last executing test programs:

3.605606445s ago: executing program 0 (id=2094):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x20)
mmap(&(0x7f0000868000/0x1000)=nil, 0x1000, 0x3000004, 0x10010, r0, 0xc183000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
mmap(&(0x7f0000868000/0x5000)=nil, 0x5000, 0x100000c, 0x12, r1, 0x0)

3.362203984s ago: executing program 0 (id=2096):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x7}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x700, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

2.909964548s ago: executing program 3 (id=2101):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
socket$igmp6(0xa, 0x3, 0x2)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @loopback}, 0x10)
setsockopt$inet_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f00000001c0)=@gcm_128={{0x303}, "d428d493b54539b9", "62714b65e42465c5518ccb9d7c403972", "2cbdb9e9"}, 0x28)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000d40)=ANY=[@ANYBLOB="380000003d0007010000000000000000047c0000040008802000018006000600800a0000140019"], 0x38}}, 0xc000)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
socket$inet_udplite(0x2, 0x2, 0x88)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r4, 0x84, 0x6e, &(0x7f0000000040)=[@in6={0xa, 0x4e22, 0x1912, @remote, 0x9}, @in6={0xa, 0x4e22, 0x1, @dev={0xfe, 0x80, '\x00', 0x2}, 0x8c}], 0x38)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000200)={'filter\x00', 0x7, 0x4, 0x3c8, 0x2e0, 0x0, 0x2e0, 0x2e0, 0x2e0, 0x2e0, 0x4, &(0x7f0000000000), {[{{@uncond, 0xc0, 0xe8}, @unspec=@AUDIT={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0x6, 0x2}}}, {{@arp={@remote, @broadcast, 0xffffff00, 0x0, 0x0, 0x1, {@mac=@broadcast, {[0xff, 0x0, 0xff, 0xff, 0xff, 0xff]}}, {@empty, {[0x0, 0xff, 0xff, 0xff, 0x0, 0xff]}}, 0x6, 0xd, 0x6, 0xfff2, 0x5, 0x39, 'wg0\x00', 'pim6reg\x00', {}, {}, 0x0, 0x1}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev={0xac, 0x14, 0x14, 0x41}, @local, 0x0, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418)

2.900485569s ago: executing program 0 (id=2102):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffd, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000002b00)=[{{&(0x7f0000000040)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x8000010}}, {{&(0x7f00000005c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000880)=[{&(0x7f0000000640)="ca3c", 0x2}], 0x1, 0x0, 0x0, 0x4048040}}], 0x2, 0x4884)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r4, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=@newtaction={0x178, 0x1e, 0x109, 0x100, 0x0, {}, [{0x164, 0x1, [@m_mirred={0x160, 0x8, 0x0, 0x0, {{0xb, 0x9}, {0x4}, {0x131, 0x6, "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"/301}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x178}, 0x1, 0x2b1e}, 0x0)

2.743123818s ago: executing program 0 (id=2104):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null\x00'}, 0x58)
r1 = socket(0x0, 0x2, 0x4)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req={0x6, 0x0, 0x75, 0x7}, 0x10)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000004c0)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x2000c090}, 0xa111)
sendmsg$NL80211_CMD_GET_INTERFACE(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x41}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000fe, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x28, 0x3d, 0x107, 0x0, 0x0, {0x4, 0x7c}, [@typed={0x4}, @nested={0x10, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @nested={0x4, 0x15}]}]}, 0x28}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000004000000dd0000000a00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/19], 0x50)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000002fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000000040)=r7, 0x4)
sendmsg$unix(r6, &(0x7f0000000780)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xb0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_lsm={0x1d, 0x1b, &(0x7f0000001c00)=ANY=[@ANYBLOB="18000000010400000000000000ea75957b3650a6eb8e4b6ce811cdff58c895023a55476c0da9f5eb84ed88162a48ce30f20c0488bad83faa4f6b0e3ac8b06c438ba622b10c30f807b7ca86fa5a6e952863f67cba955a17405a162aa75233ec440dbf513553fcf7fcba0be2e87687d60f2eea80815ecb9bd6f34582248776113f13d3b333cf08afcc731a6dc87410c15062a9ca719222", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018410000080000000000000000000000184b0000faffffff000000000000000018480000fcffffff000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000000000000850000008600000085000000530000001922e0ff00000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x80000001, 0x83, &(0x7f0000000180)=""/131, 0x41100, 0x54, '\x00', 0x0, 0x1b, r4, 0x8, &(0x7f0000000b40)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000080)={0x4, 0x1, 0x7fff, 0x7}, 0x10, 0x0, 0x0, 0x5, &(0x7f0000000340)=[r4, r4, r4, r4, r4], &(0x7f0000000380)=[{0x5, 0x4, 0x1, 0x8}, {0x1, 0x4, 0xb, 0x5}, {0x2, 0x5, 0x8, 0x4}, {0x1, 0x5, 0x4, 0xa}, {0x1, 0x5, 0x4, 0x9}], 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000ac0)={r9, 0x0, 0xf5, 0xb3, &(0x7f0000000700)="53ef8883303e7ad647578099e3dcdc918fd83da48db9480fe091776cc589877784f0f95b0958ea091ae87f575d4e81c680c26eef34f949e4a489e6013bfd6ef2cb58b356f375872b1e8e2b6ecb53c97320d866fed0507bb2ff6f3922897fd1f3b7a07be37c8e8a474e468a2649f9f94488f7ae394c24f4e9b55cc20d82f08fe01434d759ac3cf729a818aaecc48a8499f7e0f956018f9895b4463633d73112620a199b6c9ee049a425a7377fbd1f26039781cdf9e08a14e94f16d362b49c2c673c70c99f235182b018031936f6b5d1dc24e48760cc220b85f270928a90c47e4ea3df66476475c7d0de204570d909cb11f4f199a0b7", &(0x7f0000000880)=""/179, 0x9, 0x0, 0x62, 0x1000, &(0x7f0000000a40)="cc8155e42de2fb889a69763edfc0636b95a69940dfc67db738a5ffaa7d77d4b137ee5ef4fbf2b3ac638527e77f366917b0357976b139454020862f0f09635668c28429978e16f1a2446f47328f698eea95f808f9361bc8465b440b346a33c3ed0bed", &(0x7f0000000c00)="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", 0x5, 0x0, 0x5e}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r8}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000840)={{r4}, &(0x7f0000000300), &(0x7f0000000800)=r8}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000980)={0x11, 0x7, &(0x7f00000004c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x40}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x3}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x40}]}, 0x0, 0x8, 0x0, 0x0, 0x41000, 0x60, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)

2.300805867s ago: executing program 0 (id=2107):
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x769f00b363895638, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5421, &(0x7f00000000c0)=0x7)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000aac020000060a0b040000000000000000020000003c020480380201800a0001006d6174636800000028020280080002400000000114020300d67a8527f76ec1d39e537c4c3060c6a405106c72848aa8bcb429b3a20d532452032d5f166334739d1719a5778bd4f724ee4ca57f2527aeeb0c75755d68fc6fa55f4825682ee95e581039823e5963beedcf65b8b005623d90772b8b6ebd2498b0aff725a3eabb6c99cb2edfe10b9c33be8a971e08401bc0807e75a2ff376b7934473bc1f02bb512b77414daf260c9c7d4e1f0758b56ec5823892af310e6252fcfb1d9dbad362baa26f43f12f831fd221926d6536eeff641db46920ae0e48f3ff5de599714ba6510ce479d4116a519792281736f39c9fc0e10ef557392c43389271cebcf36543fcf6f83bf74b93ee4eb5e8c82e35bb4784cc1ed0ad291b16e8368487589f7590bf5896f340a36555a1cf69736da230a809176dbdfba3d47efb9a6932e5503d277532b7d4e6f7c7373a298e5843a9f74d5fd07fbc6ad22bc644ba9b3c94ec3c8f0b9321b16e5826b1f058f781760a5d4b6a8880202b41689139c37cd51f65a92d883f8901add03b650c9ec182fb565a4d657ebba9d6a5eb426b22d5933b72362e6ec327fb679aa8034b8b3b6680ad138be47652a3e77981187d2921cebfc1639aa280e3d38dba9b1af49ceded79c78a2d656b3a3e946e17e6257def6679f70f11aa01a2d906aecf4dbc7d1a332a8932ed719ce7eecb5450f494f944b3f6b637502ddba609c6e45dcfad1db7c7dda3e2c8d5ddcf27132985442e9b8df16f96c82e72e3e2491856d07756b9f08000100627066000900010073797a30000000000900020073797a3200000000440005800800024000000002080001"], 0x2d4}}, 0x4048010)
write(r1, &(0x7f0000000300)='n', 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, r0, 0x0)
r2 = socket$l2tp(0x2, 0x2, 0x73)
unshare(0x62040200)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000010000000000000a20000000000a03000000000000000000070000000900010073797a30000000007c000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d38001280140001800c000100636f756e7465720004000280200001800e000100636f6e6e6c696d69740000000c000280080001400000000808000340000001", @ANYRESHEX=r2, @ANYRES16=r1, @ANYRES16=r2, @ANYRES8=r2], 0xc4}}, 0x20050800)
r4 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r4, &(0x7f0000000180)={0x2, 0xfffe, @dev={0xac, 0x14, 0x14, 0x9}}, 0x10)
bind$inet(r4, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000feff9400000000000000"], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000180)=@ipv4_newroute={0x2c, 0x1a, 0x1, 0x0, 0x0, {0xa}, [@RTA_DPORT={0x6}, @RTA_IP_PROTO={0x5, 0x1b, 0x11}]}, 0x2c}}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r7, 0x10e, 0x1, &(0x7f0000000040)=0x16, 0x4)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="010700"/14], 0x14}, 0x1, 0x0, 0x0, 0x20004074}, 0x0)
socket(0x15, 0x5, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x0)
sendto$inet(r4, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
socket(0x40000000015, 0x5, 0x0)

1.946137138s ago: executing program 1 (id=2110):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x10) (fail_nth: 2)

1.602705628s ago: executing program 3 (id=2113):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x541, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

1.56337471s ago: executing program 4 (id=2115):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffd, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000002b00)=[{{&(0x7f0000000040)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x8000010}}, {{&(0x7f00000005c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000880)=[{&(0x7f0000000640)="ca3c", 0x2}], 0x1, 0x0, 0x0, 0x4048040}}], 0x2, 0x4884)
r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r3, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=@newtaction={0x178, 0x1e, 0x109, 0x100, 0x0, {}, [{0x164, 0x1, [@m_mirred={0x160, 0x8, 0x0, 0x0, {{0xb, 0x9}, {0x4}, {0x131, 0x6, "c703067825f2576d41b3d99acf25b5ce18a9627cf39bc10630910069e766ca6516eb2e0d9584cae18ed0e900e24c2acd80ae37422402e699ca1d5adcab547c7c20ba238f0a22749599df710950735c73f0e1e0fcf24ba600000000000000000000000000ca267c602f73aecf7758a94310745600ee14d40692a1770cf635387c03684749d51ecc532298e417da786ea2ee5416fa06934b6e4acad7613dbd9cb54236f2594cafe5df93416ae0976482e98692bc99cf607665b910805befaf909cbe90c51b3ed066ba433560fdd874c806d8ab81c54bb89411d80ed5a1a32626942eb9f2a362ebd0705918e88a5aa75ea3b2ae83af11a6da3fd51119fdb52944b8cb2a2341368f1e607ff52249db463ed317d13e5c5448ab4616c396f714e400"/301}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x178}, 0x1, 0x2b1e}, 0x0)

1.550581703s ago: executing program 1 (id=2116):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000500)={@val={0xa}, @void, @eth={@multicast, @remote, @void, {@ipv6={0x86dd, @udp={0xd, 0x6, "75a3d0", 0x30, 0x11, 0x1, @empty, @mcast2, {[@dstopts={0x6c, 0x0, '\x00', [@ra={0x5, 0x2, 0xffff}]}, @dstopts={0x1d, 0x2, '\x00', [@ra={0x5, 0x2, 0x1}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x1, [0x0]}, @enc_lim={0x4, 0x1, 0x3}]}], {0x4e20, 0x4e22, 0x8}}}}}}}, 0x6a)

1.482474709s ago: executing program 3 (id=2117):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea8", 0x6b}], 0x1}, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x20000014}, 0x0) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10) (async)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r4, &(0x7f0000000640), 0x14) (async)
sendmmsg$inet(r3, &(0x7f0000006740)=[{{&(0x7f0000000000)={0x2, 0x4e21, @multicast2}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000080)="95", 0x1}], 0x1}}], 0x2, 0x2000c0c8) (async)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
sendto$inet(r3, &(0x7f0000000280)="cf", 0x1, 0x4, 0x0, 0x0) (async)
r5 = socket(0x2, 0x80805, 0x0) (async)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1e, &(0x7f00000004c0)=[@in={0x2, 0x4e24, @loopback}, @in={0x2, 0x4e21, @rand_addr=0x64010101}, @in6={0xa, 0x4e24, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, 0x9}, @in={0x2, 0x4e20, @multicast2}, @in={0x2, 0x4e20, @broadcast}, @in={0x2, 0x4e22, @broadcast}]}, &(0x7f0000000340)=0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r7=>0x0}, &(0x7f0000001080)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x73, &(0x7f00000001c0)={r7, 0x7, 0x20, 0x1, 0xbfa1}, &(0x7f0000000240)=0x18) (async)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000090a010400000000000000000000000008000a400000000008000640ffffff000900010073797a3000000000080005400000001c0900020073797a3200000000080003400000008804000980140000001000010000f9ff00000000000084000a"], 0x78}}, 0x0)

1.392238912s ago: executing program 4 (id=2118):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000240)={0x20, 0x2c, 0x1, 0x3f, 0x0, "", [@nested={0x4, 0x800}, @nested={0xa, 0x11, 0x0, 0x1, [@generic="2fe5afbf24fb"]}]}, 0x20}], 0x1}, 0x0)

1.341692842s ago: executing program 2 (id=2119):
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
r0 = socket(0x10, 0x803, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295a5, 0x0, 0xc0fe, {0xa, 0x0, 0x1, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

1.274371791s ago: executing program 3 (id=2120):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req={0x4, 0x6, 0x6, 0x1a6}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r4 = socket$kcm(0x2, 0xa, 0x2)
r5 = socket$inet(0x2, 0x2, 0x0)
connect$inet(r5, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'ip6gretap0\x00', <r9=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=@newlink={0x40, 0x10, 0xd8a88b3807bbf5cf, 0x0, 0x0, {0x0, 0x0, 0x7}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE2={0x8, 0x2, r7}, @IFLA_HSR_SLAVE1={0x8, 0x1, r9}]}}}]}, 0x40}}, 0x0)
write$tun(r3, &(0x7f0000000500)={@val={0xa}, @void, @eth={@multicast, @remote, @void, {@ipv6={0x86dd, @udp={0xd, 0x6, "75a3d0", 0xf8, 0x11, 0x1, @empty, @mcast2, {[@dstopts={0x6c, 0x0, '\x00', [@ra={0x5, 0x2, 0xffff}]}, @dstopts={0x1d, 0x2, '\x00', [@ra={0x5, 0x2, 0x1}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x1, [0x0]}, @enc_lim={0x4, 0x1, 0x3}]}, @routing={0x0, 0xc, 0x0, 0x0, 0x0, [@private0, @private1={0xfc, 0x1, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x27}, @private0={0xfc, 0x0, '\x00', 0x1}, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}, @srh={0x2f, 0x4, 0x4, 0x2, 0x6, 0x48, 0x9, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @rand_addr=' \x01\x00']}, @dstopts={0x4e, 0x5, '\x00', [@hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @ra={0x5, 0x2, 0x1}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}], {0x4e20, 0x4e22, 0x8}}}}}}}, 0x132)
write(r1, &(0x7f0000000340)="4700000001003f", 0x7)
r10 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r10, &(0x7f0000000440), 0x10)
listen(r10, 0x0)
syz_emit_ethernet(0x9a, &(0x7f0000000a40)={@local, @multicast, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "ee527a", 0x64, 0x3c, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast2, {[@dstopts={0x2c, 0x2, '\x00', [@generic={0x4}, @calipso={0x7, 0x10, {0x2, 0x2, 0xe, 0xd8, [0x1]}}]}], {{}, {}, {}, {0x8, 0x88be, 0x1}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}}}}}}}}, 0x0)
r11 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r11, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r11, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x1}], 0x1)
accept4$unix(r10, 0x0, 0x0, 0x80800)

824.995476ms ago: executing program 1 (id=2121):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bond0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000000)={0x18, r3, 0x201, 0x70bd28, 0x25dfdbfc, {}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x40, 0x24, 0xd0f, 0x70bd2a, 0x4, {0x60, 0x0, 0x0, r1, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_pie={{0x8}, {0x14, 0x2, [@TCA_PIE_LIMIT={0x8, 0x2, 0xca}, @TCA_PIE_ALPHA={0x8, 0x4, 0xf}]}}]}, 0x40}}, 0x44080)

808.829066ms ago: executing program 2 (id=2122):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=@newqdisc={0x64, 0x24, 0x4ee4e6a52ff56561, 0x4, 0x0, {0x0, 0x0, 0x8847, r2, {0x0, 0xd}, {0xffff, 0xffff}, {0x1, 0x8}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x2f, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x9, 0x0, 0x1}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x9, 0xff, 0x8, 0x0, 0x5, 0x8}}, {0x4}}]}, @qdisc_kind_options=@q_mq]}, 0x64}}, 0x4040010)

710.72746ms ago: executing program 1 (id=2123):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffd, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r1, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)

709.784784ms ago: executing program 4 (id=2124):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x90, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x60, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0xfff1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x4}]}}]}, 0x90}}, 0x0)

603.168522ms ago: executing program 1 (id=2125):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1800000004140120"], 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x8044) (async)
r1 = socket(0x2, 0x3, 0x6)
sendmmsg$unix(r1, &(0x7f0000000680)=[{{&(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e, 0x0, 0x0, &(0x7f0000000540)=[@rights={{0x10, 0x1, 0x41}}], 0x10, 0x8000}}], 0x1, 0x80) (async)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000680)={0x6, {{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, 0x88) (async, rerun: 64)
r2 = socket$kcm(0x10, 0x2, 0x0) (async, rerun: 64)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newsa={0x140, 0x10, 0x633, 0x0, 0xfffffffc, {{@in6=@local, @in=@broadcast, 0x0, 0x4000}, {@in=@dev={0xac, 0x14, 0x14, 0x3f}, 0x0, 0x32}, @in=@private=0xa010102, {0x327, 0x5, 0x0, 0x4, 0xfff, 0x0, 0x8}, {}, {0x8f, 0x80000000, 0x8}, 0x70bd29, 0x0, 0x2, 0x1}, [@tfcpad={0x8, 0x16, 0x6}, @algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x140}, 0x1, 0x0, 0x0, 0x8000}, 0x0) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x16, 0x3, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x10000000, 0x61, 0x11, 0x4d}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
sendmsg$kcm(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000580)="d8000000140081044e81f782db44b9040a1d08020a000000040000a118000200ff11000000000e1208000f0100810401a80016ea1f0008400304000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) (async)
ioctl$FS_IOC_GETVERSION(0xffffffffffffffff, 0x80087601, &(0x7f0000000000)) (async)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x2, 0x4, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000040), &(0x7f0000000080)='%-5lx  \x00'}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000a80)={r5, &(0x7f0000000940)="18", &(0x7f0000000980)=""/235}, 0x20) (async, rerun: 32)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000002c0)={0x0, &(0x7f0000000200)=""/169, &(0x7f0000000040), &(0x7f00000003c0), 0x2, r5}, 0x38) (async, rerun: 32)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b00)={r4, 0x0, 0xffffffffffffff3d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4f, 0x0, &(0x7f0000000480)="7877ee07b9416efc2d1983c287b61464dd387a8c5761f7191d7ff21b83b5929a130ffe8c342ab02db921b1daa3c215d87f1db00b5250441f9a72fff5ea6033e3a99bbf174ee723e4e31df213f3ef95", 0x0}, 0x50)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000780)=@newtaction={0xd8, 0x30, 0xffff, 0x0, 0x0, {}, [{0xc4, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c}]]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x54, 0x2, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x0, 0x20000000}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xd8}}, 0x0)
r7 = socket(0x10, 0x2, 0x0)
sendto$inet6(r7, &(0x7f00000007c0)="7800000018002507b9199b02ffff48000203be04020406050a02040c5c000900580006020a0200000d0085a168d0bf46d32345653600648d27000b000a00070849935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000407160005000a0000000000e000e218d1dd3b6ed538f6523250", 0x78, 0x0, 0x0, 0xe0ffffff) (async)
socket$nl_route(0x10, 0x3, 0x0)

570.776627ms ago: executing program 2 (id=2126):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0xfff5}}, @TCA_ACT_BPF_FD={0x8, 0x5, r1}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)

502.689285ms ago: executing program 4 (id=2127):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000140)={0x1f, 0xffff, 0x3}, 0x6)
r1 = socket(0x9, 0x800, 0x0)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f00000000c0)={'broute\x00', 0x0, 0x0, 0x0, [0x4, 0x4, 0xfffffffffffffa9f, 0x6, 0x0, 0x4b5]}, &(0x7f0000000000)=0x78)
syz_open_procfs$namespace(0x0, &(0x7f0000000540)='ns/cgroup\x00')
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/cgroup\x00')
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0xf, 0x0, &(0x7f0000000200))
ioctl$sock_inet_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000040))
write(r0, &(0x7f0000000000)="3b000300010006", 0x7)

