last executing test programs:

3.984377883s ago: executing program 2 (id=3107):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000400)=ANY=[@ANYBLOB="240100001600010428bd700000000000fe8000000000000000000000000000bbfc01000000000000000008000000000100040000000000000000a00000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff02000000000000000000000000000100000000330000000a0101010000000000000000000000000000000000004e340100000000000000000000000000000004000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000a0000002bbd70000000000000000200000000000000000008000020ffffffdf2c0027cc"], 0x124}}, 0x0)

3.852303396s ago: executing program 2 (id=3109):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'macvlan0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="2c000000136001c3000000000000000000000800", @ANYRES32=r2, @ANYBLOB="0000d400000000000a000100003b"], 0x2c}}, 0x0)

3.659429308s ago: executing program 2 (id=3113):
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x4, &(0x7f0000000000)=0x1e2600, 0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000010001fff0000056842bb002552da15f6", @ANYRES32=0x0, @ANYBLOB], 0x48}}, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000380)={@local, @dev, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @multicast1}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x8100}, {0x0, 0x0, 0x0, 0x0, 0x11}, {}, {0x8, 0x88be, 0x81000004}, {0x8, 0x22eb, 0x7ffffff}}}}}}, 0x0)

3.487093044s ago: executing program 2 (id=3115):
r0 = socket$inet(0xa, 0x6, 0x40084)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, r4, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}]}, 0x1c}}, 0x0)
writev(r1, &(0x7f0000000240)=[{&(0x7f0000000400)="d9266ebff01a4e95be0d1f0819d83f8d4997f32d6d3424d905e20a725052f8ec560b44bb2883484b739f6c44b62acd37c529d3d72b425879c203ac379297c510041916761c7d9de1ece12303198b11debd6463d061eafa9868f22b3fe20d149a1ce22f16d5d5d5f026a5c23841c5ca5f87", 0x71}], 0x1)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r5, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000080)={0x34, r6, 0x2986b594068de4d5, 0x0, 0x0, {0x26}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={0x0, 0x7}, &(0x7f0000000200)=0x8)
listen(r0, 0x8)
r7 = accept4(r0, 0x0, 0x0, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r8, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r8, 0x0)
r9 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r9, 0x84, 0x7, 0x0, &(0x7f00000000c0))
readv(r7, &(0x7f0000000300)=[{&(0x7f0000000700)=""/216, 0xd8}], 0x1)

2.503973051s ago: executing program 2 (id=3119):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000400)=ANY=[@ANYBLOB="240100001600010428bd700000000000fe8000000000000000000000000000bbfc0100000000000000000a000000000100040000000000000000a00000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff02000000000000000000000000000100000000330000000a0101010000000000000000000000000000000000004e340100000000000000000000000000000004000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000a0000002bbd70000000000000000200000000000000000008000020ffffffdf2c0027cc"], 0x124}}, 0x0)

2.439032974s ago: executing program 2 (id=3121):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wg1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)=ANY=[@ANYBLOB="8c0000001000030400000000000000000ffe0000", @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e0000000040000280060001000000000004000480280003800c00030040000000060000000c0001000004000000000000d8fd010006000000090000000600050088a8000008000a00", @ANYRES32=r2, @ANYBLOB="08000500", @ANYRES32=r2], 0x8c}, 0x1, 0xba01, 0x0, 0x4004001}, 0x0)

2.091161927s ago: executing program 1 (id=3125):
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000000), r0)
r2 = socket$kcm(0x29, 0x5, 0x0)
setsockopt(r2, 0x0, 0x7, &(0x7f0000000080)="f8bdbf11b307c04032b98300007e87fefc4e620562ec9d59d40b35fb8eb413abefec85914cd4", 0x26)
setsockopt$llc_int(r0, 0x10c, 0x7, &(0x7f00000000c0)=0x6, 0x4)
setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, &(0x7f0000000100)=0x4, 0x4)
getsockopt$inet_mreqsrc(r0, 0x0, 0x0, &(0x7f0000000140)={@dev, @private, @broadcast}, &(0x7f0000000180)=0xc)
syz_genetlink_get_family_id$mptcp(&(0x7f00000001c0), r0)
r3 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000240)={[{0x2d, 'rdma'}, {0x6, 'rdma'}, {0x2b, 'net_cls'}, {0x2b, 'net_prio'}, {0x2d, 'devices'}, {0x2b, 'io'}, {0x2b, 'devices'}]}, 0x35)
connect$inet(r0, &(0x7f0000000280)={0x2, 0x4e24, @multicast1}, 0x10)
sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r1, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x474}]}, 0x2c}}, 0x4000000)
r4 = socket$kcm(0x29, 0x7, 0x0)
r5 = accept4$bt_l2cap(r0, &(0x7f00000003c0)={0x1f, 0x0, @none}, &(0x7f0000000400)=0xe, 0x80000)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x13, &(0x7f0000000440)=@raw=[@call={0x85, 0x0, 0x0, 0x3d}, @map_val={0x18, 0x6, 0x2, 0x0, 0x1}, @generic={0x5e, 0x6, 0x8, 0x7, 0xfffffffc}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3}], &(0x7f0000000500)='syzkaller\x00', 0x80000000, 0x67, &(0x7f0000000540)=""/103, 0x41100, 0x44, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x8, &(0x7f00000005c0)={0x9, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, 0x0, &(0x7f0000000600)=[{0x5, 0x5, 0x9, 0xc}, {0x1, 0x3, 0x3, 0x6}], 0x10, 0xa}, 0x94)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x89e0, &(0x7f0000000700)={r5, r6})
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r7, 0x40047211, &(0x7f0000000740)=0x1)
close(r6)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000880)={&(0x7f0000000780)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0xc, [@volatile={0x7, 0x0, 0x0, 0x9, 0x1}]}, {0x0, [0x2e, 0x0, 0x5f, 0x2e, 0x5f, 0x30, 0x30, 0x0, 0x5f, 0x61]}}, &(0x7f00000007c0)=""/189, 0x30, 0xbd, 0x1}, 0x28)
ioctl$FICLONERANGE(r2, 0x4020940d, &(0x7f00000008c0)={{r8}, 0x2, 0x685, 0x9})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000900), 0xffffffffffffffff)
sendmsg$tipc(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000940)="d7796e2573e951752da8580cf56c860013212f68f010f11b48d5e56a95b2772ea0e1783497ce66fe53ad8bc65e46accfbc4f3bb071fdc8fc0854dfe5b76603155800085bb94d9f881c8ec1a37c38a22921a6df8c4ad6fdbeabfdfcae5c29a3c3a90fc5cb8f8fe0db2aa4b394dca4377a1bbe9cd11038175746ff93789a4f763e99f10057c3c88f7c7acc012eaf768bc49d90a0d1", 0x94}], 0x1, &(0x7f0000000a40)="c7941669cff168bff7c2b108958c62e7d17c90452817d58c2c282924b71d02b1be5d6aeb04c6839f876264b258d254dcdacde70b73d95b75005e822c830c7c92e52cc111507ff0bcc75e88d6bf928c7a4c9c788920ea899daaca129aa8fed8f6045c9c35b70732155be8362746533e2da1936ddc1f9190280cb663c2787817f3702feee68280b000c0", 0x89, 0x4000000}, 0x40004)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), r0)
getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, &(0x7f0000000b80)=<r9=>0x0, &(0x7f0000000bc0)=0x4)
bind$xdp(r5, &(0x7f0000000c00)={0x2c, 0x6, r9, 0x2f, r0}, 0x10)
r10 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NFT_MSG_GETOBJ_RESET(r0, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c80)={0x7c, 0x15, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_OBJ_USERDATA={0x5d, 0x8, "c344a55ce1928bfadf416acdcc3234832721c84857e33e938728843ff7881ab2fa39a102348c716bc4fa391c80e3e0cb60ab9d982386fb64ef284f014a347eae2383d0c68ad39a05dad942ab78b5637b05297a0700f43bcf8d"}]}, 0x7c}}, 0x4040040)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000d80)={0x2, 0x4, 0x8, 0x1, 0x80, r10, 0x48000, '\x00', r9, 0xffffffffffffffff, 0x4, 0x1, 0x5}, 0x50)
setsockopt$SO_BINDTODEVICE(r10, 0x1, 0x19, &(0x7f0000000e00)='netdevsim0\x00', 0x10)

2.054719207s ago: executing program 3 (id=3126):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000700)={0x14, 0x4, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x4000040}, 0x20) (fail_nth: 7)

1.891517707s ago: executing program 1 (id=3129):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x38, r3, 0x1, 0xffffffff, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_TX_RATES={0x1c, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x18, 0x4, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x6, 0x9, 0x9, 0x9, 0x0, 0x9, 0xac6d]}}]}]}]}, 0x38}}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4001}, 0x10)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r5, 0x84, 0x7c, 0x0, &(0x7f0000000200))
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x5c, 0x1, 0x8, 0x401, 0x0, 0x0, {0x5, 0x0, 0x2}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x100}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8809}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8d4}, 0x8000)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000100)={0x7, &(0x7f0000000080)=[{0x0, 0x9, 0x0, 0x600000}, {0x9, 0x9, 0xe, 0x84}, {0x7, 0x7f, 0x2, 0x67}, {0x1ff, 0x7, 0x1, 0x9}, {0x6, 0x4, 0x8, 0x72}, {0x4, 0xdd, 0x10, 0xa}, {0x101, 0x9, 0x8, 0xe2}]}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket(0x2a, 0x2, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_CMP_OP={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_CMP_DATA={0x10, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x9, 0x1, "3f25378bca"}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x88}}, 0x0)
getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}}, 0x24}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@newtfilter={0x478, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r9, {0xa}, {}, {0x8, 0x11}}, [@filter_kind_options=@f_basic={{0xa}, {0x448, 0x2, [@TCA_BASIC_POLICE={0x444, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x8, 0x62, 0x2, 0x0, 0x8, 0x2, 0x7fff, 0x0, 0xffffff70, 0x19, 0xffffffa9, 0xf6, 0x7, 0x80000001, 0x7, 0x3, 0x9, 0xc, 0x6, 0x6, 0x5d0bef1f, 0x400, 0x5, 0x837, 0xffffffff, 0x9fec, 0x401, 0x2000068, 0x7fff, 0xdd64, 0x4, 0xb, 0x8001, 0xfffffffe, 0x0, 0x1, 0xfffffff7, 0xfff, 0xfffffff1, 0xffff, 0x4, 0xf, 0x7, 0x7469, 0xb, 0x0, 0x203, 0xff32, 0x6, 0xca, 0x4ec1, 0x1, 0x9, 0x80, 0x0, 0x10000, 0x9, 0xb4, 0x7, 0x8000006, 0x0, 0x0, 0x8156b2a, 0x2, 0xd5c, 0x4, 0xa0, 0x5, 0x267, 0x1, 0x0, 0x81, 0xff, 0xffffffff, 0xe6b, 0x9, 0xa, 0xc8c, 0xfffffffd, 0xd2a, 0x6, 0xf4e, 0x9, 0x3a0, 0x3, 0x8, 0x7ff, 0x44, 0x2, 0x9, 0x800, 0x3, 0x8, 0x0, 0x8e5e00, 0x922e, 0x0, 0x8, 0x2, 0xf, 0x4, 0x2, 0x2c000, 0x80, 0x1, 0x1, 0x2, 0x5, 0x0, 0xb, 0x6, 0x0, 0x3365, 0xa82f, 0x5, 0xfffffffd, 0x1000, 0x0, 0x4, 0x0, 0x1, 0xa, 0x81, 0x111, 0x7, 0x5c1e, 0x7b, 0x0, 0xe, 0x4, 0x6, 0x391, 0x0, 0x0, 0x3, 0x9, 0xc95d90a, 0xff, 0x5, 0x7, 0xd, 0xc7, 0x0, 0x7, 0x0, 0x9, 0xffffffff, 0x9, 0x1, 0x4, 0xd, 0x9, 0xfffffff9, 0x10, 0x2, 0xfff, 0x2, 0x6, 0xe56d, 0x600000, 0x1, 0x6, 0x0, 0x10000, 0x0, 0x1000003, 0x5, 0x0, 0x1000, 0x6, 0x9, 0x0, 0x10000, 0x81, 0x2, 0xffff6c4b, 0x1, 0x7, 0x5, 0x7fff, 0x8, 0xbeff, 0x9, 0x6, 0x0, 0x40, 0x67e1, 0x80000000, 0x5, 0x603c, 0x80000004, 0x85d, 0x0, 0xfffffff8, 0x7, 0x3, 0x10, 0x400, 0xfffffe00, 0x4, 0x3, 0x0, 0x4000ffff, 0x77, 0x6, 0x8, 0x0, 0x400, 0x1, 0x8a, 0x10, 0x4, 0x0, 0xfffffffd, 0x4003, 0x7, 0x616, 0x2, 0x2, 0xd1, 0x2, 0x0, 0x8, 0xfffffffa, 0x800, 0x1, 0x4, 0xd87, 0x80000001, 0x48e0, 0x8, 0x9, 0x40, 0x400, 0x6, 0x2, 0x4e1b, 0x1, 0x1000, 0x8, 0x4, 0x3, 0x0, 0x2, 0x9, 0xa2, 0x3, 0x10001, 0xffff, 0x4d, 0xf, 0x8, 0x2, 0x2, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x20002, 0x6, 0x1, 0x2, 0xfff, {0x5, 0x0, 0x49c, 0xf9e, 0xfff, 0x7}, {0xf8, 0x1, 0x0, 0xfc66, 0x6fb, 0x4}, 0x6, 0xdd7e}}]}]}}]}, 0x478}, 0x1, 0x0, 0x0, 0x4004001}, 0x4000)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r10, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r10, &(0x7f00000005c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x24, 0x3, 0x8, 0x101, 0x0, 0x0, {0x1, 0x0, 0x4}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8917}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x4305}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x40040f0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=@ipv6_getaddr={0x18, 0x16, 0x3c2be10bca706f15, 0x0, 0x0, {0x9, 0x0, 0x50}}, 0x18}}, 0x0)
ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f0000000000)={0x70, 0x0, 0xc, 0x100000c, 0x0, 0xf9e78fc95245f17b})
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
r12 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r12, 0x84, 0x7, &(0x7f00000002c0), &(0x7f0000000340)=0x4)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r11, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000003c0)={0x64, 0x3, 0x1, 0x101, 0x0, 0x0, {0xa, 0x0, 0x1}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x80c}]}, @CTA_FILTER={0x44, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x820}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x80}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x4}, @CTA_FILTER_ORIG_FLAGS={0x8}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x220}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x400}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x240}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x1}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x8004}, 0x20000800)

1.843981337s ago: executing program 3 (id=3130):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000400)=ANY=[@ANYBLOB="240100001600010428bd700000000000fe8000000000000000000000000000bbfc0100000000000000000f000000000100040000000000000000a00000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff02000000000000000000000000000100000000330000000a0101010000000000000000000000000000000000004e340100000000000000000000000000000004000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000a0000002bbd70000000000000000200000000000000000008000020ffffffdf2c0027cc"], 0x124}}, 0x0)

1.724492629s ago: executing program 3 (id=3133):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000180)={0x1}, 0x1)
r1 = socket$key(0xf, 0x3, 0x2)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @loopback, 0x4e23, 0x2, 'dh\x00', 0x3, 0x17, 0x4a}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000080)={0xa, 0x14e22, 0x0, @ipv4}, 0x1c)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r5, 0x29, 0x1a, &(0x7f0000000100)=0x401, 0x4)
bind$inet6(r5, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty, 0xffffffff}, 0x1c)
bind$inet6(r4, &(0x7f0000000080)={0xa, 0x14e22, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3d}}}, 0x1c)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000181000010000000000000000000000000a40000000060a010400000000000000000200050000000000000400000000000000796e7365740000180002800900010073797a30000000000800044000000000140000001100010000000000000000000000000a"], 0x68}}, 0x0)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
recvmsg$can_j1939(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000240)=""/77, 0x4d}], 0x1, &(0x7f0000000380)=""/188, 0xbc}, 0x200)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000340), 0xffffffffffffffff)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r8, 0x401054d5, &(0x7f0000000000)={0x4, &(0x7f00000001c0)=[{0x25, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x37cb7880}, {0x0, 0xfe, 0x10}, {0x6, 0x0, 0x0, 0x8007}]})
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB='D\x00\x00', @ANYRES16=r7], 0x44}}, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x50, &(0x7f0000000000)={0x0, 0x0}, 0x4c)
socket$packet(0x11, 0x2, 0x300)
ioctl$FS_IOC_GETFSLABEL(r1, 0x400452c8, &(0x7f0000000480))

1.615878571s ago: executing program 1 (id=3134):
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, &(0x7f0000000040))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r1, @ANYBLOB='\b\x00&'], 0x2c}}, 0x808)

1.443891694s ago: executing program 4 (id=3137):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x7, 0x40, 0x5}, 0x48)
r3 = socket(0x1, 0x3, 0x0)
setsockopt$sock_int(r3, 0x1, 0x10, &(0x7f0000000540)=0xb5, 0x4)
bpf$MAP_CREATE_RINGBUF(0x1d, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x1}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r4, 0x86, &(0x7f0000002600)}, 0x10)
bind$unix(r3, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000002100)=[{{&(0x7f0000000280)=@file={0x1, './file0\x00'}, 0x6e, 0x0}}], 0x1, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140), &(0x7f0000000240), 0x71, r2}, 0x38)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_DELETE_ELEM(0x15, &(0x7f0000000000)={r2, &(0x7f0000000540), 0xffff800016adffff}, 0x20)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r5, &(0x7f0000006b80)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x0, @local}, 0x1c, 0x0}}, {{&(0x7f0000000340)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, '\x00', 0x3b}, 0x3}, 0x1c, 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="e8020000000000002900000004000000", @ANYBLOB="9b64d9"], 0x2e8}}], 0x2, 0x0)
ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={0x0, @ethernet={0x6}, @hci={0x1f, 0x0, 0x2}, @ethernet={0x1, @broadcast}, 0xa1a, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000040)='veth0_to_team\x00', 0x5, 0x83e})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x13314}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x3c}, 0x1, 0xba01}, 0x0)

1.43355954s ago: executing program 1 (id=3138):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r0, 0x110, 0x4, &(0x7f0000000100), 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'gretap0\x00', <r1=>0x0})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x240, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000c00)=@newtfilter={0x48, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r5, {0x0, 0xb}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x14, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x1, 0x1}}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x2}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="200000000301010100000000000000000a0000000c0019808af4e5ab6316e6ad"], 0x20}}, 0x0)
bind$vsock_stream(r0, &(0x7f0000000180)={0x28, 0x0, 0xffffffff, @local}, 0x10)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r4, 0x5000940e, &(0x7f0000000c80)={{r3}, "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"})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x2c, 0x24, 0x3fe3aa0262d8c583, 0x2, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xfff2}, {0x0, 0xa}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2000400c)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000791048000000000071042b000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)

956.145621ms ago: executing program 4 (id=3141):
r0 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4) (async, rerun: 64)
r1 = socket(0x1, 0x77137dfbe67ce410, 0x0) (rerun: 64)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r2, 0x84, 0x6b, &(0x7f00000001c0)=[@in6={0xa, 0x4e22, 0x59, @remote, 0x1}], 0x1c) (async, rerun: 64)
setsockopt(r2, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8) (async, rerun: 64)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f0000000100), 0x4) (async)
recvmsg(r2, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) (async)
sendmsg$NFT_MSG_GETGEN(r1, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x14, 0x10, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x1) (async, rerun: 64)
ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f0000000640)=ANY=[@ANYRES32, @ANYBLOB="ffff000000000026bab5e4d93c3c66e0fa27855e91bd03785b4f7f3a6dc0b591001e07084effd8d86d34c969dbe8544ae523b358cddf7ee9b8c8bbaee54cea669db075251287cccb16ab71f15a782ca618ae81a255ec"]) (async, rerun: 64)
r3 = socket(0x10, 0x80002, 0x0) (async)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={<r5=>0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f00000000c0)=0x10) (async)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=ANY=[@ANYBLOB="bc00000019000100000000000000000000000000000000000000ffff00000000ac1414bb0000000000000000f0ff000000000004000000000200000000000000506e136713c62c90cffd2c272388eff016bef4ed35a8884476f747ecac010b891e615fbb8452289f9daa2146f916b5d35789a34aa30145ff124783684b9b775fd80ab8c94dfd69f3eb05d60eecf7648c5f659a8c1e2517d2fe2836a65c518837895beb47393166720ff41100000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffffffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000004000500"], 0xbc}}, 0x4000) (async)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f0000000100)={r5, 0x9}, &(0x7f0000000140)=0x8) (async)
r7 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000440)=@generic={&(0x7f0000000540)='./file0\x00', 0x0, 0x8}, 0x1a) (async)
r8 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYRESDEC=r1, @ANYRESDEC=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x20}}, 0x0)
poll(&(0x7f0000000200)=[{r0, 0x400}, {r7, 0x40}, {r0, 0x5200}, {r0, 0x90d0}, {r8, 0x2200}, {r0, 0x2}], 0x6, 0x1)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
sendmsg$NFT_BATCH(r9, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) (async)
r10 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r10, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8) (async, rerun: 32)
connect$inet6(r10, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback={0xff00000000000000}, 0x400}, 0x1c) (rerun: 32)
r11 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r11, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213)
sendmsg$nl_route(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="240000001a00010000000000000000000a000009000000000000000008000600000000006411294b996c3c59787831259080b15d0cae5cd669cb507782cbe980a689d05449add227fea8a68297f94f8bede371d78d79d03f8a985ae533022f11da"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)
sendmmsg$inet6(r10, &(0x7f0000003cc0)=[{{0x0, 0x1f00, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x400dc05)

903.978675ms ago: executing program 1 (id=3142):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000004000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01080000000000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d65746100000000140002800800014000000012080002400000002114000000110001"], 0xd8}}, 0x0)

