last executing test programs:

52.261834721s ago: executing program 3 (id=2258):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000200)="67d8902400aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c14498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)}], 0x2}, 0x0)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000680)=0x1, 0x4)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[], 0x30}}, 0x40)
recvmmsg$unix(r0, &(0x7f00000034c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000033c0), 0x240}}], 0x2, 0x40000100, 0x0)

51.957622026s ago: executing program 3 (id=2265):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000002100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r2, 0x0, 0x1, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r7}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close(r5)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000040000000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000a80000000000f0ffff000000080000f0ffffff00"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000004c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r10}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001080)={{r9}, &(0x7f0000001000), &(0x7f0000001040)=r10}, 0x20)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0xf, &(0x7f0000001380)=ANY=[@ANYBLOB="1800000003000000000000000100000018110000", @ANYRES32=r9, @ANYBLOB="000000bc9abba6e5bef607b67a0000000000b7020000140000bf00000000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000001000000b7000000000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(r4)
r11 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000005e00679a3601ffc4910700004f78d4c1a0731cccff"], 0x1c}, 0x1, 0x0, 0xffc3}, 0x0)
recvmmsg$unix(r11, &(0x7f0000002380)=[{{0x0, 0x4000000, &(0x7f0000001340)=[{&(0x7f00000002c0)=""/4096, 0xecc}], 0x1}}], 0x8, 0x0, 0x0)
syz_emit_ethernet(0xb2, &(0x7f0000000580)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x42}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xa4, 0x1, 0x0, 0xfc, 0x11, 0x0, @dev={0xac, 0x14, 0x14, 0x16}, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x0, 0x1b59, 0x90, 0x0, @wg=@data={0x4, 0x1, 0x9, "bbb63e1f7908e0af9d05847801076a08b0aba2548f6dad175a9cc4e8b579c8df10a36f6dbb80d00c350edb10b9c903415097345d8498417e7e001d90972bee4e54f9dd3fb34cccd50e1ee017fdfbcf3bfa7bb895849d3885c21ff0ce14f5bad1f592faf579e71d689bacdb2540cbdc6ff70e90cc1ba51dfc"}}}}}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

50.505624273s ago: executing program 3 (id=2274):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r1, @ANYBLOB="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"], 0x1c8}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
unshare(0x24020400)
r2 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r2, 0x10e, 0xc, &(0x7f0000000200)=0x5, 0x4)
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001680)=ANY=[@ANYBLOB="96c70ebf3a000700000000000000a569ff770000"], 0x14}}, 0x4046000)
socket$inet(0x2, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000dc0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x4, 0x5}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r3, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100))
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="200000001a140100000000000000000008000300000000000800", @ANYRES64=r4], 0x20}, 0x1, 0x0, 0x0, 0x4000015}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={0x48, 0x2, 0x6, 0x3, 0x0, 0x0, {0x5}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}]}, 0x48}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0xfffffffe}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000050)
r8 = socket(0x10, 0x3, 0x0)
write(r8, &(0x7f00000000c0)="240000005a001f001007f4f9002304000a04f51108000400020100020800038005000000", 0x24)

46.802392252s ago: executing program 3 (id=2309):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
listen(r1, 0x9)
unshare(0x22020600)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000640)=ANY=[@ANYRES32=<r4=>r2, @ANYRES32=r3, @ANYBLOB="02"], 0x10)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r5, 0x84, 0x16, &(0x7f0000000080)=ANY=[@ANYBLOB="02000000030011"], 0x8)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000001c0)=ANY=[@ANYRES32=r4, @ANYBLOB="6213ad19bec573034ce7604966bab78e13f358ba6fafb1e747ad239536f9470f1026f2298051667881489feb8436d7e4971244e6af77a724b664a38da4d7d699379f4aa6c2fdcab3c37990d98a47f5cca5bfc6b6565566315b", @ANYBLOB='\f\x00'], 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@sndinfo={0x20, 0x84, 0x2, {0x9, 0x8000, 0x4, 0x1}}], 0x20, 0x20c0}, 0xf052e7f8759332c5)

46.704764775s ago: executing program 3 (id=2310):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r0, &(0x7f0000000200), 0x806000)
ioctl$FS_IOC_RESVSP(r0, 0x40305829, &(0x7f0000000380)={0x0, 0x0, 0x1000, 0x9ffffc})
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_GET(r2, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x44, 0x1, 0x9, 0x401, 0x0, 0x0, {0x1}, [@NFCTH_TUPLE={0x10, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x20}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_TUPLE={0xc, 0x2, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000040)=0x20)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-sse2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=@ipv6_newnexthop={0x6c, 0x68, 0x800, 0x70bd25, 0x25dfdbfe, {0xa, 0x0, 0x2, 0x0, 0x23}, [@NHA_GATEWAY={0x14, 0x6, @ip4=@loopback}, @NHA_GATEWAY={0x14, 0x6, @in6_addr=@empty}, @NHA_OIF={0x8}, @NHA_ENCAP={0xc, 0x8, 0x0, 0x1, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x1}}, @NHA_GATEWAY={0x14, 0x6, @in6_addr=@private1}, @NHA_GROUP={0x4}]}, 0x6c}}, 0x4)
recvmsg$unix(r5, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f00000002c0)=""/104, 0x68}], 0x1}, 0x0)
recvfrom$phonet(r5, &(0x7f0000000440)=""/86, 0x56, 0x2002, 0x0, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETVNETBE(r6, 0x400454de, &(0x7f0000000100))
write$bt_hci(r3, &(0x7f0000000040)=ANY=[], 0x6)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x54, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003, 0x10000}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x20, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x7, @mcast1}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e20}]}}}]}, 0x54}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001300)=@newsa={0x150, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x4e21, 0x2, 0xa, 0x0, 0x0, 0x3b, 0x0, 0xee00}, {@in6=@private1={0xfc, 0x1, '\x00', 0xfe}, 0xfe, 0x32}, @in=@multicast1, {0x8, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x543}, {0x4, 0x7fffffffffffffff}, {}, 0x0, 0x103500, 0xa, 0x4}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "217d66d38547aa140db8a200000000c538c7cb7a"}}]}, 0x150}, 0x1, 0x0, 0x0, 0x880}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000090000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000"], 0x174}}, 0x0)

46.398086862s ago: executing program 3 (id=2314):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x11, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000040), &(0x7f0000000180)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0xffff8000, 0x7b, 0x11, 0x30}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)

3.779831674s ago: executing program 2 (id=2790):
socket$inet_tcp(0x2, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x14)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6(0xa, 0x800000000000002, 0x0)
socket$alg(0x26, 0x5, 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000)=0x2)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6}]})
ioctl$PPPIOCSDEBUG(r0, 0x40047440, &(0x7f00000000c0)=0xfff)
write$ppp(r0, &(0x7f00000010c0)="1e00", 0x2)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x11, 0x2, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES64=r1], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

3.354671963s ago: executing program 2 (id=2795):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f00000000c0), 0x1) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e23, @multicast2}], 0x10)
sendto$inet6(r0, &(0x7f00000002c0)="b1", 0x1, 0x400c094, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

2.341899166s ago: executing program 2 (id=2809):
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000180)={@cgroup, 0xffffffffffffffff, 0x2, 0x0, 0x4000, @void, @value}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet(0x2, 0x3, 0x8d)
socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_msfilter(r0, 0x0, 0x8, &(0x7f00000000c0)=ANY=[@ANYRESDEC], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0x503, 0x3, 0x0, {0x0, 0x0, 0x0, 0x0, 0x115}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x92afbc60d29a229f}}]}, 0x40}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'vcan0\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000000)='g', 0x1, 0x0, &(0x7f00000000c0)={0x11, 0xd, r3}, 0x14)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000200)={<r4=>0x0, @local, @local}, &(0x7f0000000140)=0xc)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @multicast1}, 0x71, r4})
r6 = socket(0xa, 0x1, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x28}}, 0x4048040)
ioctl(r5, 0x8916, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl(r6, 0x8936, &(0x7f00000001c0)="e2a9698d0c82b0639c99e00a746556932e6dd96a919a4902f5dbb560c2ac3c2ca47a231894a29a741d66859550d1aeb297685d70b535454e0ff9f3e7b62877")
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x11)
openat$tun(0xffffffffffffff9c, 0x0, 0x48241, 0x0)
r7 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r7, &(0x7f0000000000)={0xa, 0x0, 0xbffffff4, @dev={0xfe, 0x80, '\x00', 0x10}, 0x5}, 0x1c)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x3e, &(0x7f0000000000)={0x0, 0x0}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x8000f28, 0x6)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r8, 0x84, 0x75, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

1.96614227s ago: executing program 4 (id=2812):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, &(0x7f00000002c0)=0x10)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000340)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x25, &(0x7f00000001c0)={r2, @in={{0x2, 0x0, @empty}}}, 0x90)

1.858665818s ago: executing program 1 (id=2814):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r0}, 0x10)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="85000000070000006a0a00ff000000220c00000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="0000002100000000050000000000000095c333d4c0a3ecdd69086b8e4c36439a8808b90ea579cdf8bd475a470064827701f4169ebebecb5bba94f06f020fb64e5594a86f5f00000000000008c7533dc98a94008d7d2a7d2c23bc3f4cc1992aebd29fd21e95b3c7c49de340c24cb6ba1a33740825c424ecd87a3b02ae7840be900964b6948074a8f2ed867fd6601b0ca02215f4c2a5157135575fa1903abe92246853cb7cb868a3b2524a92bfa8aaeaf3ff3f08fb97ec0c126bfea903ef567bdf48aecb23342c8102732b7257f65b1f7d82adec836fd77d2f5c6e6c18ae428531d9e4d906b0a19827bffab9ced1e24e8f063d44fb76dd59e75486"], &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2d)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000002c0)={@ifindex, r3, 0x11, 0x0, 0x0, @void, @value=r2}, 0x20)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000b40)=ANY=[@ANYBLOB="240000001800090400000000fcdbdf250a000000000000060000000008001f"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0xba00ec0a143a3f8e)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000060a090400000000000000000200000014000480100001800c0001006e6f747261636b000900010073797a30000000000900020073797a320000000038000000080a05000000000000000000020000000c00034200000000000000020900020073797a32000000000900010073797a30"], 0xa0}}, 0x0)

1.778466187s ago: executing program 2 (id=2815):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000240)=[@mss, @sack_perm, @timestamp, @mss={0x2, 0x1}, @window={0x3, 0x0, 0x4bef}, @window={0x3, 0x0, 0xfffc}, @timestamp, @timestamp], 0x20000000000000f3)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0xc7)

1.777816812s ago: executing program 1 (id=2816):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
listen(r0, 0x3)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0x4c, &(0x7f0000000000), 0x4)
sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x7, 0x27, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000001000000000000000002000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000008500000088000000af25fcff10080000b59b0c00ffffffff18110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000000000008500000086000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000700000085000000060000006c910000000000000203fffffcffffff08810000f0ffffff87b180001000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x3f00, 0x20, '\x00', 0x0, @fallback=0x1b, r1, 0x8, &(0x7f0000000400)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x0, 0x10, 0x5, 0x8}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000d40)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x2, @void, @value}, 0x94)
recvmsg$unix(r2, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1f00200000000000000000000010000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
ppoll(&(0x7f0000000500)=[{r3}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x7b, &(0x7f0000000000)=@assoc_value, &(0x7f0000000080)=0x8)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x9323, 0xfffffffffffffffe, 0x0, 0x2}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x2}, 0x0, 0x0)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000440)="67d8908a807d9e246743bff362e38a733b2400aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea417", 0x46}, {0x0}], 0x2, 0x0, 0x0, 0x1}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[], 0x30}}, 0x40)
sendmsg$can_bcm(r0, 0x0, 0x20000010)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380), 0x225c2, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r6, 0x401054d5, &(0x7f0000000480)={0x2, &(0x7f00000004c0)=[{0x2c}, {0x6}]})
r7 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r7, 0x10d, 0x13, &(0x7f0000000000), &(0x7f0000000080)=0x4)
close(r0)

1.662619748s ago: executing program 2 (id=2819):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000001e40)={0x90, 0x0, 0x2, 0x401, 0x0, 0x0, {0xa, 0x0, 0x8}, [@CTA_EXPECT_MASTER={0x4}, @CTA_EXPECT_MASK={0x3c, 0x3, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x14, 0x4, @remote}}}]}, @CTA_EXPECT_TUPLE={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @remote}}}]}]}, 0x90}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=@newqdisc={0x38, 0x24, 0xf0b, 0x13, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x5}, {0xffff, 0xffff}, {0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x8000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x2, 0x9}, {0xfff3, 0x5}, {0x1c, 0x2613a1b406814a86}}}, 0x24}}, 0x44804)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@newlink={0x50, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b, 0x12208}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_LACP_ACTIVE={0x5, 0x1d, 0x1}]}}}, @IFLA_ALT_IFNAME={0x14, 0x35, 'bond0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000000440)=[@in6={0xa, 0x4e22, 0xb, @private0, 0x6}, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, @in={0x2, 0x4e22, @empty}, @in6={0xa, 0x4e23, 0x7, @loopback, 0x8b}], 0x58)
r4 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
unshare(0x68060200)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x13, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002003007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0x0, 0x10, 0x10, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000003c0)={'geneve1\x00', 0x10})
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000340)={'filter\x00', 0x2, [{}, {}]}, 0x48)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(r6, &(0x7f0000000040)="09000000010000", 0x7)
ioctl$TUNSETPERSIST(r4, 0x400454cb, 0x4)

974.474253ms ago: executing program 4 (id=2824):
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x25, &(0x7f00000001c0)={r2, @in={{0x2, 0x0, @empty}}}, 0x90) (fail_nth: 1)

951.412535ms ago: executing program 0 (id=2825):
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x7, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
unshare(0x6020400)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r2=>0x0})
bind$can_raw(r1, &(0x7f00000001c0)={0x1d, r2}, 0x43)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="00000000000000e5b7080000000000007b8ae8ff00000000bfa200000000000007020000ebffffffd954000008000000b7040000000000008500000001dfff00955724bae90e76e987710e39218a974a58d74cb27e4b5cbaa682bd5b46c06e38"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={r3, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff21, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x25, &(0x7f00000001c0)={r6, @in={{0x2, 0x0, @empty}}}, 0x90)

915.649393ms ago: executing program 4 (id=2826):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x1400, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0xd0}}, 0x0) (async)
r1 = syz_init_net_socket$ax25(0x3, 0x3, 0xcf)
ioctl$SIOCAX25GETINFOOLD(r1, 0x89e9, &(0x7f0000000340))
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@bloom_filter={0x1e, 0xada, 0x1, 0x5, 0x40, 0x1, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x2, 0x2, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={&(0x7f0000000100)="2f32effc91a5f465fb328d8efe02b0135cd0d12c94902b6949136a3083761d49233015e17ba4f090b7da120943519cd9205ff7db1e5f2a2f6dea1fe61cb1308811f7cbf400f828701880bcb99f0656acbd603ffbec95d23a9512c8dc9d624dc61d7297497ca9f2b32fb952894a1098eb70dd8131f197cbcae2235b6231ca1a6381a872465fc326cf8d3a650841bc988916088f175a953b0fc0783e8e3b2f7a79f29cca7472e00b3bb26c9ef8a5990ddc92b31d6504f3ca006edad01fdb654ac2b9d3c2e7bfcb06759256905f47e52b0e63bf", &(0x7f0000000f80)=""/4096, &(0x7f0000000200)="1056051048e459f72d2bf73716d9c243ae69970d5854ffdee421a9e9ec3fed1f0082d8f2db16dc39d47fee49efc57a1b29390ccc7f0ca7835838d9fe1b1dc02eb86eaca60251c3c0764ab4044b9a98389a173f8ba932dee637b9a97c57464941cb8cb97d755ba346be42507cf4398d69b550a291a0096faa84a1efaa518b08df54463565a2a68cfd02f9a133aa2be106c8aca7564d74b4a700dad17cc9043287797badb11348100ca2eaa0d6371ad5780b2e635c876baf7405d13397dbef27ec990e0d14e9d895e28b5f52be71c27e15402dec86a436ca61ab80611187e548", &(0x7f0000001f80)="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", 0x6, r2, 0x4}, 0x38)

854.497577ms ago: executing program 1 (id=2827):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="d80000001c0081044e81f782db44b904021d0802010000000a4888a118000c000600142603600e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c13223e3f52a98516277ce06bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffec", 0xc5}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="48000000100001047fff00"/20, @ANYRES32=r2, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=r2], 0x48}}, 0x0) (fail_nth: 4)

772.761095ms ago: executing program 0 (id=2828):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x12, 0x4, &(0x7f0000000600)=ANY=[@ANYBLOB="18020000400000000000000000000800850000003900000095"], &(0x7f00000000c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41000, 0x6d, '\x00', 0x0, @cgroup_sock_addr=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000801, @void, @value}, 0x94)

722.070131ms ago: executing program 4 (id=2829):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x58}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000240)=[@mss, @sack_perm, @timestamp, @mss={0x2, 0x1}, @window={0x3, 0x0, 0x4bef}, @window={0x3, 0x0, 0xfffc}, @timestamp, @timestamp], 0x20000000000000f3)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0xc7)

398.319339ms ago: executing program 0 (id=2830):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84) (async)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0) (async)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000e80)={@in={{0x2, 0xfffd, @private=0xa010100}}, 0x0, 0x0, 0x22, 0x0, "70a59b8ef73b52114bf0854b6d184de8fb2add2d2bb9149a8c9b8ad1ff7568565a98f80146847b0c6c4698efb8d42bed462e33eef5219090f01c40a3103cf5a30f2c0cdc339b7665ca4fe3c1d75e3fda"}, 0xd8) (async)
connect$inet(r2, &(0x7f0000001940)={0x2, 0x4e23, @local}, 0x10) (async)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000100)) (async)
poll(&(0x7f0000000180)=[{r1, 0x4140}], 0x1, 0x7) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x4, 0x6, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xf, &(0x7f0000000100)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'bond0\x00', <r5=>0x0}) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000d80)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8, 0x1, r5}, @IFLA_HSR_SLAVE2={0x8, 0x2, r6}]}}}]}, 0x40}}, 0x0) (async)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000000))
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000000c0)={{}, &(0x7f0000000040), &(0x7f0000000080)='%pS    \x00'}, 0x20) (async)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x4}, 0x38)

396.4092ms ago: executing program 1 (id=2831):
socket$inet_dccp(0x2, 0x6, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet_dccp(0x2, 0x6, 0x0)
socket(0x15, 0x5, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="12000000080000000400000002"], 0x50)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
pipe(&(0x7f0000000240))
socket$kcm(0x2, 0xa, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5c00000010000104000000000000000600002000", @ANYRES32=0x0, @ANYBLOB="03000000000000002c0012800c0001006d6163766c616e001c000280080001000800000006ef0200010000001ffe02000000000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES16], 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010)

352.609996ms ago: executing program 0 (id=2832):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r0)
recvmmsg(r0, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0xfc}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000440)=""/143, 0x8f}, {0x0}, {&(0x7f0000000340)=""/196, 0xc4}], 0x3}, 0x7}, {{0x0, 0x0, 0x0}, 0x3}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000001a00)=""/4102, 0x1006}, {&(0x7f0000000240)=""/155, 0x9b}, {&(0x7f0000000540)=""/216, 0xd8}, {&(0x7f0000000100)=""/119, 0x77}, {&(0x7f00000000c0)=""/23, 0x17}, {&(0x7f0000003c40)=""/4107, 0x100b}, {&(0x7f0000000a40)=""/157, 0x9d}], 0x7}, 0x80000000}, {{0x0, 0x0, 0x0}, 0x3}], 0x5, 0x40008062, 0x0)

308.268669ms ago: executing program 4 (id=2833):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4e22, @private=0xa010101}]}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={r3, 0x9}, 0x7)

191.339812ms ago: executing program 2 (id=2834):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000300)={0x50, 0x3, 0x1, 0x201, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x30, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1}, {0x14, 0x4, @loopback}}}]}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x2}]}]}, 0x50}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x80805, 0x0)
shutdown(0xffffffffffffffff, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4b, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x2c, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfe}, [@IFLA_XDP={0x4}, @IFLA_GROUP={0x8}]}, 0x2c}}, 0x0)
pselect6(0x517, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x700}, &(0x7f0000000240)={0x0, 0x989680}, &(0x7f00000002c0)={&(0x7f0000000280), 0x8})
bind$netlink(r3, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfc, 0x200}, 0xc)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000140)=0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e000000080000000000180003801400038010"], 0x44}}, 0x0)

177.094594ms ago: executing program 0 (id=2835):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f00000002c0)=ANY=[], 0x8)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2b, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000080)=ANY=[@ANYBLOB="34000000100005ff0000006f000000000000004a", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b0001006c"], 0x34}}, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4, &(0x7f0000000000)=0x1, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

