2a9f5a9f555c503bca7c6c4e890e2b6144b20777c80ae08a72c369ff3e50a3d1d96b2ec8f491079fedb0a4f515dd9e980c3653d774681111d460185277", 0x9f}, {&(0x7f0000005d00)="b352d524c0f361db563d3cef39bb06932da996c73fdfb6d228c93e907c21", 0x1e}, {&(0x7f0000005d40)="e1522727683afa84f70f344a43bb8887399a3328e065b512d2443b42cc163cffdd3c4eef35375f64f66fb805ade978174bd5db7534c8abf8e9a2b37a634dd795615e9bcc330dd97084182cf191752bff141815e82e34239252b744eedc114b993548fbd14de936e26056d516e486d1dbc8c53cbdea571cfbc4bcf9638d433f1a7f865965b36e6e640f46267b61fbf4620a394cf0f2b0637494c3a3c8271bbd282a245f4a1a31847105dbb229ac671c1a7b0f5ec92b0fadef0ae7c884f922019a9d48c84a38c62a2be3204675442d5288ad0e489cfccaed666d3efb54a66194db", 0xe0}], 0x5, &(0x7f0000005ec0)=[{0x10, 0x6, 0xffffffff}, {0xe0, 0x101, 0x294, "9ec2a7c8c4f1615cb17f7340231ccc02a1196643a12f7175d6681862a2b0195b5adf4d5d85c44c230e6b075518bac5924ea91dd002ed090b887e1e92edb49d764bf7b4e65d24ad2e7695cb0967f2371d558ce5489ee32d145abd557a1bf36f8816cab2452a761e236a3557ef02a2bc1d5678f943dd2bc1f012c57ecf6316c42193d4e33ad4b31fd0c59a2de80101ddaf17ca6e541bb1bf139dcd0002b1aae6bd08c8ec93cca2d4d7634e85b2e9f7774f4284e09a94d57d45ec842478a6707feba3850b665e7846f3b619ffb1e43b"}, {0x70, 0x0, 0x1, "896b2e2aaf32447a871d2205f4785c325984116ebd5a324e1ace0d9bf3c99fb8847459fb6eccd8b4f48acb9866029f7aba637c99241c89be30e375af408cfb42e62443dc40616c6fd47a85950c95c07915c418bc58b88db8f36616a035fa2c"}, {0xf0, 0x107, 0x1, "ed587ddf245e7c24638de549bd9547f76f5914236cc69ac60b964e54414d8a4f3eb2449e52ebdf5e9fff891f4829333de589349278d77f2b1af628712a753e1b1c720b0bec2f0fb02954997092178ab47c40fdef60d0b2b67ef321763d851add9b773234c700ace18b020b86e0d76a2ee654618d1d15e38fa7ca2e236785ce7c8664727561d42c9b35314bd315c36ddd9e90e8c34c15ce33fe7cdaf8cf3d70d6ada5757c802d3f41684ee2bdf9a53161235a6ad8f637c05213b9ea08e55fd621f5841c11a447a7c5ccca8967528780eda083e1317e12f708d73409114f"}], 0x250}}], 0x6, 0xc0)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:16 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:16 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000000)={{{@in6=@initdev, @in=@loopback}}, {{@in6=@dev}, 0x0, @in=@remote}}, &(0x7f0000000100)=0xe8)
fspick(r0, &(0x7f0000000140)='./file0\x00', 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa080045000024e18e62a9da90d5c6ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0)

03:15:16 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000000)={{{@in6=@initdev, @in=@loopback}}, {{@in6=@dev}, 0x0, @in=@remote}}, &(0x7f0000000100)=0xe8)
fspick(r0, &(0x7f0000000140)='./file0\x00', 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa080045000024e18e62a9da90d5c6ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000000)={{{@in6=@initdev, @in=@loopback}}, {{@in6=@dev}, 0x0, @in=@remote}}, &(0x7f0000000100)=0xe8) (async)
fspick(r0, &(0x7f0000000140)='./file0\x00', 0x0) (async)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa080045000024e18e62a9da90d5c6ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0) (async)

03:15:16 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff)
setsockopt$WPAN_SECURITY(r1, 0x0, 0x1, &(0x7f0000000080)=0x1, 0x4) (async)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r2}, 0x10)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @none={0x0, 0xfffd}}, 0x14) (async)
sendmmsg$sock(r2, &(0x7f0000000080), 0x0, 0x0)

03:15:16 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x714}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f000000aa40)={0x2, 0x9, {<r1=>r0}, {}, 0x18, 0xffffffffffffffff})
sched_setattr(r1, &(0x7f0000000100)={0x38, 0x6, 0x40, 0x6bb, 0x5b9, 0xd782, 0x1cb7, 0x7, 0x7}, 0x0)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_getattr(r1, &(0x7f000000aa00)={0x38}, 0x38, 0x0)
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r4}, 0x10)
recvmmsg(r4, &(0x7f000000a940)=[{{&(0x7f00000082c0)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000085c0)=[{&(0x7f0000008340)=""/242, 0xf2}, {&(0x7f0000008440)=""/152, 0x98}, {&(0x7f0000008500)=""/142, 0x8e}], 0x3, &(0x7f0000008600)=""/25, 0x19}, 0x5}, {{&(0x7f0000008640)=@alg, 0x80, &(0x7f0000009740)=[{&(0x7f00000086c0)=""/102, 0x66}, {&(0x7f0000008740)=""/4096, 0x1000}], 0x2, &(0x7f0000009780)=""/56, 0x38}, 0x3}, {{&(0x7f00000097c0)=@nfc_llcp, 0x80, &(0x7f0000009900)=[{&(0x7f0000009840)=""/147, 0x93}], 0x1, &(0x7f0000009940)=""/4096, 0x1000}, 0x1}], 0x3, 0x2040, 0x0)
wait4(0x0, &(0x7f0000000040), 0x1, &(0x7f00000002c0))
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(r2, &(0x7f0000008080)=[{{&(0x7f0000000380)=@nfc, 0x80, &(0x7f0000000240)=[{&(0x7f0000000400)=""/240, 0xf0}, {&(0x7f000000aa80)=""/229, 0xe5}, {&(0x7f0000000600)=""/146, 0x92}, {&(0x7f00000006c0)=""/187, 0xbb}], 0x4, &(0x7f0000000780)=""/4096, 0x1000}, 0x30}, {{&(0x7f0000001780)=@generic, 0x80, &(0x7f0000001a40)=[{&(0x7f0000000500)=""/87, 0x57}, {&(0x7f0000001880)=""/109, 0x6d}, {&(0x7f0000001900)=""/22, 0x16}, {&(0x7f0000001940)=""/96, 0x60}, {&(0x7f00000019c0)=""/107, 0x6b}], 0x5}, 0x3ff}, {{0x0, 0x0, &(0x7f0000001bc0)=[{&(0x7f0000001ac0)=""/27, 0x1b}, {&(0x7f0000001b00)=""/129, 0x81}], 0x2, &(0x7f0000001c00)=""/203, 0xcb}, 0x228}, {{0x0, 0x0, &(0x7f0000002f00)=[{&(0x7f0000001d00)=""/183, 0xb7}, {&(0x7f0000001dc0)=""/4096, 0x1000}, {&(0x7f0000002dc0)=""/43, 0x2b}, {&(0x7f0000002e00)=""/194, 0xc2}], 0x4, &(0x7f0000002f40)=""/135, 0x87}, 0x6}, {{&(0x7f0000003000)=@in={0x2, 0x0, @initdev}, 0x80, &(0x7f0000003640)=[{&(0x7f0000003080)=""/247, 0xf7}, {&(0x7f0000003180)=""/204, 0xcc}, {&(0x7f0000003280)=""/163, 0xa3}, {&(0x7f0000003340)=""/62, 0x3e}, {&(0x7f0000003380)=""/110, 0x6e}, {&(0x7f0000003400)=""/222, 0xde}, {&(0x7f0000003500)=""/80, 0x50}, {&(0x7f0000003580)=""/176, 0xb0}], 0x8, &(0x7f00000036c0)=""/4096, 0x1000}, 0x2}, {{&(0x7f00000046c0)=@qipcrtr, 0x80, &(0x7f0000005740)=[{&(0x7f0000004740)=""/4096, 0x1000}], 0x1, &(0x7f0000005780)=""/202, 0xca}, 0x1}, {{&(0x7f0000005880)=@un=@abs, 0x80, &(0x7f0000006c80)=[{&(0x7f0000005900)=""/127, 0x7f}, {&(0x7f0000005980)=""/4096, 0x1000}, {&(0x7f0000006980)=""/189, 0xbd}, {&(0x7f0000006a40)=""/52, 0x34}, {&(0x7f0000006a80)=""/250, 0xfa}, {&(0x7f0000006b80)=""/216, 0xd8}], 0x6}, 0x3ae}, {{&(0x7f0000006d00)=@nl=@unspec, 0xac, &(0x7f0000007040)=[{&(0x7f0000006d80)=""/232, 0xe8}, {&(0x7f0000006e80)=""/161, 0xa1}, {&(0x7f0000006f40)=""/240, 0xf0}], 0x3, &(0x7f0000007080)=""/4096, 0x1000}, 0x8}], 0x8, 0x10001, &(0x7f0000008280)={0x0, 0x989680})
r5 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)

03:15:16 executing program 1:
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(0xffffffffffffffff, 0x810c5701, &(0x7f0000000000))
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f00000001c0)={0xfffffffffffffffa, 0x20, '\x00', 0x1, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0]})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000001880)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000001480)="a5", 0x1}], 0x1, &(0x7f0000001840)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f000000ee40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000096c0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}], 0x40}}], 0x1, 0x0)
recvmmsg(r0, &(0x7f0000007d40)=[{{0x0, 0x300, 0x0}}], 0x300, 0x2, 0x0)
sched_setattr(0xffffffffffffffff, &(0x7f0000000200)={0x38, 0x3, 0x20, 0x2, 0x0, 0x1a8, 0x401, 0x1, 0x800, 0x5dc6}, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_STATUS32(0xffffffffffffffff, 0xc0245720, &(0x7f0000000140)={0x1})

03:15:16 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:16 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0xe0, &(0x7f0000000000)={@random="721c2f51caf7", @multicast, @void, {@llc={0x4, {@llc={0x4e, 0x7e, "d02a", "4ff68403ab2673bb6623b1b730b67d2066f0bb7edfc271a55c3dbb6b3e76a1ad25e7824ce9e7aeaf214dc1e449ea1967978f96ea1f07989abc417c201c446b099e108b172850a0b62a799a4be5c6e9d6522e4d5cb2b703c9576920f8120b32d2b84802480ddd53c7147549c22838140680450824609b22163903b933adf4360b38dab756b86acab3fb313d2053a0abf4eede148d6c0f1d460ac4f7669e52f8f879f12f642996e0bcedc7d4caefae8bd0d6e4575cbdb41b4774ab294043f2c907e6ee7124cae27f04d59cd502334d"}}}}}, &(0x7f0000000100)={0x1, 0x1, [0xba9, 0xd63, 0xe82, 0x40d]})

03:15:16 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(0xffffffffffffffff, &(0x7f00000000c0)={0x24, @short={0x2, 0x2, 0xaaa3}}, 0x14)
sendmmsg$sock(r0, &(0x7f0000000500)=[{{&(0x7f0000000100)=@xdp={0x2c, 0x4, 0x0, 0x3d}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000180)="ea698b74fbc09c14a8085f5807a185a8d4ad41a0f5eac3cd3ee86fc6c0da855ab59e2a0fde5f46e8492a01ab24806cf1e002cdaee4b2035af0094872fdb8fcf3b6322ba6e2144a55990bd7b20e90118d0b283f8bdad7896ada31aac7dbf1ede844", 0x61}, {&(0x7f0000000200)="17666fdcba247a96f639f198d1975906b4e068f9512bb6758f7b40d7f630d60f57fa72f60255a86ce6f705c517a3b29118406201b962d0474ed9da2f2bcf9a75488c5de88d368895313eb0b17cdf7e591aca1298bb7d3ae2e94e1e80017bb3fb9cb92d738df912b6cbadacf55321c66c11f312b3dcd77e054254bc86576c62ac486f1b77009b", 0x86}, {&(0x7f00000002c0)="fa260b6d9a118812cfb6e7aca192a175c31724a524fa93255b7f9111197a4d67b8078f833f689cbd5005ef3fdc369bd646d2bffcba7f102401d616e619d6f6d3eda7b74395b6ee8a991f52b280326d58d866a19ff941e1d1c1745d0283c5abf4b0d95d65a0760b3a86d98c7b2cd22d81c10760", 0x73}, {&(0x7f0000000340)="9ef3a2adae3c2242faa08c6097d76db8ea45ecf0753ad5a43b87add9593860b9472595524d8aa79e8f41e2352c5c59b23da74016f9d2c23cdcdefa9d0e1ddccd3978d8867a833d7a8978bac4f13a5f75f872c92522a19301e29d7b4a30ae8fdd13c5ab08336b168a8751f5eedded727f2f02b718f01e353e66167bbf000204", 0x7f}, {&(0x7f0000000080)="066637a15beb6d2fa4bd0e50eccbaa32642c872332c0594c97dbc98a5c19926ebdef0d3e35fb670864", 0x29}, {&(0x7f00000003c0)="b1000560d0ffe152dbbb20bd2a09cb3917863c7d13ef9a284742a0fcd925bf40e81a18fb1d72c9ac48993b15721e3b7905f0782b6d587580096d564f39f623b3d4e0f4adee2e9492e004e44a2d11c4c6f11471cbd79b8294da85d9cf0669dc0d1da87589b76feb97ace902d425e71535017c96498bd5399f3b81c8bbf49eba5c060e9ef928f04256d31a9c473ed6eb5f88009452f295b004aa744b6cef87a8", 0x9f}], 0x6}}], 0x1, 0x40)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000740)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000800)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r1=>r0, @ANYBLOB="00000000000000002e2f66696c02000000000000006184fb6855ffdae9292ae8c32c4931a3f82a30e3c4275848fb9191a674d92fcc8807a43cb0dd67da4cb66c2e735fb8ceececd3777b0e5a14babb1af3220fbbb644dd6c5515a984e33ac1"])
bind$802154_dgram(r1, &(0x7f0000000780)={0x24, @short={0x2, 0x0, 0xaaa0}}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
r2 = socket$inet(0x2, 0x4000000805, 0x0)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
r4 = dup3(r2, r3, 0x0)
sendto$inet(r4, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000025e000)={0x2, [<r5=>0x0, <r6=>0x0]}, &(0x7f0000000000)=0xc)
r7 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000580), 0x80, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, &(0x7f00000005c0)={<r8=>r5, @in6={{0xa, 0x4e21, 0x3, @rand_addr=' \x01\x00', 0x7fff}}, 0x1, 0x1}, &(0x7f0000000680)=0x90)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r7, 0x84, 0x71, &(0x7f00000007c0)={r8, 0x9}, &(0x7f00000006c0)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f000059aff8)={r6}, &(0x7f000034f000)=0x2059b005)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000540)={r6, 0x800}, 0x8)

03:15:16 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r4, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r3, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x8}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x3}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000040)
r5 = accept(r1, 0x0, &(0x7f0000000480))
syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r5)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0109000000000000000012000000080009000200000018000180690002006261746164765f736c6176655f31000008000700c6000000"], 0x3c}}, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r0, 0x800, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xfffffffc}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x8d0}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r6}, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000340), r6)
syz_emit_ethernet(0xdb, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @void, {@generic={0x8847, "7401de9aa87b1707118fe084a0052797bd401b33f2e551b88714798c5c55c386352e7177037953acd68e1521f056c2e81cfc6676a72930560504b868c04f9b7e0c7a533874bd25439c8608115ebbe2eebd4ff99f86bbe8ab2f0b5a229d41ea415cc72e36ac3f8a1dfa9084faa3279ceb2d1d7d17f12bfa954aae2fb6026c97aa69e47a98aaeaef3edf825f696edc8c2260107e20a7228a3af6f98b4ce69ffdb7d2d9cc73b0b55dece3b06342f7c1ead86195ae83d925ec2e81b79a8702ebd0c8722a467187f10bc702d2c2c3c2"}}}, 0x0)

03:15:17 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0xe0, &(0x7f0000000000)={@random="721c2f51caf7", @multicast, @void, {@llc={0x4, {@llc={0x4e, 0x7e, "d02a", "4ff68403ab2673bb6623b1b730b67d2066f0bb7edfc271a55c3dbb6b3e76a1ad25e7824ce9e7aeaf214dc1e449ea1967978f96ea1f07989abc417c201c446b099e108b172850a0b62a799a4be5c6e9d6522e4d5cb2b703c9576920f8120b32d2b84802480ddd53c7147549c22838140680450824609b22163903b933adf4360b38dab756b86acab3fb313d2053a0abf4eede148d6c0f1d460ac4f7669e52f8f879f12f642996e0bcedc7d4caefae8bd0d6e4575cbdb41b4774ab294043f2c907e6ee7124cae27f04d59cd502334d"}}}}}, &(0x7f0000000100)={0x1, 0x1, [0xba9, 0xd63, 0xe82, 0x40d]})
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0xe0, &(0x7f0000000000)={@random="721c2f51caf7", @multicast, @void, {@llc={0x4, {@llc={0x4e, 0x7e, "d02a", "4ff68403ab2673bb6623b1b730b67d2066f0bb7edfc271a55c3dbb6b3e76a1ad25e7824ce9e7aeaf214dc1e449ea1967978f96ea1f07989abc417c201c446b099e108b172850a0b62a799a4be5c6e9d6522e4d5cb2b703c9576920f8120b32d2b84802480ddd53c7147549c22838140680450824609b22163903b933adf4360b38dab756b86acab3fb313d2053a0abf4eede148d6c0f1d460ac4f7669e52f8f879f12f642996e0bcedc7d4caefae8bd0d6e4575cbdb41b4774ab294043f2c907e6ee7124cae27f04d59cd502334d"}}}}}, &(0x7f0000000100)={0x1, 0x1, [0xba9, 0xd63, 0xe82, 0x40d]}) (async)

03:15:17 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1213.912273][ T5059] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:17 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(0xffffffffffffffff, &(0x7f00000000c0)={0x24, @short={0x2, 0x2, 0xaaa3}}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000000500)=[{{&(0x7f0000000100)=@xdp={0x2c, 0x4, 0x0, 0x3d}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000180)="ea698b74fbc09c14a8085f5807a185a8d4ad41a0f5eac3cd3ee86fc6c0da855ab59e2a0fde5f46e8492a01ab24806cf1e002cdaee4b2035af0094872fdb8fcf3b6322ba6e2144a55990bd7b20e90118d0b283f8bdad7896ada31aac7dbf1ede844", 0x61}, {&(0x7f0000000200)="17666fdcba247a96f639f198d1975906b4e068f9512bb6758f7b40d7f630d60f57fa72f60255a86ce6f705c517a3b29118406201b962d0474ed9da2f2bcf9a75488c5de88d368895313eb0b17cdf7e591aca1298bb7d3ae2e94e1e80017bb3fb9cb92d738df912b6cbadacf55321c66c11f312b3dcd77e054254bc86576c62ac486f1b77009b", 0x86}, {&(0x7f00000002c0)="fa260b6d9a118812cfb6e7aca192a175c31724a524fa93255b7f9111197a4d67b8078f833f689cbd5005ef3fdc369bd646d2bffcba7f102401d616e619d6f6d3eda7b74395b6ee8a991f52b280326d58d866a19ff941e1d1c1745d0283c5abf4b0d95d65a0760b3a86d98c7b2cd22d81c10760", 0x73}, {&(0x7f0000000340)="9ef3a2adae3c2242faa08c6097d76db8ea45ecf0753ad5a43b87add9593860b9472595524d8aa79e8f41e2352c5c59b23da74016f9d2c23cdcdefa9d0e1ddccd3978d8867a833d7a8978bac4f13a5f75f872c92522a19301e29d7b4a30ae8fdd13c5ab08336b168a8751f5eedded727f2f02b718f01e353e66167bbf000204", 0x7f}, {&(0x7f0000000080)="066637a15beb6d2fa4bd0e50eccbaa32642c872332c0594c97dbc98a5c19926ebdef0d3e35fb670864", 0x29}, {&(0x7f00000003c0)="b1000560d0ffe152dbbb20bd2a09cb3917863c7d13ef9a284742a0fcd925bf40e81a18fb1d72c9ac48993b15721e3b7905f0782b6d587580096d564f39f623b3d4e0f4adee2e9492e004e44a2d11c4c6f11471cbd79b8294da85d9cf0669dc0d1da87589b76feb97ace902d425e71535017c96498bd5399f3b81c8bbf49eba5c060e9ef928f04256d31a9c473ed6eb5f88009452f295b004aa744b6cef87a8", 0x9f}], 0x6}}], 0x1, 0x40)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000740)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000800)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r1=>r0, @ANYBLOB="00000000000000002e2f66696c02000000000000006184fb6855ffdae9292ae8c32c4931a3f82a30e3c4275848fb9191a674d92fcc8807a43cb0dd67da4cb66c2e735fb8ceececd3777b0e5a14babb1af3220fbbb644dd6c5515a984e33ac1"]) (async)
bind$802154_dgram(r1, &(0x7f0000000780)={0x24, @short={0x2, 0x0, 0xaaa0}}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)
r2 = socket$inet(0x2, 0x4000000805, 0x0) (async)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
r4 = dup3(r2, r3, 0x0)
sendto$inet(r4, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) (async)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000025e000)={0x2, [<r5=>0x0, <r6=>0x0]}, &(0x7f0000000000)=0xc)
r7 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000580), 0x80, 0x0) (async)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, &(0x7f00000005c0)={<r8=>r5, @in6={{0xa, 0x4e21, 0x3, @rand_addr=' \x01\x00', 0x7fff}}, 0x1, 0x1}, &(0x7f0000000680)=0x90)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r7, 0x84, 0x71, &(0x7f00000007c0)={r8, 0x9}, &(0x7f00000006c0)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f000059aff8)={r6}, &(0x7f000034f000)=0x2059b005)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000540)={r6, 0x800}, 0x8)

03:15:17 executing program 1:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x102, &(0x7f0000000080)={@empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2f}, @void, {@mpls_mc={0x8848, {[{0x7}, {0x26622}, {}, {0x7, 0x0, 0x1}, {0x8, 0x0, 0x1}, {0x5}, {0x20, 0x0, 0x1}, {0x3, 0x0, 0x1}], @ipv6=@tipc_packet={0x7, 0x6, "29a53a", 0xac, 0x6, 0x0, @dev={0xfe, 0x80, '\x00', 0x31}, @private1={0xfc, 0x1, '\x00', 0x1}, {[@hopopts={0x33, 0x4, '\x00', [@ra, @calipso={0x7, 0x10, {0x3, 0x2, 0xb7, 0x3, [0x3]}}, @jumbo={0xc2, 0x4, 0x3f}, @pad1, @pad1]}], @name_distributor={{0x7c, 0x0, 0x0, 0x0, 0x0, 0xa, 0xb, 0x2, 0x5, 0x0, 0x0, 0x7fff, 0x0, 0x4, 0x4e21, 0x1b8bae53, 0x4, 0xffffffff, 0x0, 0x0, 0x1}, [{0xfffffffd, 0x20, 0x3, 0x1, 0x7fffffff, 0x2, 0x4, 0x101}, {0x9, 0x100, 0x2, 0x0, 0x8, 0x9, 0x8, 0xff}, {0x3, 0xfa, 0x7, 0x7fffffff, 0x1, 0x1, 0x6, 0x6}]}}}}}}}, &(0x7f00000001c0)={0x0, 0x2, [0xe77, 0xeca, 0xcc3, 0x584]})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@private1, 0xd75, 0x2, 0xff, 0x0, 0x8000, 0x1ce}, 0x20)
syz_extract_tcp_res$synack(&(0x7f0000000000), 0x1, 0x0)
syz_extract_tcp_res(&(0x7f0000000000)={0x41424344, <r0=>0x41424344}, 0x800, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f000004db80)={0x0, ""/256, <r1=>0x0, <r2=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000062c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}], 0x0, "8bebeb894f74c3"})
r3 = perf_event_open(&(0x7f00000015c0)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r3, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f000004fd80)={0x0, ""/256, 0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004ff80)={0x4, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}], 0x4, "762a9b4caf8154"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f000004db80)={0x0, ""/256, <r5=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000062c40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}], 0x0, "8bebeb894f74c3"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000045900)={0x0, ""/256, 0x0, <r6=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000045b00)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1, r4}, {}, {r5}, {}, {0x0, r6}], 0x5, "a4c7a72d9f6e5e"})
syz_emit_ethernet(0x36, &(0x7f0000000100)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x2000, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xa}}}}}}, 0x0)
syz_emit_ethernet(0x28, &(0x7f0000000400)={@local, @local, @void, {@x25={0x805, {0x2, 0x7f, 0x13, "e5432152c24eb815b5e8131de5be16729cbb49632dc3d0"}}}}, 0x0)
syz_emit_ethernet(0x167, &(0x7f0000000180)={@local, @empty, @void, {@mpls_mc={0x8848, {[{0x1}, {0x2, 0x0, 0x1}], @ipv6=@tcp={0xc, 0x6, "47d8e2", 0x129, 0x6, 0x1, @mcast1, @mcast2, {[@srh={0x0, 0xa, 0x4, 0x5, 0x1, 0x30, 0x4, [@rand_addr=' \x01\x00', @local, @local, @mcast1, @local]}, @srh={0x29, 0x4, 0x4, 0x2, 0xff, 0x0, 0x9, [@mcast2, @private2]}, @routing={0x0, 0x4, 0x2, 0x3, 0x0, [@private0, @loopback]}], {{0x4e20, 0x0, r0, 0x41424344, 0x0, 0x0, 0x1a, 0x80, 0x5, 0x0, 0x3, {[@sack={0x5, 0x6, [0xfb]}, @sack_perm={0x4, 0x2}, @md5sig={0x13, 0x12}, @generic={0x2, 0x11, "125156a196be90309eed3d2652948b"}, @md5sig={0x13, 0x12, "2225694d4026803576a99ec07ae5bfd1"}, @window={0x3, 0x3, 0xa}, @exp_smc={0xfe, 0x6}, @exp_smc={0xfe, 0x6}, @exp_fastopen={0xfe, 0x5, 0xf989, "d9"}]}}, {"53530af7b79effd7d20b34ca54a370f77d9220306d10b5d903"}}}}}}}}, 0x0)
syz_extract_tcp_res(&(0x7f0000000240)={0x41424344, <r7=>0x41424344}, 0x3, 0x5)
syz_emit_ethernet(0x465, &(0x7f0000000280)={@broadcast, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x8, 0x6, "602cf4", 0x42f, 0x6, 0x0, @local, @local, {[@fragment={0x29, 0x0, 0x1, 0x0, 0x0, 0x10, 0x64}, @dstopts={0x33, 0x6, '\x00', [@pad1, @padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @loopback}, @hao={0xc9, 0x10, @private0}]}, @hopopts={0x0, 0x1d, '\x00', [@hao={0xc9, 0x10, @private2}, @ra={0x5, 0x2, 0xff}, @pad1, @jumbo={0xc2, 0x4, 0x3}, @generic={0x8, 0xb6, "fdb15104aa4eef7b7c239ab5264d042019ec34622e80e48321f75e3884206d85f8cb18ca254a7ee041912fbb5635d35080f926336443bf77c104d0406d7a5bc19e5abe91d194dd43269ec8d61e3db7f21f1a455ffbf652368f4a84bef0fa9f3628c2188a8273abe0715c9e2046cdec7c0fd2355fa75d84a41871ef8859f89a47ae6c44edd29facb568229beb1be39f0dfc292da07d452aac5151059578d8c28c44b1352de6347abedb448e1ca411637c412cdec57a32"}, @ra={0x5, 0x2, 0x1f}, @hao={0xc9, 0x10, @private1}]}, @srh={0x2f, 0x4, 0x4, 0x2, 0x81, 0x28, 0x1f, [@private0, @rand_addr=' \x01\x00']}, @routing={0x99, 0x8, 0x2, 0x3, 0x0, [@remote, @loopback, @loopback, @mcast1]}, @hopopts={0x2c, 0x1, '\x00', [@enc_lim={0x4, 0x1, 0x2}, @padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, @srh={0x16, 0x8, 0x4, 0x4, 0x13, 0x60, 0x0, [@mcast2, @private1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @local]}, @dstopts={0x6, 0xe, '\x00', [@jumbo={0xc2, 0x4, 0x8}, @enc_lim={0x4, 0x1, 0x81}, @ra={0x5, 0x2, 0x1f}, @calipso={0x7, 0x18, {0x2, 0x4, 0x20, 0x20, [0x20, 0x3]}}, @enc_lim={0x4, 0x1, 0x1}, @calipso={0x7, 0x40, {0x2, 0xe, 0xb9, 0x2, [0x8, 0x2, 0xfe, 0xfffffffeffffffff, 0xffff, 0xf9e3, 0x8]}}, @jumbo={0xc2, 0x4, 0x9c8d}]}, @srh={0x2f, 0x2, 0x4, 0x1, 0x3, 0x0, 0x2, [@private0]}, @srh={0x1d, 0xc, 0x4, 0x6, 0xff, 0x20, 0xe16, [@private1, @rand_addr=' \x01\x00', @remote, @mcast1, @ipv4={'\x00', '\xff\xff', @private=0xa010100}, @mcast2]}], {{0x4e24, 0x4e20, r0, r7, 0x0, 0x0, 0x11, 0x1, 0x2, 0x0, 0x5, {[@md5sig={0x13, 0x12, "db11262720380627c0ef9f11bafb8ef0"}, @nop, @fastopen={0x22, 0x9, "29331fa4699e23"}, @md5sig={0x13, 0x12, "b79bde4f0b8eaa52ab95f9456a6a2076"}, @sack_perm={0x4, 0x2}]}}, {"67e4ea43096d4e8e735e8992c0c9834cfb9750d7893c8bc9ff0376eacc0aae625d7bc93ca2f96a7d2744b0309bfd3ac20e1e2d0ed21d27bb3634dda154d8f406157741422fe148a251957b639be8fc361afdb9de737d108ed901d1a86c81ebdbe6d916cc7ca894ee990fcba7c3e9744ebe10efa08b4504fb02e9cd9baa307b33a54a4f2d480ba74c2029ffb09c10bf99808bb3e0b898bebbdc25807029e732d4b87def9f9f827db4b0cbd8f52deecfeb888417660a52f0c879c617f5c701ccaaf68dc98ce665f5e530cb7a20852e99b8a9dae8f6dde7a1244d01e6e0423de45444636f"}}}}}}}, &(0x7f0000000700)={0x0, 0x3, [0x5d4, 0x334, 0x4a1, 0xb0c]})

03:15:17 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0xe0, &(0x7f0000000000)={@random="721c2f51caf7", @multicast, @void, {@llc={0x4, {@llc={0x4e, 0x7e, "d02a", "4ff68403ab2673bb6623b1b730b67d2066f0bb7edfc271a55c3dbb6b3e76a1ad25e7824ce9e7aeaf214dc1e449ea1967978f96ea1f07989abc417c201c446b099e108b172850a0b62a799a4be5c6e9d6522e4d5cb2b703c9576920f8120b32d2b84802480ddd53c7147549c22838140680450824609b22163903b933adf4360b38dab756b86acab3fb313d2053a0abf4eede148d6c0f1d460ac4f7669e52f8f879f12f642996e0bcedc7d4caefae8bd0d6e4575cbdb41b4774ab294043f2c907e6ee7124cae27f04d59cd502334d"}}}}}, &(0x7f0000000100)={0x1, 0x1, [0xba9, 0xd63, 0xe82, 0x40d]})
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0xe0, &(0x7f0000000000)={@random="721c2f51caf7", @multicast, @void, {@llc={0x4, {@llc={0x4e, 0x7e, "d02a", "4ff68403ab2673bb6623b1b730b67d2066f0bb7edfc271a55c3dbb6b3e76a1ad25e7824ce9e7aeaf214dc1e449ea1967978f96ea1f07989abc417c201c446b099e108b172850a0b62a799a4be5c6e9d6522e4d5cb2b703c9576920f8120b32d2b84802480ddd53c7147549c22838140680450824609b22163903b933adf4360b38dab756b86acab3fb313d2053a0abf4eede148d6c0f1d460ac4f7669e52f8f879f12f642996e0bcedc7d4caefae8bd0d6e4575cbdb41b4774ab294043f2c907e6ee7124cae27f04d59cd502334d"}}}}}, &(0x7f0000000100)={0x1, 0x1, [0xba9, 0xd63, 0xe82, 0x40d]}) (async)

03:15:17 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg(r0, &(0x7f0000000640)=[{{&(0x7f0000000080)=@ax25={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x6}, [@bcast, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a083d117afb4855d1e9329682912a4a7d71d526f0a6cd694103c7d0b516684e57e111f806919c330afe40d7fe61833df38b00ecc7c7e75d9a7f792113ce1beab4a36fbc3203d231c9c21ff749b127d", 0x4f}, {&(0x7f0000000180)="59cb31f89c0964643ebb921c127b3ae356d22308c8cc5b", 0x17}, {&(0x7f00000001c0)="d3156ed882a1fada60c1c30b0747157976ec863e1604cef7380f3509ca42ca10d5643a1e53e903c7018daa847763aee1521ff6ed4919840ce89b6194beecb0cdf2195b395628dbb9c9ee67afd9870e929ce2090c4de800f8b0efaf1cfd6fe507d3a7a07b6cf6f6aec52c9e757e9ed3e4facf433b6f930087fb24c328ae4b67b1ed544c297e1ea131e94fedad4a8dd8b5ee6999fbbccdb7f97564f97b863251b4891797b409d62ac0d47c528fc110988b937dd4", 0xb3}, {&(0x7f0000000340)="b44ed506dc74cb227682a42347408fb7e8239177f033af28805d5d49cc6b10fcc1d4b5354d684b19bb1c1d36e3b27d59ca726d0ee956301aa2efe30ed2adb28594d986df2057dd8b47ef01bfab7f492a445d97a56ca61aa1fab408cc44a512e18385860329c3823a1a0a106f0f72fdfdb8d66094602ceec1f70ea2d61f18e7ef774bd3ecb26a70c8d5652835f10a935da9a396322e6b959f12056591f660e891fd089935f66404c2010b5b9347af2c9179b0556bc89fa3d79ee99ae18163306ae322ec56af98b8c4e9bd7264c605511deeece9d66cce3b83abf8dca2b72dce77ee487781967b", 0xe6}, {&(0x7f0000000280)="bf173863c0887ecf7c8068ef6ea69505ab7e2acb7c9909c1facf53dba3ee76c6f0ab576f43fbd09dc2fb8ac6590c", 0x2e}, {&(0x7f0000000440)="12a89e44f92d4079e1a5b38251cd6283adfc114923911a49c1f3839a47d112f22e238684364f707a26f26b07e95a83cc0188b5aaca04f59e455c7330945b96995686a52a9069aaad765ad61c8b2720e1cd", 0x51}], 0x6, &(0x7f0000000540)=[{0xe0, 0x1, 0xca8, "1b59a9f8c1d91484b0fc4dee3593201fbd463041bba9446ff616cfaf8368823bb02bedea30ccab5efe8a29aa53e61bd4697801e26c5ec95d41feac1a3b77f7e2d25eb4fb89b1bf8a7492e26ee8744dd500d54d3331e4b096db27fc67a53bdc6952101fd629d6874b6b2abaec509d1137dc0e56a931b836de306f020dafcba12044b1a889777f6c3085edde8c9dd9521ea5377390b786276ec95941c15bc1bfef92dfd7fc5898e6bfb374a4737cb5a65fd21d639b5e2ac9cf52fe102a8351ed47f8ce16db8a90adba6f09cc99859c"}], 0xe0}}], 0x1, 0x4004080)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1214.069928][ T5059] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:17 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x714}, 0x0) (async)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f000000aa40)={0x2, 0x9, {<r1=>r0}, {}, 0x18, 0xffffffffffffffff})
sched_setattr(r1, &(0x7f0000000100)={0x38, 0x6, 0x40, 0x6bb, 0x5b9, 0xd782, 0x1cb7, 0x7, 0x7}, 0x0) (async)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_getattr(r1, &(0x7f000000aa00)={0x38}, 0x38, 0x0) (async)
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) (async)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r4}, 0x10)
recvmmsg(r4, &(0x7f000000a940)=[{{&(0x7f00000082c0)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000085c0)=[{&(0x7f0000008340)=""/242, 0xf2}, {&(0x7f0000008440)=""/152, 0x98}, {&(0x7f0000008500)=""/142, 0x8e}], 0x3, &(0x7f0000008600)=""/25, 0x19}, 0x5}, {{&(0x7f0000008640)=@alg, 0x80, &(0x7f0000009740)=[{&(0x7f00000086c0)=""/102, 0x66}, {&(0x7f0000008740)=""/4096, 0x1000}], 0x2, &(0x7f0000009780)=""/56, 0x38}, 0x3}, {{&(0x7f00000097c0)=@nfc_llcp, 0x80, &(0x7f0000009900)=[{&(0x7f0000009840)=""/147, 0x93}], 0x1, &(0x7f0000009940)=""/4096, 0x1000}, 0x1}], 0x3, 0x2040, 0x0) (async)
wait4(0x0, &(0x7f0000000040), 0x1, &(0x7f00000002c0))
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(r2, &(0x7f0000008080)=[{{&(0x7f0000000380)=@nfc, 0x80, &(0x7f0000000240)=[{&(0x7f0000000400)=""/240, 0xf0}, {&(0x7f000000aa80)=""/229, 0xe5}, {&(0x7f0000000600)=""/146, 0x92}, {&(0x7f00000006c0)=""/187, 0xbb}], 0x4, &(0x7f0000000780)=""/4096, 0x1000}, 0x30}, {{&(0x7f0000001780)=@generic, 0x80, &(0x7f0000001a40)=[{&(0x7f0000000500)=""/87, 0x57}, {&(0x7f0000001880)=""/109, 0x6d}, {&(0x7f0000001900)=""/22, 0x16}, {&(0x7f0000001940)=""/96, 0x60}, {&(0x7f00000019c0)=""/107, 0x6b}], 0x5}, 0x3ff}, {{0x0, 0x0, &(0x7f0000001bc0)=[{&(0x7f0000001ac0)=""/27, 0x1b}, {&(0x7f0000001b00)=""/129, 0x81}], 0x2, &(0x7f0000001c00)=""/203, 0xcb}, 0x228}, {{0x0, 0x0, &(0x7f0000002f00)=[{&(0x7f0000001d00)=""/183, 0xb7}, {&(0x7f0000001dc0)=""/4096, 0x1000}, {&(0x7f0000002dc0)=""/43, 0x2b}, {&(0x7f0000002e00)=""/194, 0xc2}], 0x4, &(0x7f0000002f40)=""/135, 0x87}, 0x6}, {{&(0x7f0000003000)=@in={0x2, 0x0, @initdev}, 0x80, &(0x7f0000003640)=[{&(0x7f0000003080)=""/247, 0xf7}, {&(0x7f0000003180)=""/204, 0xcc}, {&(0x7f0000003280)=""/163, 0xa3}, {&(0x7f0000003340)=""/62, 0x3e}, {&(0x7f0000003380)=""/110, 0x6e}, {&(0x7f0000003400)=""/222, 0xde}, {&(0x7f0000003500)=""/80, 0x50}, {&(0x7f0000003580)=""/176, 0xb0}], 0x8, &(0x7f00000036c0)=""/4096, 0x1000}, 0x2}, {{&(0x7f00000046c0)=@qipcrtr, 0x80, &(0x7f0000005740)=[{&(0x7f0000004740)=""/4096, 0x1000}], 0x1, &(0x7f0000005780)=""/202, 0xca}, 0x1}, {{&(0x7f0000005880)=@un=@abs, 0x80, &(0x7f0000006c80)=[{&(0x7f0000005900)=""/127, 0x7f}, {&(0x7f0000005980)=""/4096, 0x1000}, {&(0x7f0000006980)=""/189, 0xbd}, {&(0x7f0000006a40)=""/52, 0x34}, {&(0x7f0000006a80)=""/250, 0xfa}, {&(0x7f0000006b80)=""/216, 0xd8}], 0x6}, 0x3ae}, {{&(0x7f0000006d00)=@nl=@unspec, 0xac, &(0x7f0000007040)=[{&(0x7f0000006d80)=""/232, 0xe8}, {&(0x7f0000006e80)=""/161, 0xa1}, {&(0x7f0000006f40)=""/240, 0xf0}], 0x3, &(0x7f0000007080)=""/4096, 0x1000}, 0x8}], 0x8, 0x10001, &(0x7f0000008280)={0x0, 0x989680}) (async)
r5 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c) (async)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)

03:15:17 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x21}, @void, {@ipv4={0x800, @dccp={{0xd, 0x4, 0x1, 0x13, 0x44, 0x64, 0x0, 0x6, 0x21, 0x0, @local, @empty, {[@ssrr={0x89, 0x13, 0x37, [@multicast1, @multicast2, @broadcast, @remote]}, @lsrr={0x83, 0x7, 0x53, [@local]}, @ra={0x94, 0x4}]}}, {{0x4e24, 0x4e21, 0x4, 0x1, 0x4, 0x0, 0x0, 0x5, 0x5, "e2bd09", 0x3, "3569bb"}}}}}}, &(0x7f0000000100)={0x0, 0x1, [0xf2d, 0x7e3, 0x7bd, 0x70d]})
syz_emit_ethernet(0x23, &(0x7f0000000000)={@broadcast, @multicast, @void, {@mpls_mc={0x8848, {[{0x616}, {0x6, 0x0, 0x1}, {0x1, 0x0, 0x1}], @llc={@snap={0x0, 0x1, '\x00\x00', "53c1c3", 0xf7}}}}}}, &(0x7f0000000040)={0x1, 0x3, [0x8be, 0x718, 0x9b6, 0x623]})

03:15:17 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(0xffffffffffffffff, &(0x7f00000000c0)={0x24, @short={0x2, 0x2, 0xaaa3}}, 0x14)
sendmmsg$sock(r0, &(0x7f0000000500)=[{{&(0x7f0000000100)=@xdp={0x2c, 0x4, 0x0, 0x3d}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000180)="ea698b74fbc09c14a8085f5807a185a8d4ad41a0f5eac3cd3ee86fc6c0da855ab59e2a0fde5f46e8492a01ab24806cf1e002cdaee4b2035af0094872fdb8fcf3b6322ba6e2144a55990bd7b20e90118d0b283f8bdad7896ada31aac7dbf1ede844", 0x61}, {&(0x7f0000000200)="17666fdcba247a96f639f198d1975906b4e068f9512bb6758f7b40d7f630d60f57fa72f60255a86ce6f705c517a3b29118406201b962d0474ed9da2f2bcf9a75488c5de88d368895313eb0b17cdf7e591aca1298bb7d3ae2e94e1e80017bb3fb9cb92d738df912b6cbadacf55321c66c11f312b3dcd77e054254bc86576c62ac486f1b77009b", 0x86}, {&(0x7f00000002c0)="fa260b6d9a118812cfb6e7aca192a175c31724a524fa93255b7f9111197a4d67b8078f833f689cbd5005ef3fdc369bd646d2bffcba7f102401d616e619d6f6d3eda7b74395b6ee8a991f52b280326d58d866a19ff941e1d1c1745d0283c5abf4b0d95d65a0760b3a86d98c7b2cd22d81c10760", 0x73}, {&(0x7f0000000340)="9ef3a2adae3c2242faa08c6097d76db8ea45ecf0753ad5a43b87add9593860b9472595524d8aa79e8f41e2352c5c59b23da74016f9d2c23cdcdefa9d0e1ddccd3978d8867a833d7a8978bac4f13a5f75f872c92522a19301e29d7b4a30ae8fdd13c5ab08336b168a8751f5eedded727f2f02b718f01e353e66167bbf000204", 0x7f}, {&(0x7f0000000080)="066637a15beb6d2fa4bd0e50eccbaa32642c872332c0594c97dbc98a5c19926ebdef0d3e35fb670864", 0x29}, {&(0x7f00000003c0)="b1000560d0ffe152dbbb20bd2a09cb3917863c7d13ef9a284742a0fcd925bf40e81a18fb1d72c9ac48993b15721e3b7905f0782b6d587580096d564f39f623b3d4e0f4adee2e9492e004e44a2d11c4c6f11471cbd79b8294da85d9cf0669dc0d1da87589b76feb97ace902d425e71535017c96498bd5399f3b81c8bbf49eba5c060e9ef928f04256d31a9c473ed6eb5f88009452f295b004aa744b6cef87a8", 0x9f}], 0x6}}], 0x1, 0x40)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000740)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000800)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r1=>r0, @ANYBLOB="00000000000000002e2f66696c02000000000000006184fb6855ffdae9292ae8c32c4931a3f82a30e3c4275848fb9191a674d92fcc8807a43cb0dd67da4cb66c2e735fb8ceececd3777b0e5a14babb1af3220fbbb644dd6c5515a984e33ac1"])
bind$802154_dgram(r1, &(0x7f0000000780)={0x24, @short={0x2, 0x0, 0xaaa0}}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
r2 = socket$inet(0x2, 0x4000000805, 0x0)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
r4 = dup3(r2, r3, 0x0)
sendto$inet(r4, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000025e000)={0x2, [<r5=>0x0, <r6=>0x0]}, &(0x7f0000000000)=0xc)
r7 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000580), 0x80, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, &(0x7f00000005c0)={<r8=>r5, @in6={{0xa, 0x4e21, 0x3, @rand_addr=' \x01\x00', 0x7fff}}, 0x1, 0x1}, &(0x7f0000000680)=0x90)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r7, 0x84, 0x71, &(0x7f00000007c0)={r8, 0x9}, &(0x7f00000006c0)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f000059aff8)={r6}, &(0x7f000034f000)=0x2059b005)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000540)={r6, 0x800}, 0x8)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(0xffffffffffffffff, &(0x7f00000000c0)={0x24, @short={0x2, 0x2, 0xaaa3}}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000000500)=[{{&(0x7f0000000100)=@xdp={0x2c, 0x4, 0x0, 0x3d}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000180)="ea698b74fbc09c14a8085f5807a185a8d4ad41a0f5eac3cd3ee86fc6c0da855ab59e2a0fde5f46e8492a01ab24806cf1e002cdaee4b2035af0094872fdb8fcf3b6322ba6e2144a55990bd7b20e90118d0b283f8bdad7896ada31aac7dbf1ede844", 0x61}, {&(0x7f0000000200)="17666fdcba247a96f639f198d1975906b4e068f9512bb6758f7b40d7f630d60f57fa72f60255a86ce6f705c517a3b29118406201b962d0474ed9da2f2bcf9a75488c5de88d368895313eb0b17cdf7e591aca1298bb7d3ae2e94e1e80017bb3fb9cb92d738df912b6cbadacf55321c66c11f312b3dcd77e054254bc86576c62ac486f1b77009b", 0x86}, {&(0x7f00000002c0)="fa260b6d9a118812cfb6e7aca192a175c31724a524fa93255b7f9111197a4d67b8078f833f689cbd5005ef3fdc369bd646d2bffcba7f102401d616e619d6f6d3eda7b74395b6ee8a991f52b280326d58d866a19ff941e1d1c1745d0283c5abf4b0d95d65a0760b3a86d98c7b2cd22d81c10760", 0x73}, {&(0x7f0000000340)="9ef3a2adae3c2242faa08c6097d76db8ea45ecf0753ad5a43b87add9593860b9472595524d8aa79e8f41e2352c5c59b23da74016f9d2c23cdcdefa9d0e1ddccd3978d8867a833d7a8978bac4f13a5f75f872c92522a19301e29d7b4a30ae8fdd13c5ab08336b168a8751f5eedded727f2f02b718f01e353e66167bbf000204", 0x7f}, {&(0x7f0000000080)="066637a15beb6d2fa4bd0e50eccbaa32642c872332c0594c97dbc98a5c19926ebdef0d3e35fb670864", 0x29}, {&(0x7f00000003c0)="b1000560d0ffe152dbbb20bd2a09cb3917863c7d13ef9a284742a0fcd925bf40e81a18fb1d72c9ac48993b15721e3b7905f0782b6d587580096d564f39f623b3d4e0f4adee2e9492e004e44a2d11c4c6f11471cbd79b8294da85d9cf0669dc0d1da87589b76feb97ace902d425e71535017c96498bd5399f3b81c8bbf49eba5c060e9ef928f04256d31a9c473ed6eb5f88009452f295b004aa744b6cef87a8", 0x9f}], 0x6}}], 0x1, 0x40) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000740)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000800)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66696c02000000000000006184fb6855ffdae9292ae8c32c4931a3f82a30e3c4275848fb9191a674d92fcc8807a43cb0dd67da4cb66c2e735fb8ceececd3777b0e5a14babb1af3220fbbb644dd6c5515a984e33ac1"]) (async)
bind$802154_dgram(r1, &(0x7f0000000780)={0x24, @short={0x2, 0x0, 0xaaa0}}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)
socket$inet(0x2, 0x4000000805, 0x0) (async)
socket$inet_sctp(0x2, 0x5, 0x84) (async)
dup3(r2, r3, 0x0) (async)
sendto$inet(r4, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) (async)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000025e000)={0x2, [0x0, 0x0]}, &(0x7f0000000000)=0xc) (async)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000580), 0x80, 0x0) (async)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, &(0x7f00000005c0)={r5, @in6={{0xa, 0x4e21, 0x3, @rand_addr=' \x01\x00', 0x7fff}}, 0x1, 0x1}, &(0x7f0000000680)=0x90) (async)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r7, 0x84, 0x71, &(0x7f00000007c0)={r8, 0x9}, &(0x7f00000006c0)=0x8) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f000059aff8)={r6}, &(0x7f000034f000)=0x2059b005) (async)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000540)={r6, 0x800}, 0x8) (async)

03:15:17 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r4, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r3, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x8}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x3}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000040)
r5 = accept(r1, 0x0, &(0x7f0000000480))
syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r5)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0109000000000000000012000000080009000200000018000180690002006261746164765f736c6176655f31000008000700c6000000"], 0x3c}}, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r0, 0x800, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xfffffffc}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x8d0}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r6}, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000340), r6)
syz_emit_ethernet(0xdb, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @void, {@generic={0x8847, "7401de9aa87b1707118fe084a0052797bd401b33f2e551b88714798c5c55c386352e7177037953acd68e1521f056c2e81cfc6676a72930560504b868c04f9b7e0c7a533874bd25439c8608115ebbe2eebd4ff99f86bbe8ab2f0b5a229d41ea415cc72e36ac3f8a1dfa9084faa3279ceb2d1d7d17f12bfa954aae2fb6026c97aa69e47a98aaeaef3edf825f696edc8c2260107e20a7228a3af6f98b4ce69ffdb7d2d9cc73b0b55dece3b06342f7c1ead86195ae83d925ec2e81b79a8702ebd0c8722a467187f10bc702d2c2c3c2"}}}, 0x0)

03:15:17 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg(r0, &(0x7f0000000640)=[{{&(0x7f0000000080)=@ax25={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x6}, [@bcast, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a083d117afb4855d1e9329682912a4a7d71d526f0a6cd694103c7d0b516684e57e111f806919c330afe40d7fe61833df38b00ecc7c7e75d9a7f792113ce1beab4a36fbc3203d231c9c21ff749b127d", 0x4f}, {&(0x7f0000000180)="59cb31f89c0964643ebb921c127b3ae356d22308c8cc5b", 0x17}, {&(0x7f00000001c0)="d3156ed882a1fada60c1c30b0747157976ec863e1604cef7380f3509ca42ca10d5643a1e53e903c7018daa847763aee1521ff6ed4919840ce89b6194beecb0cdf2195b395628dbb9c9ee67afd9870e929ce2090c4de800f8b0efaf1cfd6fe507d3a7a07b6cf6f6aec52c9e757e9ed3e4facf433b6f930087fb24c328ae4b67b1ed544c297e1ea131e94fedad4a8dd8b5ee6999fbbccdb7f97564f97b863251b4891797b409d62ac0d47c528fc110988b937dd4", 0xb3}, {&(0x7f0000000340)="b44ed506dc74cb227682a42347408fb7e8239177f033af28805d5d49cc6b10fcc1d4b5354d684b19bb1c1d36e3b27d59ca726d0ee956301aa2efe30ed2adb28594d986df2057dd8b47ef01bfab7f492a445d97a56ca61aa1fab408cc44a512e18385860329c3823a1a0a106f0f72fdfdb8d66094602ceec1f70ea2d61f18e7ef774bd3ecb26a70c8d5652835f10a935da9a396322e6b959f12056591f660e891fd089935f66404c2010b5b9347af2c9179b0556bc89fa3d79ee99ae18163306ae322ec56af98b8c4e9bd7264c605511deeece9d66cce3b83abf8dca2b72dce77ee487781967b", 0xe6}, {&(0x7f0000000280)="bf173863c0887ecf7c8068ef6ea69505ab7e2acb7c9909c1facf53dba3ee76c6f0ab576f43fbd09dc2fb8ac6590c", 0x2e}, {&(0x7f0000000440)="12a89e44f92d4079e1a5b38251cd6283adfc114923911a49c1f3839a47d112f22e238684364f707a26f26b07e95a83cc0188b5aaca04f59e455c7330945b96995686a52a9069aaad765ad61c8b2720e1cd", 0x51}], 0x6, &(0x7f0000000540)=[{0xe0, 0x1, 0xca8, "1b59a9f8c1d91484b0fc4dee3593201fbd463041bba9446ff616cfaf8368823bb02bedea30ccab5efe8a29aa53e61bd4697801e26c5ec95d41feac1a3b77f7e2d25eb4fb89b1bf8a7492e26ee8744dd500d54d3331e4b096db27fc67a53bdc6952101fd629d6874b6b2abaec509d1137dc0e56a931b836de306f020dafcba12044b1a889777f6c3085edde8c9dd9521ea5377390b786276ec95941c15bc1bfef92dfd7fc5898e6bfb374a4737cb5a65fd21d639b5e2ac9cf52fe102a8351ed47f8ce16db8a90adba6f09cc99859c"}], 0xe0}}], 0x1, 0x4004080) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:17 executing program 1:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000040), 0x4)
getsockopt$WPAN_WANTACK(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0202}}}, 0x14)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840), 0x802, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
sendfile(r2, r1, 0x0, 0x7ffff002)
preadv(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x400015, 0x988a)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
ioctl$TIOCL_UNBLANKSCREEN(0xffffffffffffffff, 0x541c, &(0x7f0000000280))
sendmsg$NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000), 0xc, 0x0}, 0xd0)
perf_event_open(&(0x7f00000008c0)={0x1, 0x80, 0x0, 0x30, 0x0, 0x3, 0x0, 0x7f, 0x800, 0x6, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xb64d, 0x4, @perf_config_ext={0x5, 0x3f}, 0x18040, 0x0, 0x0, 0x4, 0x0, 0x6, 0x63, 0x0, 0x7a, 0x0, 0x8}, 0x0, 0xb, 0xffffffffffffffff, 0x2)
dup2(r1, r2)
getpgid(0xffffffffffffffff)
ioctl$BTRFS_IOC_DEV_REPLACE(0xffffffffffffffff, 0xca289435, &(0x7f00000004c0)={0x0, 0x0, @start={0x0, 0x0, "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", "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"}, [0x0, 0x0, 0x20, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8001, 0x3f, 0x0, 0x200fff, 0x21d, 0x200, 0x70b, 0x9, 0x7ff, 0x0, 0x0, 0x200, 0x7, 0x0, 0x1, 0x0, 0x0, 0xcff, 0x0, 0x9, 0x0, 0xaf1, 0x2, 0x0, 0x7, 0x0, 0x9, 0x8000000000, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffbff, 0x0, 0x5, 0x0, 0x0, 0x0, 0x601d5d9f, 0xedd, 0x0, 0x0, 0x1, 0x0, 0xa9, 0x1, 0x0, 0xffff, 0xa, 0x2, 0xf5]})
perf_event_open(0x0, 0x0, 0x0, r1, 0x2)

03:15:17 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x21}, @void, {@ipv4={0x800, @dccp={{0xd, 0x4, 0x1, 0x13, 0x44, 0x64, 0x0, 0x6, 0x21, 0x0, @local, @empty, {[@ssrr={0x89, 0x13, 0x37, [@multicast1, @multicast2, @broadcast, @remote]}, @lsrr={0x83, 0x7, 0x53, [@local]}, @ra={0x94, 0x4}]}}, {{0x4e24, 0x4e21, 0x4, 0x1, 0x4, 0x0, 0x0, 0x5, 0x5, "e2bd09", 0x3, "3569bb"}}}}}}, &(0x7f0000000100)={0x0, 0x1, [0xf2d, 0x7e3, 0x7bd, 0x70d]})
syz_emit_ethernet(0x23, &(0x7f0000000000)={@broadcast, @multicast, @void, {@mpls_mc={0x8848, {[{0x616}, {0x6, 0x0, 0x1}, {0x1, 0x0, 0x1}], @llc={@snap={0x0, 0x1, '\x00\x00', "53c1c3", 0xf7}}}}}}, &(0x7f0000000040)={0x1, 0x3, [0x8be, 0x718, 0x9b6, 0x623]})

03:15:18 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg(r0, &(0x7f0000000640)=[{{&(0x7f0000000080)=@ax25={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x6}, [@bcast, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a083d117afb4855d1e9329682912a4a7d71d526f0a6cd694103c7d0b516684e57e111f806919c330afe40d7fe61833df38b00ecc7c7e75d9a7f792113ce1beab4a36fbc3203d231c9c21ff749b127d", 0x4f}, {&(0x7f0000000180)="59cb31f89c0964643ebb921c127b3ae356d22308c8cc5b", 0x17}, {&(0x7f00000001c0)="d3156ed882a1fada60c1c30b0747157976ec863e1604cef7380f3509ca42ca10d5643a1e53e903c7018daa847763aee1521ff6ed4919840ce89b6194beecb0cdf2195b395628dbb9c9ee67afd9870e929ce2090c4de800f8b0efaf1cfd6fe507d3a7a07b6cf6f6aec52c9e757e9ed3e4facf433b6f930087fb24c328ae4b67b1ed544c297e1ea131e94fedad4a8dd8b5ee6999fbbccdb7f97564f97b863251b4891797b409d62ac0d47c528fc110988b937dd4", 0xb3}, {&(0x7f0000000340)="b44ed506dc74cb227682a42347408fb7e8239177f033af28805d5d49cc6b10fcc1d4b5354d684b19bb1c1d36e3b27d59ca726d0ee956301aa2efe30ed2adb28594d986df2057dd8b47ef01bfab7f492a445d97a56ca61aa1fab408cc44a512e18385860329c3823a1a0a106f0f72fdfdb8d66094602ceec1f70ea2d61f18e7ef774bd3ecb26a70c8d5652835f10a935da9a396322e6b959f12056591f660e891fd089935f66404c2010b5b9347af2c9179b0556bc89fa3d79ee99ae18163306ae322ec56af98b8c4e9bd7264c605511deeece9d66cce3b83abf8dca2b72dce77ee487781967b", 0xe6}, {&(0x7f0000000280)="bf173863c0887ecf7c8068ef6ea69505ab7e2acb7c9909c1facf53dba3ee76c6f0ab576f43fbd09dc2fb8ac6590c", 0x2e}, {&(0x7f0000000440)="12a89e44f92d4079e1a5b38251cd6283adfc114923911a49c1f3839a47d112f22e238684364f707a26f26b07e95a83cc0188b5aaca04f59e455c7330945b96995686a52a9069aaad765ad61c8b2720e1cd", 0x51}], 0x6, &(0x7f0000000540)=[{0xe0, 0x1, 0xca8, "1b59a9f8c1d91484b0fc4dee3593201fbd463041bba9446ff616cfaf8368823bb02bedea30ccab5efe8a29aa53e61bd4697801e26c5ec95d41feac1a3b77f7e2d25eb4fb89b1bf8a7492e26ee8744dd500d54d3331e4b096db27fc67a53bdc6952101fd629d6874b6b2abaec509d1137dc0e56a931b836de306f020dafcba12044b1a889777f6c3085edde8c9dd9521ea5377390b786276ec95941c15bc1bfef92dfd7fc5898e6bfb374a4737cb5a65fd21d639b5e2ac9cf52fe102a8351ed47f8ce16db8a90adba6f09cc99859c"}], 0xe0}}], 0x1, 0x4004080) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1214.850350][ T5096] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:18 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x21}, @void, {@ipv4={0x800, @dccp={{0xd, 0x4, 0x1, 0x13, 0x44, 0x64, 0x0, 0x6, 0x21, 0x0, @local, @empty, {[@ssrr={0x89, 0x13, 0x37, [@multicast1, @multicast2, @broadcast, @remote]}, @lsrr={0x83, 0x7, 0x53, [@local]}, @ra={0x94, 0x4}]}}, {{0x4e24, 0x4e21, 0x4, 0x1, 0x4, 0x0, 0x0, 0x5, 0x5, "e2bd09", 0x3, "3569bb"}}}}}}, &(0x7f0000000100)={0x0, 0x1, [0xf2d, 0x7e3, 0x7bd, 0x70d]})
syz_emit_ethernet(0x23, &(0x7f0000000000)={@broadcast, @multicast, @void, {@mpls_mc={0x8848, {[{0x616}, {0x6, 0x0, 0x1}, {0x1, 0x0, 0x1}], @llc={@snap={0x0, 0x1, '\x00\x00', "53c1c3", 0xf7}}}}}}, &(0x7f0000000040)={0x1, 0x3, [0x8be, 0x718, 0x9b6, 0x623]})

03:15:18 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ifreq(r1, 0x8946, &(0x7f0000000240)={'wlan1\x00', @ifru_data=&(0x7f0000000200)="1d000000fbabc10a3f8623af50d25c782ebade094c9e1339cd588bb3fb773835"})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1214.921508][ T5102] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:18 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400acda13aa00000000040190780448fd39419e7d0277655d82ad8800ffba4d"], 0x0)
syz_emit_ethernet(0x1fd, &(0x7f0000000240)=ANY=[@ANYBLOB="e0a36ec062710000000000009100400081001c008848000000004b3b01e300650000ff029078e00000010a010101070b2cac1414bbac1414bb442cea7000000000000000000000040000000000000000030000066800000001000007ff000000000000000986480000000206067e4d9b96010967aca88c166a570604de0d050dbf1fb815c45ed9bb296831070d8288a5cfbe6c8ee0ea90f8060a6c4ed92edd367829050bb5f45fbb96ffb744c34444c143e0000042800000006401010000001d1c7f000001000001ffac1414bb00000329ffffffff00000004e000000200000003ac1e0001000000800000000000000000072322e00000010a010101e0000002e00000010a010100ac1414217f000001ac1414aa071ff1ffffffff0a01010064010101ac14142fffffffff7f0000010a010100444412c1ac14141300000004ac14144400000002ac141443000000bd7f000001001400050000000000000004ac14141c00000005ac14140c000000097f00000100000007070f0ce0000001ffffffffac1414bb12029078e00000011c9c03f27ab9a0283ceb6963cfc07e65d508696d863ba10732e82692f85ebf5e537c27837aa37c20c0dd3b79a2bf587b4a897d55723239bb0503406393cb4907058d04d039d8913237dbc689846075208637c2a0582a9b2985a97ba4f5845d9a8b709b8e4c24194de1440d075a633a"], 0x0)
syz_emit_ethernet(0x105, &(0x7f0000000440)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @val={@val={0x9100, 0x5, 0x0, 0x4}, {0x8100, 0x6, 0x0, 0x1}}, {@llc={0x4, {@snap={0x1, 0xaa, "3a16", "ec2b4c", 0x8, "d2e7d945d436538f31d53ecf2b14fd79c16c991f9ccb225073f85624c03c1405d9a52280941b4f22098907cf59a836e55b0ed8144b3af4b2f6adb8fe1189d0a2444504e41fb729c3593edd4f0e25d99e24a8c238252e09267c61af93982aac2560d5bc606a7f3eab11022b40674814e6321be236397cd805a1ac137ee5b7bd421cb852756c555d1a322aed957ac02faf80bb9ebc3378e2305678571a7e7b407fed3727566183002ecdb783b069195f9d6a965c2244d935b4b00940a684f78029338a656095d63f44e7b90872a7c4819874dabb4f4415859d9dc9ba4809fa1d3cbf2661cb02f4"}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000680)={@multicast, @multicast, @val={@val={0x9100, 0x7, 0x1, 0x1}, {0x8100, 0x4, 0x1, 0x5}}, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x2, @empty, @private1={0xfc, 0x1, '\x00', 0x1}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @dev={0xfe, 0x80, '\x00', 0x21}}}}}, &(0x7f0000000140)={0x4, 0x3, [0x6d3, 0x946, 0xa79, 0x1d6]})
syz_emit_ethernet(0x84, &(0x7f0000000180)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @link_local, @val={@val={0x9100, 0x3, 0x0, 0x3}, {0x8100, 0x5, 0x0, 0x3}}, {@mpls_uc={0x8847, {[{0x5}, {0x2}, {0x8}, {0xffff, 0x0, 0x1}, {0x4}], @generic="b94ae5a69ead3e79d69fa67498f9a1462c8f34f1aa60699e423afa9934a40088d9e3bc2051253498bec171e6d713423f2e81285199d8b1196bcb94110859aad2dd9e079d8fa055a1942fa2c400"/90}}}}, &(0x7f0000000580)={0x0, 0x2, [0xc70, 0xce7, 0xc71, 0x2b0]})
syz_emit_ethernet(0x4f, &(0x7f0000000740)={@broadcast, @empty, @void, {@x25={0x805, {0x3, 0x1f, 0x0, "eb920254f02964bbd6ed00090e1868a778505c86bcf9a4d1fbb4b4409b63a676359fcb67061f79e68bd75d8374ba99bb23c6f1c7dd768c639e48025dfcdd"}}}}, &(0x7f00000007c0)={0x0, 0x2, [0x627, 0xd, 0xf61, 0x135]})
syz_emit_ethernet(0x5b, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaabbaaaaaaaaaaaafb753e91803900810033000011a9ab9efdffb26001192818e4b833157a54baa5671732ac9c170e4682c7783c269f2cb4d463298778cd83a95014c089d32fd5c3d03ead782890be5757e4868bf89a6c"], &(0x7f0000000040)={0x0, 0x4, [0xed6, 0xb71, 0xec4, 0x835]})
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@broadcast, @remote, @void, {@llc={0x4, {@llc={0xd4, 0xe, "d2", "3690f6a70f53450e90dc038294cae73e37214a5fcb1cbd29d7"}}}}}, &(0x7f0000000700)={0x0, 0x2, [0xb55, 0xf99, 0x6a9, 0xf4d]})
syz_emit_ethernet(0x5a, &(0x7f00000005c0)={@random="923b1a38de36", @local, @val={@void, {0x8100, 0x5, 0x0, 0x2}}, {@canfd={0xd, {{0x2, 0x0, 0x1, 0x1}, 0x1d, 0x1, 0x0, 0x0, "c47e3ca8abaa0f1f17056db280f5b66b1bb956f99dff221dd238fae6db90269c60cc9a086b028a685bc98bdd76dcde427352584e622ed6edb05af5b9ae7f3fe4"}}}}, &(0x7f0000000640)={0x1, 0x1, [0xb53, 0xfae, 0x79a, 0x71b]})

03:15:18 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = mq_open(&(0x7f0000000040)='^.+-\x00', 0x40, 0x0, &(0x7f0000000080)={0x3, 0x0, 0x100000001, 0x1})
ftruncate(r1, 0x100000001)
sendmmsg$sock(r0, &(0x7f00000000c0), 0x0, 0x0)

03:15:18 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ifreq(r1, 0x8946, &(0x7f0000000240)={'wlan1\x00', @ifru_data=&(0x7f0000000200)="1d000000fbabc10a3f8623af50d25c782ebade094c9e1339cd588bb3fb773835"})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:18 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r4, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r3, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x8}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x3}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000040)
r5 = accept(r1, 0x0, &(0x7f0000000480))
syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r5)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0109000000000000000012000000080009000200000018000180690002006261746164765f736c6176655f31000008000700c6000000"], 0x3c}}, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r0, 0x800, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xfffffffc}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x8d0}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r6}, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000340), r6)
syz_emit_ethernet(0xdb, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @void, {@generic={0x8847, "7401de9aa87b1707118fe084a0052797bd401b33f2e551b88714798c5c55c386352e7177037953acd68e1521f056c2e81cfc6676a72930560504b868c04f9b7e0c7a533874bd25439c8608115ebbe2eebd4ff99f86bbe8ab2f0b5a229d41ea415cc72e36ac3f8a1dfa9084faa3279ceb2d1d7d17f12bfa954aae2fb6026c97aa69e47a98aaeaef3edf825f696edc8c2260107e20a7228a3af6f98b4ce69ffdb7d2d9cc73b0b55dece3b06342f7c1ead86195ae83d925ec2e81b79a8702ebd0c8722a467187f10bc702d2c2c3c2"}}}, 0x0)

03:15:18 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x714}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f000000aa40)={0x2, 0x9, {<r1=>r0}, {}, 0x18, 0xffffffffffffffff})
sched_setattr(r1, &(0x7f0000000100)={0x38, 0x6, 0x40, 0x6bb, 0x5b9, 0xd782, 0x1cb7, 0x7, 0x7}, 0x0)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_getattr(r1, &(0x7f000000aa00)={0x38}, 0x38, 0x0)
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r4}, 0x10)
recvmmsg(r4, &(0x7f000000a940)=[{{&(0x7f00000082c0)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000085c0)=[{&(0x7f0000008340)=""/242, 0xf2}, {&(0x7f0000008440)=""/152, 0x98}, {&(0x7f0000008500)=""/142, 0x8e}], 0x3, &(0x7f0000008600)=""/25, 0x19}, 0x5}, {{&(0x7f0000008640)=@alg, 0x80, &(0x7f0000009740)=[{&(0x7f00000086c0)=""/102, 0x66}, {&(0x7f0000008740)=""/4096, 0x1000}], 0x2, &(0x7f0000009780)=""/56, 0x38}, 0x3}, {{&(0x7f00000097c0)=@nfc_llcp, 0x80, &(0x7f0000009900)=[{&(0x7f0000009840)=""/147, 0x93}], 0x1, &(0x7f0000009940)=""/4096, 0x1000}, 0x1}], 0x3, 0x2040, 0x0)
wait4(0x0, &(0x7f0000000040), 0x1, &(0x7f00000002c0))
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(r2, &(0x7f0000008080)=[{{&(0x7f0000000380)=@nfc, 0x80, &(0x7f0000000240)=[{&(0x7f0000000400)=""/240, 0xf0}, {&(0x7f000000aa80)=""/229, 0xe5}, {&(0x7f0000000600)=""/146, 0x92}, {&(0x7f00000006c0)=""/187, 0xbb}], 0x4, &(0x7f0000000780)=""/4096, 0x1000}, 0x30}, {{&(0x7f0000001780)=@generic, 0x80, &(0x7f0000001a40)=[{&(0x7f0000000500)=""/87, 0x57}, {&(0x7f0000001880)=""/109, 0x6d}, {&(0x7f0000001900)=""/22, 0x16}, {&(0x7f0000001940)=""/96, 0x60}, {&(0x7f00000019c0)=""/107, 0x6b}], 0x5}, 0x3ff}, {{0x0, 0x0, &(0x7f0000001bc0)=[{&(0x7f0000001ac0)=""/27, 0x1b}, {&(0x7f0000001b00)=""/129, 0x81}], 0x2, &(0x7f0000001c00)=""/203, 0xcb}, 0x228}, {{0x0, 0x0, &(0x7f0000002f00)=[{&(0x7f0000001d00)=""/183, 0xb7}, {&(0x7f0000001dc0)=""/4096, 0x1000}, {&(0x7f0000002dc0)=""/43, 0x2b}, {&(0x7f0000002e00)=""/194, 0xc2}], 0x4, &(0x7f0000002f40)=""/135, 0x87}, 0x6}, {{&(0x7f0000003000)=@in={0x2, 0x0, @initdev}, 0x80, &(0x7f0000003640)=[{&(0x7f0000003080)=""/247, 0xf7}, {&(0x7f0000003180)=""/204, 0xcc}, {&(0x7f0000003280)=""/163, 0xa3}, {&(0x7f0000003340)=""/62, 0x3e}, {&(0x7f0000003380)=""/110, 0x6e}, {&(0x7f0000003400)=""/222, 0xde}, {&(0x7f0000003500)=""/80, 0x50}, {&(0x7f0000003580)=""/176, 0xb0}], 0x8, &(0x7f00000036c0)=""/4096, 0x1000}, 0x2}, {{&(0x7f00000046c0)=@qipcrtr, 0x80, &(0x7f0000005740)=[{&(0x7f0000004740)=""/4096, 0x1000}], 0x1, &(0x7f0000005780)=""/202, 0xca}, 0x1}, {{&(0x7f0000005880)=@un=@abs, 0x80, &(0x7f0000006c80)=[{&(0x7f0000005900)=""/127, 0x7f}, {&(0x7f0000005980)=""/4096, 0x1000}, {&(0x7f0000006980)=""/189, 0xbd}, {&(0x7f0000006a40)=""/52, 0x34}, {&(0x7f0000006a80)=""/250, 0xfa}, {&(0x7f0000006b80)=""/216, 0xd8}], 0x6}, 0x3ae}, {{&(0x7f0000006d00)=@nl=@unspec, 0xac, &(0x7f0000007040)=[{&(0x7f0000006d80)=""/232, 0xe8}, {&(0x7f0000006e80)=""/161, 0xa1}, {&(0x7f0000006f40)=""/240, 0xf0}], 0x3, &(0x7f0000007080)=""/4096, 0x1000}, 0x8}], 0x8, 0x10001, &(0x7f0000008280)={0x0, 0x989680})
r5 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x714}, 0x0) (async)
getpid() (async)
sched_setaffinity(0x0, 0x0, 0x0) (async)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f000000aa40)={0x2, 0x9, {r0}, {}, 0x18, 0xffffffffffffffff}) (async)
sched_setattr(r1, &(0x7f0000000100)={0x38, 0x6, 0x40, 0x6bb, 0x5b9, 0xd782, 0x1cb7, 0x7, 0x7}, 0x0) (async)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
sched_getattr(r1, &(0x7f000000aa00)={0x38}, 0x38, 0x0) (async)
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) (async)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r4}, 0x10) (async)
recvmmsg(r4, &(0x7f000000a940)=[{{&(0x7f00000082c0)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000085c0)=[{&(0x7f0000008340)=""/242, 0xf2}, {&(0x7f0000008440)=""/152, 0x98}, {&(0x7f0000008500)=""/142, 0x8e}], 0x3, &(0x7f0000008600)=""/25, 0x19}, 0x5}, {{&(0x7f0000008640)=@alg, 0x80, &(0x7f0000009740)=[{&(0x7f00000086c0)=""/102, 0x66}, {&(0x7f0000008740)=""/4096, 0x1000}], 0x2, &(0x7f0000009780)=""/56, 0x38}, 0x3}, {{&(0x7f00000097c0)=@nfc_llcp, 0x80, &(0x7f0000009900)=[{&(0x7f0000009840)=""/147, 0x93}], 0x1, &(0x7f0000009940)=""/4096, 0x1000}, 0x1}], 0x3, 0x2040, 0x0) (async)
wait4(0x0, &(0x7f0000000040), 0x1, &(0x7f00000002c0)) (async)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
recvmmsg(r2, &(0x7f0000008080)=[{{&(0x7f0000000380)=@nfc, 0x80, &(0x7f0000000240)=[{&(0x7f0000000400)=""/240, 0xf0}, {&(0x7f000000aa80)=""/229, 0xe5}, {&(0x7f0000000600)=""/146, 0x92}, {&(0x7f00000006c0)=""/187, 0xbb}], 0x4, &(0x7f0000000780)=""/4096, 0x1000}, 0x30}, {{&(0x7f0000001780)=@generic, 0x80, &(0x7f0000001a40)=[{&(0x7f0000000500)=""/87, 0x57}, {&(0x7f0000001880)=""/109, 0x6d}, {&(0x7f0000001900)=""/22, 0x16}, {&(0x7f0000001940)=""/96, 0x60}, {&(0x7f00000019c0)=""/107, 0x6b}], 0x5}, 0x3ff}, {{0x0, 0x0, &(0x7f0000001bc0)=[{&(0x7f0000001ac0)=""/27, 0x1b}, {&(0x7f0000001b00)=""/129, 0x81}], 0x2, &(0x7f0000001c00)=""/203, 0xcb}, 0x228}, {{0x0, 0x0, &(0x7f0000002f00)=[{&(0x7f0000001d00)=""/183, 0xb7}, {&(0x7f0000001dc0)=""/4096, 0x1000}, {&(0x7f0000002dc0)=""/43, 0x2b}, {&(0x7f0000002e00)=""/194, 0xc2}], 0x4, &(0x7f0000002f40)=""/135, 0x87}, 0x6}, {{&(0x7f0000003000)=@in={0x2, 0x0, @initdev}, 0x80, &(0x7f0000003640)=[{&(0x7f0000003080)=""/247, 0xf7}, {&(0x7f0000003180)=""/204, 0xcc}, {&(0x7f0000003280)=""/163, 0xa3}, {&(0x7f0000003340)=""/62, 0x3e}, {&(0x7f0000003380)=""/110, 0x6e}, {&(0x7f0000003400)=""/222, 0xde}, {&(0x7f0000003500)=""/80, 0x50}, {&(0x7f0000003580)=""/176, 0xb0}], 0x8, &(0x7f00000036c0)=""/4096, 0x1000}, 0x2}, {{&(0x7f00000046c0)=@qipcrtr, 0x80, &(0x7f0000005740)=[{&(0x7f0000004740)=""/4096, 0x1000}], 0x1, &(0x7f0000005780)=""/202, 0xca}, 0x1}, {{&(0x7f0000005880)=@un=@abs, 0x80, &(0x7f0000006c80)=[{&(0x7f0000005900)=""/127, 0x7f}, {&(0x7f0000005980)=""/4096, 0x1000}, {&(0x7f0000006980)=""/189, 0xbd}, {&(0x7f0000006a40)=""/52, 0x34}, {&(0x7f0000006a80)=""/250, 0xfa}, {&(0x7f0000006b80)=""/216, 0xd8}], 0x6}, 0x3ae}, {{&(0x7f0000006d00)=@nl=@unspec, 0xac, &(0x7f0000007040)=[{&(0x7f0000006d80)=""/232, 0xe8}, {&(0x7f0000006e80)=""/161, 0xa1}, {&(0x7f0000006f40)=""/240, 0xf0}], 0x3, &(0x7f0000007080)=""/4096, 0x1000}, 0x8}], 0x8, 0x10001, &(0x7f0000008280)={0x0, 0x989680}) (async)
socket$inet6(0xa, 0x1, 0x8010000000000084) (async)
bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c) (async)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c) (async)