427.231813ms ago: executing program 1 (id=2128):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000a40)=ANY=[@ANYBLOB="6001000010000100000000000000000000000000000000000000000000000000fe8000000000000000000000000000bb0000fff720000001000000003b000000", @ANYRES32=0x0, @ANYRES32=<r1=>0xffffffffffffffff, @ANYBLOB="64010102000000000000000000000000000000006c000000ac1414bb0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000400000000000000000000000000000000000000000000000400000000000000000000400000000000000000000000000000000000000000000000000000000000000000020000010000000008001f0004000000480003006465666c6174650000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008001f00030000001400080011"], 0x160}}, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={<r3=>r0, 0x9, 0x1, 0x6})
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xf, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX=r1, @ANYRESDEC=r0], &(0x7f0000000000)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ppoll(&(0x7f0000000500)=[{r2}], 0x1, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)=ANY=[@ANYBLOB="03000000040000000800000001009b0080000000", @ANYRES32=r2, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xb, &(0x7f00000000c0)=0x7fffffff, 0x4) (async)
setsockopt$sock_int(r0, 0x1, 0xb, &(0x7f00000000c0)=0x7fffffff, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x7, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (async)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x7, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket$nl_route(0x10, 0x3, 0x0) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000001800010027bd7000fcdbdf251d01020015000100040000e002000000213e92146611cf5b0400000008000900", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0800050001f8fd8108000e"], 0x64}, 0x1, 0x0, 0x0, 0x88}, 0x80)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r5, &(0x7f0000000100), &(0x7f0000000100)=""/13, 0x2}, 0x20) (async)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r5, &(0x7f0000000100), &(0x7f0000000100)=""/13, 0x2}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000640)=@framed={{}, [@map_fd={0x18, 0x0, 0x2, 0x0, r4}, @ldst={0x1, 0x0, 0x3}]}, &(0x7f0000000d40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

370.094621ms ago: executing program 3 (id=2129):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffd, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000002b00)=[{{&(0x7f0000000040)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x8000010}}, {{&(0x7f00000005c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000880)=[{&(0x7f0000000640)="ca3c", 0x2}], 0x1, 0x0, 0x0, 0x4048040}}], 0x2, 0x4884)
r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r3, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=@newtaction={0x178, 0x1e, 0x109, 0x100, 0x0, {}, [{0x164, 0x1, [@m_mirred={0x160, 0x8, 0x0, 0x0, {{0xb, 0x9}, {0x4}, {0x131, 0x6, "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"/301}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x178}, 0x1, 0x2b1e}, 0x0)

309.982681ms ago: executing program 2 (id=2130):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r1=>0x0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r2, &(0x7f0000000040)="23000000010006", 0x7)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$inet_int(r4, 0x0, 0x2, &(0x7f0000000100)=0xbe, 0x4)
setsockopt$inet_int(r4, 0x0, 0xa, 0x0, 0x0)
sendto$inet(r4, 0x0, 0x0, 0x24000001, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000ffffff7f0000000002000080185000000d00000500000000000b388595"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$tipc(0x1e, 0x5, 0x0)
r6 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r6, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x2, 0x3, 0x3}, 0x10)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040), 0x10, 0x0}, 0x0)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000140), 0x4)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f000068d000/0x3000)=nil, 0x3000, 0x2000003, 0x12, r7, 0x4000)
syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, &(0x7f0000010a80)=@raw={'raw\x00', 0x8, 0x3, 0xa08, 0x0, 0xffffffff, 0xffffffff, 0x100, 0xffffffff, 0x970, 0xffffffff, 0xffffffff, 0x970, 0xffffffff, 0x3, 0x0, {[{{@ip={@broadcast, @private, 0x0, 0x0, 'batadv0\x00', 'batadv_slave_0\x00', {}, {}, 0x21}, 0x6, 0xa0, 0x100, 0x0, {}, [@common=@inet=@dccp={{0x30}}]}, @common=@SET={0x60}}, {{@ip={@loopback, @dev, 0x0, 0x0, 'veth0_virt_wifi\x00', 'bond_slave_0\x00'}, 0x0, 0x850, 0x870, 0x0, {}, [@common=@unspec=@u32={{0x7e0}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0xa68)
mmap(&(0x7f00004f1000/0x3000)=nil, 0x3000, 0x2000006, 0x12, r3, 0x913e0000)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="9f3ac7fd79f4dd11a7b51318b525f9c1c19d2990e832c35817ff"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, r7, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r9, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f288ca6d2688a84c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r10 = socket(0x10, 0x80002, 0x0)
r11 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000700)=ANY=[@ANYBLOB="0a00000016000000b30000007f00000000000000eb63d1c8d7f86a49fbaa0b6036829e11b8b60161c3af7e49505febd0363cadb2b18c90ea7341e35ade13435d25d95558fde30ca1a0eb2233d73f794a4346d38a552b1dbbb2a2fef74e8ac3a52dbd82c12609cc1b4e495566a014a0060604b1c65373ec1cd14615ebde97ff023c4b0eabf057bd70e1283053e538a54075306f7850d0f39747a008816071e93f1c60f51b7ab232ae89bf5d106e195058fe3d8da3f3563f89c43eb3cdb7ec9def3187bac4b7a233c597605def8dec34000000", @ANYRES32=r1, @ANYBLOB="0000000000000000000900dd00", @ANYRES32=0x0, @ANYRES32=r10, @ANYRESDEC=0x0], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="180800000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000090000008500000006000000181000000a8a8029cf416628", @ANYRES32=r11, @ANYBLOB="000000000000000064000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(r10, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)

308.837841ms ago: executing program 4 (id=2131):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socket$inet6(0xa, 0x1, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x903, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x1c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x10}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0xa, 0x84}}}, 0x64}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x20008844)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x40, 0x24, 0x300, 0x0, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {}, {0x2, 0xffff}, {0xfff3, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x10, 0x2, [@TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x1ff}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0xc4014}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="00e0000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)

147.095404ms ago: executing program 4 (id=2132):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000500)={@val={0xa}, @void, @eth={@multicast, @remote, @void, {@ipv6={0x86dd, @udp={0xd, 0x6, "75a3d0", 0x18, 0x11, 0x1, @empty, @mcast2, {[@dstopts={0x6c, 0x0, '\x00', [@ra={0x5, 0x2, 0xffff}]}], {0x4e20, 0x4e22, 0x8}}}}}}}, 0x52)

123.205835ms ago: executing program 3 (id=2133):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x18, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x1030000, 0x1000, 0x5, 0x4}, 0x20)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
unshare(0x6a040000)
unshare(0x20000400)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x5, &(0x7f0000000000)=@raw=[@generic={0x2, 0x2, 0x4, 0x9, 0x2a6}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x10000}, @initr0={0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x2}], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_init_net_socket$nfc_raw(0x27, 0x0, 0x0)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="0a000000000000080000007f0000000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r2, 0x58, &(0x7f00000003c0)}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[@ANYRES16=r5, @ANYBLOB="f3f40000000000000000030000007000018008000300000000000d0001007564703a73797bb100000000440004"], 0x84}}, 0x0)
r6 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
setsockopt$X25_QBITINCL(r6, 0x106, 0x1, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000020000000900010073797a310000000060000000160a03000000000000000000020000000900010073797a31000000000900020073797a31000000002c000380080002400000000008000140000000001800038014000100776c616e3100000000000000000000000800074000000001"], 0xa8}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='syzkaller\x00', 0x4, 0xc5, &(0x7f0000000300)=""/197, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000002c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(r7, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

62.239666ms ago: executing program 2 (id=2134):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ENCAP_TYPE={0x6}, @IFLA_GRE_ENCAP_FLAGS={0x6}]}}}]}, 0x48}, 0x1, 0x8100000000000000}, 0x0)

26.137389ms ago: executing program 0 (id=2135):
r0 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r0, &(0x7f00000004c0)={&(0x7f0000000200)=@id={0x1e, 0x3, 0x2, {0x4e21}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x48000}, 0x40058c5)
bind$tipc(r0, &(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x8000002}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r1, &(0x7f0000000380)={&(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x42, 0x4}}}, 0x10, 0x0, 0x0, 0x0, 0xfff5}, 0x0)

0s ago: executing program 2 (id=2136):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffd, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r1, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)

kernel console output (not intermixed with test programs):

ftover after parsing attributes in process `syz.0.1292'.
[  213.968778][ T9944] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1292'.
[  214.106967][   T11] bridge0: port 3(bond3) entered disabled state
[  214.329952][ T9966] netlink: 'syz.0.1298': attribute type 2 has an invalid length.
[  214.663735][ T9974] ieee802154 phy0 wpan0: encryption failed: -22
[  214.694145][ T9974] ieee802154 phy0 wpan0: encryption failed: -22
[  214.724612][ T9980] netlink: 'syz.0.1299': attribute type 9 has an invalid length.
[  214.732199][ T9954] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  214.763578][ T9980] netlink: 'syz.0.1299': attribute type 6 has an invalid length.
[  214.798311][ T9980] netlink: 'syz.0.1299': attribute type 7 has an invalid length.
[  214.829362][ T9980] netlink: 'syz.0.1299': attribute type 8 has an invalid length.
[  215.052681][ T9954] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  215.101258][ T9954] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  215.119855][ T9954] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  215.151275][ T9954] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  215.240905][ T9989] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  215.554600][T10000] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  215.817115][T10004] ieee802154 phy0 wpan0: encryption failed: -22
[  215.836197][T10006] ieee802154 phy0 wpan0: encryption failed: -22
[  215.846000][T10004] ieee802154 phy0 wpan0: encryption failed: -22
[  215.857846][T10006] ieee802154 phy0 wpan0: encryption failed: -22
[  215.902857][T10009] netlink: 'syz.1.1307': attribute type 9 has an invalid length.
[  215.927190][T10009] netlink: 'syz.1.1307': attribute type 6 has an invalid length.
[  215.988471][T10009] netlink: 'syz.1.1307': attribute type 7 has an invalid length.
[  216.071489][T10011] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1310'.
[  216.085301][T10011] tipc: Invalid UDP bearer configuration
[  216.085359][T10011] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  216.167124][T10015] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  216.253280][T10022] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1315'.
[  216.332444][T10024] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  216.507705][T10034] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  216.700176][T10040] netlink: 184 bytes leftover after parsing attributes in process `syz.4.1322'.
[  216.826834][T10048] ieee802154 phy0 wpan0: encryption failed: -22
[  216.835336][T10048] ieee802154 phy0 wpan0: encryption failed: -22
[  217.011834][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  217.165033][T10060] x_tables: duplicate underflow at hook 1
[  217.388258][T10066] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  217.570186][T10070] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1335'.
[  217.597748][T10070] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1335'.
[  217.618095][T10072] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  217.724343][T10077] IPVS: set_ctl: invalid protocol: 60 172.20.20.187:20004
[  217.778912][T10079] validate_nla: 5 callbacks suppressed
[  217.778929][T10079] netlink: 'syz.3.1339': attribute type 2 has an invalid length.
[  217.879537][T10081] ieee802154 phy0 wpan0: encryption failed: -22
[  217.897329][T10085] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1342'.
[  217.898720][T10081] ieee802154 phy0 wpan0: encryption failed: -22
[  218.125033][T10095] FAULT_INJECTION: forcing a failure.
[  218.125033][T10095] name failslab, interval 1, probability 0, space 0, times 0
[  218.160413][T10095] CPU: 0 UID: 0 PID: 10095 Comm: syz.3.1346 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  218.160437][T10095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  218.160448][T10095] Call Trace:
[  218.160454][T10095]  <TASK>
[  218.160461][T10095]  dump_stack_lvl+0x241/0x360
[  218.160488][T10095]  ? __pfx_dump_stack_lvl+0x10/0x10
[  218.160505][T10095]  ? __pfx__printk+0x10/0x10
[  218.160535][T10095]  should_fail_ex+0x40a/0x550
[  218.160563][T10095]  should_failslab+0xac/0x100
[  218.160585][T10095]  ? skb_clone+0x20c/0x390
[  218.160602][T10095]  kmem_cache_alloc_noprof+0x70/0x380
[  218.160629][T10095]  skb_clone+0x20c/0x390
[  218.160650][T10095]  __netlink_deliver_tap+0x3c4/0x7f0
[  218.160684][T10095]  ? netlink_deliver_tap+0x2e/0x1b0
[  218.160703][T10095]  netlink_deliver_tap+0x19d/0x1b0
[  218.160725][T10095]  netlink_unicast+0x7c4/0x990
[  218.160753][T10095]  ? __pfx_netlink_unicast+0x10/0x10
[  218.160770][T10095]  ? __virt_addr_valid+0x45f/0x530
[  218.160787][T10095]  ? __phys_addr_symbol+0x2f/0x70
[  218.160802][T10095]  ? __check_object_size+0x47a/0x730
[  218.160826][T10095]  netlink_sendmsg+0x8de/0xcb0
[  218.160860][T10095]  ? __pfx_netlink_sendmsg+0x10/0x10
[  218.160885][T10095]  ? aa_sock_msg_perm+0x91/0x160
[  218.160913][T10095]  ? __pfx_netlink_sendmsg+0x10/0x10
[  218.160932][T10095]  __sock_sendmsg+0x221/0x270
[  218.160955][T10095]  ____sys_sendmsg+0x53a/0x860
[  218.160980][T10095]  ? __pfx_____sys_sendmsg+0x10/0x10
[  218.160996][T10095]  ? __fget_files+0x2a/0x410
[  218.161020][T10095]  ? __fget_files+0x2a/0x410
[  218.161049][T10095]  __sys_sendmsg+0x269/0x350
[  218.161080][T10095]  ? __pfx___sys_sendmsg+0x10/0x10
[  218.161110][T10095]  ? do_sys_openat2+0x17a/0x1d0
[  218.161157][T10095]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  218.161186][T10095]  ? do_syscall_64+0x100/0x230
[  218.161204][T10095]  ? do_syscall_64+0xb6/0x230
[  218.161224][T10095]  do_syscall_64+0xf3/0x230
[  218.161241][T10095]  ? clear_bhb_loop+0x35/0x90
[  218.161263][T10095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.161281][T10095] RIP: 0033:0x7f6fab38d169
[  218.161296][T10095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.161309][T10095] RSP: 002b:00007f6fac299038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  218.161326][T10095] RAX: ffffffffffffffda RBX: 00007f6fab5a5fa0 RCX: 00007f6fab38d169
[  218.161338][T10095] RDX: 0000000000044010 RSI: 0000400000000580 RDI: 0000000000000003
[  218.161348][T10095] RBP: 00007f6fac299090 R08: 0000000000000000 R09: 0000000000000000
[  218.161357][T10095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  218.161366][T10095] R13: 0000000000000000 R14: 00007f6fab5a5fa0 R15: 00007ffe572fe808
[  218.161392][T10095]  </TASK>
[  218.580792][T10100] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  218.922651][T10106] lo speed is unknown, defaulting to 1000
[  218.928791][T10106] lo speed is unknown, defaulting to 1000
[  218.944874][T10106] lo speed is unknown, defaulting to 1000
[  218.995110][T10106] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  219.026212][T10106] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  219.086505][T10116] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  219.108293][T10106] lo speed is unknown, defaulting to 1000
[  219.135685][T10106] lo speed is unknown, defaulting to 1000
[  219.146795][T10106] lo speed is unknown, defaulting to 1000
[  219.165580][T10106] lo speed is unknown, defaulting to 1000
[  219.176023][T10106] lo speed is unknown, defaulting to 1000
[  219.183302][T10106] lo speed is unknown, defaulting to 1000
[  219.237376][T10120] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1352'.
[  219.350350][T10122] netlink: 'syz.1.1353': attribute type 2 has an invalid length.
[  219.466184][T10126] ieee802154 phy0 wpan0: encryption failed: -22
[  219.474961][T10126] ieee802154 phy0 wpan0: encryption failed: -22
[  219.522490][T10130] FAULT_INJECTION: forcing a failure.
[  219.522490][T10130] name failslab, interval 1, probability 0, space 0, times 0
[  219.540527][T10130] CPU: 1 UID: 0 PID: 10130 Comm: syz.1.1356 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  219.540555][T10130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  219.540565][T10130] Call Trace:
[  219.540571][T10130]  <TASK>
[  219.540577][T10130]  dump_stack_lvl+0x241/0x360
[  219.540603][T10130]  ? __pfx_dump_stack_lvl+0x10/0x10
[  219.540619][T10130]  ? __pfx__printk+0x10/0x10
[  219.540635][T10130]  ? __kmalloc_cache_noprof+0x48/0x390
[  219.540656][T10130]  ? __pfx___might_resched+0x10/0x10
[  219.540680][T10130]  should_fail_ex+0x40a/0x550
[  219.540706][T10130]  should_failslab+0xac/0x100
[  219.540726][T10130]  __kmalloc_cache_noprof+0x70/0x390
[  219.540743][T10130]  ? dev_ethtool+0x13d/0x1d70
[  219.540762][T10130]  dev_ethtool+0x13d/0x1d70
[  219.540784][T10130]  ? __pfx_lock_acquire+0x10/0x10
[  219.540805][T10130]  ? dev_load+0x21/0x1f0
[  219.540824][T10130]  ? __pfx_dev_ethtool+0x10/0x10
[  219.540846][T10130]  ? tomoyo_path_number_perm+0x5dd/0x770
[  219.540876][T10130]  ? dev_load+0x21/0x1f0
[  219.540895][T10130]  dev_ioctl+0x785/0x1340
[  219.540916][T10130]  sock_do_ioctl+0x240/0x460
[  219.540939][T10130]  ? __pfx_sock_do_ioctl+0x10/0x10
[  219.540974][T10130]  sock_ioctl+0x626/0x8e0
[  219.540995][T10130]  ? __pfx_sock_ioctl+0x10/0x10
[  219.541013][T10130]  ? __fget_files+0x2a/0x410
[  219.541047][T10130]  ? __fget_files+0x2a/0x410
[  219.541070][T10130]  ? __pfx_sock_ioctl+0x10/0x10
[  219.541089][T10130]  __se_sys_ioctl+0xf5/0x170
[  219.541109][T10130]  do_syscall_64+0xf3/0x230
[  219.541127][T10130]  ? clear_bhb_loop+0x35/0x90
[  219.541151][T10130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.541169][T10130] RIP: 0033:0x7f9ab178d169
[  219.541187][T10130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.541199][T10130] RSP: 002b:00007f9ab2566038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  219.541217][T10130] RAX: ffffffffffffffda RBX: 00007f9ab19a5fa0 RCX: 00007f9ab178d169
[  219.541228][T10130] RDX: 00004000000001c0 RSI: 0000000000008946 RDI: 0000000000000003
[  219.541238][T10130] RBP: 00007f9ab2566090 R08: 0000000000000000 R09: 0000000000000000
[  219.541247][T10130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.541256][T10130] R13: 0000000000000000 R14: 00007f9ab19a5fa0 R15: 00007ffcbf3ec068
[  219.541279][T10130]  </TASK>
[  219.919848][T10138] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  220.255572][T10153] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  220.324190][T10158] syz_tun: entered allmulticast mode
[  220.404343][T10154] syz_tun: left allmulticast mode
[  220.434071][T10145] lo speed is unknown, defaulting to 1000
[  220.541975][T10163] netlink: 'syz.2.1367': attribute type 2 has an invalid length.
[  220.613940][T10167] ieee802154 phy0 wpan0: encryption failed: -22
[  220.620844][T10167] ieee802154 phy0 wpan0: encryption failed: -22
[  220.952722][T10178] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1372'.
[  221.175842][T10191] netlink: 'syz.4.1378': attribute type 2 has an invalid length.
[  221.189464][T10185] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  221.207185][T10190] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  221.377693][T10199] ieee802154 phy0 wpan0: encryption failed: -22
[  221.401783][T10199] ieee802154 phy0 wpan0: encryption failed: -22
[  221.415832][T10201] ieee802154 phy0 wpan0: encryption failed: -22
[  221.428024][T10201] ieee802154 phy0 wpan0: encryption failed: -22
[  221.724500][T10212] syzkaller0: entered promiscuous mode
[  221.730027][T10212] syzkaller0: entered allmulticast mode
[  221.811120][T10215] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1386'.
[  224.037452][T10197] lo speed is unknown, defaulting to 1000
[  224.218207][T10222] ieee802154 phy0 wpan0: encryption failed: -22
[  224.292925][T10224] netlink: 'syz.4.1389': attribute type 2 has an invalid length.
[  224.339678][T10226] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1391'.
[  224.396523][T10228] ieee802154 phy0 wpan0: encryption failed: -22
[  224.403457][T10228] ieee802154 phy0 wpan0: encryption failed: -22
[  224.648545][T10237] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1396'.
[  224.684040][T10238] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1397'.
[  224.735905][T10240] netlink: 34 bytes leftover after parsing attributes in process `syz.3.1397'.
[  224.784998][T10238] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1397'.
[  224.814881][T10239] 8021q: adding VLAN 0 to HW filter on device bond0
[  224.860874][T10239] 8021q: adding VLAN 0 to HW filter on device team0
[  224.910711][T10239] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  224.974290][T10245] netlink: 'syz.0.1398': attribute type 9 has an invalid length.
[  224.998464][T10245] netlink: 'syz.0.1398': attribute type 6 has an invalid length.
[  225.133451][T10250] netlink: 184 bytes leftover after parsing attributes in process `syz.1.1399'.
[  225.275608][T10256] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  225.299812][T10261] lo speed is unknown, defaulting to 1000
[  225.327508][T10263] ieee802154 phy0 wpan0: encryption failed: -22
[  225.417828][T10266] netlink: 'syz.1.1405': attribute type 2 has an invalid length.
[  225.555734][T10271] ieee802154 phy0 wpan0: encryption failed: -22
[  225.591683][T10271] ieee802154 phy0 wpan0: encryption failed: -22
[  225.871754][T10282] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1413'.
[  226.090260][T10285] bridge0: port 2(bridge_slave_1) entered disabled state
[  226.097946][T10285] bridge0: port 1(bridge_slave_0) entered disabled state
[  226.213939][T10300] netlink: 'syz.4.1417': attribute type 8 has an invalid length.
[  226.245467][T10285] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  226.275116][T10285] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  226.361638][T10285] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.372735][T10285] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.382880][T10285] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.392714][T10285] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.403325][T10304] ieee802154 phy0 wpan0: encryption failed: -22
[  226.487228][T10306] netlink: 'syz.4.1419': attribute type 2 has an invalid length.
[  226.742897][ T9978] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  226.746102][T10294] 8021q: adding VLAN 0 to HW filter on device bond0
[  226.781818][T10294] 8021q: adding VLAN 0 to HW filter on device team0
[  226.854330][T10294] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  226.881763][ T9458] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  227.144083][T10320] ieee802154 phy0 wpan0: encryption failed: -22
[  227.195942][T10320] ieee802154 phy0 wpan0: encryption failed: -22
[  227.261554][ T5836] Bluetooth: hci4: command 0x0405 tx timeout
[  227.277564][T10329] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1427'.
[  227.353619][T10311] lo speed is unknown, defaulting to 1000
[  227.484646][T10335] ieee802154 phy0 wpan0: encryption failed: -22
[  227.507460][T10335] ieee802154 phy0 wpan0: encryption failed: -22
[  227.572996][T10339] netlink: 'syz.2.1431': attribute type 2 has an invalid length.
[  227.703960][T10345] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  227.749504][T10347] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1434'.
[  227.960717][T10356] bond0: (slave 
0