106.063814ms ago: executing program 4 (id=2836):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x16, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="180100000000000000000000040000008510000003000000180000000000000000000000000000009500000000000000bfa000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x1, 0x2c, &(0x7f00000007c0)=""/240, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000080)={<r1=>r0, 0x2, 0x1, 0x3ff})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r3, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{0xffffffffffffffff, <r4=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)=r0}, 0x20)
getpeername$l2tp(r1, &(0x7f00000008c0)={0x2, 0x0, @dev}, &(0x7f0000000900)=0x10)
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x34, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@TCA_RATE={0x6, 0x5, {0x2, 0xf3}}, @qdisc_kind_options=@q_drr={0x8}]}, 0x34}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x40, 0x9, 0xffffffff, 0x0, {0x1}, [@typed={0x4, 0x11f}, @nested={0x4, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)={0x1b, 0x0, 0x0, 0xffff, 0x0, 0x1, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{0x1, <r10=>0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f00000005c0)=r0}, 0x20)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'veth1_to_bridge\x00', <r11=>0x0})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r12=>0xffffffffffffffff})
sendmsg$nl_route_sched(r12, &(0x7f0000000440)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000600)=@getchain={0x4c, 0x66, 0x10, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, r11, {0xc, 0x1}, {0xfff3, 0xa}, {0x6, 0x6}}, [{0x8, 0xb, 0xffffff48}, {0x8, 0xb, 0x400}, {0x8, 0xb, 0x9}, {0x8, 0xb, 0x4}, {0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x10, 0x10, &(0x7f0000000180)=@raw=[@jmp={0x5, 0x1, 0x2, 0x3, 0x4}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}, @map_val={0x18, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2800}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], &(0x7f0000000200)='syzkaller\x00', 0x6a, 0xe0, &(0x7f0000000440)=""/224, 0x41000, 0x40, '\x00', r7, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x0, 0x3}, 0x8, 0x10, &(0x7f00000002c0)={0x5, 0x3, 0x8, 0x10000}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x6, &(0x7f0000000640)=[r9, r10, r12], &(0x7f0000000680)=[{0x3, 0x4, 0x9, 0x9}, {0x2, 0x3, 0x9, 0x5}, {0x3, 0x3, 0x5, 0x7}, {0x0, 0x2, 0x2, 0xb}, {0x3, 0x5, 0xc, 0x1}, {0x5, 0x1, 0xb, 0x4}], 0x10, 0x9, @void, @value}, 0x94)
socketpair(0x0, 0x80000, 0x7, &(0x7f0000000000)={0xffffffffffffffff, <r13=>0xffffffffffffffff})
setsockopt$MRT_DEL_VIF(r13, 0x0, 0xcb, &(0x7f0000000040)={0x1, 0x8, 0x1, 0x8, @vifc_lcl_addr=@private=0xa010100, @multicast1}, 0x10)

105.433443ms ago: executing program 1 (id=2837):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000040)={{{@in6=@local, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in6=@private1}, 0x0, @in=@local}}, &(0x7f0000000140)=0xe8)
setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000001c0)={{{@in=@rand_addr=0x64010101, @in6=@private1, 0x4e24, 0x4e37, 0x4e20, 0x1, 0x2, 0x20, 0x120, 0x33, 0x0, r1}, {0x80000000, 0x3, 0xfffffffffffffffb, 0x0, 0x8000000000000001, 0x1, 0x4, 0xcf14}, {0x0, 0x3, 0x8001, 0x5}, 0x6, 0x0, 0x0, 0x1, 0x1, 0x2}, {{@in6=@local, 0x4d6, 0x32}, 0x2, @in=@broadcast, 0x34ff, 0x5, 0x0, 0x4, 0x8001, 0x532, 0x7b8}}, 0xe8)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
recvmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x23)

395.141µs ago: executing program 1 (id=2838):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000800000000000000", @ANYRES32, @ANYBLOB="0000000000e8f6c534ea5ede44000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18080000000000000000000000000002850000000f000000850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000380)={<r4=>0xffffffffffffffff})
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r5, 0x84, 0xc, &(0x7f0000000480)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
r7 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r7, &(0x7f00000003c0)=[{{&(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000180)="e1", 0x1}], 0x1}}, {{&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000100)="a7", 0x1}], 0x1}}], 0x2, 0x0)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r7, 0x84, 0x19, &(0x7f0000000600)={r6, 0x9}, 0x8)
getsockopt$inet_sctp_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000480)={r6, 0x9, 0x3}, &(0x7f0000000540)=0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000069000010000000000100000018010000696c6c2500000000002020207b1af8ff00000000bfa1000000000000070100fef7ffffffb702000008000000b701000000400000850000008d00000095a1e7"], &(0x7f0000000240)='GPL\x00', 0x7, 0xfe3, &(0x7f0000001e00)=""/4067, 0x0, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_xfrm(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)=@acquire={0x128, 0x17, 0x1, 0x0, 0x0, {{@in=@empty}, @in=@empty, {@in6=@private2, @in=@local}, {{@in=@loopback, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xa0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x1}}}}, 0x128}}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000100000000000000000000008500000087000000850000000500000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r10 = socket$kcm(0xa, 0x2, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000200)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "4dd318", 0x1c, 0x6, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, @local, {[], {{0xfffe, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x2, 0x0, 0x0, 0xfffc, {[@fastopen={0x22, 0x8, "e72d650a8418"}]}}}}}}}}, 0x0)
setsockopt$sock_attach_bpf(r10, 0x29, 0x10, 0x0, 0x1300)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r9, 0x0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0810", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

0s ago: executing program 0 (id=2839):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=@getae={0x40, 0x1f, 0x319, 0x0, 0x0, {{@in=@empty}, @in6=@mcast2, 0x3000000}}, 0x40}}, 0x0)

kernel console output (not intermixed with test programs):

