last executing test programs:

3.616752262s ago: executing program 3 (id=3703):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r2=>0x0})
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'netdevsim0\x00', <r4=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0x49920d862a92153b, 0x0, 0xe000000, {0x0, 0x0, 0x0, 0x0, 0x99}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8, 0x1, r2}, @IFLA_HSR_SLAVE2={0x8, 0x2, r4}]}}}]}, 0x40}}, 0x0)

3.314973582s ago: executing program 1 (id=3708):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x240000c1)
gettid()
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
accept4$unix(0xffffffffffffffff, 0x0, &(0x7f0000001580), 0x800)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
getuid()
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005d40)=ANY=[@ANYBLOB="900000001800090300000000040000000a000000110000000000000008000400", @ANYRES32=r1, @ANYBLOB="050014000b0000000c00168008000100090000000500140001000000050014000700000008001900", @ANYRES8=0x0, @ANYBLOB="140005000000", @ANYBLOB, @ANYRESDEC], 0x90}, 0x1, 0x0, 0x0, 0x1}, 0x0)

3.262189973s ago: executing program 3 (id=3709):
r0 = socket(0x2b, 0x80801, 0x1)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x3, 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'crct10dif-generic\x00'}, 0x58)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1d}}, 0x0)
getsockname$packet(r1, 0x0, &(0x7f0000000200))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYRES32, @ANYBLOB="0100000000000000240012000c000100627269646765"], 0x44}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="3c000000100001040000eb040100000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140003006272696467655f736c6176655f31000008000a00", @ANYRES32], 0x3c}}, 0x0)

1.47850043s ago: executing program 1 (id=3714):
socket$kcm(0x10, 0x2, 0x10)
r0 = socket$alg(0x26, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x0, 0x80a, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_SERVICES(r1, 0x0, 0x482, &(0x7f00000000c0)=""/4096, &(0x7f0000000040)=0x1000)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000010c0)={<r2=>0x0, 0x9, 0x20}, &(0x7f0000001100)=0xc)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001140)={r2, 0x6, 0x0, 0x9}, &(0x7f0000001180)=0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'bridge_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x18000000, &(0x7f0000001140)={&(0x7f0000001c40)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="7d03020001820200140012800c0001006d616376746170000400028008000500", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB="bd74a5836f9878f3515d35e074a8397acf16c1ee44b8904fcd4bf90e4469251d7fc799b002e4549e0b64d5df7059580465ea48b22e17e8cdc2974a8bb1a490e811e9c7137993c0e56142a8008306b721ba2c41e00d291d94a5fb50ab20c301647ebb0337e10a5ecae9d66535e01956253cd9d07f2aa7dc25015c96c484d2482d674c3a65410a3937a059f1b6ba6aebb5d5735ae8946af99fd15fa51107defc52ab34173b710a94922842a69eaf44f6ed8d2c7cb5c7e1954439b5ab5829a5072a6ae868770b1496597665891db2750c76b8e7c0d48bb8cf"], 0x44}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000001c00)={&(0x7f0000001b40)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001bc0)={&(0x7f0000001b80)=ANY=[@ANYBLOB="bd1d0000340000012dbd7000fddbdf250b00000008001200", @ANYRES32, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001ac0)=[{{&(0x7f0000001200)={0x2, 0x4e20, @private=0xa0100fe}, 0x10, &(0x7f0000001440)=[{&(0x7f0000001f00)="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", 0x161}, {&(0x7f0000001340)="23776f9ff881a5258b5a3517fad9a85f289ee1822e59bbdab21a3b25674b47064637686504593692bc2416b47226a5c34e10f5d9cc167af5dee58233cf6d16944dad303643837fd9842c9741b2dd58aaf427fb490db5d316ffecf7d304e84941be41a2a7218f3bdce7a933d0cad7d071e61fb3af78a49803915d75094550dbda2b454358ffbc016d3ff950165f1d88ac65f436dc0aeb3d257927759b789e4d75a76bd333c837f4f26adf6105be5eb1ac964a5b3b38b2725cd766c6af1f9f3c47a3f72855316a29aff0de", 0xca}], 0x2, &(0x7f0000001240)=[@ip_ttl={{0x14, 0x0, 0x2, 0x3}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @broadcast, @multicast2}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0xb}, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x2}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010100, @multicast2}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @empty}}}], 0xb0}}, {{0x0, 0x0, &(0x7f0000001a40)=[{&(0x7f0000001540)="7bc7277fa55b1eba7acdfa5ce48b16ab6cde3d73f973c0ce5c2fbe4d98718c51d7b243ae3e1517307be897777ac354718c7c411c55b30faa38eb1c207559cc7ea6f3e14f2bb62b60bdd676216ad1c8570c7715ce45e4215225b0b7c89da8aa55bd0938b390ac500fa4ee77557aae2bba6ff09164184d05894f9e6aca49faced2f3da6e7211bd3d33f16166cb7bd5cd9ad5da6785ea7621dcb7fe61a785e97df37b084ca17d4c4a351d303f7568167b10f81773102fa5a7dd7b3c8c371e3f2d40f475c098f03fd6c7e9a9e4", 0xcb}, {&(0x7f0000001640)="3adc6d5cd6dc78133b5c0a838b53cd317cb565baab393556b418a56cfdf5bc877572a565b5e2e5ea4821b2d95ced04a6ead3d2f560b51c8a9d4e94e6f4768aaeb90d1f2fae3f34d9ac6e35298e3663a1f36357c44092bdaf2ed0343f5b6bdff0e7b18dfdaf94333cf6d7a254a73ee3088ed4c70be5249c924eb2b2ab887240e18b408005de3a3198c87c91a3e6f2481a4f3ca7460b95b0b24f", 0x99}, {&(0x7f0000001700)="2925a69c57a114a7e85d0e9ef0a986bd9a7eb472695bfc875a1d2abc595f5cbb501f6a8ff41c91fc2eceafdb1a15a5739728ae795eac45a77c5f9fc7a2a53877da7e9880dc", 0x45}, {&(0x7f0000001780)="8f9cd9fe0128d064f88389ea70d35e63febfa2d8c527748109cee4ff13e6e728d55d01844a192dd1d5e0b47f3f9813d5837bddf55b8d7cbdb0c57346b0bdde4c7c7aef0c101cf70652c6384ff1153b0ca5ea5b8138be365c3fa1244e38872ae95b3baff0cbd40622bcfb6c25b427e0776cb48141210216ab841b7b4c471977350743fc634e184195ea8718489504e3c797323453f4d018c8b9b8af3c728db82b07382330a9e3dcb3008f80e0ac0708a78483964f52434a8b00cb7d5fc5bb1be5b904087081ac40a793c29632ee2e545855277226cf6b921d351441", 0xdb}, {&(0x7f0000001880)="d83da3afd03967914a79dcc679360d9a0f724c5a84db3bd8ec1c9401fa76d16a245a76c144c119c756f040772642d69a25678f20492a0ea61647ba7331b5a5dfc4f0c8170ca76114c5de4c53c8b3d107c1559be71a3eb73c7a939c51b6811915737b5a6df2fed1128cde6535aff1392cc62beef9c739422d4d377cbadcb360ea2caf1dd490035fb3fbc3935ee1518f2cfdea824c7b86b8b47dea952994a6022284b754e5c8bd9d2b85a1fe514cf701acd4236f3d99b07bf4843e8aa70e8eba3b6999aa7d1c7d75a7aa75b6be5e9910448218e023c2c07f3ec9d02a8b3e39eecb36b7e7b85c43be876dd8c1636d70c21d7f5b7777b4", 0xf5}, {&(0x7f0000001980)="ec9c1272b37ee47b2c03ed896368fe71c03a5b181dd0ddab01bd623f421fec193cd2eb1da804778d9feead7df24c58cc7bd30edd1b49b278b02fef267493d2020d8015e7147de3eb420ec49dbe39d49464b1c56ee59a11a2661e0df2d36606bed016feb6e3bdcf6303f0244ac235545db011bb4bca152e5fbcefdafa3494a4098a665cfeb68b0c680856c7c7f8c962129245ba05a44d87be4e2a6ebfad552ad4340591775ef4387755d24783d0c69fe58653cb4aa8", 0xb5}], 0x6}}], 0x2, 0x20000040)
write$binfmt_elf64(r3, &(0x7f0000000b40)=ANY=[@ANYBLOB="7f454c4600000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000003800"/120], 0x457f)
r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f00000011c0)={'#! ', './file0'}, 0xb)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, r7, 0x0)
listen(r7, 0xfffffff7)
syz_emit_ethernet(0x9a, &(0x7f0000000300)={@local, @link_local={0x1, 0x80, 0xc2, 0x10}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x64, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa}, @generic={0x4, 0x2}, @window={0x3, 0x3}, @generic={0x0, 0x10, "00f2daa800000000000000080000"}, @sack={0x5, 0x12, [0x0, 0x0, 0x0, 0x0]}, @mptcp=@mp_fclose={0x1e, 0xc, 0x0, 0x0, 0xf5ffffff}, @mptcp=@synack={0x1e, 0x10}]}}}}}}}}, 0x0)
socket$alg(0x26, 0x5, 0x0)
write(r1, &(0x7f0000000000)="0a000000010000", 0x7)

1.446206398s ago: executing program 0 (id=3715):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x20)
r2 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000001500)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0000bd2dca8a9848a3c728f1c46b7b31afdc1338d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade", 0x55}], 0x1}, 0x8100000000000000)

1.400690946s ago: executing program 2 (id=3716):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)={0x38, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x38}}, 0x0)
bind$phonet(0xffffffffffffffff, &(0x7f0000000200), 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000dc0)={{r3}, &(0x7f0000000d40), &(0x7f0000000d80)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='tlb_flush\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x32}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x76}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)

1.398570701s ago: executing program 3 (id=3717):
sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x64, 0x6, 0x670, 0x2e0, 0xd0, 0x2e0, 0xd0, 0xd0, 0x5a0, 0x5a0, 0x5a0, 0x5a0, 0x5a0, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0, 0x0, {0x6000000}}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0x5}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00', {}, {}, 0x11}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast}}}, {{@ipv6={@mcast2, @loopback, [], [], 'veth0_to_team\x00', 'syzkaller0\x00'}, 0x0, 0x100, 0x128, 0x0, {}, [@common=@unspec=@connmark={{0x30}}, @common=@inet=@socket1={{0x28}}]}, @common=@unspec=@MARK={0x28}}, {{@uncond, 0x0, 0x120, 0x148, 0x0, {}, [@common=@frag={{0x30}}, @common=@hbh={{0x48}}]}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0x138, 0x178, 0x0, {}, [@common=@dst={{0x48}}, @common=@dst={{0x48}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x6d0)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x3, &(0x7f0000000100)=@framed, &(0x7f00000000c0)='GPL\x00'}, 0x90)
unshare(0x22020400)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000009c0)=ANY=[@ANYBLOB="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"/427], &(0x7f0000000080)=""/233, 0x26, 0x31, 0x1}, 0x20)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={r1, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x8, &(0x7f0000001680)=[0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x200000000000011, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
socket$inet6(0xa, 0x2, 0x40)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0xe, 0x10000008, 0x4, 0x3, 0x20, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x10000, 0x4}, 0x48)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xb, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0x6, 0x9, 0x0, 0xffff}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0x50}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x5, 0x0, 0x5, 0x0}, {0x18, 0x2, 0x2, 0x0, r6}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x5, 0x1, 0x5, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000cc0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYRES64=r5, @ANYRES32=r4, @ANYBLOB="08cce1b94e90c400", @ANYRES64=r3], 0x24}, 0x1, 0x0, 0x0, 0x80d0}, 0x0)
r7 = socket$kcm(0x29, 0x2, 0x0)
sendmmsg$sock(r7, &(0x7f0000000c40)=[{{&(0x7f0000000080)=@can, 0x80, 0x0}}, {{&(0x7f00000002c0)=@can, 0x80, 0x0, 0x0, &(0x7f0000000500)=[@mark={{0x14}}, @mark={{0x14}}], 0x30}}], 0x2, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, &(0x7f00000001c0))
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x30, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2e}]]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000), 0xc, 0x0, 0x1, 0x0, 0x0, 0x30000000}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB, @ANYRES32=r8, @ANYBLOB="0c00018004"], 0x24}}, 0x0)

1.223404419s ago: executing program 0 (id=3719):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYBLOB="240000001e000100000000000000000007000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\b'], 0x24}, 0x1, 0x0, 0x0, 0x11}, 0x0)

1.179021487s ago: executing program 4 (id=3720):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000500)=0x8)
r4 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r4, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f00000004c0)=[@in6={0xa, 0x0, 0x0, @local, 0x1}], 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r4, 0x84, 0x65, &(0x7f0000000180)=[@in6={0xa, 0x0, 0x0, @local}, @in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x2c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000001c0)={r3, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x5, 0x0, 0x0, 0x4d}, 0x9c)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)="d8000000180081054e81f782db4cb904021d0800fe00fe05e8fe55a10a0015000600142603600e1208000f007f370301a8001600200003400f000100035c0461c1d67f6f94007134cf6edb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090014d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00350db798262f3d40fad95667e006dcdf63951f215c3f8b6ad2cba0e2375ee535e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1}, 0x0)

1.17765621s ago: executing program 2 (id=3721):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0) (async)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000500)={'ip_vti0\x00', &(0x7f0000000480)={'tunl0\x00', <r2=>0x0, 0x7800, 0x700, 0x3, 0x2, {{0x17, 0x4, 0x0, 0x27, 0x5c, 0x67, 0x0, 0xfa, 0x29, 0x0, @broadcast, @dev={0xac, 0x14, 0x14, 0x42}, {[@timestamp_addr={0x44, 0x44, 0x7d, 0x1, 0x7, [{@private=0xa010102, 0xfff}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x8}, {@dev={0xac, 0x14, 0x14, 0x1f}, 0x3c0e}, {@remote, 0x93}, {@private=0xa010102, 0xfff}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8}, {@dev={0xac, 0x14, 0x14, 0x44}}, {@empty, 0x10}]}, @noop]}}}}})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f00000005c0)={'erspan0\x00', &(0x7f0000000540)={'gretap0\x00', r2, 0x80, 0x8000, 0xae5, 0xf3, {{0x11, 0x4, 0x1, 0x3a, 0x44, 0x64, 0x0, 0xff, 0x0, 0x0, @broadcast, @empty, {[@ssrr={0x89, 0x3, 0x46}, @timestamp_prespec={0x44, 0x2c, 0xa4, 0x3, 0xe, [{@private=0xa010101, 0xffff7fff}, {@broadcast, 0x7}, {@local, 0x6}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x9}, {@loopback, 0x80000000}]}, @noop]}}}}})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0) (async)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r0, 0x8983, &(0x7f0000000440)) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wlan0\x00'})
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x4c, r3, 0x200, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x400}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x124}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xd}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x33}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x9b4}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x39f}]}, 0x4c}, 0x1, 0x0, 0x0, 0x44044}, 0x20008840)
socket$kcm(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000600)={'wg2\x00', <r4=>0x0})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000680)={'gretap0\x00', &(0x7f0000000640)={'sit0\x00', r4, 0x1, 0x7898, 0x10, 0x5d06, {{0x6, 0x4, 0x1, 0x0, 0x18, 0x64, 0x0, 0x62, 0x4, 0x0, @rand_addr=0x64010100, @rand_addr=0x64010101, {[@timestamp_prespec={0x44, 0x4, 0x43, 0x3, 0x5}]}}}}}) (async, rerun: 64)
r5 = socket$packet(0x11, 0x3, 0x300) (rerun: 64)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4) (async, rerun: 32)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0) (rerun: 32)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r7=>0x0})
sendto$packet(r5, &(0x7f0000000180)="10031400e0ff02000200", 0xa, 0x0, &(0x7f0000000140)={0x11, 0x0, r7}, 0x14)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r10=>0x0})
sendmsg$nl_route(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="3400000011000500000000000000000007000000", @ANYRES32=r10, @ANYBLOB="000000000000000014001a80100005800c000380080001"], 0x34}}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={<r11=>0xffffffffffffffff, 0x959400000, 0x40, 0xfff}) (async)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r11, 0x81f8943c, &(0x7f0000001180)) (async)
sendfile(r11, r12, 0x0, 0x3) (async, rerun: 32)
sendmsg$NL80211_CMD_SET_INTERFACE(r12, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000009c0)={&(0x7f0000000940)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="eb6973310747d2527bc033a709000300", @ANYRES32=0x0, @ANYBLOB="0c009900070000000b00000100005300010000000a001810030303030303000005005300000000000a00e8000802110000000000"], 0x50}, 0x1, 0x0, 0x0, 0x400c001}, 0x4010) (async, rerun: 32)
r13 = socket(0xa, 0x3, 0x4)
ioctl$sock_SIOCBRDELBR(r13, 0x89a2, &(0x7f0000000000)='bridge0\x00') (async)
r14 = syz_genetlink_get_family_id$devlink(&(0x7f00000007c0), r13)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r12, &(0x7f0000000a80)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000a40)={&(0x7f00000006c0)=ANY=[@ANYBLOB="57b294111df4000000", @ANYRES16=r14, @ANYBLOB="02002bbd7000fddbdf251b000000080001007063690011000200303030303a30303a31302e300000000008000b0008000000080001007063690011000200303030303a30303a31302e300000000008000b0007000000080001007063690011000200303030303a30303a31302e300000000008000b001c000000b3fc01006e657464657673696d0000000f0002006e657464657673696d30000008000b00060000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008000b0004000000080001007063690011000200303030303a30303a31302e300000000008000b0010000000"], 0xf4}, 0x1, 0x0, 0x0, 0x8000}, 0xc840)

1.124710123s ago: executing program 1 (id=3722):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000009006000000000000000000000a44000000090a000000000000000000000000000008000a40000000000900020073797a3100000000090001"], 0x6c}}, 0x0) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x9)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_netdev_private(r1, 0x89f0, &(0x7f0000000000))
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) (async)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r4, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10) (async)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r3, 0x84, 0x78, &(0x7f0000000040)=r6, 0x4) (async)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000002740)=ANY=[@ANYBLOB="140000001300015b993dde440113e90006"], 0x14}], 0x1}, 0x0) (async)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c0003802800008008000340"], 0xec}}, 0x0)

916.757921ms ago: executing program 4 (id=3723):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'dummy0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000010004b0400000000000000007a001800", @ANYRES32=r2, @ANYBLOB="0000000000000000140012800b0001006272696467650000040002800c001a80080002"], 0x60}}, 0x0)

885.078246ms ago: executing program 0 (id=3724):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x227, &(0x7f0000000100)=ANY=[@ANYBLOB="614bd4eaa01baaaaaaaaaabb8100000086dd6c8e9e19018000000000060000000000000000cf33eb28d5fbf500000000aaff2094e1f0fc9e85ae1c021500000101"], 0x0)

808.64175ms ago: executing program 3 (id=3725):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = openat$cgroup_devices(r0, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r1, 0x0, 0xa)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000001500010000000000000000000b"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000240)='hugetlb.2MB.limit_in_bytes\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f00000000c0)=0x5, 0x12)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x1, 0x803, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$alg(0x26, 0x5, 0x0)
r7 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
getsockopt$ax25_int(r7, 0x101, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
epoll_create1(0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)
pipe(&(0x7f0000000100))
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r9 = socket(0xa, 0x3, 0x4)
getsockopt$nfc_llcp(r9, 0x29, 0x24, 0x0, 0x20000000)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=ANY=[@ANYBLOB="e80000001000030429bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="a5fded8800000000b800128009000100766c616e00000000a80002800600010000000000280004800c00010000800000030000000c00010000000000010000000c0001000000000000000000340003800c00010000000000af0000000c00010062000000000000000c00010000000000070000000c0001000700000045000000280003800c000100000000001f0000000c00010000000000000000000c00010000000000000000000c00020000000000010000000c0002000c0000000800000008000500", @ANYRES32=r8, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r8, @ANYBLOB], 0xe8}}, 0x0)

808.408309ms ago: executing program 1 (id=3726):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500410010000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

728.173536ms ago: executing program 4 (id=3727):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d083910000000000000a1180015000600142603600e120900210060000401a80016000400144006000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)

712.317027ms ago: executing program 0 (id=3728):
socket(0x2, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="d8000000140081044e81f782db44b9040a1d080211000000040000a104000200ff02000100000e1208000f0100810401a80016ea1f000840032e5f54c92011148ed08734843cb12b00000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5e835913b06218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f52eb4edbb57a5025ccca9e00360d8bcc00400040fad95667e0060000000000000080bb9ad809d5e1cace81b341139fe3cd4032e8edb12d1d2eb0c0ed0bff", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x28, 0x2a, 0x9, 0x0, 0x0, {0x4, 0x0, 0x2c00}, [@typed={0xc, 0x17, 0x0, 0x0, @u64=0x2}, @nested={0x8, 0x9, 0x0, 0x1, [@generic="860ffdca"]}]}, 0x28}, 0x1, 0x3000000}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$netlink(0x10, 0x3, 0x1b)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), r0)
sendmsg$IPVS_CMD_SET_CONFIG(r2, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)={0xdc, r3, 0x10, 0x70bd28, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x7}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xc}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e24}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x5d}]}, @IPVS_CMD_ATTR_DEST={0x4c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x5}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e20}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x8}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xb}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x7}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x8}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x7fff}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x10}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @private=0xa010101}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0x54}, 0x4000000)
sendmsg$OSF_MSG_ADD(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x20000000)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=@newlink={0x48, 0x10, 0x503, 0x3, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0xf}, @IFLA_MACSEC_CIPHER_SUITE={0xc}]}}}]}, 0x48}}, 0x0)
socket(0x2, 0x0, 0x0) (async)
socket$kcm(0x10, 0x2, 0x0) (async)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="d8000000140081044e81f782db44b9040a1d080211000000040000a104000200ff02000100000e1208000f0100810401a80016ea1f000840032e5f54c92011148ed08734843cb12b00000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5e835913b06218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f52eb4edbb57a5025ccca9e00360d8bcc00400040fad95667e0060000000000000080bb9ad809d5e1cace81b341139fe3cd4032e8edb12d1d2eb0c0ed0bff", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x28, 0x2a, 0x9, 0x0, 0x0, {0x4, 0x0, 0x2c00}, [@typed={0xc, 0x17, 0x0, 0x0, @u64=0x2}, @nested={0x8, 0x9, 0x0, 0x1, [@generic="860ffdca"]}]}, 0x28}, 0x1, 0x3000000}, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
socket$netlink(0x10, 0x3, 0x1b) (async)
syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), r0) (async)
sendmsg$IPVS_CMD_SET_CONFIG(r2, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)={0xdc, r3, 0x10, 0x70bd28, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x7}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xc}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e24}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x5d}]}, @IPVS_CMD_ATTR_DEST={0x4c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x5}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e20}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x8}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xb}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x7}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x8}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x7fff}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x10}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @private=0xa010101}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0x54}, 0x4000000) (async)
sendmsg$OSF_MSG_ADD(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x20000000) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=@newlink={0x48, 0x10, 0x503, 0x3, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0xf}, @IFLA_MACSEC_CIPHER_SUITE={0xc}]}}}]}, 0x48}}, 0x0) (async)

604.85206ms ago: executing program 2 (id=3729):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x9, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000009fff000000000000000000630114000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

604.480523ms ago: executing program 1 (id=3730):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000001020000000000711216000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14}, 0x90)