902.867262ms ago: executing program 3 (id=3143):
r0 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000004c0)={'ip6_vti0\x00', &(0x7f0000000740)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x3, 0x2, 0x4e, @local, @loopback, 0x10, 0x40, 0x0, 0x4}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c00128009000100626f6e64000000001c00028005001d0000000000050001"], 0x4c}}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000700), r1)
sendmsg$NLBL_UNLABEL_C_STATICLIST(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000740)={0x14, r2, 0xf002135a49ffa319, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x40800)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xc, &(0x7f0000000240)=@assoc_value, &(0x7f0000000080)=0x8)
r4 = socket(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f0000000000), 0x400000000000235, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000680)={'syztnl1\x00', 0x0})
socket$unix(0x1, 0x5adbb412395bd717, 0x0)

805.21594ms ago: executing program 1 (id=3145):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x458, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0x6}, @TCA_CHAIN={0x8, 0xb, 0x6}, @filter_kind_options=@f_bpf={{0x8}, {0x41c, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_CLASSID={0x8, 0x3, {0x0, 0xfff1}}, @TCA_BPF_ACT={0xd4, 0x1, [@m_simple={0x30, 0x1e, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x1}}}}, @m_ctinfo={0xa0, 0x1b, 0x0, 0x0, {{0xb}, {0x74, 0x2, 0x0, 0x1, [@TCA_CTINFO_ZONE={0x6, 0x4, 0x401}, @TCA_CTINFO_ACT={0x18, 0x3, {0xd, 0x6, 0x2, 0x101, 0x1}}, @TCA_CTINFO_ACT={0x18, 0x3, {0x8, 0x8, 0x5, 0x0, 0x9}}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x8}, @TCA_CTINFO_ZONE={0x6, 0x4, 0x400}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0xffffffb4}, @TCA_CTINFO_ZONE={0x6, 0x4, 0x3}, @TCA_CTINFO_ACT={0x18, 0x3, {0x0, 0x0, 0xe, 0x8, 0x512ce089}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}]}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_FD={0x8}, @TCA_BPF_ACT={0x320, 0x1, [@m_tunnel_key={0x134, 0x18, 0x0, 0x0, {{0xf}, {0x6c, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x3, 0x697, 0x1, 0x4, 0x100}, 0x2}}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @broadcast}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x8}, @TCA_TUNNEL_KEY_NO_CSUM={0x5, 0xa, 0x1}, @TCA_TUNNEL_KEY_NO_CSUM={0x5}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x20}}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x4}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @loopback}]}, {0x99, 0x6, "39a11532c68866bc11f78348e628abc1ad84d1601df6ec416cf625f90a17a99b39a666020afde2a4e1ff54842056996ead43539758b141e01d4feddfa4f2d6608c468e5ca2264f490beef1d6e6cd9490307b7f21c63dbf597bf51d59a885bce4d88f91e5cc855b5137d18436c7291010c45e671d1962c7f9d9878bd386815376eaafbcd8c812489e208ac096ea8f25cdf925c16ed1"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_connmark={0x15c, 0x7, 0x0, 0x0, {{0xd}, {0x90, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8, 0xf, 0xb411d50005397f39, 0xa, 0x10001}, 0x9e61}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x7ce, 0xa, 0x0, 0x5, 0x1}, 0x7ffe}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfe1, 0xc0000, 0x1, 0x3, 0x5}, 0x5}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x28d4483c, 0xa41, 0x0, 0x8, 0x14eb}, 0x2}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x4a3, 0x6, 0x7, 0x1c05, 0x4}, 0x1000}}]}, {0x9d, 0x6, "79bfcd7af533d072a8c29f36e68ab9904831686d6cd3390377cca5e53a8926070630448b3fc4cd7c92ec53371be4232497d515edab99ceda9fe783a4517aa76f458d17bb770e71e0ba14efb8375ac49ead1660b083f443d1ffcecd5197019986b82c2d3c1f0d2b0de14eead0041991bd7874be9402d799e64d44c3fe6d48dd4a8f6782a95c290cea018ba0470c73b3032f66a39bf3cba21d73"}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}, @m_vlan={0x38, 0xf, 0x0, 0x0, {{0x9}, {0xc, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x9}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_ct={0x54, 0x12, 0x0, 0x0, {{0x7}, {0x2c, 0x2, 0x0, 0x1, [@TCA_CT_ZONE={0x6, 0x4, 0x266}, @TCA_CT_ZONE={0x6, 0x4, 0x54}, @TCA_CT_PARMS={0x18, 0x1, {0xdb9, 0x4, 0x3, 0x9, 0x7f}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x6}}}}]}]}}]}, 0x458}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})
unshare(0x28020480)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0xb}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
r1 = socket$caif_stream(0x25, 0x1, 0x0)
setsockopt$CAIFSO_LINK_SELECT(r1, 0x116, 0x7f, 0x0, 0x22)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_MCAST_MSFILTER(r2, 0x29, 0x30, &(0x7f0000000a00)={0x7, {{0xa, 0x4e24, 0x8, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x24d}}, 0x0, 0x3, [{{0xa, 0x4e21, 0x3ff, @local, 0x6}}, {{0xa, 0x4e22, 0xfffffffa, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x8}}, {{0xa, 0x4e23, 0x3, @private1, 0x3}}]}, 0x210)
sendfile(r2, r2, 0x0, 0x2)
r3 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r4=>0x0})
setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f0000000000)={@remote, r4}, 0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x2000, {0x0, 0x0, 0x74, r4, {0xfffd, 0x10}, {0x1, 0xfff1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x30004804}, 0x4840)
close(0x3)
setsockopt$inet6_int(r2, 0x29, 0x33, 0x0, 0x0)

719.943515ms ago: executing program 4 (id=3146):
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB, @ANYRES32=r1, @ANYBLOB="08002600901500000800570080"], 0x2c}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[], 0x2c}}, 0x0)

718.247019ms ago: executing program 0 (id=3147):
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, &(0x7f0000000040))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r1, @ANYBLOB='\b\x00&'], 0x2c}}, 0x808)

656.831479ms ago: executing program 0 (id=3148):
socket$kcm(0x2, 0x922000000001, 0x106)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket$can_bcm(0x1d, 0x2, 0x2)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$netlink(0x10, 0x3, 0xb)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="1f003300d00000000802110000010802110000005050505050500000", @ANYRES8=r0], 0x3c}}, 0x10)

570.80773ms ago: executing program 0 (id=3149):
r0 = socket$kcm(0x2b, 0x1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x6, 0xd, &(0x7f0000000040), 0x8)
sendmsg$inet(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x20000014)
ioctl$TUNSETLINK(r0, 0x400454cd, 0x205) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r2, 0x1, 0x0, 0x0, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}}, 0x30}}, 0x0)
r3 = accept4(0xffffffffffffffff, &(0x7f00000001c0)=@pppoe={0x18, 0x0, {0x0, @multicast}}, &(0x7f0000000000)=0x80, 0x80800) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000340)={0x58, r5, 0x8d61ddcfedb48df, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x2c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x28, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'sit0\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}]}]}, 0x58}}, 0x0) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x0, 0x20000000}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x5c}}, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, r5, 0x10, 0x70bd2d, 0x25dfdbfb, {}, [@ETHTOOL_A_COALESCE_TX_USECS_HIGH={0x8, 0x15, 0x6fa}, @ETHTOOL_A_COALESCE_RX_USECS={0x8, 0x2, 0x6}, @ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8, 0xa, 0x5}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES={0x8, 0x3, 0xf}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000808}, 0x20008000) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x61, 0x10, 0x78}, [@ldst={0x6, 0x0, 0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x0, 0x10, &(0x7f0000000080), 0xffffffffffffffb2}, 0x48)

553.982415ms ago: executing program 4 (id=3150):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x20, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000140)=@gcm_256={{0x304}, "480ca6eda49ed6a6", "3a2cc8b276a753b0e23e2a8436b0e1d53d11b70c57abe2e932240e766d3aebfd", "a0eb068e", "e96e232f2004a832"}, 0x38)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r0, 0x0, r1, 0x0, 0x7ffd, 0xe)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="ceaa000000000000711037000000000095"], &(0x7f0000000480)='syzkaller\x00'}, 0x90)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r2, 0x80286722, &(0x7f0000000100)={&(0x7f0000000040)=""/143, 0x8f, 0x8000, 0x7b})

423.693422ms ago: executing program 4 (id=3151):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x2, 0x2, 0x3, 0x1, 0x0, 0x43}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000280)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x48, 0x0, r1, 0x21eae}}, 0x20}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0)
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
sendmsg$inet(r12, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r11, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c}}, @rights={{0x10}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}, 0x40000100)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r13=>0xffffffffffffffff, <r14=>0xffffffffffffffff})
sendmsg$inet(r14, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r13, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRES32=r5], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
r15 = socket$nl_xfrm(0x10, 0x3, 0x6)
write$nci(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB="414601", @ANYRES8=r15], 0x4)
r16 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r16, &(0x7f0000004100)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000140)="169381", 0x3}], 0x1}}], 0x1, 0x48c4)
close(r3)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
getsockopt$PNPIPE_IFINDEX(r3, 0x113, 0x2, &(0x7f00000001c0), &(0x7f0000000200)=0x4)
ioctl$SIOCSIFHWADDR(r3, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="080000000010"})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000001000010000003a194618d96d6d2e8553", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)

373.669947ms ago: executing program 3 (id=3152):
syz_emit_ethernet(0x2a, &(0x7f0000000280)=ANY=[@ANYBLOB="bbbbbbbbbbbb8a0a63cdec5908060501080006040001aaaaaaaaaa0aac1414bb1888d7b497d6fd06000000346cb48996d03b84a67e01f935f59af3a04dca96f665274094233de88ebafa0da22f3b2e7d5f4eb699ab996ed14e08309463f8e04a4266deaec06bd1ced500000000000000000000000800"/136], 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000000c0)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x0, 0x0, 0x1}}}}}}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_LOOPBACK(r1, 0x65, 0x20, 0x0, &(0x7f0000001040)=0x5d)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x28, 0x3e, 0x10b, 0xfffffffc, 0x25dfdbfd, {0x4, 0x7c}, [@nested={0x8, 0x136, 0x0, 0x1, [@typed={0x4, 0x2, 0x0, 0x0, @binary}]}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x8e\n'}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYRES64=r0, @ANYRES16, @ANYBLOB="01000000000000000000050000000c"], 0x38}}, 0xc0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040)={0x6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="b40500000000000071104f000000000006000000000000009500000000000000"], &(0x7f0000000340)='GPL\x00', 0x5, 0xc5, &(0x7f0000000080)=""/197, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xf, 0x6}, 0x10, 0xffffffffffffffff}, 0x94)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="140100001f00f9ffff7f000000000000010100800c00010005"], 0x114}], 0x1}, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r4, 0x29, 0xc9, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="3800000012002102000000000000000007"], 0x38}}, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001514010100100000000000000800030005000000080001"], 0x20}}, 0x0)
r7 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_TABLE(r7, 0x29, 0xcf, &(0x7f0000000000)=0xff, 0x4)
sendmsg$kcm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="d8000000140081044e81f782db44b9040a1d08023f000000040000a118000200ff020000091d00000000000000000001a80016ea1f00084003eb4bd04554bf2a31cf1f2e5f54c92011148ed08734843cb12b00000803600cfab94dcf5c0461c1d67f722f054f55153c6f94007134cf6ee08000a09108e8d8ef075c0100000000000000cb090000001fb791643a5e885913b06218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f52eb4edbb57a5025ccca9e00360d8bcc00400040fad95667e0060000000000000580bb9ad809d5e1cace81b34113", 0xd9}], 0x1, 0x0, 0x0, 0x7400}, 0x4040c04)

305.00587ms ago: executing program 0 (id=3153):
r0 = socket$rxrpc(0x21, 0x2, 0x2)
setsockopt$RXRPC_SECURITY_KEYRING(r0, 0x110, 0x2, &(0x7f0000000100)=')*\\^%+,!/^\x00', 0xffe6)

223.155146ms ago: executing program 0 (id=3154):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x15, 0x4, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000180000000000000000091101f00000000009500000000000000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYRES16=r1, @ANYRES16=r0, @ANYRES8=r1, @ANYRESHEX=r2, @ANYRES8=r0, @ANYRES8=r2], 0x90}, 0x1, 0x0, 0x0, 0x20004800}, 0x24008080) (async)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYRES16=r1, @ANYRES16=r0, @ANYRES8=r1, @ANYRESHEX=r2, @ANYRES8=r0, @ANYRES8=r2], 0x90}, 0x1, 0x0, 0x0, 0x20004800}, 0x24008080)
r3 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r3, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r3, 0x8) (async)
listen(r3, 0x8)
r4 = accept4(r3, 0x0, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000007c0)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1701, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000580)="d76e", 0x1}, 0x50)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x68002, 0x0) (async)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x68002, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5}) (async)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETPERSIST(r6, 0x400454cb, 0x1)
ioctl$TUNSETPERSIST(r6, 0x400454cb, 0x1)
getsockopt$bt_hci(r4, 0x84, 0x7d, &(0x7f00000010c0)=""/4100, &(0x7f0000000200)=0x1004)
sendmsg$kcm(r4, &(0x7f00000003c0)={&(0x7f0000000040)=@vsock={0x28, 0x0, 0x2711, @hyper}, 0x80, &(0x7f00000004c0)=[{&(0x7f00000001c0)="f8a04cdfdde49548b63e9b0682a45b2b4b1d1a08002bf9c2d3cbac1608bce82a68bd1ace09f30bac9133918752f7975c4b94e3d093a9ea73edc2cf0d249a8aad716e224573a859df6cb126a70be01a64b1cb369a576da042a6c6db4ff6def5eaecea47e6d6b5fddc2b3d663a69ddde2df35b4daec0c544d0265a927710d6777a9a322f0d52dee238110abbff9edb6067acdbad8d0b95f31d8868433a4d9f9f3abe12b5bb1b57cc4471318df51fcb5e6054b176e65acc564c2cbebaed5e29591b544a61a1da", 0xc5}, {&(0x7f0000000300)}, {&(0x7f0000000400)="cfba49cad5c1b3f13e67e16ca4a5d19930dded7e352c5dd93241b3afcee000b4680f74d8110f8fc499c161ef48de98200239d53050415c224886e8f2899fabd2f1d333c379c76a1987446fb302d9d56201efcb11f115b5e0362bda2e0c7436d73f052e782c91dfa232da07649570c81b7e12b3b415d459399e875920a2b73aeabe70899b1d", 0x85}, {&(0x7f0000002100)="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", 0x1000}], 0x4, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x3e0}, 0x60000841)
syz_genetlink_get_family_id$team(&(0x7f0000000300), r4)

159.555496ms ago: executing program 0 (id=3155):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0xa, 0x3, 0x3a)
bind$unix(r1, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x4}}]}, 0x34}}, 0x0)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x1, r4, 0x1, 0x66, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}}, 0x14)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r5, 0x0)
r6 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_JOIN_FILTERS(r6, 0x65, 0x6, &(0x7f0000000140), 0x4)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000100)={'team0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0xff, 0x4, 0x6, 0x6}, 0x4, r7}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x2000a804)
setsockopt$CAN_RAW_FD_FRAMES(r6, 0x65, 0x5, &(0x7f0000000180)=0x1, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r7], 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket(0xa, 0x3, 0x3a) (async)
bind$unix(r1, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00'}) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x4}}]}, 0x34}}, 0x0) (async)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x1, r4, 0x1, 0x66, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}}, 0x14) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r5, 0x0) (async)
socket$can_raw(0x1d, 0x3, 0x1) (async)
setsockopt$CAN_RAW_JOIN_FILTERS(r6, 0x65, 0x6, &(0x7f0000000140), 0x4) (async)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000100)) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route_sched(r8, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0xff, 0x4, 0x6, 0x6}, 0x4, r7}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x2000a804) (async)
setsockopt$CAN_RAW_FD_FRAMES(r6, 0x65, 0x5, &(0x7f0000000180)=0x1, 0x4) (async)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r7], 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x0) (async)

63.077095ms ago: executing program 3 (id=3156):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
ioctl$TUNSETDEBUG(r0, 0x400454c9, &(0x7f0000000000)=0x997)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000070000000073797a30000000005c000000030a01030000000000000000050000000901010073797a30000000000900030073797a300000000008000a400000000328000480080002400000001208000140000000000c0003006e657464657673696d30000000000000a40000001100010000000000000000000000000a88d7f006a1ab60fb16d161de7eac1f2c"], 0xa4}}, 0x0)

0s ago: executing program 4 (id=3157):
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, &(0x7f0000000040))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r1, @ANYBLOB='\b\x00&'], 0x2c}}, 0x808)

kernel console output (not intermixed with test programs):