03:15:18 executing program 1:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000040), 0x4)
getsockopt$WPAN_WANTACK(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0202}}}, 0x14)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840), 0x802, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
sendfile(r2, r1, 0x0, 0x7ffff002)
preadv(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x400015, 0x988a)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
ioctl$TIOCL_UNBLANKSCREEN(0xffffffffffffffff, 0x541c, &(0x7f0000000280))
sendmsg$NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000), 0xc, 0x0}, 0xd0)
perf_event_open(&(0x7f00000008c0)={0x1, 0x80, 0x0, 0x30, 0x0, 0x3, 0x0, 0x7f, 0x800, 0x6, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xb64d, 0x4, @perf_config_ext={0x5, 0x3f}, 0x18040, 0x0, 0x0, 0x4, 0x0, 0x6, 0x63, 0x0, 0x7a, 0x0, 0x8}, 0x0, 0xb, 0xffffffffffffffff, 0x2)
dup2(r1, r2)
getpgid(0xffffffffffffffff)
ioctl$BTRFS_IOC_DEV_REPLACE(0xffffffffffffffff, 0xca289435, &(0x7f00000004c0)={0x0, 0x0, @start={0x0, 0x0, "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", "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"}, [0x0, 0x0, 0x20, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8001, 0x3f, 0x0, 0x200fff, 0x21d, 0x200, 0x70b, 0x9, 0x7ff, 0x0, 0x0, 0x200, 0x7, 0x0, 0x1, 0x0, 0x0, 0xcff, 0x0, 0x9, 0x0, 0xaf1, 0x2, 0x0, 0x7, 0x0, 0x9, 0x8000000000, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffbff, 0x0, 0x5, 0x0, 0x0, 0x0, 0x601d5d9f, 0xedd, 0x0, 0x0, 0x1, 0x0, 0xa9, 0x1, 0x0, 0xffff, 0xa, 0x2, 0xf5]})
perf_event_open(0x0, 0x0, 0x0, r1, 0x2)

03:15:18 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
r1 = mq_open(&(0x7f0000000040)='^.+-\x00', 0x40, 0x0, &(0x7f0000000080)={0x3, 0x0, 0x100000001, 0x1})
ftruncate(r1, 0x100000001) (async)
sendmmsg$sock(r0, &(0x7f00000000c0), 0x0, 0x0)

03:15:18 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400acda13aa00000000040190780448fd39419e7d0277655d82ad8800ffba4d"], 0x0) (async, rerun: 64)
syz_emit_ethernet(0x1fd, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x0) (async, rerun: 64)
syz_emit_ethernet(0x105, &(0x7f0000000440)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @val={@val={0x9100, 0x5, 0x0, 0x4}, {0x8100, 0x6, 0x0, 0x1}}, {@llc={0x4, {@snap={0x1, 0xaa, "3a16", "ec2b4c", 0x8, "d2e7d945d436538f31d53ecf2b14fd79c16c991f9ccb225073f85624c03c1405d9a52280941b4f22098907cf59a836e55b0ed8144b3af4b2f6adb8fe1189d0a2444504e41fb729c3593edd4f0e25d99e24a8c238252e09267c61af93982aac2560d5bc606a7f3eab11022b40674814e6321be236397cd805a1ac137ee5b7bd421cb852756c555d1a322aed957ac02faf80bb9ebc3378e2305678571a7e7b407fed3727566183002ecdb783b069195f9d6a965c2244d935b4b00940a684f78029338a656095d63f44e7b90872a7c4819874dabb4f4415859d9dc9ba4809fa1d3cbf2661cb02f4"}}}}}, 0x0) (async, rerun: 64)
syz_emit_ethernet(0x4a, &(0x7f0000000680)={@multicast, @multicast, @val={@val={0x9100, 0x7, 0x1, 0x1}, {0x8100, 0x4, 0x1, 0x5}}, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x2, @empty, @private1={0xfc, 0x1, '\x00', 0x1}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @dev={0xfe, 0x80, '\x00', 0x21}}}}}, &(0x7f0000000140)={0x4, 0x3, [0x6d3, 0x946, 0xa79, 0x1d6]}) (async, rerun: 64)
syz_emit_ethernet(0x84, &(0x7f0000000180)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @link_local, @val={@val={0x9100, 0x3, 0x0, 0x3}, {0x8100, 0x5, 0x0, 0x3}}, {@mpls_uc={0x8847, {[{0x5}, {0x2}, {0x8}, {0xffff, 0x0, 0x1}, {0x4}], @generic="b94ae5a69ead3e79d69fa67498f9a1462c8f34f1aa60699e423afa9934a40088d9e3bc2051253498bec171e6d713423f2e81285199d8b1196bcb94110859aad2dd9e079d8fa055a1942fa2c400"/90}}}}, &(0x7f0000000580)={0x0, 0x2, [0xc70, 0xce7, 0xc71, 0x2b0]})
syz_emit_ethernet(0x4f, &(0x7f0000000740)={@broadcast, @empty, @void, {@x25={0x805, {0x3, 0x1f, 0x0, "eb920254f02964bbd6ed00090e1868a778505c86bcf9a4d1fbb4b4409b63a676359fcb67061f79e68bd75d8374ba99bb23c6f1c7dd768c639e48025dfcdd"}}}}, &(0x7f00000007c0)={0x0, 0x2, [0x627, 0xd, 0xf61, 0x135]})
syz_emit_ethernet(0x5b, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaabbaaaaaaaaaaaafb753e91803900810033000011a9ab9efdffb26001192818e4b833157a54baa5671732ac9c170e4682c7783c269f2cb4d463298778cd83a95014c089d32fd5c3d03ead782890be5757e4868bf89a6c"], &(0x7f0000000040)={0x0, 0x4, [0xed6, 0xb71, 0xec4, 0x835]})
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@broadcast, @remote, @void, {@llc={0x4, {@llc={0xd4, 0xe, "d2", "3690f6a70f53450e90dc038294cae73e37214a5fcb1cbd29d7"}}}}}, &(0x7f0000000700)={0x0, 0x2, [0xb55, 0xf99, 0x6a9, 0xf4d]})
syz_emit_ethernet(0x5a, &(0x7f00000005c0)={@random="923b1a38de36", @local, @val={@void, {0x8100, 0x5, 0x0, 0x2}}, {@canfd={0xd, {{0x2, 0x0, 0x1, 0x1}, 0x1d, 0x1, 0x0, 0x0, "c47e3ca8abaa0f1f17056db280f5b66b1bb956f99dff221dd238fae6db90269c60cc9a086b028a685bc98bdd76dcde427352584e622ed6edb05af5b9ae7f3fe4"}}}}, &(0x7f0000000640)={0x1, 0x1, [0xb53, 0xfae, 0x79a, 0x71b]})

03:15:18 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = mq_open(&(0x7f0000000040)='^.+-\x00', 0x40, 0x0, &(0x7f0000000080)={0x3, 0x0, 0x100000001, 0x1})
ftruncate(r1, 0x100000001)
sendmmsg$sock(r0, &(0x7f00000000c0), 0x0, 0x0)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
mq_open(&(0x7f0000000040)='^.+-\x00', 0x40, 0x0, &(0x7f0000000080)={0x3, 0x0, 0x100000001, 0x1}) (async)
ftruncate(r1, 0x100000001) (async)
sendmmsg$sock(r0, &(0x7f00000000c0), 0x0, 0x0) (async)

03:15:18 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400acda13aa00000000040190780448fd39419e7d0277655d82ad8800ffba4d"], 0x0)
syz_emit_ethernet(0x1fd, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x105, &(0x7f0000000440)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @val={@val={0x9100, 0x5, 0x0, 0x4}, {0x8100, 0x6, 0x0, 0x1}}, {@llc={0x4, {@snap={0x1, 0xaa, "3a16", "ec2b4c", 0x8, "d2e7d945d436538f31d53ecf2b14fd79c16c991f9ccb225073f85624c03c1405d9a52280941b4f22098907cf59a836e55b0ed8144b3af4b2f6adb8fe1189d0a2444504e41fb729c3593edd4f0e25d99e24a8c238252e09267c61af93982aac2560d5bc606a7f3eab11022b40674814e6321be236397cd805a1ac137ee5b7bd421cb852756c555d1a322aed957ac02faf80bb9ebc3378e2305678571a7e7b407fed3727566183002ecdb783b069195f9d6a965c2244d935b4b00940a684f78029338a656095d63f44e7b90872a7c4819874dabb4f4415859d9dc9ba4809fa1d3cbf2661cb02f4"}}}}}, 0x0) (async)
syz_emit_ethernet(0x4a, &(0x7f0000000680)={@multicast, @multicast, @val={@val={0x9100, 0x7, 0x1, 0x1}, {0x8100, 0x4, 0x1, 0x5}}, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x2, @empty, @private1={0xfc, 0x1, '\x00', 0x1}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @dev={0xfe, 0x80, '\x00', 0x21}}}}}, &(0x7f0000000140)={0x4, 0x3, [0x6d3, 0x946, 0xa79, 0x1d6]})
syz_emit_ethernet(0x84, &(0x7f0000000180)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @link_local, @val={@val={0x9100, 0x3, 0x0, 0x3}, {0x8100, 0x5, 0x0, 0x3}}, {@mpls_uc={0x8847, {[{0x5}, {0x2}, {0x8}, {0xffff, 0x0, 0x1}, {0x4}], @generic="b94ae5a69ead3e79d69fa67498f9a1462c8f34f1aa60699e423afa9934a40088d9e3bc2051253498bec171e6d713423f2e81285199d8b1196bcb94110859aad2dd9e079d8fa055a1942fa2c400"/90}}}}, &(0x7f0000000580)={0x0, 0x2, [0xc70, 0xce7, 0xc71, 0x2b0]}) (async)
syz_emit_ethernet(0x4f, &(0x7f0000000740)={@broadcast, @empty, @void, {@x25={0x805, {0x3, 0x1f, 0x0, "eb920254f02964bbd6ed00090e1868a778505c86bcf9a4d1fbb4b4409b63a676359fcb67061f79e68bd75d8374ba99bb23c6f1c7dd768c639e48025dfcdd"}}}}, &(0x7f00000007c0)={0x0, 0x2, [0x627, 0xd, 0xf61, 0x135]})
syz_emit_ethernet(0x5b, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaabbaaaaaaaaaaaafb753e91803900810033000011a9ab9efdffb26001192818e4b833157a54baa5671732ac9c170e4682c7783c269f2cb4d463298778cd83a95014c089d32fd5c3d03ead782890be5757e4868bf89a6c"], &(0x7f0000000040)={0x0, 0x4, [0xed6, 0xb71, 0xec4, 0x835]})
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@broadcast, @remote, @void, {@llc={0x4, {@llc={0xd4, 0xe, "d2", "3690f6a70f53450e90dc038294cae73e37214a5fcb1cbd29d7"}}}}}, &(0x7f0000000700)={0x0, 0x2, [0xb55, 0xf99, 0x6a9, 0xf4d]}) (async)
syz_emit_ethernet(0x5a, &(0x7f00000005c0)={@random="923b1a38de36", @local, @val={@void, {0x8100, 0x5, 0x0, 0x2}}, {@canfd={0xd, {{0x2, 0x0, 0x1, 0x1}, 0x1d, 0x1, 0x0, 0x0, "c47e3ca8abaa0f1f17056db280f5b66b1bb956f99dff221dd238fae6db90269c60cc9a086b028a685bc98bdd76dcde427352584e622ed6edb05af5b9ae7f3fe4"}}}}, &(0x7f0000000640)={0x1, 0x1, [0xb53, 0xfae, 0x79a, 0x71b]})

[ 1215.747704][ T5137] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:18 executing program 0:
r0 = openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x42, 0x8, 0x2}, 0x18)
sendto$inet(r0, &(0x7f0000000080)="d634128601ee5fa1e5d10d47b0eadd72fd", 0x11, 0x10, &(0x7f00000000c0)={0x2, 0x4e22, @remote}, 0x10)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1215.809317][ T5148] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:19 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_config_ext={0x200}, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:19 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ifreq(r1, 0x8946, &(0x7f0000000240)={'wlan1\x00', @ifru_data=&(0x7f0000000200)="1d000000fbabc10a3f8623af50d25c782ebade094c9e1339cd588bb3fb773835"})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_ifreq(r1, 0x8946, &(0x7f0000000240)={'wlan1\x00', @ifru_data=&(0x7f0000000200)="1d000000fbabc10a3f8623af50d25c782ebade094c9e1339cd588bb3fb773835"}) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)

03:15:19 executing program 0:
r0 = openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x42, 0x8, 0x2}, 0x18)
sendto$inet(r0, &(0x7f0000000080)="d634128601ee5fa1e5d10d47b0eadd72fd", 0x11, 0x10, &(0x7f00000000c0)={0x2, 0x4e22, @remote}, 0x10)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x42, 0x8, 0x2}, 0x18) (async)
sendto$inet(r0, &(0x7f0000000080)="d634128601ee5fa1e5d10d47b0eadd72fd", 0x11, 0x10, &(0x7f00000000c0)={0x2, 0x4e22, @remote}, 0x10) (async)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)

03:15:19 executing program 1:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0xa, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:19 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r4, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r3, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x8}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x3}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000040)
r5 = accept(r1, 0x0, &(0x7f0000000480))
syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r5)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0109000000000000000012000000080009000200000018000180690002006261746164765f736c6176655f31000008000700c6000000"], 0x3c}}, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r0, 0x800, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xfffffffc}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x8d0}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r6}, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000340), r6)

03:15:19 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=<r3=>0x0)
sched_setattr(r3, &(0x7f0000000080)={0x38, 0x2, 0x40, 0x3, 0x4, 0x2bc8, 0x2, 0x9, 0x1, 0x40}, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r5 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x401, 0x2}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r5, 0x0, 0xffffffffffffffff, 0x1)
prlimit64(r3, 0x0, 0x0, &(0x7f00000003c0))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="90000000d777000500bd7000fedbd02507000000b0be925689365d646c8fd00a62782444eba3abf15c313bbafac92f93a2594d0d7fdbe4863178746e8777520951c6e6d5ec5ef0634a6f8315e41d2e24ceabdc31a78d05034d0aef78bfd3f86462", @ANYRES32=0x0, @ANYBLOB="0c000180060002000d000000100001800c00048008000100070000000c00018005000300030000000c00018005000300040000000c000180060002000b0000000c0001800800010061000400100001800c00048008000200110000000c0001800500030000000000100001800c0004800800010000020000"], 0x90}, 0x1, 0x0, 0x0, 0x2800}, 0x4800)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)

03:15:19 executing program 0:
r0 = openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x42, 0x8, 0x2}, 0x18)
sendto$inet(r0, &(0x7f0000000080)="d634128601ee5fa1e5d10d47b0eadd72fd", 0x11, 0x10, &(0x7f00000000c0)={0x2, 0x4e22, @remote}, 0x10)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x42, 0x8, 0x2}, 0x18) (async)
sendto$inet(r0, &(0x7f0000000080)="d634128601ee5fa1e5d10d47b0eadd72fd", 0x11, 0x10, &(0x7f00000000c0)={0x2, 0x4e22, @remote}, 0x10) (async)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)

03:15:19 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_config_ext={0x200}, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:19 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
sendfile(r4, r2, &(0x7f0000000040)=0x5, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)

[ 1216.042500][ T5182] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:19 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
bind$802154_dgram(r1, &(0x7f0000000040)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)

03:15:19 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="88002dbd7000fbdbdf250e00000005002a0000000000050035000100000008002b000900000008003c00090000000a0009004f1c7cab497f00001538da060301560d3bff34bde99b1aace5a13b"], 0x40}, 0x1, 0x0, 0x0, 0x4800}, 0x24004040)

03:15:19 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_config_ext={0x200}, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1216.106966][ T5193] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:19 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r4, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r3, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x8}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x3}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000040)
r5 = accept(r1, 0x0, &(0x7f0000000480))
syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r5)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0109000000000000000012000000080009000200000018000180690002006261746164765f736c6176655f31000008000700c6000000"], 0x3c}}, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r0, 0x800, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xfffffffc}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x8d0}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r6}, 0x10)

03:15:19 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="88002dbd7000fbdbdf250e00000005002a0000000000050035000100000008002b000900000008003c00090000000a0009004f1c7cab497f00001538da060301560d3bff34bde99b1aace5a13b"], 0x40}, 0x1, 0x0, 0x0, 0x4800}, 0x24004040)

03:15:19 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10) (async)
bind$802154_dgram(r1, &(0x7f0000000040)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)

03:15:19 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
sendmmsg$sock(r1, &(0x7f0000002240), 0x0, 0x800)
bind$802154_dgram(r0, &(0x7f0000000080)={0x24, @none={0x0, 0x2}}, 0x14)
r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x111040, 0x0)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x204001, 0x0)
connect$802154_dgram(r3, &(0x7f0000000240)={0x24, @none={0x0, 0x2}}, 0x14)
bind$802154_dgram(r2, &(0x7f0000000100)={0x24, @short={0x2, 0x2, 0xfffe}}, 0x14)

[ 1216.317308][ T5217] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1216.383439][ T5222] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1216.414579][ T5224] Unsupported ieee802154 address type: 0
03:15:20 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="88002dbd7000fbdbdf250e00000005002a0000000000050035000100000008002b000900000008003c00090000000a0009004f1c7cab497f00001538da060301560d3bff34bde99b1aace5a13b"], 0x40}, 0x1, 0x0, 0x0, 0x4800}, 0x24004040)

03:15:20 executing program 5:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
bind$802154_dgram(r1, &(0x7f0000000040)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10) (async)
bind$802154_dgram(r1, &(0x7f0000000040)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)

03:15:20 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r4, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r3, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x8}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x3}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000040)
r5 = accept(r1, 0x0, &(0x7f0000000480))
syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r5)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0109000000000000000012000000080009000200000018000180690002006261746164765f736c6176655f31000008000700c6000000"], 0x3c}}, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r0, 0x800, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xfffffffc}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x8d0}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)

03:15:20 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=<r3=>0x0)
sched_setattr(r3, &(0x7f0000000080)={0x38, 0x2, 0x40, 0x3, 0x4, 0x2bc8, 0x2, 0x9, 0x1, 0x40}, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r5 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x401, 0x2}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r5, 0x0, 0xffffffffffffffff, 0x1)
prlimit64(r3, 0x0, 0x0, &(0x7f00000003c0))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="90000000d777000500bd7000fedbd02507000000b0be925689365d646c8fd00a62782444eba3abf15c313bbafac92f93a2594d0d7fdbe4863178746e8777520951c6e6d5ec5ef0634a6f8315e41d2e24ceabdc31a78d05034d0aef78bfd3f86462", @ANYRES32=0x0, @ANYBLOB="0c000180060002000d000000100001800c00048008000100070000000c00018005000300030000000c00018005000300040000000c000180060002000b0000000c0001800800010061000400100001800c00048008000200110000000c0001800500030000000000100001800c0004800800010000020000"], 0x90}, 0x1, 0x0, 0x0, 0x2800}, 0x4800)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async)
getpid() (async)
sched_setaffinity(0x0, 0x0, 0x0) (async)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) (async)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)) (async)
sched_setattr(r3, &(0x7f0000000080)={0x38, 0x2, 0x40, 0x3, 0x4, 0x2bc8, 0x2, 0x9, 0x1, 0x40}, 0x0) (async)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
socket$inet6(0xa, 0x1, 0x8010000000000084) (async)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c) (async)
getpgid(0xffffffffffffffff) (async)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x401, 0x2}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r5, 0x0, 0xffffffffffffffff, 0x1) (async)
prlimit64(r3, 0x0, 0x0, &(0x7f00000003c0)) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="90000000d777000500bd7000fedbd02507000000b0be925689365d646c8fd00a62782444eba3abf15c313bbafac92f93a2594d0d7fdbe4863178746e8777520951c6e6d5ec5ef0634a6f8315e41d2e24ceabdc31a78d05034d0aef78bfd3f86462", @ANYRES32=0x0, @ANYBLOB="0c000180060002000d000000100001800c00048008000100070000000c00018005000300030000000c00018005000300040000000c000180060002000b0000000c0001800800010061000400100001800c00048008000200110000000c0001800500030000000000100001800c0004800800010000020000"], 0x90}, 0x1, 0x0, 0x0, 0x2800}, 0x4800) (async)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c) (async)

03:15:20 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
sendfile(r4, r2, &(0x7f0000000040)=0x5, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)

03:15:20 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10) (async)
sendmmsg$sock(r1, &(0x7f0000002240), 0x0, 0x800) (async)
bind$802154_dgram(r0, &(0x7f0000000080)={0x24, @none={0x0, 0x2}}, 0x14)
r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x111040, 0x0)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x204001, 0x0)
connect$802154_dgram(r3, &(0x7f0000000240)={0x24, @none={0x0, 0x2}}, 0x14) (async)
bind$802154_dgram(r2, &(0x7f0000000100)={0x24, @short={0x2, 0x2, 0xfffe}}, 0x14)

[ 1217.344686][ T5230] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1217.383607][ T5242] Unsupported ieee802154 address type: 0
03:15:20 executing program 5:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x6e00000000000000)

03:15:20 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
sendmmsg$sock(r1, &(0x7f0000002240), 0x0, 0x800)
bind$802154_dgram(r0, &(0x7f0000000080)={0x24, @none={0x0, 0x2}}, 0x14)
r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x111040, 0x0)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x204001, 0x0)
connect$802154_dgram(r3, &(0x7f0000000240)={0x24, @none={0x0, 0x2}}, 0x14)
bind$802154_dgram(r2, &(0x7f0000000100)={0x24, @short={0x2, 0x2, 0xfffe}}, 0x14)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10) (async)
sendmmsg$sock(r1, &(0x7f0000002240), 0x0, 0x800) (async)
bind$802154_dgram(r0, &(0x7f0000000080)={0x24, @none={0x0, 0x2}}, 0x14) (async)
openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x111040, 0x0) (async)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x204001, 0x0) (async)
connect$802154_dgram(r3, &(0x7f0000000240)={0x24, @none={0x0, 0x2}}, 0x14) (async)
bind$802154_dgram(r2, &(0x7f0000000100)={0x24, @short={0x2, 0x2, 0xfffe}}, 0x14) (async)

[ 1217.413556][ T5243] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:20 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r4, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r3, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x8}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x3}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000040)
r5 = accept(r1, 0x0, &(0x7f0000000480))
syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r5)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0109000000000000000012000000080009000200000018000180690002006261746164765f736c6176655f31000008000700c6000000"], 0x3c}}, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r0, 0x800, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xfffffffc}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x8d0}, 0x0)

03:15:20 executing program 0:
syz_emit_ethernet(0x32, &(0x7f00000014c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa08000000002400141400ac14147b408fcce17681de9f93d2aa000000018c5700000000005558e600"/61], 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000001440)='jbd2_checkpoint\x00', r0}, 0x10)
r2 = syz_open_dev$MSR(&(0x7f0000000840), 0x6, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp, 0x400, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000001400)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001cc0)={0x0, ""/256, 0x0, <r5=>0x0, <r6=>0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, <r7=>0x0})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000080)={0x40000000})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000400)={{}, r6, 0x14, @inherit={0x88, &(0x7f0000001480)=ANY=[@ANYRESOCT]}, @devid})
r8 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r8, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_int(r8, 0x0, 0x22, &(0x7f00000000c0)=0x7, 0x4)
setsockopt$inet_group_source_req(r8, 0x0, 0x0, &(0x7f00000004c0)={0x1, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @dev}}}, 0x108)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001ec0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, <r9=>0x0}})
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r')
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ')
sendmsg$NLBL_CIPSOV4_C_REMOVE(r10, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r9, @ANYRES32=r7, @ANYRESOCT, @ANYRES32=r5, @ANYRES32, @ANYRES64, @ANYRESHEX=r3], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025)
ioctl$BTRFS_IOC_RESIZE(r1, 0x50009403, &(0x7f0000000880)={{r2}, {@val={r9}, @actul_num={@void, 0x0, 0x74}}})
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000240)=@raw={'raw\x00', 0x9, 0x3, 0x2e0, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x210, 0xffffffff, 0xffffffff, 0x210, 0xffffffff, 0x3, &(0x7f0000000000), {[{{@ipv6={@remote, @mcast2, [0xff, 0xffffffff, 0xffffff00, 0xff], [0xffffffff, 0xff000000, 0xffffff00, 0xffffffff], 'ipvlan1\x00', 'veth1_to_batadv\x00', {0xff}, {}, 0x3a, 0x6, 0x3, 0x40}, 0x0, 0xa8, 0xd0}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff, 0x2, 0x1}, {0x3, 0x2, 0x4}}}}, {{@uncond, 0x0, 0x118, 0x140, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x3}}, @common=@hbh={{0x48}, {0x8, 0x6, 0x0, [0x9, 0xfff, 0x56bd, 0x2, 0x2, 0x464f, 0x3, 0x9, 0x1, 0xe7ba, 0x0, 0x101, 0x3ff, 0x3a9, 0x8001, 0x4], 0x8}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0x0, 0x4}, {0xffffffffffffffff}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x340)

[ 1217.536297][ T5254] Unsupported ieee802154 address type: 0
[ 1217.575018][ T5271] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1217.596763][ T5277] Unsupported ieee802154 address type: 0
03:15:20 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xffff, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:20 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x500, 0x0, 0x0, 0x0, 0xeee, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xf, 0xffffffffffffffff, 0x8)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080)=0x1, 0x4)

[ 1217.660480][ T5283] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:20 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r4, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r3, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x8}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x3}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000040)
r5 = accept(r1, 0x0, &(0x7f0000000480))
syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r5)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0109000000000000000012000000080009000200000018000180690002006261746164765f736c6176655f31000008000700c6000000"], 0x3c}}, 0x0)

03:15:20 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x10, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:20 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x500, 0x0, 0x0, 0x0, 0xeee, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xf, 0xffffffffffffffff, 0x8)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080)=0x1, 0x4)

[ 1217.860216][ T5294] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1217.911593][ T5298] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:21 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async, rerun: 32)
r0 = getpid() (async, rerun: 32)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0) (async, rerun: 64)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}) (rerun: 64)
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) (async)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=<r3=>0x0)
sched_setattr(r3, &(0x7f0000000080)={0x38, 0x2, 0x40, 0x3, 0x4, 0x2bc8, 0x2, 0x9, 0x1, 0x40}, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
r4 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c) (async)
r5 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x401, 0x2}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r5, 0x0, 0xffffffffffffffff, 0x1) (async)
prlimit64(r3, 0x0, 0x0, &(0x7f00000003c0)) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="90000000d777000500bd7000fedbd02507000000b0be925689365d646c8fd00a62782444eba3abf15c313bbafac92f93a2594d0d7fdbe4863178746e8777520951c6e6d5ec5ef0634a6f8315e41d2e24ceabdc31a78d05034d0aef78bfd3f86462", @ANYRES32=0x0, @ANYBLOB="0c000180060002000d000000100001800c00048008000100070000000c00018005000300030000000c00018005000300040000000c000180060002000b0000000c0001800800010061000400100001800c00048008000200110000000c0001800500030000000000100001800c0004800800010000020000"], 0x90}, 0x1, 0x0, 0x0, 0x2800}, 0x4800) (async)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)

03:15:21 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
sendfile(r4, r2, &(0x7f0000000040)=0x5, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}}, 0x1c)

03:15:21 executing program 0:
syz_emit_ethernet(0x32, &(0x7f00000014c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa08000000002400141400ac14147b408fcce17681de9f93d2aa000000018c5700000000005558e600"/61], 0x0) (async)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000001440)='jbd2_checkpoint\x00', r0}, 0x10) (async)
r2 = syz_open_dev$MSR(&(0x7f0000000840), 0x6, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp, 0x400, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r4 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000001400)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001cc0)={0x0, ""/256, 0x0, <r5=>0x0, <r6=>0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, <r7=>0x0})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000080)={0x40000000}) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000400)={{}, r6, 0x14, @inherit={0x88, &(0x7f0000001480)=ANY=[@ANYRESOCT]}, @devid})
r8 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r8, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) (async)
setsockopt$inet_int(r8, 0x0, 0x22, &(0x7f00000000c0)=0x7, 0x4)
setsockopt$inet_group_source_req(r8, 0x0, 0x0, &(0x7f00000004c0)={0x1, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @dev}}}, 0x108) (async)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001ec0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, <r9=>0x0}})
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') (async)
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ')
sendmsg$NLBL_CIPSOV4_C_REMOVE(r10, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r9, @ANYRES32=r7, @ANYRESOCT, @ANYRES32=r5, @ANYRES32, @ANYRES64, @ANYRESHEX=r3], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) (async)
ioctl$BTRFS_IOC_RESIZE(r1, 0x50009403, &(0x7f0000000880)={{r2}, {@val={r9}, @actul_num={@void, 0x0, 0x74}}})
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000240)=@raw={'raw\x00', 0x9, 0x3, 0x2e0, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x210, 0xffffffff, 0xffffffff, 0x210, 0xffffffff, 0x3, &(0x7f0000000000), {[{{@ipv6={@remote, @mcast2, [0xff, 0xffffffff, 0xffffff00, 0xff], [0xffffffff, 0xff000000, 0xffffff00, 0xffffffff], 'ipvlan1\x00', 'veth1_to_batadv\x00', {0xff}, {}, 0x3a, 0x6, 0x3, 0x40}, 0x0, 0xa8, 0xd0}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff, 0x2, 0x1}, {0x3, 0x2, 0x4}}}}, {{@uncond, 0x0, 0x118, 0x140, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x3}}, @common=@hbh={{0x48}, {0x8, 0x6, 0x0, [0x9, 0xfff, 0x56bd, 0x2, 0x2, 0x464f, 0x3, 0x9, 0x1, 0xe7ba, 0x0, 0x101, 0x3ff, 0x3a9, 0x8001, 0x4], 0x8}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0x0, 0x4}, {0xffffffffffffffff}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x340)

03:15:21 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x4, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:21 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x500, 0x0, 0x0, 0x0, 0xeee, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xf, 0xffffffffffffffff, 0x8)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080)=0x1, 0x4)

03:15:21 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r2, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x8}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x3}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000040)
r4 = accept(r0, 0x0, &(0x7f0000000480))
syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r4)

03:15:21 executing program 5:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x4000000000000a6, 0x0)

03:15:21 executing program 4:
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
accept$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)=@getstats={0x1c, 0x5e, 0x10, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, 0x4}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x24004801}, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_POLL_REMOVE={0x7, 0x2, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x0, {0x0, r3}}, 0x7)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x7b)
bind$802154_dgram(r1, &(0x7f0000000100)={0x24, @short={0x2, 0xffff, 0xffff}}, 0x14)
connect$802154_dgram(r4, &(0x7f0000000040)={0x24, @short={0x2, 0xfffc}}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0x381a}}, './file0\x00'})

[ 1218.755212][ T5311] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:22 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r2, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x8}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x3}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000040)
accept(r0, 0x0, &(0x7f0000000480))

03:15:22 executing program 4:
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
accept$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)=@getstats={0x1c, 0x5e, 0x10, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, 0x4}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x24004801}, 0x0) (async)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_POLL_REMOVE={0x7, 0x2, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x0, {0x0, r3}}, 0x7) (async)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x7b)
bind$802154_dgram(r1, &(0x7f0000000100)={0x24, @short={0x2, 0xffff, 0xffff}}, 0x14)
connect$802154_dgram(r4, &(0x7f0000000040)={0x24, @short={0x2, 0xfffc}}, 0x14) (async, rerun: 32)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0) (async, rerun: 32)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0x381a}}, './file0\x00'})

03:15:22 executing program 0:
syz_emit_ethernet(0x32, &(0x7f00000014c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa08000000002400141400ac14147b408fcce17681de9f93d2aa000000018c5700000000005558e600"/61], 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000001440)='jbd2_checkpoint\x00', r0}, 0x10)
r2 = syz_open_dev$MSR(&(0x7f0000000840), 0x6, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp, 0x400, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000001400)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001cc0)={0x0, ""/256, 0x0, <r5=>0x0, <r6=>0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, <r7=>0x0})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000080)={0x40000000})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000400)={{}, r6, 0x14, @inherit={0x88, &(0x7f0000001480)=ANY=[@ANYRESOCT]}, @devid})
r8 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r8, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_int(r8, 0x0, 0x22, &(0x7f00000000c0)=0x7, 0x4)
setsockopt$inet_group_source_req(r8, 0x0, 0x0, &(0x7f00000004c0)={0x1, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @dev}}}, 0x108)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001ec0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, <r9=>0x0}})
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r')
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ')
sendmsg$NLBL_CIPSOV4_C_REMOVE(r10, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r9, @ANYRES32=r7, @ANYRESOCT, @ANYRES32=r5, @ANYRES32, @ANYRES64, @ANYRESHEX=r3], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025)
ioctl$BTRFS_IOC_RESIZE(r1, 0x50009403, &(0x7f0000000880)={{r2}, {@val={r9}, @actul_num={@void, 0x0, 0x74}}})
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000240)=@raw={'raw\x00', 0x9, 0x3, 0x2e0, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x210, 0xffffffff, 0xffffffff, 0x210, 0xffffffff, 0x3, &(0x7f0000000000), {[{{@ipv6={@remote, @mcast2, [0xff, 0xffffffff, 0xffffff00, 0xff], [0xffffffff, 0xff000000, 0xffffff00, 0xffffffff], 'ipvlan1\x00', 'veth1_to_batadv\x00', {0xff}, {}, 0x3a, 0x6, 0x3, 0x40}, 0x0, 0xa8, 0xd0}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff, 0x2, 0x1}, {0x3, 0x2, 0x4}}}}, {{@uncond, 0x0, 0x118, 0x140, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x3}}, @common=@hbh={{0x48}, {0x8, 0x6, 0x0, [0x9, 0xfff, 0x56bd, 0x2, 0x2, 0x464f, 0x3, 0x9, 0x1, 0xe7ba, 0x0, 0x101, 0x3ff, 0x3a9, 0x8001, 0x4], 0x8}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0x0, 0x4}, {0xffffffffffffffff}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x340)
syz_emit_ethernet(0x32, &(0x7f00000014c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa08000000002400141400ac14147b408fcce17681de9f93d2aa000000018c5700000000005558e600"/61], 0x0) (async)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000001440)='jbd2_checkpoint\x00', r0}, 0x10) (async)
syz_open_dev$MSR(&(0x7f0000000840), 0x6, 0x0) (async)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp, 0x400, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000001400)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001cc0)) (async)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000080)={0x40000000}) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000400)={{}, r6, 0x14, @inherit={0x88, &(0x7f0000001480)=ANY=[@ANYRESOCT]}, @devid}) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async)
setsockopt$inet_MCAST_JOIN_GROUP(r8, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) (async)
setsockopt$inet_int(r8, 0x0, 0x22, &(0x7f00000000c0)=0x7, 0x4) (async)
setsockopt$inet_group_source_req(r8, 0x0, 0x0, &(0x7f00000004c0)={0x1, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @dev}}}, 0x108) (async)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001ec0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) (async)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)) (async)
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') (async)
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') (async)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r10, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r9, @ANYRES32=r7, @ANYRESOCT, @ANYRES32=r5, @ANYRES32, @ANYRES64, @ANYRESHEX=r3], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) (async)
ioctl$BTRFS_IOC_RESIZE(r1, 0x50009403, &(0x7f0000000880)={{r2}, {@val={r9}, @actul_num={@void, 0x0, 0x74}}}) (async)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000240)=@raw={'raw\x00', 0x9, 0x3, 0x2e0, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x210, 0xffffffff, 0xffffffff, 0x210, 0xffffffff, 0x3, &(0x7f0000000000), {[{{@ipv6={@remote, @mcast2, [0xff, 0xffffffff, 0xffffff00, 0xff], [0xffffffff, 0xff000000, 0xffffff00, 0xffffffff], 'ipvlan1\x00', 'veth1_to_batadv\x00', {0xff}, {}, 0x3a, 0x6, 0x3, 0x40}, 0x0, 0xa8, 0xd0}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff, 0x2, 0x1}, {0x3, 0x2, 0x4}}}}, {{@uncond, 0x0, 0x118, 0x140, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x3}}, @common=@hbh={{0x48}, {0x8, 0x6, 0x0, [0x9, 0xfff, 0x56bd, 0x2, 0x2, 0x464f, 0x3, 0x9, 0x1, 0xe7ba, 0x0, 0x101, 0x3ff, 0x3a9, 0x8001, 0x4], 0x8}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0x0, 0x4}, {0xffffffffffffffff}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x340) (async)

03:15:22 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0xf0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1219.006017][ T5336] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:22 executing program 3:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000074, 0x0)

03:15:23 executing program 1:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0xb, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:23 executing program 4:
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
accept$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)=@getstats={0x1c, 0x5e, 0x10, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, 0x4}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x24004801}, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_POLL_REMOVE={0x7, 0x2, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x0, {0x0, r3}}, 0x7)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x7b)
bind$802154_dgram(r1, &(0x7f0000000100)={0x24, @short={0x2, 0xffff, 0xffff}}, 0x14) (async)
connect$802154_dgram(r4, &(0x7f0000000040)={0x24, @short={0x2, 0xfffc}}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0) (async)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0x381a}}, './file0\x00'})

03:15:23 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x3f00, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:23 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r2, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x8}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x3}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000040)

03:15:23 executing program 0:
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="980000000a0a03000000000055a7cf4987cff2c37c9279000000000c00000308000c40000000060900010073797a310000000008000640ffffff004f000d40383a98ed4f0449fc8575652483a135263f20e7c527dbdf7ae24231d2e562aed359b75d2303a711a203a635baa4946f6cf07f3c557f59fb9b94998a9860b10442f5e68a6f933b99ca6ff891cd0fcdac1ff64506e53845238953848f0008000a4000000001"], 0x98}, 0x1, 0x0, 0x0, 0x20000004}, 0x8011)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @local, @val={@void, {0x8100, 0x5, 0x1, 0x1}}, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r0, 0xc0405665, &(0x7f0000000100)={0x7ff, 0x1, 0x1, 0x400, 0x80000001, 0x2, 0x8})
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x6c, 0x1, 0x1, 0x5, 0x0, 0x0, {0xa}, [@CTA_NAT_SRC={0x50, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @private2}, @CTA_NAT_V4_MINIP={0x8, 0x1, @dev={0xac, 0x14, 0x14, 0xf}}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @mcast2}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_V6_MINIP={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, @CTA_ID={0x8, 0xc, 0x1, 0x0, 0x1}]}, 0x6c}}, 0x1)
syz_emit_ethernet(0x1e, &(0x7f0000000040)={@broadcast, @random="a6323d23d298", @void, {@can={0xc, {{0x2, 0x1, 0x0, 0x1}, 0x2, 0x1, 0x0, 0x0, "7283c265bcd2c095"}}}}, &(0x7f0000000080)={0x0, 0x2, [0x6fd, 0x55e, 0xd45, 0xfd3]})
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x74, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x5}, @ETHTOOL_A_EEE_MODES_OURS={0x18, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x5}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}]}, 0x74}, 0x1, 0x0, 0x0, 0x8010}, 0x4)

03:15:23 executing program 3:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x300, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:23 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) (fail_nth: 1)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:23 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (fail_nth: 1)

03:15:23 executing program 0:
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="980000000a0a03000000000055a7cf4987cff2c37c9279000000000c00000308000c40000000060900010073797a310000000008000640ffffff004f000d40383a98ed4f0449fc8575652483a135263f20e7c527dbdf7ae24231d2e562aed359b75d2303a711a203a635baa4946f6cf07f3c557f59fb9b94998a9860b10442f5e68a6f933b99ca6ff891cd0fcdac1ff64506e53845238953848f0008000a4000000001"], 0x98}, 0x1, 0x0, 0x0, 0x20000004}, 0x8011) (async)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @local, @val={@void, {0x8100, 0x5, 0x1, 0x1}}, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r0, 0xc0405665, &(0x7f0000000100)={0x7ff, 0x1, 0x1, 0x400, 0x80000001, 0x2, 0x8}) (async)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x6c, 0x1, 0x1, 0x5, 0x0, 0x0, {0xa}, [@CTA_NAT_SRC={0x50, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @private2}, @CTA_NAT_V4_MINIP={0x8, 0x1, @dev={0xac, 0x14, 0x14, 0xf}}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @mcast2}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_V6_MINIP={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, @CTA_ID={0x8, 0xc, 0x1, 0x0, 0x1}]}, 0x6c}}, 0x1) (async)
syz_emit_ethernet(0x1e, &(0x7f0000000040)={@broadcast, @random="a6323d23d298", @void, {@can={0xc, {{0x2, 0x1, 0x0, 0x1}, 0x2, 0x1, 0x0, 0x0, "7283c265bcd2c095"}}}}, &(0x7f0000000080)={0x0, 0x2, [0x6fd, 0x55e, 0xd45, 0xfd3]}) (async)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x74, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x5}, @ETHTOOL_A_EEE_MODES_OURS={0x18, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x5}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}]}, 0x74}, 0x1, 0x0, 0x0, 0x8010}, 0x4)

[ 1220.006992][ T5364] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:23 executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000900)={0x6, &(0x7f00000008c0)=[{0x7f, 0x1, 0x8, 0x4}, {0x101, 0x40, 0xfa, 0x8}, {0x101, 0xb4, 0x2}, {0x7, 0x41, 0xff, 0x5}, {0x3, 0x5, 0x40, 0x3ff}, {0x84, 0x5, 0x7, 0x80000000}]})
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r1, &(0x7f0000000840)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="f9db1ef3cfb52445e20ab0fa00322d157651af92f70d5f2bda7fad1c3d488728a16d0ce68c2ba0709eecaa5d9fadf4f7c793db17d3a0fe64cae23d80631dbb273db1a731646cbef3aa5d863a959bd213b15ec81bb64e3c41f7d4c18937704a073fcaf5af986033de516be5eec43477755ea22ce37f524a00c817d471c1d88e3be2e7732ea5aa591f5b37f3d16e06652330659452338867ce127c0024ec80112179328480bbf62c7e334a08804b2fec553913e5a81e837e0d51524864d2188ead8e9ccea9888760febe68e0d9addf1f62246539ffe7be6c5ac9d2269a839d048ce1ffcc2eb9494fbcd4934432cea98d1c", 0xf0}, {&(0x7f0000000180)="2d976923d3709859643e2683eddcc732df95fc5513297b59e3c86730e3b559153f50e950ea1e92a2be", 0x29}], 0x2, &(0x7f0000000200)=[@timestamping={{0x14, 0x1, 0x25, 0x4}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @txtime={{0x18, 0x1, 0x3d, 0x81}}], 0x48}}, {{&(0x7f0000000340)=@ax25={{0x3, @default, 0x1}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x80, &(0x7f0000000740)=[{&(0x7f0000000280)="eb42620bfa769bb62156f973", 0xc}, {&(0x7f00000003c0)="2ac0878c584d042625a67771bd7974485d19d2ddcecf537525c9bdb2562f2243603fbb41a089c46f008b7a502a79e8ba6d6fdcc0c07ac7cb9054f167e5fcfa7a96e6d9d95e72fe220c3ca9fc76370dc2ee6ddd2f7c03891052d7116c4b73821e7a7a2178", 0x64}, {&(0x7f0000000440)="1f9cbf0b31340a883b310cee645ce2d1cc44d8be89b2c2cbb040d412d478397eda40c1", 0x23}, {&(0x7f0000000480)="20c907f58b5798ce02ed167edb694f1d7425ae945d8c0c9c7fad20d6fe988330c4053b5db3ad2a6887ac755188a9868934c3789980775c9144cbe9e80362ca4cdb2e5e7cd79595454b11016817898c8c7eaaadb5ab7d48c37a79e1d5b7eb1d9c7d036292890561a2e7d4697b1d2831c272b2880c3031246dbbf477cee337cd4a223a8e718aeb610c056a426fadce18dec9600074fd8a71ca792df2231ac084453247f6e45ea38624de0a278cbbb2b702d1ab4d272c63861d47b55d666268a3c6ad18b1c9", 0xc4}, {&(0x7f0000000580)="ae20fb35935743e9c66be6a522214c2f9b62f14d45ca4c6f0f78570270c57bea8fccdfe5f82afbed19a8382de68a2c4a9c4fb33fd3a9fbefef4615fe38a8a32450795d6a5b52e3b43048a185fd220a8be2d78238466b31a363021c4432136ade5fe5e3803865ac271fff6d8dc2beb16c9249615a5471ebceecc233ab3605db412eb8de4e87ed9044c91909e7a8cb936a288a7edfaaf6338d08b6ab4117d87eeee11ddfb80758a4c7e5cf5c985fe89d2edcfccb9dd1ab01dd8bd7b202725c1a50b70f7aa2fc417e69e5b04faba4e60c8b77", 0xd1}, {&(0x7f0000000680)="5ce1f3af15937cc1ec518e7920038a8d138bebc877d006e0fb8cbc8d48de459f60c4a30677ba28b739698e6e8094e36c", 0x30}, {&(0x7f00000006c0)="db4a5d124371515f801fb34621dc0ac801623ab444bef5ff1bffeed81716027ca39e32bbb7422c061c73543be070727b25670162a69dc24aedc5631a4494c411e0ebe9c1abe4128102964e9c6aa6054e59ec3d0b8ff3db51878e6b", 0x5b}], 0x7, &(0x7f00000007c0)=[@txtime={{0x18, 0x1, 0x3d, 0xfffffffffffffff7}}, @mark={{0x14, 0x1, 0x24, 0x7}}, @mark={{0x14, 0x1, 0x24, 0x8}}, @txtime={{0x18}}, @timestamping={{0x14, 0x1, 0x25, 0x1}}], 0x78}}], 0x2, 0x0)

03:15:23 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1220.076436][ T5375] FAULT_INJECTION: forcing a failure.
[ 1220.076436][ T5375] name fail_page_alloc, interval 1, probability 0, space 0, times 0
03:15:23 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 1)

03:15:23 executing program 0:
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="980000000a0a03000000000055a7cf4987cff2c37c9279000000000c00000308000c40000000060900010073797a310000000008000640ffffff004f000d40383a98ed4f0449fc8575652483a135263f20e7c527dbdf7ae24231d2e562aed359b75d2303a711a203a635baa4946f6cf07f3c557f59fb9b94998a9860b10442f5e68a6f933b99ca6ff891cd0fcdac1ff64506e53845238953848f0008000a4000000001"], 0x98}, 0x1, 0x0, 0x0, 0x20000004}, 0x8011)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @local, @val={@void, {0x8100, 0x5, 0x1, 0x1}}, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r0, 0xc0405665, &(0x7f0000000100)={0x7ff, 0x1, 0x1, 0x400, 0x80000001, 0x2, 0x8})
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x6c, 0x1, 0x1, 0x5, 0x0, 0x0, {0xa}, [@CTA_NAT_SRC={0x50, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @private2}, @CTA_NAT_V4_MINIP={0x8, 0x1, @dev={0xac, 0x14, 0x14, 0xf}}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @mcast2}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_V6_MINIP={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, @CTA_ID={0x8, 0xc, 0x1, 0x0, 0x1}]}, 0x6c}}, 0x1)
syz_emit_ethernet(0x1e, &(0x7f0000000040)={@broadcast, @random="a6323d23d298", @void, {@can={0xc, {{0x2, 0x1, 0x0, 0x1}, 0x2, 0x1, 0x0, 0x0, "7283c265bcd2c095"}}}}, &(0x7f0000000080)={0x0, 0x2, [0x6fd, 0x55e, 0xd45, 0xfd3]})
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x74, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x5}, @ETHTOOL_A_EEE_MODES_OURS={0x18, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x5}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}]}, 0x74}, 0x1, 0x0, 0x0, 0x8010}, 0x4)
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="980000000a0a03000000000055a7cf4987cff2c37c9279000000000c00000308000c40000000060900010073797a310000000008000640ffffff004f000d40383a98ed4f0449fc8575652483a135263f20e7c527dbdf7ae24231d2e562aed359b75d2303a711a203a635baa4946f6cf07f3c557f59fb9b94998a9860b10442f5e68a6f933b99ca6ff891cd0fcdac1ff64506e53845238953848f0008000a4000000001"], 0x98}, 0x1, 0x0, 0x0, 0x20000004}, 0x8011) (async)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @local, @val={@void, {0x8100, 0x5, 0x1, 0x1}}, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r0, 0xc0405665, &(0x7f0000000100)={0x7ff, 0x1, 0x1, 0x400, 0x80000001, 0x2, 0x8}) (async)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x6c, 0x1, 0x1, 0x5, 0x0, 0x0, {0xa}, [@CTA_NAT_SRC={0x50, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @private2}, @CTA_NAT_V4_MINIP={0x8, 0x1, @dev={0xac, 0x14, 0x14, 0xf}}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @mcast2}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_V6_MINIP={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, @CTA_ID={0x8, 0xc, 0x1, 0x0, 0x1}]}, 0x6c}}, 0x1) (async)
syz_emit_ethernet(0x1e, &(0x7f0000000040)={@broadcast, @random="a6323d23d298", @void, {@can={0xc, {{0x2, 0x1, 0x0, 0x1}, 0x2, 0x1, 0x0, 0x0, "7283c265bcd2c095"}}}}, &(0x7f0000000080)={0x0, 0x2, [0x6fd, 0x55e, 0xd45, 0xfd3]}) (async)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x74, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x5}, @ETHTOOL_A_EEE_MODES_OURS={0x18, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x5}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}]}, 0x74}, 0x1, 0x0, 0x0, 0x8010}, 0x4) (async)

[ 1220.120132][ T5384] FAULT_INJECTION: forcing a failure.
[ 1220.120132][ T5384] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1220.133591][ T5375] CPU: 1 PID: 5375 Comm: syz-executor.5 Not tainted 5.16.0-rc7-syzkaller #0
[ 1220.133623][ T5375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1220.133638][ T5375] Call Trace:
[ 1220.133645][ T5375]  <TASK>
[ 1220.133653][ T5375]  dump_stack_lvl+0xcd/0x134
[ 1220.133687][ T5375]  should_fail.cold+0x5/0xa
03:15:23 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1220.133717][ T5375]  prepare_alloc_pages+0x17b/0x570
[ 1220.133750][ T5375]  __alloc_pages+0x12f/0x500
[ 1220.133772][ T5375]  ? __alloc_pages_slowpath.constprop.0+0x20d0/0x20d0
[ 1220.133808][ T5375]  ? tun_build_skb+0x186/0xfc0
[ 1220.133836][ T5375]  alloc_pages+0x1a7/0x300
[ 1220.133870][ T5375]  skb_page_frag_refill+0x262/0x570
[ 1220.166111][ T5388] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1220.168041][ T5375]  tun_build_skb+0x1ff/0xfc0
[ 1220.168082][ T5375]  ? tun_xdp_act+0x8a0/0x8a0
03:15:23 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1220.213147][ T5390] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1220.216270][ T5375]  ? __lock_acquire+0xbbf/0x5470
[ 1220.216311][ T5375]  tun_get_user+0x812/0x3710
[ 1220.216348][ T5375]  ? tun_build_skb+0xfc0/0xfc0
[ 1220.239381][ T5375]  ? lock_downgrade+0x6e0/0x6e0
[ 1220.244518][ T5375]  tun_chr_write_iter+0xdd/0x1a0
[ 1220.249462][ T5375]  new_sync_write+0x429/0x660
[ 1220.254242][ T5375]  ? new_sync_read+0x6e0/0x6e0
[ 1220.259028][ T5375]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
03:15:23 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1220.263393][ T5392] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1220.265286][ T5375]  ? security_file_permission+0xab/0xd0
[ 1220.265329][ T5375]  vfs_write+0x7cd/0xae0
[ 1220.265356][ T5375]  ksys_write+0x12d/0x250
[ 1220.288118][ T5375]  ? __ia32_sys_read+0xb0/0xb0
[ 1220.293095][ T5375]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1220.299024][ T5375]  do_syscall_64+0x35/0xb0
[ 1220.303500][ T5375]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1220.309698][ T5375] RIP: 0033:0x7f338f2159af
[ 1220.314146][ T5375] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 1220.314614][ T5395] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1220.333915][ T5375] RSP: 002b:00007f338dbd8130 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1220.333950][ T5375] RAX: ffffffffffffffda RBX: 00007f338f375f60 RCX: 00007f338f2159af
[ 1220.333964][ T5375] RDX: 0000000000000032 RSI: 0000000020000200 RDI: 00000000000000c8
03:15:23 executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000900)={0x6, &(0x7f00000008c0)=[{0x7f, 0x1, 0x8, 0x4}, {0x101, 0x40, 0xfa, 0x8}, {0x101, 0xb4, 0x2}, {0x7, 0x41, 0xff, 0x5}, {0x3, 0x5, 0x40, 0x3ff}, {0x84, 0x5, 0x7, 0x80000000}]})
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r1, &(0x7f0000000840)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="f9db1ef3cfb52445e20ab0fa00322d157651af92f70d5f2bda7fad1c3d488728a16d0ce68c2ba0709eecaa5d9fadf4f7c793db17d3a0fe64cae23d80631dbb273db1a731646cbef3aa5d863a959bd213b15ec81bb64e3c41f7d4c18937704a073fcaf5af986033de516be5eec43477755ea22ce37f524a00c817d471c1d88e3be2e7732ea5aa591f5b37f3d16e06652330659452338867ce127c0024ec80112179328480bbf62c7e334a08804b2fec553913e5a81e837e0d51524864d2188ead8e9ccea9888760febe68e0d9addf1f62246539ffe7be6c5ac9d2269a839d048ce1ffcc2eb9494fbcd4934432cea98d1c", 0xf0}, {&(0x7f0000000180)="2d976923d3709859643e2683eddcc732df95fc5513297b59e3c86730e3b559153f50e950ea1e92a2be", 0x29}], 0x2, &(0x7f0000000200)=[@timestamping={{0x14, 0x1, 0x25, 0x4}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @txtime={{0x18, 0x1, 0x3d, 0x81}}], 0x48}}, {{&(0x7f0000000340)=@ax25={{0x3, @default, 0x1}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x80, &(0x7f0000000740)=[{&(0x7f0000000280)="eb42620bfa769bb62156f973", 0xc}, {&(0x7f00000003c0)="2ac0878c584d042625a67771bd7974485d19d2ddcecf537525c9bdb2562f2243603fbb41a089c46f008b7a502a79e8ba6d6fdcc0c07ac7cb9054f167e5fcfa7a96e6d9d95e72fe220c3ca9fc76370dc2ee6ddd2f7c03891052d7116c4b73821e7a7a2178", 0x64}, {&(0x7f0000000440)="1f9cbf0b31340a883b310cee645ce2d1cc44d8be89b2c2cbb040d412d478397eda40c1", 0x23}, {&(0x7f0000000480)="20c907f58b5798ce02ed167edb694f1d7425ae945d8c0c9c7fad20d6fe988330c4053b5db3ad2a6887ac755188a9868934c3789980775c9144cbe9e80362ca4cdb2e5e7cd79595454b11016817898c8c7eaaadb5ab7d48c37a79e1d5b7eb1d9c7d036292890561a2e7d4697b1d2831c272b2880c3031246dbbf477cee337cd4a223a8e718aeb610c056a426fadce18dec9600074fd8a71ca792df2231ac084453247f6e45ea38624de0a278cbbb2b702d1ab4d272c63861d47b55d666268a3c6ad18b1c9", 0xc4}, {&(0x7f0000000580)="ae20fb35935743e9c66be6a522214c2f9b62f14d45ca4c6f0f78570270c57bea8fccdfe5f82afbed19a8382de68a2c4a9c4fb33fd3a9fbefef4615fe38a8a32450795d6a5b52e3b43048a185fd220a8be2d78238466b31a363021c4432136ade5fe5e3803865ac271fff6d8dc2beb16c9249615a5471ebceecc233ab3605db412eb8de4e87ed9044c91909e7a8cb936a288a7edfaaf6338d08b6ab4117d87eeee11ddfb80758a4c7e5cf5c985fe89d2edcfccb9dd1ab01dd8bd7b202725c1a50b70f7aa2fc417e69e5b04faba4e60c8b77", 0xd1}, {&(0x7f0000000680)="5ce1f3af15937cc1ec518e7920038a8d138bebc877d006e0fb8cbc8d48de459f60c4a30677ba28b739698e6e8094e36c", 0x30}, {&(0x7f00000006c0)="db4a5d124371515f801fb34621dc0ac801623ab444bef5ff1bffeed81716027ca39e32bbb7422c061c73543be070727b25670162a69dc24aedc5631a4494c411e0ebe9c1abe4128102964e9c6aa6054e59ec3d0b8ff3db51878e6b", 0x5b}], 0x7, &(0x7f00000007c0)=[@txtime={{0x18, 0x1, 0x3d, 0xfffffffffffffff7}}, @mark={{0x14, 0x1, 0x24, 0x7}}, @mark={{0x14, 0x1, 0x24, 0x8}}, @txtime={{0x18}}, @timestamping={{0x14, 0x1, 0x25, 0x1}}], 0x78}}], 0x2, 0x0)

[ 1220.333977][ T5375] RBP: 00007f338dbd81d0 R08: 0000000000000000 R09: 0000000000000000
[ 1220.333990][ T5375] R10: 0000000000000032 R11: 0000000000000293 R12: 0000000000000001
[ 1220.334003][ T5375] R13: 00007ffd3d824caf R14: 00007f338dbd8300 R15: 0000000000022000
[ 1220.334032][ T5375]  </TASK>
[ 1220.388210][ T5400] FAULT_INJECTION: forcing a failure.
[ 1220.388210][ T5400] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:23 executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000900)={0x6, &(0x7f00000008c0)=[{0x7f, 0x1, 0x8, 0x4}, {0x101, 0x40, 0xfa, 0x8}, {0x101, 0xb4, 0x2}, {0x7, 0x41, 0xff, 0x5}, {0x3, 0x5, 0x40, 0x3ff}, {0x84, 0x5, 0x7, 0x80000000}]})
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r1, &(0x7f0000000840)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="f9db1ef3cfb52445e20ab0fa00322d157651af92f70d5f2bda7fad1c3d488728a16d0ce68c2ba0709eecaa5d9fadf4f7c793db17d3a0fe64cae23d80631dbb273db1a731646cbef3aa5d863a959bd213b15ec81bb64e3c41f7d4c18937704a073fcaf5af986033de516be5eec43477755ea22ce37f524a00c817d471c1d88e3be2e7732ea5aa591f5b37f3d16e06652330659452338867ce127c0024ec80112179328480bbf62c7e334a08804b2fec553913e5a81e837e0d51524864d2188ead8e9ccea9888760febe68e0d9addf1f62246539ffe7be6c5ac9d2269a839d048ce1ffcc2eb9494fbcd4934432cea98d1c", 0xf0}, {&(0x7f0000000180)="2d976923d3709859643e2683eddcc732df95fc5513297b59e3c86730e3b559153f50e950ea1e92a2be", 0x29}], 0x2, &(0x7f0000000200)=[@timestamping={{0x14, 0x1, 0x25, 0x4}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @txtime={{0x18, 0x1, 0x3d, 0x81}}], 0x48}}, {{&(0x7f0000000340)=@ax25={{0x3, @default, 0x1}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x80, &(0x7f0000000740)=[{&(0x7f0000000280)="eb42620bfa769bb62156f973", 0xc}, {&(0x7f00000003c0)="2ac0878c584d042625a67771bd7974485d19d2ddcecf537525c9bdb2562f2243603fbb41a089c46f008b7a502a79e8ba6d6fdcc0c07ac7cb9054f167e5fcfa7a96e6d9d95e72fe220c3ca9fc76370dc2ee6ddd2f7c03891052d7116c4b73821e7a7a2178", 0x64}, {&(0x7f0000000440)="1f9cbf0b31340a883b310cee645ce2d1cc44d8be89b2c2cbb040d412d478397eda40c1", 0x23}, {&(0x7f0000000480)="20c907f58b5798ce02ed167edb694f1d7425ae945d8c0c9c7fad20d6fe988330c4053b5db3ad2a6887ac755188a9868934c3789980775c9144cbe9e80362ca4cdb2e5e7cd79595454b11016817898c8c7eaaadb5ab7d48c37a79e1d5b7eb1d9c7d036292890561a2e7d4697b1d2831c272b2880c3031246dbbf477cee337cd4a223a8e718aeb610c056a426fadce18dec9600074fd8a71ca792df2231ac084453247f6e45ea38624de0a278cbbb2b702d1ab4d272c63861d47b55d666268a3c6ad18b1c9", 0xc4}, {&(0x7f0000000580)="ae20fb35935743e9c66be6a522214c2f9b62f14d45ca4c6f0f78570270c57bea8fccdfe5f82afbed19a8382de68a2c4a9c4fb33fd3a9fbefef4615fe38a8a32450795d6a5b52e3b43048a185fd220a8be2d78238466b31a363021c4432136ade5fe5e3803865ac271fff6d8dc2beb16c9249615a5471ebceecc233ab3605db412eb8de4e87ed9044c91909e7a8cb936a288a7edfaaf6338d08b6ab4117d87eeee11ddfb80758a4c7e5cf5c985fe89d2edcfccb9dd1ab01dd8bd7b202725c1a50b70f7aa2fc417e69e5b04faba4e60c8b77", 0xd1}, {&(0x7f0000000680)="5ce1f3af15937cc1ec518e7920038a8d138bebc877d006e0fb8cbc8d48de459f60c4a30677ba28b739698e6e8094e36c", 0x30}, {&(0x7f00000006c0)="db4a5d124371515f801fb34621dc0ac801623ab444bef5ff1bffeed81716027ca39e32bbb7422c061c73543be070727b25670162a69dc24aedc5631a4494c411e0ebe9c1abe4128102964e9c6aa6054e59ec3d0b8ff3db51878e6b", 0x5b}], 0x7, &(0x7f00000007c0)=[@txtime={{0x18, 0x1, 0x3d, 0xfffffffffffffff7}}, @mark={{0x14, 0x1, 0x24, 0x7}}, @mark={{0x14, 0x1, 0x24, 0x8}}, @txtime={{0x18}}, @timestamping={{0x14, 0x1, 0x25, 0x1}}], 0x78}}], 0x2, 0x0)

[ 1220.421783][ T5384] CPU: 1 PID: 5384 Comm: syz-executor.3 Not tainted 5.16.0-rc7-syzkaller #0
[ 1220.430887][ T5384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1220.440983][ T5384] Call Trace:
[ 1220.444277][ T5384]  <TASK>
[ 1220.447347][ T5384]  dump_stack_lvl+0xcd/0x134
[ 1220.452006][ T5384]  should_fail.cold+0x5/0xa
[ 1220.456735][ T5384]  _copy_from_user+0x2c/0x180
[ 1220.461445][ T5384]  __copy_msghdr_from_user+0x91/0x4b0
[ 1220.466851][ T5384]  ? __ia32_sys_shutdown+0x70/0x70
[ 1220.471996][ T5384]  ? __lock_acquire+0xbbf/0x5470
[ 1220.477574][ T5384]  sendmsg_copy_msghdr+0xa1/0x160
[ 1220.482827][ T5384]  ? do_recvmmsg+0x6d0/0x6d0
[ 1220.483865][ T5375] dccp_invalid_packet: P.Data Offset(4) too small
[ 1220.487667][ T5384]  ? perf_trace_lock+0xeb/0x4d0
[ 1220.487697][ T5384]  ? lock_chain_count+0x20/0x20
[ 1220.487723][ T5384]  ? check_path.constprop.0+0x50/0x50
[ 1220.509150][ T5384]  ___sys_sendmsg+0xc6/0x170
[ 1220.513961][ T5384]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1220.519450][ T5384]  ? __fget_files+0x26a/0x470
[ 1220.524157][ T5384]  ? lock_downgrade+0x6e0/0x6e0
[ 1220.529047][ T5384]  ? lock_chain_count+0x20/0x20
[ 1220.533907][ T5384]  ? __fget_files+0x28c/0x470
[ 1220.538599][ T5384]  ? __fget_light+0xea/0x280
[ 1220.543222][ T5384]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1220.549474][ T5384]  __sys_sendmmsg+0x195/0x470
[ 1220.554161][ T5384]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1220.559202][ T5384]  ? find_held_lock+0x2d/0x110
[ 1220.563980][ T5384]  ? __context_tracking_exit+0xb8/0xe0
[ 1220.569738][ T5384]  ? lock_downgrade+0x6e0/0x6e0
[ 1220.574814][ T5384]  ? lock_downgrade+0x6e0/0x6e0
[ 1220.579799][ T5384]  __x64_sys_sendmmsg+0x99/0x100
[ 1220.584746][ T5384]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1220.590648][ T5384]  do_syscall_64+0x35/0xb0
[ 1220.595077][ T5384]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1220.600989][ T5384] RIP: 0033:0x7fe8ef2bee99
[ 1220.605783][ T5384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1220.625417][ T5384] RSP: 002b:00007fe8edc34168 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1220.633852][ T5384] RAX: ffffffffffffffda RBX: 00007fe8ef3d1f60 RCX: 00007fe8ef2bee99
[ 1220.641838][ T5384] RDX: 0000000000000318 RSI: 00000000200bd000 RDI: 0000000000000004
[ 1220.649823][ T5384] RBP: 00007fe8edc341d0 R08: 0000000000000000 R09: 0000000000000000
[ 1220.657809][ T5384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1220.665887][ T5384] R13: 00007ffd8e701aaf R14: 00007fe8edc34300 R15: 0000000000022000
[ 1220.673978][ T5384]  </TASK>
[ 1220.677011][ T5400] CPU: 0 PID: 5400 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1220.685710][ T5400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1220.695763][ T5400] Call Trace:
[ 1220.699030][ T5400]  <TASK>
[ 1220.701951][ T5400]  dump_stack_lvl+0xcd/0x134
[ 1220.706542][ T5400]  should_fail.cold+0x5/0xa
[ 1220.711041][ T5400]  _copy_from_user+0x2c/0x180
[ 1220.716066][ T5400]  __copy_msghdr_from_user+0x91/0x4b0
[ 1220.721437][ T5400]  ? __ia32_sys_shutdown+0x70/0x70
[ 1220.726541][ T5400]  ? check_path.constprop.0+0x50/0x50
[ 1220.731918][ T5400]  ___sys_recvmsg+0xd5/0x200
[ 1220.736503][ T5400]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1220.742135][ T5400]  ? lock_downgrade+0x6e0/0x6e0
[ 1220.746989][ T5400]  ? lock_chain_count+0x20/0x20
[ 1220.752030][ T5400]  ? lock_chain_count+0x20/0x20
[ 1220.756904][ T5400]  ? __fget_files+0x28c/0x470
[ 1220.761588][ T5400]  ? __fget_light+0xea/0x280
[ 1220.766280][ T5400]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1220.772525][ T5400]  do_recvmmsg+0x24d/0x6d0
[ 1220.776942][ T5400]  ? ___sys_recvmsg+0x200/0x200
[ 1220.781875][ T5400]  ? check_path.constprop.0+0x50/0x50
[ 1220.787251][ T5400]  ? find_held_lock+0x2d/0x110
[ 1220.792025][ T5400]  ? __context_tracking_exit+0xb8/0xe0
[ 1220.797488][ T5400]  ? lock_downgrade+0x6e0/0x6e0
[ 1220.802335][ T5400]  ? lock_downgrade+0x6e0/0x6e0
[ 1220.807269][ T5400]  __x64_sys_recvmmsg+0x20b/0x260
[ 1220.812318][ T5400]  ? __do_sys_socketcall+0x590/0x590
[ 1220.817597][ T5400]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1220.823683][ T5400]  do_syscall_64+0x35/0xb0
[ 1220.828092][ T5400]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1220.834109][ T5400] RIP: 0033:0x7f688ab57e99
[ 1220.838534][ T5400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1220.858143][ T5400] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1220.866554][ T5400] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1220.874515][ T5400] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1220.882479][ T5400] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1220.890441][ T5400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1220.898401][ T5400] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1220.906376][ T5400]  </TASK>
03:15:24 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) (fail_nth: 2)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:24 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (fail_nth: 2)

03:15:24 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r0, 0x0, 0xffffffffffffffff, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x6, 0x7f, 0xf4, 0x3f, 0x0, 0x80000000, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xb2, 0x1, @perf_bp={&(0x7f0000000080), 0x11}, 0x400, 0x1, 0x5, 0x2, 0x7, 0x7329, 0x0, 0x0, 0x9, 0x0, 0x2}, r0, 0xd, r1, 0xb)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r2, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:24 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0xe9, &(0x7f0000000000)={@remote, @random='/+S~v#', @void, {@ipv6={0x86dd, @generic={0x2, 0x6, "a83d80", 0xb3, 0x88, 0x0, @private0, @private1={0xfc, 0x1, '\x00', 0x1}, {[@dstopts={0x3c, 0x0, '\x00', [@ra={0x5, 0x2, 0x2}]}], "4886d046f4545b9d6d527071d16b37fe511f6e441ff45bdb52e67d1ef64f2c9a0e551464d1d647556744f413863779fae23d1536dd5411de8dbd5eded2a82c7ff0b68224823ddbf572eef5f85c5b42d692e76d3cbb85cf6cb37ff027238d727efd710cfd56238a003c1bade3ff92d0ecf7df3e0b907cde9f08c14fe732ccb3df9c28a83c036f94c135dcdf20a96a3503908bc830f7fb4556dd7b62e68288d531c16ddf"}}}}}, &(0x7f0000000100)={0x0, 0x4, [0xd62, 0xa2f, 0x7b8, 0x684]})

03:15:24 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:24 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 2)

03:15:24 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0xe9, &(0x7f0000000000)={@remote, @random='/+S~v#', @void, {@ipv6={0x86dd, @generic={0x2, 0x6, "a83d80", 0xb3, 0x88, 0x0, @private0, @private1={0xfc, 0x1, '\x00', 0x1}, {[@dstopts={0x3c, 0x0, '\x00', [@ra={0x5, 0x2, 0x2}]}], "4886d046f4545b9d6d527071d16b37fe511f6e441ff45bdb52e67d1ef64f2c9a0e551464d1d647556744f413863779fae23d1536dd5411de8dbd5eded2a82c7ff0b68224823ddbf572eef5f85c5b42d692e76d3cbb85cf6cb37ff027238d727efd710cfd56238a003c1bade3ff92d0ecf7df3e0b907cde9f08c14fe732ccb3df9c28a83c036f94c135dcdf20a96a3503908bc830f7fb4556dd7b62e68288d531c16ddf"}}}}}, &(0x7f0000000100)={0x0, 0x4, [0xd62, 0xa2f, 0x7b8, 0x684]})

03:15:24 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1221.014445][ T5421] FAULT_INJECTION: forcing a failure.
[ 1221.014445][ T5421] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1221.040837][ T5420] FAULT_INJECTION: forcing a failure.
[ 1221.040837][ T5420] name failslab, interval 1, probability 0, space 0, times 0
[ 1221.055481][ T5423] FAULT_INJECTION: forcing a failure.
[ 1221.055481][ T5423] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1221.068732][ T5421] CPU: 0 PID: 5421 Comm: syz-executor.5 Not tainted 5.16.0-rc7-syzkaller #0
[ 1221.077428][ T5421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1221.087485][ T5421] Call Trace:
[ 1221.090782][ T5421]  <TASK>
[ 1221.093713][ T5421]  dump_stack_lvl+0xcd/0x134
[ 1221.098319][ T5421]  should_fail.cold+0x5/0xa
[ 1221.102838][ T5421]  copy_page_from_iter+0x359/0x7c0
[ 1221.107963][ T5421]  tun_build_skb+0x27c/0xfc0
[ 1221.112564][ T5421]  ? tun_xdp_act+0x8a0/0x8a0
[ 1221.117161][ T5421]  ? __lock_acquire+0xbbf/0x5470
[ 1221.122121][ T5421]  tun_get_user+0x812/0x3710
[ 1221.126741][ T5421]  ? tun_build_skb+0xfc0/0xfc0
[ 1221.131520][ T5421]  ? lock_downgrade+0x6e0/0x6e0
[ 1221.136394][ T5421]  tun_chr_write_iter+0xdd/0x1a0
[ 1221.141510][ T5421]  new_sync_write+0x429/0x660
[ 1221.146184][ T5421]  ? new_sync_read+0x6e0/0x6e0
[ 1221.150956][ T5421]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1221.157201][ T5421]  ? security_file_permission+0xab/0xd0
[ 1221.162749][ T5421]  vfs_write+0x7cd/0xae0
[ 1221.166986][ T5421]  ksys_write+0x12d/0x250
[ 1221.171304][ T5421]  ? __ia32_sys_read+0xb0/0xb0
[ 1221.176064][ T5421]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1221.181960][ T5421]  do_syscall_64+0x35/0xb0
[ 1221.186366][ T5421]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1221.192255][ T5421] RIP: 0033:0x7f338f2159af
[ 1221.196659][ T5421] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 1221.216263][ T5421] RSP: 002b:00007f338dbd8130 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1221.224672][ T5421] RAX: ffffffffffffffda RBX: 00007f338f375f60 RCX: 00007f338f2159af
[ 1221.232629][ T5421] RDX: 0000000000000032 RSI: 0000000020000200 RDI: 00000000000000c8
[ 1221.240588][ T5421] RBP: 00007f338dbd81d0 R08: 0000000000000000 R09: 0000000000000000
[ 1221.248660][ T5421] R10: 0000000000000032 R11: 0000000000000293 R12: 0000000000000001
[ 1221.256617][ T5421] R13: 00007ffd3d824caf R14: 00007f338dbd8300 R15: 0000000000022000
[ 1221.264590][ T5421]  </TASK>
[ 1221.271870][ T5420] CPU: 1 PID: 5420 Comm: syz-executor.3 Not tainted 5.16.0-rc7-syzkaller #0
[ 1221.280575][ T5420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1221.290889][ T5420] Call Trace:
[ 1221.294158][ T5420]  <TASK>
[ 1221.297087][ T5420]  dump_stack_lvl+0xcd/0x134
[ 1221.301705][ T5420]  should_fail.cold+0x5/0xa
[ 1221.306240][ T5420]  should_failslab+0x5/0x10
[ 1221.311022][ T5420]  kmem_cache_alloc_node+0x65/0x3f0
[ 1221.316323][ T5420]  ? __alloc_skb+0x215/0x340
[ 1221.320930][ T5420]  __alloc_skb+0x215/0x340
[ 1221.325367][ T5420]  alloc_skb_with_frags+0x93/0x620
[ 1221.330503][ T5420]  ? perf_trace_lock+0xeb/0x4d0
[ 1221.335393][ T5420]  sock_alloc_send_pskb+0x783/0x910
[ 1221.340633][ T5420]  ? sock_wmalloc+0x120/0x120
[ 1221.345332][ T5420]  ? lock_downgrade+0x6e0/0x6e0
[ 1221.350379][ T5420]  ? do_raw_spin_lock+0x120/0x2b0
[ 1221.355417][ T5420]  ? rwlock_bug.part.0+0x90/0x90
[ 1221.360365][ T5420]  ? find_held_lock+0x2d/0x110
[ 1221.365233][ T5420]  unix_dgram_sendmsg+0x3ec/0x1950
[ 1221.370363][ T5420]  ? aa_sk_perm+0x30f/0xaa0
[ 1221.374888][ T5420]  ? unix_stream_sendpage+0xca0/0xca0
[ 1221.380277][ T5420]  ? aa_af_perm+0x230/0x230
[ 1221.384808][ T5420]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1221.391245][ T5420]  ? unix_stream_sendpage+0xca0/0xca0
[ 1221.396633][ T5420]  sock_sendmsg+0xcf/0x120
[ 1221.401062][ T5420]  ____sys_sendmsg+0x331/0x810
[ 1221.405840][ T5420]  ? kernel_sendmsg+0x50/0x50
[ 1221.410532][ T5420]  ? do_recvmmsg+0x6d0/0x6d0
[ 1221.415123][ T5420]  ? perf_trace_lock+0xeb/0x4d0
[ 1221.420070][ T5420]  ? check_path.constprop.0+0x50/0x50
[ 1221.425455][ T5420]  ___sys_sendmsg+0xf3/0x170
[ 1221.430050][ T5420]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1221.435341][ T5420]  ? __fget_files+0x26a/0x470
[ 1221.440027][ T5420]  ? lock_downgrade+0x6e0/0x6e0
[ 1221.444892][ T5420]  ? lock_chain_count+0x20/0x20
[ 1221.449762][ T5420]  ? __fget_files+0x28c/0x470
[ 1221.454474][ T5420]  ? __fget_light+0xea/0x280
[ 1221.459086][ T5420]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1221.465365][ T5420]  __sys_sendmmsg+0x195/0x470
[ 1221.470080][ T5420]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 1221.475142][ T5420]  ? find_held_lock+0x2d/0x110
[ 1221.479927][ T5420]  ? __context_tracking_exit+0xb8/0xe0
[ 1221.485485][ T5420]  ? lock_downgrade+0x6e0/0x6e0
[ 1221.490344][ T5420]  ? lock_downgrade+0x6e0/0x6e0
[ 1221.495216][ T5420]  __x64_sys_sendmmsg+0x99/0x100
[ 1221.500168][ T5420]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1221.506081][ T5420]  do_syscall_64+0x35/0xb0
[ 1221.510512][ T5420]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1221.516422][ T5420] RIP: 0033:0x7fe8ef2bee99
[ 1221.520847][ T5420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1221.540471][ T5420] RSP: 002b:00007fe8edc34168 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1221.548900][ T5420] RAX: ffffffffffffffda RBX: 00007fe8ef3d1f60 RCX: 00007fe8ef2bee99
[ 1221.556885][ T5420] RDX: 0000000000000318 RSI: 00000000200bd000 RDI: 0000000000000004
03:15:24 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0xe9, &(0x7f0000000000)={@remote, @random='/+S~v#', @void, {@ipv6={0x86dd, @generic={0x2, 0x6, "a83d80", 0xb3, 0x88, 0x0, @private0, @private1={0xfc, 0x1, '\x00', 0x1}, {[@dstopts={0x3c, 0x0, '\x00', [@ra={0x5, 0x2, 0x2}]}], "4886d046f4545b9d6d527071d16b37fe511f6e441ff45bdb52e67d1ef64f2c9a0e551464d1d647556744f413863779fae23d1536dd5411de8dbd5eded2a82c7ff0b68224823ddbf572eef5f85c5b42d692e76d3cbb85cf6cb37ff027238d727efd710cfd56238a003c1bade3ff92d0ecf7df3e0b907cde9f08c14fe732ccb3df9c28a83c036f94c135dcdf20a96a3503908bc830f7fb4556dd7b62e68288d531c16ddf"}}}}}, &(0x7f0000000100)={0x0, 0x4, [0xd62, 0xa2f, 0x7b8, 0x684]})