10/0x10
[  316.470527][T12531]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  316.470580][T12531]  genl_rcv+0x28/0x40
[  316.470594][T12531]  netlink_unicast+0x7f6/0x990
[  316.470623][T12531]  ? __pfx_netlink_unicast+0x10/0x10
[  316.470639][T12531]  ? __virt_addr_valid+0x45f/0x530
[  316.470656][T12531]  ? __phys_addr_symbol+0x2f/0x70
[  316.470671][T12531]  ? __check_object_size+0x47a/0x730
[  316.470695][T12531]  netlink_sendmsg+0x8de/0xcb0
[  316.470729][T12531]  ? __pfx_netlink_sendmsg+0x10/0x10
[  316.470755][T12531]  ? aa_sock_msg_perm+0x91/0x160
[  316.470784][T12531]  ? __pfx_netlink_sendmsg+0x10/0x10
[  316.470803][T12531]  __sock_sendmsg+0x221/0x270
[  316.470827][T12531]  ____sys_sendmsg+0x53a/0x860
[  316.470853][T12531]  ? __pfx_____sys_sendmsg+0x10/0x10
[  316.470866][T12531]  ? __fget_files+0x2a/0x410
[  316.470888][T12531]  ? __fget_files+0x2a/0x410
[  316.470917][T12531]  __sys_sendmsg+0x269/0x350
[  316.470938][T12531]  ? __pfx___sys_sendmsg+0x10/0x10
[  316.470968][T12531]  ? do_sys_openat2+0x17a/0x1d0
[  316.471014][T12531]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  316.471035][T12531]  ? do_syscall_64+0x100/0x230
[  316.471055][T12531]  ? do_syscall_64+0xb6/0x230
[  316.471074][T12531]  do_syscall_64+0xf3/0x230
[  316.471090][T12531]  ? clear_bhb_loop+0x35/0x90
[  316.471115][T12531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.471145][T12531] RIP: 0033:0x7fe66cf8d169
[  316.471160][T12531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  316.471173][T12531] RSP: 002b:00007fe66dd0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  316.471189][T12531] RAX: ffffffffffffffda RBX: 00007fe66d1a5fa0 RCX: 00007fe66cf8d169
[  316.471201][T12531] RDX: 0000000000000000 RSI: 0000400000000540 RDI: 0000000000000003
[  316.471210][T12531] RBP: 00007fe66dd0b090 R08: 0000000000000000 R09: 0000000000000000
[  316.471218][T12531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  316.471226][T12531] R13: 0000000000000000 R14: 00007fe66d1a5fa0 R15: 00007ffedc66f018
[  316.471250][T12531]  </TASK>
[  316.866222][T12538] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2267'.
[  316.928989][T12541] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2269'.
[  316.934001][T12544] FAULT_INJECTION: forcing a failure.
[  316.934001][T12544] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  316.951733][T12544] CPU: 1 UID: 0 PID: 12544 Comm: syz.4.2268 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  316.951757][T12544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  316.951767][T12544] Call Trace:
[  316.951773][T12544]  <TASK>
[  316.951780][T12544]  dump_stack_lvl+0x241/0x360
[  316.951806][T12544]  ? __pfx_dump_stack_lvl+0x10/0x10
[  316.951825][T12544]  ? __pfx__printk+0x10/0x10
[  316.951847][T12544]  ? snprintf+0xda/0x120
[  316.951872][T12544]  should_fail_ex+0x40a/0x550
[  316.951899][T12544]  _copy_to_user+0x31/0xb0
[  316.951918][T12544]  simple_read_from_buffer+0xca/0x150
[  316.951937][T12544]  proc_fail_nth_read+0x1e9/0x250
[  316.951954][T12544]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  316.951974][T12544]  ? rw_verify_area+0x243/0x630
[  316.951990][T12544]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  316.952011][T12544]  vfs_read+0x1f8/0xb40
[  316.952028][T12544]  ? fdget_pos+0x254/0x320
[  316.952050][T12544]  ? __pfx___mutex_lock+0x10/0x10
[  316.952069][T12544]  ? __pfx_vfs_read+0x10/0x10
[  316.952082][T12544]  ? do_sys_openat2+0x17a/0x1d0
[  316.952103][T12544]  ? __fget_files+0x2a/0x410
[  316.952124][T12544]  ? __fget_files+0x395/0x410
[  316.952141][T12544]  ? __fget_files+0x2a/0x410
[  316.952168][T12544]  ksys_read+0x18f/0x2b0
[  316.952186][T12544]  ? __pfx_ksys_read+0x10/0x10
[  316.952204][T12544]  ? do_syscall_64+0x100/0x230
[  316.952223][T12544]  ? do_syscall_64+0xb6/0x230
[  316.952242][T12544]  do_syscall_64+0xf3/0x230
[  316.952259][T12544]  ? clear_bhb_loop+0x35/0x90
[  316.952283][T12544]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.952299][T12544] RIP: 0033:0x7fe66cf8bb7c
[  316.952312][T12544] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  316.952325][T12544] RSP: 002b:00007fe66dd0b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  316.952351][T12544] RAX: ffffffffffffffda RBX: 00007fe66d1a5fa0 RCX: 00007fe66cf8bb7c
[  316.952361][T12544] RDX: 000000000000000f RSI: 00007fe66dd0b0a0 RDI: 0000000000000004
[  316.952370][T12544] RBP: 00007fe66dd0b090 R08: 0000000000000000 R09: 0000000000000000
[  316.952379][T12544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  316.952388][T12544] R13: 0000000000000000 R14: 00007fe66d1a5fa0 R15: 00007ffedc66f018
[  316.952412][T12544]  </TASK>
[  317.340562][T12550] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2270'.
[  317.439071][T12560] FAULT_INJECTION: forcing a failure.
[  317.439071][T12560] name failslab, interval 1, probability 0, space 0, times 0
[  317.452119][T12560] CPU: 1 UID: 0 PID: 12560 Comm: syz.0.2272 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  317.452142][T12560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  317.452152][T12560] Call Trace:
[  317.452158][T12560]  <TASK>
[  317.452166][T12560]  dump_stack_lvl+0x241/0x360
[  317.452191][T12560]  ? __pfx_dump_stack_lvl+0x10/0x10
[  317.452209][T12560]  ? __pfx__printk+0x10/0x10
[  317.452227][T12560]  ? kmem_cache_alloc_noprof+0x48/0x380
[  317.452249][T12560]  ? __pfx___might_resched+0x10/0x10
[  317.452275][T12560]  should_fail_ex+0x40a/0x550
[  317.452299][T12560]  should_failslab+0xac/0x100
[  317.452321][T12560]  ? skb_clone+0x20c/0x390
[  317.452337][T12560]  kmem_cache_alloc_noprof+0x70/0x380
[  317.452363][T12560]  skb_clone+0x20c/0x390
[  317.452384][T12560]  nfnetlink_rcv+0x575/0x2ab0
[  317.452401][T12560]  ? __pfx_validate_chain+0x10/0x10
[  317.452432][T12560]  ? mark_lock+0x9a/0x360
[  317.452446][T12560]  ? __pfx_validate_chain+0x10/0x10
[  317.452465][T12560]  ? __lock_acquire+0x1397/0x2100
[  317.452494][T12560]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  317.452520][T12560]  ? __lock_acquire+0x1397/0x2100
[  317.452570][T12560]  ? __pfx_lock_release+0x10/0x10
[  317.452590][T12560]  ? netlink_deliver_tap+0x2e/0x1b0
[  317.452610][T12560]  ? __pfx_lock_release+0x10/0x10
[  317.452640][T12560]  ? netlink_deliver_tap+0x2e/0x1b0
[  317.452661][T12560]  netlink_unicast+0x7f6/0x990
[  317.452687][T12560]  ? __pfx_netlink_unicast+0x10/0x10
[  317.452702][T12560]  ? __virt_addr_valid+0x45f/0x530
[  317.452718][T12560]  ? __phys_addr_symbol+0x2f/0x70
[  317.452731][T12560]  ? __check_object_size+0x47a/0x730
[  317.452754][T12560]  netlink_sendmsg+0x8de/0xcb0
[  317.452784][T12560]  ? __pfx_netlink_sendmsg+0x10/0x10
[  317.452806][T12560]  ? aa_sock_msg_perm+0x91/0x160
[  317.452828][T12560]  ? __pfx_netlink_sendmsg+0x10/0x10
[  317.452844][T12560]  __sock_sendmsg+0x221/0x270
[  317.452865][T12560]  ____sys_sendmsg+0x53a/0x860
[  317.452889][T12560]  ? __pfx_____sys_sendmsg+0x10/0x10
[  317.452918][T12560]  __sys_sendmsg+0x269/0x350
[  317.452938][T12560]  ? __pfx___sys_sendmsg+0x10/0x10
[  317.452965][T12560]  ? __pfx_vfs_write+0x10/0x10
[  317.452979][T12560]  ? do_sys_openat2+0x17a/0x1d0
[  317.453021][T12560]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  317.453049][T12560]  ? do_syscall_64+0x100/0x230
[  317.453070][T12560]  ? do_syscall_64+0xb6/0x230
[  317.453090][T12560]  do_syscall_64+0xf3/0x230
[  317.453107][T12560]  ? clear_bhb_loop+0x35/0x90
[  317.453129][T12560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.453148][T12560] RIP: 0033:0x7f6faa58d169
[  317.453163][T12560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.453177][T12560] RSP: 002b:00007f6fab39f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  317.453195][T12560] RAX: ffffffffffffffda RBX: 00007f6faa7a5fa0 RCX: 00007f6faa58d169
[  317.453206][T12560] RDX: 0000000000000000 RSI: 0000400000000380 RDI: 0000000000000003
[  317.453217][T12560] RBP: 00007f6fab39f090 R08: 0000000000000000 R09: 0000000000000000
[  317.453227][T12560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.453237][T12560] R13: 0000000000000000 R14: 00007f6faa7a5fa0 R15: 00007fffca4d9a88
[  317.453262][T12560]  </TASK>
[  317.781605][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  317.927266][T12565] netlink: 'syz.3.2274': attribute type 11 has an invalid length.
[  318.146821][T12580] FAULT_INJECTION: forcing a failure.
[  318.146821][T12580] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.173032][T12580] CPU: 0 UID: 0 PID: 12580 Comm: syz.1.2277 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  318.173060][T12580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  318.173069][T12580] Call Trace:
[  318.173074][T12580]  <TASK>
[  318.173080][T12580]  dump_stack_lvl+0x241/0x360
[  318.173104][T12580]  ? __pfx_dump_stack_lvl+0x10/0x10
[  318.173122][T12580]  ? __pfx__printk+0x10/0x10
[  318.173139][T12580]  ? __pfx_lock_release+0x10/0x10
[  318.173167][T12580]  should_fail_ex+0x40a/0x550
[  318.173191][T12580]  _copy_from_user+0x2d/0xb0
[  318.173222][T12580]  copy_msghdr_from_user+0xae/0x680
[  318.173242][T12580]  ? __pfx___might_resched+0x10/0x10
[  318.173264][T12580]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  318.173287][T12580]  ? do_recvmmsg+0x44e/0xab0
[  318.173303][T12580]  ? __might_fault+0xaa/0x120
[  318.173324][T12580]  do_recvmmsg+0x3bd/0xab0
[  318.173350][T12580]  ? __pfx_do_recvmmsg+0x10/0x10
[  318.173382][T12580]  ? ksys_write+0x22a/0x2b0
[  318.173393][T12580]  ? __pfx_lock_release+0x10/0x10
[  318.173410][T12580]  ? sb_end_write+0xe9/0x1c0
[  318.173423][T12580]  ? vfs_write+0x7fa/0xd10
[  318.173434][T12580]  ? __mutex_unlock_slowpath+0x227/0x800
[  318.173450][T12580]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  318.173461][T12580]  ? __fget_files+0x2a/0x410
[  318.173482][T12580]  __x64_sys_recvmmsg+0x199/0x250
[  318.173494][T12580]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  318.173505][T12580]  ? do_syscall_64+0x100/0x230
[  318.173518][T12580]  ? do_syscall_64+0xb6/0x230
[  318.173530][T12580]  do_syscall_64+0xf3/0x230
[  318.173541][T12580]  ? clear_bhb_loop+0x35/0x90
[  318.173556][T12580]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.173569][T12580] RIP: 0033:0x7fb88f18d169
[  318.173579][T12580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.173598][T12580] RSP: 002b:00007fb890055038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  318.173610][T12580] RAX: ffffffffffffffda RBX: 00007fb88f3a6080 RCX: 00007fb88f18d169
[  318.173616][T12580] RDX: 03ffffffffffff67 RSI: 0000400000002440 RDI: 0000000000000005
[  318.173623][T12580] RBP: 00007fb890055090 R08: 0000000000000000 R09: 0000000000000000
[  318.173628][T12580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  318.173634][T12580] R13: 0000000000000001 R14: 00007fb88f3a6080 R15: 00007ffe83aebfd8
[  318.173648][T12580]  </TASK>
[  318.199869][T12574] bridge_slave_1: left allmulticast mode
[  318.426847][T12574] bridge_slave_1: left promiscuous mode
[  318.432826][T12574] bridge0: port 2(bridge_slave_1) entered disabled state
[  318.443391][T12574] bridge_slave_0: left allmulticast mode
[  318.449228][T12574] bridge_slave_0: left promiscuous mode
[  318.456373][T12574] bridge0: port 1(bridge_slave_0) entered disabled state
[  318.586641][T12579] 1·: renamed from 
70· (while UP)
[  318.606027][T12579] A link change request failed with some changes committed already. Interface 
71· may have been left with an inconsistent configuration, please check.
[  318.735263][T12583] openvswitch: netlink: Key 6 has unexpected len 4 expected 2
[  318.819686][T12586] __nla_validate_parse: 4 callbacks suppressed
[  318.819707][T12586] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2281'.
[  318.900756][T12589] lo speed is unknown, defaulting to 1000
[  319.211047][T12598] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2286'.
[  319.232438][T12598] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2286'.
[  319.268733][T12598] bond0: entered promiscuous mode
[  319.276774][T12598] bond_slave_0: entered promiscuous mode
[  319.284134][T12598] bond_slave_1: entered promiscuous mode
[  319.291567][T12598] bond0: left promiscuous mode
[  319.302349][T12598] bond_slave_0: left promiscuous mode
[  319.309493][T12598] bond_slave_1: left promiscuous mode
[  319.585818][T12608] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2289'.
[  319.660790][T12610] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2290'.
[  319.670192][T12610] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2290'.
[  319.683721][T12610] bridge0: entered promiscuous mode
[  319.691595][T12610] bridge0: left promiscuous mode
[  320.034987][T12617] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2293'.
[  320.632780][T12638] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2299'.
[  320.833233][T12641] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2300'.
[  320.855910][T12641] nbd: nbd0 already in use
[  321.402782][T12655] openvswitch: netlink: Key 6 has unexpected len 4 expected 2
[  321.445631][T12565] Set syz1 is full, maxelem 65536 reached
[  321.482975][T12658] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2306'.
[  321.529912][T12658] lo speed is unknown, defaulting to 1000
[  321.572018][T12660] pimreg: entered allmulticast mode
[  321.594848][T12659] pimreg: left allmulticast mode
[  322.456928][T12677] lo: left promiscuous mode
[  322.461773][T12677] tunl0: left promiscuous mode
[  322.466867][T12677] gre0: left promiscuous mode
[  322.471735][T12677] gretap0: left promiscuous mode
[  322.494762][T12677] erspan0: left promiscuous mode
[  322.499901][T12677] ip_vti0: left promiscuous mode
[  322.531633][T12677] ip6_vti0: left promiscuous mode
[  322.558142][T12677] sit0: left promiscuous mode
[  322.578902][T12677] ip6tnl0: left promiscuous mode
[  322.603403][T12677] ip6gre0: left promiscuous mode
[  322.628726][T12677] ip6gretap0: left promiscuous mode
[  322.654198][T12677] bridge0: left promiscuous mode
[  322.675558][T12677] team0: left promiscuous mode
[  322.701001][T12677] dummy0: left promiscuous mode
[  322.720748][T12677] nlmon0: left promiscuous mode
[  322.739596][T12677] caif0: left promiscuous mode
[  322.755912][T12677] veth0: left promiscuous mode
[  322.790613][T12677] veth1: left promiscuous mode
[  322.807320][ T5843] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  322.810197][T12677] wg0: left promiscuous mode
[  322.819780][ T5843] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  322.828768][ T5843] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  322.839922][ T5843] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  322.848000][ T5843] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  322.851031][T12677] wg1: left promiscuous mode
[  322.860099][ T5843] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  322.887651][T12677] wg2: left promiscuous mode
[  322.902722][T12677] veth0_to_bridge: left promiscuous mode
[  322.953883][T12677] bridge_slave_0: left promiscuous mode
[  322.978006][T12677] veth0_to_bond: left promiscuous mode
[  322.995190][T12677] bond_slave_0: left promiscuous mode
[  323.010733][T12677] veth1_to_bond: left promiscuous mode
[  323.026439][T12677] bond_slave_1: left promiscuous mode
[  323.050880][T12677] veth0_to_team: left promiscuous mode
[  323.082295][T12677] team_slave_0: left promiscuous mode
[  323.092824][T12677] veth1_to_team: left promiscuous mode
[  323.098558][T12677] team_slave_1: left promiscuous mode
[  323.104276][T12677] veth0_to_batadv: left promiscuous mode
[  323.110061][T12677] batadv_slave_0: left promiscuous mode
[  323.122830][T12677] veth1_to_batadv: left promiscuous mode
[  323.138945][T12677] batadv_slave_1: left promiscuous mode
[  323.149088][T12677] xfrm0: left promiscuous mode
[  323.159269][T12677] veth0_to_hsr: left promiscuous mode
[  323.172936][T12677] veth1_to_hsr: left promiscuous mode
[  323.179918][T12677] 0·: left allmulticast mode
[  323.189460][T12677] hsr_slave_0: left allmulticast mode
[  323.199650][T12677] hsr_slave_1: left allmulticast mode
[  323.233344][T12677] veth1_virt_wifi: left promiscuous mode
[  323.242869][T12677] veth0_virt_wifi: left promiscuous mode
[  323.248692][T12677] net veth1_virt_wifi virt_wifi0: left promiscuous mode
[  323.273158][T12677] vlan0: left promiscuous mode
[  323.282869][T12677] vlan1: left promiscuous mode
[  323.287956][T12677] macvlan1: left promiscuous mode
[  323.312520][T12677] ipvlan0: left promiscuous mode
[  323.333692][T12677] geneve0: left promiscuous mode
[  323.350192][T12677] geneve1: left promiscuous mode
[  323.363119][T12677] mac80211_hwsim hwsim4 wlan0: left promiscuous mode
[  323.380227][T12677] mac80211_hwsim hwsim5 wlan1: left promiscuous mode
[  323.397413][T12677] mac80211_hwsim hwsim13 wlan2: left promiscuous mode
[  323.414692][T12677] ip6gretap1: left promiscuous mode
[  323.427096][T12677] bridge1: left promiscuous mode
[  323.432544][T12677] gre1: left promiscuous mode
[  323.437588][T12677] vlan2: left promiscuous mode
[  323.443512][T12677] bond1: left promiscuous mode
[  323.449083][T12677] ip6tnl1: left promiscuous mode
[  323.454310][T12677] sit1: left promiscuous mode
[  323.460158][T12677] ipvlan2: left promiscuous mode
[  323.483801][T12691] pimreg: entered allmulticast mode
[  323.518056][T12685] lo speed is unknown, defaulting to 1000
[  323.597486][T12689] pimreg: left allmulticast mode
[  324.169491][T12731] __nla_validate_parse: 2 callbacks suppressed
[  324.169511][T12731] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2330'.
[  324.419069][T12741] FAULT_INJECTION: forcing a failure.
[  324.419069][T12741] name failslab, interval 1, probability 0, space 0, times 0
[  324.478762][T12741] CPU: 1 UID: 0 PID: 12741 Comm: syz.1.2334 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  324.478788][T12741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  324.478798][T12741] Call Trace:
[  324.478804][T12741]  <TASK>
[  324.478812][T12741]  dump_stack_lvl+0x241/0x360
[  324.478839][T12741]  ? __pfx_dump_stack_lvl+0x10/0x10
[  324.478856][T12741]  ? __pfx__printk+0x10/0x10
[  324.478875][T12741]  ? __kmalloc_cache_noprof+0x48/0x390
[  324.478898][T12741]  ? __pfx___might_resched+0x10/0x10
[  324.478924][T12741]  should_fail_ex+0x40a/0x550
[  324.478951][T12741]  should_failslab+0xac/0x100
[  324.478973][T12741]  __kmalloc_cache_noprof+0x70/0x390
[  324.478992][T12741]  ? nfnetlink_rcv+0x1265/0x2ab0
[  324.479013][T12741]  nfnetlink_rcv+0x1265/0x2ab0
[  324.479028][T12741]  ? __pfx_validate_chain+0x10/0x10
[  324.479075][T12741]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  324.479102][T12741]  ? __lock_acquire+0x1397/0x2100
[  324.479158][T12741]  ? netlink_deliver_tap+0x2e/0x1b0
[  324.479180][T12741]  ? __pfx_lock_release+0x10/0x10
[  324.479215][T12741]  ? netlink_deliver_tap+0x2e/0x1b0
[  324.479238][T12741]  netlink_unicast+0x7f6/0x990
[  324.479266][T12741]  ? __pfx_netlink_unicast+0x10/0x10
[  324.479282][T12741]  ? __virt_addr_valid+0x45f/0x530
[  324.479299][T12741]  ? __phys_addr_symbol+0x2f/0x70
[  324.479314][T12741]  ? __check_object_size+0x47a/0x730
[  324.479339][T12741]  netlink_sendmsg+0x8de/0xcb0
[  324.479372][T12741]  ? __pfx_netlink_sendmsg+0x10/0x10
[  324.479406][T12741]  ? aa_sock_msg_perm+0x91/0x160
[  324.479435][T12741]  ? __pfx_netlink_sendmsg+0x10/0x10
[  324.479453][T12741]  __sock_sendmsg+0x221/0x270
[  324.479478][T12741]  ____sys_sendmsg+0x53a/0x860
[  324.479505][T12741]  ? __pfx_____sys_sendmsg+0x10/0x10
[  324.479538][T12741]  __sys_sendmsg+0x269/0x350
[  324.479560][T12741]  ? __pfx___sys_sendmsg+0x10/0x10
[  324.479587][T12741]  ? __pfx_vfs_write+0x10/0x10
[  324.479601][T12741]  ? do_sys_openat2+0x17a/0x1d0
[  324.479646][T12741]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  324.479668][T12741]  ? do_syscall_64+0x100/0x230
[  324.479691][T12741]  ? do_syscall_64+0xb6/0x230
[  324.479711][T12741]  do_syscall_64+0xf3/0x230
[  324.479730][T12741]  ? clear_bhb_loop+0x35/0x90
[  324.479753][T12741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.479773][T12741] RIP: 0033:0x7fb88f18d169
[  324.479792][T12741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.479806][T12741] RSP: 002b:00007fb890076038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  324.479824][T12741] RAX: ffffffffffffffda RBX: 00007fb88f3a5fa0 RCX: 00007fb88f18d169
[  324.479836][T12741] RDX: 0000000000000000 RSI: 0000400000000380 RDI: 0000000000000003
[  324.479846][T12741] RBP: 00007fb890076090 R08: 0000000000000000 R09: 0000000000000000
[  324.479856][T12741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.479866][T12741] R13: 0000000000000000 R14: 00007fb88f3a5fa0 R15: 00007ffe83aebfd8
[  324.479894][T12741]  </TASK>
[  324.850388][T12685] chnl_net:caif_netlink_parms(): no params data found
[  324.924712][ T8770] Bluetooth: hci4: command tx timeout
[  325.001644][T12685] bridge0: port 1(bridge_slave_0) entered blocking state
[  325.009750][T12685] bridge0: port 1(bridge_slave_0) entered disabled state
[  325.017671][T12685] bridge_slave_0: entered allmulticast mode