7 d8 64 89 01 48
[  217.483189][T11306] RSP: 002b:00007fd4ccfc5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  217.483209][T11306] RAX: ffffffffffffffda RBX: 00007fd4cc3b5fa0 RCX: 00007fd4cc18eb69
[  217.483222][T11306] RDX: 000000000000001c RSI: 0000200000000080 RDI: 0000000000000003
[  217.483234][T11306] RBP: 00007fd4ccfc5090 R08: 0000000000000000 R09: 0000000000000000
[  217.483244][T11306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  217.483255][T11306] R13: 0000000000000000 R14: 00007fd4cc3b5fa0 R15: 00007ffccac3c168
[  217.483286][T11306]  </TASK>
[  217.917118][T11314] netlink: 'syz.0.2016': attribute type 1 has an invalid length.
[  218.178610][T11329] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  218.235671][T11333] netlink: 'syz.3.2022': attribute type 10 has an invalid length.
[  218.279712][T11333] 8021q: adding VLAN 0 to HW filter on device batadv0
[  218.311155][T11333] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  218.462809][T11343] FAULT_INJECTION: forcing a failure.
[  218.462809][T11343] name failslab, interval 1, probability 0, space 0, times 0
[  218.508150][T11343] CPU: 1 UID: 0 PID: 11343 Comm: syz.2.2028 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  218.508178][T11343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  218.508189][T11343] Call Trace:
[  218.508196][T11343]  <TASK>
[  218.508204][T11343]  dump_stack_lvl+0x189/0x250
[  218.508227][T11343]  ? __pfx____ratelimit+0x10/0x10
[  218.508250][T11343]  ? __pfx_dump_stack_lvl+0x10/0x10
[  218.508269][T11343]  ? __pfx__printk+0x10/0x10
[  218.508293][T11343]  ? __alloc_skb+0x142/0x2d0
[  218.508318][T11343]  ? rcu_is_watching+0x15/0xb0
[  218.508347][T11343]  should_fail_ex+0x414/0x560
[  218.508378][T11343]  should_failslab+0xa8/0x100
[  218.508396][T11343]  kmem_cache_alloc_noprof+0x73/0x3c0
[  218.508418][T11343]  ? _sctp_make_chunk+0x14e/0x430
[  218.508446][T11343]  _sctp_make_chunk+0x14e/0x430
[  218.508473][T11343]  sctp_make_init+0x58b/0xd30
[  218.508492][T11343]  ? __lock_acquire+0xab9/0xd20
[  218.508525][T11343]  ? __pfx_sctp_make_init+0x10/0x10
[  218.508561][T11343]  ? rht_lock+0xff/0x220
[  218.508586][T11343]  sctp_sf_do_prm_asoc+0xd2/0x3f0
[  218.508608][T11343]  sctp_do_sm+0x1e7/0x5a20
[  218.508626][T11343]  ? __pfx_sctp_pname+0x10/0x10
[  218.508649][T11343]  ? __pfx_sctp_ulpevent_notify_peer_addr_change+0x10/0x10
[  218.508668][T11343]  ? sctp_hash_transport+0x17d/0x19c0
[  218.508688][T11343]  ? __pfx_sctp_ulpevent_notify_peer_addr_change+0x10/0x10
[  218.508706][T11343]  ? __pfx_sctp_do_sm+0x10/0x10
[  218.508726][T11343]  ? dst_release+0x72/0x1b0
[  218.508773][T11343]  ? sctp_connect_new_asoc+0x3f0/0x690
[  218.508793][T11343]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  218.508818][T11343]  sctp_primitive_ASSOCIATE+0x95/0xc0
[  218.508839][T11343]  __sctp_connect+0x947/0xd50
[  218.508870][T11343]  ? __pfx___sctp_connect+0x10/0x10
[  218.508899][T11343]  sctp_inet_connect+0x12e/0x1e0
[  218.508927][T11343]  __sys_connect+0x316/0x440
[  218.508950][T11343]  ? __fget_files+0x3a0/0x420
[  218.508968][T11343]  ? __pfx___sys_connect+0x10/0x10
[  218.509015][T11343]  ? __pfx_ksys_write+0x10/0x10
[  218.509035][T11343]  ? rcu_is_watching+0x15/0xb0
[  218.509067][T11343]  __x64_sys_connect+0x7a/0x90
[  218.509092][T11343]  do_syscall_64+0xfa/0x3b0
[  218.509117][T11343]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.509133][T11343]  ? asm_sysvec_call_function_single+0x1a/0x20
[  218.509150][T11343]  ? clear_bhb_loop+0x60/0xb0
[  218.509171][T11343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.509186][T11343] RIP: 0033:0x7fab8f78eb69
[  218.509203][T11343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.509216][T11343] RSP: 002b:00007fab905d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  218.509236][T11343] RAX: ffffffffffffffda RBX: 00007fab8f9b5fa0 RCX: 00007fab8f78eb69
[  218.509248][T11343] RDX: 000000000000001c RSI: 0000200000000080 RDI: 0000000000000003
[  218.509258][T11343] RBP: 00007fab905d0090 R08: 0000000000000000 R09: 0000000000000000
[  218.509270][T11343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  218.509281][T11343] R13: 0000000000000000 R14: 00007fab8f9b5fa0 R15: 00007ffc7a229df8
[  218.509307][T11343]  </TASK>
[  218.856845][T11352] __nla_validate_parse: 9 callbacks suppressed
[  218.856862][T11352] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2029'.
[  218.872290][T11352] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2029'.
[  218.882291][T11352] 8021q: VLANs not supported on wg1
[  219.520424][T11394] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2046'.
[  219.533698][T11394] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2046'.
[  219.558688][T11394] 8021q: VLANs not supported on wg1
[  219.696143][T11402] FAULT_INJECTION: forcing a failure.
[  219.696143][T11402] name failslab, interval 1, probability 0, space 0, times 0
[  219.709699][T11402] CPU: 1 UID: 0 PID: 11402 Comm: syz.2.2049 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  219.709727][T11402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  219.709738][T11402] Call Trace:
[  219.709745][T11402]  <TASK>
[  219.709754][T11402]  dump_stack_lvl+0x189/0x250
[  219.709777][T11402]  ? __pfx____ratelimit+0x10/0x10
[  219.709802][T11402]  ? __pfx_dump_stack_lvl+0x10/0x10
[  219.709819][T11402]  ? __pfx__printk+0x10/0x10
[  219.709844][T11402]  ? __pfx___might_resched+0x10/0x10
[  219.709871][T11402]  should_fail_ex+0x414/0x560
[  219.709902][T11402]  should_failslab+0xa8/0x100
[  219.709930][T11402]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  219.709955][T11402]  ? __alloc_skb+0x112/0x2d0
[  219.709984][T11402]  __alloc_skb+0x112/0x2d0
[  219.710013][T11402]  netlink_sendmsg+0x5c6/0xb30
[  219.710048][T11402]  ? __pfx_netlink_sendmsg+0x10/0x10
[  219.710080][T11402]  ? aa_sock_msg_perm+0x94/0x160
[  219.710105][T11402]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  219.710125][T11402]  ? __pfx_netlink_sendmsg+0x10/0x10
[  219.710151][T11402]  __sock_sendmsg+0x21c/0x270
[  219.710175][T11402]  ____sys_sendmsg+0x505/0x830
[  219.710200][T11402]  ? __pfx_____sys_sendmsg+0x10/0x10
[  219.710229][T11402]  ? import_iovec+0x74/0xa0
[  219.710257][T11402]  ___sys_sendmsg+0x21f/0x2a0
[  219.710278][T11402]  ? __pfx____sys_sendmsg+0x10/0x10
[  219.710334][T11402]  ? __fget_files+0x2a/0x420
[  219.710351][T11402]  ? __fget_files+0x3a0/0x420
[  219.710378][T11402]  __x64_sys_sendmsg+0x19b/0x260
[  219.710400][T11402]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  219.710429][T11402]  ? __pfx_ksys_write+0x10/0x10
[  219.710450][T11402]  ? rcu_is_watching+0x15/0xb0
[  219.710480][T11402]  ? do_syscall_64+0xbe/0x3b0
[  219.710508][T11402]  do_syscall_64+0xfa/0x3b0
[  219.710530][T11402]  ? lockdep_hardirqs_on+0x9c/0x150
[  219.710552][T11402]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.710569][T11402]  ? clear_bhb_loop+0x60/0xb0
[  219.710590][T11402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.710606][T11402] RIP: 0033:0x7fab8f78eb69
[  219.710623][T11402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.710637][T11402] RSP: 002b:00007fab905d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  219.710659][T11402] RAX: ffffffffffffffda RBX: 00007fab8f9b5fa0 RCX: 00007fab8f78eb69
[  219.710672][T11402] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000004
[  219.710684][T11402] RBP: 00007fab905d0090 R08: 0000000000000000 R09: 0000000000000000
[  219.710695][T11402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.710705][T11402] R13: 0000000000000000 R14: 00007fab8f9b5fa0 R15: 00007ffc7a229df8
[  219.710734][T11402]  </TASK>
[  220.108650][T11410] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 129
[  220.463643][T11435] netlink: 596 bytes leftover after parsing attributes in process `syz.4.2061'.
[  220.806778][T11453] syzkaller1: entered promiscuous mode
[  220.812853][T11453] syzkaller1: entered allmulticast mode
[  220.826180][T11453] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2069'.
[  221.025047][T11466] syz_tun: left allmulticast mode
[  221.035222][T11466] syz_tun: left promiscuous mode
[  221.044121][T11466] bridge0: port 3(syz_tun) entered disabled state
[  221.064277][T11456] syz.4.2072 (11456) used greatest stack depth: 15096 bytes left
[  221.088480][T11466] bridge_slave_0: left allmulticast mode
[  221.105952][T11466] bridge_slave_0: left promiscuous mode
[  221.112206][T11466] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.162481][T11475] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2076'.
[  221.184161][T11466] bridge_slave_1: left allmulticast mode
[  221.200337][T11466] bridge_slave_1: left promiscuous mode
[  221.216168][T11466] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.233407][T11466] bond0: (slave bond_slave_0): Releasing backup interface
[  221.265500][T11466] bond0: (slave bond_slave_1): Releasing backup interface
[  221.301969][T11466] team0: Port device team_slave_0 removed
[  221.327562][T11466] team0: Port device team_slave_1 removed
[  221.334572][T11466] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  221.342902][T11466] batman_adv: batadv0: Removing interface: batadv_slave_0
[  221.352073][T11466] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  221.360751][T11466] batman_adv: batadv0: Removing interface: batadv_slave_1
[  221.444647][ T5943] syz1: Port: 1 Link DOWN
[  221.889197][T11511] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2093'.
[  221.891911][T11513] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2092'.
[  221.911715][T11511] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2093'.
[  221.938939][T11511] 8021q: VLANs not supported on wg1
[  222.409449][T11553] 8021q: VLANs not supported on wg1
[  222.564689][T11563] 8021q: VLANs not supported on lo
[  222.701418][ T5943] IPVS: starting estimator thread 0...
[  222.796195][T11575] IPVS: using max 28 ests per chain, 67200 per kthread
[  222.929357][T11587] bridge_slave_1: left allmulticast mode
[  222.935181][T11587] bridge_slave_1: left promiscuous mode
[  222.942730][T11587] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.957864][T11587] bridge_slave_0: left allmulticast mode
[  222.964557][T11587] bridge_slave_0: left promiscuous mode
[  222.973137][T11587] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.442207][T11606] bond3: entered promiscuous mode
[  223.450529][T11606] bond3: entered allmulticast mode
[  223.457169][T11606] 8021q: adding VLAN 0 to HW filter on device bond3
[  223.822008][ T5943] IPVS: starting estimator thread 0...
[  223.875377][T11641] netlink: 'syz.4.2143': attribute type 12 has an invalid length.
[  223.885094][T11642] __nla_validate_parse: 14 callbacks suppressed
[  223.885112][T11642] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2139'.
[  223.903414][T11641] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2143'.
[  223.936062][T11638] IPVS: using max 35 ests per chain, 84000 per kthread
[  224.032767][ T1154] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  224.045397][T11641] netlink: 'syz.4.2143': attribute type 12 has an invalid length.
[  224.056842][ T1154] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  224.075329][T11641] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2143'.
[  224.086055][ T1154] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  224.117616][ T1154] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  224.368509][T11668] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2153'.
[  224.553311][T11672] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2152'.
[  224.621816][T11688] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2160'.
[  224.671033][T11689] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2159'.
[  224.712663][T11689] team1: entered promiscuous mode
[  224.724028][T11689] team1: entered allmulticast mode
[  225.003757][T11706] syzkaller1: entered promiscuous mode
[  225.013109][T11706] syzkaller1: entered allmulticast mode
[  225.032582][T11706] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2166'.
[  225.365620][T11731] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2175'.
[  225.833536][T11758] netlink: 'syz.1.2188': attribute type 33 has an invalid length.
[  225.847445][T11758] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2188'.
[  225.877677][T11763] FAULT_INJECTION: forcing a failure.
[  225.877677][T11763] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  225.894078][T11763] CPU: 0 UID: 0 PID: 11763 Comm: syz.3.2189 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  225.894106][T11763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  225.894118][T11763] Call Trace:
[  225.894125][T11763]  <TASK>
[  225.894134][T11763]  dump_stack_lvl+0x189/0x250
[  225.894158][T11763]  ? __pfx____ratelimit+0x10/0x10
[  225.894191][T11763]  ? __pfx_dump_stack_lvl+0x10/0x10
[  225.894210][T11763]  ? __pfx__printk+0x10/0x10
[  225.894245][T11763]  should_fail_ex+0x414/0x560
[  225.894285][T11763]  _copy_to_user+0x31/0xb0
[  225.894316][T11763]  simple_read_from_buffer+0xe1/0x170
[  225.894346][T11763]  proc_fail_nth_read+0x1b3/0x220
[  225.894370][T11763]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  225.894394][T11763]  ? rw_verify_area+0x258/0x650
[  225.894421][T11763]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  225.894455][T11763]  vfs_read+0x1fd/0x980
[  225.894484][T11763]  ? fdget_pos+0x247/0x320
[  225.894505][T11763]  ? __pfx___mutex_lock+0x10/0x10
[  225.894534][T11763]  ? __pfx_vfs_read+0x10/0x10
[  225.894560][T11763]  ? __fget_files+0x2a/0x420
[  225.894581][T11763]  ? __fget_files+0x3a0/0x420
[  225.894601][T11763]  ? __fget_files+0x2a/0x420
[  225.894627][T11763]  ksys_read+0x145/0x250
[  225.894653][T11763]  ? __pfx_ksys_read+0x10/0x10
[  225.894673][T11763]  ? rcu_is_watching+0x15/0xb0
[  225.894710][T11763]  ? do_syscall_64+0xbe/0x3b0
[  225.894738][T11763]  do_syscall_64+0xfa/0x3b0
[  225.894760][T11763]  ? lockdep_hardirqs_on+0x9c/0x150
[  225.894782][T11763]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.894799][T11763]  ? clear_bhb_loop+0x60/0xb0
[  225.894821][T11763]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.894837][T11763] RIP: 0033:0x7eff4958d57c
[  225.894855][T11763] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  225.894870][T11763] RSP: 002b:00007eff4a43e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  225.894891][T11763] RAX: ffffffffffffffda RBX: 00007eff497b5fa0 RCX: 00007eff4958d57c
[  225.894904][T11763] RDX: 000000000000000f RSI: 00007eff4a43e0a0 RDI: 0000000000000003
[  225.894915][T11763] RBP: 00007eff4a43e090 R08: 0000000000000000 R09: 0000000000000000
[  225.894927][T11763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.894937][T11763] R13: 0000000000000000 R14: 00007eff497b5fa0 R15: 00007ffd47b7ca28
[  225.894968][T11763]  </TASK>
[  226.917317][T11815] syz_tun: entered allmulticast mode
[  227.847659][T11873] openvswitch: netlink: Flow actions attr not present in new flow.
[  227.868705][T11873] netlink: 'syz.0.2232': attribute type 1 has an invalid length.
[  228.041858][T11878] bond2: (slave gretap0): making interface the new active one
[  228.056623][T11878] bond2: (slave gretap0): Enslaving as an active interface with an up link
[  228.841097][T11934] netlink: 'syz.1.2256': attribute type 2 has an invalid length.
[  228.867369][T11939] sctp: [Deprecated]: syz.0.2255 (pid 11939) Use of int in max_burst socket option deprecated.
[  228.867369][T11939] Use struct sctp_assoc_value instead
[  228.975853][T11936] __nla_validate_parse: 10 callbacks suppressed
[  228.975874][T11936] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2257'.
[  229.029063][T11936] bridge_slave_0: left promiscuous mode
[  229.035648][T11936] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.375310][T11959] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2265'.
[  229.394086][T11961] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2266'.
[  229.559141][T11968] netlink: 6 bytes leftover after parsing attributes in process `syz.1.2270'.
[  229.569464][T11968] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  229.604852][T11969] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2269'.
[  230.068913][T11984] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  230.410662][T12011] FAULT_INJECTION: forcing a failure.
[  230.410662][T12011] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  230.424845][T12011] CPU: 0 UID: 0 PID: 12011 Comm: syz.3.2286 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  230.424872][T12011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  230.424884][T12011] Call Trace:
[  230.424891][T12011]  <TASK>
[  230.424899][T12011]  dump_stack_lvl+0x189/0x250
[  230.424924][T12011]  ? __pfx____ratelimit+0x10/0x10
[  230.424949][T12011]  ? __pfx_dump_stack_lvl+0x10/0x10
[  230.424967][T12011]  ? __pfx__printk+0x10/0x10
[  230.424991][T12011]  ? fs_reclaim_acquire+0x7d/0x100
[  230.425019][T12011]  should_fail_ex+0x414/0x560
[  230.425050][T12011]  prepare_alloc_pages+0x213/0x610
[  230.425079][T12011]  __alloc_frozen_pages_noprof+0x123/0x370
[  230.425103][T12011]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  230.425134][T12011]  ? policy_nodemask+0x27c/0x720
[  230.425263][T12011]  ? __lock_acquire+0xab9/0xd20
[  230.425292][T12011]  alloc_pages_mpol+0x232/0x4a0
[  230.425322][T12011]  vma_alloc_folio_noprof+0xe4/0x200
[  230.425350][T12011]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  230.425387][T12011]  folio_prealloc+0x30/0x180
[  230.425414][T12011]  __handle_mm_fault+0x2c88/0x5620
[  230.425458][T12011]  ? __pfx___handle_mm_fault+0x10/0x10
[  230.425500][T12011]  ? find_vma+0xe7/0x160
[  230.425522][T12011]  ? __pfx_find_vma+0x10/0x10
[  230.425546][T12011]  handle_mm_fault+0x40a/0x8e0
[  230.425579][T12011]  do_user_addr_fault+0x764/0x1390
[  230.425621][T12011]  exc_page_fault+0x76/0xf0
[  230.425648][T12011]  asm_exc_page_fault+0x26/0x30
[  230.425663][T12011] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  230.425683][T12011] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  230.425702][T12011] RSP: 0018:ffffc9000b2ef4f8 EFLAGS: 00050206
[  230.425720][T12011] RAX: ffffffff84c2ad01 RBX: ffff88802f246000 RCX: 0000000000000e9c
[  230.425731][T12011] RDX: 0000000000000000 RSI: ffff88802f246000 RDI: 0000200000002740
[  230.425742][T12011] RBP: ffffc9000b2ef650 R08: ffff88802f246e9b R09: 1ffff11005e48dd3
[  230.425753][T12011] R10: dffffc0000000000 R11: ffffed1005e48dd4 R12: dffffc0000000000
[  230.425765][T12011] R13: 0000000000000000 R14: 00007ffffffff000 R15: 0000000000000e9c
[  230.425784][T12011]  ? _copy_to_iter+0x441/0x16f0
[  230.425811][T12011]  _copy_to_iter+0x484/0x16f0
[  230.425845][T12011]  ? __pfx__copy_to_iter+0x10/0x10
[  230.425863][T12011]  ? __skb_try_recv_from_queue+0x58f/0x730
[  230.425888][T12011]  ? __skb_try_recv_datagram+0x3da/0x4e0
[  230.425914][T12011]  __skb_datagram_iter+0xf8/0x990
[  230.425934][T12011]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  230.425960][T12011]  skb_copy_datagram_iter+0xc5/0x230
[  230.425983][T12011]  netlink_recvmsg+0x2ab/0xa30
[  230.426015][T12011]  ? __pfx_netlink_recvmsg+0x10/0x10
[  230.426044][T12011]  ? __lock_acquire+0xab9/0xd20
[  230.426064][T12011]  ? aa_sock_msg_perm+0x94/0x160
[  230.426087][T12011]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  230.426105][T12011]  ? security_socket_recvmsg+0x7e/0x2e0
[  230.426122][T12011]  ? __pfx_netlink_recvmsg+0x10/0x10
[  230.426155][T12011]  sock_recvmsg+0x22c/0x270
[  230.426183][T12011]  ____sys_recvmsg+0x1c9/0x460
[  230.426210][T12011]  ? __pfx_____sys_recvmsg+0x10/0x10
[  230.426245][T12011]  ? import_iovec+0x74/0xa0
[  230.426270][T12011]  ___sys_recvmsg+0x1b5/0x510
[  230.426294][T12011]  ? __pfx____sys_recvmsg+0x10/0x10
[  230.426336][T12011]  ? __fget_files+0x3a0/0x420
[  230.426365][T12011]  do_recvmmsg+0x307/0x770
[  230.426393][T12011]  ? __pfx_do_recvmmsg+0x10/0x10
[  230.426425][T12011]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  230.426468][T12011]  __x64_sys_recvmmsg+0x190/0x240
[  230.426491][T12011]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  230.426507][T12011]  ? rcu_is_watching+0x15/0xb0
[  230.426537][T12011]  ? do_syscall_64+0xbe/0x3b0
[  230.426564][T12011]  do_syscall_64+0xfa/0x3b0
[  230.426586][T12011]  ? lockdep_hardirqs_on+0x9c/0x150
[  230.426608][T12011]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.426624][T12011]  ? clear_bhb_loop+0x60/0xb0
[  230.426647][T12011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.426663][T12011] RIP: 0033:0x7eff4958eb69
[  230.426678][T12011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.426693][T12011] RSP: 002b:00007eff4a43e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  230.426710][T12011] RAX: ffffffffffffffda RBX: 00007eff497b5fa0 RCX: 00007eff4958eb69
[  230.426722][T12011] RDX: 0000000000000003 RSI: 0000200000000f80 RDI: 0000000000000003
[  230.426732][T12011] RBP: 00007eff4a43e090 R08: 0000000000000000 R09: 0000000000000000
[  230.426743][T12011] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  230.426754][T12011] R13: 0000000000000000 R14: 00007eff497b5fa0 R15: 00007ffd47b7ca28
[  230.426785][T12011]  </TASK>
[  230.969010][T12015] netlink: 'syz.1.2287': attribute type 1 has an invalid length.
[  230.992740][T12015] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2287'.