455.599111ms ago: executing program 2 (id=3731):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)={0x38, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x38}}, 0x0)
bind$phonet(0xffffffffffffffff, &(0x7f0000000200), 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000dc0)={{}, &(0x7f0000000d40), &(0x7f0000000d80)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x32}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x76}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)

447.756005ms ago: executing program 1 (id=3732):
unshare(0x20000400)
r0 = socket(0x29, 0x1, 0x0)
setsockopt$inet6_IPV6_RTHDR(r0, 0x119, 0x39, 0x0, 0x4)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f848100000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
connect$x25(0xffffffffffffffff, &(0x7f0000000140), 0x12)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0xd, 0xe9, 0x5, 0x888, 0x1, 0xfffffff9, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x5, 0x9}, 0x48)
socket$xdp(0x2c, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=ANY=[@ANYBLOB="400000001000170400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002000128008000100677470001400028008000100", @ANYRES32=r3, @ANYRESOCT=r2, @ANYRES32=r3, @ANYBLOB="ac8963acb12ba4634dcf9a2edea42ad175f7f2360068325ee4fc72942958c114de1ca235b0fdcf0d175ad7e19df6d78e767978fb4d0f11f278c30417a6d793bc96a9a729fb8507b21c4120cf0b79ff9ddbee0a31f4d28ceab0adfa9e69fc6e7063b19b30728c4ba7"], 0x40}}, 0x0)
socket$netlink(0x10, 0x3, 0x8)
writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80fae0090f000000000000a2bc", 0x24}, {&(0x7f0000000780)="85f591a3820255d6d18f28233e5ccd39c90e33b25de767f398d5721ecc85664bcee6e314cbca92ca8ce429e61a69a688d98b5a35bc365f422f3b0a811e73fea78ee2bf7e4a2fe4f1d1122f2b212221d3b2e9ddecb718eaa3375e23345837ecee143e72eaae40566c3d7ba33b056ec8c98ce5ea0730cd44201f871362fef1323008caa19e24439b9ef653e0fb7ae76042d15a8f072ce4a0a57ce53324d1023523e2d1e29ce8eb2794ae7cbb497980dc1af2453e3ff6d57cc22a8948f8ab19bf6d058a0eb7f00e09eb308fdbee", 0xcc}, {&(0x7f0000000880)="f7038f8b6de5038a0aa2a532f93829dbae358fbeea80beba1ad430d26f19bda4e95c4677492c660edd37ec5f2e6e3e63cc9705277d4826af58883aaf6204d8a3013ec587f1e50cba9dbbddbca6e54ab05951a83245775a98450c77bdc69e9e0c853fa58fe0a81cf44b71cc2d58272c9b6be58bd6c0e51ac43dc160defc0d78cbab9f45161e2cb572d16066d717ecf5879a379e68623225fdc568b1bd2f3c476d20c6a86099aa9df911510f8958af357f6d1f57a083dc957cbb1d85a9eadbe9803e65d9d74284029dfe510c6dbb3c784fe2e8405c4d", 0xd5}], 0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x9, 0x3, &(0x7f0000000000)=ANY=[], &(0x7f0000000480)='GPL\x00', 0x80000000}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'bond0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)=ANY=[@ANYBLOB="34ec11da26003904000ce270a725330ea19e594938", @ANYRES32=r6, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32=r4, @ANYBLOB="729b484774a4a667213ac674d16e6aca21bb823c83b02e97e0f45a5480fc3da1e02a7be2baf6c9edceac377c11732771481b7efc63a380cd6f5addd9c70beac7ee955703b4e6743315599379b83abb84f58498f71d9d382564f9523fc9b8dbfa5ddae2244eaafbb1234b83985a1d6b008c6fe7311fda37e4fba3cbb3cd28315150"], 0x34}, 0x1, 0x0, 0x0, 0xbf6738ef35b4328a}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r7 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r7, 0x8915, &(0x7f0000000240)={'lo\x00', {0x2, 0x0, @loopback}})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz0\x00', 0x200002, 0x0)
socket$phonet(0x23, 0x2, 0x1)
sendmsg$kcm(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000000c0)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb440009000e000a000d000000ba8000001201", 0x2e}], 0x1}, 0x0)
ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000100)={'geneve0\x00', 0x7})

447.562367ms ago: executing program 4 (id=3733):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r3, @ANYBLOB="0c00990000000200000000000800a00094090006080026009409000008002700000000000800a1"], 0x48}}, 0x0)

368.179274ms ago: executing program 3 (id=3734):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000390400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b000100627269646765000014000280080002000101"], 0x44}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = getuid()
r3 = accept$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @local}, &(0x7f0000002940)=0x1c)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000002980)=<r4=>0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000029c0)={{{@in6=@empty, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@private2}, 0x0, @in6=@empty}}, &(0x7f0000002ac0)=0xe8)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000002b00)={0x0, 0x0, <r6=>0x0}, &(0x7f0000002b40)=0xc)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000002b80)={0x0, <r7=>0x0}, &(0x7f0000002bc0)=0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], 0x0, 0x37}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000004440)=@base={0x1e, 0x0, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r8, 0x0, 0x1}, 0x48)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000002c00)={0x0, 0x0, <r9=>0x0}, &(0x7f0000002c40)=0xc)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@ipv6_newroute={0x2c, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x6}, @RTA_EXPIRES={0x8, 0x17, 0xffffffff}]}, 0x2c}}, 0x0)
r11 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newae={0x70, 0x1e, 0x4348fd286bb64ba5, 0x0, 0x0, {{@in6=@remote}, @in=@multicast2}, [@lifetime_val={0x24}, @mark={0xc}]}, 0x70}}, 0x0)
r12 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000002c80)=<r13=>0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000002cc0)={{{@in=@initdev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0}}, {{@in=@initdev}, 0x0, @in6=@dev}}, &(0x7f0000002dc0)=0xe8)
r15 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r15, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
r16 = socket(0x10, 0x2, 0x0)
r17 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r17, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)={0x48, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}]}, 0x48}}, 0x0)
getsockopt$sock_cred(r16, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r18=>0x0}, &(0x7f0000cab000)=0xc)
write$binfmt_misc(r15, &(0x7f0000000200)=ANY=[@ANYBLOB='&\x00\x00\x00\a', @ANYRES16=r18], 0xd)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000002f80)={&(0x7f0000000000)=@kern={0x10, 0x0, 0x0, 0x1100001c}, 0xc, &(0x7f00000000c0)=[{&(0x7f0000000180)={0x3b0, 0x20, 0x300, 0x70bd2b, 0x25dfdbff, "", [@typed={0x8, 0x10f, 0x0, 0x0, @ipv4=@loopback}, @nested={0x1c1, 0x4b, 0x0, 0x1, [@generic="efa8c188d4bfa5502d158d93", @typed={0x14, 0x140, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @typed={0x14, 0x143, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}, @typed={0x4, 0x64}, @typed={0xeb, 0xde, 0x0, 0x0, @binary="8b66fd0259e15ceda0cb0b7d03de2d95a2fa8f51cb8407b32a8696903b0657be7277e798d61d63075d3be140093d3170032f23c9c3d215dc16c72dab430631e0ecc7bd335ac67ca0c4001af2de1faa1f711858cb4ef1f7d1259c77cf054ebf0d3d0c354d7cfc8328b74084d1406cab8813e38a3b823ff1a377206f96525c68ff511addbfd04bdf462ac1f38d63095bd517713a8a7e57222f37209ebd861e2ab549b7f30373cbccfcc22ad12ccff8feebabffa9c378cb4e02994b0666ce927c9692bb50cbfc6aeee34f786068bd790ae346765da4696fc6f89fab0a3be97960114d5304c3be5653"}, @generic="3824e9865c16b2cb53f814c5035b23367a3797fc45c5d98c335c784ef85c8b99ba218c9806ce6da76f1f5d493b434b1c9fa97b0ac5add2600e936d3d08973dbeb8c5d94521af2edfc3fcb9376d7d0ff5993b17a2f57849cfc3a60125ddfaf9cda7c0b0f5c6269f31fd6adf720e64f6cc44782aaa2ac987436ec5d41e68448185a1aeffa149854cd270c8cf4298caf5ebf9", @typed={0x8, 0x127, 0x0, 0x0, @fd=r1}]}, @generic="44da23", @nested={0x15b, 0x13e, 0x0, 0x1, [@generic="a8271cbda934af88326bba17f7ea4537dc177963bac27f4f54135925597a6abd5572396c310ed145b7e316c4bbe7a111ba66d15b38ffc40c355f7ebc00e34ca7bcbead59eed30d7a78bf2f897018f18ee07ed342b8cb33b30270a54265702e1b", @generic="9f3a368a38d7fa5e4487a5074eae4bd8aca66386ef93ca24094f9776e15316e7266f54b763858a1fde0b22675a4d2b6dec255a48d7a5972c4ad75d414912a28f20784373eb09d7cab1fb6ae995e078050311caac1aa1fd8e4c17f3c880818eeb0aaa7d8b67d4fada1b243a7c940c4b22f05ab4f87f88dd60217688e15b693577250a23d8d4321d6a73d6ca5f5e", @generic="d3e36af623bd14dc63", @typed={0x8, 0xe2, 0x0, 0x0, @uid=r2}, @generic="2004b5d7f278f7242c38c133603f30a33f94c0bbff9b6c08e3b5ecfd4615b18da1a424a11fe368df98a6715d9aacfb1c2b8d28159034962d3a6ecbfedeeee5798c909399a2747940641b6559ad7a956c89f802ac015b51410e"]}, @typed={0x74, 0xdf, 0x0, 0x0, @binary="03b99c2e272407cc43699dad6b7fac3ce0511a0f87d27990a0dce69b6c3110e626b1a021fa44b5c8da10ca81b3a7ed0f0d9d0bb75523d467a966406fc7f7c14475c83cf153fb6d5546d5c38a2753e66170f0a0eb3446eec8a8067e75e4e1d10cdca39fb85ff8f2f2b7384db6a64226b7"}]}, 0x3b0}, {&(0x7f0000000540)={0x23c8, 0x2b, 0x8, 0x70bd25, 0x25dfdbfe, "", [@generic="3465a18a3487bd4f6812c2187317aa9da28a5685f11a41a9790a31fc2f82c86d347fb92ba64202a382bd19b96253fd6c58872018ad7a7bd8251275a174d0", @nested={0x100c, 0xb8, 0x0, 0x1, [@typed={0x8, 0x34, 0x0, 0x0, @uid}, @generic="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"]}, @typed={0xc, 0xd7, 0x0, 0x0, @u64=0xffff}, @generic="b6ec8f9f0c9b13388ec2f259908ba3cb29d05e9e203a72abadd71effd87cef98fdfe3c4a4e934897a7cfca8e24b74f04c54a24102f7aecdd42b541c067f08f16e86131734f24d34179f9426b07f2a38d439384fa1e0a68c95b0a3746be315adaa7ce9d2769e73ffaadf71ef3d7b8603469be4031839211bda9fef2df47862168bb57bac156d50de277ab7d7cd6ea4dc16d6daf2d9f4a42e9883196fe027dc16a8806d2c6025c32e1963a7d0602b196bf179dd37adc4446ee549d", @nested={0xb7, 0x6, 0x0, 0x1, [@typed={0xc, 0x5, 0x0, 0x0, @u64=0x4}, @typed={0x8, 0xc6, 0x0, 0x0, @fd=r0}, @generic="3c49ec94c92dac522a2c9288b82612cd6d8d8e17e11ba838a2", @generic="cb52dcf6a5dbd218ff6cab32c89884f288d0906e7ae0ff28901cd8d71e3e5767fe0200cdd7e118c35a203547f339a8e06702e088f0ddc0fc36951d96ff128f7bdcab72f8643c7e1848673a304ef7b9334d9ec7e68e653bd1c4972eae04cabc63cda4b5f87246278f9dbd3401862597369551c5f42322a5c3c3e5767f8c16f2dcdffaf1bb1d8f"]}, @nested={0x18, 0x12e, 0x0, 0x1, [@typed={0xc, 0xc7, 0x0, 0x0, @u64=0x3}, @typed={0x6, 0x8, 0x0, 0x0, @str='-\x00'}]}, @generic="9a4f02879d621112826ae108ad82bda588a343995717cf9593f2195e638c238921090a161548e7c49e6984ba754929dbaffdc0d3dfab5268c6b0a1b6ee8b55ef50abe559928b8e8f20abe9c47a0faebee0f5f4e481b11822c857903874a0cffadd0d7422f77199d5d73e611a043e8cb37f9519544ba34bf69dbbf52e7551ea2c60bb2000a204443af3bc2b95298ff2add7d9ddeb6cea6d6149cf107b6d00d02949273b", @nested={0x1128, 0xe8, 0x0, 0x1, [@generic="94b7f0bf3aa796e6342b43d632e5f1d566bbbc0d7d75bd9535d29b13876cba4d928e749b36db1ab726040b2035096c34713c333ecb9250911d205ffd513518438b2c5c7611e4977ffe7c728bbe271aed3e164418b3891744bef7a97f4ea7fcdce2b797720862bb0720514306fcf3c65681af85d02a6402136f8956eac72741da37a105f8f458d882b597f23eb3c7a4fe7bc0dab17a813e67b2252fc80cd39885c5d2f5535d7c18a9286209fcef30b3ceac9c99f2e6cb1adca7fe3510e0909ebadfa2386066c3ff4c8f", @typed={0x8, 0x1e, 0x0, 0x0, @ipv4=@loopback}, @generic="592610d905e2c33e7f967e8ae7b3885b2b56076149b9ac0baa9be6797c1f71383c4957eeabe3946d6c7c5b12c0bf713a41b04bb7b481ca2de66d8f0efe910f95e835f81ab84aa94bf59c03b04725562597155b8bf14768f0e3af2473adc657f66299fc705db422b59bab6d813685c59e30e507ee628c06dcdab9db6040ce486524b474e5d2e6b7b7aa7318cb3d4bbfac9584eccca1f46bc0c159362389fa3f9b02120c6195eeafc1c9598b880ad320f1ff1db7b8c092b92bcba6c0470230c3cffa234cb19045fb83fcd54208ee177198e8c88c97c93bbe31296022f7dafbde29bcabcceb059db371743540dc8b3ee3e9713af04f6f431dc24401ac43777b0be7102e5cf3a80fff56c556b424e0b65e02f720d6b190f46d182dd04263e37a3e17ea4b01f126c3c85bc98a90da5dfdd08a5a05a1e827208363684a89d034b8310a0f18eeacd2b9c057e16502a86249355a8b86f0ee492d9c9378555723b0ea299a5f8bd186211bd65b9eba89015f1ab0c458ac690debcbb4f3dfe5d3a800e7f5e57a6db9899000569b93ca791608d7b47d91678ba6cac3bb1e7367809541fbe0f47e309873395b42fe4e36f46cffa3b166a00d33426a022321fdfc97561a5a643e115e1b09edd9d54458271cd22b9ab0c14c6dae0ad8aa33399941edf691055b2f909147da3fc618a0e8c1d32a5a9602ff7a00b1c9decbf43421fa056a418d515272c825b877b01e55644af9a09c4ffec17f026d10ba4c0e7b169f082fa61e1d102726e8e385287a32eb2323a0e0fb24667af347f121d99275f7627d77a678da788990158279c6da6206a0abef933404c1fe7d068862ffa3670f4572d95b11d78f809c5ff6d10c6c1b2af6e03ed6394554f067ec1b3fce2681f785330620d152ed0eb09b14f18038216f3af7946871213796c6256e0a5b2d3d0822d877a8176c9cb28a8143f1730fb1ba7718c8bb9820780adabc89bba14c25ae72a9a232569a14ff9d7d90f68db8bfcd6b7dcedbe0f99424184c7d96f4b5b0fe34885da074ffd475c05380f08f62deadb10d2b4251b2f1b47c5ee8cfaa86daf91ee45c2599320411876146b88e8dbd8eac83103e627f51702a80e64a30dbeafb2491fbd05f1ff9e4cbb4fd55b5cf0a5058a8f74617b706d9b4beb21f4359a3920d1afe9bbe25e01247df4c8fd44b06aa373f08b68a614bb379e084c597891e63b2e4226b9f1b15f05b71af98625568bec46a528fb914cfaf574df0ea3e2599ec6c5ac3b915502fa0f25813de0829f00c87609104f15badf2af99c23574e4a16cf80b2b4c9a7c314f8573f827cbb20fa30acb3ac1dd72f822a379cb718e078706119ac9b2e5328003db60dea492fdebdf377408bde21bf3c168ab695cab8097a4a0147eb5d1c67302dda2dd7eed8f497a774a913554f1913b00671d44acadd6452d474e26224631224cf0974411a8d410ee8be400d7ffd31244c9cc49dcaf8bb925029d6ba3a091af8b336ebf2074341218f7bd9681216c6793d68ca789ef694c3d4e3afda2474798208efd7837e44265653875959ebea0e1c310be1884096c00b0a2819607dcd414d8325734e4eced695d53807269619b185d6b2bfba6de6b08c7f31071acca3bf5983ad318647110bd0f0d3abfdd7cca23e7e479ed707d215389ff0709de6ae43d073112890fd7ea4117e79e5f515b7aae550dd5f7cb33c15415e3274c986cf39582994ad7dda9317de6507102f73923e7eff6a0accb13f470133e95d90fd029a45c7d9cea95cdefd19c357cf0d7085c3a284cac38ab2a986c53eff2a8a1f1a41bbd445991535d684d5ef502e7479a500bded5ab3990365647b990bd3b9aebff7090d5c059019b7df637f4de7e6437c4a9fc09c96275d073689b7597319655972cba14c71c0a679c1b5a68908caf94fbc3f7085ea8fe11dd604ac25d0ec8a3cf27420ac94ca641971884c0e1e316594dfe94be7d8710cee812fa5924e092634667cc5ac1e1cbb12ec4b1be3a2828b3a3f0b34a5a167208041ed70da8f9e5bd8e110234744d387728599392b5916b2a1d5e1d8cf7a9122e3b9d263a533e7b674cd51f05a6384c33f185bf6873e160681c4ae3738489fc77959ed8aa09865226da163f02d5a8d6bb207cd1a4428735bdc2d93d1fb211ce3639e7ddc882166c0858e1ad207477eabbcea2388eb0d01b9a14489489b5e798da6479e827a8e719c79e2c6bbd793e377c158ebbc24da0568ead681cfa326bd998401e0ab5a9b044d83aa24cda87b6f2be4beab32caaec2327919893d85873cae1adca63a98fb3d2e1b647b38e4d6f51d321cceb2ec2340e9bb614f10e53a5fc31fbbd1b212b8484a709d832027d9dfc44e10009b7efa501fecad93d59024ad135fe6c13ecbbdc6f6f4bc47fb1c391fab56d6a564ca347b7859e5122c04df856a478d8fc1429bd6e3f3ef59175c0dc96009798f1a7adbd9f177fa9414b014c16b83cb979cfd920ab9c5db485b68ce8fb0d34a5ab126ae7021d4ac2fab8f04626f80ea97bd8ae21f11afbca0b50a9c2e8b97851cf7c28d372e7b7aeef83173fabac0fe3865fdb493d0e2f97e1de609291ca584bca59299f213daf8e230c6944522bec29cd509c5d70803209e6b8e4c738c86adc5387a681b8a11262eff81233e18a2b9edaa6d54cddc8424fdced69abd1322e0bc06590d74e23ec951c5fc8dda5a81adb5ca9695d200e0c47eab1685540792833b1f9a090bb495106e2fb65f26e6fac7c76a0e985fa982b85ed04750db26e5158d4a4786b716b3342cddd5ac1a2d816b72cb45b6bea87ace15beb0df43aeebcfc98ddf83f16bb3ed3b30efcd0ab7f1292f115874020e57e4b04022cccfd447cee77b3f801d34f8c11ffdfccfef0ff2b0bb3540c4fa4902f4cf76e0628bd4e51a13c3069194c0e78195603fabbf024579e8c22baa33abebcd7b395bb63739c32ce4cf9403bb15959120a65685d0a276830f5d4e07cc6fb53ee91f8b4400072a7bdcd10d8d21b33596f2998c9b3fd72af48a5d59e128a1183c0826370fceeaf2d632c8a76f0e7f110d6d892d4028635ac1733684da99fec4f5852969dff5abb37d59eaa49c0ebcd7628411c1c41ee819732e95ba9e468f6ec9de06ab257b1b95a5fa8218c0dac8c30bf5d45783fee6038b40164574b4c27b2e6d11a4cab95c4a401e6eee86a06a09c9df0af91092535abd71ec4617de61f9470d631acf8158c801c49e1ba893febbfbba4064dfd02fcb08fda339067711f130bc3c270c7b35e6a8258569bc4d443e2520d44665dcc35274db665eed7598a040a8e17df90bc88bd484539df5abbba68fe22b4e2d21baf56ab9e2619ecd80e0edfc8964e636a3ecc134360bbe39a10be4ea7813fdb380e1b23967c31c9ec16fd64c0d25bb26c76c37fc4cda911f941bf72439aa21ba9fe93b3c207d3b4ff1688f2b5392565ccdf8177715c086fe74e7a7264bcdbef2b46e404263b08ba401dd75ce026e45509595eeaba8fdc62867b58db95f29d94e1dd5734057e6e6ad5eedb0dacc7f149721d6bf91a913ba66e39bccf469af8f254afa001ab4f4b087812e8874e5804d2834d685cd1be541dc73725766c3b241a68c109f6bc3366b5216a70acc01a14ff6b53548533529e01d2a461e0e81d84139fc9169636b4c1864c81253e3e1a38a04b8831c02aaea40493975db7198ae88b10ce1aaf5dcd7aff4039066c004f81e017989dcd5e9627ed3b65200dbe95953f63964a806850af6074c95db5bcada9fc2a8ab05754ff967dd865305468ba8e4cd6c3144fa17e71e4d0b6197208fffe15b8dbcde0ad0243850d592993581e962f8c3510774b51d8ce6b3a3c0b6b19fddb61d304b214ff0d23ee9a8d00f5aadae1c8b9a103c059a16774093bdb3e06ef8c440e4084bf7c6f555ce6c5b49f80c9787f1e349e62673bda93bd920f65e39a52ad8b853eacf51037d6ef3b29a46b99f3531a8052b87ba3bd13b3d505e11e92d6d4c221b21849401341522acdf2395a025fa40755e98b9deb28858b33fb35c919d844cbfc851e1fc827e91f15edcf245ed6f65f4f848c2c8b24270734e9c583fd1890ea64901856b9ebfff5aa734e4d83dcc8277701effe990c4f70e3cf2f5c489dcd18a3d6031484a3561c6bf9230b753251d766bd42d7ef08dc6fbe6c474b4ad4940b5a8980d92c9e38b43c26ebd11ac50e876b06c7ef1c931c38f229a681016d594954d7073573df2988e38daaf535e97df69b2f46c8f93aebff4dd2505c46578b3865d1696a9ba9337c7f75e122988ad8c2038c93306f6ce4d97bedc4e696570096a6fb6ad722280e30f7cb41d3c599928fac79b4b05154ad4c1c5088c1a34cb1053be194de29386b8e6bf87eb373b32bf7273086b416011d5fd694e482cc20cb9e21e725320c25e554d1cdf3271dc87845774cd12798db0f706e6df2a1a7ac3f53310ed9a9f3c34a9e736f0de0ecbf2187a797f6cd78245bacb5c5874eb9d6314d5bcaa0f0d13d6e3059005343fc12b3644e57988a6005c9945a8532c456fd6311021562476a876693884954d35b19ef43692803801965a4a4b58ca7cce9b263dce6022eb42b81b42af787bee6e597b8d9b1a48667a93c3dde459136a61fc09ad54a9ac5c3a05e6b406707609c330a6cdbd9e4424d3a51c2a5857e73f7db7458b86f06d0183ec89577319983f372cb6777e1f8d439425c651a9c11c81c34989e45a4ab86d89eebe2ad42c62a6a895dedb5c69483fc52327447cd71e70bf782f3b0b6a39fdc10fdc7d1fe575e5c02eb556a008922ffc5c9b8f4bab46845d5a94eb7f16c5c08fd87163914d907e5f4c12d910bacb197bca698507f9201e3b4aee0d39ff1d8090fcb4e299fee1f8aae5ede8737e6688c1856c8a12c8eca6d1b40deafea6d7760b14925de8229aa919b4d5db3968e41ed6c928e9a7c4ecd52ebeb0453d3817fbd6b195a4f1803d92ba8b1d9daddd500c7c07af297fa26e40783b3b05bafb5b80b0b0058a8d8689cabd8719800928d72b5cc7dce29acaf53ab71c715c7655abd6eec7306ffcc70508ebce9fbc3be36f5ecac5a0088a1d81b8461cb15bc4fe92d47196be549a74606fe06b28f3974ea7380138aea2f80922271c2159653862ffe1ea585aff3bdae948096cf44f73c49d30e48f5d643bec33df5b30382fb666b604528d3fab0bffc872ddf6738fa30a61cad5daad432899c9bab32a6c76872a08adad027350348fe467596e0a6070326a5ef0b2c2b25be8371ecaa79fc006e5d1974b1feab996f1fb6e835948656fcbc940f3bc1ba934c74ca513ddaa18ec1703735b1b63102098a2eb9110c72acebca4ef7e1c7c510149f529301d9ff35a57dc5d1042eab4b984d6ae11a3718feb3483f1911d494b22e0a2df3a93c839b15f5d5dc3c321056730182aec4600a7fef68dad6d49018bb8b743c39401fc6e1c6edea206d6084f7105fbe001c19a5c660d651d68456492adadded26bea087dad339ae14de7eca5137e12f567b2ef07037c87d396f672b347230a56ff4ee88b3fd0c6211d7de6c07dd42b6b0c11b7b64f33aa5a3a28eee96c18818bcc67dacdda5b77eba993f5816f9b40624081f5c8dfcf59cdc0d446f027530093df78a905daba302b6edd3fe2a7d1ddf74d8ffe4fd89915dde3e6af2664ed7658b91834b77c258c4929752face6d535abf136a6cad3b7307f3db4907b1950b6de368f2df129dc4d45ec330f064ff342900f1e060371b0d0ade28cdd0d7da63bb8522f9e7026b2ba8f16336b317dcd89cc94106f01a2957e2416fcbcc8d", @generic="6d9ac9b4de006e2646ef2fdf30bf65a0e5ea1afaa4b6c6b4ab9b60f77e1ef56742b4cc75547c19e15cd6dcfe21937788c69857a01a6746ee7a91ada877008a8ca11d91f656caf43769ac7566f8a5c2bf6259ef"]}, @typed={0x9, 0x6e, 0x0, 0x0, @str='*} @\x00'}]}, 0x23c8}], 0x2, &(0x7f0000002e00)=[@rights={{0x38, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0, 0xffffffffffffffff, r3, r0]}}, @rights={{0x1c, 0x1, 0x1, [r0, r0, r0]}}, @rights={{0x20, 0x1, 0x1, [r0, r0, r0, r0]}}, @rights={{0x18, 0x1, 0x1, [r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {r4, r5, r6}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r7, r9}}}, @rights={{0x38, 0x1, 0x1, [r0, r0, r10, r0, r0, r0, r0, r0, r11, r0]}}, @rights={{0x18, 0x1, 0x1, [r0, r0]}}, @rights={{0x20, 0x1, 0x1, [r0, r12, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {r13, r14, r18}}}], 0x160, 0x10}, 0x20000803)

