last executing test programs: 1.584294118s ago: executing program 3 (id=887): r0 = socket$inet_sctp(0x2, 0x5, 0x84) close(r0) socket$inet6_mptcp(0xa, 0x1, 0x106) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) 1.423994941s ago: executing program 3 (id=893): socket$inet_mptcp(0x2, 0x1, 0x106) socket$nl_route(0x10, 0x3, 0x0) syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) socket$netlink(0x10, 0x3, 0xa) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r2, 0x1, 0x4c, &(0x7f0000000000), 0x4) sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) recvmsg$unix(r2, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) unshare(0xa020480) pselect6(0x40, &(0x7f0000000200)={0x1000, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x84}, 0x0, 0x0, 0x0, 0x0) 1.179985901s ago: executing program 0 (id=899): syz_emit_ethernet(0x7e, &(0x7f0000000140)={@multicast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @parameter_prob={0xc, 0x0, 0x0, 0x54, 0xd1, 0x0, {0x15, 0x4, 0x1, 0x1, 0x3, 0x66, 0xff, 0x9, 0x84, 0x8, @empty, @broadcast, {[@rr={0x7, 0x13, 0x7a, [@private=0xa010100, @multicast2, @remote, @loopback]}, @ssrr={0x89, 0x7, 0x30, [@dev={0xac, 0x14, 0x14, 0x36}]}, @timestamp_prespec={0x44, 0x1c, 0xee, 0x3, 0x4, [{@rand_addr=0x64010102, 0x1}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0xe32}, {@local, 0x5}]}, @ra={0x94, 0x4, 0xf1dc}, @ssrr={0x89, 0x3, 0xa7}]}}}}}}}, 0x0) 984.165099ms ago: executing program 0 (id=902): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800"/13], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000380), r0) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000180)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd7000fedbdf2531000000050036000100000005003300fb0000000a0001007770616e31000000050035"], 0x38}}, 0x4000000) 983.9512ms ago: executing program 2 (id=903): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000400000000000000000000008500000041000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x67d30701, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 983.747846ms ago: executing program 1 (id=904): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c090000560333"], 0x398}}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x28, r6, 0x1, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x41}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0xc0) 852.922868ms ago: executing program 1 (id=905): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000020000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)=@newlink={0x4c, 0x10, 0xffffff1f, 0x0, 0x80, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ERSPAN_HWID={0x6, 0x18, 0x80}]}}}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x4c}}, 0x4080) 813.526394ms ago: executing program 2 (id=906): r0 = socket$l2tp(0x2, 0x2, 0x73) setsockopt$sock_int(r0, 0x1, 0x3d, &(0x7f0000000180), 0x4) 735.18454ms ago: executing program 0 (id=907): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01e164bd7000fedbdf251a0000000600210061008000200022"], 0x3c}, 0x1, 0x0, 0x0, 0x4040001}, 0x4000) 662.201886ms ago: executing program 2 (id=908): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) r1 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x1}) 652.624167ms ago: executing program 4 (id=909): r0 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033"], 0x38}}, 0x0) 548.240153ms ago: executing program 4 (id=910): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x7, 0x1, 0x9, 0x1, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, 0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000380)}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_BIND_MAP(0x23, &(0x7f0000000440)={r3, r0}, 0xc) 547.999088ms ago: executing program 1 (id=911): r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) listen(r0, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) connect$unix(r1, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000008bc0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000100)='D', 0x1}], 0x1, 0x0, 0x0, 0x4000}}], 0x1, 0x1) 534.191554ms ago: executing program 4 (id=912): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb"], 0x0, 0x39, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff"], 0x398}}, 0x0) 501.33168ms ago: executing program 0 (id=913): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x6c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0xc019, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @beacon=[@NL80211_ATTR_FTM_RESPONDER={0x10, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_LCI={0x5, 0x2, "19"}]}]]}, 0x6c}}, 0x0) 412.319314ms ago: executing program 2 (id=914): r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r0, 0x10d, 0x90, 0x0, &(0x7f0000000240)) 412.086015ms ago: executing program 3 (id=915): ioctl$SIOCAX25CTLCON(0xffffffffffffffff, 0x89e8, &(0x7f0000000040)={@default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, 0x5, 0x5, 0x2, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @default, @bcast]}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 411.956854ms ago: executing program 1 (id=916): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x58, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'syz_tun\x00'}]}]}]}], {0x14}}, 0x80}}, 0x0) syz_emit_ethernet(0x3e, &(0x7f0000000240)=ANY=[], 0x0) 387.180719ms ago: executing program 4 (id=917): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x5, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0xc, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x7b}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) 364.77067ms ago: executing program 2 (id=918): r0 = socket$igmp(0x2, 0x3, 0x2) r1 = bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000002100)={0x1, 'wg1\x00', 0x40001}, 0x18) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000580)={0x1, 'dummy0\x00'}, 0x18) 276.260152ms ago: executing program 3 (id=919): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000027c0)=@base={0x4, 0x4, 0x4, 0x10005, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) 276.06209ms ago: executing program 0 (id=920): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x16}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x78}}, 0x0) 229.515347ms ago: executing program 1 (id=921): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r0}, 0x10) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18030000fffffffb000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70200000d000000b7020000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000001200)='signal_generate\x00', r2}, 0x10) 183.875813ms ago: executing program 4 (id=922): r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000880)=ANY=[@ANYBLOB='('], 0x28}, 0x1, 0x0, 0x0, 0x40010}, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) sendmmsg(r0, &(0x7f0000000180), 0x400000000000077, 0x0) 132.284475ms ago: executing program 2 (id=923): bind$inet(0xffffffffffffffff, 0x0, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0) 132.101843ms ago: executing program 3 (id=924): sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x1c, 0x2, 0x3, 0x5, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFQA_CFG_CMD={0x8, 0x1, {0xa949dcbfa0cf7eae, 0x0, 0x22}}]}, 0x1c}}, 0x80) syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast2, @loopback}, 0xc) r1 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'lo\x00'}) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000080)=ANY=[@ANYBLOB="e00000027f0007000000000002"], 0x18) 118.545133ms ago: executing program 0 (id=925): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) 52.49794ms ago: executing program 1 (id=926): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'geneve0\x00', 0x8000}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000001780)={0x0, 0x0, 0x0}, 0x8090) recvmsg$unix(r0, &(0x7f0000001b40)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) r3 = socket$kcm(0xa, 0x2, 0x88) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r3, 0x1, 0x3e, &(0x7f00000002c0)=r4, 0x4) setsockopt$sock_attach_bpf(r3, 0x1, 0x41, &(0x7f0000000040)=r2, 0x4) 209.368µs ago: executing program 4 (id=927): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000808500000004000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x18) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f0000000080)=0xc) sendmsg$netlink(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000018c0)={0x2c, 0x2e, 0x1, 0x70bd2d, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid=r3}, @nested={0x14, 0x0, 0x0, 0x1, [@nested={0x10, 0x7d, 0x0, 0x1, [@typed={0xc, 0x9f, 0x0, 0x0, @u64=0x3}]}]}]}, 0x2c}], 0x1}, 0x4) 0s ago: executing program 3 (id=928): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000740)=@framed={{0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0xfffff000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000, 0x0, 0x0, 0x0, 0x0}, 0x50) r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) close(r2) kernel console output (not intermixed with test programs): 8] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.552020][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 60.603477][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 60.610459][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.639717][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 60.658178][ T5830] team0: Port device team_slave_0 added [ 60.682075][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.693882][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.707599][ T5830] team0: Port device team_slave_1 added [ 60.715750][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.729834][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.741691][ T5836] hsr_slave_0: entered promiscuous mode [ 60.748570][ T5836] hsr_slave_1: entered promiscuous mode [ 60.806743][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 60.814018][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.840414][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 60.869592][ T5831] team0: Port device team_slave_0 added [ 60.882416][ T5828] hsr_slave_0: entered promiscuous mode [ 60.888689][ T5828] hsr_slave_1: entered promiscuous mode [ 60.895118][ T5828] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 60.902816][ T5828] Cannot create hsr debugfs directory [ 60.917055][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 60.924700][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.951084][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 60.965097][ T5835] team0: Port device team_slave_0 added [ 60.976408][ T5831] team0: Port device team_slave_1 added [ 60.999358][ T5835] team0: Port device team_slave_1 added [ 61.067830][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.076208][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.103034][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.134026][ T5843] Bluetooth: hci4: command tx timeout [ 61.145595][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.152552][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.178770][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.202389][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.209392][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.219559][ T5843] Bluetooth: hci0: command tx timeout [ 61.235662][ T5833] Bluetooth: hci1: command tx timeout [ 61.241095][ T5846] Bluetooth: hci3: command tx timeout [ 61.246907][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.265109][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.272245][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.298560][ T5846] Bluetooth: hci2: command tx timeout [ 61.303763][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.378430][ T5830] hsr_slave_0: entered promiscuous mode [ 61.384709][ T5830] hsr_slave_1: entered promiscuous mode [ 61.390754][ T5830] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 61.399307][ T5830] Cannot create hsr debugfs directory [ 61.429991][ T5831] hsr_slave_0: entered promiscuous mode [ 61.436675][ T5831] hsr_slave_1: entered promiscuous mode [ 61.442596][ T5831] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 61.450666][ T5831] Cannot create hsr debugfs directory [ 61.468105][ T5835] hsr_slave_0: entered promiscuous mode [ 61.477565][ T5835] hsr_slave_1: entered promiscuous mode [ 61.484288][ T5835] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 61.491844][ T5835] Cannot create hsr debugfs directory [ 61.633768][ T5828] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 61.666577][ T5828] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 61.676481][ T5828] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 61.714818][ T5828] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 61.808358][ T5836] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 61.834450][ T5836] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 61.848276][ T5836] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 61.868101][ T5836] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 61.882956][ T5835] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 61.892697][ T5835] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 61.920053][ T5835] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 61.931756][ T5835] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 61.978279][ T5831] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.005136][ T5831] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 62.016450][ T5831] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 62.050213][ T5831] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 62.113626][ T5830] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 62.122893][ T5830] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 62.136235][ T5830] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 62.165116][ T5830] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 62.199908][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.220108][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.279933][ T5836] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.300037][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.317712][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.325029][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.353188][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.360356][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.372136][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.379264][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.407494][ T5836] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 62.418401][ T5836] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 62.440374][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.462074][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.469205][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.521577][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.559605][ T5835] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.579372][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.590068][ T3609] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.597232][ T3609] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.628297][ T3609] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.635449][ T3609] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.649314][ T3609] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.656463][ T3609] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.677098][ T3609] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.684331][ T3609] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.787326][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.825036][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.834591][ T5835] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 62.855914][ T5835] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 62.939091][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.951921][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.959125][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.970592][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.977966][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 63.086357][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 63.127992][ T5836] veth0_vlan: entered promiscuous mode [ 63.161067][ T5836] veth1_vlan: entered promiscuous mode [ 63.182097][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 63.226233][ T5846] Bluetooth: hci4: command tx timeout [ 63.247871][ T5828] veth0_vlan: entered promiscuous mode [ 63.269388][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 63.281451][ T5828] veth1_vlan: entered promiscuous mode [ 63.293799][ T5843] Bluetooth: hci3: command tx timeout [ 63.294530][ T5833] Bluetooth: hci0: command tx timeout [ 63.299280][ T5846] Bluetooth: hci1: command tx timeout [ 63.369759][ T5836] veth0_macvtap: entered promiscuous mode [ 63.383749][ T5846] Bluetooth: hci2: command tx timeout [ 63.388626][ T5831] veth0_vlan: entered promiscuous mode [ 63.407356][ T5836] veth1_macvtap: entered promiscuous mode [ 63.420254][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 63.447992][ T5835] veth0_vlan: entered promiscuous mode [ 63.465962][ T5831] veth1_vlan: entered promiscuous mode [ 63.481206][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 63.496741][ T5835] veth1_vlan: entered promiscuous mode [ 63.525715][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 63.550585][ T5828] veth0_macvtap: entered promiscuous mode [ 63.570679][ T5828] veth1_macvtap: entered promiscuous mode [ 63.584713][ T5836] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.595178][ T5836] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.607639][ T5836] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.619357][ T5836] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.632815][ T5835] veth0_macvtap: entered promiscuous mode [ 63.676494][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 63.687326][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.715142][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 63.724457][ T5835] veth1_macvtap: entered promiscuous mode [ 63.763112][ T5831] veth0_macvtap: entered promiscuous mode [ 63.776982][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 63.800114][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.811076][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 63.828178][ T5831] veth1_macvtap: entered promiscuous mode [ 63.845914][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 63.861158][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.871864][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 63.882719][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.895054][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 63.908320][ T5828] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.917529][ T5828] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.926690][ T5828] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.938251][ T5828] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.961948][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.964661][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 63.973434][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.994353][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.005243][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.016133][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.029220][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.040355][ T5835] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.050513][ T5835] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.060015][ T5835] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.068925][ T5835] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.096221][ T5830] veth0_vlan: entered promiscuous mode [ 64.130848][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.133948][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.139178][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.155566][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.167182][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.178080][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.188139][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.198595][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.209619][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.232657][ T5830] veth1_vlan: entered promiscuous mode [ 64.275623][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.297015][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.300287][ T5836] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 64.308723][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.334753][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.349040][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.359636][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.370840][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.391745][ T5831] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.433765][ T5831] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.442979][ T5831] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.458634][ T5831] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.512686][ T3609] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.534732][ T3609] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.540219][ T5830] veth0_macvtap: entered promiscuous mode [ 64.569132][ T3609] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.582241][ T3609] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.592486][ T5830] veth1_macvtap: entered promiscuous mode [ 64.604643][ T5914] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3'. [ 64.631466][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.644195][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.655693][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.666194][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.679393][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.691354][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.704089][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.716694][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.729047][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.768738][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.779895][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.791311][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.804200][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.814510][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.825388][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.835588][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.846889][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.858053][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.877391][ T3425] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.883261][ T5830] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.886504][ T1528] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.906637][ T3425] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.908580][ T5830] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.914201][ T1528] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.931019][ T5830] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.939982][ T5830] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.015947][ T3609] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.047323][ T3609] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.170694][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.184025][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.199517][ T5920] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4'. [ 65.210553][ T5920] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4'. [ 65.223485][ T5920] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 65.238435][ T1528] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.272415][ T1528] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.298475][ T5846] Bluetooth: hci4: command tx timeout [ 65.374318][ T5846] Bluetooth: hci0: command tx timeout [ 65.379781][ T5846] Bluetooth: hci1: command tx timeout [ 65.385378][ T5846] Bluetooth: hci3: command tx timeout [ 65.457846][ T5833] Bluetooth: hci2: command tx timeout [ 65.494105][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.501978][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.612655][ T5933] netlink: 'syz.3.4': attribute type 4 has an invalid length. [ 65.637535][ T5930] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6'. [ 65.686538][ T5930] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 65.722919][ T5930] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6'. [ 65.915994][ T5938] netlink: 'syz.4.5': attribute type 3 has an invalid length. [ 65.965305][ T5938] syz.4.5 uses obsolete (PF_INET,SOCK_PACKET) [ 66.300541][ T5950] IPv6: Can't replace route, no match found [ 66.317412][ T5948] tipc: Started in network mode [ 66.330967][ T5948] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 66.366639][ T5948] tipc: New replicast peer: fc01:0000:0000:0000:0000:0000:0000:0000 [ 66.393072][ T5948] tipc: Enabled bearer , priority 10 [ 66.523861][ T5957] Zero length message leads to an empty skb [ 66.810536][ T52] hid-generic 0005:046D:FFF9.0001: item fetching failed at offset 0/1 [ 66.820700][ T5960] netlink: 'syz.4.15': attribute type 1 has an invalid length. [ 66.844021][ T52] hid-generic 0005:046D:FFF9.0001: probe with driver hid-generic failed with error -22 [ 66.989971][ T5970] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 67.032038][ T5970] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 67.112876][ T5977] netlink: 'syz.4.21': attribute type 46 has an invalid length. [ 67.135982][ T5977] netlink: 212868 bytes leftover after parsing attributes in process `syz.4.21'. [ 67.158700][ T5977] netlink: 8 bytes leftover after parsing attributes in process `syz.4.21'. [ 67.383518][ T5846] Bluetooth: hci4: command tx timeout [ 67.404909][ T5912] tipc: Node number set to 1 [ 67.453556][ T5846] Bluetooth: hci3: command tx timeout [ 67.459119][ T5846] Bluetooth: hci1: command tx timeout [ 67.464655][ T5833] Bluetooth: hci0: command tx timeout [ 67.482025][ T5994] netlink: 28 bytes leftover after parsing attributes in process `syz.3.22'. [ 67.522413][ T5994] netlink: 28 bytes leftover after parsing attributes in process `syz.3.22'. [ 67.534020][ T5846] Bluetooth: hci2: command tx timeout [ 67.817683][ T6002] (unnamed net_device) (uninitialized): up delay (5) is not a multiple of miimon (134217729), value rounded to 0 ms [ 67.934522][ T6004] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 68.056941][ T6008] netlink: 4 bytes leftover after parsing attributes in process `syz.0.28'. [ 69.041071][ T6039] x_tables: duplicate underflow at hook 1 [ 69.450936][ T6056] netlink: 'syz.4.42': attribute type 4 has an invalid length. [ 70.275450][ T6089] __nla_validate_parse: 6 callbacks suppressed [ 70.275472][ T6089] netlink: 8 bytes leftover after parsing attributes in process `syz.0.51'. [ 70.339844][ T6089] netlink: 48 bytes leftover after parsing attributes in process `syz.0.51'. [ 70.370397][ T6091] FAULT_INJECTION: forcing a failure. [ 70.370397][ T6091] name failslab, interval 1, probability 0, space 0, times 1 [ 70.414279][ T6091] CPU: 1 UID: 0 PID: 6091 Comm: syz.1.52 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 70.424842][ T6091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 70.434932][ T6091] Call Trace: [ 70.438224][ T6091] [ 70.441175][ T6091] dump_stack_lvl+0x241/0x360 [ 70.445907][ T6091] ? __pfx_dump_stack_lvl+0x10/0x10 [ 70.451135][ T6091] ? __pfx__printk+0x10/0x10 [ 70.455753][ T6091] ? __kmalloc_cache_noprof+0x48/0x390 [ 70.461244][ T6091] ? __pfx___might_resched+0x10/0x10 [ 70.466562][ T6091] should_fail_ex+0x3b0/0x4e0 [ 70.471267][ T6091] should_failslab+0xac/0x100 [ 70.475973][ T6091] __kmalloc_cache_noprof+0x70/0x390 [ 70.481284][ T6091] ? nfnetlink_rcv+0x24d5/0x2ab0 [ 70.486243][ T6091] nfnetlink_rcv+0x24d5/0x2ab0 [ 70.491044][ T6091] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 70.496230][ T6091] ? netlink_deliver_tap+0x2e/0x1b0 [ 70.501452][ T6091] ? skb_clone+0x240/0x390 [ 70.505978][ T6091] ? __pfx_lock_release+0x10/0x10 [ 70.511471][ T6091] ? netlink_deliver_tap+0x2e/0x1b0 [ 70.516701][ T6091] netlink_unicast+0x7f6/0x990 [ 70.521496][ T6091] ? __pfx_netlink_unicast+0x10/0x10 [ 70.526796][ T6091] ? __virt_addr_valid+0x45f/0x530 [ 70.531926][ T6091] ? __phys_addr_symbol+0x2f/0x70 [ 70.536950][ T6091] ? __check_object_size+0x47a/0x730 [ 70.542237][ T6091] netlink_sendmsg+0x8e4/0xcb0 [ 70.547004][ T6091] ? __pfx_netlink_sendmsg+0x10/0x10 [ 70.552285][ T6091] ? aa_sock_msg_perm+0x91/0x160 [ 70.557227][ T6091] ? __pfx_netlink_sendmsg+0x10/0x10 [ 70.562502][ T6091] __sock_sendmsg+0x221/0x270 [ 70.567186][ T6091] ____sys_sendmsg+0x52a/0x7e0 [ 70.571951][ T6091] ? __pfx_____sys_sendmsg+0x10/0x10 [ 70.577227][ T6091] ? __fget_files+0x2a/0x410 [ 70.581816][ T6091] ? __fget_files+0x2a/0x410 [ 70.586411][ T6091] __sys_sendmsg+0x269/0x350 [ 70.591001][ T6091] ? __pfx_lock_release+0x10/0x10 [ 70.596034][ T6091] ? __pfx___sys_sendmsg+0x10/0x10 [ 70.601171][ T6091] ? __pfx_vfs_write+0x10/0x10 [ 70.605963][ T6091] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 70.612309][ T6091] ? do_syscall_64+0x100/0x230 [ 70.617081][ T6091] ? do_syscall_64+0xb6/0x230 [ 70.621769][ T6091] do_syscall_64+0xf3/0x230 [ 70.626269][ T6091] ? clear_bhb_loop+0x35/0x90 [ 70.630956][ T6091] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 70.636867][ T6091] RIP: 0033:0x7fe640185d29 [ 70.641328][ T6091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 70.660930][ T6091] RSP: 002b:00007fe63fff9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 70.669343][ T6091] RAX: ffffffffffffffda RBX: 00007fe640375fa0 RCX: 00007fe640185d29 [ 70.677331][ T6091] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 70.685305][ T6091] RBP: 00007fe63fff9090 R08: 0000000000000000 R09: 0000000000000000 [ 70.693370][ T6091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 70.701340][ T6091] R13: 0000000000000000 R14: 00007fe640375fa0 R15: 00007fffc5ffa2f8 [ 70.709322][ T6091] [ 70.944140][ T6112] netlink: 44 bytes leftover after parsing attributes in process `syz.2.60'. [ 70.978717][ T6112] netlink: 43 bytes leftover after parsing attributes in process `syz.2.60'. [ 71.006079][ T6112] netlink: 'syz.2.60': attribute type 5 has an invalid length. [ 71.026264][ T6112] netlink: 43 bytes leftover after parsing attributes in process `syz.2.60'. [ 71.254372][ T6122] netdevsim netdevsim0 netdevsim1: Unsupported IPsec algorithm [ 71.282033][ T6131] bond2: entered promiscuous mode [ 71.297461][ T6131] bond2: entered allmulticast mode [ 71.302982][ T6131] 8021q: adding VLAN 0 to HW filter on device bond2 [ 71.368476][ T6138] Illegal XDP return value 4294967274 on prog (id 43) dev N/A, expect packet loss! [ 71.442961][ T6144] netlink: 8 bytes leftover after parsing attributes in process `syz.3.67'. [ 71.451971][ T6144] netlink: 12 bytes leftover after parsing attributes in process `syz.3.67'. [ 71.467772][ T6144] netlink: 'syz.3.67': attribute type 25 has an invalid length. [ 71.485089][ T6143] trusted_key: syz.1.65 sent an empty control message without MSG_MORE. [ 71.633655][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.640794][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.649903][ T6131] bond2 (unregistering): Released all slaves [ 71.828773][ T6155] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.901147][ T5881] IPVS: starting estimator thread 0... [ 71.954502][ T6155] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.972964][ T6166] netlink: 8 bytes leftover after parsing attributes in process `syz.3.75'. [ 71.982144][ T6166] netlink: 48 bytes leftover after parsing attributes in process `syz.3.75'. [ 71.991442][ T6163] netlink: 12 bytes leftover after parsing attributes in process `syz.1.73'. [ 72.023709][ T6164] IPVS: using max 28 ests per chain, 67200 per kthread [ 72.032008][ T6155] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.111763][ T6171] netlink: 'syz.3.75': attribute type 4 has an invalid length. [ 72.134818][ T6155] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.240192][ T6155] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.264181][ T6155] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.284207][ T6155] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.304897][ T6155] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.333074][ T6173] ip6tnl1: entered allmulticast mode [ 72.423720][ T6175] netlink: 'syz.2.77': attribute type 10 has an invalid length. [ 72.431787][ T6175] veth0_vlan: entered allmulticast mode [ 72.452269][ T6175] bridge0: port 3(veth0_vlan) entered blocking state [ 72.463825][ T6175] bridge0: port 3(veth0_vlan) entered disabled state [ 72.478265][ T6175] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check. [ 73.016586][ T6193] Cannot find set identified by id 0 to match [ 73.206048][ T6196] bond1: entered promiscuous mode [ 73.211173][ T6196] bond1: entered allmulticast mode [ 73.292687][ T6201] netlink: 'syz.2.88': attribute type 2 has an invalid length. [ 73.316897][ T6201] netlink: 'syz.2.88': attribute type 9 has an invalid length. [ 73.335459][ T6206] netdevsim netdevsim1 netdevsim1: Unsupported IPsec algorithm [ 73.351857][ T6196] 8021q: adding VLAN 0 to HW filter on device bond1 [ 73.840954][ T6229] tc_dump_action: action bad kind [ 73.842543][ T6236] netlink: 'syz.0.98': attribute type 3 has an invalid length. [ 74.257517][ T6258] netlink: 'syz.3.104': attribute type 4 has an invalid length. [ 74.871158][ T6288] netlink: 'syz.2.122': attribute type 1 has an invalid length. [ 75.014345][ T6295] netlink: 'syz.0.121': attribute type 4 has an invalid length. [ 75.325292][ T6299] ip6t_srh: unknown srh match flags 4000 [ 75.576740][ T6321] __nla_validate_parse: 20 callbacks suppressed [ 75.576761][ T6321] netlink: 4 bytes leftover after parsing attributes in process `syz.1.131'. [ 75.605699][ T6322] netlink: 4 bytes leftover after parsing attributes in process `syz.1.131'. [ 75.647805][ T6321] netlink: 4 bytes leftover after parsing attributes in process `syz.1.131'. [ 75.668528][ T6322] netlink: 48 bytes leftover after parsing attributes in process `syz.1.131'. [ 75.775453][ T6336] netlink: 4 bytes leftover after parsing attributes in process `syz.0.132'. [ 75.832148][ T6336] netlink: 8 bytes leftover after parsing attributes in process `syz.0.132'. [ 76.139524][ T6354] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 76.199274][ T6356] netlink: 16 bytes leftover after parsing attributes in process `syz.2.139'. [ 76.355868][ T6354] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 76.367233][ T6366] FAULT_INJECTION: forcing a failure. [ 76.367233][ T6366] name failslab, interval 1, probability 0, space 0, times 0 [ 76.397347][ T6366] CPU: 1 UID: 0 PID: 6366 Comm: syz.2.141 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 76.407987][ T6366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 76.418085][ T6366] Call Trace: [ 76.421633][ T6366] [ 76.424577][ T6366] dump_stack_lvl+0x241/0x360 [ 76.429301][ T6366] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.434541][ T6366] ? __pfx__printk+0x10/0x10 [ 76.439257][ T6366] ? __kmalloc_cache_noprof+0x48/0x390 [ 76.444744][ T6366] ? __pfx___might_resched+0x10/0x10 [ 76.450058][ T6366] should_fail_ex+0x3b0/0x4e0 [ 76.454764][ T6366] should_failslab+0xac/0x100 [ 76.459466][ T6366] __kmalloc_cache_noprof+0x70/0x390 [ 76.464780][ T6366] ? __xdp_reg_mem_model+0x1e3/0x620 [ 76.470096][ T6366] __xdp_reg_mem_model+0x1e3/0x620 [ 76.475243][ T6366] ? __pfx___xdp_reg_mem_model+0x10/0x10 [ 76.480912][ T6366] ? page_pool_list+0x232/0x280 [ 76.485765][ T6366] ? page_pool_create_percpu+0x692/0xa90 [ 76.491390][ T6366] xdp_reg_mem_model+0x22/0x40 [ 76.496162][ T6366] bpf_test_run_xdp_live+0x32f/0x2230 [ 76.501547][ T6366] ? bpf_dispatcher_change_prog+0xd96/0xf20 [ 76.507436][ T6366] ? __pfx_lock_release+0x10/0x10 [ 76.512455][ T6366] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 76.517745][ T6366] ? __pfx___might_resched+0x10/0x10 [ 76.523057][ T6366] ? __mutex_unlock_slowpath+0x21e/0x790 [ 76.528706][ T6366] ? __pfx_autoremove_wake_function+0x10/0x10 [ 76.534771][ T6366] ? __pfx_bpf_test_run_xdp_live+0x10/0x10 [ 76.540587][ T6366] ? synchronize_rcu+0x11b/0x360 [ 76.545557][ T6366] ? __pfx_synchronize_rcu+0x10/0x10 [ 76.550870][ T6366] ? __pfx_bpf_dispatcher_change_prog+0x10/0x10 [ 76.557184][ T6366] ? 