last executing test programs:

5.447919558s ago: executing program 2 (id=653):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000100)="9b075fbb87ef52092b858b391de3c00e3dc5075afb0bd1538b37b0ba123dad3dce0ce4b4ec2f91cd", 0x28, 0x20040000, &(0x7f00000004c0)={0x2, 0x4e20, @multicast1}, 0x10)
readv(r0, &(0x7f0000000500)=[{&(0x7f0000002100)=""/4076, 0x28}], 0x57)

4.470559099s ago: executing program 4 (id=661):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, 0x0, &(0x7f00000000c0)='GPL\x00', 0x1}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0xfffffffc}, 0x50)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x28}}, 0x10)
sendto$inet(r1, &(0x7f0000000100)="9b075fbb87ef52092b858b391de3c00e3dc5075afb0bd1538b37b0ba123dad3dce0ce4b4ec2f91cd69521e95e9", 0x2d, 0x20040000, &(0x7f00000004c0)={0x2, 0x4e20, @multicast1}, 0x10)
readv(r0, &(0x7f0000000500)=[{&(0x7f0000002100)=""/4076, 0x28}], 0x57)

4.469802418s ago: executing program 2 (id=662):
r0 = socket$netlink(0x10, 0x3, 0x5)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x5, 0x4, 0x4, 0x4}, 0x50)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x42000, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
ioctl$TUNSETLINK(r2, 0x400454cd, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @multicast})
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000200), &(0x7f00000003c0)='%pS    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000800)={r5, <r6=>0xffffffffffffffff}, 0x4)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x16, 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000ffff0b867b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r7, 0x0, 0xe, 0x48000000, &(0x7f0000000300)="40f0538ef047b21fb60068305500", 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x15, 0x17, &(0x7f0000000880)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0xa0}}, {{0x6, 0x0, 0x2, 0x9, 0x0, 0x6, 0xe7030000}, {0x4, 0x0, 0x0, 0x6}}, [@printk={@llx, {0x5, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xa, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x14}}], {{0x4, 0x1, 0x5, 0x3}, {0x5, 0x0, 0xb, 0x3, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x44}}}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)
bind$netrom(r8, &(0x7f0000000000)={{0x6, @rose, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48)
r9 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x0, <r10=>0x0}, 0x0)
r11 = getuid()
setsockopt$inet_IP_XFRM_POLICY(r9, 0x0, 0x11, &(0x7f0000000400)={{{@in6=@loopback, @in6=@local, 0x4e21, 0x5, 0x4e23, 0x1, 0x0, 0x0, 0x80, 0x18, r10, r11}, {0x0, 0x3, 0x5, 0xa400000000000000, 0x8, 0x7d, 0x1, 0x3}, {0x49c, 0x8, 0x80000001, 0x7fff}, 0x7, 0x0, 0x2, 0x0, 0x3, 0x2}, {{@in=@remote, 0x4d2, 0x6c}, 0xa, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3506, 0x7, 0x2, 0x3, 0x1, 0x1, 0x22c}}, 0xe8)
sendmsg$inet_sctp(r9, &(0x7f00000001c0)={&(0x7f0000000100)=@in={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f0000000140), 0x0, &(0x7f0000000180)=[@init={0x18, 0x84, 0x0, {0x1, 0xffff, 0x4, 0x203}}, @prinfo={0x18, 0x84, 0x5, {0x0, 0x2}}], 0x30}, 0x40)
syz_emit_ethernet(0x3e, &(0x7f0000000140)={@multicast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010100, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x2, @empty=0xac1414aa}}}}}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000f80)=ANY=[@ANYRES64, @ANYRES32=0x0, @ANYBLOB="000000008852030100690300fe80000000000000aa08000100"/52, @ANYRES64, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="050009002900000008001f0004000000"], 0x68}, 0x1, 0x0, 0x0, 0x2000c014}, 0x24000085)

4.320210018s ago: executing program 4 (id=663):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc010) (async)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) (async)
r2 = socket$rds(0x15, 0x5, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000140)='fib_table_lookup\x00', r3, 0x0, 0x417}, 0x18) (async)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) (async)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
r5 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) (async)
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001e80)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xf, 0x9}, {}, {0xb, 0xe}}, [@filter_kind_options=@f_route={{0xa}, {0x14, 0x2, [@TCA_ROUTE4_TO={0x8, 0x2, 0x14}, @TCA_ROUTE4_IIF={0x8}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x20000040) (async)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) (async)
socket$unix(0x1, 0x1, 0x0) (async)
syz_emit_ethernet(0x52, &(0x7f00000000c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x44, 0xfffc, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, {0xa, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, 0x0, @remote, @multicast2, {[@noop, @timestamp_addr={0x44, 0xc, 0x0, 0x1, 0x0, [{@private=0xa010101, 0x7}]}, @cipso={0x86, 0x6}]}}}}}}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$rds(r2, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0) (async)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_TIME_STAMP(r6, 0x0, 0x3, &(0x7f0000001e40), 0x4) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc250}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_CREATE_SOCKETS={0x5}]}}}, @IFLA_MASTER={0x8, 0x3}]}, 0x40}}, 0x0) (async)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000200), 0x4) (async)
ioctl$FS_IOC_RESVSP(r0, 0x40305829, &(0x7f0000000040)={0x1100, 0x0, 0x7fffffffffffffff, 0x10003}) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0) (async)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, &(0x7f0000000040)='ip6gre0\x00', 0x10) (async)
setsockopt$inet_int(r8, 0x0, 0x32, &(0x7f0000000f00)=0x1000000, 0x4)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x154}}, 0x0)

4.254650248s ago: executing program 3 (id=664):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000007c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha256\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept$alg(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000008600)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000001240)=""/4096, 0x1000}], 0x1}, 0xfffffffd}], 0x100000, 0x40012101, 0x0) (fail_nth: 39)

4.158585929s ago: executing program 4 (id=665):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in=@remote, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x800}, [@tmpl={0x44, 0x8, [{{@in6=@loopback, 0x4d2, 0x2b}, 0x0, @in6=@mcast2}]}]}, 0xfc}}, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000001c0)='\x00', 0x1)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r2, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f0000000480)=ANY=[@ANYBLOB="84000000", @ANYRES16=r3, @ANYBLOB="20002cbd7000fedbdf250e000000700001801400020069705f76746930000000000000000000140002006d6163766c616e3100000000000000001400020076657468315f766972745f7769666900140002006e6574643d1a73696d3000000000000014ed01006970365f7674693000000000000000000800030002000000", @ANYBLOB="5195f749c8ec826f3552f67e135e40f616e9f9e62f203526546d35ebea961cf122b4e1d45f66766635db375dd49b1f517bfbe1821a35bc2b176df28122b43bb5ad56a723bcbdb66f76f7470dbbdcb2010664e1fba0df75b97bba94784bc0561b102748ba91d3bf77f8ad47d100c9a04ca7ef1ea6c11647fa5bd29ed714725a5abca439347fa87927a2bd345131010d9abadd753c87b4b0b8d2a5398c89ed2d9a6c5740e7f38f5afdb2d1bac7464a61af295c3a66876c15879baa95c0bb1ab755fe6715847664b11fa95b8ddd11bcdf966b0fd188c8159f359b0de28be9ae4daa9eaa97839ad026f1315413ee974d1fc29a203779dea622d537590d36269bc561840d612c046b157e8705fca4ddb7521e9457b9c71f42871f605c0fb8cf3f2799661f3b73fcde4e486b2d431d1b7331cb67645420ff95aeb5b569b11dd1878747cbbf75937bdd21baa7e64c4a856f86d6ceae2967cdb38ed13058f449aa3cf1b6574280eb6266f45be1fa4fc3386fc02feabc4617e2af7d6e79c79292d78a20ab152dab511f6836d2f8d3e2e07aef7ad5899cd0941e30ee5edb12d0db4f6845d9a4585b3bfdae0f590b36a9f1555f17780bf39794c36e30c1bf689997c4c8483c94987a5ff31886b03e3def74c9c6b6f93fb19bd2fa1b43cbf1e6274e31f55f5649bd6068d86fd665eba35053575c4c5db7a35953ced7d48cafe577522c9033a3652da276855d8ce5fdee9565edb3388bc54104be22286e29b4285462a5954775bb327752f891a48fea507a66dfa71144db1fa30e7bfdf5a7245f57a73657c9682f5cb34366ef417b16ae2a6f0187bd31d1232d08aaf23a23efcfe761537b49d86bc5f7f2535023c32326d607a8eb32089f5128b00b978d48c816e639595561e2e4cb90a67d5916b249b025662ef6dc9ba6f7b0c687db944e3fea540495b5a5282b31bf8d52d49f655523208cb802694b3d8554fc1b72678b13a0aef4b1ac7a289f54ae296883e6296e063a99616414f02bb33e3c753b13e282dc1404e72421729d79e51b7a7343e689263758503e901a33bff9e71d8827a80b242fda4184f6b9b4f88b4de229d4875e69acbd9d8e405d009f942ae29ae4289093ae5180a50937f3dac57a22d34718844105651e842bb3858cba406898c6409dcddb64152c51b0ee72a33edea1ef26fc384eeef45619638967d592e988c578d524e5510bc7e8423e32503273c070c128ec73c419a699dd30248d1734db70832033dea647cf849927dbc4258e59e0f8760b3401ac8a21c84738eb8f3b2b0fcb1cfbcdf6eeb63ea75b1c8a2ba3a8963b348c34da741b8b74d655988d41e0a6cfbe496ccac8aab8c18dbe71b6630fcd48866363e76472db64e4e66b91d9e5f25ff00199112481102a1dd6045ea5ac0d0bb564bd8ef461f9aa0f6e0d044b69d11ef95a0287c1951735728ffbf6962ce132dfb415853959fd02ad4c8d4fbb13ea93eff7017185e5cad4f67bff8742694a236580077818369e48e88eacbf96669e39feac90375b7edb7570e5f492af3efdb2e3ed2033c06289095348c57215b32e9f0b748b7a7f28fa7f912cde5aef766ec2666b89d2044453ae8442f0725ae2e925e97c4e195a601b540fa87785a8d96b5ad49b9abd4d58145fb9cbea3f2283010558cdb36a5976f35024fb7b527f7da72579476acf7dabe70fcb8924351edecb860b1bed8755bdf4f639ce47ecdd64a3caf6955114b6fbb25812b66e7c4ef058965f6c9cbd3cc555bf2f748de8eaef983c101667c808001cb622ce9d8b3a39fa4df50a695243998a25dbcffc60d8ebcf26411ae6ba892be155bbc68c1669fdb8f5d38ea9c731b4819c565b75f6d2a23c599a2a9062d69ad5f58735b874c2564bcc007984ef9c39a93bc1cea92733d94c285f3505e076ec980f346acd111bd6e709d612c861b7b61b3e02de95a89be93a8d09b8312809bf85fb1f2556c0f5d49eff5615bc09770d7b468849bc1245a2fa6e66efe26d9e8613a0e1c9e8df1e6f190827b0ffb0ea9f0803d25d09c9e112aafe3da6bba7c173da7cb7fa8d65db44f57c495e98769766ee25411bbb98f58e9ff4737fe0062eef9a251bc7e57cc84de8c4fed53b98e43a95da33d6dbfdd62fe9cea2936e49485d8d9cf81b04c814f9bab437de0c567e46a878d3acfa4034d0752fda2ae4dd6ecf0d607a745c3d407fba8d70aee4af6542ec6f142c7def2637463e5936750d390d186583c1ec4edcc5022d5a343bb5e4e6c5f3cc8c935d21d0610031bd08785096e4b8aacfd2f59004f8468261bdc6768d210a9f2f60633efd09c6bdeb9701bab4b8c98a8f2d51bb857d2a840b29b70ed4947c761ead992a3ff7037f5d8dd540155664d434095279e4dbf81af7263eeb7afb8486d55c981e1b21fcf648e3bf1273a85c4b97cf1f7c10b2b572c9213ad0bbf26ba895557ddb49075ce7d3319dbaea147268328d157adeb38970c2993a674944aacd934d8e5533a8bc5f989388f0f89a4ea51d16fe81d834429b55fec8bf3baeb297746e8345bb1e34fca2ad8a0165557301f8e1181fff57804ac7b2399a63c6472ec2613aa1e449b123c2c29aaa179afe2583a9cce07ecda5abf5f4b2d28ecc48da10aad73e74011243c2fc43b5019de7c16918cd971b1e570a9a104c12dbbcc088a62fabe0602b3a60691c47f157e3dcd12b46ca61f7f3dd5466b2c9b53b510e25008600f3f8df1854156d0051e3c91cb12f936fef750cf87d044c2a0ee95117327e5c3d2cc50c3b2e1fd79c2a848930ee54e7776f0524f80fbeaa9b762eb2ab3be1406a08b79dbc6ea3f12afa55b61290ff564a5179485d72a4dca9aa35319dbc2445d3b8744c1a79532f37c07aea2574b6726bfd6f3bd06d5f497d27f9fb6cabafe6f7112bd672e857fdbf3b9ab866ac25d949c73b386892941845f1ef8b978fbc90d7a6bef3caff2bcee0283588e20f143e29888aa847865f5aa7d53ff1ced501807ffbc94d70381a3f3c10602bc464ded9bed0f82939f050187a8a5d797094bbaa4c9e0c4af881ef787e1b203b3634e5e4702a9bee9be845188189dec6f7094e1b6c01a7354c13ca73ecd6cea1d4d0124f62c6f525394c90ca52e717d796a8448db44050763db5857c9dc1f2a2fce70573ec41240b8e9debe54d2a4c8e29604fb7267579cbe2e3a7c0654f2ff73c3a6832fbf086e222c7985bffff8fd22d303d988089497dc8bbff791dbf019a05d2c677beb7946c6711a0911bb2bcff71fbd04e91871f6b3118511f5bf1d05547047ace6308c4e1483b0a92cd7a2e0561fc02a2b592cf98203bc431d22f0662f3c91dd20ab55a48648c9865362a6ce055755ca2945d304708e019e74b9f6f8e97eceb0001572f0be8c536e2ff77be12c339d2611f79ef2c25dc9eda1ae0e0d17a6875d4c94bf58c95c0342813e2e2686af9961f8654734c115daadfc29924ddec7ab21afbebcf4ce142077c467ba3177be47ae98dd6c80868fc48d4805384fe9900c01224d05fa781d8c6d18f787db22aa217b0544d6c5e6cf7b933d7a50e296054a619191d68562048967076a1a13e1d3dc06926f3cf9e37373598ade3c8ab835cc3ad88f69641facc082a88061019cd842e03a483c4cf9a86e83cbc9f3cededc5e347bd96ac177bf0c3ec9589a37b902844e5d71ba5804fec2d358c2331409560534cf42fdb2c0ac5186ddc0860a31e180ef18a7f0274c1b8bcd026b11492540be8c7a0049900b46829970f459bdc3946d3e3112d2ea2f43fc3f51d992f25bfe8131b295ab257bfb9f5e3cc0a6c776036f94d7a883fc08cc18f1451486ac4777e38bfa710fdbad370b851b5028af2b2eefb3116c5383f85fb81448da6a6687b59be38b9860001f8b914c35eddccf59255aa0cb0311b5829705044edafb4b4e7108787dbef3b0846b1103bbcb56c0532ae70131bc053b46aebbc83474442750e2f8c23301c1909eac702877fc4bb5f53c8e978eed86cd3f77f49a6eb7ba90d00d2f81b44c88f536c866b3667082e654d3c7d09bc36628efb22b0283cc481dfb6f95b3fd55dfdc747e7482c341bf55e70d2f9d4d63dada3e70a3e352cdda36675e490cca81eec69856249d782e3b0868d245a794fc06fcb1905878488e09ae2e0b41536ecd50e77deffd290704b9e9121c18bc8aef8f3d29283ebc812d26c5f417e080403d5d1a44d2527c53ebe29c03ad321cd1dd857069aec5804f1259021de9eeefc8945d12105bcdd81bb4bb969a14dbbddb2a8b326de96932ea43eaf465e08297458a6beb0195d986326cf171ead7d2f0ddc4e3c4c66f191d2d4e1925880e4c96cfeea0d34f6716703feea5bbd5a89191afaf8248205339b82da04c3545f14da0e484d80edacbd51d81e682ed4af17834d68b127fc4a26b943dc75318eb9f4569627258d83d7929326c9dd029f1d77638233a5fc34ff7c80f510fdc778bb347f81ca6c7fa770f034c73c3df770eba3e734506cee87ef6e9f0576bed09d4b706c180ffbd7eabbdcf11c0e2b5c2b0b2499ec5291565e640b345eb3a18b33f2740e7ff88a25fd97abf1c7d073758a77506f93830549935c09f64d7653507dcc229bc1d1b6d90c6ec38368498c01ca68b2820029b7e8c661c8b1fb1aeb717852b469e538650072e0d379603810b6107c5755a4fd98664a72a872eaac91938e9de53dd71eda090fbc1e4346d45fd344477c16df313729933078b6f4a9a452d71718c2d3a0faf91d3b1af7f960a6f955aa0a218a3f63a6aa5dfd023e88d31d16e4379f5e3ca3ba6ead5b6276f8487b633d2a0771577bd9f76e9315da6b0b5211cfa99a939f4caee7fc010400b9cb5c1a40a4ad6d5a36407627b9961f43e54af743e4be2cfce0bf5b0d5ba5060ea5241edac87a294f7289d30d6c042ee1900b122566646f4a4f599d45ac37697aa800fc06eb48e5bda52e0d08d6e01ea574daea6f071d18b1706fcff5a6e1793126d9dea2269cea814181f212f6480c48e46fe17e7de96ed5382fc6c533582246b97d923ade7c17de2b3792f6cb9b8c32a56ff78e855c5879ce3cb370996eb1a8d651ce62beb25bb075e0a4fc1522356b6581b2e335799f2503582f4f0ef97140620ef324d3f5747b5320d8b3cf499b380fed585ed37f7931fd14bf08f661290da0f2ca9413447bad78ef20603e2d37578ba1fc480796065b64b0d069d59713c4c7c9ad9ae8c4948bc4ceb41a9784de047d1fbc2f1ab2f6bbdb24ed337891b58871b9fa0fc63126dd24dc0a81c79f817c3f33dd12305fa24edcf56065a092ce0be42f288988e998144684591ac6a148664121bb31866d13513c4c9efd3c9e1c5b9ce4c58e573b6d85a0f75f3e94ac583802c4254e0e3face5592c3ccf04125637a40f7a0518693bff2c9693d2fa920cc4d2ed6f07485e75a10329cf3de7936cffa82fe747fe19df5ec36199bd66e7e504f8531ef1fd80841189824f68807d6cc26c2fe9656535a3570ecab9f70109135db1db61a88eb82eda7cc601ab2c2f82acee1f69afb4787c11974887687ae00ebaa12f8fb0d2eb6255b688ac3fa48402962bd0e8785ee6c83d85f8e0481fca40b8179ee1c55cbb648f85e10ace1291e485fed2c9c750a5f15a618682ea35b61a88a5879d32af256dc997928966e43d97caf8a370081aa1b61d28d363f47b7afeda5ef5fed2241c88e5c22d805b1fc65b13c35c625fdef4c84a92b37457935ce102a69427aa4c83384e45fb04bbe39abafd5c209eeec9388e1e6e2d39a8d432f4e642b735e16a88b38a59c9dc3f0a640cb5c4cff35b"], 0x84}, 0x1, 0x0, 0x0, 0x90}, 0x44808)
sendto$unix(r2, &(0x7f0000000440)="36d9a32e92", 0x5, 0x800, 0x0, 0x0)
recvfrom(r2, &(0x7f00000030c0)=""/4117, 0xffffffffffffffbf, 0x1, 0x0, 0xffffffffffffffb5)

3.709878507s ago: executing program 3 (id=667):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x139, 0x0, &(0x7f00000007c0)="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", 0x2, 0x0, 0x10000}, 0x50)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x1e8}}, 0x0)

3.561715149s ago: executing program 3 (id=669):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r1, 0x6, 0x1e, 0x0, &(0x7f0000000100))
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="30000000cc9b5b3168ed90b8fb051e5e05e9ac1a251328611757c27783f862c0d07c2cf473bc2731e40d5cadb96b22203b4335ae46b0cb5e0ab237a534", @ANYRES16=0x0, @ANYBLOB="000429bd7000fddbdf251b0000000400cc00070021006262000005009200000000000500920009000000"], 0x30}, 0x1, 0x0, 0x0, 0x8050}, 0x801)
r2 = socket$inet(0x10, 0x3, 0x0)
unshare(0x22020400)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
socket$netlink(0x10, 0x3, 0x13)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000040)={<r4=>0x0, 0xff}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f0000000240)={r4, 0xfff1, 0x5, [0x6, 0x0, 0x1, 0x5, 0xc]}, 0x12)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r5, 0x0, 0x0, 0x24004000, &(0x7f0000000100)={0xa, 0x4e24, 0x7f, @remote, 0x5}, 0x1c)
connect$inet6(r5, &(0x7f0000000480)={0xa, 0x4e23, 0x2, @private1, 0x9}, 0x1c)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r5, 0x84, 0x82, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newqdisc={0x24, 0x24, 0xf0b, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x12, r6, {0x0, 0x7}, {0xa, 0x8}, {0x2}}}, 0x24}}, 0x80810)

3.290698288s ago: executing program 1 (id=671):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000440)=0x1, 0x4)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000001000390400"/20, @ANYRES32=r3, @ANYBLOB="059900f3ffffff111800128008000100677470000c000280050005"], 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
sendto$packet(r0, &(0x7f0000000740)='\x00', 0x1, 0x20004090, &(0x7f0000000400)={0x11, 0x10, r3, 0x1, 0x2, 0x6, @multicast}, 0x14)

3.23070155s ago: executing program 1 (id=672):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000100)="9b075fbb87ef52092b858b391de3c00e3dc5075afb0bd1538b37b0ba123dad3dce0ce4b4ec2f91cd", 0x28, 0x20040000, &(0x7f00000004c0)={0x2, 0x4e20, @multicast1}, 0x10)
readv(r0, &(0x7f0000000500)=[{&(0x7f0000002100)=""/4076, 0x28}], 0x57)

3.144495734s ago: executing program 2 (id=673):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, 0x0, &(0x7f00000000c0)='GPL\x00', 0x1}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0xfffffffc}, 0x50)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x28}}, 0x10)
sendto$inet(r1, &(0x7f0000000100)="9b075fbb87ef52092b858b391de3c00e3dc5075afb0bd1538b37b0ba123dad3dce0ce4b4ec2f91cd69521e95e9", 0x2d, 0x20040000, &(0x7f00000004c0)={0x2, 0x4e20, @multicast1}, 0x10)
readv(r0, &(0x7f0000000500)=[{&(0x7f0000002100)=""/4076, 0x28}], 0x57)

2.998698114s ago: executing program 4 (id=675):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0}) (async)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0xa4, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x1, [0x5, 0x4, 0x2, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x80000000}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0xc850}, 0x0)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r3, 0x0, 0xcc, 0x0, 0x0)
setsockopt$MRT_FLUSH(r3, 0x0, 0xd4, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
r4 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000480)={0x60, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'macvlan1\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x60}}, 0x20000000) (async)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2033}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x20048054}, 0x0)
r6 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r6, 0x11b, 0x4, &(0x7f0000000500)={0x0, 0x0, 0x1800, 0x3}, 0x20)
bind$llc(0xffffffffffffffff, &(0x7f0000000000)={0x1a, 0xf, 0x5, 0x8, 0x7, 0x2e, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x15}}, 0x10)