287.517416ms ago: executing program 0 (id=3735):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000024000a58000000060a09040000000000000000020000000900020073797a32000000000900010073797a30000000002c00048028000180080001006c6f67001c00028008000340000000080600044004790000060001"], 0x80}}, 0x0)

258.378051ms ago: executing program 2 (id=3736):
syz_emit_ethernet(0x42, &(0x7f0000000000)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x34, 0xa00, 0x0, 0x0, 0x21, 0x0, @private, @broadcast}, @redirect={0x5, 0x0, 0x0, @private=0xa010181, {0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev, {[@timestamp={0x44, 0x4}]}}}}}}}, 0x0)

135.378694ms ago: executing program 4 (id=3737):
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x270)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, 0x0, 0x0)
ioctl$PPPIOCGCHAN(r1, 0x80047437, &(0x7f0000000080))
syz_emit_ethernet(0x62, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000ece65fbcee5500f6d615510e04b4e74a1e1da009a20526448f371c1d10e7d76778a4c05776cc6313fb402d9b71aa210ee42d0934f340cf3df4dc21d0237ef4541b5243c0f69c01291cf296f18a1b9edbe177850a74ade61740036ec3"], 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000700)=[{{&(0x7f00000002c0)={0xa, 0x7e20, 0x0, @empty}, 0x1c, 0x0}}, {{&(0x7f0000000180)={0xa, 0x4e23, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c, 0x0}}], 0x2, 0x40000)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x0, 0x3fb2})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xdb)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = socket(0x10, 0x0, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000280)={0x3}, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r3 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r3, &(0x7f0000000040)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000ac0)="ee", 0xffffff1f}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001001205040500002b24ec10064b6f2f000000fb71658bda99b49720fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
recvmsg$kcm(r3, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)

81.163103ms ago: executing program 2 (id=3738):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000009fff514a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0xf, 0x7, 0x6, 0x5}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200), &(0x7f0000000240), 0x4af, r0}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000700)={0x0, &(0x7f0000000540)=""/245, &(0x7f00000000c0), &(0x7f0000000680), 0x2, r0}, 0x84)
r1 = socket$kcm(0x29, 0x2, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
syz_extract_tcp_res$synack(&(0x7f0000000180), 0x1, 0x0)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="0107000000000000000020000000040003"], 0x1c}}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, 0xffffffffffffffff)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'batadv_slave_1\x00', 0x2100})

48.335407ms ago: executing program 3 (id=3739):
r0 = socket(0x28, 0x5, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000080), 0x10)
sendmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000100)=ANY=[@ANYBLOB="020100020e000000000000000000000005000600000000000a0000000000000000000000000400000000000000000000000000000000000005000500000000000a00000000000000fe88000000000000000000000000000100000000000000200200130003"], 0x70}}, 0x0)
r3 = accept4$unix(r1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000005000/0x3000)=nil, 0x3000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)
recvfrom$unix(r3, &(0x7f0000000180)=""/235, 0x1ffd4, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)={0xc0, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_SCAN_SUPP_RATES={0xa4, 0x7d, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x5, 0x1, 'H'}, @NL80211_BAND_60GHZ={0x96, 0x2, "9c481cf6bf50c3e16470855aafa507a451559a9d613c9a45e7aee0a5936c4635a5a23a5e9f8051889adbd5721938d4e520f9ab7a4323ed6b0e1c51d934ed945c998e18244c6188638ff23b1a6fcb15a2a5bffd8ebbac20dc7c81da7cab380ee87567c5fff5cc566c30ff2c09ff45bc727d08e0df22b57aa320e0e111002b0fc55dab21a579def48b5a48b8acac2d9f39b253"}]}]}, 0xc0}}, 0x0)

4.915605ms ago: executing program 0 (id=3740):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f00000005c0)=ANY=[@ANYBLOB="80010000100001000000000000000000ac1414aa000000000000000000000000ac1414bb00140000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff020000000000000000000000000001000000006c000000fe8000000000000000000000000000bb090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200636263286165732d636529000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000480003"], 0x180}}, 0x0)

0s ago: executing program 4 (id=3741):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TDLS_OPER(r0, &(0x7f00000003c0)={0x0, 0x2, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000005100000008000300", @ANYRES32=r2, @ANYBLOB="0a00060008021100000100ff05008a0000"], 0x30}}, 0x0)

kernel console output (not intermixed with test programs):