[  325.025101][T12685] bridge_slave_0: entered promiscuous mode
[  325.033696][T12685] bridge0: port 2(bridge_slave_1) entered blocking state
[  325.041863][T12685] bridge0: port 2(bridge_slave_1) entered disabled state
[  325.049697][T12685] bridge_slave_1: entered allmulticast mode
[  325.057004][T12685] bridge_slave_1: entered promiscuous mode
[  325.106343][T12685] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  325.121334][T12685] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  325.132082][T12761] x_tables: duplicate underflow at hook 1
[  325.159259][T12685] team0: Port device team_slave_0 added
[  325.169796][T12685] team0: Port device team_slave_1 added
[  325.223091][T12685] batman_adv: batadv0: Adding interface: batadv_slave_0
[  325.230459][T12685] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  325.258848][T12685] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  325.259760][T12762] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  325.274159][T12685] batman_adv: batadv0: Adding interface: batadv_slave_1
[  325.283036][T12685] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  325.309396][T12685] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  325.323612][T12763] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2339'.
[  325.475303][T12763] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  325.483889][T12763] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  325.492151][T12763] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  325.503784][T12763] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  325.548128][T12685] hsr_slave_0: entered promiscuous mode
[  325.555677][T12685] hsr_slave_1: entered promiscuous mode
[  325.562027][T12685] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  325.574082][T12685] Cannot create hsr debugfs directory
[  325.897266][T12769] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2342'.
[  326.044726][T12775] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2344'.
[  326.191517][T12685] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  326.226298][T12685] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  326.252420][T12685] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  326.307105][T12685] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  326.603787][T12685] 8021q: adding VLAN 0 to HW filter on device bond0
[  326.627193][T12685] 8021q: adding VLAN 0 to HW filter on device team0
[  326.652032][ T3548] bridge0: port 1(bridge_slave_0) entered blocking state
[  326.659242][ T3548] bridge0: port 1(bridge_slave_0) entered forwarding state
[  326.704421][ T3548] bridge0: port 2(bridge_slave_1) entered blocking state
[  326.711624][ T3548] bridge0: port 2(bridge_slave_1) entered forwarding state
[  326.866745][T12801] lo speed is unknown, defaulting to 1000
[  326.993250][ T8770] Bluetooth: hci4: command tx timeout
[  327.130056][T12814] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2354'.
[  327.159933][T12816] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2355'.
[  327.269499][T12685] 8021q: adding VLAN 0 to HW filter on device batadv0
[  327.374756][T12685] veth0_vlan: entered promiscuous mode
[  327.417144][T12685] veth1_vlan: entered promiscuous mode
[  327.426511][T12819] netlink: 100 bytes leftover after parsing attributes in process `syz.1.2356'.
[  327.528822][T12685] veth0_macvtap: entered promiscuous mode
[  327.550737][T12685] veth1_macvtap: entered promiscuous mode
[  327.662030][T12685] batman_adv: batadv0: Interface activated: batadv_slave_0
[  327.694289][T12685] batman_adv: batadv0: Interface activated: batadv_slave_1
[  327.715394][T12685] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  327.724602][T12685] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  327.734108][T12685] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  327.743354][T12685] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  327.776945][T12834] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2359'.
[  327.907687][T12842] bridge3: entered promiscuous mode
[  327.942356][T12842] bridge3: entered allmulticast mode
[  328.029429][T12842] team0: Port device bridge3 added
[  328.101311][ T3466] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  328.139853][ T3466] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  328.193765][T12851] netlink: 'syz.2.2362': attribute type 10 has an invalid length.
[  328.328573][ T3548] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  328.351869][ T3548] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  328.647500][T12865] netlink: 'syz.4.2366': attribute type 10 has an invalid length.
[  328.698034][T12869] netlink: 'syz.4.2366': attribute type 10 has an invalid length.
[  328.706418][T12869] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2366'.
[  328.730967][T12869] team0: entered promiscuous mode
[  328.752848][T12869] team_slave_0: entered promiscuous mode
[  328.773189][T12869] team_slave_1: entered promiscuous mode
[  328.782206][T12869] 8021q: adding VLAN 0 to HW filter on device team0
[  328.935904][T12873] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.2366'.
[  329.074501][ T5843] Bluetooth: hci4: command tx timeout
[  329.206127][T12888] FAULT_INJECTION: forcing a failure.
[  329.206127][T12888] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  329.230524][T12888] CPU: 0 UID: 0 PID: 12888 Comm: syz.0.2374 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  329.230550][T12888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  329.230560][T12888] Call Trace:
[  329.230566][T12888]  <TASK>
[  329.230573][T12888]  dump_stack_lvl+0x241/0x360
[  329.230600][T12888]  ? __pfx_dump_stack_lvl+0x10/0x10
[  329.230617][T12888]  ? __pfx__printk+0x10/0x10
[  329.230635][T12888]  ? __pfx_lock_release+0x10/0x10
[  329.230665][T12888]  should_fail_ex+0x40a/0x550
[  329.230691][T12888]  _copy_from_iter+0x1df/0x1c40
[  329.230710][T12888]  ? __virt_addr_valid+0x183/0x530
[  329.230726][T12888]  ? __pfx_lock_release+0x10/0x10
[  329.230752][T12888]  ? __alloc_skb+0x28f/0x440
[  329.230767][T12888]  ? __pfx__copy_from_iter+0x10/0x10
[  329.230785][T12888]  ? __virt_addr_valid+0x183/0x530
[  329.230797][T12888]  ? __virt_addr_valid+0x183/0x530
[  329.230810][T12888]  ? __virt_addr_valid+0x45f/0x530
[  329.230824][T12888]  ? __phys_addr_symbol+0x2f/0x70
[  329.230837][T12888]  ? __check_object_size+0x47a/0x730
[  329.230862][T12888]  netlink_sendmsg+0x742/0xcb0
[  329.230895][T12888]  ? __pfx_netlink_sendmsg+0x10/0x10
[  329.230916][T12888]  ? aa_sock_msg_perm+0x91/0x160
[  329.230941][T12888]  ? __pfx_netlink_sendmsg+0x10/0x10
[  329.230958][T12888]  __sock_sendmsg+0x221/0x270
[  329.230982][T12888]  ____sys_sendmsg+0x53a/0x860
[  329.231004][T12888]  ? __pfx_____sys_sendmsg+0x10/0x10
[  329.231019][T12888]  ? __fget_files+0x2a/0x410
[  329.231043][T12888]  ? __fget_files+0x2a/0x410
[  329.231072][T12888]  __sys_sendmmsg+0x36a/0x720
[  329.231099][T12888]  ? __pfx___sys_sendmmsg+0x10/0x10
[  329.231126][T12888]  ? __pfx_lock_release+0x10/0x10
[  329.231145][T12888]  ? kstrtouint_from_user+0x128/0x190
[  329.231190][T12888]  ? ksys_write+0x22a/0x2b0
[  329.231206][T12888]  ? __pfx_lock_release+0x10/0x10
[  329.231228][T12888]  ? sb_end_write+0xe9/0x1c0
[  329.231248][T12888]  ? vfs_write+0x7fa/0xd10
[  329.231264][T12888]  ? __mutex_unlock_slowpath+0x227/0x800
[  329.231305][T12888]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  329.231329][T12888]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  329.231351][T12888]  ? do_syscall_64+0x100/0x230
[  329.231372][T12888]  __x64_sys_sendmmsg+0xa0/0xb0
[  329.231391][T12888]  do_syscall_64+0xf3/0x230
[  329.231409][T12888]  ? clear_bhb_loop+0x35/0x90
[  329.231434][T12888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.231454][T12888] RIP: 0033:0x7f6faa58d169
[  329.231471][T12888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.231482][T12888] RSP: 002b:00007f6fab39f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  329.231499][T12888] RAX: ffffffffffffffda RBX: 00007f6faa7a5fa0 RCX: 00007f6faa58d169
[  329.231511][T12888] RDX: 040000000000009f RSI: 00004000000002c0 RDI: 0000000000000004
[  329.231522][T12888] RBP: 00007f6fab39f090 R08: 0000000000000000 R09: 0000000000000000
[  329.231531][T12888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  329.231540][T12888] R13: 0000000000000000 R14: 00007f6faa7a5fa0 R15: 00007fffca4d9a88
[  329.231565][T12888]  </TASK>
[  329.561541][T12892] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (65535)
[  329.572259][T12892] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023
[  329.619540][T12897] __nla_validate_parse: 2 callbacks suppressed
[  329.619559][T12897] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2378'.
[  330.075270][T12922] xt_hashlimit: size too large, truncated to 1048576
[  330.161351][T12923] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2389'.
[  330.593155][T12938] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2391'.
[  331.194193][T12969] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2403'.
[  331.194698][T12970] gre0: left promiscuous mode
[  331.216047][T12970] netlink: 148 bytes leftover after parsing attributes in process `syz.2.2404'.
[  331.216446][T12969] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2403'.
[  331.226481][T12970] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  331.327341][T12974] FAULT_INJECTION: forcing a failure.
[  331.327341][T12974] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  331.343567][T12974] CPU: 1 UID: 0 PID: 12974 Comm: syz.4.2405 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  331.343592][T12974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  331.343601][T12974] Call Trace:
[  331.343608][T12974]  <TASK>
[  331.343615][T12974]  dump_stack_lvl+0x241/0x360
[  331.343638][T12974]  ? __pfx_dump_stack_lvl+0x10/0x10
[  331.343655][T12974]  ? __pfx__printk+0x10/0x10
[  331.343670][T12974]  ? __pfx_lock_release+0x10/0x10
[  331.343697][T12974]  should_fail_ex+0x40a/0x550
[  331.343721][T12974]  _copy_from_user+0x2d/0xb0
[  331.343741][T12974]  ____sys_sendmsg+0x30b/0x860
[  331.343764][T12974]  ? __pfx_____sys_sendmsg+0x10/0x10
[  331.343778][T12974]  ? __fget_files+0x2a/0x410
[  331.343802][T12974]  ? __fget_files+0x2a/0x410
[  331.343830][T12974]  __sys_sendmsg+0x269/0x350
[  331.343851][T12974]  ? __pfx___sys_sendmsg+0x10/0x10
[  331.343879][T12974]  ? do_sys_openat2+0x17a/0x1d0
[  331.343933][T12974]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  331.343955][T12974]  ? do_syscall_64+0x100/0x230
[  331.343976][T12974]  ? do_syscall_64+0xb6/0x230
[  331.343996][T12974]  do_syscall_64+0xf3/0x230
[  331.344012][T12974]  ? clear_bhb_loop+0x35/0x90
[  331.344034][T12974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.344052][T12974] RIP: 0033:0x7fe66cf8d169
[  331.344066][T12974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.344080][T12974] RSP: 002b:00007fe66dd0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  331.344098][T12974] RAX: ffffffffffffffda RBX: 00007fe66d1a5fa0 RCX: 00007fe66cf8d169
[  331.344109][T12974] RDX: 0000000000000000 RSI: 0000400000000600 RDI: 0000000000000005
[  331.344119][T12974] RBP: 00007fe66dd0b090 R08: 0000000000000000 R09: 0000000000000000
[  331.344129][T12974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  331.344138][T12974] R13: 0000000000000000 R14: 00007fe66d1a5fa0 R15: 00007ffedc66f018
[  331.344163][T12974]  </TASK>
[  331.816970][T12982] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2408'.
[  331.843193][T12982] nbd: illegal input index 16744192
[  332.042426][T12998] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2408'.
[  332.142826][T13001] gre0: entered promiscuous mode
[  332.150164][T13001] 1·: entered promiscuous mode
[  332.160719][T13001] 1·: left allmulticast mode
[  332.165700][T13001] hsr_slave_0: left allmulticast mode
[  332.171100][T13001] hsr_slave_1: left allmulticast mode
[  332.178879][T13001] macvlan0: entered promiscuous mode
[  332.184585][T13001] veth4: entered promiscuous mode
[  332.189758][T13001] veth5: entered promiscuous mode
[  332.197955][T13001] veth6: entered promiscuous mode
[  332.203202][T13001] veth7: entered promiscuous mode
[  332.208377][T13001] syzkaller0: entered promiscuous mode
[  332.214279][T13001] geneve2: entered promiscuous mode
[  332.220265][T13003] team0: left promiscuous mode
[  332.225627][T13003] team_slave_0: left promiscuous mode
[  332.231353][T13003] team_slave_1: left promiscuous mode
[  332.249734][T12982] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2408'.
[  332.671492][T13021] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2419'.
[  332.729694][T13022] netlink: 'syz.4.2418': attribute type 1 has an invalid length.
[  332.990296][T13037] xt_CT: No such helper "snmp"
[  333.377719][T13071] FAULT_INJECTION: forcing a failure.
[  333.377719][T13071] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  333.400600][T13071] CPU: 1 UID: 0 PID: 13071 Comm: syz.2.2432 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  333.400625][T13071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  333.400635][T13071] Call Trace:
[  333.400641][T13071]  <TASK>
[  333.400647][T13071]  dump_stack_lvl+0x241/0x360
[  333.400672][T13071]  ? __pfx_dump_stack_lvl+0x10/0x10
[  333.400688][T13071]  ? __pfx__printk+0x10/0x10
[  333.400705][T13071]  ? __pfx_lock_release+0x10/0x10
[  333.400733][T13071]  should_fail_ex+0x40a/0x550
[  333.400757][T13071]  _copy_from_user+0x2d/0xb0
[  333.400777][T13071]  copy_msghdr_from_user+0xae/0x680
[  333.400797][T13071]  ? __pfx___might_resched+0x10/0x10
[  333.400819][T13071]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  333.400844][T13071]  ? do_recvmmsg+0x44e/0xab0
[  333.400861][T13071]  ? __might_fault+0xaa/0x120
[  333.400881][T13071]  do_recvmmsg+0x3bd/0xab0
[  333.400909][T13071]  ? __pfx_do_recvmmsg+0x10/0x10
[  333.400946][T13071]  ? ksys_write+0x22a/0x2b0
[  333.400963][T13071]  ? __pfx_lock_release+0x10/0x10
[  333.400991][T13071]  ? sb_end_write+0xe9/0x1c0
[  333.401012][T13071]  ? vfs_write+0x7fa/0xd10
[  333.401030][T13071]  ? __mutex_unlock_slowpath+0x227/0x800
[  333.401057][T13071]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  333.401075][T13071]  ? __fget_files+0x2a/0x410
[  333.401111][T13071]  __x64_sys_recvmmsg+0x199/0x250
[  333.401131][T13071]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  333.401151][T13071]  ? do_syscall_64+0x100/0x230
[  333.401172][T13071]  ? do_syscall_64+0xb6/0x230
[  333.401194][T13071]  do_syscall_64+0xf3/0x230
[  333.401211][T13071]  ? clear_bhb_loop+0x35/0x90
[  333.401235][T13071]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.401255][T13071] RIP: 0033:0x7ff21718d169
[  333.401270][T13071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  333.401284][T13071] RSP: 002b:00007ff21807d038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  333.401303][T13071] RAX: ffffffffffffffda RBX: 00007ff2173a5fa0 RCX: 00007ff21718d169
[  333.401315][T13071] RDX: 03ffffffffffff67 RSI: 0000400000002440 RDI: 0000000000000008
[  333.401327][T13071] RBP: 00007ff21807d090 R08: 0000000000000000 R09: 0000000000000000
[  333.401337][T13071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  333.401347][T13071] R13: 0000000000000000 R14: 00007ff2173a5fa0 R15: 00007ffe0aab78f8
[  333.401373][T13071]  </TASK>
[  333.927762][T13088] netlink: 'syz.1.2439': attribute type 10 has an invalid length.
[  333.952275][T13088] team0: Port device wlan1 added
[  333.959726][T13087] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  334.611978][T13112] pimreg: entered allmulticast mode
[  334.621761][T13112] pimreg: left allmulticast mode
[  334.676931][T13117] netlink: 'syz.0.2447': attribute type 1 has an invalid length.
[  334.686688][T13116] __nla_validate_parse: 3 callbacks suppressed
[  334.686705][T13116] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2449'.
[  334.711530][T13117] bond4: entered promiscuous mode
[  334.717508][T13117] bond4: entered allmulticast mode
[  334.734749][T13112] batadv0: entered promiscuous mode
[  334.744599][T13112] 8021q: adding VLAN 0 to HW filter on device batadv0
[  334.760062][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  334.775364][T13112] bond4: (slave batadv0): making interface the new active one
[  334.793428][T13112] batadv0: entered allmulticast mode
[  334.801476][T13112] bond4: (slave batadv0): Enslaving as an active interface with an up link
[  334.836866][T13121] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2450'.
[  334.989680][T13124] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2451'.
[  335.074653][T13131] (unnamed net_device) (uninitialized): (slave team0): Device is not bonding slave
[  335.098251][T13131] (unnamed net_device) (uninitialized): option active_slave: invalid value (team0)
[  335.290625][T13140] lo: left promiscuous mode
[  335.298442][T13140] tunl0: left promiscuous mode
[  335.306235][T13140] gre0: left promiscuous mode
[  335.312412][T13140] gretap0: left promiscuous mode
[  335.320161][T13140] erspan0: left promiscuous mode
[  335.329270][T13140] ip_vti0: left promiscuous mode
[  335.337069][T13140] ip6_vti0: left promiscuous mode
[  335.343518][T13140] sit0: left promiscuous mode
[  335.361582][T13140] ip6tnl0: left promiscuous mode
[  335.372399][T13140] ip6gre0: left promiscuous mode
[  335.435052][T13140] bond0: left promiscuous mode
[  335.465568][T13145] netlink: 'syz.1.2460': attribute type 21 has an invalid length.
[  335.474279][T13145] netlink: 128 bytes leftover after parsing attributes in process `syz.1.2460'.
[  335.484528][T13140] team0: left promiscuous mode
[  335.489775][T13140] dummy0: left promiscuous mode
[  335.495035][T13140] nlmon0: left promiscuous mode
[  335.500056][T13140] caif0: left promiscuous mode
[  335.505398][T13140] vxcan0: left promiscuous mode
[  335.510469][T13140] vxcan1: left promiscuous mode
[  335.516882][T13140] veth0: left promiscuous mode
[  335.521819][T13140] veth1: left promiscuous mode
[  335.526922][T13140] wg0: left promiscuous mode
[  335.531698][T13140] wg1: left promiscuous mode
[  335.537092][T13140] wg2: left promiscuous mode
[  335.541867][T13140] veth0_to_bridge: left promiscuous mode
[  335.547822][T13140] bridge_slave_0: left promiscuous mode
[  335.553646][T13140] veth0_to_bond: left promiscuous mode
[  335.559280][T13140] bond_slave_0: left promiscuous mode
[  335.566813][T13140] veth1_to_bond: left promiscuous mode
[  335.572895][T13140] bond_slave_1: left promiscuous mode
[  335.578446][T13140] veth0_to_team: left promiscuous mode
[  335.584441][T13140] team_slave_0: left promiscuous mode
[  335.589999][T13140] veth1_to_team: left promiscuous mode
[  335.596060][T13140] team_slave_1: left promiscuous mode
[  335.601702][T13140] veth0_to_batadv: left promiscuous mode
[  335.607761][T13140] veth1_to_batadv: left promiscuous mode
[  335.613774][T13140] batadv_slave_1: left promiscuous mode
[  335.619572][T13140] xfrm0: left promiscuous mode
[  335.624729][T13140] veth0_to_hsr: left promiscuous mode
[  335.630434][T13140] veth1_to_hsr: left promiscuous mode
[  335.636241][T13140] 1·: left promiscuous mode
[  335.640908][T13140] veth1_virt_wifi: left promiscuous mode
[  335.646782][T13140] veth0_virt_wifi: left promiscuous mode
[  335.652984][T13140] net veth1_virt_wifi virt_wifi0: left promiscuous mode
[  335.660661][T13140] vlan0: left promiscuous mode
[  335.665720][T13140] vlan1: left promiscuous mode
[  335.671226][T13140] macvlan0: left promiscuous mode
[  335.676659][T13140] macvlan1: left promiscuous mode
[  335.681887][T13140] ipvlan0: left promiscuous mode
[  335.687421][T13140] ipvlan1: left promiscuous mode
[  335.693104][T13140] macvtap0: left promiscuous mode
[  335.698426][T13140] macsec0: left promiscuous mode
[  335.703636][T13140] geneve0: left promiscuous mode
[  335.708761][T13140] geneve1: left promiscuous mode
[  335.714502][T13140] netdevsim netdevsim2 netdevsim0: left promiscuous mode
[  335.721801][T13140] netdevsim netdevsim2 netdevsim1: left promiscuous mode
[  335.730267][T13140] netdevsim netdevsim2 netdevsim2: left promiscuous mode
[  335.738023][T13140] netdevsim netdevsim2 netdevsim3: left promiscuous mode
[  335.745706][T13140] mac80211_hwsim hwsim2 wlan0: left promiscuous mode
[  335.752688][T13140] mac80211_hwsim hwsim3 wlan1: left promiscuous mode
[  335.759516][T13140] mac80211_hwsim hwsim10 wlan2: left promiscuous mode
[  335.766627][T13140] veth2: left promiscuous mode
[  335.771570][T13140] veth3: left promiscuous mode
[  335.776751][T13140] ip6gretap1: left promiscuous mode
[  335.782073][T13140] batadv1: left promiscuous mode
[  335.787377][T13140] mac80211_hwsim hwsim14 wlan3: left promiscuous mode
[  335.800875][T13140] hsr0: left promiscuous mode
[  335.841214][T13140] vti0: left promiscuous mode
[  335.846437][T13140] macsec1: left promiscuous mode
[  335.851620][T13140] bridge1: left promiscuous mode
[  335.857105][T13140] vlan2: left promiscuous mode
[  335.862005][T13140] mac80211_hwsim hwsim17 wlan4: left promiscuous mode