2.57632603s ago: executing program 0 (id=676):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
r3 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty, 0xffffff5d}, 0x1c)
listen(r3, 0x50)
r4 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r4, &(0x7f0000000180)={0x2, 0xce20, @local}, 0x10)
listen(r4, 0x3)
close(0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x6, 0x2, 0xa, 0x3, 0x5, 0x3}}}}]}, 0x4c}}, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000040000000400000009"], 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0d00000006000000040000000140000001000000", @ANYRES32=r6], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r7}, &(0x7f0000000840), &(0x7f0000000880)=r6}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000380)={r7, &(0x7f0000000900)}, 0x20)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x66, 0x903, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0xe, 0x7}, {0x7c2378cc973e4a5, 0xfff1}, {0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)

2.575973075s ago: executing program 3 (id=677):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000007c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha256\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept$alg(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000008600)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000001240)=""/4096, 0x1000}], 0x1}, 0xfffffffd}], 0x100000, 0x40012101, 0x0) (fail_nth: 40)

2.536259774s ago: executing program 4 (id=678):
r0 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
r1 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r1, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @random="933c547ecfa7"}, 0x14)
syz_emit_ethernet(0x32, &(0x7f0000000500)=ANY=[@ANYBLOB="aaaaaaaaaac000000000000008"], 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={<r2=>r1, 0x3, 0x0, 0x420})
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=@gettaction={0xa4, 0x32, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1}}, @action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x38, 0x1, [{0x10, 0x1e, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}, {0xc, 0xa, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xfe6}}, {0xc, 0x1b, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0xc, 0x16, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x2}, @action_gd=@TCA_ACT_TAB={0x2c, 0x1, [{0x10, 0xf, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0x1e, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8ca1}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x9}]}, 0xa4}, 0x1, 0x0, 0x0, 0xb35b40727844dacf}, 0x0)

2.267779647s ago: executing program 0 (id=679):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
close(r1)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x40, 0x0)
close(r2)
syz_emit_ethernet(0x7c, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffffffbbbbbb0000462f82fe8000000000000000000000000000aaff02000000000000000000965e8cbc61dae223000000010420655800060003dfdf7e40ea1c9954dd6aa35988be0000000415030735010000000004c289080022eb000000012e00390402000000002000040002851508"], 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0))
ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000300)={0x7, &(0x7f0000000280)=[{0x5, 0x9, 0x1, 0x6}, {0x4, 0xfe, 0x4, 0x9ea}, {0x4, 0xa5, 0x64, 0x80000000}, {0x324, 0x6, 0x3, 0x1000}, {0x8, 0x4, 0x2}, {0xf, 0x4, 0xd0, 0x3}, {0x2, 0x9, 0x7, 0xf}]})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3) (async)
close(r3)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket(0x32, 0x803, 0x8) (async)
r4 = socket(0x32, 0x803, 0x8)
getsockname$packet(r4, 0x0, &(0x7f0000000200)) (async)
getsockname$packet(r4, 0x0, &(0x7f0000000200))
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0x60}, 0x1, 0x0, 0x0, 0x20004000}, 0x24010) (async)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0x60}, 0x1, 0x0, 0x0, 0x20004000}, 0x24010)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$SIOCSIFHWADDR(r3, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @random}) (async)
ioctl$SIOCSIFHWADDR(r3, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @random})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)=ANY=[], 0x148}}, 0x0) (async)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)=ANY=[], 0x148}}, 0x0)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000f00)={0x0, 0x3c}}, 0x0)
socket$inet6(0x10, 0x3, 0x0) (async)
r5 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed0008000100ac141400340008"], 0x2c}}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed0008000100ac141400340008"], 0x2c}}, 0x0)
sendto$inet6(r5, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)
ppoll(&(0x7f0000000700)=[{0xffffffffffffffff, 0xa00}], 0x1, 0x0, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000002c80)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000001b80)="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", 0x3d8}], 0x1}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000580)="5197d3e195e4", 0x6}], 0x1}}, {{&(0x7f0000000600)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @loopback}, 0x5}, 0x1c, &(0x7f0000000540)=[{&(0x7f0000000500)="67c13b5fb1387036844c3bfa2487", 0xe}, {&(0x7f0000002b80)}], 0x2}}], 0x3, 0x4048040)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRESDEC=0x0, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRESDEC=0x0, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
close(0x3)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

2.240326271s ago: executing program 4 (id=680):
bind$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r0, &(0x7f0000002640)=[{{0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES16=r0], 0x18, 0x20044801}}], 0x1, 0x200000c0)
r1 = accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x80800)
r2 = accept$ax25(0xffffffffffffffff, 0x0, &(0x7f0000000240))
getsockopt$ax25_int(r2, 0x101, 0x3, &(0x7f0000000280), &(0x7f0000000400)=0x4)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d05c164a534308", 0x10)
r5 = accept4(r4, 0x0, 0x0, 0x0)
ioctl$int_in(r5, 0x5452, &(0x7f00000013c0)=0xc7f)
recvmmsg(r5, &(0x7f0000004c00)=[{{0x0, 0x0, &(0x7f0000000240)}, 0x2ca998c3}], 0x4000032, 0x40000021, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0, &(0x7f0000000640)}, 0x20)
pipe(&(0x7f0000000940)={<r7=>0xffffffffffffffff})
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000400000008000000"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r8, @ANYBLOB="0000000002000000b70500000800000085000000aa00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20}, 0x94)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
write$cgroup_subtree(r10, &(0x7f0000000700)=ANY=[], 0xfe33)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000c80)={0x11, 0x29, &(0x7f0000000f80)=ANY=[@ANYBLOB="1806000000000000004f3e6c5b65bc1055a5360de9733de2d4c6fecd110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7020000000000008500000086000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000f0ffffff85000000060000001859000001000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000000000000850000008600000018170000", @ANYRES32=r8, @ANYBLOB="000000000000000018330000010000000000000000000000181b0000", @ANYRES32, @ANYBLOB="0000000000000000850000006d0000008510000003000000bf91000000000000b7020000020000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000ac0)='syzkaller\x00', 0x8, 0xfa, &(0x7f0000000b00)=""/250, 0x41100, 0x2, '\x00', 0x0, 0x0, r10, 0x8, &(0x7f0000000c00)={0x2, 0x80005}, 0x8, 0x10, &(0x7f0000000c40)={0x3, 0x10, 0x200, 0x87}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffff8}, 0x94)
sendmsg$inet(r1, &(0x7f0000000880)={&(0x7f0000000480)={0x2, 0x4e23, @broadcast}, 0x10, &(0x7f00000007c0)=[{&(0x7f00000004c0)="9d7ec0492ff43e50deb2a6262cc8929d7d433b5ecb601ad5ef048ef3e3d15cb126d751887ff209884656c3b9e77ada8bbde87b402b0e7e38d465d1c91cc26002128940ee435028ce058f369557087f8f2e0d3623ed153a45a17e64219fa858a836f18261d84740c4a834aacdc68dbc8c9ade6bcfbd62e781daafef43d963fdda6cbd21de55b1b0b4df9fe0aa470708e902085a48aa2c133e8d6e7a0c36e5d3d1305f9e5bc39b23025f3ffc3d2b6b9f492693df61636884a8c30ec8a50aba83ca34b72ee0793c0ed2141ac4c0aa9f7b9f0121e77af2613c757566b371ec9a4e9636b19e7a8ce1fd3c34b9a4", 0xeb}, {&(0x7f00000005c0)="ac4119ec52ffa0784b8be137a05e3fe3b8c6890fe4379c86dfa60070b0e07aef8f6cee2bdf43c99e6a2c3f61cdc23d2dea5ae096dcaeb00fc53529f21a04b28c70156bb2a4dca1ea9324d367311f9b0d858780a89ac156440197e33ff701dc3b2b5295e751a9c01572a875c52bcdcf21e3a808", 0x73}, {&(0x7f0000000680)="a18cfd5b4a4f43693c9035604b0cdfa1df25fab3ec25be7546f88991dfed17a1cfc82e233fbe717355933aedccc4", 0x2e}, {&(0x7f0000000740)="8e70c29b61ac29f27148942cfb19a0b20f7d7a929efac656d29b3b0b7f077883322c1ef69c061cb2808198e422006042e5fd3de4ba181723c51b9ad9780422c5eab3a4981c627dcd02e82defe4c26a8b380b6544ed767c3cb6d0728fb60b42918f5512fa17a0cce5ce9b6301d5066f355a427bbcc202718479229bf09ea6", 0x7e}], 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1400000000000000000000000700000091d205f50000000014000000000000000000000001000000ff0f000000000000140000000000000000000000020000000300000000000000be07613bef107eab3c5163bd11b5b0627de089d99be44f19ada1408ce430c349fd2360d4f077246f6c7b1bacbf993d8b3a4f2b674b8299225184c54fa8ab505db23f3874de6fc41a984f8842982a8da9c94b01faad48eb2f7be74bd6488e528e831cc4185d47d50933617d7803973bcee34e57f56b48bcdfe1326d29952364304bc79d"], 0x48}, 0x200040d0)
r11 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r11, 0x1, r5, &(0x7f0000000040)={0xc000200a})
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x1f, &(0x7f0000000000)={<r12=>0x0, @in6={{0xa, 0x4e23, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x8}}, 0x4, 0xe8}, &(0x7f00000000c0)=0x90)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r9, 0x84, 0x1f, &(0x7f0000000340)={r12, @in={{0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x400, 0x8}, &(0x7f0000000d40)=0x90)

2.226070943s ago: executing program 1 (id=681):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x139, 0x0, &(0x7f00000007c0)="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", 0x2, 0x0, 0x10000}, 0x50)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="e80100000001050500000000000000000a0000003c0002802c00018014000300ff01000000000000000000000000000114000400ff0200000000000000000000000000010c00028005000100002f00003c0001800c00028005000100000000002c00018014000300ff020d40f799000000000000000000011400040020010000000000000000000000000001080007400000000010000d800c000380060002004e210000080007400000000da800068004000380080002006401010124000380060001004e230000060001004e230000060001004e210000060002004e24000008000200e000000234000380060002004e230000060002004e240000060001004e200000060002004e200000060002004e230000060001004e200000140004000000000000000000000000000000000008000200ac1414aa140005000000000000000000000000000000000008000100e000000284000e801400018008000100ac141409080002000a0101010600034000000000060003400001000006000340000300000c000280050001009f0000000c00028005000100000000002c00018014000300"], 0x1e8}}, 0x0)

2.221734823s ago: executing program 2 (id=682):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000440)=0x1, 0x4)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000001000390400"/20, @ANYRES32=r3, @ANYBLOB="059900f3ffffff111800128008000100677470000c000280050005"], 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
sendto$packet(r0, &(0x7f0000000740)='\x00', 0x1, 0x20004090, &(0x7f0000000400)={0x11, 0x10, r3, 0x1, 0x2, 0x6, @multicast}, 0x14)

2.221310011s ago: executing program 3 (id=683):
r0 = socket$netlink(0x10, 0x3, 0x5)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x5, 0x4, 0x4, 0x4}, 0x50)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x42000, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
ioctl$TUNSETLINK(r2, 0x400454cd, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @multicast})
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000200), &(0x7f00000003c0)='%pS    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000800)={r5, <r6=>0xffffffffffffffff}, 0x4)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x16, 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000ffff0b867b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r7, 0x0, 0xe, 0x48000000, &(0x7f0000000300)="40f0538ef047b21fb60068305500", 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x15, 0x17, &(0x7f0000000880)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0xa0}}, {{0x6, 0x0, 0x2, 0x9, 0x0, 0x6, 0xe7030000}, {0x4, 0x0, 0x0, 0x6}}, [@printk={@llx, {0x5, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xa, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x14}}], {{0x4, 0x1, 0x5, 0x3}, {0x5, 0x0, 0xb, 0x3, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x44}}}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)
bind$netrom(r8, &(0x7f0000000000)={{0x6, @rose, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48)
r9 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x0, <r10=>0x0}, 0x0)
r11 = getuid()
setsockopt$inet_IP_XFRM_POLICY(r9, 0x0, 0x11, &(0x7f0000000400)={{{@in6=@loopback, @in6=@local, 0x4e21, 0x5, 0x4e23, 0x1, 0x0, 0x0, 0x80, 0x18, r10, r11}, {0x0, 0x3, 0x5, 0xa400000000000000, 0x8, 0x7d, 0x1, 0x3}, {0x49c, 0x8, 0x80000001, 0x7fff}, 0x7, 0x0, 0x2, 0x0, 0x3, 0x2}, {{@in=@remote, 0x4d2, 0x6c}, 0xa, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3506, 0x7, 0x2, 0x3, 0x1, 0x1, 0x22c}}, 0xe8)
sendmsg$inet_sctp(r9, &(0x7f00000001c0)={&(0x7f0000000100)=@in={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f0000000140), 0x0, &(0x7f0000000180)=[@init={0x18, 0x84, 0x0, {0x1, 0xffff, 0x4, 0x203}}, @prinfo={0x18, 0x84, 0x5, {0x0, 0x2}}], 0x30}, 0x40)
syz_emit_ethernet(0x3e, &(0x7f0000000140)={@multicast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010100, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x2, @empty=0xac1414aa}}}}}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000f80)=ANY=[@ANYRES64, @ANYRES32=0x0, @ANYBLOB="000000008852030100690300fe80000000000000aa08000100"/52, @ANYRES64, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="050009002900000008001f0004000000"], 0x68}, 0x1, 0x0, 0x0, 0x2000c014}, 0x24000085)

2.114604812s ago: executing program 2 (id=684):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@remote, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x3}, {{@in6=@mcast2, 0x0, 0x2b}, 0x0, @in=@empty}}, 0xe8)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000000c0)={'wlan1\x00', &(0x7f0000000080)=@ethtool_stats})
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000100))
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x4, 0x84)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000120000002400000008000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sched_switch\x00', r5}, 0x18)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
ioctl$PPPIOCSFLAGS1(r6, 0x40047459, &(0x7f00000002c0)=0x2000041)

2.042043485s ago: executing program 0 (id=685):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000200)="0232e60039536dc50c3eb346b008fefa8ce2d4c1c866321c084bb58c3dd1666a19af3c73704fb3e6436512727a375df73783de35a42869d1e92883480dcb1e7130", 0x41}], 0x1)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_NODELAY(r1, 0x84, 0x3, 0x0, &(0x7f0000000040))
socket$inet_udp(0x2, 0x2, 0x0)

1.984729737s ago: executing program 0 (id=686):
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = socket(0x10, 0x80003, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0xf, "000000000000f0ff000100000e00"}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[], 0x78}}, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x58)
r4 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000001c0)='\x00', 0x1)
sendto$unix(r4, &(0x7f0000000440)="36d9a32e92", 0x5, 0x800, 0x0, 0x0)
r5 = socket(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r5, 0x89f0, &(0x7f0000000140)={'ip_vti0\x00', &(0x7f00000003c0)={'syztnl0\x00', 0x0, 0xf809, 0x7800, 0x400, 0x1, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x66, 0x0, 0xd, 0x29, 0x0, @remote, @rand_addr=0x64010101}}}})
recvmmsg(r0, &(0x7f0000002100)=[{{&(0x7f0000000000)=@vsock={0x28, 0x0, 0x0, @host}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000200)=""/245, 0xf5}, {&(0x7f0000000300)=""/231, 0xe7}], 0x2, &(0x7f0000000480)=""/4096, 0x1000}, 0xa2}, {{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000001480)=""/211, 0xd3}, {&(0x7f0000001580)=""/134, 0x86}, {&(0x7f0000001640)=""/237, 0xed}, {&(0x7f00000000c0)=""/80, 0x50}, {&(0x7f0000001740)=""/68, 0x44}, {&(0x7f0000000400)=""/37, 0x25}, {&(0x7f00000017c0)=""/89, 0x59}], 0x7, &(0x7f00000018c0)=""/204, 0xcc}, 0x81}, {{&(0x7f00000019c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000001b40)=[{&(0x7f0000001a40)=""/32, 0x20}, {&(0x7f0000001a80)=""/137, 0x89}], 0x2, &(0x7f0000001b80)=""/145, 0x91}}, {{&(0x7f0000001c40)=@x25, 0x80, &(0x7f0000001cc0), 0x0, &(0x7f0000001d00)=""/29, 0x1d}, 0x1}, {{&(0x7f0000001d40)=@pppol2tpv3, 0x80, &(0x7f0000002080)=[{&(0x7f0000001dc0)=""/195, 0xc3}, {&(0x7f0000001ec0)=""/209, 0xd1}, {&(0x7f0000001fc0)=""/176, 0xb0}], 0x3, &(0x7f00000020c0)=""/23, 0x17}, 0x8}], 0x5, 0x40010000, &(0x7f0000002240)={0x77359400})
recvfrom(r4, &(0x7f00000030c0)=""/4117, 0xffffffffffffffbf, 0x1, 0x0, 0xffffffffffffffb5)

1.722816167s ago: executing program 1 (id=687):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x8c, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x10], 0x1, [0x5, 0x4, 0x2, 0x0, 0x8, 0xfffe, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0xc850}, 0x0) (fail_nth: 8)

1.060395105s ago: executing program 1 (id=688):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000000)=0x1)
socket$netlink(0x10, 0x3, 0x0)

1.033769248s ago: executing program 0 (id=689):
r0 = socket$inet(0x10, 0x1, 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000)=0x6d93, 0x4)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={'batadv0\x00', @broadcast})
socket$kcm(0x11, 0xf, 0x300)
r2 = socket$kcm(0x2, 0xa, 0x73)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYRESDEC=r2], &(0x7f00000002c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x3c}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2673004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r4 = socket(0x2, 0x80805, 0x0)
sendmsg$inet_sctp(r4, &(0x7f0000001180)={&(0x7f0000000000)=@in={0x2, 0x4e22, @rand_addr=0x64010102}, 0x10, &(0x7f00000010c0)=[{&(0x7f0000000040)="11", 0x1}], 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="18bfffce8300000000003000000000bcc100"/33], 0x30, 0x810}, 0x4000040)
socket$nl_route(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000300), 0xffffffffffffffff)
r5 = socket(0x1e, 0x5, 0x0)
listen(r5, 0x0)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)=ANY=[@ANYRESDEC=r5], 0x48)
unshare(0x22020600)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r7, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_rx_ring(r7, 0x107, 0x5, &(0x7f0000000180)=@req3={0x9, 0x9, 0xffff, 0x4, 0x2, 0x4, 0x6}, 0x1c)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x2, 0x40000000000, 0x3, 0x4, 0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x80000001}, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000280)={<r9=>0x0, 0x1}, &(0x7f00000001c0)=0x8)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000200)=ANY=[@ANYRES32=r9, @ANYBLOB="0200080045f8ff0009000400ff7f0a04f8ff0600"], 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
socket$packet(0x11, 0x3, 0x300)
r10 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r10, 0x1, 0x2c, &(0x7f0000000000)=0x100020, 0x4)

846.65655ms ago: executing program 1 (id=690):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000010000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000116608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0xa, 0x4f7a, &(0x7f0000000180)=""/226, 0x0, 0x8}, 0x78)
socket$netlink(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) (async)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000010000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000116608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0xa, 0x4f7a, &(0x7f0000000180)=""/226, 0x0, 0x8}, 0x78) (async)

330.957326ms ago: executing program 3 (id=691):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000100)="9b075fbb87ef52092b858b391de3c00e3dc5075afb0bd1538b37b0ba123dad3dce0ce4b4ec2f91cd", 0x28, 0x20040000, &(0x7f00000004c0)={0x2, 0x4e20, @multicast1}, 0x10)
readv(r0, &(0x7f0000000500)=[{&(0x7f0000002100)=""/4076, 0x28}], 0x57)

231.595194ms ago: executing program 2 (id=692):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
recvfrom$phonet(r0, &(0x7f0000000300)=""/126, 0x7e, 0x10000, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000200)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2}, 0x50)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000280)=@o_path={&(0x7f00000003c0)='./file0\x00'}, 0x18)
r3 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x3, 0x9}, 0x20)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x10, &(0x7f0000000180), 0x4)
getsockopt$inet6_int(r4, 0x29, 0x10, 0x0, &(0x7f0000000080))
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="8b3300000000000000000500000008000300", @ANYRES32=0x0, @ANYBLOB="0c009900400000000000f9ff10001d800c0000800500040000000000"], 0x38}}, 0x0)
recvfrom(r2, 0x0, 0x0, 0x40000000, 0x0, 0x0)
sendmmsg$inet6(r1, &(0x7f00000002c0)=[{{0x0, 0x0, &(0x7f00000033c0)=[{&(0x7f0000000080)="b826", 0x2}], 0x1}}], 0x65, 0xc4800)
r6 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r6, 0x0, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000000), r6)
sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0x0)
getsockopt$inet6_int(r1, 0x29, 0x67, &(0x7f0000000040), &(0x7f0000000100)=0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f00000005c0)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)={0x24, r8, 0x121, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}]}, 0x24}}, 0x0)
r11 = openat$cgroup_devices(r7, &(0x7f0000000680)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r11, &(0x7f0000000140)=ANY=[@ANYBLOB='b 75:*\twrr'], 0xa)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612)

0s ago: executing program 0 (id=693):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x1}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0xfffffffc}, 0x50)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x28}}, 0x10)
sendto$inet(r1, &(0x7f0000000100)="9b075fbb87ef52092b858b391de3c00e3dc5075afb0bd1538b37b0ba123dad3dce0ce4b4ec2f91cd69521e95e9", 0x2d, 0x20040000, &(0x7f00000004c0)={0x2, 0x4e20, @multicast1}, 0x10)
readv(r0, &(0x7f0000000500)=[{&(0x7f0000002100)=""/4076, 0x28}], 0x57)

kernel console output (not intermixed with test programs):