03:15:24 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r0, 0x0, 0xffffffffffffffff, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x6, 0x7f, 0xf4, 0x3f, 0x0, 0x80000000, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xb2, 0x1, @perf_bp={&(0x7f0000000080), 0x11}, 0x400, 0x1, 0x5, 0x2, 0x7, 0x7329, 0x0, 0x0, 0x9, 0x0, 0x2}, r0, 0xd, r1, 0xb)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r2, &(0x7f0000002240), 0x400000000000116, 0x0)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
getpgid(0xffffffffffffffff) (async)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r0, 0x0, 0xffffffffffffffff, 0x1) (async)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10) (async)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x6, 0x7f, 0xf4, 0x3f, 0x0, 0x80000000, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xb2, 0x1, @perf_bp={&(0x7f0000000080), 0x11}, 0x400, 0x1, 0x5, 0x2, 0x7, 0x7329, 0x0, 0x0, 0x9, 0x0, 0x2}, r0, 0xd, r1, 0xb) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r2, &(0x7f0000002240), 0x400000000000116, 0x0) (async)

03:15:24 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 32)
r0 = getpgid(0xffffffffffffffff) (rerun: 32)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r0, 0x0, 0xffffffffffffffff, 0x1) (async, rerun: 32)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10) (async)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x6, 0x7f, 0xf4, 0x3f, 0x0, 0x80000000, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xb2, 0x1, @perf_bp={&(0x7f0000000080), 0x11}, 0x400, 0x1, 0x5, 0x2, 0x7, 0x7329, 0x0, 0x0, 0x9, 0x0, 0x2}, r0, 0xd, r1, 0xb) (async, rerun: 64)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (rerun: 64)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r2, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1221.565047][ T5420] RBP: 00007fe8edc341d0 R08: 0000000000000000 R09: 0000000000000000
[ 1221.573140][ T5420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1221.581129][ T5420] R13: 00007ffd8e701aaf R14: 00007fe8edc34300 R15: 0000000000022000
[ 1221.589222][ T5420]  </TASK>
[ 1221.592254][ T5423] CPU: 0 PID: 5423 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1221.600964][ T5423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1221.611412][ T5423] Call Trace:
[ 1221.614690][ T5423]  <TASK>
[ 1221.618309][ T5423]  dump_stack_lvl+0xcd/0x134
[ 1221.623085][ T5423]  should_fail.cold+0x5/0xa
[ 1221.627586][ T5423]  _copy_from_user+0x2c/0x180
[ 1221.632356][ T5423]  __copy_msghdr_from_user+0x91/0x4b0
[ 1221.637985][ T5423]  ? __ia32_sys_shutdown+0x70/0x70
[ 1221.643089][ T5423]  ? __lock_acquire+0x1655/0x5470
[ 1221.648119][ T5423]  ___sys_recvmsg+0xd5/0x200
[ 1221.652712][ T5423]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1221.658341][ T5423]  ? check_path.constprop.0+0x50/0x50
[ 1221.663720][ T5423]  ? find_held_lock+0x2d/0x110
[ 1221.668482][ T5423]  ? __might_fault+0xd1/0x170
[ 1221.673149][ T5423]  ? lock_downgrade+0x6e0/0x6e0
[ 1221.678092][ T5423]  do_recvmmsg+0x24d/0x6d0
[ 1221.682509][ T5423]  ? ___sys_recvmsg+0x200/0x200
[ 1221.687357][ T5423]  ? check_path.constprop.0+0x50/0x50
[ 1221.692738][ T5423]  ? __context_tracking_exit+0xb8/0xe0
[ 1221.698285][ T5423]  ? lock_downgrade+0x6e0/0x6e0
[ 1221.703135][ T5423]  ? lock_downgrade+0x6e0/0x6e0
[ 1221.707980][ T5423]  __x64_sys_recvmmsg+0x20b/0x260
[ 1221.713000][ T5423]  ? __do_sys_socketcall+0x590/0x590
[ 1221.718366][ T5423]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1221.724262][ T5423]  do_syscall_64+0x35/0xb0
[ 1221.728669][ T5423]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1221.734631][ T5423] RIP: 0033:0x7f688ab57e99
[ 1221.739039][ T5423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1221.758641][ T5423] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
03:15:24 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1221.767048][ T5423] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1221.775011][ T5423] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1221.782971][ T5423] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1221.790936][ T5423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1221.798900][ T5423] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1221.806881][ T5423]  </TASK>
03:15:27 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:27 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (fail_nth: 3)

03:15:27 executing program 0:
sendmsg$NL80211_CMD_JOIN_OCB(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x12100062}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x3c, 0x0, 0x300, 0x70bd25, 0x25dfdbfa, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x28}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x400}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x29}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xdf}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x23}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8001}, 0x8000)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0880450000240020000000219078ac141400ac1414aa0000045805d63eeb1c79c0c90190780448fd8800ffba4d0000"], 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_START_NAN(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r2, 0x100, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x24048800)

03:15:27 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
sendmsg$802154_dgram(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x24, @short={0x2, 0x1, 0xaaa3}}, 0x14, &(0x7f0000000280)={&(0x7f0000000200)="2ad25f50821fa5d398cdd1f71baa01f075a34737dfba7d4a2828ecda395f0d3538bc4d158c6ab1f23cf51898b2b7c83986940ddaa6123ee4c75b7ff285e13835bf4590a3d9724d54e3559f42232630ec7ef15ae403b3bff607d5d8e0781c4488e79b9c834bb489f4845db03326ceb4", 0x6f}, 0x1, 0x0, 0x0, 0x4080}, 0x4000000)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
sendmsg$802154_dgram(r1, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, @none={0x0, 0xffff}}, 0x14, &(0x7f0000000500)={&(0x7f00000003c0)="62446c81ba3e8e64459876f16520fb237e5e7598e8e2e9263c8256b06902106c849397288ea5f44e3746f8a6c86ec3061832fcd2706516ef5d4fb06114b2ddd72ab817024f57ff032966af6fc27c1c474f5f2d94b324d15e2bf6637591710ccfdd74af7bf8631b82ab0ec9a75c40230b1ec39fdc8391a8b44d4e95d33676518d952dac17c21b8ac5", 0x88}, 0x1, 0x0, 0x0, 0x2004c081}, 0x4000810)
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
setsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000180), 0x4)
ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000140))
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
r3 = signalfd(r0, &(0x7f0000000080)={[0x3]}, 0x8)
bind$802154_dgram(r3, &(0x7f00000000c0)={0x24, @none={0x0, 0xffff}}, 0x14)

03:15:27 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:27 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 3)

[ 1224.010294][ T5459] FAULT_INJECTION: forcing a failure.
[ 1224.010294][ T5459] name failslab, interval 1, probability 0, space 0, times 0
[ 1224.017945][ T5460] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1224.038663][ T5461] FAULT_INJECTION: forcing a failure.
[ 1224.038663][ T5461] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1224.053707][ T5459] CPU: 1 PID: 5459 Comm: syz-executor.5 Not tainted 5.16.0-rc7-syzkaller #0
[ 1224.062589][ T5459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1224.072668][ T5459] Call Trace:
[ 1224.075953][ T5459]  <TASK>
[ 1224.078885][ T5459]  dump_stack_lvl+0xcd/0x134
[ 1224.083491][ T5459]  should_fail.cold+0x5/0xa
[ 1224.088004][ T5459]  ? __build_skb+0x21/0x60
[ 1224.092427][ T5459]  should_failslab+0x5/0x10
[ 1224.096948][ T5459]  kmem_cache_alloc+0x5e/0x3a0
[ 1224.101733][ T5459]  __build_skb+0x21/0x60
[ 1224.105991][ T5459]  build_skb+0x1e/0x190
[ 1224.110164][ T5459]  __tun_build_skb+0x2c/0x260
[ 1224.114872][ T5459]  tun_build_skb+0x5d8/0xfc0
[ 1224.119503][ T5459]  ? tun_xdp_act+0x8a0/0x8a0
[ 1224.124111][ T5459]  ? __lock_acquire+0xbbf/0x5470
[ 1224.128859][ T5466] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1224.129244][ T5459]  tun_get_user+0x812/0x3710
[ 1224.142004][ T5459]  ? tun_build_skb+0xfc0/0xfc0
[ 1224.146800][ T5459]  ? lock_downgrade+0x6e0/0x6e0
[ 1224.151693][ T5459]  tun_chr_write_iter+0xdd/0x1a0
[ 1224.156938][ T5459]  new_sync_write+0x429/0x660
[ 1224.162082][ T5459]  ? new_sync_read+0x6e0/0x6e0
[ 1224.166863][ T5459]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1224.173124][ T5459]  ? security_file_permission+0xab/0xd0
[ 1224.178708][ T5459]  vfs_write+0x7cd/0xae0
[ 1224.183067][ T5459]  ksys_write+0x12d/0x250
[ 1224.187415][ T5459]  ? __ia32_sys_read+0xb0/0xb0
[ 1224.192197][ T5459]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1224.198107][ T5459]  do_syscall_64+0x35/0xb0
[ 1224.202706][ T5459]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1224.208612][ T5459] RIP: 0033:0x7f338f2159af
[ 1224.213032][ T5459] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 1224.232975][ T5459] RSP: 002b:00007f338dbd8130 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1224.241403][ T5459] RAX: ffffffffffffffda RBX: 00007f338f375f60 RCX: 00007f338f2159af
[ 1224.249379][ T5459] RDX: 0000000000000032 RSI: 0000000020000200 RDI: 00000000000000c8
[ 1224.257365][ T5459] RBP: 00007f338dbd81d0 R08: 0000000000000000 R09: 0000000000000000
[ 1224.265456][ T5459] R10: 0000000000000032 R11: 0000000000000293 R12: 0000000000000001
[ 1224.273449][ T5459] R13: 00007ffd3d824caf R14: 00007f338dbd8300 R15: 0000000000022000
[ 1224.281550][ T5459]  </TASK>
[ 1224.284595][ T5461] CPU: 0 PID: 5461 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1224.293314][ T5461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1224.303569][ T5461] Call Trace:
[ 1224.306853][ T5461]  <TASK>
[ 1224.309776][ T5461]  dump_stack_lvl+0xcd/0x134
[ 1224.314372][ T5461]  should_fail.cold+0x5/0xa
[ 1224.318868][ T5461]  _copy_from_user+0x2c/0x180
[ 1224.323541][ T5461]  __copy_msghdr_from_user+0x91/0x4b0
[ 1224.328910][ T5461]  ? __ia32_sys_shutdown+0x70/0x70
[ 1224.334014][ T5461]  ? __lock_acquire+0x1655/0x5470
[ 1224.339041][ T5461]  ___sys_recvmsg+0xd5/0x200
[ 1224.343635][ T5461]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1224.349273][ T5461]  ? check_path.constprop.0+0x50/0x50
[ 1224.354648][ T5461]  ? find_held_lock+0x2d/0x110
[ 1224.359431][ T5461]  ? __might_fault+0xd1/0x170
[ 1224.364098][ T5461]  ? lock_downgrade+0x6e0/0x6e0
[ 1224.368950][ T5461]  do_recvmmsg+0x24d/0x6d0
[ 1224.373360][ T5461]  ? ___sys_recvmsg+0x200/0x200
[ 1224.378289][ T5461]  ? check_path.constprop.0+0x50/0x50
[ 1224.383671][ T5461]  ? __context_tracking_exit+0xb8/0xe0
[ 1224.389128][ T5461]  ? lock_downgrade+0x6e0/0x6e0
[ 1224.393975][ T5461]  ? lock_downgrade+0x6e0/0x6e0
[ 1224.398820][ T5461]  __x64_sys_recvmmsg+0x20b/0x260
[ 1224.403836][ T5461]  ? __do_sys_socketcall+0x590/0x590
[ 1224.409111][ T5461]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1224.415089][ T5461]  do_syscall_64+0x35/0xb0
[ 1224.419498][ T5461]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1224.425393][ T5461] RIP: 0033:0x7f688ab57e99
[ 1224.429806][ T5461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1224.449497][ T5461] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
03:15:27 executing program 0:
sendmsg$NL80211_CMD_JOIN_OCB(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x12100062}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x3c, 0x0, 0x300, 0x70bd25, 0x25dfdbfa, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x28}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x400}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x29}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xdf}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x23}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8001}, 0x8000)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0880450000240020000000219078ac141400ac1414aa0000045805d63eeb1c79c0c90190780448fd8800ffba4d0000"], 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_START_NAN(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r2, 0x100, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x24048800)
sendmsg$NL80211_CMD_JOIN_OCB(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x12100062}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x3c, 0x0, 0x300, 0x70bd25, 0x25dfdbfa, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x28}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x400}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x29}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xdf}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x23}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8001}, 0x8000) (async)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0880450000240020000000219078ac141400ac1414aa0000045805d63eeb1c79c0c90190780448fd8800ffba4d0000"], 0x0) (async)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00'}) (async)
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (async)
sendmsg$NL80211_CMD_START_NAN(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r2, 0x100, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x24048800) (async)

03:15:27 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x2, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:27 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1224.458082][ T5461] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1224.466051][ T5461] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1224.474011][ T5461] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1224.482023][ T5461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1224.490161][ T5461] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1224.498230][ T5461]  </TASK>
03:15:27 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14) (async)
sendmsg$802154_dgram(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x24, @short={0x2, 0x1, 0xaaa3}}, 0x14, &(0x7f0000000280)={&(0x7f0000000200)="2ad25f50821fa5d398cdd1f71baa01f075a34737dfba7d4a2828ecda395f0d3538bc4d158c6ab1f23cf51898b2b7c83986940ddaa6123ee4c75b7ff285e13835bf4590a3d9724d54e3559f42232630ec7ef15ae403b3bff607d5d8e0781c4488e79b9c834bb489f4845db03326ceb4", 0x6f}, 0x1, 0x0, 0x0, 0x4080}, 0x4000000) (async)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
sendmsg$802154_dgram(r1, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, @none={0x0, 0xffff}}, 0x14, &(0x7f0000000500)={&(0x7f00000003c0)="62446c81ba3e8e64459876f16520fb237e5e7598e8e2e9263c8256b06902106c849397288ea5f44e3746f8a6c86ec3061832fcd2706516ef5d4fb06114b2ddd72ab817024f57ff032966af6fc27c1c474f5f2d94b324d15e2bf6637591710ccfdd74af7bf8631b82ab0ec9a75c40230b1ec39fdc8391a8b44d4e95d33676518d952dac17c21b8ac5", 0x88}, 0x1, 0x0, 0x0, 0x2004c081}, 0x4000810) (async)
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
setsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000180), 0x4) (async)
ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000140)) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)
r3 = signalfd(r0, &(0x7f0000000080)={[0x3]}, 0x8)
bind$802154_dgram(r3, &(0x7f00000000c0)={0x24, @none={0x0, 0xffff}}, 0x14)

03:15:27 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x3, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:27 executing program 0:
sendmsg$NL80211_CMD_JOIN_OCB(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x12100062}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x3c, 0x0, 0x300, 0x70bd25, 0x25dfdbfa, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x28}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x400}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x29}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xdf}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x23}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8001}, 0x8000)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0880450000240020000000219078ac141400ac1414aa0000045805d63eeb1c79c0c90190780448fd8800ffba4d0000"], 0x0) (async, rerun: 64)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_START_NAN(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r2, 0x100, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x24048800)

03:15:27 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (fail_nth: 4)

03:15:27 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 4)

03:15:27 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14) (async)
sendmsg$802154_dgram(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x24, @short={0x2, 0x1, 0xaaa3}}, 0x14, &(0x7f0000000280)={&(0x7f0000000200)="2ad25f50821fa5d398cdd1f71baa01f075a34737dfba7d4a2828ecda395f0d3538bc4d158c6ab1f23cf51898b2b7c83986940ddaa6123ee4c75b7ff285e13835bf4590a3d9724d54e3559f42232630ec7ef15ae403b3bff607d5d8e0781c4488e79b9c834bb489f4845db03326ceb4", 0x6f}, 0x1, 0x0, 0x0, 0x4080}, 0x4000000) (async)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10) (async)
sendmsg$802154_dgram(r1, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, @none={0x0, 0xffff}}, 0x14, &(0x7f0000000500)={&(0x7f00000003c0)="62446c81ba3e8e64459876f16520fb237e5e7598e8e2e9263c8256b06902106c849397288ea5f44e3746f8a6c86ec3061832fcd2706516ef5d4fb06114b2ddd72ab817024f57ff032966af6fc27c1c474f5f2d94b324d15e2bf6637591710ccfdd74af7bf8631b82ab0ec9a75c40230b1ec39fdc8391a8b44d4e95d33676518d952dac17c21b8ac5", 0x88}, 0x1, 0x0, 0x0, 0x2004c081}, 0x4000810) (async)
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
setsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000180), 0x4)
ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000140))
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)
r3 = signalfd(r0, &(0x7f0000000080)={[0x3]}, 0x8)
bind$802154_dgram(r3, &(0x7f00000000c0)={0x24, @none={0x0, 0xffff}}, 0x14)

[ 1224.674126][ T5492] FAULT_INJECTION: forcing a failure.
[ 1224.674126][ T5492] name failslab, interval 1, probability 0, space 0, times 0
[ 1224.684591][ T5489] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1224.686863][ T5492] CPU: 0 PID: 5492 Comm: syz-executor.5 Not tainted 5.16.0-rc7-syzkaller #0
[ 1224.703990][ T5492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1224.714076][ T5492] Call Trace:
[ 1224.717373][ T5492]  <TASK>
[ 1224.720313][ T5492]  dump_stack_lvl+0xcd/0x134
[ 1224.724939][ T5492]  should_fail.cold+0x5/0xa
[ 1224.729481][ T5492]  ? __nf_conntrack_alloc+0x1c0/0x810
[ 1224.734890][ T5492]  should_failslab+0x5/0x10
[ 1224.739422][ T5492]  kmem_cache_alloc+0x5e/0x3a0
[ 1224.744213][ T5492]  __nf_conntrack_alloc+0x1c0/0x810
[ 1224.749511][ T5492]  init_conntrack.constprop.0+0x109c/0x1400
[ 1224.755403][ T5492]  ? __nf_conntrack_find_get+0x93a/0x1110
[ 1224.761122][ T5492]  ? nf_conntrack_alloc+0x40/0x40
[ 1224.766141][ T5492]  ? nf_ct_get_tuple_ports+0x2b0/0x2b0
[ 1224.771605][ T5492]  ? ipt_do_table+0xcf2/0x1990
[ 1224.776370][ T5492]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1224.782621][ T5492]  nf_conntrack_in+0xf28/0x15c0
[ 1224.787483][ T5492]  ? init_conntrack.constprop.0+0x1400/0x1400
[ 1224.793561][ T5492]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[ 1224.799807][ T5492]  ? ipv4_conntrack_defrag+0x1ba/0x5f0
[ 1224.805275][ T5492]  nf_hook_slow+0xc5/0x1e0
[ 1224.809697][ T5492]  nf_hook.constprop.0+0x3ac/0x650
[ 1224.814806][ T5492]  ? ip_list_rcv_finish.constprop.0+0x6e0/0x6e0
[ 1224.821044][ T5492]  ? inet_del_offload+0x50/0x50
[ 1224.825889][ T5492]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1224.832130][ T5492]  ? tun_sock_write_space+0xf2/0x1d0
[ 1224.837417][ T5492]  ? ip_list_rcv_finish.constprop.0+0x6e0/0x6e0
[ 1224.843665][ T5492]  ? ip_rcv_core+0x867/0xcb0
[ 1224.848434][ T5492]  ip_rcv+0x74/0xd0
[ 1224.852239][ T5492]  ? ip_local_deliver+0x200/0x200
[ 1224.857258][ T5492]  __netif_receive_skb_one_core+0x114/0x180
[ 1224.863154][ T5492]  ? __netif_receive_skb_core+0x3770/0x3770
[ 1224.869130][ T5492]  ? ktime_get_with_offset+0x3f2/0x500
[ 1224.874588][ T5492]  ? lockdep_hardirqs_on+0x79/0x100
[ 1224.879781][ T5492]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[ 1224.885495][ T5492]  ? ktime_get_with_offset+0x36d/0x500
[ 1224.890953][ T5492]  __netif_receive_skb+0x24/0x1b0
[ 1224.895979][ T5492]  netif_receive_skb+0x13e/0x8e0
[ 1224.901000][ T5492]  ? __netif_receive_skb+0x1b0/0x1b0
[ 1224.906285][ T5492]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1224.912277][ T5492]  tun_rx_batched.isra.0+0x460/0x720
[ 1224.917562][ T5492]  ? tun_net_open+0x120/0x120
[ 1224.922229][ T5492]  ? lock_release+0x720/0x720
[ 1224.926906][ T5492]  ? tun_get_user+0x2399/0x3710
[ 1224.931748][ T5492]  ? lock_downgrade+0x6e0/0x6e0
[ 1224.936589][ T5492]  ? eth_type_trans+0x29e/0x640
[ 1224.941439][ T5492]  ? __local_bh_enable_ip+0xa0/0x120
[ 1224.946728][ T5492]  tun_get_user+0x2576/0x3710
[ 1224.951414][ T5492]  ? tun_build_skb+0xfc0/0xfc0
[ 1224.956175][ T5492]  ? lock_downgrade+0x6e0/0x6e0
[ 1224.961032][ T5492]  tun_chr_write_iter+0xdd/0x1a0
[ 1224.965967][ T5492]  new_sync_write+0x429/0x660
[ 1224.970648][ T5492]  ? new_sync_read+0x6e0/0x6e0
[ 1224.975876][ T5492]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1224.982550][ T5492]  ? security_file_permission+0xab/0xd0
[ 1224.988134][ T5492]  vfs_write+0x7cd/0xae0
[ 1224.992558][ T5492]  ksys_write+0x12d/0x250
[ 1224.997138][ T5492]  ? __ia32_sys_read+0xb0/0xb0
[ 1225.001922][ T5492]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1225.007836][ T5492]  do_syscall_64+0x35/0xb0
[ 1225.012245][ T5492]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1225.018134][ T5492] RIP: 0033:0x7f338f2159af
[ 1225.022562][ T5492] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 1225.042278][ T5492] RSP: 002b:00007f338dbd8130 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1225.050696][ T5492] RAX: ffffffffffffffda RBX: 00007f338f375f60 RCX: 00007f338f2159af
[ 1225.058657][ T5492] RDX: 0000000000000032 RSI: 0000000020000200 RDI: 00000000000000c8
[ 1225.066618][ T5492] RBP: 00007f338dbd81d0 R08: 0000000000000000 R09: 0000000000000000
03:15:28 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:28 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x4, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1225.074577][ T5492] R10: 0000000000000032 R11: 0000000000000293 R12: 0000000000000001
[ 1225.082534][ T5492] R13: 00007ffd3d824caf R14: 00007f338dbd8300 R15: 0000000000022000
[ 1225.090514][ T5492]  </TASK>
03:15:28 executing program 0:
syz_emit_ethernet(0xee, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @generic={{0x7, 0x4, 0x3, 0x3, 0xe0, 0x68, 0x0, 0x3f, 0x33, 0x0, @loopback, @private=0xa010102, {[@noop, @lsrr={0x83, 0x0, 0x4a, [@local]}]}}, "180c9d6c7c6310311774bee4338c18ae8bd9089b884d4cd6bdee3c667f212c43d1b8d72536ebcae56bcbac67f08333316842f142e8deda28bb891f1eee2d04903d17400b7ff392628c0e65c173df3e9598d7fb4fea45749641ec0e4b041a921978bf98f1afc9a1d37cd2720fc3cbb81c92274cef25474d7acf54eecd64b1183ffd06256fcfe80d0a0c81bc5d0903a637b053ade5350159e8642fc2d1f39696ca3066596fccc8a6c592d2621204f76b516c505853d8c56ff82c7ea6a7cfb64cc9ed280894"}}}}, 0x0)

03:15:28 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
r1 = socket$caif_stream(0x25, 0x1, 0x3)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x88, 0x0, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x6}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x2}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x8}, @ETHTOOL_A_EEE_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}]}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x7f}]}, 0x88}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r1, 0x8982, &(0x7f0000000080))

03:15:28 executing program 2:
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1225.137188][ T5499] FAULT_INJECTION: forcing a failure.
[ 1225.137188][ T5499] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:28 executing program 0:
syz_emit_ethernet(0xee, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @generic={{0x7, 0x4, 0x3, 0x3, 0xe0, 0x68, 0x0, 0x3f, 0x33, 0x0, @loopback, @private=0xa010102, {[@noop, @lsrr={0x83, 0x0, 0x4a, [@local]}]}}, "180c9d6c7c6310311774bee4338c18ae8bd9089b884d4cd6bdee3c667f212c43d1b8d72536ebcae56bcbac67f08333316842f142e8deda28bb891f1eee2d04903d17400b7ff392628c0e65c173df3e9598d7fb4fea45749641ec0e4b041a921978bf98f1afc9a1d37cd2720fc3cbb81c92274cef25474d7acf54eecd64b1183ffd06256fcfe80d0a0c81bc5d0903a637b053ade5350159e8642fc2d1f39696ca3066596fccc8a6c592d2621204f76b516c505853d8c56ff82c7ea6a7cfb64cc9ed280894"}}}}, 0x0)

[ 1225.186983][ T5506] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1225.202355][ T5499] CPU: 0 PID: 5499 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1225.211283][ T5499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1225.221379][ T5499] Call Trace:
[ 1225.224668][ T5499]  <TASK>
[ 1225.227684][ T5499]  dump_stack_lvl+0xcd/0x134
[ 1225.232378][ T5499]  should_fail.cold+0x5/0xa
03:15:28 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x5, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:28 executing program 0:
syz_emit_ethernet(0xee, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @generic={{0x7, 0x4, 0x3, 0x3, 0xe0, 0x68, 0x0, 0x3f, 0x33, 0x0, @loopback, @private=0xa010102, {[@noop, @lsrr={0x83, 0x0, 0x4a, [@local]}]}}, "180c9d6c7c6310311774bee4338c18ae8bd9089b884d4cd6bdee3c667f212c43d1b8d72536ebcae56bcbac67f08333316842f142e8deda28bb891f1eee2d04903d17400b7ff392628c0e65c173df3e9598d7fb4fea45749641ec0e4b041a921978bf98f1afc9a1d37cd2720fc3cbb81c92274cef25474d7acf54eecd64b1183ffd06256fcfe80d0a0c81bc5d0903a637b053ade5350159e8642fc2d1f39696ca3066596fccc8a6c592d2621204f76b516c505853d8c56ff82c7ea6a7cfb64cc9ed280894"}}}}, 0x0)
syz_emit_ethernet(0xee, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @generic={{0x7, 0x4, 0x3, 0x3, 0xe0, 0x68, 0x0, 0x3f, 0x33, 0x0, @loopback, @private=0xa010102, {[@noop, @lsrr={0x83, 0x0, 0x4a, [@local]}]}}, "180c9d6c7c6310311774bee4338c18ae8bd9089b884d4cd6bdee3c667f212c43d1b8d72536ebcae56bcbac67f08333316842f142e8deda28bb891f1eee2d04903d17400b7ff392628c0e65c173df3e9598d7fb4fea45749641ec0e4b041a921978bf98f1afc9a1d37cd2720fc3cbb81c92274cef25474d7acf54eecd64b1183ffd06256fcfe80d0a0c81bc5d0903a637b053ade5350159e8642fc2d1f39696ca3066596fccc8a6c592d2621204f76b516c505853d8c56ff82c7ea6a7cfb64cc9ed280894"}}}}, 0x0) (async)

[ 1225.236901][ T5499]  _copy_from_user+0x2c/0x180
[ 1225.241643][ T5499]  __copy_msghdr_from_user+0x91/0x4b0
[ 1225.247058][ T5499]  ? __ia32_sys_shutdown+0x70/0x70
[ 1225.252306][ T5499]  ? __lock_acquire+0x1655/0x5470
[ 1225.257351][ T5499]  ___sys_recvmsg+0xd5/0x200
[ 1225.261946][ T5499]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1225.267581][ T5499]  ? check_path.constprop.0+0x50/0x50
[ 1225.272965][ T5499]  ? find_held_lock+0x2d/0x110
[ 1225.277735][ T5499]  ? __might_fault+0xd1/0x170
[ 1225.282417][ T5499]  ? lock_downgrade+0x6e0/0x6e0
03:15:28 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000080)=ANY=[@ANYRES16, @ANYBLOB="a06b6a46754b48cfb9523009df940922808e8002df1a4bc59e7e1a1b1a389627fe0a2fce38cc271178f4cdcf01d2634b6d888c4599a148639ff68a5200a43ef69cadc731e7138fd89889199c575f7cb6685da4db2b4ac204eec00e5b51ad91490049a52ed7b04619b03c4be6cb573ae844bfe6760583eabfee56bc2dba49c850559555363cef1960958abd51f5106dac7d8f3949b8e7e4379bb9698801b1ac92ab98ee7cef37abb12bda1367e1e23e01492875f5e6759484077455b8c05440690a6edf605393c965856231bea92a238cb9c5ff9878d13952ef3a118639eaa627b8cfbf"], 0x0)

[ 1225.287292][ T5499]  do_recvmmsg+0x24d/0x6d0
[ 1225.291717][ T5499]  ? ___sys_recvmsg+0x200/0x200
[ 1225.296573][ T5499]  ? check_path.constprop.0+0x50/0x50
[ 1225.301965][ T5499]  ? __context_tracking_exit+0xb8/0xe0
[ 1225.307434][ T5499]  ? lock_downgrade+0x6e0/0x6e0
[ 1225.312311][ T5499]  ? lock_downgrade+0x6e0/0x6e0
[ 1225.317208][ T5499]  __x64_sys_recvmmsg+0x20b/0x260
[ 1225.322260][ T5499]  ? __do_sys_socketcall+0x590/0x590
[ 1225.327562][ T5499]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1225.333485][ T5499]  do_syscall_64+0x35/0xb0
[ 1225.337917][ T5499]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1225.343824][ T5499] RIP: 0033:0x7f688ab57e99
[ 1225.348246][ T5499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1225.368131][ T5499] RSP: 002b:00007f68894ac168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1225.376563][ T5499] RAX: ffffffffffffffda RBX: 00007f688ac6b030 RCX: 00007f688ab57e99
03:15:28 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (fail_nth: 5)

03:15:28 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 5)

03:15:28 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x6, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:28 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000080)=ANY=[@ANYRES16, @ANYBLOB="a06b6a46754b48cfb9523009df940922808e8002df1a4bc59e7e1a1b1a389627fe0a2fce38cc271178f4cdcf01d2634b6d888c4599a148639ff68a5200a43ef69cadc731e7138fd89889199c575f7cb6685da4db2b4ac204eec00e5b51ad91490049a52ed7b04619b03c4be6cb573ae844bfe6760583eabfee56bc2dba49c850559555363cef1960958abd51f5106dac7d8f3949b8e7e4379bb9698801b1ac92ab98ee7cef37abb12bda1367e1e23e01492875f5e6759484077455b8c05440690a6edf605393c965856231bea92a238cb9c5ff9878d13952ef3a118639eaa627b8cfbf"], 0x0)

[ 1225.384563][ T5499] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000004
[ 1225.392559][ T5499] RBP: 00007f68894ac1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1225.400536][ T5499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1225.408511][ T5499] R13: 00007ffc79e776af R14: 00007f68894ac300 R15: 0000000000022000
[ 1225.416517][ T5499]  </TASK>
[ 1225.492231][ T5523] FAULT_INJECTION: forcing a failure.
[ 1225.492231][ T5523] name failslab, interval 1, probability 0, space 0, times 0
[ 1225.505000][ T5523] CPU: 1 PID: 5523 Comm: syz-executor.5 Not tainted 5.16.0-rc7-syzkaller #0
[ 1225.509436][ T5525] FAULT_INJECTION: forcing a failure.
[ 1225.509436][ T5525] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1225.513696][ T5523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1225.513717][ T5523] Call Trace:
[ 1225.513726][ T5523]  <TASK>
[ 1225.513736][ T5523]  dump_stack_lvl+0xcd/0x134
[ 1225.513769][ T5523]  should_fail.cold+0x5/0xa
[ 1225.513792][ T5523]  ? nf_ct_ext_add+0x27d/0x6c0
[ 1225.513820][ T5523]  should_failslab+0x5/0x10
[ 1225.513850][ T5523]  __kmalloc_track_caller+0x79/0x320
[ 1225.513873][ T5523]  ? nf_ct_ext_add+0x2d8/0x6c0
[ 1225.513904][ T5523]  krealloc+0x87/0xf0
[ 1225.513928][ T5523]  nf_ct_ext_add+0x2d8/0x6c0
[ 1225.513961][ T5523]  init_conntrack.constprop.0+0x44c/0x1400
[ 1225.513989][ T5523]  ? __nf_conntrack_find_get+0x93a/0x1110
[ 1225.537177][ T5523]  ? nf_conntrack_alloc+0x40/0x40
[ 1225.537217][ T5523]  ? nf_ct_get_tuple_ports+0x2b0/0x2b0
[ 1225.537247][ T5523]  ? ipt_do_table+0xcf2/0x1990
[ 1225.537269][ T5523]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1225.537299][ T5523]  nf_conntrack_in+0xf28/0x15c0
[ 1225.618759][ T5523]  ? init_conntrack.constprop.0+0x1400/0x1400
[ 1225.624863][ T5523]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[ 1225.631111][ T5523]  ? ipv4_conntrack_defrag+0x1ba/0x5f0
[ 1225.636578][ T5523]  nf_hook_slow+0xc5/0x1e0
[ 1225.641004][ T5523]  nf_hook.constprop.0+0x3ac/0x650
[ 1225.646121][ T5523]  ? ip_list_rcv_finish.constprop.0+0x6e0/0x6e0
[ 1225.652370][ T5523]  ? inet_del_offload+0x50/0x50
[ 1225.657220][ T5523]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1225.663477][ T5523]  ? tun_sock_write_space+0xf2/0x1d0
[ 1225.668767][ T5523]  ? ip_list_rcv_finish.constprop.0+0x6e0/0x6e0
[ 1225.675013][ T5523]  ? ip_rcv_core+0x867/0xcb0
[ 1225.679611][ T5523]  ip_rcv+0x74/0xd0
[ 1225.683425][ T5523]  ? ip_local_deliver+0x200/0x200
[ 1225.688452][ T5523]  __netif_receive_skb_one_core+0x114/0x180
[ 1225.694356][ T5523]  ? __netif_receive_skb_core+0x3770/0x3770
[ 1225.700255][ T5523]  ? ktime_get_with_offset+0x3f2/0x500
[ 1225.705722][ T5523]  ? lockdep_hardirqs_on+0x79/0x100
[ 1225.710924][ T5523]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[ 1225.716646][ T5523]  ? ktime_get_with_offset+0x36d/0x500
[ 1225.722114][ T5523]  __netif_receive_skb+0x24/0x1b0
[ 1225.727149][ T5523]  netif_receive_skb+0x13e/0x8e0
[ 1225.732092][ T5523]  ? __netif_receive_skb+0x1b0/0x1b0
[ 1225.737392][ T5523]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1225.743387][ T5523]  tun_rx_batched.isra.0+0x460/0x720
[ 1225.748683][ T5523]  ? tun_net_open+0x120/0x120
[ 1225.753367][ T5523]  ? lock_release+0x720/0x720
[ 1225.758050][ T5523]  ? tun_get_user+0x2399/0x3710
[ 1225.762906][ T5523]  ? lock_downgrade+0x6e0/0x6e0
[ 1225.767941][ T5523]  ? eth_type_trans+0x29e/0x640
[ 1225.772893][ T5523]  ? __local_bh_enable_ip+0xa0/0x120
[ 1225.778244][ T5523]  tun_get_user+0x2576/0x3710
[ 1225.783115][ T5523]  ? tun_build_skb+0xfc0/0xfc0
[ 1225.787889][ T5523]  ? lock_downgrade+0x6e0/0x6e0
[ 1225.792768][ T5523]  tun_chr_write_iter+0xdd/0x1a0
[ 1225.797711][ T5523]  new_sync_write+0x429/0x660
[ 1225.802395][ T5523]  ? new_sync_read+0x6e0/0x6e0
[ 1225.807171][ T5523]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1225.813512][ T5523]  ? security_file_permission+0xab/0xd0
[ 1225.819076][ T5523]  vfs_write+0x7cd/0xae0
[ 1225.823326][ T5523]  ksys_write+0x12d/0x250
[ 1225.827660][ T5523]  ? __ia32_sys_read+0xb0/0xb0
[ 1225.832426][ T5523]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1225.838329][ T5523]  do_syscall_64+0x35/0xb0
[ 1225.842747][ T5523]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1225.848647][ T5523] RIP: 0033:0x7f338f2159af
[ 1225.853062][ T5523] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 1225.872958][ T5523] RSP: 002b:00007f338dbd8130 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1225.881462][ T5523] RAX: ffffffffffffffda RBX: 00007f338f375f60 RCX: 00007f338f2159af
[ 1225.889430][ T5523] RDX: 0000000000000032 RSI: 0000000020000200 RDI: 00000000000000c8
[ 1225.897399][ T5523] RBP: 00007f338dbd81d0 R08: 0000000000000000 R09: 0000000000000000
[ 1225.905451][ T5523] R10: 0000000000000032 R11: 0000000000000293 R12: 0000000000000001
[ 1225.913417][ T5523] R13: 00007ffd3d824caf R14: 00007f338dbd8300 R15: 0000000000022000
[ 1225.921493][ T5523]  </TASK>
[ 1225.924519][ T5525] CPU: 0 PID: 5525 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1225.924684][ T5523] dccp_invalid_packet: P.Data Offset(4) too small
03:15:29 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000080)=ANY=[@ANYRES16, @ANYBLOB="a06b6a46754b48cfb9523009df940922808e8002df1a4bc59e7e1a1b1a389627fe0a2fce38cc271178f4cdcf01d2634b6d888c4599a148639ff68a5200a43ef69cadc731e7138fd89889199c575f7cb6685da4db2b4ac204eec00e5b51ad91490049a52ed7b04619b03c4be6cb573ae844bfe6760583eabfee56bc2dba49c850559555363cef1960958abd51f5106dac7d8f3949b8e7e4379bb9698801b1ac92ab98ee7cef37abb12bda1367e1e23e01492875f5e6759484077455b8c05440690a6edf605393c965856231bea92a238cb9c5ff9878d13952ef3a118639eaa627b8cfbf"], 0x0)

[ 1225.933198][ T5525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1225.949617][ T5525] Call Trace:
[ 1225.952920][ T5525]  <TASK>
[ 1225.955857][ T5525]  dump_stack_lvl+0xcd/0x134
[ 1225.960626][ T5525]  should_fail.cold+0x5/0xa
[ 1225.965126][ T5525]  _copy_from_user+0x2c/0x180
[ 1225.969991][ T5525]  __copy_msghdr_from_user+0x91/0x4b0
[ 1225.975370][ T5525]  ? __ia32_sys_shutdown+0x70/0x70
[ 1225.980479][ T5525]  ? __lock_acquire+0x1655/0x5470
[ 1225.985509][ T5525]  ___sys_recvmsg+0xd5/0x200
[ 1225.990093][ T5525]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1225.995719][ T5525]  ? check_path.constprop.0+0x50/0x50
[ 1226.001096][ T5525]  ? find_held_lock+0x2d/0x110
[ 1226.006029][ T5525]  ? __might_fault+0xd1/0x170
[ 1226.010698][ T5525]  ? lock_downgrade+0x6e0/0x6e0
[ 1226.015554][ T5525]  do_recvmmsg+0x24d/0x6d0
[ 1226.019967][ T5525]  ? ___sys_recvmsg+0x200/0x200
[ 1226.024809][ T5525]  ? check_path.constprop.0+0x50/0x50
[ 1226.030359][ T5525]  ? __context_tracking_exit+0xb8/0xe0
[ 1226.035812][ T5525]  ? lock_downgrade+0x6e0/0x6e0
[ 1226.040655][ T5525]  ? lock_downgrade+0x6e0/0x6e0
[ 1226.045502][ T5525]  __x64_sys_recvmmsg+0x20b/0x260
[ 1226.050530][ T5525]  ? __do_sys_socketcall+0x590/0x590
[ 1226.055978][ T5525]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1226.061868][ T5525]  do_syscall_64+0x35/0xb0
[ 1226.066534][ T5525]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1226.072422][ T5525] RIP: 0033:0x7f688ab57e99
[ 1226.076830][ T5525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1226.096608][ T5525] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1226.105190][ T5525] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1226.113151][ T5525] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1226.121112][ T5525] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1226.129081][ T5525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1226.137040][ T5525] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1226.145103][ T5525]  </TASK>
03:15:29 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x7, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:29 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
r1 = socket$caif_stream(0x25, 0x1, 0x3) (async)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x88, 0x0, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x6}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x2}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x8}, @ETHTOOL_A_EEE_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}]}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x7f}]}, 0x88}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r1, 0x8982, &(0x7f0000000080))

03:15:29 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:29 executing program 0:
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000140)={@remote, @multicast1, <r0=>0x0}, &(0x7f0000000180)=0xc)
connect$can_j1939(0xffffffffffffffff, &(0x7f00000001c0)={0x1d, r0, 0x3, {0x2, 0xff}}, 0x18)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x35, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaabbbbbbbbbbbbbb001101010e05387189141bc26a4d54bff1ed9039c828a3bf9625d84beae1e015f09667a42968dc"], &(0x7f0000000040)={0x1, 0x3, [0x761, 0xde0, 0x658, 0xfd8]})

03:15:29 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 6)

03:15:29 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (fail_nth: 6)

03:15:29 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x8, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1226.270976][ T5532] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1226.284234][ T5540] FAULT_INJECTION: forcing a failure.
[ 1226.284234][ T5540] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1226.291611][ T5539] dccp_invalid_packet: P.Data Offset(4) too small
[ 1226.323797][ T5540] CPU: 1 PID: 5540 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1226.326301][ T5539] FAULT_INJECTION: forcing a failure.
[ 1226.326301][ T5539] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1226.332567][ T5540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1226.332590][ T5540] Call Trace:
[ 1226.332599][ T5540]  <TASK>
[ 1226.332607][ T5540]  dump_stack_lvl+0xcd/0x134
[ 1226.332643][ T5540]  should_fail.cold+0x5/0xa
[ 1226.332666][ T5540]  _copy_from_user+0x2c/0x180
[ 1226.355716][ T5540]  __copy_msghdr_from_user+0x91/0x4b0
[ 1226.355750][ T5540]  ? __ia32_sys_shutdown+0x70/0x70
[ 1226.386406][ T5540]  ? __lock_acquire+0x1655/0x5470
[ 1226.391623][ T5540]  ___sys_recvmsg+0xd5/0x200
[ 1226.396212][ T5540]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1226.402017][ T5540]  ? check_path.constprop.0+0x50/0x50
[ 1226.407483][ T5540]  ? find_held_lock+0x2d/0x110
[ 1226.412252][ T5540]  ? __might_fault+0xd1/0x170
[ 1226.416940][ T5540]  ? lock_downgrade+0x6e0/0x6e0
[ 1226.421802][ T5540]  do_recvmmsg+0x24d/0x6d0
[ 1226.426225][ T5540]  ? ___sys_recvmsg+0x200/0x200
[ 1226.431074][ T5540]  ? check_path.constprop.0+0x50/0x50
[ 1226.436541][ T5540]  ? __context_tracking_exit+0xb8/0xe0
[ 1226.441997][ T5540]  ? lock_downgrade+0x6e0/0x6e0
[ 1226.446851][ T5540]  ? lock_downgrade+0x6e0/0x6e0
[ 1226.451700][ T5540]  __x64_sys_recvmmsg+0x20b/0x260
[ 1226.456726][ T5540]  ? __do_sys_socketcall+0x590/0x590
[ 1226.462186][ T5540]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1226.468256][ T5540]  do_syscall_64+0x35/0xb0
[ 1226.472672][ T5540]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1226.478569][ T5540] RIP: 0033:0x7f688ab57e99
[ 1226.482984][ T5540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1226.502689][ T5540] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1226.511287][ T5540] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
03:15:29 executing program 0:
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000140)={@remote, @multicast1, <r0=>0x0}, &(0x7f0000000180)=0xc)
connect$can_j1939(0xffffffffffffffff, &(0x7f00000001c0)={0x1d, r0, 0x3, {0x2, 0xff}}, 0x18)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x35, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaabbbbbbbbbbbbbb001101010e05387189141bc26a4d54bff1ed9039c828a3bf9625d84beae1e015f09667a42968dc"], &(0x7f0000000040)={0x1, 0x3, [0x761, 0xde0, 0x658, 0xfd8]})
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628) (async)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000140)={@remote, @multicast1}, &(0x7f0000000180)=0xc) (async)
connect$can_j1939(0xffffffffffffffff, &(0x7f00000001c0)={0x1d, r0, 0x3, {0x2, 0xff}}, 0x18) (async)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x35, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaabbbbbbbbbbbbbb001101010e05387189141bc26a4d54bff1ed9039c828a3bf9625d84beae1e015f09667a42968dc"], &(0x7f0000000040)={0x1, 0x3, [0x761, 0xde0, 0x658, 0xfd8]}) (async)

03:15:29 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1226.519260][ T5540] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1226.527224][ T5540] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1226.535370][ T5540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1226.543341][ T5540] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1226.551329][ T5540]  </TASK>
[ 1226.554341][ T5539] CPU: 0 PID: 5539 Comm: syz-executor.5 Not tainted 5.16.0-rc7-syzkaller #0
[ 1226.563040][ T5539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
03:15:29 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 7)

[ 1226.573194][ T5539] Call Trace:
[ 1226.576476][ T5539]  <TASK>
[ 1226.579410][ T5539]  dump_stack_lvl+0xcd/0x134
[ 1226.584022][ T5539]  should_fail.cold+0x5/0xa
[ 1226.588543][ T5539]  _copy_to_user+0x2c/0x150
[ 1226.594973][ T5539]  simple_read_from_buffer+0xcc/0x160
[ 1226.600368][ T5539]  proc_fail_nth_read+0x187/0x220
[ 1226.605412][ T5539]  ? proc_tid_comm_permission+0x1b0/0x1b0
[ 1226.611156][ T5539]  ? security_file_permission+0xab/0xd0
[ 1226.616726][ T5539]  ? proc_tid_comm_permission+0x1b0/0x1b0
[ 1226.618556][ T5546] FAULT_INJECTION: forcing a failure.
[ 1226.618556][ T5546] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1226.622622][ T5539]  vfs_read+0x1b5/0x600
[ 1226.622655][ T5539]  ksys_read+0x12d/0x250
[ 1226.622678][ T5539]  ? vfs_write+0xae0/0xae0
[ 1226.648613][ T5539]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1226.654517][ T5539]  do_syscall_64+0x35/0xb0
[ 1226.658934][ T5539]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1226.664919][ T5539] RIP: 0033:0x7f338f215a4c
[ 1226.669351][ T5539] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1226.688986][ T5539] RSP: 002b:00007f338dbd8160 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1226.697431][ T5539] RAX: ffffffffffffffda RBX: 00007f338f375f60 RCX: 00007f338f215a4c
[ 1226.705424][ T5539] RDX: 000000000000000f RSI: 00007f338dbd81e0 RDI: 0000000000000003
[ 1226.713507][ T5539] RBP: 00007f338dbd81d0 R08: 0000000000000000 R09: 0000000000000000
[ 1226.721499][ T5539] R10: 0000000000000032 R11: 0000000000000246 R12: 0000000000000001
[ 1226.729488][ T5539] R13: 00007ffd3d824caf R14: 00007f338dbd8300 R15: 0000000000022000
[ 1226.737585][ T5539]  </TASK>
[ 1226.768689][ T5546] CPU: 1 PID: 5546 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1226.777538][ T5546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1226.787619][ T5546] Call Trace:
[ 1226.791095][ T5546]  <TASK>
[ 1226.794033][ T5546]  dump_stack_lvl+0xcd/0x134
[ 1226.798652][ T5546]  should_fail.cold+0x5/0xa
[ 1226.803194][ T5546]  _copy_from_user+0x2c/0x180
[ 1226.807996][ T5546]  __copy_msghdr_from_user+0x91/0x4b0
[ 1226.813402][ T5546]  ? __ia32_sys_shutdown+0x70/0x70
[ 1226.818547][ T5546]  ? __lock_acquire+0x1655/0x5470
[ 1226.823605][ T5546]  ___sys_recvmsg+0xd5/0x200
[ 1226.828196][ T5546]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1226.834097][ T5546]  ? check_path.constprop.0+0x50/0x50
[ 1226.840021][ T5546]  ? find_held_lock+0x2d/0x110
[ 1226.844936][ T5546]  ? __might_fault+0xd1/0x170
[ 1226.849601][ T5546]  ? lock_downgrade+0x6e0/0x6e0
[ 1226.854644][ T5546]  do_recvmmsg+0x24d/0x6d0
[ 1226.859058][ T5546]  ? ___sys_recvmsg+0x200/0x200
[ 1226.863908][ T5546]  ? check_path.constprop.0+0x50/0x50
[ 1226.869320][ T5546]  ? __context_tracking_exit+0xb8/0xe0
[ 1226.874811][ T5546]  ? lock_downgrade+0x6e0/0x6e0
[ 1226.879673][ T5546]  ? lock_downgrade+0x6e0/0x6e0
[ 1226.884625][ T5546]  __x64_sys_recvmmsg+0x20b/0x260
[ 1226.889687][ T5546]  ? __do_sys_socketcall+0x590/0x590
[ 1226.894977][ T5546]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1226.900876][ T5546]  do_syscall_64+0x35/0xb0
[ 1226.905294][ T5546]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1226.911186][ T5546] RIP: 0033:0x7f688ab57e99
[ 1226.915586][ T5546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1226.935180][ T5546] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1226.943663][ T5546] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1226.951618][ T5546] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1226.959571][ T5546] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:29 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
r1 = socket$caif_stream(0x25, 0x1, 0x3)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x88, 0x0, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x6}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x2}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x8}, @ETHTOOL_A_EEE_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}]}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x7f}]}, 0x88}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r1, 0x8982, &(0x7f0000000080))
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)
socket$caif_stream(0x25, 0x1, 0x3) (async)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x88, 0x0, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x6}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x2}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x8}, @ETHTOOL_A_EEE_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}]}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x7f}]}, 0x88}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) (async)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r1, 0x8982, &(0x7f0000000080)) (async)

03:15:30 executing program 0:
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628) (async)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000140)={@remote, @multicast1, <r0=>0x0}, &(0x7f0000000180)=0xc)
connect$can_j1939(0xffffffffffffffff, &(0x7f00000001c0)={0x1d, r0, 0x3, {0x2, 0xff}}, 0x18)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x35, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaabbbbbbbbbbbbbb001101010e05387189141bc26a4d54bff1ed9039c828a3bf9625d84beae1e015f09667a42968dc"], &(0x7f0000000040)={0x1, 0x3, [0x761, 0xde0, 0x658, 0xfd8]})

03:15:30 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:30 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1226.967525][ T5546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1226.975662][ T5546] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1226.983630][ T5546]  </TASK>
03:15:30 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x9, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:30 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
connect$802154_dgram(r1, &(0x7f0000000080)={0x24, @short={0x2, 0xffff, 0xffff}}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:30 executing program 5:
syz_emit_ethernet(0xa, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1227.021108][ T5568] dccp_invalid_packet: P.Data Offset(4) too small
03:15:30 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 8)

03:15:30 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:30 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa0000000004019078044cfd8800ffba4d"], 0x0)

03:15:30 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0xa, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:30 executing program 5:
syz_emit_ethernet(0xd, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:30 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1227.145178][ T5581] FAULT_INJECTION: forcing a failure.
[ 1227.145178][ T5581] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1227.178649][ T5581] CPU: 0 PID: 5581 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
03:15:30 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0xb, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:30 executing program 5:
syz_emit_ethernet(0x33, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1227.187501][ T5581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1227.197674][ T5581] Call Trace:
[ 1227.200965][ T5581]  <TASK>
[ 1227.203897][ T5581]  dump_stack_lvl+0xcd/0x134
[ 1227.208502][ T5581]  should_fail.cold+0x5/0xa
[ 1227.213013][ T5581]  _copy_from_user+0x2c/0x180
[ 1227.217706][ T5581]  __copy_msghdr_from_user+0x91/0x4b0
[ 1227.223091][ T5581]  ? __ia32_sys_shutdown+0x70/0x70
[ 1227.228215][ T5581]  ? mark_held_locks+0x9f/0xe0
[ 1227.233090][ T5581]  ___sys_recvmsg+0xd5/0x200
[ 1227.237871][ T5581]  ? __copy_msghdr_from_user+0x4b0/0x4b0
03:15:30 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa0000000004019078044cfd8800ffba4d"], 0x0)

03:15:30 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x2)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1227.243517][ T5581]  ? check_path.constprop.0+0x50/0x50
[ 1227.245636][ T5590] dccp_invalid_packet: P.Data Offset(4) too small
[ 1227.249001][ T5581]  ? find_held_lock+0x2d/0x110
[ 1227.249033][ T5581]  ? __might_fault+0xd1/0x170
[ 1227.264845][ T5581]  ? lock_downgrade+0x6e0/0x6e0
[ 1227.269934][ T5581]  do_recvmmsg+0x24d/0x6d0
[ 1227.274390][ T5581]  ? ___sys_recvmsg+0x200/0x200
[ 1227.279278][ T5581]  ? check_path.constprop.0+0x50/0x50
[ 1227.284708][ T5581]  ? __context_tracking_exit+0xb8/0xe0
[ 1227.290210][ T5581]  ? lock_downgrade+0x6e0/0x6e0
[ 1227.295097][ T5581]  ? lock_downgrade+0x6e0/0x6e0
[ 1227.299985][ T5581]  __x64_sys_recvmmsg+0x20b/0x260
[ 1227.305036][ T5581]  ? __do_sys_socketcall+0x590/0x590
[ 1227.310337][ T5581]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1227.316257][ T5581]  do_syscall_64+0x35/0xb0
[ 1227.320686][ T5581]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1227.326590][ T5581] RIP: 0033:0x7f688ab57e99
[ 1227.331000][ T5581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1227.335655][ T5597] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1227.350619][ T5581] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1227.350646][ T5581] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1227.350659][ T5581] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1227.350673][ T5581] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:30 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10)
connect$802154_dgram(r1, &(0x7f0000000080)={0x24, @short={0x2, 0xffff, 0xffff}}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:30 executing program 5:
syz_emit_ethernet(0x47, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:30 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 9)

03:15:30 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa0000000004019078044cfd8800ffba4d"], 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa0000000004019078044cfd8800ffba4d"], 0x0) (async)

03:15:30 executing program 5:
syz_emit_ethernet(0x72, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1227.350686][ T5581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1227.350699][ T5581] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1227.350727][ T5581]  </TASK>
[ 1227.425441][ T5604] dccp_invalid_packet: P.Data Offset(4) too small
03:15:30 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:30 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
ftruncate(r1, 0x8000)
close(r1)
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000100)=ANY=[@ANYBLOB="c1aaaaaaaa00b3a6f2cbb4f1000000219078ac141400aca9644df0dadd9b2f7b07332733f07653455d073aacd79ff2212351b440490add3cbd830026e846a7228c1fcdefac3fccf875f5092bc63351cf0ba529a62ab949997532a550c23dfb62e4f6c39b39468be3251fd7e528482e84dd440e552881d52f446086167fd0333b11697e0b7937b05b015b425c69f8068ee81cd55a07f791b5962e64a4c3574e00d4bc3b1f16645e13984f19c8982f8d718d6be0983426df2bbca512532af67db647a8bbc1ca30a3da17f804062006970d946ed0747db8aa8fee53280c77f500000000000000"], 0x0)

03:15:30 executing program 5:
syz_emit_ethernet(0xfdef, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1227.485698][ T5609] dccp_invalid_packet: P.Data Offset(4) too small
[ 1227.523157][ T5610] FAULT_INJECTION: forcing a failure.
03:15:30 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r1}, 0x10) (async)
connect$802154_dgram(r1, &(0x7f0000000080)={0x24, @short={0x2, 0xffff, 0xffff}}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1227.523157][ T5610] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:30 executing program 5:
syz_emit_ethernet(0x20000232, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:30 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
ftruncate(r1, 0x8000)
close(r1)
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000100)=ANY=[@ANYBLOB="c1aaaaaaaa00b3a6f2cbb4f1000000219078ac141400aca9644df0dadd9b2f7b07332733f07653455d073aacd79ff2212351b440490add3cbd830026e846a7228c1fcdefac3fccf875f5092bc63351cf0ba529a62ab949997532a550c23dfb62e4f6c39b39468be3251fd7e528482e84dd440e552881d52f446086167fd0333b11697e0b7937b05b015b425c69f8068ee81cd55a07f791b5962e64a4c3574e00d4bc3b1f16645e13984f19c8982f8d718d6be0983426df2bbca512532af67db647a8bbc1ca30a3da17f804062006970d946ed0747db8aa8fee53280c77f500000000000000"], 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
syz_open_procfs$userns(0x0, 0x0) (async)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0) (async)
ftruncate(r1, 0x8000) (async)
close(r1) (async)
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0) (async)
syz_emit_ethernet(0x32, &(0x7f0000000100)=ANY=[@ANYBLOB="c1aaaaaaaa00b3a6f2cbb4f1000000219078ac141400aca9644df0dadd9b2f7b07332733f07653455d073aacd79ff2212351b440490add3cbd830026e846a7228c1fcdefac3fccf875f5092bc63351cf0ba529a62ab949997532a550c23dfb62e4f6c39b39468be3251fd7e528482e84dd440e552881d52f446086167fd0333b11697e0b7937b05b015b425c69f8068ee81cd55a07f791b5962e64a4c3574e00d4bc3b1f16645e13984f19c8982f8d718d6be0983426df2bbca512532af67db647a8bbc1ca30a3da17f804062006970d946ed0747db8aa8fee53280c77f500000000000000"], 0x0) (async)

[ 1227.559409][ T5615] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1227.569885][ T5617] dccp_invalid_packet: P.Data Offset(4) too small
[ 1227.570249][ T5610] CPU: 0 PID: 5610 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1227.585092][ T5610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1227.595270][ T5610] Call Trace:
[ 1227.598560][ T5610]  <TASK>
[ 1227.601582][ T5610]  dump_stack_lvl+0xcd/0x134
[ 1227.606309][ T5610]  should_fail.cold+0x5/0xa
[ 1227.610847][ T5610]  _copy_from_user+0x2c/0x180
[ 1227.615552][ T5610]  __copy_msghdr_from_user+0x91/0x4b0
[ 1227.620938][ T5610]  ? __ia32_sys_shutdown+0x70/0x70
[ 1227.626058][ T5610]  ? __lock_acquire+0x1655/0x5470
[ 1227.631107][ T5610]  ___sys_recvmsg+0xd5/0x200
[ 1227.635707][ T5610]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1227.641353][ T5610]  ? check_path.constprop.0+0x50/0x50
[ 1227.647190][ T5610]  ? find_held_lock+0x2d/0x110
[ 1227.651988][ T5610]  ? __might_fault+0xd1/0x170
[ 1227.656695][ T5610]  ? lock_downgrade+0x6e0/0x6e0
[ 1227.661575][ T5610]  do_recvmmsg+0x24d/0x6d0
[ 1227.666005][ T5610]  ? ___sys_recvmsg+0x200/0x200
[ 1227.670957][ T5610]  ? check_path.constprop.0+0x50/0x50
[ 1227.676341][ T5610]  ? __context_tracking_exit+0xb8/0xe0
[ 1227.681797][ T5610]  ? lock_downgrade+0x6e0/0x6e0
[ 1227.686648][ T5610]  __x64_sys_recvmmsg+0x20b/0x260
[ 1227.691673][ T5610]  ? __do_sys_socketcall+0x590/0x590
[ 1227.696951][ T5610]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1227.702848][ T5610]  do_syscall_64+0x35/0xb0
[ 1227.707659][ T5610]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1227.713547][ T5610] RIP: 0033:0x7f688ab57e99
[ 1227.717960][ T5610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1227.737559][ T5610] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1227.745961][ T5610] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
03:15:30 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x4)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:30 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:30 executing program 5:
syz_emit_ethernet(0xfffffdef, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1227.754092][ T5610] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1227.762049][ T5610] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1227.770005][ T5610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1227.777962][ T5610] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1227.785935][ T5610]  </TASK>
03:15:30 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 10)

03:15:31 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0) (async)
ftruncate(r1, 0x8000)
close(r1)
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0) (async)
syz_emit_ethernet(0x32, &(0x7f0000000100)=ANY=[@ANYBLOB="c1aaaaaaaa00b3a6f2cbb4f1000000219078ac141400aca9644df0dadd9b2f7b07332733f07653455d073aacd79ff2212351b440490add3cbd830026e846a7228c1fcdefac3fccf875f5092bc63351cf0ba529a62ab949997532a550c23dfb62e4f6c39b39468be3251fd7e528482e84dd440e552881d52f446086167fd0333b11697e0b7937b05b015b425c69f8068ee81cd55a07f791b5962e64a4c3574e00d4bc3b1f16645e13984f19c8982f8d718d6be0983426df2bbca512532af67db647a8bbc1ca30a3da17f804062006970d946ed0747db8aa8fee53280c77f500000000000000"], 0x0)

03:15:31 executing program 5:
syz_emit_ethernet(0xfffffffffffffdef, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:31 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080), 0x4)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1227.834720][ T5634] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1227.902619][ T5641] FAULT_INJECTION: forcing a failure.
[ 1227.902619][ T5641] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1227.944236][ T5641] CPU: 1 PID: 5641 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1227.953147][ T5641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1227.963218][ T5641] Call Trace:
[ 1227.966502][ T5641]  <TASK>
[ 1227.969515][ T5641]  dump_stack_lvl+0xcd/0x134
[ 1227.974117][ T5641]  should_fail.cold+0x5/0xa
[ 1227.978623][ T5641]  _copy_from_user+0x2c/0x180
[ 1227.983309][ T5641]  __copy_msghdr_from_user+0x91/0x4b0
[ 1227.988694][ T5641]  ? __ia32_sys_shutdown+0x70/0x70
[ 1227.993802][ T5641]  ? __lock_acquire+0x1655/0x5470
[ 1227.998835][ T5641]  ___sys_recvmsg+0xd5/0x200
[ 1228.003426][ T5641]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1228.009058][ T5641]  ? check_path.constprop.0+0x50/0x50
[ 1228.014441][ T5641]  ? find_held_lock+0x2d/0x110
[ 1228.019793][ T5641]  ? __might_fault+0xd1/0x170
[ 1228.024551][ T5641]  ? lock_downgrade+0x6e0/0x6e0
[ 1228.029417][ T5641]  do_recvmmsg+0x24d/0x6d0
[ 1228.033855][ T5641]  ? ___sys_recvmsg+0x200/0x200
[ 1228.038718][ T5641]  ? check_path.constprop.0+0x50/0x50
[ 1228.044203][ T5641]  ? __context_tracking_exit+0xb8/0xe0
[ 1228.049785][ T5641]  ? lock_downgrade+0x6e0/0x6e0
[ 1228.054658][ T5641]  ? lock_downgrade+0x6e0/0x6e0
[ 1228.059524][ T5641]  __x64_sys_recvmmsg+0x20b/0x260
[ 1228.064548][ T5641]  ? __do_sys_socketcall+0x590/0x590
[ 1228.069833][ T5641]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1228.075833][ T5641]  do_syscall_64+0x35/0xb0
[ 1228.080248][ T5641]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1228.086144][ T5641] RIP: 0033:0x7f688ab57e99
[ 1228.090566][ T5641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1228.110504][ T5641] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1228.118941][ T5641] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1228.127106][ T5641] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1228.135622][ T5641] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:31 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async, rerun: 32)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080), 0x4) (async, rerun: 32)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:31 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x300, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:31 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa97aaaaaaaa080045000024aa00000000040190780448fd8800ffba4d"], 0x0)
syz_emit_ethernet(0x23, &(0x7f0000000000)={@remote, @multicast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x4, 0x1, 0x1}}, {@llc={0x4, {@snap={0xaa, 0x0, "ce47", "eadbae", 0xfbfb, "efc43280"}}}}}, 0x0)

03:15:31 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x7)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1228.143609][ T5641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1228.151577][ T5641] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1228.159584][ T5641]  </TASK>
03:15:31 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa97aaaaaaaa080045000024aa00000000040190780448fd8800ffba4d"], 0x0) (async)
syz_emit_ethernet(0x23, &(0x7f0000000000)={@remote, @multicast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x4, 0x1, 0x1}}, {@llc={0x4, {@snap={0xaa, 0x0, "ce47", "eadbae", 0xfbfb, "efc43280"}}}}}, 0x0)

03:15:31 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xa)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:31 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x500, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:31 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 11)

[ 1228.202960][ T5656] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:31 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa97aaaaaaaa080045000024aa00000000040190780448fd8800ffba4d"], 0x0)
syz_emit_ethernet(0x23, &(0x7f0000000000)={@remote, @multicast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x4, 0x1, 0x1}}, {@llc={0x4, {@snap={0xaa, 0x0, "ce47", "eadbae", 0xfbfb, "efc43280"}}}}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa97aaaaaaaa080045000024aa00000000040190780448fd8800ffba4d"], 0x0) (async)
syz_emit_ethernet(0x23, &(0x7f0000000000)={@remote, @multicast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x4, 0x1, 0x1}}, {@llc={0x4, {@snap={0xaa, 0x0, "ce47", "eadbae", 0xfbfb, "efc43280"}}}}}, 0x0) (async)

03:15:31 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080), 0x4)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080), 0x4) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)

03:15:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1228.328453][ T5673] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1228.336944][ T5669] FAULT_INJECTION: forcing a failure.
[ 1228.336944][ T5669] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1228.337013][ T5669] CPU: 0 PID: 5669 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1228.359166][ T5669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1228.369366][ T5669] Call Trace:
[ 1228.372660][ T5669]  <TASK>
03:15:31 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x409}, 0x0, 0xd, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1228.375599][ T5669]  dump_stack_lvl+0xcd/0x134
[ 1228.380215][ T5669]  should_fail.cold+0x5/0xa
[ 1228.384926][ T5669]  _copy_from_user+0x2c/0x180
[ 1228.389811][ T5669]  __copy_msghdr_from_user+0x91/0x4b0
[ 1228.395215][ T5669]  ? __ia32_sys_shutdown+0x70/0x70
[ 1228.400359][ T5669]  ? __lock_acquire+0x1655/0x5470
[ 1228.405482][ T5669]  ___sys_recvmsg+0xd5/0x200
[ 1228.410069][ T5669]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1228.415778][ T5669]  ? check_path.constprop.0+0x50/0x50
[ 1228.421245][ T5669]  ? find_held_lock+0x2d/0x110
[ 1228.426005][ T5669]  ? __might_fault+0xd1/0x170
[ 1228.430676][ T5669]  ? lock_downgrade+0x6e0/0x6e0
[ 1228.435529][ T5669]  do_recvmmsg+0x24d/0x6d0
[ 1228.439941][ T5669]  ? ___sys_recvmsg+0x200/0x200
[ 1228.444782][ T5669]  ? check_path.constprop.0+0x50/0x50
[ 1228.450243][ T5669]  ? __context_tracking_exit+0xb8/0xe0
[ 1228.455693][ T5669]  ? lock_downgrade+0x6e0/0x6e0
[ 1228.460534][ T5669]  ? lock_downgrade+0x6e0/0x6e0
[ 1228.465466][ T5669]  __x64_sys_recvmmsg+0x20b/0x260
[ 1228.470486][ T5669]  ? __do_sys_socketcall+0x590/0x590
[ 1228.475764][ T5669]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1228.481657][ T5669]  do_syscall_64+0x35/0xb0
[ 1228.486069][ T5669]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1228.491958][ T5669] RIP: 0033:0x7f688ab57e99
[ 1228.496366][ T5669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1228.515970][ T5669] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
03:15:31 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x11)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:31 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x600, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1228.524376][ T5669] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1228.532335][ T5669] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1228.540384][ T5669] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1228.548351][ T5669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1228.556310][ T5669] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1228.564294][ T5669]  </TASK>
03:15:31 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 12)

03:15:31 executing program 0:
syz_emit_ethernet(0x32, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0535aaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x80, 0x0, 0x3f, 0x87, 0x0, 0x7, 0x2290, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x98f2916a, 0x1, @perf_bp={&(0x7f0000000000), 0x2}, 0x8200, 0x3f, 0x1, 0x3, 0x3, 0x6, 0x0, 0x0, 0x6, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_emit_ethernet(0x3eb, &(0x7f0000000240)={@multicast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@ipv6={0x86dd, @gre_packet={0xf, 0x6, "999de5", 0x3b5, 0x2f, 0x0, @empty, @private2, {[@dstopts={0x3a, 0x5, '\x00', [@ra={0x5, 0x2, 0x80}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x2, [0x0, 0x0]}, @enc_lim={0x4, 0x1, 0x6}, @calipso={0x7, 0x10, {0x0, 0x2, 0x7, 0x0, [0x5]}}, @enc_lim={0x4, 0x1, 0x3}, @pad1]}, @srh={0x2f, 0x4, 0x4, 0x2, 0x1, 0x0, 0x4, [@mcast2, @mcast1]}, @srh={0x67, 0x2, 0x4, 0x1, 0x5, 0x0, 0x7, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}, @hopopts={0x4, 0x16, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @hao={0xc9, 0x10, @loopback}, @pad1, @pad1, @calipso={0x7, 0x18, {0x3, 0x4, 0x20, 0x6, [0x80, 0xa8]}}, @generic={0x5, 0x73, "70a8e281c6a9617417c24dd957b8fc4dd6bf524033755eafe123e957c3cc6b558941733044ea0851c739cdd17492409caf2a4a06d428d38bc0a4ca23f706a42d5b6112de1cc53acaf523cbc1e6dae06dbba6cdcb066c58c2511641d8809928358e78d8c2b5482e285751341e583255e199d40b"}, @pad1, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}, @srh={0x73, 0xc, 0x4, 0x6, 0x1, 0x30, 0x8, [@private0, @loopback, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @local]}, @hopopts={0x2b, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @pad1]}], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x880b, 0xc8, 0x1, [0xe0e, 0x1], "d54de44c61eca9a397fff5a82966c7f99ca43dd7ff16a7f1742ebdd8c737438e3e9386deb49cd7072f3edb567c10d3445eeb2eb58e854127168ed9dff6504900b94bc40a02f1eceb3f86a909ade95d7668832ffa7b592e219f04d470a0f884eab5502c7bfc87281c9b18b9f5a8573320c902ecdc2ca1543ff9709fe31a6161b52cc6e02b63809582b39eb6be32547abd41215179cfdc84477e42b582d83016617ff9b8df1f319161846707f2b17dee7756134cabf0c949ccac01e4d3b19a0f39aa9865e65afb7750"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [], "497196c6ec145233af537f13dde9210b91ca6acb229362c68964ef3eb9ceb2ea19505c3f6709114b80fc03d054ac6ef9da8489fad0f6e943044fa81f63ca48ba0cbee6a94cef1ca4d4616f3515c7f7278af732f025b7c7bbfcaf57fc4070470307f0f62ff07605a671b3ffa69930d86a206126b83de912a92bf4737fc03c4c099073bd7ef65389376b3814c121061dfc8a199292824bff71b49dfc0e388f0bc19b776f009495e1c43ab58359518ccf2ff1244ed7c065"}, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x86dd, [], "4b446ec5e42e6d0089ad59e9ec409e83021637368fdfc91ad0cd4228414c36"}, {0x8, 0x88be, 0x4, {{0x0, 0x1, 0x2, 0x3, 0x0, 0x0, 0x0, 0x1}, 0x1, {0x3f}}}, {0x8, 0x22eb, 0x0, {{0xc, 0x2, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x2, {0x100, 0x8, 0x3, 0x5, 0x0, 0x1, 0x2, 0x1}}}, {0x8, 0x6558, 0x1, "8af7e3deae180a316cba4811ea74f261ef8e8acd5f0a189d1717bf32f432f63b"}}}}}}}, 0x0)

03:15:31 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x700, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:31 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xc0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:31 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x409}, 0x0, 0xd, 0xffffffffffffffff, 0x0) (async)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1228.672574][ T5689] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:31 executing program 0:
syz_emit_ethernet(0x32, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0535aaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0) (async)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x80, 0x0, 0x3f, 0x87, 0x0, 0x7, 0x2290, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x98f2916a, 0x1, @perf_bp={&(0x7f0000000000), 0x2}, 0x8200, 0x3f, 0x1, 0x3, 0x3, 0x6, 0x0, 0x0, 0x6, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x1) (async)
syz_emit_ethernet(0x3eb, &(0x7f0000000240)={@multicast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@ipv6={0x86dd, @gre_packet={0xf, 0x6, "999de5", 0x3b5, 0x2f, 0x0, @empty, @private2, {[@dstopts={0x3a, 0x5, '\x00', [@ra={0x5, 0x2, 0x80}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x2, [0x0, 0x0]}, @enc_lim={0x4, 0x1, 0x6}, @calipso={0x7, 0x10, {0x0, 0x2, 0x7, 0x0, [0x5]}}, @enc_lim={0x4, 0x1, 0x3}, @pad1]}, @srh={0x2f, 0x4, 0x4, 0x2, 0x1, 0x0, 0x4, [@mcast2, @mcast1]}, @srh={0x67, 0x2, 0x4, 0x1, 0x5, 0x0, 0x7, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}, @hopopts={0x4, 0x16, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @hao={0xc9, 0x10, @loopback}, @pad1, @pad1, @calipso={0x7, 0x18, {0x3, 0x4, 0x20, 0x6, [0x80, 0xa8]}}, @generic={0x5, 0x73, "70a8e281c6a9617417c24dd957b8fc4dd6bf524033755eafe123e957c3cc6b558941733044ea0851c739cdd17492409caf2a4a06d428d38bc0a4ca23f706a42d5b6112de1cc53acaf523cbc1e6dae06dbba6cdcb066c58c2511641d8809928358e78d8c2b5482e285751341e583255e199d40b"}, @pad1, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}, @srh={0x73, 0xc, 0x4, 0x6, 0x1, 0x30, 0x8, [@private0, @loopback, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @local]}, @hopopts={0x2b, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @pad1]}], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x880b, 0xc8, 0x1, [0xe0e, 0x1], "d54de44c61eca9a397fff5a82966c7f99ca43dd7ff16a7f1742ebdd8c737438e3e9386deb49cd7072f3edb567c10d3445eeb2eb58e854127168ed9dff6504900b94bc40a02f1eceb3f86a909ade95d7668832ffa7b592e219f04d470a0f884eab5502c7bfc87281c9b18b9f5a8573320c902ecdc2ca1543ff9709fe31a6161b52cc6e02b63809582b39eb6be32547abd41215179cfdc84477e42b582d83016617ff9b8df1f319161846707f2b17dee7756134cabf0c949ccac01e4d3b19a0f39aa9865e65afb7750"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [], "497196c6ec145233af537f13dde9210b91ca6acb229362c68964ef3eb9ceb2ea19505c3f6709114b80fc03d054ac6ef9da8489fad0f6e943044fa81f63ca48ba0cbee6a94cef1ca4d4616f3515c7f7278af732f025b7c7bbfcaf57fc4070470307f0f62ff07605a671b3ffa69930d86a206126b83de912a92bf4737fc03c4c099073bd7ef65389376b3814c121061dfc8a199292824bff71b49dfc0e388f0bc19b776f009495e1c43ab58359518ccf2ff1244ed7c065"}, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x86dd, [], "4b446ec5e42e6d0089ad59e9ec409e83021637368fdfc91ad0cd4228414c36"}, {0x8, 0x88be, 0x4, {{0x0, 0x1, 0x2, 0x3, 0x0, 0x0, 0x0, 0x1}, 0x1, {0x3f}}}, {0x8, 0x22eb, 0x0, {{0xc, 0x2, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x2, {0x100, 0x8, 0x3, 0x5, 0x0, 0x1, 0x2, 0x1}}}, {0x8, 0x6558, 0x1, "8af7e3deae180a316cba4811ea74f261ef8e8acd5f0a189d1717bf32f432f63b"}}}}}}}, 0x0)

03:15:31 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x802, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:31 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x317)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:31 executing program 0:
syz_emit_ethernet(0x32, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0535aaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x80, 0x0, 0x3f, 0x87, 0x0, 0x7, 0x2290, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x98f2916a, 0x1, @perf_bp={&(0x7f0000000000), 0x2}, 0x8200, 0x3f, 0x1, 0x3, 0x3, 0x6, 0x0, 0x0, 0x6, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_emit_ethernet(0x3eb, &(0x7f0000000240)={@multicast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@ipv6={0x86dd, @gre_packet={0xf, 0x6, "999de5", 0x3b5, 0x2f, 0x0, @empty, @private2, {[@dstopts={0x3a, 0x5, '\x00', [@ra={0x5, 0x2, 0x80}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x2, [0x0, 0x0]}, @enc_lim={0x4, 0x1, 0x6}, @calipso={0x7, 0x10, {0x0, 0x2, 0x7, 0x0, [0x5]}}, @enc_lim={0x4, 0x1, 0x3}, @pad1]}, @srh={0x2f, 0x4, 0x4, 0x2, 0x1, 0x0, 0x4, [@mcast2, @mcast1]}, @srh={0x67, 0x2, 0x4, 0x1, 0x5, 0x0, 0x7, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}, @hopopts={0x4, 0x16, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @hao={0xc9, 0x10, @loopback}, @pad1, @pad1, @calipso={0x7, 0x18, {0x3, 0x4, 0x20, 0x6, [0x80, 0xa8]}}, @generic={0x5, 0x73, "70a8e281c6a9617417c24dd957b8fc4dd6bf524033755eafe123e957c3cc6b558941733044ea0851c739cdd17492409caf2a4a06d428d38bc0a4ca23f706a42d5b6112de1cc53acaf523cbc1e6dae06dbba6cdcb066c58c2511641d8809928358e78d8c2b5482e285751341e583255e199d40b"}, @pad1, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}, @srh={0x73, 0xc, 0x4, 0x6, 0x1, 0x30, 0x8, [@private0, @loopback, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @local]}, @hopopts={0x2b, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @pad1]}], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x880b, 0xc8, 0x1, [0xe0e, 0x1], "d54de44c61eca9a397fff5a82966c7f99ca43dd7ff16a7f1742ebdd8c737438e3e9386deb49cd7072f3edb567c10d3445eeb2eb58e854127168ed9dff6504900b94bc40a02f1eceb3f86a909ade95d7668832ffa7b592e219f04d470a0f884eab5502c7bfc87281c9b18b9f5a8573320c902ecdc2ca1543ff9709fe31a6161b52cc6e02b63809582b39eb6be32547abd41215179cfdc84477e42b582d83016617ff9b8df1f319161846707f2b17dee7756134cabf0c949ccac01e4d3b19a0f39aa9865e65afb7750"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [], "497196c6ec145233af537f13dde9210b91ca6acb229362c68964ef3eb9ceb2ea19505c3f6709114b80fc03d054ac6ef9da8489fad0f6e943044fa81f63ca48ba0cbee6a94cef1ca4d4616f3515c7f7278af732f025b7c7bbfcaf57fc4070470307f0f62ff07605a671b3ffa69930d86a206126b83de912a92bf4737fc03c4c099073bd7ef65389376b3814c121061dfc8a199292824bff71b49dfc0e388f0bc19b776f009495e1c43ab58359518ccf2ff1244ed7c065"}, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x86dd, [], "4b446ec5e42e6d0089ad59e9ec409e83021637368fdfc91ad0cd4228414c36"}, {0x8, 0x88be, 0x4, {{0x0, 0x1, 0x2, 0x3, 0x0, 0x0, 0x0, 0x1}, 0x1, {0x3f}}}, {0x8, 0x22eb, 0x0, {{0xc, 0x2, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x2, {0x100, 0x8, 0x3, 0x5, 0x0, 0x1, 0x2, 0x1}}}, {0x8, 0x6558, 0x1, "8af7e3deae180a316cba4811ea74f261ef8e8acd5f0a189d1717bf32f432f63b"}}}}}}}, 0x0)