[  335.869389][T13140] bond1: left promiscuous mode
[  335.876749][T13140] bond2: left promiscuous mode
[  335.881647][T13140] gretap1: left promiscuous mode
[  335.886940][T13140] veth4: left promiscuous mode
[  335.892087][T13140] veth5: left promiscuous mode
[  335.897258][T13140] veth6: left promiscuous mode
[  335.902193][T13140] veth7: left promiscuous mode
[  335.907174][T13140] syzkaller0: left promiscuous mode
[  335.912530][T13140] geneve2: left promiscuous mode
[  335.918017][T13145] netlink: 'syz.1.2460': attribute type 5 has an invalid length.
[  335.926040][T13145] netlink: 'syz.1.2460': attribute type 6 has an invalid length.
[  335.933897][T13145] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2460'.
[  335.948001][T13154] FAULT_INJECTION: forcing a failure.
[  335.948001][T13154] name failslab, interval 1, probability 0, space 0, times 0
[  335.964367][T13154] CPU: 1 UID: 0 PID: 13154 Comm: syz.4.2463 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  335.964396][T13154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  335.964407][T13154] Call Trace:
[  335.964414][T13154]  <TASK>
[  335.964421][T13154]  dump_stack_lvl+0x241/0x360
[  335.964448][T13154]  ? __pfx_dump_stack_lvl+0x10/0x10
[  335.964465][T13154]  ? __pfx__printk+0x10/0x10
[  335.964483][T13154]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  335.964513][T13154]  ? __pfx___might_resched+0x10/0x10
[  335.964538][T13154]  should_fail_ex+0x40a/0x550
[  335.964564][T13154]  should_failslab+0xac/0x100
[  335.964585][T13154]  kmem_cache_alloc_node_noprof+0x77/0x380
[  335.964605][T13154]  ? __alloc_skb+0x1c3/0x440
[  335.964624][T13154]  __alloc_skb+0x1c3/0x440
[  335.964644][T13154]  ? __pfx___alloc_skb+0x10/0x10
[  335.964665][T13154]  ? netlink_ack_tlv_len+0x6e/0x200
[  335.964686][T13154]  netlink_ack+0x145/0xa60
[  335.964704][T13154]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  335.964738][T13154]  netlink_rcv_skb+0x294/0x480
[  335.964759][T13154]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  335.964781][T13154]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  335.964820][T13154]  ? netlink_deliver_tap+0x2e/0x1b0
[  335.964842][T13154]  netlink_unicast+0x7f6/0x990
[  335.964868][T13154]  ? __pfx_netlink_unicast+0x10/0x10
[  335.964885][T13154]  ? __virt_addr_valid+0x45f/0x530
[  335.964901][T13154]  ? __phys_addr_symbol+0x2f/0x70
[  335.964915][T13154]  ? __check_object_size+0x47a/0x730
[  335.964938][T13154]  netlink_sendmsg+0x8de/0xcb0
[  335.964969][T13154]  ? __pfx_netlink_sendmsg+0x10/0x10
[  335.964993][T13154]  ? aa_sock_msg_perm+0x91/0x160
[  335.965019][T13154]  ? __pfx_netlink_sendmsg+0x10/0x10
[  335.965038][T13154]  __sock_sendmsg+0x221/0x270
[  335.965061][T13154]  ____sys_sendmsg+0x53a/0x860
[  335.965085][T13154]  ? __pfx_____sys_sendmsg+0x10/0x10
[  335.965099][T13154]  ? __fget_files+0x2a/0x410
[  335.965122][T13154]  ? __fget_files+0x2a/0x410
[  335.965150][T13154]  __sys_sendmmsg+0x36a/0x720
[  335.965177][T13154]  ? __pfx___sys_sendmmsg+0x10/0x10
[  335.965204][T13154]  ? __pfx_lock_release+0x10/0x10
[  335.965227][T13154]  ? kstrtouint_from_user+0x128/0x190
[  335.965264][T13154]  ? ksys_write+0x22a/0x2b0
[  335.965281][T13154]  ? __pfx_lock_release+0x10/0x10
[  335.965308][T13154]  ? sb_end_write+0xe9/0x1c0
[  335.965329][T13154]  ? vfs_write+0x7fa/0xd10
[  335.965348][T13154]  ? __mutex_unlock_slowpath+0x227/0x800
[  335.965393][T13154]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  335.965419][T13154]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  335.965443][T13154]  ? do_syscall_64+0x100/0x230
[  335.965465][T13154]  __x64_sys_sendmmsg+0xa0/0xb0
[  335.965485][T13154]  do_syscall_64+0xf3/0x230
[  335.965508][T13154]  ? clear_bhb_loop+0x35/0x90
[  335.965532][T13154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.965553][T13154] RIP: 0033:0x7fe66cf8d169
[  335.965567][T13154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.965581][T13154] RSP: 002b:00007fe66dd0b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  335.965600][T13154] RAX: ffffffffffffffda RBX: 00007fe66d1a5fa0 RCX: 00007fe66cf8d169
[  335.965612][T13154] RDX: 040000000000009f RSI: 00004000000002c0 RDI: 0000000000000004
[  335.965623][T13154] RBP: 00007fe66dd0b090 R08: 0000000000000000 R09: 0000000000000000
[  335.965634][T13154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  335.965644][T13154] R13: 0000000000000000 R14: 00007fe66d1a5fa0 R15: 00007ffedc66f018
[  335.965669][T13154]  </TASK>
[  336.456904][T13160] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2465'.
[  336.467416][T13160] 0·: renamed from 
71·
[  336.486056][T13160] 0·: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  336.543181][T13168] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2468'.
[  336.562478][T13160] 0·: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  336.619190][T13173] IPVS: ip_vs_add_dest(): lower threshold is higher than upper threshold
[  336.626352][T13160] 0·: entered allmulticast mode
[  336.667459][T13160] hsr_slave_0: entered allmulticast mode
[  336.684087][T13160] hsr_slave_1: entered allmulticast mode
[  336.691454][T13160] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  337.024369][T13191] lo speed is unknown, defaulting to 1000
[  337.067921][T13197] FAULT_INJECTION: forcing a failure.
[  337.067921][T13197] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  337.112673][T13197] CPU: 0 UID: 0 PID: 13197 Comm: syz.1.2477 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  337.112703][T13197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  337.112714][T13197] Call Trace:
[  337.112720][T13197]  <TASK>
[  337.112727][T13197]  dump_stack_lvl+0x241/0x360
[  337.112753][T13197]  ? __pfx_dump_stack_lvl+0x10/0x10
[  337.112771][T13197]  ? __pfx__printk+0x10/0x10
[  337.112790][T13197]  ? __pfx_lock_release+0x10/0x10
[  337.112819][T13197]  should_fail_ex+0x40a/0x550
[  337.112846][T13197]  _copy_from_user+0x2d/0xb0
[  337.112868][T13197]  copy_msghdr_from_user+0xae/0x680
[  337.112889][T13197]  ? __lock_acquire+0x1397/0x2100
[  337.112915][T13197]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  337.112934][T13197]  ? __fget_files+0x2a/0x410
[  337.112958][T13197]  ? __fget_files+0x2a/0x410
[  337.112988][T13197]  do_recvmmsg+0x3bd/0xab0
[  337.113015][T13197]  ? __pfx_do_recvmmsg+0x10/0x10
[  337.113050][T13197]  ? ksys_write+0x22a/0x2b0
[  337.113068][T13197]  ? __pfx_lock_release+0x10/0x10
[  337.113095][T13197]  ? sb_end_write+0xe9/0x1c0
[  337.113117][T13197]  ? vfs_write+0x7fa/0xd10
[  337.113136][T13197]  ? __mutex_unlock_slowpath+0x227/0x800
[  337.113171][T13197]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  337.113189][T13197]  ? __fget_files+0x2a/0x410
[  337.113224][T13197]  __x64_sys_recvmmsg+0x199/0x250
[  337.113245][T13197]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  337.113265][T13197]  ? do_syscall_64+0x100/0x230
[  337.113286][T13197]  ? do_syscall_64+0xb6/0x230
[  337.113307][T13197]  do_syscall_64+0xf3/0x230
[  337.113325][T13197]  ? clear_bhb_loop+0x35/0x90
[  337.113349][T13197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.113369][T13197] RIP: 0033:0x7fb88f18d169
[  337.113383][T13197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  337.113396][T13197] RSP: 002b:00007fb890076038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  337.113414][T13197] RAX: ffffffffffffffda RBX: 00007fb88f3a5fa0 RCX: 00007fb88f18d169
[  337.113426][T13197] RDX: 0400000000000284 RSI: 0000400000000040 RDI: 0000000000000003
[  337.113437][T13197] RBP: 00007fb890076090 R08: 0000000000000000 R09: 0000000000000000
[  337.113448][T13197] R10: 000000000000002b R11: 0000000000000246 R12: 0000000000000001
[  337.113458][T13197] R13: 0000000000000000 R14: 00007fb88f3a5fa0 R15: 00007ffe83aebfd8
[  337.113484][T13197]  </TASK>
[  337.227791][T13200] netlink: 'syz.4.2479': attribute type 1 has an invalid length.
[  337.409265][T13206] netlink: 3 bytes leftover after parsing attributes in process `syz.4.2479'.
[  337.445562][T13200] bond2: entered promiscuous mode
[  337.450934][T13200] 8021q: adding VLAN 0 to HW filter on device bond2
[  337.515203][T13206] batadv0: entered promiscuous mode
[  337.534097][T13206] batadv0: entered allmulticast mode
[  337.549530][T13206] 8021q: adding VLAN 0 to HW filter on device batadv0
[  337.559758][T13206] bond2: (slave batadv0): making interface the new active one
[  337.569772][T13206] bond2: (slave batadv0): Enslaving as an active interface with an up link
[  337.622773][T13206] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2479'.
[  337.992114][T13221] netlink: 9 bytes leftover after parsing attributes in process `syz.4.2484'.
[  338.001714][T13221] 1·: renamed from 
70·
[  338.015197][T13221] 1·: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  338.046117][T13221] 1·: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  338.066768][T13221] 1·: entered allmulticast mode
[  338.076871][T13221] hsr_slave_0: entered allmulticast mode
[  338.083150][T13221] hsr_slave_1: entered allmulticast mode
[  338.094471][T13221] A link change request failed with some changes committed already. Interface 
71· may have been left with an inconsistent configuration, please check.
[  338.263289][T13237] xt_cgroup: invalid path, errno=-2
[  338.273752][T13235] team0: entered promiscuous mode
[  338.278834][T13235] team_slave_0: entered promiscuous mode
[  338.322832][T13235] team_slave_1: entered promiscuous mode
[  338.332680][T13235] team0: left promiscuous mode
[  338.337540][T13235] team_slave_0: left promiscuous mode
[  338.372891][T13235] team_slave_1: left promiscuous mode
[  338.412424][T13239] lo speed is unknown, defaulting to 1000
[  338.720131][T13254] 1·: left allmulticast mode
[  338.732450][T13254] hsr_slave_0: left allmulticast mode
[  338.738484][T13254] hsr_slave_1: left allmulticast mode
[  338.773591][T13255] nbd: device at index 64 is going down
[  338.854958][T13254] bond2: left promiscuous mode
[  338.864227][T13254] batadv0: left promiscuous mode
[  338.869989][T13254] batadv0: left allmulticast mode
[  339.254828][T13270] 0·: renamed from 
71·
[  339.267190][T13270] 0·: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  339.288503][T13277] openvswitch: netlink: Key 6 has unexpected len 4 expected 2
[  339.297349][T13270] 0·: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  339.332872][T13270] 0·: entered allmulticast mode
[  339.343821][T13270] hsr_slave_0: entered allmulticast mode
[  339.353418][T13270] hsr_slave_1: entered allmulticast mode
[  339.403574][T13270] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  339.728072][T13277] lo speed is unknown, defaulting to 1000
[  339.931686][T13300] xt_cgroup: invalid path, errno=-2
[  340.118549][T13306] ipvlan2: entered promiscuous mode
[  340.362331][T13317] __nla_validate_parse: 9 callbacks suppressed
[  340.362350][T13317] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2518'.
[  340.378675][T13317] openvswitch: netlink: Flow actions attr not present in new flow.
[  340.395285][T13317] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2518'.
[  340.528150][T13317] bond2: (slave batadv0): Releasing active interface
[  340.571631][T13328] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2520'.
[  340.863743][T13337] netlink: 164 bytes leftover after parsing attributes in process `syz.4.2523'.
[  341.004727][T13344] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2525'.
[  341.113556][T13348] FAULT_INJECTION: forcing a failure.
[  341.113556][T13348] name failslab, interval 1, probability 0, space 0, times 0
[  341.131090][T13348] CPU: 0 UID: 0 PID: 13348 Comm: syz.4.2527 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  341.131117][T13348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  341.131128][T13348] Call Trace:
[  341.131134][T13348]  <TASK>
[  341.131141][T13348]  dump_stack_lvl+0x241/0x360
[  341.131169][T13348]  ? __pfx_dump_stack_lvl+0x10/0x10
[  341.131187][T13348]  ? __pfx__printk+0x10/0x10
[  341.131205][T13348]  ? __kmalloc_cache_noprof+0x48/0x390
[  341.131227][T13348]  ? __pfx___might_resched+0x10/0x10
[  341.131253][T13348]  should_fail_ex+0x40a/0x550
[  341.131281][T13348]  should_failslab+0xac/0x100
[  341.131301][T13348]  __kmalloc_cache_noprof+0x70/0x390
[  341.131318][T13348]  ? rtnl_newlink+0x13e/0x1d90
[  341.131343][T13348]  rtnl_newlink+0x13e/0x1d90
[  341.131360][T13348]  ? __lock_acquire+0x1397/0x2100
[  341.131386][T13348]  ? __lock_acquire+0x1397/0x2100
[  341.131406][T13348]  ? __pfx_rtnl_newlink+0x10/0x10
[  341.131425][T13348]  ? __pfx_validate_chain+0x10/0x10
[  341.131454][T13348]  ? validate_chain+0x11e/0x5920
[  341.131470][T13348]  ? __pfx_lock_acquire+0x10/0x10
[  341.131494][T13348]  ? __pfx_lock_release+0x10/0x10
[  341.131515][T13348]  ? __pfx_validate_chain+0x10/0x10
[  341.131532][T13348]  ? mark_lock+0x9a/0x360
[  341.131549][T13348]  ? __lock_acquire+0x1397/0x2100
[  341.131591][T13348]  ? __pfx_lock_release+0x10/0x10
[  341.131621][T13348]  ? __pfx_rtnl_newlink+0x10/0x10
[  341.131642][T13348]  rtnetlink_rcv_msg+0x791/0xcf0
[  341.131660][T13348]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  341.131678][T13348]  ? __lock_acquire+0x1397/0x2100
[  341.131699][T13348]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  341.131749][T13348]  netlink_rcv_skb+0x206/0x480
[  341.131772][T13348]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  341.131795][T13348]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  341.131836][T13348]  ? netlink_deliver_tap+0x2e/0x1b0
[  341.131858][T13348]  netlink_unicast+0x7f6/0x990
[  341.131883][T13348]  ? __pfx_netlink_unicast+0x10/0x10
[  341.131899][T13348]  ? __virt_addr_valid+0x45f/0x530
[  341.131916][T13348]  ? __phys_addr_symbol+0x2f/0x70
[  341.131931][T13348]  ? __check_object_size+0x47a/0x730
[  341.131956][T13348]  netlink_sendmsg+0x8de/0xcb0
[  341.131988][T13348]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.132012][T13348]  ? aa_sock_msg_perm+0x91/0x160
[  341.132041][T13348]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.132061][T13348]  __sock_sendmsg+0x221/0x270
[  341.132085][T13348]  ____sys_sendmsg+0x53a/0x860
[  341.132110][T13348]  ? __pfx_____sys_sendmsg+0x10/0x10
[  341.132126][T13348]  ? __fget_files+0x2a/0x410
[  341.132151][T13348]  ? __fget_files+0x2a/0x410
[  341.132181][T13348]  __sys_sendmsg+0x269/0x350
[  341.132203][T13348]  ? __pfx___sys_sendmsg+0x10/0x10
[  341.132289][T13348]  ? do_sys_openat2+0x17a/0x1d0
[  341.132338][T13348]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  341.132362][T13348]  ? do_syscall_64+0x100/0x230
[  341.132385][T13348]  ? do_syscall_64+0xb6/0x230
[  341.132406][T13348]  do_syscall_64+0xf3/0x230
[  341.132424][T13348]  ? clear_bhb_loop+0x35/0x90
[  341.132449][T13348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.132470][T13348] RIP: 0033:0x7fe66cf8d169
[  341.132486][T13348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.132500][T13348] RSP: 002b:00007fe66dd0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  341.132520][T13348] RAX: ffffffffffffffda RBX: 00007fe66d1a5fa0 RCX: 00007fe66cf8d169
[  341.132533][T13348] RDX: 0000000000000000 RSI: 0000400000000240 RDI: 0000000000000004
[  341.132544][T13348] RBP: 00007fe66dd0b090 R08: 0000000000000000 R09: 0000000000000000
[  341.132557][T13348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  341.132565][T13348] R13: 0000000000000000 R14: 00007fe66d1a5fa0 R15: 00007ffedc66f018
[  341.132588][T13348]  </TASK>
[  341.651207][T13350] netlink: 'syz.1.2526': attribute type 1 has an invalid length.
[  341.659989][T13350] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2526'.
[  341.876497][T13371] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2532'.
[  341.976341][T13376] (unnamed net_device) (uninitialized): (slave team0): Device is not bonding slave
[  341.990702][T13376] (unnamed net_device) (uninitialized): option active_slave: invalid value (team0)
[  342.014488][T13381] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  342.029933][T13378] pimreg: entered allmulticast mode
[  342.057751][T13377] pimreg: left allmulticast mode
[  342.431562][T13407] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2542'.
[  342.479797][T13407] netlink: 'syz.0.2542': attribute type 7 has an invalid length.
[  342.513040][T13407] netlink: 'syz.0.2542': attribute type 8 has an invalid length.
[  342.531371][T13396] netlink: 'syz.0.2542': attribute type 10 has an invalid length.
[  342.562420][T13407] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2542'.
[  342.665227][T13418] team0: Device gtp0 is of different type
[  342.702408][T13415] lo speed is unknown, defaulting to 1000
[  342.772061][T13424] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2551'.
[  343.389745][T13446] FAULT_INJECTION: forcing a failure.
[  343.389745][T13446] name failslab, interval 1, probability 0, space 0, times 0
[  343.407952][T13446] CPU: 1 UID: 0 PID: 13446 Comm: syz.4.2560 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  343.407982][T13446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  343.407992][T13446] Call Trace:
[  343.407998][T13446]  <TASK>
[  343.408005][T13446]  dump_stack_lvl+0x241/0x360
[  343.408031][T13446]  ? __pfx_dump_stack_lvl+0x10/0x10
[  343.408050][T13446]  ? __pfx__printk+0x10/0x10
[  343.408084][T13446]  should_fail_ex+0x40a/0x550
[  343.408112][T13446]  should_failslab+0xac/0x100
[  343.408135][T13446]  __kmalloc_cache_noprof+0x70/0x390
[  343.408156][T13446]  ? sctp_add_bind_addr+0x89/0x3a0
[  343.408173][T13446]  ? __pfx__get_random_bytes+0x10/0x10
[  343.408196][T13446]  sctp_add_bind_addr+0x89/0x3a0
[  343.408219][T13446]  sctp_copy_local_addr_list+0x311/0x500
[  343.408240][T13446]  ? sctp_copy_local_addr_list+0xab/0x500
[  343.408266][T13446]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  343.408287][T13446]  ? sctp_v6_is_any+0x60/0x70
[  343.408308][T13446]  ? sctp_copy_one_addr+0x94/0x360
[  343.408331][T13446]  sctp_bind_addr_copy+0xad/0x3b0
[  343.408360][T13446]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  343.408391][T13446]  sctp_connect_new_asoc+0x2f3/0x6c0
[  343.408415][T13446]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  343.408432][T13446]  ? sctp_sendmsg+0xf1a/0x35d0
[  343.408458][T13446]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  343.408476][T13446]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  343.408500][T13446]  sctp_sendmsg+0x1f64/0x35d0
[  343.408546][T13446]  ? __pfx_sctp_sendmsg+0x10/0x10
[  343.408572][T13446]  ? aa_sk_perm+0x96d/0xab0
[  343.408608][T13446]  ? inet_sendmsg+0x330/0x390
[  343.408630][T13446]  __sock_sendmsg+0x1a6/0x270
[  343.408654][T13446]  __sys_sendto+0x363/0x4c0
[  343.408681][T13446]  ? __pfx___sys_sendto+0x10/0x10
[  343.408718][T13446]  ? __fget_files+0x2a/0x410
[  343.408758][T13446]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  343.408784][T13446]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  343.408812][T13446]  __x64_sys_sendto+0xde/0x100
[  343.408831][T13446]  do_syscall_64+0xf3/0x230
[  343.408851][T13446]  ? clear_bhb_loop+0x35/0x90
[  343.408875][T13446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.408895][T13446] RIP: 0033:0x7fe66cf8d169
[  343.408910][T13446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.408924][T13446] RSP: 002b:00007fe66dd0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  343.408943][T13446] RAX: ffffffffffffffda RBX: 00007fe66d1a5fa0 RCX: 00007fe66cf8d169
[  343.408955][T13446] RDX: 0000000000029fbc RSI: 00004000000002c0 RDI: 0000000000000006
[  343.408966][T13446] RBP: 00007fe66dd0b090 R08: 0000400000000140 R09: 000000000000001c
[  343.408983][T13446] R10: 000000000400c0d4 R11: 0000000000000246 R12: 0000000000000001
[  343.408993][T13446] R13: 0000000000000000 R14: 00007fe66d1a5fa0 R15: 00007ffedc66f018
[  343.409022][T13446]  </TASK>
[  343.846399][T13460] FAULT_INJECTION: forcing a failure.
[  343.846399][T13460] name failslab, interval 1, probability 0, space 0, times 0
[  343.860269][T13460] CPU: 0 UID: 0 PID: 13460 Comm: syz.4.2565 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  343.860293][T13460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  343.860303][T13460] Call Trace:
[  343.860309][T13460]  <TASK>
[  343.860316][T13460]  dump_stack_lvl+0x241/0x360
[  343.860341][T13460]  ? __pfx_dump_stack_lvl+0x10/0x10
[  343.860358][T13460]  ? __pfx__printk+0x10/0x10
[  343.860375][T13460]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  343.860396][T13460]  ? __pfx___might_resched+0x10/0x10
[  343.860418][T13460]  should_fail_ex+0x40a/0x550
[  343.860441][T13460]  should_failslab+0xac/0x100
[  343.860463][T13460]  kmem_cache_alloc_node_noprof+0x77/0x380
[  343.860481][T13460]  ? __alloc_skb+0x1c3/0x440
[  343.860499][T13460]  __alloc_skb+0x1c3/0x440
[  343.860511][T13460]  ? __pfx___alloc_skb+0x10/0x10
[  343.860519][T13460]  ? __pfx_rtnl_newlink+0x10/0x10
[  343.860535][T13460]  ? netlink_ack_tlv_len+0x6e/0x200
[  343.860550][T13460]  netlink_ack+0x145/0xa60