): Releasing backup interface
[  227.982048][T10356] 

: left promiscuous mode
[  227.982238][T10361] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1439'.
[  228.000225][T10356] bond0: (slave bond_slave_1): Releasing backup interface
[  228.047227][T10356] bond_slave_1: left promiscuous mode
[  228.105141][T10356] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  228.126391][T10365] ieee802154 phy0 wpan0: encryption failed: -22
[  228.142112][T10356] team0: Port device team_slave_0 removed
[  228.165531][T10365] ieee802154 phy0 wpan0: encryption failed: -22
[  228.177767][T10356] team0: Failed to send options change via netlink (err -105)
[  228.183953][T10368] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1441'.
[  228.198069][T10356] team0: Failed to send port change of device team_slave_1 via netlink (err -105)
[  228.229801][T10356] team0: Port device team_slave_1 removed
[  228.253754][T10356] batman_adv: batadv0: Removing interface: batadv_slave_0
[  228.278816][T10356] batman_adv: batadv0: Removing interface: batadv_slave_1
[  228.327579][   T12] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  228.566453][T10377] netlink: 'syz.0.1445': attribute type 2 has an invalid length.
[  228.639457][T10379] FAULT_INJECTION: forcing a failure.
[  228.639457][T10379] name failslab, interval 1, probability 0, space 0, times 0
[  228.695152][T10379] CPU: 1 UID: 0 PID: 10379 Comm: syz.3.1446 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  228.695181][T10379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  228.695191][T10379] Call Trace:
[  228.695196][T10379]  <TASK>
[  228.695203][T10379]  dump_stack_lvl+0x241/0x360
[  228.695230][T10379]  ? __pfx_dump_stack_lvl+0x10/0x10
[  228.695248][T10379]  ? __pfx__printk+0x10/0x10
[  228.695267][T10379]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  228.695288][T10379]  ? __pfx___might_resched+0x10/0x10
[  228.695312][T10379]  should_fail_ex+0x40a/0x550
[  228.695338][T10379]  should_failslab+0xac/0x100
[  228.695360][T10379]  __kmalloc_node_noprof+0xe1/0x4d0
[  228.695379][T10379]  ? __kvmalloc_node_noprof+0x72/0x190
[  228.695403][T10379]  __kvmalloc_node_noprof+0x72/0x190
[  228.695424][T10379]  bpf_test_run_xdp_live+0x290/0x2220
[  228.695445][T10379]  ? __pfx_lock_release+0x10/0x10
[  228.695469][T10379]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  228.695485][T10379]  ? __pfx___might_resched+0x10/0x10
[  228.695505][T10379]  ? __mutex_unlock_slowpath+0x227/0x800
[  228.695529][T10379]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  228.695546][T10379]  ? synchronize_rcu+0x11b/0x360
[  228.695562][T10379]  ? __pfx_synchronize_rcu+0x10/0x10
[  228.695609][T10379]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  228.695630][T10379]  ? 0xffffffffa0000954
[  228.695643][T10379]  ? 0xffffffffa0002020
[  228.695671][T10379]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  228.695704][T10379]  ? _copy_from_user+0x95/0xb0
[  228.695724][T10379]  ? bpf_test_init+0x137/0x160
[  228.695740][T10379]  ? xdp_convert_md_to_buff+0x5b/0x330
[  228.695762][T10379]  bpf_prog_test_run_xdp+0x805/0x11e0
[  228.695788][T10379]  ? __pfx_lock_release+0x10/0x10
[  228.695818][T10379]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  228.695840][T10379]  ? __fget_files+0x2a/0x410
[  228.695865][T10379]  ? __fget_files+0x2a/0x410
[  228.695889][T10379]  ? fput+0x21b/0x290
[  228.695908][T10379]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  228.695930][T10379]  bpf_prog_test_run+0x2e4/0x360
[  228.695953][T10379]  __sys_bpf+0x487/0x820
[  228.695976][T10379]  ? __pfx___sys_bpf+0x10/0x10
[  228.696006][T10379]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  228.696030][T10379]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  228.696052][T10379]  ? do_syscall_64+0x100/0x230
[  228.696073][T10379]  __x64_sys_bpf+0x7c/0x90
[  228.696093][T10379]  do_syscall_64+0xf3/0x230
[  228.696111][T10379]  ? clear_bhb_loop+0x35/0x90
[  228.696133][T10379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.696153][T10379] RIP: 0033:0x7f6fab38d169
[  228.696167][T10379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.696182][T10379] RSP: 002b:00007f6fac299038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  228.696201][T10379] RAX: ffffffffffffffda RBX: 00007f6fab5a5fa0 RCX: 00007f6fab38d169
[  228.696213][T10379] RDX: 0000000000000050 RSI: 0000400000000600 RDI: 000000000000000a
[  228.696223][T10379] RBP: 00007f6fac299090 R08: 0000000000000000 R09: 0000000000000000
[  228.696234][T10379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  228.696243][T10379] R13: 0000000000000000 R14: 00007f6fab5a5fa0 R15: 00007ffe572fe808
[  228.696268][T10379]  </TASK>
[  228.760718][T10382] netlink: 'syz.0.1448': attribute type 39 has an invalid length.
[  229.154687][T10394] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1451'.
[  229.210962][T10392] netlink: 1280 bytes leftover after parsing attributes in process `syz.1.1451'.
[  229.300405][T10398] ieee802154 phy0 wpan0: encryption failed: -22
[  229.331790][   T11] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  229.341745][T10398] ieee802154 phy0 wpan0: encryption failed: -22
[  229.360057][   T11] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  229.459671][T10403] netlink: 596 bytes leftover after parsing attributes in process `syz.0.1455'.
[  229.571593][ T9975] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  229.664433][T10406] lo speed is unknown, defaulting to 1000
[  229.719824][T10413] netlink: 'syz.2.1459': attribute type 2 has an invalid length.
[  229.738444][T10410] lo speed is unknown, defaulting to 1000
[  229.813750][T10416] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  229.887719][T10421] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1462'.
[  230.152041][    T8] IPVS: starting estimator thread 0...
[  230.241471][T10434] IPVS: using max 23 ests per chain, 55200 per kthread
[  230.534798][T10443] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.1464'.
[  230.550643][T10443] netlink: zone id is out of range
[  230.560365][T10443] netlink: get zone limit has 8 unknown bytes
[  230.575920][T10447] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1466'.
[  230.677427][T10450] ieee802154 phy0 wpan0: encryption failed: -22
[  230.697215][T10450] ieee802154 phy0 wpan0: encryption failed: -22
[  230.825452][T10451] lo speed is unknown, defaulting to 1000
[  230.978737][T10462] netlink: 'syz.4.1473': attribute type 2 has an invalid length.
[  231.141918][   T12] IPVS: stop unused estimator thread 0...
[  231.395834][T10481] IPVS: Error connecting to the multicast addr
[  231.670473][T10488] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  231.718284][T10491] ieee802154 phy0 wpan0: encryption failed: -22
[  231.732219][T10491] ieee802154 phy0 wpan0: encryption failed: -22
[  231.784695][T10494] ieee802154 phy0 wpan0: encryption failed: -22
[  231.802180][T10468] lo speed is unknown, defaulting to 1000
[  231.998600][T10501] netlink: 'syz.2.1485': attribute type 2 has an invalid length.
[  232.016645][T10502] ieee802154 phy0 wpan0: encryption failed: -22
[  232.602826][T10523] Timeout policy `syz0' can only be used by L3 protocol number 0
[  232.612572][T10525] ieee802154 phy0 wpan0: encryption failed: -22
[  232.619458][T10525] ieee802154 phy0 wpan0: encryption failed: -22
[  232.739642][T10530] ieee802154 phy0 wpan0: encryption failed: -22
[  232.770488][T10531] netlink: 'syz.3.1497': attribute type 2 has an invalid length.
[  233.171430][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  233.272075][T10550] __nla_validate_parse: 3 callbacks suppressed
[  233.272094][T10550] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1509'.
[  233.319976][T10550] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1509'.
[  233.343949][T10553] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  233.351836][T10550] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1509'.
[  233.388880][T10550] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  233.460115][T10560] ieee802154 phy0 wpan0: encryption failed: -22
[  233.474037][T10560] ieee802154 phy0 wpan0: encryption failed: -22
[  233.578998][T10538] lo speed is unknown, defaulting to 1000
[  233.650719][T10574] netlink: 'syz.2.1513': attribute type 2 has an invalid length.
[  233.675290][T10577] ieee802154 phy0 wpan0: encryption failed: -22
[  233.932572][T10584] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1517'.
[  233.992243][T10591] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1516'.
[  234.012449][T10591] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1516'.
[  234.031141][T10591] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1516'.
[  234.048302][T10591] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1516'.
[  234.343671][T10607] netlink: 830 bytes leftover after parsing attributes in process `syz.1.1521'.
[  234.412982][T10611] ieee802154 phy0 wpan0: encryption failed: -22
[  234.419866][T10611] ieee802154 phy0 wpan0: encryption failed: -22
[  234.568053][T10616] netlink: 'syz.0.1527': attribute type 2 has an invalid length.
[  234.608770][T10618] ieee802154 phy0 wpan0: encryption failed: -22
[  234.832520][T10626] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  235.130447][T10635] lo speed is unknown, defaulting to 1000
[  235.232640][T10642] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1534'.
[  235.261936][T10644] ieee802154 phy0 wpan0: encryption failed: -22
[  235.270209][T10644] ieee802154 phy0 wpan0: encryption failed: -22
[  235.275545][T10620] lo speed is unknown, defaulting to 1000
[  235.385204][T10648] netlink: 'syz.4.1539': attribute type 2 has an invalid length.
[  235.543653][T10654] ieee802154 phy0 wpan0: encryption failed: -22
[  235.551565][T10641] openvswitch: netlink: Missing key (keys=40, expected=80)
[  235.571348][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  235.856855][T10663] ip6tnl1: entered promiscuous mode
[  235.863365][T10663] ip6tnl1: entered allmulticast mode
[  235.899250][T10671] C: renamed from team_slave_0
[  235.902289][T10670] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  235.936041][T10671] netlink: 'syz.2.1548': attribute type 1 has an invalid length.
[  235.959639][T10671] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  236.059971][T10676] xt_TCPMSS: Only works on TCP SYN packets
[  236.163226][T10685] ieee802154 phy0 wpan0: encryption failed: -22
[  236.181998][T10686] can-isotp: isotp_sendmsg: can_send_ret -ENETDOWN
[  236.189257][T10685] ieee802154 phy0 wpan0: encryption failed: -22
[  236.259234][T10689] netlink: 'syz.1.1553': attribute type 2 has an invalid length.
[  236.428876][T10699] ieee802154 phy0 wpan0: encryption failed: -22
[  236.821926][T10691] lo speed is unknown, defaulting to 1000
[  237.168549][T10727] RDS: rds_bind could not find a transport for 100:806:aaaa:aaaa:aaaa::, load rds_tcp or rds_rdma?
[  237.288880][T10729] ieee802154 phy0 wpan0: encryption failed: -22
[  237.321866][T10729] ieee802154 phy0 wpan0: encryption failed: -22
[  237.374967][T10731] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  237.386703][T10733] netlink: 'syz.2.1568': attribute type 2 has an invalid length.
[  237.759834][T10751] ieee802154 phy0 wpan0: encryption failed: -22
[  237.850131][T10755] ieee802154 phy0 wpan0: encryption failed: -22
[  237.866036][T10755] ieee802154 phy0 wpan0: encryption failed: -22
[  237.894952][T10756] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  238.213276][T10767] netlink: 'syz.1.1580': attribute type 2 has an invalid length.
[  238.314672][T10774] ieee802154 phy0 wpan0: encryption failed: -22
[  238.344203][T10774] ieee802154 phy0 wpan0: encryption failed: -22
[  238.367271][T10742] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  238.386136][T10776] lo speed is unknown, defaulting to 1000
[  238.521619][T10784] ieee802154 phy0 wpan0: encryption failed: -22
[  238.740835][T10789] x_tables: duplicate underflow at hook 2
[  238.865790][T10793] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  238.910938][T10797] ax25_connect(): syz.1.1593 uses autobind, please contact jreuter@yaina.de
[  239.073889][T10807] netlink: 'syz.4.1595': attribute type 2 has an invalid length.
[  239.263485][T10815] ieee802154 phy0 wpan0: encryption failed: -22
[  239.276317][T10815] ieee802154 phy0 wpan0: encryption failed: -22
[  239.368820][T10817] ieee802154 phy0 wpan0: encryption failed: -22
[  239.497400][T10826] bridge0: port 1(bridge_slave_0) entered disabled state
[  239.521828][ T5912] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  239.582219][T10826] bridge_slave_1: left allmulticast mode
[  239.587925][T10826] bridge_slave_1: left promiscuous mode
[  239.622465][T10833] netlink: 'syz.1.1607': attribute type 2 has an invalid length.
[  239.648636][T10826] bridge0: port 2(bridge_slave_1) entered disabled state
[  239.714148][T10826] bond0: (slave bond_slave_0): Releasing backup interface
[  239.721710][ T5912] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  239.760209][T10826] bond0: (slave bond_slave_1): Releasing backup interface
[  239.802424][T10826] team0: Port device team_slave_0 removed
[  239.815600][T10846] __nla_validate_parse: 9 callbacks suppressed
[  239.815617][T10846] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1604'.
[  239.831993][T10826] team0: Port device team_slave_1 removed
[  239.838651][T10826] batman_adv: batadv0: Removing interface: batadv_slave_0
[  239.866784][T10826] batman_adv: batadv0: Removing interface: batadv_slave_1
[  239.908636][T10826] bond1: (slave ip6gretap1): Releasing active interface
[  239.917688][T10826] bond3: left allmulticast mode
[  239.922833][T10826] bond3: left promiscuous mode
[  239.928025][T10826] bridge0: port 3(bond3) entered disabled state
[  239.968916][T10847] ipvlan0: entered promiscuous mode
[  240.012840][T10847] ipvlan0: left promiscuous mode
[  240.084181][T10853] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  240.421487][T10867] ieee802154 phy0 wpan0: encryption failed: -22
[  240.443503][T10867] ieee802154 phy0 wpan0: encryption failed: -22
[  240.589087][T10860] infiniband syz1: set down
[  240.627407][T10860] infiniband syz1: added team_slave_0
[  240.637144][T10878] ieee802154 phy0 wpan0: encryption failed: -22
[  240.679508][T10880] netlink: 'syz.1.1619': attribute type 2 has an invalid length.
[  240.788282][T10860] RDS/IB: syz1: added
[  240.865893][T10860] smc: adding ib device syz1 with port count 1
[  240.944996][T10860] smc:    ib device syz1 port 1 has pnetid 
[  240.981035][T10893] netlink: 'syz.0.1620': attribute type 10 has an invalid length.
[  240.993234][T10893] veth1_macvtap: left promiscuous mode
[  241.005030][T10893] team0: Device veth1_macvtap failed to register rx_handler
[  241.331539][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  241.404927][T10897] FAULT_INJECTION: forcing a failure.
[  241.404927][T10897] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  241.431614][T10897] CPU: 0 UID: 0 PID: 10897 Comm: syz.1.1624 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  241.431642][T10897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  241.431652][T10897] Call Trace:
[  241.431658][T10897]  <TASK>
[  241.431666][T10897]  dump_stack_lvl+0x241/0x360
[  241.431692][T10897]  ? __pfx_dump_stack_lvl+0x10/0x10
[  241.431710][T10897]  ? __pfx__printk+0x10/0x10
[  241.431729][T10897]  ? __pfx_lock_release+0x10/0x10
[  241.431763][T10897]  should_fail_ex+0x40a/0x550
[  241.431790][T10897]  _copy_to_iter+0x427/0x1c40
[  241.431822][T10897]  ? __pfx__copy_to_iter+0x10/0x10
[  241.431843][T10897]  ? __virt_addr_valid+0x183/0x530
[  241.431858][T10897]  ? __virt_addr_valid+0x183/0x530
[  241.431872][T10897]  ? __virt_addr_valid+0x45f/0x530
[  241.431889][T10897]  ? __check_object_size+0x47a/0x730
[  241.431914][T10897]  __skb_datagram_iter+0x107/0x900
[  241.431935][T10897]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  241.431955][T10897]  ? __pfx___might_resched+0x10/0x10
[  241.431979][T10897]  skb_copy_datagram_iter+0xd1/0x250
[  241.432001][T10897]  netlink_recvmsg+0x2d1/0x11a0
[  241.432031][T10897]  ? __pfx_netlink_recvmsg+0x10/0x10
[  241.432052][T10897]  ? __kmalloc_noprof+0x2a5/0x4c0
[  241.432073][T10897]  ? __pfx_aa_sk_perm+0x10/0x10
[  241.432099][T10897]  ? aa_sock_msg_perm+0x91/0x160
[  241.432122][T10897]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  241.432141][T10897]  ? __pfx_netlink_recvmsg+0x10/0x10
[  241.432164][T10897]  sock_recvmsg+0x22f/0x280
[  241.432188][T10897]  ____sys_recvmsg+0x1c6/0x480
[  241.432214][T10897]  ? __pfx_____sys_recvmsg+0x10/0x10
[  241.432252][T10897]  do_recvmmsg+0x426/0xab0
[  241.432292][T10897]  ? __pfx_do_recvmmsg+0x10/0x10
[  241.432328][T10897]  ? ksys_write+0x22a/0x2b0
[  241.432345][T10897]  ? __pfx_lock_release+0x10/0x10
[  241.432372][T10897]  ? sb_end_write+0xe9/0x1c0
[  241.432393][T10897]  ? vfs_write+0x7fa/0xd10
[  241.432412][T10897]  ? __mutex_unlock_slowpath+0x227/0x800
[  241.432440][T10897]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  241.432457][T10897]  ? __fget_files+0x2a/0x410
[  241.432492][T10897]  __x64_sys_recvmmsg+0x199/0x250
[  241.432512][T10897]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  241.432531][T10897]  ? do_syscall_64+0x100/0x230
[  241.432552][T10897]  ? do_syscall_64+0xb6/0x230
[  241.432572][T10897]  do_syscall_64+0xf3/0x230
[  241.432590][T10897]  ? clear_bhb_loop+0x35/0x90
[  241.432614][T10897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.432634][T10897] RIP: 0033:0x7f9ab178d169
[  241.432649][T10897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.432663][T10897] RSP: 002b:00007f9ab2566038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  241.432681][T10897] RAX: ffffffffffffffda RBX: 00007f9ab19a5fa0 RCX: 00007f9ab178d169
[  241.432693][T10897] RDX: 0000000000000001 RSI: 00004000000037c0 RDI: 0000000000000003
[  241.432704][T10897] RBP: 00007f9ab2566090 R08: 0000000000000000 R09: 0000000000000000
[  241.432714][T10897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.432724][T10897] R13: 0000000000000000 R14: 00007f9ab19a5fa0 R15: 00007ffcbf3ec068
[  241.432750][T10897]  </TASK>
[  241.831836][T10900] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1625'.
[  241.871036][T10900] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1625'.
[  241.889896][T10900] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  242.096395][T10905] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  242.320171][T10912] ieee802154 phy0 wpan0: encryption failed: -22
[  242.330406][T10912] ieee802154 phy0 wpan0: encryption failed: -22
[  242.354660][T10914] ieee802154 phy0 wpan0: encryption failed: -22
[  242.435197][T10916] netlink: 'syz.4.1632': attribute type 2 has an invalid length.
[  242.556902][T10924] netlink: 188 bytes leftover after parsing attributes in process `syz.4.1636'.
[  242.576801][T10924] netlink: 'syz.4.1636': attribute type 1 has an invalid length.
[  242.677570][T10929] sctp: [Deprecated]: syz.0.1637 (pid 10929) Use of int in max_burst socket option.
[  242.677570][T10929] Use struct sctp_assoc_value instead
[  242.758383][T10935] netlink: 'syz.0.1637': attribute type 10 has an invalid length.
[  242.799141][T10935] veth0_vlan: left promiscuous mode
[  242.815346][T10935] veth0_vlan: entered promiscuous mode
[  242.838784][T10935] team0: Device veth0_vlan failed to register rx_handler
[  243.108602][T10945] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1644'.
[  243.196195][T10948] ieee802154 phy0 wpan0: encryption failed: -22