romiscuous mode
[  229.917373][T10982] macsec2: entered promiscuous mode
[  229.928723][T10982] macsec2: entered allmulticast mode
[  229.944660][T10982] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[  230.008601][T10982] mac80211_hwsim hwsim2 wlan0: left allmulticast mode
[  230.026239][T10982] mac80211_hwsim hwsim2 wlan0: left promiscuous mode
[  230.117487][T10997] bridge6: port 1(bridge_slave_1) entered blocking state
[  230.125435][T10997] bridge6: port 1(bridge_slave_1) entered disabled state
[  230.133395][T10997] bridge_slave_1: entered allmulticast mode
[  230.146360][T10997] bridge_slave_1: entered promiscuous mode
[  230.154040][T10997] bridge6: port 1(bridge_slave_1) entered blocking state
[  230.161382][T10997] bridge6: port 1(bridge_slave_1) entered forwarding state
[  230.205955][T10980] team0: left promiscuous mode
[  230.222634][T10980] team_slave_1: left promiscuous mode
[  230.232314][T10995] bridge6: port 2(veth1_to_bond) entered blocking state
[  230.254459][T10995] bridge6: port 2(veth1_to_bond) entered disabled state
[  230.270909][T10995] veth1_to_bond: entered allmulticast mode
[  230.288893][T10995] veth1_to_bond: entered promiscuous mode
[  230.307005][T10995] bridge6: port 2(veth1_to_bond) entered blocking state
[  230.314570][T10995] bridge6: port 2(veth1_to_bond) entered forwarding state
[  230.333454][T11001] netlink: 'syz.1.1955': attribute type 4 has an invalid length.
[  230.347797][T11004] x_tables: duplicate underflow at hook 1
[  230.494691][T11006] netlink: 'syz.3.1957': attribute type 4 has an invalid length.
[  230.720217][T11020] netlink: 'syz.0.1963': attribute type 30 has an invalid length.
[  231.191342][T11040] netlink: 'syz.3.1971': attribute type 5 has an invalid length.
[  231.543156][T11048] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  231.568381][ T9085] wlan1: No basic rates, using min rate instead
[  231.595940][ T9085] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  231.643277][ T9085] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  231.682814][T11048] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  231.705932][ T8381] wlan1: 08:02:11:00:00:00 unexpected authentication state: alg 0 (expected 0) transact 0 (expected 2)
[  231.753634][T11048] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  232.282294][ T8419] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  232.397863][ T8414] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  232.530809][ T8417] wlan1: authentication with 08:02:11:00:00:00 timed out
[  232.603737][T11113] bridge_slave_1: left allmulticast mode
[  232.624477][T11113] bridge_slave_1: left promiscuous mode
[  232.630605][T11113] bridge6: port 1(bridge_slave_1) entered disabled state
[  232.665619][T11114] veth0_macvtap: left promiscuous mode
[  233.093476][T11143] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  233.330891][T11155] __nla_validate_parse: 17 callbacks suppressed
[  233.330914][T11155] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2018'.
[  233.615436][T11164] IPv6: Can't replace route, no match found
[  233.939968][ T5103] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  233.950595][ T5103] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  233.983123][ T5103] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  234.000285][ T5103] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  234.011279][ T5103] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  234.019593][ T5103] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  234.109478][T11180] netlink: 2060 bytes leftover after parsing attributes in process `syz.4.2027'.
[  234.119813][T11180] netlink: 'syz.4.2027': attribute type 1 has an invalid length.
[  234.128388][T11180] netlink: 193500 bytes leftover after parsing attributes in process `syz.4.2027'.
[  234.244363][T11184] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2028'.
[  234.546049][T11192] macvlan5: entered allmulticast mode
[  234.568102][T11192] bond0: (slave macvlan5): Error -98 calling set_mac_address
[  234.852637][T11217] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.2040'.
[  235.063695][T11220] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2041'.
[  235.153566][T11172] chnl_net:caif_netlink_parms(): no params data found
[  235.682264][T11247] netlink: 'syz.3.2049': attribute type 1 has an invalid length.
[  235.779008][T11172] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.801125][T11172] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.828666][T11172] bridge_slave_0: entered allmulticast mode
[  235.845241][T11256] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  235.863281][T11172] bridge_slave_0: entered promiscuous mode
[  235.972012][T11172] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.997514][T11172] bridge0: port 2(bridge_slave_1) entered disabled state
[  236.007361][T11172] bridge_slave_1: entered allmulticast mode
[  236.046015][T11172] bridge_slave_1: entered promiscuous mode
[  236.054773][T11263] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2055'.
[  236.096598][T11264] netlink: 'syz.4.2056': attribute type 4 has an invalid length.
[  236.105078][ T5103] Bluetooth: hci2: command tx timeout
[  236.111591][T11264] netlink: 17 bytes leftover after parsing attributes in process `syz.4.2056'.
[  236.213101][T11266] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2057'.
[  236.316947][T11172] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  236.366440][T11172] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  236.395027][T11281] netlink: 204 bytes leftover after parsing attributes in process `syz.3.2061'.
[  236.488894][T11172] team0: Port device team_slave_0 added
[  236.527070][T11172] team0: Port device team_slave_1 added
[  236.527740][T11288] netlink: 'syz.1.2062': attribute type 30 has an invalid length.
[  236.689294][T11172] batman_adv: batadv0: Adding interface: batadv_slave_0
[  236.706958][T11172] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  236.752509][T11172] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  236.844572][T11296] wireguard0: entered promiscuous mode
[  236.863813][T11296] wireguard0: entered allmulticast mode
[  236.926765][T11172] batman_adv: batadv0: Adding interface: batadv_slave_1
[  236.934654][T11172] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  236.962751][T11172] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  237.192011][T11172] hsr_slave_0: entered promiscuous mode
[  237.203469][T11172] hsr_slave_1: entered promiscuous mode
[  237.218922][T11172] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  237.238491][T11172] Cannot create hsr debugfs directory
[  237.421287][T11323] netlink: 'syz.0.2072': attribute type 5 has an invalid length.
[  237.521184][T11319] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[  237.534241][T11327] netlink: 'syz.4.2073': attribute type 2 has an invalid length.
[  237.559432][T11332] nft_compat: unsupported protocol 0
[  238.057016][T11357] pim6reg0: tun_chr_ioctl cmd 1074025681
[  238.181558][ T5103] Bluetooth: hci2: command tx timeout
[  238.208245][T11362] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  238.474472][T11172] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  238.528244][T11172] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  238.567669][T11377] netlink: 'syz.3.2088': attribute type 10 has an invalid length.
[  238.894437][T11172] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  238.925213][T11172] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  238.939680][T11388] __nla_validate_parse: 13 callbacks suppressed
[  238.939704][T11388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2091'.
[  239.047393][T11394] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2092'.
[  239.084271][T11396] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.2093'.
[  239.487174][T11406] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2096'.
[  239.686356][T11172] 8021q: adding VLAN 0 to HW filter on device bond0
[  239.807958][T11172] 8021q: adding VLAN 0 to HW filter on device team0
[  239.829364][ T9091] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.836817][ T9091] bridge0: port 1(bridge_slave_0) entered forwarding state
[  239.877999][ T5151] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.885400][ T5151] bridge0: port 2(bridge_slave_1) entered forwarding state
[  240.260931][ T5114] Bluetooth: hci2: command tx timeout
[  240.350296][T11446] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  240.491860][T11451] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2111'.
[  240.650912][T11172] 8021q: adding VLAN 0 to HW filter on device batadv0
[  240.840381][T11172] veth0_vlan: entered promiscuous mode
[  240.933005][T11172] veth1_vlan: entered promiscuous mode
[  241.107639][T11172] veth0_macvtap: entered promiscuous mode
[  241.220005][T11172] veth1_macvtap: entered promiscuous mode
[  241.255193][T11490] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2119'.
[  241.314557][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.375132][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.410878][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.447206][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.479096][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.499875][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.521049][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.540260][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.566819][T11172] batman_adv: batadv0: Interface activated: batadv_slave_0
[  241.595961][T11498] netlink: 'syz.1.2120': attribute type 4 has an invalid length.
[  241.628359][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.657181][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.678996][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.700854][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.721264][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.745303][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.762796][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.786188][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.805348][T11172] batman_adv: batadv0: Interface activated: batadv_slave_1
[  241.845171][T11172] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  241.880744][T11172] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  241.930726][T11172] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  241.941360][T11172] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  242.004214][T11513] netlink: 104 bytes leftover after parsing attributes in process `syz.4.2128'.
[  242.263374][T11518] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2130'.
[  242.341015][ T5114] Bluetooth: hci2: command 0x0419 tx timeout
[  242.404466][ T1112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  242.440957][ T1112] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  242.573669][ T8405] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  242.592531][ T8405] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  242.613119][T11528] netlink: 'syz.4.2133': attribute type 4 has an invalid length.
[  242.718751][T11530] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2134'.
[  242.759341][T11530] vlan0: entered allmulticast mode
[  242.781054][T11530] mac80211_hwsim hwsim4 wlan1: entered allmulticast mode
[  242.800837][T11533] netlink: 'syz.2.2016': attribute type 9 has an invalid length.
[  242.810998][T11533] netlink: 'syz.2.2016': attribute type 6 has an invalid length.
[  243.043298][T11539] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2138'.
[  243.096812][T11539] dummy0: entered promiscuous mode
[  243.112027][T11539] macvtap0: entered promiscuous mode
[  243.129371][T11539] macvtap0: entered allmulticast mode
[  243.147710][T11539] dummy0: entered allmulticast mode
[  243.197827][T11542] dummy0: left allmulticast mode
[  243.247917][T11542] dummy0: left promiscuous mode
[  243.336343][T11542] macvtap0: left promiscuous mode
[  243.361211][T11542] macvtap0: left allmulticast mode
[  243.613724][T11562] netlink: 'syz.1.2144': attribute type 2 has an invalid length.
[  243.782060][T11572] delete_channel: no stack
[  244.010932][T11586] __nla_validate_parse: 1 callbacks suppressed
[  244.010956][T11586] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2153'.
[  244.053903][T11588] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2154'.
[  244.070774][T11586] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2153'.
[  244.093888][T11588] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2154'.
[  244.234649][T11592] lo: entered promiscuous mode
[  244.272242][T11591] lo: left promiscuous mode
[  244.334406][T11598] netlink: 'syz.2.2158': attribute type 1 has an invalid length.
[  244.351869][T11596] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2157'.
[  244.355793][T11598] netlink: 9344 bytes leftover after parsing attributes in process `syz.2.2158'.
[  244.409550][T11598] netlink: 'syz.2.2158': attribute type 1 has an invalid length.
[  244.421333][ T5103] Bluetooth: hci2: command 0x0419 tx timeout
[  244.867353][T11614] ip6tnl2: entered promiscuous mode
[  244.883989][T11614] ip6tnl2: entered allmulticast mode
[  245.019075][T11614] bridge_slave_0: default FDB implementation only supports local addresses
[  245.130364][T11625] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2169'.
[  245.162239][T11625] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2169'.
[  245.192321][T11625] vlan2: entered promiscuous mode
[  245.379383][T11632] netlink: 'syz.4.2171': attribute type 10 has an invalid length.
[  245.453968][T11632] team_slave_1: left promiscuous mode
[  245.531097][T11634] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2171'.
[  245.689592][T11647] netlink: 'syz.4.2177': attribute type 4 has an invalid length.
[  245.817624][T11653] batadv0: Device is already in use.
[  245.908245][T11656] netlink: 'syz.4.2181': attribute type 11 has an invalid length.
[  246.022497][T11660] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2183'.
[  246.331203][T11673] IPVS: length: 96 != 8
[  246.446653][T11678] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  247.032645][T11709] 0ªX¹¦Dö»: renamed from gretap0 (while UP)
[  247.447046][T11733] batadv_slave_1: entered promiscuous mode
[  247.494461][T11732] batadv_slave_1: left promiscuous mode
[  247.974740][T11761] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  248.020801][ T5103] Bluetooth: hci5: command 0x0406 tx timeout
[  248.155392][T11774] openvswitch: netlink: Key type 8966 is out of range max 32
[  248.532529][T11794] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  249.004216][T11818] syzkaller1: entered promiscuous mode
[  249.021043][T11818] syzkaller1: entered allmulticast mode
[  249.031013][T11820] __nla_validate_parse: 10 callbacks suppressed
[  249.031032][T11820] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2243'.
[  249.127557][T11829] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2244'.
[  249.153775][T11823] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2244'.
[  249.814861][T11868] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2260'.
[  249.896696][T11873] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2263'.
[  249.958210][T11873] bridge: RTM_NEWNEIGH with invalid state 0x0
[  250.002464][T11881] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2264'.
[  250.841504][T11926] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  250.871483][T11926] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2275'.
[  250.912138][T11926] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  251.104812][T11940] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2280'.
[  252.093264][T11970] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2294'.
[  252.223589][T11974] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2296'.
[  252.270761][T11976] netlink: 'syz.0.2297': attribute type 4 has an invalid length.
[  252.343548][ T8406] wlan1: Trigger new scan to find an IBSS to join
[  252.477514][T11986] netlink: 'syz.0.2300': attribute type 1 has an invalid length.
[  252.794611][T12001] ip6tnl3: entered promiscuous mode
[  252.801839][T12001] ip6tnl3: entered allmulticast mode
[  253.073127][T12015] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  253.143180][T12015] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  253.301070][T12020] netlink: 'syz.0.2312': attribute type 29 has an invalid length.
[  253.322899][T12020] netlink: 'syz.0.2312': attribute type 29 has an invalid length.
[  254.073551][T12047] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 44783 - 0
[  254.099827][T12047] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 44783 - 0
[  254.123305][T12047] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 44783 - 0
[  254.140833][T12047] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 44783 - 0
[  254.155187][T12047] geneve2: entered promiscuous mode
[  254.161783][T12047] geneve2: entered allmulticast mode
[  254.309157][T12058] __nla_validate_parse: 7 callbacks suppressed
[  254.309182][T12058] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2327'.
[  254.340271][T12058] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2327'.
[  254.455604][T12065] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2329'.
[  254.471670][T12066] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2330'.
[  254.482412][T12065] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2329'.
[  254.573280][T12070] bridge0: port 1(bridge_slave_0) entered disabled state
[  255.302106][ T8401] wlan1: Trigger new scan to find an IBSS to join
[  255.424359][T12109] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2348'.
[  255.460978][T12109] netlink: 'syz.4.2348': attribute type 5 has an invalid length.
[  255.816105][T12128] netlink: 'syz.0.2355': attribute type 4 has an invalid length.
[  255.842749][T12123] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  255.938077][T12123] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  255.957264][T12132] netlink: 'syz.3.2357': attribute type 2 has an invalid length.
[  255.985104][T12135] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2358'.
[  255.997499][T12123] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  256.101591][T12138] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2360'.
[  256.190134][ T1252] ieee802154 phy0 wpan0: encryption failed: -22
[  256.198044][ T1252] ieee802154 phy1 wpan1: encryption failed: -22
[  256.381034][T12152] netlink: 209840 bytes leftover after parsing attributes in process `syz.3.2364'.
[  256.497979][T12155] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2366'.
[  256.559925][T12159] xt_TCPMSS: Only works on TCP SYN packets
[  256.740416][T12168] openvswitch: netlink: ct_state flags 0000ee00 unsupported
[  257.476989][T12215] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  257.827823][T12231] macvlan2: entered allmulticast mode
[  257.836533][T12231] team_slave_0: entered promiscuous mode
[  257.842443][T12231] team_slave_1: entered promiscuous mode
[  257.869966][T12231] team0: entered allmulticast mode
[  257.883346][T12231] team_slave_0: entered allmulticast mode
[  257.899534][T12231] team_slave_1: entered allmulticast mode
[  257.910082][T12231] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  257.932983][T12231] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  258.144188][T12249] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  258.265287][T12253] syzkaller1: entered promiscuous mode
[  258.284970][T12253] syzkaller1: entered allmulticast mode
[  258.344055][ T8405] wlan1: Trigger new scan to find an IBSS to join
[  258.416541][T12267] bond0: option arp_interval: invalid value (18446744072926568490)
[  258.424963][T12267] bond0: option arp_interval: allowed values 0 - 2147483647
[  258.435470][T12268] bridge0: entered allmulticast mode
[  258.514209][T12269] pimreg: entered allmulticast mode
[  258.543953][T12268] pimreg: left allmulticast mode
[  258.549217][T12268] bridge0: left allmulticast mode
[  258.840464][T12285] netlink: 'syz.4.2410': attribute type 4 has an invalid length.
[  258.994651][T12294] netlink: 'syz.1.2413': attribute type 33 has an invalid length.
[  259.261267][ T8404] wlan1: Creating new IBSS network, BSSID 52:c0:6f:91:51:08
[  259.286421][T12305] openvswitch: netlink: Message has 16 unknown bytes.
[  259.356068][T12312] __nla_validate_parse: 15 callbacks suppressed
[  259.356098][T12312] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2422'.
[  259.443150][T12317] netlink: 209840 bytes leftover after parsing attributes in process `syz.1.2423'.
[  259.452455][T12320] netlink: 'syz.3.2424': attribute type 3 has an invalid length.
[  259.462089][T12322] netlink: 184 bytes leftover after parsing attributes in process `syz.4.2425'.
[  259.563555][T12324] netlink: 4100 bytes leftover after parsing attributes in process `syz.2.2426'.
[  259.623224][T12328] bridge0: entered promiscuous mode
[  259.658069][T12328] macvlan4: entered promiscuous mode
[  259.791197][T12339] FAULT_INJECTION: forcing a failure.
[  259.791197][T12339] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  259.822670][T12339] CPU: 1 PID: 12339 Comm: syz.4.2431 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  259.832984][T12339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  259.843260][T12339] Call Trace:
[  259.846685][T12339]  <TASK>
[  259.849738][T12339]  dump_stack_lvl+0x241/0x360
[  259.854548][T12339]  ? __pfx_dump_stack_lvl+0x10/0x10
[  259.859925][T12339]  ? __pfx__printk+0x10/0x10
[  259.864815][T12339]  ? __pfx_lock_release+0x10/0x10
[  259.869991][T12339]  should_fail_ex+0x3b0/0x4e0
[  259.874735][T12339]  _copy_from_user+0x2f/0xe0
[  259.879390][T12339]  copy_msghdr_from_user+0xae/0x680
[  259.884705][T12339]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  259.890726][T12339]  __sys_sendmsg+0x23d/0x3a0
[  259.895426][T12339]  ? __pfx___sys_sendmsg+0x10/0x10
[  259.900733][T12339]  ? vfs_write+0x7c4/0xc90
[  259.905310][T12339]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  259.911756][T12339]  ? do_syscall_64+0x100/0x230
[  259.916541][T12339]  ? do_syscall_64+0xb6/0x230
[  259.921343][T12339]  do_syscall_64+0xf3/0x230
[  259.925859][T12339]  ? clear_bhb_loop+0x35/0x90
[  259.930812][T12339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.936754][T12339] RIP: 0033:0x7f3fc8175bd9
[  259.941185][T12339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.961075][T12339] RSP: 002b:00007f3fc8f3e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  259.969855][T12339] RAX: ffffffffffffffda RBX: 00007f3fc8303f60 RCX: 00007f3fc8175bd9
[  259.977890][T12339] RDX: 0000000000000000 RSI: 0000000020000a00 RDI: 0000000000000004
[  259.985960][T12339] RBP: 00007f3fc8f3e0a0 R08: 0000000000000000 R09: 0000000000000000
[  259.993944][T12339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  260.002216][T12339] R13: 000000000000000b R14: 00007f3fc8303f60 R15: 00007ffd11a7edd8
[  260.010243][T12339]  </TASK>
[  260.153673][T12342] IPVS: persistence engine module ip_vs_pe_X not found
[  260.178900][T12353] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2435'.
[  260.348284][T12357] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2437'.
[  260.381295][T12357] IPv6: NLM_F_CREATE should be specified when creating new route
[  260.598212][T12376] tap0: tun_chr_ioctl cmd 2147767511
[  260.750457][T12387] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2449'.
[  261.022753][T12394] netlink: 209840 bytes leftover after parsing attributes in process `syz.2.2451'.
[  261.223036][T12396] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  261.332814][T12396] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  261.400037][T12396] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  261.595852][T12417] netlink: 'syz.4.2459': attribute type 4 has an invalid length.
[  261.646163][T12417] netlink: 188 bytes leftover after parsing attributes in process `syz.4.2459'.
[  261.900469][T12423] netlink: 'syz.3.2461': attribute type 2 has an invalid length.
[  262.574901][T12439] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2467'.
[  262.837213][T12447] xt_CT: You must specify a L4 protocol and not use inversions on it
[  262.875427][T12449] xt_CT: You must specify a L4 protocol and not use inversions on it
[  262.911186][T12447] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  262.953707][T12451] ip6t_srh: unknown srh invflags 4811
[  263.063509][T12454] netlink: 'syz.2.2476': attribute type 21 has an invalid length.
[  263.071997][T12454] netlink: 'syz.2.2476': attribute type 1 has an invalid length.
[  263.245257][T12465] netlink: 'syz.0.2479': attribute type 10 has an invalid length.
[  264.430404][T12538] __nla_validate_parse: 10 callbacks suppressed
[  264.430429][T12538] netlink: 188 bytes leftover after parsing attributes in process `syz.0.2504'.
[  264.489833][T12538] netlink: 'syz.0.2504': attribute type 1 has an invalid length.
[  264.544103][T12544] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2507'.
[  264.563667][T12544] tc_dump_action: action bad kind
[  264.721941][T12555] netlink: 184 bytes leftover after parsing attributes in process `syz.3.2511'.
[  264.742035][T12547] netlink: 'syz.4.2509': attribute type 3 has an invalid length.
[  264.742211][T12553] netlink: 'syz.1.2510': attribute type 3 has an invalid length.
[  265.072124][T12575] x_tables: duplicate underflow at hook 1
[  265.094566][T12570] x_tables: duplicate underflow at hook 1
[  265.353132][T12595] netlink: 'syz.3.2523': attribute type 9 has an invalid length.
[  265.457522][T12600] FAULT_INJECTION: forcing a failure.
[  265.457522][T12600] name failslab, interval 1, probability 0, space 0, times 0
[  265.484016][T12604] veth1: entered promiscuous mode
[  265.486160][T12600] CPU: 1 PID: 12600 Comm: syz.0.2527 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  265.499534][T12600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  265.503145][T12606] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2529'.
[  265.509692][T12600] Call Trace:
[  265.509710][T12600]  <TASK>
[  265.509721][T12600]  dump_stack_lvl+0x241/0x360
[  265.509756][T12600]  ? __pfx_dump_stack_lvl+0x10/0x10
[  265.536025][T12600]  ? __pfx__printk+0x10/0x10
[  265.540678][T12600]  should_fail_ex+0x3b0/0x4e0