03:15:31 executing program 4:
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x409}, 0x0, 0xd, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x409}, 0x0, 0xd, 0xffffffffffffffff, 0x0) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0) (async)

03:15:31 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x803, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1228.799882][ T5704] FAULT_INJECTION: forcing a failure.
[ 1228.799882][ T5704] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1228.862615][ T5704] CPU: 0 PID: 5704 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1228.871388][ T5704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1228.881647][ T5704] Call Trace:
[ 1228.885030][ T5704]  <TASK>
[ 1228.887972][ T5704]  dump_stack_lvl+0xcd/0x134
[ 1228.892598][ T5704]  should_fail.cold+0x5/0xa
[ 1228.897142][ T5704]  _copy_from_user+0x2c/0x180
[ 1228.901944][ T5704]  __copy_msghdr_from_user+0x91/0x4b0
[ 1228.907518][ T5704]  ? __ia32_sys_shutdown+0x70/0x70
[ 1228.912667][ T5704]  ? __lock_acquire+0x1655/0x5470
[ 1228.917830][ T5704]  ___sys_recvmsg+0xd5/0x200
[ 1228.922560][ T5704]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1228.928231][ T5704]  ? check_path.constprop.0+0x50/0x50
[ 1228.933638][ T5704]  ? find_held_lock+0x2d/0x110
[ 1228.938417][ T5704]  ? __might_fault+0xd1/0x170
[ 1228.943093][ T5704]  ? lock_downgrade+0x6e0/0x6e0
[ 1228.947949][ T5704]  do_recvmmsg+0x24d/0x6d0
[ 1228.952361][ T5704]  ? ___sys_recvmsg+0x200/0x200
[ 1228.957249][ T5704]  ? check_path.constprop.0+0x50/0x50
[ 1228.962632][ T5704]  ? __context_tracking_exit+0xb8/0xe0
[ 1228.968088][ T5704]  ? lock_downgrade+0x6e0/0x6e0
[ 1228.972930][ T5704]  ? lock_downgrade+0x6e0/0x6e0
[ 1228.977776][ T5704]  __x64_sys_recvmmsg+0x20b/0x260
[ 1228.982795][ T5704]  ? __do_sys_socketcall+0x590/0x590
[ 1228.988076][ T5704]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1228.993966][ T5704]  do_syscall_64+0x35/0xb0
[ 1228.998371][ T5704]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1229.004256][ T5704] RIP: 0033:0x7f688ab57e99
[ 1229.008665][ T5704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1229.028265][ T5704] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1229.036673][ T5704] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1229.044635][ T5704] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1229.052592][ T5704] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:32 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 13)

03:15:32 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:32 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1014aa00000000040190780448fd8800ffba4d"], 0x0)

03:15:32 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x700)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:32 executing program 4:
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7ffb}, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r1, 0x0, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x6, 0x5, 0x0, 0x9, 0x0, 0x7, 0x900, 0xe, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x400, 0x1, @perf_bp={&(0x7f0000000080), 0x6}, 0x0, 0x400, 0x7, 0x7, 0xd3, 0x6, 0x6, 0x0, 0xffffffff, 0x0, 0x80}, r1, 0x8, r0, 0x3)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r3 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r3, 0x0, 0xffffffffffffffff, 0x1)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r4}, 0x10)
perf_event_open(&(0x7f0000000200)={0xa, 0x80, 0x1f, 0x0, 0x9, 0x6, 0x0, 0x2, 0x400, 0x3, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0xc1, 0x0, @perf_config_ext={0x4, 0x7}, 0x201, 0x4ff, 0x2, 0x6, 0x2, 0x1, 0xff01, 0x0, 0x6, 0x0, 0x7fff}, r3, 0x5, r4, 0x0)
fsetxattr$trusted_overlay_origin(0xffffffffffffffff, &(0x7f0000000140), &(0x7f0000000180), 0x2, 0x0)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r2, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1229.060551][ T5704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1229.068515][ T5704] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1229.076577][ T5704]  </TASK>
03:15:32 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x804, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:32 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1014aa00000000040190780448fd8800ffba4d"], 0x0)

03:15:32 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:32 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x805, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:32 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1014aa00000000040190780448fd8800ffba4d"], 0x0)

03:15:32 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, 0x0, 0x0)

[ 1229.229973][ T5736] FAULT_INJECTION: forcing a failure.
[ 1229.229973][ T5736] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1229.254562][ T5736] CPU: 1 PID: 5736 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1229.263318][ T5736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1229.273404][ T5736] Call Trace:
[ 1229.276688][ T5736]  <TASK>
[ 1229.279625][ T5736]  dump_stack_lvl+0xcd/0x134
[ 1229.284247][ T5736]  should_fail.cold+0x5/0xa
[ 1229.288785][ T5736]  _copy_from_user+0x2c/0x180
[ 1229.293502][ T5736]  __copy_msghdr_from_user+0x91/0x4b0
[ 1229.298995][ T5736]  ? __ia32_sys_shutdown+0x70/0x70
[ 1229.304121][ T5736]  ? __lock_acquire+0x1655/0x5470
[ 1229.309164][ T5736]  ___sys_recvmsg+0xd5/0x200
[ 1229.313765][ T5736]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1229.319589][ T5736]  ? check_path.constprop.0+0x50/0x50
[ 1229.324996][ T5736]  ? find_held_lock+0x2d/0x110
[ 1229.330178][ T5736]  ? __might_fault+0xd1/0x170
[ 1229.334876][ T5736]  ? lock_downgrade+0x6e0/0x6e0
[ 1229.339767][ T5736]  do_recvmmsg+0x24d/0x6d0
[ 1229.344492][ T5736]  ? ___sys_recvmsg+0x200/0x200
[ 1229.349377][ T5736]  ? check_path.constprop.0+0x50/0x50
[ 1229.354787][ T5736]  ? irqentry_enter+0x29/0x50
[ 1229.359744][ T5736]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1229.365930][ T5736]  __x64_sys_recvmmsg+0x20b/0x260
[ 1229.370979][ T5736]  ? __do_sys_socketcall+0x590/0x590
[ 1229.376553][ T5736]  ? syscall_enter_from_user_mode+0x2b/0x70
[ 1229.382471][ T5736]  do_syscall_64+0x35/0xb0
[ 1229.386912][ T5736]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1229.392829][ T5736] RIP: 0033:0x7f688ab57e99
[ 1229.397258][ T5736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1229.416963][ T5736] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
03:15:32 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x806, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1229.425406][ T5736] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1229.433388][ T5736] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1229.441451][ T5736] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1229.449686][ T5736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1229.457895][ T5736] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1229.465888][ T5736]  </TASK>
03:15:32 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 14)

03:15:32 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x807, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:32 executing program 4:
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7ffb}, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r1 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r1, 0x0, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x6, 0x5, 0x0, 0x9, 0x0, 0x7, 0x900, 0xe, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x400, 0x1, @perf_bp={&(0x7f0000000080), 0x6}, 0x0, 0x400, 0x7, 0x7, 0xd3, 0x6, 0x6, 0x0, 0xffffffff, 0x0, 0x80}, r1, 0x8, r0, 0x3) (async)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r3 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r3, 0x0, 0xffffffffffffffff, 0x1) (async)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r4}, 0x10) (async)
perf_event_open(&(0x7f0000000200)={0xa, 0x80, 0x1f, 0x0, 0x9, 0x6, 0x0, 0x2, 0x400, 0x3, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0xc1, 0x0, @perf_config_ext={0x4, 0x7}, 0x201, 0x4ff, 0x2, 0x6, 0x2, 0x1, 0xff01, 0x0, 0x6, 0x0, 0x7fff}, r3, 0x5, r4, 0x0)
fsetxattr$trusted_overlay_origin(0xffffffffffffffff, &(0x7f0000000140), &(0x7f0000000180), 0x2, 0x0) (async, rerun: 64)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14) (rerun: 64)
sendmmsg$sock(r2, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:32 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xa00)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:32 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, 0x0, 0x0)

03:15:32 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x2, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x4, 0x43}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000801}, 0xc084)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaa70aaaaaaaaaaaaaaaaaa080045000024009078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0)

03:15:32 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x808, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1229.572403][ T5753] FAULT_INJECTION: forcing a failure.
[ 1229.572403][ T5753] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1229.610265][ T5753] CPU: 1 PID: 5753 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1229.613308][ T5759] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1229.619018][ T5753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1229.619033][ T5753] Call Trace:
[ 1229.619041][ T5753]  <TASK>
[ 1229.619049][ T5753]  dump_stack_lvl+0xcd/0x134
[ 1229.619082][ T5753]  should_fail.cold+0x5/0xa
[ 1229.619105][ T5753]  _copy_from_user+0x2c/0x180
[ 1229.619136][ T5753]  __copy_msghdr_from_user+0x91/0x4b0
[ 1229.619164][ T5753]  ? __ia32_sys_shutdown+0x70/0x70
[ 1229.619187][ T5753]  ? __lock_acquire+0x1655/0x5470
[ 1229.619223][ T5753]  ___sys_recvmsg+0xd5/0x200
[ 1229.677342][ T5753]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1229.683015][ T5753]  ? check_path.constprop.0+0x50/0x50
[ 1229.688436][ T5753]  ? find_held_lock+0x2d/0x110
[ 1229.693245][ T5753]  ? __might_fault+0xd1/0x170
[ 1229.697958][ T5753]  ? lock_downgrade+0x6e0/0x6e0
[ 1229.702852][ T5753]  do_recvmmsg+0x24d/0x6d0
[ 1229.707289][ T5753]  ? ___sys_recvmsg+0x200/0x200
[ 1229.712158][ T5753]  ? check_path.constprop.0+0x50/0x50
[ 1229.717559][ T5753]  ? __context_tracking_exit+0xb8/0xe0
[ 1229.723041][ T5753]  ? lock_downgrade+0x6e0/0x6e0
[ 1229.727907][ T5753]  ? lock_downgrade+0x6e0/0x6e0
[ 1229.732774][ T5753]  __x64_sys_recvmmsg+0x20b/0x260
[ 1229.737817][ T5753]  ? __do_sys_socketcall+0x590/0x590
[ 1229.743122][ T5753]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1229.749042][ T5753]  do_syscall_64+0x35/0xb0
[ 1229.753489][ T5753]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1229.759417][ T5753] RIP: 0033:0x7f688ab57e99
[ 1229.763851][ T5753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1229.783486][ T5753] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1229.791922][ T5753] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1229.799913][ T5753] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1229.807900][ T5753] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:32 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x80b, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:32 executing program 4:
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7ffb}, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r1, 0x0, 0xffffffffffffffff, 0x1) (async)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x6, 0x5, 0x0, 0x9, 0x0, 0x7, 0x900, 0xe, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x400, 0x1, @perf_bp={&(0x7f0000000080), 0x6}, 0x0, 0x400, 0x7, 0x7, 0xd3, 0x6, 0x6, 0x0, 0xffffffff, 0x0, 0x80}, r1, 0x8, r0, 0x3) (async)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
r3 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x8, 0xff, 0x5, 0x20, 0x0, 0x80000001, 0x45024, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x10, 0x8, 0x0, 0x5, 0x6, 0x9, 0x7fff, 0x0, 0x6}, r3, 0x0, 0xffffffffffffffff, 0x1) (async)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r4}, 0x10)
perf_event_open(&(0x7f0000000200)={0xa, 0x80, 0x1f, 0x0, 0x9, 0x6, 0x0, 0x2, 0x400, 0x3, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0xc1, 0x0, @perf_config_ext={0x4, 0x7}, 0x201, 0x4ff, 0x2, 0x6, 0x2, 0x1, 0xff01, 0x0, 0x6, 0x0, 0x7fff}, r3, 0x5, r4, 0x0)
fsetxattr$trusted_overlay_origin(0xffffffffffffffff, &(0x7f0000000140), &(0x7f0000000180), 0x2, 0x0) (async)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r2, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:32 executing program 4:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000000080)={0x1}, 0x8, 0x0)
msgctl$IPC_RMID(r0, 0x0)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:32 executing program 4:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000000080)={0x1}, 0x8, 0x0) (async)
msgctl$IPC_RMID(r0, 0x0) (async, rerun: 64)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 64)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:32 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x1100)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:33 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 15)

03:15:33 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, 0x0, 0x0)

03:15:33 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x2, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x4, 0x43}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000801}, 0xc084)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaa70aaaaaaaaaaaaaaaaaa080045000024009078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00'}) (async)
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (async)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x2, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x4, 0x43}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000801}, 0xc084) (async)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaa70aaaaaaaaaaaaaaaaaa080045000024009078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0) (async)

[ 1229.815896][ T5753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1229.823897][ T5753] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1229.831910][ T5753]  </TASK>
03:15:33 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x810, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:33 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x821, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1229.907046][ T5781] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
03:15:33 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x824, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:33 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)

03:15:33 executing program 4:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000000080)={0x1}, 0x8, 0x0)
msgctl$IPC_RMID(r0, 0x0)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)
msgget$private(0x0, 0x0) (async)
msgsnd(r0, &(0x7f0000000080)={0x1}, 0x8, 0x0) (async)
msgctl$IPC_RMID(r0, 0x0) (async)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0) (async)

[ 1229.952745][ T5786] FAULT_INJECTION: forcing a failure.
[ 1229.952745][ T5786] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:33 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)

03:15:33 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x848, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1230.044021][ T5786] CPU: 0 PID: 5786 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1230.052772][ T5786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1230.062851][ T5786] Call Trace:
[ 1230.066147][ T5786]  <TASK>
[ 1230.069090][ T5786]  dump_stack_lvl+0xcd/0x134
[ 1230.073709][ T5786]  should_fail.cold+0x5/0xa
[ 1230.078236][ T5786]  _copy_from_user+0x2c/0x180
[ 1230.082935][ T5786]  __copy_msghdr_from_user+0x91/0x4b0
[ 1230.088322][ T5786]  ? __ia32_sys_shutdown+0x70/0x70
[ 1230.093465][ T5786]  ? __lock_acquire+0x1655/0x5470
[ 1230.098528][ T5786]  ___sys_recvmsg+0xd5/0x200
[ 1230.103130][ T5786]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1230.108774][ T5786]  ? check_path.constprop.0+0x50/0x50
[ 1230.114176][ T5786]  ? find_held_lock+0x2d/0x110
[ 1230.118973][ T5786]  ? __might_fault+0xd1/0x170
[ 1230.120590][ T5809] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1230.123672][ T5786]  ? lock_downgrade+0x6e0/0x6e0
[ 1230.123722][ T5786]  do_recvmmsg+0x24d/0x6d0
03:15:33 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x2, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x4, 0x43}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000801}, 0xc084)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaa70aaaaaaaaaaaaaaaaaa080045000024009078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00'}) (async)
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (async)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x2, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x4, 0x43}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000801}, 0xc084) (async)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaa70aaaaaaaaaaaaaaaaaa080045000024009078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0) (async)

03:15:33 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x1703)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1230.123752][ T5786]  ? ___sys_recvmsg+0x200/0x200
[ 1230.123774][ T5786]  ? check_path.constprop.0+0x50/0x50
[ 1230.123809][ T5786]  ? __context_tracking_exit+0xb8/0xe0
[ 1230.156883][ T5786]  ? lock_downgrade+0x6e0/0x6e0
[ 1230.161750][ T5786]  ? lock_downgrade+0x6e0/0x6e0
[ 1230.166610][ T5786]  __x64_sys_recvmmsg+0x20b/0x260
[ 1230.171671][ T5786]  ? __do_sys_socketcall+0x590/0x590
[ 1230.177005][ T5786]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1230.182952][ T5786]  do_syscall_64+0x35/0xb0
[ 1230.187410][ T5786]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1230.193366][ T5786] RIP: 0033:0x7f688ab57e99
[ 1230.197810][ T5786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1230.217439][ T5786] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1230.225856][ T5786] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1230.233817][ T5786] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1230.242011][ T5786] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1230.250156][ T5786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1230.258207][ T5786] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1230.266184][ T5786]  </TASK>
03:15:33 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 16)

03:15:33 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x84c, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:33 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x3e80)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:33 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)

03:15:33 executing program 4:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'macvlan1\x00', &(0x7f0000000080)=@ethtool_test={0x1a, 0x4, 0x81, 0x4, [0x9, 0x100, 0x9f1c, 0x1]}})
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000000}, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000100)=[@timestamp, @sack_perm], 0x2)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:33 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffbb00"}, "db6a4902492cc33dd67fa0b0984bcb776575d23b8ffe98aae572cfc62dff6c0e6e06b8c123626bf9c8bad189f5e9ab62212af6c93b4acfe3836ad7daead0ef2dfe009a953cbbec891c63fc8adddc0c00be6449144fa96f6cd74ba2184e598a115681455929145d208ff5b65b281bebd5089dc29a6981e73b41e816ca0c4071af6d827dded179b2dec7b66d0c8e09f656ef236232023cca4b5d2626c580c9725a81724f7be0c8b0e40e5584dbcdebfa0971349604835a503a7138f935f3c08a45"}}}}}, 0x0)

03:15:33 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x860, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:33 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x58}}, 0x0)

[ 1230.385883][ T5831] FAULT_INJECTION: forcing a failure.
[ 1230.385883][ T5831] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:33 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x58}}, 0x0)

03:15:33 executing program 4:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'macvlan1\x00', &(0x7f0000000080)=@ethtool_test={0x1a, 0x4, 0x81, 0x4, [0x9, 0x100, 0x9f1c, 0x1]}}) (async, rerun: 64)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000000}, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 64)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000100)=[@timestamp, @sack_perm], 0x2)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:33 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x868, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:33 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffbb00"}, "db6a4902492cc33dd67fa0b0984bcb776575d23b8ffe98aae572cfc62dff6c0e6e06b8c123626bf9c8bad189f5e9ab62212af6c93b4acfe3836ad7daead0ef2dfe009a953cbbec891c63fc8adddc0c00be6449144fa96f6cd74ba2184e598a115681455929145d208ff5b65b281bebd5089dc29a6981e73b41e816ca0c4071af6d827dded179b2dec7b66d0c8e09f656ef236232023cca4b5d2626c580c9725a81724f7be0c8b0e40e5584dbcdebfa0971349604835a503a7138f935f3c08a45"}}}}}, 0x0)

[ 1230.426223][ T5839] dccp_invalid_packet: P.Data Offset(0) too small
[ 1230.510277][ T5831] CPU: 1 PID: 5831 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1230.519515][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1230.529799][ T5831] Call Trace:
[ 1230.533210][ T5831]  <TASK>
[ 1230.536137][ T5831]  dump_stack_lvl+0xcd/0x134
[ 1230.540746][ T5831]  should_fail.cold+0x5/0xa
[ 1230.545236][ T5831]  _copy_from_user+0x2c/0x180
[ 1230.549915][ T5831]  __copy_msghdr_from_user+0x91/0x4b0
[ 1230.555297][ T5831]  ? __ia32_sys_shutdown+0x70/0x70
[ 1230.560398][ T5831]  ? __lock_acquire+0x1655/0x5470
[ 1230.565423][ T5831]  ___sys_recvmsg+0xd5/0x200
[ 1230.570018][ T5831]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1230.575666][ T5831]  ? check_path.constprop.0+0x50/0x50
[ 1230.581287][ T5831]  ? find_held_lock+0x2d/0x110
[ 1230.586263][ T5831]  ? __might_fault+0xd1/0x170
[ 1230.590935][ T5831]  ? lock_downgrade+0x6e0/0x6e0
[ 1230.595796][ T5831]  do_recvmmsg+0x24d/0x6d0
[ 1230.600219][ T5831]  ? ___sys_recvmsg+0x200/0x200
[ 1230.605165][ T5831]  ? check_path.constprop.0+0x50/0x50
[ 1230.610535][ T5831]  ? __context_tracking_exit+0xb8/0xe0
[ 1230.616234][ T5831]  ? lock_downgrade+0x6e0/0x6e0
[ 1230.621296][ T5831]  ? lock_downgrade+0x6e0/0x6e0
[ 1230.626134][ T5831]  __x64_sys_recvmmsg+0x20b/0x260
[ 1230.631364][ T5831]  ? __do_sys_socketcall+0x590/0x590
[ 1230.636871][ T5831]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1230.642872][ T5831]  do_syscall_64+0x35/0xb0
[ 1230.647612][ T5831]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1230.653755][ T5831] RIP: 0033:0x7f688ab57e99
[ 1230.658380][ T5831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1230.678445][ T5831] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1230.686848][ T5831] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1230.694918][ T5831] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1230.702888][ T5831] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:33 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 17)

03:15:33 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x3ec0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:33 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x58}}, 0x0)

03:15:33 executing program 4:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'macvlan1\x00', &(0x7f0000000080)=@ethtool_test={0x1a, 0x4, 0x81, 0x4, [0x9, 0x100, 0x9f1c, 0x1]}})
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000000}, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000100)=[@timestamp, @sack_perm], 0x2)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0) (async)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'macvlan1\x00', &(0x7f0000000080)=@ethtool_test={0x1a, 0x4, 0x81, 0x4, [0x9, 0x100, 0x9f1c, 0x1]}}) (async)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000000}, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000100)=[@timestamp, @sack_perm], 0x2) (async)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0) (async)

03:15:33 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x86c, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1230.710942][ T5831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1230.718912][ T5831] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1230.726901][ T5831]  </TASK>
[ 1230.744114][ T5849] dccp_invalid_packet: P.Data Offset(0) too small
03:15:33 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffbb00"}, "db6a4902492cc33dd67fa0b0984bcb776575d23b8ffe98aae572cfc62dff6c0e6e06b8c123626bf9c8bad189f5e9ab62212af6c93b4acfe3836ad7daead0ef2dfe009a953cbbec891c63fc8adddc0c00be6449144fa96f6cd74ba2184e598a115681455929145d208ff5b65b281bebd5089dc29a6981e73b41e816ca0c4071af6d827dded179b2dec7b66d0c8e09f656ef236232023cca4b5d2626c580c9725a81724f7be0c8b0e40e5584dbcdebfa0971349604835a503a7138f935f3c08a45"}}}}}, 0x0)

03:15:33 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2], 0x58}}, 0x0)

03:15:34 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x803e)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:34 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x874, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:34 executing program 0:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000001c0), 0x2880, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000002a40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)="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", 0x1000}], 0x1}}, {{&(0x7f0000000040)=@ethernet={0x1, @local}, 0x80, &(0x7f0000000180)=[{&(0x7f00000000c0)="92cc91ac382f085b7a44385b3ea867915076b3c6914144b85e79886e593f72b3050c8fcd9b81ae714930546138476bdb119fd0b4a3d3b050ba144b96a03fbcdd52b64ccb90d8bbf90d6e7023e22743b39fd4a2a9839fcad7f4f93047a9476ca96b0f303cb89ba6ef5ae9b0d629fadc4ad70d45240b1879bdf5c4033b9ca3765bf283e2b5cf9a38b487e39241627e3929490c3b19a9cf11ac1ae5c6558aed843556785deb3f258642cf9bd43b18c7267fa03295", 0xb3}], 0x1}}, {{&(0x7f0000001240)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x4, 0x0, 0x3, 0x0, {0xa, 0x4e23, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x6904}}}, 0x80, &(0x7f0000001380)=[{&(0x7f00000012c0)="3d10221ae004543b643825f8b6e9e9ed7c139bc9c61d80d6c078061a73a04525782ee89614c8239efbcae6e41be1630f59f7460d61368be287225fd6f16eae52cb038dd2e7f2f66bbd8ca1bd42e4b9c586b63a008983ce5af704ba8a71d89db843e6dff9b31979656c1d3373ab1f348b3abaf42630a7640c2184cf8e6c67545ff1d33ca1559f11e41940e78d0870421c8199d0ab461855f286fbb2d97b8a11ced2bea2e755c1daabb7545b043da42bb6fb0d63b89ff0", 0xb6}], 0x1, &(0x7f00000013c0)=[{0x1010, 0x10e, 0x8, "5bf4763b07766afd574f020b17220b44eb08575f03e13251943800cebe58bfd57ee24106d4046f1fdcc6b7b3405f2021af3e57f99b4f6b8b7aefee9c0222a1497882d2b7339e3f7a692019aec2c9e05d30d69700212aeb3e914e67caff6703eacd96bfdd1b6c3066d0186cd539c482919c42f495d39039b0dd7319dd1ab20ef357f7aea6a417130c10f0e48b83668fd7d647b7095680711e6d4fef1de8cee2317e38e5c277c18954313d376adefdfb4558822173b8d81f23400378bab639ac03247a91dfac78fc966e5e210b270f418d50ecec3f50a1f6939ed9d4001ad77ba73f1c69fb7c353a9a877b240db098a9b39c179c6a211760c06a35795cc65dea674d68751977c9f44d1ae67c8bece9f9c2005e2f13de7dd25d803904d2a550d693287e49b9dd3c0b7c5dd051a99ecf04d9ba4437ccf3593ac69839b2f6d8c7a1f0bc84796fc0c1ce0bbe0fd3d1b0407a13ca2de522590f8d0d35a52117dce5999db7a56a728a122b9eb4111106bd5e230e3c8a813df60e3b8a2f8e86e13354a64c4fb8165905724a69c11b96475c1d3ea0867495f9c7e98c2c43c8f99ac89488aab7db9cf36e8fa669d55738dc99fb6aacf89cb9bb82f0c8a3c8d1835de30de6925a21a6bf6e82bf033e22668713ad80b9655b067466ced8d287dd0d73d72b9d147443e358fddd42b4d582929a87d1117b31c3ebc4f281f0c40c6019dd509777a367b69102d73e4bd46b8a69059781511197f4cc823bfc9882b9813adc7cbf269b18a070142c1f655f65f07b20533e2082da40d33b3fd8efe4f7e7e1207c5d72eb2f7c1fe38348b53e043c6469f2e62a598fac00651935ce6f633ee3430d7d7dd5074068ec99c40ce45c38b03839e82a85a60e046d54bd64bfd7b4e0cf5f7c33a1f07e915641662d1751e642c7415475568aa7b1b2a870fec559b0b8996afd67b623592bc8970664f54c5c77bb64a9f1b8804fdbbd1e5ace38b83d2238449ce63742b879d428b35699bb35a7bd22669e82d44fb67a50a8339c7757ff813921a1d7b01301aa8b7adbe8c36b6991d96602735b2c4d3ad86efcb003c49f7a68690290b4168562867cd6210244cbf8da4cddd026892949dbf6618bd7e3441f3f4484768c29d378fb379207e1db8d62ecbe4d778804e0c0b622b204383af095f8cee55f9f443c5071797376601cf491b826110f03cce640fae40820737d992bc6dc4d77c205c6772f0d82e856e0c9cf2d06407d343753466a6b218c1d610a5688107b5204efc8e2aa5f39c18f285e7e9f6356eee6284a84b07b2cc55103dd1b8ee34431da04177173777cbcd42c8169d9e41031e3087b84d82513999b6d7454a1fe47a95eebc266d049f9824ac944df9667ab22c2c4f570e3633e86284117db11c8b2ee3aeba8bbed9b12f5b80d9f5b9f78c2284c460cc99318a61eb1bc0631256211b94ff820bbc97fd8d1083ca13975d216fb2d6dd108534e1f9ef385a1ae05c1de37f2cc4998cc9bf9a0ae3e6a58cdbffeead1929d3a47d30919e5ee4e648d89d2c2ba6b5ddd9ef8d78886cad477660a4a16228a082ed1613e80d77af9452930ca78c594cfbd7e45b873aadc8331ac18eee56b8e880173c78f3c6a91bd458f53a1591ea44c7f66d0ca867d98825e94a9925593d82b07bb994431a87048dbdb124f856a050bcecd65ba3102b66cd001b83dd4ddda6a30a742e7e0fab8708ee656ba18714cf51448e40970d14ca6ad3ccb84edb8635916233409d0372a99a35bca089ba1531b37d6107b8f6d6a08582f861e3d95eb9d512ceb606ba570a60a59062ee581770fa4cff70ef27b28786bdb171b91092ab63e1597b8900e2a74e5d65b0a59b3a742f9bca9e8dbd49a43c314a443b386a8469940003770f8adbfa47a6e96affdd33d29b423bbcd854e7f28cb8ffd2eee07a6354c9aa9db4c26453ce1699bfe2ca8ed8eaba88241c5a273d4910601f001efddaab4e0d18f57effcc276318f7a0f3e07833805cf7117f8f3aa03dcca295efe6502a218d403c16e2e7a2c7a093199cf289c812f10a54d9c020102ec215251514506b2d5852dae9ce133ad4f2fffdaa351993d2a2a3ec1c3889d9527d4ee50c5936080697127d1dca22fbdb71d89dd804504755df598f896a83806b1b9efc4ecd8cbb303d6cd934b85973b74b7f841ac5d11c9a8a7359727d980ee693712eefcfce7c9e391a960ef7d196a22c0797dcb9186880e1a025952090b4c817ecd1da817255dfa2f101deb75548cc7927d9f2e64333552f5f07d97095e1c3d96e2f50a9cd1425b416c898c80a58adc494c260fc370b5246bb217ee60bb0ff764c86bfeb140ddca4676c767507895703df3bc4a87aa45ad8180cec247c981741b600dad794f56421fb55f665c8033d59f8595bbdb03fb79a15bcd95e5948477902cbca2fefafdc0afe82047e22b31cd65e6e6200fc44c6a49300a32cd8e4c9b349b8e63a4c461cd6795cf7e0917f13781f3929d44f9314af0eebf533a37d8500db0610888019db98e9e094071844a553723f4cfbaa5306d34d983ff1b874f784994d2acdc0553b189a2ee07b6c0d7a982a95ee41145ccd35363f6069db9e5ee0f79dcd6e1b4bb91df522cf3f565d6551d1f2138e0ed36d98a9c7a2543a5daaa0427693c80901e96be9b6024a162654b22185a05af6cc9504dbd9502f75cbca56e5277dc4ed9076db47adc8cd336161a50176faef86deac5a61a100a2b651dd923c39c03e4c8aa7d1e792d8e66c138182319334ad72d72120fa503df8e280f31038e8d3cf1289da554ed8113d2c7fe2075bdd4a931a9a28001758a931c733133bd66d5c4cbc3a51efaa01f07f444c0db1544da96e6dcca303f7e8dc2290cf4bc61dff1f7a0e712064eb15cedcd67b1e282a67f8aa40a30ae5fdb3a0c4174716ca788753ad66c7bb69be3756533c8d67f77243724451a2f7def4a6676a54be8ab97d36ef24592af3dfa253f98365b700277ecf922da5612b12ad7e8d52cfc178f44e10bf90394f10da61de800bd7e1991a246d4c74d4939c6cc56c33aa490cc9c5e111457ed794f5afaaead121c617e7d1feb1d0863d6e8226f0ecde69720b895e76ec087d3556819d6c306855eb72cb057c3f200371a1ba06d9c1037ed83fecffb1924cf1b1989b47e993184841905587d299d50aca64c09576cdce1cee1bf63e8e1bc85ea0e74e9f6c8dcdb0cb2e46f267ab05d6f1071269ec86266d076b8db3b22f153e53c1feae59fe5ea425de29341f69bcdfa9c60b3611b47428252de420e3e487d85a2cadf977f231d387341d6538ea984ff22d6c4e6a61543f480630a1a0687dce9a6e89613bec96f8e9683699e2a70b3eb76dda02bba787ad00fab7db2d9f582237810a04f34185a5976524eb239b1c59e340225e62a1d03870cf7632675f2b0cca1fac369ba5e79fb7b3a4e46bdf5269db94ca3bef0b44bcc01508ef6fcc2febd1e67c7749c01c24c6d75d5b508a7a174092ff2b651e9492a386130d7c0ff739156b0d93ccec0b29a52ce21e7561ed33ce569d672149c28e041bf73abf406eb2ab314018334f8b018e5fb107a588fb4f3d4d41a0407d20740298b0833c37e9525198e8f9fcc56c928098edcf56f6dc880574e2f8fe97e7313528ee521cf328cf59841b5a1e32f190981725300e3e879272723cc5421123f9069a7ff3d28527448a440d16406ad0987b45b794ef49c6db9b3d72715a181f27c8252e4499022109afe7c2b5188a846e182f12d2432639a8c53276f7c8a4059cfcbe3f9d7277387321aeb9d085c9051cb5d8c6f875e9938cbfc1fea0dcf3003c5e327d121b4af3ab84cf647c8fe89eaa63c03c87bf01f9d55cfcf919e5d712dbf63fcbab7c001ab356616d6109e51a6c844ca0477ac884dbccb1d7c2fff09654366ef2d33fcad0b4d8b3f64841f27b88a5fbede5fc8fd69c113d6830f501a8fd0d07ae37e3bdf620a5beeaadd0a8c31bf6dd9e2cb25c4b5af40bafb2cb003444c27d989f5193f89e2090ccdc8c06e038d18ab0c0fbf20de3341a199217dc4fdfac9e45b34bc69d2889b111a9531fd1ef175d9ce79ee86c185b9cbde9ac76c7e803f90979c404781aad89ebdc6fa8bc44f5e1694dbe45d1dacfab1dd4799ca2a99bfc4006c6db0e83c5733beef9fa778cd10a1368881ac72a909ded2441e9f85d12e68a7750e3a83deb39232a9d73fbe99484cc6fc92679ab195ec2201407859f951bab6a170724316656f1fc5b7b8caa411b2aff36986a0e0378bfd012ea2d9b2bfa7f17a6a5d54efb78e86378d7804e07db535ea28234ac5992efe54396af3b9daedb4db22c6ba8729da4b1f111366fd46a62feb26dc546c394ea4fbc654b76a219eb1a3cb99550c5f1af6caec639d961b48c0df14ed7b6e4ce07ee264e94e454c8c560115aa4a92474325cd192edde3f6d95eb3c4715ca75db5152167393e487d7d0c91f783abdb13496baaf19095870e1c86070909c8d9f9072da6456e9e16de4438630e7052b5eeaf53c076b2d4ab0c13c5e354e7d710602388e001de38e2740fde5edbf6f417eada43d8f228273a2da8b79b117bf437b5dba8d32acabc41ec2d95561ea201992dc03eaaa9865adbeb7fdfe9050aff963ed5eba906118796880b8ad767f1b8bacbd59459917f6d373f2e2e4f14a228500ea29c5668903ee7074fd7e99963db97bbe1f6fcdd241130bda268a5fac01b8957ba79a9913fd2cafa005df0edd111ba83105f434d6c1cfb3426155d2b19552129dc49f5d352a70485487bbd8d203a06aeb0659d0a1d74ad032beb1efe7f6c5d69cb5375e8a9feae5eda589a92267bb795089320ad99f8ab215f483255ad32ec960f751bad35ddbc619811a04693ebd2e5c7d0ee1549fbb6c2ea54f783eda3945787d1d18574ad9d8f6748814c276f72217ab8b9dd20cfadbb4289cce59d7bade2c8740a4470a867cbc444f7e39325ccd573a1a25fee1a1b5780087ab33b4ffc4a0b07d774d4201aa0ebec4c9aee4757cafcc58b507ede9837be930b83d99bc1999d19b2f916519c9fe6a43c8a9781dce3404b7396262a8734cd4b695034157183dde23775371e63eb7444d9183ed781f9768030615ce4e47ca9f4c7778eb1484581118de5271fdca325a080ba80080dafaf14d76ed83224babb32a4e0d8e5d435ac049f08fdd74e9bb8060ee5b8079538b4eb64894ea645548ec67e76e693b5063a04597465031949d30313cbabb992068cda627f4bcbf8042278258dc10137b364a935d8638e474218eb69a2cd7fead77c54eaff6357a476ee1b0cf2a9cecd28379b20f31b684c2ac7d4815090798ff74d72659bd9f8b68351cb4e00ac6d1fd4031ae711fe05f85f8fe416ea06f03dac9dcc7e8948802c2d65ce413371fea87a52ddc669886153a8161d6f0277f1859cdc750bda20517e445682b5b87ece37b78b14753e526817b4ca246a0c52cd4231c2888cbdcf1309e3ca5d49e317d51557e51f8641e9f26cef07805bb82f497d1ddadaa30d535e5e0bd175b422e3d016af4b057c67acc03a7491a4cc08bc6fa1b52ba9e2c3192e95f1035d01ce01425e50b25e7ca45b18a146b27eb45088a016c5657e51c69161373f5f302e2c20cce26f4f82adb42650514080df0545c8c8afe81902b3524c1191722e37eae80e2be9b62af13c94fd11b67ece89ad336e6164d5bb5849b9ebc78aac72f9292f837c0f9e6c69209a7996594e94f112e1eb7f53e6a5f12f300cb5c7e2b48767038d9b48c57d6e52f237e5109475e71b68a3e42022330cbbe739351c9631e3020c"}, {0x58, 0x10f, 0xe7, "894d6649de4ba4aa592e7364586dc098bd44d8a55c4e184e3999fc60dee9b3f4cf17f7372b6e9f121c70700520812a2a8313033553f1e31a378dd3ba5eeffd45af0eff"}, {0xa8, 0x88, 0x8, "34f408c0fbf5011d2df27e98621e19e27d190935dd753fa5833bd5d1e2bfd88940954a3a79f54301d1e697d6f26478e66d045de0dfebaf342e7c928326f085e64b0a0c7325c0de2b9cfe5cecb90ab12a9bac4a793d1ca2efa4649ea18f7a8b3b436544444d0094c623679ed915ccafbd05105daf86c4d5e815839c78cee96c66719b7bc7ba7fd4e22333b78fdaca93be53f8"}, {0x30, 0x107, 0x8, "676eb54adb5cffaf81dac437700d58be5400d64f8660e46ab233"}, {0x20, 0x10e, 0x4ae, "d74e12b6fd1fa7c4403f716a50cd4f"}, {0x10, 0x104, 0x9}, {0x100, 0x0, 0xffffff7f, "f2efe3daf966742a4047f2157b26d88dc08f4368f40bdd3454c765c67d1bdb763f6b70fdee0ba9e8bf2c2a0847ce605fb4062420ee2ceb60e4677ec08d14bbdb21f55724a9caf5309ccb9632258d7eefc1727a00b7d64478d5d29402ce804addc797ff8e9d4621bf9cb13f2d7c4dcc522905cf7d24e0bf8cb0a77b0b1ee54ef416fc1d34d6a4dc8918c3f89d8835dde8cc1c2adb5e10f5456f8edeb2e5a1cb85d21e26820fbdb8b21b5bcc00489d920b4db9432d16a450c62617b80637616d2e9db657fc6bc6005a2b885cb448259b46c8b0080eeb9ed933d2dd94e1b60f94ac898ae010fc2ace889e"}], 0x1270}}, {{&(0x7f0000002640)=@xdp={0x2c, 0x18, 0x0, 0x1f}, 0x80, &(0x7f00000029c0)=[{&(0x7f00000026c0)="78ee4e56f61dffaaca132f830b5b244afe93a1fa269da84abfeb7b2721bda12daea5c8bf86d06edfd5555ccb42a50404cf6496e7ae984e0384ffd7e0e02ffc5fb6ecfcb4cdf891655d452bf420b4afcfcb85167099264e46345fa7d48928e4d2e1a68d34a1d88733a221d23b297f98a6404ba9404bea8c24e85fa1f9c9c18d1dbab1a12124c5f8bcf6bd173a26c491b93c9f5a1b75bfbf80a3c1cb1452254e798de7141d5d08f90fac695bc7c425411bab2be49beff806c3f558b2519a4063345bf6dcc50bd02d30e237af2c449e7888f17b6c8c3a1fde7db7cbf1ae37e3", 0xde}, {&(0x7f00000027c0)="cacc92302558734d776ec54a4f59dff69b5dc6c0739f6387309f1f12019f00195b35eda379df9321f43687f04e0edba2b05f5bafb571ff811a9a8f67750e58dc84a0be1be6132cde342585953195f04065a3e8664b10ad513fa6291bbe7933e366fe919dc850724865", 0x69}, {&(0x7f0000002840)="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", 0xfa}, {&(0x7f0000002940)="71daabf2a251f05e455d08c234facd7456a87afb81b8361743b702a668a67f8e46c4b059b2a558eced8442d97329a2b5675e99ca7e3c5018bb08d4e2ec1edb7d790d60ff5b7a0585f659a1435593ace9f62a31da90f73ba7833b74d47f7a6391b5d3fb86c12649f539b7702c2e6e1fdf4e906dcef79bf7d5", 0x78}], 0x4, &(0x7f0000002a00)}}], 0x4, 0x20048850)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@remote, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0xfffffffffffffdbc, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @rand_addr=0x64010102}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1230.848831][ T5862] dccp_invalid_packet: P.Data Offset(0) too small
[ 1230.886467][ T5867] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:34 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r2 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r2, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r4, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r4, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50)
getsockopt$sock_buf(r1, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9, 0x1, 0x80, 0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x80000001}, 0x18710, 0x101, 0x7ff, 0xefec69312eecb9c4, 0x1ff, 0x6, 0xa034, 0x0, 0x9, 0x0, 0x80000001}, 0xffffffffffffffff, 0x7, r0, 0x8)
bind$802154_dgram(r1, &(0x7f00000001c0)={0x24, @long={0x3, 0x1, {0xaaaaaaaaaaaa0302}}}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1230.917054][ T5864] FAULT_INJECTION: forcing a failure.
[ 1230.917054][ T5864] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1230.951707][ T5864] CPU: 0 PID: 5864 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
03:15:34 executing program 0:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000001c0), 0x2880, 0x0)
[ 1230.960454][ T5864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1230.970613][ T5864] Call Trace:
[ 1230.973899][ T5864]  <TASK>
[ 1230.976836][ T5864]  dump_stack_lvl+0xcd/0x134
[ 1230.981442][ T5864]  should_fail.cold+0x5/0xa
[ 1230.985956][ T5864]  _copy_from_user+0x2c/0x180
[ 1230.990650][ T5864]  __copy_msghdr_from_user+0x91/0x4b0
[ 1230.996048][ T5864]  ? __ia32_sys_shutdown+0x70/0x70
[ 1231.001175][ T5864]  ? __lock_acquire+0x1655/0x5470
[ 1231.006232][ T5864]  ___sys_recvmsg+0xd5/0x200
[ 1231.011018][ T5864]  ? __copy_msghdr_from_user+0x4b0/0x4b0
sendmmsg(0xffffffffffffffff, &(0x7f0000002a40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)="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", 0x1000}], 0x1}}, {{&(0x7f0000000040)=@ethernet={0x1, @local}, 0x80, &(0x7f0000000180)=[{&(0x7f00000000c0)="92cc91ac382f085b7a44385b3ea867915076b3c6914144b85e79886e593f72b3050c8fcd9b81ae714930546138476bdb119fd0b4a3d3b050ba144b96a03fbcdd52b64ccb90d8bbf90d6e7023e22743b39fd4a2a9839fcad7f4f93047a9476ca96b0f303cb89ba6ef5ae9b0d629fadc4ad70d45240b1879bdf5c4033b9ca3765bf283e2b5cf9a38b487e39241627e3929490c3b19a9cf11ac1ae5c6558aed843556785deb3f258642cf9bd43b18c7267fa03295", 0xb3}], 0x1}}, {{&(0x7f0000001240)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x4, 0x0, 0x3, 0x0, {0xa, 0x4e23, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x6904}}}, 0x80, &(0x7f0000001380)=[{&(0x7f00000012c0)="3d10221ae004543b643825f8b6e9e9ed7c139bc9c61d80d6c078061a73a04525782ee89614c8239efbcae6e41be1630f59f7460d61368be287225fd6f16eae52cb038dd2e7f2f66bbd8ca1bd42e4b9c586b63a008983ce5af704ba8a71d89db843e6dff9b31979656c1d3373ab1f348b3abaf42630a7640c2184cf8e6c67545ff1d33ca1559f11e41940e78d0870421c8199d0ab461855f286fbb2d97b8a11ced2bea2e755c1daabb7545b043da42bb6fb0d63b89ff0", 0xb6}], 0x1, &(0x7f00000013c0)=[{0x1010, 0x10e, 0x8, "5bf4763b07766afd574f020b17220b44eb08575f03e13251943800cebe58bfd57ee24106d4046f1fdcc6b7b3405f2021af3e57f99b4f6b8b7aefee9c0222a1497882d2b7339e3f7a692019aec2c9e05d30d69700212aeb3e914e67caff6703eacd96bfdd1b6c3066d0186cd539c482919c42f495d39039b0dd7319dd1ab20ef357f7aea6a417130c10f0e48b83668fd7d647b7095680711e6d4fef1de8cee2317e38e5c277c18954313d376adefdfb4558822173b8d81f23400378bab639ac03247a91dfac78fc966e5e210b270f418d50ecec3f50a1f6939ed9d4001ad77ba73f1c69fb7c353a9a877b240db098a9b39c179c6a211760c06a35795cc65dea674d68751977c9f44d1ae67c8bece9f9c2005e2f13de7dd25d803904d2a550d693287e49b9dd3c0b7c5dd051a99ecf04d9ba4437ccf3593ac69839b2f6d8c7a1f0bc84796fc0c1ce0bbe0fd3d1b0407a13ca2de522590f8d0d35a52117dce5999db7a56a728a122b9eb4111106bd5e230e3c8a813df60e3b8a2f8e86e13354a64c4fb8165905724a69c11b96475c1d3ea0867495f9c7e98c2c43c8f99ac89488aab7db9cf36e8fa669d55738dc99fb6aacf89cb9bb82f0c8a3c8d1835de30de6925a21a6bf6e82bf033e22668713ad80b9655b067466ced8d287dd0d73d72b9d147443e358fddd42b4d582929a87d1117b31c3ebc4f281f0c40c6019dd509777a367b69102d73e4bd46b8a69059781511197f4cc823bfc9882b9813adc7cbf269b18a070142c1f655f65f07b20533e2082da40d33b3fd8efe4f7e7e1207c5d72eb2f7c1fe38348b53e043c6469f2e62a598fac00651935ce6f633ee3430d7d7dd5074068ec99c40ce45c38b03839e82a85a60e046d54bd64bfd7b4e0cf5f7c33a1f07e915641662d1751e642c7415475568aa7b1b2a870fec559b0b8996afd67b623592bc8970664f54c5c77bb64a9f1b8804fdbbd1e5ace38b83d2238449ce63742b879d428b35699bb35a7bd22669e82d44fb67a50a8339c7757ff813921a1d7b01301aa8b7adbe8c36b6991d96602735b2c4d3ad86efcb003c49f7a68690290b4168562867cd6210244cbf8da4cddd026892949dbf6618bd7e3441f3f4484768c29d378fb379207e1db8d62ecbe4d778804e0c0b622b204383af095f8cee55f9f443c5071797376601cf491b826110f03cce640fae40820737d992bc6dc4d77c205c6772f0d82e856e0c9cf2d06407d343753466a6b218c1d610a5688107b5204efc8e2aa5f39c18f285e7e9f6356eee6284a84b07b2cc55103dd1b8ee34431da04177173777cbcd42c8169d9e41031e3087b84d82513999b6d7454a1fe47a95eebc266d049f9824ac944df9667ab22c2c4f570e3633e86284117db11c8b2ee3aeba8bbed9b12f5b80d9f5b9f78c2284c460cc99318a61eb1bc0631256211b94ff820bbc97fd8d1083ca13975d216fb2d6dd108534e1f9ef385a1ae05c1de37f2cc4998cc9bf9a0ae3e6a58cdbffeead1929d3a47d30919e5ee4e648d89d2c2ba6b5ddd9ef8d78886cad477660a4a16228a082ed1613e80d77af9452930ca78c594cfbd7e45b873aadc8331ac18eee56b8e880173c78f3c6a91bd458f53a1591ea44c7f66d0ca867d98825e94a9925593d82b07bb994431a87048dbdb124f856a050bcecd65ba3102b66cd001b83dd4ddda6a30a742e7e0fab8708ee656ba18714cf51448e40970d14ca6ad3ccb84edb8635916233409d0372a99a35bca089ba1531b37d6107b8f6d6a08582f861e3d95eb9d512ceb606ba570a60a59062ee581770fa4cff70ef27b28786bdb171b91092ab63e1597b8900e2a74e5d65b0a59b3a742f9bca9e8dbd49a43c314a443b386a8469940003770f8adbfa47a6e96affdd33d29b423bbcd854e7f28cb8ffd2eee07a6354c9aa9db4c26453ce1699bfe2ca8ed8eaba88241c5a273d4910601f001efddaab4e0d18f57effcc276318f7a0f3e07833805cf7117f8f3aa03dcca295efe6502a218d403c16e2e7a2c7a093199cf289c812f10a54d9c020102ec215251514506b2d5852dae9ce133ad4f2fffdaa351993d2a2a3ec1c3889d9527d4ee50c5936080697127d1dca22fbdb71d89dd804504755df598f896a83806b1b9efc4ecd8cbb303d6cd934b85973b74b7f841ac5d11c9a8a7359727d980ee693712eefcfce7c9e391a960ef7d196a22c0797dcb9186880e1a025952090b4c817ecd1da817255dfa2f101deb75548cc7927d9f2e64333552f5f07d97095e1c3d96e2f50a9cd1425b416c898c80a58adc494c260fc370b5246bb217ee60bb0ff764c86bfeb140ddca4676c767507895703df3bc4a87aa45ad8180cec247c981741b600dad794f56421fb55f665c8033d59f8595bbdb03fb79a15bcd95e5948477902cbca2fefafdc0afe82047e22b31cd65e6e6200fc44c6a49300a32cd8e4c9b349b8e63a4c461cd6795cf7e0917f13781f3929d44f9314af0eebf533a37d8500db0610888019db98e9e094071844a553723f4cfbaa5306d34d983ff1b874f784994d2acdc0553b189a2ee07b6c0d7a982a95ee41145ccd35363f6069db9e5ee0f79dcd6e1b4bb91df522cf3f565d6551d1f2138e0ed36d98a9c7a2543a5daaa0427693c80901e96be9b6024a162654b22185a05af6cc9504dbd9502f75cbca56e5277dc4ed9076db47adc8cd336161a50176faef86deac5a61a100a2b651dd923c39c03e4c8aa7d1e792d8e66c138182319334ad72d72120fa503df8e280f31038e8d3cf1289da554ed8113d2c7fe2075bdd4a931a9a28001758a931c733133bd66d5c4cbc3a51efaa01f07f444c0db1544da96e6dcca303f7e8dc2290cf4bc61dff1f7a0e712064eb15cedcd67b1e282a67f8aa40a30ae5fdb3a0c4174716ca788753ad66c7bb69be3756533c8d67f77243724451a2f7def4a6676a54be8ab97d36ef24592af3dfa253f98365b700277ecf922da5612b12ad7e8d52cfc178f44e10bf90394f10da61de800bd7e1991a246d4c74d4939c6cc56c33aa490cc9c5e111457ed794f5afaaead121c617e7d1feb1d0863d6e8226f0ecde69720b895e76ec087d3556819d6c306855eb72cb057c3f200371a1ba06d9c1037ed83fecffb1924cf1b1989b47e993184841905587d299d50aca64c09576cdce1cee1bf63e8e1bc85ea0e74e9f6c8dcdb0cb2e46f267ab05d6f1071269ec86266d076b8db3b22f153e53c1feae59fe5ea425de29341f69bcdfa9c60b3611b47428252de420e3e487d85a2cadf977f231d387341d6538ea984ff22d6c4e6a61543f480630a1a0687dce9a6e89613bec96f8e9683699e2a70b3eb76dda02bba787ad00fab7db2d9f582237810a04f34185a5976524eb239b1c59e340225e62a1d03870cf7632675f2b0cca1fac369ba5e79fb7b3a4e46bdf5269db94ca3bef0b44bcc01508ef6fcc2febd1e67c7749c01c24c6d75d5b508a7a174092ff2b651e9492a386130d7c0ff739156b0d93ccec0b29a52ce21e7561ed33ce569d672149c28e041bf73abf406eb2ab314018334f8b018e5fb107a588fb4f3d4d41a0407d20740298b0833c37e9525198e8f9fcc56c928098edcf56f6dc880574e2f8fe97e7313528ee521cf328cf59841b5a1e32f190981725300e3e879272723cc5421123f9069a7ff3d28527448a440d16406ad0987b45b794ef49c6db9b3d72715a181f27c8252e4499022109afe7c2b5188a846e182f12d2432639a8c53276f7c8a4059cfcbe3f9d7277387321aeb9d085c9051cb5d8c6f875e9938cbfc1fea0dcf3003c5e327d121b4af3ab84cf647c8fe89eaa63c03c87bf01f9d55cfcf919e5d712dbf63fcbab7c001ab356616d6109e51a6c844ca0477ac884dbccb1d7c2fff09654366ef2d33fcad0b4d8b3f64841f27b88a5fbede5fc8fd69c113d6830f501a8fd0d07ae37e3bdf620a5beeaadd0a8c31bf6dd9e2cb25c4b5af40bafb2cb003444c27d989f5193f89e2090ccdc8c06e038d18ab0c0fbf20de3341a199217dc4fdfac9e45b34bc69d2889b111a9531fd1ef175d9ce79ee86c185b9cbde9ac76c7e803f90979c404781aad89ebdc6fa8bc44f5e1694dbe45d1dacfab1dd4799ca2a99bfc4006c6db0e83c5733beef9fa778cd10a1368881ac72a909ded2441e9f85d12e68a7750e3a83deb39232a9d73fbe99484cc6fc92679ab195ec2201407859f951bab6a170724316656f1fc5b7b8caa411b2aff36986a0e0378bfd012ea2d9b2bfa7f17a6a5d54efb78e86378d7804e07db535ea28234ac5992efe54396af3b9daedb4db22c6ba8729da4b1f111366fd46a62feb26dc546c394ea4fbc654b76a219eb1a3cb99550c5f1af6caec639d961b48c0df14ed7b6e4ce07ee264e94e454c8c560115aa4a92474325cd192edde3f6d95eb3c4715ca75db5152167393e487d7d0c91f783abdb13496baaf19095870e1c86070909c8d9f9072da6456e9e16de4438630e7052b5eeaf53c076b2d4ab0c13c5e354e7d710602388e001de38e2740fde5edbf6f417eada43d8f228273a2da8b79b117bf437b5dba8d32acabc41ec2d95561ea201992dc03eaaa9865adbeb7fdfe9050aff963ed5eba906118796880b8ad767f1b8bacbd59459917f6d373f2e2e4f14a228500ea29c5668903ee7074fd7e99963db97bbe1f6fcdd241130bda268a5fac01b8957ba79a9913fd2cafa005df0edd111ba83105f434d6c1cfb3426155d2b19552129dc49f5d352a70485487bbd8d203a06aeb0659d0a1d74ad032beb1efe7f6c5d69cb5375e8a9feae5eda589a92267bb795089320ad99f8ab215f483255ad32ec960f751bad35ddbc619811a04693ebd2e5c7d0ee1549fbb6c2ea54f783eda3945787d1d18574ad9d8f6748814c276f72217ab8b9dd20cfadbb4289cce59d7bade2c8740a4470a867cbc444f7e39325ccd573a1a25fee1a1b5780087ab33b4ffc4a0b07d774d4201aa0ebec4c9aee4757cafcc58b507ede9837be930b83d99bc1999d19b2f916519c9fe6a43c8a9781dce3404b7396262a8734cd4b695034157183dde23775371e63eb7444d9183ed781f9768030615ce4e47ca9f4c7778eb1484581118de5271fdca325a080ba80080dafaf14d76ed83224babb32a4e0d8e5d435ac049f08fdd74e9bb8060ee5b8079538b4eb64894ea645548ec67e76e693b5063a04597465031949d30313cbabb992068cda627f4bcbf8042278258dc10137b364a935d8638e474218eb69a2cd7fead77c54eaff6357a476ee1b0cf2a9cecd28379b20f31b684c2ac7d4815090798ff74d72659bd9f8b68351cb4e00ac6d1fd4031ae711fe05f85f8fe416ea06f03dac9dcc7e8948802c2d65ce413371fea87a52ddc669886153a8161d6f0277f1859cdc750bda20517e445682b5b87ece37b78b14753e526817b4ca246a0c52cd4231c2888cbdcf1309e3ca5d49e317d51557e51f8641e9f26cef07805bb82f497d1ddadaa30d535e5e0bd175b422e3d016af4b057c67acc03a7491a4cc08bc6fa1b52ba9e2c3192e95f1035d01ce01425e50b25e7ca45b18a146b27eb45088a016c5657e51c69161373f5f302e2c20cce26f4f82adb42650514080df0545c8c8afe81902b3524c1191722e37eae80e2be9b62af13c94fd11b67ece89ad336e6164d5bb5849b9ebc78aac72f9292f837c0f9e6c69209a7996594e94f112e1eb7f53e6a5f12f300cb5c7e2b48767038d9b48c57d6e52f237e5109475e71b68a3e42022330cbbe739351c9631e3020c"}, {0x58, 0x10f, 0xe7, "894d6649de4ba4aa592e7364586dc098bd44d8a55c4e184e3999fc60dee9b3f4cf17f7372b6e9f121c70700520812a2a8313033553f1e31a378dd3ba5eeffd45af0eff"}, {0xa8, 0x88, 0x8, "34f408c0fbf5011d2df27e98621e19e27d190935dd753fa5833bd5d1e2bfd88940954a3a79f54301d1e697d6f26478e66d045de0dfebaf342e7c928326f085e64b0a0c7325c0de2b9cfe5cecb90ab12a9bac4a793d1ca2efa4649ea18f7a8b3b436544444d0094c623679ed915ccafbd05105daf86c4d5e815839c78cee96c66719b7bc7ba7fd4e22333b78fdaca93be53f8"}, {0x30, 0x107, 0x8, "676eb54adb5cffaf81dac437700d58be5400d64f8660e46ab233"}, {0x20, 0x10e, 0x4ae, "d74e12b6fd1fa7c4403f716a50cd4f"}, {0x10, 0x104, 0x9}, {0x100, 0x0, 0xffffff7f, "f2efe3daf966742a4047f2157b26d88dc08f4368f40bdd3454c765c67d1bdb763f6b70fdee0ba9e8bf2c2a0847ce605fb4062420ee2ceb60e4677ec08d14bbdb21f55724a9caf5309ccb9632258d7eefc1727a00b7d64478d5d29402ce804addc797ff8e9d4621bf9cb13f2d7c4dcc522905cf7d24e0bf8cb0a77b0b1ee54ef416fc1d34d6a4dc8918c3f89d8835dde8cc1c2adb5e10f5456f8edeb2e5a1cb85d21e26820fbdb8b21b5bcc00489d920b4db9432d16a450c62617b80637616d2e9db657fc6bc6005a2b885cb448259b46c8b0080eeb9ed933d2dd94e1b60f94ac898ae010fc2ace889e"}], 0x1270}}, {{&(0x7f0000002640)=@xdp={0x2c, 0x18, 0x0, 0x1f}, 0x80, &(0x7f00000029c0)=[{&(0x7f00000026c0)="78ee4e56f61dffaaca132f830b5b244afe93a1fa269da84abfeb7b2721bda12daea5c8bf86d06edfd5555ccb42a50404cf6496e7ae984e0384ffd7e0e02ffc5fb6ecfcb4cdf891655d452bf420b4afcfcb85167099264e46345fa7d48928e4d2e1a68d34a1d88733a221d23b297f98a6404ba9404bea8c24e85fa1f9c9c18d1dbab1a12124c5f8bcf6bd173a26c491b93c9f5a1b75bfbf80a3c1cb1452254e798de7141d5d08f90fac695bc7c425411bab2be49beff806c3f558b2519a4063345bf6dcc50bd02d30e237af2c449e7888f17b6c8c3a1fde7db7cbf1ae37e3", 0xde}, {&(0x7f00000027c0)="cacc92302558734d776ec54a4f59dff69b5dc6c0739f6387309f1f12019f00195b35eda379df9321f43687f04e0edba2b05f5bafb571ff811a9a8f67750e58dc84a0be1be6132cde342585953195f04065a3e8664b10ad513fa6291bbe7933e366fe919dc850724865", 0x69}, {&(0x7f0000002840)="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", 0xfa}, {&(0x7f0000002940)="71daabf2a251f05e455d08c234facd7456a87afb81b8361743b702a668a67f8e46c4b059b2a558eced8442d97329a2b5675e99ca7e3c5018bb08d4e2ec1edb7d790d60ff5b7a0585f659a1435593ace9f62a31da90f73ba7833b74d47f7a6391b5d3fb86c12649f539b7702c2e6e1fdf4e906dcef79bf7d5", 0x78}], 0x4, &(0x7f0000002a00)}}], 0x4, 0x20048850) (async)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@remote, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0xfffffffffffffdbc, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @rand_addr=0x64010102}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1231.016673][ T5864]  ? check_path.constprop.0+0x50/0x50
[ 1231.022158][ T5864]  ? find_held_lock+0x2d/0x110
[ 1231.026947][ T5864]  ? __might_fault+0xd1/0x170
[ 1231.031652][ T5864]  ? lock_downgrade+0x6e0/0x6e0
[ 1231.036546][ T5864]  do_recvmmsg+0x24d/0x6d0
[ 1231.040980][ T5864]  ? ___sys_recvmsg+0x200/0x200
[ 1231.045846][ T5864]  ? check_path.constprop.0+0x50/0x50
[ 1231.051261][ T5864]  ? __context_tracking_exit+0xb8/0xe0
[ 1231.056831][ T5864]  ? lock_downgrade+0x6e0/0x6e0
[ 1231.061705][ T5864]  ? lock_downgrade+0x6e0/0x6e0
[ 1231.066568][ T5864]  __x64_sys_recvmmsg+0x20b/0x260
[ 1231.071595][ T5864]  ? __do_sys_socketcall+0x590/0x590
[ 1231.076989][ T5864]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1231.082918][ T5864]  do_syscall_64+0x35/0xb0
[ 1231.087346][ T5864]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1231.093340][ T5864] RIP: 0033:0x7f688ab57e99
[ 1231.097743][ T5864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1231.117625][ T5864] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1231.126053][ T5864] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1231.134035][ T5864] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1231.142020][ T5864] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1231.149983][ T5864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1231.157940][ T5864] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
03:15:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 18)

03:15:34 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff) (async)
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
r2 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, 0x0) (async)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r2, &(0x7f0000000200)={0x10000013}) (async, rerun: 32)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14) (async, rerun: 32)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r4, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0) (async)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r4, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50) (async)
getsockopt$sock_buf(r1, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9, 0x1, 0x80, 0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x80000001}, 0x18710, 0x101, 0x7ff, 0xefec69312eecb9c4, 0x1ff, 0x6, 0xa034, 0x0, 0x9, 0x0, 0x80000001}, 0xffffffffffffffff, 0x7, r0, 0x8) (async)
bind$802154_dgram(r1, &(0x7f00000001c0)={0x24, @long={0x3, 0x1, {0xaaaaaaaaaaaa0302}}}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:34 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2], 0x58}}, 0x0)

03:15:34 executing program 0:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000001c0), 0x2880, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000002a40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)="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", 0x1000}], 0x1}}, {{&(0x7f0000000040)=@ethernet={0x1, @local}, 0x80, &(0x7f0000000180)=[{&(0x7f00000000c0)="92cc91ac382f085b7a44385b3ea867915076b3c6914144b85e79886e593f72b3050c8fcd9b81ae714930546138476bdb119fd0b4a3d3b050ba144b96a03fbcdd52b64ccb90d8bbf90d6e7023e22743b39fd4a2a9839fcad7f4f93047a9476ca96b0f303cb89ba6ef5ae9b0d629fadc4ad70d45240b1879bdf5c4033b9ca3765bf283e2b5cf9a38b487e39241627e3929490c3b19a9cf11ac1ae5c6558aed843556785deb3f258642cf9bd43b18c7267fa03295", 0xb3}], 0x1}}, {{&(0x7f0000001240)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x4, 0x0, 0x3, 0x0, {0xa, 0x4e23, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x6904}}}, 0x80, &(0x7f0000001380)=[{&(0x7f00000012c0)="3d10221ae004543b643825f8b6e9e9ed7c139bc9c61d80d6c078061a73a04525782ee89614c8239efbcae6e41be1630f59f7460d61368be287225fd6f16eae52cb038dd2e7f2f66bbd8ca1bd42e4b9c586b63a008983ce5af704ba8a71d89db843e6dff9b31979656c1d3373ab1f348b3abaf42630a7640c2184cf8e6c67545ff1d33ca1559f11e41940e78d0870421c8199d0ab461855f286fbb2d97b8a11ced2bea2e755c1daabb7545b043da42bb6fb0d63b89ff0", 0xb6}], 0x1, &(0x7f00000013c0)=[{0x1010, 0x10e, 0x8, "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"}, {0x58, 0x10f, 0xe7, "894d6649de4ba4aa592e7364586dc098bd44d8a55c4e184e3999fc60dee9b3f4cf17f7372b6e9f121c70700520812a2a8313033553f1e31a378dd3ba5eeffd45af0eff"}, {0xa8, 0x88, 0x8, "34f408c0fbf5011d2df27e98621e19e27d190935dd753fa5833bd5d1e2bfd88940954a3a79f54301d1e697d6f26478e66d045de0dfebaf342e7c928326f085e64b0a0c7325c0de2b9cfe5cecb90ab12a9bac4a793d1ca2efa4649ea18f7a8b3b436544444d0094c623679ed915ccafbd05105daf86c4d5e815839c78cee96c66719b7bc7ba7fd4e22333b78fdaca93be53f8"}, {0x30, 0x107, 0x8, "676eb54adb5cffaf81dac437700d58be5400d64f8660e46ab233"}, {0x20, 0x10e, 0x4ae, "d74e12b6fd1fa7c4403f716a50cd4f"}, {0x10, 0x104, 0x9}, {0x100, 0x0, 0xffffff7f, "f2efe3daf966742a4047f2157b26d88dc08f4368f40bdd3454c765c67d1bdb763f6b70fdee0ba9e8bf2c2a0847ce605fb4062420ee2ceb60e4677ec08d14bbdb21f55724a9caf5309ccb9632258d7eefc1727a00b7d64478d5d29402ce804addc797ff8e9d4621bf9cb13f2d7c4dcc522905cf7d24e0bf8cb0a77b0b1ee54ef416fc1d34d6a4dc8918c3f89d8835dde8cc1c2adb5e10f5456f8edeb2e5a1cb85d21e26820fbdb8b21b5bcc00489d920b4db9432d16a450c62617b80637616d2e9db657fc6bc6005a2b885cb448259b46c8b0080eeb9ed933d2dd94e1b60f94ac898ae010fc2ace889e"}], 0x1270}}, {{&(0x7f0000002640)=@xdp={0x2c, 0x18, 0x0, 0x1f}, 0x80, &(0x7f00000029c0)=[{&(0x7f00000026c0)="78ee4e56f61dffaaca132f830b5b244afe93a1fa269da84abfeb7b2721bda12daea5c8bf86d06edfd5555ccb42a50404cf6496e7ae984e0384ffd7e0e02ffc5fb6ecfcb4cdf891655d452bf420b4afcfcb85167099264e46345fa7d48928e4d2e1a68d34a1d88733a221d23b297f98a6404ba9404bea8c24e85fa1f9c9c18d1dbab1a12124c5f8bcf6bd173a26c491b93c9f5a1b75bfbf80a3c1cb1452254e798de7141d5d08f90fac695bc7c425411bab2be49beff806c3f558b2519a4063345bf6dcc50bd02d30e237af2c449e7888f17b6c8c3a1fde7db7cbf1ae37e3", 0xde}, {&(0x7f00000027c0)="cacc92302558734d776ec54a4f59dff69b5dc6c0739f6387309f1f12019f00195b35eda379df9321f43687f04e0edba2b05f5bafb571ff811a9a8f67750e58dc84a0be1be6132cde342585953195f04065a3e8664b10ad513fa6291bbe7933e366fe919dc850724865", 0x69}, {&(0x7f0000002840)="a33f47c9ecc0e5a6bddb6c5fc3b9553568a6c44af25ea430296ab73a3f3cdb28518daa4ffc8204740c498521aecbbbfa56aaa1ee0fab08f5520ead12154a02de30404eabcf6d7c42191d1d65c0b247d7f25ac4dec91e49dde839c0387a0644e925ba51480d31f2e5f50888adf28b1b6476646f98f8f736c4f4c783e8d5173e0142bb6f534145d1db07ed6107871338440897161126595559564ab9dbc7c0361ec5c10b880b9651654f4bdb830a2f20e1a51c5927932e691379b7cd7a2c80664529baa6387ac8648b59d0dbffe8f490b378aac324c84ba52460be80eb1ff4cd62440af00fec184c47a5c624280903ad24f5534e2ad36f86ad003f", 0xfa}, {&(0x7f0000002940)="71daabf2a251f05e455d08c234facd7456a87afb81b8361743b702a668a67f8e46c4b059b2a558eced8442d97329a2b5675e99ca7e3c5018bb08d4e2ec1edb7d790d60ff5b7a0585f659a1435593ace9f62a31da90f73ba7833b74d47f7a6391b5d3fb86c12649f539b7702c2e6e1fdf4e906dcef79bf7d5", 0x78}], 0x4, &(0x7f0000002a00)}}], 0x4, 0x20048850) (async)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@remote, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0xfffffffffffffdbc, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @rand_addr=0x64010102}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:34 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x87a, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1231.165930][ T5864]  </TASK>
03:15:34 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x900, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:34 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x9f, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c2000002aaaaaaaaaa3e91002400810009006005b313ae14392f2c019c3e905485c402dd754bdcce2bb0bbe773bbdb7e4971a019149c97ce4dfd7dd549ea87992ffa4c64c6b198978303fc46f689d624689572f26c74a5eac01a1dad3abfb28f2af8ab086a8f2fbabea2f3002254e5903d5d81a795cbda333fe003169422f1b69ef9b6d8f0ce712159"], &(0x7f00000000c0)={0x0, 0x1, [0x7cd, 0xc55, 0xaf4, 0xd59]})
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, 0xffffffffffffffff)
syz_emit_ethernet(0x3c, &(0x7f0000000100)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}, @multicast, @val={@val={0x9100, 0x1, 0x0, 0x3}, {0x8100, 0x4, 0x1}}, {@arp={0x806, @generic={0x118, 0x8863, 0x6, 0xc, 0x3, @remote, "e51bdb221a913a27e65941c7", @remote, "aedc0fbcb93d"}}}}, &(0x7f0000000140)={0xffffffff, 0x1, [0x897, 0x699, 0x713, 0x631]})
syz_emit_ethernet(0x1e, &(0x7f0000000180)={@random="44f3ae317a2e", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x24}, @void, {@can={0xc, {{0x1, 0x0, 0x1}, 0x4, 0x2, 0x0, 0x0, "f8062cdc43540485"}}}}, &(0x7f00000001c0)={0x1, 0x2, [0xa66, 0xa31, 0xde6, 0x703]})

[ 1231.212603][ T5889] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1231.298398][ T5899] FAULT_INJECTION: forcing a failure.
[ 1231.298398][ T5899] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1231.322568][ T5899] CPU: 0 PID: 5899 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1231.331965][ T5899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1231.342053][ T5899] Call Trace:
[ 1231.345339][ T5899]  <TASK>
[ 1231.348275][ T5899]  dump_stack_lvl+0xcd/0x134
[ 1231.353057][ T5899]  should_fail.cold+0x5/0xa
[ 1231.357575][ T5899]  _copy_from_user+0x2c/0x180
[ 1231.362246][ T5899]  __copy_msghdr_from_user+0x91/0x4b0
[ 1231.367609][ T5899]  ? __ia32_sys_shutdown+0x70/0x70
[ 1231.372722][ T5899]  ? __lock_acquire+0x1655/0x5470
[ 1231.377773][ T5899]  ___sys_recvmsg+0xd5/0x200
[ 1231.382354][ T5899]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1231.387990][ T5899]  ? check_path.constprop.0+0x50/0x50
[ 1231.393479][ T5899]  ? find_held_lock+0x2d/0x110
[ 1231.398239][ T5899]  ? __might_fault+0xd1/0x170
[ 1231.402907][ T5899]  ? lock_downgrade+0x6e0/0x6e0
[ 1231.407766][ T5899]  do_recvmmsg+0x24d/0x6d0
[ 1231.412187][ T5899]  ? ___sys_recvmsg+0x200/0x200
[ 1231.417034][ T5899]  ? check_path.constprop.0+0x50/0x50
[ 1231.422414][ T5899]  ? irqentry_enter+0x29/0x50
[ 1231.427085][ T5899]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1231.433243][ T5899]  __x64_sys_recvmmsg+0x20b/0x260
[ 1231.438266][ T5899]  ? __do_sys_socketcall+0x590/0x590
[ 1231.443555][ T5899]  ? syscall_enter_from_user_mode+0x2b/0x70
[ 1231.449443][ T5899]  do_syscall_64+0x35/0xb0
[ 1231.453851][ T5899]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1231.459743][ T5899] RIP: 0033:0x7f688ab57e99
[ 1231.464151][ T5899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1231.483754][ T5899] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1231.492164][ T5899] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1231.500127][ T5899] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1231.508087][ T5899] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1231.516045][ T5899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1231.524008][ T5899] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1231.531981][ T5899]  </TASK>
03:15:37 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2], 0x58}}, 0x0)

03:15:37 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xc000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:37 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x1800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:37 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r2 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r2, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r4, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r4, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50)
getsockopt$sock_buf(r1, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9, 0x1, 0x80, 0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x80000001}, 0x18710, 0x101, 0x7ff, 0xefec69312eecb9c4, 0x1ff, 0x6, 0xa034, 0x0, 0x9, 0x0, 0x80000001}, 0xffffffffffffffff, 0x7, r0, 0x8)
bind$802154_dgram(r1, &(0x7f00000001c0)={0x24, @long={0x3, 0x1, {0xaaaaaaaaaaaa0302}}}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff) (async)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
syz_open_procfs$userns(0x0, 0x0) (async)
ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, 0x0) (async)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r2, &(0x7f0000000200)={0x10000013}) (async)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r4, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0) (async)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r4, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50) (async)
getsockopt$sock_buf(r1, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40) (async)
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9, 0x1, 0x80, 0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x80000001}, 0x18710, 0x101, 0x7ff, 0xefec69312eecb9c4, 0x1ff, 0x6, 0xa034, 0x0, 0x9, 0x0, 0x80000001}, 0xffffffffffffffff, 0x7, r0, 0x8) (async)
bind$802154_dgram(r1, &(0x7f00000001c0)={0x24, @long={0x3, 0x1, {0xaaaaaaaaaaaa0302}}}, 0x14) (async)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0) (async)

03:15:37 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async, rerun: 64)
syz_emit_ethernet(0x9f, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c2000002aaaaaaaaaa3e91002400810009006005b313ae14392f2c019c3e905485c402dd754bdcce2bb0bbe773bbdb7e4971a019149c97ce4dfd7dd549ea87992ffa4c64c6b198978303fc46f689d624689572f26c74a5eac01a1dad3abfb28f2af8ab086a8f2fbabea2f3002254e5903d5d81a795cbda333fe003169422f1b69ef9b6d8f0ce712159"], &(0x7f00000000c0)={0x0, 0x1, [0x7cd, 0xc55, 0xaf4, 0xd59]}) (async, rerun: 64)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, 0xffffffffffffffff)
syz_emit_ethernet(0x3c, &(0x7f0000000100)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}, @multicast, @val={@val={0x9100, 0x1, 0x0, 0x3}, {0x8100, 0x4, 0x1}}, {@arp={0x806, @generic={0x118, 0x8863, 0x6, 0xc, 0x3, @remote, "e51bdb221a913a27e65941c7", @remote, "aedc0fbcb93d"}}}}, &(0x7f0000000140)={0xffffffff, 0x1, [0x897, 0x699, 0x713, 0x631]}) (async)
syz_emit_ethernet(0x1e, &(0x7f0000000180)={@random="44f3ae317a2e", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x24}, @void, {@can={0xc, {{0x1, 0x0, 0x1}, 0x4, 0x2, 0x0, 0x0, "f8062cdc43540485"}}}}, &(0x7f00000001c0)={0x1, 0x2, [0xa66, 0xa31, 0xde6, 0x703]})

03:15:37 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 19)