[  243.210152][T10948] ieee802154 phy0 wpan0: encryption failed: -22
[  243.330982][T10928] lo speed is unknown, defaulting to 1000
[  243.450253][T10954] ieee802154 phy0 wpan0: encryption failed: -22
[  243.635876][T10960] netlink: 'syz.0.1647': attribute type 2 has an invalid length.
[  243.715377][T10958] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  243.729490][T10964] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1649'.
[  243.786780][T10964] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1649'.
[  243.839157][T10964] netlink: 'syz.3.1649': attribute type 1 has an invalid length.
[  243.915813][T10968] syzkaller1: entered promiscuous mode
[  243.944843][T10968] syzkaller1: entered allmulticast mode
[  244.406410][T10987] Cannot find del_set index 2416 as target
[  244.480872][T10989] ieee802154 phy0 wpan0: encryption failed: -22
[  244.503732][T10989] ieee802154 phy0 wpan0: encryption failed: -22
[  244.574545][T10996] ieee802154 phy0 wpan0: encryption failed: -22
[  244.646818][T10998] netlink: 'syz.3.1661': attribute type 2 has an invalid length.
[  244.902809][T11011] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  244.979060][T11015] FAULT_INJECTION: forcing a failure.
[  244.979060][T11015] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  244.998488][T11015] CPU: 1 UID: 0 PID: 11015 Comm: syz.4.1668 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  244.998516][T11015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  244.998524][T11015] Call Trace:
[  244.998530][T11015]  <TASK>
[  244.998536][T11015]  dump_stack_lvl+0x241/0x360
[  244.998563][T11015]  ? __pfx_dump_stack_lvl+0x10/0x10
[  244.998581][T11015]  ? __pfx__printk+0x10/0x10
[  244.998599][T11015]  ? __pfx_lock_release+0x10/0x10
[  244.998628][T11015]  should_fail_ex+0x40a/0x550
[  244.998657][T11015]  _copy_from_user+0x2d/0xb0
[  244.998678][T11015]  copy_msghdr_from_user+0xae/0x680
[  244.998699][T11015]  ? __pfx___might_resched+0x10/0x10
[  244.998722][T11015]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  244.998748][T11015]  ? __sys_sendmmsg+0x392/0x720
[  244.998764][T11015]  ? __might_fault+0xaa/0x120
[  244.998786][T11015]  __sys_sendmmsg+0x32b/0x720
[  244.998822][T11015]  ? __pfx___sys_sendmmsg+0x10/0x10
[  244.998851][T11015]  ? __pfx_lock_release+0x10/0x10
[  244.998871][T11015]  ? kstrtouint_from_user+0x128/0x190
[  244.998909][T11015]  ? ksys_write+0x22a/0x2b0
[  244.998927][T11015]  ? __pfx_lock_release+0x10/0x10
[  244.998954][T11015]  ? sb_end_write+0xe9/0x1c0
[  244.998976][T11015]  ? vfs_write+0x7fa/0xd10
[  244.998995][T11015]  ? __mutex_unlock_slowpath+0x227/0x800
[  244.999041][T11015]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  244.999065][T11015]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  244.999089][T11015]  ? do_syscall_64+0x100/0x230
[  244.999111][T11015]  __x64_sys_sendmmsg+0xa0/0xb0
[  244.999130][T11015]  do_syscall_64+0xf3/0x230
[  244.999148][T11015]  ? clear_bhb_loop+0x35/0x90
[  244.999172][T11015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.999191][T11015] RIP: 0033:0x7fb98f38d169
[  244.999211][T11015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.999225][T11015] RSP: 002b:00007fb99029f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  244.999242][T11015] RAX: ffffffffffffffda RBX: 00007fb98f5a5fa0 RCX: 00007fb98f38d169
[  244.999255][T11015] RDX: 04924924924925c6 RSI: 0000400000000680 RDI: 0000000000000004
[  244.999266][T11015] RBP: 00007fb99029f090 R08: 0000000000000000 R09: 0000000000000000
[  244.999275][T11015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  244.999285][T11015] R13: 0000000000000000 R14: 00007fb98f5a5fa0 R15: 00007ffe01e61688
[  244.999312][T11015]  </TASK>
[  245.083896][T11018] lo speed is unknown, defaulting to 1000
[  245.428348][T11028] ieee802154 phy0 wpan0: encryption failed: -22
[  245.439543][T11028] ieee802154 phy0 wpan0: encryption failed: -22
[  245.617287][T11034] netlink: 'syz.4.1675': attribute type 2 has an invalid length.
[  245.644201][T11036] ieee802154 phy0 wpan0: encryption failed: -22
[  245.670124][T11036] ieee802154 phy0 wpan0: encryption failed: -22
[  245.743958][T11040] ieee802154 phy0 wpan0: encryption failed: -22
[  246.094829][T11058] FAULT_INJECTION: forcing a failure.
[  246.094829][T11058] name failslab, interval 1, probability 0, space 0, times 0
[  246.123568][T11058] CPU: 0 UID: 0 PID: 11058 Comm: syz.1.1682 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  246.123597][T11058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  246.123607][T11058] Call Trace:
[  246.123613][T11058]  <TASK>
[  246.123620][T11058]  dump_stack_lvl+0x241/0x360
[  246.123647][T11058]  ? __pfx_dump_stack_lvl+0x10/0x10
[  246.123665][T11058]  ? __pfx__printk+0x10/0x10
[  246.123683][T11058]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  246.123707][T11058]  ? __pfx___might_resched+0x10/0x10
[  246.123725][T11058]  ? aa_label_sk_perm+0x4f3/0x6c0
[  246.123750][T11058]  should_fail_ex+0x40a/0x550
[  246.123777][T11058]  should_failslab+0xac/0x100
[  246.123799][T11058]  kmem_cache_alloc_node_noprof+0x77/0x380
[  246.123819][T11058]  ? __alloc_skb+0x1c3/0x440
[  246.123844][T11058]  __alloc_skb+0x1c3/0x440
[  246.123864][T11058]  ? __pfx___alloc_skb+0x10/0x10
[  246.123890][T11058]  netlink_sendmsg+0x634/0xcb0
[  246.123922][T11058]  ? __pfx_netlink_sendmsg+0x10/0x10
[  246.123951][T11058]  ? aa_sock_msg_perm+0x91/0x160
[  246.123989][T11058]  ? __pfx_netlink_sendmsg+0x10/0x10
[  246.124008][T11058]  __sock_sendmsg+0x221/0x270
[  246.124032][T11058]  ____sys_sendmsg+0x53a/0x860
[  246.124057][T11058]  ? __pfx_____sys_sendmsg+0x10/0x10
[  246.124073][T11058]  ? __fget_files+0x2a/0x410
[  246.124097][T11058]  ? __fget_files+0x2a/0x410
[  246.124126][T11058]  __sys_sendmsg+0x269/0x350
[  246.124148][T11058]  ? __pfx___sys_sendmsg+0x10/0x10
[  246.124177][T11058]  ? do_sys_openat2+0x17a/0x1d0
[  246.124222][T11058]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  246.124246][T11058]  ? do_syscall_64+0x100/0x230
[  246.124268][T11058]  ? do_syscall_64+0xb6/0x230
[  246.124289][T11058]  do_syscall_64+0xf3/0x230
[  246.124306][T11058]  ? clear_bhb_loop+0x35/0x90
[  246.124330][T11058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.124350][T11058] RIP: 0033:0x7f9ab178d169
[  246.124365][T11058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  246.124378][T11058] RSP: 002b:00007f9ab2566038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  246.124396][T11058] RAX: ffffffffffffffda RBX: 00007f9ab19a5fa0 RCX: 00007f9ab178d169
[  246.124408][T11058] RDX: 16ba183637aa1df2 RSI: 00004000000087c0 RDI: 0000000000000004
[  246.124419][T11058] RBP: 00007f9ab2566090 R08: 0000000000000000 R09: 0000000000000000
[  246.124429][T11058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  246.124439][T11058] R13: 0000000000000000 R14: 00007f9ab19a5fa0 R15: 00007ffcbf3ec068
[  246.124464][T11058]  </TASK>
[  246.390067][T11063] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1683'.
[  246.402806][T11062] netlink: 'syz.4.1683': attribute type 1 has an invalid length.
[  246.430421][T11060] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  246.439925][T11062] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1683'.
[  246.494552][T11063] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1683'.
[  246.535366][T11063] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1683'.
[  246.630993][T11052] geneve0: entered allmulticast mode
[  246.694391][T11069] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  246.803081][T11076] netlink: 'syz.0.1687': attribute type 2 has an invalid length.
[  246.898871][T11079] ieee802154 phy0 wpan0: encryption failed: -22
[  246.909745][T11079] ieee802154 phy0 wpan0: encryption failed: -22
[  247.025956][T11084] ieee802154 phy0 wpan0: encryption failed: -22
[  247.182364][T11094] netlink: 'syz.3.1696': attribute type 1 has an invalid length.
[  247.263608][T11094] 8021q: adding VLAN 0 to HW filter on device bond5
[  247.283294][T11094] bond4: (slave bond5): making interface the new active one
[  247.328608][T11094] bond4: (slave bond5): Enslaving as an active interface with an up link
[  247.502940][T11108] netlink: 'syz.2.1701': attribute type 2 has an invalid length.
[  247.527579][T11110] netlink: 'syz.0.1700': attribute type 9 has an invalid length.
[  247.607621][T11116] ieee802154 phy0 wpan0: encryption failed: -22
[  247.628961][T11116] ieee802154 phy0 wpan0: encryption failed: -22
[  247.633479][T11118] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  247.859076][T11127] netlink: 'syz.0.1715': attribute type 2 has an invalid length.
[  247.893180][T11129] netlink: 412 bytes leftover after parsing attributes in process `syz.3.1705'.
[  247.899212][T11125] lo speed is unknown, defaulting to 1000
[  248.067192][T11129] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  248.104266][T11128] tipc: Resetting bearer <eth:syzkaller0>
[  248.110446][T11136] ieee802154 phy0 wpan0: encryption failed: -22
[  249.091462][ T5912] tipc: Node number set to 1576128768
[  250.569909][T11128] tipc: Disabling bearer <eth:syzkaller0>
[  250.859263][T11155] ieee802154 phy0 wpan0: encryption failed: -22
[  250.874722][T11155] ieee802154 phy0 wpan0: encryption failed: -22
[  250.882227][T11157] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1717'.
[  250.905992][T11159] netlink: 'syz.4.1718': attribute type 2 has an invalid length.
[  251.194690][T11169] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  251.226671][T11173] ieee802154 phy0 wpan0: encryption failed: -22
[  251.426630][T11181] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1724'.
[  251.442085][T11184] lo speed is unknown, defaulting to 1000
[  251.676097][T11191] sctp: [Deprecated]: syz.0.1726 (pid 11191) Use of int in max_burst socket option.
[  251.676097][T11191] Use struct sctp_assoc_value instead
[  251.694034][T11191] netlink: 'syz.0.1726': attribute type 10 has an invalid length.
[  251.723730][T11191] veth0_vlan: left promiscuous mode
[  251.752353][T11191] veth0_vlan: entered promiscuous mode
[  251.780763][T11197] ieee802154 phy0 wpan0: encryption failed: -22
[  251.787984][T11191] team0: Device veth0_vlan failed to register rx_handler
[  251.808859][T11197] ieee802154 phy0 wpan0: encryption failed: -22
[  252.056517][T11202] netlink: 'syz.2.1731': attribute type 2 has an invalid length.
[  252.066656][T11194] lo speed is unknown, defaulting to 1000
[  252.457319][T11205] lo speed is unknown, defaulting to 1000
[  252.909181][T11219] ieee802154 phy0 wpan0: encryption failed: -22
[  254.025189][T11226] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  255.425330][T11234] 8021q: VLANs not supported on ip6_vti0
[  255.889763][T11245] ieee802154 phy0 wpan0: encryption failed: -22
[  255.916104][T11245] ieee802154 phy0 wpan0: encryption failed: -22
[  255.978434][T11248] netlink: 'syz.2.1743': attribute type 2 has an invalid length.
[  256.063736][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  256.073938][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  256.111436][T11249] lo speed is unknown, defaulting to 1000
[  256.289643][T11254] ieee802154 phy0 wpan0: encryption failed: -22
[  256.333976][T11254] ieee802154 phy0 wpan0: encryption failed: -22
[  256.341657][T11254] ieee802154 phy0 wpan0: encryption failed: -22
[  256.348976][T11254] ieee802154 phy0 wpan0: encryption failed: -22
[  256.532371][T11259] ieee802154 phy0 wpan0: encryption failed: -22
[  256.636913][T11261] x_tables: duplicate underflow at hook 1
[  256.645000][T11261] sctp: [Deprecated]: syz.4.1750 (pid 11261) Use of int in maxseg socket option.
[  256.645000][T11261] Use struct sctp_assoc_value instead
[  256.691366][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  257.068823][T11274] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  257.125814][T11277] macvtap1: entered allmulticast mode
[  257.141643][T11277] batadv0: entered allmulticast mode
[  257.158221][T11277] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  257.268643][T11283] netlink: 'syz.2.1755': attribute type 2 has an invalid length.
[  257.381568][T11286] ieee802154 phy0 wpan0: encryption failed: -22
[  257.390926][T11286] ieee802154 phy0 wpan0: encryption failed: -22
[  257.537821][T11292] FAULT_INJECTION: forcing a failure.
[  257.537821][T11292] name failslab, interval 1, probability 0, space 0, times 0
[  257.608779][T11294] ieee802154 phy0 wpan0: encryption failed: -22
[  257.609416][T11292] CPU: 0 UID: 0 PID: 11292 Comm: syz.3.1759 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  257.609440][T11292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  257.609449][T11292] Call Trace:
[  257.609455][T11292]  <TASK>
[  257.609463][T11292]  dump_stack_lvl+0x241/0x360
[  257.609490][T11292]  ? __pfx_dump_stack_lvl+0x10/0x10
[  257.609507][T11292]  ? __pfx__printk+0x10/0x10
[  257.609526][T11292]  ? __kmalloc_cache_noprof+0x48/0x390
[  257.609547][T11292]  ? __pfx___might_resched+0x10/0x10
[  257.609572][T11292]  should_fail_ex+0x40a/0x550
[  257.609599][T11292]  should_failslab+0xac/0x100
[  257.609622][T11292]  __kmalloc_cache_noprof+0x70/0x390
[  257.609640][T11292]  ? hash_mac_create+0x2c0/0xf00
[  257.609663][T11292]  hash_mac_create+0x2c0/0xf00
[  257.609686][T11292]  ? __nla_parse+0x40/0x60
[  257.609704][T11292]  ? __pfx_hash_mac_create+0x10/0x10
[  257.609722][T11292]  ip_set_create+0xa78/0x1960
[  257.609741][T11292]  ? ip_set_create+0x48a/0x1960
[  257.609762][T11292]  ? __pfx_ip_set_create+0x10/0x10
[  257.609808][T11292]  ? nfnetlink_rcv_msg+0x225/0x1180
[  257.609824][T11292]  nfnetlink_rcv_msg+0xbec/0x1180
[  257.609840][T11292]  ? nfnetlink_rcv_msg+0x225/0x1180
[  257.609877][T11292]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  257.609891][T11292]  ? stack_trace_save+0x118/0x1d0
[  257.609933][T11292]  ? dev_hard_start_xmit+0x27a/0x7d0
[  257.609950][T11292]  ? __dev_queue_xmit+0x1b73/0x3f40
[  257.609965][T11292]  ? __netlink_deliver_tap+0x561/0x7f0
[  257.609985][T11292]  ? netlink_deliver_tap+0x19d/0x1b0
[  257.610003][T11292]  ? netlink_unicast+0x7c4/0x990
[  257.610018][T11292]  ? netlink_sendmsg+0x8de/0xcb0
[  257.610036][T11292]  ? __sock_sendmsg+0x221/0x270
[  257.610054][T11292]  ? ____sys_sendmsg+0x53a/0x860
[  257.610068][T11292]  ? __sys_sendmsg+0x269/0x350
[  257.610097][T11292]  netlink_rcv_skb+0x206/0x480
[  257.610118][T11292]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  257.610136][T11292]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  257.610169][T11292]  ? apparmor_capable+0x13b/0x1b0
[  257.610189][T11292]  ? bpf_lsm_capable+0x9/0x10
[  257.610209][T11292]  ? security_capable+0x7e/0x2d0
[  257.610236][T11292]  nfnetlink_rcv+0x297/0x2ab0
[  257.610257][T11292]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  257.610282][T11292]  ? __dev_queue_xmit+0x2f4/0x3f40
[  257.610301][T11292]  ? __dev_queue_xmit+0x1775/0x3f40
[  257.610317][T11292]  ? kasan_save_track+0x51/0x80
[  257.610349][T11292]  ? ____sys_sendmsg+0x53a/0x860
[  257.610368][T11292]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  257.610383][T11292]  ? __dev_queue_xmit+0x2f4/0x3f40
[  257.610404][T11292]  ? __pfx___dev_queue_xmit+0x10/0x10
[  257.610438][T11292]  ? ref_tracker_free+0x643/0x7e0
[  257.610454][T11292]  ? __asan_memcpy+0x40/0x70
[  257.610468][T11292]  ? __pfx_ref_tracker_free+0x10/0x10
[  257.610505][T11292]  ? netlink_deliver_tap+0x2e/0x1b0
[  257.610522][T11292]  ? skb_clone+0x240/0x390
[  257.610539][T11292]  ? __pfx_lock_release+0x10/0x10
[  257.610562][T11292]  ? __netlink_deliver_tap+0x7b0/0x7f0
[  257.610592][T11292]  ? netlink_deliver_tap+0x2e/0x1b0
[  257.610613][T11292]  netlink_unicast+0x7f6/0x990
[  257.610641][T11292]  ? __pfx_netlink_unicast+0x10/0x10
[  257.610658][T11292]  ? __virt_addr_valid+0x45f/0x530
[  257.610674][T11292]  ? __phys_addr_symbol+0x2f/0x70
[  257.610688][T11292]  ? __check_object_size+0x47a/0x730
[  257.610712][T11292]  netlink_sendmsg+0x8de/0xcb0
[  257.610754][T11292]  ? __pfx_netlink_sendmsg+0x10/0x10
[  257.610779][T11292]  ? aa_sock_msg_perm+0x91/0x160
[  257.610810][T11292]  ? __pfx_netlink_sendmsg+0x10/0x10
[  257.610830][T11292]  __sock_sendmsg+0x221/0x270
[  257.610853][T11292]  ____sys_sendmsg+0x53a/0x860
[  257.610878][T11292]  ? __pfx_____sys_sendmsg+0x10/0x10
[  257.610892][T11292]  ? __fget_files+0x2a/0x410
[  257.610917][T11292]  ? __fget_files+0x2a/0x410
[  257.610945][T11292]  __sys_sendmsg+0x269/0x350
[  257.610967][T11292]  ? __pfx___sys_sendmsg+0x10/0x10
[  257.610996][T11292]  ? do_sys_openat2+0x17a/0x1d0
[  257.611042][T11292]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  257.611065][T11292]  ? do_syscall_64+0x100/0x230
[  257.611086][T11292]  ? do_syscall_64+0xb6/0x230
[  257.611107][T11292]  do_syscall_64+0xf3/0x230
[  257.611124][T11292]  ? clear_bhb_loop+0x35/0x90
[  257.611147][T11292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.611166][T11292] RIP: 0033:0x7f6fab38d169
[  257.611181][T11292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.611193][T11292] RSP: 002b:00007f6fac299038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  257.611212][T11292] RAX: ffffffffffffffda RBX: 00007f6fab5a5fa0 RCX: 00007f6fab38d169
[  257.611223][T11292] RDX: 0000000000000000 RSI: 0000400000000100 RDI: 0000000000000003
[  257.611233][T11292] RBP: 00007f6fac299090 R08: 0000000000000000 R09: 0000000000000000
[  257.611243][T11292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  257.611252][T11292] R13: 0000000000000000 R14: 00007f6fab5a5fa0 R15: 00007ffe572fe808
[  257.611277][T11292]  </TASK>
[  258.189932][T11306] lo speed is unknown, defaulting to 1000
[  258.324782][T11313] netlink: 'syz.0.1766': attribute type 2 has an invalid length.
[  258.532944][T11322] FAULT_INJECTION: forcing a failure.
[  258.532944][T11322] name failslab, interval 1, probability 0, space 0, times 0
[  258.558244][T11322] CPU: 1 UID: 0 PID: 11322 Comm: syz.0.1768 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  258.558279][T11322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  258.558289][T11322] Call Trace:
[  258.558295][T11322]  <TASK>
[  258.558302][T11322]  dump_stack_lvl+0x241/0x360
[  258.558330][T11322]  ? __pfx_dump_stack_lvl+0x10/0x10
[  258.558347][T11322]  ? __pfx__printk+0x10/0x10
[  258.558365][T11322]  ? __kmalloc_cache_noprof+0x48/0x390
[  258.558388][T11322]  ? __pfx___might_resched+0x10/0x10
[  258.558411][T11322]  should_fail_ex+0x40a/0x550
[  258.558436][T11322]  should_failslab+0xac/0x100
[  258.558456][T11322]  __kmalloc_cache_noprof+0x70/0x390
[  258.558474][T11322]  ? sctp_auth_asoc_copy_shkeys+0x13b/0x580
[  258.558497][T11322]  sctp_auth_asoc_copy_shkeys+0x13b/0x580
[  258.558522][T11322]  sctp_association_new+0x15ad/0x2540
[  258.558560][T11322]  sctp_connect_new_asoc+0x2d8/0x6c0
[  258.558584][T11322]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  258.558601][T11322]  ? sctp_sendmsg+0xf1a/0x35d0
[  258.558624][T11322]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  258.558642][T11322]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  258.558668][T11322]  sctp_sendmsg+0x1f64/0x35d0
[  258.558705][T11322]  ? __pfx_sctp_sendmsg+0x10/0x10
[  258.558727][T11322]  ? aa_sk_perm+0x96d/0xab0
[  258.558763][T11322]  ? inet_sendmsg+0x330/0x390
[  258.558782][T11322]  __sock_sendmsg+0x1a6/0x270
[  258.558808][T11322]  ____sys_sendmsg+0x53a/0x860
[  258.558832][T11322]  ? __pfx_____sys_sendmsg+0x10/0x10
[  258.558847][T11322]  ? __fget_files+0x2a/0x410
[  258.558873][T11322]  ? __fget_files+0x2a/0x410