[  265.545412][T12600]  ? __alloc_skb+0x1c3/0x440
[  265.550140][T12600]  should_failslab+0x9/0x20
[  265.550334][T12606] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2529'.
[  265.554670][T12600]  kmem_cache_alloc_node_noprof+0x71/0x320
[  265.554720][T12600]  __alloc_skb+0x1c3/0x440
[  265.554751][T12600]  ? __pfx___might_resched+0x10/0x10
[  265.554784][T12600]  ? __pfx___alloc_skb+0x10/0x10
[  265.554818][T12600]  ? bpf_lsm_socket_getpeersec_dgram+0x9/0x20
[  265.554842][T12600]  ? security_socket_getpeersec_dgram+0x88/0xb0
[  265.554875][T12600]  netlink_sendmsg+0x638/0xcb0
[  265.554915][T12600]  ? __pfx_netlink_sendmsg+0x10/0x10
[  265.554946][T12600]  ? __import_iovec+0x536/0x820
[  265.611670][T12600]  ? aa_sock_msg_perm+0x91/0x160
[  265.616696][T12600]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  265.622037][T12600]  ? security_socket_sendmsg+0x87/0xb0
[  265.627558][T12600]  ? __pfx_netlink_sendmsg+0x10/0x10
[  265.632981][T12600]  __sock_sendmsg+0x221/0x270
[  265.637715][T12600]  ____sys_sendmsg+0x525/0x7d0
[  265.642631][T12600]  ? __pfx_____sys_sendmsg+0x10/0x10
[  265.647998][T12600]  __sys_sendmsg+0x2b0/0x3a0
[  265.652649][T12600]  ? __pfx___sys_sendmsg+0x10/0x10
[  265.657903][T12600]  ? vfs_write+0x7c4/0xc90
[  265.662502][T12600]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  265.668886][T12600]  ? do_syscall_64+0x100/0x230
[  265.673789][T12600]  ? do_syscall_64+0xb6/0x230
[  265.678516][T12600]  do_syscall_64+0xf3/0x230
[  265.683100][T12600]  ? clear_bhb_loop+0x35/0x90
[  265.687844][T12600]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.693781][T12600] RIP: 0033:0x7f0e64d75bd9
[  265.698258][T12600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  265.717913][T12600] RSP: 002b:00007f0e647ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  265.726478][T12600] RAX: ffffffffffffffda RBX: 00007f0e64f03f60 RCX: 00007f0e64d75bd9
[  265.734712][T12600] RDX: 0000000000000000 RSI: 0000000020000a00 RDI: 0000000000000004
[  265.743106][T12600] RBP: 00007f0e647ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  265.751218][T12600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  265.759249][T12600] R13: 000000000000004d R14: 00007f0e64f03f60 R15: 00007ffe54b87e78
[  265.767295][T12600]  </TASK>
[  265.950991][T12614] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2532'.
[  266.125226][T12627] x_tables: duplicate underflow at hook 1
[  266.137083][T12602] veth1: left promiscuous mode
[  266.514308][T12642] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2545'.
[  267.191094][T12667] netlink: 'syz.1.2551': attribute type 4 has an invalid length.
[  267.224753][T12669] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2552'.
[  267.248156][T12669] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2552'.
[  267.331017][T12670] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2552'.
[  267.521930][T12682] netlink: 'syz.3.2557': attribute type 10 has an invalid length.
[  267.888797][T12697] netlink: 'syz.1.2564': attribute type 2 has an invalid length.
[  268.175330][T12714] netlink: 'syz.4.2569': attribute type 1 has an invalid length.
[  268.200621][T12714] netlink: 'syz.4.2569': attribute type 2 has an invalid length.
[  268.343221][T12718] netlink: 'syz.1.2570': attribute type 2 has an invalid length.
[  268.525648][T12724] ip6gretap1: entered allmulticast mode
[  268.644731][T12738] FAULT_INJECTION: forcing a failure.
[  268.644731][T12738] name failslab, interval 1, probability 0, space 0, times 0
[  268.671221][T12738] CPU: 1 PID: 12738 Comm: syz.0.2578 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  268.681545][T12738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  268.691653][T12738] Call Trace:
[  268.694960][T12738]  <TASK>
[  268.698007][T12738]  dump_stack_lvl+0x241/0x360
[  268.702820][T12738]  ? __pfx_dump_stack_lvl+0x10/0x10
[  268.708077][T12738]  ? __pfx__printk+0x10/0x10
[  268.713001][T12738]  should_fail_ex+0x3b0/0x4e0
[  268.717822][T12738]  ? sctp_add_bind_addr+0x89/0x3a0
[  268.722996][T12738]  should_failslab+0x9/0x20
[  268.727553][T12738]  kmalloc_trace_noprof+0x6c/0x2c0
[  268.732767][T12738]  sctp_add_bind_addr+0x89/0x3a0
[  268.737766][T12738]  sctp_copy_local_addr_list+0x311/0x500
[  268.743623][T12738]  ? sctp_copy_local_addr_list+0xab/0x500
[  268.749397][T12738]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  268.755849][T12738]  ? sctp_v4_is_any+0x35/0x60
[  268.760588][T12738]  sctp_bind_addr_copy+0xad/0x3b0
[  268.765695][T12738]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  268.772079][T12738]  sctp_connect_new_asoc+0x2f3/0x6c0
[  268.777454][T12738]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  268.783373][T12738]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  268.789225][T12738]  __sctp_connect+0x66d/0xe30
[  268.793925][T12738]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  268.799925][T12738]  ? __pfx___sctp_connect+0x10/0x10
[  268.805148][T12738]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  268.811497][T12738]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  268.817354][T12738]  ? security_sctp_bind_connect+0x90/0xb0
[  268.823118][T12738]  sctp_setsockopt_connectx+0x184/0x2a0
[  268.829067][T12738]  ? __pfx_sctp_setsockopt_connectx+0x10/0x10
[  268.835434][T12738]  ? do_raw_spin_unlock+0x13c/0x8b0
[  268.840676][T12738]  sctp_setsockopt+0x709/0x11c0
[  268.845670][T12738]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  268.851603][T12738]  do_sock_setsockopt+0x3af/0x720
[  268.856753][T12738]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  268.862548][T12738]  ? __fget_files+0x29/0x470
[  268.867458][T12738]  ? __fget_files+0x3f6/0x470
[  268.872181][T12738]  __sys_setsockopt+0x1ae/0x250
[  268.877073][T12738]  __x64_sys_setsockopt+0xb5/0xd0
[  268.882647][T12738]  do_syscall_64+0xf3/0x230
[  268.887431][T12738]  ? clear_bhb_loop+0x35/0x90
[  268.892245][T12738]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.898332][T12738] RIP: 0033:0x7f0e64d75bd9
[  268.902770][T12738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.922391][T12738] RSP: 002b:00007f0e647ff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  268.930826][T12738] RAX: ffffffffffffffda RBX: 00007f0e64f03f60 RCX: 00007f0e64d75bd9
[  268.938891][T12738] RDX: 000000000000006e RSI: 0000000000000084 RDI: 0000000000000003
[  268.946869][T12738] RBP: 00007f0e647ff0a0 R08: 0000000000000010 R09: 0000000000000000
[  268.954882][T12738] R10: 0000000020009200 R11: 0000000000000246 R12: 0000000000000002
[  268.962954][T12738] R13: 000000000000004d R14: 00007f0e64f03f60 R15: 00007ffe54b87e78
[  268.970996][T12738]  </TASK>
[  269.305526][T12755] bond_slave_0: entered promiscuous mode
[  269.311419][T12755] bond_slave_1: entered promiscuous mode
[  269.349681][T12755] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  269.391236][T12755] bond_slave_0: left promiscuous mode
[  269.396956][T12755] bond_slave_1: left promiscuous mode
[  269.529287][T12769] sctp: [Deprecated]: syz.3.2592 (pid 12769) Use of int in max_burst socket option.
[  269.529287][T12769] Use struct sctp_assoc_value instead
[  269.739003][T12782] syzkaller1: entered promiscuous mode
[  269.781781][T12782] syzkaller1: entered allmulticast mode
[  269.989946][T12796] __nla_validate_parse: 8 callbacks suppressed
[  269.989966][T12796] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2598'.
[  270.054921][T12803] dccp_invalid_packet: P.Data Offset(10) too large
[  270.333464][T12818] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2606'.
[  270.571784][T12835] validate_nla: 5 callbacks suppressed
[  270.571815][T12835] netlink: 'syz.4.2611': attribute type 26 has an invalid length.
[  270.669836][T12838] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  270.698346][T12840] dccp_invalid_packet: P.Data Offset(10) too large
[  270.713771][T12838] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2612'.
[  270.749884][T12842] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2614'.
[  270.907959][T12849] netlink: 'syz.1.2617': attribute type 3 has an invalid length.
[  270.929839][T12847] netlink: 'syz.2.2616': attribute type 29 has an invalid length.
[  270.951438][T12847] netlink: 'syz.2.2616': attribute type 29 has an invalid length.
[  271.063322][T12855] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2621'.
[  271.439423][T12872] macvlan5: entered allmulticast mode
[  271.445796][T12872] bond0: (slave macvlan5): Error -98 calling set_mac_address
[  271.486168][T12874] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2625'.
[  271.668594][T12882] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2628'.
[  271.759329][T12892] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2631'.
[  272.140249][T12910] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2640'.
[  272.479112][T12920] netlink: 4083 bytes leftover after parsing attributes in process `syz.4.2639'.
[  272.731518][T12926] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[  273.070371][T12941] bridge7: port 1(bridge_slave_1) entered blocking state
[  273.101183][T12941] bridge7: port 1(bridge_slave_1) entered disabled state
[  273.108522][T12941] bridge_slave_1: entered allmulticast mode
[  273.143206][T12941] bridge_slave_1: entered promiscuous mode
[  273.176627][T12955] bridge7: port 2(veth1_to_bond) entered blocking state
[  273.220043][T12955] bridge7: port 2(veth1_to_bond) entered disabled state
[  273.261017][T12955] veth1_to_bond: entered allmulticast mode
[  273.278231][T12955] veth1_to_bond: entered promiscuous mode
[  273.341659][T12955] bridge7: port 2(veth1_to_bond) entered blocking state
[  273.349008][T12955] bridge7: port 2(veth1_to_bond) entered forwarding state
[  273.611415][T12977] bridge_slave_1: left allmulticast mode
[  273.641068][T12977] bridge_slave_1: left promiscuous mode
[  273.646964][T12977] bridge0: port 2(bridge_slave_1) entered disabled state
[  273.706496][T12978] netlink: 'syz.0.2665': attribute type 8 has an invalid length.
[  273.743731][T12983] IPv6: NLM_F_CREATE should be specified when creating new route
[  273.902100][T12991] netlink: 'syz.4.2671': attribute type 1 has an invalid length.
[  274.108345][T13005] ipvlan0: entered promiscuous mode
[  274.119140][T13005] ipvlan0: entered allmulticast mode
[  274.126431][T13005] 8021q: adding VLAN 0 to HW filter on device ipvlan0
[  274.297619][T13018] netlink: 'syz.2.2681': attribute type 2 has an invalid length.
[  274.374571][T13021] netlink: 'syz.3.2682': attribute type 4 has an invalid length.
[  274.538022][T13030] netlink: 'syz.0.2686': attribute type 2 has an invalid length.
[  274.626207][T13036] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  274.751071][T13041] netlink: 'syz.4.2691': attribute type 1 has an invalid length.
[  275.166192][T13063] bridge0: port 1(bridge_slave_0) entered disabled state
[  275.217421][T13065] __nla_validate_parse: 11 callbacks suppressed
[  275.217446][T13065] netlink: 123 bytes leftover after parsing attributes in process `syz.3.2700'.
[  275.412689][T13073] netlink: 5 bytes leftover after parsing attributes in process `syz.0.2701'.
[  275.442781][T13073] 1ªX¹¦Dö»: renamed from 
00ªX¹¦Dö» (while UP)
[  275.567625][T13081] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2706'.
[  275.612523][T13083] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2707'.
[  275.750308][T13091] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2709'.
[  276.051094][T13114] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2717'.
[  276.074585][T13114] bridge8: port 1(bridge_slave_1) entered blocking state
[  276.094566][T13114] bridge8: port 1(bridge_slave_1) entered disabled state
[  276.112966][T13114] bridge_slave_1: entered allmulticast mode
[  276.150922][T13114] bridge_slave_1: entered promiscuous mode
[  276.169774][T13114] bridge8: port 1(bridge_slave_1) entered blocking state
[  276.177238][T13114] bridge8: port 1(bridge_slave_1) entered forwarding state
[  276.222461][T13119] veth1_to_bond: left allmulticast mode
[  276.238867][T13119] veth1_to_bond: left promiscuous mode
[  276.245783][T13119] bridge6: port 2(veth1_to_bond) entered disabled state
[  276.262793][T13119] bridge8: port 2(veth1_to_bond) entered blocking state
[  276.304096][T13119] bridge8: port 2(veth1_to_bond) entered disabled state
[  276.316897][T13119] veth1_to_bond: entered allmulticast mode
[  276.326323][T13119] veth1_to_bond: entered promiscuous mode
[  276.333845][T13119] bridge8: port 2(veth1_to_bond) entered blocking state
[  276.341277][T13119] bridge8: port 2(veth1_to_bond) entered forwarding state
[  277.392849][T13168] netlink: 'syz.2.2734': attribute type 4 has an invalid length.
[  277.417338][T13168] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2734'.
[  277.698858][T13182] netlink: 'syz.0.2738': attribute type 33 has an invalid length.
[  277.717805][T13182] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2738'.
[  278.222882][T13208] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  278.406663][T13220] IPVS: set_ctl: invalid protocol: 103 172.30.0.4:20004
[  278.429943][T13214] veth0_vlan: left promiscuous mode
[  278.453132][T13214] veth0_vlan: entered promiscuous mode
[  278.505166][T13218] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2750'.
[  278.683185][T13230] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2754'.
[  278.713570][T13231] netlink: 'syz.2.2755': attribute type 9 has an invalid length.
[  278.775935][T13231] netlink: 'syz.2.2755': attribute type 6 has an invalid length.
[  278.861173][T13236] macvlan5: entered allmulticast mode
[  278.873355][T13236] bond0: (slave macvlan5): Error -98 calling set_mac_address
[  278.922301][T13246] netlink: 'syz.2.2762': attribute type 44 has an invalid length.
[  279.534420][T13274] IPVS: persistence engine module ip_vs_pe_X not found
[  279.664617][T13280] syz_tun: entered promiscuous mode
[  279.691067][T13280] macvtap0: entered promiscuous mode
[  279.696889][T13280] macvtap0: entered allmulticast mode
[  279.704565][T13280] syz_tun: entered allmulticast mode
[  279.738057][T13280] xt_CT: You must specify a L4 protocol and not use inversions on it
[  280.228344][T13306] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2782'.
[  280.661123][T13306] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2782'.
[  280.806314][T13322] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2784'.
[  280.920651][T13326] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2787'.
[  280.951515][T13326] IPv6: NLM_F_CREATE should be specified when creating new route
[  281.408000][T13347] batadv0: Device is already in use.
[  281.541629][T13354] ipvlan0: entered promiscuous mode
[  281.554762][T13354] ipvlan0: entered allmulticast mode
[  281.567170][T13354] ip6gretap0: entered allmulticast mode
[  281.641718][T13358] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2797'.
[  281.672576][T13358] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2797'.
[  281.921937][T13332] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2788'.
[  281.976129][T13374] netlink: 'syz.2.2802': attribute type 5 has an invalid length.
[  282.151771][T13378] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  282.186729][T13381] openvswitch: netlink: Port 6910562 exceeds max allowable 65535
[  282.296847][T13383] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.2806'.
[  282.499545][T13389] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2809'.
[  282.520140][T13389] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2809'.
[  282.528086][T13391] netlink: 'syz.1.2810': attribute type 46 has an invalid length.
[  282.541076][T13391] netlink: 'syz.1.2810': attribute type 46 has an invalid length.
[  282.786223][T13400] bridge4: port 1(bridge_slave_1) entered blocking state
[  282.802884][T13400] bridge4: port 1(bridge_slave_1) entered disabled state
[  282.834276][T13400] bridge_slave_1: entered allmulticast mode
[  282.871105][T13400] bridge_slave_1: entered promiscuous mode
[  282.896393][T13400] bridge4: port 1(bridge_slave_1) entered blocking state
[  282.903848][T13400] bridge4: port 1(bridge_slave_1) entered forwarding state
[  282.945801][T13410] bridge4: port 2(veth1_to_bond) entered blocking state
[  282.997032][T13410] bridge4: port 2(veth1_to_bond) entered disabled state
[  283.021034][T13410] veth1_to_bond: entered allmulticast mode
[  283.037457][T13410] veth1_to_bond: entered promiscuous mode
[  283.054784][T13410] bridge4: port 2(veth1_to_bond) entered blocking state
[  283.062006][T13410] bridge4: port 2(veth1_to_bond) entered forwarding state
[  283.753734][T13458] bridge5: port 1(bridge_slave_1) entered blocking state
[  283.767112][T13458] bridge5: port 1(bridge_slave_1) entered disabled state
[  283.795523][T13458] bridge_slave_1: entered allmulticast mode
[  283.831905][T13458] bridge_slave_1: entered promiscuous mode
[  283.875077][T13465] veth1_to_bond: left allmulticast mode
[  283.924747][T13465] veth1_to_bond: left promiscuous mode
[  283.946071][T13465] bridge0: port 2(veth1_to_bond) entered disabled state
[  283.989166][T13465] bridge5: port 2(veth1_to_bond) entered blocking state
[  284.000868][T13473] netlink: 'syz.0.2839': attribute type 1 has an invalid length.
[  284.019323][T13465] bridge5: port 2(veth1_to_bond) entered disabled state
[  284.039713][T13465] veth1_to_bond: entered allmulticast mode
[  284.067300][T13465] veth1_to_bond: entered promiscuous mode
[  284.079668][T13465] bridge5: port 2(veth1_to_bond) entered blocking state
[  284.087260][T13465] bridge5: port 2(veth1_to_bond) entered forwarding state
[  284.630399][T13495] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  284.727309][T13513] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  284.807929][T13495] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  284.848072][T13512] af_packet: tpacket_rcv: packet too big, clamped from 65225 to 3952. macoff=96
[  285.011224][T13522] netlink: 'syz.1.2856': attribute type 2 has an invalid length.
[  285.129516][T13532] IPv6: NLM_F_REPLACE set, but no existing node found!
[  285.182551][T13532] bridge0: entered promiscuous mode
[  285.196224][T13532] macsec1: entered promiscuous mode
[  285.216926][T13532] macsec1: entered allmulticast mode
[  285.236762][T13532] bridge0: entered allmulticast mode
[  285.266505][T13532] bridge0: left allmulticast mode
[  285.279471][T13537] IPVS: persistence engine module ip_vs_pe_X not found
[  285.279635][T13532] bridge0: left promiscuous mode
[  285.412536][T13542] IPv6: NLM_F_REPLACE set, but no existing node found!
[  285.472651][T13538] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  285.535031][T13560] __nla_validate_parse: 10 callbacks suppressed
[  285.535055][T13560] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2868'.
[  285.572784][T13538] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  285.753237][T13571] FAULT_INJECTION: forcing a failure.
[  285.753237][T13571] name failslab, interval 1, probability 0, space 0, times 0
[  285.795960][T13574] netlink: 'syz.1.2874': attribute type 5 has an invalid length.
[  285.812192][T13571] CPU: 0 PID: 13571 Comm: syz.4.2872 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  285.823122][T13571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  285.833221][T13571] Call Trace:
[  285.836544][T13571]  <TASK>
[  285.839512][T13571]  dump_stack_lvl+0x241/0x360
[  285.844223][T13571]  ? __pfx_dump_stack_lvl+0x10/0x10
[  285.849466][T13571]  ? __pfx__printk+0x10/0x10
[  285.854114][T13571]  ? __pfx___might_resched+0x10/0x10
[  285.859620][T13571]  ? trace_contention_end+0x3c/0x120
[  285.865072][T13571]  ? __mutex_lock+0x2ef/0xd70
[  285.869819][T13571]  should_fail_ex+0x3b0/0x4e0
[  285.874560][T13571]  ? genl_start+0x1cb/0x6d0
[  285.879134][T13571]  should_failslab+0x9/0x20
[  285.883680][T13571]  kmalloc_trace_noprof+0x6c/0x2c0
[  285.888928][T13571]  genl_start+0x1cb/0x6d0
[  285.893321][T13571]  __netlink_dump_start+0x45c/0x780
[  285.898575][T13571]  genl_rcv_msg+0x88c/0xec0
[  285.903260][T13571]  ? mark_lock+0x9a/0x350
[  285.907650][T13571]  ? __pfx_genl_rcv_msg+0x10/0x10
[  285.912825][T13571]  ? __pfx_genl_start+0x10/0x10
[  285.917730][T13571]  ? __pfx_genl_dumpit+0x10/0x10
[  285.922712][T13571]  ? __pfx_genl_done+0x10/0x10
[  285.927646][T13571]  ? __pfx_lock_acquire+0x10/0x10
[  285.932687][T13571]  ? __pfx_netlbl_unlabel_staticlist+0x10/0x10
[  285.939038][T13571]  ? __pfx___might_resched+0x10/0x10
[  285.944345][T13571]  netlink_rcv_skb+0x1e3/0x430
[  285.949240][T13571]  ? __pfx_genl_rcv_msg+0x10/0x10
[  285.954284][T13571]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  285.959618][T13571]  genl_rcv+0x28/0x40
[  285.963651][T13571]  netlink_unicast+0x7f0/0x990
[  285.968442][T13571]  ? __pfx_netlink_unicast+0x10/0x10
[  285.973736][T13571]  ? __virt_addr_valid+0x183/0x520
[  285.979254][T13571]  ? __check_object_size+0x49c/0x900
[  285.984613][T13571]  ? bpf_lsm_netlink_send+0x9/0x10
[  285.989766][T13571]  netlink_sendmsg+0x8e4/0xcb0
[  285.994678][T13571]  ? __pfx_netlink_sendmsg+0x10/0x10
[  286.000030][T13571]  ? __import_iovec+0x536/0x820
[  286.005003][T13571]  ? aa_sock_msg_perm+0x91/0x160
[  286.010236][T13571]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  286.016929][T13571]  ? security_socket_sendmsg+0x87/0xb0
[  286.022416][T13571]  ? __pfx_netlink_sendmsg+0x10/0x10
[  286.027749][T13571]  __sock_sendmsg+0x221/0x270
[  286.032462][T13571]  ____sys_sendmsg+0x525/0x7d0
[  286.037260][T13571]  ? __pfx_____sys_sendmsg+0x10/0x10
[  286.042675][T13571]  __sys_sendmsg+0x2b0/0x3a0
[  286.047291][T13571]  ? __pfx___sys_sendmsg+0x10/0x10
[  286.052415][T13571]  ? vfs_write+0x7c4/0xc90
[  286.056977][T13571]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  286.063924][T13571]  ? do_syscall_64+0x100/0x230
[  286.068702][T13571]  ? do_syscall_64+0xb6/0x230
[  286.073480][T13571]  do_syscall_64+0xf3/0x230
[  286.078016][T13571]  ? clear_bhb_loop+0x35/0x90
[  286.082778][T13571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.088700][T13571] RIP: 0033:0x7f3fc8175bd9
[  286.093238][T13571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  286.112967][T13571] RSP: 002b:00007f3fc8f3e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  286.121398][T13571] RAX: ffffffffffffffda RBX: 00007f3fc8303f60 RCX: 00007f3fc8175bd9
[  286.129560][T13571] RDX: 0000000000000000 RSI: 0000000020000a00 RDI: 0000000000000004
[  286.137544][T13571] RBP: 00007f3fc8f3e0a0 R08: 0000000000000000 R09: 0000000000000000
[  286.145620][T13571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  286.153711][T13571] R13: 000000000000000b R14: 00007f3fc8303f60 R15: 00007ffd11a7edd8
[  286.161716][T13571]  </TASK>
[  286.275231][T13583] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2875'.
[  286.345760][T13583] bridge_slave_1: left allmulticast mode
[  286.361795][T13583] bridge_slave_1: left promiscuous mode
[  286.378174][T13583] bridge8: port 1(bridge_slave_1) entered disabled state
[  286.418599][T13583] bridge9: port 1(bridge_slave_1) entered blocking state
[  286.448918][T13583] bridge9: port 1(bridge_slave_1) entered disabled state
[  286.472393][T13583] bridge_slave_1: entered allmulticast mode
[  286.503660][T13583] bridge_slave_1: entered promiscuous mode
[  286.550462][T13583] bridge9: port 1(bridge_slave_1) entered blocking state
[  286.557806][T13583] bridge9: port 1(bridge_slave_1) entered forwarding state
[  286.586027][T13593] veth1_to_bond: left allmulticast mode
[  286.608231][T13593] veth1_to_bond: left promiscuous mode
[  286.630467][T13593] bridge8: port 2(veth1_to_bond) entered disabled state
[  286.692632][T13593] bridge9: port 2(veth1_to_bond) entered blocking state
[  286.723703][T13593] bridge9: port 2(veth1_to_bond) entered disabled state
[  286.775612][T13593] veth1_to_bond: entered allmulticast mode
[  286.786598][T13593] veth1_to_bond: entered promiscuous mode
[  286.794164][T13593] bridge9: port 2(veth1_to_bond) entered blocking state
[  286.801467][T13593] bridge9: port 2(veth1_to_bond) entered forwarding state
[  286.817217][T13604] A link change request failed with some changes committed already. Interface veth0_to_bond may have been left with an inconsistent configuration, please check.
[  286.840887][T13609] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2883'.
[  286.856223][T13609] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2883'.
[  286.872205][T13609] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2883'.
[  286.893679][T13612] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2880'.
[  286.913171][T13612] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2880'.
[  286.923080][T13612] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2880'.
[  286.939008][T13615] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2883'.
[  286.961410][T13614] netlink: 'syz.1.2885': attribute type 2 has an invalid length.
[  286.970193][T13601] syzkaller1: entered promiscuous mode
[  286.987556][T13601] syzkaller1: entered allmulticast mode
[  287.030365][T13619] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2886'.
[  287.213405][T13628] tunl0: entered promiscuous mode
[  287.255328][T13628] netlink: 'syz.4.2890': attribute type 1 has an invalid length.
[  287.447930][T13633] ipvlan0: entered promiscuous mode
[  287.461500][T13633] ipvlan0: entered allmulticast mode
[  287.468481][T13633] 8021q: adding VLAN 0 to HW filter on device ipvlan0
[  287.639105][T13643] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  287.791277][T13655] vlan4: entered promiscuous mode
[  287.937303][T13666] netlink: 'syz.2.2902': attribute type 2 has an invalid length.
[  288.107237][T13679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  288.123599][T13679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.144621][T13679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  288.165828][T13679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.201450][T13679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  288.212535][T13679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.222915][T13679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  288.239359][T13679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.250413][T13679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  288.276141][T13679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.744554][T13709] FAULT_INJECTION: forcing a failure.