267][ T7006] veth0_to_hsr: entered allmulticast mode
[  108.060960][ T7006] hsr_slave_0: entered allmulticast mode
[  108.081143][ T7006] veth1_to_hsr: entered allmulticast mode
[  108.093931][ T7006] hsr_slave_1: entered allmulticast mode
[  108.102782][ T7006] hsr0: entered allmulticast mode
[  108.110645][ T7006] veth1_virt_wifi: entered allmulticast mode
[  108.119987][ T7006] veth0_virt_wifi: entered allmulticast mode
[  108.135413][ T7006] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  108.143711][ T7006] veth1_vlan: entered allmulticast mode
[  108.165701][ T7006] veth0_vlan: entered allmulticast mode
[  108.190611][ T7006] vlan0: entered allmulticast mode
[  108.204568][ T7006] vlan1: entered allmulticast mode
[  108.213862][ T7006] macvlan0: entered allmulticast mode
[  108.231886][ T7006] macvlan1: entered allmulticast mode
[  108.247100][ T7006] ipvlan0: entered allmulticast mode
[  108.252661][ T7006] ipvlan1: entered allmulticast mode
[  108.258726][ T7006] veth1_macvtap: entered allmulticast mode
[  108.275299][ T7006] veth0_macvtap: entered allmulticast mode
[  108.294896][ T7006] macvtap0: entered allmulticast mode
[  108.315079][ T7006] macsec0: entered allmulticast mode
[  108.325579][ T7006] geneve0: entered allmulticast mode
[  108.335105][ T7006] geneve1: entered allmulticast mode
[  108.365957][ T7006] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  108.376261][ T7006] netdevsim netdevsim0 eth0: entered allmulticast mode
[  108.383433][ T7006] netdevsim netdevsim0 eth1: entered allmulticast mode
[  108.393991][ T7006] netdevsim netdevsim0 eth2: entered allmulticast mode
[  108.403032][ T7006] netdevsim netdevsim0 eth3: entered allmulticast mode
[  108.413429][ T7006] batman_adv: batadv0: Interface deactivated: macvlan2
[  108.422527][ T7006] macvlan2: entered allmulticast mode
[  108.431188][ T7006] @: entered allmulticast mode
[  108.441296][ T7006] tun0: entered allmulticast mode
[  108.535797][ T7047] netlink: 16 bytes leftover after parsing attributes in process `syz.0.287'.
[  108.553466][ T7010] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  108.621525][   T78] netdevsim netdevsim0 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  108.643622][   T78] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.746738][ T7010] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  108.759132][ T7054] netlink: 12 bytes leftover after parsing attributes in process `syz.3.289'.
[  108.780994][   T78] netdevsim netdevsim0 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  108.793434][   T78] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.820520][   T78] netdevsim netdevsim0 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  108.834994][   T78] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.847875][   T78] netdevsim netdevsim0 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  108.857241][   T78] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.903210][ T7057] bridge1: port 1(veth3) entered blocking state
[  108.911502][ T7057] bridge1: port 1(veth3) entered disabled state
[  108.918056][ T7057] veth3: entered allmulticast mode
[  108.929453][ T7057] veth3: entered promiscuous mode
[  108.946144][ T7010] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  108.975104][ T7054] bridge1: port 2(veth0_to_bond) entered blocking state
[  108.982308][ T7054] bridge1: port 2(veth0_to_bond) entered disabled state
[  108.992726][ T7054] veth0_to_bond: entered allmulticast mode
[  109.000483][ T7054] veth0_to_bond: entered promiscuous mode
[  109.021552][ T7061] vlan2: entered allmulticast mode
[  109.029675][ T7061] veth1: entered allmulticast mode
[  109.036339][ T7061] bridge1: port 3(vlan2) entered blocking state
[  109.042911][ T7061] bridge1: port 3(vlan2) entered disabled state
[  109.051170][ T7061] vlan2: entered promiscuous mode
[  109.056379][ T7061] veth1: entered promiscuous mode
[  109.071968][ T7010] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  109.172917][ T7065] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  109.196077][ T7065] syzkaller0: entered promiscuous mode
[  109.201590][ T7065] syzkaller0: entered allmulticast mode
[  109.319023][ T6081] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  109.351980][ T7065] tipc: Resetting bearer <eth:syzkaller0>
[  109.365346][   T78] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  109.400120][   T13] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  109.424178][ T7075] netlink: 36 bytes leftover after parsing attributes in process `syz.4.296'.
[  109.455129][ T6081] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  109.634606][ T7084] netlink: 16 bytes leftover after parsing attributes in process `syz.3.299'.
[  109.659153][ T7081] FAULT_INJECTION: forcing a failure.
[  109.659153][ T7081] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.660857][ T7086] netlink: 12 bytes leftover after parsing attributes in process `syz.2.297'.
[  109.704130][ T7081] CPU: 1 UID: 0 PID: 7081 Comm: syz.0.298 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  109.704156][ T7081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  109.704166][ T7081] Call Trace:
[  109.704173][ T7081]  <TASK>
[  109.704182][ T7081]  dump_stack_lvl+0x189/0x250
[  109.704207][ T7081]  ? __pfx____ratelimit+0x10/0x10
[  109.704232][ T7081]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.704251][ T7081]  ? __pfx__printk+0x10/0x10
[  109.704273][ T7081]  ? __might_fault+0xb0/0x130
[  109.704309][ T7081]  should_fail_ex+0x414/0x560
[  109.704338][ T7081]  _copy_from_user+0x2d/0xb0
[  109.704360][ T7081]  ___sys_recvmsg+0x12e/0x510
[  109.704389][ T7081]  ? __pfx____sys_recvmsg+0x10/0x10
[  109.704440][ T7081]  ? __might_fault+0xb0/0x130
[  109.704464][ T7081]  do_recvmmsg+0x307/0x770
[  109.704495][ T7081]  ? __pfx_do_recvmmsg+0x10/0x10
[  109.704529][ T7081]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  109.704566][ T7081]  __x64_sys_recvmmsg+0x190/0x240
[  109.704590][ T7081]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  109.704609][ T7081]  ? rcu_is_watching+0x15/0xb0
[  109.704633][ T7081]  ? do_syscall_64+0xbe/0x3b0
[  109.704654][ T7081]  do_syscall_64+0xfa/0x3b0
[  109.704669][ T7081]  ? lockdep_hardirqs_on+0x9c/0x150
[  109.704685][ T7081]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.704702][ T7081]  ? clear_bhb_loop+0x60/0xb0
[  109.704724][ T7081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.704739][ T7081] RIP: 0033:0x7fd525b8e9a9
[  109.704756][ T7081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.704770][ T7081] RSP: 002b:00007fd52691b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  109.704788][ T7081] RAX: ffffffffffffffda RBX: 00007fd525db5fa0 RCX: 00007fd525b8e9a9
[  109.704801][ T7081] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  109.704812][ T7081] RBP: 00007fd52691b090 R08: 0000000000000000 R09: 0000000000000000
[  109.704823][ T7081] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  109.704834][ T7081] R13: 0000000000000000 R14: 00007fd525db5fa0 R15: 00007ffed48675b8
[  109.704864][ T7081]  </TASK>
[  110.031032][ T7096] "syz.1.303" (7096) uses obsolete ecb(arc4) skcipher
[  110.110187][ T7100] "syz.4.304" (7100) uses obsolete ecb(arc4) skcipher
[  110.120987][ T7103] netlink: 36 bytes leftover after parsing attributes in process `syz.3.302'.
[  110.145240][ T7101] "syz.0.305" (7101) uses obsolete ecb(arc4) skcipher
[  110.153709][ T7101] netlink: 16 bytes leftover after parsing attributes in process `syz.0.305'.
[  110.176619][ T7103] netlink: 16 bytes leftover after parsing attributes in process `syz.3.302'.
[  110.196507][ T5963] tipc: Node number set to 3431386974
[  110.211210][ T7103] netlink: 36 bytes leftover after parsing attributes in process `syz.3.302'.
[  110.225222][ T7107] "syz.2.308" (7107) uses obsolete ecb(arc4) skcipher
[  110.226707][ T7108] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.358534][ T7108] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.438156][ T7108] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.491570][ T7108] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.586565][ T6074] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.610758][   T13] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.638745][   T13] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.662876][   T78] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.903256][ T7144] "syz.1.317" (7144) uses obsolete ecb(arc4) skcipher
[  110.922481][ T7141] FAULT_INJECTION: forcing a failure.
[  110.922481][ T7141] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.964615][ T7141] CPU: 0 UID: 0 PID: 7141 Comm: syz.3.316 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  110.964641][ T7141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  110.964652][ T7141] Call Trace:
[  110.964660][ T7141]  <TASK>
[  110.964668][ T7141]  dump_stack_lvl+0x189/0x250
[  110.964692][ T7141]  ? __pfx____ratelimit+0x10/0x10
[  110.964718][ T7141]  ? __pfx_dump_stack_lvl+0x10/0x10
[  110.964736][ T7141]  ? __pfx__printk+0x10/0x10
[  110.964757][ T7141]  ? __might_fault+0xb0/0x130
[  110.964794][ T7141]  should_fail_ex+0x414/0x560
[  110.964825][ T7141]  _copy_from_user+0x2d/0xb0
[  110.964847][ T7141]  ___sys_recvmsg+0x12e/0x510
[  110.964882][ T7141]  ? __pfx____sys_recvmsg+0x10/0x10
[  110.964936][ T7141]  ? __might_fault+0xb0/0x130
[  110.964961][ T7141]  do_recvmmsg+0x307/0x770
[  110.964991][ T7141]  ? __pfx_do_recvmmsg+0x10/0x10
[  110.965025][ T7141]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  110.965062][ T7141]  __x64_sys_recvmmsg+0x190/0x240
[  110.965086][ T7141]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  110.965105][ T7141]  ? rcu_is_watching+0x15/0xb0
[  110.965128][ T7141]  ? do_syscall_64+0xbe/0x3b0
[  110.965150][ T7141]  do_syscall_64+0xfa/0x3b0
[  110.965166][ T7141]  ? lockdep_hardirqs_on+0x9c/0x150
[  110.965182][ T7141]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.965198][ T7141]  ? clear_bhb_loop+0x60/0xb0
[  110.965219][ T7141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.965235][ T7141] RIP: 0033:0x7f51f918e9a9
[  110.965251][ T7141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.965265][ T7141] RSP: 002b:00007f51fa082038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  110.965284][ T7141] RAX: ffffffffffffffda RBX: 00007f51f93b5fa0 RCX: 00007f51f918e9a9
[  110.965297][ T7141] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  110.965307][ T7141] RBP: 00007f51fa082090 R08: 0000000000000000 R09: 0000000000000000
[  110.965318][ T7141] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  110.965328][ T7141] R13: 0000000000000000 R14: 00007f51f93b5fa0 R15: 00007ffeff55f5f8
[  110.965357][ T7141]  </TASK>
[  111.309205][ T7154] FAULT_INJECTION: forcing a failure.
[  111.309205][ T7154] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  111.347424][ T7154] CPU: 1 UID: 0 PID: 7154 Comm: syz.4.319 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  111.347450][ T7154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  111.347461][ T7154] Call Trace:
[  111.347468][ T7154]  <TASK>
[  111.347476][ T7154]  dump_stack_lvl+0x189/0x250
[  111.347500][ T7154]  ? __pfx____ratelimit+0x10/0x10
[  111.347525][ T7154]  ? __pfx_dump_stack_lvl+0x10/0x10
[  111.347544][ T7154]  ? __pfx__printk+0x10/0x10
[  111.347580][ T7154]  should_fail_ex+0x414/0x560
[  111.347611][ T7154]  _copy_to_user+0x31/0xb0
[  111.347635][ T7154]  bpf_test_finish+0x56f/0x700
[  111.347660][ T7154]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  111.347680][ T7154]  ? __pfx_bpf_test_finish+0x10/0x10
[  111.347704][ T7154]  ? bpf_test_init+0x133/0x170
[  111.347724][ T7154]  bpf_prog_test_run_xdp+0x79a/0x1000
[  111.347760][ T7154]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  111.347783][ T7154]  ? __fget_files+0x2a/0x420
[  111.347812][ T7154]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  111.347830][ T7154]  bpf_prog_test_run+0x2c7/0x340
[  111.347859][ T7154]  __sys_bpf+0x4a4/0x860
[  111.347884][ T7154]  ? __pfx___sys_bpf+0x10/0x10
[  111.347921][ T7154]  ? ksys_write+0x22a/0x250
[  111.347944][ T7154]  ? __pfx_ksys_write+0x10/0x10
[  111.347962][ T7154]  ? rcu_is_watching+0x15/0xb0
[  111.347989][ T7154]  __x64_sys_bpf+0x7c/0x90
[  111.348011][ T7154]  do_syscall_64+0xfa/0x3b0
[  111.348028][ T7154]  ? lockdep_hardirqs_on+0x9c/0x150
[  111.348044][ T7154]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.348060][ T7154]  ? clear_bhb_loop+0x60/0xb0
[  111.348082][ T7154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.348098][ T7154] RIP: 0033:0x7faa0918e9a9
[  111.348114][ T7154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.348128][ T7154] RSP: 002b:00007faa0a018038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  111.348147][ T7154] RAX: ffffffffffffffda RBX: 00007faa093b5fa0 RCX: 00007faa0918e9a9
[  111.348160][ T7154] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  111.348171][ T7154] RBP: 00007faa0a018090 R08: 0000000000000000 R09: 0000000000000000
[  111.348188][ T7154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  111.348212][ T7154] R13: 0000000000000000 R14: 00007faa093b5fa0 R15: 00007ffddfe34888
[  111.348242][ T7154]  </TASK>
[  111.625508][ T7159] netlink: 'syz.3.320': attribute type 13 has an invalid length.
[  111.633408][ T7159] netlink: 'syz.3.320': attribute type 17 has an invalid length.
[  112.058970][ T7159] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  112.119563][ T7188] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  112.141731][ T7169] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.224188][ T7155] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  112.293303][ T7155] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  112.352199][ T7169] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.495399][ T7169] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.622869][ T7204] wireguard0: entered promiscuous mode
[  112.629214][ T7204] wireguard0: entered allmulticast mode
[  112.667701][ T7169] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.693578][ T7201] syz.0.328 (7201) used greatest stack depth: 15832 bytes left
[  112.735370][ T7199] chnl_net:caif_netlink_parms(): no params data found
[  112.775516][ T7212] FAULT_INJECTION: forcing a failure.
[  112.775516][ T7212] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.788791][ T7212] CPU: 1 UID: 0 PID: 7212 Comm: syz.0.330 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  112.788814][ T7212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  112.788823][ T7212] Call Trace:
[  112.788830][ T7212]  <TASK>
[  112.788837][ T7212]  dump_stack_lvl+0x189/0x250
[  112.788861][ T7212]  ? __pfx____ratelimit+0x10/0x10
[  112.788887][ T7212]  ? __pfx_dump_stack_lvl+0x10/0x10
[  112.788906][ T7212]  ? __pfx__printk+0x10/0x10
[  112.788925][ T7212]  ? __might_fault+0xb0/0x130
[  112.788957][ T7212]  should_fail_ex+0x414/0x560
[  112.788988][ T7212]  _copy_from_user+0x2d/0xb0
[  112.789017][ T7212]  ___sys_recvmsg+0x12e/0x510
[  112.789045][ T7212]  ? __pfx____sys_recvmsg+0x10/0x10
[  112.789099][ T7212]  ? __might_fault+0xb0/0x130
[  112.789123][ T7212]  do_recvmmsg+0x307/0x770
[  112.789153][ T7212]  ? __pfx_do_recvmmsg+0x10/0x10
[  112.789183][ T7212]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  112.789219][ T7212]  __x64_sys_recvmmsg+0x190/0x240
[  112.789240][ T7212]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  112.789255][ T7212]  ? rcu_is_watching+0x15/0xb0
[  112.789274][ T7212]  ? do_syscall_64+0xbe/0x3b0
[  112.789292][ T7212]  do_syscall_64+0xfa/0x3b0
[  112.789305][ T7212]  ? lockdep_hardirqs_on+0x9c/0x150
[  112.789316][ T7212]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.789329][ T7212]  ? clear_bhb_loop+0x60/0xb0
[  112.789348][ T7212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.789362][ T7212] RIP: 0033:0x7fd525b8e9a9
[  112.789377][ T7212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.789389][ T7212] RSP: 002b:00007fd52691b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  112.789406][ T7212] RAX: ffffffffffffffda RBX: 00007fd525db5fa0 RCX: 00007fd525b8e9a9
[  112.789417][ T7212] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  112.789428][ T7212] RBP: 00007fd52691b090 R08: 0000000000000000 R09: 0000000000000000
[  112.789437][ T7212] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  112.789447][ T7212] R13: 0000000000000000 R14: 00007fd525db5fa0 R15: 00007ffed48675b8
[  112.789470][ T7212]  </TASK>
[  113.193626][ T7222] __nla_validate_parse: 6 callbacks suppressed
[  113.193643][ T7222] netlink: 16 bytes leftover after parsing attributes in process `syz.3.335'.
[  113.232565][ T7224] netlink: 'syz.1.334': attribute type 22 has an invalid length.
[  113.266896][ T7224] netlink: 4 bytes leftover after parsing attributes in process `syz.1.334'.
[  113.320630][ T6079] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  113.351404][ T7224] netlink: 28 bytes leftover after parsing attributes in process `syz.1.334'.
[  113.396891][ T7228] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  113.400262][ T6079] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  113.417240][ T7232] sctp: [Deprecated]: syz.3.336 (pid 7232) Use of int in max_burst socket option.
[  113.417240][ T7232] Use struct sctp_assoc_value instead
[  113.424705][ T6079] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  113.441048][ T6079] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  113.453043][ T7224] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  113.543053][ T7239] netlink: 'syz.3.339': attribute type 1 has an invalid length.
[  113.618160][ T7241] batadv_slave_1: left promiscuous mode
[  113.630329][ T7241] hsr1: left allmulticast mode
[  113.637300][ T7241] syz_tun: left allmulticast mode
[  113.642397][ T7241] batadv_slave_0: left allmulticast mode
[  113.653356][ T6084] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 20000 - 0
[  113.663632][ T6084] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 20000 - 0
[  113.692335][ T6084] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 20000 - 0
[  113.710049][ T6084] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 20000 - 0
[  113.822418][ T7251] netlink: 12 bytes leftover after parsing attributes in process `syz.2.343'.
[  113.832422][ T7251] 8021q: VLANs not supported on nlmon0
[  113.915157][ T7256] FAULT_INJECTION: forcing a failure.
[  113.915157][ T7256] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.930303][ T7256] CPU: 1 UID: 0 PID: 7256 Comm: syz.2.344 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  113.930328][ T7256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  113.930338][ T7256] Call Trace:
[  113.930345][ T7256]  <TASK>
[  113.930353][ T7256]  dump_stack_lvl+0x189/0x250
[  113.930377][ T7256]  ? __pfx____ratelimit+0x10/0x10
[  113.930402][ T7256]  ? __pfx_dump_stack_lvl+0x10/0x10
[  113.930421][ T7256]  ? __pfx__printk+0x10/0x10
[  113.930442][ T7256]  ? __might_fault+0xb0/0x130
[  113.930476][ T7256]  should_fail_ex+0x414/0x560
[  113.930507][ T7256]  _copy_from_user+0x2d/0xb0
[  113.930530][ T7256]  ___sys_recvmsg+0x12e/0x510
[  113.930558][ T7256]  ? __pfx____sys_recvmsg+0x10/0x10
[  113.930612][ T7256]  ? __might_fault+0xb0/0x130
[  113.930636][ T7256]  do_recvmmsg+0x307/0x770
[  113.930674][ T7256]  ? __pfx_do_recvmmsg+0x10/0x10
[  113.930708][ T7256]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  113.930745][ T7256]  __x64_sys_recvmmsg+0x190/0x240
[  113.930769][ T7256]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  113.930787][ T7256]  ? rcu_is_watching+0x15/0xb0
[  113.930815][ T7256]  ? do_syscall_64+0xbe/0x3b0
[  113.930837][ T7256]  do_syscall_64+0xfa/0x3b0
[  113.930852][ T7256]  ? lockdep_hardirqs_on+0x9c/0x150
[  113.930868][ T7256]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.930884][ T7256]  ? clear_bhb_loop+0x60/0xb0
[  113.930905][ T7256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.930922][ T7256] RIP: 0033:0x7f77d218e9a9
[  113.930937][ T7256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.930951][ T7256] RSP: 002b:00007f77d2f1b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  113.930970][ T7256] RAX: ffffffffffffffda RBX: 00007f77d23b5fa0 RCX: 00007f77d218e9a9
[  113.930982][ T7256] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  113.930994][ T7256] RBP: 00007f77d2f1b090 R08: 0000000000000000 R09: 0000000000000000
[  113.931004][ T7256] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  113.931015][ T7256] R13: 0000000000000000 R14: 00007f77d23b5fa0 R15: 00007ffef65065d8
[  113.931045][ T7256]  </TASK>
[  114.227890][ T7260] netlink: 16 bytes leftover after parsing attributes in process `syz.2.346'.
[  114.481573][ T7274] "syz.2.351" (7274) uses obsolete ecb(arc4) skcipher
[  114.824616][ T7280] Bluetooth: MGMT ver 1.23
[  115.123527][ T6081] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.167095][ T6084] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.202740][ T7290] netlink: 216 bytes leftover after parsing attributes in process `syz.1.357'.
[  115.205689][ T6084] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.233374][ T7290] netlink: 24 bytes leftover after parsing attributes in process `syz.1.357'.
[  115.271787][ T6084] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.277913][ T7290] netlink: 16 bytes leftover after parsing attributes in process `syz.1.357'.
[  115.543828][ T7300] FAULT_INJECTION: forcing a failure.
[  115.543828][ T7300] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.583890][ T7300] CPU: 0 UID: 0 PID: 7300 Comm: syz.2.358 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  115.583914][ T7300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  115.583924][ T7300] Call Trace:
[  115.583931][ T7300]  <TASK>
[  115.583940][ T7300]  dump_stack_lvl+0x189/0x250
[  115.583964][ T7300]  ? __pfx____ratelimit+0x10/0x10
[  115.583988][ T7300]  ? __pfx_dump_stack_lvl+0x10/0x10
[  115.584005][ T7300]  ? __pfx__printk+0x10/0x10
[  115.584026][ T7300]  ? __might_fault+0xb0/0x130
[  115.584057][ T7300]  should_fail_ex+0x414/0x560
[  115.584088][ T7300]  _copy_from_user+0x2d/0xb0
[  115.584109][ T7300]  ___sys_recvmsg+0x12e/0x510
[  115.584136][ T7300]  ? __pfx____sys_recvmsg+0x10/0x10
[  115.584190][ T7300]  ? __might_fault+0xb0/0x130
[  115.584215][ T7300]  do_recvmmsg+0x307/0x770