[  231.051251][T12020] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2290'.
[  231.414734][T12042] netlink: 165 bytes leftover after parsing attributes in process `syz.0.2298'.
[  231.471112][T12042] can: request_module (can-proto-0) failed.
[  231.481211][T12045] FAULT_INJECTION: forcing a failure.
[  231.481211][T12045] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  231.519533][T12045] CPU: 0 UID: 0 PID: 12045 Comm: syz.4.2299 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  231.519560][T12045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  231.519570][T12045] Call Trace:
[  231.519577][T12045]  <TASK>
[  231.519584][T12045]  dump_stack_lvl+0x189/0x250
[  231.519607][T12045]  ? __pfx____ratelimit+0x10/0x10
[  231.519631][T12045]  ? __pfx_dump_stack_lvl+0x10/0x10
[  231.519648][T12045]  ? __pfx__printk+0x10/0x10
[  231.519671][T12045]  ? fs_reclaim_acquire+0x7d/0x100
[  231.519698][T12045]  should_fail_ex+0x414/0x560
[  231.519729][T12045]  prepare_alloc_pages+0x213/0x610
[  231.519756][T12045]  __alloc_frozen_pages_noprof+0x123/0x370
[  231.519779][T12045]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  231.519810][T12045]  ? policy_nodemask+0x27c/0x720
[  231.519832][T12045]  ? __lock_acquire+0xab9/0xd20
[  231.519860][T12045]  alloc_pages_mpol+0x232/0x4a0
[  231.519891][T12045]  vma_alloc_folio_noprof+0xe4/0x200
[  231.519919][T12045]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  231.519958][T12045]  folio_prealloc+0x30/0x180
[  231.519985][T12045]  __handle_mm_fault+0x2c88/0x5620
[  231.520030][T12045]  ? __pfx___handle_mm_fault+0x10/0x10
[  231.520082][T12045]  ? find_vma+0xe7/0x160
[  231.520111][T12045]  ? __pfx_find_vma+0x10/0x10
[  231.520135][T12045]  handle_mm_fault+0x40a/0x8e0
[  231.520168][T12045]  do_user_addr_fault+0x764/0x1390
[  231.520206][T12045]  exc_page_fault+0x76/0xf0
[  231.520233][T12045]  asm_exc_page_fault+0x26/0x30
[  231.520249][T12045] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  231.520269][T12045] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  231.520283][T12045] RSP: 0018:ffffc9000b3e74f8 EFLAGS: 00050206
[  231.520301][T12045] RAX: ffffffff84c2ad01 RBX: ffff888142f04000 RCX: 00000000000005dc
[  231.520314][T12045] RDX: 0000000000000000 RSI: ffff888142f048c0 RDI: 0000200000003000
[  231.520326][T12045] RBP: ffffc9000b3e7650 R08: ffff888142f04e9b R09: 1ffff110285e09d3
[  231.520338][T12045] R10: dffffc0000000000 R11: ffffed10285e09d4 R12: dffffc0000000000
[  231.520350][T12045] R13: 0000000000000000 R14: 00007ffffffff000 R15: 0000000000000e9c
[  231.520370][T12045]  ? _copy_to_iter+0x441/0x16f0
[  231.520399][T12045]  _copy_to_iter+0x484/0x16f0
[  231.520431][T12045]  ? __pfx__copy_to_iter+0x10/0x10
[  231.520450][T12045]  ? __skb_try_recv_from_queue+0x58f/0x730
[  231.520478][T12045]  ? __skb_try_recv_datagram+0x3da/0x4e0
[  231.520505][T12045]  __skb_datagram_iter+0xf8/0x990
[  231.520527][T12045]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  231.520556][T12045]  skb_copy_datagram_iter+0xc5/0x230
[  231.520581][T12045]  netlink_recvmsg+0x2ab/0xa30
[  231.520616][T12045]  ? __pfx_netlink_recvmsg+0x10/0x10
[  231.520642][T12045]  ? __lock_acquire+0xab9/0xd20
[  231.520662][T12045]  ? aa_sock_msg_perm+0x94/0x160
[  231.520686][T12045]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  231.520704][T12045]  ? security_socket_recvmsg+0x7e/0x2e0
[  231.520720][T12045]  ? __pfx_netlink_recvmsg+0x10/0x10
[  231.520743][T12045]  sock_recvmsg+0x22c/0x270
[  231.520768][T12045]  ____sys_recvmsg+0x1c9/0x460
[  231.520797][T12045]  ? __pfx_____sys_recvmsg+0x10/0x10
[  231.520831][T12045]  ? import_iovec+0x74/0xa0
[  231.520856][T12045]  ___sys_recvmsg+0x1b5/0x510
[  231.520879][T12045]  ? __pfx____sys_recvmsg+0x10/0x10
[  231.520924][T12045]  ? __fget_files+0x3a0/0x420
[  231.520951][T12045]  do_recvmmsg+0x307/0x770
[  231.520977][T12045]  ? __pfx_do_recvmmsg+0x10/0x10
[  231.521007][T12045]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  231.521053][T12045]  __x64_sys_recvmmsg+0x190/0x240
[  231.521076][T12045]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  231.521093][T12045]  ? rcu_is_watching+0x15/0xb0
[  231.521132][T12045]  ? do_syscall_64+0xbe/0x3b0
[  231.521161][T12045]  do_syscall_64+0xfa/0x3b0
[  231.521183][T12045]  ? lockdep_hardirqs_on+0x9c/0x150
[  231.521205][T12045]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.521222][T12045]  ? clear_bhb_loop+0x60/0xb0
[  231.521243][T12045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.521260][T12045] RIP: 0033:0x7fd4cc18eb69
[  231.521277][T12045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.521292][T12045] RSP: 002b:00007fd4ccfc5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  231.521311][T12045] RAX: ffffffffffffffda RBX: 00007fd4cc3b5fa0 RCX: 00007fd4cc18eb69
[  231.521325][T12045] RDX: 0000000000000003 RSI: 0000200000000f80 RDI: 0000000000000003
[  231.521337][T12045] RBP: 00007fd4ccfc5090 R08: 0000000000000000 R09: 0000000000000000
[  231.521348][T12045] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  231.521358][T12045] R13: 0000000000000000 R14: 00007fd4cc3b5fa0 R15: 00007ffccac3c168
[  231.521389][T12045]  </TASK>
[  232.126494][T12055] veth1_to_bond: entered allmulticast mode
[  232.133649][T12055] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2302'.
[  232.203437][T12058] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2304'.
[  232.284280][T12055] bond0: (slave bond_slave_1): Releasing backup interface
[  232.382981][T12055] veth1_to_bond (unregistering): left allmulticast mode
[  233.167661][T12114] macvlan0: entered promiscuous mode
[  233.176061][T12114] macvlan0: entered allmulticast mode
[  233.726406][T12145] netlink: 'syz.4.2339': attribute type 1 has an invalid length.
[  233.758193][T12145] 8021q: adding VLAN 0 to HW filter on device bond3
[  233.777608][T12139] bridge_slave_0: left allmulticast mode
[  233.783682][T12139] bridge_slave_0: left promiscuous mode
[  233.790247][T12139] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.894479][T12139] vlan4 (unregistering): left promiscuous mode
[  233.902028][T12139] bridge4: port 1(vlan4) entered disabled state
[  234.730264][T12200] FAULT_INJECTION: forcing a failure.
[  234.730264][T12200] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  234.743696][T12200] CPU: 1 UID: 0 PID: 12200 Comm: syz.4.2356 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  234.743721][T12200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  234.743731][T12200] Call Trace:
[  234.743738][T12200]  <TASK>
[  234.743746][T12200]  dump_stack_lvl+0x189/0x250
[  234.743767][T12200]  ? __pfx____ratelimit+0x10/0x10
[  234.743789][T12200]  ? __pfx_dump_stack_lvl+0x10/0x10
[  234.743804][T12200]  ? __pfx__printk+0x10/0x10
[  234.743821][T12200]  ? __might_fault+0xb0/0x130
[  234.743849][T12200]  should_fail_ex+0x414/0x560
[  234.743874][T12200]  _copy_from_iter+0x1db/0x16f0
[  234.743900][T12200]  ? policy_nodemask+0x27c/0x720
[  234.743920][T12200]  ? __pfx__copy_from_iter+0x10/0x10
[  234.743941][T12200]  ? set_page_refcounted+0xa0/0x1e0
[  234.743965][T12200]  ? page_copy_sane+0x4e/0x280
[  234.743984][T12200]  copy_page_from_iter+0xdd/0x170
[  234.744006][T12200]  tun_get_user+0x1d7b/0x3e20
[  234.744030][T12200]  ? tun_get_user+0x6f6/0x3e20
[  234.744055][T12200]  ? __pfx_tun_get_user+0x10/0x10
[  234.744076][T12200]  ? aa_file_perm+0x40c/0xe70
[  234.744099][T12200]  ? aa_file_perm+0x122/0xe70
[  234.744135][T12200]  ? ref_tracker_alloc+0x318/0x460
[  234.744149][T12200]  ? __lock_acquire+0xab9/0xd20
[  234.744173][T12200]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  234.744195][T12200]  ? tun_get+0x1c/0x2f0
[  234.744217][T12200]  ? tun_get+0x1c/0x2f0
[  234.744234][T12200]  ? tun_get+0x1c/0x2f0
[  234.744254][T12200]  tun_chr_write_iter+0x113/0x200
[  234.744274][T12200]  vfs_write+0x54b/0xa90
[  234.744300][T12200]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  234.744320][T12200]  ? __pfx_vfs_write+0x10/0x10
[  234.744344][T12200]  ? __fget_files+0x2a/0x420
[  234.744359][T12200]  ksys_write+0x145/0x250
[  234.744374][T12200]  ? __pfx_ksys_write+0x10/0x10
[  234.744386][T12200]  ? rcu_is_watching+0x15/0xb0
[  234.744405][T12200]  ? do_syscall_64+0xbe/0x3b0
[  234.744422][T12200]  do_syscall_64+0xfa/0x3b0
[  234.744436][T12200]  ? lockdep_hardirqs_on+0x9c/0x150
[  234.744449][T12200]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.744459][T12200]  ? clear_bhb_loop+0x60/0xb0
[  234.744471][T12200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.744481][T12200] RIP: 0033:0x7fd4cc18d61f
[  234.744492][T12200] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  234.744501][T12200] RSP: 002b:00007fd4ccfc5000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  234.744515][T12200] RAX: ffffffffffffffda RBX: 00007fd4cc3b5fa0 RCX: 00007fd4cc18d61f
[  234.744522][T12200] RDX: 000000000000002a RSI: 0000200000000240 RDI: 00000000000000c8
[  234.744529][T12200] RBP: 00007fd4ccfc5090 R08: 0000000000000000 R09: 0000000000000000
[  234.744535][T12200] R10: 000000000000002a R11: 0000000000000293 R12: 0000000000000001
[  234.744541][T12200] R13: 0000000000000000 R14: 00007fd4cc3b5fa0 R15: 00007ffccac3c168
[  234.744557][T12200]  </TASK>
[  235.180453][T12206] FAULT_INJECTION: forcing a failure.
[  235.180453][T12206] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  235.194332][T12206] CPU: 1 UID: 0 PID: 12206 Comm: syz.4.2358 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  235.194356][T12206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  235.194368][T12206] Call Trace:
[  235.194376][T12206]  <TASK>
[  235.194384][T12206]  dump_stack_lvl+0x189/0x250
[  235.194405][T12206]  ? __pfx____ratelimit+0x10/0x10
[  235.194428][T12206]  ? __pfx_dump_stack_lvl+0x10/0x10
[  235.194446][T12206]  ? __pfx__printk+0x10/0x10
[  235.194466][T12206]  ? __might_fault+0xb0/0x130
[  235.194498][T12206]  should_fail_ex+0x414/0x560
[  235.194527][T12206]  _copy_from_iter+0x1db/0x16f0
[  235.194553][T12206]  ? rcu_is_watching+0x15/0xb0
[  235.194579][T12206]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  235.194606][T12206]  ? __pfx__copy_from_iter+0x10/0x10
[  235.194629][T12206]  ? __build_skb_around+0x257/0x3e0
[  235.194657][T12206]  ? netlink_sendmsg+0x642/0xb30
[  235.194679][T12206]  ? skb_put+0x11b/0x210
[  235.194699][T12206]  netlink_sendmsg+0x6b2/0xb30
[  235.194732][T12206]  ? __pfx_netlink_sendmsg+0x10/0x10
[  235.194758][T12206]  ? aa_sock_msg_perm+0x94/0x160
[  235.194792][T12206]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  235.194811][T12206]  ? __pfx_netlink_sendmsg+0x10/0x10
[  235.194835][T12206]  __sock_sendmsg+0x21c/0x270
[  235.194860][T12206]  ____sys_sendmsg+0x505/0x830
[  235.194884][T12206]  ? __pfx_____sys_sendmsg+0x10/0x10
[  235.194909][T12206]  ? import_iovec+0x74/0xa0
[  235.194934][T12206]  ___sys_sendmsg+0x21f/0x2a0
[  235.194954][T12206]  ? __pfx____sys_sendmsg+0x10/0x10
[  235.195002][T12206]  ? __fget_files+0x2a/0x420
[  235.195018][T12206]  ? __fget_files+0x3a0/0x420
[  235.195041][T12206]  __x64_sys_sendmsg+0x19b/0x260
[  235.195057][T12206]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  235.195078][T12206]  ? __pfx_ksys_write+0x10/0x10
[  235.195098][T12206]  ? rcu_is_watching+0x15/0xb0
[  235.195125][T12206]  ? do_syscall_64+0xbe/0x3b0
[  235.195150][T12206]  do_syscall_64+0xfa/0x3b0
[  235.195170][T12206]  ? lockdep_hardirqs_on+0x9c/0x150
[  235.195191][T12206]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.195207][T12206]  ? clear_bhb_loop+0x60/0xb0
[  235.195227][T12206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.195243][T12206] RIP: 0033:0x7fd4cc18eb69
[  235.195259][T12206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.195274][T12206] RSP: 002b:00007fd4ccfc5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  235.195294][T12206] RAX: ffffffffffffffda RBX: 00007fd4cc3b5fa0 RCX: 00007fd4cc18eb69
[  235.195306][T12206] RDX: 0000000004041080 RSI: 0000200000000340 RDI: 0000000000000006
[  235.195317][T12206] RBP: 00007fd4ccfc5090 R08: 0000000000000000 R09: 0000000000000000
[  235.195328][T12206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  235.195336][T12206] R13: 0000000000000000 R14: 00007fd4cc3b5fa0 R15: 00007ffccac3c168
[  235.195360][T12206]  </TASK>
[  235.575529][T12213] syz.2.2360: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  235.615555][T12213] CPU: 0 UID: 0 PID: 12213 Comm: syz.2.2360 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  235.615586][T12213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  235.615597][T12213] Call Trace:
[  235.615605][T12213]  <TASK>
[  235.615614][T12213]  dump_stack_lvl+0x189/0x250
[  235.615643][T12213]  ? __pfx_dump_stack_lvl+0x10/0x10
[  235.615662][T12213]  ? __pfx__printk+0x10/0x10
[  235.615684][T12213]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  235.615704][T12213]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  235.615749][T12213]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  235.615771][T12213]  warn_alloc+0x214/0x310
[  235.615788][T12213]  ? stack_depot_save_flags+0x40/0x900
[  235.615811][T12213]  ? __pfx_warn_alloc+0x10/0x10
[  235.615831][T12213]  ? kasan_save_track+0x4f/0x80
[  235.615855][T12213]  ? xskq_create+0x56/0x170
[  235.615876][T12213]  ? xsk_init_queue+0xb0/0x110
[  235.615896][T12213]  ? xsk_setsockopt+0x4dc/0x8d0
[  235.615916][T12213]  ? do_sock_setsockopt+0x179/0x1b0
[  235.615931][T12213]  ? __x64_sys_setsockopt+0x13f/0x1b0
[  235.615944][T12213]  ? do_syscall_64+0xfa/0x3b0
[  235.615967][T12213]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.615991][T12213]  __vmalloc_node_range_noprof+0x125/0x12f0
[  235.616040][T12213]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  235.616072][T12213]  ? __kasan_kmalloc+0x93/0xb0
[  235.616099][T12213]  vmalloc_user_noprof+0xad/0xf0
[  235.616117][T12213]  ? xskq_create+0xbf/0x170
[  235.616139][T12213]  xskq_create+0xbf/0x170
[  235.616164][T12213]  xsk_init_queue+0xb0/0x110
[  235.616189][T12213]  xsk_setsockopt+0x4dc/0x8d0
[  235.616215][T12213]  ? __pfx_xsk_setsockopt+0x10/0x10
[  235.616237][T12213]  ? __pfx_aa_sk_perm+0x10/0x10
[  235.616274][T12213]  ? aa_sock_opt_perm+0x74/0x110
[  235.616300][T12213]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  235.616321][T12213]  ? __pfx_xsk_setsockopt+0x10/0x10
[  235.616346][T12213]  do_sock_setsockopt+0x179/0x1b0
[  235.616370][T12213]  __x64_sys_setsockopt+0x13f/0x1b0
[  235.616395][T12213]  do_syscall_64+0xfa/0x3b0
[  235.616419][T12213]  ? lockdep_hardirqs_on+0x9c/0x150
[  235.616442][T12213]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.616460][T12213]  ? clear_bhb_loop+0x60/0xb0
[  235.616484][T12213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.616502][T12213] RIP: 0033:0x7fab8f78eb69
[  235.616520][T12213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.616536][T12213] RSP: 002b:00007fab905d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  235.616559][T12213] RAX: ffffffffffffffda RBX: 00007fab8f9b5fa0 RCX: 00007fab8f78eb69
[  235.616574][T12213] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000005
[  235.616586][T12213] RBP: 00007fab8f811df1 R08: 0000000000000004 R09: 0000000000000000
[  235.616598][T12213] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  235.616610][T12213] R13: 0000000000000000 R14: 00007fab8f9b5fa0 R15: 00007ffc7a229df8
[  235.616643][T12213]  </TASK>
[  235.704977][T12221] FAULT_INJECTION: forcing a failure.
[  235.704977][T12221] name failslab, interval 1, probability 0, space 0, times 0
[  235.757946][T12224] __nla_validate_parse: 13 callbacks suppressed
[  235.757965][T12224] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2359'.
[  235.763010][T12221] CPU: 1 UID: 0 PID: 12221 Comm: syz.3.2367 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  235.763045][T12221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  235.763055][T12221] Call Trace:
[  235.763062][T12221]  <TASK>
[  235.763070][T12221]  dump_stack_lvl+0x189/0x250
[  235.763094][T12221]  ? __pfx____ratelimit+0x10/0x10
[  235.763118][T12221]  ? __pfx_dump_stack_lvl+0x10/0x10
[  235.763136][T12221]  ? __pfx__printk+0x10/0x10
[  235.763172][T12221]  should_fail_ex+0x414/0x560
[  235.763202][T12221]  should_failslab+0xa8/0x100
[  235.763222][T12221]  __kmalloc_cache_noprof+0x70/0x3d0
[  235.763245][T12221]  ? sctp_add_bind_addr+0x8c/0x370
[  235.763272][T12221]  sctp_add_bind_addr+0x8c/0x370
[  235.763299][T12221]  sctp_copy_local_addr_list+0x30b/0x4e0
[  235.763327][T12221]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  235.763349][T12221]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  235.763373][T12221]  ? sctp_v6_is_any+0x64/0x80
[  235.763397][T12221]  ? sctp_copy_one_addr+0x93/0x360
[  235.763423][T12221]  sctp_bind_addr_copy+0xb3/0x3c0
[  235.763445][T12221]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  235.763469][T12221]  sctp_connect_new_asoc+0x2e0/0x690
[  235.763490][T12221]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  235.763511][T12221]  ? __ipv6_addr_type+0x247/0x2f0
[  235.763535][T12221]  ? sctp_inet6_send_verify+0x6e/0x300
[  235.763555][T12221]  ? sctp_endpoint_lookup_assoc+0xd1/0x260
[  235.763576][T12221]  __sctp_connect+0x5ba/0xd50
[  235.763606][T12221]  ? __pfx___sctp_connect+0x10/0x10
[  235.763634][T12221]  sctp_inet_connect+0x12e/0x1e0
[  235.763661][T12221]  __sys_connect+0x316/0x440
[  235.763686][T12221]  ? __fget_files+0x3a0/0x420
[  235.763703][T12221]  ? __pfx___sys_connect+0x10/0x10
[  235.763740][T12221]  ? __pfx_ksys_write+0x10/0x10
[  235.763760][T12221]  ? rcu_is_watching+0x15/0xb0
[  235.763794][T12221]  __x64_sys_connect+0x7a/0x90
[  235.763819][T12221]  do_syscall_64+0xfa/0x3b0
[  235.763841][T12221]  ? lockdep_hardirqs_on+0x9c/0x150
[  235.763863][T12221]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.763880][T12221]  ? clear_bhb_loop+0x60/0xb0
[  235.763901][T12221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.763917][T12221] RIP: 0033:0x7eff4958eb69
[  235.763932][T12221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.763947][T12221] RSP: 002b:00007eff4a43e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  235.763968][T12221] RAX: ffffffffffffffda RBX: 00007eff497b5fa0 RCX: 00007eff4958eb69
[  235.763981][T12221] RDX: 000000000000001c RSI: 0000200000000080 RDI: 0000000000000003
[  235.763993][T12221] RBP: 00007eff4a43e090 R08: 0000000000000000 R09: 0000000000000000
[  235.764004][T12221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  235.764015][T12221] R13: 0000000000000000 R14: 00007eff497b5fa0 R15: 00007ffd47b7ca28
[  235.764053][T12221]  </TASK>
[  235.766732][T12213] Mem-Info:
[  235.844145][T12227] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2368'.
[  235.845849][T12213] active_anon:4591 inactive_anon:0 isolated_anon:0
[  235.845849][T12213]  active_file:1742 inactive_file:39920 isolated_file:0
[  235.845849][T12213]  unevictable:768 dirty:113 writeback:1
[  235.845849][T12213]  slab_reclaimable:11444 slab_unreclaimable:99841
[  235.845849][T12213]  mapped:29440 shmem:1362 pagetables:1300
[  235.845849][T12213]  sec_pagetables:0 bounce:0
[  235.845849][T12213]  kernel_misc_reclaimable:0
[  235.845849][T12213]  free:1330124 free_pcp:12660 free_cma:0
[  235.884720][T12204] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2359'.
[  235.894672][T12213] Node 0 active_anon:18364kB inactive_anon:0kB active_file:6968kB inactive_file:159476kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:117760kB dirty:444kB writeback:4kB shmem:3912kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12420kB pagetables:4768kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  236.368833][T12213] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:132kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  236.412341][T12213] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  236.442051][T12213] lowmem_reserve[]: 0 2500 2502 2502 2502
[  236.448156][T12213] Node 0 DMA32 free:1406096kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:18452kB inactive_anon:0kB active_file:6968kB inactive_file:157656kB unevictable:1536kB writepending:504kB present:3129332kB managed:2560292kB mlocked:0kB bounce:0kB free_pcp:31908kB local_pcp:12004kB free_cma:0kB
[  236.484119][T12213] lowmem_reserve[]: 0 0 1 1 1
[  236.489378][T12213] Node 0 Normal free:16kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1820kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  236.519529][T12213] lowmem_reserve[]: 0 0 0 0 0
[  236.524367][T12213] Node 1 Normal free:3899024kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:8kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:19456kB local_pcp:7008kB free_cma:0kB
[  236.556885][T12213] lowmem_reserve[]: 0 0 0 0 0
[  236.561725][T12213] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  236.576592][T12213] Node 0 DMA32: 872*4kB (UM) 652*8kB (UM) 323*16kB (UM) 279*32kB (UME) 110*64kB (UME) 42*128kB (UME) 11*256kB (UM) 18*512kB (UME) 17*1024kB (UME) 19*2048kB (UM) 318*4096kB (UM) = 1406096kB
[  236.596322][T12213] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB
[  236.608943][T12213] Node 1 Normal: 192*4kB (UM) 54*8kB (UME) 44*16kB (UME) 115*32kB (UME) 25*64kB (UME) 9*128kB (UM) 4*256kB (UME) 3*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 948*4096kB (M) = 3899024kB