[  258.558914][T11322]  __sys_sendmmsg+0x36a/0x720
[  258.558941][T11322]  ? __pfx___sys_sendmmsg+0x10/0x10
[  258.558970][T11322]  ? __pfx_lock_release+0x10/0x10
[  258.558990][T11322]  ? kstrtouint_from_user+0x128/0x190
[  258.559036][T11322]  ? ksys_write+0x22a/0x2b0
[  258.559053][T11322]  ? __pfx_lock_release+0x10/0x10
[  258.559242][T11322]  ? sb_end_write+0xe9/0x1c0
[  258.559264][T11322]  ? vfs_write+0x7fa/0xd10
[  258.559292][T11322]  ? __mutex_unlock_slowpath+0x227/0x800
[  258.559331][T11322]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  258.559350][T11322]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  258.559369][T11322]  ? do_syscall_64+0x100/0x230
[  258.559388][T11322]  __x64_sys_sendmmsg+0xa0/0xb0
[  258.559408][T11322]  do_syscall_64+0xf3/0x230
[  258.559423][T11322]  ? clear_bhb_loop+0x35/0x90
[  258.559447][T11322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.559464][T11322] RIP: 0033:0x7f2574f8d169
[  258.559478][T11322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.559489][T11322] RSP: 002b:00007f2572df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  258.559504][T11322] RAX: ffffffffffffffda RBX: 00007f25751a5fa0 RCX: 00007f2574f8d169
[  258.559514][T11322] RDX: 0000000000000002 RSI: 0000400000000040 RDI: 0000000000000003
[  258.559522][T11322] RBP: 00007f2572df6090 R08: 0000000000000000 R09: 0000000000000000
[  258.559530][T11322] R10: 0000000004008040 R11: 0000000000000246 R12: 0000000000000001
[  258.559538][T11322] R13: 0000000000000000 R14: 00007f25751a5fa0 R15: 00007fff81b93e48
[  258.559560][T11322]  </TASK>
[  258.619567][T11326] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  258.787313][T11335] ieee802154 phy0 wpan0: encryption failed: -22
[  258.904498][T11330] netlink: 'syz.0.1770': attribute type 9 has an invalid length.
[  258.910318][T11335] ieee802154 phy0 wpan0: encryption failed: -22
[  258.956709][T11330] netlink: 'syz.0.1770': attribute type 6 has an invalid length.
[  258.968239][T11330] netlink: 'syz.0.1770': attribute type 7 has an invalid length.
[  259.019515][T11330] netlink: 'syz.0.1770': attribute type 8 has an invalid length.
[  262.163806][T11358] lo speed is unknown, defaulting to 1000
[  262.223791][T11365] ieee802154 phy0 wpan0: encryption failed: -22
[  262.357740][T11368] netlink: 'syz.1.1779': attribute type 2 has an invalid length.
[  262.465906][T11370] lo speed is unknown, defaulting to 1000
[  262.569692][T11375] ieee802154 phy0 wpan0: encryption failed: -22
[  262.584587][T11375] ieee802154 phy0 wpan0: encryption failed: -22
[  262.888875][T11378] macsec1: left promiscuous mode
[  262.894434][T11378] macsec1: left allmulticast mode
[  262.900548][T11378] veth5: left promiscuous mode
[  262.907556][T11378] veth5: left allmulticast mode
[  262.915688][T11378] macsec2: left promiscuous mode
[  262.921068][T11378] macsec2: left allmulticast mode
[  262.928182][T11378] batadv0: left allmulticast mode
[  262.933687][T11378] macvtap1: left allmulticast mode
[  263.398225][T11395] netlink: 'syz.0.1787': attribute type 2 has an invalid length.
[  263.496968][T11401] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1790'.
[  263.543737][T11402] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1790'.
[  263.573148][T11402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1790'.
[  263.611837][T11401] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1790'.
[  263.764714][T11407] netlink: 'syz.0.1792': attribute type 2 has an invalid length.
[  264.067327][T11426] lo speed is unknown, defaulting to 1000
[  264.135752][T11428] netlink: 'syz.0.1800': attribute type 16 has an invalid length.
[  264.152437][T11428] netlink: 64138 bytes leftover after parsing attributes in process `syz.0.1800'.
[  264.246649][   T29] audit: type=1107 audit(1741336959.405:4): pid=11434 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='߱��5��iBҼ?�es�Ղ�z���v��'
[  264.619115][T11455] netlink: 'syz.2.1807': attribute type 2 has an invalid length.
[  264.671954][T11456] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  265.016121][T11469] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1813'.
[  265.183240][T11475] netlink: 'syz.0.1814': attribute type 21 has an invalid length.
[  265.231449][T11475] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1814'.
[  265.724157][T11487] bridge0: entered promiscuous mode
[  265.743141][T11487] openvswitch: netlink: Tunnel attr 208 out of range max 16
[  265.762230][T11486] bridge0: left promiscuous mode
[  265.798191][T11489] netlink: 'syz.1.1820': attribute type 2 has an invalid length.
[  265.837738][T11476] lo speed is unknown, defaulting to 1000
[  265.994403][T11499] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1824'.
[  266.009987][T11499] FAULT_INJECTION: forcing a failure.
[  266.009987][T11499] name failslab, interval 1, probability 0, space 0, times 0
[  266.047591][T11499] CPU: 0 UID: 0 PID: 11499 Comm: syz.1.1824 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  266.047620][T11499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  266.047631][T11499] Call Trace:
[  266.047637][T11499]  <TASK>
[  266.047645][T11499]  dump_stack_lvl+0x241/0x360
[  266.047676][T11499]  ? __pfx_dump_stack_lvl+0x10/0x10
[  266.047694][T11499]  ? __pfx__printk+0x10/0x10
[  266.047714][T11499]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  266.047740][T11499]  ? __pfx___might_resched+0x10/0x10
[  266.047768][T11499]  should_fail_ex+0x40a/0x550
[  266.047797][T11499]  should_failslab+0xac/0x100
[  266.047821][T11499]  kmem_cache_alloc_node_noprof+0x77/0x380
[  266.047842][T11499]  ? __alloc_skb+0x1c3/0x440
[  266.047864][T11499]  __alloc_skb+0x1c3/0x440
[  266.047880][T11499]  ? rcu_is_watching+0x15/0xb0
[  266.047899][T11499]  ? __pfx___alloc_skb+0x10/0x10
[  266.047910][T11499]  ? __mutex_lock+0x397/0x1010
[  266.047937][T11499]  team_nl_send_port_list_get+0x161/0x850
[  266.047955][T11499]  ? team_nl_team_get+0x148/0x190
[  266.047969][T11499]  ? dev_get_by_index+0x23/0x2d0
[  266.047989][T11499]  ? __pfx_team_nl_send_unicast+0x10/0x10
[  266.048015][T11499]  ? __pfx_team_nl_send_port_list_get+0x10/0x10
[  266.048052][T11499]  team_nl_port_list_get_doit+0x7f/0x160
[  266.048074][T11499]  genl_rcv_msg+0xb1f/0xec0
[  266.048102][T11499]  ? __pfx_genl_rcv_msg+0x10/0x10
[  266.048150][T11499]  ? __pfx_lock_acquire+0x10/0x10
[  266.048173][T11499]  ? __pfx_team_nl_port_list_get_doit+0x10/0x10
[  266.048195][T11499]  ? __pfx___might_resched+0x10/0x10
[  266.048226][T11499]  netlink_rcv_skb+0x206/0x480
[  266.048249][T11499]  ? __pfx_genl_rcv_msg+0x10/0x10
[  266.048268][T11499]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  266.048322][T11499]  genl_rcv+0x28/0x40
[  266.048337][T11499]  netlink_unicast+0x7f6/0x990
[  266.048366][T11499]  ? __pfx_netlink_unicast+0x10/0x10
[  266.048383][T11499]  ? __virt_addr_valid+0x45f/0x530
[  266.048401][T11499]  ? __phys_addr_symbol+0x2f/0x70
[  266.048416][T11499]  ? __check_object_size+0x47a/0x730
[  266.048448][T11499]  netlink_sendmsg+0x8de/0xcb0
[  266.048483][T11499]  ? __pfx_netlink_sendmsg+0x10/0x10
[  266.048510][T11499]  ? aa_sock_msg_perm+0x91/0x160
[  266.048540][T11499]  ? __pfx_netlink_sendmsg+0x10/0x10
[  266.048559][T11499]  __sock_sendmsg+0x221/0x270
[  266.048586][T11499]  ____sys_sendmsg+0x53a/0x860
[  266.048613][T11499]  ? __pfx_____sys_sendmsg+0x10/0x10
[  266.048627][T11499]  ? __fget_files+0x2a/0x410
[  266.048653][T11499]  ? __fget_files+0x2a/0x410
[  266.048683][T11499]  __sys_sendmsg+0x269/0x350
[  266.048707][T11499]  ? __pfx___sys_sendmsg+0x10/0x10
[  266.048740][T11499]  ? do_sys_openat2+0x17a/0x1d0
[  266.048787][T11499]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  266.048811][T11499]  ? do_syscall_64+0x100/0x230
[  266.048833][T11499]  ? do_syscall_64+0xb6/0x230
[  266.048855][T11499]  do_syscall_64+0xf3/0x230
[  266.048873][T11499]  ? clear_bhb_loop+0x35/0x90
[  266.048898][T11499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.048916][T11499] RIP: 0033:0x7f9ab178d169
[  266.048931][T11499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.048945][T11499] RSP: 002b:00007f9ab2566038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  266.048964][T11499] RAX: ffffffffffffffda RBX: 00007f9ab19a5fa0 RCX: 00007f9ab178d169
[  266.048976][T11499] RDX: 0000000000044084 RSI: 0000400000004bc0 RDI: 0000000000000003
[  266.048986][T11499] RBP: 00007f9ab2566090 R08: 0000000000000000 R09: 0000000000000000
[  266.048997][T11499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.049007][T11499] R13: 0000000000000000 R14: 00007f9ab19a5fa0 R15: 00007ffcbf3ec068
[  266.049036][T11499]  </TASK>
[  266.539434][T11506] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1827'.
[  266.606001][T11505] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1827'.
[  266.656352][T11510] ieee802154 phy0 wpan0: encryption failed: -22
[  266.706257][T11515] ieee802154 phy0 wpan0: encryption failed: -22
[  266.715269][T11515] ieee802154 phy0 wpan0: encryption failed: -22
[  266.754623][T11513] ieee802154 phy0 wpan0: encryption failed: -22
[  266.801847][T11513] ieee802154 phy0 wpan0: encryption failed: -22
[  266.836925][T11517] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  267.226809][T11531] sctp: [Deprecated]: syz.4.1838 (pid 11531) Use of struct sctp_assoc_value in delayed_ack socket option.
[  267.226809][T11531] Use struct sctp_sack_info instead
[  267.625792][T11548] netlink: 'syz.4.1842': attribute type 1 has an invalid length.
[  267.780251][T11556] netlink: 'syz.0.1843': attribute type 21 has an invalid length.
[  267.788032][T11557] ieee802154 phy0 wpan0: encryption failed: -22
[  267.848408][T11559] ieee802154 phy0 wpan0: encryption failed: -22
[  267.865586][T11559] ieee802154 phy0 wpan0: encryption failed: -22
[  268.120910][T11569] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  270.965281][T11581] team0: Port device veth1_macvtap removed
[  271.040027][T11591] __nla_validate_parse: 5 callbacks suppressed
[  271.040046][T11591] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1856'.
[  271.056978][T11591] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1856'.
[  271.103345][T11587] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  271.254645][T11594] ieee802154 phy0 wpan0: encryption failed: -22
[  271.359608][  T749] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  271.385704][  T749] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  271.420177][T11589] lo speed is unknown, defaulting to 1000
[  271.479095][T11604] netlink: 'syz.0.1862': attribute type 4 has an invalid length.
[  271.493865][T11606] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  271.511037][T11604] netlink: 116 bytes leftover after parsing attributes in process `syz.0.1862'.
[  271.937277][T11620] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1868'.
[  272.234186][T11631] ieee802154 phy0 wpan0: encryption failed: -22
[  272.529484][T11634] netlink: 'syz.1.1871': attribute type 12 has an invalid length.
[  272.710458][T11640] bridge0: entered promiscuous mode
[  272.960047][T11648] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  272.993275][T11643] lo speed is unknown, defaulting to 1000
[  274.335502][T11665] ieee802154 phy0 wpan0: encryption failed: -22
[  274.603485][T11675] IPv6: syztnl0: Disabled Multicast RS
[  274.855279][T11686] ieee802154 phy0 wpan0: encryption failed: -22
[  275.024493][T11660] lo speed is unknown, defaulting to 1000
[  275.126165][T11696] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1891'.
[  275.203252][T11698] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  275.439647][T11706] ieee802154 phy0 wpan0: encryption failed: -22
[  275.490629][T11709] netlink: 'syz.1.1896': attribute type 21 has an invalid length.
[  275.498922][T11709] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1896'.
[  275.528949][T11709] netlink: 'syz.1.1896': attribute type 5 has an invalid length.
[  275.541870][T11709] netlink: 'syz.1.1896': attribute type 6 has an invalid length.
[  275.554218][T11709] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1896'.
[  275.834829][T11717] netlink: 'syz.2.1899': attribute type 3 has an invalid length.
[  275.875024][T11719] FAULT_INJECTION: forcing a failure.
[  275.875024][T11719] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  275.888249][T11719] CPU: 1 UID: 0 PID: 11719 Comm: syz.4.1900 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  275.888272][T11719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  275.888281][T11719] Call Trace:
[  275.888287][T11719]  <TASK>
[  275.888295][T11719]  dump_stack_lvl+0x241/0x360
[  275.888322][T11719]  ? __pfx_dump_stack_lvl+0x10/0x10
[  275.888339][T11719]  ? __pfx__printk+0x10/0x10
[  275.888359][T11719]  ? bpf_test_run+0x370/0xa90
[  275.888379][T11719]  ? __pfx_lockdep_softirqs_off+0x10/0x10
[  275.888403][T11719]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  275.888428][T11719]  should_fail_ex+0x40a/0x550
[  275.888458][T11719]  strncpy_from_user+0x36/0x270
[  275.888483][T11719]  strncpy_from_user_nofault+0x71/0x140
[  275.888504][T11719]  bpf_probe_read_user_str+0x2a/0x70
[  275.888525][T11719]  bpf_prog_a91b00db09d76834+0x46/0x48
[  275.888543][T11719]  bpf_test_run+0x4f0/0xa90
[  275.888568][T11719]  ? bpf_test_run+0x370/0xa90
[  275.888599][T11719]  ? __pfx_bpf_test_run+0x10/0x10
[  275.888644][T11719]  ? __pfx_skb_checksum+0x10/0x10
[  275.888672][T11719]  ? __pfx_csum_partial_ext+0x10/0x10
[  275.888691][T11719]  ? __pfx_csum_block_add_ext+0x10/0x10
[  275.888712][T11719]  ? convert___skb_to_skb+0x41/0x630
[  275.888736][T11719]  bpf_prog_test_run_skb+0xcaa/0x1830
[  275.888778][T11719]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  275.888796][T11719]  ? __fget_files+0x2a/0x410
[  275.888822][T11719]  ? fput+0x21b/0x290
[  275.888841][T11719]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  275.888864][T11719]  bpf_prog_test_run+0x2e4/0x360
[  275.888890][T11719]  __sys_bpf+0x487/0x820
[  275.888913][T11719]  ? __pfx___sys_bpf+0x10/0x10
[  275.888946][T11719]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  275.888971][T11719]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  275.888994][T11719]  ? do_syscall_64+0x100/0x230
[  275.889014][T11719]  __x64_sys_bpf+0x7c/0x90
[  275.889034][T11719]  do_syscall_64+0xf3/0x230
[  275.889053][T11719]  ? clear_bhb_loop+0x35/0x90
[  275.889077][T11719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.889097][T11719] RIP: 0033:0x7fb98f38d169
[  275.889110][T11719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.889123][T11719] RSP: 002b:00007fb99029f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  275.889140][T11719] RAX: ffffffffffffffda RBX: 00007fb98f5a5fa0 RCX: 00007fb98f38d169
[  275.889152][T11719] RDX: 0000000000000050 RSI: 00004000000002c0 RDI: 000000000000000a
[  275.889161][T11719] RBP: 00007fb99029f090 R08: 0000000000000000 R09: 0000000000000000
[  275.889171][T11719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  275.889180][T11719] R13: 0000000000000000 R14: 00007fb98f5a5fa0 R15: 00007ffe01e61688
[  275.889206][T11719]  </TASK>
[  276.248321][T11724] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048)
[  276.586344][T11736] ieee802154 phy0 wpan0: encryption failed: -22
[  276.602246][T11734] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  276.760993][T11742] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1910'.
[  276.784970][T11742] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1910'.
[  276.837573][T11745] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1911'.
[  277.654540][T11777] ieee802154 phy0 wpan0: encryption failed: -22
[  277.844650][T11781] netlink: 'syz.1.1923': attribute type 10 has an invalid length.
[  277.870229][T11781] hsr0: entered promiscuous mode
[  277.883138][T11779] lo speed is unknown, defaulting to 1000
[  277.969611][T11783] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  278.000673][T11790] FAULT_INJECTION: forcing a failure.
[  278.000673][T11790] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  278.030738][T11790] CPU: 1 UID: 0 PID: 11790 Comm: syz.3.1926 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  278.030768][T11790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  278.030777][T11790] Call Trace:
[  278.030782][T11790]  <TASK>
[  278.030788][T11790]  dump_stack_lvl+0x241/0x360
[  278.030815][T11790]  ? __pfx_dump_stack_lvl+0x10/0x10
[  278.030831][T11790]  ? __pfx__printk+0x10/0x10
[  278.030856][T11790]  should_fail_ex+0x40a/0x550
[  278.030882][T11790]  _copy_to_user+0x31/0xb0
[  278.030903][T11790]  generic_map_lookup_batch+0x92a/0xf20
[  278.030937][T11790]  ? __pfx_generic_map_lookup_batch+0x10/0x10
[  278.030964][T11790]  ? __pfx_generic_map_lookup_batch+0x10/0x10
[  278.030986][T11790]  bpf_map_do_batch+0x288/0x660
[  278.031013][T11790]  __sys_bpf+0x653/0x820
[  278.031035][T11790]  ? __pfx___sys_bpf+0x10/0x10
[  278.031053][T11790]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  278.031088][T11790]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  278.031113][T11790]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  278.031136][T11790]  ? do_syscall_64+0x100/0x230
[  278.031159][T11790]  __x64_sys_bpf+0x7c/0x90
[  278.031179][T11790]  do_syscall_64+0xf3/0x230
[  278.031194][T11790]  ? clear_bhb_loop+0x35/0x90
[  278.031216][T11790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.031233][T11790] RIP: 0033:0x7f6fab38d169
[  278.031248][T11790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.031262][T11790] RSP: 002b:00007f6fac299038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  278.031281][T11790] RAX: ffffffffffffffda RBX: 00007f6fab5a5fa0 RCX: 00007f6fab38d169
[  278.031293][T11790] RDX: 0000000000000038 RSI: 00004000000003c0 RDI: 0000000000000018
[  278.031304][T11790] RBP: 00007f6fac299090 R08: 0000000000000000 R09: 0000000000000000
[  278.031315][T11790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  278.031324][T11790] R13: 0000000000000000 R14: 00007f6fab5a5fa0 R15: 00007ffe572fe808
[  278.031351][T11790]  </TASK>
[  278.509158][T11797] FAULT_INJECTION: forcing a failure.
[  278.509158][T11797] name failslab, interval 1, probability 0, space 0, times 0
[  278.522258][T11797] CPU: 1 UID: 0 PID: 11797 Comm: syz.2.1929 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  278.522281][T11797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  278.522291][T11797] Call Trace:
[  278.522296][T11797]  <TASK>
[  278.522303][T11797]  dump_stack_lvl+0x241/0x360
[  278.522326][T11797]  ? __pfx_dump_stack_lvl+0x10/0x10
[  278.522342][T11797]  ? __pfx__printk+0x10/0x10
[  278.522361][T11797]  ? __kmalloc_noprof+0xb5/0x4c0
[  278.522383][T11797]  ? __pfx___might_resched+0x10/0x10
[  278.522409][T11797]  should_fail_ex+0x40a/0x550
[  278.522436][T11797]  should_failslab+0xac/0x100
[  278.522458][T11797]  __kmalloc_noprof+0xdd/0x4c0
[  278.522477][T11797]  ? offload_action_alloc+0x2f/0x2a0
[  278.522500][T11797]  offload_action_alloc+0x2f/0x2a0
[  278.522522][T11797]  tcf_action_offload_add_ex+0x37f/0x840
[  278.522546][T11797]  ? __pfx_tcf_action_offload_add_ex+0x10/0x10
[  278.522594][T11797]  ? tcf_action_fill_size+0x1e/0x2d0
[  278.522612][T11797]  ? tcf_action_fill_size+0x269/0x2d0
[  278.522632][T11797]  tcf_action_init+0x347/0xae0
[  278.522663][T11797]  ? __pfx_tcf_action_init+0x10/0x10
[  278.522716][T11797]  ? finish_task_switch+0x1e5/0x870
[  278.522766][T11797]  ? apparmor_capable+0x13b/0x1b0
[  278.522795][T11797]  tc_ctl_action+0x47d/0xcf0
[  278.522826][T11797]  ? __pfx_tc_ctl_action+0x10/0x10