[  115.584244][ T7300]  ? __pfx_do_recvmmsg+0x10/0x10
[  115.584277][ T7300]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  115.584318][ T7300]  __x64_sys_recvmmsg+0x190/0x240
[  115.584342][ T7300]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  115.584360][ T7300]  ? rcu_is_watching+0x15/0xb0
[  115.584384][ T7300]  ? do_syscall_64+0xbe/0x3b0
[  115.584405][ T7300]  do_syscall_64+0xfa/0x3b0
[  115.584421][ T7300]  ? lockdep_hardirqs_on+0x9c/0x150
[  115.584436][ T7300]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.584451][ T7300]  ? clear_bhb_loop+0x60/0xb0
[  115.584471][ T7300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.584487][ T7300] RIP: 0033:0x7f77d218e9a9
[  115.584502][ T7300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.584514][ T7300] RSP: 002b:00007f77d2f1b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  115.584541][ T7300] RAX: ffffffffffffffda RBX: 00007f77d23b5fa0 RCX: 00007f77d218e9a9
[  115.584553][ T7300] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  115.584564][ T7300] RBP: 00007f77d2f1b090 R08: 0000000000000000 R09: 0000000000000000
[  115.584572][ T7300] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  115.584580][ T7300] R13: 0000000000000000 R14: 00007f77d23b5fa0 R15: 00007ffef65065d8
[  115.584605][ T7300]  </TASK>
[  116.200405][ T7322] netlink: 1041 bytes leftover after parsing attributes in process `syz.0.367'.
[  116.255095][ T7332] netlink: 32 bytes leftover after parsing attributes in process `syz.1.368'.
[  116.375019][ T7334] "syz.4.369" (7334) uses obsolete ecb(arc4) skcipher
[  116.449747][ T7345] "syz.1.372" (7345) uses obsolete ecb(arc4) skcipher
[  117.238977][ T7345] netlink: 'syz.1.372': attribute type 13 has an invalid length.
[  117.314426][ T7345] netlink: 'syz.1.372': attribute type 17 has an invalid length.
[  117.330589][ T7377] veth3: entered promiscuous mode
[  117.381847][ T7345] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  117.442902][ T7379] v: renamed from ip6_vti0
[  117.740473][ T7387] sctp: [Deprecated]: syz.2.384 (pid 7387) Use of int in maxseg socket option.
[  117.740473][ T7387] Use struct sctp_assoc_value instead
[  117.768347][ T7382] tipc: Enabling of bearer <eth:ipvlan1> rejected, failed to enable media
[  117.971241][ T7395] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.022130][ T7400] veth0: entered promiscuous mode
[  118.049774][ T7397] veth0 (unregistering): left promiscuous mode
[  118.145710][ T7395] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.194042][ T7392] pim6reg1: entered promiscuous mode
[  118.210039][ T7392] pim6reg1: entered allmulticast mode
[  118.326638][ T7395] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.384862][ T7416] "syz.1.391" (7416) uses obsolete ecb(arc4) skcipher
[  118.407476][ T7416] __nla_validate_parse: 4 callbacks suppressed
[  118.407492][ T7416] netlink: 8 bytes leftover after parsing attributes in process `syz.1.391'.
[  118.447086][ T7395] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.770457][ T7426] "syz.2.396" (7426) uses obsolete ecb(arc4) skcipher
[  118.897646][ T6074] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  118.930864][   T12] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  118.964211][   T12] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  118.991848][   T12] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.070930][ T7435] (unnamed net_device) (uninitialized): up delay (1024) is not a multiple of miimon (100), value rounded to 1000 ms
[  119.085734][ T7435] (unnamed net_device) (uninitialized): down delay (4) is not a multiple of miimon (100), value rounded to 0 ms
[  119.132008][ T7437] netlink: 788 bytes leftover after parsing attributes in process `syz.4.399'.
[  119.381476][ T7443] netlink: 'syz.4.401': attribute type 1 has an invalid length.
[  119.409220][ T7443] netlink: 'syz.4.401': attribute type 3 has an invalid length.
[  119.422581][ T7443] netlink: 'syz.4.401': attribute type 1 has an invalid length.
[  119.455054][ T7443] netlink: 204 bytes leftover after parsing attributes in process `syz.4.401'.
[  119.457372][ T7447] netlink: 452 bytes leftover after parsing attributes in process `syz.0.403'.
[  119.465002][ T7443] NCSI netlink: No device for ifindex 0
[  119.482947][ T7445] FAULT_INJECTION: forcing a failure.
[  119.482947][ T7445] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  119.539928][ T7445] CPU: 1 UID: 0 PID: 7445 Comm: syz.1.402 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  119.539953][ T7445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  119.539963][ T7445] Call Trace:
[  119.539970][ T7445]  <TASK>
[  119.539978][ T7445]  dump_stack_lvl+0x189/0x250
[  119.540002][ T7445]  ? __pfx____ratelimit+0x10/0x10
[  119.540028][ T7445]  ? __pfx_dump_stack_lvl+0x10/0x10
[  119.540046][ T7445]  ? __pfx__printk+0x10/0x10
[  119.540071][ T7445]  ? __might_fault+0xb0/0x130
[  119.540104][ T7445]  should_fail_ex+0x414/0x560
[  119.540134][ T7445]  _copy_from_user+0x2d/0xb0
[  119.540157][ T7445]  ___sys_recvmsg+0x12e/0x510
[  119.540185][ T7445]  ? __pfx____sys_recvmsg+0x10/0x10
[  119.540238][ T7445]  ? __might_fault+0xb0/0x130
[  119.540261][ T7445]  do_recvmmsg+0x307/0x770
[  119.540299][ T7445]  ? __pfx_do_recvmmsg+0x10/0x10
[  119.540333][ T7445]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  119.540369][ T7445]  __x64_sys_recvmmsg+0x190/0x240
[  119.540393][ T7445]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  119.540411][ T7445]  ? rcu_is_watching+0x15/0xb0
[  119.540435][ T7445]  ? do_syscall_64+0xbe/0x3b0
[  119.540457][ T7445]  do_syscall_64+0xfa/0x3b0
[  119.540472][ T7445]  ? lockdep_hardirqs_on+0x9c/0x150
[  119.540488][ T7445]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.540505][ T7445]  ? clear_bhb_loop+0x60/0xb0
[  119.540526][ T7445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.540541][ T7445] RIP: 0033:0x7f3cbd58e9a9
[  119.540558][ T7445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.540571][ T7445] RSP: 002b:00007f3cbe37c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  119.540590][ T7445] RAX: ffffffffffffffda RBX: 00007f3cbd7b5fa0 RCX: 00007f3cbd58e9a9
[  119.540603][ T7445] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  119.540614][ T7445] RBP: 00007f3cbe37c090 R08: 0000000000000000 R09: 0000000000000000
[  119.540625][ T7445] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  119.540635][ T7445] R13: 0000000000000000 R14: 00007f3cbd7b5fa0 R15: 00007ffd57e0bd18
[  119.540665][ T7445]  </TASK>
[  120.181482][ T7471] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  120.210323][ T7471] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  120.266339][ T7471] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  120.372620][ T7478] "syz.0.410" (7478) uses obsolete ecb(arc4) skcipher
[  120.393998][ T7478] IPVS: Error connecting to the multicast addr
[  120.478537][ T7471] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  120.490864][ T7471] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  120.515881][ T7471] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  120.621773][ T7471] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  120.633780][ T7471] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  120.655970][ T7471] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  120.711250][ T7471] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  120.722738][ T7471] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  120.737097][ T7471] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  120.913265][   T12] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  120.931117][   T12] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  120.949114][   T12] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  120.993910][   T12] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  121.017577][   T12] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  121.025900][   T12] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  121.089162][ T6074] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  121.110815][ T6074] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  121.131777][ T6074] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  121.224223][ T6084] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  121.242983][ T6084] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  121.281111][ T6084] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  121.511721][ T7508] FAULT_INJECTION: forcing a failure.
[  121.511721][ T7508] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  121.525414][ T7508] CPU: 0 UID: 0 PID: 7508 Comm: syz.1.417 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  121.525439][ T7508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  121.525450][ T7508] Call Trace:
[  121.525458][ T7508]  <TASK>
[  121.525466][ T7508]  dump_stack_lvl+0x189/0x250
[  121.525501][ T7508]  ? __pfx____ratelimit+0x10/0x10
[  121.525527][ T7508]  ? __pfx_dump_stack_lvl+0x10/0x10
[  121.525546][ T7508]  ? __pfx__printk+0x10/0x10
[  121.525568][ T7508]  ? __might_fault+0xb0/0x130
[  121.525601][ T7508]  should_fail_ex+0x414/0x560
[  121.525632][ T7508]  _copy_from_user+0x2d/0xb0
[  121.525654][ T7508]  ___sys_recvmsg+0x12e/0x510
[  121.525682][ T7508]  ? __pfx____sys_recvmsg+0x10/0x10
[  121.525738][ T7508]  ? __might_fault+0xb0/0x130
[  121.525762][ T7508]  do_recvmmsg+0x307/0x770
[  121.525791][ T7508]  ? __pfx_do_recvmmsg+0x10/0x10
[  121.525825][ T7508]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  121.525862][ T7508]  __x64_sys_recvmmsg+0x190/0x240
[  121.525887][ T7508]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  121.525905][ T7508]  ? rcu_is_watching+0x15/0xb0
[  121.525928][ T7508]  ? do_syscall_64+0xbe/0x3b0
[  121.525949][ T7508]  do_syscall_64+0xfa/0x3b0
[  121.525964][ T7508]  ? lockdep_hardirqs_on+0x9c/0x150
[  121.525980][ T7508]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.525998][ T7508]  ? clear_bhb_loop+0x60/0xb0
[  121.526019][ T7508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.526036][ T7508] RIP: 0033:0x7f3cbd58e9a9
[  121.526056][ T7508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.526072][ T7508] RSP: 002b:00007f3cbe37c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  121.526099][ T7508] RAX: ffffffffffffffda RBX: 00007f3cbd7b5fa0 RCX: 00007f3cbd58e9a9
[  121.526112][ T7508] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  121.526124][ T7508] RBP: 00007f3cbe37c090 R08: 0000000000000000 R09: 0000000000000000
[  121.526135][ T7508] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  121.526153][ T7508] R13: 0000000000000000 R14: 00007f3cbd7b5fa0 R15: 00007ffd57e0bd18
[  121.526184][ T7508]  </TASK>
[  121.778615][ T7503] batadv_slave_0: entered promiscuous mode
[  121.859722][ T7516] pim6reg1: entered promiscuous mode
[  121.874184][ T7516] pim6reg1: entered allmulticast mode
[  122.493281][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.530026][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.643726][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.651017][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.707544][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.793964][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.800590][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.814715][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.829077][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.846754][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.890926][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.901241][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.907038][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.923745][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.936771][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.942583][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.952080][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  122.958110][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.075193][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.081379][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.090485][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.096791][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.102688][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.112303][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.119450][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.143316][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.175371][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.183048][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.216607][ T7536] netpci0: tun_chr_ioctl cmd 1074025681
[  123.343468][ T7560] netlink: 84 bytes leftover after parsing attributes in process `syz.1.432'.
[  123.358037][ T7560] netlink: 16 bytes leftover after parsing attributes in process `syz.1.432'.
[  123.385597][ T7560] netlink: 16 bytes leftover after parsing attributes in process `syz.1.432'.
[  123.551680][ T7578] netlink: 16 bytes leftover after parsing attributes in process `syz.0.436'.
[  123.560971][ T7578] netlink: 16 bytes leftover after parsing attributes in process `syz.0.436'.
[  123.570088][ T7578] netlink: 20 bytes leftover after parsing attributes in process `syz.0.436'.
[  123.601897][ T7567] 8021q: adding VLAN 0 to HW filter on device bond2
[  123.612254][ T7567] bond0: (slave bond2): Enslaving as an active interface with an up link
[  123.742593][ T7584] pim6reg1: entered promiscuous mode
[  123.758796][ T7584] pim6reg1: entered allmulticast mode
[  123.797719][ T7589] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  124.051821][ T7598] FAULT_INJECTION: forcing a failure.
[  124.051821][ T7598] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.071412][ T7598] CPU: 1 UID: 0 PID: 7598 Comm: syz.2.443 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  124.071433][ T7598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  124.071440][ T7598] Call Trace:
[  124.071446][ T7598]  <TASK>
[  124.071453][ T7598]  dump_stack_lvl+0x189/0x250
[  124.071472][ T7598]  ? __pfx____ratelimit+0x10/0x10
[  124.071493][ T7598]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.071508][ T7598]  ? __pfx__printk+0x10/0x10
[  124.071524][ T7598]  ? __might_fault+0xb0/0x130
[  124.071550][ T7598]  should_fail_ex+0x414/0x560
[  124.071575][ T7598]  _copy_from_user+0x2d/0xb0
[  124.071594][ T7598]  ___sys_recvmsg+0x12e/0x510
[  124.071616][ T7598]  ? __pfx____sys_recvmsg+0x10/0x10
[  124.071658][ T7598]  ? __might_fault+0xb0/0x130
[  124.071677][ T7598]  do_recvmmsg+0x307/0x770
[  124.071702][ T7598]  ? __pfx_do_recvmmsg+0x10/0x10
[  124.071729][ T7598]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  124.071762][ T7598]  __x64_sys_recvmmsg+0x190/0x240
[  124.071780][ T7598]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  124.071795][ T7598]  ? rcu_is_watching+0x15/0xb0
[  124.071814][ T7598]  ? do_syscall_64+0xbe/0x3b0
[  124.071831][ T7598]  do_syscall_64+0xfa/0x3b0
[  124.071844][ T7598]  ? lockdep_hardirqs_on+0x9c/0x150
[  124.071857][ T7598]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.071871][ T7598]  ? clear_bhb_loop+0x60/0xb0
[  124.071908][ T7598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.071921][ T7598] RIP: 0033:0x7f77d218e9a9
[  124.071934][ T7598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.071947][ T7598] RSP: 002b:00007f77d2f1b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  124.071964][ T7598] RAX: ffffffffffffffda RBX: 00007f77d23b5fa0 RCX: 00007f77d218e9a9
[  124.071974][ T7598] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  124.071984][ T7598] RBP: 00007f77d2f1b090 R08: 0000000000000000 R09: 0000000000000000
[  124.071994][ T7598] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  124.072004][ T7598] R13: 0000000000000000 R14: 00007f77d23b5fa0 R15: 00007ffef65065d8
[  124.072030][ T7598]  </TASK>
[  124.420010][ T7611] netlink: 16 bytes leftover after parsing attributes in process `syz.3.447'.
[  125.068765][ T7640] netlink: 16 bytes leftover after parsing attributes in process `syz.4.457'.
[  125.081076][ T7643] netlink: 16 bytes leftover after parsing attributes in process `syz.3.459'.
[  125.153107][ T7644] FAULT_INJECTION: forcing a failure.
[  125.153107][ T7644] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.174491][ T7644] CPU: 0 UID: 0 PID: 7644 Comm: syz.0.458 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  125.174516][ T7644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  125.174525][ T7644] Call Trace:
[  125.174532][ T7644]  <TASK>
[  125.174540][ T7644]  dump_stack_lvl+0x189/0x250
[  125.174563][ T7644]  ? __pfx____ratelimit+0x10/0x10
[  125.174587][ T7644]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.174605][ T7644]  ? __pfx__printk+0x10/0x10
[  125.174626][ T7644]  ? __might_fault+0xb0/0x130
[  125.174666][ T7644]  should_fail_ex+0x414/0x560
[  125.174697][ T7644]  _copy_from_user+0x2d/0xb0
[  125.174719][ T7644]  ___sys_recvmsg+0x12e/0x510
[  125.174748][ T7644]  ? __pfx____sys_recvmsg+0x10/0x10
[  125.174811][ T7644]  ? __might_fault+0xb0/0x130
[  125.174835][ T7644]  do_recvmmsg+0x307/0x770
[  125.174866][ T7644]  ? __pfx_do_recvmmsg+0x10/0x10
[  125.174900][ T7644]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  125.174936][ T7644]  __x64_sys_recvmmsg+0x190/0x240
[  125.174960][ T7644]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  125.174979][ T7644]  ? rcu_is_watching+0x15/0xb0
[  125.175003][ T7644]  ? do_syscall_64+0xbe/0x3b0
[  125.175024][ T7644]  do_syscall_64+0xfa/0x3b0
[  125.175040][ T7644]  ? lockdep_hardirqs_on+0x9c/0x150
[  125.175055][ T7644]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.175071][ T7644]  ? clear_bhb_loop+0x60/0xb0
[  125.175091][ T7644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.175108][ T7644] RIP: 0033:0x7fd525b8e9a9
[  125.175124][ T7644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.175139][ T7644] RSP: 002b:00007fd52691b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  125.175158][ T7644] RAX: ffffffffffffffda RBX: 00007fd525db5fa0 RCX: 00007fd525b8e9a9
[  125.175171][ T7644] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  125.175183][ T7644] RBP: 00007fd52691b090 R08: 0000000000000000 R09: 0000000000000000
[  125.175194][ T7644] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  125.175206][ T7644] R13: 0000000000000000 R14: 00007fd525db5fa0 R15: 00007ffed48675b8
[  125.175235][ T7644]  </TASK>
[  125.467589][ T7652] IPVS: stopping backup sync thread 7653 ...
[  125.474221][ T7653] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  125.523576][ T7652] netlink: 12 bytes leftover after parsing attributes in process `syz.4.464'.
[  125.591737][ T7658] vlan2: entered promiscuous mode
[  125.616138][ T7658] ip6gretap0: entered promiscuous mode
[  125.804932][ T7680] netlink: 16 bytes leftover after parsing attributes in process `syz.4.472'.
[  125.828755][ T7683] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  125.895574][ T7682] FAULT_INJECTION: forcing a failure.
[  125.895574][ T7682] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.930267][ T7682] CPU: 0 UID: 0 PID: 7682 Comm: syz.2.473 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  125.930293][ T7682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  125.930304][ T7682] Call Trace:
[  125.930311][ T7682]  <TASK>
[  125.930319][ T7682]  dump_stack_lvl+0x189/0x250
[  125.930343][ T7682]  ? __pfx____ratelimit+0x10/0x10
[  125.930370][ T7682]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.930388][ T7682]  ? __pfx__printk+0x10/0x10
[  125.930410][ T7682]  ? __might_fault+0xb0/0x130
[  125.930444][ T7682]  should_fail_ex+0x414/0x560
[  125.930474][ T7682]  _copy_from_user+0x2d/0xb0
[  125.930497][ T7682]  ___sys_recvmsg+0x12e/0x510
[  125.930525][ T7682]  ? __pfx____sys_recvmsg+0x10/0x10
[  125.930580][ T7682]  ? __might_fault+0xb0/0x130
[  125.930605][ T7682]  do_recvmmsg+0x307/0x770
[  125.930635][ T7682]  ? __pfx_do_recvmmsg+0x10/0x10
[  125.930669][ T7682]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  125.930707][ T7682]  __x64_sys_recvmmsg+0x190/0x240
[  125.930731][ T7682]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  125.930749][ T7682]  ? rcu_is_watching+0x15/0xb0
[  125.930774][ T7682]  ? do_syscall_64+0xbe/0x3b0
[  125.930796][ T7682]  do_syscall_64+0xfa/0x3b0
[  125.930812][ T7682]  ? lockdep_hardirqs_on+0x9c/0x150
[  125.930828][ T7682]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.930844][ T7682]  ? clear_bhb_loop+0x60/0xb0
[  125.930873][ T7682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.930889][ T7682] RIP: 0033:0x7f77d218e9a9
[  125.930906][ T7682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.930921][ T7682] RSP: 002b:00007f77d2f1b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  125.930941][ T7682] RAX: ffffffffffffffda RBX: 00007f77d23b5fa0 RCX: 00007f77d218e9a9
[  125.930954][ T7682] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  125.930966][ T7682] RBP: 00007f77d2f1b090 R08: 0000000000000000 R09: 0000000000000000
[  125.930978][ T7682] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  125.930989][ T7682] R13: 0000000000000000 R14: 00007f77d23b5fa0 R15: 00007ffef65065d8
[  125.931019][ T7682]  </TASK>
[  126.451547][ T7692] pim6reg1: entered promiscuous mode
[  126.477041][ T7692] pim6reg1: entered allmulticast mode
[  126.529898][ T7697] netlink: 12 bytes leftover after parsing attributes in process `syz.2.476'.
[  126.592018][ T7697] xfrm1: entered promiscuous mode
[  126.645874][ T7697] xfrm1: entered allmulticast mode
[  127.915156][ T7714] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  127.934639][ T7714] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  127.954433][ T7714] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  128.031549][ T7717] netlink: 8 bytes leftover after parsing attributes in process `syz.2.482'.