03:15:37 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x2f00, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1233.918454][ T5913] FAULT_INJECTION: forcing a failure.
[ 1233.918454][ T5913] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1233.926639][ T5914] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1233.989466][ T5913] CPU: 1 PID: 5913 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1233.998502][ T5913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1234.008583][ T5913] Call Trace:
[ 1234.011886][ T5913]  <TASK>
[ 1234.015269][ T5913]  dump_stack_lvl+0xcd/0x134
[ 1234.020079][ T5913]  should_fail.cold+0x5/0xa
[ 1234.024803][ T5913]  _copy_from_user+0x2c/0x180
[ 1234.029714][ T5913]  __copy_msghdr_from_user+0x91/0x4b0
[ 1234.035128][ T5913]  ? __ia32_sys_shutdown+0x70/0x70
[ 1234.040278][ T5913]  ? __lock_acquire+0x1655/0x5470
[ 1234.045428][ T5913]  ___sys_recvmsg+0xd5/0x200
[ 1234.050120][ T5913]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1234.055772][ T5913]  ? check_path.constprop.0+0x50/0x50
[ 1234.061194][ T5913]  ? find_held_lock+0x2d/0x110
[ 1234.065995][ T5913]  ? __might_fault+0xd1/0x170
[ 1234.070705][ T5913]  ? lock_downgrade+0x6e0/0x6e0
[ 1234.075600][ T5913]  do_recvmmsg+0x24d/0x6d0
[ 1234.080220][ T5913]  ? ___sys_recvmsg+0x200/0x200
[ 1234.085187][ T5913]  ? check_path.constprop.0+0x50/0x50
[ 1234.090604][ T5913]  ? __context_tracking_exit+0xb8/0xe0
[ 1234.096275][ T5913]  ? lock_downgrade+0x6e0/0x6e0
[ 1234.101175][ T5913]  ? lock_downgrade+0x6e0/0x6e0
[ 1234.106066][ T5913]  __x64_sys_recvmmsg+0x20b/0x260
[ 1234.111137][ T5913]  ? __do_sys_socketcall+0x590/0x590
[ 1234.116754][ T5913]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1234.122789][ T5913]  do_syscall_64+0x35/0xb0
[ 1234.127254][ T5913]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1234.133189][ T5913] RIP: 0033:0x7f688ab57e99
[ 1234.137797][ T5913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1234.157873][ T5913] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1234.166319][ T5913] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1234.174665][ T5913] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1234.182664][ T5913] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1234.190850][ T5913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1234.199636][ T5913] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1234.208104][ T5913]  </TASK>
03:15:37 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:37 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x4305, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:37 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x9f, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c2000002aaaaaaaaaa3e91002400810009006005b313ae14392f2c019c3e905485c402dd754bdcce2bb0bbe773bbdb7e4971a019149c97ce4dfd7dd549ea87992ffa4c64c6b198978303fc46f689d624689572f26c74a5eac01a1dad3abfb28f2af8ab086a8f2fbabea2f3002254e5903d5d81a795cbda333fe003169422f1b69ef9b6d8f0ce712159"], &(0x7f00000000c0)={0x0, 0x1, [0x7cd, 0xc55, 0xaf4, 0xd59]}) (async)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, 0xffffffffffffffff) (async)
syz_emit_ethernet(0x3c, &(0x7f0000000100)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}, @multicast, @val={@val={0x9100, 0x1, 0x0, 0x3}, {0x8100, 0x4, 0x1}}, {@arp={0x806, @generic={0x118, 0x8863, 0x6, 0xc, 0x3, @remote, "e51bdb221a913a27e65941c7", @remote, "aedc0fbcb93d"}}}}, &(0x7f0000000140)={0xffffffff, 0x1, [0x897, 0x699, 0x713, 0x631]}) (async)
syz_emit_ethernet(0x1e, &(0x7f0000000180)={@random="44f3ae317a2e", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x24}, @void, {@can={0xc, {{0x1, 0x0, 0x1}, 0x4, 0x2, 0x0, 0x0, "f8062cdc43540485"}}}}, &(0x7f00000001c0)={0x1, 0x2, [0xa66, 0xa31, 0xde6, 0x703]})

03:15:37 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xc03e)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1234.286945][ T5933] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:37 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0xed, &(0x7f0000000000)={@random="2e253ad270ea", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@x25={0x805, {0x3, 0x8, 0xf3, "4e74a92c0dca221fe0e25aa4ad4e29ecb019e087331a384c7aecfb748193cd84494813759279e480803b5660ce572696d3e408017b2e956a454a6b7c5412c3291532b0a5e786b41f069b7b6657794bb3ccc46ce60bdcd5e38824e0d2673bde66b9b539142b99342e51d3f4b2f41ff0ea7774fb8ec812c46bd15d4d43f69b25601147916e3d397a59b834c8bb7e75928325ea9c592ccb5c64b15fc32eb64b1d032ff3c82938d06b7448395cd7b6d2b00a21ab55491a90dad13f72668e6c24b6a2b4e2a2cf6a8a49cae0b40167700b0e779cf04331f07cd65b77181842"}}}}, &(0x7f0000000100)={0x1, 0x3, [0x843, 0x2ea, 0x3ab, 0xcf4]})

03:15:37 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x4700, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:37 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:37 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x6000, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1234.454704][ T5948] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:37 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0xed, &(0x7f0000000000)={@random="2e253ad270ea", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@x25={0x805, {0x3, 0x8, 0xf3, "4e74a92c0dca221fe0e25aa4ad4e29ecb019e087331a384c7aecfb748193cd84494813759279e480803b5660ce572696d3e408017b2e956a454a6b7c5412c3291532b0a5e786b41f069b7b6657794bb3ccc46ce60bdcd5e38824e0d2673bde66b9b539142b99342e51d3f4b2f41ff0ea7774fb8ec812c46bd15d4d43f69b25601147916e3d397a59b834c8bb7e75928325ea9c592ccb5c64b15fc32eb64b1d032ff3c82938d06b7448395cd7b6d2b00a21ab55491a90dad13f72668e6c24b6a2b4e2a2cf6a8a49cae0b40167700b0e779cf04331f07cd65b77181842"}}}}, &(0x7f0000000100)={0x1, 0x3, [0x843, 0x2ea, 0x3ab, 0xcf4]})
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0xed, &(0x7f0000000000)={@random="2e253ad270ea", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@x25={0x805, {0x3, 0x8, 0xf3, "4e74a92c0dca221fe0e25aa4ad4e29ecb019e087331a384c7aecfb748193cd84494813759279e480803b5660ce572696d3e408017b2e956a454a6b7c5412c3291532b0a5e786b41f069b7b6657794bb3ccc46ce60bdcd5e38824e0d2673bde66b9b539142b99342e51d3f4b2f41ff0ea7774fb8ec812c46bd15d4d43f69b25601147916e3d397a59b834c8bb7e75928325ea9c592ccb5c64b15fc32eb64b1d032ff3c82938d06b7448395cd7b6d2b00a21ab55491a90dad13f72668e6c24b6a2b4e2a2cf6a8a49cae0b40167700b0e779cf04331f07cd65b77181842"}}}}, &(0x7f0000000100)={0x1, 0x3, [0x843, 0x2ea, 0x3ab, 0xcf4]}) (async)

03:15:37 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x8035, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:37 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 20)

03:15:37 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x8100, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:37 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:37 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x33fe0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:37 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0xed, &(0x7f0000000000)={@random="2e253ad270ea", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@x25={0x805, {0x3, 0x8, 0xf3, "4e74a92c0dca221fe0e25aa4ad4e29ecb019e087331a384c7aecfb748193cd84494813759279e480803b5660ce572696d3e408017b2e956a454a6b7c5412c3291532b0a5e786b41f069b7b6657794bb3ccc46ce60bdcd5e38824e0d2673bde66b9b539142b99342e51d3f4b2f41ff0ea7774fb8ec812c46bd15d4d43f69b25601147916e3d397a59b834c8bb7e75928325ea9c592ccb5c64b15fc32eb64b1d032ff3c82938d06b7448395cd7b6d2b00a21ab55491a90dad13f72668e6c24b6a2b4e2a2cf6a8a49cae0b40167700b0e779cf04331f07cd65b77181842"}}}}, &(0x7f0000000100)={0x1, 0x3, [0x843, 0x2ea, 0x3ab, 0xcf4]})

03:15:37 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x8847, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:37 executing program 0:
r0 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, 0x0)
ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f0000000040)=0x7)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x1e, &(0x7f0000000000)={@remote, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@llc_tr={0x11, {@snap={0x1, 0xaa, '_P', "50450e", 0x88be, "d92554fac67486"}}}}}, 0x0)

[ 1234.747460][ T5967] FAULT_INJECTION: forcing a failure.
[ 1234.747460][ T5967] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1234.751351][ T5964] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1234.804117][ T5967] CPU: 1 PID: 5967 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1234.813037][ T5967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1234.823113][ T5967] Call Trace:
[ 1234.826395][ T5967]  <TASK>
[ 1234.829322][ T5967]  dump_stack_lvl+0xcd/0x134
[ 1234.833920][ T5967]  should_fail.cold+0x5/0xa
[ 1234.838429][ T5967]  _copy_from_user+0x2c/0x180
[ 1234.843121][ T5967]  __copy_msghdr_from_user+0x91/0x4b0
[ 1234.848694][ T5967]  ? __ia32_sys_shutdown+0x70/0x70
[ 1234.853846][ T5967]  ? __lock_acquire+0x1655/0x5470
[ 1234.858896][ T5967]  ___sys_recvmsg+0xd5/0x200
[ 1234.863511][ T5967]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1234.869172][ T5967]  ? check_path.constprop.0+0x50/0x50
[ 1234.874578][ T5967]  ? find_held_lock+0x2d/0x110
[ 1234.879369][ T5967]  ? __might_fault+0xd1/0x170
[ 1234.884067][ T5967]  ? lock_downgrade+0x6e0/0x6e0
[ 1234.888950][ T5967]  do_recvmmsg+0x24d/0x6d0
[ 1234.893387][ T5967]  ? ___sys_recvmsg+0x200/0x200
[ 1234.898238][ T5967]  ? check_path.constprop.0+0x50/0x50
[ 1234.903631][ T5967]  ? __context_tracking_exit+0xb8/0xe0
[ 1234.909113][ T5967]  ? lock_downgrade+0x6e0/0x6e0
[ 1234.914360][ T5967]  ? lock_downgrade+0x6e0/0x6e0
[ 1234.919244][ T5967]  __x64_sys_recvmmsg+0x20b/0x260
[ 1234.924305][ T5967]  ? __do_sys_socketcall+0x590/0x590
[ 1234.929712][ T5967]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1234.935647][ T5967]  do_syscall_64+0x35/0xb0
[ 1234.940089][ T5967]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1234.946093][ T5967] RIP: 0033:0x7f688ab57e99
[ 1234.950521][ T5967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1234.970321][ T5967] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1234.978853][ T5967] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1234.986850][ T5967] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1234.994844][ T5967] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1235.002848][ T5967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1235.010831][ T5967] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1235.018833][ T5967]  </TASK>
03:15:37 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x34000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:38 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465"], 0x58}}, 0x0)

03:15:38 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x8848, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:38 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x8864, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:38 executing program 0:
r0 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, 0x0) (async)
ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f0000000040)=0x7) (async)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x1e, &(0x7f0000000000)={@remote, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@llc_tr={0x11, {@snap={0x1, 0xaa, '_P', "50450e", 0x88be, "d92554fac67486"}}}}}, 0x0)

[ 1235.136989][ T5977] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1235.195541][ T5977] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:38 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 21)

03:15:38 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x8906, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:38 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x40000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:38 executing program 0:
r0 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, 0x0) (async)
ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f0000000040)=0x7)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async, rerun: 64)
syz_emit_ethernet(0x1e, &(0x7f0000000000)={@remote, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@llc_tr={0x11, {@snap={0x1, 0xaa, '_P', "50450e", 0x88be, "d92554fac67486"}}}}}, 0x0) (rerun: 64)

03:15:38 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465"], 0x58}}, 0x0)

03:15:38 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x3, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1235.462389][ T5987] FAULT_INJECTION: forcing a failure.
[ 1235.462389][ T5987] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1235.486174][ T5993] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1235.505132][ T5993] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1235.517771][ T5987] CPU: 0 PID: 5987 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1235.526570][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1235.536682][ T5987] Call Trace:
[ 1235.539975][ T5987]  <TASK>
[ 1235.542914][ T5987]  dump_stack_lvl+0xcd/0x134
[ 1235.547517][ T5987]  should_fail.cold+0x5/0xa
[ 1235.552029][ T5987]  _copy_from_user+0x2c/0x180
[ 1235.556725][ T5987]  __copy_msghdr_from_user+0x91/0x4b0
[ 1235.562159][ T5987]  ? __ia32_sys_shutdown+0x70/0x70
[ 1235.567281][ T5987]  ? __lock_acquire+0x1655/0x5470
[ 1235.572330][ T5987]  ___sys_recvmsg+0xd5/0x200
[ 1235.576930][ T5987]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1235.582570][ T5987]  ? check_path.constprop.0+0x50/0x50
[ 1235.587976][ T5987]  ? find_held_lock+0x2d/0x110
[ 1235.592757][ T5987]  ? __might_fault+0xd1/0x170
[ 1235.597431][ T5987]  ? lock_downgrade+0x6e0/0x6e0
[ 1235.602293][ T5987]  do_recvmmsg+0x24d/0x6d0
[ 1235.606705][ T5987]  ? ___sys_recvmsg+0x200/0x200
[ 1235.611546][ T5987]  ? check_path.constprop.0+0x50/0x50
[ 1235.616923][ T5987]  ? __context_tracking_exit+0xb8/0xe0
[ 1235.622380][ T5987]  ? lock_downgrade+0x6e0/0x6e0
[ 1235.627231][ T5987]  __x64_sys_recvmmsg+0x20b/0x260
[ 1235.632256][ T5987]  ? __do_sys_socketcall+0x590/0x590
[ 1235.637535][ T5987]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1235.643427][ T5987]  do_syscall_64+0x35/0xb0
[ 1235.647835][ T5987]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1235.653730][ T5987] RIP: 0033:0x7f688ab57e99
[ 1235.658138][ T5987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1235.677738][ T5987] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1235.686145][ T5987] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1235.694107][ T5987] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1235.702064][ T5987] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:38 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x4, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1235.710020][ T5987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1235.717987][ T5987] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1235.725966][ T5987]  </TASK>
03:15:38 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x6, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:38 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0891ae3045240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0)
syz_emit_ethernet(0x8f, &(0x7f0000000000)={@remote, @empty, @val={@val={0x9100, 0x2, 0x0, 0x4}, {0x8100, 0x4, 0x0, 0x1}}, {@x25={0x805, {0x1, 0x9, 0xb, "bae9224a7dd75090d45c88ec9b4e6f7674350d9b2622107c7807a09e52464adbcf598cb49778b89a077fc9f2a86ccf045e84c541b09c2cc530104ced4a02a931d5e15224d86ebf020cdc2d5aff8dd9c01393e178969f38adbc8191c8dc228fe1fc8c2a71a543b42a1d25a994819002453fb2cbeaa413"}}}}, &(0x7f00000000c0)={0x0, 0x2, [0xdba, 0x92e, 0xe31, 0x726]})

03:15:38 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465"], 0x58}}, 0x0)

[ 1235.801087][ T6001] dccp_invalid_packet: P.Data Offset(16) too large
03:15:39 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0891ae3045240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0) (async)
syz_emit_ethernet(0x8f, &(0x7f0000000000)={@remote, @empty, @val={@val={0x9100, 0x2, 0x0, 0x4}, {0x8100, 0x4, 0x0, 0x1}}, {@x25={0x805, {0x1, 0x9, 0xb, "bae9224a7dd75090d45c88ec9b4e6f7674350d9b2622107c7807a09e52464adbcf598cb49778b89a077fc9f2a86ccf045e84c541b09c2cc530104ced4a02a931d5e15224d86ebf020cdc2d5aff8dd9c01393e178969f38adbc8191c8dc228fe1fc8c2a71a543b42a1d25a994819002453fb2cbeaa413"}}}}, &(0x7f00000000c0)={0x0, 0x2, [0xdba, 0x92e, 0xe31, 0x726]})

03:15:39 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x400300)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:39 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 22)

[ 1235.841740][ T6005] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1235.873923][ T6005] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:39 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x8, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:39 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800"], 0x58}}, 0x0)

03:15:39 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0891ae3045240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0)
syz_emit_ethernet(0x8f, &(0x7f0000000000)={@remote, @empty, @val={@val={0x9100, 0x2, 0x0, 0x4}, {0x8100, 0x4, 0x0, 0x1}}, {@x25={0x805, {0x1, 0x9, 0xb, "bae9224a7dd75090d45c88ec9b4e6f7674350d9b2622107c7807a09e52464adbcf598cb49778b89a077fc9f2a86ccf045e84c541b09c2cc530104ced4a02a931d5e15224d86ebf020cdc2d5aff8dd9c01393e178969f38adbc8191c8dc228fe1fc8c2a71a543b42a1d25a994819002453fb2cbeaa413"}}}}, &(0x7f00000000c0)={0x0, 0x2, [0xdba, 0x92e, 0xe31, 0x726]})
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0891ae3045240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4d"], 0x0) (async)
syz_emit_ethernet(0x8f, &(0x7f0000000000)={@remote, @empty, @val={@val={0x9100, 0x2, 0x0, 0x4}, {0x8100, 0x4, 0x0, 0x1}}, {@x25={0x805, {0x1, 0x9, 0xb, "bae9224a7dd75090d45c88ec9b4e6f7674350d9b2622107c7807a09e52464adbcf598cb49778b89a077fc9f2a86ccf045e84c541b09c2cc530104ced4a02a931d5e15224d86ebf020cdc2d5aff8dd9c01393e178969f38adbc8191c8dc228fe1fc8c2a71a543b42a1d25a994819002453fb2cbeaa413"}}}}, &(0x7f00000000c0)={0x0, 0x2, [0xdba, 0x92e, 0xe31, 0x726]}) (async)

03:15:39 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x9, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:39 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x2, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:39 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f00000014c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, @void, {@canfd={0xd, {{0x3, 0x0, 0x0, 0x1}, 0x2d, 0x1, 0x0, 0x0, "8d45d5cfc9f7ca8549459bec0d741be01ef07cb879cc7de241fd7b6812d44bffa8c2ab87f765dd7803f8b437b1233bfc12abece8045878d47cdd0d7d569f2726"}}}}, &(0x7f0000001540)={0x0, 0x4, [0x583, 0x546, 0xc31, 0xfa3]})
syz_extract_tcp_res(&(0x7f0000000000)={<r0=>0x41424344}, 0x3ff, 0x2)
syz_emit_ethernet(0x105e, &(0x7f0000000340)={@remote, @broadcast, @val={@val={0x9100, 0x4, 0x1, 0x1}, {0x8100, 0x5, 0x0, 0x4}}, {@ipv6={0x86dd, @generic={0x6, 0x6, "bd5f7b", 0x1020, 0x3a, 0x0, @private1, @mcast1, {[@fragment={0x2c, 0x0, 0x40, 0x0, 0x0, 0x2, 0x68}, @hopopts={0x4, 0x1, '\x00', [@ra, @jumbo={0xc2, 0x4, 0x101}]}], "5f7831994b53ff88d116d4c182159796e245d25383d82554916ac398d7a15c5c3d1ec5117698153e43bf3183926a3e91ff213e69008adbab92c1db77efa6ed351f44bfbf0adecb79fc2f2e20b0813983e2f575e51de21a54df99da22757d7595161425cbe145a793a0db080a17c99fff131b8123c9509c36452717ef9288c15f04e7c00c23c1e3ca1afe845c6caaa1d2db77856aeb1964ef4fda1f60530f6a6a0dcade96840d24d186003e8caae23f17f5244620f738fa619a1dcd14df4e7dfa0431b7207b79cacee8b61799ee450c8931b7ecad8f415a9ef2956ec622aaa33b5e3d9769917e4d324bc215d3308e5b7bf87ac70263952eaafb5071f30779e085d9037c93fed1714c7bf627bb3737208a935ee17d6ae13f778b03f29d35497f326c5896005be7abe5c207f79c5cd6ab0bc37ee096676fc373ff6d85361c651d055d128a87697e9d29a1f896806bce39d19a3481fcfb3be0838ee69e57ec7512fa34aa0a1278637b16c0551f162d3144c1d078c925010975573e23e46a1f2bb6b285db9076b6621e08aaf7cff0f60b0882194707489598a829aa4724cd1c59132b1f6b27f45fb280180f549f376eb98f484827b4e8acb49b3e8dad9d87748a541f97d3592520e1da54a5369553b923568e804c856dcbd87e1d1f06551832779bc33b7ed843e78fbd84bd3c3b2054eab155275f78b12f5022d6615dd257153e3749ddfc39f9f38af34588b80156b2f1b8def45bc8d6a661eb0b0adb72c7f19017aa736fdc6c83be44dd03c73f881495c53606368f96badcd21c38c3522cb42f75f8642bca358c7b7110d9ef56449ab0726c34c8ebfe70fad36c16dc8679d93f8f9849cccdcc4ffac3b29963a8206d840cf53f06fe8eeb9db80c8084edf7b8898e81df968940be1748b91770a777d45ebcb6d4c3449100920db1ca866ebf97e44127c7d80611276111a558d968d54e55ddf620955145d77a0660b2ea7614b5e34fa55d6ef3962e54473c1995b8b5511389673a19f62375bd18207bbc2528dc7b825b764158a82fafa3991ca362c2c3d349763bc0e8c35c4c7e0c5edc9d8f30bf55be2005f5fcbe5421a9d69fea7d3955562d6e241d3131edec8e6356cce0a530ebbd0fab7b444f712fd3c12274600cfe1a4962601c6cadde5d3672728e6132b8d124749da02015080e1dde4e9682bb10ab6e732c2e2dcbba266c614be35dbe7b354c70b15be9cfe1474f633d98bdb0faca22f72a4938ad8f714fb58c01de6aecb6784dd607597696827a1377214ace649551ffbf2cf0b0818b47269ca6c3dcf2631ac85e4bae109ebcafa96007d98dd0b5db5b48d4024c07e4a08bf730544a615011a12aa8c9a95290c7b5d201a446f9a51f1d2793f49fa3ac865ffe00d7e108c60f43cb8fad8693c6c3174bad1b34e4fe9ca27d8aed40d8d94ee140717f1cd6ff69e262b54876dd658e61fe140b49bf089de6d5eea2b05a92af5774275e078d74ed00c7493d120c4191c4f9aa8604fcbe6b099419471cce8e4ed9173ba7d8a8c155c73ba304fb6b621a73ae92e34ce40ef883ec4ecf7138de6f7bb1a5acc0f35a886aac2621b8bf00ae2463a1954e765929a73987024abaed512ad505894ec7a43e92d497ccf7f26c7517f51415732f23bcafdc6cc23549b2bb3d66a4d57a435dfa7cc9f5b96c219264377de141734f5f97e2b35cbba8e40bd38b30d9e0191d68fea7291524fc10b97e0333189dd9575690189fb99366625f114ca3c9ba2ed47b85b6a667510ce75cc4f60675d4369ebe9bd3875d903f94459049860a4400750cc574a98eb14f527d32274915bfd5f9cc1fff33a88cc27c3d1778d812c9ef9864650bd96b1cf7f797ab450f29797191f5af07f6ebbefb2b2dbd4ee9218601875834ac613d49f7c067aaf23cdafe7b221ffc15b0fe00507978c1f6103dc2a2a2a22ffe79e80d2393e1b40e662edf021620c8ac88de580fa44d6405f14447c53a3369d5237dd673798eaf739f3612876810079eae4045ab5429dee7a65747ce4454975a4ffd81ca43679109d4e960e625b2d026abf7c074928ef3af1adaa0bca99bcf483e9d2c9def336e1123ed8adae3406029f162c3b36e606f0a0411828a90cfa46620f93029e9dc72896ded971ec3257b45e29717d3982e83619dca52c799b887f91e356e2ffc43eef0505f9814b551670e49abdbb934f30829579e6021250b6e4aa7fd52df5344f2e97a7c59c394b7818c9fce0ac0a37ef6a945e70b8238a0387a97a47252c1ee4509fb05556a0023fab2374f7d21d00e49eb63bbf6d47a8b015fcaf874ddb607d9bf0b1c8682aa408904ed1b9968b642382936c5366c76042090f6c5f0645036115daf77484384a63cfeee6b99a502c867c6ae460eba49bdd84241b33bb00d6e9d8d7a89a42bdd3dd883a91f6eb9a8b2e242ae81a95340ad1c7d4dccaf807541b35751af291615d34308cf41e8e68b405e4416ac3b527f21d234c0be59b51fe377641e1a85b2ad4d7e81d2e22f79dca41ad92d4367db7bbda2453b9c033966fc660043df3da126319b3b56dade523acfcf1ec93079b57db4f891236da8ec72b2f63b42f577b777b5240d033a63b43e649196b234aa2d3f1a6e27f4f1dbf21d6774fd1f1a1da940d374c0d827e306985137cb144005cb77c598a440e89ed09e023592002390f0a1998b350857baf11bcd80b1d2d40b1ee60f4c63700912910061874853af36c762260b177bb4c11c920e84fb7e3579cf9bb8539e3b38625a0dacbba4a1adc230d945d288414203b528ce64adca3c2b46ce0c3c516cb743029b5dc149708d83c073085aa45ba5db54cdd946a49b9875634a7fa86686a6b462743ab4fd7a2834a36387bf80740569addffecb1ebc66e9ca0745a7ce7e54ac72e06dadefc28e298d8d4ce44d3dfc1095c75aac80dbe39be73df67ad9d88278cd86a9e0f20c540b5cf6deddeaf3e721164de2bcfb4dc57f07871b1c440734644d91b1edfe834a526e53ba6051bf0cc47321a0c812c771e1b761c8cc92f64657e0498642882bad55bb1cdfd4e1501ca1d2c3a72c8d306144b6fb0fe432325b360d360eb6fa2d2b98a0d6689ceb317bcab60ff60bcc305e316f689aa1a2bbed07830ad7188000d4a079f3966a8aedb959326856971f6097813cbcdba59d80b51fbabd018d70c951bed5865811296d0620f944d487f80ea7fafac59498506a4c0a2c8ade36f51ce4dcf909877d97d1204bb62bdc01634488e27d613bca0133b0b6761b7c8b45a76092c607dfc851eded0e5525c3af5c706ce16a3baac93119ec7c86d67bb1fe3004f9b1ba80fe4a1ac169040ee4edf79f48a68b7ec8139da84c9c40fac547db16d2772d55069cef2636ad40f1ab8a1b42eb26ce2bf5009bedc2452a7087a10bf1051307e8fc03236dd49891af18a50bb8a463d36f1570f84ff8091484bae36e83a818bb6c201de76c960f7571c7a4692ed858d7ba459090dd0d6de71d84f32ae64e077242dc5b79ca9ef39fd442a32cc006a0173f8b3bab728c89f8359ee89843f18823d64711aef43aa73a873db35f44d570a5e5d3bb81337f97205bcc1ddaa8456e5c20d1ab14052c689c3a0ed9b52b96b378b15c25b8cf347a5863e681a21006b9bcc334c30b433765de45802a5681d2a760d34430350931efa9b2e70c20eaf32c5572964f24d7f540495f1c1f4c96a568443063e784f0cf23de3ec3e2681fd3ec09123e4987a312f97b3fc5e30342ff9c7e72fcd41a43d2a98dae9f9a4ca96c79b31a10433d97fe570d841c077dee8dec51fd62d6dca6e6a21f3b900bb260c40159b14cff64df700f56f641b5303303b0a0d78864241cd1e4a0265fc628b48146ab921b964f9ca2808e88e697bb9cc805693a0f6f52bf217f3d2616caced916c2bcf7146d8bc8135e4d9f612c19f988a78433ba7944092b48dd483e37e18bdd75470d81beedfcfe35a71766994d38d9b4d7f7c17466010daf7374528fda8acc0fa70f1ce613712966e2aefa06e13a9243759769d143c163f122e0d3f0f4a840a82db8e46e9e3b292a347e3adf1bc7e4edf2e90be6ba71e121ca2895123c30739e72cbadfab8a53c854ebb402626f102514d44dc3f7c38598814f8ca0b8a63d4c6a45e3b4ec2085227ce515efc0ab88bd6b45de3425d2a14842e88361a3881e83fa6d2fcacf19d10eab1032987abfa064f8021c4eaa8b07cb10a1b3d1dcb02ab3005a673778b5bc911d64cb17a0914da4f72a193b68311e2cdf01629f288c0b0d0ee653e32dd2658b32f56cc2283733ce931d1670cbd84d127e30783cfafc1124413a450a2e6da18a0baa5eda766b9e3b4308c9d129cfa69e5532b0b91809c404cf6b4533a3e05f5ad84b6177f4fe12ae44f324bc8599ffb229c81979349d2c3b61abca817c67e689e7960933335c918e68e007365a11dd34a86019b14876036410ec3941fece6d97d5cd9014b3ed2e4ec50cff166caec1f95e9353ce3372daabe148208e783b49e37ce9522218d5d0a3499e88f7057f4f8fcdab55d7ee6fee5e0494aad0819526b5de44ba882b1ddea2c7009b9819dc0c1ee2974e591a77fe61061be6a4c8dbaaaf7f0cffe405fcb9f2aa2027b8ebb5d0457c075e6fd24758d8d6a83e4d14e8268f0510d1ea6e016ac01cd513c1ad9c3c977eec0627e834875959b7ed1cbeb2e94281e25bcb303b271b21b9c0975beb7bfb9c7196c155ce7008f474b22ecaf3e7af86d39c2c62d48a2a9870524a5fa608433d39b80e65866a3e6db639fd7906dfd48c2fdadb08cd17a47e9d536ec20f2c646e7b79874be123f60f310bf60619f537a61ec9be94d61150e39cf37fb21fa964df1af68dcd50ae28bfc6cb604d7f4530244e43b1e1ec97120557d544ba8e7a6c018a18516c9cd0638ed7e562dac811e2d7a14957946cbecd7ca54316779fb743685795de5b3257c5df81e047126d9460faa699b0c82a9d034553efee785e643beefbbdb89a433924388de503e970d85d2a81e71f1b6af4b42eb4dc542fb6207977988285628c95553d4cafe2db8e9ae7a7b17480d798a97f5b66069797c67df9e445b4288b6aee377588e1394d088c995057894752936377230da02a6fe910b6b0e972b4b86de18900fc53801cc5213b38a9fbd0459954fd5b8436f5c5b6295e14f45cd5d729e158dec3a781cc7399280ecd45ffe2ea2c76fec91225b5bcb85a6a56c7e1b858eae0bc38c0a760016a71a03092eb8beffee31bd47340fa4d216ef83db7785f0e17f8cddfe941aca11851f20abd5badfe1b3943961e3f84b7fcca52e15291dd97d0cfa9b5f741e4e5378d00f87c49bb79712cc2cea84cf5e466f2f44e64dd2392d68e4b65d25819b231e115312dc68e6af682b2c174fa8328f096088069d58f09c90948c9956df9466c0ebe2220ada3413f6c55d8d4b9bee79d8d7ef61a8ef8c609af9b321adf634265fd06e439ca25355d98679d31dcff2d5df890aec76b8eab6c4a1f515ab502967825d792d3d0c6232dfe6e24ce012c595ca0173ec1e404ccf2beb54890e5b8bef8ab3060bf8d00fe4503129f6b037d486f35a9958e9bbe62e310ebb0f7ed19ad6c4f2e06832ab6428383511e73204d6844a7bb584ef871e61e6c9955d1ec57ca21bd8ed318c04576a29696113ebb50c90586cd7b92093cd1e42a7a4f9c245989efa2d91c9ff777eee8c46cad35a9518e4a16a7f78649aa699230e39e3ef5cc3b248b31380046b9cab4ebe620aa9ce6842e336b3d928a635ece856aa8345fc2a51bc84751e7fe423dc745ae8be00d0"}}}}}, &(0x7f00000013c0)={0x0, 0x2, [0xc02, 0x127, 0xdf2, 0x9c0]})
syz_emit_ethernet(0x56, &(0x7f0000001400)={@remote, @broadcast, @void, {@canfd={0xd, {{0x1, 0x1, 0x1}, 0xf, 0x1, 0x0, 0x0, "e9fe57e938d41b7389491c6e379e0d05ba7a2712836a1dba8efea26df816a3da30b2ee9f11444036b74e35948e2e38c7551d111d45a09a0fe585052cfa4fd3d4"}}}}, &(0x7f0000001480)={0x1, 0x3, [0x5d8, 0x9fd, 0x4e4, 0x205]})
syz_emit_ethernet(0x99, &(0x7f0000000240)=ANY=[@ANYBLOB="ffffffffffff0180c200000281000800000400008ff8142cdb810092b16051c3d3e55843a7592d6e9a173f3796f9030b021fb97cf1ccb44d27265d89bc26283a80a854c9b6d1ff684cd195ec770332dbc974c66a9ad576512d07e3d2c06e768cd8c4fe09af6640c1d056f82b5dc02ac50598d2b2c6cb136849007e134ef665d4a5f4df92e365153c1c3b3102b715e96f29cbc490c1b1c8159c"], 0x0)
syz_emit_ethernet(0x22, &(0x7f00000001c0)={@broadcast, @broadcast, @val={@void, {0x8100, 0x0, 0x0, 0x2}}, {@can={0xc, {{0x0, 0x1, 0x0, 0x1}, 0x5, 0x0, 0x0, 0x0, "2004c5180e667fdd"}}}}, &(0x7f0000000300)={0x1, 0x3, [0x9a1, 0x63a, 0x1d7, 0xe62]})
syz_emit_ethernet(0x180, &(0x7f0000000040)=ANY=[@ANYBLOB="bbbbbbbbbbbbffffffffffff9100090081004a0008004101016a0068000004069078e000000164010101831793ac1414bbffffffffac141444ac1e0001e00000019404000007130d0000000064010102ac1e01010a01010000004e204e23", @ANYRES32=0x41424344, @ANYRES32=r0, @ANYBLOB="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"], 0x0)

[ 1235.985119][ T6017] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1236.006706][ T6017] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:39 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x1000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1236.051266][ T6022] FAULT_INJECTION: forcing a failure.
[ 1236.051266][ T6022] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:39 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800"], 0x58}}, 0x0)

03:15:39 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x56, &(0x7f00000014c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, @void, {@canfd={0xd, {{0x3, 0x0, 0x0, 0x1}, 0x2d, 0x1, 0x0, 0x0, "8d45d5cfc9f7ca8549459bec0d741be01ef07cb879cc7de241fd7b6812d44bffa8c2ab87f765dd7803f8b437b1233bfc12abece8045878d47cdd0d7d569f2726"}}}}, &(0x7f0000001540)={0x0, 0x4, [0x583, 0x546, 0xc31, 0xfa3]}) (async)
syz_extract_tcp_res(&(0x7f0000000000)={<r0=>0x41424344}, 0x3ff, 0x2)
syz_emit_ethernet(0x105e, &(0x7f0000000340)={@remote, @broadcast, @val={@val={0x9100, 0x4, 0x1, 0x1}, {0x8100, 0x5, 0x0, 0x4}}, {@ipv6={0x86dd, @generic={0x6, 0x6, "bd5f7b", 0x1020, 0x3a, 0x0, @private1, @mcast1, {[@fragment={0x2c, 0x0, 0x40, 0x0, 0x0, 0x2, 0x68}, @hopopts={0x4, 0x1, '\x00', [@ra, @jumbo={0xc2, 0x4, 0x101}]}], "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"}}}}}, &(0x7f00000013c0)={0x0, 0x2, [0xc02, 0x127, 0xdf2, 0x9c0]})
syz_emit_ethernet(0x56, &(0x7f0000001400)={@remote, @broadcast, @void, {@canfd={0xd, {{0x1, 0x1, 0x1}, 0xf, 0x1, 0x0, 0x0, "e9fe57e938d41b7389491c6e379e0d05ba7a2712836a1dba8efea26df816a3da30b2ee9f11444036b74e35948e2e38c7551d111d45a09a0fe585052cfa4fd3d4"}}}}, &(0x7f0000001480)={0x1, 0x3, [0x5d8, 0x9fd, 0x4e4, 0x205]})
syz_emit_ethernet(0x99, &(0x7f0000000240)=ANY=[@ANYBLOB="ffffffffffff0180c200000281000800000400008ff8142cdb810092b16051c3d3e55843a7592d6e9a173f3796f9030b021fb97cf1ccb44d27265d89bc26283a80a854c9b6d1ff684cd195ec770332dbc974c66a9ad576512d07e3d2c06e768cd8c4fe09af6640c1d056f82b5dc02ac50598d2b2c6cb136849007e134ef665d4a5f4df92e365153c1c3b3102b715e96f29cbc490c1b1c8159c"], 0x0) (async)
syz_emit_ethernet(0x22, &(0x7f00000001c0)={@broadcast, @broadcast, @val={@void, {0x8100, 0x0, 0x0, 0x2}}, {@can={0xc, {{0x0, 0x1, 0x0, 0x1}, 0x5, 0x0, 0x0, 0x0, "2004c5180e667fdd"}}}}, &(0x7f0000000300)={0x1, 0x3, [0x9a1, 0x63a, 0x1d7, 0xe62]}) (async)
syz_emit_ethernet(0x180, &(0x7f0000000040)=ANY=[@ANYBLOB="bbbbbbbbbbbbffffffffffff9100090081004a0008004101016a0068000004069078e000000164010101831793ac1414bbffffffffac141444ac1e0001e00000019404000007130d0000000064010102ac1e01010a01010000004e204e23", @ANYRES32=0x41424344, @ANYRES32=r0, @ANYBLOB="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"], 0x0)

[ 1236.096838][ T6022] CPU: 1 PID: 6022 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1236.105862][ T6022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1236.115935][ T6022] Call Trace:
[ 1236.119219][ T6022]  <TASK>
[ 1236.122149][ T6022]  dump_stack_lvl+0xcd/0x134
[ 1236.126749][ T6022]  should_fail.cold+0x5/0xa
[ 1236.131261][ T6022]  _copy_from_user+0x2c/0x180
[ 1236.135955][ T6022]  __copy_msghdr_from_user+0x91/0x4b0
[ 1236.141342][ T6022]  ? __ia32_sys_shutdown+0x70/0x70
[ 1236.146465][ T6022]  ? __lock_acquire+0x1655/0x5470
[ 1236.151508][ T6022]  ___sys_recvmsg+0xd5/0x200
[ 1236.156108][ T6022]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1236.157581][ T6030] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1236.161745][ T6022]  ? check_path.constprop.0+0x50/0x50
[ 1236.161784][ T6022]  ? find_held_lock+0x2d/0x110
[ 1236.161811][ T6022]  ? __might_fault+0xd1/0x170
[ 1236.184730][ T6022]  ? lock_downgrade+0x6e0/0x6e0
[ 1236.189622][ T6022]  do_recvmmsg+0x24d/0x6d0
03:15:39 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f00000014c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, @void, {@canfd={0xd, {{0x3, 0x0, 0x0, 0x1}, 0x2d, 0x1, 0x0, 0x0, "8d45d5cfc9f7ca8549459bec0d741be01ef07cb879cc7de241fd7b6812d44bffa8c2ab87f765dd7803f8b437b1233bfc12abece8045878d47cdd0d7d569f2726"}}}}, &(0x7f0000001540)={0x0, 0x4, [0x583, 0x546, 0xc31, 0xfa3]})
syz_extract_tcp_res(&(0x7f0000000000)={<r0=>0x41424344}, 0x3ff, 0x2)
syz_emit_ethernet(0x105e, &(0x7f0000000340)={@remote, @broadcast, @val={@val={0x9100, 0x4, 0x1, 0x1}, {0x8100, 0x5, 0x0, 0x4}}, {@ipv6={0x86dd, @generic={0x6, 0x6, "bd5f7b", 0x1020, 0x3a, 0x0, @private1, @mcast1, {[@fragment={0x2c, 0x0, 0x40, 0x0, 0x0, 0x2, 0x68}, @hopopts={0x4, 0x1, '\x00', [@ra, @jumbo={0xc2, 0x4, 0x101}]}], "5f7831994b53ff88d116d4c182159796e245d25383d82554916ac398d7a15c5c3d1ec5117698153e43bf3183926a3e91ff213e69008adbab92c1db77efa6ed351f44bfbf0adecb79fc2f2e20b0813983e2f575e51de21a54df99da22757d7595161425cbe145a793a0db080a17c99fff131b8123c9509c36452717ef9288c15f04e7c00c23c1e3ca1afe845c6caaa1d2db77856aeb1964ef4fda1f60530f6a6a0dcade96840d24d186003e8caae23f17f5244620f738fa619a1dcd14df4e7dfa0431b7207b79cacee8b61799ee450c8931b7ecad8f415a9ef2956ec622aaa33b5e3d9769917e4d324bc215d3308e5b7bf87ac70263952eaafb5071f30779e085d9037c93fed1714c7bf627bb3737208a935ee17d6ae13f778b03f29d35497f326c5896005be7abe5c207f79c5cd6ab0bc37ee096676fc373ff6d85361c651d055d128a87697e9d29a1f896806bce39d19a3481fcfb3be0838ee69e57ec7512fa34aa0a1278637b16c0551f162d3144c1d078c925010975573e23e46a1f2bb6b285db9076b6621e08aaf7cff0f60b0882194707489598a829aa4724cd1c59132b1f6b27f45fb280180f549f376eb98f484827b4e8acb49b3e8dad9d87748a541f97d3592520e1da54a5369553b923568e804c856dcbd87e1d1f06551832779bc33b7ed843e78fbd84bd3c3b2054eab155275f78b12f5022d6615dd257153e3749ddfc39f9f38af34588b80156b2f1b8def45bc8d6a661eb0b0adb72c7f19017aa736fdc6c83be44dd03c73f881495c53606368f96badcd21c38c3522cb42f75f8642bca358c7b7110d9ef56449ab0726c34c8ebfe70fad36c16dc8679d93f8f9849cccdcc4ffac3b29963a8206d840cf53f06fe8eeb9db80c8084edf7b8898e81df968940be1748b91770a777d45ebcb6d4c3449100920db1ca866ebf97e44127c7d80611276111a558d968d54e55ddf620955145d77a0660b2ea7614b5e34fa55d6ef3962e54473c1995b8b5511389673a19f62375bd18207bbc2528dc7b825b764158a82fafa3991ca362c2c3d349763bc0e8c35c4c7e0c5edc9d8f30bf55be2005f5fcbe5421a9d69fea7d3955562d6e241d3131edec8e6356cce0a530ebbd0fab7b444f712fd3c12274600cfe1a4962601c6cadde5d3672728e6132b8d124749da02015080e1dde4e9682bb10ab6e732c2e2dcbba266c614be35dbe7b354c70b15be9cfe1474f633d98bdb0faca22f72a4938ad8f714fb58c01de6aecb6784dd607597696827a1377214ace649551ffbf2cf0b0818b47269ca6c3dcf2631ac85e4bae109ebcafa96007d98dd0b5db5b48d4024c07e4a08bf730544a615011a12aa8c9a95290c7b5d201a446f9a51f1d2793f49fa3ac865ffe00d7e108c60f43cb8fad8693c6c3174bad1b34e4fe9ca27d8aed40d8d94ee140717f1cd6ff69e262b54876dd658e61fe140b49bf089de6d5eea2b05a92af5774275e078d74ed00c7493d120c4191c4f9aa8604fcbe6b099419471cce8e4ed9173ba7d8a8c155c73ba304fb6b621a73ae92e34ce40ef883ec4ecf7138de6f7bb1a5acc0f35a886aac2621b8bf00ae2463a1954e765929a73987024abaed512ad505894ec7a43e92d497ccf7f26c7517f51415732f23bcafdc6cc23549b2bb3d66a4d57a435dfa7cc9f5b96c219264377de141734f5f97e2b35cbba8e40bd38b30d9e0191d68fea7291524fc10b97e0333189dd9575690189fb99366625f114ca3c9ba2ed47b85b6a667510ce75cc4f60675d4369ebe9bd3875d903f94459049860a4400750cc574a98eb14f527d32274915bfd5f9cc1fff33a88cc27c3d1778d812c9ef9864650bd96b1cf7f797ab450f29797191f5af07f6ebbefb2b2dbd4ee9218601875834ac613d49f7c067aaf23cdafe7b221ffc15b0fe00507978c1f6103dc2a2a2a22ffe79e80d2393e1b40e662edf021620c8ac88de580fa44d6405f14447c53a3369d5237dd673798eaf739f3612876810079eae4045ab5429dee7a65747ce4454975a4ffd81ca43679109d4e960e625b2d026abf7c074928ef3af1adaa0bca99bcf483e9d2c9def336e1123ed8adae3406029f162c3b36e606f0a0411828a90cfa46620f93029e9dc72896ded971ec3257b45e29717d3982e83619dca52c799b887f91e356e2ffc43eef0505f9814b551670e49abdbb934f30829579e6021250b6e4aa7fd52df5344f2e97a7c59c394b7818c9fce0ac0a37ef6a945e70b8238a0387a97a47252c1ee4509fb05556a0023fab2374f7d21d00e49eb63bbf6d47a8b015fcaf874ddb607d9bf0b1c8682aa408904ed1b9968b642382936c5366c76042090f6c5f0645036115daf77484384a63cfeee6b99a502c867c6ae460eba49bdd84241b33bb00d6e9d8d7a89a42bdd3dd883a91f6eb9a8b2e242ae81a95340ad1c7d4dccaf807541b35751af291615d34308cf41e8e68b405e4416ac3b527f21d234c0be59b51fe377641e1a85b2ad4d7e81d2e22f79dca41ad92d4367db7bbda2453b9c033966fc660043df3da126319b3b56dade523acfcf1ec93079b57db4f891236da8ec72b2f63b42f577b777b5240d033a63b43e649196b234aa2d3f1a6e27f4f1dbf21d6774fd1f1a1da940d374c0d827e306985137cb144005cb77c598a440e89ed09e023592002390f0a1998b350857baf11bcd80b1d2d40b1ee60f4c63700912910061874853af36c762260b177bb4c11c920e84fb7e3579cf9bb8539e3b38625a0dacbba4a1adc230d945d288414203b528ce64adca3c2b46ce0c3c516cb743029b5dc149708d83c073085aa45ba5db54cdd946a49b9875634a7fa86686a6b462743ab4fd7a2834a36387bf80740569addffecb1ebc66e9ca0745a7ce7e54ac72e06dadefc28e298d8d4ce44d3dfc1095c75aac80dbe39be73df67ad9d88278cd86a9e0f20c540b5cf6deddeaf3e721164de2bcfb4dc57f07871b1c440734644d91b1edfe834a526e53ba6051bf0cc47321a0c812c771e1b761c8cc92f64657e0498642882bad55bb1cdfd4e1501ca1d2c3a72c8d306144b6fb0fe432325b360d360eb6fa2d2b98a0d6689ceb317bcab60ff60bcc305e316f689aa1a2bbed07830ad7188000d4a079f3966a8aedb959326856971f6097813cbcdba59d80b51fbabd018d70c951bed5865811296d0620f944d487f80ea7fafac59498506a4c0a2c8ade36f51ce4dcf909877d97d1204bb62bdc01634488e27d613bca0133b0b6761b7c8b45a76092c607dfc851eded0e5525c3af5c706ce16a3baac93119ec7c86d67bb1fe3004f9b1ba80fe4a1ac169040ee4edf79f48a68b7ec8139da84c9c40fac547db16d2772d55069cef2636ad40f1ab8a1b42eb26ce2bf5009bedc2452a7087a10bf1051307e8fc03236dd49891af18a50bb8a463d36f1570f84ff8091484bae36e83a818bb6c201de76c960f7571c7a4692ed858d7ba459090dd0d6de71d84f32ae64e077242dc5b79ca9ef39fd442a32cc006a0173f8b3bab728c89f8359ee89843f18823d64711aef43aa73a873db35f44d570a5e5d3bb81337f97205bcc1ddaa8456e5c20d1ab14052c689c3a0ed9b52b96b378b15c25b8cf347a5863e681a21006b9bcc334c30b433765de45802a5681d2a760d34430350931efa9b2e70c20eaf32c5572964f24d7f540495f1c1f4c96a568443063e784f0cf23de3ec3e2681fd3ec09123e4987a312f97b3fc5e30342ff9c7e72fcd41a43d2a98dae9f9a4ca96c79b31a10433d97fe570d841c077dee8dec51fd62d6dca6e6a21f3b900bb260c40159b14cff64df700f56f641b5303303b0a0d78864241cd1e4a0265fc628b48146ab921b964f9ca2808e88e697bb9cc805693a0f6f52bf217f3d2616caced916c2bcf7146d8bc8135e4d9f612c19f988a78433ba7944092b48dd483e37e18bdd75470d81beedfcfe35a71766994d38d9b4d7f7c17466010daf7374528fda8acc0fa70f1ce613712966e2aefa06e13a9243759769d143c163f122e0d3f0f4a840a82db8e46e9e3b292a347e3adf1bc7e4edf2e90be6ba71e121ca2895123c30739e72cbadfab8a53c854ebb402626f102514d44dc3f7c38598814f8ca0b8a63d4c6a45e3b4ec2085227ce515efc0ab88bd6b45de3425d2a14842e88361a3881e83fa6d2fcacf19d10eab1032987abfa064f8021c4eaa8b07cb10a1b3d1dcb02ab3005a673778b5bc911d64cb17a0914da4f72a193b68311e2cdf01629f288c0b0d0ee653e32dd2658b32f56cc2283733ce931d1670cbd84d127e30783cfafc1124413a450a2e6da18a0baa5eda766b9e3b4308c9d129cfa69e5532b0b91809c404cf6b4533a3e05f5ad84b6177f4fe12ae44f324bc8599ffb229c81979349d2c3b61abca817c67e689e7960933335c918e68e007365a11dd34a86019b14876036410ec3941fece6d97d5cd9014b3ed2e4ec50cff166caec1f95e9353ce3372daabe148208e783b49e37ce9522218d5d0a3499e88f7057f4f8fcdab55d7ee6fee5e0494aad0819526b5de44ba882b1ddea2c7009b9819dc0c1ee2974e591a77fe61061be6a4c8dbaaaf7f0cffe405fcb9f2aa2027b8ebb5d0457c075e6fd24758d8d6a83e4d14e8268f0510d1ea6e016ac01cd513c1ad9c3c977eec0627e834875959b7ed1cbeb2e94281e25bcb303b271b21b9c0975beb7bfb9c7196c155ce7008f474b22ecaf3e7af86d39c2c62d48a2a9870524a5fa608433d39b80e65866a3e6db639fd7906dfd48c2fdadb08cd17a47e9d536ec20f2c646e7b79874be123f60f310bf60619f537a61ec9be94d61150e39cf37fb21fa964df1af68dcd50ae28bfc6cb604d7f4530244e43b1e1ec97120557d544ba8e7a6c018a18516c9cd0638ed7e562dac811e2d7a14957946cbecd7ca54316779fb743685795de5b3257c5df81e047126d9460faa699b0c82a9d034553efee785e643beefbbdb89a433924388de503e970d85d2a81e71f1b6af4b42eb4dc542fb6207977988285628c95553d4cafe2db8e9ae7a7b17480d798a97f5b66069797c67df9e445b4288b6aee377588e1394d088c995057894752936377230da02a6fe910b6b0e972b4b86de18900fc53801cc5213b38a9fbd0459954fd5b8436f5c5b6295e14f45cd5d729e158dec3a781cc7399280ecd45ffe2ea2c76fec91225b5bcb85a6a56c7e1b858eae0bc38c0a760016a71a03092eb8beffee31bd47340fa4d216ef83db7785f0e17f8cddfe941aca11851f20abd5badfe1b3943961e3f84b7fcca52e15291dd97d0cfa9b5f741e4e5378d00f87c49bb79712cc2cea84cf5e466f2f44e64dd2392d68e4b65d25819b231e115312dc68e6af682b2c174fa8328f096088069d58f09c90948c9956df9466c0ebe2220ada3413f6c55d8d4b9bee79d8d7ef61a8ef8c609af9b321adf634265fd06e439ca25355d98679d31dcff2d5df890aec76b8eab6c4a1f515ab502967825d792d3d0c6232dfe6e24ce012c595ca0173ec1e404ccf2beb54890e5b8bef8ab3060bf8d00fe4503129f6b037d486f35a9958e9bbe62e310ebb0f7ed19ad6c4f2e06832ab6428383511e73204d6844a7bb584ef871e61e6c9955d1ec57ca21bd8ed318c04576a29696113ebb50c90586cd7b92093cd1e42a7a4f9c245989efa2d91c9ff777eee8c46cad35a9518e4a16a7f78649aa699230e39e3ef5cc3b248b31380046b9cab4ebe620aa9ce6842e336b3d928a635ece856aa8345fc2a51bc84751e7fe423dc745ae8be00d0"}}}}}, &(0x7f00000013c0)={0x0, 0x2, [0xc02, 0x127, 0xdf2, 0x9c0]})
syz_emit_ethernet(0x56, &(0x7f0000001400)={@remote, @broadcast, @void, {@canfd={0xd, {{0x1, 0x1, 0x1}, 0xf, 0x1, 0x0, 0x0, "e9fe57e938d41b7389491c6e379e0d05ba7a2712836a1dba8efea26df816a3da30b2ee9f11444036b74e35948e2e38c7551d111d45a09a0fe585052cfa4fd3d4"}}}}, &(0x7f0000001480)={0x1, 0x3, [0x5d8, 0x9fd, 0x4e4, 0x205]})
syz_emit_ethernet(0x99, &(0x7f0000000240)=ANY=[@ANYBLOB="ffffffffffff0180c200000281000800000400008ff8142cdb810092b16051c3d3e55843a7592d6e9a173f3796f9030b021fb97cf1ccb44d27265d89bc26283a80a854c9b6d1ff684cd195ec770332dbc974c66a9ad576512d07e3d2c06e768cd8c4fe09af6640c1d056f82b5dc02ac50598d2b2c6cb136849007e134ef665d4a5f4df92e365153c1c3b3102b715e96f29cbc490c1b1c8159c"], 0x0)
syz_emit_ethernet(0x22, &(0x7f00000001c0)={@broadcast, @broadcast, @val={@void, {0x8100, 0x0, 0x0, 0x2}}, {@can={0xc, {{0x0, 0x1, 0x0, 0x1}, 0x5, 0x0, 0x0, 0x0, "2004c5180e667fdd"}}}}, &(0x7f0000000300)={0x1, 0x3, [0x9a1, 0x63a, 0x1d7, 0xe62]})
syz_emit_ethernet(0x180, &(0x7f0000000040)=ANY=[@ANYBLOB="bbbbbbbbbbbbffffffffffff9100090081004a0008004101016a0068000004069078e000000164010101831793ac1414bbffffffffac141444ac1e0001e00000019404000007130d0000000064010102ac1e01010a01010000004e204e23", @ANYRES32=0x41424344, @ANYRES32=r0, @ANYBLOB="a120000890780b922211adcf03e1f285b355266425f57e0204ff0005120000000600000003000000080000079b220765b5b08bc1220bb981cdb0143909baad1312f4c0ae8c79869e9292d5a9400ea043aa0402fe07f989082108fa5efb3a9c689fc40b9e90d6bb9e45290eb2dfe1cd94cb840e16c357cf5fbfd812cacbd15283218b6e3b920ef96e57215265519f76d28aafc198de16130f85008808297d120eb7a18b954712c45667c647cce6bc9e83057cea56420416e84df38a3879967a6b28556d73268c78e6b91daf65672f963648b0f73a916312c14be37980b71fa13b024594729c4ca3ced3531a021d1afcd63bc4cf0b386d15ab323dcda9084885c0d31ecac229efd3b00115ad5ddda20618f29649f45f11e2770000"], 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x56, &(0x7f00000014c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, @void, {@canfd={0xd, {{0x3, 0x0, 0x0, 0x1}, 0x2d, 0x1, 0x0, 0x0, "8d45d5cfc9f7ca8549459bec0d741be01ef07cb879cc7de241fd7b6812d44bffa8c2ab87f765dd7803f8b437b1233bfc12abece8045878d47cdd0d7d569f2726"}}}}, &(0x7f0000001540)={0x0, 0x4, [0x583, 0x546, 0xc31, 0xfa3]}) (async)
syz_extract_tcp_res(&(0x7f0000000000), 0x3ff, 0x2) (async)
syz_emit_ethernet(0x105e, &(0x7f0000000340)={@remote, @broadcast, @val={@val={0x9100, 0x4, 0x1, 0x1}, {0x8100, 0x5, 0x0, 0x4}}, {@ipv6={0x86dd, @generic={0x6, 0x6, "bd5f7b", 0x1020, 0x3a, 0x0, @private1, @mcast1, {[@fragment={0x2c, 0x0, 0x40, 0x0, 0x0, 0x2, 0x68}, @hopopts={0x4, 0x1, '\x00', [@ra, @jumbo={0xc2, 0x4, 0x101}]}], "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"}}}}}, &(0x7f00000013c0)={0x0, 0x2, [0xc02, 0x127, 0xdf2, 0x9c0]}) (async)
syz_emit_ethernet(0x56, &(0x7f0000001400)={@remote, @broadcast, @void, {@canfd={0xd, {{0x1, 0x1, 0x1}, 0xf, 0x1, 0x0, 0x0, "e9fe57e938d41b7389491c6e379e0d05ba7a2712836a1dba8efea26df816a3da30b2ee9f11444036b74e35948e2e38c7551d111d45a09a0fe585052cfa4fd3d4"}}}}, &(0x7f0000001480)={0x1, 0x3, [0x5d8, 0x9fd, 0x4e4, 0x205]}) (async)
syz_emit_ethernet(0x99, &(0x7f0000000240)=ANY=[@ANYBLOB="ffffffffffff0180c200000281000800000400008ff8142cdb810092b16051c3d3e55843a7592d6e9a173f3796f9030b021fb97cf1ccb44d27265d89bc26283a80a854c9b6d1ff684cd195ec770332dbc974c66a9ad576512d07e3d2c06e768cd8c4fe09af6640c1d056f82b5dc02ac50598d2b2c6cb136849007e134ef665d4a5f4df92e365153c1c3b3102b715e96f29cbc490c1b1c8159c"], 0x0) (async)
syz_emit_ethernet(0x22, &(0x7f00000001c0)={@broadcast, @broadcast, @val={@void, {0x8100, 0x0, 0x0, 0x2}}, {@can={0xc, {{0x0, 0x1, 0x0, 0x1}, 0x5, 0x0, 0x0, 0x0, "2004c5180e667fdd"}}}}, &(0x7f0000000300)={0x1, 0x3, [0x9a1, 0x63a, 0x1d7, 0xe62]}) (async)
syz_emit_ethernet(0x180, &(0x7f0000000040)=ANY=[@ANYBLOB="bbbbbbbbbbbbffffffffffff9100090081004a0008004101016a0068000004069078e000000164010101831793ac1414bbffffffffac141444ac1e0001e00000019404000007130d0000000064010102ac1e01010a01010000004e204e23", @ANYRES32=0x41424344, @ANYRES32=r0, @ANYBLOB="a120000890780b922211adcf03e1f285b355266425f57e0204ff0005120000000600000003000000080000079b220765b5b08bc1220bb981cdb0143909baad1312f4c0ae8c79869e9292d5a9400ea043aa0402fe07f989082108fa5efb3a9c689fc40b9e90d6bb9e45290eb2dfe1cd94cb840e16c357cf5fbfd812cacbd15283218b6e3b920ef96e57215265519f76d28aafc198de16130f85008808297d120eb7a18b954712c45667c647cce6bc9e83057cea56420416e84df38a3879967a6b28556d73268c78e6b91daf65672f963648b0f73a916312c14be37980b71fa13b024594729c4ca3ced3531a021d1afcd63bc4cf0b386d15ab323dcda9084885c0d31ecac229efd3b00115ad5ddda20618f29649f45f11e2770000"], 0x0) (async)

[ 1236.194494][ T6022]  ? ___sys_recvmsg+0x200/0x200
[ 1236.199388][ T6022]  ? check_path.constprop.0+0x50/0x50
[ 1236.204814][ T6022]  ? __context_tracking_exit+0xb8/0xe0
[ 1236.210326][ T6022]  ? lock_downgrade+0x6e0/0x6e0
[ 1236.215216][ T6022]  ? lock_downgrade+0x6e0/0x6e0
[ 1236.216260][ T6030] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1236.220092][ T6022]  __x64_sys_recvmmsg+0x20b/0x260
[ 1236.220130][ T6022]  ? __do_sys_socketcall+0x590/0x590
[ 1236.220155][ T6022]  ? syscall_enter_from_user_mode+0x21/0x70
03:15:39 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaac0aaaaaaaaaa23100000dd90f4ec141400ac1414aa00000000040190780448fd881fffba4d09cdbb4aad3d620c37055d607785"], 0x0)

[ 1236.245803][ T6022]  do_syscall_64+0x35/0xb0
[ 1236.250238][ T6022]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1236.256140][ T6022] RIP: 0033:0x7f688ab57e99
[ 1236.260561][ T6022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1236.280570][ T6022] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1236.289012][ T6022] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1236.297225][ T6022] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1236.305307][ T6022] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1236.313290][ T6022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1236.321851][ T6022] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1236.329898][ T6022]  </TASK>
03:15:39 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 23)

03:15:39 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800"], 0x58}}, 0x0)

03:15:39 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x3, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:39 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaac0aaaaaaaaaa23100000dd90f4ec141400ac1414aa00000000040190780448fd881fffba4d09cdbb4aad3d620c37055d607785"], 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaac0aaaaaaaaaa23100000dd90f4ec141400ac1414aa00000000040190780448fd881fffba4d09cdbb4aad3d620c37055d607785"], 0x0) (async)

03:15:39 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x5, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:39 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x2000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1236.407211][ T6048] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:39 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaac0aaaaaaaaaa23100000dd90f4ec141400ac1414aa00000000040190780448fd881fffba4d09cdbb4aad3d620c37055d607785"], 0x0)

03:15:39 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x6, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1236.484101][ T6048] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1236.504650][ T6057] FAULT_INJECTION: forcing a failure.
[ 1236.504650][ T6057] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1236.534104][ T6057] CPU: 1 PID: 6057 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1236.542824][ T6057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1236.552912][ T6057] Call Trace:
[ 1236.556196][ T6057]  <TASK>
[ 1236.559122][ T6057]  dump_stack_lvl+0xcd/0x134
[ 1236.563729][ T6057]  should_fail.cold+0x5/0xa
[ 1236.568254][ T6057]  _copy_from_user+0x2c/0x180
[ 1236.572955][ T6057]  __copy_msghdr_from_user+0x91/0x4b0
[ 1236.578513][ T6057]  ? __ia32_sys_shutdown+0x70/0x70
[ 1236.583649][ T6057]  ? __lock_acquire+0x1655/0x5470
[ 1236.588712][ T6057]  ___sys_recvmsg+0xd5/0x200
[ 1236.593335][ T6057]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1236.599091][ T6057]  ? check_path.constprop.0+0x50/0x50
[ 1236.604486][ T6057]  ? find_held_lock+0x2d/0x110
[ 1236.609265][ T6057]  ? __might_fault+0xd1/0x170
[ 1236.613955][ T6057]  ? lock_downgrade+0x6e0/0x6e0
[ 1236.618834][ T6057]  do_recvmmsg+0x24d/0x6d0
[ 1236.623275][ T6057]  ? ___sys_recvmsg+0x200/0x200
[ 1236.628133][ T6057]  ? check_path.constprop.0+0x50/0x50
[ 1236.633545][ T6057]  ? __context_tracking_exit+0xb8/0xe0
[ 1236.639042][ T6057]  ? lock_downgrade+0x6e0/0x6e0
[ 1236.643939][ T6057]  __x64_sys_recvmmsg+0x20b/0x260
[ 1236.649010][ T6057]  ? __do_sys_socketcall+0x590/0x590
[ 1236.654472][ T6057]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1236.660407][ T6057]  do_syscall_64+0x35/0xb0
[ 1236.664849][ T6057]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1236.670754][ T6057] RIP: 0033:0x7f688ab57e99
[ 1236.675174][ T6057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1236.694799][ T6057] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1236.703252][ T6057] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1236.711252][ T6057] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1236.719253][ T6057] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1236.727259][ T6057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
03:15:39 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x7, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:39 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800050007000000"], 0x58}}, 0x0)

03:15:39 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000000000780448fd8800ffba4d"], 0x0)
syz_emit_ethernet(0x107, &(0x7f0000000000)={@random="4e6efaf953a7", @empty, @val={@val={0x9100, 0x3, 0x1, 0x2}, {0x8100, 0x4, 0x1, 0x1}}, {@llc_tr={0x11, {@llc={0x1, 0x1ab, "8c8a", "45e48c56142a0b2b91ae9672c845deedc2ce9ebadd9e8e92eaf5fd27cfa3c4774eedc267ad52d03cc10fe2e2e75d842eefce711d157b0e765823a4680468bbd17fb9dd29a5492aa624b0f881d4d40ac50a903e9c5e6097d4d1a355dacdd96a3de4bb1dc98d06f333fd9435a99a32bd8645c866865e562103300817cb5628b3ad52bebb1e6b65f9ef5b82b9b4d0498b1931cb588d29736f5a9bd1167c9b6f755151f5b5f8c9ec7197e5327416bf979a1e1be6423e49762b6e9eb63369320656555e16235a7724735cf3d0b1cc2603556447168ad37d9a7b6c0b8a483e14c5a69298d021fc4d49c64e2b948aea05"}}}}}, 0x0)

[ 1236.735253][ T6057] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1236.743263][ T6057]  </TASK>
03:15:39 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x8, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:39 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 24)

03:15:39 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x9, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:40 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000000000780448fd8800ffba4d"], 0x0)
syz_emit_ethernet(0x107, &(0x7f0000000000)={@random="4e6efaf953a7", @empty, @val={@val={0x9100, 0x3, 0x1, 0x2}, {0x8100, 0x4, 0x1, 0x1}}, {@llc_tr={0x11, {@llc={0x1, 0x1ab, "8c8a", "45e48c56142a0b2b91ae9672c845deedc2ce9ebadd9e8e92eaf5fd27cfa3c4774eedc267ad52d03cc10fe2e2e75d842eefce711d157b0e765823a4680468bbd17fb9dd29a5492aa624b0f881d4d40ac50a903e9c5e6097d4d1a355dacdd96a3de4bb1dc98d06f333fd9435a99a32bd8645c866865e562103300817cb5628b3ad52bebb1e6b65f9ef5b82b9b4d0498b1931cb588d29736f5a9bd1167c9b6f755151f5b5f8c9ec7197e5327416bf979a1e1be6423e49762b6e9eb63369320656555e16235a7724735cf3d0b1cc2603556447168ad37d9a7b6c0b8a483e14c5a69298d021fc4d49c64e2b948aea05"}}}}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000000000780448fd8800ffba4d"], 0x0) (async)
syz_emit_ethernet(0x107, &(0x7f0000000000)={@random="4e6efaf953a7", @empty, @val={@val={0x9100, 0x3, 0x1, 0x2}, {0x8100, 0x4, 0x1, 0x1}}, {@llc_tr={0x11, {@llc={0x1, 0x1ab, "8c8a", "45e48c56142a0b2b91ae9672c845deedc2ce9ebadd9e8e92eaf5fd27cfa3c4774eedc267ad52d03cc10fe2e2e75d842eefce711d157b0e765823a4680468bbd17fb9dd29a5492aa624b0f881d4d40ac50a903e9c5e6097d4d1a355dacdd96a3de4bb1dc98d06f333fd9435a99a32bd8645c866865e562103300817cb5628b3ad52bebb1e6b65f9ef5b82b9b4d0498b1931cb588d29736f5a9bd1167c9b6f755151f5b5f8c9ec7197e5327416bf979a1e1be6423e49762b6e9eb63369320656555e16235a7724735cf3d0b1cc2603556447168ad37d9a7b6c0b8a483e14c5a69298d021fc4d49c64e2b948aea05"}}}}}, 0x0) (async)

[ 1236.794395][ T6067] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1236.820761][ T6067] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:40 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x4000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:40 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800050007000000"], 0x58}}, 0x0)

03:15:40 executing program 0:
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000000000780448fd8800ffba4d"], 0x0) (async)
syz_emit_ethernet(0x107, &(0x7f0000000000)={@random="4e6efaf953a7", @empty, @val={@val={0x9100, 0x3, 0x1, 0x2}, {0x8100, 0x4, 0x1, 0x1}}, {@llc_tr={0x11, {@llc={0x1, 0x1ab, "8c8a", "45e48c56142a0b2b91ae9672c845deedc2ce9ebadd9e8e92eaf5fd27cfa3c4774eedc267ad52d03cc10fe2e2e75d842eefce711d157b0e765823a4680468bbd17fb9dd29a5492aa624b0f881d4d40ac50a903e9c5e6097d4d1a355dacdd96a3de4bb1dc98d06f333fd9435a99a32bd8645c866865e562103300817cb5628b3ad52bebb1e6b65f9ef5b82b9b4d0498b1931cb588d29736f5a9bd1167c9b6f755151f5b5f8c9ec7197e5327416bf979a1e1be6423e49762b6e9eb63369320656555e16235a7724735cf3d0b1cc2603556447168ad37d9a7b6c0b8a483e14c5a69298d021fc4d49c64e2b948aea05"}}}}}, 0x0)

[ 1236.944766][ T6080] FAULT_INJECTION: forcing a failure.
[ 1236.944766][ T6080] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1236.964198][ T6080] CPU: 0 PID: 6080 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1236.972900][ T6080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1236.983074][ T6080] Call Trace:
[ 1236.986361][ T6080]  <TASK>
[ 1236.989285][ T6080]  dump_stack_lvl+0xcd/0x134
[ 1236.993877][ T6080]  should_fail.cold+0x5/0xa
[ 1236.998373][ T6080]  _copy_from_user+0x2c/0x180
[ 1237.003055][ T6080]  __copy_msghdr_from_user+0x91/0x4b0
[ 1237.008422][ T6080]  ? __ia32_sys_shutdown+0x70/0x70
[ 1237.013526][ T6080]  ? __lock_acquire+0x1655/0x5470
[ 1237.018554][ T6080]  ___sys_recvmsg+0xd5/0x200
[ 1237.023136][ T6080]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1237.028762][ T6080]  ? check_path.constprop.0+0x50/0x50
[ 1237.034135][ T6080]  ? find_held_lock+0x2d/0x110
[ 1237.038893][ T6080]  ? __might_fault+0xd1/0x170
[ 1237.043558][ T6080]  ? lock_downgrade+0x6e0/0x6e0
[ 1237.048415][ T6080]  do_recvmmsg+0x24d/0x6d0
[ 1237.052826][ T6080]  ? ___sys_recvmsg+0x200/0x200
[ 1237.057680][ T6080]  ? check_path.constprop.0+0x50/0x50
[ 1237.063055][ T6080]  ? __context_tracking_exit+0xb8/0xe0
[ 1237.068508][ T6080]  ? lock_downgrade+0x6e0/0x6e0
[ 1237.073353][ T6080]  ? lock_downgrade+0x6e0/0x6e0
[ 1237.078291][ T6080]  __x64_sys_recvmmsg+0x20b/0x260
[ 1237.083408][ T6080]  ? __do_sys_socketcall+0x590/0x590
[ 1237.088689][ T6080]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1237.094583][ T6080]  do_syscall_64+0x35/0xb0
[ 1237.098991][ T6080]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1237.104877][ T6080] RIP: 0033:0x7f688ab57e99
[ 1237.109281][ T6080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1237.129054][ T6080] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1237.137457][ T6080] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
03:15:40 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0xa, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1237.145418][ T6080] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1237.153376][ T6080] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1237.161334][ T6080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1237.169296][ T6080] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1237.177355][ T6080]  </TASK>
03:15:40 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4dc9cd5689abfce3048ee58795c9769d28d6026ac11ae720474726d8a471"], 0x0)
syz_emit_ethernet(0xe7, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @val={@val={0x9100, 0x6, 0x1, 0x2}, {0x8100, 0x4, 0x0, 0x2}}, {@mpls_mc={0x8848, {[{0x2, 0x0, 0x1}, {0x3, 0x0, 0x1}], @ipv6=@generic={0x7, 0x6, "4cd372", 0xa1, 0x33, 0x1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, {[@fragment={0x32, 0x0, 0x3, 0x0, 0x0, 0x1c, 0x65}], "fe368086618bba429b1f8c53e4cb59494e764f4f4b4d95f2e893963ba6d9de758399eb58e3923e8341c94192b3c4bf9c23122547ad7143e481fc17e107b962614719c71ddb7ea1b8129f9f0344ae7a9f252f1f0116ccfe87267bbc6f7e3c7daf9b085e8e6bad296d7ab83015e111ef07ca2e9d9cfa97babf75e35e41dd32b9979baff240ae67d53d1c7dc23e713f7e986b8bfa0863b1f4f0ab"}}}}}}, &(0x7f0000000180)={0x0, 0x2, [0x299, 0xf26, 0xb32, 0xe5e]})
syz_emit_ethernet(0x40, &(0x7f0000000240)={@remote, @empty, @void, {@mpls_mc={0x8848, {[{0x2, 0x0, 0x1}, {}, {0x200, 0x0, 0x1}, {0xc6, 0x0, 0x1}], @llc={@llc={0x4e, 0xe, "d704", "8979733f2f38eba7db35bee8fb506878ebab0ae37012185f4dc0bea1bfd6"}}}}}}, 0x0)
syz_emit_ethernet(0x1e, &(0x7f00000001c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@can={0xc, {{0x1}, 0x6, 0x1, 0x0, 0x0, "83f6c064dccedc13"}}}}, &(0x7f0000000200)={0x0, 0x1, [0x161, 0xa2e, 0xa68, 0xe74]})

03:15:40 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 25)

[ 1237.231316][ T6089] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1237.265209][ T6089] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:40 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:40 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4dc9cd5689abfce3048ee58795c9769d28d6026ac11ae720474726d8a471"], 0x0)
syz_emit_ethernet(0xe7, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @val={@val={0x9100, 0x6, 0x1, 0x2}, {0x8100, 0x4, 0x0, 0x2}}, {@mpls_mc={0x8848, {[{0x2, 0x0, 0x1}, {0x3, 0x0, 0x1}], @ipv6=@generic={0x7, 0x6, "4cd372", 0xa1, 0x33, 0x1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, {[@fragment={0x32, 0x0, 0x3, 0x0, 0x0, 0x1c, 0x65}], "fe368086618bba429b1f8c53e4cb59494e764f4f4b4d95f2e893963ba6d9de758399eb58e3923e8341c94192b3c4bf9c23122547ad7143e481fc17e107b962614719c71ddb7ea1b8129f9f0344ae7a9f252f1f0116ccfe87267bbc6f7e3c7daf9b085e8e6bad296d7ab83015e111ef07ca2e9d9cfa97babf75e35e41dd32b9979baff240ae67d53d1c7dc23e713f7e986b8bfa0863b1f4f0ab"}}}}}}, &(0x7f0000000180)={0x0, 0x2, [0x299, 0xf26, 0xb32, 0xe5e]})
syz_emit_ethernet(0x40, &(0x7f0000000240)={@remote, @empty, @void, {@mpls_mc={0x8848, {[{0x2, 0x0, 0x1}, {}, {0x200, 0x0, 0x1}, {0xc6, 0x0, 0x1}], @llc={@llc={0x4e, 0xe, "d704", "8979733f2f38eba7db35bee8fb506878ebab0ae37012185f4dc0bea1bfd6"}}}}}}, 0x0)
syz_emit_ethernet(0x1e, &(0x7f00000001c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@can={0xc, {{0x1}, 0x6, 0x1, 0x0, 0x0, "83f6c064dccedc13"}}}}, &(0x7f0000000200)={0x0, 0x1, [0x161, 0xa2e, 0xa68, 0xe74]})
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4) (async)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4dc9cd5689abfce3048ee58795c9769d28d6026ac11ae720474726d8a471"], 0x0) (async)
syz_emit_ethernet(0xe7, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @val={@val={0x9100, 0x6, 0x1, 0x2}, {0x8100, 0x4, 0x0, 0x2}}, {@mpls_mc={0x8848, {[{0x2, 0x0, 0x1}, {0x3, 0x0, 0x1}], @ipv6=@generic={0x7, 0x6, "4cd372", 0xa1, 0x33, 0x1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, {[@fragment={0x32, 0x0, 0x3, 0x0, 0x0, 0x1c, 0x65}], "fe368086618bba429b1f8c53e4cb59494e764f4f4b4d95f2e893963ba6d9de758399eb58e3923e8341c94192b3c4bf9c23122547ad7143e481fc17e107b962614719c71ddb7ea1b8129f9f0344ae7a9f252f1f0116ccfe87267bbc6f7e3c7daf9b085e8e6bad296d7ab83015e111ef07ca2e9d9cfa97babf75e35e41dd32b9979baff240ae67d53d1c7dc23e713f7e986b8bfa0863b1f4f0ab"}}}}}}, &(0x7f0000000180)={0x0, 0x2, [0x299, 0xf26, 0xb32, 0xe5e]}) (async)
syz_emit_ethernet(0x40, &(0x7f0000000240)={@remote, @empty, @void, {@mpls_mc={0x8848, {[{0x2, 0x0, 0x1}, {}, {0x200, 0x0, 0x1}, {0xc6, 0x0, 0x1}], @llc={@llc={0x4e, 0xe, "d704", "8979733f2f38eba7db35bee8fb506878ebab0ae37012185f4dc0bea1bfd6"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x1e, &(0x7f00000001c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@can={0xc, {{0x1}, 0x6, 0x1, 0x0, 0x0, "83f6c064dccedc13"}}}}, &(0x7f0000000200)={0x0, 0x1, [0x161, 0xa2e, 0xa68, 0xe74]}) (async)

[ 1237.280576][ T6095] FAULT_INJECTION: forcing a failure.
[ 1237.280576][ T6095] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1237.321684][ T6098] dccp_invalid_packet: P.Data Offset(4) too small
03:15:40 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800050007000000"], 0x58}}, 0x0)

[ 1237.340137][ T6095] CPU: 1 PID: 6095 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1237.349068][ T6095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1237.359322][ T6095] Call Trace:
[ 1237.362614][ T6095]  <TASK>
[ 1237.365631][ T6095]  dump_stack_lvl+0xcd/0x134
[ 1237.370239][ T6095]  should_fail.cold+0x5/0xa
[ 1237.373746][ T6101] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1237.374753][ T6095]  _copy_from_user+0x2c/0x180
[ 1237.374787][ T6095]  __copy_msghdr_from_user+0x91/0x4b0
[ 1237.393218][ T6095]  ? __ia32_sys_shutdown+0x70/0x70
[ 1237.393315][ T6101] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1237.398343][ T6095]  ? __lock_acquire+0x1655/0x5470
[ 1237.398381][ T6095]  ___sys_recvmsg+0xd5/0x200
[ 1237.398406][ T6095]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1237.422893][ T6095]  ? check_path.constprop.0+0x50/0x50
[ 1237.428390][ T6095]  ? find_held_lock+0x2d/0x110
[ 1237.433181][ T6095]  ? __might_fault+0xd1/0x170
03:15:40 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800050007000000140004"], 0x58}}, 0x0)

[ 1237.437870][ T6095]  ? lock_downgrade+0x6e0/0x6e0
[ 1237.442749][ T6095]  do_recvmmsg+0x24d/0x6d0
[ 1237.447175][ T6095]  ? ___sys_recvmsg+0x200/0x200
[ 1237.452121][ T6095]  ? check_path.constprop.0+0x50/0x50
[ 1237.457526][ T6095]  ? __context_tracking_exit+0xb8/0xe0
[ 1237.463000][ T6095]  ? lock_downgrade+0x6e0/0x6e0
[ 1237.467863][ T6095]  ? lock_downgrade+0x6e0/0x6e0
[ 1237.472733][ T6095]  __x64_sys_recvmmsg+0x20b/0x260
[ 1237.474798][ T6103] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1237.477776][ T6095]  ? __do_sys_socketcall+0x590/0x590
03:15:40 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800050007000000140004"], 0x58}}, 0x0)

[ 1237.477810][ T6095]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1237.497095][ T6095]  do_syscall_64+0x35/0xb0
[ 1237.501529][ T6095]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1237.507611][ T6095] RIP: 0033:0x7f688ab57e99
[ 1237.512030][ T6095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1237.531743][ T6095] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
03:15:40 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800050007000000140004"], 0x58}}, 0x0)