[  278.522905][T11797]  ? __pfx_tc_ctl_action+0x10/0x10
[  278.522923][T11797]  rtnetlink_rcv_msg+0x73f/0xcf0
[  278.522941][T11797]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  278.522962][T11797]  ? rcu_preempt_deferred_qs_irqrestore+0x8c4/0xca0
[  278.522986][T11797]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  278.523025][T11797]  netlink_rcv_skb+0x206/0x480
[  278.523048][T11797]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  278.523072][T11797]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  278.523116][T11797]  ? __rcu_read_unlock+0xa1/0x110
[  278.523140][T11797]  netlink_unicast+0x7f6/0x990
[  278.523168][T11797]  ? __pfx_netlink_unicast+0x10/0x10
[  278.523186][T11797]  ? __virt_addr_valid+0x45f/0x530
[  278.523201][T11797]  ? __phys_addr_symbol+0x2f/0x70
[  278.523214][T11797]  ? __check_object_size+0x47a/0x730
[  278.523242][T11797]  netlink_sendmsg+0x8de/0xcb0
[  278.523272][T11797]  ? __pfx_netlink_sendmsg+0x10/0x10
[  278.523297][T11797]  ? aa_sock_msg_perm+0x91/0x160
[  278.523326][T11797]  ? __pfx_netlink_sendmsg+0x10/0x10
[  278.523345][T11797]  __sock_sendmsg+0x221/0x270
[  278.523370][T11797]  ____sys_sendmsg+0x53a/0x860
[  278.523397][T11797]  ? __pfx_____sys_sendmsg+0x10/0x10
[  278.523430][T11797]  __sys_sendmsg+0x269/0x350
[  278.523453][T11797]  ? __pfx___sys_sendmsg+0x10/0x10
[  278.523476][T11797]  ? __pfx_vfs_write+0x10/0x10
[  278.523487][T11797]  ? do_sys_openat2+0x17a/0x1d0
[  278.523534][T11797]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  278.523559][T11797]  ? do_syscall_64+0x100/0x230
[  278.523581][T11797]  ? do_syscall_64+0xb6/0x230
[  278.523602][T11797]  do_syscall_64+0xf3/0x230
[  278.523621][T11797]  ? clear_bhb_loop+0x35/0x90
[  278.523644][T11797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.523664][T11797] RIP: 0033:0x7f445718d169
[  278.523680][T11797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.523694][T11797] RSP: 002b:00007f4457ff8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  278.523734][T11797] RAX: ffffffffffffffda RBX: 00007f44573a5fa0 RCX: 00007f445718d169
[  278.523745][T11797] RDX: 0000000000000000 RSI: 0000400000000300 RDI: 000000000000000b
[  278.523756][T11797] RBP: 00007f4457ff8090 R08: 0000000000000000 R09: 0000000000000000
[  278.523767][T11797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  278.523776][T11797] R13: 0000000000000000 R14: 00007f44573a5fa0 R15: 00007ffd10771918
[  278.523804][T11797]  </TASK>
[  279.074396][T11808] ieee802154 phy0 wpan0: encryption failed: -22
[  279.285120][T11816] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  279.312367][T11820] netlink: 'syz.4.1931': attribute type 8 has an invalid length.
[  279.694782][T11829] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  279.776000][T11837] FAULT_INJECTION: forcing a failure.
[  279.776000][T11837] name failslab, interval 1, probability 0, space 0, times 0
[  279.796075][T11837] CPU: 0 UID: 0 PID: 11837 Comm: syz.0.1944 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  279.796104][T11837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  279.796114][T11837] Call Trace:
[  279.796120][T11837]  <TASK>
[  279.796128][T11837]  dump_stack_lvl+0x241/0x360
[  279.796155][T11837]  ? __pfx_dump_stack_lvl+0x10/0x10
[  279.796173][T11837]  ? __pfx__printk+0x10/0x10
[  279.796192][T11837]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  279.796215][T11837]  ? __pfx___might_resched+0x10/0x10
[  279.796241][T11837]  should_fail_ex+0x40a/0x550
[  279.796269][T11837]  should_failslab+0xac/0x100
[  279.796291][T11837]  kmem_cache_alloc_node_noprof+0x77/0x380
[  279.796312][T11837]  ? __alloc_skb+0x1c3/0x440
[  279.796332][T11837]  __alloc_skb+0x1c3/0x440
[  279.796353][T11837]  ? __pfx___alloc_skb+0x10/0x10
[  279.796384][T11837]  ? netlink_autobind+0xd6/0x2f0
[  279.796404][T11837]  ? netlink_autobind+0x2b0/0x2f0
[  279.796429][T11837]  netlink_sendmsg+0x634/0xcb0
[  279.796461][T11837]  ? __pfx_netlink_sendmsg+0x10/0x10
[  279.796487][T11837]  ? aa_sock_msg_perm+0x91/0x160
[  279.796515][T11837]  ? __pfx_netlink_sendmsg+0x10/0x10
[  279.796534][T11837]  __sock_sendmsg+0x221/0x270
[  279.796558][T11837]  ____sys_sendmsg+0x53a/0x860
[  279.796581][T11837]  ? __pfx_____sys_sendmsg+0x10/0x10
[  279.796596][T11837]  ? __fget_files+0x2a/0x410
[  279.796619][T11837]  ? __fget_files+0x2a/0x410
[  279.796649][T11837]  __sys_sendmsg+0x269/0x350
[  279.796671][T11837]  ? __pfx___sys_sendmsg+0x10/0x10
[  279.796700][T11837]  ? do_sys_openat2+0x17a/0x1d0
[  279.796747][T11837]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  279.796771][T11837]  ? do_syscall_64+0x100/0x230
[  279.796793][T11837]  ? do_syscall_64+0xb6/0x230
[  279.796815][T11837]  do_syscall_64+0xf3/0x230
[  279.796832][T11837]  ? clear_bhb_loop+0x35/0x90
[  279.796857][T11837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.796877][T11837] RIP: 0033:0x7f2574f8d169
[  279.796893][T11837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  279.796906][T11837] RSP: 002b:00007f2572df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  279.796926][T11837] RAX: ffffffffffffffda RBX: 00007f25751a5fa0 RCX: 00007f2574f8d169
[  279.796938][T11837] RDX: 0000000004000084 RSI: 0000400000000240 RDI: 0000000000000003
[  279.796949][T11837] RBP: 00007f2572df6090 R08: 0000000000000000 R09: 0000000000000000
[  279.796960][T11837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  279.796970][T11837] R13: 0000000000000000 R14: 00007f25751a5fa0 R15: 00007fff81b93e48
[  279.796998][T11837]  </TASK>
[  280.184323][T11843] ieee802154 phy0 wpan0: encryption failed: -22
[  280.356956][T11851] lo speed is unknown, defaulting to 1000
[  280.437849][T11855] netlink: 'syz.3.1951': attribute type 1 has an invalid length.
[  280.471633][T11855] netlink: 244 bytes leftover after parsing attributes in process `syz.3.1951'.
[  280.620283][T11866] FAULT_INJECTION: forcing a failure.
[  280.620283][T11866] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  280.658740][T11866] CPU: 1 UID: 0 PID: 11866 Comm: syz.4.1957 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  280.658767][T11866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  280.658778][T11866] Call Trace:
[  280.658784][T11866]  <TASK>
[  280.658792][T11866]  dump_stack_lvl+0x241/0x360
[  280.658819][T11866]  ? __pfx_dump_stack_lvl+0x10/0x10
[  280.658837][T11866]  ? __pfx__printk+0x10/0x10
[  280.658857][T11866]  ? __pfx_lock_release+0x10/0x10
[  280.658880][T11866]  ? __lock_acquire+0x1397/0x2100
[  280.658909][T11866]  should_fail_ex+0x40a/0x550
[  280.658937][T11866]  _copy_from_user+0x2d/0xb0
[  280.658958][T11866]  kstrtouint_from_user+0xc6/0x190
[  280.658979][T11866]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  280.659000][T11866]  ? __pfx_lock_acquire+0x10/0x10
[  280.659033][T11866]  proc_fail_nth_write+0xaa/0x2d0
[  280.659055][T11866]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  280.659075][T11866]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  280.659102][T11866]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  280.659125][T11866]  vfs_write+0x29f/0xd10
[  280.659145][T11866]  ? fdget_pos+0x254/0x320
[  280.659167][T11866]  ? __mutex_unlock_slowpath+0x227/0x800
[  280.659188][T11866]  ? __pfx_vfs_write+0x10/0x10
[  280.659202][T11866]  ? do_sys_openat2+0x17a/0x1d0
[  280.659227][T11866]  ? __fget_files+0x2a/0x410
[  280.659249][T11866]  ? __fget_files+0x395/0x410
[  280.659267][T11866]  ? __fget_files+0x2a/0x410
[  280.659301][T11866]  ksys_write+0x18f/0x2b0
[  280.659319][T11866]  ? __pfx_ksys_write+0x10/0x10
[  280.659334][T11866]  ? do_syscall_64+0x100/0x230
[  280.659353][T11866]  ? do_syscall_64+0xb6/0x230
[  280.659372][T11866]  do_syscall_64+0xf3/0x230
[  280.659388][T11866]  ? clear_bhb_loop+0x35/0x90
[  280.659410][T11866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.659428][T11866] RIP: 0033:0x7fb98f38bc1f
[  280.659444][T11866] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  280.659459][T11866] RSP: 002b:00007fb99029f030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  280.659477][T11866] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb98f38bc1f
[  280.659488][T11866] RDX: 0000000000000001 RSI: 00007fb99029f0a0 RDI: 0000000000000004
[  280.659497][T11866] RBP: 00007fb99029f090 R08: 0000000000000000 R09: 0000000000000000
[  280.659507][T11866] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  280.659516][T11866] R13: 0000000000000000 R14: 00007fb98f5a5fa0 R15: 00007ffe01e61688
[  280.659541][T11866]  </TASK>
[  280.902693][T11876] ieee802154 phy0 wpan0: encryption failed: -22
[  280.987538][T11879] ieee802154 phy0 wpan0: encryption failed: -22
[  281.035069][T11854] lo speed is unknown, defaulting to 1000
[  281.094845][T11884] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1965'.
[  281.156741][T11882] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  281.181446][T11885] ieee802154 phy0 wpan0: encryption failed: -22
[  281.190846][T11885] ieee802154 phy0 wpan0: encryption failed: -22
[  281.216443][T11888] netlink: 1284 bytes leftover after parsing attributes in process `syz.1.1966'.
[  281.241112][T11888] openvswitch: netlink: Missing key (keys=40, expected=80)
[  281.633615][T11908] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1969'.
[  281.673269][T11908] FAULT_INJECTION: forcing a failure.
[  281.673269][T11908] name failslab, interval 1, probability 0, space 0, times 0
[  281.700829][T11909] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1970'.
[  281.705549][T11908] CPU: 1 UID: 0 PID: 11908 Comm: syz.0.1969 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  281.705580][T11908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  281.705590][T11908] Call Trace:
[  281.705599][T11908]  <TASK>
[  281.705608][T11908]  dump_stack_lvl+0x241/0x360
[  281.705634][T11908]  ? __pfx_dump_stack_lvl+0x10/0x10
[  281.705651][T11908]  ? __pfx__printk+0x10/0x10
[  281.705670][T11908]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  281.705692][T11908]  ? __pfx___might_resched+0x10/0x10
[  281.705717][T11908]  should_fail_ex+0x40a/0x550
[  281.705745][T11908]  should_failslab+0xac/0x100
[  281.705767][T11908]  kmem_cache_alloc_node_noprof+0x77/0x380
[  281.705787][T11908]  ? __alloc_skb+0x1c3/0x440
[  281.705806][T11908]  __alloc_skb+0x1c3/0x440
[  281.705822][T11908]  ? rcu_is_watching+0x15/0xb0
[  281.705843][T11908]  ? __pfx___alloc_skb+0x10/0x10
[  281.705856][T11908]  ? __mutex_lock+0x397/0x1010
[  281.705883][T11908]  team_nl_send_port_list_get+0x161/0x850
[  281.705902][T11908]  ? team_nl_team_get+0x148/0x190
[  281.705918][T11908]  ? dev_get_by_index+0x23/0x2d0
[  281.705940][T11908]  ? __pfx_team_nl_send_unicast+0x10/0x10
[  281.705965][T11908]  ? __pfx_team_nl_send_port_list_get+0x10/0x10
[  281.705996][T11908]  team_nl_port_list_get_doit+0x7f/0x160
[  281.706016][T11908]  genl_rcv_msg+0xb1f/0xec0
[  281.706043][T11908]  ? __pfx_genl_rcv_msg+0x10/0x10
[  281.706085][T11908]  ? __pfx_lock_acquire+0x10/0x10
[  281.706106][T11908]  ? __pfx_team_nl_port_list_get_doit+0x10/0x10
[  281.706126][T11908]  ? __pfx___might_resched+0x10/0x10
[  281.706155][T11908]  netlink_rcv_skb+0x206/0x480
[  281.706178][T11908]  ? __pfx_genl_rcv_msg+0x10/0x10
[  281.706197][T11908]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  281.706255][T11908]  genl_rcv+0x28/0x40
[  281.706269][T11908]  netlink_unicast+0x7f6/0x990
[  281.706297][T11908]  ? __pfx_netlink_unicast+0x10/0x10
[  281.706313][T11908]  ? __virt_addr_valid+0x45f/0x530
[  281.706330][T11908]  ? __phys_addr_symbol+0x2f/0x70
[  281.706344][T11908]  ? __check_object_size+0x47a/0x730
[  281.706368][T11908]  netlink_sendmsg+0x8de/0xcb0
[  281.706401][T11908]  ? __pfx_netlink_sendmsg+0x10/0x10
[  281.706426][T11908]  ? aa_sock_msg_perm+0x91/0x160
[  281.706454][T11908]  ? __pfx_netlink_sendmsg+0x10/0x10
[  281.706472][T11908]  __sock_sendmsg+0x221/0x270
[  281.706496][T11908]  ____sys_sendmsg+0x53a/0x860
[  281.706521][T11908]  ? __pfx_____sys_sendmsg+0x10/0x10
[  281.706536][T11908]  ? __fget_files+0x2a/0x410
[  281.706561][T11908]  ? __fget_files+0x2a/0x410
[  281.706590][T11908]  __sys_sendmsg+0x269/0x350
[  281.706612][T11908]  ? __pfx___sys_sendmsg+0x10/0x10
[  281.706642][T11908]  ? do_sys_openat2+0x17a/0x1d0
[  281.706690][T11908]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  281.706713][T11908]  ? do_syscall_64+0x100/0x230
[  281.706735][T11908]  ? do_syscall_64+0xb6/0x230
[  281.706755][T11908]  do_syscall_64+0xf3/0x230
[  281.706774][T11908]  ? clear_bhb_loop+0x35/0x90
[  281.706797][T11908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.706817][T11908] RIP: 0033:0x7f2574f8d169
[  281.706832][T11908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.706846][T11908] RSP: 002b:00007f2572df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  281.706864][T11908] RAX: ffffffffffffffda RBX: 00007f25751a5fa0 RCX: 00007f2574f8d169
[  281.706874][T11908] RDX: 0000000000044084 RSI: 0000400000004bc0 RDI: 0000000000000003
[  281.706884][T11908] RBP: 00007f2572df6090 R08: 0000000000000000 R09: 0000000000000000
[  281.706894][T11908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.706904][T11908] R13: 0000000000000000 R14: 00007f25751a5fa0 R15: 00007fff81b93e48
[  281.706932][T11908]  </TASK>
[  281.854388][T11913] ieee802154 phy0 wpan0: encryption failed: -22
[  282.074639][T11917] netlink: 'syz.0.1974': attribute type 4 has an invalid length.
[  282.310235][T11928] ieee802154 phy0 wpan0: encryption failed: -22
[  282.337629][T11928] ieee802154 phy0 wpan0: encryption failed: -22
[  282.519736][T11938] netlink: 'syz.3.1981': attribute type 8 has an invalid length.
[  282.529236][T11938] FAULT_INJECTION: forcing a failure.
[  282.529236][T11938] name failslab, interval 1, probability 0, space 0, times 0
[  282.542275][T11938] CPU: 0 UID: 0 PID: 11938 Comm: syz.3.1981 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  282.542299][T11938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  282.542308][T11938] Call Trace:
[  282.542316][T11938]  <TASK>
[  282.542324][T11938]  dump_stack_lvl+0x241/0x360
[  282.542349][T11938]  ? __pfx_dump_stack_lvl+0x10/0x10
[  282.542364][T11938]  ? __pfx__printk+0x10/0x10
[  282.542380][T11938]  ? __kmalloc_cache_noprof+0x48/0x390
[  282.542400][T11938]  ? __pfx___might_resched+0x10/0x10
[  282.542430][T11938]  should_fail_ex+0x40a/0x550
[  282.542454][T11938]  should_failslab+0xac/0x100
[  282.542486][T11938]  __kmalloc_cache_noprof+0x70/0x390
[  282.542503][T11938]  ? alloc_netdev_mqs+0xc1a/0x1210
[  282.542519][T11938]  ? __xdp_rxq_info_reg+0x186/0x290
[  282.542543][T11938]  alloc_netdev_mqs+0xc1a/0x1210
[  282.542566][T11938]  rtnl_create_link+0x2f9/0xc90
[  282.542587][T11938]  rtnl_newlink_create+0x2e1/0xbd0
[  282.542615][T11938]  ? __pfx_aa_get_newest_label+0x10/0x10
[  282.542642][T11938]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  282.542667][T11938]  ? __pfx___mutex_lock+0x10/0x10
[  282.542696][T11938]  ? ns_capable+0x8a/0xf0
[  282.542719][T11938]  rtnl_newlink+0x167a/0x1d90
[  282.542741][T11938]  ? stack_depot_save_flags+0x37/0x940
[  282.542777][T11938]  ? __pfx_rtnl_newlink+0x10/0x10
[  282.542795][T11938]  ? __netlink_deliver_tap+0x561/0x7f0
[  282.542814][T11938]  ? __pfx_validate_chain+0x10/0x10
[  282.542829][T11938]  ? __sock_sendmsg+0x221/0x270
[  282.542843][T11938]  ? ____sys_sendmsg+0x53a/0x860
[  282.542858][T11938]  ? __sys_sendmsg+0x269/0x350
[  282.542872][T11938]  ? do_syscall_64+0xf3/0x230
[  282.542887][T11938]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.542926][T11938]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  282.542959][T11938]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  282.542985][T11938]  ? mark_lock+0x9a/0x360
[  282.542999][T11938]  ? __lock_acquire+0x1397/0x2100
[  282.543039][T11938]  ? __pfx_lock_release+0x10/0x10
[  282.543067][T11938]  ? __pfx_rtnl_newlink+0x10/0x10
[  282.543094][T11938]  rtnetlink_rcv_msg+0x791/0xcf0
[  282.543110][T11938]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  282.543131][T11938]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  282.543261][T11938]  ? ref_tracker_free+0x643/0x7e0
[  282.543288][T11938]  netlink_rcv_skb+0x206/0x480
[  282.543312][T11938]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  282.543337][T11938]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  282.543369][T11938]  ? netlink_deliver_tap+0x2e/0x1b0
[  282.543386][T11938]  netlink_unicast+0x7f6/0x990
[  282.543409][T11938]  ? __pfx_netlink_unicast+0x10/0x10
[  282.543424][T11938]  ? __virt_addr_valid+0x45f/0x530
[  282.543439][T11938]  ? __phys_addr_symbol+0x2f/0x70
[  282.543451][T11938]  ? __check_object_size+0x47a/0x730
[  282.543472][T11938]  netlink_sendmsg+0x8de/0xcb0
[  282.543498][T11938]  ? __pfx_netlink_sendmsg+0x10/0x10
[  282.543521][T11938]  ? aa_sock_msg_perm+0x91/0x160
[  282.543547][T11938]  ? __pfx_netlink_sendmsg+0x10/0x10
[  282.543563][T11938]  __sock_sendmsg+0x221/0x270
[  282.543584][T11938]  ____sys_sendmsg+0x53a/0x860
[  282.543608][T11938]  ? __pfx_____sys_sendmsg+0x10/0x10
[  282.543622][T11938]  ? __fget_files+0x2a/0x410
[  282.543645][T11938]  ? __fget_files+0x2a/0x410
[  282.543671][T11938]  __sys_sendmsg+0x269/0x350
[  282.543691][T11938]  ? __pfx___sys_sendmsg+0x10/0x10
[  282.543717][T11938]  ? do_sys_openat2+0x17a/0x1d0
[  282.543756][T11938]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  282.543777][T11938]  ? do_syscall_64+0x100/0x230
[  282.543795][T11938]  ? do_syscall_64+0xb6/0x230
[  282.543811][T11938]  do_syscall_64+0xf3/0x230
[  282.543825][T11938]  ? clear_bhb_loop+0x35/0x90
[  282.543846][T11938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.543862][T11938] RIP: 0033:0x7f6fab38d169
[  282.543877][T11938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.543888][T11938] RSP: 002b:00007f6fac299038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  282.543906][T11938] RAX: ffffffffffffffda RBX: 00007f6fab5a5fa0 RCX: 00007f6fab38d169
[  282.543915][T11938] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000004
[  282.543923][T11938] RBP: 00007f6fac299090 R08: 0000000000000000 R09: 0000000000000000
[  282.543931][T11938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  282.543939][T11938] R13: 0000000000000000 R14: 00007f6fab5a5fa0 R15: 00007ffe572fe808
[  282.543960][T11938]  </TASK>
[  283.024003][T11937] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  283.216877][T11933] lo speed is unknown, defaulting to 1000
[  283.370921][T11949] ieee802154 phy0 wpan0: encryption failed: -22
[  283.506082][T11956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1987'.
[  283.520556][T11956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1987'.
[  283.531517][T11956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1987'.
[  284.319544][T11968] netlink: 34 bytes leftover after parsing attributes in process `syz.0.1990'.
[  285.960716][T11965] tipc: Enabled bearer <eth:bond0>, priority 10
[  286.100309][T11974] ieee802154 phy0 wpan0: encryption failed: -22
[  286.107802][T11974] ieee802154 phy0 wpan0: encryption failed: -22
[  286.388805][T11990] ieee802154 phy0 wpan0: encryption failed: -22
[  286.403268][T11988] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  286.519851][T11993] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2000'.
[  286.538502][T11993] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2000'.
[  286.555165][T11993] nbd: socks must be embedded in a SOCK_ITEM attr
[  286.592400][T11996] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2000'.
[  286.912020][T12008] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2005'.