[  128.032759][ T7714] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  128.054584][ T7714] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  128.067490][ T7714] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  128.227743][ T7714] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  128.238368][ T7714] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  128.269435][ T7714] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  128.355411][ T7714] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  128.373133][ T7714] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  128.407582][ T7714] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  128.629500][ T6074] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  128.674674][ T6074] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  128.682792][ T6074] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  128.724491][ T6074] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  128.735272][ T7739] FAULT_INJECTION: forcing a failure.
[  128.735272][ T7739] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  128.748625][ T7739] CPU: 0 UID: 0 PID: 7739 Comm: syz.4.486 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  128.748650][ T7739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  128.748662][ T7739] Call Trace:
[  128.748669][ T7739]  <TASK>
[  128.748677][ T7739]  dump_stack_lvl+0x189/0x250
[  128.748701][ T7739]  ? __pfx____ratelimit+0x10/0x10
[  128.748727][ T7739]  ? __pfx_dump_stack_lvl+0x10/0x10
[  128.748747][ T7739]  ? __pfx__printk+0x10/0x10
[  128.748768][ T7739]  ? __might_fault+0xb0/0x130
[  128.748808][ T7739]  should_fail_ex+0x414/0x560
[  128.748839][ T7739]  _copy_from_user+0x2d/0xb0
[  128.748862][ T7739]  ___sys_recvmsg+0x12e/0x510
[  128.748890][ T7739]  ? __pfx____sys_recvmsg+0x10/0x10
[  128.748945][ T7739]  ? __might_fault+0xb0/0x130
[  128.748970][ T7739]  do_recvmmsg+0x307/0x770
[  128.749000][ T7739]  ? __pfx_do_recvmmsg+0x10/0x10
[  128.749033][ T7739]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  128.749071][ T7739]  __x64_sys_recvmmsg+0x190/0x240
[  128.749095][ T7739]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  128.749115][ T7739]  ? rcu_is_watching+0x15/0xb0
[  128.749139][ T7739]  ? do_syscall_64+0xbe/0x3b0
[  128.749162][ T7739]  do_syscall_64+0xfa/0x3b0
[  128.749178][ T7739]  ? lockdep_hardirqs_on+0x9c/0x150
[  128.749194][ T7739]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.749211][ T7739]  ? clear_bhb_loop+0x60/0xb0
[  128.749233][ T7739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.749250][ T7739] RIP: 0033:0x7faa0918e9a9
[  128.749266][ T7739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.749282][ T7739] RSP: 002b:00007faa0a018038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  128.749301][ T7739] RAX: ffffffffffffffda RBX: 00007faa093b5fa0 RCX: 00007faa0918e9a9
[  128.749314][ T7739] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  128.749326][ T7739] RBP: 00007faa0a018090 R08: 0000000000000000 R09: 0000000000000000
[  128.749338][ T7739] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  128.749349][ T7739] R13: 0000000000000000 R14: 00007faa093b5fa0 R15: 00007ffddfe34888
[  128.749379][ T7739]  </TASK>
[  128.754559][ T6074] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  128.917516][ T7741] netlink: 'syz.2.488': attribute type 7 has an invalid length.
[  129.047447][ T6074] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  129.075181][ T6074] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  129.094463][ T7741] __nla_validate_parse: 4 callbacks suppressed
[  129.094479][ T7741] netlink: 8 bytes leftover after parsing attributes in process `syz.2.488'.
[  129.095381][ T6074] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  129.148428][ T6074] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  129.224460][ T6074] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  129.264418][ T6074] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  129.282737][ T6074] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  129.361663][ T7748] pim6reg1: entered promiscuous mode
[  129.379848][ T7748] pim6reg1: entered allmulticast mode
[  129.425476][ T7752] netlink: 16 bytes leftover after parsing attributes in process `syz.2.492'.
[  129.836803][ T7763] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  129.915088][ T7765] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  130.010494][ T7763] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  130.124699][ T7771] netlink: 16 bytes leftover after parsing attributes in process `syz.2.496'.
[  130.160183][ T7763] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  130.354984][ T7774] netlink: 40 bytes leftover after parsing attributes in process `syz.2.497'.
[  130.491283][ T7774] netlink: 228 bytes leftover after parsing attributes in process `syz.2.497'.
[  130.538832][ T7774] veth0_to_team: entered promiscuous mode
[  130.547500][ T7774] veth0_to_team: entered allmulticast mode
[  130.922763][ T7781] FAULT_INJECTION: forcing a failure.
[  130.922763][ T7781] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  130.969903][ T7781] CPU: 1 UID: 0 PID: 7781 Comm: syz.4.499 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  130.969929][ T7781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  130.969940][ T7781] Call Trace:
[  130.969947][ T7781]  <TASK>
[  130.969956][ T7781]  dump_stack_lvl+0x189/0x250
[  130.969980][ T7781]  ? __pfx____ratelimit+0x10/0x10
[  130.970007][ T7781]  ? __pfx_dump_stack_lvl+0x10/0x10
[  130.970026][ T7781]  ? __pfx__printk+0x10/0x10
[  130.970048][ T7781]  ? __might_fault+0xb0/0x130
[  130.970081][ T7781]  should_fail_ex+0x414/0x560
[  130.970112][ T7781]  _copy_from_user+0x2d/0xb0
[  130.970135][ T7781]  ___sys_recvmsg+0x12e/0x510
[  130.970164][ T7781]  ? __pfx____sys_recvmsg+0x10/0x10
[  130.970218][ T7781]  ? __might_fault+0xb0/0x130
[  130.970243][ T7781]  do_recvmmsg+0x307/0x770
[  130.970272][ T7781]  ? __pfx_do_recvmmsg+0x10/0x10
[  130.970304][ T7781]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  130.970340][ T7781]  __x64_sys_recvmmsg+0x190/0x240
[  130.970363][ T7781]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  130.970381][ T7781]  ? rcu_is_watching+0x15/0xb0
[  130.970406][ T7781]  ? do_syscall_64+0xbe/0x3b0
[  130.970427][ T7781]  do_syscall_64+0xfa/0x3b0
[  130.970448][ T7781]  ? lockdep_hardirqs_on+0x9c/0x150
[  130.970465][ T7781]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.970480][ T7781]  ? clear_bhb_loop+0x60/0xb0
[  130.970502][ T7781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.970518][ T7781] RIP: 0033:0x7faa0918e9a9
[  130.970534][ T7781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.970549][ T7781] RSP: 002b:00007faa0a018038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  130.970567][ T7781] RAX: ffffffffffffffda RBX: 00007faa093b5fa0 RCX: 00007faa0918e9a9
[  130.970580][ T7781] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  130.970592][ T7781] RBP: 00007faa0a018090 R08: 0000000000000000 R09: 0000000000000000
[  130.970604][ T7781] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  130.970615][ T7781] R13: 0000000000000000 R14: 00007faa093b5fa0 R15: 00007ffddfe34888
[  130.970645][ T7781]  </TASK>
[  131.347138][ T7787] netlink: 24 bytes leftover after parsing attributes in process `syz.1.501'.
[  131.786974][ T7799] netlink: 'syz.1.505': attribute type 1 has an invalid length.
[  131.799447][ T7802] IPVS: set_ctl: invalid protocol: 51 224.0.0.2:20004
[  131.900743][ T7809] netlink: 16 bytes leftover after parsing attributes in process `syz.0.508'.
[  131.972029][ T7816] pim6reg1: entered promiscuous mode
[  131.977536][ T7816] pim6reg1: entered allmulticast mode
[  132.200980][ T7830] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input5
[  132.237817][ T7833] FAULT_INJECTION: forcing a failure.
[  132.237817][ T7833] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.271448][ T7833] CPU: 1 UID: 0 PID: 7833 Comm: syz.0.512 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  132.271474][ T7833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  132.271485][ T7833] Call Trace:
[  132.271492][ T7833]  <TASK>
[  132.271500][ T7833]  dump_stack_lvl+0x189/0x250
[  132.271535][ T7833]  ? __pfx____ratelimit+0x10/0x10
[  132.271561][ T7833]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.271581][ T7833]  ? __pfx__printk+0x10/0x10
[  132.271601][ T7833]  ? __might_fault+0xb0/0x130
[  132.271633][ T7833]  should_fail_ex+0x414/0x560
[  132.271664][ T7833]  _copy_from_user+0x2d/0xb0
[  132.271687][ T7833]  ___sys_recvmsg+0x12e/0x510
[  132.271716][ T7833]  ? __pfx____sys_recvmsg+0x10/0x10
[  132.271770][ T7833]  ? __might_fault+0xb0/0x130
[  132.271795][ T7833]  do_recvmmsg+0x307/0x770
[  132.271827][ T7833]  ? __pfx_do_recvmmsg+0x10/0x10
[  132.271862][ T7833]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  132.271901][ T7833]  __x64_sys_recvmmsg+0x190/0x240
[  132.271925][ T7833]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  132.271944][ T7833]  ? rcu_is_watching+0x15/0xb0
[  132.271969][ T7833]  ? do_syscall_64+0xbe/0x3b0
[  132.271992][ T7833]  do_syscall_64+0xfa/0x3b0
[  132.272008][ T7833]  ? lockdep_hardirqs_on+0x9c/0x150
[  132.272024][ T7833]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.272040][ T7833]  ? clear_bhb_loop+0x60/0xb0
[  132.272062][ T7833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.272078][ T7833] RIP: 0033:0x7fd525b8e9a9
[  132.272095][ T7833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.272111][ T7833] RSP: 002b:00007fd5239f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  132.272131][ T7833] RAX: ffffffffffffffda RBX: 00007fd525db6080 RCX: 00007fd525b8e9a9
[  132.272143][ T7833] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  132.272155][ T7833] RBP: 00007fd5239f6090 R08: 0000000000000000 R09: 0000000000000000
[  132.272166][ T7833] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  132.272177][ T7833] R13: 0000000000000000 R14: 00007fd525db6080 R15: 00007ffed48675b8
[  132.272207][ T7833]  </TASK>
[  132.728459][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  132.954800][ T7842] (unnamed net_device) (uninitialized): peer notification delay (9) is not a multiple of miimon (100), value rounded to 0 ms
[  132.981708][ T7842] (unnamed net_device) (uninitialized): option use_carrier: invalid value (5)
[  133.150996][ T7857] netlink: 16 bytes leftover after parsing attributes in process `syz.3.522'.
[  133.507912][ T7867] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  133.570893][ T7872] netlink: 52 bytes leftover after parsing attributes in process `syz.1.525'.
[  133.571284][ T7871] netlink: 24 bytes leftover after parsing attributes in process `syz.1.525'.
[  134.095271][ T7888] netlink: 'syz.3.528': attribute type 6 has an invalid length.
[  134.112982][ T7886] FAULT_INJECTION: forcing a failure.
[  134.112982][ T7886] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.194548][ T7886] CPU: 1 UID: 0 PID: 7886 Comm: syz.2.529 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  134.194575][ T7886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  134.194586][ T7886] Call Trace:
[  134.194594][ T7886]  <TASK>
[  134.194602][ T7886]  dump_stack_lvl+0x189/0x250
[  134.194627][ T7886]  ? __pfx____ratelimit+0x10/0x10
[  134.194653][ T7886]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.194672][ T7886]  ? __pfx__printk+0x10/0x10
[  134.194694][ T7886]  ? __might_fault+0xb0/0x130
[  134.194727][ T7886]  should_fail_ex+0x414/0x560
[  134.194759][ T7886]  _copy_from_user+0x2d/0xb0
[  134.194782][ T7886]  ___sys_recvmsg+0x12e/0x510
[  134.194810][ T7886]  ? __pfx____sys_recvmsg+0x10/0x10
[  134.194865][ T7886]  ? __might_fault+0xb0/0x130
[  134.194890][ T7886]  do_recvmmsg+0x307/0x770
[  134.194925][ T7886]  ? __pfx_do_recvmmsg+0x10/0x10
[  134.194960][ T7886]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  134.194997][ T7886]  __x64_sys_recvmmsg+0x190/0x240
[  134.195021][ T7886]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  134.195040][ T7886]  ? rcu_is_watching+0x15/0xb0
[  134.195065][ T7886]  ? do_syscall_64+0xbe/0x3b0
[  134.195087][ T7886]  do_syscall_64+0xfa/0x3b0
[  134.195103][ T7886]  ? lockdep_hardirqs_on+0x9c/0x150
[  134.195119][ T7886]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.195136][ T7886]  ? clear_bhb_loop+0x60/0xb0
[  134.195157][ T7886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.195174][ T7886] RIP: 0033:0x7f77d218e9a9
[  134.195189][ T7886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.195212][ T7886] RSP: 002b:00007f77d2f1b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  134.195231][ T7886] RAX: ffffffffffffffda RBX: 00007f77d23b5fa0 RCX: 00007f77d218e9a9
[  134.195245][ T7886] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  134.195257][ T7886] RBP: 00007f77d2f1b090 R08: 0000000000000000 R09: 0000000000000000
[  134.195268][ T7886] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  134.195279][ T7886] R13: 0000000000000000 R14: 00007f77d23b5fa0 R15: 00007ffef65065d8
[  134.195309][ T7886]  </TASK>
[  134.530408][ T7895] syzkaller1: tun_chr_ioctl cmd 1074025672
[  134.538192][ T7895] syzkaller1: ignored: set checksum disabled
[  134.546967][ T7895] __nla_validate_parse: 2 callbacks suppressed
[  134.546981][ T7895] netlink: 12 bytes leftover after parsing attributes in process `syz.0.531'.
[  134.709546][ T7900] netlink: 16 bytes leftover after parsing attributes in process `syz.0.533'.
[  135.160028][ T7917] "syz.0.537" (7917) uses obsolete ecb(arc4) skcipher
[  135.357563][ T7923] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  135.380887][ T7923] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  135.401767][ T7923] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  135.476467][ T7923] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  135.488593][ T7923] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  135.524575][ T7923] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  135.601530][ T7930] bridge0: port 1(macsec0) entered blocking state
[  135.613628][ T7930] bridge0: port 1(macsec0) entered disabled state
[  135.620703][ T7930] macsec0: entered allmulticast mode
[  135.626566][ T7930] veth1_macvtap: entered allmulticast mode
[  135.636578][ T7930] macsec0: entered promiscuous mode
[  135.646011][ T7930] bridge0: port 1(macsec0) entered blocking state
[  135.652738][ T7930] bridge0: port 1(macsec0) entered forwarding state
[  135.666746][ T7923] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  135.678235][ T7923] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  135.690820][ T7923] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  135.762029][ T7923] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  135.774583][ T7923] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  135.784454][ T7923] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  135.949958][   T12] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  135.970940][   T12] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  135.975849][ T7937] netlink: 4 bytes leftover after parsing attributes in process `syz.0.542'.
[  135.988877][   T12] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  136.035833][ T6074] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  136.044027][ T6074] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  136.064482][ T6074] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  136.097190][ T7939] "syz.0.543" (7939) uses obsolete ecb(arc4) skcipher
[  136.107730][ T6074] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  136.124356][ T6074] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  136.132440][ T6074] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  136.149513][ T6074] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  136.157937][ T6074] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  136.169284][ T6074] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  136.290920][ T7941] netlink: 32 bytes leftover after parsing attributes in process `syz.1.544'.
[  136.605588][ T7957] FAULT_INJECTION: forcing a failure.
[  136.605588][ T7957] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.633796][ T7956] pim6reg1: entered promiscuous mode
[  136.644492][ T7957] CPU: 1 UID: 0 PID: 7957 Comm: syz.2.550 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  136.644516][ T7957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  136.644527][ T7957] Call Trace:
[  136.644534][ T7957]  <TASK>
[  136.644542][ T7957]  dump_stack_lvl+0x189/0x250
[  136.644566][ T7957]  ? __pfx____ratelimit+0x10/0x10
[  136.644591][ T7957]  ? __pfx_dump_stack_lvl+0x10/0x10
[  136.644614][ T7957]  ? __pfx__printk+0x10/0x10
[  136.644635][ T7957]  ? __might_fault+0xb0/0x130
[  136.644670][ T7957]  should_fail_ex+0x414/0x560
[  136.644701][ T7957]  _copy_from_user+0x2d/0xb0
[  136.644724][ T7957]  ___sys_recvmsg+0x12e/0x510
[  136.644751][ T7957]  ? __pfx____sys_recvmsg+0x10/0x10
[  136.644806][ T7957]  ? __might_fault+0xb0/0x130
[  136.644831][ T7957]  do_recvmmsg+0x307/0x770
[  136.644861][ T7957]  ? __pfx_do_recvmmsg+0x10/0x10
[  136.644895][ T7957]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  136.644941][ T7957]  __x64_sys_recvmmsg+0x190/0x240
[  136.644965][ T7957]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  136.644984][ T7957]  ? rcu_is_watching+0x15/0xb0
[  136.645009][ T7957]  ? do_syscall_64+0xbe/0x3b0
[  136.645030][ T7957]  do_syscall_64+0xfa/0x3b0
[  136.645046][ T7957]  ? lockdep_hardirqs_on+0x9c/0x150
[  136.645063][ T7957]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.645080][ T7957]  ? clear_bhb_loop+0x60/0xb0
[  136.645102][ T7957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.645118][ T7957] RIP: 0033:0x7f77d218e9a9
[  136.645134][ T7957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.645149][ T7957] RSP: 002b:00007f77d2f1b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  136.645168][ T7957] RAX: ffffffffffffffda RBX: 00007f77d23b5fa0 RCX: 00007f77d218e9a9
[  136.645182][ T7957] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  136.645194][ T7957] RBP: 00007f77d2f1b090 R08: 0000000000000000 R09: 0000000000000000
[  136.645205][ T7957] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  136.645216][ T7957] R13: 0000000000000000 R14: 00007f77d23b5fa0 R15: 00007ffef65065d8
[  136.645247][ T7957]  </TASK>
[  136.646508][ T7956] pim6reg1: entered allmulticast mode
[  136.890363][ T7961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.551'.
[  136.937918][ T7961] macsec1: entered allmulticast mode
[  136.950253][ T7961] mac80211_hwsim hwsim8 wlan0: entered allmulticast mode
[  137.074562][ T7965] netlink: 16 bytes leftover after parsing attributes in process `syz.0.552'.
[  137.102165][ T7967] "syz.2.553" (7967) uses obsolete ecb(arc4) skcipher
[  137.257243][ T7975] netlink: 'syz.3.557': attribute type 1 has an invalid length.
[  137.266512][ T7975] netlink: 'syz.3.557': attribute type 2 has an invalid length.
[  137.268715][ T7973] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.318448][ T7972] netlink: 9 bytes leftover after parsing attributes in process `syz.0.554'.
[  137.344857][ T7972] gretap0: left allmulticast mode
[  137.373992][ T7973] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.460096][ T7973] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.541297][ T7973] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.817206][ T7988] FAULT_INJECTION: forcing a failure.
[  137.817206][ T7988] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.847671][ T7988] CPU: 1 UID: 0 PID: 7988 Comm: syz.0.561 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  137.847698][ T7988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  137.847708][ T7988] Call Trace:
[  137.847715][ T7988]  <TASK>
[  137.847723][ T7988]  dump_stack_lvl+0x189/0x250
[  137.847748][ T7988]  ? __pfx____ratelimit+0x10/0x10
[  137.847774][ T7988]  ? __pfx_dump_stack_lvl+0x10/0x10
[  137.847793][ T7988]  ? __pfx__printk+0x10/0x10
[  137.847815][ T7988]  ? __might_fault+0xb0/0x130
[  137.847849][ T7988]  should_fail_ex+0x414/0x560
[  137.847889][ T7988]  _copy_from_user+0x2d/0xb0
[  137.847911][ T7988]  ___sys_recvmsg+0x12e/0x510
[  137.847940][ T7988]  ? __pfx____sys_recvmsg+0x10/0x10
[  137.847995][ T7988]  ? __might_fault+0xb0/0x130
[  137.848021][ T7988]  do_recvmmsg+0x307/0x770
[  137.848052][ T7988]  ? __pfx_do_recvmmsg+0x10/0x10
[  137.848086][ T7988]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  137.848123][ T7988]  __x64_sys_recvmmsg+0x190/0x240
[  137.848148][ T7988]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  137.848167][ T7988]  ? rcu_is_watching+0x15/0xb0
[  137.848192][ T7988]  ? do_syscall_64+0xbe/0x3b0
[  137.848213][ T7988]  do_syscall_64+0xfa/0x3b0
[  137.848229][ T7988]  ? lockdep_hardirqs_on+0x9c/0x150
[  137.848246][ T7988]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.848262][ T7988]  ? clear_bhb_loop+0x60/0xb0
[  137.848284][ T7988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.848301][ T7988] RIP: 0033:0x7fd525b8e9a9
[  137.848317][ T7988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.848332][ T7988] RSP: 002b:00007fd52691b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  137.848352][ T7988] RAX: ffffffffffffffda RBX: 00007fd525db5fa0 RCX: 00007fd525b8e9a9
[  137.848364][ T7988] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  137.848375][ T7988] RBP: 00007fd52691b090 R08: 0000000000000000 R09: 0000000000000000
[  137.848386][ T7988] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  137.848397][ T7988] R13: 0000000000000000 R14: 00007fd525db5fa0 R15: 00007ffed48675b8
[  137.848428][ T7988]  </TASK>
[  137.884101][ T7991] netlink: 'syz.3.562': attribute type 10 has an invalid length.
[  137.965672][ T6074] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  137.966516][ T6074] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  138.121770][ T8002] netlink: 4 bytes leftover after parsing attributes in process `syz.0.564'.
[  138.132919][ T8002] "syz.0.564" (8002) uses obsolete ecb(arc4) skcipher
[  138.152620][ T7991] bridge0: port 1(macsec0) entered disabled state
[  138.173017][ T8004] netlink: 16 bytes leftover after parsing attributes in process `syz.2.565'.
[  138.176104][ T7991] bridge0: port 1(macsec0) entered blocking state
[  138.188487][ T7991] bridge0: port 1(macsec0) entered forwarding state
[  138.233636][ T7991] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  138.259307][ T6074] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  138.277625][ T6074] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  138.391218][ T8015] "syz.1.569" (8015) uses obsolete ecb(arc4) skcipher
[  138.548037][ T5913] hid-generic 0005:16C0:5505.0001: hidraw0: BLUETOOTH HID v0.8b Device [syz0] on aa:aa:aa:aa:aa:aa