03:15:40 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x7000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:40 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x2, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1237.540175][ T6095] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1237.548162][ T6095] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1237.556236][ T6095] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1237.564221][ T6095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1237.572208][ T6095] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1237.580319][ T6095]  </TASK>
03:15:40 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4dc9cd5689abfce3048ee58795c9769d28d6026ac11ae720474726d8a471"], 0x0)
syz_emit_ethernet(0xe7, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @val={@val={0x9100, 0x6, 0x1, 0x2}, {0x8100, 0x4, 0x0, 0x2}}, {@mpls_mc={0x8848, {[{0x2, 0x0, 0x1}, {0x3, 0x0, 0x1}], @ipv6=@generic={0x7, 0x6, "4cd372", 0xa1, 0x33, 0x1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, {[@fragment={0x32, 0x0, 0x3, 0x0, 0x0, 0x1c, 0x65}], "fe368086618bba429b1f8c53e4cb59494e764f4f4b4d95f2e893963ba6d9de758399eb58e3923e8341c94192b3c4bf9c23122547ad7143e481fc17e107b962614719c71ddb7ea1b8129f9f0344ae7a9f252f1f0116ccfe87267bbc6f7e3c7daf9b085e8e6bad296d7ab83015e111ef07ca2e9d9cfa97babf75e35e41dd32b9979baff240ae67d53d1c7dc23e713f7e986b8bfa0863b1f4f0ab"}}}}}}, &(0x7f0000000180)={0x0, 0x2, [0x299, 0xf26, 0xb32, 0xe5e]})
syz_emit_ethernet(0x40, &(0x7f0000000240)={@remote, @empty, @void, {@mpls_mc={0x8848, {[{0x2, 0x0, 0x1}, {}, {0x200, 0x0, 0x1}, {0xc6, 0x0, 0x1}], @llc={@llc={0x4e, 0xe, "d704", "8979733f2f38eba7db35bee8fb506878ebab0ae37012185f4dc0bea1bfd6"}}}}}}, 0x0)
syz_emit_ethernet(0x1e, &(0x7f00000001c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@can={0xc, {{0x1}, 0x6, 0x1, 0x0, 0x0, "83f6c064dccedc13"}}}}, &(0x7f0000000200)={0x0, 0x1, [0x161, 0xa2e, 0xa68, 0xe74]})
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4) (async)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa0800450000240000000000219078ac141400ac1414aa00000000040190780448fd8800ffba4dc9cd5689abfce3048ee58795c9769d28d6026ac11ae720474726d8a471"], 0x0) (async)
syz_emit_ethernet(0xe7, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @val={@val={0x9100, 0x6, 0x1, 0x2}, {0x8100, 0x4, 0x0, 0x2}}, {@mpls_mc={0x8848, {[{0x2, 0x0, 0x1}, {0x3, 0x0, 0x1}], @ipv6=@generic={0x7, 0x6, "4cd372", 0xa1, 0x33, 0x1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, {[@fragment={0x32, 0x0, 0x3, 0x0, 0x0, 0x1c, 0x65}], "fe368086618bba429b1f8c53e4cb59494e764f4f4b4d95f2e893963ba6d9de758399eb58e3923e8341c94192b3c4bf9c23122547ad7143e481fc17e107b962614719c71ddb7ea1b8129f9f0344ae7a9f252f1f0116ccfe87267bbc6f7e3c7daf9b085e8e6bad296d7ab83015e111ef07ca2e9d9cfa97babf75e35e41dd32b9979baff240ae67d53d1c7dc23e713f7e986b8bfa0863b1f4f0ab"}}}}}}, &(0x7f0000000180)={0x0, 0x2, [0x299, 0xf26, 0xb32, 0xe5e]}) (async)
syz_emit_ethernet(0x40, &(0x7f0000000240)={@remote, @empty, @void, {@mpls_mc={0x8848, {[{0x2, 0x0, 0x1}, {}, {0x200, 0x0, 0x1}, {0xc6, 0x0, 0x1}], @llc={@llc={0x4e, 0xe, "d704", "8979733f2f38eba7db35bee8fb506878ebab0ae37012185f4dc0bea1bfd6"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x1e, &(0x7f00000001c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@can={0xc, {{0x1}, 0x6, 0x1, 0x0, 0x0, "83f6c064dccedc13"}}}}, &(0x7f0000000200)={0x0, 0x1, [0x161, 0xa2e, 0xa68, 0xe74]}) (async)

03:15:40 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc00080005000700000014000440"], 0x58}}, 0x0)

03:15:40 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x3, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1237.634885][ T6115] dccp_invalid_packet: P.Data Offset(4) too small
03:15:40 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 26)

03:15:40 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc00080005000700000014000440"], 0x58}}, 0x0)

03:15:40 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xa000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:40 executing program 0:
r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x6c, r0, 0x800, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xc64ca36f}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x37e}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="0b5b57699cfd"}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20000044}, 0x4)
syz_emit_ethernet(0x5a, &(0x7f0000000080)={@local, @local, @val={@val={0x9100, 0x6, 0x1}, {0x8100, 0x5}}, {@ipv4={0x800, @dccp={{0xd, 0x4, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local, {[@timestamp={0x44, 0x10, 0x8c, 0x0, 0x0, [0x8000, 0x9, 0x4]}, @generic={0x94, 0xe, "97797e50e261714928927e5b"}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1237.733447][ T6129] dccp_invalid_packet: P.Data Offset(4) too small
03:15:40 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc00080005000700000014000440"], 0x58}}, 0x0)

03:15:40 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:40 executing program 0:
r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x6c, r0, 0x800, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xc64ca36f}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x37e}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="0b5b57699cfd"}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20000044}, 0x4)
syz_emit_ethernet(0x5a, &(0x7f0000000080)={@local, @local, @val={@val={0x9100, 0x6, 0x1}, {0x8100, 0x5}}, {@ipv4={0x800, @dccp={{0xd, 0x4, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local, {[@timestamp={0x44, 0x10, 0x8c, 0x0, 0x0, [0x8000, 0x9, 0x4]}, @generic={0x94, 0xe, "97797e50e261714928927e5b"}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x6c, r0, 0x800, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xc64ca36f}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x37e}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="0b5b57699cfd"}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20000044}, 0x4) (async)
syz_emit_ethernet(0x5a, &(0x7f0000000080)={@local, @local, @val={@val={0x9100, 0x6, 0x1}, {0x8100, 0x5}}, {@ipv4={0x800, @dccp={{0xd, 0x4, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local, {[@timestamp={0x44, 0x10, 0x8c, 0x0, 0x0, [0x8000, 0x9, 0x4]}, @generic={0x94, 0xe, "97797e50e261714928927e5b"}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0) (async)

[ 1237.793047][ T6135] FAULT_INJECTION: forcing a failure.
[ 1237.793047][ T6135] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1237.858574][ T6142] dccp_invalid_packet: P.Data Offset(4) too small
[ 1237.874398][ T6135] CPU: 0 PID: 6135 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1237.883224][ T6135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1237.893298][ T6135] Call Trace:
[ 1237.896589][ T6135]  <TASK>
[ 1237.899523][ T6135]  dump_stack_lvl+0xcd/0x134
[ 1237.904214][ T6135]  should_fail.cold+0x5/0xa
[ 1237.908729][ T6135]  _copy_from_user+0x2c/0x180
[ 1237.913419][ T6135]  __copy_msghdr_from_user+0x91/0x4b0
[ 1237.918803][ T6135]  ? __ia32_sys_shutdown+0x70/0x70
[ 1237.924172][ T6135]  ? __lock_acquire+0x1655/0x5470
[ 1237.929214][ T6135]  ___sys_recvmsg+0xd5/0x200
[ 1237.933813][ T6135]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1237.939439][ T6135]  ? check_path.constprop.0+0x50/0x50
[ 1237.944809][ T6135]  ? find_held_lock+0x2d/0x110
[ 1237.949570][ T6135]  ? __might_fault+0xd1/0x170
[ 1237.954235][ T6135]  ? lock_downgrade+0x6e0/0x6e0
[ 1237.959087][ T6135]  do_recvmmsg+0x24d/0x6d0
[ 1237.963607][ T6135]  ? ___sys_recvmsg+0x200/0x200
[ 1237.968450][ T6135]  ? check_path.constprop.0+0x50/0x50
[ 1237.973823][ T6135]  ? __context_tracking_exit+0xb8/0xe0
[ 1237.979457][ T6135]  ? lock_downgrade+0x6e0/0x6e0
[ 1237.984301][ T6135]  ? lock_downgrade+0x6e0/0x6e0
[ 1237.989171][ T6135]  __x64_sys_recvmmsg+0x20b/0x260
[ 1237.994189][ T6135]  ? __do_sys_socketcall+0x590/0x590
[ 1237.999464][ T6135]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1238.005352][ T6135]  do_syscall_64+0x35/0xb0
[ 1238.009850][ T6135]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1238.015736][ T6135] RIP: 0033:0x7f688ab57e99
[ 1238.020142][ T6135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1238.039746][ T6135] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1238.048154][ T6135] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
03:15:41 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:41 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x11000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1238.056113][ T6135] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1238.064071][ T6135] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1238.072026][ T6135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1238.079986][ T6135] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1238.087963][ T6135]  </TASK>
03:15:41 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x2, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:41 executing program 0:
r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x6c, r0, 0x800, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xc64ca36f}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x37e}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="0b5b57699cfd"}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20000044}, 0x4) (async)
syz_emit_ethernet(0x5a, &(0x7f0000000080)={@local, @local, @val={@val={0x9100, 0x6, 0x1}, {0x8100, 0x5}}, {@ipv4={0x800, @dccp={{0xd, 0x4, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local, {[@timestamp={0x44, 0x10, 0x8c, 0x0, 0x0, [0x8000, 0x9, 0x4]}, @generic={0x94, 0xe, "97797e50e261714928927e5b"}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1238.105499][ T1225] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.112001][ T1225] ieee802154 phy1 wpan1: encryption failed: -22
[ 1238.148516][ T6150] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:41 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1238.192605][ T6152] dccp_invalid_packet: P.Data Offset(4) too small
[ 1238.304248][ T6158] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:41 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 27)

03:15:41 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x3, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:41 executing program 0:
r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0xffffffff, 0x505382)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e03, 0x1, @remote, 0x4}, 0x1c)
syz_emit_ethernet(0x32, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaeaaaaaaaaaaaaaaa0800450000240000000000219078ac14140014aa00000000040190780448fd8800ffba4d8c9441274dfa627a019dad76b4b5149e00104441b66493ea1f31c9f7603fdbf61bbeefb0d313c1640000d174e0752c8af6cc705c9d422ecd0a9375af954ba1e2ad25c478c5951aa4484e35083ad95788aea6cf1607b5d4a5d8acbac0b816497d69735ec66d6f45620fe3740b4cfa21db75041333a7079fb72287cffd4c042798dee25617c11fe706af"], 0x0)

03:15:41 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x17030000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:41 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:41 executing program 0:
r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0xffffffff, 0x505382)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e03, 0x1, @remote, 0x4}, 0x1c)
syz_emit_ethernet(0x32, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaeaaaaaaaaaaaaaaa0800450000240000000000219078ac14140014aa00000000040190780448fd8800ffba4d8c9441274dfa627a019dad76b4b5149e00104441b66493ea1f31c9f7603fdbf61bbeefb0d313c1640000d174e0752c8af6cc705c9d422ecd0a9375af954ba1e2ad25c478c5951aa4484e35083ad95788aea6cf1607b5d4a5d8acbac0b816497d69735ec66d6f45620fe3740b4cfa21db75041333a7079fb72287cffd4c042798dee25617c11fe706af"], 0x0)
syz_open_dev$vcsu(&(0x7f0000000000), 0xffffffff, 0x505382) (async)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e03, 0x1, @remote, 0x4}, 0x1c) (async)
syz_emit_ethernet(0x32, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaeaaaaaaaaaaaaaaa0800450000240000000000219078ac14140014aa00000000040190780448fd8800ffba4d8c9441274dfa627a019dad76b4b5149e00104441b66493ea1f31c9f7603fdbf61bbeefb0d313c1640000d174e0752c8af6cc705c9d422ecd0a9375af954ba1e2ad25c478c5951aa4484e35083ad95788aea6cf1607b5d4a5d8acbac0b816497d69735ec66d6f45620fe3740b4cfa21db75041333a7079fb72287cffd4c042798dee25617c11fe706af"], 0x0) (async)

03:15:41 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x4, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1238.574871][ T6161] dccp_invalid_packet: P.Data Offset(4) too small
[ 1238.581239][ T6163] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
03:15:41 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:41 executing program 0:
r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0xffffffff, 0x505382)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e03, 0x1, @remote, 0x4}, 0x1c) (async)
syz_emit_ethernet(0x32, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaeaaaaaaaaaaaaaaa0800450000240000000000219078ac14140014aa00000000040190780448fd8800ffba4d8c9441274dfa627a019dad76b4b5149e00104441b66493ea1f31c9f7603fdbf61bbeefb0d313c1640000d174e0752c8af6cc705c9d422ecd0a9375af954ba1e2ad25c478c5951aa4484e35083ad95788aea6cf1607b5d4a5d8acbac0b816497d69735ec66d6f45620fe3740b4cfa21db75041333a7079fb72287cffd4c042798dee25617c11fe706af"], 0x0)

[ 1238.666757][ T6172] dccp_invalid_packet: P.Data Offset(4) too small
[ 1238.702087][ T6171] FAULT_INJECTION: forcing a failure.
[ 1238.702087][ T6171] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:41 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x5, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:41 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x803e0000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1238.791129][ T6171] CPU: 1 PID: 6171 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1238.799975][ T6171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1238.810053][ T6171] Call Trace:
[ 1238.813517][ T6171]  <TASK>
[ 1238.816744][ T6171]  dump_stack_lvl+0xcd/0x134
[ 1238.821356][ T6171]  should_fail.cold+0x5/0xa
[ 1238.825885][ T6171]  _copy_from_user+0x2c/0x180
[ 1238.830581][ T6171]  __copy_msghdr_from_user+0x91/0x4b0
[ 1238.835971][ T6171]  ? __ia32_sys_shutdown+0x70/0x70
03:15:41 executing program 0:
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x7c, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x44, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x63aa0b04}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5a4ac33}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xec}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x659d8b90}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc5}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5e6c56b3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9f}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x5}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x10}, 0x4084094)

[ 1238.841084][ T6171]  ? __lock_acquire+0x1655/0x5470
[ 1238.846129][ T6171]  ___sys_recvmsg+0xd5/0x200
[ 1238.850733][ T6171]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1238.856374][ T6171]  ? check_path.constprop.0+0x50/0x50
[ 1238.861774][ T6171]  ? find_held_lock+0x2d/0x110
[ 1238.866568][ T6171]  ? __might_fault+0xd1/0x170
[ 1238.871366][ T6171]  ? lock_downgrade+0x6e0/0x6e0
[ 1238.876260][ T6171]  do_recvmmsg+0x24d/0x6d0
[ 1238.880714][ T6171]  ? ___sys_recvmsg+0x200/0x200
[ 1238.885689][ T6171]  ? check_path.constprop.0+0x50/0x50
[ 1238.891113][ T6171]  ? __context_tracking_exit+0xb8/0xe0
[ 1238.896619][ T6171]  ? lock_downgrade+0x6e0/0x6e0
[ 1238.901487][ T6171]  ? lock_downgrade+0x6e0/0x6e0
[ 1238.906345][ T6171]  __x64_sys_recvmmsg+0x20b/0x260
[ 1238.911383][ T6171]  ? __do_sys_socketcall+0x590/0x590
[ 1238.916850][ T6171]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1238.922766][ T6171]  do_syscall_64+0x35/0xb0
[ 1238.927205][ T6171]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1238.933125][ T6171] RIP: 0033:0x7f688ab57e99
[ 1238.937557][ T6171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1238.957358][ T6171] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1238.965798][ T6171] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1238.973905][ T6171] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1238.981992][ T6171] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1238.989995][ T6171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1238.998159][ T6171] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1239.006167][ T6171]  </TASK>
[ 1239.024803][ T6185] dccp_invalid_packet: P.Data Offset(4) too small
03:15:42 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 28)

03:15:42 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:42 executing program 0:
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x7c, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x44, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x63aa0b04}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5a4ac33}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xec}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x659d8b90}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc5}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5e6c56b3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9f}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x5}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x10}, 0x4084094)

03:15:42 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xc0000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:42 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x6, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:42 executing program 0:
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x7c, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x44, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x63aa0b04}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5a4ac33}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xec}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x659d8b90}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc5}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5e6c56b3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9f}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x5}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x10}, 0x4084094)

03:15:42 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xc03e0000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:42 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1239.273292][ T6194] dccp_invalid_packet: P.Data Offset(4) too small
[ 1239.298456][ T6195] FAULT_INJECTION: forcing a failure.
[ 1239.298456][ T6195] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:42 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x7, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:42 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800050007000000140004"], 0x58}}, 0x0)

03:15:42 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xe03f0300)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:42 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x8, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1239.638847][ T6195] CPU: 1 PID: 6195 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1239.647910][ T6195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1239.658068][ T6195] Call Trace:
[ 1239.661360][ T6195]  <TASK>
[ 1239.664376][ T6195]  dump_stack_lvl+0xcd/0x134
[ 1239.668980][ T6195]  should_fail.cold+0x5/0xa
[ 1239.673503][ T6195]  _copy_from_user+0x2c/0x180
[ 1239.678215][ T6195]  __copy_msghdr_from_user+0x91/0x4b0
[ 1239.683621][ T6195]  ? __ia32_sys_shutdown+0x70/0x70
[ 1239.688775][ T6195]  ? __lock_acquire+0x1655/0x5470
[ 1239.693845][ T6195]  ___sys_recvmsg+0xd5/0x200
[ 1239.698469][ T6195]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1239.704141][ T6195]  ? check_path.constprop.0+0x50/0x50
[ 1239.709544][ T6195]  ? find_held_lock+0x2d/0x110
[ 1239.714323][ T6195]  ? __might_fault+0xd1/0x170
[ 1239.719028][ T6195]  ? lock_downgrade+0x6e0/0x6e0
[ 1239.723913][ T6195]  do_recvmmsg+0x24d/0x6d0
[ 1239.728364][ T6195]  ? ___sys_recvmsg+0x200/0x200
[ 1239.733235][ T6195]  ? check_path.constprop.0+0x50/0x50
[ 1239.738636][ T6195]  ? __context_tracking_exit+0xb8/0xe0
[ 1239.744131][ T6195]  ? lock_downgrade+0x6e0/0x6e0
[ 1239.749014][ T6195]  ? lock_downgrade+0x6e0/0x6e0
[ 1239.753894][ T6195]  __x64_sys_recvmmsg+0x20b/0x260
[ 1239.758946][ T6195]  ? __do_sys_socketcall+0x590/0x590
[ 1239.764253][ T6195]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1239.770178][ T6195]  do_syscall_64+0x35/0xb0
[ 1239.774619][ T6195]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1239.780534][ T6195] RIP: 0033:0x7f688ab57e99
[ 1239.784973][ T6195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1239.804606][ T6195] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1239.813044][ T6195] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1239.821028][ T6195] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1239.829015][ T6195] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1239.837003][ T6195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1239.845257][ T6195] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1239.853267][ T6195]  </TASK>
03:15:43 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 29)

03:15:43 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:43 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0xb, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:43 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xeffdffff)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:43 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800050007000000140004"], 0x58}}, 0x0)

03:15:43 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x10, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:43 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:43 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xfffffdef)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:43 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc000800050007000000140004"], 0x58}}, 0x0)

03:15:43 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x21, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:43 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:43 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xffffff7f)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1240.153069][ T6228] nla_validate_range_unsigned: 10 callbacks suppressed
[ 1240.153087][ T6228] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1240.202696][ T6235] FAULT_INJECTION: forcing a failure.
[ 1240.202696][ T6235] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1240.221801][ T6235] CPU: 1 PID: 6235 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1240.231321][ T6235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1240.241922][ T6235] Call Trace:
[ 1240.245205][ T6235]  <TASK>
[ 1240.248131][ T6235]  dump_stack_lvl+0xcd/0x134
[ 1240.252735][ T6235]  should_fail.cold+0x5/0xa
[ 1240.257466][ T6235]  _copy_from_user+0x2c/0x180
[ 1240.262170][ T6235]  __copy_msghdr_from_user+0x91/0x4b0
[ 1240.267685][ T6235]  ? __ia32_sys_shutdown+0x70/0x70
[ 1240.272815][ T6235]  ? __lock_acquire+0x1655/0x5470
[ 1240.278258][ T6235]  ___sys_recvmsg+0xd5/0x200
[ 1240.282974][ T6235]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1240.288637][ T6235]  ? check_path.constprop.0+0x50/0x50
[ 1240.294129][ T6235]  ? find_held_lock+0x2d/0x110
[ 1240.298923][ T6235]  ? __might_fault+0xd1/0x170
[ 1240.303609][ T6235]  ? lock_downgrade+0x6e0/0x6e0
[ 1240.308481][ T6235]  do_recvmmsg+0x24d/0x6d0
[ 1240.312913][ T6235]  ? ___sys_recvmsg+0x200/0x200
[ 1240.317788][ T6235]  ? check_path.constprop.0+0x50/0x50
[ 1240.323199][ T6235]  ? __context_tracking_exit+0xb8/0xe0
[ 1240.328682][ T6235]  ? lock_downgrade+0x6e0/0x6e0
[ 1240.333555][ T6235]  ? lock_downgrade+0x6e0/0x6e0
[ 1240.338433][ T6235]  __x64_sys_recvmmsg+0x20b/0x260
[ 1240.343490][ T6235]  ? __do_sys_socketcall+0x590/0x590
[ 1240.348806][ T6235]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1240.354740][ T6235]  do_syscall_64+0x35/0xb0
[ 1240.359184][ T6235]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1240.365189][ T6235] RIP: 0033:0x7f688ab57e99
[ 1240.369620][ T6235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1240.389511][ T6235] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
03:15:43 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 30)

03:15:43 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB, @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:43 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x4000000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:43 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x24, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1240.397950][ T6235] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1240.405943][ T6235] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1240.414018][ T6235] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1240.422003][ T6235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1240.429988][ T6235] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1240.438075][ T6235]  </TASK>
03:15:43 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:43 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:43 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB, @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1240.498527][ T6242] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
03:15:43 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:43 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB, @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1240.602568][ T6248] FAULT_INJECTION: forcing a failure.
[ 1240.602568][ T6248] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1240.631307][ T6248] CPU: 0 PID: 6248 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1240.640146][ T6248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1240.650217][ T6248] Call Trace:
[ 1240.653501][ T6248]  <TASK>
[ 1240.656434][ T6248]  dump_stack_lvl+0xcd/0x134
[ 1240.661133][ T6248]  should_fail.cold+0x5/0xa
[ 1240.665666][ T6248]  _copy_from_user+0x2c/0x180
[ 1240.670380][ T6248]  __copy_msghdr_from_user+0x91/0x4b0
[ 1240.675885][ T6248]  ? __ia32_sys_shutdown+0x70/0x70
[ 1240.681045][ T6248]  ? __lock_acquire+0x1655/0x5470
[ 1240.686125][ T6248]  ___sys_recvmsg+0xd5/0x200
[ 1240.690757][ T6248]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1240.696439][ T6248]  ? check_path.constprop.0+0x50/0x50
03:15:43 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:43 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x40030000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1240.701869][ T6248]  ? irqentry_enter+0x28/0x50
[ 1240.706576][ T6248]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1240.712749][ T6248]  ? lockdep_hardirqs_on+0x79/0x100
[ 1240.717978][ T6248]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1240.724172][ T6248]  do_recvmmsg+0x24d/0x6d0
[ 1240.728615][ T6248]  ? ___sys_recvmsg+0x200/0x200
[ 1240.733496][ T6248]  ? check_path.constprop.0+0x50/0x50
[ 1240.738910][ T6248]  ? irqentry_enter+0x29/0x50
[ 1240.743618][ T6248]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1240.749822][ T6248]  __x64_sys_recvmmsg+0x20b/0x260
[ 1240.754896][ T6248]  ? __do_sys_socketcall+0x590/0x590
[ 1240.760218][ T6248]  ? syscall_enter_from_user_mode+0x2b/0x70
[ 1240.766147][ T6248]  do_syscall_64+0x35/0xb0
[ 1240.770597][ T6248]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1240.776532][ T6248] RIP: 0033:0x7f688ab57e99
[ 1240.781000][ T6248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1240.800629][ T6248] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1240.809072][ T6248] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1240.817071][ T6248] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1240.825104][ T6248] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1240.833107][ T6248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1240.841094][ T6248] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1240.849098][ T6248]  </TASK>
03:15:44 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:44 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 31)

03:15:44 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x47, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1240.862661][ T6257] net_ratelimit: 6 callbacks suppressed
[ 1240.862678][ T6257] dccp_invalid_packet: pskb_may_pull failed
03:15:44 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:44 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:44 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:44 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x100000000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1240.981655][ T6266] FAULT_INJECTION: forcing a failure.
[ 1240.981655][ T6266] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:44 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB], 0x58}}, 0x0)

03:15:44 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1241.045627][ T6276] dccp_invalid_packet: P.Data Offset(4) too small
[ 1241.074411][ T6266] CPU: 1 PID: 6266 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1241.083164][ T6266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1241.093243][ T6266] Call Trace:
[ 1241.096529][ T6266]  <TASK>
[ 1241.099458][ T6266]  dump_stack_lvl+0xcd/0x134
[ 1241.104156][ T6266]  should_fail.cold+0x5/0xa
[ 1241.108676][ T6266]  _copy_from_user+0x2c/0x180
[ 1241.113370][ T6266]  __copy_msghdr_from_user+0x91/0x4b0
[ 1241.118749][ T6266]  ? __ia32_sys_shutdown+0x70/0x70
[ 1241.123869][ T6266]  ? __lock_acquire+0x1655/0x5470
[ 1241.128900][ T6266]  ___sys_recvmsg+0xd5/0x200
[ 1241.133479][ T6266]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1241.139121][ T6266]  ? check_path.constprop.0+0x50/0x50
[ 1241.144492][ T6266]  ? find_held_lock+0x2d/0x110
[ 1241.149249][ T6266]  ? __might_fault+0xd1/0x170
[ 1241.153919][ T6266]  ? lock_downgrade+0x6e0/0x6e0
[ 1241.158772][ T6266]  do_recvmmsg+0x24d/0x6d0
[ 1241.163268][ T6266]  ? ___sys_recvmsg+0x200/0x200
[ 1241.168110][ T6266]  ? check_path.constprop.0+0x50/0x50
[ 1241.173485][ T6266]  ? __context_tracking_exit+0xb8/0xe0
[ 1241.178940][ T6266]  ? lock_downgrade+0x6e0/0x6e0
[ 1241.183788][ T6266]  ? lock_downgrade+0x6e0/0x6e0
[ 1241.188718][ T6266]  __x64_sys_recvmmsg+0x20b/0x260
[ 1241.193738][ T6266]  ? __do_sys_socketcall+0x590/0x590
[ 1241.199014][ T6266]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1241.204905][ T6266]  do_syscall_64+0x35/0xb0
[ 1241.209311][ T6266]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1241.215206][ T6266] RIP: 0033:0x7f688ab57e99
[ 1241.219611][ T6266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
03:15:44 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f00000000c0))
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
ioctl$INCFS_IOC_FILL_BLOCKS(r1, 0x80106720, &(0x7f0000000280)={0x3, &(0x7f0000000340)=[{0x7fff, 0x8c, &(0x7f0000000100)="4b1b07e475b04bc5ad46941f82e99b4bc79251ce15885de835b297c37f45f57ca330aefccc040bd28ced3ed0e97c97c59fdfbe08ecb050eb54862a3c4ce6c312a1eeec0b61470758304ba75a4afbb3bb340a4b037338c572b025326bec45f38c5681b2b05718e1ecdd993e80513eddfd8a1b3afcf3b6d8651b7622101e0bd0f7be4610eb2552aa9dc1051326", 0x1}, {0x200, 0x24, &(0x7f00000001c0)="538c649b71a6dd32bfee48b1d3f52859a1905d86a95a8441c1365b304d96655bd9d504cd", 0x1}, {0x1f, 0x1, &(0x7f0000000200)='S', 0x1, 0x1}]})
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
openat$null(0xffffffffffffff9c, &(0x7f0000000400), 0x40000, 0x0)
r4 = openat$mice(0xffffffffffffff9c, &(0x7f0000000480), 0x408502)
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(r0, 0xc00864c0, &(0x7f0000000500)={<r5=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r4, 0xc02064c3, &(0x7f0000000580)={&(0x7f0000000540)=[r5], 0xfffffffffffff800, 0x1, 0x6})
r6 = eventfd2(0xffffffff, 0x80001)
poll(&(0x7f0000000440)=[{r2, 0xc1a2}, {r6}], 0x2, 0x2)
bind$802154_dgram(r1, &(0x7f0000000080)={0x24, @none={0x0, 0x1}}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:44 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x2, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1241.239303][ T6266] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1241.247717][ T6266] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1241.255766][ T6266] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1241.263728][ T6266] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1241.271772][ T6266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1241.279729][ T6266] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1241.287718][ T6266]  </TASK>
03:15:44 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 32)

[ 1241.312116][ T6284] __nla_validate_parse: 2 callbacks suppressed
[ 1241.312137][ T6284] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1241.347478][ T6289] dccp_invalid_packet: P.Data Offset(4) too small
03:15:44 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x200000000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:44 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:44 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB], 0x58}}, 0x0)

[ 1241.368385][ T6279] Unsupported ieee802154 address type: 0
[ 1241.387528][ T6288] udevd[6288]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
03:15:44 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f00000000c0)) (async)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
ioctl$INCFS_IOC_FILL_BLOCKS(r1, 0x80106720, &(0x7f0000000280)={0x3, &(0x7f0000000340)=[{0x7fff, 0x8c, &(0x7f0000000100)="4b1b07e475b04bc5ad46941f82e99b4bc79251ce15885de835b297c37f45f57ca330aefccc040bd28ced3ed0e97c97c59fdfbe08ecb050eb54862a3c4ce6c312a1eeec0b61470758304ba75a4afbb3bb340a4b037338c572b025326bec45f38c5681b2b05718e1ecdd993e80513eddfd8a1b3afcf3b6d8651b7622101e0bd0f7be4610eb2552aa9dc1051326", 0x1}, {0x200, 0x24, &(0x7f00000001c0)="538c649b71a6dd32bfee48b1d3f52859a1905d86a95a8441c1365b304d96655bd9d504cd", 0x1}, {0x1f, 0x1, &(0x7f0000000200)='S', 0x1, 0x1}]}) (async)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000400), 0x40000, 0x0) (async)
r4 = openat$mice(0xffffffffffffff9c, &(0x7f0000000480), 0x408502) (async)
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(r0, 0xc00864c0, &(0x7f0000000500)={<r5=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r4, 0xc02064c3, &(0x7f0000000580)={&(0x7f0000000540)=[r5], 0xfffffffffffff800, 0x1, 0x6}) (async)
r6 = eventfd2(0xffffffff, 0x80001)
poll(&(0x7f0000000440)=[{r2, 0xc1a2}, {r6}], 0x2, 0x2)
bind$802154_dgram(r1, &(0x7f0000000080)={0x24, @none={0x0, 0x1}}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:44 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x3, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:44 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1241.443898][ T6293] FAULT_INJECTION: forcing a failure.
[ 1241.443898][ T6293] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1241.485573][ T6295] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1241.499998][ T6293] CPU: 0 PID: 6293 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1241.508747][ T6293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1241.512260][ T6302] Unsupported ieee802154 address type: 0
[ 1241.518861][ T6293] Call Trace:
[ 1241.518875][ T6293]  <TASK>
[ 1241.518885][ T6293]  dump_stack_lvl+0xcd/0x134
[ 1241.518919][ T6293]  should_fail.cold+0x5/0xa
[ 1241.518944][ T6293]  _copy_from_user+0x2c/0x180
[ 1241.518972][ T6293]  __copy_msghdr_from_user+0x91/0x4b0
[ 1241.518996][ T6293]  ? __ia32_sys_shutdown+0x70/0x70
[ 1241.519016][ T6293]  ? __lock_acquire+0x1655/0x5470
[ 1241.519049][ T6293]  ___sys_recvmsg+0xd5/0x200
[ 1241.519071][ T6293]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1241.519095][ T6293]  ? check_path.constprop.0+0x50/0x50
[ 1241.519126][ T6293]  ? find_held_lock+0x2d/0x110
[ 1241.580389][ T6293]  ? __might_fault+0xd1/0x170
[ 1241.585079][ T6293]  ? lock_downgrade+0x6e0/0x6e0
[ 1241.589946][ T6293]  do_recvmmsg+0x24d/0x6d0
[ 1241.594367][ T6293]  ? ___sys_recvmsg+0x200/0x200
[ 1241.599213][ T6293]  ? check_path.constprop.0+0x50/0x50
[ 1241.604588][ T6293]  ? irqentry_enter+0x29/0x50
[ 1241.609264][ T6293]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1241.615431][ T6293]  __x64_sys_recvmmsg+0x20b/0x260
[ 1241.620463][ T6293]  ? __do_sys_socketcall+0x590/0x590
[ 1241.625743][ T6293]  ? syscall_enter_from_user_mode+0x2b/0x70
[ 1241.631637][ T6293]  do_syscall_64+0x35/0xb0
[ 1241.636046][ T6293]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1241.641942][ T6293] RIP: 0033:0x7f688ab57e99
[ 1241.646349][ T6293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1241.665964][ T6293] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1241.674381][ T6293] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1241.682430][ T6293] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1241.690390][ T6293] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1241.698441][ T6293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1241.706404][ T6293] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1241.714389][ T6293]  </TASK>
03:15:44 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB], 0x58}}, 0x0)

03:15:44 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x400000000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1241.736379][ T6305] dccp_invalid_packet: P.Data Offset(4) too small
03:15:44 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 33)

03:15:44 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x4, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:44 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:44 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f00000000c0))
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
ioctl$INCFS_IOC_FILL_BLOCKS(r1, 0x80106720, &(0x7f0000000280)={0x3, &(0x7f0000000340)=[{0x7fff, 0x8c, &(0x7f0000000100)="4b1b07e475b04bc5ad46941f82e99b4bc79251ce15885de835b297c37f45f57ca330aefccc040bd28ced3ed0e97c97c59fdfbe08ecb050eb54862a3c4ce6c312a1eeec0b61470758304ba75a4afbb3bb340a4b037338c572b025326bec45f38c5681b2b05718e1ecdd993e80513eddfd8a1b3afcf3b6d8651b7622101e0bd0f7be4610eb2552aa9dc1051326", 0x1}, {0x200, 0x24, &(0x7f00000001c0)="538c649b71a6dd32bfee48b1d3f52859a1905d86a95a8441c1365b304d96655bd9d504cd", 0x1}, {0x1f, 0x1, &(0x7f0000000200)='S', 0x1, 0x1}]})
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
openat$null(0xffffffffffffff9c, &(0x7f0000000400), 0x40000, 0x0)
r4 = openat$mice(0xffffffffffffff9c, &(0x7f0000000480), 0x408502)
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(r0, 0xc00864c0, &(0x7f0000000500)={<r5=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r4, 0xc02064c3, &(0x7f0000000580)={&(0x7f0000000540)=[r5], 0xfffffffffffff800, 0x1, 0x6})
r6 = eventfd2(0xffffffff, 0x80001)
poll(&(0x7f0000000440)=[{r2, 0xc1a2}, {r6}], 0x2, 0x2)
bind$802154_dgram(r1, &(0x7f0000000080)={0x24, @none={0x0, 0x1}}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async)
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f00000000c0)) (async)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
ioctl$INCFS_IOC_FILL_BLOCKS(r1, 0x80106720, &(0x7f0000000280)={0x3, &(0x7f0000000340)=[{0x7fff, 0x8c, &(0x7f0000000100)="4b1b07e475b04bc5ad46941f82e99b4bc79251ce15885de835b297c37f45f57ca330aefccc040bd28ced3ed0e97c97c59fdfbe08ecb050eb54862a3c4ce6c312a1eeec0b61470758304ba75a4afbb3bb340a4b037338c572b025326bec45f38c5681b2b05718e1ecdd993e80513eddfd8a1b3afcf3b6d8651b7622101e0bd0f7be4610eb2552aa9dc1051326", 0x1}, {0x200, 0x24, &(0x7f00000001c0)="538c649b71a6dd32bfee48b1d3f52859a1905d86a95a8441c1365b304d96655bd9d504cd", 0x1}, {0x1f, 0x1, &(0x7f0000000200)='S', 0x1, 0x1}]}) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000400), 0x40000, 0x0) (async)
openat$mice(0xffffffffffffff9c, &(0x7f0000000480), 0x408502) (async)
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(r0, 0xc00864c0, &(0x7f0000000500)) (async)
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r4, 0xc02064c3, &(0x7f0000000580)={&(0x7f0000000540)=[r5], 0xfffffffffffff800, 0x1, 0x6}) (async)
eventfd2(0xffffffff, 0x80001) (async)
poll(&(0x7f0000000440)=[{r2, 0xc1a2}, {r6}], 0x2, 0x2) (async)
bind$802154_dgram(r1, &(0x7f0000000080)={0x24, @none={0x0, 0x1}}, 0x14) (async)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0) (async)

[ 1241.785501][ T6309] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
03:15:45 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB], 0x58}}, 0x0)

03:15:45 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff00070000000800", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1241.861582][ T6317] FAULT_INJECTION: forcing a failure.
[ 1241.861582][ T6317] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1241.865505][ T6319] dccp_invalid_packet: P.Data Offset(4) too small
[ 1241.885779][ T6317] CPU: 1 PID: 6317 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1241.894591][ T6317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1241.904654][ T6317] Call Trace:
[ 1241.907933][ T6317]  <TASK>
03:15:45 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x5, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:45 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff00070000000800", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1241.910867][ T6317]  dump_stack_lvl+0xcd/0x134
[ 1241.915473][ T6317]  should_fail.cold+0x5/0xa
[ 1241.920164][ T6317]  _copy_from_user+0x2c/0x180
[ 1241.924864][ T6317]  __copy_msghdr_from_user+0x91/0x4b0
[ 1241.930245][ T6317]  ? __ia32_sys_shutdown+0x70/0x70
[ 1241.935371][ T6317]  ? __lock_acquire+0x1655/0x5470
[ 1241.940425][ T6317]  ___sys_recvmsg+0xd5/0x200
[ 1241.945027][ T6317]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1241.950666][ T6317]  ? check_path.constprop.0+0x50/0x50
[ 1241.956227][ T6317]  ? find_held_lock+0x2d/0x110
03:15:45 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff00070000000800", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1241.961018][ T6317]  ? __might_fault+0xd1/0x170
[ 1241.965725][ T6317]  ? lock_downgrade+0x6e0/0x6e0
[ 1241.967388][ T6327] dccp_invalid_packet: P.Data Offset(4) too small
[ 1241.970609][ T6317]  do_recvmmsg+0x24d/0x6d0
[ 1241.981465][ T6317]  ? ___sys_recvmsg+0x200/0x200
[ 1241.986350][ T6317]  ? check_path.constprop.0+0x50/0x50
[ 1241.991945][ T6317]  ? __context_tracking_exit+0xb8/0xe0
[ 1241.997440][ T6317]  ? lock_downgrade+0x6e0/0x6e0
[ 1242.002325][ T6317]  ? lock_downgrade+0x6e0/0x6e0
[ 1242.007207][ T6317]  __x64_sys_recvmmsg+0x20b/0x260
03:15:45 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x6, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1242.012256][ T6317]  ? __do_sys_socketcall+0x590/0x590
[ 1242.017671][ T6317]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1242.023589][ T6317]  do_syscall_64+0x35/0xb0
[ 1242.028011][ T6317]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1242.033918][ T6317] RIP: 0033:0x7f688ab57e99
[ 1242.038352][ T6317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1242.040685][ T6334] dccp_invalid_packet: P.Data Offset(4) too small
[ 1242.057983][ T6317] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1242.058017][ T6317] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1242.058030][ T6317] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1242.058044][ T6317] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1242.058058][ T6317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
03:15:45 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000080003", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1242.058071][ T6317] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1242.058101][ T6317]  </TASK>
03:15:45 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x700000000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:45 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x7, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:45 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB], 0x58}}, 0x0)

03:15:45 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 34)

[ 1242.172904][ T6336] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1242.228413][ T6320] Unsupported ieee802154 address type: 0
[ 1242.248457][ T6344] dccp_invalid_packet: P.Data Offset(4) too small
[ 1242.258296][ T6339] FAULT_INJECTION: forcing a failure.
[ 1242.258296][ T6339] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1242.286741][ T6339] CPU: 0 PID: 6339 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1242.295581][ T6339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1242.306009][ T6339] Call Trace:
[ 1242.309300][ T6339]  <TASK>
[ 1242.312243][ T6339]  dump_stack_lvl+0xcd/0x134
[ 1242.317128][ T6339]  should_fail.cold+0x5/0xa
[ 1242.321658][ T6339]  _copy_from_user+0x2c/0x180
[ 1242.326357][ T6339]  __copy_msghdr_from_user+0x91/0x4b0
[ 1242.331730][ T6339]  ? __ia32_sys_shutdown+0x70/0x70
[ 1242.337011][ T6339]  ? __lock_acquire+0x1655/0x5470
[ 1242.342129][ T6339]  ___sys_recvmsg+0xd5/0x200
[ 1242.346711][ T6339]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1242.352353][ T6339]  ? check_path.constprop.0+0x50/0x50
[ 1242.357748][ T6339]  ? find_held_lock+0x2d/0x110
[ 1242.362511][ T6339]  ? __might_fault+0xd1/0x170
[ 1242.367297][ T6339]  ? lock_downgrade+0x6e0/0x6e0
[ 1242.372240][ T6339]  do_recvmmsg+0x24d/0x6d0
[ 1242.376750][ T6339]  ? ___sys_recvmsg+0x200/0x200
[ 1242.382063][ T6339]  ? check_path.constprop.0+0x50/0x50
[ 1242.387542][ T6339]  ? irqentry_enter+0x29/0x50
[ 1242.392760][ T6339]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1242.398925][ T6339]  __x64_sys_recvmmsg+0x20b/0x260
[ 1242.403967][ T6339]  ? __do_sys_socketcall+0x590/0x590
[ 1242.409283][ T6339]  ? syscall_enter_from_user_mode+0x2b/0x70
[ 1242.415209][ T6339]  do_syscall_64+0x35/0xb0
[ 1242.419650][ T6339]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1242.425599][ T6339] RIP: 0033:0x7f688ab57e99
[ 1242.430076][ T6339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1242.449937][ T6339] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1242.458382][ T6339] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1242.466594][ T6339] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1242.475366][ T6339] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:45 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB], 0x58}}, 0x0)

03:15:45 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000080003", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:45 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x8, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1242.483807][ T6339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1242.492024][ T6339] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1242.500206][ T6339]  </TASK>
03:15:45 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xa00000000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:45 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000140)={'ipvlan1\x00', {0x2, 0x0, @private}})
getsockopt$netrom_NETROM_N2(r0, 0x103, 0x3, &(0x7f0000000080)=0x2, &(0x7f00000000c0)=0x4)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
r4 = syz_mount_image$nilfs2(&(0x7f0000000380), &(0x7f0000000400)='./file0\x00', 0x9, 0x2, &(0x7f0000000480)=[{&(0x7f0000000440)="f330ed", 0x3, 0x8}, {&(0x7f0000000500)="df97ac4e2f84a6dae3e11a0987de3aebbfb609e2b1da7dfe0c19c9c00a649a7a0edd3e82bbd0620b1eca9c47f695083c758b94173aa1623b14f6ee8432eee0ad9dab815a4a255db9ea09a81f9d4b1e47507f79ee2ca801e22ef465eb69448708c6ee0188904879a1d6566e017008dbb8ec5fc7642c9df02b6361065f018fcef2d1b98dd865c2df18434d51b96dce522ade51823bca676d4c92deb905d5394e98ca850199f65db9ba452b8193a05416", 0xaf}], 0x0, &(0x7f00000005c0)={[{@nodiscard}, {@discard}, {@order_relaxed}, {@nobarrier}, {@discard}], [{@smackfshat={'smackfshat', 0x3d, 'memory.numa_stat\x00'}}, {@obj_role={'obj_role', 0x3d, 'rpc_clnt_new_err\x00'}}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@appraise}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}]})
mmap(&(0x7f0000ffa000/0x5000)=nil, 0x5000, 0x2, 0x13, r4, 0x41afc000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r3}, 0x10)
ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x9)
ioctl$DRM_IOCTL_GET_CLIENT(r3, 0xc0286405, &(0x7f0000000280)={0x1, 0x10001, {<r5=>0x0}, {0xee00}, 0x0, 0x2})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000102000018000000", @ANYRES32=<r6=>r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x8, 0x3, 0x7f, 0x80, 0x0, 0x6, 0x82300, 0x19, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_bp={&(0x7f0000000180), 0xf}, 0x4, 0x3ff, 0xaa7, 0x0, 0x91, 0x8000, 0x218, 0x0, 0x7b, 0x0, 0x8000}, r5, 0x3, r6, 0x1)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
write$cgroup_int(r3, &(0x7f0000000100)=0xffffffff, 0x12)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r2, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:45 executing program 0:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB], 0x58}}, 0x0)

03:15:45 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 35)

03:15:45 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000080003", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1242.528514][ T6363] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1242.543265][ T6365] dccp_invalid_packet: P.Data Offset(4) too small
03:15:45 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0xb, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:45 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x10, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:45 executing program 0:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB], 0x58}}, 0x0)

03:15:45 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000140)={'ipvlan1\x00', {0x2, 0x0, @private}}) (async)
getsockopt$netrom_NETROM_N2(r0, 0x103, 0x3, &(0x7f0000000080)=0x2, &(0x7f00000000c0)=0x4)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async, rerun: 64)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async, rerun: 64)
r4 = syz_mount_image$nilfs2(&(0x7f0000000380), &(0x7f0000000400)='./file0\x00', 0x9, 0x2, &(0x7f0000000480)=[{&(0x7f0000000440)="f330ed", 0x3, 0x8}, {&(0x7f0000000500)="df97ac4e2f84a6dae3e11a0987de3aebbfb609e2b1da7dfe0c19c9c00a649a7a0edd3e82bbd0620b1eca9c47f695083c758b94173aa1623b14f6ee8432eee0ad9dab815a4a255db9ea09a81f9d4b1e47507f79ee2ca801e22ef465eb69448708c6ee0188904879a1d6566e017008dbb8ec5fc7642c9df02b6361065f018fcef2d1b98dd865c2df18434d51b96dce522ade51823bca676d4c92deb905d5394e98ca850199f65db9ba452b8193a05416", 0xaf}], 0x0, &(0x7f00000005c0)={[{@nodiscard}, {@discard}, {@order_relaxed}, {@nobarrier}, {@discard}], [{@smackfshat={'smackfshat', 0x3d, 'memory.numa_stat\x00'}}, {@obj_role={'obj_role', 0x3d, 'rpc_clnt_new_err\x00'}}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@appraise}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}]})
mmap(&(0x7f0000ffa000/0x5000)=nil, 0x5000, 0x2, 0x13, r4, 0x41afc000) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r3}, 0x10)
ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x9) (async, rerun: 64)
ioctl$DRM_IOCTL_GET_CLIENT(r3, 0xc0286405, &(0x7f0000000280)={0x1, 0x10001, {<r5=>0x0}, {0xee00}, 0x0, 0x2}) (rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000102000018000000", @ANYRES32=<r6=>r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) (async, rerun: 32)
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x8, 0x3, 0x7f, 0x80, 0x0, 0x6, 0x82300, 0x19, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_bp={&(0x7f0000000180), 0xf}, 0x4, 0x3ff, 0xaa7, 0x0, 0x91, 0x8000, 0x218, 0x0, 0x7b, 0x0, 0x8000}, r5, 0x3, r6, 0x1) (rerun: 32)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
write$cgroup_int(r3, &(0x7f0000000100)=0xffffffff, 0x12) (async)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmmsg$sock(r2, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:45 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1242.626588][ T6372] FAULT_INJECTION: forcing a failure.
[ 1242.626588][ T6372] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1242.633799][ T6375] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1242.656260][ T6378] dccp_invalid_packet: P.Data Offset(4) too small
03:15:45 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x21, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:45 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1242.742145][ T6372] CPU: 1 PID: 6372 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1242.750906][ T6372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1242.761075][ T6372] Call Trace:
[ 1242.764465][ T6372]  <TASK>
[ 1242.767519][ T6372]  dump_stack_lvl+0xcd/0x134
[ 1242.772143][ T6372]  should_fail.cold+0x5/0xa
[ 1242.776685][ T6372]  _copy_from_user+0x2c/0x180
[ 1242.781446][ T6372]  __copy_msghdr_from_user+0x91/0x4b0
[ 1242.787211][ T6372]  ? __ia32_sys_shutdown+0x70/0x70
[ 1242.792374][ T6372]  ? __lock_acquire+0x1655/0x5470
[ 1242.797449][ T6372]  ___sys_recvmsg+0xd5/0x200
[ 1242.802081][ T6372]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1242.807760][ T6372]  ? check_path.constprop.0+0x50/0x50
[ 1242.813194][ T6372]  ? find_held_lock+0x2d/0x110
[ 1242.818007][ T6372]  ? __might_fault+0xd1/0x170
[ 1242.822729][ T6372]  ? lock_downgrade+0x6e0/0x6e0
[ 1242.827635][ T6372]  do_recvmmsg+0x24d/0x6d0
[ 1242.832088][ T6372]  ? ___sys_recvmsg+0x200/0x200
[ 1242.837054][ T6372]  ? check_path.constprop.0+0x50/0x50
[ 1242.842475][ T6372]  ? __context_tracking_exit+0xb8/0xe0
[ 1242.847976][ T6372]  ? lock_downgrade+0x6e0/0x6e0
[ 1242.852868][ T6372]  ? lock_downgrade+0x6e0/0x6e0
[ 1242.857741][ T6372]  __x64_sys_recvmmsg+0x20b/0x260
[ 1242.862784][ T6372]  ? __do_sys_socketcall+0x590/0x590
[ 1242.868378][ T6372]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1242.874320][ T6372]  do_syscall_64+0x35/0xb0
[ 1242.879101][ T6372]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1242.885129][ T6372] RIP: 0033:0x7f688ab57e99
[ 1242.890228][ T6372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1242.909848][ T6372] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1242.918449][ T6372] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1242.926606][ T6372] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1242.934697][ T6372] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:46 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x1100000000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:46 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x24, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:46 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1242.942681][ T6372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1242.950660][ T6372] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1242.958657][ T6372]  </TASK>
03:15:46 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 36)

03:15:46 executing program 0:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB], 0x58}}, 0x0)

03:15:46 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x48, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:46 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:46 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:46 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r0}, 0x10) (async, rerun: 64)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000140)={'ipvlan1\x00', {0x2, 0x0, @private}}) (rerun: 64)
getsockopt$netrom_NETROM_N2(r0, 0x103, 0x3, &(0x7f0000000080)=0x2, &(0x7f00000000c0)=0x4) (async, rerun: 64)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 64)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (async, rerun: 64)
r4 = syz_mount_image$nilfs2(&(0x7f0000000380), &(0x7f0000000400)='./file0\x00', 0x9, 0x2, &(0x7f0000000480)=[{&(0x7f0000000440)="f330ed", 0x3, 0x8}, {&(0x7f0000000500)="df97ac4e2f84a6dae3e11a0987de3aebbfb609e2b1da7dfe0c19c9c00a649a7a0edd3e82bbd0620b1eca9c47f695083c758b94173aa1623b14f6ee8432eee0ad9dab815a4a255db9ea09a81f9d4b1e47507f79ee2ca801e22ef465eb69448708c6ee0188904879a1d6566e017008dbb8ec5fc7642c9df02b6361065f018fcef2d1b98dd865c2df18434d51b96dce522ade51823bca676d4c92deb905d5394e98ca850199f65db9ba452b8193a05416", 0xaf}], 0x0, &(0x7f00000005c0)={[{@nodiscard}, {@discard}, {@order_relaxed}, {@nobarrier}, {@discard}], [{@smackfshat={'smackfshat', 0x3d, 'memory.numa_stat\x00'}}, {@obj_role={'obj_role', 0x3d, 'rpc_clnt_new_err\x00'}}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@appraise}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}]}) (rerun: 64)
mmap(&(0x7f0000ffa000/0x5000)=nil, 0x5000, 0x2, 0x13, r4, 0x41afc000) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r3}, 0x10) (async, rerun: 64)
ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x9) (async)
ioctl$DRM_IOCTL_GET_CLIENT(r3, 0xc0286405, &(0x7f0000000280)={0x1, 0x10001, {<r5=>0x0}, {0xee00}, 0x0, 0x2}) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000102000018000000", @ANYRES32=<r6=>r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x8, 0x3, 0x7f, 0x80, 0x0, 0x6, 0x82300, 0x19, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_bp={&(0x7f0000000180), 0xf}, 0x4, 0x3ff, 0xaa7, 0x0, 0x91, 0x8000, 0x218, 0x0, 0x7b, 0x0, 0x8000}, r5, 0x3, r6, 0x1) (async)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) (async)
write$cgroup_int(r3, &(0x7f0000000100)=0xffffffff, 0x12)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14) (async)
sendmmsg$sock(r2, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:46 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x4c, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1243.096985][ T6404] FAULT_INJECTION: forcing a failure.
[ 1243.096985][ T6404] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1243.136117][ T6404] CPU: 0 PID: 6404 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1243.145051][ T6404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1243.155303][ T6404] Call Trace:
[ 1243.158584][ T6404]  <TASK>
[ 1243.161513][ T6404]  dump_stack_lvl+0xcd/0x134
[ 1243.166124][ T6404]  should_fail.cold+0x5/0xa
[ 1243.170652][ T6404]  _copy_from_user+0x2c/0x180
[ 1243.175364][ T6404]  __copy_msghdr_from_user+0x91/0x4b0
[ 1243.180753][ T6404]  ? __ia32_sys_shutdown+0x70/0x70
[ 1243.185885][ T6404]  ? __lock_acquire+0x1655/0x5470
[ 1243.190944][ T6404]  ___sys_recvmsg+0xd5/0x200
[ 1243.195556][ T6404]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1243.201308][ T6404]  ? check_path.constprop.0+0x50/0x50
[ 1243.206894][ T6404]  ? find_held_lock+0x2d/0x110
[ 1243.211697][ T6404]  ? __might_fault+0xd1/0x170
[ 1243.216390][ T6404]  ? lock_downgrade+0x6e0/0x6e0
[ 1243.221268][ T6404]  do_recvmmsg+0x24d/0x6d0
[ 1243.225705][ T6404]  ? ___sys_recvmsg+0x200/0x200
[ 1243.230896][ T6404]  ? check_path.constprop.0+0x50/0x50
[ 1243.236641][ T6404]  ? __context_tracking_exit+0xb8/0xe0
[ 1243.242108][ T6404]  ? lock_downgrade+0x6e0/0x6e0
[ 1243.246963][ T6404]  __x64_sys_recvmmsg+0x20b/0x260
[ 1243.251988][ T6404]  ? __do_sys_socketcall+0x590/0x590
[ 1243.257354][ T6404]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1243.263250][ T6404]  do_syscall_64+0x35/0xb0
[ 1243.267660][ T6404]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1243.273646][ T6404] RIP: 0033:0x7f688ab57e99
[ 1243.278058][ T6404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1243.297838][ T6404] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1243.306266][ T6404] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1243.314226][ T6404] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1243.322187][ T6404] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1243.330235][ T6404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1243.338194][ T6404] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
03:15:46 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:46 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

[ 1243.346173][ T6404]  </TASK>
03:15:46 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x1703000000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:46 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:46 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 37)

03:15:46 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x60, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:46 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:46 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r2 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r2, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r4, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r4, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50)
getsockopt$sock_buf(r1, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9, 0x1, 0x80, 0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x80000001}, 0x18710, 0x101, 0x7ff, 0xefec69312eecb9c4, 0x1ff, 0x6, 0xa034, 0x0, 0x9, 0x0, 0x80000001}, 0xffffffffffffffff, 0x7, r0, 0x8)
bind$802154_dgram(r1, &(0x7f00000001c0)={0x24, @long={0x3, 0x1, {0xaaaaaaaaaaaa0302}}}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:46 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x68, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:46 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

[ 1243.478432][ T6428] FAULT_INJECTION: forcing a failure.
[ 1243.478432][ T6428] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1243.544519][ T6428] CPU: 1 PID: 6428 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1243.553382][ T6428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1243.563470][ T6428] Call Trace:
[ 1243.566765][ T6428]  <TASK>
[ 1243.569859][ T6428]  dump_stack_lvl+0xcd/0x134
[ 1243.574564][ T6428]  should_fail.cold+0x5/0xa
[ 1243.579100][ T6428]  _copy_from_user+0x2c/0x180
[ 1243.583803][ T6428]  __copy_msghdr_from_user+0x91/0x4b0
[ 1243.589234][ T6428]  ? __ia32_sys_shutdown+0x70/0x70
[ 1243.595158][ T6428]  ? __lock_acquire+0x1655/0x5470
[ 1243.601163][ T6428]  ___sys_recvmsg+0xd5/0x200
[ 1243.605920][ T6437] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1243.606135][ T6428]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1243.606171][ T6428]  ? check_path.constprop.0+0x50/0x50
[ 1243.626549][ T6428]  ? find_held_lock+0x2d/0x110
[ 1243.631336][ T6428]  ? __might_fault+0xd1/0x170
[ 1243.636118][ T6428]  ? lock_downgrade+0x6e0/0x6e0
[ 1243.640989][ T6428]  do_recvmmsg+0x24d/0x6d0
[ 1243.645651][ T6428]  ? ___sys_recvmsg+0x200/0x200
[ 1243.651225][ T6428]  ? check_path.constprop.0+0x50/0x50
[ 1243.656789][ T6428]  ? __context_tracking_exit+0xb8/0xe0
[ 1243.662627][ T6428]  ? lock_downgrade+0x6e0/0x6e0
[ 1243.667566][ T6428]  ? lock_downgrade+0x6e0/0x6e0
[ 1243.672410][ T6428]  __x64_sys_recvmmsg+0x20b/0x260
[ 1243.677446][ T6428]  ? __do_sys_socketcall+0x590/0x590
[ 1243.682741][ T6428]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1243.688652][ T6428]  do_syscall_64+0x35/0xb0
[ 1243.693055][ T6428]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1243.698939][ T6428] RIP: 0033:0x7f688ab57e99
[ 1243.703341][ T6428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1243.723831][ T6428] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1243.732255][ T6428] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
03:15:46 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:46 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:46 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x6c, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:46 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r2 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r2, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r4, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r4, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50)
getsockopt$sock_buf(r1, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9, 0x1, 0x80, 0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x80000001}, 0x18710, 0x101, 0x7ff, 0xefec69312eecb9c4, 0x1ff, 0x6, 0xa034, 0x0, 0x9, 0x0, 0x80000001}, 0xffffffffffffffff, 0x7, r0, 0x8)
bind$802154_dgram(r1, &(0x7f00000001c0)={0x24, @long={0x3, 0x1, {0xaaaaaaaaaaaa0302}}}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:46 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x803e000000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[ 1243.740216][ T6428] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1243.748180][ T6428] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1243.756152][ T6428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1243.764120][ T6428] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1243.772088][ T6428]  </TASK>
03:15:46 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1243.819429][ T6444] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
03:15:47 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 38)

03:15:47 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r2 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r2, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r4, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r4, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50)
getsockopt$sock_buf(r1, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9, 0x1, 0x80, 0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x80000001}, 0x18710, 0x101, 0x7ff, 0xefec69312eecb9c4, 0x1ff, 0x6, 0xa034, 0x0, 0x9, 0x0, 0x80000001}, 0xffffffffffffffff, 0x7, r0, 0x8)
bind$802154_dgram(r1, &(0x7f00000001c0)={0x24, @long={0x3, 0x1, {0xaaaaaaaaaaaa0302}}}, 0x14)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:47 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x74, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:47 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:47 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:47 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x7a, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:47 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:47 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB], 0x58}}, 0x0)

[ 1243.940363][ T6459] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1243.970556][ T6461] FAULT_INJECTION: forcing a failure.
[ 1243.970556][ T6461] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1243.988018][ T6461] CPU: 0 PID: 6461 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1243.996863][ T6461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1244.006949][ T6461] Call Trace:
[ 1244.010243][ T6461]  <TASK>
[ 1244.013205][ T6461]  dump_stack_lvl+0xcd/0x134
[ 1244.017819][ T6461]  should_fail.cold+0x5/0xa
[ 1244.022336][ T6461]  _copy_from_user+0x2c/0x180
[ 1244.027017][ T6461]  __copy_msghdr_from_user+0x91/0x4b0
[ 1244.032387][ T6461]  ? __ia32_sys_shutdown+0x70/0x70
[ 1244.037490][ T6461]  ? __lock_acquire+0x1655/0x5470
[ 1244.042548][ T6461]  ___sys_recvmsg+0xd5/0x200
[ 1244.047129][ T6461]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1244.052755][ T6461]  ? check_path.constprop.0+0x50/0x50
[ 1244.058158][ T6461]  ? find_held_lock+0x2d/0x110
[ 1244.062938][ T6461]  ? __might_fault+0xd1/0x170
[ 1244.067650][ T6461]  ? lock_downgrade+0x6e0/0x6e0
[ 1244.072529][ T6461]  do_recvmmsg+0x24d/0x6d0
[ 1244.076946][ T6461]  ? ___sys_recvmsg+0x200/0x200
[ 1244.081792][ T6461]  ? check_path.constprop.0+0x50/0x50
[ 1244.087173][ T6461]  ? __context_tracking_exit+0xb8/0xe0
[ 1244.092631][ T6461]  ? lock_downgrade+0x6e0/0x6e0
[ 1244.097480][ T6461]  ? lock_downgrade+0x6e0/0x6e0
[ 1244.102323][ T6461]  __x64_sys_recvmmsg+0x20b/0x260
[ 1244.107340][ T6461]  ? __do_sys_socketcall+0x590/0x590
[ 1244.112623][ T6461]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1244.118512][ T6461]  do_syscall_64+0x35/0xb0
[ 1244.122920][ T6461]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1244.128811][ T6461] RIP: 0033:0x7f688ab57e99
[ 1244.133472][ T6461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1244.153119][ T6461] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1244.161552][ T6461] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1244.169520][ T6461] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1244.177481][ T6461] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:47 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r2 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r2, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short}, 0x14)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r4, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r4, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50)
getsockopt$sock_buf(r1, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9, 0x1, 0x80, 0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x80000001}, 0x18710, 0x101, 0x7ff, 0xefec69312eecb9c4, 0x1ff, 0x6, 0xa034, 0x0, 0x9, 0x0, 0x80000001}, 0xffffffffffffffff, 0x7, r0, 0x8)
sendmmsg$sock(r1, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1244.185527][ T6461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1244.193689][ T6461] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1244.201670][ T6461]  </TASK>
03:15:47 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xc000000000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:47 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:47 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r3, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r3, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:47 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 39)

03:15:47 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x300, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:47 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1244.282423][ T6470] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
03:15:47 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB], 0x58}}, 0x0)

03:15:47 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x500, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:47 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r3, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r3, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:47 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xc03e000000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:47 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32, @ANYBLOB], 0x58}}, 0x0)

03:15:47 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x600, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:47 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1244.444201][ T6486] FAULT_INJECTION: forcing a failure.
[ 1244.444201][ T6486] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1244.494200][ T6486] CPU: 1 PID: 6486 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1244.502971][ T6486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1244.513058][ T6486] Call Trace:
[ 1244.516349][ T6486]  <TASK>
[ 1244.519280][ T6486]  dump_stack_lvl+0xcd/0x134
[ 1244.523891][ T6486]  should_fail.cold+0x5/0xa
[ 1244.528412][ T6486]  _copy_from_user+0x2c/0x180
[ 1244.533113][ T6486]  __copy_msghdr_from_user+0x91/0x4b0
[ 1244.538687][ T6486]  ? __ia32_sys_shutdown+0x70/0x70
03:15:47 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x700, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:47 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r3, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r3, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1244.543817][ T6486]  ? __lock_acquire+0x1655/0x5470
[ 1244.548890][ T6486]  ___sys_recvmsg+0xd5/0x200
[ 1244.553503][ T6486]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1244.559162][ T6486]  ? check_path.constprop.0+0x50/0x50
[ 1244.564659][ T6486]  ? find_held_lock+0x2d/0x110
[ 1244.569454][ T6486]  ? __might_fault+0xd1/0x170
[ 1244.574148][ T6486]  ? lock_downgrade+0x6e0/0x6e0
[ 1244.579039][ T6486]  do_recvmmsg+0x24d/0x6d0
[ 1244.583503][ T6486]  ? ___sys_recvmsg+0x200/0x200
[ 1244.588411][ T6486]  ? check_path.constprop.0+0x50/0x50
[ 1244.593848][ T6486]  ? __context_tracking_exit+0xb8/0xe0
[ 1244.599359][ T6486]  ? lock_downgrade+0x6e0/0x6e0
[ 1244.604253][ T6486]  ? lock_downgrade+0x6e0/0x6e0
[ 1244.609143][ T6486]  __x64_sys_recvmmsg+0x20b/0x260
[ 1244.614208][ T6486]  ? __do_sys_socketcall+0x590/0x590
[ 1244.619527][ T6486]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1244.625446][ T6486]  do_syscall_64+0x35/0xb0
[ 1244.629887][ T6486]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1244.635813][ T6486] RIP: 0033:0x7f688ab57e99
[ 1244.640243][ T6486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1244.659877][ T6486] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1244.668316][ T6486] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1244.676313][ T6486] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1244.684512][ T6486] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:47 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 40)

03:15:47 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:47 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0xb00, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:47 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:47 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r3, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0x68, r3, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x4, @media='eth\x00'}}}}, 0x68}}, 0x50)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1244.693146][ T6486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1244.701907][ T6486] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1244.710190][ T6486]  </TASK>
03:15:47 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xe03f030000000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:47 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x1f00, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:47 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:47 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:47 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB], 0x58}}, 0x0)

03:15:48 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, r3, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1244.844855][ T6513] FAULT_INJECTION: forcing a failure.
[ 1244.844855][ T6513] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1244.878673][ T6513] CPU: 1 PID: 6513 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
03:15:48 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1244.887424][ T6513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1244.897501][ T6513] Call Trace:
[ 1244.900806][ T6513]  <TASK>
[ 1244.903752][ T6513]  dump_stack_lvl+0xcd/0x134
[ 1244.908364][ T6513]  should_fail.cold+0x5/0xa
[ 1244.912879][ T6513]  _copy_from_user+0x2c/0x180
[ 1244.917659][ T6513]  __copy_msghdr_from_user+0x91/0x4b0
[ 1244.923079][ T6513]  ? __ia32_sys_shutdown+0x70/0x70
[ 1244.928244][ T6513]  ? __lock_acquire+0x1655/0x5470
[ 1244.933354][ T6513]  ___sys_recvmsg+0xd5/0x200
[ 1244.937984][ T6513]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1244.943652][ T6513]  ? check_path.constprop.0+0x50/0x50
[ 1244.949074][ T6513]  ? find_held_lock+0x2d/0x110
[ 1244.953876][ T6513]  ? __might_fault+0xd1/0x170
[ 1244.958580][ T6513]  ? lock_downgrade+0x6e0/0x6e0
[ 1244.963482][ T6513]  do_recvmmsg+0x24d/0x6d0
[ 1244.967933][ T6513]  ? ___sys_recvmsg+0x200/0x200
[ 1244.972808][ T6513]  ? check_path.constprop.0+0x50/0x50
[ 1244.978202][ T6513]  ? __context_tracking_exit+0xb8/0xe0
[ 1244.983673][ T6513]  ? lock_downgrade+0x6e0/0x6e0
[ 1244.988544][ T6513]  ? lock_downgrade+0x6e0/0x6e0
[ 1244.993417][ T6513]  __x64_sys_recvmmsg+0x20b/0x260
[ 1244.998455][ T6513]  ? __do_sys_socketcall+0x590/0x590
[ 1245.004099][ T6513]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1245.010003][ T6513]  do_syscall_64+0x35/0xb0
[ 1245.014436][ T6513]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1245.020336][ T6513] RIP: 0033:0x7f688ab57e99
[ 1245.024752][ T6513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1245.044623][ T6513] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1245.053050][ T6513] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1245.061051][ T6513] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1245.069030][ T6513] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1245.077009][ T6513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1245.084992][ T6513] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
03:15:48 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 41)

03:15:48 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:48 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:48 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x2000, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:48 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, 0x0, 0x0)

[ 1245.093504][ T6513]  </TASK>
[ 1245.212167][ T6539] FAULT_INJECTION: forcing a failure.
[ 1245.212167][ T6539] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1245.245405][ T6539] CPU: 1 PID: 6539 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1245.254335][ T6539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1245.266044][ T6539] Call Trace:
[ 1245.269498][ T6539]  <TASK>
[ 1245.272525][ T6539]  dump_stack_lvl+0xcd/0x134
[ 1245.277367][ T6539]  should_fail.cold+0x5/0xa
[ 1245.281886][ T6539]  _copy_from_user+0x2c/0x180
[ 1245.286560][ T6539]  __copy_msghdr_from_user+0x91/0x4b0
[ 1245.291927][ T6539]  ? __ia32_sys_shutdown+0x70/0x70
[ 1245.297061][ T6539]  ? __lock_acquire+0x1655/0x5470
[ 1245.302098][ T6539]  ___sys_recvmsg+0xd5/0x200
[ 1245.306691][ T6539]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1245.312309][ T6539]  ? check_path.constprop.0+0x50/0x50
[ 1245.317772][ T6539]  ? find_held_lock+0x2d/0x110
[ 1245.322540][ T6539]  ? __might_fault+0xd1/0x170
[ 1245.327204][ T6539]  ? lock_downgrade+0x6e0/0x6e0
[ 1245.332052][ T6539]  do_recvmmsg+0x24d/0x6d0
[ 1245.336460][ T6539]  ? ___sys_recvmsg+0x200/0x200
[ 1245.341395][ T6539]  ? check_path.constprop.0+0x50/0x50
[ 1245.346763][ T6539]  ? __context_tracking_exit+0xb8/0xe0
[ 1245.352231][ T6539]  ? lock_downgrade+0x6e0/0x6e0
[ 1245.357089][ T6539]  ? lock_downgrade+0x6e0/0x6e0
[ 1245.361929][ T6539]  __x64_sys_recvmmsg+0x20b/0x260
[ 1245.366943][ T6539]  ? __do_sys_socketcall+0x590/0x590
[ 1245.372233][ T6539]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1245.378121][ T6539]  do_syscall_64+0x35/0xb0
[ 1245.382544][ T6539]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1245.388426][ T6539] RIP: 0033:0x7f688ab57e99
[ 1245.392828][ T6539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1245.412519][ T6539] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1245.420937][ T6539] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1245.428904][ T6539] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1245.436862][ T6539] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1245.444852][ T6539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1245.452808][ T6539] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1245.460781][ T6539]  </TASK>
03:15:50 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, 0x0, 0x0)

03:15:50 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

03:15:50 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 42)

03:15:50 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xeffdffff00000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:50 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x2100, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:50 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1247.829571][ T6544] net_ratelimit: 17 callbacks suppressed
[ 1247.829591][ T6544] dccp_invalid_packet: P.Data Offset(4) too small
[ 1247.867239][ T6546] FAULT_INJECTION: forcing a failure.
03:15:51 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x2400, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:51 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0)

[ 1247.867239][ T6546] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:51 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, 0x0, 0x0)

[ 1247.922582][ T6546] CPU: 0 PID: 6546 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1247.931334][ T6546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1247.941416][ T6546] Call Trace:
[ 1247.944784][ T6546]  <TASK>
[ 1247.947712][ T6546]  dump_stack_lvl+0xcd/0x134
[ 1247.952316][ T6546]  should_fail.cold+0x5/0xa
[ 1247.956836][ T6546]  _copy_from_user+0x2c/0x180
[ 1247.961526][ T6546]  __copy_msghdr_from_user+0x91/0x4b0
[ 1247.966910][ T6546]  ? __ia32_sys_shutdown+0x70/0x70
[ 1247.972042][ T6546]  ? __lock_acquire+0x1655/0x5470
[ 1247.977089][ T6546]  ___sys_recvmsg+0xd5/0x200
[ 1247.981689][ T6546]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1247.987334][ T6546]  ? check_path.constprop.0+0x50/0x50
[ 1247.992769][ T6546]  ? find_held_lock+0x2d/0x110
[ 1247.998086][ T6546]  ? __might_fault+0xd1/0x170
[ 1248.002772][ T6546]  ? lock_downgrade+0x6e0/0x6e0
[ 1248.008592][ T6546]  ? lock_is_held_type+0xff/0x140
[ 1248.013624][ T6546]  do_recvmmsg+0x24d/0x6d0
[ 1248.018063][ T6546]  ? ___sys_recvmsg+0x200/0x200
[ 1248.022907][ T6546]  ? check_path.constprop.0+0x50/0x50
[ 1248.028285][ T6546]  ? __context_tracking_exit+0xb8/0xe0
[ 1248.033759][ T6546]  ? lock_downgrade+0x6e0/0x6e0
[ 1248.038605][ T6546]  ? lock_downgrade+0x6e0/0x6e0
[ 1248.043448][ T6546]  __x64_sys_recvmmsg+0x20b/0x260
[ 1248.048484][ T6546]  ? __do_sys_socketcall+0x590/0x590
[ 1248.053874][ T6546]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1248.059769][ T6546]  do_syscall_64+0x35/0xb0
[ 1248.064176][ T6546]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1248.070063][ T6546] RIP: 0033:0x7f688ab57e99
[ 1248.074468][ T6546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1248.094067][ T6546] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1248.102469][ T6546] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1248.110428][ T6546] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
03:15:51 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)

03:15:51 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1248.118390][ T6546] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1248.126353][ T6546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1248.134317][ T6546] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1248.142303][ T6546]  </TASK>
03:15:51 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 1)

03:15:51 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)

[ 1248.204005][ T6561] dccp_invalid_packet: P.Data Offset(4) too small
[ 1248.217038][ T6564] FAULT_INJECTION: forcing a failure.
[ 1248.217038][ T6564] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1248.245220][ T6564] CPU: 1 PID: 6564 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1248.254035][ T6564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1248.264709][ T6564] Call Trace:
[ 1248.267993][ T6564]  <TASK>
[ 1248.270929][ T6564]  dump_stack_lvl+0xcd/0x134
[ 1248.275558][ T6564]  should_fail.cold+0x5/0xa
[ 1248.280093][ T6564]  _copy_from_user+0x2c/0x180
[ 1248.284810][ T6564]  __copy_msghdr_from_user+0x91/0x4b0
[ 1248.290207][ T6564]  ? __ia32_sys_shutdown+0x70/0x70
[ 1248.295540][ T6564]  ? perf_trace_lock+0xeb/0x4d0
[ 1248.300660][ T6564]  ? __lock_acquire+0xbbf/0x5470
[ 1248.305607][ T6564]  sendmsg_copy_msghdr+0xa1/0x160
[ 1248.310866][ T6564]  ? do_recvmmsg+0x6d0/0x6d0
[ 1248.315843][ T6564]  ? perf_trace_lock+0xeb/0x4d0
[ 1248.320709][ T6564]  ? check_path.constprop.0+0x50/0x50
[ 1248.326713][ T6564]  ___sys_sendmsg+0xc6/0x170
[ 1248.331318][ T6564]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1248.336616][ T6564]  ? __fget_files+0x26a/0x470
[ 1248.341310][ T6564]  ? lock_downgrade+0x6e0/0x6e0
[ 1248.346168][ T6564]  ? __fget_files+0x28c/0x470
[ 1248.351483][ T6564]  ? __fget_light+0xea/0x280
[ 1248.356171][ T6564]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1248.362432][ T6564]  __sys_sendmsg+0xe5/0x1b0
[ 1248.366949][ T6564]  ? __sys_sendmsg_sock+0x30/0x30
[ 1248.372007][ T6564]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1248.377932][ T6564]  do_syscall_64+0x35/0xb0
[ 1248.382396][ T6564]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1248.388334][ T6564] RIP: 0033:0x7f44e2b4ae99
[ 1248.392773][ T6564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1248.412397][ T6564] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1248.420828][ T6564] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1248.428809][ T6564] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1248.436787][ T6564] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1248.444771][ T6564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1248.452756][ T6564] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1248.460766][ T6564]  </TASK>
03:15:51 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0xffffff7f00000000)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:51 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:51 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x3f00, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:51 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 43)

03:15:51 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)

03:15:51 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 2)

03:15:51 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x58}}, 0x0)

03:15:51 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:51 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x4800, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1248.779541][ T6575] dccp_invalid_packet: P.Data Offset(4) too small
[ 1248.795457][ T6571] FAULT_INJECTION: forcing a failure.
[ 1248.795457][ T6571] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:52 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x58}}, 0x0)