0xffffffffa0001a1c [ 76.561390][ T6366] ? __pfx_xdp_test_run_init_page+0x10/0x10 [ 76.567304][ T6366] ? _copy_from_user+0x99/0xc0 [ 76.572080][ T6366] ? bpf_test_init+0x15a/0x180 [ 76.576850][ T6366] ? xdp_convert_md_to_buff+0x5b/0x330 [ 76.582408][ T6366] bpf_prog_test_run_xdp+0x805/0x11e0 [ 76.587782][ T6366] ? __pfx_lock_release+0x10/0x10 [ 76.592852][ T6366] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 76.598660][ T6366] ? __fget_files+0x2a/0x410 [ 76.603287][ T6366] ? __fget_files+0x2a/0x410 [ 76.607882][ T6366] ? fput+0x21b/0x290 [ 76.611868][ T6366] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 76.617693][ T6366] bpf_prog_test_run+0x2e4/0x360 [ 76.622647][ T6366] __sys_bpf+0x48d/0x810 [ 76.626903][ T6366] ? __pfx___sys_bpf+0x10/0x10 [ 76.631677][ T6366] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 76.637660][ T6366] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 76.643995][ T6366] ? do_syscall_64+0x100/0x230 [ 76.648766][ T6366] __x64_sys_bpf+0x7c/0x90 [ 76.653187][ T6366] do_syscall_64+0xf3/0x230 [ 76.657688][ T6366] ? clear_bhb_loop+0x35/0x90 [ 76.662363][ T6366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.668260][ T6366] RIP: 0033:0x7fa8b3b85d29 [ 76.672668][ T6366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.692268][ T6366] RSP: 002b:00007fa8b4a6c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 76.700682][ T6366] RAX: ffffffffffffffda RBX: 00007fa8b3d75fa0 RCX: 00007fa8b3b85d29 [ 76.708652][ T6366] RDX: 0000000000000050 RSI: 0000000020000600 RDI: 000000000000000a [ 76.716617][ T6366] RBP: 00007fa8b4a6c090 R08: 0000000000000000 R09: 0000000000000000 [ 76.724582][ T6366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 76.732548][ T6366] R13: 0000000000000000 R14: 00007fa8b3d75fa0 R15: 00007ffef00bfcd8 [ 76.740537][ T6366] [ 76.973246][ T6377] validate_nla: 1 callbacks suppressed [ 76.973263][ T6377] netlink: 'syz.3.142': attribute type 4 has an invalid length. [ 77.093755][ T6379] netlink: 'syz.0.143': attribute type 10 has an invalid length. [ 77.105377][ T6371] netlink: 8 bytes leftover after parsing attributes in process `syz.3.142'. [ 77.114646][ T6371] netlink: 48 bytes leftover after parsing attributes in process `syz.3.142'. [ 77.243123][ T6379] veth0_vlan: left promiscuous mode [ 77.253437][ T6379] veth0_vlan: entered promiscuous mode [ 77.264327][ T6379] team0: Device veth0_vlan failed to register rx_handler [ 77.334961][ T6379] syz.0.143 (6379) used greatest stack depth: 17904 bytes left [ 77.526700][ T6396] netlink: 'syz.3.149': attribute type 8 has an invalid length. [ 77.723851][ T6403] netlink: 10 bytes leftover after parsing attributes in process `syz.4.151'. [ 77.975241][ T6418] netlink: 'syz.0.157': attribute type 7 has an invalid length. [ 77.990643][ T6420] IPv6: Can't replace route, no match found [ 78.202349][ T6427] netlink: 'syz.0.159': attribute type 16 has an invalid length. [ 78.218528][ T6425] bridge0: port 3(gretap0) entered blocking state [ 78.228113][ T6427] netlink: 'syz.0.159': attribute type 3 has an invalid length. [ 78.236187][ T6425] bridge0: port 3(gretap0) entered disabled state [ 78.243206][ T6425] gretap0: entered allmulticast mode [ 78.257081][ T6425] gretap0: entered promiscuous mode [ 78.267339][ T6425] bridge0: port 3(gretap0) entered blocking state [ 78.274174][ T6425] bridge0: port 3(gretap0) entered forwarding state [ 78.296292][ T6431] gretap0: left allmulticast mode [ 78.322982][ T6431] gretap0: left promiscuous mode [ 78.351408][ T6431] bridge0: port 3(gretap0) entered disabled state [ 79.259875][ T6474] delete_channel: no stack [ 79.311401][ T6478] netlink: 'syz.4.177': attribute type 1 has an invalid length. [ 79.632103][ T6495] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.641017][ T6495] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.889467][ T6495] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 79.890500][ T6503] netlink: 'syz.1.186': attribute type 5 has an invalid length. [ 79.925905][ T6508] x_tables: duplicate entry at hook 3 [ 79.929036][ T6495] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 80.055182][ T6495] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.066584][ T6495] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.076808][ T6495] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.085910][ T6495] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.215275][ T6498] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.223534][ T6498] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.232954][ T6498] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 80.600846][ T6534] FAULT_INJECTION: forcing a failure. [ 80.600846][ T6534] name failslab, interval 1, probability 0, space 0, times 0 [ 80.639095][ T6534] CPU: 1 UID: 0 PID: 6534 Comm: syz.0.196 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 80.649737][ T6534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 80.659805][ T6534] Call Trace: [ 80.663089][ T6534] [ 80.666021][ T6534] dump_stack_lvl+0x241/0x360 [ 80.670710][ T6534] ? __pfx_dump_stack_lvl+0x10/0x10 [ 80.675906][ T6534] ? __pfx__printk+0x10/0x10 [ 80.680496][ T6534] ? fs_reclaim_acquire+0x93/0x130 [ 80.685712][ T6534] ? __pfx___might_resched+0x10/0x10 [ 80.690990][ T6534] ? lockdep_init_map_type+0xa1/0x910 [ 80.696365][ T6534] should_fail_ex+0x3b0/0x4e0 [ 80.701040][ T6534] should_failslab+0xac/0x100 [ 80.705728][ T6534] ? security_inode_alloc+0x37/0x310 [ 80.711010][ T6534] kmem_cache_alloc_noprof+0x70/0x380 [ 80.716383][ T6534] security_inode_alloc+0x37/0x310 [ 80.721495][ T6534] inode_init_always_gfp+0xa0f/0xd90 [ 80.726786][ T6534] ? __pfx_sock_alloc_inode+0x10/0x10 [ 80.732163][ T6534] alloc_inode+0x9f/0x1a0 [ 80.736492][ T6534] __sock_create+0x127/0xa30 [ 80.741094][ T6534] __sys_socket+0x150/0x3c0 [ 80.745596][ T6534] ? __pfx___sys_socket+0x10/0x10 [ 80.750614][ T6534] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 80.756940][ T6534] ? do_syscall_64+0x100/0x230 [ 80.761701][ T6534] __x64_sys_socket+0x7a/0x90 [ 80.766370][ T6534] do_syscall_64+0xf3/0x230 [ 80.770866][ T6534] ? clear_bhb_loop+0x35/0x90 [ 80.775581][ T6534] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.781502][ T6534] RIP: 0033:0x7f3490b85d29 [ 80.785928][ T6534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 80.805628][ T6534] RSP: 002b:00007f34919ba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 80.814047][ T6534] RAX: ffffffffffffffda RBX: 00007f3490d75fa0 RCX: 00007f3490b85d29 [ 80.822014][ T6534] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000014 [ 80.829985][ T6534] RBP: 00007f34919ba090 R08: 0000000000000000 R09: 0000000000000000 [ 80.837956][ T6534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 80.845923][ T6534] R13: 0000000000000001 R14: 00007f3490d75fa0 R15: 00007ffdfaebec08 [ 80.853901][ T6534] [ 80.866685][ T6534] socket: no more sockets [ 81.148214][ T6553] FAULT_INJECTION: forcing a failure. [ 81.148214][ T6553] name failslab, interval 1, probability 0, space 0, times 0 [ 81.161120][ T6553] CPU: 0 UID: 0 PID: 6553 Comm: syz.1.201 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 81.171743][ T6553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 81.181834][ T6553] Call Trace: [ 81.185140][ T6553] [ 81.188086][ T6553] dump_stack_lvl+0x241/0x360 [ 81.192801][ T6553] ? __pfx_dump_stack_lvl+0x10/0x10 [ 81.198047][ T6553] ? __pfx__printk+0x10/0x10 [ 81.202694][ T6553] should_fail_ex+0x3b0/0x4e0 [ 81.207401][ T6553] ? __pfx_ip6_dst_gc+0x10/0x10 [ 81.212278][ T6553] should_failslab+0xac/0x100 [ 81.216987][ T6553] ? dst_alloc+0x12b/0x190 [ 81.221433][ T6553] kmem_cache_alloc_noprof+0x70/0x380 [ 81.226833][ T6553] ? __pfx_rt6_find_cached_rt+0x10/0x10 [ 81.232390][ T6553] ? __pfx_ip6_dst_gc+0x10/0x10 [ 81.237244][ T6553] dst_alloc+0x12b/0x190 [ 81.241496][ T6553] ip6_pol_route+0xb87/0x15d0 [ 81.246175][ T6553] ? ip6_pol_route+0x198/0x15d0 [ 81.251040][ T6553] ? __pfx_ip6_pol_route+0x10/0x10 [ 81.256165][ T6553] fib6_rule_lookup+0x3c2/0x790 [ 81.261036][ T6553] ? __pfx_ip6_pol_route_output+0x10/0x10 [ 81.266780][ T6553] ? __pfx_fib6_rule_lookup+0x10/0x10 [ 81.272144][ T6553] ? up_write+0x1a9/0x590 [ 81.276476][ T6553] ? mark_lock+0x9a/0x360 [ 81.280821][ T6553] ? dev_get_by_index_rcu+0xef/0x110 [ 81.286105][ T6553] ? ip6_route_output_flags+0x30/0x610 [ 81.291560][ T6553] ? l3mdev_link_scope_lookup+0x112/0x1c0 [ 81.297278][ T6553] ? ip6_route_output_flags+0x30/0x610 [ 81.302732][ T6553] ip6_route_output_flags+0x38e/0x610 [ 81.308112][ T6553] ip6_dst_lookup_tail+0x290/0x14f0 [ 81.313326][ T6553] ? __pfx_ip6_dst_lookup_tail+0x10/0x10 [ 81.318967][ T6553] ? __pfx_lock_release+0x10/0x10 [ 81.323999][ T6553] ip6_dst_lookup_flow+0xb9/0x180 [ 81.329025][ T6553] ? __pfx_ip6_dst_lookup_flow+0x10/0x10 [ 81.334693][ T6553] ? __pfx_validate_chain+0x10/0x10 [ 81.339900][ T6553] ? rawv6_sendmsg+0xfa2/0x2410 [ 81.344757][ T6553] rawv6_sendmsg+0x121b/0x2410 [ 81.349536][ T6553] ? __pfx_rawv6_sendmsg+0x10/0x10 [ 81.354763][ T6553] ? sock_rps_record_flow+0x1a/0x400 [ 81.360049][ T6553] ? inet_sendmsg+0x330/0x390 [ 81.364725][ T6553] __sock_sendmsg+0x1a6/0x270 [ 81.369406][ T6553] ____sys_sendmsg+0x52a/0x7e0 [ 81.374177][ T6553] ? __pfx_____sys_sendmsg+0x10/0x10 [ 81.379456][ T6553] ? __fget_files+0x2a/0x410 [ 81.384055][ T6553] ? __fget_files+0x2a/0x410 [ 81.388647][ T6553] __sys_sendmsg+0x269/0x350 [ 81.393232][ T6553] ? __pfx_lock_release+0x10/0x10 [ 81.398255][ T6553] ? __pfx___sys_sendmsg+0x10/0x10 [ 81.403374][ T6553] ? __pfx_vfs_write+0x10/0x10 [ 81.408151][ T6553] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 81.414496][ T6553] ? do_syscall_64+0x100/0x230 [ 81.419258][ T6553] ? do_syscall_64+0xb6/0x230 [ 81.423934][ T6553] do_syscall_64+0xf3/0x230 [ 81.428431][ T6553] ? clear_bhb_loop+0x35/0x90 [ 81.433111][ T6553] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.439001][ T6553] RIP: 0033:0x7fe640185d29 [ 81.443418][ T6553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 81.463030][ T6553] RSP: 002b:00007fe63ffd8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 81.471442][ T6553] RAX: ffffffffffffffda RBX: 00007fe640376080 RCX: 00007fe640185d29 [ 81.479415][ T6553] RDX: 0000000000044004 RSI: 00000000200000c0 RDI: 0000000000000003 [ 81.487382][ T6553] RBP: 00007fe63ffd8090 R08: 0000000000000000 R09: 0000000000000000 [ 81.495347][ T6553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 81.503314][ T6553] R13: 0000000000000000 R14: 00007fe640376080 R15: 00007fffc5ffa2f8 [ 81.511297][ T6553] [ 81.624582][ T6558] dvmrp8: entered allmulticast mode [ 81.727691][ T6563] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input5 [ 81.836869][ T6568] __nla_validate_parse: 6 callbacks suppressed [ 81.836889][ T6568] netlink: 16 bytes leftover after parsing attributes in process `syz.3.205'. [ 81.857703][ T8] cfg80211: failed to load regulatory.db [ 81.942784][ T6563] dvmrp8: left allmulticast mode [ 82.077843][ T6575] FAULT_INJECTION: forcing a failure. [ 82.077843][ T6575] name failslab, interval 1, probability 0, space 0, times 0 [ 82.091400][ T6575] CPU: 0 UID: 0 PID: 6575 Comm: syz.3.208 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 82.102030][ T6575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 82.112117][ T6575] Call Trace: [ 82.115434][ T6575] [ 82.118382][ T6575] dump_stack_lvl+0x241/0x360 [ 82.123090][ T6575] ? __pfx_dump_stack_lvl+0x10/0x10 [ 82.128316][ T6575] ? __pfx__printk+0x10/0x10 [ 82.132933][ T6575] ? __kmalloc_node_track_caller_noprof+0xb4/0x4c0 [ 82.139471][ T6575] ? __pfx___might_resched+0x10/0x10 [ 82.144798][ T6575] should_fail_ex+0x3b0/0x4e0 [ 82.149508][ T6575] should_failslab+0xac/0x100 [ 82.154215][ T6575] __kmalloc_node_track_caller_noprof+0xdc/0x4c0 [ 82.160577][ T6575] ? __kthread_create_on_node+0x1a9/0x3c0 [ 82.166335][ T6575] kvasprintf+0xdf/0x190 [ 82.170622][ T6575] ? __pfx_kvasprintf+0x10/0x10 [ 82.175513][ T6575] ? __kasan_kmalloc+0x98/0xb0 [ 82.180315][ T6575] ? __kmalloc_cache_noprof+0x243/0x390 [ 82.185889][ T6575] ? __kthread_create_on_node+0xee/0x3c0 [ 82.191541][ T6575] __kthread_create_on_node+0x1a9/0x3c0 [ 82.197092][ T6575] ? __pfx___kthread_create_on_node+0x10/0x10 [ 82.203167][ T6575] ? __pfx_rxrpc_io_thread+0x10/0x10 [ 82.208449][ T6575] kthread_create_on_node+0xde/0x130 [ 82.213761][ T6575] ? __pfx_kthread_create_on_node+0x10/0x10 [ 82.219661][ T6575] rxrpc_lookup_local+0x104a/0x1890 [ 82.224865][ T6575] ? __pfx_rxrpc_lookup_local+0x10/0x10 [ 82.230405][ T6575] ? __pfx_rxrpc_encap_rcv+0x10/0x10 [ 82.235683][ T6575] ? __pfx_rxrpc_encap_err_rcv+0x10/0x10 [ 82.241314][ T6575] ? __local_bh_enable_ip+0x168/0x200 [ 82.246721][ T6575] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 82.252440][ T6575] ? do_raw_spin_unlock+0x13c/0x8b0 [ 82.257648][ T6575] rxrpc_sendmsg+0x4d9/0x920 [ 82.262247][ T6575] ? __pfx_rxrpc_sendmsg+0x10/0x10 [ 82.267363][ T6575] __sock_sendmsg+0x221/0x270 [ 82.272045][ T6575] ____sys_sendmsg+0x52a/0x7e0 [ 82.276815][ T6575] ? __pfx_____sys_sendmsg+0x10/0x10 [ 82.282180][ T6575] ? __fget_files+0x2a/0x410 [ 82.286771][ T6575] ? __fget_files+0x2a/0x410 [ 82.291362][ T6575] __sys_sendmmsg+0x36a/0x720 [ 82.296044][ T6575] ? __pfx___sys_sendmmsg+0x10/0x10 [ 82.301248][ T6575] ? __pfx_lock_release+0x10/0x10 [ 82.306270][ T6575] ? kstrtouint_from_user+0x128/0x190 [ 82.311659][ T6575] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 82.317555][ T6575] ? ksys_write+0x22a/0x2b0 [ 82.322058][ T6575] ? __pfx_lock_release+0x10/0x10 [ 82.327088][ T6575] ? vfs_write+0x730/0xd30 [ 82.331499][ T6575] ? __mutex_unlock_slowpath+0x21e/0x790 [ 82.337148][ T6575] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 82.343125][ T6575] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 82.349448][ T6575] ? do_syscall_64+0x100/0x230 [ 82.354219][ T6575] __x64_sys_sendmmsg+0xa0/0xb0 [ 82.359071][ T6575] do_syscall_64+0xf3/0x230 [ 82.363591][ T6575] ? clear_bhb_loop+0x35/0x90 [ 82.368282][ T6575] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 82.374172][ T6575] RIP: 0033:0x7ff591385d29 [ 82.378583][ T6575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 82.398182][ T6575] RSP: 002b:00007ff5921ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 82.406591][ T6575] RAX: ffffffffffffffda RBX: 00007ff591575fa0 RCX: 00007ff591385d29 [ 82.414616][ T6575] RDX: 0000000000000002 RSI: 0000000020000180 RDI: 0000000000000003 [ 82.422585][ T6575] RBP: 00007ff5921ec090 R08: 0000000000000000 R09: 0000000000000000 [ 82.430568][ T6575] R10: 0000000000040058 R11: 0000000000000246 R12: 0000000000000001 [ 82.438535][ T6575] R13: 0000000000000000 R14: 00007ff591575fa0 R15: 