[  138.706655][ T8027] bridge0: port 1(macsec0) entered disabled state
[  138.940368][ T8027] veth1_macvtap: left allmulticast mode
[  139.062662][ T8027] tipc: Resetting bearer <eth:syzkaller0>
[  139.113987][ T6074] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.138368][ T6074] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.169039][ T6074] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.252116][ T6074] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.340650][ T8039] netlink: 'syz.1.576': attribute type 1 has an invalid length.
[  139.349528][ T8036] pim6reg1: entered promiscuous mode
[  139.356202][ T8036] pim6reg1: entered allmulticast mode
[  139.426595][ T8045] netlink: 60 bytes leftover after parsing attributes in process `syz.1.576'.
[  139.427045][ T8039] 8021q: adding VLAN 0 to HW filter on device bond2
[  139.443940][ T8043] FAULT_INJECTION: forcing a failure.
[  139.443940][ T8043] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  139.457426][ T8043] CPU: 1 UID: 0 PID: 8043 Comm: syz.0.577 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  139.457452][ T8043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  139.457462][ T8043] Call Trace:
[  139.457469][ T8043]  <TASK>
[  139.457477][ T8043]  dump_stack_lvl+0x189/0x250
[  139.457499][ T8043]  ? __pfx____ratelimit+0x10/0x10
[  139.457525][ T8043]  ? __pfx_dump_stack_lvl+0x10/0x10
[  139.457545][ T8043]  ? __pfx__printk+0x10/0x10
[  139.457568][ T8043]  ? __might_fault+0xb0/0x130
[  139.457603][ T8043]  should_fail_ex+0x414/0x560
[  139.457636][ T8043]  _copy_from_user+0x2d/0xb0
[  139.457659][ T8043]  ___sys_recvmsg+0x12e/0x510
[  139.457688][ T8043]  ? __pfx____sys_recvmsg+0x10/0x10
[  139.457752][ T8043]  ? __might_fault+0xb0/0x130
[  139.457778][ T8043]  do_recvmmsg+0x307/0x770
[  139.457810][ T8043]  ? __pfx_do_recvmmsg+0x10/0x10
[  139.457845][ T8043]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  139.457884][ T8043]  __x64_sys_recvmmsg+0x190/0x240
[  139.457909][ T8043]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  139.457929][ T8043]  ? rcu_is_watching+0x15/0xb0
[  139.457954][ T8043]  ? do_syscall_64+0xbe/0x3b0
[  139.457977][ T8043]  do_syscall_64+0xfa/0x3b0
[  139.457993][ T8043]  ? lockdep_hardirqs_on+0x9c/0x150
[  139.458009][ T8043]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.458027][ T8043]  ? clear_bhb_loop+0x60/0xb0
[  139.458050][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.458066][ T8043] RIP: 0033:0x7fd525b8e9a9
[  139.458082][ T8043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.458097][ T8043] RSP: 002b:00007fd52691b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  139.458117][ T8043] RAX: ffffffffffffffda RBX: 00007fd525db5fa0 RCX: 00007fd525b8e9a9
[  139.458131][ T8043] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  139.458143][ T8043] RBP: 00007fd52691b090 R08: 0000000000000000 R09: 0000000000000000
[  139.458155][ T8043] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  139.458166][ T8043] R13: 0000000000000000 R14: 00007fd525db5fa0 R15: 00007ffed48675b8
[  139.458198][ T8043]  </TASK>
[  139.698199][ T8040] vlan2: entered promiscuous mode
[  139.703366][ T8040] bond2: entered promiscuous mode
[  139.709306][ T8040] vlan2: entered allmulticast mode
[  139.752163][ T8040] bond2: entered allmulticast mode
[  139.969989][ T8052] netlink: 16 bytes leftover after parsing attributes in process `syz.1.579'.
[  140.146901][ T8054] netlink: 'syz.1.580': attribute type 10 has an invalid length.
[  140.170270][ T8054] netlink: 40 bytes leftover after parsing attributes in process `syz.1.580'.
[  140.193484][ T8054] batadv0: entered promiscuous mode
[  140.209941][ T8054] batadv0: entered allmulticast mode
[  140.230012][ T8054] bridge0: port 3(batadv0) entered blocking state
[  140.247248][ T8054] bridge0: port 3(batadv0) entered disabled state
[  140.262983][ T8054] bridge0: port 3(batadv0) entered blocking state
[  140.269572][ T8054] bridge0: port 3(batadv0) entered forwarding state
[  140.314794][ T8057] netlink: 30 bytes leftover after parsing attributes in process `syz.3.581'.
[  140.695637][   T12] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  140.706031][   T12] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  140.736394][ T8069] netlink: 16 bytes leftover after parsing attributes in process `syz.1.585'.
[  140.882930][ T8068] "syz.1.585" (8068) uses obsolete ecb(arc4) skcipher
[  141.113276][ T8079] "syz.1.588" (8079) uses obsolete ecb(arc4) skcipher
[  141.562770][ T8091] FAULT_INJECTION: forcing a failure.
[  141.562770][ T8091] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  141.597506][ T8091] CPU: 1 UID: 0 PID: 8091 Comm: syz.4.592 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  141.597533][ T8091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  141.597545][ T8091] Call Trace:
[  141.597553][ T8091]  <TASK>
[  141.597561][ T8091]  dump_stack_lvl+0x189/0x250
[  141.597586][ T8091]  ? __pfx____ratelimit+0x10/0x10
[  141.597611][ T8091]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.597631][ T8091]  ? __pfx__printk+0x10/0x10
[  141.597652][ T8091]  ? __might_fault+0xb0/0x130
[  141.597685][ T8091]  should_fail_ex+0x414/0x560
[  141.597717][ T8091]  _copy_from_user+0x2d/0xb0
[  141.597739][ T8091]  ___sys_sendmsg+0x158/0x2a0
[  141.597764][ T8091]  ? __pfx____sys_sendmsg+0x10/0x10
[  141.597823][ T8091]  ? __fget_files+0x2a/0x420
[  141.597846][ T8091]  ? __fget_files+0x3a0/0x420
[  141.597880][ T8091]  __x64_sys_sendmsg+0x19b/0x260
[  141.597903][ T8091]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  141.597940][ T8091]  ? __pfx_ksys_write+0x10/0x10
[  141.597959][ T8091]  ? rcu_is_watching+0x15/0xb0
[  141.597983][ T8091]  ? do_syscall_64+0xbe/0x3b0
[  141.598006][ T8091]  do_syscall_64+0xfa/0x3b0
[  141.598022][ T8091]  ? lockdep_hardirqs_on+0x9c/0x150
[  141.598039][ T8091]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.598057][ T8091]  ? clear_bhb_loop+0x60/0xb0
[  141.598078][ T8091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.598094][ T8091] RIP: 0033:0x7faa0918e9a9
[  141.598110][ T8091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.598125][ T8091] RSP: 002b:00007faa0a018038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  141.598144][ T8091] RAX: ffffffffffffffda RBX: 00007faa093b5fa0 RCX: 00007faa0918e9a9
[  141.598157][ T8091] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000004
[  141.598168][ T8091] RBP: 00007faa0a018090 R08: 0000000000000000 R09: 0000000000000000
[  141.598180][ T8091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.598190][ T8091] R13: 0000000000000000 R14: 00007faa093b5fa0 R15: 00007ffddfe34888
[  141.598221][ T8091]  </TASK>
[  142.125207][ T8098] FAULT_INJECTION: forcing a failure.
[  142.125207][ T8098] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  142.140266][ T8098] CPU: 1 UID: 0 PID: 8098 Comm: syz.1.595 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  142.140292][ T8098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  142.140303][ T8098] Call Trace:
[  142.140310][ T8098]  <TASK>
[  142.140318][ T8098]  dump_stack_lvl+0x189/0x250
[  142.140342][ T8098]  ? __pfx____ratelimit+0x10/0x10
[  142.140368][ T8098]  ? __pfx_dump_stack_lvl+0x10/0x10
[  142.140388][ T8098]  ? __pfx__printk+0x10/0x10
[  142.140410][ T8098]  ? __might_fault+0xb0/0x130
[  142.140443][ T8098]  should_fail_ex+0x414/0x560
[  142.140474][ T8098]  _copy_from_user+0x2d/0xb0
[  142.140496][ T8098]  ___sys_recvmsg+0x12e/0x510
[  142.140524][ T8098]  ? __pfx____sys_recvmsg+0x10/0x10
[  142.140577][ T8098]  ? __might_fault+0xb0/0x130
[  142.140602][ T8098]  do_recvmmsg+0x307/0x770
[  142.140632][ T8098]  ? __pfx_do_recvmmsg+0x10/0x10
[  142.140667][ T8098]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  142.140704][ T8098]  __x64_sys_recvmmsg+0x190/0x240
[  142.140728][ T8098]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  142.140747][ T8098]  ? rcu_is_watching+0x15/0xb0
[  142.140771][ T8098]  ? do_syscall_64+0xbe/0x3b0
[  142.140793][ T8098]  do_syscall_64+0xfa/0x3b0
[  142.140809][ T8098]  ? lockdep_hardirqs_on+0x9c/0x150
[  142.140833][ T8098]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.140851][ T8098]  ? clear_bhb_loop+0x60/0xb0
[  142.140872][ T8098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.140888][ T8098] RIP: 0033:0x7f3cbd58e9a9
[  142.140905][ T8098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.140920][ T8098] RSP: 002b:00007f3cbe37c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  142.140939][ T8098] RAX: ffffffffffffffda RBX: 00007f3cbd7b5fa0 RCX: 00007f3cbd58e9a9
[  142.140952][ T8098] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  142.140964][ T8098] RBP: 00007f3cbe37c090 R08: 0000000000000000 R09: 0000000000000000
[  142.140975][ T8098] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  142.140987][ T8098] R13: 0000000000000000 R14: 00007f3cbd7b5fa0 R15: 00007ffd57e0bd18
[  142.141017][ T8098]  </TASK>
[  142.658202][ T8106] netlink: 16 bytes leftover after parsing attributes in process `syz.1.596'.
[  142.803938][ T8112] pim6reg1: entered promiscuous mode
[  142.825541][ T8112] pim6reg1: entered allmulticast mode
[  142.849192][ T8114] "syz.4.600" (8114) uses obsolete ecb(arc4) skcipher
[  142.923883][ T8123] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  143.284115][ T8133] FAULT_INJECTION: forcing a failure.
[  143.284115][ T8133] name failslab, interval 1, probability 0, space 0, times 0
[  143.354470][ T8133] CPU: 0 UID: 0 PID: 8133 Comm: syz.1.604 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  143.354497][ T8133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  143.354508][ T8133] Call Trace:
[  143.354515][ T8133]  <TASK>
[  143.354524][ T8133]  dump_stack_lvl+0x189/0x250
[  143.354549][ T8133]  ? __pfx____ratelimit+0x10/0x10
[  143.354576][ T8133]  ? __pfx_dump_stack_lvl+0x10/0x10
[  143.354594][ T8133]  ? __pfx__printk+0x10/0x10
[  143.354621][ T8133]  ? __pfx___might_resched+0x10/0x10
[  143.354644][ T8133]  should_fail_ex+0x414/0x560
[  143.354675][ T8133]  should_failslab+0xa8/0x100
[  143.354707][ T8133]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  143.354730][ T8133]  ? __alloc_skb+0x112/0x2d0
[  143.354752][ T8133]  __alloc_skb+0x112/0x2d0
[  143.354775][ T8133]  netlink_sendmsg+0x5c6/0xb30
[  143.354803][ T8133]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.354825][ T8133]  ? aa_sock_msg_perm+0x94/0x160
[  143.354844][ T8133]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  143.354861][ T8133]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.354880][ T8133]  __sock_sendmsg+0x21c/0x270
[  143.354907][ T8133]  ____sys_sendmsg+0x505/0x830
[  143.354936][ T8133]  ? __pfx_____sys_sendmsg+0x10/0x10
[  143.354967][ T8133]  ? import_iovec+0x74/0xa0
[  143.354993][ T8133]  ___sys_sendmsg+0x21f/0x2a0
[  143.355016][ T8133]  ? __pfx____sys_sendmsg+0x10/0x10
[  143.355074][ T8133]  ? __fget_files+0x2a/0x420
[  143.355097][ T8133]  ? __fget_files+0x3a0/0x420
[  143.355131][ T8133]  __x64_sys_sendmsg+0x19b/0x260
[  143.355154][ T8133]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  143.355185][ T8133]  ? __pfx_ksys_write+0x10/0x10
[  143.355203][ T8133]  ? rcu_is_watching+0x15/0xb0
[  143.355227][ T8133]  ? do_syscall_64+0xbe/0x3b0
[  143.355250][ T8133]  do_syscall_64+0xfa/0x3b0
[  143.355266][ T8133]  ? lockdep_hardirqs_on+0x9c/0x150
[  143.355282][ T8133]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.355299][ T8133]  ? clear_bhb_loop+0x60/0xb0
[  143.355320][ T8133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.355336][ T8133] RIP: 0033:0x7f3cbd58e9a9
[  143.355353][ T8133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.355368][ T8133] RSP: 002b:00007f3cbe37c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  143.355387][ T8133] RAX: ffffffffffffffda RBX: 00007f3cbd7b5fa0 RCX: 00007f3cbd58e9a9
[  143.355400][ T8133] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000004
[  143.355411][ T8133] RBP: 00007f3cbe37c090 R08: 0000000000000000 R09: 0000000000000000
[  143.355423][ T8133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.355433][ T8133] R13: 0000000000000000 R14: 00007f3cbd7b5fa0 R15: 00007ffd57e0bd18
[  143.355462][ T8133]  </TASK>
[  143.683541][ T8137] "syz.1.606" (8137) uses obsolete ecb(arc4) skcipher
[  144.104028][ T8142] FAULT_INJECTION: forcing a failure.
[  144.104028][ T8142] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.136413][ T8142] CPU: 1 UID: 0 PID: 8142 Comm: syz.2.608 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  144.136440][ T8142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  144.136450][ T8142] Call Trace:
[  144.136457][ T8142]  <TASK>
[  144.136466][ T8142]  dump_stack_lvl+0x189/0x250
[  144.136491][ T8142]  ? __pfx____ratelimit+0x10/0x10
[  144.136516][ T8142]  ? __pfx_dump_stack_lvl+0x10/0x10
[  144.136536][ T8142]  ? __pfx__printk+0x10/0x10
[  144.136556][ T8142]  ? __might_fault+0xb0/0x130
[  144.136588][ T8142]  should_fail_ex+0x414/0x560
[  144.136618][ T8142]  _copy_from_user+0x2d/0xb0
[  144.136647][ T8142]  ___sys_recvmsg+0x12e/0x510
[  144.136675][ T8142]  ? __pfx____sys_recvmsg+0x10/0x10
[  144.136728][ T8142]  ? __might_fault+0xb0/0x130
[  144.136753][ T8142]  do_recvmmsg+0x307/0x770
[  144.136782][ T8142]  ? __pfx_do_recvmmsg+0x10/0x10
[  144.136816][ T8142]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  144.136852][ T8142]  __x64_sys_recvmmsg+0x190/0x240
[  144.136877][ T8142]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  144.136895][ T8142]  ? rcu_is_watching+0x15/0xb0
[  144.136919][ T8142]  ? do_syscall_64+0xbe/0x3b0
[  144.136941][ T8142]  do_syscall_64+0xfa/0x3b0
[  144.136957][ T8142]  ? lockdep_hardirqs_on+0x9c/0x150
[  144.136972][ T8142]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.136987][ T8142]  ? clear_bhb_loop+0x60/0xb0
[  144.137008][ T8142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.137024][ T8142] RIP: 0033:0x7f77d218e9a9
[  144.137040][ T8142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.137054][ T8142] RSP: 002b:00007f77d2f1b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  144.137074][ T8142] RAX: ffffffffffffffda RBX: 00007f77d23b5fa0 RCX: 00007f77d218e9a9
[  144.137086][ T8142] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  144.137098][ T8142] RBP: 00007f77d2f1b090 R08: 0000000000000000 R09: 0000000000000000
[  144.137109][ T8142] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  144.137120][ T8142] R13: 0000000000000000 R14: 00007f77d23b5fa0 R15: 00007ffef65065d8
[  144.137148][ T8142]  </TASK>
[  144.417391][ T8148] syzkaller0: entered promiscuous mode
[  144.422895][ T8148] syzkaller0: entered allmulticast mode
[  144.670242][ T8152] netlink: 16 bytes leftover after parsing attributes in process `syz.2.612'.
[  144.997483][ T8158] "syz.3.615" (8158) uses obsolete ecb(arc4) skcipher
[  145.176543][ T8159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.615'.
[  146.464231][ T8171] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.539252][ T8175] "syz.2.620" (8175) uses obsolete ecb(arc4) skcipher
[  146.569716][ T8171] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.630950][ T8171] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.692892][ T8171] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.710802][ T8179] netlink: 196 bytes leftover after parsing attributes in process `syz.2.621'.
[  146.721578][ T8179] tc_dump_action: action bad kind
[  146.807946][ T6074] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  146.862871][ T6074] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  146.892059][ T6074] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  146.906174][ T8181] pim6reg1: entered promiscuous mode
[  146.911483][ T8181] pim6reg1: entered allmulticast mode
[  146.933564][ T6074] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  147.157859][ T8186] FAULT_INJECTION: forcing a failure.
[  147.157859][ T8186] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  147.194612][ T8186] CPU: 1 UID: 0 PID: 8186 Comm: syz.4.623 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  147.194641][ T8186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  147.194653][ T8186] Call Trace:
[  147.194664][ T8186]  <TASK>
[  147.194672][ T8186]  dump_stack_lvl+0x189/0x250
[  147.194698][ T8186]  ? __pfx____ratelimit+0x10/0x10
[  147.194725][ T8186]  ? __pfx_dump_stack_lvl+0x10/0x10
[  147.194744][ T8186]  ? __pfx__printk+0x10/0x10
[  147.194766][ T8186]  ? __might_fault+0xb0/0x130
[  147.194800][ T8186]  should_fail_ex+0x414/0x560
[  147.194831][ T8186]  _copy_from_user+0x2d/0xb0
[  147.194853][ T8186]  ___sys_recvmsg+0x12e/0x510
[  147.194879][ T8186]  ? __pfx____sys_recvmsg+0x10/0x10
[  147.194932][ T8186]  ? __might_fault+0xb0/0x130
[  147.194956][ T8186]  do_recvmmsg+0x307/0x770
[  147.194985][ T8186]  ? __pfx_do_recvmmsg+0x10/0x10
[  147.195018][ T8186]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  147.195055][ T8186]  __x64_sys_recvmmsg+0x190/0x240
[  147.195078][ T8186]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  147.195097][ T8186]  ? rcu_is_watching+0x15/0xb0
[  147.195122][ T8186]  ? do_syscall_64+0xbe/0x3b0
[  147.195144][ T8186]  do_syscall_64+0xfa/0x3b0
[  147.195158][ T8186]  ? lockdep_hardirqs_on+0x9c/0x150
[  147.195174][ T8186]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.195191][ T8186]  ? clear_bhb_loop+0x60/0xb0
[  147.195211][ T8186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.195227][ T8186] RIP: 0033:0x7faa0918e9a9
[  147.195244][ T8186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.195258][ T8186] RSP: 002b:00007faa0a018038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  147.195278][ T8186] RAX: ffffffffffffffda RBX: 00007faa093b5fa0 RCX: 00007faa0918e9a9
[  147.195290][ T8186] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  147.195302][ T8186] RBP: 00007faa0a018090 R08: 0000000000000000 R09: 0000000000000000
[  147.195313][ T8186] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  147.195325][ T8186] R13: 0000000000000000 R14: 00007faa093b5fa0 R15: 00007ffddfe34888
[  147.195354][ T8186]  </TASK>
[  147.523994][ T8193] gtp0: entered promiscuous mode
[  147.594047][ T8195] netlink: 16 bytes leftover after parsing attributes in process `syz.4.627'.
[  147.801399][ T8202] "syz.0.630" (8202) uses obsolete ecb(arc4) skcipher
[  147.863469][ T8204] FAULT_INJECTION: forcing a failure.
[  147.863469][ T8204] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  147.891708][ T8204] CPU: 0 UID: 0 PID: 8204 Comm: syz.4.631 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  147.891733][ T8204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  147.891742][ T8204] Call Trace:
[  147.891750][ T8204]  <TASK>
[  147.891758][ T8204]  dump_stack_lvl+0x189/0x250
[  147.891783][ T8204]  ? __pfx____ratelimit+0x10/0x10
[  147.891807][ T8204]  ? __pfx_dump_stack_lvl+0x10/0x10
[  147.891824][ T8204]  ? __pfx__printk+0x10/0x10
[  147.891844][ T8204]  ? __might_fault+0xb0/0x130
[  147.891874][ T8204]  should_fail_ex+0x414/0x560
[  147.891904][ T8204]  _copy_from_iter+0x1db/0x16f0
[  147.891928][ T8204]  ? rcu_is_watching+0x15/0xb0
[  147.891946][ T8204]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  147.891966][ T8204]  ? __pfx__copy_from_iter+0x10/0x10
[  147.891984][ T8204]  ? __build_skb_around+0x257/0x3e0
[  147.892002][ T8204]  ? netlink_sendmsg+0x642/0xb30
[  147.892015][ T8204]  ? skb_put+0x11b/0x210
[  147.892035][ T8204]  netlink_sendmsg+0x6b2/0xb30
[  147.892061][ T8204]  ? __pfx_netlink_sendmsg+0x10/0x10
[  147.892082][ T8204]  ? aa_sock_msg_perm+0x94/0x160
[  147.892101][ T8204]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  147.892117][ T8204]  ? __pfx_netlink_sendmsg+0x10/0x10
[  147.892136][ T8204]  __sock_sendmsg+0x21c/0x270
[  147.892173][ T8204]  ____sys_sendmsg+0x505/0x830
[  147.892199][ T8204]  ? __pfx_____sys_sendmsg+0x10/0x10
[  147.892226][ T8204]  ? import_iovec+0x74/0xa0
[  147.892248][ T8204]  ___sys_sendmsg+0x21f/0x2a0
[  147.892266][ T8204]  ? __pfx____sys_sendmsg+0x10/0x10
[  147.892318][ T8204]  ? __fget_files+0x2a/0x420
[  147.892340][ T8204]  ? __fget_files+0x3a0/0x420
[  147.892366][ T8204]  __x64_sys_sendmsg+0x19b/0x260
[  147.892387][ T8204]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  147.892416][ T8204]  ? __pfx_ksys_write+0x10/0x10
[  147.892441][ T8204]  ? do_syscall_64+0xbe/0x3b0
[  147.892462][ T8204]  do_syscall_64+0xfa/0x3b0
[  147.892477][ T8204]  ? lockdep_hardirqs_on+0x9c/0x150
[  147.892488][ T8204]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.892501][ T8204]  ? clear_bhb_loop+0x60/0xb0
[  147.892522][ T8204]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.892537][ T8204] RIP: 0033:0x7faa0918e9a9
[  147.892552][ T8204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.892565][ T8204] RSP: 002b:00007faa0a018038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  147.892583][ T8204] RAX: ffffffffffffffda RBX: 00007faa093b5fa0 RCX: 00007faa0918e9a9
[  147.892597][ T8204] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000004
[  147.892608][ T8204] RBP: 00007faa0a018090 R08: 0000000000000000 R09: 0000000000000000
[  147.892618][ T8204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.892628][ T8204] R13: 0000000000000000 R14: 00007faa093b5fa0 R15: 00007ffddfe34888
[  147.892654][ T8204]  </TASK>
[  148.236154][ T8206] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.295007][ T8214] "syz.4.633" (8214) uses obsolete ecb(arc4) skcipher
[  148.303536][ T8214] netlink: 20 bytes leftover after parsing attributes in process `syz.4.633'.
[  148.372915][ T8220] netlink: 16 bytes leftover after parsing attributes in process `syz.4.633'.
[  148.766200][ T8228] FAULT_INJECTION: forcing a failure.
[  148.766200][ T8228] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  148.796604][ T8228] CPU: 1 UID: 0 PID: 8228 Comm: syz.0.637 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  148.796632][ T8228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  148.796643][ T8228] Call Trace:
[  148.796650][ T8228]  <TASK>
[  148.796658][ T8228]  dump_stack_lvl+0x189/0x250
[  148.796683][ T8228]  ? __pfx____ratelimit+0x10/0x10
[  148.796708][ T8228]  ? __pfx_dump_stack_lvl+0x10/0x10
[  148.796727][ T8228]  ? __pfx__printk+0x10/0x10
[  148.796750][ T8228]  ? __might_fault+0xb0/0x130
[  148.796783][ T8228]  should_fail_ex+0x414/0x560