03:15:52 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1248.832682][ T6571] CPU: 1 PID: 6571 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1248.841453][ T6571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1248.851619][ T6571] Call Trace:
[ 1248.854909][ T6571]  <TASK>
[ 1248.857836][ T6571]  dump_stack_lvl+0xcd/0x134
[ 1248.862531][ T6571]  should_fail.cold+0x5/0xa
[ 1248.867067][ T6571]  _copy_from_user+0x2c/0x180
[ 1248.871770][ T6571]  iovec_from_user+0x246/0x3d0
[ 1248.876550][ T6571]  __import_iovec+0x65/0x590
03:15:52 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000200)={0x10000013})
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1248.881156][ T6571]  import_iovec+0x10c/0x150
[ 1248.885675][ T6571]  sendmsg_copy_msghdr+0x12d/0x160
[ 1248.890800][ T6571]  ? do_recvmmsg+0x6d0/0x6d0
[ 1248.895401][ T6571]  ? perf_trace_lock+0xeb/0x4d0
[ 1248.900269][ T6571]  ? check_path.constprop.0+0x50/0x50
[ 1248.905760][ T6571]  ___sys_sendmsg+0xc6/0x170
[ 1248.910382][ T6571]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1248.915704][ T6571]  ? __fget_files+0x26a/0x470
[ 1248.920420][ T6571]  ? lock_downgrade+0x6e0/0x6e0
[ 1248.925335][ T6571]  ? __fget_files+0x28c/0x470
[ 1248.930049][ T6571]  ? __fget_light+0xea/0x280
[ 1248.933053][ T6588] FAULT_INJECTION: forcing a failure.
[ 1248.933053][ T6588] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1248.934659][ T6571]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1248.934695][ T6571]  __sys_sendmsg+0xe5/0x1b0
[ 1248.934720][ T6571]  ? __sys_sendmsg_sock+0x30/0x30
[ 1248.934754][ T6571]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1248.934786][ T6571]  do_syscall_64+0x35/0xb0
[ 1248.934808][ T6571]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1248.934836][ T6571] RIP: 0033:0x7f44e2b4ae99
[ 1248.934861][ T6571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1249.003927][ T6571] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1249.012367][ T6571] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1249.020359][ T6571] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1249.028351][ T6571] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1249.036345][ T6571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1249.044338][ T6571] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1249.052352][ T6571]  </TASK>
[ 1249.055402][ T6588] CPU: 0 PID: 6588 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1249.064114][ T6588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1249.074192][ T6588] Call Trace:
[ 1249.077468][ T6588]  <TASK>
[ 1249.080384][ T6588]  dump_stack_lvl+0xcd/0x134
[ 1249.084976][ T6588]  should_fail.cold+0x5/0xa
[ 1249.089469][ T6588]  _copy_from_user+0x2c/0x180
[ 1249.094150][ T6588]  __copy_msghdr_from_user+0x91/0x4b0
[ 1249.099515][ T6588]  ? __ia32_sys_shutdown+0x70/0x70
[ 1249.104614][ T6588]  ? __lock_acquire+0x1655/0x5470
[ 1249.109640][ T6588]  ___sys_recvmsg+0xd5/0x200
[ 1249.114219][ T6588]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1249.119840][ T6588]  ? check_path.constprop.0+0x50/0x50
[ 1249.125208][ T6588]  ? find_held_lock+0x2d/0x110
[ 1249.129963][ T6588]  ? __might_fault+0xd1/0x170
[ 1249.134629][ T6588]  ? lock_downgrade+0x6e0/0x6e0
[ 1249.139482][ T6588]  do_recvmmsg+0x24d/0x6d0
[ 1249.143893][ T6588]  ? ___sys_recvmsg+0x200/0x200
[ 1249.148732][ T6588]  ? check_path.constprop.0+0x50/0x50
[ 1249.154105][ T6588]  ? __context_tracking_exit+0xb8/0xe0
[ 1249.159559][ T6588]  ? lock_downgrade+0x6e0/0x6e0
[ 1249.164401][ T6588]  ? lock_downgrade+0x6e0/0x6e0
[ 1249.169242][ T6588]  __x64_sys_recvmmsg+0x20b/0x260
[ 1249.174261][ T6588]  ? __do_sys_socketcall+0x590/0x590
[ 1249.179535][ T6588]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1249.185426][ T6588]  do_syscall_64+0x35/0xb0
[ 1249.189831][ T6588]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1249.195807][ T6588] RIP: 0033:0x7f688ab57e99
[ 1249.200217][ T6588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1249.219822][ T6588] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1249.228584][ T6588] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1249.236637][ T6588] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1249.244600][ T6588] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1249.252558][ T6588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1249.260521][ T6588] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1249.268497][ T6588]  </TASK>
[ 1249.277265][ T6590] dccp_invalid_packet: P.Data Offset(4) too small
03:15:52 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)=<r2=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r3=>0x0, <r4=>0x0})
timer_settime(r2, 0x1, &(0x7f00000000c0)={{r3, r4+60000000}, {0x77359400}}, &(0x7f0000000100))
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x1, @thr={&(0x7f0000000280)="203a581ac8c1a0925c5fe4a048eb591d06c1a1ffcb956181c7e0b1d8c370a05fc22e2c2d63e36c2d14a45a4f775f436544be0055aee7650a84207fadc181e910cda14d133c42e89aeb3d7f41bf0bf83678b458e22fbd6e82e24d9542bae495356ba1ae2e6bf454230eb12e87ff6863459ac91bfbdcf29a90350519d806f5d682ab7182e2d4dde58a68cc8efadcb8729205e8234756e1e54aa437ce2609bb34ced2aefb5f30ece3df0eff631bac290472c2ca8ec5bc3b7291acaa9e746575c4a0a427283cfd25cc70", &(0x7f0000000380)="71daab26e866ae4b16d336041b16929edec459063311e554fb67725b4220a276480979a39e068590e3c0a27e97a29f6c0d8daec3ad3b76a99c404f1836bc9a42bc6ca62e848be216c2aa7dda77fc2a7159f00b3cc407b2165a75861ebd045356d06d449f77e6300833f7ae946b55cd98899dc06d81b3b4dd4b9143f9087bb33383c59fd40598e0f17a880087305495c493d21527b44588a881157833f6dc5b605a02b21d61722846d3979ec932479adc1b2d51d06bae"}}, &(0x7f0000000240)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:52 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_open_procfs$userns(0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:52 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x58}}, 0x0)

03:15:52 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x4c00, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:52 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 44)

03:15:52 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 3)

[ 1249.463862][ T6598] dccp_invalid_packet: P.Data Offset(4) too small
[ 1249.472667][ T6600] FAULT_INJECTION: forcing a failure.
[ 1249.472667][ T6600] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1249.473057][ T6597] FAULT_INJECTION: forcing a failure.
[ 1249.473057][ T6597] name failslab, interval 1, probability 0, space 0, times 0
03:15:52 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
syz_open_procfs$userns(0x0, 0x0)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:52 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1249.510369][ T6600] CPU: 1 PID: 6600 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1249.519121][ T6600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1249.529208][ T6600] Call Trace:
[ 1249.532501][ T6600]  <TASK>
[ 1249.535442][ T6600]  dump_stack_lvl+0xcd/0x134
[ 1249.540328][ T6600]  should_fail.cold+0x5/0xa
[ 1249.544867][ T6600]  _copy_from_user+0x2c/0x180
[ 1249.549586][ T6600]  __copy_msghdr_from_user+0x91/0x4b0
[ 1249.554978][ T6600]  ? __ia32_sys_shutdown+0x70/0x70
03:15:52 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1249.560104][ T6600]  ? __lock_acquire+0x1655/0x5470
[ 1249.565159][ T6600]  ___sys_recvmsg+0xd5/0x200
[ 1249.569766][ T6600]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1249.575410][ T6600]  ? check_path.constprop.0+0x50/0x50
[ 1249.580893][ T6600]  ? find_held_lock+0x2d/0x110
[ 1249.585680][ T6600]  ? __might_fault+0xd1/0x170
[ 1249.590372][ T6600]  ? lock_downgrade+0x6e0/0x6e0
[ 1249.595251][ T6600]  do_recvmmsg+0x24d/0x6d0
[ 1249.599986][ T6600]  ? ___sys_recvmsg+0x200/0x200
[ 1249.604895][ T6600]  ? check_path.constprop.0+0x50/0x50
03:15:52 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1249.610311][ T6600]  ? __context_tracking_exit+0xb8/0xe0
[ 1249.615797][ T6600]  ? lock_downgrade+0x6e0/0x6e0
[ 1249.620940][ T6600]  ? lock_downgrade+0x6e0/0x6e0
[ 1249.625813][ T6600]  __x64_sys_recvmmsg+0x20b/0x260
[ 1249.630871][ T6600]  ? __do_sys_socketcall+0x590/0x590
[ 1249.636737][ T6600]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1249.642936][ T6600]  do_syscall_64+0x35/0xb0
[ 1249.647397][ T6600]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1249.653480][ T6600] RIP: 0033:0x7f688ab57e99
03:15:52 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1249.658018][ T6600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1249.677731][ T6600] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1249.686261][ T6600] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1249.694251][ T6600] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1249.702250][ T6600] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:52 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_dgram(0xffffffffffffffff, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(0xffffffffffffffff, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1249.710337][ T6600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1249.718334][ T6600] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1249.726434][ T6600]  </TASK>
[ 1249.733098][ T6597] CPU: 0 PID: 6597 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1249.742022][ T6597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1249.752110][ T6597] Call Trace:
[ 1249.755405][ T6597]  <TASK>
[ 1249.758336][ T6597]  dump_stack_lvl+0xcd/0x134
[ 1249.762954][ T6597]  should_fail.cold+0x5/0xa
[ 1249.767475][ T6597]  should_failslab+0x5/0x10
[ 1249.772085][ T6597]  kmem_cache_alloc_node+0x65/0x3f0
[ 1249.777310][ T6597]  ? __alloc_skb+0x215/0x340
[ 1249.781946][ T6597]  __alloc_skb+0x215/0x340
[ 1249.786402][ T6597]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1249.792684][ T6597]  netlink_sendmsg+0x98f/0xdf0
[ 1249.797491][ T6597]  ? netlink_unicast+0x7d0/0x7d0
[ 1249.802468][ T6597]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1249.808748][ T6597]  ? netlink_unicast+0x7d0/0x7d0
[ 1249.813722][ T6597]  sock_sendmsg+0xcf/0x120
[ 1249.818181][ T6597]  ____sys_sendmsg+0x6e8/0x810
[ 1249.823183][ T6597]  ? kernel_sendmsg+0x50/0x50
[ 1249.827892][ T6597]  ? do_recvmmsg+0x6d0/0x6d0
[ 1249.832505][ T6597]  ? perf_trace_lock+0xeb/0x4d0
[ 1249.837390][ T6597]  ? check_path.constprop.0+0x50/0x50
[ 1249.842779][ T6597]  ___sys_sendmsg+0xf3/0x170
[ 1249.847468][ T6597]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1249.852766][ T6597]  ? lock_downgrade+0x6e0/0x6e0
[ 1249.857627][ T6597]  ? __fget_files+0x28c/0x470
[ 1249.862313][ T6597]  ? __fget_light+0xea/0x280
[ 1249.866990][ T6597]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1249.873232][ T6597]  __sys_sendmsg+0xe5/0x1b0
[ 1249.877732][ T6597]  ? __sys_sendmsg_sock+0x30/0x30
[ 1249.882763][ T6597]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1249.888666][ T6597]  do_syscall_64+0x35/0xb0
[ 1249.893085][ T6597]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1249.898984][ T6597] RIP: 0033:0x7f44e2b4ae99
[ 1249.903401][ T6597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1249.923109][ T6597] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1249.931547][ T6597] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1249.939530][ T6597] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1249.947500][ T6597] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1249.955463][ T6597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1249.963425][ T6597] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1249.971409][ T6597]  </TASK>
03:15:53 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)=<r2=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r3=>0x0, <r4=>0x0})
timer_settime(r2, 0x1, &(0x7f00000000c0)={{r3, r4+60000000}, {0x77359400}}, &(0x7f0000000100))
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x1, @thr={&(0x7f0000000280)="203a581ac8c1a0925c5fe4a048eb591d06c1a1ffcb956181c7e0b1d8c370a05fc22e2c2d63e36c2d14a45a4f775f436544be0055aee7650a84207fadc181e910cda14d133c42e89aeb3d7f41bf0bf83678b458e22fbd6e82e24d9542bae495356ba1ae2e6bf454230eb12e87ff6863459ac91bfbdcf29a90350519d806f5d682ab7182e2d4dde58a68cc8efadcb8729205e8234756e1e54aa437ce2609bb34ced2aefb5f30ece3df0eff631bac290472c2ca8ec5bc3b7291acaa9e746575c4a0a427283cfd25cc70", &(0x7f0000000380)="71daab26e866ae4b16d336041b16929edec459063311e554fb67725b4220a276480979a39e068590e3c0a27e97a29f6c0d8daec3ad3b76a99c404f1836bc9a42bc6ca62e848be216c2aa7dda77fc2a7159f00b3cc407b2165a75861ebd045356d06d449f77e6300833f7ae946b55cd98899dc06d81b3b4dd4b9143f9087bb33383c59fd40598e0f17a880087305495c493d21527b44588a881157833f6dc5b605a02b21d61722846d3979ec932479adc1b2d51d06bae"}}, &(0x7f0000000240)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) (async)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) (async)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) (async)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) (async)
clock_gettime(0x0, &(0x7f0000000080)) (async)
timer_settime(r2, 0x1, &(0x7f00000000c0)={{r3, r4+60000000}, {0x77359400}}, &(0x7f0000000100)) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x1, @thr={&(0x7f0000000280)="203a581ac8c1a0925c5fe4a048eb591d06c1a1ffcb956181c7e0b1d8c370a05fc22e2c2d63e36c2d14a45a4f775f436544be0055aee7650a84207fadc181e910cda14d133c42e89aeb3d7f41bf0bf83678b458e22fbd6e82e24d9542bae495356ba1ae2e6bf454230eb12e87ff6863459ac91bfbdcf29a90350519d806f5d682ab7182e2d4dde58a68cc8efadcb8729205e8234756e1e54aa437ce2609bb34ced2aefb5f30ece3df0eff631bac290472c2ca8ec5bc3b7291acaa9e746575c4a0a427283cfd25cc70", &(0x7f0000000380)="71daab26e866ae4b16d336041b16929edec459063311e554fb67725b4220a276480979a39e068590e3c0a27e97a29f6c0d8daec3ad3b76a99c404f1836bc9a42bc6ca62e848be216c2aa7dda77fc2a7159f00b3cc407b2165a75861ebd045356d06d449f77e6300833f7ae946b55cd98899dc06d81b3b4dd4b9143f9087bb33383c59fd40598e0f17a880087305495c493d21527b44588a881157833f6dc5b605a02b21d61722846d3979ec932479adc1b2d51d06bae"}}, &(0x7f0000000240)) (async)
timer_settime(r5, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)

03:15:53 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2], 0x58}}, 0x0)

03:15:53 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_dgram(0xffffffffffffffff, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(0xffffffffffffffff, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:53 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 45)

03:15:53 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x6000, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:53 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 4)

[ 1250.358402][ T6623] FAULT_INJECTION: forcing a failure.
[ 1250.358402][ T6623] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1250.368487][ T6626] dccp_invalid_packet: P.Data Offset(4) too small
[ 1250.382055][ T6628] __nla_validate_parse: 2 callbacks suppressed
[ 1250.382071][ T6628] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1250.395293][ T6623] CPU: 0 PID: 6623 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
03:15:53 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300"], 0x58}}, 0x0)

[ 1250.406564][ T6623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1250.416626][ T6623] Call Trace:
[ 1250.419908][ T6623]  <TASK>
[ 1250.422839][ T6623]  dump_stack_lvl+0xcd/0x134
[ 1250.427474][ T6623]  should_fail.cold+0x5/0xa
[ 1250.431992][ T6623]  _copy_from_user+0x2c/0x180
[ 1250.436681][ T6623]  __copy_msghdr_from_user+0x91/0x4b0
[ 1250.438299][ T6632] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1250.442070][ T6623]  ? __ia32_sys_shutdown+0x70/0x70
03:15:53 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x6800, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:53 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300"], 0x58}}, 0x0)

[ 1250.442102][ T6623]  ? __lock_acquire+0x1655/0x5470
[ 1250.442136][ T6623]  ___sys_recvmsg+0xd5/0x200
[ 1250.455613][ T6627] FAULT_INJECTION: forcing a failure.
[ 1250.455613][ T6627] name failslab, interval 1, probability 0, space 0, times 0
[ 1250.456499][ T6623]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1250.456533][ T6623]  ? check_path.constprop.0+0x50/0x50
[ 1250.489699][ T6623]  ? find_held_lock+0x2d/0x110
[ 1250.494503][ T6623]  ? __might_fault+0xd1/0x170
[ 1250.499213][ T6623]  ? lock_downgrade+0x6e0/0x6e0
[ 1250.504108][ T6623]  do_recvmmsg+0x24d/0x6d0
[ 1250.508549][ T6623]  ? ___sys_recvmsg+0x200/0x200
[ 1250.513427][ T6623]  ? check_path.constprop.0+0x50/0x50
[ 1250.518840][ T6623]  ? __context_tracking_exit+0xb8/0xe0
[ 1250.524338][ T6623]  ? lock_downgrade+0x6e0/0x6e0
[ 1250.529307][ T6623]  ? lock_downgrade+0x6e0/0x6e0
[ 1250.534185][ T6623]  __x64_sys_recvmmsg+0x20b/0x260
[ 1250.539229][ T6623]  ? __do_sys_socketcall+0x590/0x590
[ 1250.544532][ T6623]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1250.550449][ T6623]  do_syscall_64+0x35/0xb0
[ 1250.554890][ T6623]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1250.560796][ T6623] RIP: 0033:0x7f688ab57e99
[ 1250.565214][ T6623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1250.584842][ T6623] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1250.593290][ T6623] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1250.601319][ T6623] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1250.609400][ T6623] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1250.617394][ T6623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1250.625389][ T6623] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1250.633380][ T6623]  </TASK>
[ 1250.636392][ T6627] CPU: 1 PID: 6627 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1250.645089][ T6627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1250.655155][ T6627] Call Trace:
[ 1250.658438][ T6627]  <TASK>
[ 1250.661375][ T6627]  dump_stack_lvl+0xcd/0x134
[ 1250.666071][ T6627]  should_fail.cold+0x5/0xa
[ 1250.670581][ T6627]  should_failslab+0x5/0x10
[ 1250.675075][ T6627]  __kmalloc_node_track_caller+0x7d/0x360
[ 1250.680785][ T6627]  ? netlink_sendmsg+0x98f/0xdf0
[ 1250.685732][ T6627]  __alloc_skb+0xde/0x340
[ 1250.690057][ T6627]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1250.696297][ T6627]  netlink_sendmsg+0x98f/0xdf0
[ 1250.701065][ T6627]  ? netlink_unicast+0x7d0/0x7d0
[ 1250.706001][ T6627]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1250.712239][ T6627]  ? netlink_unicast+0x7d0/0x7d0
[ 1250.717170][ T6627]  sock_sendmsg+0xcf/0x120
[ 1250.721674][ T6627]  ____sys_sendmsg+0x6e8/0x810
[ 1250.726433][ T6627]  ? kernel_sendmsg+0x50/0x50
[ 1250.731105][ T6627]  ? do_recvmmsg+0x6d0/0x6d0
[ 1250.735692][ T6627]  ? perf_trace_lock+0xeb/0x4d0
[ 1250.740541][ T6627]  ? check_path.constprop.0+0x50/0x50
[ 1250.745911][ T6627]  ___sys_sendmsg+0xf3/0x170
[ 1250.750502][ T6627]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1250.755779][ T6627]  ? lock_downgrade+0x6e0/0x6e0
[ 1250.760632][ T6627]  ? __fget_files+0x28c/0x470
[ 1250.765344][ T6627]  ? __fget_light+0xea/0x280
[ 1250.769934][ T6627]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1250.776174][ T6627]  __sys_sendmsg+0xe5/0x1b0
[ 1250.780697][ T6627]  ? __sys_sendmsg_sock+0x30/0x30
[ 1250.785745][ T6627]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1250.791637][ T6627]  do_syscall_64+0x35/0xb0
[ 1250.796044][ T6627]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1250.801933][ T6627] RIP: 0033:0x7f44e2b4ae99
[ 1250.806339][ T6627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1250.825982][ T6627] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1250.834415][ T6627] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1250.842387][ T6627] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1250.850375][ T6627] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
03:15:54 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x509}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$802154_dgram(0xffffffffffffffff, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(0xffffffffffffffff, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:54 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) (async)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) (async, rerun: 64)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)=<r2=>0x0) (async, rerun: 64)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r3=>0x0, <r4=>0x0})
timer_settime(r2, 0x1, &(0x7f00000000c0)={{r3, r4+60000000}, {0x77359400}}, &(0x7f0000000100))
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x1, @thr={&(0x7f0000000280)="203a581ac8c1a0925c5fe4a048eb591d06c1a1ffcb956181c7e0b1d8c370a05fc22e2c2d63e36c2d14a45a4f775f436544be0055aee7650a84207fadc181e910cda14d133c42e89aeb3d7f41bf0bf83678b458e22fbd6e82e24d9542bae495356ba1ae2e6bf454230eb12e87ff6863459ac91bfbdcf29a90350519d806f5d682ab7182e2d4dde58a68cc8efadcb8729205e8234756e1e54aa437ce2609bb34ced2aefb5f30ece3df0eff631bac290472c2ca8ec5bc3b7291acaa9e746575c4a0a427283cfd25cc70", &(0x7f0000000380)="71daab26e866ae4b16d336041b16929edec459063311e554fb67725b4220a276480979a39e068590e3c0a27e97a29f6c0d8daec3ad3b76a99c404f1836bc9a42bc6ca62e848be216c2aa7dda77fc2a7159f00b3cc407b2165a75861ebd045356d06d449f77e6300833f7ae946b55cd98899dc06d81b3b4dd4b9143f9087bb33383c59fd40598e0f17a880087305495c493d21527b44588a881157833f6dc5b605a02b21d61722846d3979ec932479adc1b2d51d06bae"}}, &(0x7f0000000240)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:15:54 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x6c00, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1250.858362][ T6627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1250.866342][ T6627] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1250.874322][ T6627]  </TASK>
[ 1250.880926][ T6645] dccp_invalid_packet: P.Data Offset(4) too small
03:15:54 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 46)

03:15:54 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:54 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 5)

03:15:54 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300"], 0x58}}, 0x0)

[ 1250.925570][ T6644] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1250.948175][ T6655] dccp_invalid_packet: P.Data Offset(4) too small
03:15:54 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x7400, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1250.997656][ T6659] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1251.011130][ T6660] FAULT_INJECTION: forcing a failure.
[ 1251.011130][ T6660] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1251.026809][ T6663] FAULT_INJECTION: forcing a failure.
[ 1251.026809][ T6663] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1251.037338][ T6660] CPU: 1 PID: 6660 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1251.048662][ T6660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1251.058727][ T6660] Call Trace:
[ 1251.062007][ T6660]  <TASK>
[ 1251.064938][ T6660]  dump_stack_lvl+0xcd/0x134
[ 1251.069543][ T6660]  should_fail.cold+0x5/0xa
[ 1251.074057][ T6660]  _copy_from_iter+0x389/0x1320
[ 1251.078930][ T6660]  ? hash_and_copy_to_iter+0x200/0x200
[ 1251.084397][ T6660]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 1251.089954][ T6660]  ? memset+0x20/0x40
[ 1251.093973][ T6660]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1251.100228][ T6660]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1251.106489][ T6660]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1251.112749][ T6660]  ? __phys_addr+0xc4/0x140
[ 1251.117268][ T6660]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1251.123522][ T6660]  ? __phys_addr_symbol+0x2c/0x70
[ 1251.128559][ T6660]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 1251.134305][ T6660]  ? __check_object_size+0x16e/0x3f0
[ 1251.139618][ T6660]  netlink_sendmsg+0x86c/0xdf0
[ 1251.144404][ T6660]  ? netlink_unicast+0x7d0/0x7d0
[ 1251.149455][ T6660]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1251.155729][ T6660]  ? netlink_unicast+0x7d0/0x7d0
[ 1251.160699][ T6660]  sock_sendmsg+0xcf/0x120
[ 1251.165143][ T6660]  ____sys_sendmsg+0x6e8/0x810
[ 1251.170017][ T6660]  ? kernel_sendmsg+0x50/0x50
[ 1251.174717][ T6660]  ? do_recvmmsg+0x6d0/0x6d0
[ 1251.179324][ T6660]  ? perf_trace_lock+0xeb/0x4d0
[ 1251.184193][ T6660]  ? check_path.constprop.0+0x50/0x50
[ 1251.189600][ T6660]  ___sys_sendmsg+0xf3/0x170
[ 1251.194220][ T6660]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1251.199531][ T6660]  ? lock_downgrade+0x6e0/0x6e0
[ 1251.204406][ T6660]  ? lockdep_hardirqs_on+0x79/0x100
[ 1251.209734][ T6660]  ? __fget_files+0x28c/0x470
[ 1251.214449][ T6660]  ? __fget_light+0xea/0x280
[ 1251.219055][ T6660]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1251.225308][ T6660]  __sys_sendmsg+0xe5/0x1b0
[ 1251.229815][ T6660]  ? __sys_sendmsg_sock+0x30/0x30
[ 1251.234936][ T6660]  ? lockdep_hardirqs_on+0x79/0x100
[ 1251.240146][ T6660]  ? trace_hardirqs_on+0x39/0x1c0
[ 1251.245183][ T6660]  ? syscall_enter_from_user_mode+0x2b/0x70
[ 1251.251203][ T6660]  do_syscall_64+0x35/0xb0
[ 1251.255620][ T6660]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1251.261522][ T6660] RIP: 0033:0x7f44e2b4ae99
[ 1251.265954][ T6660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1251.285670][ T6660] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1251.294119][ T6660] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1251.302115][ T6660] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1251.310111][ T6660] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1251.318092][ T6660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1251.326063][ T6660] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1251.334050][ T6660]  </TASK>
[ 1251.337155][ T6663] CPU: 0 PID: 6663 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1251.346024][ T6663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1251.356187][ T6663] Call Trace:
[ 1251.359472][ T6663]  <TASK>
[ 1251.362397][ T6663]  dump_stack_lvl+0xcd/0x134
[ 1251.366988][ T6663]  should_fail.cold+0x5/0xa
[ 1251.371488][ T6663]  _copy_from_user+0x2c/0x180
[ 1251.376161][ T6663]  __copy_msghdr_from_user+0x91/0x4b0
[ 1251.381619][ T6663]  ? __ia32_sys_shutdown+0x70/0x70
[ 1251.386722][ T6663]  ? __lock_acquire+0x1655/0x5470
[ 1251.391835][ T6663]  ___sys_recvmsg+0xd5/0x200
[ 1251.396698][ T6663]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1251.402329][ T6663]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1251.408484][ T6663]  ? lockdep_hardirqs_on+0x79/0x100
[ 1251.413675][ T6663]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1251.419823][ T6663]  ? do_recvmmsg+0x43d/0x6d0
[ 1251.424421][ T6663]  do_recvmmsg+0x24d/0x6d0
[ 1251.428832][ T6663]  ? ___sys_recvmsg+0x200/0x200
[ 1251.433669][ T6663]  ? irqentry_enter+0x28/0x50
[ 1251.438342][ T6663]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1251.444495][ T6663]  ? lockdep_hardirqs_on+0x79/0x100
[ 1251.449682][ T6663]  ? __print_mce+0x4a3/0x533
[ 1251.454274][ T6663]  __x64_sys_recvmmsg+0x20b/0x260
[ 1251.459292][ T6663]  ? __do_sys_socketcall+0x590/0x590
[ 1251.464570][ T6663]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1251.470461][ T6663]  do_syscall_64+0x35/0xb0
[ 1251.474864][ T6663]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1251.481019][ T6663] RIP: 0033:0x7f688ab57e99
[ 1251.485443][ T6663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1251.505050][ T6663] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1251.513462][ T6663] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1251.521517][ T6663] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1251.529483][ T6663] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1251.537624][ T6663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
03:15:54 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:54 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 47)

03:15:54 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32], 0x58}}, 0x0)

[ 1251.545586][ T6663] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1251.553561][ T6663]  </TASK>
03:15:54 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(0xffffffffffffffff, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:54 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 6)

[ 1251.596721][ T6668] dccp_invalid_packet: P.Data Offset(4) too small
[ 1251.621761][ T6670] FAULT_INJECTION: forcing a failure.
[ 1251.621761][ T6670] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1251.642913][ T6673] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1251.647028][ T6670] CPU: 1 PID: 6670 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1251.660965][ T6670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1251.671122][ T6670] Call Trace:
[ 1251.674407][ T6670]  <TASK>
[ 1251.675452][ T6676] FAULT_INJECTION: forcing a failure.
[ 1251.675452][ T6676] name failslab, interval 1, probability 0, space 0, times 0
[ 1251.677420][ T6670]  dump_stack_lvl+0xcd/0x134
[ 1251.677455][ T6670]  should_fail.cold+0x5/0xa
[ 1251.699212][ T6670]  _copy_from_user+0x2c/0x180
[ 1251.703926][ T6670]  __copy_msghdr_from_user+0x91/0x4b0
[ 1251.709324][ T6670]  ? __ia32_sys_shutdown+0x70/0x70
[ 1251.714464][ T6670]  ? __lock_acquire+0x1655/0x5470
[ 1251.719614][ T6670]  ___sys_recvmsg+0xd5/0x200
[ 1251.724216][ T6670]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1251.729849][ T6670]  ? check_path.constprop.0+0x50/0x50
[ 1251.735249][ T6670]  ? find_held_lock+0x2d/0x110
[ 1251.740027][ T6670]  ? __might_fault+0xd1/0x170
[ 1251.744713][ T6670]  ? lock_downgrade+0x6e0/0x6e0
[ 1251.749589][ T6670]  do_recvmmsg+0x24d/0x6d0
[ 1251.754021][ T6670]  ? ___sys_recvmsg+0x200/0x200
[ 1251.758877][ T6670]  ? check_path.constprop.0+0x50/0x50
[ 1251.764266][ T6670]  ? __context_tracking_exit+0xb8/0xe0
[ 1251.769814][ T6670]  ? lock_downgrade+0x6e0/0x6e0
[ 1251.774673][ T6670]  ? lock_downgrade+0x6e0/0x6e0
[ 1251.779528][ T6670]  __x64_sys_recvmmsg+0x20b/0x260
[ 1251.784569][ T6670]  ? __do_sys_socketcall+0x590/0x590
[ 1251.790039][ T6670]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1251.795938][ T6670]  do_syscall_64+0x35/0xb0
[ 1251.800353][ T6670]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1251.806451][ T6670] RIP: 0033:0x7f688ab57e99
[ 1251.811035][ T6670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1251.830679][ T6670] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1251.839106][ T6670] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1251.847088][ T6670] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1251.855068][ T6670] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1251.863048][ T6670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1251.871024][ T6670] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1251.879017][ T6670]  </TASK>
[ 1251.882027][ T6676] CPU: 0 PID: 6676 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1251.890720][ T6676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1251.900785][ T6676] Call Trace:
[ 1251.904625][ T6676]  <TASK>
[ 1251.907554][ T6676]  dump_stack_lvl+0xcd/0x134
[ 1251.912183][ T6676]  should_fail.cold+0x5/0xa
[ 1251.916706][ T6676]  ? skb_clone+0x170/0x3c0
[ 1251.921206][ T6676]  should_failslab+0x5/0x10
[ 1251.925707][ T6676]  kmem_cache_alloc+0x5e/0x3a0
[ 1251.930493][ T6676]  skb_clone+0x170/0x3c0
[ 1251.934735][ T6676]  netlink_deliver_tap+0xa63/0xc30
[ 1251.940001][ T6676]  netlink_unicast+0x5e5/0x7d0
[ 1251.944800][ T6676]  ? netlink_attachskb+0x880/0x880
[ 1251.949905][ T6676]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1251.956160][ T6676]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1251.962399][ T6676]  ? __phys_addr_symbol+0x2c/0x70
[ 1251.967414][ T6676]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 1251.973136][ T6676]  ? __check_object_size+0x16e/0x3f0
[ 1251.978435][ T6676]  netlink_sendmsg+0x904/0xdf0
[ 1251.983203][ T6676]  ? netlink_unicast+0x7d0/0x7d0
[ 1251.988137][ T6676]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1251.994379][ T6676]  ? netlink_unicast+0x7d0/0x7d0
[ 1251.999309][ T6676]  sock_sendmsg+0xcf/0x120
[ 1252.003743][ T6676]  ____sys_sendmsg+0x6e8/0x810
[ 1252.008680][ T6676]  ? kernel_sendmsg+0x50/0x50
[ 1252.013349][ T6676]  ? do_recvmmsg+0x6d0/0x6d0
[ 1252.018038][ T6676]  ? perf_trace_lock+0xeb/0x4d0
[ 1252.022976][ T6676]  ? check_path.constprop.0+0x50/0x50
[ 1252.028350][ T6676]  ___sys_sendmsg+0xf3/0x170
[ 1252.033157][ T6676]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1252.038464][ T6676]  ? lock_downgrade+0x6e0/0x6e0
[ 1252.043325][ T6676]  ? __fget_files+0x28c/0x470
[ 1252.048003][ T6676]  ? __fget_light+0xea/0x280
[ 1252.052673][ T6676]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1252.058912][ T6676]  __sys_sendmsg+0xe5/0x1b0
[ 1252.063410][ T6676]  ? __sys_sendmsg_sock+0x30/0x30
[ 1252.068434][ T6676]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1252.074326][ T6676]  do_syscall_64+0x35/0xb0
[ 1252.078738][ T6676]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1252.084630][ T6676] RIP: 0033:0x7f44e2b4ae99
[ 1252.089239][ T6676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1252.109192][ T6676] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1252.117875][ T6676] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1252.125870][ T6676] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1252.134094][ T6676] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
03:15:55 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x7a00, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:55 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32], 0x58}}, 0x0)

03:15:55 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(0xffffffffffffffff, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1252.142078][ T6676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1252.150041][ T6676] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1252.158022][ T6676]  </TASK>
[ 1252.183213][ T6676] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
03:15:55 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(0xffffffffffffffff, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:55 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1252.202363][ T6681] dccp_invalid_packet: P.Data Offset(4) too small
[ 1252.204769][ T6679] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
03:15:55 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r2}, 0x10)
mount_setattr(r2, &(0x7f0000000080)='./file0\x00', 0x800, &(0x7f00000000c0)={0x85, 0x70, 0x20000}, 0x20)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f00000001c0)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_settime(r4, 0x0, &(0x7f0000000100)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)

03:15:55 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32], 0x58}}, 0x0)

03:15:55 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 48)

03:15:55 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 7)

03:15:55 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, 0x0, 0x0)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1252.334714][ T6691] FAULT_INJECTION: forcing a failure.
[ 1252.334714][ T6691] name failslab, interval 1, probability 0, space 0, times 0
[ 1252.362247][ T6691] CPU: 1 PID: 6691 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1252.371008][ T6691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1252.372480][ T6697] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1252.381082][ T6691] Call Trace:
[ 1252.381100][ T6691]  <TASK>
[ 1252.381109][ T6691]  dump_stack_lvl+0xcd/0x134
[ 1252.381141][ T6691]  should_fail.cold+0x5/0xa
[ 1252.381163][ T6691]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290
[ 1252.381193][ T6691]  should_failslab+0x5/0x10
[ 1252.381217][ T6691]  __kmalloc+0x72/0x340
[ 1252.381241][ T6691]  genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290
[ 1252.392772][ T6696] FAULT_INJECTION: forcing a failure.
[ 1252.392772][ T6696] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1252.393807][ T6691]  genl_family_rcv_msg_doit+0xda/0x320
[ 1252.393848][ T6691]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[ 1252.393879][ T6691]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1252.393910][ T6691]  ? apparmor_capable+0x1d8/0x460
[ 1252.393936][ T6691]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1252.393963][ T6691]  ? security_capable+0x8f/0xc0
[ 1252.476889][ T6691]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1252.483148][ T6691]  ? ns_capable+0xd9/0x100
[ 1252.487582][ T6691]  genl_rcv_msg+0x328/0x580
[ 1252.492100][ T6691]  ? genl_get_cmd+0x480/0x480
[ 1252.496783][ T6691]  ? nl80211_get_interface+0x230/0x230
[ 1252.502250][ T6691]  ? lock_release+0x720/0x720
[ 1252.506935][ T6691]  ? check_path.constprop.0+0x50/0x50
[ 1252.512344][ T6691]  netlink_rcv_skb+0x153/0x420
[ 1252.517114][ T6691]  ? genl_get_cmd+0x480/0x480
[ 1252.521797][ T6691]  ? netlink_ack+0xa60/0xa60
[ 1252.526403][ T6691]  ? netlink_deliver_tap+0x1b1/0xc30
[ 1252.531701][ T6691]  genl_rcv+0x24/0x40
[ 1252.535686][ T6691]  netlink_unicast+0x533/0x7d0
[ 1252.540456][ T6691]  ? netlink_attachskb+0x880/0x880
[ 1252.545567][ T6691]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1252.551814][ T6691]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1252.558058][ T6691]  ? __phys_addr_symbol+0x2c/0x70
[ 1252.563086][ T6691]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 1252.568808][ T6691]  ? __check_object_size+0x16e/0x3f0
[ 1252.574100][ T6691]  netlink_sendmsg+0x904/0xdf0
[ 1252.578875][ T6691]  ? netlink_unicast+0x7d0/0x7d0
[ 1252.583824][ T6691]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1252.590072][ T6691]  ? netlink_unicast+0x7d0/0x7d0
[ 1252.595017][ T6691]  sock_sendmsg+0xcf/0x120
[ 1252.599447][ T6691]  ____sys_sendmsg+0x6e8/0x810
[ 1252.604227][ T6691]  ? kernel_sendmsg+0x50/0x50
[ 1252.608906][ T6691]  ? do_recvmmsg+0x6d0/0x6d0
[ 1252.613494][ T6691]  ? perf_trace_lock+0xeb/0x4d0
[ 1252.618354][ T6691]  ? check_path.constprop.0+0x50/0x50
[ 1252.623739][ T6691]  ___sys_sendmsg+0xf3/0x170
[ 1252.628332][ T6691]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1252.633622][ T6691]  ? lock_downgrade+0x6e0/0x6e0
[ 1252.638487][ T6691]  ? __fget_files+0x28c/0x470
[ 1252.643181][ T6691]  ? __fget_light+0xea/0x280
[ 1252.647782][ T6691]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1252.654040][ T6691]  __sys_sendmsg+0xe5/0x1b0
[ 1252.658549][ T6691]  ? __sys_sendmsg_sock+0x30/0x30
[ 1252.663593][ T6691]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1252.669499][ T6691]  do_syscall_64+0x35/0xb0
[ 1252.673923][ T6691]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1252.679825][ T6691] RIP: 0033:0x7f44e2b4ae99
[ 1252.684239][ T6691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1252.703852][ T6691] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1252.712358][ T6691] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1252.720329][ T6691] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1252.728297][ T6691] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
03:15:55 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x2, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:55 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYRES32=r2], 0x58}}, 0x0)

03:15:55 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x3, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:55 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYRES32=r2], 0x58}}, 0x0)

03:15:55 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x4, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:55 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYRES32=r2], 0x58}}, 0x0)

[ 1252.736265][ T6691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1252.744227][ T6691] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1252.752218][ T6691]  </TASK>
[ 1252.755235][ T6696] CPU: 0 PID: 6696 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1252.763945][ T6696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1252.773997][ T6696] Call Trace:
[ 1252.777263][ T6696]  <TASK>
[ 1252.780179][ T6696]  dump_stack_lvl+0xcd/0x134
[ 1252.784769][ T6696]  should_fail.cold+0x5/0xa
[ 1252.789265][ T6696]  _copy_from_user+0x2c/0x180
[ 1252.793939][ T6696]  __copy_msghdr_from_user+0x91/0x4b0
[ 1252.799307][ T6696]  ? __ia32_sys_shutdown+0x70/0x70
[ 1252.804406][ T6696]  ? __lock_acquire+0x1655/0x5470
[ 1252.809429][ T6696]  ___sys_recvmsg+0xd5/0x200
[ 1252.814006][ T6696]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1252.819625][ T6696]  ? check_path.constprop.0+0x50/0x50
[ 1252.824991][ T6696]  ? find_held_lock+0x2d/0x110
[ 1252.829745][ T6696]  ? __might_fault+0xd1/0x170
[ 1252.834410][ T6696]  ? lock_downgrade+0x6e0/0x6e0
[ 1252.839435][ T6696]  do_recvmmsg+0x24d/0x6d0
[ 1252.843841][ T6696]  ? ___sys_recvmsg+0x200/0x200
[ 1252.848681][ T6696]  ? check_path.constprop.0+0x50/0x50
[ 1252.854056][ T6696]  ? irqentry_enter+0x29/0x50
[ 1252.858726][ T6696]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1252.864966][ T6696]  __x64_sys_recvmmsg+0x20b/0x260
[ 1252.869999][ T6696]  ? __do_sys_socketcall+0x590/0x590
[ 1252.875275][ T6696]  ? syscall_enter_from_user_mode+0x2b/0x70
[ 1252.881159][ T6696]  do_syscall_64+0x35/0xb0
[ 1252.885560][ T6696]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1252.891450][ T6696] RIP: 0033:0x7f688ab57e99
[ 1252.895852][ T6696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1252.915449][ T6696] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1252.923847][ T6696] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
03:15:56 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, 0x0, 0x0)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:56 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) (async)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) (async, rerun: 32)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0) (rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r2}, 0x10)
mount_setattr(r2, &(0x7f0000000080)='./file0\x00', 0x800, &(0x7f00000000c0)={0x85, 0x70, 0x20000}, 0x20) (async, rerun: 32)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) (rerun: 32)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f00000001c0)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async, rerun: 32)
timer_settime(r4, 0x0, &(0x7f0000000100)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) (rerun: 32)

03:15:56 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB, @ANYRES32=r2], 0x58}}, 0x0)

[ 1252.931802][ T6696] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1252.939755][ T6696] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1252.947712][ T6696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1252.955667][ T6696] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1252.964005][ T6696]  </TASK>
03:15:56 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 49)

03:15:56 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x5, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:56 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, 0x0, 0x0)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:56 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 8)

03:15:56 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB, @ANYRES32=r2], 0x58}}, 0x0)

03:15:56 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x6, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:56 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB, @ANYRES32=r2], 0x58}}, 0x0)

03:15:56 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1253.101167][ T6725] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1253.102060][ T6727] FAULT_INJECTION: forcing a failure.
[ 1253.102060][ T6727] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1253.129583][ T6725] FAULT_INJECTION: forcing a failure.
[ 1253.129583][ T6725] name failslab, interval 1, probability 0, space 0, times 0
[ 1253.158322][ T6727] CPU: 1 PID: 6727 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1253.167071][ T6727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1253.177145][ T6727] Call Trace:
[ 1253.180427][ T6727]  <TASK>
[ 1253.183353][ T6727]  dump_stack_lvl+0xcd/0x134
[ 1253.187954][ T6727]  should_fail.cold+0x5/0xa
[ 1253.192466][ T6727]  _copy_from_user+0x2c/0x180
[ 1253.197161][ T6727]  __copy_msghdr_from_user+0x91/0x4b0
[ 1253.202546][ T6727]  ? __ia32_sys_shutdown+0x70/0x70
[ 1253.207754][ T6727]  ? __lock_acquire+0x1655/0x5470
[ 1253.212803][ T6727]  ___sys_recvmsg+0xd5/0x200
[ 1253.217873][ T6727]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1253.223512][ T6727]  ? check_path.constprop.0+0x50/0x50
[ 1253.228901][ T6727]  ? find_held_lock+0x2d/0x110
[ 1253.233672][ T6727]  ? __might_fault+0xd1/0x170
[ 1253.238351][ T6727]  ? lock_downgrade+0x6e0/0x6e0
[ 1253.243217][ T6727]  do_recvmmsg+0x24d/0x6d0
[ 1253.247639][ T6727]  ? ___sys_recvmsg+0x200/0x200
[ 1253.252493][ T6727]  ? check_path.constprop.0+0x50/0x50
[ 1253.257888][ T6727]  ? __context_tracking_exit+0xb8/0xe0
[ 1253.263359][ T6727]  ? lock_downgrade+0x6e0/0x6e0
[ 1253.268317][ T6727]  ? lock_downgrade+0x6e0/0x6e0
[ 1253.273191][ T6727]  __x64_sys_recvmmsg+0x20b/0x260
[ 1253.278609][ T6727]  ? __do_sys_socketcall+0x590/0x590
[ 1253.283916][ T6727]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1253.289828][ T6727]  do_syscall_64+0x35/0xb0
[ 1253.294262][ T6727]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1253.300185][ T6727] RIP: 0033:0x7f688ab57e99
[ 1253.304621][ T6727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1253.324239][ T6727] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1253.332837][ T6727] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1253.340898][ T6727] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1253.349034][ T6727] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:56 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x7, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:56 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff", @ANYRES32=r2], 0x58}}, 0x0)

[ 1253.356996][ T6727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1253.365053][ T6727] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1253.373051][ T6727]  </TASK>
[ 1253.376077][ T6725] CPU: 0 PID: 6725 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1253.384785][ T6725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1253.394842][ T6725] Call Trace:
[ 1253.398232][ T6725]  <TASK>
[ 1253.401151][ T6725]  dump_stack_lvl+0xcd/0x134
[ 1253.405745][ T6725]  should_fail.cold+0x5/0xa
[ 1253.410270][ T6725]  should_failslab+0x5/0x10
[ 1253.414769][ T6725]  kmem_cache_alloc_node+0x65/0x3f0
[ 1253.420147][ T6725]  ? __alloc_skb+0x215/0x340
[ 1253.424758][ T6725]  __alloc_skb+0x215/0x340
[ 1253.429201][ T6725]  nl80211_new_interface+0x45d/0x1170
[ 1253.434746][ T6725]  ? nl80211_get_interface+0x230/0x230
[ 1253.440204][ T6725]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1253.446440][ T6725]  ? nl80211_pre_doit+0xa6/0x620
[ 1253.451371][ T6725]  genl_family_rcv_msg_doit+0x228/0x320
[ 1253.456917][ T6725]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[ 1253.464283][ T6725]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1253.470528][ T6725]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1253.476760][ T6725]  ? ns_capable+0xd9/0x100
[ 1253.481171][ T6725]  genl_rcv_msg+0x328/0x580
[ 1253.485677][ T6725]  ? genl_get_cmd+0x480/0x480
[ 1253.490345][ T6725]  ? nl80211_get_interface+0x230/0x230
[ 1253.495798][ T6725]  ? lock_release+0x720/0x720
[ 1253.500466][ T6725]  ? check_path.constprop.0+0x50/0x50
[ 1253.505832][ T6725]  netlink_rcv_skb+0x153/0x420
[ 1253.510588][ T6725]  ? genl_get_cmd+0x480/0x480
[ 1253.515260][ T6725]  ? netlink_ack+0xa60/0xa60
[ 1253.519847][ T6725]  ? netlink_deliver_tap+0x1b1/0xc30
[ 1253.525129][ T6725]  genl_rcv+0x24/0x40
[ 1253.529103][ T6725]  netlink_unicast+0x533/0x7d0
[ 1253.533865][ T6725]  ? netlink_attachskb+0x880/0x880
[ 1253.538969][ T6725]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1253.545203][ T6725]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1253.551438][ T6725]  ? __phys_addr_symbol+0x2c/0x70
[ 1253.556456][ T6725]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 1253.562166][ T6725]  ? __check_object_size+0x16e/0x3f0
[ 1253.567456][ T6725]  netlink_sendmsg+0x904/0xdf0
[ 1253.572220][ T6725]  ? netlink_unicast+0x7d0/0x7d0
[ 1253.577154][ T6725]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1253.583397][ T6725]  ? netlink_unicast+0x7d0/0x7d0
[ 1253.588500][ T6725]  sock_sendmsg+0xcf/0x120
[ 1253.592917][ T6725]  ____sys_sendmsg+0x6e8/0x810
[ 1253.598510][ T6725]  ? kernel_sendmsg+0x50/0x50
[ 1253.603561][ T6725]  ? do_recvmmsg+0x6d0/0x6d0
[ 1253.608143][ T6725]  ? perf_trace_lock+0xeb/0x4d0
[ 1253.613078][ T6725]  ? check_path.constprop.0+0x50/0x50
[ 1253.618447][ T6725]  ___sys_sendmsg+0xf3/0x170
[ 1253.623031][ T6725]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1253.628309][ T6725]  ? lock_downgrade+0x6e0/0x6e0
[ 1253.633161][ T6725]  ? __fget_files+0x28c/0x470
[ 1253.637838][ T6725]  ? __fget_light+0xea/0x280
[ 1253.642423][ T6725]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1253.648663][ T6725]  __sys_sendmsg+0xe5/0x1b0
[ 1253.653156][ T6725]  ? __sys_sendmsg_sock+0x30/0x30
[ 1253.658268][ T6725]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1253.664159][ T6725]  do_syscall_64+0x35/0xb0
[ 1253.668651][ T6725]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1253.674537][ T6725] RIP: 0033:0x7f44e2b4ae99
[ 1253.678942][ T6725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1253.698544][ T6725] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
03:15:56 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) (async)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) (async)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='memory.numa_stat\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='rpc_clnt_new_err\x00', r2}, 0x10) (async)
mount_setattr(r2, &(0x7f0000000080)='./file0\x00', 0x800, &(0x7f00000000c0)={0x85, 0x70, 0x20000}, 0x20) (async)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f00000001c0)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_settime(r4, 0x0, &(0x7f0000000100)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)

03:15:56 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff", @ANYRES32=r2], 0x58}}, 0x0)

[ 1253.706949][ T6725] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1253.714907][ T6725] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1253.723036][ T6725] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1253.731252][ T6725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1253.739207][ T6725] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1253.747182][ T6725]  </TASK>
03:15:56 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 50)

03:15:56 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:56 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x8, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:56 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 9)

03:15:56 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff", @ANYRES32=r2], 0x58}}, 0x0)

03:15:56 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xb, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:56 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:57 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x10, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:57 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000", @ANYRES32=r2], 0x58}}, 0x0)

[ 1253.869945][ T6749] FAULT_INJECTION: forcing a failure.
[ 1253.869945][ T6749] name fail_usercopy, interval 1, probability 0, space 0, times 0
03:15:57 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(0xffffffffffffffff, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1253.912609][ T6749] CPU: 0 PID: 6749 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1253.921624][ T6749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1253.931697][ T6749] Call Trace:
[ 1253.934987][ T6749]  <TASK>
[ 1253.937917][ T6749]  dump_stack_lvl+0xcd/0x134
[ 1253.942521][ T6749]  should_fail.cold+0x5/0xa
[ 1253.947031][ T6749]  _copy_from_user+0x2c/0x180
[ 1253.951896][ T6749]  __copy_msghdr_from_user+0x91/0x4b0
[ 1253.957275][ T6749]  ? __ia32_sys_shutdown+0x70/0x70
[ 1253.962395][ T6749]  ? __lock_acquire+0x1655/0x5470
[ 1253.967440][ T6749]  ___sys_recvmsg+0xd5/0x200
[ 1253.970824][ T6763] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1253.972039][ T6749]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1253.972067][ T6749]  ? check_path.constprop.0+0x50/0x50
[ 1253.985984][ T6763] FAULT_INJECTION: forcing a failure.
[ 1253.985984][ T6763] name failslab, interval 1, probability 0, space 0, times 0
[ 1253.991372][ T6749]  ? find_held_lock+0x2d/0x110
03:15:57 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
process_madvise(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f0000000080)="e8d55ff5f5032ad8297dfc5a648be1d9a8a7c71883016506dbcd906dad6f93d0caf44b56d6d327c4a56c0ccc6cfa5b43b06d3ad29eae1732eeb8f4c9db2561a4ad167845ee", 0x45}, {&(0x7f0000000280)="89ef4292cd36ec3dc04e69b744cd3ce6f3cf9bfcb847f576d9abcb155f7a31b869fac4410fc775fc89356d5d4e8b01e93339d8636ff3c342280f5448749c6feda10b3ed2ecff95f275bce5287034386ef0596abee915d409543422e05b80870844500e4f64a3be49a352a98c4c06b9505959facfdbae0b0f4f1284636496911eeb4e18e286079379c1abc620a93cd71b49c91fdbdf2147ac3e4562f406472208612ab318e02caf8fd8fdb4adc3c36f6f14f271b041fda2fa212a7b30f713bda7828fd07affc67236daa38eec3902ba44c92223c17e4877f20e97e73f407f4200de2718395a750a7ffc76", 0xea}, {&(0x7f0000000380)="4611a6c0f4b3eca1e4fa8ee426c1759d03db25bc3703435379b12b10116bbcdeb311fdaeee3456f839bbb5562f8aa91ae48913f3de1eb6d86f90b93bc05fbcbcf398bedf273f2f6a641119e091d5b6598eede9386daca31a2c4095776931e68c79ba7fa01d43f875a19b727402e872609e4874ca1bd2b93fdcc99228a86e7d7f70d8967797aeadfd2500472627f01774c2a177bbb371f0629f997e8fd92125f2f78f006707454fda0297b679678139180040225c2590cd1ec1af1fdabd2c2bc4", 0xc0}, {&(0x7f0000000440)="049208097b739c3076705fbd667a2a4f226d4a9f42187663e7de271af9207323d58811e25eea30b24b7fbda407d4d975fe1486046e99e151beaec49f693ed85e1c5d94f411c549dfa7633e6cc70224601c098ff38c3beeabc2c45019001d5c8fff380c94fd7dbe9a016f0661c0088c3a7bab4899e2da13635c1d480eab7fea65e0844ccb266c3f5aad87173590e3b73d2bebf4ac29c5a8c1871b63746571c0dca22d", 0xa2}, {&(0x7f0000000500)="7cd0edabefaf208f2763436ee2af102e62df5bc0deb92c409d843b4465178b013553a33df3becdf7b12941913bd9be747221897c94843ea376abd4b09417e1e326e2c28de42195c161e4310ca6da314e6ff40c725f90f16d516f317bc6e479e3f2cb0353fc9e87ac4beb63f312e26cac39bd40831ffcabc31fcb83a91d3c254e4d27c5766b428bb08b3e5f72ee6a97e9f263f25e129f66e1dfef223f1eef6526b645209621a2cae68b473a88cf767420c05422dc5b10022f367239538db9d0f12e360fd53df5472cbd", 0xc9}, {&(0x7f0000000100)="d0b20b5a70b3993d8f5b3f637b4c565d9e6cc7e159cc21fa445c888ded80c8", 0x1f}, {&(0x7f0000000600)="a64131eb3cd1672dd87ca18a7731ded8959024548ce84890007741967d13a5718b017aa8e1ff17ac8dd3a0251232a339a849ea17368b4b87d310c9b1781a621cf0fa91ee8f649db07ac18f6f0968d16b4323858c021b524bdecc9060e4425c37320d24bb592bbfcaad0e7be1844e4f9e4fd3eae1690e5bd2f190b5c5394d4d802356ac85f3acc2791df784e262fba2bfe092ad81e4677337716d649687371b0d9ec4e8ccb79f97903583408ca666b73d449a80a8dd59df4bb86722014c48", 0xbe}], 0x7, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000740)={'wlan1\x00'})
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r3 = openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x381400)
pwritev(r3, &(0x7f0000000740), 0x0, 0x7, 0x2)

03:15:57 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x21, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1253.991408][ T6749]  ? __might_fault+0xd1/0x170
[ 1253.991433][ T6749]  ? lock_downgrade+0x6e0/0x6e0
[ 1253.991472][ T6749]  do_recvmmsg+0x24d/0x6d0
[ 1254.022916][ T6749]  ? ___sys_recvmsg+0x200/0x200
[ 1254.027861][ T6749]  ? check_path.constprop.0+0x50/0x50
[ 1254.033258][ T6749]  ? irqentry_enter+0x29/0x50
[ 1254.037949][ T6749]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1254.044121][ T6749]  __x64_sys_recvmmsg+0x20b/0x260
[ 1254.049154][ T6749]  ? __do_sys_socketcall+0x590/0x590
[ 1254.054531][ T6749]  ? syscall_enter_from_user_mode+0x2b/0x70
[ 1254.060513][ T6749]  do_syscall_64+0x35/0xb0
[ 1254.065188][ T6749]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1254.071091][ T6749] RIP: 0033:0x7f688ab57e99
[ 1254.075506][ T6749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1254.095121][ T6749] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1254.103632][ T6749] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1254.111704][ T6749] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1254.119703][ T6749] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1254.127770][ T6749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1254.135745][ T6749] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1254.143734][ T6749]  </TASK>
[ 1254.147798][ T6763] CPU: 1 PID: 6763 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1254.156891][ T6763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1254.166954][ T6763] Call Trace:
[ 1254.170227][ T6763]  <TASK>
[ 1254.173148][ T6763]  dump_stack_lvl+0xcd/0x134
[ 1254.177737][ T6763]  should_fail.cold+0x5/0xa
[ 1254.182233][ T6763]  should_failslab+0x5/0x10
[ 1254.186814][ T6763]  __kmalloc_node_track_caller+0x7d/0x360
[ 1254.192530][ T6763]  ? nl80211_new_interface+0x45d/0x1170
[ 1254.198245][ T6763]  __alloc_skb+0xde/0x340
[ 1254.202573][ T6763]  nl80211_new_interface+0x45d/0x1170
[ 1254.207938][ T6763]  ? nl80211_get_interface+0x230/0x230
[ 1254.213482][ T6763]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1254.219717][ T6763]  ? nl80211_pre_doit+0xa6/0x620
[ 1254.224652][ T6763]  genl_family_rcv_msg_doit+0x228/0x320
[ 1254.230196][ T6763]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[ 1254.237562][ T6763]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1254.244217][ T6763]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1254.250470][ T6763]  ? ns_capable+0xd9/0x100
[ 1254.254888][ T6763]  genl_rcv_msg+0x328/0x580
[ 1254.259390][ T6763]  ? genl_get_cmd+0x480/0x480
[ 1254.264061][ T6763]  ? nl80211_get_interface+0x230/0x230
[ 1254.269516][ T6763]  ? lock_release+0x720/0x720
[ 1254.274214][ T6763]  ? check_path.constprop.0+0x50/0x50
[ 1254.279670][ T6763]  netlink_rcv_skb+0x153/0x420
[ 1254.284429][ T6763]  ? genl_get_cmd+0x480/0x480
[ 1254.289098][ T6763]  ? netlink_ack+0xa60/0xa60
[ 1254.293685][ T6763]  ? netlink_deliver_tap+0x1b1/0xc30
[ 1254.299053][ T6763]  genl_rcv+0x24/0x40
[ 1254.303028][ T6763]  netlink_unicast+0x533/0x7d0
[ 1254.307965][ T6763]  ? netlink_attachskb+0x880/0x880
[ 1254.313075][ T6763]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1254.319319][ T6763]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1254.325555][ T6763]  ? __phys_addr_symbol+0x2c/0x70
[ 1254.330574][ T6763]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 1254.336287][ T6763]  ? __check_object_size+0x16e/0x3f0
[ 1254.341578][ T6763]  netlink_sendmsg+0x904/0xdf0
[ 1254.346437][ T6763]  ? netlink_unicast+0x7d0/0x7d0
[ 1254.351467][ T6763]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1254.357793][ T6763]  ? netlink_unicast+0x7d0/0x7d0
[ 1254.362812][ T6763]  sock_sendmsg+0xcf/0x120
[ 1254.367227][ T6763]  ____sys_sendmsg+0x6e8/0x810
[ 1254.371990][ T6763]  ? kernel_sendmsg+0x50/0x50
[ 1254.376659][ T6763]  ? do_recvmmsg+0x6d0/0x6d0
[ 1254.381236][ T6763]  ? perf_trace_lock+0xeb/0x4d0
[ 1254.386085][ T6763]  ? check_path.constprop.0+0x50/0x50
[ 1254.391458][ T6763]  ___sys_sendmsg+0xf3/0x170
[ 1254.396041][ T6763]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1254.401342][ T6763]  ? lock_downgrade+0x6e0/0x6e0
[ 1254.406217][ T6763]  ? __fget_files+0x28c/0x470
[ 1254.411443][ T6763]  ? __fget_light+0xea/0x280
[ 1254.416030][ T6763]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1254.422314][ T6763]  __sys_sendmsg+0xe5/0x1b0
[ 1254.426820][ T6763]  ? __sys_sendmsg_sock+0x30/0x30
[ 1254.431859][ T6763]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1254.437763][ T6763]  do_syscall_64+0x35/0xb0
[ 1254.442178][ T6763]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1254.448205][ T6763] RIP: 0033:0x7f44e2b4ae99
[ 1254.452616][ T6763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1254.472420][ T6763] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1254.480849][ T6763] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1254.488830][ T6763] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1254.497014][ T6763] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1254.505101][ T6763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
03:15:57 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 51)

03:15:57 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(0xffffffffffffffff, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:57 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x24, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1254.513167][ T6763] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1254.521152][ T6763]  </TASK>
03:15:57 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 10)

03:15:57 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
process_madvise(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f0000000080)="e8d55ff5f5032ad8297dfc5a648be1d9a8a7c71883016506dbcd906dad6f93d0caf44b56d6d327c4a56c0ccc6cfa5b43b06d3ad29eae1732eeb8f4c9db2561a4ad167845ee", 0x45}, {&(0x7f0000000280)="89ef4292cd36ec3dc04e69b744cd3ce6f3cf9bfcb847f576d9abcb155f7a31b869fac4410fc775fc89356d5d4e8b01e93339d8636ff3c342280f5448749c6feda10b3ed2ecff95f275bce5287034386ef0596abee915d409543422e05b80870844500e4f64a3be49a352a98c4c06b9505959facfdbae0b0f4f1284636496911eeb4e18e286079379c1abc620a93cd71b49c91fdbdf2147ac3e4562f406472208612ab318e02caf8fd8fdb4adc3c36f6f14f271b041fda2fa212a7b30f713bda7828fd07affc67236daa38eec3902ba44c92223c17e4877f20e97e73f407f4200de2718395a750a7ffc76", 0xea}, {&(0x7f0000000380)="4611a6c0f4b3eca1e4fa8ee426c1759d03db25bc3703435379b12b10116bbcdeb311fdaeee3456f839bbb5562f8aa91ae48913f3de1eb6d86f90b93bc05fbcbcf398bedf273f2f6a641119e091d5b6598eede9386daca31a2c4095776931e68c79ba7fa01d43f875a19b727402e872609e4874ca1bd2b93fdcc99228a86e7d7f70d8967797aeadfd2500472627f01774c2a177bbb371f0629f997e8fd92125f2f78f006707454fda0297b679678139180040225c2590cd1ec1af1fdabd2c2bc4", 0xc0}, {&(0x7f0000000440)="049208097b739c3076705fbd667a2a4f226d4a9f42187663e7de271af9207323d58811e25eea30b24b7fbda407d4d975fe1486046e99e151beaec49f693ed85e1c5d94f411c549dfa7633e6cc70224601c098ff38c3beeabc2c45019001d5c8fff380c94fd7dbe9a016f0661c0088c3a7bab4899e2da13635c1d480eab7fea65e0844ccb266c3f5aad87173590e3b73d2bebf4ac29c5a8c1871b63746571c0dca22d", 0xa2}, {&(0x7f0000000500)="7cd0edabefaf208f2763436ee2af102e62df5bc0deb92c409d843b4465178b013553a33df3becdf7b12941913bd9be747221897c94843ea376abd4b09417e1e326e2c28de42195c161e4310ca6da314e6ff40c725f90f16d516f317bc6e479e3f2cb0353fc9e87ac4beb63f312e26cac39bd40831ffcabc31fcb83a91d3c254e4d27c5766b428bb08b3e5f72ee6a97e9f263f25e129f66e1dfef223f1eef6526b645209621a2cae68b473a88cf767420c05422dc5b10022f367239538db9d0f12e360fd53df5472cbd", 0xc9}, {&(0x7f0000000100)="d0b20b5a70b3993d8f5b3f637b4c565d9e6cc7e159cc21fa445c888ded80c8", 0x1f}, {&(0x7f0000000600)="a64131eb3cd1672dd87ca18a7731ded8959024548ce84890007741967d13a5718b017aa8e1ff17ac8dd3a0251232a339a849ea17368b4b87d310c9b1781a621cf0fa91ee8f649db07ac18f6f0968d16b4323858c021b524bdecc9060e4425c37320d24bb592bbfcaad0e7be1844e4f9e4fd3eae1690e5bd2f190b5c5394d4d802356ac85f3acc2791df784e262fba2bfe092ad81e4677337716d649687371b0d9ec4e8ccb79f97903583408ca666b73d449a80a8dd59df4bb86722014c48", 0xbe}], 0x7, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000740)={'wlan1\x00'})
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r3 = openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x381400)
pwritev(r3, &(0x7f0000000740), 0x0, 0x7, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) (async)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) (async)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) (async)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)) (async)
process_madvise(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f0000000080)="e8d55ff5f5032ad8297dfc5a648be1d9a8a7c71883016506dbcd906dad6f93d0caf44b56d6d327c4a56c0ccc6cfa5b43b06d3ad29eae1732eeb8f4c9db2561a4ad167845ee", 0x45}, {&(0x7f0000000280)="89ef4292cd36ec3dc04e69b744cd3ce6f3cf9bfcb847f576d9abcb155f7a31b869fac4410fc775fc89356d5d4e8b01e93339d8636ff3c342280f5448749c6feda10b3ed2ecff95f275bce5287034386ef0596abee915d409543422e05b80870844500e4f64a3be49a352a98c4c06b9505959facfdbae0b0f4f1284636496911eeb4e18e286079379c1abc620a93cd71b49c91fdbdf2147ac3e4562f406472208612ab318e02caf8fd8fdb4adc3c36f6f14f271b041fda2fa212a7b30f713bda7828fd07affc67236daa38eec3902ba44c92223c17e4877f20e97e73f407f4200de2718395a750a7ffc76", 0xea}, {&(0x7f0000000380)="4611a6c0f4b3eca1e4fa8ee426c1759d03db25bc3703435379b12b10116bbcdeb311fdaeee3456f839bbb5562f8aa91ae48913f3de1eb6d86f90b93bc05fbcbcf398bedf273f2f6a641119e091d5b6598eede9386daca31a2c4095776931e68c79ba7fa01d43f875a19b727402e872609e4874ca1bd2b93fdcc99228a86e7d7f70d8967797aeadfd2500472627f01774c2a177bbb371f0629f997e8fd92125f2f78f006707454fda0297b679678139180040225c2590cd1ec1af1fdabd2c2bc4", 0xc0}, {&(0x7f0000000440)="049208097b739c3076705fbd667a2a4f226d4a9f42187663e7de271af9207323d58811e25eea30b24b7fbda407d4d975fe1486046e99e151beaec49f693ed85e1c5d94f411c549dfa7633e6cc70224601c098ff38c3beeabc2c45019001d5c8fff380c94fd7dbe9a016f0661c0088c3a7bab4899e2da13635c1d480eab7fea65e0844ccb266c3f5aad87173590e3b73d2bebf4ac29c5a8c1871b63746571c0dca22d", 0xa2}, {&(0x7f0000000500)="7cd0edabefaf208f2763436ee2af102e62df5bc0deb92c409d843b4465178b013553a33df3becdf7b12941913bd9be747221897c94843ea376abd4b09417e1e326e2c28de42195c161e4310ca6da314e6ff40c725f90f16d516f317bc6e479e3f2cb0353fc9e87ac4beb63f312e26cac39bd40831ffcabc31fcb83a91d3c254e4d27c5766b428bb08b3e5f72ee6a97e9f263f25e129f66e1dfef223f1eef6526b645209621a2cae68b473a88cf767420c05422dc5b10022f367239538db9d0f12e360fd53df5472cbd", 0xc9}, {&(0x7f0000000100)="d0b20b5a70b3993d8f5b3f637b4c565d9e6cc7e159cc21fa445c888ded80c8", 0x1f}, {&(0x7f0000000600)="a64131eb3cd1672dd87ca18a7731ded8959024548ce84890007741967d13a5718b017aa8e1ff17ac8dd3a0251232a339a849ea17368b4b87d310c9b1781a621cf0fa91ee8f649db07ac18f6f0968d16b4323858c021b524bdecc9060e4425c37320d24bb592bbfcaad0e7be1844e4f9e4fd3eae1690e5bd2f190b5c5394d4d802356ac85f3acc2791df784e262fba2bfe092ad81e4677337716d649687371b0d9ec4e8ccb79f97903583408ca666b73d449a80a8dd59df4bb86722014c48", 0xbe}], 0x7, 0x3, 0x0) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000740)={'wlan1\x00'}) (async)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x381400) (async)
pwritev(r3, &(0x7f0000000740), 0x0, 0x7, 0x2) (async)

03:15:57 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x48, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:57 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000", @ANYRES32=r2], 0x58}}, 0x0)

03:15:57 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(0xffffffffffffffff, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1254.633228][ T6777] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1254.651910][ T6780] FAULT_INJECTION: forcing a failure.
[ 1254.651910][ T6780] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1254.678413][ T6777] FAULT_INJECTION: forcing a failure.
[ 1254.678413][ T6777] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1254.686413][ T6780] CPU: 0 PID: 6780 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1254.700450][ T6780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1254.710512][ T6780] Call Trace:
[ 1254.713785][ T6780]  <TASK>
[ 1254.716711][ T6780]  dump_stack_lvl+0xcd/0x134
[ 1254.721306][ T6780]  should_fail.cold+0x5/0xa
[ 1254.725806][ T6780]  _copy_from_user+0x2c/0x180
[ 1254.730489][ T6780]  __copy_msghdr_from_user+0x91/0x4b0
[ 1254.735862][ T6780]  ? __ia32_sys_shutdown+0x70/0x70
[ 1254.740977][ T6780]  ? strlen+0x54/0x90
[ 1254.745052][ T6780]  ___sys_recvmsg+0xd5/0x200
[ 1254.749726][ T6780]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1254.755351][ T6780]  ? check_path.constprop.0+0x50/0x50
[ 1254.760912][ T6780]  ? find_held_lock+0x2d/0x110
[ 1254.765675][ T6780]  ? __might_fault+0xd1/0x170
[ 1254.770346][ T6780]  ? lock_downgrade+0x6e0/0x6e0
[ 1254.775202][ T6780]  do_recvmmsg+0x24d/0x6d0
[ 1254.779875][ T6780]  ? ___sys_recvmsg+0x200/0x200
[ 1254.784806][ T6780]  ? check_path.constprop.0+0x50/0x50
[ 1254.790187][ T6780]  ? irqentry_enter+0x29/0x50
[ 1254.794865][ T6780]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1254.801051][ T6780]  __x64_sys_recvmmsg+0x20b/0x260
[ 1254.806073][ T6780]  ? __do_sys_socketcall+0x590/0x590
[ 1254.811559][ T6780]  ? syscall_enter_from_user_mode+0x2b/0x70
[ 1254.817452][ T6780]  do_syscall_64+0x35/0xb0
[ 1254.821866][ T6780]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1254.827757][ T6780] RIP: 0033:0x7f688ab57e99
[ 1254.832164][ T6780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1254.851769][ T6780] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1254.860182][ T6780] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1254.868144][ T6780] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1254.876105][ T6780] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1254.884065][ T6780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1254.892023][ T6780] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1254.899997][ T6780]  </TASK>
[ 1254.908881][ T6777] CPU: 0 PID: 6777 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1254.917605][ T6777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1254.927681][ T6777] Call Trace:
[ 1254.930965][ T6777]  <TASK>
[ 1254.933896][ T6777]  dump_stack_lvl+0xcd/0x134
[ 1254.938505][ T6777]  should_fail.cold+0x5/0xa
[ 1254.943015][ T6777]  prepare_alloc_pages+0x17b/0x570
[ 1254.948137][ T6777]  __alloc_pages+0x12f/0x500
[ 1254.952724][ T6777]  ? __alloc_pages_slowpath.constprop.0+0x20d0/0x20d0
[ 1254.959488][ T6777]  ? netlink_sendmsg+0x904/0xdf0
[ 1254.964428][ T6777]  kmalloc_large_node+0x62/0x130
[ 1254.969365][ T6777]  __kmalloc_node+0x2ec/0x390
[ 1254.974039][ T6777]  kvmalloc_node+0xb4/0x120
[ 1254.978538][ T6777]  alloc_netdev_mqs+0x98/0xec0
[ 1254.983293][ T6777]  ? asm_exc_int3+0x31/0x40
[ 1254.987795][ T6777]  ? ieee80211_monitor_select_queue+0x250/0x250
[ 1254.994038][ T6777]  ieee80211_if_add+0x1c1/0x1c60
[ 1254.998969][ T6777]  ? ieee80211_monitor_select_queue+0x250/0x250
[ 1255.005209][ T6777]  ieee80211_add_iface+0x99/0x160
[ 1255.010233][ T6777]  ? ieee80211_rfkill_poll+0xb0/0xb0
[ 1255.015529][ T6777]  nl80211_new_interface+0x581/0x1170
[ 1255.020924][ T6777]  ? nl80211_get_interface+0x230/0x230
[ 1255.026379][ T6777]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1255.032615][ T6777]  ? nl80211_pre_doit+0xa6/0x620
[ 1255.037546][ T6777]  genl_family_rcv_msg_doit+0x228/0x320
[ 1255.043182][ T6777]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[ 1255.050554][ T6777]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1255.056810][ T6777]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1255.063486][ T6777]  ? ns_capable+0xd9/0x100
[ 1255.068251][ T6777]  genl_rcv_msg+0x328/0x580
[ 1255.072762][ T6777]  ? genl_get_cmd+0x480/0x480
[ 1255.077595][ T6777]  ? nl80211_get_interface+0x230/0x230
[ 1255.083052][ T6777]  ? lock_release+0x720/0x720
[ 1255.087722][ T6777]  ? check_path.constprop.0+0x50/0x50
[ 1255.093092][ T6777]  netlink_rcv_skb+0x153/0x420
[ 1255.097856][ T6777]  ? genl_get_cmd+0x480/0x480
[ 1255.102538][ T6777]  ? netlink_ack+0xa60/0xa60
[ 1255.107414][ T6777]  ? netlink_deliver_tap+0x1b1/0xc30
[ 1255.112697][ T6777]  genl_rcv+0x24/0x40
[ 1255.116670][ T6777]  netlink_unicast+0x533/0x7d0
[ 1255.121430][ T6777]  ? netlink_attachskb+0x880/0x880
[ 1255.126531][ T6777]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1255.132770][ T6777]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1255.139009][ T6777]  ? __phys_addr_symbol+0x2c/0x70
[ 1255.144036][ T6777]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 1255.149750][ T6777]  ? __check_object_size+0x16e/0x3f0
[ 1255.155032][ T6777]  netlink_sendmsg+0x904/0xdf0
[ 1255.159814][ T6777]  ? netlink_unicast+0x7d0/0x7d0
[ 1255.164771][ T6777]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1255.171016][ T6777]  ? netlink_unicast+0x7d0/0x7d0
[ 1255.175955][ T6777]  sock_sendmsg+0xcf/0x120
[ 1255.180380][ T6777]  ____sys_sendmsg+0x6e8/0x810
[ 1255.185142][ T6777]  ? kernel_sendmsg+0x50/0x50
[ 1255.189811][ T6777]  ? do_recvmmsg+0x6d0/0x6d0
[ 1255.194414][ T6777]  ? perf_trace_lock+0xeb/0x4d0
[ 1255.199632][ T6777]  ? check_path.constprop.0+0x50/0x50
[ 1255.205015][ T6777]  ___sys_sendmsg+0xf3/0x170
[ 1255.209603][ T6777]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1255.214883][ T6777]  ? lock_downgrade+0x6e0/0x6e0
[ 1255.219738][ T6777]  ? __fget_files+0x28c/0x470
[ 1255.224419][ T6777]  ? __fget_light+0xea/0x280
[ 1255.229002][ T6777]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1255.235245][ T6777]  __sys_sendmsg+0xe5/0x1b0
[ 1255.240022][ T6777]  ? __sys_sendmsg_sock+0x30/0x30
[ 1255.245050][ T6777]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1255.250948][ T6777]  do_syscall_64+0x35/0xb0
[ 1255.255449][ T6777]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1255.261337][ T6777] RIP: 0033:0x7f44e2b4ae99
[ 1255.265741][ T6777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1255.285343][ T6777] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1255.293749][ T6777] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1255.301709][ T6777] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1255.309667][ T6777] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1255.317626][ T6777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1255.325586][ T6777] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
03:15:58 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, 0x0, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:58 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x4c, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:58 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r2=>0x0)
process_madvise(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f0000000080)="e8d55ff5f5032ad8297dfc5a648be1d9a8a7c71883016506dbcd906dad6f93d0caf44b56d6d327c4a56c0ccc6cfa5b43b06d3ad29eae1732eeb8f4c9db2561a4ad167845ee", 0x45}, {&(0x7f0000000280)="89ef4292cd36ec3dc04e69b744cd3ce6f3cf9bfcb847f576d9abcb155f7a31b869fac4410fc775fc89356d5d4e8b01e93339d8636ff3c342280f5448749c6feda10b3ed2ecff95f275bce5287034386ef0596abee915d409543422e05b80870844500e4f64a3be49a352a98c4c06b9505959facfdbae0b0f4f1284636496911eeb4e18e286079379c1abc620a93cd71b49c91fdbdf2147ac3e4562f406472208612ab318e02caf8fd8fdb4adc3c36f6f14f271b041fda2fa212a7b30f713bda7828fd07affc67236daa38eec3902ba44c92223c17e4877f20e97e73f407f4200de2718395a750a7ffc76", 0xea}, {&(0x7f0000000380)="4611a6c0f4b3eca1e4fa8ee426c1759d03db25bc3703435379b12b10116bbcdeb311fdaeee3456f839bbb5562f8aa91ae48913f3de1eb6d86f90b93bc05fbcbcf398bedf273f2f6a641119e091d5b6598eede9386daca31a2c4095776931e68c79ba7fa01d43f875a19b727402e872609e4874ca1bd2b93fdcc99228a86e7d7f70d8967797aeadfd2500472627f01774c2a177bbb371f0629f997e8fd92125f2f78f006707454fda0297b679678139180040225c2590cd1ec1af1fdabd2c2bc4", 0xc0}, {&(0x7f0000000440)="049208097b739c3076705fbd667a2a4f226d4a9f42187663e7de271af9207323d58811e25eea30b24b7fbda407d4d975fe1486046e99e151beaec49f693ed85e1c5d94f411c549dfa7633e6cc70224601c098ff38c3beeabc2c45019001d5c8fff380c94fd7dbe9a016f0661c0088c3a7bab4899e2da13635c1d480eab7fea65e0844ccb266c3f5aad87173590e3b73d2bebf4ac29c5a8c1871b63746571c0dca22d", 0xa2}, {&(0x7f0000000500)="7cd0edabefaf208f2763436ee2af102e62df5bc0deb92c409d843b4465178b013553a33df3becdf7b12941913bd9be747221897c94843ea376abd4b09417e1e326e2c28de42195c161e4310ca6da314e6ff40c725f90f16d516f317bc6e479e3f2cb0353fc9e87ac4beb63f312e26cac39bd40831ffcabc31fcb83a91d3c254e4d27c5766b428bb08b3e5f72ee6a97e9f263f25e129f66e1dfef223f1eef6526b645209621a2cae68b473a88cf767420c05422dc5b10022f367239538db9d0f12e360fd53df5472cbd", 0xc9}, {&(0x7f0000000100)="d0b20b5a70b3993d8f5b3f637b4c565d9e6cc7e159cc21fa445c888ded80c8", 0x1f}, {&(0x7f0000000600)="a64131eb3cd1672dd87ca18a7731ded8959024548ce84890007741967d13a5718b017aa8e1ff17ac8dd3a0251232a339a849ea17368b4b87d310c9b1781a621cf0fa91ee8f649db07ac18f6f0968d16b4323858c021b524bdecc9060e4425c37320d24bb592bbfcaad0e7be1844e4f9e4fd3eae1690e5bd2f190b5c5394d4d802356ac85f3acc2791df784e262fba2bfe092ad81e4677337716d649687371b0d9ec4e8ccb79f97903583408ca666b73d449a80a8dd59df4bb86722014c48", 0xbe}], 0x7, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000740)={'wlan1\x00'})
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r3 = openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x381400)
pwritev(r3, &(0x7f0000000740), 0x0, 0x7, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) (async)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) (async)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) (async)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)) (async)
process_madvise(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f0000000080)="e8d55ff5f5032ad8297dfc5a648be1d9a8a7c71883016506dbcd906dad6f93d0caf44b56d6d327c4a56c0ccc6cfa5b43b06d3ad29eae1732eeb8f4c9db2561a4ad167845ee", 0x45}, {&(0x7f0000000280)="89ef4292cd36ec3dc04e69b744cd3ce6f3cf9bfcb847f576d9abcb155f7a31b869fac4410fc775fc89356d5d4e8b01e93339d8636ff3c342280f5448749c6feda10b3ed2ecff95f275bce5287034386ef0596abee915d409543422e05b80870844500e4f64a3be49a352a98c4c06b9505959facfdbae0b0f4f1284636496911eeb4e18e286079379c1abc620a93cd71b49c91fdbdf2147ac3e4562f406472208612ab318e02caf8fd8fdb4adc3c36f6f14f271b041fda2fa212a7b30f713bda7828fd07affc67236daa38eec3902ba44c92223c17e4877f20e97e73f407f4200de2718395a750a7ffc76", 0xea}, {&(0x7f0000000380)="4611a6c0f4b3eca1e4fa8ee426c1759d03db25bc3703435379b12b10116bbcdeb311fdaeee3456f839bbb5562f8aa91ae48913f3de1eb6d86f90b93bc05fbcbcf398bedf273f2f6a641119e091d5b6598eede9386daca31a2c4095776931e68c79ba7fa01d43f875a19b727402e872609e4874ca1bd2b93fdcc99228a86e7d7f70d8967797aeadfd2500472627f01774c2a177bbb371f0629f997e8fd92125f2f78f006707454fda0297b679678139180040225c2590cd1ec1af1fdabd2c2bc4", 0xc0}, {&(0x7f0000000440)="049208097b739c3076705fbd667a2a4f226d4a9f42187663e7de271af9207323d58811e25eea30b24b7fbda407d4d975fe1486046e99e151beaec49f693ed85e1c5d94f411c549dfa7633e6cc70224601c098ff38c3beeabc2c45019001d5c8fff380c94fd7dbe9a016f0661c0088c3a7bab4899e2da13635c1d480eab7fea65e0844ccb266c3f5aad87173590e3b73d2bebf4ac29c5a8c1871b63746571c0dca22d", 0xa2}, {&(0x7f0000000500)="7cd0edabefaf208f2763436ee2af102e62df5bc0deb92c409d843b4465178b013553a33df3becdf7b12941913bd9be747221897c94843ea376abd4b09417e1e326e2c28de42195c161e4310ca6da314e6ff40c725f90f16d516f317bc6e479e3f2cb0353fc9e87ac4beb63f312e26cac39bd40831ffcabc31fcb83a91d3c254e4d27c5766b428bb08b3e5f72ee6a97e9f263f25e129f66e1dfef223f1eef6526b645209621a2cae68b473a88cf767420c05422dc5b10022f367239538db9d0f12e360fd53df5472cbd", 0xc9}, {&(0x7f0000000100)="d0b20b5a70b3993d8f5b3f637b4c565d9e6cc7e159cc21fa445c888ded80c8", 0x1f}, {&(0x7f0000000600)="a64131eb3cd1672dd87ca18a7731ded8959024548ce84890007741967d13a5718b017aa8e1ff17ac8dd3a0251232a339a849ea17368b4b87d310c9b1781a621cf0fa91ee8f649db07ac18f6f0968d16b4323858c021b524bdecc9060e4425c37320d24bb592bbfcaad0e7be1844e4f9e4fd3eae1690e5bd2f190b5c5394d4d802356ac85f3acc2791df784e262fba2bfe092ad81e4677337716d649687371b0d9ec4e8ccb79f97903583408ca666b73d449a80a8dd59df4bb86722014c48", 0xbe}], 0x7, 0x3, 0x0) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000740)={'wlan1\x00'}) (async)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x381400) (async)
pwritev(r3, &(0x7f0000000740), 0x0, 0x7, 0x2) (async)