00007ffc6f1e90b8 [ 82.446511][ T6575] [ 82.762910][ T6587] netlink: 40 bytes leftover after parsing attributes in process `syz.4.211'. [ 83.112760][ T6601] veth1_macvtap: left promiscuous mode [ 83.129475][ T6601] macsec0: entered promiscuous mode [ 83.146417][ T6601] macsec0: entered allmulticast mode [ 83.188689][ T6606] veth1_macvtap: entered promiscuous mode [ 83.215849][ T6606] veth1_macvtap: entered allmulticast mode [ 83.227804][ T6606] macsec0: left promiscuous mode [ 83.241576][ T6606] macsec0: left allmulticast mode [ 83.249093][ T6606] veth1_macvtap: left allmulticast mode [ 83.256617][ T6609] netlink: 48 bytes leftover after parsing attributes in process `syz.4.219'. [ 83.256645][ T6610] netlink: 48 bytes leftover after parsing attributes in process `syz.4.219'. [ 83.511208][ T6621] netlink: 24 bytes leftover after parsing attributes in process `syz.1.223'. [ 83.682292][ T6628] netlink: 12 bytes leftover after parsing attributes in process `syz.1.226'. [ 83.736158][ T6628] netlink: 12 bytes leftover after parsing attributes in process `syz.1.226'. [ 83.776214][ T6628] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode [ 83.817066][ T6628] macsec1: entered promiscuous mode [ 83.847969][ T6628] mac80211_hwsim hwsim5 wlan0: left promiscuous mode [ 83.917920][ T6640] netlink: 100 bytes leftover after parsing attributes in process `syz.3.232'. [ 84.095347][ T6650] warning: `syz.0.236' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 84.495235][ T6678] netlink: 100 bytes leftover after parsing attributes in process `syz.0.244'. [ 84.569843][ T6680] netlink: 12 bytes leftover after parsing attributes in process `syz.2.245'. [ 84.598134][ T6682] ieee802154 phy0 wpan0: encryption failed: -22 [ 84.605676][ T6680] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode [ 84.621110][ T6680] macsec1: entered promiscuous mode [ 84.631914][ T6680] mac80211_hwsim hwsim2 wlan0: left promiscuous mode [ 85.198897][ T6705] ip6gretap0: entered promiscuous mode [ 85.229014][ T6705] batadv_slave_0: entered promiscuous mode [ 85.237454][ T6710] netlink: 'syz.4.257': attribute type 1 has an invalid length. [ 85.566534][ T6724] bridge0: port 3(gretap0) entered blocking state [ 85.586780][ T6724] bridge0: port 3(gretap0) entered disabled state [ 85.602211][ T6724] gretap0: entered allmulticast mode [ 85.614196][ T6724] gretap0: entered promiscuous mode [ 85.630845][ T6724] bridge0: port 3(gretap0) entered blocking state [ 85.637470][ T6724] bridge0: port 3(gretap0) entered forwarding state [ 85.659836][ T6729] gretap0: left allmulticast mode [ 85.673700][ T6729] gretap0: left promiscuous mode [ 85.678848][ T6729] bridge0: port 3(gretap0) entered disabled state [ 87.101751][ T6785] __nla_validate_parse: 6 callbacks suppressed [ 87.101873][ T6785] netlink: 100 bytes leftover after parsing attributes in process `syz.3.281'. [ 87.182758][ T6789] bridge0: port 3(gretap0) entered blocking state [ 87.213979][ T6789] bridge0: port 3(gretap0) entered disabled state [ 87.226009][ T6789] gretap0: entered allmulticast mode [ 87.243168][ T6789] gretap0: entered promiscuous mode [ 87.267608][ T6789] bridge0: port 3(gretap0) entered blocking state [ 87.274848][ T6789] bridge0: port 3(gretap0) entered forwarding state [ 87.305422][ T6793] gretap0: left allmulticast mode [ 87.323716][ T6793] gretap0: left promiscuous mode [ 87.328883][ T6793] bridge0: port 3(gretap0) entered disabled state [ 87.344719][ T6798] FAULT_INJECTION: forcing a failure. [ 87.344719][ T6798] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 87.381370][ T6798] CPU: 1 UID: 0 PID: 6798 Comm: syz.3.287 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 87.392028][ T6798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 87.402113][ T6798] Call Trace: [ 87.405424][ T6798] [ 87.408386][ T6798] dump_stack_lvl+0x241/0x360 [ 87.413103][ T6798] ? __pfx_dump_stack_lvl+0x10/0x10 [ 87.418348][ T6798] ? __pfx__printk+0x10/0x10 [ 87.422982][ T6798] should_fail_ex+0x3b0/0x4e0 [ 87.427686][ T6798] _copy_to_user+0x31/0xb0 [ 87.432134][ T6798] bpf_test_finish+0x59c/0x890 [ 87.436927][ T6798] ? __pfx_bpf_test_finish+0x10/0x10 [ 87.442230][ T6798] ? _copy_from_user+0x99/0xc0 [ 87.447014][ T6798] ? bpf_test_init+0x15a/0x180 [ 87.451815][ T6798] bpf_prog_test_run_xdp+0x8f4/0x11e0 [ 87.457221][ T6798] ? __pfx_lock_release+0x10/0x10 [ 87.462281][ T6798] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 87.468113][ T6798] ? __fget_files+0x2a/0x410 [ 87.472728][ T6798] ? __fget_files+0x2a/0x410 [ 87.477346][ T6798] ? fput+0x21b/0x290 [ 87.481357][ T6798] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 87.487200][ T6798] bpf_prog_test_run+0x2e4/0x360 [ 87.492170][ T6798] __sys_bpf+0x48d/0x810 [ 87.496442][ T6798] ? __pfx___sys_bpf+0x10/0x10 [ 87.501242][ T6798] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 87.507250][ T6798] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 87.513601][ T6798] ? do_syscall_64+0x100/0x230 [ 87.518392][ T6798] __x64_sys_bpf+0x7c/0x90 [ 87.522832][ T6798] do_syscall_64+0xf3/0x230 [ 87.527356][ T6798] ? clear_bhb_loop+0x35/0x90 [ 87.532060][ T6798] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.537979][ T6798] RIP: 0033:0x7ff591385d29 [ 87.542421][ T6798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 87.562062][ T6798] RSP: 002b:00007ff5921ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 87.570508][ T6798] RAX: ffffffffffffffda RBX: 00007ff591575fa0 RCX: 00007ff591385d29 [ 87.578505][ T6798] RDX: 0000000000000050 RSI: 0000000020000600 RDI: 000000000000000a [ 87.586510][ T6798] RBP: 00007ff5921ec090 R08: 0000000000000000 R09: 0000000000000000 [ 87.594505][ T6798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 87.602502][ T6798] R13: 0000000000000000 R14: 00007ff591575fa0 R15: 00007ffc6f1e90b8 [ 87.610537][ T6798] [ 87.627922][ T6803] netlink: 'syz.1.289': attribute type 32 has an invalid length. [ 87.645811][ T6803] netlink: 8 bytes leftover after parsing attributes in process `syz.1.289'. [ 87.668639][ T6804] FAULT_INJECTION: forcing a failure. [ 87.668639][ T6804] name failslab, interval 1, probability 0, space 0, times 0 [ 87.674771][ T6803] (unnamed net_device) (uninitialized): Setting coupled_control to off (0) [ 87.720962][ T6804] CPU: 0 UID: 0 PID: 6804 Comm: syz.4.290 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 87.731616][ T6804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 87.741701][ T6804] Call Trace: [ 87.745034][ T6804] [ 87.747960][ T6804] dump_stack_lvl+0x241/0x360 [ 87.752671][ T6804] ? __pfx_dump_stack_lvl+0x10/0x10 [ 87.757889][ T6804] ? __pfx__printk+0x10/0x10 [ 87.762515][ T6804] ? kmem_cache_alloc_noprof+0x48/0x380 [ 87.768098][ T6804] ? __pfx___might_resched+0x10/0x10 [ 87.773410][ T6804] should_fail_ex+0x3b0/0x4e0 [ 87.778112][ T6804] should_failslab+0xac/0x100 [ 87.782816][ T6804] ? rxrpc_alloc_call+0x27a/0xe00 [ 87.787869][ T6804] kmem_cache_alloc_noprof+0x70/0x380 [ 87.793271][ T6804] ? rxrpc_alloc_call+0x78/0xe00 [ 87.798240][ T6804] rxrpc_alloc_call+0x27a/0xe00 [ 87.803112][ T6804] ? rxrpc_alloc_call+0x78/0xe00 [ 87.808069][ T6804] ? down_interruptible+0x74/0xc0 [ 87.813118][ T6804] rxrpc_new_client_call+0x121/0x1500 [ 87.818525][ T6804] rxrpc_do_sendmsg+0xff1/0x1910 [ 87.823509][ T6804] ? __pfx_rxrpc_do_sendmsg+0x10/0x10 [ 87.828918][ T6804] ? rxrpc_sendmsg+0x5d8/0x920 [ 87.833717][ T6804] ? __pfx_rxrpc_sendmsg+0x10/0x10 [ 87.838853][ T6804] __sock_sendmsg+0x221/0x270 [ 87.843557][ T6804] ____sys_sendmsg+0x52a/0x7e0 [ 87.848359][ T6804] ? __pfx_____sys_sendmsg+0x10/0x10 [ 87.853668][ T6804] ? __fget_files+0x2a/0x410 [ 87.858291][ T6804] ? __fget_files+0x2a/0x410 [ 87.862924][ T6804] __sys_sendmmsg+0x36a/0x720 [ 87.867645][ T6804] ? __pfx___sys_sendmmsg+0x10/0x10 [ 87.872888][ T6804] ? __pfx_lock_release+0x10/0x10 [ 87.877942][ T6804] ? kstrtouint_from_user+0x128/0x190 [ 87.883362][ T6804] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 87.889289][ T6804] ? ksys_write+0x22a/0x2b0 [ 87.893817][ T6804] ? __pfx_lock_release+0x10/0x10 [ 87.898878][ T6804] ? vfs_write+0x730/0xd30 [ 87.903321][ T6804] ? __mutex_unlock_slowpath+0x21e/0x790 [ 87.909008][ T6804] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 87.915038][ T6804] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 87.921481][ T6804] ? do_syscall_64+0x100/0x230 [ 87.926271][ T6804] __x64_sys_sendmmsg+0xa0/0xb0 [ 87.931157][ T6804] do_syscall_64+0xf3/0x230 [ 87.935685][ T6804] ? clear_bhb_loop+0x35/0x90 [ 87.940391][ T6804] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.946308][ T6804] RIP: 0033:0x7f17f3785d29 [ 87.950766][ T6804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 87.970398][ T6804] RSP: 002b:00007f17f4607038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 87.978851][ T6804] RAX: ffffffffffffffda RBX: 00007f17f3975fa0 RCX: 00007f17f3785d29 [ 87.983652][ T6809] netlink: 28 bytes leftover after parsing attributes in process `syz.2.288'. [ 87.986864][ T6804] RDX: 0000000000000002 RSI: 0000000020000180 RDI: 0000000000000003 [ 87.986904][ T6804] RBP: 00007f17f4607090 R08: 0000000000000000 R09: 0000000000000000 [ 88.011701][ T6804] R10: 0000000000040058 R11: 0000000000000246 R12: 0000000000000002 [ 88.019698][ T6804] R13: 0000000000000000 R14: 00007f17f3975fa0 R15: 00007ffc14561228 [ 88.027684][ T6804] [ 88.305362][ T6821] netlink: 'syz.4.295': attribute type 10 has an invalid length. [ 88.364957][ T6826] netlink: 100 bytes leftover after parsing attributes in process `syz.3.297'. [ 88.393620][ T6821] veth0_vlan: left promiscuous mode [ 88.420577][ T6821] veth0_vlan: entered promiscuous mode [ 88.447436][ T6821] team0: Device veth0_vlan failed to register rx_handler [ 88.474017][ T6831] Bluetooth: MGMT ver 1.23 [ 89.039782][ T6854] netlink: 'syz.3.307': attribute type 1 has an invalid length. [ 89.068359][ T6854] netlink: 224 bytes leftover after parsing attributes in process `syz.3.307'. [ 89.095632][ T6858] netlink: 8 bytes leftover after parsing attributes in process `syz.4.309'. [ 89.102895][ T6854] netlink: 16 bytes leftover after parsing attributes in process `syz.3.307'. [ 89.118767][ T6858] netlink: 'syz.4.309': attribute type 19 has an invalid length. [ 89.129293][ T6858] netlink: 12 bytes leftover after parsing attributes in process `syz.4.309'. [ 89.153654][ T6860] netlink: 100 bytes leftover after parsing attributes in process `syz.2.310'. [ 89.316546][ T6874] netlink: 12 bytes leftover after parsing attributes in process `syz.2.314'. [ 89.375574][ T6873] netlink: 'syz.4.313': attribute type 10 has an invalid length. [ 89.405008][ T6873] veth0_vlan: left promiscuous mode [ 89.411192][ T6873] veth0_vlan: entered promiscuous mode [ 89.418780][ T6873] team0: Device veth0_vlan failed to register rx_handler [ 89.668855][ T6894] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 89.729475][ T6883] bridge0: port 3(gretap0) entered blocking state [ 89.745349][ T6883] bridge0: port 3(gretap0) entered disabled state [ 89.759536][ T6883] gretap0: entered allmulticast mode [ 89.766658][ T6883] gretap0: entered promiscuous mode [ 89.772670][ T6883] bridge0: port 3(gretap0) entered blocking state [ 89.779318][ T6883] bridge0: port 3(gretap0) entered forwarding state [ 89.793662][ T6886] IPv6: Can't replace route, no match found [ 89.807847][ T6888] gretap0: left allmulticast mode [ 89.813231][ T6888] gretap0: left promiscuous mode [ 89.818849][ T6888] bridge0: port 3(gretap0) entered disabled state [ 90.068805][ T6901] netlink: 'syz.3.320': attribute type 2 has an invalid length. [ 90.807834][ T6912] xt_socket: unknown flags 0x4 [ 91.640495][ T6926] netlink: 'syz.1.326': attribute type 4 has an invalid length. [ 91.972689][ T6934] IPv6: Can't replace route, no match found [ 92.247380][ T6938] bridge0: port 3(gretap0) entered blocking state [ 92.259577][ T6938] bridge0: port 3(gretap0) entered disabled state [ 92.286318][ T6938] gretap0: entered allmulticast mode [ 92.310184][ T6938] gretap0: entered promiscuous mode [ 92.341511][ T6938] bridge0: port 3(gretap0) entered blocking state [ 92.348167][ T6938] bridge0: port 3(gretap0) entered forwarding state [ 92.387467][ T6939] gretap0: left allmulticast mode [ 92.416519][ T6939] gretap0: left promiscuous mode [ 92.454183][ T6939] bridge0: port 3(gretap0) entered disabled state [ 92.608760][ T6950] __nla_validate_parse: 6 callbacks suppressed [ 92.608781][ T6950] netlink: 28 bytes leftover after parsing attributes in process `syz.4.335'. [ 92.663827][ T6946] xt_CT: No such helper "pptp" [ 92.799934][ T6957] tipc: Started in network mode [ 92.833566][ T6957] tipc: Node identity ac14140f, cluster identity 4711 [ 92.840871][ T6957] tipc: New replicast peer: 255.255.255.255 [ 92.881523][ T6957] tipc: Enabled bearer , priority 10 [ 92.938288][ T6885] Set syz1 is full, maxelem 65536 