[  148.796815][ T8228]  _copy_from_user+0x2d/0xb0
[  148.796838][ T8228]  ___sys_recvmsg+0x12e/0x510
[  148.796867][ T8228]  ? __pfx____sys_recvmsg+0x10/0x10
[  148.796923][ T8228]  ? __might_fault+0xb0/0x130
[  148.796947][ T8228]  do_recvmmsg+0x307/0x770
[  148.796979][ T8228]  ? __pfx_do_recvmmsg+0x10/0x10
[  148.797014][ T8228]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  148.797059][ T8228]  __x64_sys_recvmmsg+0x190/0x240
[  148.797083][ T8228]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  148.797102][ T8228]  ? rcu_is_watching+0x15/0xb0
[  148.797127][ T8228]  ? do_syscall_64+0xbe/0x3b0
[  148.797149][ T8228]  do_syscall_64+0xfa/0x3b0
[  148.797165][ T8228]  ? lockdep_hardirqs_on+0x9c/0x150
[  148.797182][ T8228]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.797198][ T8228]  ? clear_bhb_loop+0x60/0xb0
[  148.797220][ T8228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.797237][ T8228] RIP: 0033:0x7fd525b8e9a9
[  148.797253][ T8228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.797269][ T8228] RSP: 002b:00007fd52691b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  148.797289][ T8228] RAX: ffffffffffffffda RBX: 00007fd525db5fa0 RCX: 00007fd525b8e9a9
[  148.797302][ T8228] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  148.797314][ T8228] RBP: 00007fd52691b090 R08: 0000000000000000 R09: 0000000000000000
[  148.797325][ T8228] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  148.797337][ T8228] R13: 0000000000000000 R14: 00007fd525db5fa0 R15: 00007ffed48675b8
[  148.797368][ T8228]  </TASK>
[  149.036171][ T8232] netlink: 16 bytes leftover after parsing attributes in process `syz.2.639'.
[  149.045539][ T8232] netlink: 16 bytes leftover after parsing attributes in process `syz.2.639'.
[  149.054439][ T8232] netlink: 20 bytes leftover after parsing attributes in process `syz.2.639'.
[  149.141477][ T8236] gtp0: entered promiscuous mode
[  149.769287][ T8257] FAULT_INJECTION: forcing a failure.
[  149.769287][ T8257] name failslab, interval 1, probability 0, space 0, times 0
[  149.830182][ T8257] CPU: 0 UID: 0 PID: 8257 Comm: syz.3.644 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  149.830216][ T8257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  149.830228][ T8257] Call Trace:
[  149.830235][ T8257]  <TASK>
[  149.830243][ T8257]  dump_stack_lvl+0x189/0x250
[  149.830269][ T8257]  ? __pfx____ratelimit+0x10/0x10
[  149.830295][ T8257]  ? __pfx_dump_stack_lvl+0x10/0x10
[  149.830315][ T8257]  ? __pfx__printk+0x10/0x10
[  149.830341][ T8257]  ? __pfx___might_resched+0x10/0x10
[  149.830358][ T8257]  ? fs_reclaim_acquire+0x7d/0x100
[  149.830387][ T8257]  should_fail_ex+0x414/0x560
[  149.830420][ T8257]  should_failslab+0xa8/0x100
[  149.830444][ T8257]  __kmalloc_node_noprof+0xd1/0x4e0
[  149.830465][ T8257]  ? qdisc_alloc+0x97/0xaa0
[  149.830486][ T8257]  qdisc_alloc+0x97/0xaa0
[  149.830513][ T8257]  qdisc_create+0x12c/0xea0
[  149.830546][ T8257]  tc_modify_qdisc+0x1538/0x20e0
[  149.830586][ T8257]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  149.830642][ T8257]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  149.830663][ T8257]  rtnetlink_rcv_msg+0x779/0xb70
[  149.830681][ T8257]  ? __lock_acquire+0xab9/0xd20
[  149.830700][ T8257]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  149.830720][ T8257]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  149.830756][ T8257]  netlink_rcv_skb+0x205/0x470
[  149.830772][ T8257]  ? __lock_acquire+0xab9/0xd20
[  149.830789][ T8257]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  149.830810][ T8257]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  149.830840][ T8257]  ? netlink_deliver_tap+0x2e/0x1b0
[  149.830868][ T8257]  netlink_unicast+0x82c/0x9e0
[  149.830903][ T8257]  ? __pfx_netlink_unicast+0x10/0x10
[  149.830930][ T8257]  ? netlink_sendmsg+0x642/0xb30
[  149.830945][ T8257]  ? skb_put+0x11b/0x210
[  149.830968][ T8257]  netlink_sendmsg+0x805/0xb30
[  149.830997][ T8257]  ? __pfx_netlink_sendmsg+0x10/0x10
[  149.831019][ T8257]  ? aa_sock_msg_perm+0x94/0x160
[  149.831041][ T8257]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  149.831058][ T8257]  ? __pfx_netlink_sendmsg+0x10/0x10
[  149.831077][ T8257]  __sock_sendmsg+0x21c/0x270
[  149.831105][ T8257]  ____sys_sendmsg+0x505/0x830
[  149.831133][ T8257]  ? __pfx_____sys_sendmsg+0x10/0x10
[  149.831164][ T8257]  ? import_iovec+0x74/0xa0
[  149.831191][ T8257]  ___sys_sendmsg+0x21f/0x2a0
[  149.831221][ T8257]  ? __pfx____sys_sendmsg+0x10/0x10
[  149.831285][ T8257]  ? __fget_files+0x2a/0x420
[  149.831307][ T8257]  ? __fget_files+0x3a0/0x420
[  149.831342][ T8257]  __x64_sys_sendmsg+0x19b/0x260
[  149.831367][ T8257]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  149.831399][ T8257]  ? __pfx_ksys_write+0x10/0x10
[  149.831418][ T8257]  ? rcu_is_watching+0x15/0xb0
[  149.831442][ T8257]  ? do_syscall_64+0xbe/0x3b0
[  149.831466][ T8257]  do_syscall_64+0xfa/0x3b0
[  149.831482][ T8257]  ? lockdep_hardirqs_on+0x9c/0x150
[  149.831498][ T8257]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.831516][ T8257]  ? clear_bhb_loop+0x60/0xb0
[  149.831538][ T8257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.831555][ T8257] RIP: 0033:0x7f51f918e9a9
[  149.831571][ T8257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.831586][ T8257] RSP: 002b:00007f51fa082038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  149.831605][ T8257] RAX: ffffffffffffffda RBX: 00007f51f93b5fa0 RCX: 00007f51f918e9a9
[  149.831618][ T8257] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000004
[  149.831629][ T8257] RBP: 00007f51fa082090 R08: 0000000000000000 R09: 0000000000000000
[  149.831640][ T8257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.831651][ T8257] R13: 0000000000000000 R14: 00007f51f93b5fa0 R15: 00007ffeff55f5f8
[  149.831681][ T8257]  </TASK>
[  150.495743][ T8263] pim6reg1: entered promiscuous mode
[  150.544568][ T8263] pim6reg1: entered allmulticast mode
[  151.175217][ T8295] FAULT_INJECTION: forcing a failure.
[  151.175217][ T8295] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.209192][ T8295] CPU: 0 UID: 0 PID: 8295 Comm: syz.2.650 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  151.209221][ T8295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  151.209232][ T8295] Call Trace:
[  151.209239][ T8295]  <TASK>
[  151.209247][ T8295]  dump_stack_lvl+0x189/0x250
[  151.209273][ T8295]  ? __pfx____ratelimit+0x10/0x10
[  151.209300][ T8295]  ? __pfx_dump_stack_lvl+0x10/0x10
[  151.209319][ T8295]  ? __pfx__printk+0x10/0x10
[  151.209341][ T8295]  ? __might_fault+0xb0/0x130
[  151.209375][ T8295]  should_fail_ex+0x414/0x560
[  151.209407][ T8295]  _copy_from_user+0x2d/0xb0
[  151.209430][ T8295]  ___sys_recvmsg+0x12e/0x510
[  151.209457][ T8295]  ? __pfx____sys_recvmsg+0x10/0x10
[  151.209513][ T8295]  ? __might_fault+0xb0/0x130
[  151.209537][ T8295]  do_recvmmsg+0x307/0x770
[  151.209567][ T8295]  ? __pfx_do_recvmmsg+0x10/0x10
[  151.209600][ T8295]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  151.209638][ T8295]  __x64_sys_recvmmsg+0x190/0x240
[  151.209663][ T8295]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  151.209681][ T8295]  ? rcu_is_watching+0x15/0xb0
[  151.209706][ T8295]  ? do_syscall_64+0xbe/0x3b0
[  151.209728][ T8295]  do_syscall_64+0xfa/0x3b0
[  151.209743][ T8295]  ? lockdep_hardirqs_on+0x9c/0x150
[  151.209758][ T8295]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.209775][ T8295]  ? clear_bhb_loop+0x60/0xb0
[  151.209796][ T8295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.209812][ T8295] RIP: 0033:0x7f77d218e9a9
[  151.209827][ T8295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.209873][ T8295] RSP: 002b:00007f77d2f1b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  151.209892][ T8295] RAX: ffffffffffffffda RBX: 00007f77d23b5fa0 RCX: 00007f77d218e9a9
[  151.209906][ T8295] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  151.209917][ T8295] RBP: 00007f77d2f1b090 R08: 0000000000000000 R09: 0000000000000000
[  151.209929][ T8295] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  151.209941][ T8295] R13: 0000000000000000 R14: 00007f77d23b5fa0 R15: 00007ffef65065d8
[  151.209971][ T8295]  </TASK>
[  151.582677][ T8300] netlink: 16 bytes leftover after parsing attributes in process `syz.4.652'.
[  151.598351][ T8302] "syz.3.654" (8302) uses obsolete ecb(arc4) skcipher
[  151.612471][ T8300] netlink: 16 bytes leftover after parsing attributes in process `syz.4.652'.
[  151.649931][ T8300] netlink: 20 bytes leftover after parsing attributes in process `syz.4.652'.
[  151.847395][ T8310] FAULT_INJECTION: forcing a failure.
[  151.847395][ T8310] name failslab, interval 1, probability 0, space 0, times 0
[  151.874308][ T8310] CPU: 1 UID: 0 PID: 8310 Comm: syz.0.657 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  151.874333][ T8310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  151.874344][ T8310] Call Trace:
[  151.874351][ T8310]  <TASK>
[  151.874360][ T8310]  dump_stack_lvl+0x189/0x250
[  151.874384][ T8310]  ? __pfx____ratelimit+0x10/0x10
[  151.874412][ T8310]  ? __pfx_dump_stack_lvl+0x10/0x10
[  151.874431][ T8310]  ? __pfx__printk+0x10/0x10
[  151.874459][ T8310]  ? __pfx___might_resched+0x10/0x10
[  151.874477][ T8310]  ? fs_reclaim_acquire+0x7d/0x100
[  151.874508][ T8310]  should_fail_ex+0x414/0x560
[  151.874540][ T8310]  should_failslab+0xa8/0x100
[  151.874565][ T8310]  __kmalloc_noprof+0xcb/0x4f0
[  151.874586][ T8310]  ? taprio_init+0x2cf/0xbd0
[  151.874609][ T8310]  taprio_init+0x2cf/0xbd0
[  151.874642][ T8310]  ? __pfx_taprio_init+0x10/0x10
[  151.874663][ T8310]  ? lockdep_rtnl_is_held+0x26/0x40
[  151.874683][ T8310]  ? qdisc_lookup+0x36d/0x6d0
[  151.874705][ T8310]  ? __pfx_taprio_init+0x10/0x10
[  151.874722][ T8310]  qdisc_create+0x7ac/0xea0
[  151.874756][ T8310]  tc_modify_qdisc+0x1538/0x20e0
[  151.874798][ T8310]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  151.874855][ T8310]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  151.874875][ T8310]  rtnetlink_rcv_msg+0x779/0xb70
[  151.874891][ T8310]  ? __lock_acquire+0xab9/0xd20
[  151.874910][ T8310]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  151.874926][ T8310]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  151.874960][ T8310]  netlink_rcv_skb+0x205/0x470
[  151.874973][ T8310]  ? __lock_acquire+0xab9/0xd20
[  151.874989][ T8310]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  151.875007][ T8310]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  151.875032][ T8310]  ? netlink_deliver_tap+0x2e/0x1b0
[  151.875065][ T8310]  netlink_unicast+0x82c/0x9e0
[  151.875094][ T8310]  ? __pfx_netlink_unicast+0x10/0x10
[  151.875117][ T8310]  ? netlink_sendmsg+0x642/0xb30
[  151.875131][ T8310]  ? skb_put+0x11b/0x210
[  151.875150][ T8310]  netlink_sendmsg+0x805/0xb30
[  151.875176][ T8310]  ? __pfx_netlink_sendmsg+0x10/0x10
[  151.875198][ T8310]  ? aa_sock_msg_perm+0x94/0x160
[  151.875216][ T8310]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  151.875233][ T8310]  ? __pfx_netlink_sendmsg+0x10/0x10
[  151.875251][ T8310]  __sock_sendmsg+0x21c/0x270
[  151.875278][ T8310]  ____sys_sendmsg+0x505/0x830
[  151.875302][ T8310]  ? __pfx_____sys_sendmsg+0x10/0x10
[  151.875333][ T8310]  ? import_iovec+0x74/0xa0
[  151.875360][ T8310]  ___sys_sendmsg+0x21f/0x2a0
[  151.875384][ T8310]  ? __pfx____sys_sendmsg+0x10/0x10
[  151.875446][ T8310]  ? __fget_files+0x2a/0x420
[  151.875469][ T8310]  ? __fget_files+0x3a0/0x420
[  151.875503][ T8310]  __x64_sys_sendmsg+0x19b/0x260
[  151.875527][ T8310]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  151.875559][ T8310]  ? __pfx_ksys_write+0x10/0x10
[  151.875577][ T8310]  ? rcu_is_watching+0x15/0xb0
[  151.875603][ T8310]  ? do_syscall_64+0xbe/0x3b0
[  151.875625][ T8310]  do_syscall_64+0xfa/0x3b0
[  151.875641][ T8310]  ? lockdep_hardirqs_on+0x9c/0x150
[  151.875658][ T8310]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.875675][ T8310]  ? clear_bhb_loop+0x60/0xb0
[  151.875697][ T8310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.875712][ T8310] RIP: 0033:0x7fd525b8e9a9
[  151.875728][ T8310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.875743][ T8310] RSP: 002b:00007fd52691b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  151.875761][ T8310] RAX: ffffffffffffffda RBX: 00007fd525db5fa0 RCX: 00007fd525b8e9a9
[  151.875774][ T8310] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000004
[  151.875786][ T8310] RBP: 00007fd52691b090 R08: 0000000000000000 R09: 0000000000000000
[  151.875797][ T8310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.875807][ T8310] R13: 0000000000000000 R14: 00007fd525db5fa0 R15: 00007ffed48675b8
[  151.875838][ T8310]  </TASK>
[  152.391820][ T8312] gtp1: entered promiscuous mode
[  152.457723][ T8316] netlink: 116 bytes leftover after parsing attributes in process `syz.0.659'.
[  152.755826][ T8323] pim6reg1: entered promiscuous mode
[  152.761520][ T8323] pim6reg1: entered allmulticast mode
[  152.818500][ T8333] netlink: 20 bytes leftover after parsing attributes in process `syz.0.660'.
[  152.859583][ T8334] FAULT_INJECTION: forcing a failure.
[  152.859583][ T8334] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.893665][ T8334] CPU: 0 UID: 0 PID: 8334 Comm: syz.3.664 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  152.893707][ T8334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  152.893728][ T8334] Call Trace:
[  152.893743][ T8334]  <TASK>
[  152.893759][ T8334]  dump_stack_lvl+0x189/0x250
[  152.893793][ T8334]  ? __pfx____ratelimit+0x10/0x10
[  152.893817][ T8334]  ? __pfx_dump_stack_lvl+0x10/0x10
[  152.893836][ T8334]  ? __pfx__printk+0x10/0x10
[  152.893856][ T8334]  ? __might_fault+0xb0/0x130
[  152.893882][ T8334]  should_fail_ex+0x414/0x560
[  152.893907][ T8334]  _copy_from_user+0x2d/0xb0
[  152.893926][ T8334]  ___sys_recvmsg+0x12e/0x510
[  152.893947][ T8334]  ? __pfx____sys_recvmsg+0x10/0x10
[  152.893988][ T8334]  ? __might_fault+0xb0/0x130
[  152.894008][ T8334]  do_recvmmsg+0x307/0x770
[  152.894040][ T8334]  ? __pfx_do_recvmmsg+0x10/0x10
[  152.894066][ T8334]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  152.894094][ T8334]  __x64_sys_recvmmsg+0x190/0x240
[  152.894113][ T8334]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  152.894129][ T8334]  ? rcu_is_watching+0x15/0xb0
[  152.894148][ T8334]  ? do_syscall_64+0xbe/0x3b0
[  152.894164][ T8334]  do_syscall_64+0xfa/0x3b0
[  152.894177][ T8334]  ? lockdep_hardirqs_on+0x9c/0x150
[  152.894189][ T8334]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.894202][ T8334]  ? clear_bhb_loop+0x60/0xb0
[  152.894218][ T8334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.894231][ T8334] RIP: 0033:0x7f51f918e9a9
[  152.894244][ T8334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.894255][ T8334] RSP: 002b:00007f51fa061038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  152.894270][ T8334] RAX: ffffffffffffffda RBX: 00007f51f93b6080 RCX: 00007f51f918e9a9
[  152.894281][ T8334] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  152.894289][ T8334] RBP: 00007f51fa061090 R08: 0000000000000000 R09: 0000000000000000
[  152.894298][ T8334] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  152.894311][ T8334] R13: 0000000000000000 R14: 00007f51f93b6080 R15: 00007ffeff55f5f8
[  152.894338][ T8334]  </TASK>
[  153.173104][ T8337] "syz.4.665" (8337) uses obsolete ecb(arc4) skcipher
[  153.268496][ T8339] netlink: 8 bytes leftover after parsing attributes in process `syz.0.666'.
[  153.353816][ T8342] netlink: 16 bytes leftover after parsing attributes in process `syz.3.667'.
[  153.999837][ T8365] FAULT_INJECTION: forcing a failure.
[  153.999837][ T8365] name failslab, interval 1, probability 0, space 0, times 0
[  154.016111][ T8365] CPU: 0 UID: 0 PID: 8365 Comm: syz.0.674 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  154.016137][ T8365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  154.016147][ T8365] Call Trace:
[  154.016154][ T8365]  <TASK>
[  154.016163][ T8365]  dump_stack_lvl+0x189/0x250
[  154.016187][ T8365]  ? __pfx____ratelimit+0x10/0x10
[  154.016213][ T8365]  ? __pfx_dump_stack_lvl+0x10/0x10
[  154.016232][ T8365]  ? __pfx__printk+0x10/0x10
[  154.016259][ T8365]  ? __pfx___might_resched+0x10/0x10
[  154.016278][ T8365]  ? fs_reclaim_acquire+0x7d/0x100
[  154.016308][ T8365]  should_fail_ex+0x414/0x560
[  154.016339][ T8365]  should_failslab+0xa8/0x100
[  154.016364][ T8365]  __kmalloc_node_noprof+0xd1/0x4e0
[  154.016385][ T8365]  ? qdisc_alloc+0x97/0xaa0
[  154.016408][ T8365]  qdisc_alloc+0x97/0xaa0
[  154.016428][ T8365]  ? rcu_is_watching+0x15/0xb0
[  154.016451][ T8365]  qdisc_create_dflt+0x8e/0x4e0
[  154.016473][ T8365]  taprio_init+0x3e5/0xbd0
[  154.016505][ T8365]  ? __pfx_taprio_init+0x10/0x10
[  154.016526][ T8365]  ? lockdep_rtnl_is_held+0x26/0x40
[  154.016546][ T8365]  ? qdisc_lookup+0x36d/0x6d0
[  154.016566][ T8365]  ? __pfx_taprio_init+0x10/0x10
[  154.016583][ T8365]  qdisc_create+0x7ac/0xea0
[  154.016616][ T8365]  tc_modify_qdisc+0x1538/0x20e0
[  154.016657][ T8365]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  154.016720][ T8365]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  154.016741][ T8365]  rtnetlink_rcv_msg+0x779/0xb70
[  154.016758][ T8365]  ? __lock_acquire+0xab9/0xd20
[  154.016777][ T8365]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  154.016793][ T8365]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  154.016830][ T8365]  netlink_rcv_skb+0x205/0x470
[  154.016846][ T8365]  ? __lock_acquire+0xab9/0xd20
[  154.016862][ T8365]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  154.016882][ T8365]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  154.016913][ T8365]  ? netlink_deliver_tap+0x2e/0x1b0
[  154.016940][ T8365]  netlink_unicast+0x82c/0x9e0
[  154.016974][ T8365]  ? __pfx_netlink_unicast+0x10/0x10
[  154.016998][ T8365]  ? netlink_sendmsg+0x642/0xb30
[  154.017013][ T8365]  ? skb_put+0x11b/0x210
[  154.017035][ T8365]  netlink_sendmsg+0x805/0xb30
[  154.017060][ T8365]  ? __pfx_netlink_sendmsg+0x10/0x10
[  154.017078][ T8365]  ? aa_sock_msg_perm+0x94/0x160
[  154.017097][ T8365]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  154.017114][ T8365]  ? __pfx_netlink_sendmsg+0x10/0x10
[  154.017133][ T8365]  __sock_sendmsg+0x21c/0x270
[  154.017165][ T8365]  ____sys_sendmsg+0x505/0x830
[  154.017191][ T8365]  ? __pfx_____sys_sendmsg+0x10/0x10
[  154.017218][ T8365]  ? import_iovec+0x74/0xa0
[  154.017242][ T8365]  ___sys_sendmsg+0x21f/0x2a0
[  154.017264][ T8365]  ? __pfx____sys_sendmsg+0x10/0x10
[  154.017323][ T8365]  ? __fget_files+0x2a/0x420
[  154.017345][ T8365]  ? __fget_files+0x3a0/0x420
[  154.017380][ T8365]  __x64_sys_sendmsg+0x19b/0x260
[  154.017404][ T8365]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  154.017436][ T8365]  ? __pfx_ksys_write+0x10/0x10
[  154.017463][ T8365]  ? do_syscall_64+0xbe/0x3b0
[  154.017485][ T8365]  do_syscall_64+0xfa/0x3b0
[  154.017501][ T8365]  ? lockdep_hardirqs_on+0x9c/0x150
[  154.017518][ T8365]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.017534][ T8365]  ? clear_bhb_loop+0x60/0xb0
[  154.017554][ T8365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.017570][ T8365] RIP: 0033:0x7fd525b8e9a9
[  154.017586][ T8365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.017600][ T8365] RSP: 002b:00007fd52691b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  154.017619][ T8365] RAX: ffffffffffffffda RBX: 00007fd525db5fa0 RCX: 00007fd525b8e9a9
[  154.017632][ T8365] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000004
[  154.017644][ T8365] RBP: 00007fd52691b090 R08: 0000000000000000 R09: 0000000000000000
[  154.017656][ T8365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.017666][ T8365] R13: 0000000000000000 R14: 00007fd525db5fa0 R15: 00007ffed48675b8
[  154.017704][ T8365]  </TASK>
[  154.516565][ T8373] FAULT_INJECTION: forcing a failure.
[  154.516565][ T8373] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  154.529666][ T8373] CPU: 1 UID: 0 PID: 8373 Comm: syz.3.677 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  154.529691][ T8373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  154.529702][ T8373] Call Trace:
[  154.529709][ T8373]  <TASK>
[  154.529717][ T8373]  dump_stack_lvl+0x189/0x250
[  154.529740][ T8373]  ? __pfx____ratelimit+0x10/0x10
[  154.529766][ T8373]  ? __pfx_dump_stack_lvl+0x10/0x10
[  154.529786][ T8373]  ? __pfx__printk+0x10/0x10
[  154.529808][ T8373]  ? __might_fault+0xb0/0x130
[  154.529842][ T8373]  should_fail_ex+0x414/0x560
[  154.529879][ T8373]  _copy_from_user+0x2d/0xb0
[  154.529902][ T8373]  ___sys_recvmsg+0x12e/0x510
[  154.529929][ T8373]  ? __pfx____sys_recvmsg+0x10/0x10
[  154.529985][ T8373]  ? __might_fault+0xb0/0x130
[  154.530010][ T8373]  do_recvmmsg+0x307/0x770
[  154.530041][ T8373]  ? __pfx_do_recvmmsg+0x10/0x10
[  154.530075][ T8373]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  154.530113][ T8373]  __x64_sys_recvmmsg+0x190/0x240
[  154.530138][ T8373]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  154.530157][ T8373]  ? rcu_is_watching+0x15/0xb0
[  154.530182][ T8373]  ? do_syscall_64+0xbe/0x3b0
[  154.530204][ T8373]  do_syscall_64+0xfa/0x3b0
[  154.530220][ T8373]  ? lockdep_hardirqs_on+0x9c/0x150
[  154.530237][ T8373]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.530254][ T8373]  ? clear_bhb_loop+0x60/0xb0
[  154.530276][ T8373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.530293][ T8373] RIP: 0033:0x7f51f918e9a9
[  154.530309][ T8373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.530325][ T8373] RSP: 002b:00007f51fa082038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  154.530345][ T8373] RAX: ffffffffffffffda RBX: 00007f51f93b5fa0 RCX: 00007f51f918e9a9
[  154.530358][ T8373] RDX: 0000000000100000 RSI: 0000200000008600 RDI: 0000000000000004
[  154.530371][ T8373] RBP: 00007f51fa082090 R08: 0000000000000000 R09: 0000000000000000
[  154.530383][ T8373] R10: 0000000040012101 R11: 0000000000000246 R12: 0000000000000002
[  154.530394][ T8373] R13: 0000000000000000 R14: 00007f51f93b5fa0 R15: 00007ffeff55f5f8
[  154.530425][ T8373]  </TASK>
[  155.059897][ T8403] netlink: 16 bytes leftover after parsing attributes in process `syz.1.681'.