[  236.627614][T12213] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  236.637341][T12213] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  236.647307][T12213] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  236.657096][T12213] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  236.667941][T12213] 43020 total pagecache pages
[  236.672901][T12213] 0 pages in swap cache
[  236.677137][T12213] Free swap  = 124996kB
[  236.681301][T12213] Total swap = 124996kB
[  236.685491][T12213] 2097051 pages RAM
[  236.705859][T12213] 0 pages HighMem/MovableOnly
[  236.711011][T12213] 424872 pages reserved
[  236.715201][T12213] 0 pages cma reserved
[  236.780971][T12233] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2370'.
[  236.866927][T12239] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2374'.
[  236.916007][T12239] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2374'.
[  236.939908][T12239] 8021q: VLANs not supported on wg1
[  236.955312][T12244] nbd: must specify a device to reconfigure
[  237.241715][T12266] IPVS: set_ctl: invalid protocol: 22 100.1.1.1:20002
[  237.251020][T12269] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2382'.
[  237.252245][T12268] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2386'.
[  237.270500][T12269] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2382'.
[  237.291006][T12266] IPVS: set_ctl: invalid protocol: 108 172.30.0.1:20000
[  237.433262][T12278] FAULT_INJECTION: forcing a failure.
[  237.433262][T12278] name failslab, interval 1, probability 0, space 0, times 0
[  237.456153][T12278] CPU: 1 UID: 0 PID: 12278 Comm: syz.1.2387 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  237.456180][T12278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  237.456191][T12278] Call Trace:
[  237.456199][T12278]  <TASK>
[  237.456207][T12278]  dump_stack_lvl+0x189/0x250
[  237.456231][T12278]  ? __pfx____ratelimit+0x10/0x10
[  237.456255][T12278]  ? __pfx_dump_stack_lvl+0x10/0x10
[  237.456274][T12278]  ? __pfx__printk+0x10/0x10
[  237.456301][T12278]  ? __pfx___might_resched+0x10/0x10
[  237.456328][T12278]  should_fail_ex+0x414/0x560
[  237.456359][T12278]  should_failslab+0xa8/0x100
[  237.456378][T12278]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  237.456402][T12278]  ? __alloc_skb+0x112/0x2d0
[  237.456423][T12278]  ? __pfx___mutex_trylock_common+0x10/0x10
[  237.456447][T12278]  __alloc_skb+0x112/0x2d0
[  237.456476][T12278]  netlink_dump+0x1b7/0xe90
[  237.456506][T12278]  ? __netlink_lookup+0xbd/0x810
[  237.456527][T12278]  ? __pfx_netlink_dump+0x10/0x10
[  237.456546][T12278]  ? __netlink_lookup+0x752/0x810
[  237.456579][T12278]  ? netlink_lookup+0x30/0x200
[  237.456601][T12278]  ? netlink_lookup+0x30/0x200
[  237.456628][T12278]  ? netlink_lookup+0x30/0x200
[  237.456656][T12278]  __netlink_dump_start+0x5cb/0x7e0
[  237.456688][T12278]  rtnetlink_rcv_msg+0x9eb/0xb70
[  237.456714][T12278]  ? __pfx_tc_dump_tfilter+0x10/0x10
[  237.456731][T12278]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  237.456753][T12278]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  237.456774][T12278]  ? ref_tracker_free+0x63a/0x7d0
[  237.456792][T12278]  ? __pfx_rtnl_dumpit+0x10/0x10
[  237.456814][T12278]  ? __pfx_tc_dump_tfilter+0x10/0x10
[  237.456848][T12278]  netlink_rcv_skb+0x208/0x470
[  237.456874][T12278]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  237.456900][T12278]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  237.456934][T12278]  ? netlink_deliver_tap+0x2e/0x1b0
[  237.456973][T12278]  netlink_unicast+0x82c/0x9e0
[  237.457004][T12278]  ? __pfx_netlink_unicast+0x10/0x10
[  237.457028][T12278]  ? netlink_sendmsg+0x642/0xb30
[  237.457048][T12278]  ? skb_put+0x11b/0x210
[  237.457069][T12278]  netlink_sendmsg+0x805/0xb30
[  237.457103][T12278]  ? __pfx_netlink_sendmsg+0x10/0x10
[  237.457128][T12278]  ? aa_sock_msg_perm+0x94/0x160
[  237.457152][T12278]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  237.457173][T12278]  ? __pfx_netlink_sendmsg+0x10/0x10
[  237.457197][T12278]  __sock_sendmsg+0x21c/0x270
[  237.457222][T12278]  ____sys_sendmsg+0x505/0x830
[  237.457246][T12278]  ? __pfx_____sys_sendmsg+0x10/0x10
[  237.457274][T12278]  ? import_iovec+0x74/0xa0
[  237.457301][T12278]  ___sys_sendmsg+0x21f/0x2a0
[  237.457321][T12278]  ? __pfx____sys_sendmsg+0x10/0x10
[  237.457384][T12278]  ? __fget_files+0x2a/0x420
[  237.457409][T12278]  ? __fget_files+0x3a0/0x420
[  237.457437][T12278]  __x64_sys_sendmsg+0x19b/0x260
[  237.457458][T12278]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  237.457487][T12278]  ? __pfx_ksys_write+0x10/0x10
[  237.457516][T12278]  ? do_syscall_64+0xbe/0x3b0
[  237.457543][T12278]  do_syscall_64+0xfa/0x3b0
[  237.457565][T12278]  ? lockdep_hardirqs_on+0x9c/0x150
[  237.457587][T12278]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.457609][T12278]  ? clear_bhb_loop+0x60/0xb0
[  237.457631][T12278]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.457648][T12278] RIP: 0033:0x7fae1278eb69
[  237.457663][T12278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.457678][T12278] RSP: 002b:00007fae135da038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  237.457699][T12278] RAX: ffffffffffffffda RBX: 00007fae129b6080 RCX: 00007fae1278eb69
[  237.457711][T12278] RDX: 0000000004041080 RSI: 0000200000000340 RDI: 0000000000000006
[  237.457722][T12278] RBP: 00007fae135da090 R08: 0000000000000000 R09: 0000000000000000
[  237.457732][T12278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  237.457742][T12278] R13: 0000000000000001 R14: 00007fae129b6080 R15: 00007ffe74da4678
[  237.457771][T12278]  </TASK>
[  237.460619][T12279] IPv6: NLM_F_REPLACE set, but no existing node found!
[  237.957876][T12293] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2394'.
[  237.968483][T12293] 8021q: VLANs not supported on wg1
[  238.333181][T12311] netlink: 'syz.2.2401': attribute type 10 has an invalid length.
[  238.509426][T12327] 8021q: VLANs not supported on wg1
[  238.634080][T12329] netlink: 'syz.1.2408': attribute type 5 has an invalid length.
[  238.747161][T12339] FAULT_INJECTION: forcing a failure.
[  238.747161][T12339] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  238.765032][T12339] CPU: 0 UID: 0 PID: 12339 Comm: syz.0.2412 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  238.765059][T12339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  238.765076][T12339] Call Trace:
[  238.765084][T12339]  <TASK>
[  238.765092][T12339]  dump_stack_lvl+0x189/0x250
[  238.765115][T12339]  ? __pfx____ratelimit+0x10/0x10
[  238.765139][T12339]  ? __pfx_dump_stack_lvl+0x10/0x10
[  238.765157][T12339]  ? __pfx__printk+0x10/0x10
[  238.765177][T12339]  ? __might_fault+0xb0/0x130
[  238.765213][T12339]  should_fail_ex+0x414/0x560
[  238.765241][T12339]  _copy_from_iter+0x1db/0x16f0
[  238.765265][T12339]  ? rcu_is_watching+0x15/0xb0
[  238.765299][T12339]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  238.765325][T12339]  ? __pfx__copy_from_iter+0x10/0x10
[  238.765347][T12339]  ? __build_skb_around+0x257/0x3e0
[  238.765376][T12339]  ? netlink_sendmsg+0x642/0xb30
[  238.765398][T12339]  ? skb_put+0x11b/0x210
[  238.765418][T12339]  netlink_sendmsg+0x6b2/0xb30
[  238.765452][T12339]  ? __pfx_netlink_sendmsg+0x10/0x10
[  238.765480][T12339]  ? aa_sock_msg_perm+0x94/0x160
[  238.765504][T12339]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  238.765522][T12339]  ? __pfx_netlink_sendmsg+0x10/0x10
[  238.765546][T12339]  __sock_sendmsg+0x21c/0x270
[  238.765571][T12339]  ____sys_sendmsg+0x505/0x830
[  238.765596][T12339]  ? __pfx_____sys_sendmsg+0x10/0x10
[  238.765623][T12339]  ? import_iovec+0x74/0xa0
[  238.765648][T12339]  ___sys_sendmsg+0x21f/0x2a0
[  238.765668][T12339]  ? __pfx____sys_sendmsg+0x10/0x10
[  238.765726][T12339]  ? __fget_files+0x2a/0x420
[  238.765750][T12339]  ? __fget_files+0x3a0/0x420
[  238.765780][T12339]  __x64_sys_sendmsg+0x19b/0x260
[  238.765800][T12339]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  238.765827][T12339]  ? __pfx_ksys_write+0x10/0x10
[  238.765847][T12339]  ? rcu_is_watching+0x15/0xb0
[  238.765899][T12339]  ? do_syscall_64+0xbe/0x3b0
[  238.765926][T12339]  do_syscall_64+0xfa/0x3b0
[  238.765947][T12339]  ? lockdep_hardirqs_on+0x9c/0x150
[  238.765978][T12339]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.765995][T12339]  ? clear_bhb_loop+0x60/0xb0
[  238.766014][T12339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.766030][T12339] RIP: 0033:0x7fee7a78eb69
[  238.766046][T12339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  238.766062][T12339] RSP: 002b:00007fee7b6c4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  238.766082][T12339] RAX: ffffffffffffffda RBX: 00007fee7a9b5fa0 RCX: 00007fee7a78eb69
[  238.766095][T12339] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000004
[  238.766106][T12339] RBP: 00007fee7b6c4090 R08: 0000000000000000 R09: 0000000000000000
[  238.766124][T12339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  238.766134][T12339] R13: 0000000000000000 R14: 00007fee7a9b5fa0 R15: 00007ffe71c59918
[  238.766162][T12339]  </TASK>
[  239.476447][T12362] 8021q: VLANs not supported on wg1
[  239.859944][T12389] FAULT_INJECTION: forcing a failure.
[  239.859944][T12389] name failslab, interval 1, probability 0, space 0, times 0
[  239.895453][T12389] CPU: 1 UID: 0 PID: 12389 Comm: syz.1.2428 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  239.895481][T12389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  239.895492][T12389] Call Trace:
[  239.895499][T12389]  <TASK>
[  239.895507][T12389]  dump_stack_lvl+0x189/0x250
[  239.895531][T12389]  ? __pfx____ratelimit+0x10/0x10
[  239.895556][T12389]  ? __pfx_dump_stack_lvl+0x10/0x10
[  239.895574][T12389]  ? __pfx__printk+0x10/0x10
[  239.895610][T12389]  should_fail_ex+0x414/0x560
[  239.895642][T12389]  should_failslab+0xa8/0x100
[  239.895662][T12389]  __kmalloc_cache_noprof+0x70/0x3d0
[  239.895685][T12389]  ? sctp_add_bind_addr+0x8c/0x370
[  239.895716][T12389]  sctp_add_bind_addr+0x8c/0x370
[  239.895739][T12389]  sctp_copy_local_addr_list+0x30b/0x4e0
[  239.895770][T12389]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  239.895791][T12389]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  239.895813][T12389]  ? sctp_v6_is_any+0x64/0x80
[  239.895836][T12389]  ? sctp_copy_one_addr+0x93/0x360
[  239.895860][T12389]  sctp_bind_addr_copy+0xb3/0x3c0
[  239.895883][T12389]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  239.895907][T12389]  sctp_connect_new_asoc+0x2e0/0x690
[  239.895928][T12389]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  239.895947][T12389]  ? __ipv6_addr_type+0x247/0x2f0
[  239.895972][T12389]  ? sctp_inet6_send_verify+0x6e/0x300
[  239.895993][T12389]  ? sctp_endpoint_lookup_assoc+0xd1/0x260
[  239.896014][T12389]  __sctp_connect+0x5ba/0xd50
[  239.896054][T12389]  ? __pfx___sctp_connect+0x10/0x10
[  239.896084][T12389]  sctp_inet_connect+0x12e/0x1e0
[  239.896111][T12389]  __sys_connect+0x316/0x440
[  239.896135][T12389]  ? __fget_files+0x3a0/0x420
[  239.896153][T12389]  ? __pfx___sys_connect+0x10/0x10
[  239.896192][T12389]  ? __pfx_ksys_write+0x10/0x10
[  239.896212][T12389]  ? rcu_is_watching+0x15/0xb0
[  239.896246][T12389]  __x64_sys_connect+0x7a/0x90
[  239.896272][T12389]  do_syscall_64+0xfa/0x3b0
[  239.896295][T12389]  ? lockdep_hardirqs_on+0x9c/0x150
[  239.896317][T12389]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.896334][T12389]  ? clear_bhb_loop+0x60/0xb0
[  239.896356][T12389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.896372][T12389] RIP: 0033:0x7fae1278eb69
[  239.896389][T12389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.896409][T12389] RSP: 002b:00007fae135fb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  239.896429][T12389] RAX: ffffffffffffffda RBX: 00007fae129b5fa0 RCX: 00007fae1278eb69
[  239.896442][T12389] RDX: 000000000000001c RSI: 0000200000000080 RDI: 0000000000000003
[  239.896455][T12389] RBP: 00007fae135fb090 R08: 0000000000000000 R09: 0000000000000000
[  239.896465][T12389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  239.896476][T12389] R13: 0000000000000000 R14: 00007fae129b5fa0 R15: 00007ffe74da4678
[  239.896506][T12389]  </TASK>
[  240.311826][T12399] 8021q: VLANs not supported on wg1
[  240.429363][T12408] netlink: 'syz.3.2439': attribute type 11 has an invalid length.
[  240.576504][T12416] netlink: 'syz.4.2442': attribute type 11 has an invalid length.
[  240.851329][T12436] FAULT_INJECTION: forcing a failure.
[  240.851329][T12436] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  240.911388][T12436] CPU: 1 UID: 0 PID: 12436 Comm: syz.0.2446 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  240.911416][T12436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  240.911440][T12436] Call Trace:
[  240.911451][T12436]  <TASK>
[  240.911459][T12436]  dump_stack_lvl+0x189/0x250
[  240.911483][T12436]  ? __pfx____ratelimit+0x10/0x10
[  240.911506][T12436]  ? __pfx_dump_stack_lvl+0x10/0x10
[  240.911524][T12436]  ? __pfx__printk+0x10/0x10
[  240.911559][T12436]  should_fail_ex+0x414/0x560
[  240.911589][T12436]  _copy_to_user+0x31/0xb0
[  240.911616][T12436]  simple_read_from_buffer+0xe1/0x170
[  240.911646][T12436]  proc_fail_nth_read+0x1b3/0x220
[  240.911676][T12436]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  240.911699][T12436]  ? rw_verify_area+0x258/0x650
[  240.911728][T12436]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  240.911749][T12436]  vfs_read+0x1fd/0x980
[  240.911772][T12436]  ? fdget_pos+0x247/0x320
[  240.911794][T12436]  ? __pfx___mutex_lock+0x10/0x10
[  240.911819][T12436]  ? __pfx_vfs_read+0x10/0x10
[  240.911844][T12436]  ? __fget_files+0x2a/0x420
[  240.911866][T12436]  ? __fget_files+0x3a0/0x420
[  240.911882][T12436]  ? __fget_files+0x2a/0x420
[  240.911908][T12436]  ksys_read+0x145/0x250
[  240.911934][T12436]  ? __pfx_ksys_read+0x10/0x10
[  240.911954][T12436]  ? rcu_is_watching+0x15/0xb0
[  240.911984][T12436]  ? do_syscall_64+0xbe/0x3b0
[  240.912012][T12436]  do_syscall_64+0xfa/0x3b0
[  240.912034][T12436]  ? lockdep_hardirqs_on+0x9c/0x150
[  240.912056][T12436]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.912073][T12436]  ? clear_bhb_loop+0x60/0xb0
[  240.912095][T12436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.912112][T12436] RIP: 0033:0x7fee7a78d57c
[  240.912128][T12436] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  240.912143][T12436] RSP: 002b:00007fee7b6a3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  240.912163][T12436] RAX: ffffffffffffffda RBX: 00007fee7a9b6080 RCX: 00007fee7a78d57c
[  240.912176][T12436] RDX: 000000000000000f RSI: 00007fee7b6a30a0 RDI: 0000000000000007
[  240.912187][T12436] RBP: 00007fee7b6a3090 R08: 0000000000000000 R09: 0000000000000000
[  240.912198][T12436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  240.912209][T12436] R13: 0000000000000001 R14: 00007fee7a9b6080 R15: 00007ffe71c59918
[  240.912239][T12436]  </TASK>
[  241.334978][   T30] audit: type=1800 audit(1754088275.892:2): pid=12419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2442" name="memory.events" dev="tmpfs" ino=2537 res=0 errno=0
[  241.361567][T12443] __nla_validate_parse: 20 callbacks suppressed
[  241.361585][T12443] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2449'.
[  241.521726][T12454] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2453'.
[  241.727824][T12463] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2455'.
[  241.774842][T12463] dummy0: entered promiscuous mode
[  241.783283][T12469] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  241.796112][T12463] batadv_slave_1: entered promiscuous mode
[  241.850721][T12465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2456'.
[  241.938285][T12476] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2456'.
[  242.057154][T12484] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2461'.
[  242.517971][T12505] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2471'.
[  243.084021][T12534] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2481'.
[  243.108552][T12534] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2481'.
[  243.125199][T12534] 8021q: VLANs not supported on wg1
[  243.154063][T12538] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2483'.
[  243.205086][T12538] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  243.708672][T12560] FAULT_INJECTION: forcing a failure.
[  243.708672][T12560] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  243.754380][T12560] CPU: 1 UID: 0 PID: 12560 Comm: syz.4.2492 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  243.754410][T12560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  243.754422][T12560] Call Trace:
[  243.754429][T12560]  <TASK>
[  243.754437][T12560]  dump_stack_lvl+0x189/0x250
[  243.754462][T12560]  ? __pfx____ratelimit+0x10/0x10
[  243.754486][T12560]  ? __pfx_dump_stack_lvl+0x10/0x10
[  243.754505][T12560]  ? __pfx__printk+0x10/0x10
[  243.754526][T12560]  ? __might_fault+0xb0/0x130
[  243.754563][T12560]  should_fail_ex+0x414/0x560
[  243.754594][T12560]  _copy_to_iter+0x575/0x16f0
[  243.754627][T12560]  ? __pfx__copy_to_iter+0x10/0x10
[  243.754646][T12560]  ? __skb_try_recv_from_queue+0x58f/0x730
[  243.754673][T12560]  ? __skb_try_recv_datagram+0x3da/0x4e0
[  243.754699][T12560]  __skb_datagram_iter+0xf8/0x990
[  243.754721][T12560]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  243.754750][T12560]  skb_copy_datagram_iter+0xc5/0x230
[  243.754775][T12560]  netlink_recvmsg+0x2ab/0xa30
[  243.754810][T12560]  ? __pfx_netlink_recvmsg+0x10/0x10
[  243.754839][T12560]  ? __lock_acquire+0xab9/0xd20
[  243.754859][T12560]  ? aa_sock_msg_perm+0x94/0x160
[  243.754883][T12560]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  243.754904][T12560]  ? __pfx_netlink_recvmsg+0x10/0x10
[  243.754930][T12560]  sock_recvmsg_nosec+0x183/0x1c0
[  243.754957][T12560]  ____sys_recvmsg+0x3aa/0x460
[  243.754984][T12560]  ? __pfx_____sys_recvmsg+0x10/0x10
[  243.755019][T12560]  ? import_iovec+0x74/0xa0
[  243.755046][T12560]  ___sys_recvmsg+0x1b5/0x510
[  243.755075][T12560]  ? __pfx____sys_recvmsg+0x10/0x10
[  243.755128][T12560]  ? __might_fault+0xb0/0x130
[  243.755173][T12560]  do_recvmmsg+0x307/0x770
[  243.755202][T12560]  ? __pfx_do_recvmmsg+0x10/0x10
[  243.755239][T12560]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  243.755282][T12560]  __x64_sys_recvmmsg+0x190/0x240
[  243.755304][T12560]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  243.755321][T12560]  ? rcu_is_watching+0x15/0xb0
[  243.755352][T12560]  ? do_syscall_64+0xbe/0x3b0
[  243.755380][T12560]  do_syscall_64+0xfa/0x3b0
[  243.755402][T12560]  ? lockdep_hardirqs_on+0x9c/0x150
[  243.755424][T12560]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.755442][T12560]  ? clear_bhb_loop+0x60/0xb0
[  243.755463][T12560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.755480][T12560] RIP: 0033:0x7fd4cc18eb69
[  243.755496][T12560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.755512][T12560] RSP: 002b:00007fd4ccfc5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  243.755532][T12560] RAX: ffffffffffffffda RBX: 00007fd4cc3b5fa0 RCX: 00007fd4cc18eb69
[  243.755546][T12560] RDX: 0000000000000003 RSI: 0000200000000f80 RDI: 0000000000000003
[  243.755557][T12560] RBP: 00007fd4ccfc5090 R08: 0000000000000000 R09: 0000000000000000
[  243.755568][T12560] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  243.755579][T12560] R13: 0000000000000000 R14: 00007fd4cc3b5fa0 R15: 00007ffccac3c168
[  243.755608][T12560]  </TASK>
[  244.226454][T12570] 8021q: VLANs not supported on wg1
[  244.409549][T12587] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  244.759551][T12610] 8021q: VLANs not supported on wg1
[  244.864483][T12615] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  246.211711][T12671] FAULT_INJECTION: forcing a failure.
[  246.211711][T12671] name failslab, interval 1, probability 0, space 0, times 0
[  246.252281][T12671] CPU: 0 UID: 0 PID: 12671 Comm: syz.1.2532 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  246.252311][T12671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  246.252322][T12671] Call Trace:
[  246.252330][T12671]  <TASK>
[  246.252338][T12671]  dump_stack_lvl+0x189/0x250
[  246.252362][T12671]  ? __pfx____ratelimit+0x10/0x10
[  246.252386][T12671]  ? __pfx_dump_stack_lvl+0x10/0x10
[  246.252404][T12671]  ? __pfx__printk+0x10/0x10
[  246.252441][T12671]  should_fail_ex+0x414/0x560
[  246.252473][T12671]  should_failslab+0xa8/0x100
[  246.252492][T12671]  __kmalloc_cache_noprof+0x70/0x3d0
[  246.252517][T12671]  ? sctp_add_bind_addr+0x8c/0x370
[  246.252545][T12671]  sctp_add_bind_addr+0x8c/0x370
[  246.252572][T12671]  sctp_copy_local_addr_list+0x30b/0x4e0
[  246.252597][T12671]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  246.252620][T12671]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  246.252645][T12671]  ? sctp_v6_is_any+0x64/0x80
[  246.252671][T12671]  ? sctp_copy_one_addr+0x93/0x360
[  246.252697][T12671]  sctp_bind_addr_copy+0xb3/0x3c0
[  246.252720][T12671]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  246.252744][T12671]  sctp_connect_new_asoc+0x2e0/0x690
[  246.252764][T12671]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  246.252784][T12671]  ? __ipv6_addr_type+0x247/0x2f0
[  246.252809][T12671]  ? sctp_inet6_send_verify+0x6e/0x300