[  288.744554][T13709] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  288.776709][T13709] CPU: 1 PID: 13709 Comm: syz.2.2915 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  288.786986][T13709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  288.797205][T13709] Call Trace:
[  288.800518][T13709]  <TASK>
[  288.803924][T13709]  dump_stack_lvl+0x241/0x360
[  288.808672][T13709]  ? __pfx_dump_stack_lvl+0x10/0x10
[  288.814110][T13709]  ? __pfx__printk+0x10/0x10
[  288.818842][T13709]  ? __pfx_lock_release+0x10/0x10
[  288.823919][T13709]  ? rcu_is_watching+0x15/0xb0
[  288.829088][T13709]  should_fail_ex+0x3b0/0x4e0
[  288.833832][T13709]  _copy_from_iter+0x1f6/0x1960
[  288.838852][T13709]  ? alloc_pages_mpol_noprof+0x417/0x680
[  288.844540][T13709]  ? __pfx__copy_from_iter+0x10/0x10
[  288.849912][T13709]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  288.856066][T13709]  ? alloc_pages_noprof+0xef/0x170
[  288.861322][T13709]  ? page_copy_sane+0x46/0x260
[  288.866572][T13709]  copy_page_from_iter+0x7a/0x100
[  288.871732][T13709]  tun_get_user+0x1f4c/0x4560
[  288.876447][T13709]  ? tun_get_user+0x84c/0x4560
[  288.881335][T13709]  ? __pfx_tun_get_user+0x10/0x10
[  288.886398][T13709]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  288.891966][T13709]  ? tun_get+0x1e/0x2f0
[  288.896157][T13709]  ? tun_get+0x1e/0x2f0
[  288.900323][T13709]  ? tun_get+0x27d/0x2f0
[  288.904593][T13709]  tun_chr_write_iter+0x113/0x1f0
[  288.909653][T13709]  vfs_write+0xa72/0xc90
[  288.913939][T13709]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  288.919625][T13709]  ? __pfx_vfs_write+0x10/0x10
[  288.924444][T13709]  ksys_write+0x1a0/0x2c0
[  288.928829][T13709]  ? __pfx_ksys_write+0x10/0x10
[  288.933801][T13709]  ? do_syscall_64+0x100/0x230
[  288.938689][T13709]  ? do_syscall_64+0xb6/0x230
[  288.943396][T13709]  do_syscall_64+0xf3/0x230
[  288.947944][T13709]  ? clear_bhb_loop+0x35/0x90
[  288.952749][T13709]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.958668][T13709] RIP: 0033:0x7f0ad2d7475f
[  288.963103][T13709] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  288.982836][T13709] RSP: 002b:00007f0ad3b8d010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  288.991439][T13709] RAX: ffffffffffffffda RBX: 00007f0ad2f03f60 RCX: 00007f0ad2d7475f
[  288.999613][T13709] RDX: 0000000000000042 RSI: 0000000020000000 RDI: 00000000000000c8
[  289.007656][T13709] RBP: 00007f0ad3b8d0a0 R08: 0000000000000000 R09: 0000000000000000
[  289.015914][T13709] R10: 0000000000000042 R11: 0000000000000293 R12: 0000000000000001
[  289.023992][T13709] R13: 000000000000000b R14: 00007f0ad2f03f60 R15: 00007ffc6cdc79c8
[  289.032098][T13709]  </TASK>
[  289.569533][T13725] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  289.644727][T13736] tipc: Started in network mode
[  289.659936][T13736] tipc: Node identity f67eae070fcd, cluster identity 4711
[  289.681343][T13736] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  289.707559][T13725] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  289.861278][T13738] tipc: Resetting bearer <eth:syzkaller0>
[  289.870271][T13742] netlink: 'syz.0.2928': attribute type 4 has an invalid length.
[  289.909151][T13734] tipc: Resetting bearer <eth:syzkaller0>
[  290.755894][ T9112] tipc: Node number set to 4189302279
[  292.313512][T13734] tipc: Disabling bearer <eth:syzkaller0>
[  292.340991][T13768] netlink: 'syz.4.2937': attribute type 4 has an invalid length.
[  292.406977][T13771] netlink: 'syz.4.2937': attribute type 4 has an invalid length.
[  292.504177][T13787] FAULT_INJECTION: forcing a failure.
[  292.504177][T13787] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.540899][T13787] CPU: 0 PID: 13787 Comm: syz.0.2944 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  292.551134][T13787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  292.561376][T13787] Call Trace:
[  292.564665][T13787]  <TASK>
[  292.567880][T13787]  dump_stack_lvl+0x241/0x360
[  292.572589][T13787]  ? __pfx_dump_stack_lvl+0x10/0x10
[  292.577819][T13787]  ? __pfx__printk+0x10/0x10
[  292.582434][T13787]  ? __pfx_lock_release+0x10/0x10
[  292.587675][T13787]  should_fail_ex+0x3b0/0x4e0
[  292.592492][T13787]  _copy_from_iter+0x1f6/0x1960
[  292.597531][T13787]  ? __virt_addr_valid+0x183/0x520
[  292.602764][T13787]  ? __pfx_lock_release+0x10/0x10
[  292.608025][T13787]  ? __alloc_skb+0x28f/0x440
[  292.612638][T13787]  ? __pfx__copy_from_iter+0x10/0x10
[  292.617936][T13787]  ? __virt_addr_valid+0x183/0x520
[  292.623071][T13787]  ? __virt_addr_valid+0x183/0x520
[  292.628218][T13787]  ? __virt_addr_valid+0x44e/0x520
[  292.633348][T13787]  ? __check_object_size+0x49c/0x900
[  292.638656][T13787]  netlink_sendmsg+0x73d/0xcb0
[  292.643537][T13787]  ? __pfx_netlink_sendmsg+0x10/0x10
[  292.648931][T13787]  ? __import_iovec+0x536/0x820
[  292.653912][T13787]  ? aa_sock_msg_perm+0x91/0x160
[  292.658911][T13787]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  292.664235][T13787]  ? security_socket_sendmsg+0x87/0xb0
[  292.669822][T13787]  ? __pfx_netlink_sendmsg+0x10/0x10
[  292.675826][T13787]  __sock_sendmsg+0x221/0x270
[  292.680623][T13787]  ____sys_sendmsg+0x525/0x7d0
[  292.685519][T13787]  ? __pfx_____sys_sendmsg+0x10/0x10
[  292.691065][T13787]  __sys_sendmsg+0x2b0/0x3a0
[  292.695715][T13787]  ? __pfx___sys_sendmsg+0x10/0x10
[  292.700874][T13787]  ? vfs_write+0x7c4/0xc90
[  292.705358][T13787]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  292.711874][T13787]  ? do_syscall_64+0x100/0x230
[  292.716826][T13787]  ? do_syscall_64+0xb6/0x230
[  292.721612][T13787]  do_syscall_64+0xf3/0x230
[  292.726215][T13787]  ? clear_bhb_loop+0x35/0x90
[  292.730907][T13787]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.736839][T13787] RIP: 0033:0x7f0e64d75bd9
[  292.741352][T13787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.761601][T13787] RSP: 002b:00007f0e647ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  292.770209][T13787] RAX: ffffffffffffffda RBX: 00007f0e64f03f60 RCX: 00007f0e64d75bd9
[  292.778530][T13787] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  292.786912][T13787] RBP: 00007f0e647ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  292.795004][T13787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  292.803094][T13787] R13: 000000000000004d R14: 00007f0e64f03f60 R15: 00007ffe54b87e78
[  292.811127][T13787]  </TASK>
[  293.157860][T13802] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  293.176559][T13810] __nla_validate_parse: 9 callbacks suppressed
[  293.176583][T13810] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2952'.
[  293.272373][T13812] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  293.304120][T13802] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  293.432854][T13819] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  293.645492][T13819] tipc: Resetting bearer <eth:syzkaller0>
[  293.758432][ T9112] tipc: Resetting bearer <eth:syzkaller0>
[  293.773029][T13830] netlink: 'syz.3.2959': attribute type 14 has an invalid length.
[  293.797627][T13837] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2962'.
[  293.807588][T13815] tipc: Resetting bearer <eth:syzkaller0>
[  295.910205][T13815] tipc: Disabling bearer <eth:syzkaller0>
[  295.941279][T13832] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2961'.
[  295.952324][T13852] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2967'.
[  296.203413][T13860] netlink: 'syz.4.2972': attribute type 2 has an invalid length.
[  296.239089][T13864] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2973'.
[  296.343780][T13868] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  296.392902][T13870] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2976'.
[  296.429778][T13875] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  296.441453][T13874] netlink: 'syz.0.2978': attribute type 1 has an invalid length.
[  296.462704][T13868] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  296.465263][T13874] netlink: 'syz.0.2978': attribute type 2 has an invalid length.
[  296.734637][T13891] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2981'.
[  296.787953][T13894] netlink: 'syz.4.2984': attribute type 29 has an invalid length.
[  296.806604][T13894] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2984'.
[  296.841238][T13894] netlink: 'syz.4.2984': attribute type 29 has an invalid length.
[  296.865735][T13900] ip6t_srh: unknown srh invflags 4811
[  296.871351][T13894] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2984'.
[  296.903718][T13902] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2986'.
[  297.271082][T13918] IPVS: persistence engine module ip_vs_pe_€ not found
[  297.341887][T13922] netlink: 'syz.4.2993': attribute type 1 has an invalid length.
[  297.439620][T13929] x_tables: duplicate underflow at hook 4
[  297.589540][T13941] FAULT_INJECTION: forcing a failure.
[  297.589540][T13941] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  297.750808][T13941] CPU: 0 PID: 13941 Comm: syz.3.3001 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  297.761037][T13941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  297.771138][T13941] Call Trace:
[  297.774543][T13941]  <TASK>
[  297.777497][T13941]  dump_stack_lvl+0x241/0x360
[  297.782218][T13941]  ? __pfx_dump_stack_lvl+0x10/0x10
[  297.787444][T13941]  ? __pfx__printk+0x10/0x10
[  297.792077][T13941]  ? snprintf+0xda/0x120
[  297.796386][T13941]  should_fail_ex+0x3b0/0x4e0
[  297.801126][T13941]  _copy_to_user+0x2f/0xb0
[  297.805594][T13941]  simple_read_from_buffer+0xca/0x150
[  297.811025][T13941]  proc_fail_nth_read+0x1e9/0x250
[  297.816123][T13941]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  297.821724][T13941]  ? rw_verify_area+0x514/0x6b0
[  297.826640][T13941]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  297.832240][T13941]  vfs_read+0x204/0xbd0
[  297.836531][T13941]  ? __pfx_lock_release+0x10/0x10
[  297.841617][T13941]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  297.847235][T13941]  ? __pfx_vfs_read+0x10/0x10
[  297.851954][T13941]  ? __fget_files+0x29/0x470
[  297.856693][T13941]  ? __fget_files+0x3f6/0x470
[  297.861434][T13941]  ksys_read+0x1a0/0x2c0
[  297.865728][T13941]  ? __pfx_ksys_read+0x10/0x10
[  297.870552][T13941]  ? do_syscall_64+0x100/0x230
[  297.875347][T13941]  ? do_syscall_64+0xb6/0x230
[  297.880048][T13941]  do_syscall_64+0xf3/0x230
[  297.884648][T13941]  ? clear_bhb_loop+0x35/0x90
[  297.889332][T13941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.895338][T13941] RIP: 0033:0x7f05f03746bc
[  297.899888][T13941] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  297.919803][T13941] RSP: 002b:00007f05f11c6040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  297.928360][T13941] RAX: ffffffffffffffda RBX: 00007f05f0503f60 RCX: 00007f05f03746bc
[  297.936378][T13941] RDX: 000000000000000f RSI: 00007f05f11c60b0 RDI: 0000000000000003
[  297.944490][T13941] RBP: 00007f05f11c60a0 R08: 0000000000000000 R09: 0000000000000000
[  297.952523][T13941] R10: 0000000000000042 R11: 0000000000000246 R12: 0000000000000001
[  297.960536][T13941] R13: 000000000000000b R14: 00007f05f0503f60 R15: 00007ffc5b4c2238
[  297.968669][T13941]  </TASK>
[  298.227763][T13963] __nla_validate_parse: 3 callbacks suppressed
[  298.227786][T13963] netlink: 188 bytes leftover after parsing attributes in process `syz.2.3008'.
[  298.521504][    C1] vxcan0: j1939_tp_rxtimer: 0xffff8880296fcc00: rx timeout, send abort
[  298.532625][    C1] vxcan0: j1939_tp_rxtimer: 0xffff8880296ff400: rx timeout, send abort
[  298.547279][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff8880296fcc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  298.562726][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff8880296ff400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  298.634479][T13981] netlink: 'syz.4.3015': attribute type 4 has an invalid length.
[  298.696206][T13983] netlink: 'syz.0.3014': attribute type 10 has an invalid length.
[  298.713432][T13983] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3014'.
[  299.124142][T14005] netlink: 'syz.4.3024': attribute type 3 has an invalid length.
[  299.232726][T14008] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3027'.
[  299.255268][T14010] netlink: 'syz.2.3028': attribute type 28 has an invalid length.
[  299.760231][T14045] netlink: 'syz.4.3036': attribute type 10 has an invalid length.
[  300.072789][T14050] netlink: 'syz.3.3038': attribute type 44 has an invalid length.
[  300.255774][T14015] netlink: 'syz.0.3031': attribute type 8 has an invalid length.
[  300.657166][T14084] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3049'.
[  300.702935][T14080] macvlan2: entered allmulticast mode
[  300.743206][T14080] team_slave_0: entered promiscuous mode
[  300.749443][T14080] team_slave_1: entered promiscuous mode
[  300.762706][T14080] team0: entered allmulticast mode
[  300.777384][T14080] team_slave_0: entered allmulticast mode
[  300.785714][T14088] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3053'.
[  300.801359][T14080] team_slave_1: entered allmulticast mode
[  300.817725][T14080] vlan2: entered allmulticast mode
[  300.830887][T14080] bridge0: entered allmulticast mode
[  300.836768][T14089] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  300.855690][T14080] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  300.888135][T14080] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  301.250340][T14108] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3060'.
[  301.251169][T14110] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3062'.
[  301.291100][T14110] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3062'.
[  301.311027][T14110] netlink: 23 bytes leftover after parsing attributes in process `syz.3.3062'.
[  301.334362][T14110] netlink: 'syz.3.3062': attribute type 2 has an invalid length.
[  301.352495][T14110] netlink: 23 bytes leftover after parsing attributes in process `syz.3.3062'.
[  301.370416][T14112] netlink: 'syz.1.3063': attribute type 2 has an invalid length.
[  301.499351][T14120] IPv6: Can't replace route, no match found
[  302.007765][T14149] 8021q: VLANs not supported on hsr0
[  302.033395][T14151] netlink: 'syz.4.3081': attribute type 33 has an invalid length.
[  302.254074][T14159] syzkaller0: entered allmulticast mode
[  302.685941][T14188] openvswitch: netlink: Message has 16 unknown bytes.
[  302.705618][T14184] C: renamed from lo (while UP)
[  302.733204][T14184] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  302.761319][T14190] netlink: 'syz.1.3096': attribute type 1 has an invalid length.
[  302.786350][T14190] netlink: 'syz.1.3096': attribute type 1 has an invalid length.
[  303.048896][T14206] bridge0: port 2(macsec0) entered blocking state
[  303.071054][T14206] bridge0: port 2(macsec0) entered disabled state
[  303.077795][T14206] macsec0: entered allmulticast mode
[  303.090861][T14206] veth1_macvtap: entered allmulticast mode
[  303.109178][T14206] macsec0: entered promiscuous mode
[  303.131198][T14206] bridge0: port 2(macsec0) entered blocking state
[  303.138168][T14206] bridge0: port 2(macsec0) entered forwarding state
[  303.274000][T14222] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  303.555645][T14239] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  303.624022][T14239] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  303.663266][T14239] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  303.681944][T14247] __nla_validate_parse: 7 callbacks suppressed
[  303.681966][T14247] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3119'.
[  304.057372][T14261] netlink: 64 bytes leftover after parsing attributes in process `syz.2.3126'.
[  304.066689][T14261] IPv6: NLM_F_CREATE should be specified when creating new route
[  304.347561][T14277] validate_nla: 2 callbacks suppressed
[  304.347585][T14277] netlink: 'syz.2.3131': attribute type 1 has an invalid length.
[  304.361420][T14278] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3130'.
[  304.426810][T14281] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3133'.
[  304.565497][T14289] netlink: 276 bytes leftover after parsing attributes in process `syz.0.3135'.
[  304.646399][T14292] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3136'.
[  304.884033][T14304] netlink: 5 bytes leftover after parsing attributes in process `syz.4.3139'.
[  304.920435][T14304] @00ªX¹¦Dö»: renamed from gretap0 (while UP)
[  304.942291][T14304] @00ªX¹¦Dö»: entered allmulticast mode
[  304.961887][T14306] netlink: 9 bytes leftover after parsing attributes in process `syz.0.3140'.
[  304.979209][T14306] 1ªX¹¦Dö»: entered promiscuous mode
[  305.136627][T14317] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3145'.
[  305.463456][T14339] x_tables: unsorted underflow at hook 3
[  305.597175][T14341] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3156'.
[  306.211916][T14386] syz.0.3174 (14386) used obsolete PPPIOCDETACH ioctl
[  306.425149][T14399] bond_slave_0: entered promiscuous mode
[  306.432283][T14399] bond_slave_1: entered promiscuous mode
[  306.444041][T14399] 8021q: adding VLAN 0 to HW filter on device macvlan5
[  306.476764][T14399] bond_slave_0: left promiscuous mode
[  306.482467][T14399] bond_slave_1: left promiscuous mode
[  306.736163][T14409] netlink: 'syz.0.3182': attribute type 3 has an invalid length.
[  306.885165][T14415] team0: entered promiscuous mode
[  306.903494][T14423] netlink: 'syz.1.3189': attribute type 32 has an invalid length.
[  306.914052][T14423] (unnamed net_device) (uninitialized): option coupled_control: mode dependency failed, not supported in mode balance-rr(0)
[  307.041749][T14427] netlink: 'syz.4.3190': attribute type 9 has an invalid length.
[  307.042977][T14415] team0: Port device team_slave_0 removed
[  307.052883][T14427] netlink: 'syz.4.3190': attribute type 6 has an invalid length.
[  307.088229][T14425] netlink: 'syz.0.3188': attribute type 10 has an invalid length.
[  307.388000][T14440] FAULT_INJECTION: forcing a failure.
[  307.388000][T14440] name failslab, interval 1, probability 0, space 0, times 0
[  307.430804][T14440] CPU: 0 PID: 14440 Comm: syz.4.3193 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  307.442114][T14440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  307.453432][T14440] Call Trace:
[  307.457272][T14440]  <TASK>
[  307.460241][T14440]  dump_stack_lvl+0x241/0x360
[  307.464978][T14440]  ? __pfx_dump_stack_lvl+0x10/0x10
[  307.470233][T14440]  ? __pfx__printk+0x10/0x10
[  307.474876][T14440]  ? netlink_insert+0x10b7/0x14b0
[  307.480069][T14440]  should_fail_ex+0x3b0/0x4e0
[  307.484794][T14440]  ? __alloc_skb+0x1c3/0x440
[  307.489691][T14440]  should_failslab+0x9/0x20
[  307.494584][T14440]  kmem_cache_alloc_node_noprof+0x71/0x320
[  307.500956][T14440]  __alloc_skb+0x1c3/0x440
[  307.505508][T14440]  ? __pfx___alloc_skb+0x10/0x10
[  307.510463][T14440]  ? netlink_autobind+0xd6/0x2f0
[  307.515444][T14440]  ? netlink_autobind+0x2b0/0x2f0
[  307.520491][T14440]  netlink_sendmsg+0x638/0xcb0
[  307.525295][T14440]  ? __pfx_netlink_sendmsg+0x10/0x10
[  307.530612][T14440]  ? __import_iovec+0x536/0x820
[  307.535496][T14440]  ? aa_sock_msg_perm+0x91/0x160
[  307.540553][T14440]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  307.545882][T14440]  ? security_socket_sendmsg+0x87/0xb0
[  307.551622][T14440]  ? __pfx_netlink_sendmsg+0x10/0x10
[  307.557013][T14440]  __sock_sendmsg+0x221/0x270
[  307.561715][T14440]  ____sys_sendmsg+0x525/0x7d0
[  307.566538][T14440]  ? __pfx_____sys_sendmsg+0x10/0x10
[  307.571946][T14440]  __sys_sendmsg+0x2b0/0x3a0
[  307.576583][T14440]  ? __pfx___sys_sendmsg+0x10/0x10
[  307.581732][T14440]  ? vfs_write+0x7c4/0xc90
[  307.586260][T14440]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  307.592620][T14440]  ? do_syscall_64+0x100/0x230
[  307.597415][T14440]  ? do_syscall_64+0xb6/0x230
[  307.602109][T14440]  do_syscall_64+0xf3/0x230
[  307.606649][T14440]  ? clear_bhb_loop+0x35/0x90
[  307.611439][T14440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.617382][T14440] RIP: 0033:0x7f3fc8175bd9
[  307.621818][T14440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  307.641768][T14440] RSP: 002b:00007f3fc8f3e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  307.651130][T14440] RAX: ffffffffffffffda RBX: 00007f3fc8303f60 RCX: 00007f3fc8175bd9
[  307.659119][T14440] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000003
[  307.667207][T14440] RBP: 00007f3fc8f3e0a0 R08: 0000000000000000 R09: 0000000000000000
[  307.675452][T14440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  307.683522][T14440] R13: 000000000000000b R14: 00007f3fc8303f60 R15: 00007ffd11a7edd8
[  307.693266][T14440]  </TASK>
[  307.758995][T14414] team0: left promiscuous mode
[  307.803855][T14442] bond_slave_0: entered promiscuous mode
[  307.810042][T14442] bond_slave_1: entered promiscuous mode
[  307.857461][T14442] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  307.888504][T14442] bond_slave_0: left promiscuous mode
[  307.894099][T14442] bond_slave_1: left promiscuous mode
[  308.058397][T14449] xt_ipvs: protocol family 7 not supported
[  308.095619][T14452] macvlan3: entered allmulticast mode
[  308.108977][T14452] bond0: (slave macvlan3): Error -98 calling set_mac_address
[  308.418538][T14473] netlink: 'syz.0.3206': attribute type 29 has an invalid length.
[  308.450142][T14473] netlink: 'syz.0.3206': attribute type 29 has an invalid length.
[  308.691489][T14485] __nla_validate_parse: 7 callbacks suppressed
[  308.691513][T14485] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3209'.
[  308.736965][T14491] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3211'.
[  308.742748][T14485] netlink: 'syz.0.3209': attribute type 13 has an invalid length.
[  308.921555][T14498] netlink: 'syz.1.3215': attribute type 9 has an invalid length.
[  309.175737][T14512] openvswitch: netlink: Message has 16 unknown bytes.
[  309.286455][T14520] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3224'.
[  309.517309][T14529] vlan6: entered promiscuous mode
[  309.533231][T14529] syz_tun: entered promiscuous mode
[  309.549874][T14529] vlan6: entered allmulticast mode
[  309.563102][T14529] syz_tun: entered allmulticast mode
[  309.578883][T14529] team0: Port device vlan6 added
[  309.593803][T14534] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3230'.
[  309.652774][T14534] vlan4: entered promiscuous mode
[  309.658596][T14534] mac80211_hwsim hwsim28 wlan0: entered promiscuous mode
[  309.674110][T14534] mac80211_hwsim hwsim28 wlan0: left promiscuous mode
[  310.010069][T14555] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  310.549281][T14571] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3242'.
[  310.581073][T14571] tc_dump_action: action bad kind
[  310.589434][T14573] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3240'.
[  310.693222][T14580] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3244'.
[  310.842855][T14588] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3245'.
[  310.960924][T14600] netlink: 123 bytes leftover after parsing attributes in process `syz.2.3251'.
[  311.052277][T14604] netlink: 'syz.4.3252': attribute type 1 has an invalid length.
[  311.074915][T14606] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3254'.
[  311.555030][T14626] pimreg: left allmulticast mode
[  311.665772][T14631] batadv0: Device is already in use.
[  312.082213][T14657] netlink: 'syz.1.3275': attribute type 46 has an invalid length.
[  312.101476][T14655] netlink: 'syz.2.3272': attribute type 1 has an invalid length.
[  312.131629][T14655] netlink: 'syz.2.3272': attribute type 2 has an invalid length.
[  312.158051][T14657] netlink: 'syz.1.3275': attribute type 46 has an invalid length.
[  312.235189][T14661] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[  312.279231][T14661] macsec0: entered promiscuous mode
[  312.341880][T14661] mac80211_hwsim hwsim2 wlan0: left promiscuous mode
[  312.420386][T14669] netlink: 'syz.3.3279': attribute type 13 has an invalid length.
[  312.454800][T14675] netlink: 'syz.1.3282': attribute type 10 has an invalid length.
[  312.642032][T14682] netlink: 'syz.3.3283': attribute type 15 has an invalid length.
[  312.938728][T14705] bond0: option arp_interval: invalid value (18446744072926568490)
[  312.954201][T14705] bond0: option arp_interval: allowed values 0 - 2147483647
[  313.032701][T14712] IPVS: sed: TCP 172.20.20.170:0 - no destination available
[  313.094578][T14716] netlink: 'syz.1.3297': attribute type 44 has an invalid length.
[  313.294909][T14725] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[  314.172062][T14769] vxcan0: Master is either lo or non-ether device
[  314.189042][T14770] netlink: 'syz.1.3314': attribute type 2 has an invalid length.
[  314.387569][T14785] __nla_validate_parse: 6 callbacks suppressed
[  314.387594][T14785] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3323'.
[  314.481655][T14790] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3325'.
[  314.490701][T14788] macvlan5: entered allmulticast mode
[  314.491199][T14788] bond0: (slave macvlan5): Error -98 calling set_mac_address
[  314.519872][T14793] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3326'.
[  314.543064][T14793] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3326'.
[  314.585465][T14793] netlink: 23 bytes leftover after parsing attributes in process `syz.0.3326'.
[  314.594401][T14795] IPVS: persistence engine module ip_vs_pe_X not found
[  314.615188][T14793] netlink: 23 bytes leftover after parsing attributes in process `syz.0.3326'.
[  314.642901][T14798] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3328'.
[  314.795419][T14807] FAULT_INJECTION: forcing a failure.
[  314.795419][T14807] name failslab, interval 1, probability 0, space 0, times 0
[  314.829293][T14807] CPU: 1 PID: 14807 Comm: syz.1.3332 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  314.839610][T14807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  314.849794][T14807] Call Trace:
[  314.853125][T14807]  <TASK>
[  314.856195][T14807]  dump_stack_lvl+0x241/0x360
[  314.861017][T14807]  ? __pfx_dump_stack_lvl+0x10/0x10
[  314.866280][T14807]  ? __pfx__printk+0x10/0x10
[  314.870930][T14807]  ? __local_bh_enable_ip+0x168/0x200