reached [ 93.410286][ T6981] bridge0: port 3(gretap0) entered blocking state [ 93.418817][ T6981] bridge0: port 3(gretap0) entered disabled state [ 93.425854][ T6981] gretap0: entered allmulticast mode [ 93.431947][ T6981] gretap0: entered promiscuous mode [ 93.440653][ T6981] bridge0: port 3(gretap0) entered blocking state [ 93.447286][ T6981] bridge0: port 3(gretap0) entered forwarding state [ 93.458565][ T6981] gretap0: left allmulticast mode [ 93.464168][ T6981] gretap0: left promiscuous mode [ 93.469281][ T6981] bridge0: port 3(gretap0) entered disabled state [ 93.692459][ T6997] netlink: 28 bytes leftover after parsing attributes in process `syz.1.348'. [ 93.875156][ T8] tipc: Node number set to 2886997007 [ 94.089128][ T7011] netlink: 12 bytes leftover after parsing attributes in process `syz.2.354'. [ 94.360793][ T7014] netlink: 28 bytes leftover after parsing attributes in process `syz.4.355'. [ 94.373435][ T7014] netlink: 28 bytes leftover after parsing attributes in process `syz.4.355'. [ 94.777919][ T7019] netlink: 'syz.1.357': attribute type 2 has an invalid length. [ 94.786760][ T7019] netlink: 'syz.1.357': attribute type 9 has an invalid length. [ 94.794792][ T7019] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.357'. [ 95.654806][ T7017] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR [ 95.810737][ T7030] netlink: 8 bytes leftover after parsing attributes in process `syz.2.361'. [ 95.838176][ T7026] netlink: 'syz.3.360': attribute type 10 has an invalid length. [ 95.849810][ T7030] netlink: 48 bytes leftover after parsing attributes in process `syz.2.361'. [ 95.856977][ T7033] netlink: 104 bytes leftover after parsing attributes in process `syz.4.362'. [ 95.862824][ T7026] veth0_vlan: left promiscuous mode [ 95.884259][ T7026] veth0_vlan: entered promiscuous mode [ 95.908857][ T7026] team0: Device veth0_vlan failed to register rx_handler [ 95.937239][ T7028] bridge0: port 3(gretap0) entered blocking state [ 95.945150][ T7028] bridge0: port 3(gretap0) entered disabled state [ 95.952699][ T7028] gretap0: entered allmulticast mode [ 95.970957][ T7028] gretap0: entered promiscuous mode [ 95.990040][ T7028] bridge0: port 3(gretap0) entered blocking state [ 95.996755][ T7028] bridge0: port 3(gretap0) entered forwarding state [ 96.052731][ T7036] gretap0: left allmulticast mode [ 96.079770][ T7036] gretap0: left promiscuous mode [ 96.093833][ T7036] bridge0: port 3(gretap0) entered disabled state [ 96.273691][ T7047] netlink: 'syz.2.361': attribute type 4 has an invalid length. [ 96.476742][ T7058] IPv6: Can't replace route, no match found [ 96.686397][ T7033] netlink: 4 bytes leftover after parsing attributes in process `syz.4.362'. [ 96.708065][ T7033] team_slave_0: entered promiscuous mode [ 96.714024][ T7033] team_slave_1: entered promiscuous mode [ 96.748135][ T7033] macvtap1: entered promiscuous mode [ 96.763542][ T7033] team0: entered promiscuous mode [ 96.770453][ T7033] macvtap1: entered allmulticast mode [ 96.783440][ T7033] team0: entered allmulticast mode [ 96.788610][ T7033] team_slave_0: entered allmulticast mode [ 96.818842][ T7033] team_slave_1: entered allmulticast mode [ 96.842018][ T7033] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 96.891933][ T7039] team0: left allmulticast mode [ 96.902288][ T7067] netlink: 'syz.2.370': attribute type 10 has an invalid length. [ 96.917871][ T7039] team_slave_0: left allmulticast mode [ 96.928945][ T7039] team_slave_1: left allmulticast mode [ 96.934920][ T7039] team0: left promiscuous mode [ 96.940399][ T7039] team_slave_0: left promiscuous mode [ 96.946210][ T7039] team_slave_1: left promiscuous mode [ 96.963570][ T7067] veth0_vlan: left allmulticast mode [ 97.065220][ T7067] veth0_vlan: left promiscuous mode [ 97.086975][ T7067] veth0_vlan: entered promiscuous mode [ 97.110709][ T7067] team0: Device veth0_vlan failed to register rx_handler [ 97.383462][ T7082] sctp: [Deprecated]: syz.2.374 (pid 7082) Use of struct sctp_assoc_value in delayed_ack socket option. [ 97.383462][ T7082] Use struct sctp_sack_info instead [ 97.535696][ T7088] netlink: 'syz.1.373': attribute type 4 has an invalid length. [ 97.660679][ T7094] bridge0: port 3(gretap0) entered blocking state [ 97.672771][ T7094] bridge0: port 3(gretap0) entered disabled state [ 97.683107][ T7094] gretap0: entered allmulticast mode [ 97.692444][ T7094] gretap0: entered promiscuous mode [ 97.701416][ T7094] bridge0: port 3(gretap0) entered blocking state [ 97.708069][ T7094] bridge0: port 3(gretap0) entered forwarding state [ 97.726020][ T7095] gretap0: left allmulticast mode [ 97.731785][ T7095] gretap0: left promiscuous mode [ 97.737492][ T7095] bridge0: port 3(gretap0) entered disabled state [ 97.759516][ T7090] __nla_validate_parse: 2 callbacks suppressed [ 97.759535][ T7090] netlink: 16 bytes leftover after parsing attributes in process `syz.4.376'. [ 98.121380][ T7106] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 98.144816][ T7106] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 98.158811][ T7106] bond0 (unregistering): Released all slaves [ 98.180382][ T7108] netlink: 8 bytes leftover after parsing attributes in process `syz.4.383'. [ 98.190293][ T7108] netlink: 48 bytes leftover after parsing attributes in process `syz.4.383'. [ 98.258554][ T7108] netlink: 'syz.4.383': attribute type 4 has an invalid length. [ 98.440056][ T7120] netlink: 12 bytes leftover after parsing attributes in process `syz.2.388'. [ 98.514850][ T7124] bridge0: port 3(gretap0) entered blocking state [ 98.521570][ T7124] bridge0: port 3(gretap0) entered disabled state [ 98.530450][ T7124] gretap0: entered allmulticast mode [ 98.537599][ T7124] gretap0: entered promiscuous mode [ 98.543390][ T7124] bridge0: port 3(gretap0) entered blocking state [ 98.549921][ T7124] bridge0: port 3(gretap0) entered forwarding state [ 98.559298][ T7124] gretap0: left allmulticast mode [ 98.564701][ T7124] gretap0: left promiscuous mode [ 98.570043][ T7124] bridge0: port 3(gretap0) entered disabled state [ 98.630636][ T7126] netlink: 40 bytes leftover after parsing attributes in process `syz.0.391'. [ 98.734457][ T7133] netlink: 8 bytes leftover after parsing attributes in process `syz.2.394'. [ 98.754472][ T7133] netlink: 48 bytes leftover after parsing attributes in process `syz.2.394'. [ 98.792977][ T7135] netlink: 8 bytes leftover after parsing attributes in process `syz.0.395'. [ 98.802399][ T7135] netlink: 48 bytes leftover after parsing attributes in process `syz.0.395'. [ 98.888940][ T7142] netlink: 'syz.2.394': attribute type 4 has an invalid length. [ 98.980189][ T7151] netlink: 'syz.0.395': attribute type 4 has an invalid length. [ 99.111879][ T7159] bridge0: port 3(gretap0) entered blocking state [ 99.118968][ T7159] bridge0: port 3(gretap0) entered disabled state [ 99.126183][ T7159] gretap0: entered allmulticast mode [ 99.133017][ T7159] gretap0: entered promiscuous mode [ 99.147190][ T7159] bridge0: port 3(gretap0) entered blocking state [ 99.153909][ T7159] bridge0: port 3(gretap0) entered forwarding state [ 99.310119][ T7170] tipc: Can't bind to reserved service type 0 [ 99.903710][ T7198] netlink: 'syz.0.415': attribute type 9 has an invalid length. [ 99.924217][ T7198] netlink: 8 bytes leftover after parsing attributes in process `syz.0.415'. [ 100.210466][ T7216] gretap1: entered promiscuous mode [ 100.242028][ T7221] netlink: 'syz.3.421': attribute type 4 has an invalid length. [ 100.511061][ T7239] IPv6: Can't replace route, no match found [ 100.858710][ T7254] netlink: 'syz.2.433': attribute type 2 has an invalid length. [ 101.037245][ T7268] FAULT_INJECTION: forcing a failure. [ 101.037245][ T7268] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 101.062558][ T7268] CPU: 0 UID: 0 PID: 7268 Comm: syz.3.436 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 101.073209][ T7268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 101.083287][ T7268] Call Trace: [ 101.086583][ T7268] [ 101.089515][ T7268] dump_stack_lvl+0x241/0x360 [ 101.094210][ T7268] ? __pfx_dump_stack_lvl+0x10/0x10 [ 101.099433][ T7268] ? __pfx__printk+0x10/0x10 [ 101.104029][ T7268] ? __pfx_lock_release+0x10/0x10 [ 101.109055][ T7268] should_fail_ex+0x3b0/0x4e0 [ 101.113743][ T7268] _copy_from_iter+0x1e9/0x1c20 [ 101.118594][ T7268] ? __virt_addr_valid+0x183/0x530 [ 101.123711][ T7268] ? __alloc_skb+0x28f/0x440 [ 101.128298][ T7268] ? __pfx__copy_from_iter+0x10/0x10 [ 101.133582][ T7268] ? __virt_addr_valid+0x183/0x530 [ 101.138691][ T7268] ? __virt_addr_valid+0x183/0x530 [ 101.143797][ T7268] ? __virt_addr_valid+0x45f/0x530 [ 101.148904][ T7268] ? __phys_addr_symbol+0x2f/0x70 [ 101.153936][ T7268] ? __check_object_size+0x47a/0x730 [ 101.159311][ T7268] netlink_sendmsg+0x73d/0xcb0 [ 101.164105][ T7268] ? __pfx_netlink_sendmsg+0x10/0x10 [ 101.169388][ T7268] ? aa_sock_msg_perm+0x91/0x160 [ 101.174325][ T7268] ? __pfx_netlink_sendmsg+0x10/0x10 [ 101.179611][ T7268] __sock_sendmsg+0x221/0x270 [ 101.184292][ T7268] ____sys_sendmsg+0x52a/0x7e0 [ 101.189059][ T7268] ? __pfx_____sys_sendmsg+0x10/0x10 [ 101.194338][ T7268] ? __fget_files+0x2a/0x410 [ 101.198933][ T7268] ? __fget_files+0x2a/0x410 [ 101.203546][ T7268] __sys_sendmsg+0x269/0x350 [ 101.208151][ T7268] ? __pfx_lock_release+0x10/0x10 [ 101.213174][ T7268] ? __pfx___sys_sendmsg+0x10/0x10 [ 101.218377][ T7268] ? __pfx_vfs_write+0x10/0x10 [ 101.223153][ T7268] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 101.229477][ T7268] ? do_syscall_64+0x100/0x230 [ 101.234239][ T7268] ? do_syscall_64+0xb6/0x230 [ 101.238921][ T7268] do_syscall_64+0xf3/0x230 [ 101.243422][ T7268] ? clear_bhb_loop+0x35/0x90 [ 101.248098][ T7268] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 101.253993][ T7268] RIP: 0033:0x7ff591385d29 [ 101.258404][ T7268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 101.278011][ T7268] RSP: 002b:00007ff5921ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 101.286433][ T7268] RAX: ffffffffffffffda RBX: 00007ff591575fa0 RCX: 00007ff591385d29 [ 101.294503][ T7268] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000004 [ 101.302485][ T7268] RBP: 00007ff5921ec090 R08: 0000000000000000 R09: 0000000000000000 [ 101.310476][ T7268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 101.318455][ T7268] R13: 0000000000000000 R14: 00007ff591575fa0 R15: 00007ffc6f1e90b8 [ 101.326462][ T7268] [ 101.409513][ T7254] netlink: 'syz.2.433': attribute type 8 has an invalid length. [ 102.239468][ T7316] netlink: 'syz.0.446': attribute type 4 has an invalid length. [ 102.457865][ T7326] erspan0: entered promiscuous mode [ 102.465154][ T7326] macvtap1: entered promiscuous mode [ 102.470682][ T7326] macvtap1: entered allmulticast mode [ 102.476988][ T7326] erspan0: entered allmulticast mode [ 102.558658][ T7329] erspan0: left allmulticast mode [ 102.564217][ T7329] erspan0: left promiscuous mode [ 102.896082][ T7347] __nla_validate_parse: 12 callbacks suppressed [ 102.896102][ T7347] netlink: 8 bytes leftover after parsing attributes in process `syz.0.463'. [ 103.052557][ T7353] netlink: 4 bytes leftover after parsing attributes in process `syz.0.466'. [ 103.085461][ T7357] netlink: 4 bytes leftover after parsing attributes in process `syz.2.465'. [ 103.125074][ T7357] erspan0: entered promiscuous mode [ 103.166277][ T7357] macvtap2: entered promiscuous mode [ 103.202170][ T7357] macvtap2: entered allmulticast mode [ 103.207794][ T7357] erspan0: entered allmulticast mode [ 103.227202][ T7361] erspan0: left allmulticast mode [ 103.232400][ T7361] erspan0: left promiscuous mode [ 103.755568][ T7379] tipc: Failed to remove unknown binding: 66,1,1/0:2840833518/2840833520 [ 103.793082][ T7381] netlink: 4 bytes leftover after parsing attributes in process `syz.3.477'. [ 104.209564][ T7393] bridge0: port 3(gretap0) entered blocking state [ 104.216644][ T7393] bridge0: port 3(gretap0) entered disabled state [ 104.243955][ T7393] gretap0: entered allmulticast mode [ 104.250608][ T7393] gretap0: entered promiscuous mode [ 104.277565][ T7393] bridge0: port 3(gretap0) entered blocking state [ 104.284195][ T7393] bridge0: port 3(gretap0) entered forwarding state [ 104.519443][ T7399] netlink: 24 bytes leftover after parsing attributes in process `syz.2.483'. [ 104.973100][ T7413] netlink: 4 bytes leftover after parsing attributes in process `syz.4.489'. [ 105.649253][ T7337] Set syz1 is full, maxelem 65536 reached [ 105.733809][ T7437] raw_sendmsg: syz.4.497 forgot to set AF_INET. Fix it! [ 106.514046][ T7476] tap0: tun_chr_ioctl cmd 1074025677 [ 106.540485][ T7476] tap0: linktype set to 805 [ 106.644017][ T7483] xt_HMARK: spi-set and port-set can't be combined [ 106.807811][ T7495] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 106.979349][ T7495] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 