[  246.252829][T12671]  ? sctp_endpoint_lookup_assoc+0xd1/0x260
[  246.252849][T12671]  __sctp_connect+0x5ba/0xd50
[  246.252880][T12671]  ? __pfx___sctp_connect+0x10/0x10
[  246.252910][T12671]  sctp_inet_connect+0x12e/0x1e0
[  246.252937][T12671]  __sys_connect+0x316/0x440
[  246.252962][T12671]  ? __fget_files+0x3a0/0x420
[  246.252980][T12671]  ? __pfx___sys_connect+0x10/0x10
[  246.253016][T12671]  ? __pfx_ksys_write+0x10/0x10
[  246.253036][T12671]  ? rcu_is_watching+0x15/0xb0
[  246.253069][T12671]  __x64_sys_connect+0x7a/0x90
[  246.253095][T12671]  do_syscall_64+0xfa/0x3b0
[  246.253118][T12671]  ? lockdep_hardirqs_on+0x9c/0x150
[  246.253141][T12671]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.253159][T12671]  ? clear_bhb_loop+0x60/0xb0
[  246.253180][T12671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.253197][T12671] RIP: 0033:0x7fae1278eb69
[  246.253214][T12671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  246.253228][T12671] RSP: 002b:00007fae135fb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  246.253255][T12671] RAX: ffffffffffffffda RBX: 00007fae129b5fa0 RCX: 00007fae1278eb69
[  246.253268][T12671] RDX: 000000000000001c RSI: 0000200000000080 RDI: 0000000000000003
[  246.253278][T12671] RBP: 00007fae135fb090 R08: 0000000000000000 R09: 0000000000000000
[  246.253288][T12671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  246.253298][T12671] R13: 0000000000000000 R14: 00007fae129b5fa0 R15: 00007ffe74da4678
[  246.253328][T12671]  </TASK>
[  246.737666][T12694] tipc: Started in network mode
[  246.742597][T12694] tipc: Node identity 2a097d7ee3f7, cluster identity 4711
[  246.750089][T12694] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  246.758344][T12694] syzkaller0: entered promiscuous mode
[  246.763861][T12694] syzkaller0: entered allmulticast mode
[  246.789718][T12694] tipc: Resetting bearer <eth:syzkaller0>
[  246.804953][T12692] tipc: Resetting bearer <eth:syzkaller0>
[  246.824560][T12692] tipc: Disabling bearer <eth:syzkaller0>
[  246.973346][T12710] __nla_validate_parse: 12 callbacks suppressed
[  246.973365][T12710] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2545'.
[  246.991679][T12708] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2544'.
[  247.050284][T12715] FAULT_INJECTION: forcing a failure.
[  247.050284][T12715] name failslab, interval 1, probability 0, space 0, times 0
[  247.081065][T12715] CPU: 0 UID: 0 PID: 12715 Comm: syz.1.2548 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  247.081093][T12715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  247.081104][T12715] Call Trace:
[  247.081111][T12715]  <TASK>
[  247.081120][T12715]  dump_stack_lvl+0x189/0x250
[  247.081143][T12715]  ? __pfx____ratelimit+0x10/0x10
[  247.081167][T12715]  ? __pfx_dump_stack_lvl+0x10/0x10
[  247.081186][T12715]  ? __pfx__printk+0x10/0x10
[  247.081223][T12715]  should_fail_ex+0x414/0x560
[  247.081255][T12715]  should_failslab+0xa8/0x100
[  247.081274][T12715]  __kmalloc_cache_noprof+0x70/0x3d0
[  247.081298][T12715]  ? sctp_add_bind_addr+0x8c/0x370
[  247.081325][T12715]  sctp_add_bind_addr+0x8c/0x370
[  247.081353][T12715]  sctp_copy_local_addr_list+0x30b/0x4e0
[  247.081379][T12715]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  247.081402][T12715]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  247.081426][T12715]  ? sctp_v6_is_any+0x64/0x80
[  247.081449][T12715]  ? sctp_copy_one_addr+0x93/0x360
[  247.081474][T12715]  sctp_bind_addr_copy+0xb3/0x3c0
[  247.081497][T12715]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  247.081521][T12715]  sctp_connect_new_asoc+0x2e0/0x690
[  247.081542][T12715]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  247.081561][T12715]  ? __ipv6_addr_type+0x247/0x2f0
[  247.081586][T12715]  ? sctp_inet6_send_verify+0x6e/0x300
[  247.081606][T12715]  ? sctp_endpoint_lookup_assoc+0xd1/0x260
[  247.081627][T12715]  __sctp_connect+0x5ba/0xd50
[  247.081659][T12715]  ? __pfx___sctp_connect+0x10/0x10
[  247.081688][T12715]  sctp_inet_connect+0x12e/0x1e0
[  247.081716][T12715]  __sys_connect+0x316/0x440
[  247.081740][T12715]  ? __fget_files+0x3a0/0x420
[  247.081757][T12715]  ? __pfx___sys_connect+0x10/0x10
[  247.081795][T12715]  ? __pfx_ksys_write+0x10/0x10
[  247.081816][T12715]  ? rcu_is_watching+0x15/0xb0
[  247.081849][T12715]  __x64_sys_connect+0x7a/0x90
[  247.081875][T12715]  do_syscall_64+0xfa/0x3b0
[  247.081898][T12715]  ? lockdep_hardirqs_on+0x9c/0x150
[  247.081920][T12715]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.081938][T12715]  ? clear_bhb_loop+0x60/0xb0
[  247.081966][T12715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.081983][T12715] RIP: 0033:0x7fae1278eb69
[  247.082000][T12715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.082015][T12715] RSP: 002b:00007fae135fb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  247.082034][T12715] RAX: ffffffffffffffda RBX: 00007fae129b5fa0 RCX: 00007fae1278eb69
[  247.082048][T12715] RDX: 000000000000001c RSI: 0000200000000080 RDI: 0000000000000003
[  247.082058][T12715] RBP: 00007fae135fb090 R08: 0000000000000000 R09: 0000000000000000
[  247.082069][T12715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  247.082080][T12715] R13: 0000000000000000 R14: 00007fae129b5fa0 R15: 00007ffe74da4678
[  247.082111][T12715]  </TASK>
[  247.610986][T12730] netlink: 'syz.3.2557': attribute type 4 has an invalid length.
[  247.620975][T12732] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2556'.
[  247.635486][T12733] netlink: 'syz.0.2555': attribute type 1 has an invalid length.
[  247.644909][T12735] netlink: 'syz.3.2557': attribute type 4 has an invalid length.
[  247.675172][T12732] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2556'.
[  247.741450][T12732] 8021q: VLANs not supported on wg1
[  247.842351][ T5960] IPVS: starting estimator thread 0...
[  247.920076][T12750] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  247.941856][T12750] syzkaller0: entered promiscuous mode
[  247.955912][T12749] IPVS: using max 32 ests per chain, 76800 per kthread
[  247.966741][T12750] syzkaller0: entered allmulticast mode
[  248.052161][T12750] tipc: Resetting bearer <eth:syzkaller0>
[  248.078044][T12746] tipc: Resetting bearer <eth:syzkaller0>
[  248.136872][T12746] tipc: Disabling bearer <eth:syzkaller0>
[  248.190793][T12772] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  248.196686][T12773] vxcan1: tx address claim with dlc 0
[  248.343318][T12781] Unsupported ieee802154 address type: 0
[  248.397989][T12785] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2576'.
[  248.443789][ T5957] IPVS: starting estimator thread 0...
[  248.523385][T12797] veth0: entered promiscuous mode
[  248.534618][T12797] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2579'.
[  248.544085][T12789] IPVS: using max 26 ests per chain, 62400 per kthread
[  248.573267][T12799] netlink: 788 bytes leftover after parsing attributes in process `syz.3.2581'.
[  248.680763][T12802] vxcan1: tx address claim with dlc 0
[  248.824395][T12810] netlink: 'syz.2.2586': attribute type 21 has an invalid length.
[  248.832637][T12810] IPv6: NLM_F_CREATE should be specified when creating new route
[  248.842602][T12810] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  248.850052][T12810] IPv6: NLM_F_CREATE should be set when creating new route
[  248.857410][T12810] IPv6: NLM_F_CREATE should be set when creating new route
[  248.864929][T12810] IPv6: NLM_F_CREATE should be set when creating new route
[  249.290481][T12829] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2590'.
[  249.393175][T12835] vxcan1: tx address claim with dlc 0
[  249.449582][T12837] openvswitch: netlink: Flow key attribute not present in set flow.
[  249.466323][T12839] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2595'.
[  249.573492][T12843] 8021q: VLANs not supported on caif0
[  249.675214][T12854] netlink: 'syz.0.2597': attribute type 10 has an invalid length.
[  249.691328][T12851] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition
[  249.721629][T12851] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0)
[  249.736559][T12860] netlink: 'syz.3.2601': attribute type 10 has an invalid length.
[  249.894704][T12867] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.2604'.
[  249.940485][T12870] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  249.948996][T12870] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  250.814193][T12925] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  251.014964][T12940] netlink: 'syz.1.2628': attribute type 11 has an invalid length.
[  251.031602][T12940] netlink: 'syz.1.2628': attribute type 11 has an invalid length.
[  251.195500][T12944] "syz.4.2629" (12944) uses obsolete ecb(arc4) skcipher
[  251.225249][   T60] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  252.053209][T12975] __nla_validate_parse: 9 callbacks suppressed
[  252.053230][T12975] netlink: 7 bytes leftover after parsing attributes in process `syz.0.2638'.
[  252.093705][T12977] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2639'.
[  252.112357][T12977] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2639'.
[  252.219462][T12983] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2642'.
[  252.238543][T12986] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input6
[  252.241628][T12983] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2642'.
[  252.354510][T12993] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2646'.
[  252.527014][T13003] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2649'.
[  252.687797][T13008] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  252.715339][T12993] IPVS: set_ctl: invalid protocol: 60 0.0.0.0:20000
[  252.728516][T13011] vxcan1: tx address claim with different name
[  253.081185][T13031] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2657'.
[  253.219069][T13040] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2660'.
[  253.342729][T13046] netlink: 248 bytes leftover after parsing attributes in process `syz.4.2664'.
[  253.352433][T13046] NCSI netlink: No device for ifindex 0
[  253.396271][T13049] FAULT_INJECTION: forcing a failure.
[  253.396271][T13049] name failslab, interval 1, probability 0, space 0, times 0
[  253.409161][T13049] CPU: 0 UID: 0 PID: 13049 Comm: syz.4.2665 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  253.409188][T13049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  253.409198][T13049] Call Trace:
[  253.409206][T13049]  <TASK>
[  253.409214][T13049]  dump_stack_lvl+0x189/0x250
[  253.409239][T13049]  ? __pfx____ratelimit+0x10/0x10
[  253.409263][T13049]  ? __pfx_dump_stack_lvl+0x10/0x10
[  253.409281][T13049]  ? __pfx__printk+0x10/0x10
[  253.409305][T13049]  ? __pfx___might_resched+0x10/0x10
[  253.409329][T13049]  ? fs_reclaim_acquire+0x7d/0x100
[  253.409352][T13049]  should_fail_ex+0x414/0x560
[  253.409383][T13049]  should_failslab+0xa8/0x100
[  253.409401][T13049]  __kmalloc_noprof+0xcb/0x4f0
[  253.409425][T13049]  ? sock_kmalloc+0xd6/0x160
[  253.409449][T13049]  sock_kmalloc+0xd6/0x160
[  253.409471][T13049]  ____sys_sendmsg+0x1b5/0x830
[  253.409494][T13049]  ? __pfx_____sys_sendmsg+0x10/0x10
[  253.409520][T13049]  ? import_iovec+0x74/0xa0
[  253.409558][T13049]  ___sys_sendmsg+0x21f/0x2a0
[  253.409579][T13049]  ? __pfx____sys_sendmsg+0x10/0x10
[  253.409634][T13049]  ? __fget_files+0x2a/0x420
[  253.409650][T13049]  ? __fget_files+0x3a0/0x420
[  253.409678][T13049]  __x64_sys_sendmsg+0x19b/0x260
[  253.409699][T13049]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  253.409727][T13049]  ? __pfx_ksys_write+0x10/0x10
[  253.409747][T13049]  ? rcu_is_watching+0x15/0xb0
[  253.409777][T13049]  ? do_syscall_64+0xbe/0x3b0
[  253.409804][T13049]  do_syscall_64+0xfa/0x3b0
[  253.409825][T13049]  ? lockdep_hardirqs_on+0x9c/0x150
[  253.409846][T13049]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.409863][T13049]  ? clear_bhb_loop+0x60/0xb0
[  253.409884][T13049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.409901][T13049] RIP: 0033:0x7fd4cc18eb69
[  253.409917][T13049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.409931][T13049] RSP: 002b:00007fd4ccfc5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  253.409951][T13049] RAX: ffffffffffffffda RBX: 00007fd4cc3b5fa0 RCX: 00007fd4cc18eb69
[  253.409962][T13049] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  253.409973][T13049] RBP: 00007fd4ccfc5090 R08: 0000000000000000 R09: 0000000000000000
[  253.409983][T13049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  253.409994][T13049] R13: 0000000000000000 R14: 00007fd4cc3b5fa0 R15: 00007ffccac3c168
[  253.410020][T13049]  </TASK>
[  253.951463][T13066] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  254.153551][T13077] FAULT_INJECTION: forcing a failure.
[  254.153551][T13077] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  254.188832][T13077] CPU: 1 UID: 0 PID: 13077 Comm: syz.3.2676 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  254.188861][T13077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  254.188872][T13077] Call Trace:
[  254.188880][T13077]  <TASK>
[  254.188888][T13077]  dump_stack_lvl+0x189/0x250
[  254.188912][T13077]  ? __pfx____ratelimit+0x10/0x10
[  254.188937][T13077]  ? __pfx_dump_stack_lvl+0x10/0x10
[  254.188955][T13077]  ? __pfx__printk+0x10/0x10
[  254.188977][T13077]  ? __might_fault+0xb0/0x130
[  254.189012][T13077]  should_fail_ex+0x414/0x560
[  254.189042][T13077]  _copy_from_iter+0x1db/0x16f0
[  254.189068][T13077]  ? rcu_is_watching+0x15/0xb0
[  254.189094][T13077]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  254.189121][T13077]  ? __pfx__copy_from_iter+0x10/0x10
[  254.189144][T13077]  ? __build_skb_around+0x257/0x3e0
[  254.189173][T13077]  ? netlink_sendmsg+0x642/0xb30
[  254.189196][T13077]  ? skb_put+0x11b/0x210
[  254.189216][T13077]  netlink_sendmsg+0x6b2/0xb30
[  254.189250][T13077]  ? __pfx_netlink_sendmsg+0x10/0x10
[  254.189278][T13077]  ? aa_sock_msg_perm+0x94/0x160
[  254.189302][T13077]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  254.189321][T13077]  ? __pfx_netlink_sendmsg+0x10/0x10
[  254.189347][T13077]  __sock_sendmsg+0x21c/0x270
[  254.189373][T13077]  sock_write_iter+0x258/0x330
[  254.189397][T13077]  ? __pfx_sock_write_iter+0x10/0x10
[  254.189429][T13077]  ? bpf_lsm_file_permission+0x9/0x20
[  254.189455][T13077]  ? security_file_permission+0x75/0x290
[  254.189484][T13077]  vfs_write+0x54b/0xa90
[  254.189513][T13077]  ? __pfx_sock_write_iter+0x10/0x10
[  254.189534][T13077]  ? __pfx_vfs_write+0x10/0x10
[  254.189573][T13077]  ? __fget_files+0x2a/0x420
[  254.189600][T13077]  ksys_write+0x145/0x250
[  254.189627][T13077]  ? __pfx_ksys_write+0x10/0x10
[  254.189647][T13077]  ? rcu_is_watching+0x15/0xb0
[  254.189677][T13077]  ? do_syscall_64+0xbe/0x3b0
[  254.189704][T13077]  do_syscall_64+0xfa/0x3b0
[  254.189726][T13077]  ? lockdep_hardirqs_on+0x9c/0x150
[  254.189749][T13077]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.189766][T13077]  ? clear_bhb_loop+0x60/0xb0
[  254.189792][T13077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.189808][T13077] RIP: 0033:0x7eff4958eb69
[  254.189823][T13077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  254.189837][T13077] RSP: 002b:00007eff4a43e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  254.189857][T13077] RAX: ffffffffffffffda RBX: 00007eff497b5fa0 RCX: 00007eff4958eb69
[  254.189868][T13077] RDX: 0000000000000024 RSI: 0000200000000000 RDI: 0000000000000003
[  254.189879][T13077] RBP: 00007eff4a43e090 R08: 0000000000000000 R09: 0000000000000000
[  254.189888][T13077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  254.189898][T13077] R13: 0000000000000000 R14: 00007eff497b5fa0 R15: 00007ffd47b7ca28
[  254.189924][T13077]  </TASK>
[  254.492884][T13083] FAULT_INJECTION: forcing a failure.
[  254.492884][T13083] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  254.566636][T13083] CPU: 0 UID: 0 PID: 13083 Comm: syz.0.2678 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  254.566665][T13083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  254.566686][T13083] Call Trace:
[  254.566694][T13083]  <TASK>
[  254.566702][T13083]  dump_stack_lvl+0x189/0x250
[  254.566725][T13083]  ? __pfx____ratelimit+0x10/0x10
[  254.566750][T13083]  ? __pfx_dump_stack_lvl+0x10/0x10
[  254.566768][T13083]  ? __pfx__printk+0x10/0x10
[  254.566789][T13083]  ? __might_fault+0xb0/0x130
[  254.566824][T13083]  should_fail_ex+0x414/0x560
[  254.566855][T13083]  _copy_from_user+0x2d/0xb0
[  254.566880][T13083]  ____sys_sendmsg+0x2fe/0x830
[  254.566912][T13083]  ? __pfx_____sys_sendmsg+0x10/0x10
[  254.566941][T13083]  ? import_iovec+0x74/0xa0
[  254.566967][T13083]  ___sys_sendmsg+0x21f/0x2a0
[  254.566988][T13083]  ? __pfx____sys_sendmsg+0x10/0x10
[  254.567044][T13083]  ? __fget_files+0x2a/0x420
[  254.567061][T13083]  ? __fget_files+0x3a0/0x420
[  254.567089][T13083]  __x64_sys_sendmsg+0x19b/0x260
[  254.567110][T13083]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  254.567139][T13083]  ? __pfx_ksys_write+0x10/0x10
[  254.567161][T13083]  ? rcu_is_watching+0x15/0xb0
[  254.567191][T13083]  ? do_syscall_64+0xbe/0x3b0
[  254.567218][T13083]  do_syscall_64+0xfa/0x3b0
[  254.567239][T13083]  ? lockdep_hardirqs_on+0x9c/0x150
[  254.567261][T13083]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.567279][T13083]  ? clear_bhb_loop+0x60/0xb0
[  254.567300][T13083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.567316][T13083] RIP: 0033:0x7fee7a78eb69
[  254.567332][T13083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  254.567347][T13083] RSP: 002b:00007fee7b6c4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  254.567368][T13083] RAX: ffffffffffffffda RBX: 00007fee7a9b5fa0 RCX: 00007fee7a78eb69
[  254.567381][T13083] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  254.567392][T13083] RBP: 00007fee7b6c4090 R08: 0000000000000000 R09: 0000000000000000
[  254.567403][T13083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  254.567414][T13083] R13: 0000000000000000 R14: 00007fee7a9b5fa0 R15: 00007ffe71c59918
[  254.567442][T13083]  </TASK>
[  254.992285][T13102] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  255.159339][T13110] vxcan1: tx address claim with different name
[  255.174987][T13111] FAULT_INJECTION: forcing a failure.
[  255.174987][T13111] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  255.208147][T13111] CPU: 0 UID: 0 PID: 13111 Comm: syz.2.2689 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  255.208175][T13111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  255.208187][T13111] Call Trace:
[  255.208194][T13111]  <TASK>
[  255.208202][T13111]  dump_stack_lvl+0x189/0x250
[  255.208226][T13111]  ? __pfx____ratelimit+0x10/0x10
[  255.208250][T13111]  ? __pfx_dump_stack_lvl+0x10/0x10
[  255.208269][T13111]  ? __pfx__printk+0x10/0x10
[  255.208304][T13111]  should_fail_ex+0x414/0x560
[  255.208335][T13111]  _copy_to_user+0x31/0xb0
[  255.208361][T13111]  simple_read_from_buffer+0xe1/0x170
[  255.208393][T13111]  proc_fail_nth_read+0x1b3/0x220
[  255.208418][T13111]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  255.208443][T13111]  ? rw_verify_area+0x258/0x650
[  255.208465][T13111]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  255.208487][T13111]  vfs_read+0x1fd/0x980
[  255.208508][T13111]  ? fdget_pos+0x247/0x320
[  255.208530][T13111]  ? __pfx___mutex_lock+0x10/0x10
[  255.208556][T13111]  ? __pfx_vfs_read+0x10/0x10
[  255.208580][T13111]  ? __fget_files+0x2a/0x420
[  255.208601][T13111]  ? __fget_files+0x3a0/0x420
[  255.208623][T13111]  ? __fget_files+0x2a/0x420
[  255.208650][T13111]  ksys_read+0x145/0x250
[  255.208675][T13111]  ? __pfx_ksys_read+0x10/0x10
[  255.208694][T13111]  ? rcu_is_watching+0x15/0xb0
[  255.208725][T13111]  ? do_syscall_64+0xbe/0x3b0
[  255.208752][T13111]  do_syscall_64+0xfa/0x3b0
[  255.208774][T13111]  ? lockdep_hardirqs_on+0x9c/0x150
[  255.208796][T13111]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  255.208814][T13111]  ? clear_bhb_loop+0x60/0xb0
[  255.208835][T13111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  255.208851][T13111] RIP: 0033:0x7fab8f78d57c
[  255.208869][T13111] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  255.208884][T13111] RSP: 002b:00007fab905d0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  255.208904][T13111] RAX: ffffffffffffffda RBX: 00007fab8f9b5fa0 RCX: 00007fab8f78d57c
[  255.208918][T13111] RDX: 000000000000000f RSI: 00007fab905d00a0 RDI: 0000000000000004
[  255.208929][T13111] RBP: 00007fab905d0090 R08: 0000000000000000 R09: 0000000000000000
[  255.208940][T13111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  255.208951][T13111] R13: 0000000000000000 R14: 00007fab8f9b5fa0 R15: 00007ffc7a229df8
[  255.208982][T13111]  </TASK>
[  255.532058][T13119] openvswitch: netlink: nsh attr 0 has unexpected len 1 expected 0
[  255.711595][T13104] veth1: entered allmulticast mode
[  255.849885][ T1301] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  255.866958][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  256.045260][T13143] 8021q: VLANs not supported on wg1
[  256.431516][T13159] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  256.678256][T13171] sctp: [Deprecated]: syz.3.2708 (pid 13171) Use of int in maxseg socket option.