[  343.860561][T13460]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  343.860582][T13460]  netlink_rcv_skb+0x294/0x480
[  343.860595][T13460]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  343.860609][T13460]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  343.860632][T13460]  ? netlink_deliver_tap+0x2e/0x1b0
[  343.860646][T13460]  netlink_unicast+0x7f6/0x990
[  343.860662][T13460]  ? __pfx_netlink_unicast+0x10/0x10
[  343.860672][T13460]  ? __virt_addr_valid+0x45f/0x530
[  343.860682][T13460]  ? __phys_addr_symbol+0x2f/0x70
[  343.860697][T13460]  ? __check_object_size+0x47a/0x730
[  343.860713][T13460]  netlink_sendmsg+0x8de/0xcb0
[  343.860731][T13460]  ? __pfx_netlink_sendmsg+0x10/0x10
[  343.860747][T13460]  ? aa_sock_msg_perm+0x91/0x160
[  343.860765][T13460]  ? __pfx_netlink_sendmsg+0x10/0x10
[  343.860777][T13460]  __sock_sendmsg+0x221/0x270
[  343.860792][T13460]  ____sys_sendmsg+0x53a/0x860
[  343.860806][T13460]  ? __pfx_____sys_sendmsg+0x10/0x10
[  343.860815][T13460]  ? __fget_files+0x2a/0x410
[  343.860830][T13460]  ? __fget_files+0x2a/0x410
[  343.860847][T13460]  __sys_sendmsg+0x269/0x350
[  343.860860][T13460]  ? __pfx___sys_sendmsg+0x10/0x10
[  343.860876][T13460]  ? do_sys_openat2+0x17a/0x1d0
[  343.860902][T13460]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  343.860918][T13460]  ? do_syscall_64+0x100/0x230
[  343.860931][T13460]  ? do_syscall_64+0xb6/0x230
[  343.860944][T13460]  do_syscall_64+0xf3/0x230
[  343.860955][T13460]  ? clear_bhb_loop+0x35/0x90
[  343.860970][T13460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.860982][T13460] RIP: 0033:0x7fe66cf8d169
[  343.860992][T13460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.861000][T13460] RSP: 002b:00007fe66dd0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  343.861011][T13460] RAX: ffffffffffffffda RBX: 00007fe66d1a5fa0 RCX: 00007fe66cf8d169
[  343.861018][T13460] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000003
[  343.861024][T13460] RBP: 00007fe66dd0b090 R08: 0000000000000000 R09: 0000000000000000
[  343.861030][T13460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  343.861035][T13460] R13: 0000000000000000 R14: 00007fe66d1a5fa0 R15: 00007ffedc66f018
[  343.861049][T13460]  </TASK>
[  343.861962][T13457] bridge_slave_1 (unregistering): left allmulticast mode
[  344.199045][T13457] bridge_slave_1 (unregistering): left promiscuous mode
[  344.206369][T13457] bridge0: port 2(bridge_slave_1) entered disabled state
[  344.388599][T13473] openvswitch: netlink: Key 6 has unexpected len 4 expected 2
[  344.535982][T13475] lo speed is unknown, defaulting to 1000
[  345.006669][T13502] ip6gretap0: entered promiscuous mode
[  345.024227][T13502] batadv_slave_0: entered promiscuous mode
[  345.030703][T13502] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  345.042717][T13502] Cannot create hsr debugfs directory
[  345.416932][T13520] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  345.506867][T13525] FAULT_INJECTION: forcing a failure.
[  345.506867][T13525] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  345.520601][T13525] CPU: 0 UID: 0 PID: 13525 Comm: syz.1.2585 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  345.520625][T13525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  345.520636][T13525] Call Trace:
[  345.520642][T13525]  <TASK>
[  345.520650][T13525]  dump_stack_lvl+0x241/0x360
[  345.520675][T13525]  ? __pfx_dump_stack_lvl+0x10/0x10
[  345.520692][T13525]  ? __pfx__printk+0x10/0x10
[  345.520711][T13525]  ? __pfx_lock_release+0x10/0x10
[  345.520741][T13525]  should_fail_ex+0x40a/0x550
[  345.520768][T13525]  _copy_from_user+0x2d/0xb0
[  345.520789][T13525]  copy_msghdr_from_user+0xae/0x680
[  345.520816][T13525]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  345.520835][T13525]  ? __fget_files+0x2a/0x410
[  345.520859][T13525]  ? __fget_files+0x2a/0x410
[  345.520889][T13525]  __sys_recvmsg+0x200/0x390
[  345.520911][T13525]  ? __pfx___sys_recvmsg+0x10/0x10
[  345.520941][T13525]  ? __fget_files+0x2a/0x410
[  345.520975][T13525]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  345.520998][T13525]  ? do_syscall_64+0x100/0x230
[  345.521021][T13525]  ? do_syscall_64+0xb6/0x230
[  345.521041][T13525]  do_syscall_64+0xf3/0x230
[  345.521059][T13525]  ? clear_bhb_loop+0x35/0x90
[  345.521083][T13525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.521103][T13525] RIP: 0033:0x7fb88f18d169
[  345.521117][T13525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.521132][T13525] RSP: 002b:00007fb890076038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  345.521150][T13525] RAX: ffffffffffffffda RBX: 00007fb88f3a5fa0 RCX: 00007fb88f18d169
[  345.521162][T13525] RDX: 0000000000000023 RSI: 0000400000000180 RDI: 0000000000000004
[  345.521173][T13525] RBP: 00007fb890076090 R08: 0000000000000000 R09: 0000000000000000
[  345.521184][T13525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.521193][T13525] R13: 0000000000000000 R14: 00007fb88f3a5fa0 R15: 00007ffe83aebfd8
[  345.521219][T13525]  </TASK>
[  345.908133][T13527] __nla_validate_parse: 8 callbacks suppressed
[  345.908153][T13527] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2587'.
[  345.987607][T13535] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2589'.
[  346.227249][T13547] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2594'.
[  346.447772][T13559] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2598'.
[  346.662101][T13571] FAULT_INJECTION: forcing a failure.
[  346.662101][T13571] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  346.675723][T13571] CPU: 0 UID: 0 PID: 13571 Comm: syz.4.2604 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  346.675740][T13571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  346.675746][T13571] Call Trace:
[  346.675751][T13571]  <TASK>
[  346.675756][T13571]  dump_stack_lvl+0x241/0x360
[  346.675773][T13571]  ? __pfx_dump_stack_lvl+0x10/0x10
[  346.675784][T13571]  ? __pfx__printk+0x10/0x10
[  346.675794][T13571]  ? __pfx_lock_release+0x10/0x10
[  346.675813][T13571]  should_fail_ex+0x40a/0x550
[  346.675830][T13571]  _copy_from_user+0x2d/0xb0
[  346.675844][T13571]  copy_msghdr_from_user+0xae/0x680
[  346.675857][T13571]  ? __pfx___might_resched+0x10/0x10
[  346.675872][T13571]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  346.675887][T13571]  ? do_recvmmsg+0x44e/0xab0
[  346.675897][T13571]  ? __might_fault+0xaa/0x120
[  346.675909][T13571]  do_recvmmsg+0x3bd/0xab0
[  346.675925][T13571]  ? __pfx_do_recvmmsg+0x10/0x10
[  346.675945][T13571]  ? ksys_write+0x22a/0x2b0
[  346.675955][T13571]  ? __pfx_lock_release+0x10/0x10
[  346.675972][T13571]  ? sb_end_write+0xe9/0x1c0
[  346.675985][T13571]  ? vfs_write+0x7fa/0xd10
[  346.675996][T13571]  ? __mutex_unlock_slowpath+0x227/0x800
[  346.676013][T13571]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  346.676023][T13571]  ? __fget_files+0x2a/0x410
[  346.676044][T13571]  __x64_sys_recvmmsg+0x199/0x250
[  346.676056][T13571]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  346.676067][T13571]  ? do_syscall_64+0x100/0x230
[  346.676080][T13571]  ? do_syscall_64+0xb6/0x230
[  346.676092][T13571]  do_syscall_64+0xf3/0x230
[  346.676103][T13571]  ? clear_bhb_loop+0x35/0x90
[  346.676118][T13571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.676130][T13571] RIP: 0033:0x7fe66cf8d169
[  346.676140][T13571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.676148][T13571] RSP: 002b:00007fe66dd0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  346.676159][T13571] RAX: ffffffffffffffda RBX: 00007fe66d1a5fa0 RCX: 00007fe66cf8d169
[  346.676166][T13571] RDX: 03ffffffffffff67 RSI: 0000400000002440 RDI: 0000000000000008
[  346.676173][T13571] RBP: 00007fe66dd0b090 R08: 0000000000000000 R09: 0000000000000000
[  346.676178][T13571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  346.676184][T13571] R13: 0000000000000000 R14: 00007fe66d1a5fa0 R15: 00007ffedc66f018
[  346.676198][T13571]  </TASK>
[  347.114609][T13583] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2609'.
[  347.166567][T13586] netlink: 'syz.4.2610': attribute type 7 has an invalid length.
[  347.183500][T13587] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2607'.
[  347.198420][T13581] netlink: 256 bytes leftover after parsing attributes in process `syz.2.2607'.
[  347.222837][T13581] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2607'.
[  347.261317][T13581] xt_bpf: check failed: parse error
[  348.091509][T13608] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2615'.
[  348.106858][T13608] openvswitch: netlink: Flow actions attr not present in new flow.
[  348.141911][T13608] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2615'.
[  348.226239][T13613] netlink: 'syz.4.2619': attribute type 9 has an invalid length.
[  348.235442][T13613] FAULT_INJECTION: forcing a failure.
[  348.235442][T13613] name failslab, interval 1, probability 0, space 0, times 0
[  348.248438][T13613] CPU: 0 UID: 0 PID: 13613 Comm: syz.4.2619 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  348.248461][T13613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  348.248471][T13613] Call Trace:
[  348.248477][T13613]  <TASK>
[  348.248483][T13613]  dump_stack_lvl+0x241/0x360
[  348.248508][T13613]  ? __pfx_dump_stack_lvl+0x10/0x10
[  348.248525][T13613]  ? __pfx__printk+0x10/0x10
[  348.248543][T13613]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  348.248563][T13613]  ? __pfx___might_resched+0x10/0x10
[  348.248580][T13613]  ? vsnprintf+0x1152/0x1220
[  348.248606][T13613]  should_fail_ex+0x40a/0x550
[  348.248630][T13613]  should_failslab+0xac/0x100
[  348.248649][T13613]  __kmalloc_node_noprof+0xe1/0x4d0
[  348.248680][T13613]  ? __kvmalloc_node_noprof+0x72/0x190
[  348.248704][T13613]  ? __pfx_macvlan_setup+0x10/0x10
[  348.248722][T13613]  __kvmalloc_node_noprof+0x72/0x190
[  348.248743][T13613]  alloc_netdev_mqs+0xa4/0x1210
[  348.248758][T13613]  ? __pfx_macvlan_setup+0x10/0x10
[  348.248777][T13613]  rtnl_create_link+0x2f9/0xc90
[  348.248802][T13613]  rtnl_newlink_create+0x2e1/0xbd0
[  348.248830][T13613]  ? __pfx_aa_get_newest_label+0x10/0x10
[  348.248855][T13613]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  348.248882][T13613]  ? __pfx___mutex_lock+0x10/0x10
[  348.248910][T13613]  ? ns_capable+0x8a/0xf0
[  348.248933][T13613]  rtnl_newlink+0x167a/0x1d90
[  348.248955][T13613]  ? __lock_acquire+0x1397/0x2100
[  348.248989][T13613]  ? __pfx_rtnl_newlink+0x10/0x10
[  348.249021][T13613]  ? __pfx_validate_chain+0x10/0x10
[  348.249053][T13613]  ? validate_chain+0x11e/0x5920
[  348.249068][T13613]  ? __pfx_lock_acquire+0x10/0x10
[  348.249090][T13613]  ? __pfx_lock_release+0x10/0x10
[  348.249114][T13613]  ? __pfx_validate_chain+0x10/0x10
[  348.249132][T13613]  ? mark_lock+0x9a/0x360
[  348.249151][T13613]  ? __lock_acquire+0x1397/0x2100
[  348.249202][T13613]  ? __pfx_lock_release+0x10/0x10
[  348.249239][T13613]  ? __pfx_rtnl_newlink+0x10/0x10
[  348.249260][T13613]  rtnetlink_rcv_msg+0x791/0xcf0
[  348.249279][T13613]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  348.249302][T13613]  ? __lock_acquire+0x1397/0x2100
[  348.249324][T13613]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  348.249363][T13613]  netlink_rcv_skb+0x206/0x480
[  348.249385][T13613]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  348.249408][T13613]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  348.249451][T13613]  ? netlink_deliver_tap+0x2e/0x1b0
[  348.249475][T13613]  netlink_unicast+0x7f6/0x990
[  348.249501][T13613]  ? __pfx_netlink_unicast+0x10/0x10
[  348.249517][T13613]  ? __virt_addr_valid+0x45f/0x530
[  348.249534][T13613]  ? __phys_addr_symbol+0x2f/0x70
[  348.249547][T13613]  ? __check_object_size+0x47a/0x730
[  348.249570][T13613]  netlink_sendmsg+0x8de/0xcb0
[  348.249601][T13613]  ? __pfx_netlink_sendmsg+0x10/0x10
[  348.249624][T13613]  ? aa_sock_msg_perm+0x91/0x160
[  348.249652][T13613]  ? __pfx_netlink_sendmsg+0x10/0x10
[  348.249671][T13613]  __sock_sendmsg+0x221/0x270
[  348.249694][T13613]  ____sys_sendmsg+0x53a/0x860
[  348.249718][T13613]  ? __pfx_____sys_sendmsg+0x10/0x10
[  348.249733][T13613]  ? __fget_files+0x2a/0x410
[  348.249757][T13613]  ? __fget_files+0x2a/0x410
[  348.249788][T13613]  __sys_sendmsg+0x269/0x350
[  348.249811][T13613]  ? __pfx___sys_sendmsg+0x10/0x10
[  348.249841][T13613]  ? do_sys_openat2+0x17a/0x1d0
[  348.249888][T13613]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  348.249912][T13613]  ? do_syscall_64+0x100/0x230
[  348.249932][T13613]  ? do_syscall_64+0xb6/0x230
[  348.249950][T13613]  do_syscall_64+0xf3/0x230
[  348.249968][T13613]  ? clear_bhb_loop+0x35/0x90
[  348.249991][T13613]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.250020][T13613] RIP: 0033:0x7fe66cf8d169
[  348.250041][T13613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.250054][T13613] RSP: 002b:00007fe66dd0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  348.250070][T13613] RAX: ffffffffffffffda RBX: 00007fe66d1a5fa0 RCX: 00007fe66cf8d169
[  348.250081][T13613] RDX: 0000000000000000 RSI: 0000400000000240 RDI: 0000000000000004
[  348.250090][T13613] RBP: 00007fe66dd0b090 R08: 0000000000000000 R09: 0000000000000000
[  348.250099][T13613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  348.250108][T13613] R13: 0000000000000000 R14: 00007fe66d1a5fa0 R15: 00007ffedc66f018
[  348.250131][T13613]  </TASK>
[  348.838423][T13623] (unnamed net_device) (uninitialized): (slave team0): Device is not bonding slave
[  348.848019][T13623] (unnamed net_device) (uninitialized): option active_slave: invalid value (team0)
[  348.880023][T13631] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  348.938016][T13636] xt_cgroup: xt_cgroup: no path or classid specified
[  349.074750][T13639] xt_CT: No such helper "snmp"
[  349.210452][T13643] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2
[  349.239161][T13643] gretap2: entered promiscuous mode
[  349.320251][T13643] bond0: (slave bond_slave_0): Releasing backup interface
[  349.376106][T13647] openvswitch: netlink: Flow actions attr not present in new flow.
[  349.445870][T13653] pimreg: entered allmulticast mode
[  349.456440][T13652] pimreg: left allmulticast mode
[  349.631484][T13663] netlink: 'syz.0.2637': attribute type 160 has an invalid length.
[  349.667552][T13661] 1·: renamed from 
70· (while UP)
[  349.685524][T13661] A link change request failed with some changes committed already. Interface 
71· may have been left with an inconsistent configuration, please check.
[  349.744356][T13666] dvmrp1: entered allmulticast mode
[  350.351589][T13706] 0·: renamed from 
71· (while UP)
[  350.368969][T13706] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  350.720169][T13724] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  350.753811][T13724] syzkaller0: entered promiscuous mode
[  350.759465][T13724] syzkaller0: entered allmulticast mode
[  350.781323][T13724] tipc: Resetting bearer <eth:syzkaller0>
[  350.816137][T13723] tipc: Resetting bearer <eth:syzkaller0>
[  350.821667][T13729] netlink: 'syz.0.2661': attribute type 9 has an invalid length.
[  351.404845][T13735] __nla_validate_parse: 12 callbacks suppressed
[  351.404868][T13735] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2663'.
[  351.493232][T13739] FAULT_INJECTION: forcing a failure.
[  351.493232][T13739] name failslab, interval 1, probability 0, space 0, times 0
[  351.509631][T13739] CPU: 1 UID: 0 PID: 13739 Comm: syz.2.2665 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  351.509658][T13739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  351.509667][T13739] Call Trace:
[  351.509673][T13739]  <TASK>
[  351.509679][T13739]  dump_stack_lvl+0x241/0x360
[  351.509703][T13739]  ? __pfx_dump_stack_lvl+0x10/0x10
[  351.509718][T13739]  ? __pfx__printk+0x10/0x10
[  351.509733][T13739]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  351.509753][T13739]  ? __pfx___might_resched+0x10/0x10
[  351.509774][T13739]  should_fail_ex+0x40a/0x550
[  351.509796][T13739]  should_failslab+0xac/0x100
[  351.509815][T13739]  kmem_cache_alloc_node_noprof+0x77/0x380
[  351.509831][T13739]  ? __alloc_skb+0x1c3/0x440
[  351.509847][T13739]  __alloc_skb+0x1c3/0x440
[  351.509864][T13739]  ? __pfx___alloc_skb+0x10/0x10
[  351.509879][T13739]  ? netlink_autobind+0xd6/0x2f0
[  351.509896][T13739]  ? netlink_autobind+0x2b0/0x2f0
[  351.509916][T13739]  netlink_sendmsg+0x634/0xcb0
[  351.509942][T13739]  ? __pfx_netlink_sendmsg+0x10/0x10
[  351.509972][T13739]  ? aa_sock_msg_perm+0x91/0x160
[  351.509995][T13739]  ? __pfx_netlink_sendmsg+0x10/0x10
[  351.510010][T13739]  __sock_sendmsg+0x221/0x270
[  351.510030][T13739]  ____sys_sendmsg+0x53a/0x860
[  351.510050][T13739]  ? __pfx_____sys_sendmsg+0x10/0x10
[  351.510063][T13739]  ? __fget_files+0x2a/0x410
[  351.510084][T13739]  ? __fget_files+0x2a/0x410
[  351.510108][T13739]  __sys_sendmsg+0x269/0x350
[  351.510125][T13739]  ? __pfx___sys_sendmsg+0x10/0x10
[  351.510149][T13739]  ? do_sys_openat2+0x17a/0x1d0
[  351.510187][T13739]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  351.510208][T13739]  ? do_syscall_64+0x100/0x230
[  351.510226][T13739]  ? do_syscall_64+0xb6/0x230
[  351.510244][T13739]  do_syscall_64+0xf3/0x230
[  351.510258][T13739]  ? clear_bhb_loop+0x35/0x90
[  351.510279][T13739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.510295][T13739] RIP: 0033:0x7ff21718d169
[  351.510310][T13739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  351.510321][T13739] RSP: 002b:00007ff21807d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  351.510339][T13739] RAX: ffffffffffffffda RBX: 00007ff2173a5fa0 RCX: 00007ff21718d169
[  351.510349][T13739] RDX: 0000000000000000 RSI: 0000400000000240 RDI: 0000000000000004
[  351.510358][T13739] RBP: 00007ff21807d090 R08: 0000000000000000 R09: 0000000000000000
[  351.510371][T13739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  351.510379][T13739] R13: 0000000000000000 R14: 00007ff2173a5fa0 R15: 00007ffe0aab78f8
[  351.510400][T13739]  </TASK>
[  352.067577][T13744] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2666'.
[  353.249080][T13723] tipc: Disabling bearer <eth:syzkaller0>
[  353.271474][T13744] 1·: renamed from 
70· (while UP)
[  353.297948][T13744] A link change request failed with some changes committed already. Interface 
71· may have been left with an inconsistent configuration, please check.
[  353.475376][T13756] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2668'.
[  353.543540][T13761] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2671'.
[  353.562977][T13761] openvswitch: netlink: Flow actions attr not present in new flow.
[  353.577228][T13761] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2671'.
[  353.647268][T13766] netlink: 'syz.1.2673': attribute type 4 has an invalid length.
[  353.699637][T13768] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2670'.
[  353.766533][T13771] netlink: 'syz.1.2673': attribute type 4 has an invalid length.
[  353.803744][T13761] bond4: (slave batadv0): Releasing active interface
[  353.817992][T13761] batadv0 (unregistering): left allmulticast mode
[  353.842717][T13767] 0·: left allmulticast mode
[  353.847465][T13767] hsr_slave_0: left allmulticast mode
[  353.862925][T13767] hsr_slave_1: left allmulticast mode
[  354.090900][T13777] xt_cgroup: invalid path, errno=-2
[  354.434031][T13790] IPVS: set_ctl: invalid protocol: 55 127.0.0.1:20003
[  354.534149][T13792] netlink: 9 bytes leftover after parsing attributes in process `syz.1.2680'.
[  354.544413][T13792] 1·: renamed from 
70·
[  354.547645][T13798] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2681'.
[  354.560070][T13792] 1·: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  354.591248][T13792] 1·: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  354.608822][T13792] 1·: entered allmulticast mode
[  354.615097][T13792] hsr_slave_0: entered allmulticast mode
[  354.621194][T13792] hsr_slave_1: entered allmulticast mode
[  354.631732][T13792] A link change request failed with some changes committed already. Interface 
71· may have been left with an inconsistent configuration, please check.
[  354.709972][T13805] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2684'.
[  354.729629][T13805] openvswitch: netlink: Flow actions attr not present in new flow.
[  354.749272][T13800] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2684'.
[  355.036669][T13827] FAULT_INJECTION: forcing a failure.
[  355.036669][T13827] name failslab, interval 1, probability 0, space 0, times 0
[  355.051580][T13827] CPU: 0 UID: 0 PID: 13827 Comm: syz.4.2692 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  355.051604][T13827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  355.051614][T13827] Call Trace:
[  355.051620][T13827]  <TASK>
[  355.051627][T13827]  dump_stack_lvl+0x241/0x360
[  355.051662][T13827]  ? __pfx_dump_stack_lvl+0x10/0x10
[  355.051679][T13827]  ? __pfx__printk+0x10/0x10
[  355.051694][T13827]  ? __kmalloc_cache_noprof+0x48/0x390
[  355.051715][T13827]  ? __pfx___might_resched+0x10/0x10