[  314.876373][T14807]  ? dev_hard_start_xmit+0x773/0x7e0
[  314.881748][T14807]  ? __dev_queue_xmit+0x2da/0x3e90
[  314.887099][T14807]  should_fail_ex+0x3b0/0x4e0
[  314.891830][T14807]  ? __alloc_skb+0x1c3/0x440
[  314.896493][T14807]  should_failslab+0x9/0x20
[  314.901042][T14807]  kmem_cache_alloc_node_noprof+0x71/0x320
[  314.906918][T14807]  __alloc_skb+0x1c3/0x440
[  314.911398][T14807]  ? do_syscall_64+0xf3/0x230
[  314.916118][T14807]  ? __pfx___alloc_skb+0x10/0x10
[  314.921107][T14807]  ? netlink_ack_tlv_len+0x6e/0x200
[  314.926354][T14807]  netlink_ack+0x13f/0xa30
[  314.930852][T14807]  netlink_rcv_skb+0x262/0x430
[  314.935722][T14807]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  314.941238][T14807]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  314.946710][T14807]  ? netlink_deliver_tap+0x2e/0x1b0
[  314.951971][T14807]  netlink_unicast+0x7f0/0x990
[  314.956792][T14807]  ? __pfx_netlink_unicast+0x10/0x10
[  314.962159][T14807]  ? __virt_addr_valid+0x183/0x520
[  314.967342][T14807]  ? __check_object_size+0x49c/0x900
[  314.972723][T14807]  ? bpf_lsm_netlink_send+0x9/0x10
[  314.977908][T14807]  netlink_sendmsg+0x8e4/0xcb0
[  314.982840][T14807]  ? __pfx_netlink_sendmsg+0x10/0x10
[  314.988187][T14807]  ? __import_iovec+0x536/0x820
[  314.993130][T14807]  ? aa_sock_msg_perm+0x91/0x160
[  314.998144][T14807]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  315.003490][T14807]  ? security_socket_sendmsg+0x87/0xb0
[  315.009270][T14807]  ? __pfx_netlink_sendmsg+0x10/0x10
[  315.014698][T14807]  __sock_sendmsg+0x221/0x270
[  315.019518][T14807]  ____sys_sendmsg+0x525/0x7d0
[  315.024518][T14807]  ? __pfx_____sys_sendmsg+0x10/0x10
[  315.030063][T14807]  __sys_sendmsg+0x2b0/0x3a0
[  315.035151][T14807]  ? __pfx___sys_sendmsg+0x10/0x10
[  315.040327][T14807]  ? vfs_write+0x7c4/0xc90
[  315.044974][T14807]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  315.051362][T14807]  ? do_syscall_64+0x100/0x230
[  315.056183][T14807]  ? do_syscall_64+0xb6/0x230
[  315.061058][T14807]  do_syscall_64+0xf3/0x230
[  315.065622][T14807]  ? clear_bhb_loop+0x35/0x90
[  315.070450][T14807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.076390][T14807] RIP: 0033:0x7fb948b75bd9
[  315.080857][T14807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.100735][T14807] RSP: 002b:00007fb94994c048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  315.109462][T14807] RAX: ffffffffffffffda RBX: 00007fb948d03f60 RCX: 00007fb948b75bd9
[  315.117479][T14807] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  315.125589][T14807] RBP: 00007fb94994c0a0 R08: 0000000000000000 R09: 0000000000000000
[  315.133616][T14807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.141631][T14807] R13: 000000000000004d R14: 00007fb948d03f60 R15: 00007ffff63140e8
[  315.149665][T14807]  </TASK>
[  315.226498][T14819] netlink: 152 bytes leftover after parsing attributes in process `syz.4.3333'.
[  315.609672][T14846] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.3342'.
[  315.787419][T14857] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3347'.
[  315.965115][T14860] veth0_vlan: left promiscuous mode
[  316.156210][T14855] delete_channel: no stack
[  316.344736][T14878] ipvlan2: entered promiscuous mode
[  316.355939][T14878] ipvlan2: entered allmulticast mode
[  316.366052][T14878] ip6gretap0: entered allmulticast mode
[  316.613853][T14887] validate_nla: 8 callbacks suppressed
[  316.613878][T14887] netlink: 'syz.0.3357': attribute type 10 has an invalid length.
[  316.701742][T14887] batman_adv: batadv0: Adding interface: team0
[  316.708013][T14887] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  316.782513][T14893] netlink: 'syz.0.3357': attribute type 10 has an invalid length.
[  316.808215][T14893] team0: entered promiscuous mode
[  316.833570][T14893] team_slave_1: entered promiscuous mode
[  316.877576][T14893] batman_adv: batadv0: Interface activated: team0
[  316.904953][T14893] batman_adv: batadv0: Interface deactivated: team0
[  316.934868][T14893] batman_adv: batadv0: Removing interface: team0
[  316.967919][T14893] bridge0: port 2(team0) entered blocking state
[  316.989526][T14893] bridge0: port 2(team0) entered disabled state
[  317.012143][T14893] team0: entered allmulticast mode
[  317.024528][T14893] team_slave_1: entered allmulticast mode
[  317.047818][T14893] bridge0: port 2(team0) entered blocking state
[  317.054338][T14893] bridge0: port 2(team0) entered forwarding state
[  317.167361][T14915] openvswitch: netlink: Message has 16 unknown bytes.
[  317.630030][ T1252] ieee802154 phy0 wpan0: encryption failed: -22
[  317.638241][ T1252] ieee802154 phy1 wpan1: encryption failed: -22
[  317.813066][T14942] FAULT_INJECTION: forcing a failure.
[  317.813066][T14942] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.862574][T14942] CPU: 1 PID: 14942 Comm: syz.0.3376 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  317.872898][T14942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  317.883004][T14942] Call Trace:
[  317.886320][T14942]  <TASK>
[  317.889289][T14942]  dump_stack_lvl+0x241/0x360
[  317.894018][T14942]  ? __pfx_dump_stack_lvl+0x10/0x10
[  317.899263][T14942]  ? __pfx__printk+0x10/0x10
[  317.903902][T14942]  ? snprintf+0xda/0x120
[  317.908194][T14942]  should_fail_ex+0x3b0/0x4e0
[  317.912928][T14942]  _copy_to_user+0x2f/0xb0
[  317.917917][T14942]  simple_read_from_buffer+0xca/0x150
[  317.923341][T14942]  proc_fail_nth_read+0x1e9/0x250
[  317.928470][T14942]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  317.934079][T14942]  ? rw_verify_area+0x514/0x6b0
[  317.938978][T14942]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  317.944663][T14942]  vfs_read+0x204/0xbd0
[  317.948878][T14942]  ? __pfx_lock_release+0x10/0x10
[  317.953956][T14942]  ? do_sock_setsockopt+0x3e2/0x720
[  317.959213][T14942]  ? __pfx_vfs_read+0x10/0x10
[  317.964004][T14942]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  317.969731][T14942]  ? __fget_files+0x29/0x470
[  317.974374][T14942]  ? __fget_files+0x3f6/0x470
[  317.979201][T14942]  ksys_read+0x1a0/0x2c0
[  317.983496][T14942]  ? __pfx_ksys_read+0x10/0x10
[  317.988571][T14942]  ? do_syscall_64+0x100/0x230
[  317.993387][T14942]  ? do_syscall_64+0xb6/0x230
[  317.998118][T14942]  do_syscall_64+0xf3/0x230
[  318.002679][T14942]  ? clear_bhb_loop+0x35/0x90
[  318.007525][T14942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.013473][T14942] RIP: 0033:0x7f0e64d746bc
[  318.018111][T14942] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  318.037854][T14942] RSP: 002b:00007f0e647ff040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  318.046411][T14942] RAX: ffffffffffffffda RBX: 00007f0e64f03f60 RCX: 00007f0e64d746bc
[  318.054436][T14942] RDX: 000000000000000f RSI: 00007f0e647ff0b0 RDI: 0000000000000004
[  318.062545][T14942] RBP: 00007f0e647ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  318.070742][T14942] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001
[  318.078765][T14942] R13: 000000000000004d R14: 00007f0e64f03f60 R15: 00007ffe54b87e78
[  318.086818][T14942]  </TASK>
[  318.203015][ T5103] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  318.228459][ T5103] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  318.238028][ T5103] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  318.251060][ T5103] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  318.273009][ T5103] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  318.284294][ T5103] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  318.473673][T14964] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  318.565585][T14968] batadv_slave_1: entered promiscuous mode
[  318.642836][T14968] vlan1 (unregistering): left allmulticast mode
[  318.741770][T14968] bond0: (slave macvlan2): Releasing backup interface
[  318.820940][T14968] macvlan4 (unregistering): left allmulticast mode
[  318.842482][T14968] team0: Port device macvlan4 removed
[  318.871283][T14968] vlan1 (unregistering): left promiscuous mode
[  318.973294][T14979] team0: Port device team_slave_0 removed
[  318.990337][T14967] batadv_slave_1: left promiscuous mode
[  319.002443][T14983] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  319.158203][T14988] netlink: 'syz.4.3392': attribute type 1 has an invalid length.
[  319.284487][T14999] netlink: 'syz.1.3395': attribute type 1 has an invalid length.
[  319.299398][T14999] NCSI netlink: No device for ifindex 0
[  319.416337][T14955] chnl_net:caif_netlink_parms(): no params data found
[  319.527365][T15009] __nla_validate_parse: 17 callbacks suppressed
[  319.527388][T15009] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3398'.
[  319.714998][T14955] bridge0: port 1(bridge_slave_0) entered blocking state
[  319.729021][T14955] bridge0: port 1(bridge_slave_0) entered disabled state
[  319.741288][T14955] bridge_slave_0: entered allmulticast mode
[  319.759412][T14955] bridge_slave_0: entered promiscuous mode
[  319.783764][T14955] bridge0: port 2(bridge_slave_1) entered blocking state
[  319.791807][T14955] bridge0: port 2(bridge_slave_1) entered disabled state
[  319.799277][T14955] bridge_slave_1: entered allmulticast mode
[  319.807728][T14955] bridge_slave_1: entered promiscuous mode
[  319.892218][T14955] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  319.919255][T14955] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  319.983816][T15027] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3404'.
[  320.153920][T15036] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  320.195192][T14955] team0: Port device team_slave_0 added
[  320.213033][T15032] batman_adv: batadv2: Adding interface: netdevsim0
[  320.222254][T15032] batman_adv: batadv2: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  320.251331][T15032] batman_adv: batadv2: Interface activated: netdevsim0
[  320.303412][T15038] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3405'.
[  320.332982][T15038] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3405'.
[  320.341042][ T5114] Bluetooth: hci3: command tx timeout
[  320.378545][T14955] team0: Port device team_slave_1 added
[  320.386367][T15047] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3410'.
[  320.428612][T15047] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3410'.
[  320.508132][T15055] netlink: 276 bytes leftover after parsing attributes in process `syz.1.3413'.
[  320.596811][T14955] batman_adv: batadv0: Adding interface: batadv_slave_0
[  320.626612][T14955] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  320.717559][T14955] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  320.745120][T14955] batman_adv: batadv0: Adding interface: batadv_slave_1
[  320.762088][T14955] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  320.821954][T14955] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  320.911404][T15071] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3419'.
[  321.058127][T14955] hsr_slave_0: entered promiscuous mode
[  321.097889][T14955] hsr_slave_1: entered promiscuous mode
[  321.125653][T14955] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  321.143416][T14955] Cannot create hsr debugfs directory
[  321.170060][T15091] netlink: 'syz.4.3428': attribute type 5 has an invalid length.
[  321.464649][T15103] netlink: 'syz.4.3430': attribute type 3 has an invalid length.
[  321.591776][T15106] ipvlan0: entered promiscuous mode
[  321.600979][T15106] ipvlan0: entered allmulticast mode
[  321.620031][T15106] 8021q: adding VLAN 0 to HW filter on device ipvlan0
[  321.896538][T14955] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  321.955480][T15116] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3436'.
[  322.137715][T14955] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.178385][T15126] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3438'.
[  322.304661][T14955] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.355612][T15140] netlink: 'syz.0.3443': attribute type 1 has an invalid length.
[  322.399763][T15140] netlink: 'syz.0.3443': attribute type 2 has an invalid length.
[  322.421334][ T5114] Bluetooth: hci3: command tx timeout
[  322.522543][T14955] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.759225][T15158] netlink: 'syz.3.3447': attribute type 10 has an invalid length.
[  322.858515][T15158] dummy0: entered allmulticast mode
[  322.889626][T15158] dummy0: entered promiscuous mode
[  322.912652][T15158] team0: Port device dummy0 added
[  323.129036][T14955] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  323.216380][T14955] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  323.246195][T14955] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  323.298345][T14955] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  323.658987][T14955] 8021q: adding VLAN 0 to HW filter on device bond0
[  323.760685][T14955] 8021q: adding VLAN 0 to HW filter on device team0
[  323.805383][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  323.812840][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  323.856430][T15200] dummy0: entered promiscuous mode
[  323.896718][T15200] dummy0: left promiscuous mode
[  323.922868][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  323.930149][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  324.191969][T15216] bond0: option arp_interval: invalid value (18446744072926568490)
[  324.230011][T15216] bond0: option arp_interval: allowed values 0 - 2147483647
[  324.393613][T15226] bond_slave_0: entered promiscuous mode
[  324.399844][T15226] bond_slave_1: entered promiscuous mode
[  324.437291][T15226] 8021q: adding VLAN 0 to HW filter on device macvlan5
[  324.463300][T15226] bond_slave_0: left promiscuous mode
[  324.468831][T15226] bond_slave_1: left promiscuous mode
[  324.500961][ T5114] Bluetooth: hci3: command tx timeout
[  324.572734][T15238] __nla_validate_parse: 8 callbacks suppressed
[  324.572756][T15238] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3479'.
[  324.694873][T14955] 8021q: adding VLAN 0 to HW filter on device batadv0
[  324.848859][T14955] veth0_vlan: entered promiscuous mode
[  324.907742][T14955] veth1_vlan: entered promiscuous mode
[  325.016721][T14955] veth0_macvtap: entered promiscuous mode
[  325.035152][T14955] veth1_macvtap: entered promiscuous mode
[  325.064921][T15251] sctp: [Deprecated]: syz.3.3483 (pid 15251) Use of struct sctp_assoc_value in delayed_ack socket option.
[  325.064921][T15251] Use struct sctp_sack_info instead
[  325.124517][T14955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  325.177393][T14955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.198183][T14955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  325.238627][T14955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.249020][T14955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  325.259918][T14955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.277206][T14955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  325.288410][T14955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.298938][T14955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  325.313823][T14955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.343893][T14955] batman_adv: batadv0: Interface activated: batadv_slave_0
[  325.386680][T15260] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3486'.
[  325.424100][T14955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  325.450867][T14955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.473054][T14955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  325.488439][T14955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.499861][T14955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  325.512249][T14955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.522816][T14955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  325.534626][T14955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.548448][T14955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  325.560687][T14955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.575606][T14955] batman_adv: batadv0: Interface activated: batadv_slave_1
[  325.585516][T15272] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3490'.
[  325.596683][T15272] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3490'.
[  325.620315][T15270] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3489'.
[  325.634863][T14955] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  325.651034][T14955] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  325.685840][T14955] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  325.721094][T14955] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  325.904866][T15282] IPv6: Can't replace route, no match found
[  325.987041][ T8406] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  326.017144][ T8406] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  326.113752][ T8405] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  326.146356][ T8405] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  326.323198][T15298] netlink: 'syz.3.3500': attribute type 3 has an invalid length.
[  326.523854][T15308] xt_TCPMSS: Only works on TCP SYN packets
[  326.581433][ T5114] Bluetooth: hci3: command tx timeout
[  326.596104][T15311] netlink: 224 bytes leftover after parsing attributes in process `syz.4.3505'.
[  326.622289][T15307] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  326.636313][T15307] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  326.656053][T15313] netlink: 'syz.2.3506': attribute type 29 has an invalid length.
[  326.696093][T15313] netlink: 'syz.2.3506': attribute type 29 has an invalid length.
[  326.963142][T15324] netlink: 'syz.1.3510': attribute type 33 has an invalid length.
[  326.977039][T15324] netlink: 152 bytes leftover after parsing attributes in process `syz.1.3510'.
[  327.215952][ T9087] bridge0: port 2(team0) entered disabled state
[  327.239800][T15327] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  327.296190][T15322] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  327.306488][T15342] netlink: 'syz.3.3515': attribute type 30 has an invalid length.
[  327.323509][T15340] trusted_key: syz.0.3514 sent an empty control message without MSG_MORE.
[  327.376037][T15322] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  327.441084][T15348] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3518'.
[  327.481542][T15348] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  327.509211][T15350] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.3519'.
[  327.772775][T15364] netlink: 'syz.1.3522': attribute type 21 has an invalid length.
[  327.890826][T15367] syzkaller1: entered promiscuous mode
[  327.896659][T15367] syzkaller1: entered allmulticast mode
[  328.170798][T15370] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.219276][T15370] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.391523][T15386] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3531'.
[  328.413649][T15388] x_tables: unsorted entry at hook 2
[  328.758415][T15402] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.789067][T15402] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.833536][T15402] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.916319][T15411] vlan2: entered promiscuous mode
[  328.928511][T15411] syz_tun: entered promiscuous mode
[  328.956660][T15411] team0: Port device vlan2 added
[  329.573896][T15439] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  329.700866][T15439] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  329.731723][T15462] netlink: 'syz.0.3555': attribute type 4 has an invalid length.
[  329.771801][T15439] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  330.166254][T15483] FAULT_INJECTION: forcing a failure.
[  330.166254][T15483] name failslab, interval 1, probability 0, space 0, times 0
[  330.211831][T15483] CPU: 0 PID: 15483 Comm: syz.2.3562 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  330.222068][T15483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  330.232419][T15483] Call Trace:
[  330.235713][T15483]  <TASK>
[  330.238654][T15483]  dump_stack_lvl+0x241/0x360
[  330.243529][T15483]  ? __pfx_dump_stack_lvl+0x10/0x10
[  330.248827][T15483]  ? __pfx__printk+0x10/0x10
[  330.253439][T15483]  should_fail_ex+0x3b0/0x4e0
[  330.258137][T15483]  ? sctp_add_bind_addr+0x89/0x3a0
[  330.263306][T15483]  should_failslab+0x9/0x20
[  330.267842][T15483]  kmalloc_trace_noprof+0x6c/0x2c0
[  330.272979][T15483]  sctp_add_bind_addr+0x89/0x3a0
[  330.277945][T15483]  sctp_copy_local_addr_list+0x311/0x500
[  330.283603][T15483]  ? sctp_copy_local_addr_list+0xab/0x500
[  330.289426][T15483]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  330.295604][T15483]  ? sctp_v4_is_any+0x35/0x60
[  330.300401][T15483]  sctp_bind_addr_copy+0xad/0x3b0
[  330.305532][T15483]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  330.311972][T15483]  sctp_connect_new_asoc+0x2f3/0x6c0
[  330.318155][T15483]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  330.324173][T15483]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  330.330352][T15483]  __sctp_connect+0x66d/0xe30
[  330.335160][T15483]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  330.341175][T15483]  ? __pfx___sctp_connect+0x10/0x10
[  330.346511][T15483]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  330.352966][T15483]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  330.358659][T15483]  ? security_sctp_bind_connect+0x90/0xb0
[  330.364702][T15483]  sctp_setsockopt_connectx+0x184/0x2a0
[  330.370282][T15483]  ? __pfx_sctp_setsockopt_connectx+0x10/0x10
[  330.376376][T15483]  ? do_raw_spin_unlock+0x13c/0x8b0
[  330.381786][T15483]  sctp_setsockopt+0x709/0x11c0
[  330.386750][T15483]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  330.392659][T15483]  do_sock_setsockopt+0x3af/0x720
[  330.397711][T15483]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  330.403324][T15483]  ? __fget_files+0x29/0x470
[  330.408035][T15483]  ? __fget_files+0x3f6/0x470
[  330.412758][T15483]  __sys_setsockopt+0x1ae/0x250
[  330.417642][T15483]  __x64_sys_setsockopt+0xb5/0xd0
[  330.422870][T15483]  do_syscall_64+0xf3/0x230
[  330.427391][T15483]  ? clear_bhb_loop+0x35/0x90
[  330.432104][T15483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.438099][T15483] RIP: 0033:0x7ff1c9b75bd9
[  330.442526][T15483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.462318][T15483] RSP: 002b:00007ff1caa28048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  330.470754][T15483] RAX: ffffffffffffffda RBX: 00007ff1c9d03f60 RCX: 00007ff1c9b75bd9
[  330.478776][T15483] RDX: 000000000000006e RSI: 0000000000000084 RDI: 0000000000000003
[  330.486931][T15483] RBP: 00007ff1caa280a0 R08: 0000000000000010 R09: 0000000000000000
[  330.495000][T15483] R10: 0000000020009200 R11: 0000000000000246 R12: 0000000000000002
[  330.502981][T15483] R13: 000000000000000b R14: 00007ff1c9d03f60 R15: 00007ffc996f2048
[  330.510979][T15483]  </TASK>
[  330.847409][T15508] __nla_validate_parse: 2 callbacks suppressed
[  330.847433][T15508] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3570'.
[  330.883571][T15508] tc_dump_action: action bad kind
[  331.021982][T15519] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3575'.
[  331.061409][T15519] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3575'.
[  331.439210][T15543] netlink: 276 bytes leftover after parsing attributes in process `syz.0.3584'.
[  331.464696][T15533] syz_tun (unregistering): left allmulticast mode
[  331.573003][T15535] macvlan3: entered promiscuous mode
[  331.598323][T15535] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[  331.632517][T15535] bond0: (slave macvlan3): Enslaving as an active interface with an up link
[  331.737530][T15548] netlink: 5 bytes leftover after parsing attributes in process `syz.4.3586'.
[  331.772338][T15548] d00ªX¹¦Dö»: renamed from @00ªX¹¦Dö» (while UP)
[  332.137709][T15568] netlink: 9 bytes leftover after parsing attributes in process `syz.4.3596'.
[  332.174364][T15573] bridge0: port 1(bridge_slave_0) entered disabled state
[  332.484058][T15591] netlink: 'syz.4.3604': attribute type 33 has an invalid length.
[  332.519801][T15591] netlink: 152 bytes leftover after parsing attributes in process `syz.4.3604'.
[  332.601765][T15596] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  332.629595][T15596] wg1 speed is unknown, defaulting to 1000
[  332.695450][T15596] wg1 speed is unknown, defaulting to 1000
[  332.743459][T15596] wg1 speed is unknown, defaulting to 1000
[  332.804783][T15611] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3612'.
[  332.936126][T15615] FAULT_INJECTION: forcing a failure.
[  332.936126][T15615] name failslab, interval 1, probability 0, space 0, times 0
[  332.953793][T15616] netlink: 'syz.1.3611': attribute type 25 has an invalid length.
[  333.001316][T15615] CPU: 1 PID: 15615 Comm: syz.0.3614 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  333.011906][T15615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  333.022226][T15615] Call Trace:
[  333.025633][T15615]  <TASK>
[  333.028608][T15615]  dump_stack_lvl+0x241/0x360
[  333.033434][T15615]  ? __pfx_dump_stack_lvl+0x10/0x10
[  333.038794][T15615]  ? __pfx__printk+0x10/0x10
[  333.043422][T15615]  ? netlink_insert+0x10b7/0x14b0
[  333.048494][T15615]  should_fail_ex+0x3b0/0x4e0
[  333.053243][T15615]  ? __alloc_skb+0x1c3/0x440
[  333.057861][T15615]  should_failslab+0x9/0x20
[  333.062498][T15615]  kmem_cache_alloc_node_noprof+0x71/0x320
[  333.068396][T15615]  __alloc_skb+0x1c3/0x440
[  333.072865][T15615]  ? __pfx___alloc_skb+0x10/0x10
[  333.077848][T15615]  ? netlink_autobind+0xd6/0x2f0
[  333.082820][T15615]  ? netlink_autobind+0x2b0/0x2f0
[  333.087887][T15615]  netlink_sendmsg+0x638/0xcb0
[  333.092866][T15615]  ? __pfx_netlink_sendmsg+0x10/0x10
[  333.098181][T15615]  ? __import_iovec+0x536/0x820
[  333.103232][T15615]  ? aa_sock_msg_perm+0x91/0x160
[  333.108202][T15615]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  333.113526][T15615]  ? security_socket_sendmsg+0x87/0xb0
[  333.119053][T15615]  ? __pfx_netlink_sendmsg+0x10/0x10
[  333.124366][T15615]  __sock_sendmsg+0x221/0x270
[  333.129200][T15615]  ____sys_sendmsg+0x525/0x7d0
[  333.134010][T15615]  ? __pfx_____sys_sendmsg+0x10/0x10