[  256.678256][T13171] Use struct sctp_assoc_value instead
[  256.726480][T13176] sctp: [Deprecated]: syz.3.2708 (pid 13176) Use of int in maxseg socket option.
[  256.726480][T13176] Use struct sctp_assoc_value instead
[  257.384951][T13207] netlink: 'syz.4.2719': attribute type 1 has an invalid length.
[  257.459973][T13207] bond4: entered promiscuous mode
[  257.479281][T13207] 8021q: adding VLAN 0 to HW filter on device bond4
[  257.502070][T13220] IPVS: set_ctl: invalid protocol: 51 172.20.20.187:20000
[  257.777668][T13233] __nla_validate_parse: 13 callbacks suppressed
[  257.777687][T13233] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2728'.
[  257.810313][T13233] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2728'.
[  257.820293][T13236] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2727'.
[  257.824314][T13233] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2728'.
[  257.857324][T13236] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2727'.
[  258.239694][T13257] IPVS: set_ctl: invalid protocol: 51 10.1.1.0:29
[  258.441269][T13271] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2740'.
[  258.571785][T13279] team0: Mode changed to "loadbalance"
[  258.624428][T13284] netlink: 'syz.1.2745': attribute type 64 has an invalid length.
[  258.690743][T13286] netlink: 10 bytes leftover after parsing attributes in process `syz.3.2746'.
[  258.743091][T13291] netlink: 'syz.3.2746': attribute type 2 has an invalid length.
[  258.777504][T13286] netlink: 'syz.3.2746': attribute type 2 has an invalid length.
[  258.883195][T13300] netlink: 'syz.1.2752': attribute type 83 has an invalid length.
[  258.935821][T13302] macvlan0: left promiscuous mode
[  258.941480][T13302] macvlan0: left allmulticast mode
[  259.046440][ T1118] wlan1: Trigger new scan to find an IBSS to join
[  259.063550][T13309] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2757'.
[  259.083650][T13309] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2757'.
[  259.097986][T13309] 8021q: VLANs not supported on wg1
[  259.135611][T13314] netlink: 'syz.2.2759': attribute type 8 has an invalid length.
[  259.335244][T13327] vxcan1: tx address claim with different name
[  259.640271][T13344] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  259.860554][T13356] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2773'.
[  260.065580][T13373] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  260.241513][T13373] tipc: Disabling bearer <eth:syzkaller0>
[  260.470960][T13392] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  260.956804][T13418] vxcan1: tx address claim with different name
[  261.132594][T13431] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  261.212492][T13433] netlink: 'syz.2.2798': attribute type 1 has an invalid length.
[  261.610502][T13458] netlink: 'syz.4.2807': attribute type 1 has an invalid length.
[  261.640628][T13458] netlink: 'syz.4.2807': attribute type 1 has an invalid length.
[  261.680113][T13458] netlink: 'syz.4.2807': attribute type 2 has an invalid length.
[  262.034010][T13479] delete_channel: no stack
[  262.139608][T13479] syzkaller1: entered promiscuous mode
[  262.145393][T13479] syzkaller1: entered allmulticast mode
[  262.162487][T13480] vxcan1: tx address claim with dlc 1
[  262.551724][T13513] 8021q: VLANs not supported on wg1
[  262.844357][T13531] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  263.089365][T13545] __nla_validate_parse: 20 callbacks suppressed
[  263.089384][T13545] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2836'.
[  263.109698][T13546] tipc: Started in network mode
[  263.115035][T13546] tipc: Node identity , cluster identity 4711
[  263.124936][T13546] tipc: Failed to obtain node identity
[  263.132006][T13546] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  263.561444][T13577] validate_nla: 1 callbacks suppressed
[  263.561463][T13577] netlink: 'syz.0.2850': attribute type 4 has an invalid length.
[  263.642547][T13578] sctp: [Deprecated]: syz.3.2851 (pid 13578) Use of int in maxseg socket option.
[  263.642547][T13578] Use struct sctp_assoc_value instead
[  263.780749][T13592] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2854'.
[  263.851989][T13595] netlink: 'syz.3.2855': attribute type 1 has an invalid length.
[  263.910415][T13595] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2855'.
[  264.008586][   T13] wlan1: Trigger new scan to find an IBSS to join
[  264.074383][T13607] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2860'.
[  264.269728][T13607] 8021q: adding VLAN 0 to HW filter on device bond1
[  264.321448][T13611] macvlan0: entered promiscuous mode
[  264.335266][T13611] macvlan0: entered allmulticast mode
[  264.355541][T13611] bond1: entered promiscuous mode
[  264.376953][T13611] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  264.413472][T13611] bond1: left promiscuous mode
[  264.758282][T13649] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  264.935508][T13664] vxcan1: tx address claim with different name
[  264.949027][ T1139] wlan1: Creating new IBSS network, BSSID de:02:81:30:d5:ac
[  265.053070][T13670] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2877'.
[  265.125257][T13672] netlink: 'syz.1.2880': attribute type 39 has an invalid length.
[  265.769806][T13716] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2894'.
[  265.850579][T13719] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2896'.
[  265.879577][T13717] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2895'.
[  265.881198][T13725] FAULT_INJECTION: forcing a failure.
[  265.881198][T13725] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  265.910863][T13725] CPU: 0 UID: 0 PID: 13725 Comm: syz.4.2898 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  265.910887][T13725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  265.910895][T13725] Call Trace:
[  265.910901][T13725]  <TASK>
[  265.910908][T13725]  dump_stack_lvl+0x189/0x250
[  265.910928][T13725]  ? __pfx____ratelimit+0x10/0x10
[  265.910947][T13725]  ? __pfx_dump_stack_lvl+0x10/0x10
[  265.910961][T13725]  ? __pfx__printk+0x10/0x10
[  265.910988][T13725]  should_fail_ex+0x414/0x560
[  265.911013][T13725]  _copy_to_user+0x31/0xb0
[  265.911034][T13725]  simple_read_from_buffer+0xe1/0x170
[  265.911059][T13725]  proc_fail_nth_read+0x1b3/0x220
[  265.911079][T13725]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  265.911097][T13725]  ? rw_verify_area+0x258/0x650
[  265.911115][T13725]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  265.911131][T13725]  vfs_read+0x1fd/0x980
[  265.911149][T13725]  ? fdget_pos+0x247/0x320
[  265.911166][T13725]  ? __pfx___mutex_lock+0x10/0x10
[  265.911188][T13725]  ? __pfx_vfs_read+0x10/0x10
[  265.911209][T13725]  ? __fget_files+0x2a/0x420
[  265.911228][T13725]  ? __fget_files+0x3a0/0x420
[  265.911242][T13725]  ? __fget_files+0x2a/0x420
[  265.911263][T13725]  ksys_read+0x145/0x250
[  265.911285][T13725]  ? __pfx_ksys_read+0x10/0x10
[  265.911301][T13725]  ? rcu_is_watching+0x15/0xb0
[  265.911328][T13725]  ? do_syscall_64+0xbe/0x3b0
[  265.911353][T13725]  do_syscall_64+0xfa/0x3b0
[  265.911374][T13725]  ? lockdep_hardirqs_on+0x9c/0x150
[  265.911395][T13725]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.911412][T13725]  ? clear_bhb_loop+0x60/0xb0
[  265.911433][T13725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.911449][T13725] RIP: 0033:0x7fd4cc18d57c
[  265.911466][T13725] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  265.911481][T13725] RSP: 002b:00007fd4ccfc5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  265.911500][T13725] RAX: ffffffffffffffda RBX: 00007fd4cc3b5fa0 RCX: 00007fd4cc18d57c
[  265.911513][T13725] RDX: 000000000000000f RSI: 00007fd4ccfc50a0 RDI: 0000000000000005
[  265.911523][T13725] RBP: 00007fd4ccfc5090 R08: 0000000000000000 R09: 0000000000000000
[  265.911533][T13725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  265.911543][T13725] R13: 0000000000000000 R14: 00007fd4cc3b5fa0 R15: 00007ffccac3c168
[  265.911572][T13725]  </TASK>
[  266.231624][T13728] tunl0: entered promiscuous mode
[  266.247626][T13728] netlink: 'syz.1.2899': attribute type 3 has an invalid length.
[  266.283866][T13728] netlink: 9 bytes leftover after parsing attributes in process `syz.1.2899'.
[  266.469051][T13731] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2900'.
[  266.728048][T13754] vlan1: entered promiscuous mode
[  266.748169][T13754] bridge0: entered promiscuous mode
[  266.772298][T13754] vlan1: entered allmulticast mode
[  266.783483][T13754] bridge0: entered allmulticast mode
[  266.829025][T13756] syzkaller0: entered allmulticast mode
[  267.133825][T13779] syzkaller0: entered promiscuous mode
[  267.146030][T13779] syzkaller0: entered allmulticast mode
[  267.220854][T13782] vxcan1: tx address claim with different name
[  267.271890][T13784] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  268.094842][   T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  268.105063][   T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  268.114130][   T51] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  268.123541][   T51] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  268.131831][   T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  268.189837][T13826] __nla_validate_parse: 4 callbacks suppressed
[  268.189856][T13826] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2933'.
[  268.328811][T13800] vlan1: entered promiscuous mode
[  268.334353][T13800] bridge0: entered promiscuous mode
[  268.388105][ T5838] syz_tun (unregistering): left allmulticast mode
[  268.444187][T13833] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2936'.
[  268.583711][T13839] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2939'.
[  268.590419][T13837] delete_channel: no stack
[  268.643603][T13839] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2939'.
[  268.785681][T13847] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2943'.
[  268.815421][T13843] 8021q: adding VLAN 0 to HW filter on device bond4
[  268.844052][T13851] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2944'.
[  268.862126][T13849] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  268.920454][ T1091] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  268.947096][ T1091] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  269.125467][ T1091] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  269.149076][ T1091] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  269.290334][T13877] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2952'.
[  269.307447][T13877] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2952'.
[  269.320160][ T1091] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  269.343164][ T1091] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  269.348718][T13880] Unsupported ieee802154 address type: 0
[  269.405416][T13877] 8021q: VLANs not supported on wg1
[  269.422592][T13882] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2955'.
[  269.504416][ T1091] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  269.540089][ T1091] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  269.579760][T13819] chnl_net:caif_netlink_parms(): no params data found
[  269.859351][T13819] bridge0: port 1(bridge_slave_0) entered blocking state
[  269.872672][T13819] bridge0: port 1(bridge_slave_0) entered disabled state
[  269.883411][T13819] bridge_slave_0: entered allmulticast mode
[  269.898356][T13819] bridge_slave_0: entered promiscuous mode
[  269.911717][T13819] bridge0: port 2(bridge_slave_1) entered blocking state
[  269.919172][T13819] bridge0: port 2(bridge_slave_1) entered disabled state
[  269.927052][T13819] bridge_slave_1: entered allmulticast mode
[  269.935126][T13819] bridge_slave_1: entered promiscuous mode
[  270.077042][T13819] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  270.246048][ T5843] Bluetooth: hci1: command tx timeout
[  270.271775][T13917] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2964'.
[  271.061735][ T1091] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  271.076809][ T1091] bond0 (unregistering): Released all slaves
[  271.090547][ T1091] bond1 (unregistering): Released all slaves
[  271.107148][ T1091] bond2 (unregistering): Released all slaves
[  271.222758][ T1091] bond3 (unregistering): Released all slaves
[  271.320950][ T1091] bond4 (unregistering): Released all slaves
[  271.334874][T13819] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  271.377898][T13923] 8021q: VLANs not supported on wg1
[  271.548007][T13819] team0: Port device team_slave_0 added
[  271.586633][T13819] team0: Port device team_slave_1 added
[  271.740178][T13941] netlink: 'syz.2.2975': attribute type 1 has an invalid length.
[  271.903098][T13941] 8021q: adding VLAN 0 to HW filter on device bond4
[  271.914487][T13819] batman_adv: batadv0: Adding interface: batadv_slave_0
[  271.922292][T13819] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  271.949778][T13819] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  271.973005][T13951] macvlan2: entered promiscuous mode
[  271.978575][T13951] macvlan2: entered allmulticast mode
[  271.985166][T13956] 8021q: VLANs not supported on wg1
[  272.036448][T13819] batman_adv: batadv0: Adding interface: batadv_slave_1
[  272.043696][T13819] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  272.108619][T13819] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  272.327930][ T5843] Bluetooth: hci1: command tx timeout
[  272.344999][T13974] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  272.387500][ T1091] dummy0: left promiscuous mode
[  272.394519][ T1091] batadv_slave_1: left promiscuous mode
[  272.410955][ T1091] hsr_slave_0: left promiscuous mode
[  272.422218][ T1091] hsr_slave_1: left promiscuous mode
[  272.428819][ T1091] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  272.438097][ T1091] batman_adv: batadv0: Removing interface: batadv_slave_0
[  272.447051][ T1091] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  272.454963][ T1091] batman_adv: batadv0: Removing interface: batadv_slave_1
[  272.517288][ T1091] vlan0: left allmulticast mode
[  272.522693][ T1091] veth0_vlan: left allmulticast mode
[  272.529957][ T1091] vlan0: left promiscuous mode
[  272.535964][ T1091] veth1_macvtap: left promiscuous mode
[  272.542345][ T1091] veth0_macvtap: left promiscuous mode
[  272.548510][ T1091] veth1_vlan: left promiscuous mode
[  272.554175][ T1091] veth0_vlan: left promiscuous mode
[  272.662323][ T1091] pim6reg (unregistering): left allmulticast mode
[  273.327725][ T1091] team0 (unregistering): Port device team_slave_1 removed
[  273.368115][ T1091] team0 (unregistering): Port device team_slave_0 removed
[  273.725473][T13819] hsr_slave_0: entered promiscuous mode
[  273.747060][T13819] hsr_slave_1: entered promiscuous mode
[  273.774943][T13989] __nla_validate_parse: 12 callbacks suppressed
[  273.774962][T13989] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2992'.
[  274.308804][T14019] vxcan1: tx address claim with different name
[  274.316039][ T1091] IPVS: stop unused estimator thread 0...
[  274.408691][ T5843] Bluetooth: hci1: command tx timeout
[  274.530484][T14028] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3005'.
[  274.602120][T14031] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3006'.
[  274.769026][T13819] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  274.823915][T13819] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  274.854275][T13819] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  274.881141][T13819] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  274.899841][T14041] netlink: 104 bytes leftover after parsing attributes in process `syz.2.3009'.
[  274.921304][T14045] netlink: 6 bytes leftover after parsing attributes in process `syz.1.3008'.
[  274.930670][T14045] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  275.112241][T13819] 8021q: adding VLAN 0 to HW filter on device bond0
[  275.152886][T13819] 8021q: adding VLAN 0 to HW filter on device team0
[  275.172708][ T1139] bridge0: port 1(bridge_slave_0) entered blocking state
[  275.180136][ T1139] bridge0: port 1(bridge_slave_0) entered forwarding state
[  275.209002][ T1139] bridge0: port 2(bridge_slave_1) entered blocking state
[  275.216408][ T1139] bridge0: port 2(bridge_slave_1) entered forwarding state
[  275.311440][T14056] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3011'.
[  275.337636][T14056] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3011'.
[  275.475362][T14063] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  275.722888][T13819] 8021q: adding VLAN 0 to HW filter on device batadv0
[  275.797968][T14079] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3017'.
[  275.873250][T14086] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3020'.
[  275.970734][T14086] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3020'.
[  276.084232][T14086] netlink: 'syz.3.3020': attribute type 83 has an invalid length.
[  276.200874][T14097] netlink: 'syz.2.3022': attribute type 1 has an invalid length.
[  276.333080][T14105] FAULT_INJECTION: forcing a failure.
[  276.333080][T14105] name failslab, interval 1, probability 0, space 0, times 0
[  276.395869][T14105] CPU: 0 UID: 0 PID: 14105 Comm: syz.3.3026 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  276.395896][T14105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  276.395914][T14105] Call Trace:
[  276.395922][T14105]  <TASK>
[  276.395930][T14105]  dump_stack_lvl+0x189/0x250
[  276.395952][T14105]  ? __pfx____ratelimit+0x10/0x10
[  276.395976][T14105]  ? __pfx_dump_stack_lvl+0x10/0x10
[  276.395995][T14105]  ? __pfx__printk+0x10/0x10
[  276.396021][T14105]  ? __pfx___might_resched+0x10/0x10
[  276.396045][T14105]  ? fs_reclaim_acquire+0x7d/0x100
[  276.396070][T14105]  should_fail_ex+0x414/0x560
[  276.396100][T14105]  should_failslab+0xa8/0x100
[  276.396120][T14105]  __kmalloc_cache_noprof+0x70/0x3d0
[  276.396143][T14105]  ? rtnl_newlink+0xed/0x1c70
[  276.396166][T14105]  ? kasan_save_free_info+0x46/0x50
[  276.396188][T14105]  rtnl_newlink+0xed/0x1c70
[  276.396208][T14105]  ? netlink_sendmsg+0x805/0xb30
[  276.396230][T14105]  ? __sock_sendmsg+0x21c/0x270
[  276.396248][T14105]  ? ____sys_sendmsg+0x505/0x830
[  276.396263][T14105]  ? ___sys_sendmsg+0x21f/0x2a0
[  276.396279][T14105]  ? __x64_sys_sendmsg+0x19b/0x260
[  276.396295][T14105]  ? do_syscall_64+0xfa/0x3b0
[  276.396316][T14105]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.396340][T14105]  ? __pfx_rtnl_newlink+0x10/0x10
[  276.396384][T14105]  ? kasan_quarantine_put+0xdd/0x220
[  276.396406][T14105]  ? lockdep_hardirqs_on+0x9c/0x150
[  276.396439][T14105]  ? nlmon_xmit+0xb0/0x100
[  276.396455][T14105]  ? kmem_cache_free+0x18f/0x400
[  276.396483][T14105]  ? __local_bh_enable_ip+0x12d/0x1c0
[  276.396507][T14105]  ? lockdep_hardirqs_on+0x9c/0x150
[  276.396529][T14105]  ? __local_bh_enable_ip+0x12d/0x1c0
[  276.396552][T14105]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  276.396578][T14105]  ? __dev_queue_xmit+0x27b/0x3b50
[  276.396611][T14105]  ? __lock_acquire+0xab9/0xd20
[  276.396660][T14105]  ? __pfx_rtnl_newlink+0x10/0x10
[  276.396683][T14105]  rtnetlink_rcv_msg+0x7cf/0xb70
[  276.396711][T14105]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  276.396731][T14105]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  276.396751][T14105]  ? ref_tracker_free+0x63a/0x7d0
[  276.396769][T14105]  ? __asan_memcpy+0x40/0x70
[  276.396789][T14105]  ? __pfx_ref_tracker_free+0x10/0x10
[  276.396815][T14105]  netlink_rcv_skb+0x208/0x470
[  276.396840][T14105]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  276.396866][T14105]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  276.396902][T14105]  ? netlink_deliver_tap+0x2e/0x1b0
[  276.396940][T14105]  netlink_unicast+0x82c/0x9e0
[  276.396969][T14105]  ? __pfx_netlink_unicast+0x10/0x10
[  276.396992][T14105]  ? netlink_sendmsg+0x642/0xb30
[  276.397012][T14105]  ? skb_put+0x11b/0x210
[  276.397033][T14105]  netlink_sendmsg+0x805/0xb30
[  276.397066][T14105]  ? __pfx_netlink_sendmsg+0x10/0x10
[  276.397093][T14105]  ? aa_sock_msg_perm+0x94/0x160
[  276.397116][T14105]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  276.397136][T14105]  ? __pfx_netlink_sendmsg+0x10/0x10
[  276.397159][T14105]  __sock_sendmsg+0x21c/0x270
[  276.397182][T14105]  ____sys_sendmsg+0x505/0x830
[  276.397206][T14105]  ? __pfx_____sys_sendmsg+0x10/0x10
[  276.397232][T14105]  ? import_iovec+0x74/0xa0
[  276.397258][T14105]  ___sys_sendmsg+0x21f/0x2a0
[  276.397278][T14105]  ? __pfx____sys_sendmsg+0x10/0x10
[  276.397328][T14105]  ? __fget_files+0x2a/0x420
[  276.397345][T14105]  ? __fget_files+0x3a0/0x420
[  276.397372][T14105]  __x64_sys_sendmsg+0x19b/0x260
[  276.397392][T14105]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  276.397419][T14105]  ? __pfx_ksys_write+0x10/0x10
[  276.397439][T14105]  ? rcu_is_watching+0x15/0xb0
[  276.397468][T14105]  ? do_syscall_64+0xbe/0x3b0
[  276.397494][T14105]  do_syscall_64+0xfa/0x3b0
[  276.397516][T14105]  ? lockdep_hardirqs_on+0x9c/0x150
[  276.397537][T14105]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.397553][T14105]  ? clear_bhb_loop+0x60/0xb0
[  276.397573][T14105]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.397590][T14105] RIP: 0033:0x7eff4958eb69