[  355.051737][T13827]  should_fail_ex+0x40a/0x550
[  355.051763][T13827]  should_failslab+0xac/0x100
[  355.051783][T13827]  __kmalloc_cache_noprof+0x70/0x390
[  355.051801][T13827]  ? rtnl_newlink+0x13e/0x1d90
[  355.051825][T13827]  rtnl_newlink+0x13e/0x1d90
[  355.051844][T13827]  ? __lock_acquire+0x1397/0x2100
[  355.051873][T13827]  ? __lock_acquire+0x1397/0x2100
[  355.051891][T13827]  ? __pfx_rtnl_newlink+0x10/0x10
[  355.051910][T13827]  ? __pfx_validate_chain+0x10/0x10
[  355.051939][T13827]  ? validate_chain+0x11e/0x5920
[  355.051954][T13827]  ? __pfx_lock_acquire+0x10/0x10
[  355.051975][T13827]  ? __pfx_lock_release+0x10/0x10
[  355.051997][T13827]  ? __pfx_validate_chain+0x10/0x10
[  355.052014][T13827]  ? mark_lock+0x9a/0x360
[  355.052030][T13827]  ? __lock_acquire+0x1397/0x2100
[  355.052073][T13827]  ? __pfx_lock_release+0x10/0x10
[  355.052106][T13827]  ? __pfx_rtnl_newlink+0x10/0x10
[  355.052127][T13827]  rtnetlink_rcv_msg+0x791/0xcf0
[  355.052146][T13827]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  355.052166][T13827]  ? __lock_acquire+0x1397/0x2100
[  355.052187][T13827]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  355.052223][T13827]  netlink_rcv_skb+0x206/0x480
[  355.052244][T13827]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  355.052265][T13827]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  355.052298][T13827]  ? netlink_deliver_tap+0x2e/0x1b0
[  355.052318][T13827]  netlink_unicast+0x7f6/0x990
[  355.052342][T13827]  ? __pfx_netlink_unicast+0x10/0x10
[  355.052358][T13827]  ? __virt_addr_valid+0x45f/0x530
[  355.052374][T13827]  ? __phys_addr_symbol+0x2f/0x70
[  355.052388][T13827]  ? __check_object_size+0x47a/0x730
[  355.052412][T13827]  netlink_sendmsg+0x8de/0xcb0
[  355.052442][T13827]  ? __pfx_netlink_sendmsg+0x10/0x10
[  355.052466][T13827]  ? aa_sock_msg_perm+0x91/0x160
[  355.052494][T13827]  ? __pfx_netlink_sendmsg+0x10/0x10
[  355.052513][T13827]  __sock_sendmsg+0x221/0x270
[  355.052537][T13827]  ____sys_sendmsg+0x53a/0x860
[  355.052565][T13827]  ? __pfx_____sys_sendmsg+0x10/0x10
[  355.052579][T13827]  ? __fget_files+0x2a/0x410
[  355.052602][T13827]  ? __fget_files+0x2a/0x410
[  355.052627][T13827]  __sys_sendmsg+0x269/0x350
[  355.052655][T13827]  ? __pfx___sys_sendmsg+0x10/0x10
[  355.052683][T13827]  ? do_sys_openat2+0x17a/0x1d0
[  355.052725][T13827]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  355.052748][T13827]  ? do_syscall_64+0x100/0x230
[  355.052770][T13827]  ? do_syscall_64+0xb6/0x230
[  355.052790][T13827]  do_syscall_64+0xf3/0x230
[  355.052808][T13827]  ? clear_bhb_loop+0x35/0x90
[  355.052831][T13827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.052849][T13827] RIP: 0033:0x7fe66cf8d169
[  355.052865][T13827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.052878][T13827] RSP: 002b:00007fe66adf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  355.052896][T13827] RAX: ffffffffffffffda RBX: 00007fe66d1a6080 RCX: 00007fe66cf8d169
[  355.052907][T13827] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000003
[  355.052917][T13827] RBP: 00007fe66adf6090 R08: 0000000000000000 R09: 0000000000000000
[  355.052927][T13827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  355.052936][T13827] R13: 0000000000000001 R14: 00007fe66d1a6080 R15: 00007ffedc66f018
[  355.052960][T13827]  </TASK>
[  355.500372][T13832] ipvlan3: entered promiscuous mode
[  355.656590][T13846] FAULT_INJECTION: forcing a failure.
[  355.656590][T13846] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  355.678037][T13846] CPU: 1 UID: 0 PID: 13846 Comm: syz.1.2702 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  355.678065][T13846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  355.678075][T13846] Call Trace:
[  355.678080][T13846]  <TASK>
[  355.678087][T13846]  dump_stack_lvl+0x241/0x360
[  355.678112][T13846]  ? __pfx_dump_stack_lvl+0x10/0x10
[  355.678129][T13846]  ? __pfx__printk+0x10/0x10
[  355.678146][T13846]  ? __pfx_lock_release+0x10/0x10
[  355.678172][T13846]  should_fail_ex+0x40a/0x550
[  355.678195][T13846]  _copy_from_user+0x2d/0xb0
[  355.678214][T13846]  copy_msghdr_from_user+0xae/0x680
[  355.678239][T13846]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  355.678256][T13846]  ? __fget_files+0x2a/0x410
[  355.678281][T13846]  ? __fget_files+0x2a/0x410
[  355.678308][T13846]  __sys_sendmsg+0x209/0x350
[  355.678328][T13846]  ? __pfx___sys_sendmsg+0x10/0x10
[  355.678364][T13846]  ? do_sys_openat2+0x17a/0x1d0
[  355.678409][T13846]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  355.678430][T13846]  ? do_syscall_64+0x100/0x230
[  355.678451][T13846]  ? do_syscall_64+0xb6/0x230
[  355.678471][T13846]  do_syscall_64+0xf3/0x230
[  355.678487][T13846]  ? clear_bhb_loop+0x35/0x90
[  355.678510][T13846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.678530][T13846] RIP: 0033:0x7fb88f18d169
[  355.678544][T13846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.678557][T13846] RSP: 002b:00007fb890076038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  355.678580][T13846] RAX: ffffffffffffffda RBX: 00007fb88f3a5fa0 RCX: 00007fb88f18d169
[  355.678591][T13846] RDX: 0000000000000000 RSI: 0000400000000540 RDI: 0000000000000015
[  355.678601][T13846] RBP: 00007fb890076090 R08: 0000000000000000 R09: 0000000000000000
[  355.678611][T13846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  355.678620][T13846] R13: 0000000000000000 R14: 00007fb88f3a5fa0 R15: 00007ffe83aebfd8
[  355.678644][T13846]  </TASK>
[  356.280322][T13864] openvswitch: netlink: Key 6 has unexpected len 4 expected 2
[  356.418865][T13867] lo speed is unknown, defaulting to 1000
[  356.514841][T13874] __nla_validate_parse: 4 callbacks suppressed
[  356.514858][T13874] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2712'.
[  356.554781][T13874] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2712'.
[  356.591105][T13878] FAULT_INJECTION: forcing a failure.
[  356.591105][T13878] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  356.612801][T13878] CPU: 1 UID: 0 PID: 13878 Comm: syz.1.2711 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  356.612828][T13878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  356.612838][T13878] Call Trace:
[  356.612845][T13878]  <TASK>
[  356.612851][T13878]  dump_stack_lvl+0x241/0x360
[  356.612877][T13878]  ? __pfx_dump_stack_lvl+0x10/0x10
[  356.612895][T13878]  ? __pfx__printk+0x10/0x10
[  356.612914][T13878]  ? __pfx_lock_release+0x10/0x10
[  356.612945][T13878]  should_fail_ex+0x40a/0x550
[  356.612973][T13878]  _copy_from_user+0x2d/0xb0
[  356.612993][T13878]  copy_msghdr_from_user+0xae/0x680
[  356.613015][T13878]  ? __pfx___might_resched+0x10/0x10
[  356.613038][T13878]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  356.613064][T13878]  ? do_recvmmsg+0x44e/0xab0
[  356.613082][T13878]  ? __might_fault+0xaa/0x120
[  356.613103][T13878]  do_recvmmsg+0x3bd/0xab0
[  356.613132][T13878]  ? __pfx_do_recvmmsg+0x10/0x10
[  356.613167][T13878]  ? ksys_write+0x22a/0x2b0
[  356.613185][T13878]  ? __pfx_lock_release+0x10/0x10
[  356.613212][T13878]  ? sb_end_write+0xe9/0x1c0
[  356.613233][T13878]  ? vfs_write+0x7fa/0xd10
[  356.613252][T13878]  ? __mutex_unlock_slowpath+0x227/0x800
[  356.613281][T13878]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  356.613298][T13878]  ? __fget_files+0x2a/0x410
[  356.613334][T13878]  __x64_sys_recvmmsg+0x199/0x250
[  356.613355][T13878]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  356.613374][T13878]  ? do_syscall_64+0x100/0x230
[  356.613395][T13878]  ? do_syscall_64+0xb6/0x230
[  356.613422][T13878]  do_syscall_64+0xf3/0x230
[  356.613440][T13878]  ? clear_bhb_loop+0x35/0x90
[  356.613464][T13878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.613483][T13878] RIP: 0033:0x7fb88f18d169
[  356.613499][T13878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.613512][T13878] RSP: 002b:00007fb890055038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  356.613530][T13878] RAX: ffffffffffffffda RBX: 00007fb88f3a6080 RCX: 00007fb88f18d169
[  356.613542][T13878] RDX: 03ffffffffffff67 RSI: 0000400000002440 RDI: 0000000000000005
[  356.613553][T13878] RBP: 00007fb890055090 R08: 0000000000000000 R09: 0000000000000000
[  356.613563][T13878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  356.613573][T13878] R13: 0000000000000001 R14: 00007fb88f3a6080 R15: 00007ffe83aebfd8
[  356.613599][T13878]  </TASK>
[  357.098972][T13884] xt_cgroup: xt_cgroup: no path or classid specified
[  357.290267][T13888] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2716'.
[  357.541177][T13897] pimreg: entered allmulticast mode
[  357.585503][T13900] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2721'.
[  357.598615][T13900] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2721'.
[  357.608043][T13896] pimreg: left allmulticast mode
[  357.677703][T13903] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2722'.
[  357.759672][T13905] lo speed is unknown, defaulting to 1000
[  357.871042][T13916] netlink: 248 bytes leftover after parsing attributes in process `syz.2.2727'.
[  358.139911][T13925] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2729'.
[  358.243858][T13934] openvswitch: netlink: Key 6 has unexpected len 4 expected 2
[  358.257612][T13933] xt_cgroup: xt_cgroup: no path or classid specified
[  358.376440][T13939] FAULT_INJECTION: forcing a failure.
[  358.376440][T13939] name failslab, interval 1, probability 0, space 0, times 0
[  358.389502][T13939] CPU: 0 UID: 0 PID: 13939 Comm: syz.0.2734 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  358.389527][T13939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  358.389538][T13939] Call Trace:
[  358.389543][T13939]  <TASK>
[  358.389550][T13939]  dump_stack_lvl+0x241/0x360
[  358.389577][T13939]  ? __pfx_dump_stack_lvl+0x10/0x10
[  358.389595][T13939]  ? __pfx__printk+0x10/0x10
[  358.389614][T13939]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  358.389637][T13939]  ? __pfx___might_resched+0x10/0x10
[  358.389656][T13939]  ? aa_label_sk_perm+0x4f3/0x6c0
[  358.389681][T13939]  should_fail_ex+0x40a/0x550
[  358.389707][T13939]  should_failslab+0xac/0x100
[  358.389729][T13939]  kmem_cache_alloc_node_noprof+0x77/0x380
[  358.389750][T13939]  ? __alloc_skb+0x1c3/0x440
[  358.389770][T13939]  __alloc_skb+0x1c3/0x440
[  358.389790][T13939]  ? __pfx___alloc_skb+0x10/0x10
[  358.389814][T13939]  netlink_sendmsg+0x634/0xcb0
[  358.389848][T13939]  ? __pfx_netlink_sendmsg+0x10/0x10
[  358.389873][T13939]  ? aa_sock_msg_perm+0x91/0x160
[  358.389900][T13939]  ? __pfx_netlink_sendmsg+0x10/0x10
[  358.389919][T13939]  __sock_sendmsg+0x221/0x270
[  358.389943][T13939]  ____sys_sendmsg+0x53a/0x860
[  358.389968][T13939]  ? __pfx_____sys_sendmsg+0x10/0x10
[  358.389984][T13939]  ? __fget_files+0x2a/0x410
[  358.390008][T13939]  ? __sys_sendmmsg+0x392/0x720
[  358.390025][T13939]  ? __might_fault+0xaa/0x120
[  358.390046][T13939]  __sys_sendmmsg+0x36a/0x720
[  358.390074][T13939]  ? __pfx___sys_sendmmsg+0x10/0x10
[  358.390102][T13939]  ? __pfx_lock_release+0x10/0x10
[  358.390122][T13939]  ? kstrtouint_from_user+0x128/0x190
[  358.390162][T13939]  ? ksys_write+0x22a/0x2b0
[  358.390180][T13939]  ? __pfx_lock_release+0x10/0x10
[  358.390207][T13939]  ? sb_end_write+0xe9/0x1c0
[  358.390228][T13939]  ? vfs_write+0x7fa/0xd10
[  358.390247][T13939]  ? __mutex_unlock_slowpath+0x227/0x800
[  358.390301][T13939]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  358.390326][T13939]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  358.390350][T13939]  ? do_syscall_64+0x100/0x230
[  358.390371][T13939]  __x64_sys_sendmmsg+0xa0/0xb0
[  358.390391][T13939]  do_syscall_64+0xf3/0x230
[  358.390408][T13939]  ? clear_bhb_loop+0x35/0x90
[  358.390432][T13939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.390453][T13939] RIP: 0033:0x7f6faa58d169
[  358.390468][T13939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.390482][T13939] RSP: 002b:00007f6fab39f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  358.390500][T13939] RAX: ffffffffffffffda RBX: 00007f6faa7a5fa0 RCX: 00007f6faa58d169
[  358.390512][T13939] RDX: 040000000000009f RSI: 00004000000002c0 RDI: 0000000000000004
[  358.390524][T13939] RBP: 00007f6fab39f090 R08: 0000000000000000 R09: 0000000000000000
[  358.390534][T13939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.390544][T13939] R13: 0000000000000000 R14: 00007f6faa7a5fa0 R15: 00007fffca4d9a88
[  358.390569][T13939]  </TASK>
[  358.737783][T13937] lo speed is unknown, defaulting to 1000
[  358.745958][T13943] FAULT_INJECTION: forcing a failure.
[  358.745958][T13943] name failslab, interval 1, probability 0, space 0, times 0
[  358.759453][T13943] CPU: 0 UID: 0 PID: 13943 Comm: syz.4.2735 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  358.759479][T13943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  358.759491][T13943] Call Trace:
[  358.759497][T13943]  <TASK>
[  358.759504][T13943]  dump_stack_lvl+0x241/0x360
[  358.759531][T13943]  ? __pfx_dump_stack_lvl+0x10/0x10
[  358.759549][T13943]  ? __pfx__printk+0x10/0x10
[  358.759567][T13943]  ? __kmalloc_cache_noprof+0x48/0x390
[  358.759589][T13943]  ? __pfx___might_resched+0x10/0x10
[  358.759615][T13943]  should_fail_ex+0x40a/0x550
[  358.759642][T13943]  should_failslab+0xac/0x100
[  358.759663][T13943]  __kmalloc_cache_noprof+0x70/0x390
[  358.759682][T13943]  ? nf_tables_newchain+0x2470/0x3310
[  358.759710][T13943]  nf_tables_newchain+0x2470/0x3310
[  358.759756][T13943]  ? __pfx_nf_tables_newchain+0x10/0x10
[  358.759802][T13943]  ? __pfx_lock_acquire+0x10/0x10
[  358.759824][T13943]  ? nfnl_pernet+0x23/0x240
[  358.759840][T13943]  ? __pfx_lock_release+0x10/0x10
[  358.759876][T13943]  ? __nla_parse+0x40/0x60
[  358.759897][T13943]  nfnetlink_rcv+0x14e3/0x2ab0
[  358.759913][T13943]  ? __pfx_validate_chain+0x10/0x10
[  358.759960][T13943]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  358.759988][T13943]  ? __lock_acquire+0x1397/0x2100
[  358.760041][T13943]  ? netlink_deliver_tap+0x2e/0x1b0
[  358.760062][T13943]  ? __pfx_lock_release+0x10/0x10
[  358.760096][T13943]  ? netlink_deliver_tap+0x2e/0x1b0
[  358.760119][T13943]  netlink_unicast+0x7f6/0x990
[  358.760145][T13943]  ? __pfx_netlink_unicast+0x10/0x10
[  358.760161][T13943]  ? __virt_addr_valid+0x45f/0x530
[  358.760177][T13943]  ? __phys_addr_symbol+0x2f/0x70
[  358.760192][T13943]  ? __check_object_size+0x47a/0x730
[  358.760217][T13943]  netlink_sendmsg+0x8de/0xcb0
[  358.760249][T13943]  ? __pfx_netlink_sendmsg+0x10/0x10
[  358.760280][T13943]  ? aa_sock_msg_perm+0x91/0x160
[  358.760308][T13943]  ? __pfx_netlink_sendmsg+0x10/0x10
[  358.760327][T13943]  __sock_sendmsg+0x221/0x270
[  358.760351][T13943]  ____sys_sendmsg+0x53a/0x860
[  358.760381][T13943]  ? __pfx_____sys_sendmsg+0x10/0x10
[  358.760396][T13943]  ? __fget_files+0x2a/0x410
[  358.760420][T13943]  ? __fget_files+0x2a/0x410
[  358.760450][T13943]  __sys_sendmsg+0x269/0x350
[  358.760472][T13943]  ? __pfx___sys_sendmsg+0x10/0x10
[  358.760501][T13943]  ? do_sys_openat2+0x17a/0x1d0
[  358.760548][T13943]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  358.760570][T13943]  ? do_syscall_64+0x100/0x230
[  358.760592][T13943]  ? do_syscall_64+0xb6/0x230
[  358.760612][T13943]  do_syscall_64+0xf3/0x230
[  358.760630][T13943]  ? clear_bhb_loop+0x35/0x90
[  358.760653][T13943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.760673][T13943] RIP: 0033:0x7fe66cf8d169
[  358.760689][T13943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.760703][T13943] RSP: 002b:00007fe66dd0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  358.760722][T13943] RAX: ffffffffffffffda RBX: 00007fe66d1a5fa0 RCX: 00007fe66cf8d169
[  358.760734][T13943] RDX: 0000000000000000 RSI: 0000400000000380 RDI: 0000000000000003
[  358.760745][T13943] RBP: 00007fe66dd0b090 R08: 0000000000000000 R09: 0000000000000000
[  358.760755][T13943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  358.760765][T13943] R13: 0000000000000000 R14: 00007fe66d1a5fa0 R15: 00007ffedc66f018
[  358.760791][T13943]  </TASK>
[  359.623766][T13954] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2738'.
[  360.061950][T13962] netlink: 9 bytes leftover after parsing attributes in process `syz.0.2740'.
[  360.071969][T13962] 0·: renamed from 
71·
[  360.094041][T13962] 0·: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  360.128914][T13962] 0·: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  360.158826][T13962] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  360.425627][T13970] xt_cgroup: xt_cgroup: no path or classid specified
[  360.622027][T13977] FAULT_INJECTION: forcing a failure.
[  360.622027][T13977] name failslab, interval 1, probability 0, space 0, times 0
[  360.635076][T13977] CPU: 1 UID: 0 PID: 13977 Comm: syz.0.2746 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  360.635097][T13977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  360.635107][T13977] Call Trace:
[  360.635112][T13977]  <TASK>
[  360.635119][T13977]  dump_stack_lvl+0x241/0x360
[  360.635144][T13977]  ? __pfx_dump_stack_lvl+0x10/0x10
[  360.635160][T13977]  ? __pfx__printk+0x10/0x10
[  360.635176][T13977]  ? kmem_cache_alloc_noprof+0x48/0x380
[  360.635196][T13977]  ? __pfx___might_resched+0x10/0x10
[  360.635219][T13977]  should_fail_ex+0x40a/0x550
[  360.635245][T13977]  should_failslab+0xac/0x100
[  360.635266][T13977]  ? security_file_alloc+0x32/0x310
[  360.635284][T13977]  kmem_cache_alloc_noprof+0x70/0x380
[  360.635307][T13977]  security_file_alloc+0x32/0x310
[  360.635326][T13977]  init_file+0x96/0x2e0
[  360.635352][T13977]  alloc_empty_file+0xb8/0x1d0
[  360.635372][T13977]  alloc_file_pseudo+0x204/0x320
[  360.635396][T13977]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  360.635416][T13977]  ? _raw_spin_unlock+0x28/0x50
[  360.635441][T13977]  sock_alloc_file+0xb7/0x2e0
[  360.635463][T13977]  __sys_socket+0x1dd/0x3c0
[  360.635485][T13977]  ? __pfx___sys_socket+0x10/0x10
[  360.635505][T13977]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  360.635528][T13977]  ? exc_page_fault+0x590/0x8b0
[  360.635550][T13977]  __x64_sys_socket+0x7a/0x90
[  360.635571][T13977]  do_syscall_64+0xf3/0x230
[  360.635588][T13977]  ? clear_bhb_loop+0x35/0x90
[  360.635612][T13977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.635631][T13977] RIP: 0033:0x7f6faa58f087
[  360.635647][T13977] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.635661][T13977] RSP: 002b:00007f6fab39dfa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[  360.635680][T13977] RAX: ffffffffffffffda RBX: 00007f6faa7a5fa0 RCX: 00007f6faa58f087
[  360.635692][T13977] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  360.635702][T13977] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[  360.635713][T13977] R10: 0000400000000640 R11: 0000000000000286 R12: 0000000000000001
[  360.635724][T13977] R13: 0000000000000000 R14: 00007f6faa7a5fa0 R15: 00007fffca4d9a88
[  360.635751][T13977]  </TASK>
[  360.985149][T13983] 0·: renamed from 
71· (while UP)
[  360.992476][T13983] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  361.384938][T14002] 1·: renamed from 
70·
[  361.404418][T14002] 1·: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  361.414310][T14004] openvswitch: netlink: Flow actions attr not present in new flow.
[  361.432842][T14002] 1·: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  361.449154][T14002] 1·: entered allmulticast mode
[  361.454574][T14002] hsr_slave_0: entered allmulticast mode
[  361.460282][T14002] hsr_slave_1: entered allmulticast mode
[  361.467627][T14002] A link change request failed with some changes committed already. Interface 
71· may have been left with an inconsistent configuration, please check.
[  361.674922][T14018] __nla_validate_parse: 4 callbacks suppressed
[  361.674940][T14018] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2759'.
[  361.693057][T14018] 0·: renamed from 
71· (while UP)
[  361.700304][T14018] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  361.723808][T14027] FAULT_INJECTION: forcing a failure.
[  361.723808][T14027] name failslab, interval 1, probability 0, space 0, times 0
[  361.736852][T14027] CPU: 1 UID: 0 PID: 14027 Comm: syz.4.2762 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  361.736876][T14027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  361.736886][T14027] Call Trace:
[  361.736891][T14027]  <TASK>
[  361.736898][T14027]  dump_stack_lvl+0x241/0x360
[  361.736931][T14027]  ? __pfx_dump_stack_lvl+0x10/0x10
[  361.736947][T14027]  ? __pfx__printk+0x10/0x10
[  361.736966][T14027]  ? fs_reclaim_acquire+0x93/0x130
[  361.736984][T14027]  ? __pfx___might_resched+0x10/0x10
[  361.737006][T14027]  should_fail_ex+0x40a/0x550
[  361.737032][T14027]  should_failslab+0xac/0x100
[  361.737055][T14027]  __kmalloc_noprof+0xdd/0x4c0
[  361.737074][T14027]  ? kstrtouint_from_user+0x128/0x190
[  361.737091][T14027]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  361.737112][T14027]  tomoyo_realpath_from_path+0xcf/0x5e0