[  286.960648][T12010] ieee802154 phy0 wpan0: encryption failed: -22
[  286.968645][T12010] ieee802154 phy0 wpan0: encryption failed: -22
[  287.002702][T12011] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2005'.
[  287.084397][T12011] 8021q: adding VLAN 0 to HW filter on device bond0
[  287.093176][T12011] 8021q: adding VLAN 0 to HW filter on device team0
[  287.109849][T12011] batman_adv: batadv0: Interface activated: dummy0
[  287.140942][T12011] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  287.177559][ T5912] lo speed is unknown, defaulting to 1000
[  287.189557][T12019] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  287.302311][T12023] lo speed is unknown, defaulting to 1000
[  287.385762][T12027] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  287.411588][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  287.420590][T12028] ieee802154 phy0 wpan0: encryption failed: -22
[  287.588107][T12033] FAULT_INJECTION: forcing a failure.
[  287.588107][T12033] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  287.622706][T12033] CPU: 0 UID: 0 PID: 12033 Comm: syz.2.2016 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  287.622734][T12033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  287.622743][T12033] Call Trace:
[  287.622795][T12033]  <TASK>
[  287.622804][T12033]  dump_stack_lvl+0x241/0x360
[  287.622830][T12033]  ? __pfx_dump_stack_lvl+0x10/0x10
[  287.622847][T12033]  ? __pfx__printk+0x10/0x10
[  287.622866][T12033]  ? __pfx_lock_release+0x10/0x10
[  287.622896][T12033]  should_fail_ex+0x40a/0x550
[  287.622923][T12033]  _copy_from_user+0x2d/0xb0
[  287.622944][T12033]  do_ip6t_set_ctl+0x73a/0x1270
[  287.622969][T12033]  ? nf_setsockopt+0x240/0x2c0
[  287.622998][T12033]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[  287.623018][T12033]  ? rcu_is_watching+0x15/0xb0
[  287.623036][T12033]  ? trace_contention_end+0x3c/0x120
[  287.623063][T12033]  ? __mutex_unlock_slowpath+0x227/0x800
[  287.623090][T12033]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  287.623108][T12033]  ? aa_sk_perm+0x96d/0xab0
[  287.623154][T12033]  ? __pfx_aa_sk_perm+0x10/0x10
[  287.623178][T12033]  nf_setsockopt+0x295/0x2c0
[  287.623204][T12033]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  287.623226][T12033]  do_sock_setsockopt+0x3af/0x720
[  287.623250][T12033]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  287.623277][T12033]  ? __fget_files+0x395/0x410
[  287.623305][T12033]  ? __fget_files+0x2a/0x410
[  287.623333][T12033]  __x64_sys_setsockopt+0x1ee/0x280
[  287.623356][T12033]  do_syscall_64+0xf3/0x230
[  287.623384][T12033]  ? clear_bhb_loop+0x35/0x90
[  287.623411][T12033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.623431][T12033] RIP: 0033:0x7f445718d169
[  287.623445][T12033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  287.623460][T12033] RSP: 002b:00007f4457ff8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  287.623478][T12033] RAX: ffffffffffffffda RBX: 00007f44573a5fa0 RCX: 00007f445718d169
[  287.623490][T12033] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[  287.623500][T12033] RBP: 00007f4457ff8090 R08: 0000000000000590 R09: 0000000000000000
[  287.623510][T12033] R10: 0000400000000000 R11: 0000000000000246 R12: 0000000000000001
[  287.623520][T12033] R13: 0000000000000000 R14: 00007f44573a5fa0 R15: 00007ffd10771918
[  287.623545][T12033]  </TASK>
[  287.767576][T12037] netlink: 68 bytes leftover after parsing attributes in process `syz.3.2018'.
[  288.052610][T12044] FAULT_INJECTION: forcing a failure.
[  288.052610][T12044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  288.091661][T12044] CPU: 1 UID: 0 PID: 12044 Comm: syz.4.2021 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  288.091690][T12044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  288.091708][T12044] Call Trace:
[  288.091714][T12044]  <TASK>
[  288.091722][T12044]  dump_stack_lvl+0x241/0x360
[  288.091749][T12044]  ? __pfx_dump_stack_lvl+0x10/0x10
[  288.091766][T12044]  ? __pfx__printk+0x10/0x10
[  288.091784][T12044]  ? __pfx_lock_release+0x10/0x10
[  288.091816][T12044]  should_fail_ex+0x40a/0x550
[  288.091846][T12044]  _copy_from_user+0x2d/0xb0
[  288.091868][T12044]  copy_msghdr_from_user+0xae/0x680
[  288.091890][T12044]  ? __pfx___might_resched+0x10/0x10
[  288.091914][T12044]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  288.091932][T12044]  ? __fget_files+0x2a/0x410
[  288.091958][T12044]  ? __sys_sendmmsg+0x392/0x720
[  288.091976][T12044]  ? __might_fault+0xaa/0x120
[  288.091997][T12044]  __sys_sendmmsg+0x32b/0x720
[  288.092031][T12044]  ? __pfx___sys_sendmmsg+0x10/0x10
[  288.092060][T12044]  ? __pfx_lock_release+0x10/0x10
[  288.092081][T12044]  ? kstrtouint_from_user+0x128/0x190
[  288.092121][T12044]  ? ksys_write+0x22a/0x2b0
[  288.092138][T12044]  ? __pfx_lock_release+0x10/0x10
[  288.092165][T12044]  ? sb_end_write+0xe9/0x1c0
[  288.092186][T12044]  ? vfs_write+0x7fa/0xd10
[  288.092205][T12044]  ? __mutex_unlock_slowpath+0x227/0x800
[  288.092246][T12044]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  288.092271][T12044]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  288.092295][T12044]  ? do_syscall_64+0x100/0x230
[  288.092317][T12044]  __x64_sys_sendmmsg+0xa0/0xb0
[  288.092337][T12044]  do_syscall_64+0xf3/0x230
[  288.092355][T12044]  ? clear_bhb_loop+0x35/0x90
[  288.092378][T12044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.092401][T12044] RIP: 0033:0x7fb98f38d169
[  288.092417][T12044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.092430][T12044] RSP: 002b:00007fb99029f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  288.092448][T12044] RAX: ffffffffffffffda RBX: 00007fb98f5a5fa0 RCX: 00007fb98f38d169
[  288.092460][T12044] RDX: 04924924924925c6 RSI: 0000400000000680 RDI: 0000000000000005
[  288.092472][T12044] RBP: 00007fb99029f090 R08: 0000000000000000 R09: 0000000000000000
[  288.092483][T12044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  288.092493][T12044] R13: 0000000000000000 R14: 00007fb98f5a5fa0 R15: 00007ffe01e61688
[  288.092520][T12044]  </TASK>
[  288.488469][T12038] lo speed is unknown, defaulting to 1000
[  288.493311][T12047] ieee802154 phy0 wpan0: encryption failed: -22
[  288.500934][T12047] ieee802154 phy0 wpan0: encryption failed: -22
[  288.996792][T12062] xt_bpf: check failed: parse error
[  289.060932][T12067] ieee802154 phy0 wpan0: encryption failed: -22
[  289.272549][T12069] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  289.443151][T12086] FAULT_INJECTION: forcing a failure.
[  289.443151][T12086] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  289.456917][T12086] CPU: 1 UID: 0 PID: 12086 Comm: syz.2.2035 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  289.456943][T12086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  289.456954][T12086] Call Trace:
[  289.456960][T12086]  <TASK>
[  289.456967][T12086]  dump_stack_lvl+0x241/0x360
[  289.456994][T12086]  ? __pfx_dump_stack_lvl+0x10/0x10
[  289.457012][T12086]  ? __pfx__printk+0x10/0x10
[  289.457031][T12086]  ? __pfx_lock_release+0x10/0x10
[  289.457061][T12086]  should_fail_ex+0x40a/0x550
[  289.457089][T12086]  _copy_from_user+0x2d/0xb0
[  289.457111][T12086]  copy_msghdr_from_user+0xae/0x680
[  289.457138][T12086]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  289.457157][T12086]  ? __fget_files+0x2a/0x410
[  289.457181][T12086]  ? __fget_files+0x2a/0x410
[  289.457210][T12086]  __sys_sendmmsg+0x32b/0x720
[  289.457238][T12086]  ? __pfx___sys_sendmmsg+0x10/0x10
[  289.457267][T12086]  ? __pfx_lock_release+0x10/0x10
[  289.457287][T12086]  ? kstrtouint_from_user+0x128/0x190
[  289.457327][T12086]  ? ksys_write+0x22a/0x2b0
[  289.457344][T12086]  ? __pfx_lock_release+0x10/0x10
[  289.457372][T12086]  ? sb_end_write+0xe9/0x1c0
[  289.457393][T12086]  ? vfs_write+0x7fa/0xd10
[  289.457409][T12086]  ? __mutex_unlock_slowpath+0x227/0x800
[  289.457447][T12086]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  289.457467][T12086]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  289.457486][T12086]  ? do_syscall_64+0x100/0x230
[  289.457503][T12086]  __x64_sys_sendmmsg+0xa0/0xb0
[  289.457520][T12086]  do_syscall_64+0xf3/0x230
[  289.457535][T12086]  ? clear_bhb_loop+0x35/0x90
[  289.457556][T12086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.457573][T12086] RIP: 0033:0x7f445718d169
[  289.457586][T12086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.457597][T12086] RSP: 002b:00007f4457ff8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  289.457613][T12086] RAX: ffffffffffffffda RBX: 00007f44573a5fa0 RCX: 00007f445718d169
[  289.457622][T12086] RDX: 032bc45944b084a6 RSI: 0000400000000180 RDI: 0000000000000003
[  289.457631][T12086] RBP: 00007f4457ff8090 R08: 0000000000000000 R09: 0000000000000000
[  289.457640][T12086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  289.457647][T12086] R13: 0000000000000000 R14: 00007f44573a5fa0 R15: 00007ffd10771918
[  289.457668][T12086]  </TASK>
[  289.460987][T12084] ieee802154 phy0 wpan0: encryption failed: -22
[  289.710238][T12083] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2031'.
[  289.732965][T12084] ieee802154 phy0 wpan0: encryption failed: -22
[  290.109545][T12105] ieee802154 phy0 wpan0: encryption failed: -22
[  290.467988][T12120] ieee802154 phy0 wpan0: encryption failed: -22
[  290.475348][T12120] ieee802154 phy0 wpan0: encryption failed: -22
[  290.507207][T12122] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  290.534835][T12103] lo speed is unknown, defaulting to 1000
[  291.005091][T12140] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: invalid value (5)
[  291.072408][T12143] ieee802154 phy0 wpan0: encryption failed: -22
[  291.275615][T12153] ieee802154 phy0 wpan0: encryption failed: -22
[  291.291687][T12153] ieee802154 phy0 wpan0: encryption failed: -22
[  291.292865][T12155] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2060'.
[  291.361572][T12161] netlink: 'syz.4.2064': attribute type 4 has an invalid length.
[  291.394897][    T8] lo speed is unknown, defaulting to 1000
[  291.607382][T12173] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  291.609034][T12164] lo speed is unknown, defaulting to 1000
[  291.795166][T12180] ieee802154 phy0 wpan0: encryption failed: -22
[  291.866139][T12182] openvswitch: netlink: Actions may not be safe on all matching packets
[  291.900617][T12182] bridge0: entered promiscuous mode
[  291.926942][T12182] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  292.072317][T12189] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2075'.
[  292.142446][T12189] netlink: 'syz.2.2075': attribute type 1 has an invalid length.
[  292.163930][T12192] ieee802154 phy0 wpan0: encryption failed: -22
[  292.189566][T12192] ieee802154 phy0 wpan0: encryption failed: -22
[  292.306303][T12175] lo speed is unknown, defaulting to 1000
[  292.731826][T12215] ieee802154 phy0 wpan0: encryption failed: -22
[  293.000563][T12220] ieee802154 phy0 wpan0: encryption failed: -22
[  293.027327][T12220] ieee802154 phy0 wpan0: encryption failed: -22
[  293.251517][T12230] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2091'.
[  293.282453][T12230] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2091'.
[  293.303831][T12232] FAULT_INJECTION: forcing a failure.
[  293.303831][T12232] name failslab, interval 1, probability 0, space 0, times 0
[  293.314854][   T29] audit: type=1804 audit(1741336988.465:5): pid=12234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2094" name="/newroot/408/cgroup.controllers" dev="tmpfs" ino=2125 res=1 errno=0
[  293.317513][T12232] CPU: 1 UID: 0 PID: 12232 Comm: syz.1.2092 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  293.317534][T12232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  293.317545][T12232] Call Trace:
[  293.317553][T12232]  <TASK>
[  293.317563][T12232]  dump_stack_lvl+0x241/0x360
[  293.317591][T12232]  ? __pfx_dump_stack_lvl+0x10/0x10
[  293.317608][T12232]  ? __pfx__printk+0x10/0x10
[  293.317629][T12232]  ? __lock_acquire+0x1397/0x2100
[  293.317657][T12232]  should_fail_ex+0x40a/0x550
[  293.317683][T12232]  should_failslab+0xac/0x100
[  293.317705][T12232]  ? fdb_create+0x1fa/0x1560
[  293.317728][T12232]  kmem_cache_alloc_noprof+0x70/0x380
[  293.317755][T12232]  fdb_create+0x1fa/0x1560
[  293.317781][T12232]  ? br_fdb_find+0x83/0x210
[  293.317801][T12232]  ? __pfx_lock_release+0x10/0x10
[  293.317825][T12232]  ? __pfx_fdb_create+0x10/0x10
[  293.317844][T12232]  ? do_raw_spin_lock+0x14f/0x370
[  293.317866][T12232]  ? br_fdb_find+0x83/0x210
[  293.317880][T12232]  ? br_fdb_find+0x83/0x210
[  293.317900][T12232]  fdb_add_local+0x12e/0x250
[  293.317923][T12232]  br_fdb_add_local+0x3a/0x60
[  293.317946][T12232]  __vlan_add+0x6a0/0x26d0
[  293.317985][T12232]  ? br_vlan_add+0x22a/0x970
[  293.318004][T12232]  ? __pfx___vlan_add+0x10/0x10
[  293.318038][T12232]  br_vlan_add+0x44c/0x970
[  293.318069][T12232]  br_vlan_info+0x1fc/0x510
[  293.318092][T12232]  ? __pfx_br_vlan_info+0x10/0x10
[  293.318112][T12232]  ? __pfx_validate_chain+0x10/0x10
[  293.318129][T12232]  ? br_process_vlan_info+0x5a8/0xbc0
[  293.318154][T12232]  br_process_vlan_info+0x807/0xbc0
[  293.318183][T12232]  ? __pfx_br_process_vlan_info+0x10/0x10
[  293.318213][T12232]  br_afspec+0x3ce/0x640
[  293.318238][T12232]  ? __pfx_br_afspec+0x10/0x10
[  293.318261][T12232]  ? __lock_acquire+0x1397/0x2100
[  293.318285][T12232]  ? nla_find+0x124/0x140
[  293.318304][T12232]  br_setlink+0x31d/0x8b0
[  293.318339][T12232]  ? __pfx_br_setlink+0x10/0x10
[  293.318413][T12232]  ? nla_find+0x124/0x140
[  293.318431][T12232]  rtnl_bridge_setlink+0x6dc/0x9d0
[  293.318461][T12232]  ? __pfx_rtnl_bridge_setlink+0x10/0x10
[  293.318495][T12232]  ? __pfx_rtnl_bridge_setlink+0x10/0x10
[  293.318519][T12232]  rtnetlink_rcv_msg+0x73f/0xcf0
[  293.318541][T12232]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  293.318566][T12232]  ? __lock_acquire+0x1397/0x2100
[  293.318588][T12232]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  293.318628][T12232]  netlink_rcv_skb+0x206/0x480
[  293.318652][T12232]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  293.318675][T12232]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  293.318717][T12232]  ? netlink_deliver_tap+0x2e/0x1b0
[  293.318739][T12232]  netlink_unicast+0x7f6/0x990
[  293.318766][T12232]  ? __pfx_netlink_unicast+0x10/0x10
[  293.318782][T12232]  ? __virt_addr_valid+0x45f/0x530
[  293.318799][T12232]  ? __phys_addr_symbol+0x2f/0x70
[  293.318813][T12232]  ? __check_object_size+0x47a/0x730
[  293.318838][T12232]  netlink_sendmsg+0x8de/0xcb0
[  293.318870][T12232]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.318894][T12232]  ? aa_sock_msg_perm+0x91/0x160
[  293.318924][T12232]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.318942][T12232]  __sock_sendmsg+0x221/0x270
[  293.318968][T12232]  ____sys_sendmsg+0x53a/0x860
[  293.318993][T12232]  ? __pfx_____sys_sendmsg+0x10/0x10
[  293.319008][T12232]  ? __fget_files+0x2a/0x410
[  293.319031][T12232]  ? __fget_files+0x2a/0x410
[  293.319060][T12232]  __sys_sendmsg+0x269/0x350
[  293.319087][T12232]  ? __pfx___sys_sendmsg+0x10/0x10
[  293.319117][T12232]  ? do_sys_openat2+0x17a/0x1d0
[  293.319162][T12232]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  293.319185][T12232]  ? do_syscall_64+0x100/0x230
[  293.319206][T12232]  ? do_syscall_64+0xb6/0x230
[  293.319231][T12232]  do_syscall_64+0xf3/0x230
[  293.319249][T12232]  ? clear_bhb_loop+0x35/0x90
[  293.319273][T12232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.319293][T12232] RIP: 0033:0x7f9ab178d169
[  293.319309][T12232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.319322][T12232] RSP: 002b:00007f9ab2566038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  293.319340][T12232] RAX: ffffffffffffffda RBX: 00007f9ab19a5fa0 RCX: 00007f9ab178d169
[  293.319351][T12232] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000004
[  293.319362][T12232] RBP: 00007f9ab2566090 R08: 0000000000000000 R09: 0000000000000000
[  293.319372][T12232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.319382][T12232] R13: 0000000000000000 R14: 00007f9ab19a5fa0 R15: 00007ffcbf3ec068
[  293.319408][T12232]  </TASK>
[  293.346922][T12232] bridge0: failed insert local address into bridge forwarding table
[  293.741155][T12242] ieee802154 phy0 wpan0: encryption failed: -22
[  294.026997][T12254] ieee802154 phy0 wpan0: encryption failed: -22
[  294.034838][T12254] ieee802154 phy0 wpan0: encryption failed: -22
[  294.140368][T12260] x_tables: duplicate underflow at hook 1
[  294.217022][T12267] FAULT_INJECTION: forcing a failure.
[  294.217022][T12267] name failslab, interval 1, probability 0, space 0, times 0
[  294.240572][T12267] CPU: 1 UID: 0 PID: 12267 Comm: syz.1.2106 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  294.240602][T12267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  294.240612][T12267] Call Trace:
[  294.240622][T12267]  <TASK>
[  294.240630][T12267]  dump_stack_lvl+0x241/0x360
[  294.240655][T12267]  ? __pfx_dump_stack_lvl+0x10/0x10
[  294.240673][T12267]  ? __pfx__printk+0x10/0x10
[  294.240693][T12267]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  294.240717][T12267]  ? __pfx___might_resched+0x10/0x10
[  294.240744][T12267]  should_fail_ex+0x40a/0x550
[  294.240772][T12267]  should_failslab+0xac/0x100
[  294.240794][T12267]  kmem_cache_alloc_node_noprof+0x77/0x380
[  294.240815][T12267]  ? __alloc_skb+0x1c3/0x440
[  294.240836][T12267]  __alloc_skb+0x1c3/0x440
[  294.240852][T12267]  ? genl_start+0x539/0x6d0
[  294.240873][T12267]  ? __pfx___alloc_skb+0x10/0x10
[  294.240886][T12267]  ? rcu_is_watching+0x15/0xb0
[  294.240905][T12267]  ? trace_contention_end+0x3c/0x120
[  294.240932][T12267]  netlink_dump+0x239/0xe10
[  294.240964][T12267]  ? __pfx_netlink_dump+0x10/0x10
[  294.241022][T12267]  ? genl_start+0x59d/0x6d0
[  294.241047][T12267]  __netlink_dump_start+0x5a2/0x790
[  294.241078][T12267]  genl_rcv_msg+0x894/0xec0
[  294.241104][T12267]  ? __pfx_genl_rcv_msg+0x10/0x10
[  294.241129][T12267]  ? __pfx_genl_start+0x10/0x10
[  294.241143][T12267]  ? __pfx_genl_dumpit+0x10/0x10
[  294.241158][T12267]  ? __pfx_genl_done+0x10/0x10
[  294.241189][T12267]  ? __pfx_lock_acquire+0x10/0x10
[  294.241208][T12267]  ? __pfx_smc_pnet_dump_start+0x10/0x10
[  294.241226][T12267]  ? __pfx_smc_pnet_dump+0x10/0x10
[  294.241245][T12267]  ? __pfx___might_resched+0x10/0x10
[  294.241275][T12267]  netlink_rcv_skb+0x206/0x480
[  294.241297][T12267]  ? __pfx_genl_rcv_msg+0x10/0x10
[  294.241316][T12267]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  294.241367][T12267]  genl_rcv+0x28/0x40
[  294.241382][T12267]  netlink_unicast+0x7f6/0x990
[  294.241410][T12267]  ? __pfx_netlink_unicast+0x10/0x10
[  294.241426][T12267]  ? __virt_addr_valid+0x45f/0x530
[  294.241443][T12267]  ? __phys_addr_symbol+0x2f/0x70
[  294.241458][T12267]  ? __check_object_size+0x47a/0x730
[  294.241490][T12267]  netlink_sendmsg+0x8de/0xcb0
[  294.241524][T12267]  ? __pfx_netlink_sendmsg+0x10/0x10
[  294.241550][T12267]  ? aa_sock_msg_perm+0x91/0x160
[  294.241578][T12267]  ? __pfx_netlink_sendmsg+0x10/0x10
[  294.241597][T12267]  __sock_sendmsg+0x221/0x270
[  294.241621][T12267]  ____sys_sendmsg+0x53a/0x860
[  294.241649][T12267]  ? __pfx_____sys_sendmsg+0x10/0x10
[  294.241664][T12267]  ? __fget_files+0x2a/0x410
[  294.241689][T12267]  ? __fget_files+0x2a/0x410
[  294.241718][T12267]  __sys_sendmsg+0x269/0x350