[  276.397606][T14105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  276.397621][T14105] RSP: 002b:00007eff4a43e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  276.397642][T14105] RAX: ffffffffffffffda RBX: 00007eff497b5fa0 RCX: 00007eff4958eb69
[  276.397655][T14105] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003
[  276.397665][T14105] RBP: 00007eff4a43e090 R08: 0000000000000000 R09: 0000000000000000
[  276.397676][T14105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  276.397686][T14105] R13: 0000000000000000 R14: 00007eff497b5fa0 R15: 00007ffd47b7ca28
[  276.397716][T14105]  </TASK>
[  276.895168][   T51] Bluetooth: hci1: command tx timeout
[  276.952540][T13819] veth0_vlan: entered promiscuous mode
[  276.966406][T13819] veth1_vlan: entered promiscuous mode
[  277.093636][T13819] veth0_macvtap: entered promiscuous mode
[  277.141845][T13819] veth1_macvtap: entered promiscuous mode
[  277.176337][T13819] batman_adv: batadv0: Interface activated: batadv_slave_0
[  277.188783][T13819] batman_adv: batadv0: Interface activated: batadv_slave_1
[  277.201551][T14121] openvswitch: netlink: Missing key (keys=40, expected=80)
[  277.262523][ T1154] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  277.309510][ T1154] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  277.383193][ T1154] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  277.415992][ T1154] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  277.496668][T14134] netlink: 'syz.1.3038': attribute type 1 has an invalid length.
[  277.552893][T14134] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  277.563487][ T1154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  277.584871][ T1154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  277.596716][T14134] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  277.656431][T14134] bond2: (slave gretap1): making interface the new active one
[  277.667031][T14134] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  277.687925][T14134] 8021q: adding VLAN 0 to HW filter on device bond2
[  277.699133][ T1154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  277.715479][ T1154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  278.501278][T14170] 8021q: adding VLAN 0 to HW filter on device ipvlan0
[  278.518077][T14170] bond0: (slave ipvlan0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  278.770592][ T5843] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  278.781057][ T5843] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  278.791464][ T5843] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  278.802132][ T5843] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  278.812255][ T5843] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  279.008342][T14197] __nla_validate_parse: 16 callbacks suppressed
[  279.008360][T14197] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3057'.
[  279.037587][T14199] netlink: 14 bytes leftover after parsing attributes in process `syz.4.3059'.
[  279.164364][T14204] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3061'.
[  279.228712][T14199] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  279.241403][T14199] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  279.255299][T14199] bond0 (unregistering): Released all slaves
[  279.352015][T14210] netlink: 'syz.0.3062': attribute type 3 has an invalid length.
[  279.360349][T14210] netlink: 766 bytes leftover after parsing attributes in process `syz.0.3062'.
[  279.511687][T14184] chnl_net:caif_netlink_parms(): no params data found
[  279.521588][T14220] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3065'.
[  279.542724][T14218] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3064'.
[  279.557658][T14220] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3065'.
[  279.577009][T14220] 8021q: VLANs not supported on wg1
[  279.683595][T14184] bridge0: port 1(bridge_slave_0) entered blocking state
[  279.693589][T14184] bridge0: port 1(bridge_slave_0) entered disabled state
[  279.702104][T14184] bridge_slave_0: entered allmulticast mode
[  279.712006][T14184] bridge_slave_0: entered promiscuous mode
[  279.722061][T14184] bridge0: port 2(bridge_slave_1) entered blocking state
[  279.729729][T14184] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.737816][T14184] bridge_slave_1: entered allmulticast mode
[  279.747207][T14184] bridge_slave_1: entered promiscuous mode
[  279.804159][T14184] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  279.813003][T14232] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3069'.
[  279.828418][T14184] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  279.899745][T14184] team0: Port device team_slave_0 added
[  279.918057][T14184] team0: Port device team_slave_1 added
[  279.995911][T14184] batman_adv: batadv0: Adding interface: batadv_slave_0
[  280.004852][T14184] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.034452][T14184] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  280.047410][T14242] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3071'.
[  280.060900][T14184] batman_adv: batadv0: Adding interface: batadv_slave_1
[  280.074513][T14246] tipc: Failed to remove unknown binding: 66,1,1/0:3498694986/3498694988
[  280.078264][T14184] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.117656][T14184] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  280.132883][T14246] tipc: Failed to remove unknown binding: 66,1,1/0:3498694986/3498694988
[  280.255081][T14184] hsr_slave_0: entered promiscuous mode
[  280.280605][T14184] hsr_slave_1: entered promiscuous mode
[  280.294321][T14184] debugfs: 'hsr0' already exists in 'hsr'
[  280.301897][T14184] Cannot create hsr debugfs directory
[  280.309908][T14252] netlink: 6 bytes leftover after parsing attributes in process `syz.3.3075'.
[  280.319723][T14252] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  280.413892][T14257] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  280.789426][T14277] netlink: 'syz.2.3084': attribute type 3 has an invalid length.
[  280.814191][T14184] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.886198][ T5843] Bluetooth: hci0: command tx timeout
[  280.961205][T14184] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  281.148700][T14184] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  281.175125][T14295] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  281.194525][T14297] (unnamed net_device) (uninitialized): option min_links: invalid value (18446744073709551614)
[  281.214646][T14297] (unnamed net_device) (uninitialized): option min_links: allowed values 0 - 2147483647
[  281.249603][T14184] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  281.624003][T14184] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  281.691842][T14184] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  281.724550][T14184] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  281.773258][T14184] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  282.048347][T14359] 8021q: VLANs not supported on wg1
[  282.085154][T14184] 8021q: adding VLAN 0 to HW filter on device bond0
[  282.161125][T14184] 8021q: adding VLAN 0 to HW filter on device team0
[  282.199215][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.206696][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  282.248497][ T1154] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.255821][ T1154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  282.351930][T14363] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  282.453483][   T13] nci: nci_rx_work: unknown MT 0x6
[  282.591455][T14184] 8021q: adding VLAN 0 to HW filter on device batadv0
[  282.639661][T14184] veth0_vlan: entered promiscuous mode
[  282.657013][T14184] veth1_vlan: entered promiscuous mode
[  282.690014][T14184] veth0_macvtap: entered promiscuous mode
[  282.700462][T14184] veth1_macvtap: entered promiscuous mode
[  282.721572][T14184] batman_adv: batadv0: Interface activated: batadv_slave_0
[  282.738997][T14184] batman_adv: batadv0: Interface activated: batadv_slave_1
[  282.757468][ T1139] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  282.768201][ T1139] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  282.779147][ T1139] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  282.790510][ T1118] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  282.966054][ T5843] Bluetooth: hci0: command tx timeout
[  283.031318][T14391] 8021q: adding VLAN 0 to HW filter on device bond5
[  283.314050][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.344446][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.441508][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.459135][T14405] netlink: 'syz.4.3122': attribute type 1 has an invalid length.
[  283.462004][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.488705][T14404] 8021q: VLANs not supported on wg1
[  283.570414][T14405] bond0 (unregistering): Released all slaves
[  284.270934][T14437] __nla_validate_parse: 15 callbacks suppressed
[  284.270956][T14437] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3134'.
[  284.566204][   T51] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  284.583476][   T51] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  284.585517][T14453] netlink: 'syz.0.3139': attribute type 3 has an invalid length.
[  284.598839][   T51] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  284.601730][T14453] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.3139'.
[  284.608219][   T51] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  284.625665][   T51] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  284.659953][T14447] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3138'.
[  284.668020][T14446] bridge1: entered promiscuous mode
[  284.674805][T14446] bridge1: entered allmulticast mode
[  284.816670][T14460] sctp: [Deprecated]: syz.0.3140 (pid 14460) Use of int in max_burst socket option.
[  284.816670][T14460] Use struct sctp_assoc_value instead
[  285.000083][T14475] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3143'.
[  285.051118][T14475] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode active-backup(1)
[  285.055330][ T5843] Bluetooth: hci0: command tx timeout
[  285.132416][T14483] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3147'.
[  285.234795][T14477] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3145'.
[  285.480095][T14500] netlink: 'syz.3.3152': attribute type 1 has an invalid length.
[  285.493855][T14497] mac80211_hwsim hwsim15 wlan1: entered allmulticast mode
[  285.498815][T14500] netlink: 244 bytes leftover after parsing attributes in process `syz.3.3152'.
[  285.583212][T14507] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3152'.
[  285.601015][T14507] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3152'.
[  285.613842][T14501] ieee802154 phy1 wpan1: encryption failed: -22
[  285.697387][T14450] chnl_net:caif_netlink_parms(): no params data found
[  285.829286][   T12] ------------[ cut here ]------------
[  285.835469][   T12] WARNING: CPU: 0 PID: 12 at net/ipv6/route.c:4857 rt6_multipath_rebalance+0x455/0x8b0
[  285.842505][T14518] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3157'.
[  285.845219][   T12] Modules linked in:
[  285.859035][   T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  285.870922][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  285.881602][   T12] Workqueue: netns cleanup_net
[  285.886636][   T12] RIP: 0010:rt6_multipath_rebalance+0x455/0x8b0
[  285.892910][   T12] Code: ff ff 44 89 e1 80 e1 07 38 c1 0f 8c 85 fe ff ff 4c 89 e7 e8 9d c3 fb f7 e9 78 fe ff ff e8 33 a1 98 f7 eb 05 e8 2c a1 98 f7 90 <0f> 0b 90 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f 5d e9 85 9d 4b 01
[  285.912768][   T12] RSP: 0018:ffffc90000116fc0 EFLAGS: 00010293
[  285.918983][   T12] RAX: ffffffff8a270f7d RBX: ffff888028c29800 RCX: ffff88801d2b5a00
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  285.927120][   T12] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  285.935379][   T12] RBP: dffffc0000000000 R08: 0000000000000003 R09: 0000000000000004
[  285.943871][   T12] R10: dffffc0000000000 R11: fffff52000022df0 R12: ffff88805c2bc4de
[  285.952279][   T12] R13: ffff888028c29890 R14: 0000000000000000 R15: 1ffff11005185312
[  285.960489][   T12] FS:  0000000000000000(0000) GS:ffff888125c80000(0000) knlGS:0000000000000000
[  285.969598][   T12] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  285.976259][   T12] CR2: 00007eff4a43df98 CR3: 000000000df38000 CR4: 00000000003526f0
[  285.984446][   T12] Call Trace:
[  285.987814][   T12]  <TASK>
[  285.991069][   T12]  fib6_ifdown+0x401/0x4c0
[  285.996272][   T12]  ? __pfx_fib6_ifdown+0x10/0x10
[  286.001505][   T12]  fib6_clean_node+0x24d/0x590
[  286.006429][   T12]  ? __pfx_fib6_clean_node+0x10/0x10
[  286.011913][   T12]  ? __lock_acquire+0xab9/0xd20
[  286.017132][   T12]  ? __local_bh_enable_ip+0x12d/0x1c0
[  286.022722][   T12]  fib6_walk_continue+0x678/0x910
[  286.028110][   T12]  fib6_walk+0x149/0x290
[  286.032469][   T12]  __fib6_clean_all+0x234/0x380
[  286.037569][   T12]  ? __fib6_clean_all+0x9b/0x380
[  286.042789][   T12]  ? __pfx_fib6_ifdown+0x10/0x10
[  286.048044][   T12]  ? __pfx___fib6_clean_all+0x10/0x10
[  286.053618][   T12]  ? __pfx_fib6_clean_node+0x10/0x10
[  286.059434][   T12]  ? __pfx_fib6_ifdown+0x10/0x10
[  286.064492][   T12]  ? __mutex_trylock_common+0x153/0x260
[  286.070301][   T12]  rt6_disable_ip+0x120/0x720
[  286.075007][   T12]  ? rcu_is_watching+0x15/0xb0
[  286.079835][   T12]  ? trace_contention_end+0x39/0x120
[  286.085153][   T12]  ? __pfx_rt6_disable_ip+0x10/0x10
[  286.090444][   T12]  addrconf_ifdown+0x15d/0x1880
[  286.095459][   T12]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  286.101364][   T12]  ? tls_dev_event+0x717/0xec0
[  286.106355][   T12]  ? __pfx_addrconf_ifdown+0x10/0x10
[  286.111847][   T12]  addrconf_notify+0x1bc/0x1010
[  286.116957][   T12]  notifier_call_chain+0x1b3/0x3e0
[  286.122354][   T12]  netif_close_many+0x29c/0x410
[  286.127508][   T12]  ? __pfx_netif_close_many+0x10/0x10
[  286.132916][   T12]  unregister_netdevice_many_notify+0x7b9/0x1ff0
[  286.139358][   T12]  ? unregister_netdevice_queue+0x1b3/0x380
[  286.145460][   T12]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  286.152396][   T12]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  286.158815][   T12]  ? net_generic+0x1e/0x240
[  286.163440][   T12]  ? net_generic+0x1e/0x240
[  286.168122][   T12]  ? net_generic+0x1e/0x240
[  286.173021][   T12]  ops_undo_list+0x3dc/0x990
[  286.178055][   T12]  ? __pfx_ops_undo_list+0x10/0x10
[  286.183286][   T12]  ? do_raw_spin_unlock+0x122/0x240
[  286.188539][   T12]  cleanup_net+0x4c5/0x800
[  286.192983][   T12]  ? __pfx_cleanup_net+0x10/0x10
[  286.198339][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  286.203581][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  286.209770][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  286.215614][   T12]  process_scheduled_works+0xae1/0x17b0
[  286.221498][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  286.227677][   T12]  worker_thread+0x8a0/0xda0
[  286.232331][   T12]  kthread+0x70e/0x8a0
[  286.236480][   T12]  ? __pfx_worker_thread+0x10/0x10
[  286.241617][   T12]  ? __pfx_kthread+0x10/0x10
[  286.246381][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  286.251869][   T12]  ? lockdep_hardirqs_on+0x9c/0x150
[  286.257236][   T12]  ? __pfx_kthread+0x10/0x10
[  286.262148][   T12]  ret_from_fork+0x3fc/0x770
[  286.266837][   T12]  ? __pfx_ret_from_fork+0x10/0x10
[  286.272175][   T12]  ? __switch_to_asm+0x39/0x70
[  286.277199][   T12]  ? __switch_to_asm+0x33/0x70
[  286.282067][   T12]  ? __pfx_kthread+0x10/0x10
[  286.286900][   T12]  ret_from_fork_asm+0x1a/0x30
[  286.291785][   T12]  </TASK>
[  286.294830][   T12] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  286.302325][   T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted 6.16.0-syzkaller-06590-gf8fded7536a9 #0 PREEMPT(full) 
[  286.314186][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  286.324347][   T12] Workqueue: netns cleanup_net
[  286.329249][   T12] Call Trace:
[  286.332536][   T12]  <TASK>
[  286.335489][   T12]  dump_stack_lvl+0x99/0x250
[  286.340093][   T12]  ? __asan_memcpy+0x40/0x70
[  286.344802][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  286.350107][   T12]  ? __pfx__printk+0x10/0x10
[  286.354718][   T12]  panic+0x2db/0x790
[  286.358878][   T12]  ? __pfx_panic+0x10/0x10
[  286.363631][   T12]  ? show_trace_log_lvl+0x4fb/0x550
[  286.368939][   T12]  ? ret_from_fork_asm+0x1a/0x30
[  286.373966][   T12]  __warn+0x31b/0x4b0
[  286.377936][   T12]  ? rt6_multipath_rebalance+0x455/0x8b0
[  286.383838][   T12]  ? rt6_multipath_rebalance+0x455/0x8b0
[  286.390105][   T12]  report_bug+0x2be/0x4f0
[  286.394785][   T12]  ? rt6_multipath_rebalance+0x455/0x8b0
[  286.400416][   T12]  ? rt6_multipath_rebalance+0x455/0x8b0
[  286.406041][   T12]  ? rt6_multipath_rebalance+0x457/0x8b0
[  286.411927][   T12]  handle_bug+0x84/0x160
[  286.416162][   T12]  exc_invalid_op+0x1a/0x50
[  286.420766][   T12]  asm_exc_invalid_op+0x1a/0x20
[  286.425689][   T12] RIP: 0010:rt6_multipath_rebalance+0x455/0x8b0
[  286.432222][   T12] Code: ff ff 44 89 e1 80 e1 07 38 c1 0f 8c 85 fe ff ff 4c 89 e7 e8 9d c3 fb f7 e9 78 fe ff ff e8 33 a1 98 f7 eb 05 e8 2c a1 98 f7 90 <0f> 0b 90 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f 5d e9 85 9d 4b 01
[  286.453248][   T12] RSP: 0018:ffffc90000116fc0 EFLAGS: 00010293
[  286.459622][   T12] RAX: ffffffff8a270f7d RBX: ffff888028c29800 RCX: ffff88801d2b5a00
[  286.468420][   T12] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  286.476923][   T12] RBP: dffffc0000000000 R08: 0000000000000003 R09: 0000000000000004
[  286.485407][   T12] R10: dffffc0000000000 R11: fffff52000022df0 R12: ffff88805c2bc4de
[  286.493716][   T12] R13: ffff888028c29890 R14: 0000000000000000 R15: 1ffff11005185312
[  286.501819][   T12]  ? rt6_multipath_rebalance+0x44d/0x8b0
[  286.507480][   T12]  fib6_ifdown+0x401/0x4c0
[  286.512444][   T12]  ? __pfx_fib6_ifdown+0x10/0x10
[  286.517640][   T12]  fib6_clean_node+0x24d/0x590
[  286.522490][   T12]  ? __pfx_fib6_clean_node+0x10/0x10
[  286.527766][   T12]  ? __lock_acquire+0xab9/0xd20
[  286.532802][   T12]  ? __local_bh_enable_ip+0x12d/0x1c0
[  286.538247][   T12]  fib6_walk_continue+0x678/0x910
[  286.543416][   T12]  fib6_walk+0x149/0x290
[  286.547668][   T12]  __fib6_clean_all+0x234/0x380
[  286.552619][   T12]  ? __fib6_clean_all+0x9b/0x380
[  286.557570][   T12]  ? __pfx_fib6_ifdown+0x10/0x10
[  286.562683][   T12]  ? __pfx___fib6_clean_all+0x10/0x10
[  286.568083][   T12]  ? __pfx_fib6_clean_node+0x10/0x10
[  286.573470][   T12]  ? __pfx_fib6_ifdown+0x10/0x10
[  286.578848][   T12]  ? __mutex_trylock_common+0x153/0x260
[  286.584619][   T12]  rt6_disable_ip+0x120/0x720
[  286.589613][   T12]  ? rcu_is_watching+0x15/0xb0
[  286.594835][   T12]  ? trace_contention_end+0x39/0x120
[  286.600259][   T12]  ? __pfx_rt6_disable_ip+0x10/0x10
[  286.605747][   T12]  addrconf_ifdown+0x15d/0x1880
[  286.610784][   T12]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  286.616553][   T12]  ? tls_dev_event+0x717/0xec0
[  286.621319][   T12]  ? __pfx_addrconf_ifdown+0x10/0x10
[  286.626700][   T12]  addrconf_notify+0x1bc/0x1010
[  286.631568][   T12]  notifier_call_chain+0x1b3/0x3e0
[  286.636768][   T12]  netif_close_many+0x29c/0x410
[  286.641650][   T12]  ? __pfx_netif_close_many+0x10/0x10
[  286.647256][   T12]  unregister_netdevice_many_notify+0x7b9/0x1ff0
[  286.654348][   T12]  ? unregister_netdevice_queue+0x1b3/0x380
[  286.660588][   T12]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  286.667535][   T12]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  286.673767][   T12]  ? net_generic+0x1e/0x240
[  286.678257][   T12]  ? net_generic+0x1e/0x240
[  286.682747][   T12]  ? net_generic+0x1e/0x240
[  286.687339][   T12]  ops_undo_list+0x3dc/0x990
[  286.692153][   T12]  ? __pfx_ops_undo_list+0x10/0x10
[  286.697625][   T12]  ? do_raw_spin_unlock+0x122/0x240
[  286.703018][   T12]  cleanup_net+0x4c5/0x800
[  286.707902][   T12]  ? __pfx_cleanup_net+0x10/0x10
[  286.713259][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  286.718729][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  286.724616][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  286.730511][   T12]  process_scheduled_works+0xae1/0x17b0
[  286.736173][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  286.742424][   T12]  worker_thread+0x8a0/0xda0
[  286.747124][   T12]  kthread+0x70e/0x8a0
[  286.751284][   T12]  ? __pfx_worker_thread+0x10/0x10
[  286.756482][   T12]  ? __pfx_kthread+0x10/0x10
[  286.761156][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  286.766606][   T12]  ? lockdep_hardirqs_on+0x9c/0x150
[  286.772056][   T12]  ? __pfx_kthread+0x10/0x10
[  286.776652][   T12]  ret_from_fork+0x3fc/0x770
[  286.781595][   T12]  ? __pfx_ret_from_fork+0x10/0x10
[  286.786708][   T12]  ? __switch_to_asm+0x39/0x70
[  286.791556][   T12]  ? __switch_to_asm+0x33/0x70
[  286.796407][   T12]  ? __pfx_kthread+0x10/0x10
[  286.801193][   T12]  ret_from_fork_asm+0x1a/0x30
[  286.806232][   T12]  </TASK>
[  286.809589][   T12] Kernel Offset: disabled
[  286.814261][   T12] Rebooting in 86400 seconds..