[  361.737140][T14027]  tomoyo_path_number_perm+0x239/0x770
[  361.737160][T14027]  ? __lock_acquire+0x1397/0x2100
[  361.737185][T14027]  ? tomoyo_path_number_perm+0x209/0x770
[  361.737209][T14027]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  361.737264][T14027]  ? __fget_files+0x2a/0x410
[  361.737289][T14027]  ? __fget_files+0x2a/0x410
[  361.737316][T14027]  security_file_ioctl+0xc6/0x2a0
[  361.737338][T14027]  __se_sys_ioctl+0x46/0x170
[  361.737356][T14027]  do_syscall_64+0xf3/0x230
[  361.737374][T14027]  ? clear_bhb_loop+0x35/0x90
[  361.737397][T14027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.737416][T14027] RIP: 0033:0x7fe66cf8d169
[  361.737431][T14027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.737443][T14027] RSP: 002b:00007fe66dd0b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  361.737461][T14027] RAX: ffffffffffffffda RBX: 00007fe66d1a5fa0 RCX: 00007fe66cf8d169
[  361.737473][T14027] RDX: 0000400000001440 RSI: 0000000000008946 RDI: 0000000000000003
[  361.737483][T14027] RBP: 00007fe66dd0b090 R08: 0000000000000000 R09: 0000000000000000
[  361.737494][T14027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.737504][T14027] R13: 0000000000000000 R14: 00007fe66d1a5fa0 R15: 00007ffedc66f018
[  361.737532][T14027]  </TASK>
[  361.737540][T14027] ERROR: Out of memory at tomoyo_realpath_from_path.
[  362.029331][T14032] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2763'.
[  362.457622][T14049] xt_cgroup: invalid path, errno=-2
[  362.464026][T14046] IPVS: set_ctl: invalid protocol: 98 255.255.255.255:20001
[  362.867361][T14073] netlink: 'syz.0.2779': attribute type 32 has an invalid length.
[  362.981149][T14079] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  363.050510][T14079] lo speed is unknown, defaulting to 1000
[  363.688841][T14092] SET target dimension over the limit!
[  363.723785][T14092] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2782'.
[  363.865560][T14099] FAULT_INJECTION: forcing a failure.
[  363.865560][T14099] name failslab, interval 1, probability 0, space 0, times 0
[  363.902699][T14099] CPU: 0 UID: 0 PID: 14099 Comm: syz.0.2783 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  363.902727][T14099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  363.902737][T14099] Call Trace:
[  363.902743][T14099]  <TASK>
[  363.902751][T14099]  dump_stack_lvl+0x241/0x360
[  363.902776][T14099]  ? __pfx_dump_stack_lvl+0x10/0x10
[  363.902794][T14099]  ? __pfx__printk+0x10/0x10
[  363.902813][T14099]  ? __kmalloc_cache_noprof+0x48/0x390
[  363.902835][T14099]  ? __pfx___might_resched+0x10/0x10
[  363.902861][T14099]  should_fail_ex+0x40a/0x550
[  363.902887][T14099]  should_failslab+0xac/0x100
[  363.902910][T14099]  __kmalloc_cache_noprof+0x70/0x390
[  363.902929][T14099]  ? __request_module+0x2b9/0x640
[  363.902949][T14099]  __request_module+0x2b9/0x640
[  363.902965][T14099]  ? __pfx_lock_acquire+0x10/0x10
[  363.902989][T14099]  ? __pfx___request_module+0x10/0x10
[  363.903019][T14099]  ? rtnl_link_ops_get+0x22/0x250
[  363.903042][T14099]  ? rtnl_link_ops_get+0x21d/0x250
[  363.903066][T14099]  rtnl_newlink+0x649/0x1d90
[  363.903086][T14099]  ? __lock_acquire+0x1397/0x2100
[  363.903115][T14099]  ? __lock_acquire+0x1397/0x2100
[  363.903138][T14099]  ? __pfx_rtnl_newlink+0x10/0x10
[  363.903159][T14099]  ? __pfx_validate_chain+0x10/0x10
[  363.903194][T14099]  ? validate_chain+0x11e/0x5920
[  363.903211][T14099]  ? __pfx_lock_acquire+0x10/0x10
[  363.903235][T14099]  ? __pfx_lock_release+0x10/0x10
[  363.903260][T14099]  ? __pfx_validate_chain+0x10/0x10
[  363.903278][T14099]  ? mark_lock+0x9a/0x360
[  363.903297][T14099]  ? __lock_acquire+0x1397/0x2100
[  363.903348][T14099]  ? __pfx_lock_release+0x10/0x10
[  363.903382][T14099]  ? __pfx_rtnl_newlink+0x10/0x10
[  363.903404][T14099]  rtnetlink_rcv_msg+0x791/0xcf0
[  363.903443][T14099]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  363.903465][T14099]  ? __lock_acquire+0x1397/0x2100
[  363.903487][T14099]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  363.903528][T14099]  netlink_rcv_skb+0x206/0x480
[  363.903551][T14099]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  363.903570][T14099]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  363.903608][T14099]  ? netlink_deliver_tap+0x2e/0x1b0
[  363.903631][T14099]  netlink_unicast+0x7f6/0x990
[  363.903658][T14099]  ? __pfx_netlink_unicast+0x10/0x10
[  363.903674][T14099]  ? __virt_addr_valid+0x45f/0x530
[  363.903692][T14099]  ? __phys_addr_symbol+0x2f/0x70
[  363.903706][T14099]  ? __check_object_size+0x47a/0x730
[  363.903730][T14099]  netlink_sendmsg+0x8de/0xcb0
[  363.903762][T14099]  ? __pfx_netlink_sendmsg+0x10/0x10
[  363.903784][T14099]  ? aa_sock_msg_perm+0x91/0x160
[  363.903814][T14099]  ? __pfx_netlink_sendmsg+0x10/0x10
[  363.903831][T14099]  __sock_sendmsg+0x221/0x270
[  363.903856][T14099]  ____sys_sendmsg+0x53a/0x860
[  363.903880][T14099]  ? __pfx_____sys_sendmsg+0x10/0x10
[  363.903895][T14099]  ? __fget_files+0x2a/0x410
[  363.903919][T14099]  ? __fget_files+0x2a/0x410
[  363.903948][T14099]  __sys_sendmsg+0x269/0x350
[  363.903970][T14099]  ? __pfx___sys_sendmsg+0x10/0x10
[  363.903999][T14099]  ? do_sys_openat2+0x17a/0x1d0
[  363.904044][T14099]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  363.904068][T14099]  ? do_syscall_64+0x100/0x230
[  363.904090][T14099]  ? do_syscall_64+0xb6/0x230
[  363.904110][T14099]  do_syscall_64+0xf3/0x230
[  363.904128][T14099]  ? clear_bhb_loop+0x35/0x90
[  363.904151][T14099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.904170][T14099] RIP: 0033:0x7f6faa58d169
[  363.904185][T14099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.904200][T14099] RSP: 002b:00007f6fab37e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  363.904218][T14099] RAX: ffffffffffffffda RBX: 00007f6faa7a6080 RCX: 00007f6faa58d169
[  363.904230][T14099] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000003
[  363.904241][T14099] RBP: 00007f6fab37e090 R08: 0000000000000000 R09: 0000000000000000
[  363.904251][T14099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.904261][T14099] R13: 0000000000000001 R14: 00007f6faa7a6080 R15: 00007fffca4d9a88
[  363.904287][T14099]  </TASK>
[  364.479283][T14107] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2785'.
[  364.684191][T14113] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2787'.
[  364.912977][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  365.067568][T14130] RDS: rds_bind could not find a transport for fc00::1, load rds_tcp or rds_rdma?
[  365.085655][T14130] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2794'.
[  365.212038][T14141] lo speed is unknown, defaulting to 1000
[  365.672217][T14155] dvmrp1: entered allmulticast mode
[  365.989965][T14166] FAULT_INJECTION: forcing a failure.
[  365.989965][T14166] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.032756][T14166] CPU: 0 UID: 0 PID: 14166 Comm: syz.1.2808 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  366.032780][T14166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  366.032789][T14166] Call Trace:
[  366.032795][T14166]  <TASK>
[  366.032801][T14166]  dump_stack_lvl+0x241/0x360
[  366.032823][T14166]  ? __pfx_dump_stack_lvl+0x10/0x10
[  366.032837][T14166]  ? __pfx__printk+0x10/0x10
[  366.032852][T14166]  ? __pfx_lock_release+0x10/0x10
[  366.032869][T14166]  ? __lock_acquire+0x1397/0x2100
[  366.032891][T14166]  should_fail_ex+0x40a/0x550
[  366.032913][T14166]  _copy_from_user+0x2d/0xb0
[  366.032930][T14166]  kstrtouint_from_user+0xc6/0x190
[  366.032946][T14166]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  366.032962][T14166]  ? __pfx_lock_acquire+0x10/0x10
[  366.032986][T14166]  proc_fail_nth_write+0xaa/0x2d0
[  366.033005][T14166]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  366.033021][T14166]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  366.033041][T14166]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  366.033059][T14166]  vfs_write+0x29f/0xd10
[  366.033074][T14166]  ? fdget_pos+0x254/0x320
[  366.033090][T14166]  ? __mutex_unlock_slowpath+0x227/0x800
[  366.033109][T14166]  ? __pfx_vfs_write+0x10/0x10
[  366.033122][T14166]  ? do_sys_openat2+0x17a/0x1d0
[  366.033143][T14166]  ? __fget_files+0x2a/0x410
[  366.033160][T14166]  ? __fget_files+0x395/0x410
[  366.033175][T14166]  ? __fget_files+0x2a/0x410
[  366.033198][T14166]  ksys_write+0x18f/0x2b0
[  366.033214][T14166]  ? __pfx_ksys_write+0x10/0x10
[  366.033227][T14166]  ? do_syscall_64+0x100/0x230
[  366.033259][T14166]  ? do_syscall_64+0xb6/0x230
[  366.033276][T14166]  do_syscall_64+0xf3/0x230
[  366.033291][T14166]  ? clear_bhb_loop+0x35/0x90
[  366.033310][T14166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.033327][T14166] RIP: 0033:0x7fb88f18bc1f
[  366.033340][T14166] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  366.033351][T14166] RSP: 002b:00007fb890076030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  366.033365][T14166] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb88f18bc1f
[  366.033375][T14166] RDX: 0000000000000001 RSI: 00007fb8900760a0 RDI: 0000000000000004
[  366.033383][T14166] RBP: 00007fb890076090 R08: 0000000000000000 R09: 0000000000000000
[  366.033391][T14166] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  366.033398][T14166] R13: 0000000000000000 R14: 00007fb88f3a5fa0 R15: 00007ffe83aebfd8
[  366.033419][T14166]  </TASK>
[  366.392709][   T29] audit: type=1800 audit(1741360470.653:3): pid=14174 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2811" name="memory.events" dev="tmpfs" ino=2944 res=0 errno=0
[  366.427129][   T29] audit: type=1804 audit(1741360470.653:4): pid=14174 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2811" name="/newroot/574/memory.events" dev="tmpfs" ino=2944 res=1 errno=0
[  366.472853][T14174] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[  366.785961][T14199] bond0: option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  366.787812][T14200] FAULT_INJECTION: forcing a failure.
[  366.787812][T14200] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.810819][T14199] lo speed is unknown, defaulting to 1000
[  366.814170][T14200] CPU: 0 UID: 0 PID: 14200 Comm: syz.0.2820 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  366.814193][T14200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  366.814203][T14200] Call Trace:
[  366.814209][T14200]  <TASK>
[  366.814216][T14200]  dump_stack_lvl+0x241/0x360
[  366.814241][T14200]  ? __pfx_dump_stack_lvl+0x10/0x10
[  366.814257][T14200]  ? __pfx__printk+0x10/0x10
[  366.814275][T14200]  ? __pfx_lock_release+0x10/0x10
[  366.814304][T14200]  should_fail_ex+0x40a/0x550
[  366.814330][T14200]  _copy_from_iter+0x1df/0x1c40
[  366.814347][T14200]  ? __virt_addr_valid+0x183/0x530
[  366.814363][T14200]  ? __pfx_lock_release+0x10/0x10
[  366.814390][T14200]  ? __alloc_skb+0x28f/0x440
[  366.814411][T14200]  ? __pfx__copy_from_iter+0x10/0x10
[  366.814430][T14200]  ? __virt_addr_valid+0x183/0x530
[  366.814444][T14200]  ? __virt_addr_valid+0x183/0x530
[  366.814457][T14200]  ? __virt_addr_valid+0x45f/0x530
[  366.814473][T14200]  ? __phys_addr_symbol+0x2f/0x70
[  366.814487][T14200]  ? __check_object_size+0x47a/0x730
[  366.814511][T14200]  netlink_sendmsg+0x742/0xcb0
[  366.814542][T14200]  ? __pfx_netlink_sendmsg+0x10/0x10
[  366.814565][T14200]  ? aa_sock_msg_perm+0x91/0x160
[  366.814593][T14200]  ? __pfx_netlink_sendmsg+0x10/0x10
[  366.814612][T14200]  __sock_sendmsg+0x221/0x270
[  366.814634][T14200]  ____sys_sendmsg+0x53a/0x860
[  366.814658][T14200]  ? __pfx_____sys_sendmsg+0x10/0x10
[  366.814673][T14200]  ? __fget_files+0x2a/0x410
[  366.814696][T14200]  ? __fget_files+0x2a/0x410
[  366.814723][T14200]  __sys_sendmsg+0x269/0x350
[  366.814744][T14200]  ? __pfx___sys_sendmsg+0x10/0x10
[  366.814771][T14200]  ? do_sys_openat2+0x17a/0x1d0
[  366.814814][T14200]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  366.814837][T14200]  ? do_syscall_64+0x100/0x230
[  366.814857][T14200]  ? do_syscall_64+0xb6/0x230
[  366.814877][T14200]  do_syscall_64+0xf3/0x230
[  366.814900][T14200]  ? clear_bhb_loop+0x35/0x90
[  366.814923][T14200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.814942][T14200] RIP: 0033:0x7f6faa58d169
[  366.814957][T14200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.814971][T14200] RSP: 002b:00007f6fab39f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  366.814989][T14200] RAX: ffffffffffffffda RBX: 00007f6faa7a5fa0 RCX: 00007f6faa58d169
[  366.815000][T14200] RDX: 0000000000000000 RSI: 0000400000000240 RDI: 0000000000000004
[  366.815010][T14200] RBP: 00007f6fab39f090 R08: 0000000000000000 R09: 0000000000000000
[  366.815020][T14200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.815030][T14200] R13: 0000000000000000 R14: 00007f6faa7a5fa0 R15: 00007fffca4d9a88
[  366.815055][T14200]  </TASK>
[  367.143812][T14201] lo speed is unknown, defaulting to 1000
[  367.593941][T14218] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2826'.
[  367.606868][T14220] FAULT_INJECTION: forcing a failure.
[  367.606868][T14220] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  367.664357][T14220] CPU: 0 UID: 0 PID: 14220 Comm: syz.1.2827 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  367.664386][T14220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  367.664395][T14220] Call Trace:
[  367.664401][T14220]  <TASK>
[  367.664408][T14220]  dump_stack_lvl+0x241/0x360
[  367.664432][T14220]  ? __pfx_dump_stack_lvl+0x10/0x10
[  367.664448][T14220]  ? __pfx__printk+0x10/0x10
[  367.664464][T14220]  ? __pfx_lock_release+0x10/0x10
[  367.664494][T14220]  should_fail_ex+0x40a/0x550
[  367.664520][T14220]  _copy_from_iter+0x1df/0x1c40
[  367.664538][T14220]  ? __virt_addr_valid+0x183/0x530
[  367.664553][T14220]  ? __pfx_lock_release+0x10/0x10
[  367.664580][T14220]  ? __alloc_skb+0x28f/0x440
[  367.664596][T14220]  ? __pfx__copy_from_iter+0x10/0x10
[  367.664616][T14220]  ? __virt_addr_valid+0x183/0x530
[  367.664630][T14220]  ? __virt_addr_valid+0x183/0x530
[  367.664643][T14220]  ? __virt_addr_valid+0x45f/0x530
[  367.664657][T14220]  ? __phys_addr_symbol+0x2f/0x70
[  367.664672][T14220]  ? __check_object_size+0x47a/0x730
[  367.664696][T14220]  netlink_sendmsg+0x742/0xcb0
[  367.664726][T14220]  ? __pfx_netlink_sendmsg+0x10/0x10
[  367.664750][T14220]  ? aa_sock_msg_perm+0x91/0x160
[  367.664778][T14220]  ? __pfx_netlink_sendmsg+0x10/0x10
[  367.664797][T14220]  __sock_sendmsg+0x221/0x270
[  367.664822][T14220]  ____sys_sendmsg+0x53a/0x860
[  367.664845][T14220]  ? __pfx_____sys_sendmsg+0x10/0x10
[  367.664860][T14220]  ? __fget_files+0x2a/0x410
[  367.664884][T14220]  ? __fget_files+0x2a/0x410
[  367.664913][T14220]  __sys_sendmsg+0x269/0x350
[  367.664934][T14220]  ? __pfx___sys_sendmsg+0x10/0x10
[  367.664960][T14220]  ? do_sys_openat2+0x17a/0x1d0
[  367.665002][T14220]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  367.665024][T14220]  ? do_syscall_64+0x100/0x230
[  367.665045][T14220]  ? do_syscall_64+0xb6/0x230
[  367.665063][T14220]  do_syscall_64+0xf3/0x230
[  367.665081][T14220]  ? clear_bhb_loop+0x35/0x90
[  367.665113][T14220]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.665133][T14220] RIP: 0033:0x7fb88f18d169
[  367.665148][T14220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.665162][T14220] RSP: 002b:00007fb890076038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  367.665180][T14220] RAX: ffffffffffffffda RBX: 00007fb88f3a5fa0 RCX: 00007fb88f18d169
[  367.665192][T14220] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000003
[  367.665203][T14220] RBP: 00007fb890076090 R08: 0000000000000000 R09: 0000000000000000
[  367.665213][T14220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  367.665223][T14220] R13: 0000000000000000 R14: 00007fb88f3a5fa0 R15: 00007ffe83aebfd8
[  367.665250][T14220]  </TASK>
[  368.075253][T14232] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2831'.
[  368.478558][T14243] 0·: left allmulticast mode
[  368.489532][T14243] hsr_slave_0: left allmulticast mode
[  368.495302][T14243] hsr_slave_1: left allmulticast mode
[  368.513031][T14243] ipvlan2: left promiscuous mode
[  368.520268][T14251] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000197: 0000 [#1] PREEMPT SMP KASAN PTI
[  368.532984][T14251] KASAN: null-ptr-deref in range [0x0000000000000cb8-0x0000000000000cbf]
[  368.541413][T14251] CPU: 1 UID: 0 PID: 14251 Comm: syz.1.2838 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  368.552190][T14251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  368.562250][T14251] RIP: 0010:bpf_map_offload_map_alloc+0x19a/0x910
[  368.568678][T14251] Code: 48 89 44 24 30 42 80 3c 20 00 74 08 48 89 df e8 ac e6 3b 00 48 89 5c 24 18 4c 89 2b 49 8d 9d bd 0c 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 df 06 00 00 0f b6 1b 31 ff 89 de e8 dd
[  368.588283][T14251] RSP: 0018:ffffc90004bdfbc0 EFLAGS: 00010203
[  368.594379][T14251] RAX: 0000000000000197 RBX: 0000000000000cbd RCX: 0000000000080000
[  368.602351][T14251] RDX: ffffc9000c089000 RSI: 0000000000000070 RDI: 0000000000000071
[  368.610317][T14251] RBP: ffffc90004bdfcd8 R08: ffffffff9455284f R09: 1ffffffff28aa509
[  368.618319][T14251] R10: dffffc0000000000 R11: fffffbfff28aa50a R12: dffffc0000000000
[  368.626551][T14251] R13: 0000000000000000 R14: ffff8880640e8000 R15: 1ffff9200097bf80
[  368.634529][T14251] FS:  00007fb8900766c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  368.643488][T14251] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  368.650069][T14251] CR2: 0000400000002000 CR3: 000000007ce2c000 CR4: 00000000003526f0
[  368.658038][T14251] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  368.666008][T14251] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  368.673980][T14251] Call Trace:
[  368.677256][T14251]  <TASK>
[  368.680187][T14251]  ? __die_body+0x5f/0xb0
[  368.684524][T14251]  ? die_addr+0xb0/0xe0
[  368.688692][T14251]  ? exc_general_protection+0x3dd/0x5d0
[  368.694262][T14251]  ? asm_exc_general_protection+0x26/0x30
[  368.699989][T14251]  ? bpf_map_offload_map_alloc+0x19a/0x910
[  368.705803][T14251]  ? __pfx_bpf_map_offload_map_alloc+0x10/0x10
[  368.712045][T14251]  ? __pfx___might_resched+0x10/0x10
[  368.717346][T14251]  ? __might_fault+0xaa/0x120
[  368.722032][T14251]  ? htab_map_alloc_check+0x380/0x470
[  368.727420][T14251]  map_create+0x946/0x11c0
[  368.731856][T14251]  __sys_bpf+0x6d3/0x820
[  368.736111][T14251]  ? __pfx___sys_bpf+0x10/0x10
[  368.740882][T14251]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  368.746860][T14251]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  368.753184][T14251]  ? exc_page_fault+0x590/0x8b0
[  368.758041][T14251]  __x64_sys_bpf+0x7c/0x90
[  368.762459][T14251]  do_syscall_64+0xf3/0x230
[  368.766959][T14251]  ? clear_bhb_loop+0x35/0x90
[  368.771669][T14251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.777588][T14251] RIP: 0033:0x7fb88f18d169
[  368.781988][T14251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.801596][T14251] RSP: 002b:00007fb890076038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  368.810359][T14251] RAX: ffffffffffffffda RBX: 00007fb88f3a5fa0 RCX: 00007fb88f18d169
[  368.818345][T14251] RDX: 0000000000000050 RSI: 00004000000009c0 RDI: 0000000000000000
[  368.826313][T14251] RBP: 00007fb88f20e2a0 R08: 0000000000000000 R09: 0000000000000000
[  368.834288][T14251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  368.842280][T14251] R13: 0000000000000001 R14: 00007fb88f3a5fa0 R15: 00007ffe83aebfd8
[  368.850266][T14251]  </TASK>
[  368.853277][T14251] Modules linked in:
[  368.857955][T14251] ---[ end trace 0000000000000000 ]---
[  368.882671][T14251] RIP: 0010:bpf_map_offload_map_alloc+0x19a/0x910
[  368.895174][T14251] Code: 48 89 44 24 30 42 80 3c 20 00 74 08 48 89 df e8 ac e6 3b 00 48 89 5c 24 18 4c 89 2b 49 8d 9d bd 0c 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 df 06 00 00 0f b6 1b 31 ff 89 de e8 dd
[  368.915714][T14251] RSP: 0018:ffffc90004bdfbc0 EFLAGS: 00010203
[  368.921849][T14251] RAX: 0000000000000197 RBX: 0000000000000cbd RCX: 0000000000080000
[  368.929964][T14251] RDX: ffffc9000c089000 RSI: 0000000000000070 RDI: 0000000000000071
[  368.939504][T14251] RBP: ffffc90004bdfcd8 R08: ffffffff9455284f R09: 1ffffffff28aa509
[  368.947518][T14251] R10: dffffc0000000000 R11: fffffbfff28aa50a R12: dffffc0000000000
[  368.955515][T14251] R13: 0000000000000000 R14: ffff8880640e8000 R15: 1ffff9200097bf80
[  368.963584][T14251] FS:  00007fb8900766c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  368.972942][T14251] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  368.979556][T14251] CR2: 00007ff2173762d8 CR3: 000000007ce2c000 CR4: 00000000003526f0
[  368.987636][T14251] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  368.995767][T14251] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  369.004016][T14251] Kernel panic - not syncing: Fatal exception
[  369.010265][T14251] Kernel Offset: disabled
[  369.014587][T14251] Rebooting in 86400 seconds..