[  294.241741][T12267]  ? __pfx___sys_sendmsg+0x10/0x10
[  294.241773][T12267]  ? do_sys_openat2+0x17a/0x1d0
[  294.241823][T12267]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  294.241847][T12267]  ? do_syscall_64+0x100/0x230
[  294.241870][T12267]  ? do_syscall_64+0xb6/0x230
[  294.241892][T12267]  do_syscall_64+0xf3/0x230
[  294.241911][T12267]  ? clear_bhb_loop+0x35/0x90
[  294.241935][T12267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.241955][T12267] RIP: 0033:0x7f9ab178d169
[  294.241971][T12267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.241985][T12267] RSP: 002b:00007f9ab2566038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  294.242004][T12267] RAX: ffffffffffffffda RBX: 00007f9ab19a5fa0 RCX: 00007f9ab178d169
[  294.242016][T12267] RDX: 0000000000000000 RSI: 0000400000000140 RDI: 0000000000000004
[  294.242027][T12267] RBP: 00007f9ab2566090 R08: 0000000000000000 R09: 0000000000000000
[  294.242037][T12267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  294.242047][T12267] R13: 0000000000000000 R14: 00007f9ab19a5fa0 R15: 00007ffcbf3ec068
[  294.242077][T12267]  </TASK>
[  294.738089][ T5842] Bluetooth: hci4: link tx timeout
[  294.744617][ T5842] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  294.807847][T12277] ieee802154 phy0 wpan0: encryption failed: -22
[  294.937996][T12279] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  294.990767][T12282] FAULT_INJECTION: forcing a failure.
[  294.990767][T12282] name failslab, interval 1, probability 0, space 0, times 0
[  295.003721][T12282] CPU: 1 UID: 0 PID: 12282 Comm: syz.1.2110 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  295.003745][T12282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  295.003754][T12282] Call Trace:
[  295.003760][T12282]  <TASK>
[  295.003767][T12282]  dump_stack_lvl+0x241/0x360
[  295.003793][T12282]  ? __pfx_dump_stack_lvl+0x10/0x10
[  295.003812][T12282]  ? __pfx__printk+0x10/0x10
[  295.003836][T12282]  ? __ip_dev_find+0x497/0x570
[  295.003860][T12282]  should_fail_ex+0x40a/0x550
[  295.003887][T12282]  should_failslab+0xac/0x100
[  295.003907][T12282]  ? dst_alloc+0x12b/0x190
[  295.003922][T12282]  kmem_cache_alloc_noprof+0x70/0x380
[  295.003949][T12282]  dst_alloc+0x12b/0x190
[  295.003970][T12282]  ip_route_output_key_hash_rcu+0x1378/0x2290
[  295.004002][T12282]  ip_route_output_key_hash+0x193/0x2b0
[  295.004020][T12282]  ? ip_route_output_key_hash+0xdf/0x2b0
[  295.004034][T12282]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  295.004057][T12282]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  295.004085][T12282]  ip_route_output_flow+0x29/0x140
[  295.004108][T12282]  __ip4_datagram_connect+0x95b/0x1260
[  295.004153][T12282]  udp_connect+0x33/0x200
[  295.004186][T12282]  __sys_connect+0x288/0x2d0
[  295.004209][T12282]  ? __fget_files+0x2a/0x410
[  295.004231][T12282]  ? __pfx___sys_connect+0x10/0x10
[  295.004266][T12282]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  295.004289][T12282]  ? do_syscall_64+0x100/0x230
[  295.004310][T12282]  __x64_sys_connect+0x7a/0x90
[  295.004332][T12282]  do_syscall_64+0xf3/0x230
[  295.004349][T12282]  ? clear_bhb_loop+0x35/0x90
[  295.004373][T12282]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.004393][T12282] RIP: 0033:0x7f9ab178d169
[  295.004408][T12282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.004420][T12282] RSP: 002b:00007f9ab2566038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  295.004437][T12282] RAX: ffffffffffffffda RBX: 00007f9ab19a5fa0 RCX: 00007f9ab178d169
[  295.004449][T12282] RDX: 0000000000000010 RSI: 0000400000000040 RDI: 0000000000000004
[  295.004459][T12282] RBP: 00007f9ab2566090 R08: 0000000000000000 R09: 0000000000000000
[  295.004470][T12282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  295.004480][T12282] R13: 0000000000000000 R14: 00007f9ab19a5fa0 R15: 00007ffcbf3ec068
[  295.004508][T12282]  </TASK>
[  295.330659][T12270] lo speed is unknown, defaulting to 1000
[  295.408187][T12291] ieee802154 phy0 wpan0: encryption failed: -22
[  295.415469][T12291] ieee802154 phy0 wpan0: encryption failed: -22
[  295.441478][T12293] Unsupported ieee802154 address type: 0
[  295.548978][T12299] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$�'
[  295.565103][T12299] CPU: 0 UID: 0 PID: 12299 Comm: syz.4.2118 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  295.565141][T12299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  295.565153][T12299] Call Trace:
[  295.565159][T12299]  <TASK>
[  295.565168][T12299]  dump_stack_lvl+0x241/0x360
[  295.565195][T12299]  ? __pfx_dump_stack_lvl+0x10/0x10
[  295.565213][T12299]  ? __pfx__printk+0x10/0x10
[  295.565236][T12299]  ? __kmalloc_cache_noprof+0x243/0x390
[  295.565258][T12299]  ? sysfs_warn_dup+0x51/0xa0
[  295.565284][T12299]  sysfs_warn_dup+0x8e/0xa0
[  295.565303][T12299]  sysfs_do_create_link_sd+0xbe/0x110
[  295.565324][T12299]  device_add_class_symlinks+0x1c5/0x250
[  295.565350][T12299]  device_add+0x553/0xbf0
[  295.565379][T12299]  wiphy_register+0x1922/0x2650
[  295.565416][T12299]  ? __pfx_wiphy_register+0x10/0x10
[  295.565435][T12299]  ? minstrel_ht_alloc+0x84b/0x940
[  295.565464][T12299]  ? ieee80211_init_rate_ctrl_alg+0x5a2/0x620
[  295.565491][T12299]  ieee80211_register_hw+0x35d9/0x42e0
[  295.565527][T12299]  ? ieee80211_register_hw+0x1651/0x42e0
[  295.565559][T12299]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  295.565590][T12299]  ? __asan_memset+0x23/0x50
[  295.565606][T12299]  ? __hrtimer_init+0x170/0x250
[  295.565628][T12299]  mac80211_hwsim_new_radio+0x2a89/0x49f0
[  295.565681][T12299]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  295.565699][T12299]  ? trace_kmalloc+0x1f/0xd0
[  295.565716][T12299]  ? __kmalloc_node_track_caller_noprof+0x2a8/0x4c0
[  295.565737][T12299]  ? kstrndup+0xbb/0x150
[  295.565766][T12299]  hwsim_new_radio_nl+0xece/0x2290
[  295.565796][T12299]  ? __pfx___nla_validate_parse+0x10/0x10
[  295.565816][T12299]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  295.565870][T12299]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  295.565898][T12299]  genl_rcv_msg+0xb1f/0xec0
[  295.565925][T12299]  ? __pfx_genl_rcv_msg+0x10/0x10
[  295.565970][T12299]  ? __pfx_lock_acquire+0x10/0x10
[  295.565992][T12299]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  295.566014][T12299]  ? __pfx___might_resched+0x10/0x10
[  295.566049][T12299]  netlink_rcv_skb+0x206/0x480
[  295.566071][T12299]  ? __pfx_genl_rcv_msg+0x10/0x10
[  295.566089][T12299]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  295.566153][T12299]  genl_rcv+0x28/0x40
[  295.566169][T12299]  netlink_unicast+0x7f6/0x990
[  295.566198][T12299]  ? __pfx_netlink_unicast+0x10/0x10
[  295.566213][T12299]  ? __virt_addr_valid+0x45f/0x530
[  295.566228][T12299]  ? __phys_addr_symbol+0x2f/0x70
[  295.566242][T12299]  ? __check_object_size+0x47a/0x730
[  295.566265][T12299]  netlink_sendmsg+0x8de/0xcb0
[  295.566298][T12299]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.566326][T12299]  ? aa_sock_msg_perm+0x91/0x160
[  295.566356][T12299]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.566375][T12299]  __sock_sendmsg+0x221/0x270
[  295.566398][T12299]  ____sys_sendmsg+0x53a/0x860
[  295.566426][T12299]  ? __pfx_____sys_sendmsg+0x10/0x10
[  295.566443][T12299]  ? __fget_files+0x2a/0x410
[  295.566471][T12299]  ? __fget_files+0x2a/0x410
[  295.566504][T12299]  __sys_sendmsg+0x269/0x350
[  295.566522][T12299]  ? __pfx_futex_wake+0x10/0x10
[  295.566551][T12299]  ? __pfx___sys_sendmsg+0x10/0x10
[  295.566621][T12299]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  295.566647][T12299]  ? do_syscall_64+0x100/0x230
[  295.566671][T12299]  ? do_syscall_64+0xb6/0x230
[  295.566694][T12299]  do_syscall_64+0xf3/0x230
[  295.566714][T12299]  ? clear_bhb_loop+0x35/0x90
[  295.566739][T12299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.566761][T12299] RIP: 0033:0x7fb98f38d169
[  295.566776][T12299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.566790][T12299] RSP: 002b:00007fb99029f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  295.566808][T12299] RAX: ffffffffffffffda RBX: 00007fb98f5a5fa0 RCX: 00007fb98f38d169
[  295.566820][T12299] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000004
[  295.566832][T12299] RBP: 00007fb98f40e2a0 R08: 0000000000000000 R09: 0000000000000000
[  295.566843][T12299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  295.566854][T12299] R13: 0000000000000000 R14: 00007fb98f5a5fa0 R15: 00007ffe01e61688
[  295.566886][T12299]  </TASK>
[  296.177994][T12310] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2122'.
[  296.183776][T12314] ieee802154 phy0 wpan0: encryption failed: -22
[  296.193376][T12310] netlink: 27 bytes leftover after parsing attributes in process `syz.2.2122'.
[  296.312247][T12316] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2125'.
[  296.358324][T12319] raw_sendmsg: syz.1.2125 forgot to set AF_INET. Fix it!
[  296.471612][T12323] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2128'.
[  296.562573][T12328] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2128'.
[  296.583400][T12332] ieee802154 phy0 wpan0: encryption failed: -22
[  296.598185][T12332] ieee802154 phy0 wpan0: encryption failed: -22
[  296.609927][T12334] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2131'.
[  296.783730][ T5842] Bluetooth: hci4: command 0x0405 tx timeout
[  296.902596][T12344] lo speed is unknown, defaulting to 1000
[  296.912598][T12347] ieee802154 phy0 wpan0: encryption failed: -22
[  296.946777][T12349] ------------[ cut here ]------------
[  296.953007][T12349] RTNL: assertion failed at net/core/dev.c (1769)
[  296.962114][T12349] WARNING: CPU: 0 PID: 12349 at net/core/dev.c:1769 dev_setup_tc+0x315/0x360
[  296.971636][T12349] Modules linked in:
[  296.975578][T12349] CPU: 0 UID: 0 PID: 12349 Comm: syz.3.2133 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  296.986697][T12349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  296.996899][T12349] RIP: 0010:dev_setup_tc+0x315/0x360
[  297.002287][T12349] Code: cc 49 89 ee e8 dc da f7 f7 c6 05 c0 39 5d 06 01 90 48 c7 c7 a0 5e 2e 8d 48 c7 c6 80 5e 2e 8d ba e9 06 00 00 e8 3c 97 b7 f7 90 <0f> 0b 90 90 e9 66 fd ff ff 89 d1 80 e1 07 38 c1 0f 8c aa fd ff ff
[  297.023366][T12349] RSP: 0018:ffffc900060b6ed0 EFLAGS: 00010246
[  297.029485][T12349] RAX: 3ddb54e3d1186100 RBX: 0000000000000000 RCX: 0000000000080000
[  297.037606][T12349] RDX: ffffc9001184d000 RSI: 00000000000049ce RDI: 00000000000049cf
[  297.045685][T12349] RBP: ffff888012318008 R08: ffffffff81818e32 R09: fffffbfff1d3a67c
[  297.054064][T12349] R10: dffffc0000000000 R11: fffffbfff1d3a67c R12: ffffc900060b7070
[  297.062155][T12349] R13: ffffffff8d4ab1e0 R14: ffff888012318008 R15: ffff888012318000
[  297.070218][T12349] FS:  00007f6fac2576c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  297.079366][T12349] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  297.086184][T12349] CR2: 0000000000000000 CR3: 0000000031932000 CR4: 00000000003526f0
[  297.094873][T12349] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  297.104471][T12349] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  297.112782][T12349] Call Trace:
[  297.116089][T12349]  <TASK>
[  297.119073][T12349]  ? __warn+0x165/0x4d0
[  297.123338][T12349]  ? dev_setup_tc+0x315/0x360
[  297.128073][T12349]  ? report_bug+0x2b3/0x500
[  297.132827][T12349]  ? dev_setup_tc+0x315/0x360
[  297.137564][T12349]  ? handle_bug+0x60/0x90
[  297.142025][T12349]  ? exc_invalid_op+0x1a/0x50
[  297.146744][T12349]  ? asm_exc_invalid_op+0x1a/0x20
[  297.151877][T12349]  ? __warn_printk+0x292/0x360
[  297.156770][T12349]  ? dev_setup_tc+0x315/0x360
[  297.161563][T12349]  nf_flow_table_offload_setup+0x2ff/0x710
[  297.167591][T12349]  ? __pfx_ieee80211_netdev_setup_tc+0x10/0x10
[  297.173867][T12349]  ? __pfx_nf_flow_table_offload_setup+0x10/0x10
[  297.180262][T12349]  ? __pfx_lock_release+0x10/0x10
[  297.185413][T12349]  ? nft_pernet+0x23/0x240
[  297.189997][T12349]  ? __pfx_nf_flow_table_offload_setup+0x10/0x10
[  297.196417][T12349]  nft_register_flowtable_net_hooks+0x24c/0x570
[  297.202943][T12349]  nf_tables_newflowtable+0x19f4/0x23d0
[  297.208569][T12349]  ? __pfx_nf_tables_newflowtable+0x10/0x10
[  297.214576][T12349]  ? nfnl_pernet+0x23/0x240
[  297.219122][T12349]  ? __pfx_lock_release+0x10/0x10
[  297.224264][T12349]  ? __nla_parse+0x40/0x60
[  297.228796][T12349]  nfnetlink_rcv+0x14e3/0x2ab0
[  297.233743][T12349]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  297.238949][T12349]  ? netlink_deliver_tap+0x2e/0x1b0
[  297.244331][T12349]  ? skb_clone+0x240/0x390
[  297.248889][T12349]  ? __pfx_lock_release+0x10/0x10
[  297.254109][T12349]  ? netlink_deliver_tap+0x2e/0x1b0
[  297.259439][T12349]  netlink_unicast+0x7f6/0x990
[  297.264335][T12349]  ? __pfx_netlink_unicast+0x10/0x10
[  297.269783][T12349]  ? __virt_addr_valid+0x45f/0x530
[  297.275047][T12349]  ? __phys_addr_symbol+0x2f/0x70
[  297.280202][T12349]  ? __check_object_size+0x47a/0x730
[  297.285604][T12349]  netlink_sendmsg+0x8de/0xcb0
[  297.290435][T12349]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.295955][T12349]  ? aa_sock_msg_perm+0x91/0x160
[  297.300951][T12349]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.306438][T12349]  __sock_sendmsg+0x221/0x270
[  297.311432][T12349]  ____sys_sendmsg+0x53a/0x860
[  297.316272][T12349]  ? __pfx_____sys_sendmsg+0x10/0x10
[  297.321664][T12349]  ? futex_wake+0x523/0x5c0
[  297.326214][T12349]  __sys_sendmsg+0x269/0x350
[  297.330848][T12349]  ? __pfx_futex_wake+0x10/0x10
[  297.336050][T12349]  ? __pfx___sys_sendmsg+0x10/0x10
[  297.341313][T12349]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  297.347695][T12349]  ? do_syscall_64+0x100/0x230
[  297.352634][T12349]  ? do_syscall_64+0xb6/0x230
[  297.357358][T12349]  do_syscall_64+0xf3/0x230
[  297.361940][T12349]  ? clear_bhb_loop+0x35/0x90
[  297.366665][T12349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.372665][T12349] RIP: 0033:0x7f6fab38d169
[  297.377104][T12349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.396946][T12349] RSP: 002b:00007f6fac257038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  297.405498][T12349] RAX: ffffffffffffffda RBX: 00007f6fab5a6160 RCX: 00007f6fab38d169
[  297.413592][T12349] RDX: 0000000000000000 RSI: 0000400000000300 RDI: 000000000000000b
[  297.421665][T12349] RBP: 00007f6fab40e2a0 R08: 0000000000000000 R09: 0000000000000000
[  297.429668][T12349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  297.437820][T12349] R13: 0000000000000000 R14: 00007f6fab5a6160 R15: 00007ffe572fe808
[  297.445902][T12349]  </TASK>
[  297.448977][T12349] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  297.456278][T12349] CPU: 0 UID: 0 PID: 12349 Comm: syz.3.2133 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  297.467136][T12349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  297.477569][T12349] Call Trace:
[  297.480855][T12349]  <TASK>
[  297.483805][T12349]  dump_stack_lvl+0x241/0x360
[  297.488598][T12349]  ? __pfx_dump_stack_lvl+0x10/0x10
[  297.493831][T12349]  ? __pfx__printk+0x10/0x10
[  297.498469][T12349]  ? vscnprintf+0x5d/0x90
[  297.502857][T12349]  panic+0x349/0x880
[  297.506770][T12349]  ? __warn+0x174/0x4d0
[  297.511004][T12349]  ? __pfx_panic+0x10/0x10
[  297.515525][T12349]  __warn+0x344/0x4d0
[  297.519495][T12349]  ? dev_setup_tc+0x315/0x360
[  297.524191][T12349]  report_bug+0x2b3/0x500
[  297.528531][T12349]  ? dev_setup_tc+0x315/0x360
[  297.533210][T12349]  handle_bug+0x60/0x90
[  297.537377][T12349]  exc_invalid_op+0x1a/0x50
[  297.542139][T12349]  asm_exc_invalid_op+0x1a/0x20
[  297.547026][T12349] RIP: 0010:dev_setup_tc+0x315/0x360
[  297.552794][T12349] Code: cc 49 89 ee e8 dc da f7 f7 c6 05 c0 39 5d 06 01 90 48 c7 c7 a0 5e 2e 8d 48 c7 c6 80 5e 2e 8d ba e9 06 00 00 e8 3c 97 b7 f7 90 <0f> 0b 90 90 e9 66 fd ff ff 89 d1 80 e1 07 38 c1 0f 8c aa fd ff ff
[  297.573145][T12349] RSP: 0018:ffffc900060b6ed0 EFLAGS: 00010246
[  297.579218][T12349] RAX: 3ddb54e3d1186100 RBX: 0000000000000000 RCX: 0000000000080000
[  297.587241][T12349] RDX: ffffc9001184d000 RSI: 00000000000049ce RDI: 00000000000049cf
[  297.595667][T12349] RBP: ffff888012318008 R08: ffffffff81818e32 R09: fffffbfff1d3a67c
[  297.603678][T12349] R10: dffffc0000000000 R11: fffffbfff1d3a67c R12: ffffc900060b7070
[  297.611684][T12349] R13: ffffffff8d4ab1e0 R14: ffff888012318008 R15: ffff888012318000
[  297.620018][T12349]  ? __warn_printk+0x292/0x360
[  297.624799][T12349]  nf_flow_table_offload_setup+0x2ff/0x710
[  297.630615][T12349]  ? __pfx_ieee80211_netdev_setup_tc+0x10/0x10
[  297.636790][T12349]  ? __pfx_nf_flow_table_offload_setup+0x10/0x10
[  297.643130][T12349]  ? __pfx_lock_release+0x10/0x10
[  297.648256][T12349]  ? nft_pernet+0x23/0x240
[  297.652669][T12349]  ? __pfx_nf_flow_table_offload_setup+0x10/0x10
[  297.659001][T12349]  nft_register_flowtable_net_hooks+0x24c/0x570
[  297.665352][T12349]  nf_tables_newflowtable+0x19f4/0x23d0
[  297.671030][T12349]  ? __pfx_nf_tables_newflowtable+0x10/0x10
[  297.677446][T12349]  ? nfnl_pernet+0x23/0x240
[  297.681949][T12349]  ? __pfx_lock_release+0x10/0x10
[  297.687479][T12349]  ? __nla_parse+0x40/0x60
[  297.691897][T12349]  nfnetlink_rcv+0x14e3/0x2ab0
[  297.696682][T12349]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  297.701872][T12349]  ? netlink_deliver_tap+0x2e/0x1b0
[  297.707073][T12349]  ? skb_clone+0x240/0x390
[  297.711492][T12349]  ? __pfx_lock_release+0x10/0x10
[  297.716640][T12349]  ? netlink_deliver_tap+0x2e/0x1b0
[  297.721843][T12349]  netlink_unicast+0x7f6/0x990
[  297.726700][T12349]  ? __pfx_netlink_unicast+0x10/0x10
[  297.732009][T12349]  ? __virt_addr_valid+0x45f/0x530
[  297.737186][T12349]  ? __phys_addr_symbol+0x2f/0x70
[  297.742235][T12349]  ? __check_object_size+0x47a/0x730
[  297.747608][T12349]  netlink_sendmsg+0x8de/0xcb0
[  297.752379][T12349]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.757666][T12349]  ? aa_sock_msg_perm+0x91/0x160
[  297.762612][T12349]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.767897][T12349]  __sock_sendmsg+0x221/0x270
[  297.772576][T12349]  ____sys_sendmsg+0x53a/0x860
[  297.777342][T12349]  ? __pfx_____sys_sendmsg+0x10/0x10
[  297.782638][T12349]  ? futex_wake+0x523/0x5c0
[  297.787319][T12349]  __sys_sendmsg+0x269/0x350
[  297.791908][T12349]  ? __pfx_futex_wake+0x10/0x10
[  297.796778][T12349]  ? __pfx___sys_sendmsg+0x10/0x10
[  297.802372][T12349]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  297.808738][T12349]  ? do_syscall_64+0x100/0x230
[  297.813792][T12349]  ? do_syscall_64+0xb6/0x230
[  297.818635][T12349]  do_syscall_64+0xf3/0x230
[  297.823313][T12349]  ? clear_bhb_loop+0x35/0x90
[  297.827999][T12349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.834089][T12349] RIP: 0033:0x7f6fab38d169
[  297.839230][T12349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.859220][T12349] RSP: 002b:00007f6fac257038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  297.867780][T12349] RAX: ffffffffffffffda RBX: 00007f6fab5a6160 RCX: 00007f6fab38d169
[  297.875775][T12349] RDX: 0000000000000000 RSI: 0000400000000300 RDI: 000000000000000b
[  297.883926][T12349] RBP: 00007f6fab40e2a0 R08: 0000000000000000 R09: 0000000000000000
[  297.891895][T12349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  297.899863][T12349] R13: 0000000000000000 R14: 00007f6fab5a6160 R15: 00007ffe572fe808
[  297.907937][T12349]  </TASK>
[  297.911191][T12349] Kernel Offset: disabled
[  297.915598][T12349] Rebooting in 86400 seconds..