[ 1255.333564][ T6777]  </TASK>
03:15:58 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000", @ANYRES32=r2], 0x58}}, 0x0)

03:15:58 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 52)

03:15:58 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 11)

03:15:58 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, 0x0, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:58 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x60, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:58 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff00070000000800", @ANYRES32=r2], 0x58}}, 0x0)

[ 1255.482639][ T6803] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1255.513655][ T6803] FAULT_INJECTION: forcing a failure.
[ 1255.513655][ T6803] name failslab, interval 1, probability 0, space 0, times 0
03:15:58 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, 0x0, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x68, 0x0, 0xb3b5e43e2d665541, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0x9effffff, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1255.519839][ T6820] FAULT_INJECTION: forcing a failure.
[ 1255.519839][ T6820] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1255.531700][ T6803] CPU: 0 PID: 6803 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1255.549663][ T6803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1255.559756][ T6803] Call Trace:
[ 1255.563070][ T6803]  <TASK>
[ 1255.566026][ T6803]  dump_stack_lvl+0xcd/0x134
[ 1255.570667][ T6803]  should_fail.cold+0x5/0xa
[ 1255.575223][ T6803]  ? __hw_addr_add_ex+0x281/0x940
03:15:58 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff00070000000800", @ANYRES32=r2], 0x58}}, 0x0)

[ 1255.580544][ T6803]  should_failslab+0x5/0x10
[ 1255.585092][ T6803]  kmem_cache_alloc_trace+0x55/0x2c0
[ 1255.590427][ T6803]  __hw_addr_add_ex+0x281/0x940
[ 1255.595332][ T6803]  ? __hw_addr_lookup+0x2c0/0x2c0
[ 1255.600397][ T6803]  ? mark_held_locks+0x9f/0xe0
[ 1255.605199][ T6803]  dev_addr_init+0x13a/0x220
[ 1255.609807][ T6803]  ? dev_addr_flush+0x50/0x50
[ 1255.614506][ T6803]  alloc_netdev_mqs+0x13b/0xec0
[ 1255.619376][ T6803]  ? ieee80211_monitor_select_queue+0x250/0x250
[ 1255.625646][ T6803]  ieee80211_if_add+0x1c1/0x1c60
[ 1255.630687][ T6803]  ? ieee80211_monitor_select_queue+0x250/0x250
[ 1255.636949][ T6803]  ieee80211_add_iface+0x99/0x160
[ 1255.641987][ T6803]  ? ieee80211_rfkill_poll+0xb0/0xb0
[ 1255.647292][ T6803]  nl80211_new_interface+0x581/0x1170
[ 1255.652672][ T6803]  ? nl80211_get_interface+0x230/0x230
[ 1255.658221][ T6803]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1255.664555][ T6803]  ? nl80211_pre_doit+0xa6/0x620
[ 1255.669504][ T6803]  genl_family_rcv_msg_doit+0x228/0x320
[ 1255.675255][ T6803]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
03:15:58 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff00070000000800", @ANYRES32=r2], 0x58}}, 0x0)

[ 1255.682959][ T6803]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1255.689344][ T6803]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1255.695710][ T6803]  ? ns_capable+0xd9/0x100
[ 1255.700162][ T6803]  genl_rcv_msg+0x328/0x580
[ 1255.704695][ T6803]  ? genl_get_cmd+0x480/0x480
[ 1255.709386][ T6803]  ? nl80211_get_interface+0x230/0x230
[ 1255.714874][ T6803]  ? lock_release+0x720/0x720
[ 1255.719567][ T6803]  ? check_path.constprop.0+0x50/0x50
[ 1255.724956][ T6803]  netlink_rcv_skb+0x153/0x420
03:15:58 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000080003", @ANYRES32=r2], 0x58}}, 0x0)

[ 1255.729736][ T6803]  ? genl_get_cmd+0x480/0x480
[ 1255.734420][ T6803]  ? netlink_ack+0xa60/0xa60
[ 1255.739028][ T6803]  ? netlink_deliver_tap+0x1b1/0xc30
[ 1255.744332][ T6803]  genl_rcv+0x24/0x40
[ 1255.748344][ T6803]  netlink_unicast+0x533/0x7d0
[ 1255.753137][ T6803]  ? netlink_attachskb+0x880/0x880
[ 1255.758274][ T6803]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1255.764646][ T6803]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1255.770924][ T6803]  ? __phys_addr_symbol+0x2c/0x70
[ 1255.776236][ T6803]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 1255.781993][ T6803]  ? __check_object_size+0x16e/0x3f0
[ 1255.783184][ T6830] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1255.787474][ T6803]  netlink_sendmsg+0x904/0xdf0
[ 1255.787513][ T6803]  ? netlink_unicast+0x7d0/0x7d0
[ 1255.787541][ T6803]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1255.787569][ T6803]  ? netlink_unicast+0x7d0/0x7d0
[ 1255.787594][ T6803]  sock_sendmsg+0xcf/0x120
[ 1255.787625][ T6803]  ____sys_sendmsg+0x6e8/0x810
[ 1255.787653][ T6803]  ? kernel_sendmsg+0x50/0x50
[ 1255.787676][ T6803]  ? do_recvmmsg+0x6d0/0x6d0
[ 1255.787697][ T6803]  ? perf_trace_lock+0xeb/0x4d0
[ 1255.787728][ T6803]  ? check_path.constprop.0+0x50/0x50
[ 1255.787759][ T6803]  ___sys_sendmsg+0xf3/0x170
[ 1255.851206][ T6803]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1255.856529][ T6803]  ? lock_downgrade+0x6e0/0x6e0
[ 1255.861407][ T6803]  ? __fget_files+0x28c/0x470
[ 1255.866108][ T6803]  ? __fget_light+0xea/0x280
[ 1255.870712][ T6803]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1255.876977][ T6803]  __sys_sendmsg+0xe5/0x1b0
[ 1255.881502][ T6803]  ? __sys_sendmsg_sock+0x30/0x30
[ 1255.886550][ T6803]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1255.892475][ T6803]  do_syscall_64+0x35/0xb0
[ 1255.896918][ T6803]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1255.902845][ T6803] RIP: 0033:0x7f44e2b4ae99
[ 1255.907283][ T6803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1255.926920][ T6803] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1255.935349][ T6803] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1255.943334][ T6803] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1255.951315][ T6803] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1255.959293][ T6803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1255.967261][ T6803] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1255.975337][ T6803]  </TASK>
[ 1255.978524][ T6820] CPU: 1 PID: 6820 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1255.987212][ T6820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1255.997271][ T6820] Call Trace:
[ 1256.000544][ T6820]  <TASK>
[ 1256.003822][ T6820]  dump_stack_lvl+0xcd/0x134
[ 1256.009930][ T6820]  should_fail.cold+0x5/0xa
[ 1256.014448][ T6820]  _copy_from_user+0x2c/0x180
[ 1256.019746][ T6820]  __copy_msghdr_from_user+0x91/0x4b0
[ 1256.025131][ T6820]  ? __ia32_sys_shutdown+0x70/0x70
[ 1256.030238][ T6820]  ? __lock_acquire+0x1655/0x5470
[ 1256.035264][ T6820]  ___sys_recvmsg+0xd5/0x200
[ 1256.039865][ T6820]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1256.045486][ T6820]  ? check_path.constprop.0+0x50/0x50
[ 1256.050943][ T6820]  ? find_held_lock+0x2d/0x110
[ 1256.055699][ T6820]  ? __might_fault+0xd1/0x170
[ 1256.060370][ T6820]  ? lock_downgrade+0x6e0/0x6e0
[ 1256.065486][ T6820]  do_recvmmsg+0x24d/0x6d0
[ 1256.069908][ T6820]  ? ___sys_recvmsg+0x200/0x200
[ 1256.074843][ T6820]  ? check_path.constprop.0+0x50/0x50
[ 1256.080223][ T6820]  ? __context_tracking_exit+0xb8/0xe0
[ 1256.085851][ T6820]  ? lock_downgrade+0x6e0/0x6e0
[ 1256.090782][ T6820]  ? lock_downgrade+0x6e0/0x6e0
[ 1256.095632][ T6820]  __x64_sys_recvmmsg+0x20b/0x260
[ 1256.100655][ T6820]  ? __do_sys_socketcall+0x590/0x590
[ 1256.105935][ T6820]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1256.111830][ T6820]  do_syscall_64+0x35/0xb0
[ 1256.116238][ T6820]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1256.122126][ T6820] RIP: 0033:0x7f688ab57e99
[ 1256.126537][ T6820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1256.146310][ T6820] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1256.154720][ T6820] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1256.162684][ T6820] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1256.170646][ T6820] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
03:15:59 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x68, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:59 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:15:59 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000080003", @ANYRES32=r2], 0x58}}, 0x0)

[ 1256.178698][ T6820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1256.186663][ T6820] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1256.194642][ T6820]  </TASK>
03:15:59 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 53)

03:15:59 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 12)

03:15:59 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x6c, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:59 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x74, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:59 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1256.307914][ T6840] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1256.317601][ T6843] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1256.335623][ T6843] FAULT_INJECTION: forcing a failure.
[ 1256.335623][ T6843] name failslab, interval 1, probability 0, space 0, times 0
[ 1256.358082][ T6843] CPU: 0 PID: 6843 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1256.366850][ T6843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1256.376942][ T6843] Call Trace:
[ 1256.380244][ T6843]  <TASK>
[ 1256.383195][ T6843]  dump_stack_lvl+0xcd/0x134
[ 1256.387827][ T6843]  should_fail.cold+0x5/0xa
[ 1256.392453][ T6843]  ? kvmalloc_node+0x61/0x120
[ 1256.397258][ T6843]  should_failslab+0x5/0x10
[ 1256.401804][ T6843]  __kmalloc_node+0x75/0x390
03:15:59 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
clock_gettime(0x0, &(0x7f0000006980)={<r2=>0x0, <r3=>0x0})
ioctl$vim2m_VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000069c0)={0x8, 0x0, 0x4, 0x10, 0x6, {r2, r3/1000+60000}, {0x2, 0x8, 0x6, 0x1, 0x2, 0x0, 'eU\tD'}, 0x2, 0x1, @offset=0x9, 0x7, 0x0, <r4=>0xffffffffffffffff})
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
r7 = getpgid(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006b40)=[{{&(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000340)="6f97d33a58acc5e14bfb529bcb55e6ecbd15d37d2cddef5af2c7d58a11bce9f04215f014e0ed049f714198f0bfedf3d471f56cee15fdb72699985978da9f53572ce3a4531f1c6481ae6ec6b6e7701530a07bbe1a6f60133f347c90ba37d5bb4e9baaf61fa0e71bfc96e538eedbf37081923bc757be0ba1d201135f37aba2b3e625fb3dd29ca69823907f6709a58b3d42dffef415b835813fa7216abeb1f4fa5e80afaba729e26081f27214a9ac285c7d9a9584bf347385215d6767fa2f6c6fb2", 0xc0}], 0x1, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, 0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38, 0x20000044}}, {{&(0x7f0000000480)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000500)="6872ee5e29feeca66c5dbd698566f630eb3d3631ba7d437a2a7e0c7106033c0c9175f19672d59f9a1b2c3184a4b8ff13067f564f8cb50d1e7940ed8b41c4be3a82e293dc414922aeaabdc4e44a567bd26fccc47ffd6ca36c04eed34a1de6d29efca5ccff6dec", 0x66}, {&(0x7f0000000580)='=', 0x1}, {&(0x7f00000005c0)="01999dbeb75dcb4eec5ec1eda8bed03472792b8469f2babb763a31f592f56744687be63ae9308ed79fe13bff085e7ccae455643bb166b95afd087e5e82fa38657fda3ec37fca18f8d770c407fef2d923e82c888e33836f159b7d77", 0x5b}, {&(0x7f0000000640)="2eaad31b6c3c702c69094947ed2ad828b6c73f2652ec8acd0acbd652a0c9234270e090b23dc34a49f66db8ee887f36287cf83b6ae554cd6d1b30deee869931919c42eef98d60e83a55c2dd5cad7f0c3659d225f832b999647c46229124870d0c2f5d263590ba10092d6552de065fc5981f006063f3bf6645359c02afc1c76104ca2d66e0ed854f154596a0b89077c6646b551163a0f5ff63e0b49b74b358", 0x9e}, {&(0x7f0000000700)="fc1bab1f09ec64e89863517479aea129fc", 0x11}], 0x5, &(0x7f0000002ec0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [r1, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0xe0, 0x4004840}}, {{&(0x7f0000002fc0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003140)=[{&(0x7f0000003040)="43f37440b47bb3e719c22c9e4d831c84407e99f1b452d83f25c1e1f0bc6864b2748368527667ff9d858a011cf60a81ab54ed9a392fe7b3b06442f19e4f87b61af24646e115e6096d4a22511738550f6e75feaddfb4f32e8a12069bb5f900046706c6f06ac3660801414e9c46418a97e32b2d5dc7f17aae467bc3fdf12e737fac8d47163ad9dea0e6846df1c3d168f84a0c1abac9d42f103f23bab144947d9d62baf887a2213643f4870f311632264535ac8245e2ed7ce4ed7134314712d246644d02be134abd0a405a601564b950bd1d7da583d65f", 0xd5}], 0x1, &(0x7f0000006a40)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee01}}}, @rights={{0x2c, 0x1, 0x1, [r1, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r4, r5]}}, @cred={{0x1c, 0x1, 0x2, {r7, 0x0, 0xee00}}}], 0xf0, 0x24028005}}], 0x3, 0x4)
connect$unix(r1, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r8=>0x0)
timer_settime(r8, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f00000001c0)=<r9=>0x0)
timer_settime(r9, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_settime(r9, 0x0, &(0x7f0000000100), &(0x7f0000000140))

[ 1256.405371][ T6847] FAULT_INJECTION: forcing a failure.
[ 1256.405371][ T6847] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1256.406426][ T6843]  kvmalloc_node+0x61/0x120
[ 1256.406460][ T6843]  alloc_netdev_mqs+0x774/0xec0
[ 1256.429129][ T6843]  ieee80211_if_add+0x1c1/0x1c60
[ 1256.434082][ T6843]  ? ieee80211_monitor_select_queue+0x250/0x250
[ 1256.440350][ T6843]  ieee80211_add_iface+0x99/0x160
[ 1256.445397][ T6843]  ? ieee80211_rfkill_poll+0xb0/0xb0
[ 1256.450693][ T6843]  nl80211_new_interface+0x581/0x1170
[ 1256.456071][ T6843]  ? nl80211_get_interface+0x230/0x230
[ 1256.461532][ T6843]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1256.467784][ T6843]  ? nl80211_pre_doit+0xa6/0x620
[ 1256.472813][ T6843]  genl_family_rcv_msg_doit+0x228/0x320
[ 1256.478375][ T6843]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[ 1256.485765][ T6843]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1256.492040][ T6843]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1256.498387][ T6843]  ? ns_capable+0xd9/0x100
[ 1256.502906][ T6843]  genl_rcv_msg+0x328/0x580
[ 1256.507421][ T6843]  ? genl_get_cmd+0x480/0x480
[ 1256.512098][ T6843]  ? nl80211_get_interface+0x230/0x230
[ 1256.517564][ T6843]  ? lock_release+0x720/0x720
[ 1256.522245][ T6843]  ? check_path.constprop.0+0x50/0x50
[ 1256.527626][ T6843]  netlink_rcv_skb+0x153/0x420
[ 1256.532399][ T6843]  ? genl_get_cmd+0x480/0x480
[ 1256.537079][ T6843]  ? netlink_ack+0xa60/0xa60
[ 1256.541672][ T6843]  ? netlink_deliver_tap+0x1b1/0xc30
[ 1256.546959][ T6843]  genl_rcv+0x24/0x40
[ 1256.550934][ T6843]  netlink_unicast+0x533/0x7d0
[ 1256.555694][ T6843]  ? netlink_attachskb+0x880/0x880
[ 1256.560798][ T6843]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1256.567049][ T6843]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1256.573297][ T6843]  ? __phys_addr_symbol+0x2c/0x70
[ 1256.578323][ T6843]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 1256.584046][ T6843]  ? __check_object_size+0x16e/0x3f0
[ 1256.589337][ T6843]  netlink_sendmsg+0x904/0xdf0
[ 1256.594114][ T6843]  ? netlink_unicast+0x7d0/0x7d0
[ 1256.599052][ T6843]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1256.605290][ T6843]  ? netlink_unicast+0x7d0/0x7d0
[ 1256.610224][ T6843]  sock_sendmsg+0xcf/0x120
[ 1256.614639][ T6843]  ____sys_sendmsg+0x6e8/0x810
[ 1256.619411][ T6843]  ? kernel_sendmsg+0x50/0x50
[ 1256.624080][ T6843]  ? do_recvmmsg+0x6d0/0x6d0
[ 1256.628658][ T6843]  ? perf_trace_lock+0xeb/0x4d0
[ 1256.633508][ T6843]  ? check_path.constprop.0+0x50/0x50
[ 1256.638882][ T6843]  ___sys_sendmsg+0xf3/0x170
[ 1256.643468][ T6843]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1256.648751][ T6843]  ? lock_downgrade+0x6e0/0x6e0
[ 1256.653608][ T6843]  ? __fget_files+0x28c/0x470
[ 1256.658290][ T6843]  ? __fget_light+0xea/0x280
[ 1256.663139][ T6843]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1256.669389][ T6843]  __sys_sendmsg+0xe5/0x1b0
[ 1256.673893][ T6843]  ? __sys_sendmsg_sock+0x30/0x30
[ 1256.678922][ T6843]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1256.684817][ T6843]  do_syscall_64+0x35/0xb0
[ 1256.689243][ T6843]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1256.695144][ T6843] RIP: 0033:0x7f44e2b4ae99
[ 1256.699554][ T6843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1256.719159][ T6843] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1256.727581][ T6843] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1256.735548][ T6843] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1256.743715][ T6843] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1256.751678][ T6843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1256.759642][ T6843] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1256.767626][ T6843]  </TASK>
[ 1256.783921][ T6847] CPU: 0 PID: 6847 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1256.792782][ T6847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1256.802869][ T6847] Call Trace:
[ 1256.806333][ T6847]  <TASK>
[ 1256.809275][ T6847]  dump_stack_lvl+0xcd/0x134
[ 1256.813900][ T6847]  should_fail.cold+0x5/0xa
[ 1256.818446][ T6847]  _copy_from_user+0x2c/0x180
[ 1256.823167][ T6847]  __copy_msghdr_from_user+0x91/0x4b0
[ 1256.828578][ T6847]  ? __ia32_sys_shutdown+0x70/0x70
[ 1256.833729][ T6847]  ? __lock_acquire+0x1655/0x5470
[ 1256.838801][ T6847]  ___sys_recvmsg+0xd5/0x200
[ 1256.839114][ T6855] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1256.843513][ T6847]  ? __copy_msghdr_from_user+0x4b0/0x4b0
03:15:59 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x7a, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:59 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x300, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:15:59 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff0007000000080003", @ANYRES32=r2], 0x58}}, 0x0)

03:16:00 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x500, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1256.843546][ T6847]  ? check_path.constprop.0+0x50/0x50
[ 1256.843581][ T6847]  ? find_held_lock+0x2d/0x110
[ 1256.843607][ T6847]  ? __might_fault+0xd1/0x170
[ 1256.873857][ T6847]  ? lock_downgrade+0x6e0/0x6e0
[ 1256.878749][ T6847]  do_recvmmsg+0x24d/0x6d0
[ 1256.884223][ T6847]  ? ___sys_recvmsg+0x200/0x200
[ 1256.889075][ T6847]  ? check_path.constprop.0+0x50/0x50
[ 1256.894457][ T6847]  ? __context_tracking_exit+0xb8/0xe0
[ 1256.899910][ T6847]  ? lock_downgrade+0x6e0/0x6e0
[ 1256.904754][ T6847]  ? lock_downgrade+0x6e0/0x6e0
[ 1256.909604][ T6847]  __x64_sys_recvmmsg+0x20b/0x260
[ 1256.914627][ T6847]  ? __do_sys_socketcall+0x590/0x590
[ 1256.919909][ T6847]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1256.925893][ T6847]  do_syscall_64+0x35/0xb0
[ 1256.930307][ T6847]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1256.936198][ T6847] RIP: 0033:0x7f688ab57e99
[ 1256.940604][ T6847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1256.961594][ T6847] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1256.970002][ T6847] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1256.977961][ T6847] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1256.985919][ T6847] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1256.994054][ T6847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1257.002014][ T6847] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
03:16:00 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1], 0x58}}, 0x0)

[ 1257.009990][ T6847]  </TASK>
03:16:00 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 13)

03:16:00 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 54)

03:16:00 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x600, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:16:00 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:16:00 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1], 0x58}}, 0x0)

[ 1257.113422][ T6860] udevd[6860]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
03:16:00 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x700, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1257.179094][ T6872] FAULT_INJECTION: forcing a failure.
[ 1257.179094][ T6872] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1257.194735][ T6870] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1257.217182][ T6870] FAULT_INJECTION: forcing a failure.
[ 1257.217182][ T6870] name failslab, interval 1, probability 0, space 0, times 0
[ 1257.242008][ T6872] CPU: 0 PID: 6872 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1257.250792][ T6872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1257.260937][ T6872] Call Trace:
[ 1257.264216][ T6872]  <TASK>
[ 1257.267148][ T6872]  dump_stack_lvl+0xcd/0x134
[ 1257.271757][ T6872]  should_fail.cold+0x5/0xa
03:16:00 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
clock_gettime(0x0, &(0x7f0000006980)={<r2=>0x0, <r3=>0x0})
ioctl$vim2m_VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000069c0)={0x8, 0x0, 0x4, 0x10, 0x6, {r2, r3/1000+60000}, {0x2, 0x8, 0x6, 0x1, 0x2, 0x0, 'eU\tD'}, 0x2, 0x1, @offset=0x9, 0x7, 0x0, <r4=>0xffffffffffffffff})
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
r7 = getpgid(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006b40)=[{{&(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000340)="6f97d33a58acc5e14bfb529bcb55e6ecbd15d37d2cddef5af2c7d58a11bce9f04215f014e0ed049f714198f0bfedf3d471f56cee15fdb72699985978da9f53572ce3a4531f1c6481ae6ec6b6e7701530a07bbe1a6f60133f347c90ba37d5bb4e9baaf61fa0e71bfc96e538eedbf37081923bc757be0ba1d201135f37aba2b3e625fb3dd29ca69823907f6709a58b3d42dffef415b835813fa7216abeb1f4fa5e80afaba729e26081f27214a9ac285c7d9a9584bf347385215d6767fa2f6c6fb2", 0xc0}], 0x1, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, 0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38, 0x20000044}}, {{&(0x7f0000000480)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000500)="6872ee5e29feeca66c5dbd698566f630eb3d3631ba7d437a2a7e0c7106033c0c9175f19672d59f9a1b2c3184a4b8ff13067f564f8cb50d1e7940ed8b41c4be3a82e293dc414922aeaabdc4e44a567bd26fccc47ffd6ca36c04eed34a1de6d29efca5ccff6dec", 0x66}, {&(0x7f0000000580)='=', 0x1}, {&(0x7f00000005c0)="01999dbeb75dcb4eec5ec1eda8bed03472792b8469f2babb763a31f592f56744687be63ae9308ed79fe13bff085e7ccae455643bb166b95afd087e5e82fa38657fda3ec37fca18f8d770c407fef2d923e82c888e33836f159b7d77", 0x5b}, {&(0x7f0000000640)="2eaad31b6c3c702c69094947ed2ad828b6c73f2652ec8acd0acbd652a0c9234270e090b23dc34a49f66db8ee887f36287cf83b6ae554cd6d1b30deee869931919c42eef98d60e83a55c2dd5cad7f0c3659d225f832b999647c46229124870d0c2f5d263590ba10092d6552de065fc5981f006063f3bf6645359c02afc1c76104ca2d66e0ed854f154596a0b89077c6646b551163a0f5ff63e0b49b74b358", 0x9e}, {&(0x7f0000000700)="fc1bab1f09ec64e89863517479aea129fc", 0x11}], 0x5, &(0x7f0000002ec0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [r1, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0xe0, 0x4004840}}, {{&(0x7f0000002fc0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003140)=[{&(0x7f0000003040)="43f37440b47bb3e719c22c9e4d831c84407e99f1b452d83f25c1e1f0bc6864b2748368527667ff9d858a011cf60a81ab54ed9a392fe7b3b06442f19e4f87b61af24646e115e6096d4a22511738550f6e75feaddfb4f32e8a12069bb5f900046706c6f06ac3660801414e9c46418a97e32b2d5dc7f17aae467bc3fdf12e737fac8d47163ad9dea0e6846df1c3d168f84a0c1abac9d42f103f23bab144947d9d62baf887a2213643f4870f311632264535ac8245e2ed7ce4ed7134314712d246644d02be134abd0a405a601564b950bd1d7da583d65f", 0xd5}], 0x1, &(0x7f0000006a40)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee01}}}, @rights={{0x2c, 0x1, 0x1, [r1, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r4, r5]}}, @cred={{0x1c, 0x1, 0x2, {r7, 0x0, 0xee00}}}], 0xf0, 0x24028005}}], 0x3, 0x4)
connect$unix(r1, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r8=>0x0)
timer_settime(r8, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f00000001c0)=<r9=>0x0)
timer_settime(r9, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_settime(r9, 0x0, &(0x7f0000000100), &(0x7f0000000140))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) (async)
clock_gettime(0x0, &(0x7f0000006980)) (async)
ioctl$vim2m_VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000069c0)={0x8, 0x0, 0x4, 0x10, 0x6, {r2, r3/1000+60000}, {0x2, 0x8, 0x6, 0x1, 0x2, 0x0, 'eU\tD'}, 0x2, 0x1, @offset=0x9, 0x7}) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82) (async)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6) (async)
getpgid(0xffffffffffffffff) (async)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006b40)=[{{&(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000340)="6f97d33a58acc5e14bfb529bcb55e6ecbd15d37d2cddef5af2c7d58a11bce9f04215f014e0ed049f714198f0bfedf3d471f56cee15fdb72699985978da9f53572ce3a4531f1c6481ae6ec6b6e7701530a07bbe1a6f60133f347c90ba37d5bb4e9baaf61fa0e71bfc96e538eedbf37081923bc757be0ba1d201135f37aba2b3e625fb3dd29ca69823907f6709a58b3d42dffef415b835813fa7216abeb1f4fa5e80afaba729e26081f27214a9ac285c7d9a9584bf347385215d6767fa2f6c6fb2", 0xc0}], 0x1, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, 0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38, 0x20000044}}, {{&(0x7f0000000480)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000500)="6872ee5e29feeca66c5dbd698566f630eb3d3631ba7d437a2a7e0c7106033c0c9175f19672d59f9a1b2c3184a4b8ff13067f564f8cb50d1e7940ed8b41c4be3a82e293dc414922aeaabdc4e44a567bd26fccc47ffd6ca36c04eed34a1de6d29efca5ccff6dec", 0x66}, {&(0x7f0000000580)='=', 0x1}, {&(0x7f00000005c0)="01999dbeb75dcb4eec5ec1eda8bed03472792b8469f2babb763a31f592f56744687be63ae9308ed79fe13bff085e7ccae455643bb166b95afd087e5e82fa38657fda3ec37fca18f8d770c407fef2d923e82c888e33836f159b7d77", 0x5b}, {&(0x7f0000000640)="2eaad31b6c3c702c69094947ed2ad828b6c73f2652ec8acd0acbd652a0c9234270e090b23dc34a49f66db8ee887f36287cf83b6ae554cd6d1b30deee869931919c42eef98d60e83a55c2dd5cad7f0c3659d225f832b999647c46229124870d0c2f5d263590ba10092d6552de065fc5981f006063f3bf6645359c02afc1c76104ca2d66e0ed854f154596a0b89077c6646b551163a0f5ff63e0b49b74b358", 0x9e}, {&(0x7f0000000700)="fc1bab1f09ec64e89863517479aea129fc", 0x11}], 0x5, &(0x7f0000002ec0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [r1, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0xe0, 0x4004840}}, {{&(0x7f0000002fc0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003140)=[{&(0x7f0000003040)="43f37440b47bb3e719c22c9e4d831c84407e99f1b452d83f25c1e1f0bc6864b2748368527667ff9d858a011cf60a81ab54ed9a392fe7b3b06442f19e4f87b61af24646e115e6096d4a22511738550f6e75feaddfb4f32e8a12069bb5f900046706c6f06ac3660801414e9c46418a97e32b2d5dc7f17aae467bc3fdf12e737fac8d47163ad9dea0e6846df1c3d168f84a0c1abac9d42f103f23bab144947d9d62baf887a2213643f4870f311632264535ac8245e2ed7ce4ed7134314712d246644d02be134abd0a405a601564b950bd1d7da583d65f", 0xd5}], 0x1, &(0x7f0000006a40)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee01}}}, @rights={{0x2c, 0x1, 0x1, [r1, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r4, r5]}}, @cred={{0x1c, 0x1, 0x2, {r7, 0x0, 0xee00}}}], 0xf0, 0x24028005}}], 0x3, 0x4) (async)
connect$unix(r1, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e23}, 0x6e) (async)
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) (async)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) (async)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) (async)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)) (async)
timer_settime(r8, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f00000001c0)) (async)
timer_settime(r9, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
timer_settime(r9, 0x0, &(0x7f0000000100), &(0x7f0000000140)) (async)

03:16:00 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, 0x0}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:16:00 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1], 0x58}}, 0x0)

03:16:00 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xb00, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1257.276271][ T6872]  _copy_from_user+0x2c/0x180
[ 1257.281143][ T6872]  __copy_msghdr_from_user+0x91/0x4b0
[ 1257.286522][ T6872]  ? __ia32_sys_shutdown+0x70/0x70
[ 1257.291639][ T6872]  ? __lock_acquire+0x1655/0x5470
[ 1257.296864][ T6872]  ___sys_recvmsg+0xd5/0x200
[ 1257.301818][ T6872]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1257.307463][ T6872]  ? check_path.constprop.0+0x50/0x50
[ 1257.312942][ T6872]  ? find_held_lock+0x2d/0x110
[ 1257.317711][ T6872]  ? __might_fault+0xd1/0x170
[ 1257.322388][ T6872]  ? lock_downgrade+0x6e0/0x6e0
[ 1257.327252][ T6872]  do_recvmmsg+0x24d/0x6d0
[ 1257.331674][ T6872]  ? ___sys_recvmsg+0x200/0x200
[ 1257.336522][ T6872]  ? check_path.constprop.0+0x50/0x50
[ 1257.341914][ T6872]  ? __context_tracking_exit+0xb8/0xe0
[ 1257.347387][ T6872]  ? lock_downgrade+0x6e0/0x6e0
[ 1257.352417][ T6872]  ? lock_downgrade+0x6e0/0x6e0
[ 1257.357619][ T6872]  __x64_sys_recvmmsg+0x20b/0x260
[ 1257.362653][ T6872]  ? __do_sys_socketcall+0x590/0x590
[ 1257.367941][ T6872]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1257.373851][ T6872]  do_syscall_64+0x35/0xb0
[ 1257.378270][ T6872]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1257.384175][ T6872] RIP: 0033:0x7f688ab57e99
[ 1257.388679][ T6872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1257.408692][ T6872] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1257.417129][ T6872] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
03:16:00 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, 0x0}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

[ 1257.425142][ T6872] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1257.433203][ T6872] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1257.441186][ T6872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1257.449180][ T6872] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1257.457176][ T6872]  </TASK>
03:16:00 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
clock_gettime(0x0, &(0x7f0000006980)={<r2=>0x0, <r3=>0x0})
ioctl$vim2m_VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000069c0)={0x8, 0x0, 0x4, 0x10, 0x6, {r2, r3/1000+60000}, {0x2, 0x8, 0x6, 0x1, 0x2, 0x0, 'eU\tD'}, 0x2, 0x1, @offset=0x9, 0x7, 0x0, <r4=>0xffffffffffffffff})
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
r7 = getpgid(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006b40)=[{{&(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000340)="6f97d33a58acc5e14bfb529bcb55e6ecbd15d37d2cddef5af2c7d58a11bce9f04215f014e0ed049f714198f0bfedf3d471f56cee15fdb72699985978da9f53572ce3a4531f1c6481ae6ec6b6e7701530a07bbe1a6f60133f347c90ba37d5bb4e9baaf61fa0e71bfc96e538eedbf37081923bc757be0ba1d201135f37aba2b3e625fb3dd29ca69823907f6709a58b3d42dffef415b835813fa7216abeb1f4fa5e80afaba729e26081f27214a9ac285c7d9a9584bf347385215d6767fa2f6c6fb2", 0xc0}], 0x1, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, 0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38, 0x20000044}}, {{&(0x7f0000000480)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000500)="6872ee5e29feeca66c5dbd698566f630eb3d3631ba7d437a2a7e0c7106033c0c9175f19672d59f9a1b2c3184a4b8ff13067f564f8cb50d1e7940ed8b41c4be3a82e293dc414922aeaabdc4e44a567bd26fccc47ffd6ca36c04eed34a1de6d29efca5ccff6dec", 0x66}, {&(0x7f0000000580)='=', 0x1}, {&(0x7f00000005c0)="01999dbeb75dcb4eec5ec1eda8bed03472792b8469f2babb763a31f592f56744687be63ae9308ed79fe13bff085e7ccae455643bb166b95afd087e5e82fa38657fda3ec37fca18f8d770c407fef2d923e82c888e33836f159b7d77", 0x5b}, {&(0x7f0000000640)="2eaad31b6c3c702c69094947ed2ad828b6c73f2652ec8acd0acbd652a0c9234270e090b23dc34a49f66db8ee887f36287cf83b6ae554cd6d1b30deee869931919c42eef98d60e83a55c2dd5cad7f0c3659d225f832b999647c46229124870d0c2f5d263590ba10092d6552de065fc5981f006063f3bf6645359c02afc1c76104ca2d66e0ed854f154596a0b89077c6646b551163a0f5ff63e0b49b74b358", 0x9e}, {&(0x7f0000000700)="fc1bab1f09ec64e89863517479aea129fc", 0x11}], 0x5, &(0x7f0000002ec0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [r1, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0xe0, 0x4004840}}, {{&(0x7f0000002fc0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003140)=[{&(0x7f0000003040)="43f37440b47bb3e719c22c9e4d831c84407e99f1b452d83f25c1e1f0bc6864b2748368527667ff9d858a011cf60a81ab54ed9a392fe7b3b06442f19e4f87b61af24646e115e6096d4a22511738550f6e75feaddfb4f32e8a12069bb5f900046706c6f06ac3660801414e9c46418a97e32b2d5dc7f17aae467bc3fdf12e737fac8d47163ad9dea0e6846df1c3d168f84a0c1abac9d42f103f23bab144947d9d62baf887a2213643f4870f311632264535ac8245e2ed7ce4ed7134314712d246644d02be134abd0a405a601564b950bd1d7da583d65f", 0xd5}], 0x1, &(0x7f0000006a40)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee01}}}, @rights={{0x2c, 0x1, 0x1, [r1, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r4, r5]}}, @cred={{0x1c, 0x1, 0x2, {r7, 0x0, 0xee00}}}], 0xf0, 0x24028005}}], 0x3, 0x4)
connect$unix(r1, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)=<r8=>0x0)
timer_settime(r8, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f00000001c0)=<r9=>0x0)
timer_settime(r9, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_settime(r9, 0x0, &(0x7f0000000100), &(0x7f0000000140))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) (async)
clock_gettime(0x0, &(0x7f0000006980)) (async)
ioctl$vim2m_VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000069c0)={0x8, 0x0, 0x4, 0x10, 0x6, {r2, r3/1000+60000}, {0x2, 0x8, 0x6, 0x1, 0x2, 0x0, 'eU\tD'}, 0x2, 0x1, @offset=0x9, 0x7}) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82) (async)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6) (async)
getpgid(0xffffffffffffffff) (async)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006b40)=[{{&(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000340)="6f97d33a58acc5e14bfb529bcb55e6ecbd15d37d2cddef5af2c7d58a11bce9f04215f014e0ed049f714198f0bfedf3d471f56cee15fdb72699985978da9f53572ce3a4531f1c6481ae6ec6b6e7701530a07bbe1a6f60133f347c90ba37d5bb4e9baaf61fa0e71bfc96e538eedbf37081923bc757be0ba1d201135f37aba2b3e625fb3dd29ca69823907f6709a58b3d42dffef415b835813fa7216abeb1f4fa5e80afaba729e26081f27214a9ac285c7d9a9584bf347385215d6767fa2f6c6fb2", 0xc0}], 0x1, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, 0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38, 0x20000044}}, {{&(0x7f0000000480)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000500)="6872ee5e29feeca66c5dbd698566f630eb3d3631ba7d437a2a7e0c7106033c0c9175f19672d59f9a1b2c3184a4b8ff13067f564f8cb50d1e7940ed8b41c4be3a82e293dc414922aeaabdc4e44a567bd26fccc47ffd6ca36c04eed34a1de6d29efca5ccff6dec", 0x66}, {&(0x7f0000000580)='=', 0x1}, {&(0x7f00000005c0)="01999dbeb75dcb4eec5ec1eda8bed03472792b8469f2babb763a31f592f56744687be63ae9308ed79fe13bff085e7ccae455643bb166b95afd087e5e82fa38657fda3ec37fca18f8d770c407fef2d923e82c888e33836f159b7d77", 0x5b}, {&(0x7f0000000640)="2eaad31b6c3c702c69094947ed2ad828b6c73f2652ec8acd0acbd652a0c9234270e090b23dc34a49f66db8ee887f36287cf83b6ae554cd6d1b30deee869931919c42eef98d60e83a55c2dd5cad7f0c3659d225f832b999647c46229124870d0c2f5d263590ba10092d6552de065fc5981f006063f3bf6645359c02afc1c76104ca2d66e0ed854f154596a0b89077c6646b551163a0f5ff63e0b49b74b358", 0x9e}, {&(0x7f0000000700)="fc1bab1f09ec64e89863517479aea129fc", 0x11}], 0x5, &(0x7f0000002ec0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [r1, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0xe0, 0x4004840}}, {{&(0x7f0000002fc0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003140)=[{&(0x7f0000003040)="43f37440b47bb3e719c22c9e4d831c84407e99f1b452d83f25c1e1f0bc6864b2748368527667ff9d858a011cf60a81ab54ed9a392fe7b3b06442f19e4f87b61af24646e115e6096d4a22511738550f6e75feaddfb4f32e8a12069bb5f900046706c6f06ac3660801414e9c46418a97e32b2d5dc7f17aae467bc3fdf12e737fac8d47163ad9dea0e6846df1c3d168f84a0c1abac9d42f103f23bab144947d9d62baf887a2213643f4870f311632264535ac8245e2ed7ce4ed7134314712d246644d02be134abd0a405a601564b950bd1d7da583d65f", 0xd5}], 0x1, &(0x7f0000006a40)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee01}}}, @rights={{0x2c, 0x1, 0x1, [r1, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r4, r5]}}, @cred={{0x1c, 0x1, 0x2, {r7, 0x0, 0xee00}}}], 0xf0, 0x24028005}}], 0x3, 0x4) (async)
connect$unix(r1, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e23}, 0x6e) (async)
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) (async)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) (async)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) (async)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000240)) (async)
timer_settime(r8, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f00000001c0)) (async)
timer_settime(r9, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
timer_settime(r9, 0x0, &(0x7f0000000100), &(0x7f0000000140)) (async)

[ 1257.494137][ T6870] CPU: 0 PID: 6870 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1257.502875][ T6870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1257.512938][ T6870] Call Trace:
[ 1257.516242][ T6870]  <TASK>
[ 1257.519170][ T6870]  dump_stack_lvl+0xcd/0x134
[ 1257.523782][ T6870]  should_fail.cold+0x5/0xa
[ 1257.528383][ T6870]  ? kvmalloc_node+0x61/0x120
[ 1257.533065][ T6870]  should_failslab+0x5/0x10
[ 1257.537580][ T6870]  __kmalloc_node+0x75/0x390
[ 1257.542190][ T6870]  kvmalloc_node+0x61/0x120
[ 1257.546715][ T6870]  alloc_netdev_mqs+0x913/0xec0
[ 1257.551590][ T6870]  ieee80211_if_add+0x1c1/0x1c60
[ 1257.556544][ T6870]  ? ieee80211_monitor_select_queue+0x250/0x250
[ 1257.562810][ T6870]  ieee80211_add_iface+0x99/0x160
[ 1257.568058][ T6870]  ? ieee80211_rfkill_poll+0xb0/0xb0
[ 1257.573419][ T6870]  nl80211_new_interface+0x581/0x1170
[ 1257.578841][ T6870]  ? nl80211_get_interface+0x230/0x230
[ 1257.584363][ T6870]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1257.590657][ T6870]  ? nl80211_pre_doit+0xa6/0x620
[ 1257.595620][ T6870]  genl_family_rcv_msg_doit+0x228/0x320
[ 1257.601175][ T6870]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[ 1257.608554][ T6870]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1257.614816][ T6870]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1257.621060][ T6870]  ? ns_capable+0xd9/0x100
[ 1257.625475][ T6870]  genl_rcv_msg+0x328/0x580
[ 1257.629983][ T6870]  ? genl_get_cmd+0x480/0x480
[ 1257.634654][ T6870]  ? nl80211_get_interface+0x230/0x230
[ 1257.640114][ T6870]  ? lock_release+0x720/0x720
[ 1257.644783][ T6870]  ? check_path.constprop.0+0x50/0x50
[ 1257.650152][ T6870]  netlink_rcv_skb+0x153/0x420
[ 1257.654913][ T6870]  ? genl_get_cmd+0x480/0x480
[ 1257.659585][ T6870]  ? netlink_ack+0xa60/0xa60
[ 1257.664173][ T6870]  ? netlink_deliver_tap+0x1b1/0xc30
[ 1257.669454][ T6870]  genl_rcv+0x24/0x40
[ 1257.673427][ T6870]  netlink_unicast+0x533/0x7d0
[ 1257.678279][ T6870]  ? netlink_attachskb+0x880/0x880
[ 1257.683472][ T6870]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1257.689802][ T6870]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1257.696134][ T6870]  ? __phys_addr_symbol+0x2c/0x70
[ 1257.701152][ T6870]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 1257.706867][ T6870]  ? __check_object_size+0x16e/0x3f0
[ 1257.714443][ T6870]  netlink_sendmsg+0x904/0xdf0
[ 1257.719210][ T6870]  ? netlink_unicast+0x7d0/0x7d0
[ 1257.724786][ T6870]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1257.731286][ T6870]  ? netlink_unicast+0x7d0/0x7d0
[ 1257.736222][ T6870]  sock_sendmsg+0xcf/0x120
[ 1257.740637][ T6870]  ____sys_sendmsg+0x6e8/0x810
[ 1257.745622][ T6870]  ? kernel_sendmsg+0x50/0x50
[ 1257.750290][ T6870]  ? do_recvmmsg+0x6d0/0x6d0
[ 1257.754881][ T6870]  ? perf_trace_lock+0xeb/0x4d0
[ 1257.759925][ T6870]  ? check_path.constprop.0+0x50/0x50
[ 1257.765383][ T6870]  ___sys_sendmsg+0xf3/0x170
[ 1257.769983][ T6870]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1257.775367][ T6870]  ? lock_downgrade+0x6e0/0x6e0
[ 1257.780240][ T6870]  ? __fget_files+0x28c/0x470
[ 1257.784938][ T6870]  ? __fget_light+0xea/0x280
[ 1257.789782][ T6870]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1257.796021][ T6870]  __sys_sendmsg+0xe5/0x1b0
[ 1257.800515][ T6870]  ? __sys_sendmsg_sock+0x30/0x30
[ 1257.805544][ T6870]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1257.811533][ T6870]  do_syscall_64+0x35/0xb0
[ 1257.815941][ T6870]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1257.821831][ T6870] RIP: 0033:0x7f44e2b4ae99
[ 1257.826258][ T6870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1257.845882][ T6870] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1257.854299][ T6870] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1257.862259][ T6870] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1257.870218][ T6870] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1257.878179][ T6870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1257.886140][ T6870] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1257.894118][ T6870]  </TASK>
03:16:01 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 14)

03:16:01 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0) (fail_nth: 55)

03:16:01 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x1f00, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

03:16:01 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1], 0x58}}, 0x0)

03:16:01 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000040)={0x24, @short}, 0x14)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, 0x0}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/64, &(0x7f0000000180)=0x40)
sendmmsg$sock(r0, &(0x7f0000002240), 0x400000000000116, 0x0)

03:16:01 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x2000, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1257.985568][ T6920] FAULT_INJECTION: forcing a failure.
[ 1257.985568][ T6920] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1258.002159][ T6908] syz-executor.3: vmalloc error: size 16384, page order 0, failed to allocate pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[ 1258.025910][ T6908] CPU: 0 PID: 6908 Comm: syz-executor.3 Not tainted 5.16.0-rc7-syzkaller #0
03:16:01 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1], 0x58}}, 0x0)

[ 1258.034737][ T6908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1258.044792][ T6908] Call Trace:
[ 1258.048070][ T6908]  <TASK>
[ 1258.050994][ T6908]  dump_stack_lvl+0xcd/0x134
[ 1258.055588][ T6908]  warn_alloc.cold+0x87/0x17a
[ 1258.060265][ T6908]  ? zone_watermark_ok_safe+0x290/0x290
[ 1258.065811][ T6908]  ? __kmalloc_node+0x62/0x390
[ 1258.070589][ T6908]  ? __vmalloc_node_range+0x571/0xab0
[ 1258.076054][ T6908]  __vmalloc_node_range+0x880/0xab0
[ 1258.081262][ T6908]  ? vfree_atomic+0xe0/0xe0
[ 1258.085774][ T6908]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 1258.088729][ T6936] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1258.091333][ T6908]  ? kernel_clone+0xe7/0xab0
[ 1258.091358][ T6908]  copy_process+0x926/0x75a0
[ 1258.091377][ T6908]  ? kernel_clone+0xe7/0xab0
[ 1258.113389][ T6908]  ? check_path.constprop.0+0x50/0x50
[ 1258.118776][ T6908]  ? lock_chain_count+0x20/0x20
[ 1258.123625][ T6908]  ? lock_chain_count+0x20/0x20
[ 1258.128484][ T6908]  ? find_held_lock+0x2d/0x110
03:16:01 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r1], 0x58}}, 0x0)

[ 1258.133261][ T6908]  ? __cleanup_sighand+0xb0/0xb0
[ 1258.138196][ T6908]  ? lock_downgrade+0x6e0/0x6e0
[ 1258.143054][ T6908]  ? __lock_acquire+0x1655/0x5470
[ 1258.148084][ T6908]  ? kernel_clone+0x314/0xab0
[ 1258.152760][ T6908]  kernel_clone+0xe7/0xab0
[ 1258.157446][ T6908]  ? perf_trace_lock+0xeb/0x4d0
[ 1258.159879][ T6936] FAULT_INJECTION: forcing a failure.
[ 1258.159879][ T6936] name failslab, interval 1, probability 0, space 0, times 0
[ 1258.162314][ T6908]  ? create_io_thread+0xf0/0xf0
[ 1258.162351][ T6908]  ? check_path.constprop.0+0x50/0x50
[ 1258.162381][ T6908]  ? find_held_lock+0x2d/0x110
[ 1258.189962][ T6908]  __do_sys_clone+0xc8/0x110
[ 1258.194582][ T6908]  ? kernel_clone+0xab0/0xab0
[ 1258.199284][ T6908]  ? lock_downgrade+0x6e0/0x6e0
[ 1258.204550][ T6908]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1258.210943][ T6908]  do_syscall_64+0x35/0xb0
[ 1258.215479][ T6908]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1258.221387][ T6908] RIP: 0033:0x7fe8ef2c02c1
03:16:01 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2], 0x58}}, 0x0)

[ 1258.225895][ T6908] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1258.245525][ T6908] RSP: 002b:00007ffd8e7019f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1258.253962][ T6908] RAX: ffffffffffffffda RBX: 00007fe8eda87700 RCX: 00007fe8ef2c02c1
[ 1258.261950][ T6908] RDX: 00007fe8eda879d0 RSI: 00007fe8eda872f0 RDI: 00000000003d0f00
[ 1258.269992][ T6908] RBP: 00007ffd8e701c40 R08: 00007fe8eda87700 R09: 00007fe8eda87700
[ 1258.278005][ T6908] R10: 00007fe8eda879d0 R11: 0000000000000206 R12: 00007ffd8e701aae
[ 1258.286001][ T6908] R13: 00007ffd8e701aaf R14: 00007fe8eda87300 R15: 0000000000022000
[ 1258.294010][ T6908]  </TASK>
[ 1258.297039][ T6936] CPU: 1 PID: 6936 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1258.305923][ T6936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1258.316252][ T6936] Call Trace:
[ 1258.319819][ T6936]  <TASK>
[ 1258.322929][ T6936]  dump_stack_lvl+0xcd/0x134
[ 1258.324511][ T6908] Mem-Info:
[ 1258.327544][ T6936]  should_fail.cold+0x5/0xa
[ 1258.327579][ T6936]  ? ieee80211_mesh_init_sdata+0xe7/0x580
[ 1258.330873][ T6908] active_anon:718 inactive_anon:184213 isolated_anon:0
[ 1258.330873][ T6908]  active_file:5041 inactive_file:71790 isolated_file:0
[ 1258.330873][ T6908]  unevictable:768 dirty:38 writeback:0
[ 1258.330873][ T6908]  slab_reclaimable:21841 slab_unreclaimable:101789
[ 1258.330873][ T6908]  mapped:27657 shmem:2484 pagetables:2671 bounce:0
[ 1258.330873][ T6908]  kernel_misc_reclaimable:0
[ 1258.330873][ T6908]  free:1212475 free_pcp:9862 free_cma:0
[ 1258.335277][ T6936]  should_failslab+0x5/0x10
[ 1258.335306][ T6936]  kmem_cache_alloc_trace+0x55/0x2c0
[ 1258.335330][ T6936]  ? init_timer_key+0x150/0x340
[ 1258.335357][ T6936]  ieee80211_mesh_init_sdata+0xe7/0x580
[ 1258.341174][ T6908] Node 0 active_anon:2864kB inactive_anon:735944kB active_file:20092kB inactive_file:287160kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:110628kB dirty:148kB writeback:0kB shmem:7484kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 337920kB writeback_tmp:0kB kernel_stack:13224kB pagetables:10680kB all_unreclaimable? no
[ 1258.383247][ T6936]  ieee80211_setup_sdata+0xdf2/0x1090
[ 1258.383288][ T6936]  ieee80211_if_add+0xf83/0x1c60
[ 1258.383322][ T6936]  ieee80211_add_iface+0x99/0x160
[ 1258.383349][ T6936]  ? ieee80211_rfkill_poll+0xb0/0xb0
[ 1258.387991][ T6908] Node 1 active_anon:8kB inactive_anon:908kB active_file:72kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:2452kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:4kB all_unreclaimable? no
[ 1258.393108][ T6936]  nl80211_new_interface+0x581/0x1170
[ 1258.393147][ T6936]  ? nl80211_get_interface+0x230/0x230
[ 1258.398119][ T6908] Node 0 
[ 1258.403507][ T6936]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1258.403542][ T6936]  ? nl80211_pre_doit+0xa6/0x620
[ 1258.435988][ T6908] DMA free:15360kB boost:0kB min:200kB low:248kB high:296kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1258.440762][ T6936]  genl_family_rcv_msg_doit+0x228/0x320
[ 1258.440803][ T6936]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[ 1258.445857][ T6908] lowmem_reserve[]:
[ 1258.450728][ T6936]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1258.450773][ T6936]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1258.456157][ T6908]  0
[ 1258.485206][ T6936]  ? ns_capable+0xd9/0x100
[ 1258.485252][ T6936]  genl_rcv_msg+0x328/0x580
[ 1258.485283][ T6936]  ? genl_get_cmd+0x480/0x480
[ 1258.485305][ T6936]  ? nl80211_get_interface+0x230/0x230
[ 1258.490915][ T6908]  2645
[ 1258.496210][ T6936]  ? lock_release+0x720/0x720
[ 1258.496241][ T6936]  ? check_path.constprop.0+0x50/0x50
[ 1258.496270][ T6936]  netlink_rcv_skb+0x153/0x420
[ 1258.499262][ T6908]  2645
[ 1258.505418][ T6936]  ? genl_get_cmd+0x480/0x480
[ 1258.505448][ T6936]  ? netlink_ack+0xa60/0xa60
[ 1258.505479][ T6936]  ? netlink_deliver_tap+0x1b1/0xc30
[ 1258.510498][ T6908]  2645
[ 1258.536752][ T6936]  genl_rcv+0x24/0x40
[ 1258.536788][ T6936]  netlink_unicast+0x533/0x7d0
03:16:01 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d00009f7531cbff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d001900001400060076657468115f746f5f7465616d0000000400cc0008000500070000001400044073"], 0x58}}, 0x0) (fail_nth: 15)

03:16:01 executing program 5:
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x2100, 0x0, 0x21, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "48fd88", 0x0, "ffba4d"}}}}}}, 0x0)

[ 1258.536817][ T6936]  ? netlink_attachskb+0x880/0x880
[ 1258.536838][ T6936]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1258.536870][ T6936]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1258.536892][ T6936]  ? __phys_addr_symbol+0x2c/0x70
[ 1258.536916][ T6936]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 1258.536938][ T6936]  ? __check_object_size+0x16e/0x3f0
[ 1258.536969][ T6936]  netlink_sendmsg+0x904/0xdf0
[ 1258.537000][ T6936]  ? netlink_unicast+0x7d0/0x7d0
[ 1258.537033][ T6936]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1258.537061][ T6936]  ? netlink_unicast+0x7d0/0x7d0
[ 1258.537088][ T6936]  sock_sendmsg+0xcf/0x120
[ 1258.537119][ T6936]  ____sys_sendmsg+0x6e8/0x810
[ 1258.537150][ T6936]  ? kernel_sendmsg+0x50/0x50
[ 1258.537175][ T6936]  ? do_recvmmsg+0x6d0/0x6d0
[ 1258.537198][ T6936]  ? perf_trace_lock+0xeb/0x4d0
[ 1258.543058][ T6908]  2645
[ 1258.550195][ T6936]  ? check_path.constprop.0+0x50/0x50
[ 1258.550236][ T6936]  ___sys_sendmsg+0xf3/0x170
[ 1258.550263][ T6936]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1258.554191][ T6908] 
[ 1258.560723][ T6936]  ? lock_downgrade+0x6e0/0x6e0
[ 1258.560770][ T6936]  ? __fget_files+0x28c/0x470
[ 1258.567130][ T6908] Node 0 
[ 1258.569481][ T6936]  ? __fget_light+0xea/0x280
[ 1258.569513][ T6936]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1258.574010][ T6908] DMA32 free:886960kB boost:0kB min:35676kB low:44592kB high:53508kB reserved_highatomic:0KB active_anon:2864kB inactive_anon:735944kB active_file:20092kB inactive_file:287160kB unevictable:1536kB writepending:148kB present:3129332kB managed:2716748kB mlocked:0kB bounce:0kB free_pcp:39448kB local_pcp:20352kB free_cma:0kB
[ 1258.578386][ T6936]  __sys_sendmsg+0xe5/0x1b0
[ 1258.578416][ T6936]  ? __sys_sendmsg_sock+0x30/0x30
[ 1258.583158][ T6908] lowmem_reserve[]:
[ 1258.588520][ T6936]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1258.588557][ T6936]  do_syscall_64+0x35/0xb0
[ 1258.591349][ T6908]  0
[ 1258.595963][ T6936]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1258.595996][ T6936] RIP: 0033:0x7f44e2b4ae99
[ 1258.601443][ T6908]  0
[ 1258.606082][ T6936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1258.606105][ T6936] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1258.606129][ T6936] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1258.608907][ T6908]  0
[ 1258.613517][ T6936] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1258.613533][ T6936] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1258.613547][ T6936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1258.618232][ T6908]  0
[ 1258.623368][ T6936] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1258.623405][ T6936]  </TASK>
[ 1258.675212][ T6920] CPU: 1 PID: 6920 Comm: syz-executor.1 Not tainted 5.16.0-rc7-syzkaller #0
[ 1258.910531][ T6920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1258.920578][ T6920] Call Trace:
[ 1258.923846][ T6920]  <TASK>
[ 1258.926766][ T6920]  dump_stack_lvl+0xcd/0x134
[ 1258.931358][ T6920]  should_fail.cold+0x5/0xa
[ 1258.935881][ T6920]  _copy_from_user+0x2c/0x180
[ 1258.940573][ T6920]  __copy_msghdr_from_user+0x91/0x4b0
[ 1258.945941][ T6920]  ? __ia32_sys_shutdown+0x70/0x70
[ 1258.951045][ T6920]  ? __lock_acquire+0x1655/0x5470
[ 1258.956076][ T6920]  ___sys_recvmsg+0xd5/0x200
[ 1258.960662][ T6920]  ? __copy_msghdr_from_user+0x4b0/0x4b0
[ 1258.966305][ T6920]  ? check_path.constprop.0+0x50/0x50
[ 1258.971676][ T6920]  ? find_held_lock+0x2d/0x110
[ 1258.976450][ T6920]  ? __might_fault+0xd1/0x170
[ 1258.981119][ T6920]  ? lock_downgrade+0x6e0/0x6e0
[ 1258.985971][ T6920]  do_recvmmsg+0x24d/0x6d0
[ 1258.990386][ T6920]  ? ___sys_recvmsg+0x200/0x200
[ 1258.995232][ T6920]  ? check_path.constprop.0+0x50/0x50
[ 1259.000608][ T6920]  ? __context_tracking_exit+0xb8/0xe0
[ 1259.006060][ T6920]  ? lock_downgrade+0x6e0/0x6e0
[ 1259.010901][ T6920]  ? lock_downgrade+0x6e0/0x6e0
[ 1259.015744][ T6920]  __x64_sys_recvmmsg+0x20b/0x260
[ 1259.020764][ T6920]  ? __do_sys_socketcall+0x590/0x590
[ 1259.026040][ T6920]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1259.031935][ T6920]  do_syscall_64+0x35/0xb0
[ 1259.036430][ T6920]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1259.042319][ T6920] RIP: 0033:0x7f688ab57e99
[ 1259.046725][ T6920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1259.066329][ T6920] RSP: 002b:00007f68894cd168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1259.074743][ T6920] RAX: ffffffffffffffda RBX: 00007f688ac6af60 RCX: 00007f688ab57e99
[ 1259.082700][ T6920] RDX: 000000000000072a RSI: 0000000020000080 RDI: 0000000000000005
[ 1259.090746][ T6920] RBP: 00007f68894cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1259.098707][ T6920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1259.106665][ T6920] R13: 00007ffc79e776af R14: 00007f68894cd300 R15: 0000000000022000
[ 1259.114639][ T6920]  </TASK>
[ 1259.135056][ T6948] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1259.158591][ T6908]  0
[ 1259.167682][ T6908] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:400kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1259.167963][ T6948] FAULT_INJECTION: forcing a failure.
[ 1259.167963][ T6948] name failslab, interval 1, probability 0, space 0, times 0
[ 1259.207362][ T6908] lowmem_reserve[]: 0 0 0 0 0
[ 1259.212171][ T6908] Node 1 Normal free:3947580kB boost:0kB min:54224kB low:67780kB high:81336kB reserved_highatomic:0KB active_anon:8kB inactive_anon:908kB active_file:72kB inactive_file:0kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1259.242717][ T6948] CPU: 0 PID: 6948 Comm: syz-executor.2 Not tainted 5.16.0-rc7-syzkaller #0
[ 1259.251429][ T6948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1259.261499][ T6948] Call Trace:
[ 1259.264777][ T6948]  <TASK>
[ 1259.267713][ T6948]  dump_stack_lvl+0xcd/0x134
[ 1259.272314][ T6948]  should_fail.cold+0x5/0xa
[ 1259.276816][ T6948]  ? mesh_table_alloc+0x3e/0x1a0
[ 1259.281760][ T6948]  should_failslab+0x5/0x10
[ 1259.286255][ T6948]  kmem_cache_alloc_trace+0x55/0x2c0
[ 1259.291630][ T6948]  mesh_table_alloc+0x3e/0x1a0
[ 1259.296394][ T6948]  mesh_pathtbl_init+0x11/0xd0
[ 1259.301247][ T6948]  ieee80211_mesh_init_sdata+0x29c/0x580
[ 1259.306886][ T6948]  ieee80211_setup_sdata+0xdf2/0x1090
[ 1259.312261][ T6948]  ieee80211_if_add+0xf83/0x1c60
[ 1259.317203][ T6948]  ieee80211_add_iface+0x99/0x160
[ 1259.322228][ T6948]  ? ieee80211_rfkill_poll+0xb0/0xb0
[ 1259.327519][ T6948]  nl80211_new_interface+0x581/0x1170
[ 1259.332891][ T6948]  ? nl80211_get_interface+0x230/0x230
[ 1259.338347][ T6948]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1259.344591][ T6948]  ? nl80211_pre_doit+0xa6/0x620
[ 1259.349531][ T6948]  genl_family_rcv_msg_doit+0x228/0x320
[ 1259.355083][ T6948]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[ 1259.362452][ T6948]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1259.368876][ T6948]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1259.375110][ T6948]  ? ns_capable+0xd9/0x100
[ 1259.379522][ T6948]  genl_rcv_msg+0x328/0x580
[ 1259.384027][ T6948]  ? genl_get_cmd+0x480/0x480
[ 1259.388696][ T6948]  ? nl80211_get_interface+0x230/0x230
[ 1259.394151][ T6948]  ? lock_release+0x720/0x720
[ 1259.398823][ T6948]  ? check_path.constprop.0+0x50/0x50
[ 1259.404195][ T6948]  netlink_rcv_skb+0x153/0x420
[ 1259.408958][ T6948]  ? genl_get_cmd+0x480/0x480
[ 1259.413631][ T6948]  ? netlink_ack+0xa60/0xa60
[ 1259.418219][ T6948]  ? netlink_deliver_tap+0x1b1/0xc30
[ 1259.423500][ T6948]  genl_rcv+0x24/0x40
[ 1259.427473][ T6948]  netlink_unicast+0x533/0x7d0
[ 1259.432236][ T6948]  ? netlink_attachskb+0x880/0x880
[ 1259.437337][ T6948]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1259.443573][ T6948]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1259.449806][ T6948]  ? __phys_addr_symbol+0x2c/0x70
[ 1259.454822][ T6948]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 1259.460538][ T6948]  ? __check_object_size+0x16e/0x3f0
[ 1259.465820][ T6948]  netlink_sendmsg+0x904/0xdf0
[ 1259.470589][ T6948]  ? netlink_unicast+0x7d0/0x7d0
[ 1259.475525][ T6948]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1259.481761][ T6948]  ? netlink_unicast+0x7d0/0x7d0
[ 1259.486694][ T6948]  sock_sendmsg+0xcf/0x120
[ 1259.491108][ T6948]  ____sys_sendmsg+0x6e8/0x810
[ 1259.495879][ T6948]  ? kernel_sendmsg+0x50/0x50
[ 1259.500549][ T6948]  ? do_recvmmsg+0x6d0/0x6d0
[ 1259.505141][ T6948]  ? perf_trace_lock+0xeb/0x4d0
[ 1259.510006][ T6948]  ? check_path.constprop.0+0x50/0x50
[ 1259.515380][ T6948]  ___sys_sendmsg+0xf3/0x170
[ 1259.519971][ T6948]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1259.525250][ T6948]  ? lock_downgrade+0x6e0/0x6e0
[ 1259.530283][ T6948]  ? __fget_files+0x28c/0x470
[ 1259.534968][ T6948]  ? __fget_light+0xea/0x280
[ 1259.539551][ T6948]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1259.545883][ T6948]  __sys_sendmsg+0xe5/0x1b0
[ 1259.550382][ T6948]  ? __sys_sendmsg_sock+0x30/0x30
[ 1259.555410][ T6948]  ? syscall_enter_from_user_mode+0x21/0x70
[ 1259.561306][ T6948]  do_syscall_64+0x35/0xb0
[ 1259.565894][ T6948]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1259.571789][ T6948] RIP: 0033:0x7f44e2b4ae99
[ 1259.576287][ T6948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1259.595903][ T6948] RSP: 002b:00007f44e14c0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1259.604322][ T6948] RAX: ffffffffffffffda RBX: 00007f44e2c5df60 RCX: 00007f44e2b4ae99
[ 1259.612291][ T6948] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[ 1259.620261][ T6948] RBP: 00007f44e14c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 1259.628231][ T6948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1259.636288][ T6948] R13: 00007ffd073c8bef R14: 00007f44e14c0300 R15: 0000000000022000
[ 1259.644277][ T6948]  </TASK>
[ 1259.659608][ T6908] lowmem_reserve[]: 0 0 0 0 0
[ 1259.664508][ T6908] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1259.677617][ T6908] Node 0 DMA32: 366*4kB (UM) 29*8kB (UME) 772*16kB (UME) 902*32kB (UME) 327*64kB (UME) 200*128kB (UM) 76*256kB (UM) 50*512kB (UM) 17*1024kB (UM) 5*2048kB (UM) 178*4096kB (UME) = 891232kB
[ 1259.696500][ T6908] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 1259.708170][ T6908] Node 1 Normal: 173*4kB (UE) 57*8kB (UE) 36*16kB (UE) 164*32kB (UME) 82*64kB (UME) 29*128kB (UME) 14*256kB (UE) 4*512kB (U) 0*1024kB 3*2048kB (UM) 957*4096kB (M) = 3947580kB
[ 1259.725815][ T6908] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1259.735569][ T6908] Node 0 hugepages_total=3 hugepages_free=0 hugepages_surp=1 hugepages_size=2048kB
[ 1259.745113][ T6908] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1259.756385][ T6908] Node 1 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1259.763283][ T3677] ==================================================================
[ 1259.765801][ T6908] 14829 total pagecache pages
[ 1259.774248][ T3677] BUG: KASAN: null-ptr-deref in try_to_grab_pending.part.0+0x26/0x770
[ 1259.774287][ T3677] Write of size 8 at addr 0000000000000088 by task kworker/1:6/3677
[ 1259.774304][ T3677] 
[ 1259.774310][ T3677] CPU: 1 PID: 3677 Comm: kworker/1:6 Not tainted 5.16.0-rc7-syzkaller #0
[ 1259.778986][ T6908] 0 pages in swap cache
[ 1259.787279][ T3677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1259.787297][ T3677] Workqueue: events cfg80211_destroy_iface_wk
[ 1259.787332][ T3677] Call Trace:
[ 1259.787343][ T3677]  <TASK>
[ 1259.795340][ T6908] Swap cache stats: add 0, delete 0, find 0/0
[ 1259.797611][ T3677]  dump_stack_lvl+0xcd/0x134
[ 1259.806044][ T6908] Free swap  = 0kB
[ 1259.810165][ T3677]  kasan_report.cold+0x66/0xdf
[ 1259.820292][ T6908] Total swap = 0kB
[ 1259.826584][ T3677]  ? try_to_grab_pending.part.0+0x26/0x770
[ 1259.826621][ T3677]  kasan_check_range+0x13d/0x180
[ 1259.829916][ T6908] 2097051 pages RAM
[ 1259.832914][ T3677]  try_to_grab_pending.part.0+0x26/0x770
[ 1259.838999][ T6908] 0 pages HighMem/MovableOnly
[ 1259.843523][ T3677]  ? lockdep_hardirqs_off+0x90/0xd0
[ 1259.847277][ T6908] 384519 pages reserved
[ 1259.851972][ T3677]  try_to_grab_pending+0xa1/0xd0
[ 1259.855727][ T6908] 0 pages cma reserved
[ 1259.861458][ T3677]  __cancel_work_timer+0xa6/0x570
[ 1259.861488][ T3677]  ? try_to_grab_pending+0xd0/0xd0
[ 1259.861506][ T3677]  ? lockdep_hardirqs_on+0x79/0x100
[ 1259.861531][ T3677]  ? slab_free_freelist_hook+0x8b/0x1c0
[ 1259.861557][ T3677]  ? mesh_rmc_free+0x1ae/0x260
[ 1259.861579][ T3677]  ? kfree+0xf6/0x560
[ 1259.861603][ T3677]  rhashtable_free_and_destroy+0x29/0x920
[ 1259.861634][ T3677]  ? mesh_path_free_rcu+0x440/0x440
[ 1259.861662][ T3677]  ? mesh_rmc_free+0x1ae/0x260
[ 1259.861691][ T3677]  mesh_pathtbl_unregister+0x42/0xa0
[ 1259.861719][ T3677]  ieee80211_uninit+0x7e/0x90
[ 1259.861741][ T3677]  ? ieee80211_check_queues+0x340/0x340
[ 1259.861760][ T3677]  unregister_netdevice_many+0xc83/0x1790
[ 1259.861799][ T3677]  ? default_device_exit+0x2d0/0x2d0
[ 1259.861823][ T3677]  ? kernfs_remove_by_name_ns+0x5b/0xa0
[ 1259.861862][ T3677]  unregister_netdevice_queue+0x2dd/0x3c0
[ 1259.861885][ T3677]  ? unregister_netdevice_many+0x1790/0x1790
[ 1259.861915][ T3677]  _cfg80211_unregister_wdev+0x485/0x740
[ 1259.861944][ T3677]  ieee80211_if_remove+0x1df/0x380
[ 1259.861968][ T3677]  ieee80211_del_iface+0x12/0x20
[ 1259.861993][ T3677]  cfg80211_destroy_ifaces+0x2ff/0x840
[ 1259.862023][ T3677]  cfg80211_destroy_iface_wk+0x1a/0x20
[ 1260.017352][ T3677]  process_one_work+0x9b2/0x1660
[ 1260.023787][ T3677]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 1260.029153][ T3677]  ? rwlock_bug.part.0+0x90/0x90
[ 1260.034084][ T3677]  ? _raw_spin_lock_irq+0x41/0x50
[ 1260.039198][ T3677]  worker_thread+0x65d/0x1130
[ 1260.044053][ T3677]  ? process_one_work+0x1660/0x1660
[ 1260.049333][ T3677]  kthread+0x405/0x4f0
[ 1260.053426][ T3677]  ? set_kthread_struct+0x130/0x130
[ 1260.058619][ T3677]  ret_from_fork+0x1f/0x30
[ 1260.063324][ T3677]  </TASK>
[ 1260.066334][ T3677] ==================================================================
[ 1260.075331][ T3677] Disabling lock debugging due to kernel taint
[ 1260.081460][ T3677] Kernel panic - not syncing: panic_on_warn set ...
[ 1260.088216][ T3677] CPU: 1 PID: 3677 Comm: kworker/1:6 Tainted: G    B             5.16.0-rc7-syzkaller #0
[ 1260.098006][ T3677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1260.108076][ T3677] Workqueue: events cfg80211_destroy_iface_wk
[ 1260.114164][ T3677] Call Trace:
[ 1260.117433][ T3677]  <TASK>
[ 1260.120354][ T3677]  dump_stack_lvl+0xcd/0x134
[ 1260.124943][ T3677]  panic+0x2b0/0x6dd
[ 1260.128830][ T3677]  ? __warn_printk+0xf3/0xf3
[ 1260.133413][ T3677]  ? try_to_grab_pending.part.0+0x26/0x770
[ 1260.139562][ T3677]  ? try_to_grab_pending.part.0+0x26/0x770
[ 1260.145380][ T3677]  end_report.cold+0x63/0x6f
[ 1260.149965][ T3677]  kasan_report.cold+0x71/0xdf
[ 1260.154720][ T3677]  ? try_to_grab_pending.part.0+0x26/0x770
[ 1260.160525][ T3677]  kasan_check_range+0x13d/0x180
[ 1260.165463][ T3677]  try_to_grab_pending.part.0+0x26/0x770
[ 1260.171085][ T3677]  ? lockdep_hardirqs_off+0x90/0xd0
[ 1260.176275][ T3677]  try_to_grab_pending+0xa1/0xd0
[ 1260.181302][ T3677]  __cancel_work_timer+0xa6/0x570
[ 1260.186321][ T3677]  ? try_to_grab_pending+0xd0/0xd0
[ 1260.192076][ T3677]  ? lockdep_hardirqs_on+0x79/0x100
[ 1260.197376][ T3677]  ? slab_free_freelist_hook+0x8b/0x1c0
[ 1260.202919][ T3677]  ? mesh_rmc_free+0x1ae/0x260
[ 1260.207693][ T3677]  ? kfree+0xf6/0x560
[ 1260.211765][ T3677]  rhashtable_free_and_destroy+0x29/0x920
[ 1260.217485][ T3677]  ? mesh_path_free_rcu+0x440/0x440
[ 1260.223051][ T3677]  ? mesh_rmc_free+0x1ae/0x260
[ 1260.228093][ T3677]  mesh_pathtbl_unregister+0x42/0xa0
[ 1260.234350][ T3677]  ieee80211_uninit+0x7e/0x90
[ 1260.239040][ T3677]  ? ieee80211_check_queues+0x340/0x340
[ 1260.245114][ T3677]  unregister_netdevice_many+0xc83/0x1790
[ 1260.250833][ T3677]  ? default_device_exit+0x2d0/0x2d0
[ 1260.256136][ T3677]  ? kernfs_remove_by_name_ns+0x5b/0xa0
[ 1260.261694][ T3677]  unregister_netdevice_queue+0x2dd/0x3c0
[ 1260.267600][ T3677]  ? unregister_netdevice_many+0x1790/0x1790
[ 1260.273607][ T3677]  _cfg80211_unregister_wdev+0x485/0x740
[ 1260.279239][ T3677]  ieee80211_if_remove+0x1df/0x380
[ 1260.284530][ T3677]  ieee80211_del_iface+0x12/0x20
[ 1260.289462][ T3677]  cfg80211_destroy_ifaces+0x2ff/0x840
[ 1260.295024][ T3677]  cfg80211_destroy_iface_wk+0x1a/0x20
[ 1260.300516][ T3677]  process_one_work+0x9b2/0x1660
[ 1260.305500][ T3677]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 1260.310861][ T3677]  ? rwlock_bug.part.0+0x90/0x90
[ 1260.315787][ T3677]  ? _raw_spin_lock_irq+0x41/0x50
[ 1260.320964][ T3677]  worker_thread+0x65d/0x1130
[ 1260.325654][ T3677]  ? process_one_work+0x1660/0x1660
[ 1260.330840][ T3677]  kthread+0x405/0x4f0
[ 1260.334900][ T3677]  ? set_kthread_struct+0x130/0x130
[ 1260.340175][ T3677]  ret_from_fork+0x1f/0x30
[ 1260.344582][ T3677]  </TASK>
[ 1260.348415][ T3677] Kernel Offset: disabled
[ 1260.352719][ T3677] Rebooting in 86400 seconds..