[  155.123401][ T8403] netlink: 16 bytes leftover after parsing attributes in process `syz.1.681'.
[  155.127739][ T8393] pim6reg1: entered promiscuous mode
[  155.162468][ T8403] netlink: 20 bytes leftover after parsing attributes in process `syz.1.681'.
[  155.186955][ T8393] pim6reg1: entered allmulticast mode
[  155.230891][ T8412] "syz.0.686" (8412) uses obsolete ecb(arc4) skcipher
[  155.326924][ T8416] FAULT_INJECTION: forcing a failure.
[  155.326924][ T8416] name failslab, interval 1, probability 0, space 0, times 0
[  155.427180][ T8416] CPU: 1 UID: 0 PID: 8416 Comm: syz.1.687 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  155.427207][ T8416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  155.427218][ T8416] Call Trace:
[  155.427225][ T8416]  <TASK>
[  155.427233][ T8416]  dump_stack_lvl+0x189/0x250
[  155.427258][ T8416]  ? __pfx____ratelimit+0x10/0x10
[  155.427283][ T8416]  ? __pfx_dump_stack_lvl+0x10/0x10
[  155.427302][ T8416]  ? __pfx__printk+0x10/0x10
[  155.427330][ T8416]  ? __pfx___might_resched+0x10/0x10
[  155.427348][ T8416]  ? fs_reclaim_acquire+0x7d/0x100
[  155.427378][ T8416]  should_fail_ex+0x414/0x560
[  155.427409][ T8416]  should_failslab+0xa8/0x100
[  155.427434][ T8416]  __kmalloc_node_noprof+0xd1/0x4e0
[  155.427455][ T8416]  ? qdisc_alloc+0x97/0xaa0
[  155.427478][ T8416]  qdisc_alloc+0x97/0xaa0
[  155.427492][ T8416]  ? taprio_init+0x2cf/0xbd0
[  155.427512][ T8416]  ? rcu_is_watching+0x15/0xb0
[  155.427535][ T8416]  qdisc_create_dflt+0x8e/0x4e0
[  155.427599][ T8416]  taprio_init+0x3e5/0xbd0
[  155.427630][ T8416]  ? __pfx_taprio_init+0x10/0x10
[  155.427651][ T8416]  ? lockdep_rtnl_is_held+0x26/0x40
[  155.427671][ T8416]  ? qdisc_lookup+0x36d/0x6d0
[  155.427692][ T8416]  ? __pfx_taprio_init+0x10/0x10
[  155.427709][ T8416]  qdisc_create+0x7ac/0xea0
[  155.427742][ T8416]  tc_modify_qdisc+0x1538/0x20e0
[  155.427784][ T8416]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  155.427840][ T8416]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  155.427862][ T8416]  rtnetlink_rcv_msg+0x779/0xb70
[  155.427884][ T8416]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  155.427901][ T8416]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  155.427916][ T8416]  ? ref_tracker_free+0x63a/0x7d0
[  155.427935][ T8416]  ? __asan_memcpy+0x40/0x70
[  155.427953][ T8416]  ? __pfx_ref_tracker_free+0x10/0x10
[  155.427968][ T8416]  ? __skb_clone+0x63/0x7a0
[  155.428004][ T8416]  netlink_rcv_skb+0x205/0x470
[  155.428023][ T8416]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  155.428043][ T8416]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  155.428074][ T8416]  ? netlink_deliver_tap+0x2e/0x1b0
[  155.428101][ T8416]  netlink_unicast+0x82c/0x9e0
[  155.428136][ T8416]  ? __pfx_netlink_unicast+0x10/0x10
[  155.428163][ T8416]  ? netlink_sendmsg+0x642/0xb30
[  155.428178][ T8416]  ? skb_put+0x11b/0x210
[  155.428201][ T8416]  netlink_sendmsg+0x805/0xb30
[  155.428230][ T8416]  ? __pfx_netlink_sendmsg+0x10/0x10
[  155.428252][ T8416]  ? aa_sock_msg_perm+0x94/0x160
[  155.428270][ T8416]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  155.428287][ T8416]  ? __pfx_netlink_sendmsg+0x10/0x10
[  155.428304][ T8416]  __sock_sendmsg+0x21c/0x270
[  155.428332][ T8416]  ____sys_sendmsg+0x505/0x830
[  155.428359][ T8416]  ? __pfx_____sys_sendmsg+0x10/0x10
[  155.428390][ T8416]  ? import_iovec+0x74/0xa0
[  155.428416][ T8416]  ___sys_sendmsg+0x21f/0x2a0
[  155.428439][ T8416]  ? __pfx____sys_sendmsg+0x10/0x10
[  155.428501][ T8416]  ? __fget_files+0x2a/0x420
[  155.428523][ T8416]  ? __fget_files+0x3a0/0x420
[  155.428566][ T8416]  __x64_sys_sendmsg+0x19b/0x260
[  155.428590][ T8416]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  155.428622][ T8416]  ? __pfx_ksys_write+0x10/0x10
[  155.428641][ T8416]  ? rcu_is_watching+0x15/0xb0
[  155.428665][ T8416]  ? do_syscall_64+0xbe/0x3b0
[  155.428689][ T8416]  do_syscall_64+0xfa/0x3b0
[  155.428704][ T8416]  ? lockdep_hardirqs_on+0x9c/0x150
[  155.428721][ T8416]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.428738][ T8416]  ? clear_bhb_loop+0x60/0xb0
[  155.428760][ T8416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.428776][ T8416] RIP: 0033:0x7f3cbd58e9a9
[  155.428792][ T8416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.428808][ T8416] RSP: 002b:00007f3cbe37c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  155.428827][ T8416] RAX: ffffffffffffffda RBX: 00007f3cbd7b5fa0 RCX: 00007f3cbd58e9a9
[  155.428840][ T8416] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000004
[  155.428852][ T8416] RBP: 00007f3cbe37c090 R08: 0000000000000000 R09: 0000000000000000
[  155.428863][ T8416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.428873][ T8416] R13: 0000000000000000 R14: 00007f3cbd7b5fa0 R15: 00007ffd57e0bd18
[  155.428905][ T8416]  </TASK>
[  156.223390][ T8423] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  156.285863][ T8423] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  156.299061][ T8423] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  156.366902][ T8423] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  156.394438][ T8423] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  156.416254][ T8423] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  156.503415][ T8423] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  156.523556][ T8423] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  156.553825][ T8423] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  156.633361][ T8423] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  156.643531][ T8423] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  156.668608][ T8423] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  156.786537][   T36] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  156.807450][   T36] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  156.829676][   T36] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  156.884060][ T6079] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  156.895571][ T6079] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  156.903887][ T6079] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  156.913932][ T6079] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  156.923825][ T6079] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  156.936440][ T6079] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  156.948879][ T8430] netlink: 'syz.2.692': attribute type 29 has an invalid length.
[  156.970889][ T6079] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  156.981171][ T6079] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  156.989498][ T6079] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  157.005635][ T8424] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  157.015919][ T8424] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  157.026840][ T8424] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  157.050140][ T6079] ==================================================================
[  157.058218][ T6079] BUG: KASAN: slab-use-after-free in __mutex_lock+0x144/0xe80
[  157.065677][ T6079] Read of size 8 at addr ffff888027206eb0 by task kworker/u8:13/6079
[  157.073744][ T6079] 
[  157.076073][ T6079] CPU: 1 UID: 0 PID: 6079 Comm: kworker/u8:13 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  157.076098][ T6079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  157.076109][ T6079] Workqueue: udp_tunnel_nic udp_tunnel_nic_device_sync_work
[  157.076139][ T6079] Call Trace:
[  157.076146][ T6079]  <TASK>
[  157.076154][ T6079]  dump_stack_lvl+0x189/0x250
[  157.076173][ T6079]  ? __kasan_check_byte+0x12/0x40
[  157.076196][ T6079]  ? __pfx_dump_stack_lvl+0x10/0x10
[  157.076213][ T6079]  ? lock_release+0x4b/0x3e0
[  157.076233][ T6079]  ? __virt_addr_valid+0x4a5/0x5c0
[  157.076254][ T6079]  print_report+0xca/0x230
[  157.076277][ T6079]  ? __mutex_lock+0x144/0xe80
[  157.076293][ T6079]  kasan_report+0x118/0x150
[  157.076312][ T6079]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  157.076337][ T6079]  ? __mutex_lock+0x144/0xe80
[  157.076357][ T6079]  __mutex_lock+0x144/0xe80
[  157.076373][ T6079]  ? __lock_acquire+0xab9/0xd20
[  157.076388][ T6079]  ? __mutex_lock+0x51b/0xe80
[  157.076407][ T6079]  ? udp_tunnel_nic_device_sync_work+0x39/0xa50
[  157.076433][ T6079]  ? __pfx___mutex_lock+0x10/0x10
[  157.076452][ T6079]  ? __lock_acquire+0xab9/0xd20
[  157.076472][ T6079]  udp_tunnel_nic_device_sync_work+0x39/0xa50
[  157.076501][ T6079]  ? process_scheduled_works+0x9ef/0x17b0
[  157.076518][ T6079]  ? process_scheduled_works+0x9ef/0x17b0
[  157.076537][ T6079]  process_scheduled_works+0xae1/0x17b0
[  157.076569][ T6079]  ? __pfx_process_scheduled_works+0x10/0x10
[  157.076595][ T6079]  worker_thread+0x8a0/0xda0
[  157.076625][ T6079]  kthread+0x70e/0x8a0
[  157.076647][ T6079]  ? __pfx_worker_thread+0x10/0x10
[  157.076664][ T6079]  ? __pfx_kthread+0x10/0x10
[  157.076684][ T6079]  ? _raw_spin_unlock_irq+0x23/0x50
[  157.076712][ T6079]  ? lockdep_hardirqs_on+0x9c/0x150
[  157.076727][ T6079]  ? __pfx_kthread+0x10/0x10
[  157.076747][ T6079]  ret_from_fork+0x3fc/0x770
[  157.076765][ T6079]  ? __pfx_ret_from_fork+0x10/0x10
[  157.076784][ T6079]  ? __switch_to_asm+0x39/0x70
[  157.076803][ T6079]  ? __switch_to_asm+0x33/0x70
[  157.076822][ T6079]  ? __pfx_kthread+0x10/0x10
[  157.076843][ T6079]  ret_from_fork_asm+0x1a/0x30
[  157.076871][ T6079]  </TASK>
[  157.076878][ T6079] 
[  157.286788][ T6079] Allocated by task 8423:
[  157.291095][ T6079]  kasan_save_track+0x3e/0x80
[  157.295757][ T6079]  __kasan_kmalloc+0x93/0xb0
[  157.300334][ T6079]  __kmalloc_noprof+0x27a/0x4f0
[  157.305164][ T6079]  udp_tunnel_nic_netdevice_event+0x854/0x19f0
[  157.311306][ T6079]  notifier_call_chain+0x1b3/0x3e0
[  157.316397][ T6079]  register_netdevice+0x1608/0x1ae0
[  157.321580][ T6079]  nsim_create+0xae8/0xf10
[  157.325981][ T6079]  __nsim_dev_port_add+0x6b6/0xb10
[  157.331084][ T6079]  nsim_dev_port_add_all+0x37/0xf0
[  157.336173][ T6079]  nsim_dev_reload_up+0x451/0x780
[  157.341178][ T6079]  devlink_reload+0x4e9/0x8d0
[  157.345842][ T6079]  devlink_nl_reload_doit+0xb35/0xd50
[  157.351206][ T6079]  genl_family_rcv_msg_doit+0x215/0x300
[  157.356746][ T6079]  genl_rcv_msg+0x60e/0x790
[  157.361236][ T6079]  netlink_rcv_skb+0x205/0x470
[  157.365981][ T6079]  genl_rcv+0x28/0x40
[  157.369950][ T6079]  netlink_unicast+0x82c/0x9e0
[  157.374708][ T6079]  netlink_sendmsg+0x805/0xb30
[  157.379466][ T6079]  __sock_sendmsg+0x21c/0x270
[  157.384129][ T6079]  ____sys_sendmsg+0x505/0x830
[  157.388877][ T6079]  ___sys_sendmsg+0x21f/0x2a0
[  157.393543][ T6079]  __x64_sys_sendmsg+0x19b/0x260
[  157.398463][ T6079]  do_syscall_64+0xfa/0x3b0
[  157.402948][ T6079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.408828][ T6079] 
[  157.411134][ T6079] Freed by task 8424:
[  157.415090][ T6079]  kasan_save_track+0x3e/0x80
[  157.419750][ T6079]  kasan_save_free_info+0x46/0x50
[  157.424755][ T6079]  __kasan_slab_free+0x62/0x70
[  157.429508][ T6079]  kfree+0x18e/0x440
[  157.433388][ T6079]  udp_tunnel_nic_netdevice_event+0x1332/0x19f0
[  157.439615][ T6079]  notifier_call_chain+0x1b3/0x3e0
[  157.444733][ T6079]  unregister_netdevice_many_notify+0x14d7/0x1ff0
[  157.451143][ T6079]  unregister_netdevice_queue+0x33c/0x380
[  157.456849][ T6079]  nsim_destroy+0x1dd/0x670
[  157.461338][ T6079]  __nsim_dev_port_del+0x14d/0x1b0
[  157.466428][ T6079]  nsim_dev_reload_destroy+0x288/0x490
[  157.471866][ T6079]  nsim_dev_reload_down+0x8a/0xc0
[  157.476870][ T6079]  devlink_reload+0x1b6/0x8d0
[  157.481533][ T6079]  devlink_nl_reload_doit+0xb35/0xd50
[  157.486886][ T6079]  genl_family_rcv_msg_doit+0x215/0x300
[  157.492416][ T6079]  genl_rcv_msg+0x60e/0x790
[  157.496898][ T6079]  netlink_rcv_skb+0x205/0x470
[  157.501648][ T6079]  genl_rcv+0x28/0x40
[  157.505610][ T6079]  netlink_unicast+0x82c/0x9e0
[  157.510362][ T6079]  netlink_sendmsg+0x805/0xb30
[  157.515102][ T6079]  __sock_sendmsg+0x21c/0x270
[  157.519764][ T6079]  ____sys_sendmsg+0x505/0x830
[  157.524507][ T6079]  ___sys_sendmsg+0x21f/0x2a0
[  157.529162][ T6079]  __x64_sys_sendmsg+0x19b/0x260
[  157.534077][ T6079]  do_syscall_64+0xfa/0x3b0
[  157.538557][ T6079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.544433][ T6079] 
[  157.546744][ T6079] Last potentially related work creation:
[  157.552438][ T6079]  kasan_save_stack+0x3e/0x60
[  157.557096][ T6079]  kasan_record_aux_stack+0xbd/0xd0
[  157.562270][ T6079]  insert_work+0x3d/0x330
[  157.566578][ T6079]  __queue_work+0xbd9/0xfe0
[  157.571070][ T6079]  queue_work_on+0x181/0x270
[  157.575641][ T6079]  __udp_tunnel_nic_add_port+0xb71/0xd60
[  157.581258][ T6079]  udp_tunnel_push_rx_port+0x180/0x200
[  157.586699][ T6079]  geneve_offload_rx_ports+0xd7/0x160
[  157.592048][ T6079]  geneve_netdevice_event+0x6a/0x80
[  157.597224][ T6079]  notifier_call_chain+0x1b3/0x3e0
[  157.602354][ T6079]  call_netdevice_notifiers+0x88/0xc0
[  157.607714][ T6079]  udp_tunnel_nic_netdevice_event+0x134d/0x19f0
[  157.613940][ T6079]  notifier_call_chain+0x1b3/0x3e0
[  157.619032][ T6079]  register_netdevice+0x1608/0x1ae0
[  157.624210][ T6079]  nsim_create+0xae8/0xf10
[  157.628611][ T6079]  __nsim_dev_port_add+0x6b6/0xb10
[  157.633708][ T6079]  nsim_dev_port_add_all+0x37/0xf0
[  157.638798][ T6079]  nsim_dev_reload_up+0x451/0x780
[  157.643802][ T6079]  devlink_reload+0x4e9/0x8d0
[  157.648465][ T6079]  devlink_nl_reload_doit+0xb35/0xd50
[  157.653824][ T6079]  genl_family_rcv_msg_doit+0x215/0x300
[  157.659350][ T6079]  genl_rcv_msg+0x60e/0x790
[  157.663839][ T6079]  netlink_rcv_skb+0x205/0x470
[  157.668580][ T6079]  genl_rcv+0x28/0x40
[  157.672543][ T6079]  netlink_unicast+0x82c/0x9e0
[  157.677291][ T6079]  netlink_sendmsg+0x805/0xb30
[  157.682033][ T6079]  __sock_sendmsg+0x21c/0x270
[  157.686695][ T6079]  ____sys_sendmsg+0x505/0x830
[  157.691439][ T6079]  ___sys_sendmsg+0x21f/0x2a0
[  157.696096][ T6079]  __x64_sys_sendmsg+0x19b/0x260
[  157.701022][ T6079]  do_syscall_64+0xfa/0x3b0
[  157.705503][ T6079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.711373][ T6079] 
[  157.713677][ T6079] Second to last potentially related work creation:
[  157.720237][ T6079]  kasan_save_stack+0x3e/0x60
[  157.724896][ T6079]  kasan_record_aux_stack+0xbd/0xd0
[  157.730072][ T6079]  insert_work+0x3d/0x330
[  157.734381][ T6079]  __queue_work+0xcfc/0xfe0
[  157.738871][ T6079]  queue_work_on+0x181/0x270
[  157.743440][ T6079]  __udp_tunnel_nic_add_port+0xb71/0xd60
[  157.749057][ T6079]  udp_tunnel_push_rx_port+0x180/0x200
[  157.754506][ T6079]  vxlan_offload_rx_ports+0x139/0x200
[  157.759868][ T6079]  vxlan_netdevice_event+0x111/0x470
[  157.765132][ T6079]  notifier_call_chain+0x1b3/0x3e0
[  157.770224][ T6079]  call_netdevice_notifiers+0x88/0xc0
[  157.775580][ T6079]  udp_tunnel_nic_netdevice_event+0x134d/0x19f0
[  157.781808][ T6079]  notifier_call_chain+0x1b3/0x3e0
[  157.786901][ T6079]  register_netdevice+0x1608/0x1ae0
[  157.792082][ T6079]  nsim_create+0xae8/0xf10
[  157.796481][ T6079]  __nsim_dev_port_add+0x6b6/0xb10
[  157.801574][ T6079]  nsim_dev_port_add_all+0x37/0xf0
[  157.806664][ T6079]  nsim_dev_reload_up+0x451/0x780
[  157.811667][ T6079]  devlink_reload+0x4e9/0x8d0
[  157.816325][ T6079]  devlink_nl_reload_doit+0xb35/0xd50
[  157.821682][ T6079]  genl_family_rcv_msg_doit+0x215/0x300
[  157.827214][ T6079]  genl_rcv_msg+0x60e/0x790
[  157.831699][ T6079]  netlink_rcv_skb+0x205/0x470
[  157.836440][ T6079]  genl_rcv+0x28/0x40
[  157.840404][ T6079]  netlink_unicast+0x82c/0x9e0
[  157.845149][ T6079]  netlink_sendmsg+0x805/0xb30
[  157.849893][ T6079]  __sock_sendmsg+0x21c/0x270
[  157.854557][ T6079]  ____sys_sendmsg+0x505/0x830
[  157.859311][ T6079]  ___sys_sendmsg+0x21f/0x2a0
[  157.863967][ T6079]  __x64_sys_sendmsg+0x19b/0x260
[  157.868885][ T6079]  do_syscall_64+0xfa/0x3b0
[  157.873368][ T6079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.879241][ T6079] 
[  157.881545][ T6079] The buggy address belongs to the object at ffff888027206e00
[  157.881545][ T6079]  which belongs to the cache kmalloc-256 of size 256
[  157.895575][ T6079] The buggy address is located 176 bytes inside of
[  157.895575][ T6079]  freed 256-byte region [ffff888027206e00, ffff888027206f00)
[  157.909364][ T6079] 
[  157.911671][ T6079] The buggy address belongs to the physical page:
[  157.918066][ T6079] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x27206
[  157.926808][ T6079] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  157.935285][ T6079] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  157.943250][ T6079] page_type: f5(slab)
[  157.947213][ T6079] raw: 00fff00000000040 ffff88801a441b40 0000000000000000 0000000000000001
[  157.955782][ T6079] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[  157.964352][ T6079] head: 00fff00000000040 ffff88801a441b40 0000000000000000 0000000000000001
[  157.973013][ T6079] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[  157.981667][ T6079] head: 00fff00000000001 ffffea00009c8181 00000000ffffffff 00000000ffffffff
[  157.990317][ T6079] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  157.998960][ T6079] page dumped because: kasan: bad access detected
[  158.005357][ T6079] page_owner tracks the page as allocated
[  158.011054][ T6079] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7447, tgid 7446 (syz.0.403), ts 120253798999, free_ts 95007118208
[  158.032217][ T6079]  post_alloc_hook+0x240/0x2a0
[  158.036972][ T6079]  get_page_from_freelist+0x21e4/0x22c0
[  158.042502][ T6079]  __alloc_frozen_pages_noprof+0x181/0x370
[  158.048294][ T6079]  alloc_pages_mpol+0x232/0x4a0
[  158.053134][ T6079]  allocate_slab+0x8a/0x3b0
[  158.057619][ T6079]  ___slab_alloc+0xbfc/0x1480
[  158.062280][ T6079]  __kmalloc_noprof+0x305/0x4f0
[  158.067114][ T6079]  iter_file_splice_write+0x1cb/0x1000
[  158.072555][ T6079]  direct_splice_actor+0x101/0x160
[  158.077652][ T6079]  splice_direct_to_actor+0x5a5/0xcc0
[  158.083004][ T6079]  do_splice_direct+0x181/0x270
[  158.087835][ T6079]  do_sendfile+0x4da/0x7e0
[  158.092238][ T6079]  __se_sys_sendfile64+0x13e/0x190
[  158.097330][ T6079]  do_syscall_64+0xfa/0x3b0
[  158.101816][ T6079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.107687][ T6079] page last free pid 5898 tgid 5898 stack trace:
[  158.113989][ T6079]  __free_frozen_pages+0xc71/0xe70
[  158.119085][ T6079]  __slab_free+0x326/0x400
[  158.123481][ T6079]  qlist_free_all+0x97/0x140
[  158.128051][ T6079]  kasan_quarantine_reduce+0x148/0x160
[  158.133496][ T6079]  __kasan_slab_alloc+0x22/0x80
[  158.138328][ T6079]  __kmalloc_cache_noprof+0x1be/0x3d0
[  158.143682][ T6079]  nsim_fib_event_work+0x1174/0x3180
[  158.148952][ T6079]  process_scheduled_works+0xae1/0x17b0
[  158.154479][ T6079]  worker_thread+0x8a0/0xda0
[  158.159058][ T6079]  kthread+0x70e/0x8a0
[  158.163119][ T6079]  ret_from_fork+0x3fc/0x770
[  158.167689][ T6079]  ret_from_fork_asm+0x1a/0x30
[  158.172444][ T6079] 
[  158.174753][ T6079] Memory state around the buggy address:
[  158.180426][ T6079]  ffff888027206d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  158.188477][ T6079]  ffff888027206e00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  158.196523][ T6079] >ffff888027206e80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  158.204568][ T6079]                                      ^
[  158.210185][ T6079]  ffff888027206f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  158.218228][ T6079]  ffff888027206f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  158.226355][ T6079] ==================================================================
[  158.290784][ T6079] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  158.298017][ T6079] CPU: 0 UID: 0 PID: 6079 Comm: kworker/u8:13 Not tainted 6.16.0-rc7-syzkaller-01993-ge3f96b3556e4 #0 PREEMPT(full) 
[  158.310251][ T6079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  158.320305][ T6079] Workqueue: udp_tunnel_nic udp_tunnel_nic_device_sync_work
[  158.327607][ T6079] Call Trace:
[  158.330882][ T6079]  <TASK>
[  158.333809][ T6079]  dump_stack_lvl+0x99/0x250
[  158.338401][ T6079]  ? __asan_memcpy+0x40/0x70
[  158.342990][ T6079]  ? __pfx_dump_stack_lvl+0x10/0x10
[  158.348193][ T6079]  ? __pfx__printk+0x10/0x10
[  158.352799][ T6079]  panic+0x2db/0x790
[  158.356700][ T6079]  ? __pfx_panic+0x10/0x10
[  158.361119][ T6079]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  158.367005][ T6079]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  158.373322][ T6079]  ? print_memory_metadata+0x314/0x400
[  158.378774][ T6079]  ? __mutex_lock+0x144/0xe80
[  158.383431][ T6079]  check_panic_on_warn+0x89/0xb0
[  158.388358][ T6079]  ? __mutex_lock+0x144/0xe80
[  158.393015][ T6079]  end_report+0x78/0x160
[  158.397243][ T6079]  kasan_report+0x129/0x150
[  158.401730][ T6079]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  158.407615][ T6079]  ? __mutex_lock+0x144/0xe80
[  158.412274][ T6079]  __mutex_lock+0x144/0xe80
[  158.416757][ T6079]  ? __lock_acquire+0xab9/0xd20
[  158.421586][ T6079]  ? __mutex_lock+0x51b/0xe80
[  158.426248][ T6079]  ? udp_tunnel_nic_device_sync_work+0x39/0xa50
[  158.432480][ T6079]  ? __pfx___mutex_lock+0x10/0x10
[  158.437503][ T6079]  ? __lock_acquire+0xab9/0xd20
[  158.442338][ T6079]  udp_tunnel_nic_device_sync_work+0x39/0xa50
[  158.448401][ T6079]  ? process_scheduled_works+0x9ef/0x17b0
[  158.454102][ T6079]  ? process_scheduled_works+0x9ef/0x17b0
[  158.459804][ T6079]  process_scheduled_works+0xae1/0x17b0
[  158.465345][ T6079]  ? __pfx_process_scheduled_works+0x10/0x10
[  158.471319][ T6079]  worker_thread+0x8a0/0xda0
[  158.475904][ T6079]  kthread+0x70e/0x8a0
[  158.479960][ T6079]  ? __pfx_worker_thread+0x10/0x10
[  158.485049][ T6079]  ? __pfx_kthread+0x10/0x10
[  158.489623][ T6079]  ? _raw_spin_unlock_irq+0x23/0x50
[  158.494810][ T6079]  ? lockdep_hardirqs_on+0x9c/0x150
[  158.499988][ T6079]  ? __pfx_kthread+0x10/0x10
[  158.504569][ T6079]  ret_from_fork+0x3fc/0x770
[  158.509144][ T6079]  ? __pfx_ret_from_fork+0x10/0x10
[  158.514237][ T6079]  ? __switch_to_asm+0x39/0x70
[  158.518986][ T6079]  ? __switch_to_asm+0x33/0x70
[  158.523732][ T6079]  ? __pfx_kthread+0x10/0x10
[  158.528307][ T6079]  ret_from_fork_asm+0x1a/0x30
[  158.533063][ T6079]  </TASK>
[  158.536285][ T6079] Kernel Offset: disabled
[  158.540588][ T6079] Rebooting in 86400 seconds..