[  333.139361][T15615]  __sys_sendmsg+0x2b0/0x3a0
[  333.144085][T15615]  ? __pfx___sys_sendmsg+0x10/0x10
[  333.149243][T15615]  ? vfs_write+0x7c4/0xc90
[  333.153991][T15615]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  333.160373][T15615]  ? do_syscall_64+0x100/0x230
[  333.165277][T15615]  ? do_syscall_64+0xb6/0x230
[  333.169980][T15615]  do_syscall_64+0xf3/0x230
[  333.174524][T15615]  ? clear_bhb_loop+0x35/0x90
[  333.179325][T15615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.185264][T15615] RIP: 0033:0x7f0e64d75bd9
[  333.189696][T15615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  333.209530][T15615] RSP: 002b:00007f0e647ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  333.218069][T15615] RAX: ffffffffffffffda RBX: 00007f0e64f03f60 RCX: 00007f0e64d75bd9
[  333.226172][T15615] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  333.234163][T15615] RBP: 00007f0e647ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  333.242149][T15615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  333.250152][T15615] R13: 000000000000004d R14: 00007f0e64f03f60 R15: 00007ffe54b87e78
[  333.258182][T15615]  </TASK>
[  333.537973][T15625] netlink: 'syz.3.3618': attribute type 1 has an invalid length.
[  333.567870][T15625] netlink: 'syz.3.3618': attribute type 2 has an invalid length.
[  333.608891][T15630] netlink: 'syz.1.3620': attribute type 33 has an invalid length.
[  333.641649][T15630] netlink: 152 bytes leftover after parsing attributes in process `syz.1.3620'.
[  333.671808][   T45] wg1 speed is unknown, defaulting to 1000
[  333.684461][T15596] infiniband syz1: set active
[  333.700076][T15596] infiniband syz1: added wg1
[  333.733500][T15596] syz1: rxe_create_cq: returned err = -12
[  333.755279][T15596] infiniband syz1: Couldn't create ib_mad CQ
[  333.770980][T15596] infiniband syz1: Couldn't open port 1
[  333.781549][T15635] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3621'.
[  333.883734][T15596] RDS/IB: syz1: added
[  333.888983][T15596] smc: adding ib device syz1 with port count 1
[  333.926537][T15596] smc:    ib device syz1 port 1 has pnetid 
[  333.955246][   T45] wg1 speed is unknown, defaulting to 1000
[  334.000782][T15596] wg1 speed is unknown, defaulting to 1000
[  334.534801][T15596] wg1 speed is unknown, defaulting to 1000
[  334.555528][T15667] sock: sock_timestamping_bind_phc: sock not bind to device
[  334.796032][T15678] bridge4: port 1(bridge_slave_1) entered disabled state
[  335.061795][ T5103] Bluetooth: hci4: command 0x0405 tx timeout
[  335.066087][T15596] wg1 speed is unknown, defaulting to 1000
[  335.429925][T15695] netlink: 'syz.0.3643': attribute type 25 has an invalid length.
[  335.696896][T15596] wg1 speed is unknown, defaulting to 1000
[  335.857529][T15712] __nla_validate_parse: 5 callbacks suppressed
[  335.857551][T15712] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3649'.
[  335.921388][T15718] netlink: 'syz.3.3650': attribute type 3 has an invalid length.
[  336.041427][T15722] bond_slave_0: entered promiscuous mode
[  336.047836][T15722] bond_slave_1: entered promiscuous mode
[  336.084050][T15722] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  336.116876][T15722] bond_slave_0: left promiscuous mode
[  336.122524][T15722] bond_slave_1: left promiscuous mode
[  336.288669][T15596] wg1 speed is unknown, defaulting to 1000
[  336.706899][T15757] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3659'.
[  336.963275][T15596] wg1 speed is unknown, defaulting to 1000
[  337.064627][T15770] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  337.076753][T15772] team0: entered promiscuous mode
[  337.095180][T15772] team0: left promiscuous mode
[  337.097892][T15770] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  337.196787][T15776] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  337.371438][T15783] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3669'.
[  337.419008][T15596] wg1 speed is unknown, defaulting to 1000
[  337.426402][T15783] bridge_slave_1: left allmulticast mode
[  337.442074][T15783] bridge_slave_1: left promiscuous mode
[  337.452491][T15783] bridge4: port 1(bridge_slave_1) entered disabled state
[  337.473831][T15783] bridge7: port 1(bridge_slave_1) entered blocking state
[  337.482908][T15783] bridge7: port 1(bridge_slave_1) entered disabled state
[  337.492435][T15783] bridge_slave_1: entered allmulticast mode
[  337.500387][T15783] bridge_slave_1: entered promiscuous mode
[  337.513971][T15788] veth1_to_bond: left allmulticast mode
[  337.521907][T15788] veth1_to_bond: left promiscuous mode
[  337.533852][T15788] bridge4: port 2(veth1_to_bond) entered disabled state
[  337.568448][T15788] bridge7: port 2(veth1_to_bond) entered blocking state
[  337.586125][T15788] bridge7: port 2(veth1_to_bond) entered disabled state
[  337.606508][T15788] veth1_to_bond: entered allmulticast mode
[  337.622800][T15788] veth1_to_bond: entered promiscuous mode
[  337.640054][T15788] bridge7: port 2(veth1_to_bond) entered blocking state
[  337.647323][T15788] bridge7: port 2(veth1_to_bond) entered forwarding state
[  337.892077][T15770] wg1 speed is unknown, defaulting to 1000
[  338.250475][ T8384] bridge_slave_1: left allmulticast mode
[  338.260927][    C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  338.279918][ T8384] bridge_slave_1: left promiscuous mode
[  338.300270][ T8384] bridge0: port 2(bridge_slave_1) entered disabled state
[  338.317823][ T8384] bridge_slave_0: left allmulticast mode
[  338.328988][ T8384] bridge_slave_0: left promiscuous mode
[  338.347875][ T8384] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.402294][T15811] netlink: 244 bytes leftover after parsing attributes in process `syz.1.3673'.
[  338.505188][T15813] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3677'.
[  338.625832][T15816] netlink: 224 bytes leftover after parsing attributes in process `syz.2.3678'.
[  339.182572][ T8384] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  339.200342][ T8384] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  339.213848][ T8384] bond0 (unregistering): (slave macvlan2): Releasing backup interface
[  339.224917][ T8384] bond0 (unregistering): Released all slaves
[  339.363417][ T8384] bond1 (unregistering): Released all slaves
[  339.385783][ T8384] bond2 (unregistering): Released all slaves
[  339.409686][T15810] netlink: 72 bytes leftover after parsing attributes in process `syz.0.3676'.
[  339.446583][T15807] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3676'.
[  339.537339][T15822] FAULT_INJECTION: forcing a failure.
[  339.537339][T15822] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  339.561000][ T8384] : left promiscuous mode
[  339.594805][T15822] CPU: 1 PID: 15822 Comm: syz.3.3681 Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  339.605649][T15822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  339.616653][T15822] Call Trace:
[  339.620068][T15822]  <TASK>
[  339.623228][T15822]  dump_stack_lvl+0x241/0x360
[  339.628303][T15822]  ? __pfx_dump_stack_lvl+0x10/0x10
[  339.634532][T15822]  ? __pfx__printk+0x10/0x10
[  339.639586][T15822]  ? snprintf+0xda/0x120
[  339.643978][T15822]  should_fail_ex+0x3b0/0x4e0
[  339.650060][T15822]  _copy_to_user+0x2f/0xb0
[  339.656220][T15822]  simple_read_from_buffer+0xca/0x150
[  339.663981][T15822]  proc_fail_nth_read+0x1e9/0x250
[  339.669944][T15822]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  339.676349][T15822]  ? rw_verify_area+0x514/0x6b0
[  339.682139][T15822]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  339.687749][T15822]  vfs_read+0x204/0xbd0
[  339.692022][T15822]  ? __pfx_lock_release+0x10/0x10
[  339.697283][T15822]  ? __pfx_vfs_read+0x10/0x10
[  339.702226][T15822]  ? __fget_files+0x29/0x470
[  339.706971][T15822]  ? __fget_files+0x3f6/0x470
[  339.712657][T15822]  ksys_read+0x1a0/0x2c0
[  339.717284][T15822]  ? __pfx_ksys_read+0x10/0x10
[  339.722261][T15822]  ? do_syscall_64+0x100/0x230
[  339.727372][T15822]  ? do_syscall_64+0xb6/0x230
[  339.732559][T15822]  do_syscall_64+0xf3/0x230
[  339.737223][T15822]  ? clear_bhb_loop+0x35/0x90
[  339.742218][T15822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.748782][T15822] RIP: 0033:0x7f05f03746bc
[  339.753308][T15822] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  339.774795][T15822] RSP: 002b:00007f05f11c6040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  339.783347][T15822] RAX: ffffffffffffffda RBX: 00007f05f0503f60 RCX: 00007f05f03746bc
[  339.791524][T15822] RDX: 000000000000000f RSI: 00007f05f11c60b0 RDI: 0000000000000004
[  339.799606][T15822] RBP: 00007f05f11c60a0 R08: 0000000000000000 R09: 0000000000000000
[  339.807594][T15822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  339.815599][T15822] R13: 000000000000004d R14: 00007f05f0503f60 R15: 00007ffc5b4c2238
[  339.823815][T15822]  </TASK>
[  339.938752][T15828] netlink: 5 bytes leftover after parsing attributes in process `syz.1.3682'.
[  340.000311][T15833] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.3687'.
[  340.534153][T15849] netlink: 'syz.1.3692': attribute type 10 has an invalid length.
[  340.686085][T15849] veth1_macvtap (unregistering): left allmulticast mode
[  340.704242][T15849] bridge0: port 2(macsec0) entered disabled state
[  340.752427][T15849] macsec0 (unregistering): left allmulticast mode
[  340.760755][T15849] macsec0 (unregistering): left promiscuous mode
[  340.769042][T15849] bridge0: port 2(macsec0) entered disabled state
[  340.884864][T15853] sch_tbf: burst 0 is lower than device bridge10 mtu (1514) !
[  341.110979][T15860] openvswitch: netlink: Message has 16 unknown bytes.
[  341.755682][T15889] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  341.836909][T15888] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  341.901274][ T8384] hsr_slave_0: left promiscuous mode
[  341.916911][T15888] __nla_validate_parse: 2 callbacks suppressed
[  341.916933][T15888] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3705'.
[  341.934318][ T8384] hsr_slave_1: left promiscuous mode
[  341.951354][ T8384] batman_adv: batadv0: Removing interface: batadv_slave_0
[  341.977922][ T8384] batman_adv: batadv0: Removing interface: batadv_slave_1
[  342.253073][T15901] netlink: 2252 bytes leftover after parsing attributes in process `syz.0.3711'.
[  342.840304][ T8384] team0 (unregistering): Port device team_slave_1 removed
[  343.511737][T15891] netlink: 64 bytes leftover after parsing attributes in process `syz.1.3708'.
[  343.522714][T15891] IPv6: NLM_F_CREATE should be specified when creating new route
[  343.531623][T15893] bridge_slave_1: left allmulticast mode
[  343.540980][T15893] bridge_slave_1: left promiscuous mode
[  343.547033][T15893] bridge9: port 1(bridge_slave_1) entered disabled state
[  343.567979][T15909] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3713'.
[  343.710982][T15916] netlink: 'syz.0.3715': attribute type 4 has an invalid length.
[  343.731215][T15916] netlink: 17 bytes leftover after parsing attributes in process `syz.0.3715'.
[  343.744049][T15920] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3718'.
[  343.775349][T15921] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  343.966684][T15926] netlink: 'syz.4.3720': attribute type 21 has an invalid length.
[  343.988704][T15926] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3720'.
[  344.009181][T15926] netlink: 'syz.4.3720': attribute type 1 has an invalid length.
[  344.019051][T15926] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3720'.
[  344.111336][T15939] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3722'.
[  344.141263][T15939] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3722'.
[  344.281282][ T8384] IPVS: stop unused estimator thread 0...
[  344.425892][T15951] vlan6: entered promiscuous mode
[  344.491417][T15950] netlink: 'syz.4.3727': attribute type 33 has an invalid length.
[  344.514808][T15960] netlink: 'syz.0.3728': attribute type 23 has an invalid length.
[  344.712710][T15969] netlink: 'syz.1.3732': attribute type 10 has an invalid length.
[  344.764551][T15969] team_slave_1: left promiscuous mode
[  344.866410][T15981] dccp_invalid_packet: P.Data Offset(10) too large
[  344.888742][T15969] netlink: 'syz.1.3732': attribute type 10 has an invalid length.
[  344.907762][T15969] bridge0: port 2(team0) entered blocking state
[  344.938233][T15969] bridge0: port 2(team0) entered disabled state
[  345.062865][    C1] ------------[ cut here ]------------
[  345.069189][    C1] WARNING: CPU: 1 PID: 15986 at net/ipv4/route.c:1241 ip_rt_bug+0x2c/0x110
[  345.077989][    C1] Modules linked in:
[  345.081975][    C1] CPU: 1 PID: 15986 Comm: syz-executor Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  345.092414][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  345.102550][    C1] RIP: 0010:ip_rt_bug+0x2c/0x110
[  345.107562][    C1] Code: 1e fa 41 57 41 56 41 55 41 54 53 48 89 d3 e8 9b 4b b1 f7 66 90 e8 94 4b b1 f7 31 ff 48 89 de ba 02 00 00 00 e8 a5 d2 6b ff 90 <0f> 0b 90 31 c0 5b 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc f3 0f 1e
[  345.127680][    C1] RSP: 0018:ffffc90000a18680 EFLAGS: 00010286
[  345.133849][    C1] RAX: c53a301766a43a00 RBX: ffff888011b4aa00 RCX: ffffffff8172d9ea
[  345.142078][    C1] RDX: dffffc0000000000 RSI: ffffffff8bcabb40 RDI: ffffffff8c1fee00
[  345.150194][    C1] RBP: 0000000000000001 R08: ffffffff92fbc617 R09: 1ffffffff25f78c2
[  345.158445][    C1] R10: dffffc0000000000 R11: fffffbfff25f78c3 R12: dffffc0000000000
[  345.166509][    C1] R13: dffffc0000000000 R14: ffff8880229c9d00 R15: ffff888017351380
[  345.174586][    C1] FS:  00005555728dd500(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[  345.183734][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  345.190612][    C1] CR2: 00007f0e65a35690 CR3: 000000002debc000 CR4: 00000000003506f0
[  345.199072][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  345.207241][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  345.215580][    C1] Call Trace:
[  345.219018][    C1]  <IRQ>
[  345.221981][    C1]  ? __warn+0x163/0x4e0
[  345.226290][    C1]  ? ip_rt_bug+0x2c/0x110
[  345.230728][    C1]  ? report_bug+0x2b3/0x500
[  345.235287][    C1]  ? ip_rt_bug+0x2c/0x110
[  345.239674][    C1]  ? handle_bug+0x3e/0x70
[  345.244123][    C1]  ? exc_invalid_op+0x1a/0x50
[  345.248860][    C1]  ? asm_exc_invalid_op+0x1a/0x20
[  345.254017][    C1]  ? mark_lock+0x9a/0x350
[  345.258404][    C1]  ? ip_rt_bug+0x2c/0x110
[  345.262849][    C1]  ip_push_pending_frames+0xbf/0x150
[  345.268278][    C1]  __icmp_send+0xf89/0x14e0
[  345.272909][    C1]  ? __icmp_send+0x59c/0x14e0
[  345.277651][    C1]  ? __pfx___icmp_send+0x10/0x10
[  345.282722][    C1]  ? mark_lock+0x9a/0x350
[  345.287295][    C1]  ? look_up_lock_class+0x77/0x160
[  345.292851][    C1]  ? mark_lock+0x9a/0x350
[  345.297695][    C1]  ipv4_link_failure+0x62f/0xa10
[  345.302868][    C1]  ? __pfx_ipv4_link_failure+0x10/0x10
[  345.308669][    C1]  ? do_raw_write_lock+0x148/0x4f0
[  345.313929][    C1]  ? __pfx_ipv4_link_failure+0x10/0x10
[  345.319461][    C1]  arp_error_report+0x114/0x160
[  345.324808][    C1]  neigh_invalidate+0x244/0x470
[  345.329823][    C1]  neigh_timer_handler+0x8a5/0xfd0
[  345.335571][    C1]  call_timer_fn+0x18e/0x650
[  345.340334][    C1]  ? call_timer_fn+0xc0/0x650
[  345.345324][    C1]  ? __pfx_neigh_timer_handler+0x10/0x10
[  345.351076][    C1]  ? __pfx_call_timer_fn+0x10/0x10
[  345.356260][    C1]  ? __pfx_neigh_timer_handler+0x10/0x10
[  345.362205][    C1]  ? __pfx_neigh_timer_handler+0x10/0x10
[  345.367907][    C1]  ? __pfx_neigh_timer_handler+0x10/0x10
[  345.373811][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  345.379162][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  345.384491][    C1]  ? __pfx_neigh_timer_handler+0x10/0x10
[  345.390294][    C1]  __run_timer_base+0x66a/0x8e0
[  345.395299][    C1]  ? __pfx___run_timer_base+0x10/0x10
[  345.400783][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  345.407196][    C1]  run_timer_softirq+0xb7/0x170
[  345.412169][    C1]  handle_softirqs+0x2c4/0x970
[  345.416995][    C1]  ? __irq_exit_rcu+0xf4/0x1c0
[  345.422290][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  345.427655][    C1]  ? irqtime_account_irq+0xd4/0x1e0
[  345.432946][    C1]  __irq_exit_rcu+0xf4/0x1c0
[  345.437590][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  345.442939][    C1]  irq_exit_rcu+0x9/0x30
[  345.447489][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  345.453234][    C1]  </IRQ>
[  345.456379][    C1]  <TASK>
[  345.459352][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  345.465422][    C1] RIP: 0010:lock_acquire+0x264/0x550
[  345.470788][    C1] Code: 2b 00 74 08 4c 89 f7 e8 1a 83 89 00 f6 44 24 61 02 0f 85 85 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25
[  345.490473][    C1] RSP: 0018:ffffc90004bff640 EFLAGS: 00000206
[  345.496642][    C1] RAX: 0000000000000001 RBX: 1ffff9200097fed4 RCX: 0000000000000001
[  345.504704][    C1] RDX: dffffc0000000000 RSI: ffffffff8bcaccc0 RDI: ffffffff8c1fee00
[  345.513032][    C1] RBP: ffffc90004bff788 R08: ffffffff92fbc61f R09: 1ffffffff25f78c3
[  345.521109][    C1] R10: dffffc0000000000 R11: fffffbfff25f78c4 R12: 1ffff9200097fed0
[  345.529162][    C1] R13: dffffc0000000000 R14: ffffc90004bff6a0 R15: 0000000000000246
[  345.537269][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  345.542398][    C1]  ? __pfx___might_resched+0x10/0x10
[  345.547750][    C1]  ? mas_next_node+0xb99/0xe00
[  345.552619][    C1]  down_read+0xb1/0xa40
[  345.556835][    C1]  ? validate_mm+0x29a/0x530
[  345.561522][    C1]  ? mas_next_slot+0xeab/0xf90
[  345.566345][    C1]  ? __pfx_down_read+0x10/0x10
[  345.571238][    C1]  ? mas_find+0x950/0xbb0
[  345.575669][    C1]  validate_mm+0x29a/0x530
[  345.580173][    C1]  ? __pfx_validate_mm+0x10/0x10
[  345.585226][    C1]  mmap_region+0x1a61/0x2090
[  345.589907][    C1]  ? __pfx_mmap_region+0x10/0x10
[  345.595037][    C1]  ? thp_get_unmapped_area_vmflags+0x1bf/0x380
[  345.601285][    C1]  ? cap_mmap_addr+0x163/0x2c0
[  345.606115][    C1]  ? __get_unmapped_area+0x2f0/0x360
[  345.611622][    C1]  do_mmap+0x8ad/0xfa0
[  345.615774][    C1]  ? __pfx_do_mmap+0x10/0x10
[  345.620426][    C1]  ? __pfx_ima_file_mmap+0x10/0x10
[  345.625669][    C1]  vm_mmap_pgoff+0x1dd/0x3d0
[  345.630404][    C1]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  345.635722][    C1]  ? __fget_files+0x29/0x470
[  345.640453][    C1]  ? __fget_files+0x3f6/0x470
[  345.645270][    C1]  ksys_mmap_pgoff+0x4f1/0x720
[  345.650104][    C1]  ? __x64_sys_mmap+0x7f/0x140
[  345.654988][    C1]  do_syscall_64+0xf3/0x230
[  345.659730][    C1]  ? clear_bhb_loop+0x35/0x90
[  345.664522][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.670465][    C1] RIP: 0033:0x7f0e64d75c13
[  345.674986][    C1] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  345.694918][    C1] RSP: 002b:00007ffe54b87f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  345.703435][    C1] RAX: ffffffffffffffda RBX: 0000000000400000 RCX: 00007f0e64d75c13
[  345.711880][    C1] RDX: 0000000000000003 RSI: 00000000003c0000 RDI: 0000001b31c60000
[  345.719927][    C1] RBP: 0000001b31c60000 R08: 0000000000000004 R09: 0000000000040000
[  345.728002][    C1] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[  345.736152][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  345.744515][    C1]  </TASK>
[  345.747599][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  345.754997][    C1] CPU: 1 PID: 15986 Comm: syz-executor Not tainted 6.10.0-rc5-syzkaller-01200-gcda91d5b911a #0
[  345.765361][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  345.775916][    C1] Call Trace:
[  345.779214][    C1]  <IRQ>
[  345.782096][    C1]  dump_stack_lvl+0x241/0x360
[  345.786793][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  345.792095][    C1]  ? __pfx__printk+0x10/0x10
[  345.796714][    C1]  ? vscnprintf+0x5d/0x90
[  345.801246][    C1]  panic+0x349/0x860
[  345.805150][    C1]  ? __warn+0x172/0x4e0
[  345.809319][    C1]  ? __pfx_panic+0x10/0x10
[  345.813757][    C1]  __warn+0x346/0x4e0
[  345.817750][    C1]  ? ip_rt_bug+0x2c/0x110
[  345.822178][    C1]  report_bug+0x2b3/0x500
[  345.826518][    C1]  ? ip_rt_bug+0x2c/0x110
[  345.830896][    C1]  handle_bug+0x3e/0x70
[  345.835100][    C1]  exc_invalid_op+0x1a/0x50
[  345.839629][    C1]  asm_exc_invalid_op+0x1a/0x20
[  345.844606][    C1] RIP: 0010:ip_rt_bug+0x2c/0x110
[  345.849564][    C1] Code: 1e fa 41 57 41 56 41 55 41 54 53 48 89 d3 e8 9b 4b b1 f7 66 90 e8 94 4b b1 f7 31 ff 48 89 de ba 02 00 00 00 e8 a5 d2 6b ff 90 <0f> 0b 90 31 c0 5b 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc f3 0f 1e
[  345.869449][    C1] RSP: 0018:ffffc90000a18680 EFLAGS: 00010286
[  345.875631][    C1] RAX: c53a301766a43a00 RBX: ffff888011b4aa00 RCX: ffffffff8172d9ea
[  345.883803][    C1] RDX: dffffc0000000000 RSI: ffffffff8bcabb40 RDI: ffffffff8c1fee00
[  345.892340][    C1] RBP: 0000000000000001 R08: ffffffff92fbc617 R09: 1ffffffff25f78c2
[  345.900416][    C1] R10: dffffc0000000000 R11: fffffbfff25f78c3 R12: dffffc0000000000
[  345.908394][    C1] R13: dffffc0000000000 R14: ffff8880229c9d00 R15: ffff888017351380
[  345.916558][    C1]  ? mark_lock+0x9a/0x350
[  345.920934][    C1]  ip_push_pending_frames+0xbf/0x150
[  345.926283][    C1]  __icmp_send+0xf89/0x14e0
[  345.930915][    C1]  ? __icmp_send+0x59c/0x14e0
[  345.935698][    C1]  ? __pfx___icmp_send+0x10/0x10
[  345.940668][    C1]  ? mark_lock+0x9a/0x350
[  345.945055][    C1]  ? look_up_lock_class+0x77/0x160
[  345.950276][    C1]  ? mark_lock+0x9a/0x350
[  345.954650][    C1]  ipv4_link_failure+0x62f/0xa10
[  345.959615][    C1]  ? __pfx_ipv4_link_failure+0x10/0x10
[  345.965092][    C1]  ? do_raw_write_lock+0x148/0x4f0
[  345.970243][    C1]  ? __pfx_ipv4_link_failure+0x10/0x10
[  345.975802][    C1]  arp_error_report+0x114/0x160
[  345.980691][    C1]  neigh_invalidate+0x244/0x470
[  345.985734][    C1]  neigh_timer_handler+0x8a5/0xfd0
[  345.990865][    C1]  call_timer_fn+0x18e/0x650
[  345.995492][    C1]  ? call_timer_fn+0xc0/0x650
[  346.000374][    C1]  ? __pfx_neigh_timer_handler+0x10/0x10
[  346.006143][    C1]  ? __pfx_call_timer_fn+0x10/0x10
[  346.011287][    C1]  ? __pfx_neigh_timer_handler+0x10/0x10
[  346.017029][    C1]  ? __pfx_neigh_timer_handler+0x10/0x10
[  346.022796][    C1]  ? __pfx_neigh_timer_handler+0x10/0x10
[  346.028472][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  346.033698][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  346.038927][    C1]  ? __pfx_neigh_timer_handler+0x10/0x10
[  346.044578][    C1]  __run_timer_base+0x66a/0x8e0
[  346.049466][    C1]  ? __pfx___run_timer_base+0x10/0x10
[  346.054863][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  346.061213][    C1]  run_timer_softirq+0xb7/0x170
[  346.066085][    C1]  handle_softirqs+0x2c4/0x970
[  346.070943][    C1]  ? __irq_exit_rcu+0xf4/0x1c0
[  346.075729][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  346.081315][    C1]  ? irqtime_account_irq+0xd4/0x1e0
[  346.086656][    C1]  __irq_exit_rcu+0xf4/0x1c0
[  346.091279][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  346.096502][    C1]  irq_exit_rcu+0x9/0x30
[  346.100760][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  346.106423][    C1]  </IRQ>
[  346.109393][    C1]  <TASK>
[  346.112358][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  346.118468][    C1] RIP: 0010:lock_acquire+0x264/0x550
[  346.124140][    C1] Code: 2b 00 74 08 4c 89 f7 e8 1a 83 89 00 f6 44 24 61 02 0f 85 85 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25
[  346.143948][    C1] RSP: 0018:ffffc90004bff640 EFLAGS: 00000206
[  346.150040][    C1] RAX: 0000000000000001 RBX: 1ffff9200097fed4 RCX: 0000000000000001
[  346.158025][    C1] RDX: dffffc0000000000 RSI: ffffffff8bcaccc0 RDI: ffffffff8c1fee00
[  346.166096][    C1] RBP: ffffc90004bff788 R08: ffffffff92fbc61f R09: 1ffffffff25f78c3
[  346.174077][    C1] R10: dffffc0000000000 R11: fffffbfff25f78c4 R12: 1ffff9200097fed0
[  346.182100][    C1] R13: dffffc0000000000 R14: ffffc90004bff6a0 R15: 0000000000000246
[  346.190106][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  346.196097][    C1]  ? __pfx___might_resched+0x10/0x10
[  346.201506][    C1]  ? mas_next_node+0xb99/0xe00
[  346.206301][    C1]  down_read+0xb1/0xa40
[  346.210513][    C1]  ? validate_mm+0x29a/0x530
[  346.215133][    C1]  ? mas_next_slot+0xeab/0xf90
[  346.219921][    C1]  ? __pfx_down_read+0x10/0x10
[  346.224807][    C1]  ? mas_find+0x950/0xbb0
[  346.229254][    C1]  validate_mm+0x29a/0x530
[  346.233709][    C1]  ? __pfx_validate_mm+0x10/0x10
[  346.238671][    C1]  mmap_region+0x1a61/0x2090
[  346.243383][    C1]  ? __pfx_mmap_region+0x10/0x10
[  346.248379][    C1]  ? thp_get_unmapped_area_vmflags+0x1bf/0x380
[  346.254557][    C1]  ? cap_mmap_addr+0x163/0x2c0
[  346.259565][    C1]  ? __get_unmapped_area+0x2f0/0x360
[  346.264899][    C1]  do_mmap+0x8ad/0xfa0
[  346.269195][    C1]  ? __pfx_do_mmap+0x10/0x10
[  346.273927][    C1]  ? __pfx_ima_file_mmap+0x10/0x10
[  346.279074][    C1]  vm_mmap_pgoff+0x1dd/0x3d0
[  346.283768][    C1]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  346.289083][    C1]  ? __fget_files+0x29/0x470
[  346.293695][    C1]  ? __fget_files+0x3f6/0x470
[  346.298403][    C1]  ksys_mmap_pgoff+0x4f1/0x720
[  346.303202][    C1]  ? __x64_sys_mmap+0x7f/0x140
[  346.307980][    C1]  do_syscall_64+0xf3/0x230
[  346.312494][    C1]  ? clear_bhb_loop+0x35/0x90
[  346.317220][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.324282][    C1] RIP: 0033:0x7f0e64d75c13
[  346.328830][    C1] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  346.349075][    C1] RSP: 002b:00007ffe54b87f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  346.357693][    C1] RAX: ffffffffffffffda RBX: 0000000000400000 RCX: 00007f0e64d75c13
[  346.365681][    C1] RDX: 0000000000000003 RSI: 00000000003c0000 RDI: 0000001b31c60000
[  346.373752][    C1] RBP: 0000001b31c60000 R08: 0000000000000004 R09: 0000000000040000
[  346.381907][    C1] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[  346.390148][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  346.398333][    C1]  </TASK>
[  346.402128][    C1] Kernel Offset: disabled
[  346.407296][    C1] Rebooting in 86400 seconds..