107.112990][ T7512] netlink: 8 bytes leftover after parsing attributes in process `syz.1.518'. [ 107.141185][ T7512] netlink: 48 bytes leftover after parsing attributes in process `syz.1.518'. [ 107.307041][ T7524] netlink: 'syz.1.518': attribute type 4 has an invalid length. [ 107.555718][ T7531] netlink: 100 bytes leftover after parsing attributes in process `syz.0.523'. [ 107.633826][ T7537] netlink: 4 bytes leftover after parsing attributes in process `syz.3.521'. [ 108.179510][ T7554] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 108.889673][ T7582] __nla_validate_parse: 1 callbacks suppressed [ 108.889694][ T7582] netlink: 4 bytes leftover after parsing attributes in process `syz.0.536'. [ 108.946778][ T7582] netlink: 8 bytes leftover after parsing attributes in process `syz.0.536'. [ 109.054304][ T7587] netlink: 16 bytes leftover after parsing attributes in process `syz.3.538'. [ 109.110901][ T7590] netlink: 8 bytes leftover after parsing attributes in process `syz.0.539'. [ 109.144095][ T7590] netlink: 48 bytes leftover after parsing attributes in process `syz.0.539'. [ 109.278378][ T7600] netlink: 'syz.0.539': attribute type 4 has an invalid length. [ 109.902836][ T7603] netlink: 8 bytes leftover after parsing attributes in process `syz.1.542'. [ 109.936359][ T7603] netlink: 48 bytes leftover after parsing attributes in process `syz.1.542'. [ 110.070032][ T7605] netlink: 'syz.4.543': attribute type 10 has an invalid length. [ 110.079529][ T7605] veth0_vlan: left promiscuous mode [ 110.087154][ T7605] veth0_vlan: entered promiscuous mode [ 110.105242][ T7605] team0: Device veth0_vlan failed to register rx_handler [ 110.189697][ T7614] netlink: 'syz.1.542': attribute type 4 has an invalid length. [ 110.297995][ T7617] netlink: 36 bytes leftover after parsing attributes in process `syz.0.546'. [ 110.346943][ T7621] netlink: 100 bytes leftover after parsing attributes in process `syz.4.548'. [ 110.441864][ T7625] netlink: 4 bytes leftover after parsing attributes in process `syz.0.549'. [ 110.742603][ T7533] Set syz1 is full, maxelem 65536 reached [ 110.989370][ T7644] netlink: 'syz.1.555': attribute type 4 has an invalid length. [ 111.141105][ T7652] netlink: 'syz.4.558': attribute type 10 has an invalid length. [ 111.156279][ T7652] veth0_vlan: left promiscuous mode [ 111.162430][ T7652] veth0_vlan: entered promiscuous mode [ 111.184381][ T7652] team0: Device veth0_vlan failed to register rx_handler [ 112.132189][ T7685] gretap2: entered allmulticast mode [ 112.140833][ T7685] bridge0: port 3(gretap2) entered blocking state [ 112.153010][ T7685] bridge0: port 3(gretap2) entered disabled state [ 112.162199][ T7685] gretap2: entered promiscuous mode [ 112.221297][ T7685] bridge0: port 3(gretap2) entered blocking state [ 112.228282][ T7685] bridge0: port 3(gretap2) entered forwarding state [ 112.284639][ T7686] IPv6: Can't replace route, no match found [ 112.297939][ T7660] macvtap1: entered promiscuous mode [ 112.303401][ T7660] team0: entered promiscuous mode [ 112.308545][ T7660] team_slave_0: entered promiscuous mode [ 112.314885][ T7660] team_slave_1: entered promiscuous mode [ 112.320856][ T7660] macvtap1: entered allmulticast mode [ 112.326349][ T7660] team0: entered allmulticast mode [ 112.331482][ T7660] team_slave_0: entered allmulticast mode [ 112.340286][ T7660] team_slave_1: entered allmulticast mode [ 112.350690][ T7660] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 112.484730][ T7663] team0: left allmulticast mode [ 112.489744][ T7663] team_slave_0: left allmulticast mode [ 112.498623][ T7663] team_slave_1: left allmulticast mode [ 112.505312][ T7663] team0: left promiscuous mode [ 112.510263][ T7663] team_slave_0: left promiscuous mode [ 112.520525][ T7663] team_slave_1: left promiscuous mode [ 112.608804][ T7685] bridge_slave_0: left allmulticast mode [ 112.626501][ T7685] bridge_slave_0: left promiscuous mode [ 112.632566][ T7685] bridge0: port 1(bridge_slave_0) entered disabled state [ 112.670070][ T7685] bridge_slave_1: left allmulticast mode [ 112.678058][ T7685] bridge_slave_1: left promiscuous mode [ 112.698702][ T7685] bridge0: port 2(bridge_slave_1) entered disabled state [ 112.712212][ T7685] bond0: (slave bond_slave_0): Releasing backup interface [ 112.732772][ T7685] bond0: (slave bond_slave_1): Releasing backup interface [ 112.762977][ T7685] team0: Port device team_slave_0 removed [ 112.777396][ T7685] team0: Port device team_slave_1 removed [ 112.785234][ T7685] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 112.797204][ T7685] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 112.809242][ T7685] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 112.819075][ T7685] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 112.831725][ T7685] gretap2: left promiscuous mode [ 112.837242][ T7685] bridge0: port 3(gretap2) entered disabled state [ 113.059464][ T7709] netlink: 'syz.0.575': attribute type 4 has an invalid length. [ 113.270706][ T7713] bridge0: port 1(gretap0) entered blocking state [ 113.279322][ T7713] bridge0: port 1(gretap0) entered disabled state [ 113.289279][ T7713] gretap0: entered allmulticast mode [ 113.297060][ T7713] gretap0: entered promiscuous mode [ 113.306277][ T7713] bridge0: port 1(gretap0) entered blocking state [ 113.312901][ T7713] bridge0: port 1(gretap0) entered forwarding state [ 113.434959][ T7718] netlink: 'syz.4.580': attribute type 1 has an invalid length. [ 113.947210][ T7740] IPv6: Can't replace route, no match found [ 114.047540][ T7716] __nla_validate_parse: 11 callbacks suppressed [ 114.047562][ T7716] netlink: 4 bytes leftover after parsing attributes in process `syz.1.579'. [ 114.068226][ T7716] team_slave_0: entered promiscuous mode [ 114.074053][ T7716] team_slave_1: entered promiscuous mode [ 114.080245][ T7716] macvtap1: entered promiscuous mode [ 114.085710][ T7716] team0: entered promiscuous mode [ 114.091379][ T7716] macvtap1: entered allmulticast mode [ 114.099061][ T7716] team0: entered allmulticast mode [ 114.105736][ T7716] team_slave_0: entered allmulticast mode [ 114.111620][ T7716] team_slave_1: entered allmulticast mode [ 114.125837][ T7716] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 114.216603][ T7719] team0: left allmulticast mode [ 114.221562][ T7719] team_slave_0: left allmulticast mode [ 114.232401][ T7719] team_slave_1: left allmulticast mode [ 114.243466][ T7719] team0: left promiscuous mode [ 114.255930][ T7719] team_slave_0: left promiscuous mode [ 114.261448][ T7719] team_slave_1: left promiscuous mode [ 114.762411][ T7760] FAULT_INJECTION: forcing a failure. [ 114.762411][ T7760] name failslab, interval 1, probability 0, space 0, times 0 [ 114.800198][ T7766] netlink: 8 bytes leftover after parsing attributes in process `syz.0.595'. [ 114.803345][ T7760] CPU: 0 UID: 0 PID: 7760 Comm: syz.3.592 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 114.819687][ T7760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 114.829765][ T7760] Call Trace: [ 114.833053][ T7760] [ 114.835983][ T7760] dump_stack_lvl+0x241/0x360 [ 114.840670][ T7760] ? __pfx_dump_stack_lvl+0x10/0x10 [ 114.845876][ T7760] ? __pfx__printk+0x10/0x10 [ 114.850473][ T7760] ? __nla_validate_parse+0x26ce/0x3090 [ 114.856029][ T7760] should_fail_ex+0x3b0/0x4e0 [ 114.860706][ T7760] should_failslab+0xac/0x100 [ 114.865382][ T7760] ? xfrm_state_alloc+0x22/0x2e0 [ 114.870336][ T7760] kmem_cache_alloc_noprof+0x70/0x380 [ 114.875814][ T7760] ? aa_get_newest_label+0xff/0x6f0 [ 114.881024][ T7760] xfrm_state_alloc+0x22/0x2e0 [ 114.885792][ T7760] xfrm_add_sa+0x146c/0x3d70 [ 114.890392][ T7760] ? __pfx_xfrm_add_sa+0x10/0x10 [ 114.895338][ T7760] ? __nla_parse+0x40/0x60 [ 114.899774][ T7760] xfrm_user_rcv_msg+0x890/0xb90 [ 114.904727][ T7760] ? __pfx_xfrm_user_rcv_msg+0x10/0x10 [ 114.910844][ T7760] ? __mutex_trylock_common+0x183/0x2e0 [ 114.916402][ T7760] ? __pfx___might_resched+0x10/0x10 [ 114.921716][ T7760] ? __pfx___mutex_trylock_common+0x10/0x10 [ 114.927627][ T7760] netlink_rcv_skb+0x1e3/0x430 [ 114.932396][ T7760] ? __pfx_xfrm_user_rcv_msg+0x10/0x10 [ 114.937856][ T7760] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 114.943162][ T7760] xfrm_netlink_rcv+0x79/0x90 [ 114.947840][ T7760] netlink_unicast+0x7f6/0x990 [ 114.952604][ T7760] ? __pfx_netlink_unicast+0x10/0x10 [ 114.957881][ T7760] ? __virt_addr_valid+0x45f/0x530 [ 114.962992][ T7760] ? __phys_addr_symbol+0x2f/0x70 [ 114.968017][ T7760] ? __check_object_size+0x47a/0x730 [ 114.973313][ T7760] netlink_sendmsg+0x8e4/0xcb0 [ 114.978084][ T7760] ? __pfx_netlink_sendmsg+0x10/0x10 [ 114.983456][ T7760] ? aa_sock_msg_perm+0x91/0x160 [ 114.988391][ T7760] ? __pfx_netlink_sendmsg+0x10/0x10 [ 114.993673][ T7760] __sock_sendmsg+0x221/0x270 [ 114.998357][ T7760] ____sys_sendmsg+0x52a/0x7e0 [ 115.003131][ T7760] ? __pfx_____sys_sendmsg+0x10/0x10 [ 115.008413][ T7760] ? __fget_files+0x2a/0x410 [ 115.013005][ T7760] ? __fget_files+0x2a/0x410 [ 115.017602][ T7760] __sys_sendmsg+0x269/0x350 [ 115.022191][ T7760] ? __pfx_lock_release+0x10/0x10 [ 115.027227][ T7760] ? __pfx___sys_sendmsg+0x10/0x10 [ 115.032352][ T7760] ? __pfx_vfs_write+0x10/0x10 [ 115.037156][ T7760] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 115.043483][ T7760] ? do_syscall_64+0x100/0x230 [ 115.048244][ T7760] ? do_syscall_64+0xb6/0x230 [ 115.052917][ T7760] do_syscall_64+0xf3/0x230 [ 115.057424][ T7760] ? clear_bhb_loop+0x35/0x90 [ 115.062114][ T7760] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.068029][ T7760] RIP: 0033:0x7ff591385d29 [ 115.072439][ T7760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.092072][ T7760] RSP: 002b:00007ff5921ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 115.100515][ T7760] RAX: ffffffffffffffda RBX: 00007ff591575fa0 RCX: 00007ff591385d29 [ 115.108502][ T7760] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000004 [ 115.116469][ T7760] RBP: 00007ff5921ec090 R08: 0000000000000000 R09: 0000000000000000 [ 115.124438][ T7760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 115.132403][ T7760] R13: 0000000000000000 R14: 00007ff591575fa0 R15: 00007ffc6f1e90b8 [ 115.140395][ T7760] [ 115.162283][ T7766] netlink: 48 bytes leftover after parsing attributes in process `syz.0.595'. [ 115.191845][ T7767] netlink: 4 bytes leftover after parsing attributes in process `syz.4.593'. [ 115.291276][ T7771] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 115.340099][ T7772] netlink: 'syz.0.595': attribute type 4 has an invalid length. [ 115.350417][ T7763] netlink: 28 bytes leftover after parsing attributes in process `syz.1.594'. [ 115.709294][ T7775] IPv6: Can't replace route, no match found [ 116.036664][ T7788] netlink: 4 bytes leftover after parsing attributes in process `syz.3.599'. [ 116.228719][ T7790] netlink: 300 bytes leftover after parsing attributes in process `syz.0.600'. [ 116.683923][ T7812] netlink: 8 bytes leftover after parsing attributes in process `syz.1.608'. [ 116.692773][ T7812] netlink: 48 bytes leftover after parsing attributes in process `syz.1.608'. [ 116.721277][ T7811] netlink: 'syz.2.607': attribute type 10 has an invalid length. [ 116.736760][ T7811] veth0_vlan: left promiscuous mode [ 116.746934][ T7811] veth0_vlan: entered promiscuous mode [ 116.759186][ T7811] team0: Device veth0_vlan failed to register rx_handler [ 116.905846][ T7820] netlink: 'syz.1.608': attribute type 4 has an invalid length. [ 116.932314][ T7817] IPv6: Can't replace route, no match found [ 117.026616][ T7823] netlink: 'syz.2.610': attribute type 1 has an invalid length. [ 117.035005][ T7823] netlink: 224 bytes leftover after parsing attributes in process `syz.2.610'. [ 117.670755][ T7858] IPv6: Can't replace route, no match found [ 117.921786][ T7868] FAULT_INJECTION: forcing a failure. [ 117.921786][ T7868] name failslab, interval 1, probability 0, space 0, times 0 [ 117.940116][ T7868] CPU: 0 UID: 0 PID: 7868 Comm: syz.2.627 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 117.950836][ T7868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 117.960954][ T7868] Call Trace: [ 117.964261][ T7868] [ 117.967219][ T7868] dump_stack_lvl+0x241/0x360 [ 117.971933][ T7868] ? __pfx_dump_stack_lvl+0x10/0x10 [ 117.977143][ T7868] ? __pfx__printk+0x10/0x10 [ 117.981734][ T7868] ? kmem_cache_alloc_node_noprof+0x4f/0x380 [ 117.987798][ T7868] ? __pfx___might_resched+0x10/0x10 [ 117.993081][ T7868] ? aa_label_sk_perm+0x4f3/0x6c0 [ 117.998111][ T7868] should_fail_ex+0x3b0/0x4e0 [ 118.002788][ T7868] should_failslab+0xac/0x100 [ 118.007462][ T7868] kmem_cache_alloc_node_noprof+0x77/0x380 [ 118.013265][ T7868] ? __alloc_skb+0x1c3/0x440 [ 118.017864][ T7868] __alloc_skb+0x1c3/0x440 [ 118.022291][ T7868] ? __pfx___alloc_skb+0x10/0x10 [ 118.027230][ T7868] netlink_sendmsg+0x638/0xcb0 [ 118.031996][ T7868] ? __pfx_netlink_sendmsg+0x10/0x10 [ 118.037279][ T7868] ? aa_sock_msg_perm+0x91/0x160 [ 118.042213][ T7868] ? __pfx_netlink_sendmsg+0x10/0x10 [ 118.047506][ T7868] __sock_sendmsg+0x221/0x270 [ 118.052185][ T7868] ____sys_sendmsg+0x52a/0x7e0 [ 118.056947][ T7868] ? __pfx_____sys_sendmsg+0x10/0x10 [ 118.062224][ T7868] ? __fget_files+0x2a/0x410 [ 118.066811][ T7868] ? __fget_files+0x2a/0x410 [ 118.071403][ T7868] __sys_sendmsg+0x269/0x350 [ 118.075986][ T7868] ? __pfx_lock_release+0x10/0x10 [ 118.081004][ T7868] ? __pfx___sys_sendmsg+0x10/0x10 [ 118.086114][ T7868] ? __pfx_vfs_write+0x10/0x10 [ 118.090887][ T7868] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 118.097215][ T7868] ? do_syscall_64+0x100/0x230 [ 118.101978][ T7868] ? do_syscall_64+0xb6/0x230 [ 118.106655][ T7868] do_syscall_64+0xf3/0x230 [ 118.111156][ T7868] ? clear_bhb_loop+0x35/0x90 [ 118.115833][ T7868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.121733][ T7868] RIP: 0033:0x7fa8b3b85d29 [ 118.126154][ T7868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 118.145766][ T7868] RSP: 002b:00007fa8b4a6c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 118.154197][ T7868] RAX: ffffffffffffffda RBX: 00007fa8b3d75fa0 RCX: 00007fa8b3b85d29 [ 118.162161][ T7868] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000004 [ 118.170134][ T7868] RBP: 00007fa8b4a6c090 R08: 0000000000000000 R09: 0000000000000000 [ 118.178097][ T7868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 118.186062][ T7868] R13: 0000000000000000 R14: 00007fa8b3d75fa0 R15: 00007ffef00bfcd8 [ 118.194038][ T7868] [ 118.763996][ T7907] FAULT_INJECTION: forcing a failure. [ 118.763996][ T7907] name failslab, interval 1, probability 0, space 0, times 0 [ 118.799250][ T7907] CPU: 1 UID: 0 PID: 7907 Comm: syz.0.641 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 118.809989][ T7907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 118.820116][ T7907] Call Trace: [ 118.823418][ T7907] [ 118.826369][ T7907] dump_stack_lvl+0x241/0x360 [ 118.831105][ T7907] ? __pfx_dump_stack_lvl+0x10/0x10 [ 118.836375][ T7907] ? __pfx__printk+0x10/0x10 [ 118.841081][ T7907] ? __kmalloc_noprof+0xb5/0x4c0 [ 118.846053][ T7907] ? __pfx___might_resched+0x10/0x10 [ 118.851366][ T7907] ? aa_get_newest_label+0xff/0x6f0 [ 118.856598][ T7907] should_fail_ex+0x3b0/0x4e0 [ 118.861311][ T7907] should_failslab+0xac/0x100 [ 118.866022][ T7907] __kmalloc_noprof+0xdd/0x4c0 [ 118.870816][ T7907] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 118.877100][ T7907] ? apparmor_capable+0x13b/0x1b0 [ 118.882162][ T7907] genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 118.888270][ T7907] genl_rcv_msg+0x802/0xec0 [ 118.892815][ T7907] ? __pfx_genl_rcv_msg+0x10/0x10 [ 118.897991][ T7907] ? __pfx_lock_acquire+0x10/0x10 [ 118.903054][ T7907] ? __pfx_netlbl_mgmt_add+0x10/0x10 [ 118.908364][ T7907] ? __pfx___might_resched+0x10/0x10 [ 118.913692][ T7907] netlink_rcv_skb+0x1e3/0x430 [ 118.918015][ T7908] netlink: 'syz.2.640': attribute type 29 has an invalid length. [ 118.918471][ T7907] ? __pfx_genl_rcv_msg+0x10/0x10 [ 118.931219][ T7907] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 118.936558][ T7907] genl_rcv+0x28/0x40 [ 118.940568][ T7907] netlink_unicast+0x7f6/0x990 [ 118.945359][ T7907] ? __pfx_netlink_unicast+0x10/0x10 [ 118.950662][ T7907] ? __virt_addr_valid+0x45f/0x530 [ 118.955802][ T7907] ? __phys_addr_symbol+0x2f/0x70 [ 118.960862][ T7907] ? __check_object_size+0x47a/0x730 [ 118.966194][ T7907] netlink_sendmsg+0x8e4/0xcb0 [ 118.970999][ T7907] ? __pfx_netlink_sendmsg+0x10/0x10 [ 118.976307][ T7907] ? aa_sock_msg_perm+0x91/0x160 [ 118.981274][ T7907] ? __pfx_netlink_sendmsg+0x10/0x10 [ 118.986584][ T7907] __sock_sendmsg+0x221/0x270 [ 118.991312][ T7907] ____sys_sendmsg+0x52a/0x7e0 [ 118.996113][ T7907] ? __pfx_____sys_sendmsg+0x10/0x10 [ 119.001415][ T7907] ? __fget_files+0x2a/0x410 [ 119.006037][ T7907] ? __fget_files+0x2a/0x410 [ 119.010660][ T7907] __sys_sendmsg+0x269/0x350 [ 119.015288][ T7907] ? __pfx_lock_release+0x10/0x10 [ 119.020349][ T7907] ? __pfx___sys_sendmsg+0x10/0x10 [ 119.025509][ T7907] ? __pfx_vfs_write+0x10/0x10 [ 119.030331][ T7907] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 119.036700][ T7907] ? do_syscall_64+0x100/0x230 [ 119.041551][ T7907] ? do_syscall_64+0xb6/0x230 [ 119.046255][ T7907] do_syscall_64+0xf3/0x230 [ 119.050789][ T7907] ? clear_bhb_loop+0x35/0x90 [ 119.055510][ T7907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.061432][ T7907] RIP: 0033:0x7f3490b85d29 [ 119.065872][ T7907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 119.085505][ T7907] RSP: 002b:00007f34919ba038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 119.093955][ T7907] RAX: ffffffffffffffda RBX: 00007f3490d75fa0 RCX: 00007f3490b85d29 [ 119.101956][ T7907] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000004 [ 119.109950][ T7907] RBP: 00007f34919ba090 R08: 0000000000000000 R09: 0000000000000000 [ 119.117947][ T7907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 119.125943][ T7907] R13: 0000000000000000 R14: 00007f3490d75fa0 R15: 00007ffdfaebec08 [ 119.133958][ T7907] [ 119.766812][ T7896] __nla_validate_parse: 5 callbacks suppressed [ 119.766833][ T7896] netlink: 4 bytes leftover after parsing attributes in process `syz.1.637'. [ 119.797663][ T7896] team_slave_0: entered promiscuous mode [ 119.803435][ T7896] team_slave_1: entered promiscuous mode [ 119.848282][ T7896] macvtap2: entered promiscuous mode [ 119.882995][ T7896] team0: entered promiscuous mode [ 119.888710][ T7896] macvtap2: entered allmulticast mode [ 119.897672][ T7896] team0: entered allmulticast mode [ 119.910053][ T7896] team_slave_0: entered allmulticast mode [ 119.918338][ T7896] team_slave_1: entered allmulticast mode [ 119.928807][ T7896] 8021q: adding VLAN 0 to HW filter on device macvtap2 [ 119.960046][ T7905] team0: left allmulticast mode [ 119.965307][ T7905] team_slave_0: left allmulticast mode [ 119.978218][ T7905] team_slave_1: left allmulticast mode [ 119.988324][ T7905] team0: left promiscuous mode [ 120.005575][ T7905] team_slave_0: left promiscuous mode [ 120.011107][ T7905] team_slave_1: left promiscuous mode [ 120.092700][ T7942] netlink: 4 bytes leftover after parsing attributes in process `syz.3.651'. [ 120.898858][ T7964] netlink: 8 bytes leftover after parsing attributes in process `syz.3.657'. [ 120.967969][ T7964] netlink: 48 bytes leftover after parsing attributes in process `syz.3.657'. [ 121.092956][ T7971] netlink: 4 bytes leftover after parsing attributes in process `syz.4.659'. [ 121.133520][ T5843] Bluetooth: hci2: command 0x0405 tx timeout [ 121.191544][ T7952] Set syz1 is full, maxelem 65536 reached [ 121.236572][ T7979] netlink: 'syz.3.657': attribute type 4 has an invalid length. [ 121.665584][ T7992] netlink: 104 bytes leftover after parsing attributes in process `syz.2.664'. [ 121.781196][ T7996] netlink: 4 bytes leftover after parsing attributes in process `syz.0.665'. [ 121.994067][ T8005] netlink: 104 bytes leftover after parsing attributes in process `syz.3.669'. [ 122.121566][ T7992] netlink: 4 bytes leftover after parsing attributes in process `syz.2.664'. [ 122.144128][ T7992] team_slave_0: entered promiscuous mode [ 122.149868][ T7992] team_slave_1: entered promiscuous mode [ 122.155927][ T7992] macvtap3: entered promiscuous mode [ 122.161249][ T7992] team0: entered promiscuous mode [ 122.166894][ T7992] macvtap3: entered allmulticast mode [ 122.172370][ T7992] team0: entered allmulticast mode [ 122.179321][ T7992] team_slave_0: entered allmulticast mode [ 122.185324][ T7992] team_slave_1: entered allmulticast mode [ 122.192614][ T7992] 8021q: adding VLAN 0 to HW filter on device macvtap3 [ 122.263618][ T7992] team0: left allmulticast mode [ 122.273490][ T7992] team_slave_0: left allmulticast mode [ 122.281378][ T7992] team_slave_1: left allmulticast mode [ 122.293187][ T7992] team0: left promiscuous mode [ 122.302052][ T7992] team_slave_0: left promiscuous mode [ 122.307573][ T7992] team_slave_1: left promiscuous mode [ 122.614218][ T8005] netlink: 4 bytes leftover after parsing attributes in process `syz.3.669'. [ 122.721841][ T8021] IPv6: Can't replace route, no match found [ 122.784969][ T8035] FAULT_INJECTION: forcing a failure. [ 122.784969][ T8035] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 122.798403][ T8035] CPU: 0 UID: 0 PID: 8035 Comm: syz.2.672 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 122.809122][ T8035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 122.819383][ T8035] Call Trace: [ 122.822693][ T8035] [ 122.825651][ T8035] dump_stack_lvl+0x241/0x360 [ 122.830367][ T8035] ? __pfx_dump_stack_lvl+0x10/0x10 [ 122.835587][ T8035] ? __pfx__printk+0x10/0x10 [ 122.840182][ T8035] ? __pfx_lock_release+0x10/0x10 [ 122.845213][ T8035] ? __lock_acquire+0x1397/0x2100 [ 122.850254][ T8035] should_fail_ex+0x3b0/0x4e0 [ 122.854947][ T8035] _copy_from_user+0x2f/0xc0 [ 122.859578][ T8035] tcp_v6_parse_md5_keys+0xeb/0x8b0 [ 122.864813][ T8035] ? mark_lock+0x9a/0x360 [ 122.869176][ T8035] ? __pfx_tcp_v6_parse_md5_keys+0x10/0x10 [ 122.875003][ T8035] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 122.881034][ T8035] ? do_tcp_setsockopt+0x954/0x2540 [ 122.886261][ T8035] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 122.892010][ T8035] do_tcp_setsockopt+0x1194/0x2540 [ 122.897145][ T8035] ? __pfx_do_tcp_setsockopt+0x10/0x10 [ 122.902621][ T8035] ? __pfx_aa_sk_perm+0x10/0x10 [ 122.907506][ T8035] ? __pfx_lock_acquire+0x10/0x10 [ 122.912534][ T8035] ? aa_sock_opt_perm+0x79/0x120 [ 122.917480][ T8035] ? tcp_setsockopt+0x3e/0xf0 [ 122.922159][ T8035] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 122.928052][ T8035] do_sock_setsockopt+0x3af/0x720 [ 122.933080][ T8035] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 122.938627][ T8035] ? __fget_files+0x395/0x410 [ 122.943310][ T8035] ? __fget_files+0x2a/0x410 [ 122.948003][ T8035] __x64_sys_setsockopt+0x1ee/0x280 [ 122.953205][ T8035] do_syscall_64+0xf3/0x230 [ 122.957713][ T8035] ? clear_bhb_loop+0x35/0x90 [ 122.962392][ T8035] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.968279][ T8035] RIP: 0033:0x7fa8b3b85d29 [ 122.972777][ T8035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.992553][ T8035] RSP: 002b:00007fa8b4a6c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 123.000966][ T8035] RAX: ffffffffffffffda RBX: 00007fa8b3d75fa0 RCX: 00007fa8b3b85d29 [ 123.008934][ T8035] RDX: 2000000000000020 RSI: 0000000000000006 RDI: 0000000000000003 [ 123.016906][ T8035] RBP: 00007fa8b4a6c090 R08: 000000001959cc36 R09: 0000000000000000 [ 123.024874][ T8035] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 [ 123.032840][ T8035] R13: 0000000000000000 R14: 00007fa8b3d75fa0 R15: 00007ffef00bfcd8 [ 123.040818][ T8035] [ 123.061072][ T8005] macvtap2: entered promiscuous mode [ 123.066735][ T8005] team0: entered promiscuous mode [ 123.071921][ T8005] team_slave_0: entered promiscuous mode [ 123.077873][ T8005] team_slave_1: entered promiscuous mode [ 123.083817][ T8005] macvtap2: entered allmulticast mode [ 123.089321][ T8005] team0: entered allmulticast mode [ 123.094526][ T8005] team_slave_0: entered allmulticast mode [ 123.100384][ T8005] team_slave_1: entered allmulticast mode [ 123.106551][ T8005] 8021q: adding VLAN 0 to HW filter on device macvtap2 [ 123.120249][ T8011] team0: left allmulticast mode [ 123.125716][ T8011] team_slave_0: left allmulticast mode [ 123.132553][ T8011] team_slave_1: left allmulticast mode [ 123.141702][ T8011] team0: left promiscuous mode [ 123.146596][ T8011] team_slave_0: left promiscuous mode [ 123.152272][ T8011] team_slave_1: left promiscuous mode [ 123.647370][ T8048] bridge0: port 3(gretap0) entered blocking state [ 123.658740][ T8048] bridge0: port 3(gretap0) entered disabled state [ 123.685990][ T8048] gretap0: entered allmulticast mode [ 123.703018][ T8048] gretap0: entered promiscuous mode [ 123.741707][ T8048] bridge0: port 3(gretap0) entered blocking state [ 123.748319][ T8048] bridge0: port 3(gretap0) entered forwarding state [ 124.099486][ T8075] IPv6: Can't replace route, no match found [ 124.757045][ T8091] team_slave_0: entered promiscuous mode [ 124.763959][ T8091] team_slave_1: entered promiscuous mode [ 124.783562][ T8091] macvtap4: entered promiscuous mode [ 124.801366][ T8091] team0: entered promiscuous mode [ 124.828876][ T8091] macvtap4: entered allmulticast mode [ 124.847905][ T8091] team0: entered allmulticast mode [ 124.869295][ T8091] team_slave_0: entered allmulticast mode [ 124.888814][ T8091] team_slave_1: entered allmulticast mode [ 124.896269][ T8091] 8021q: adding VLAN 0 to HW filter on device macvtap4 [ 124.914618][ T8069] team0: left allmulticast mode [ 124.919708][ T8069] team_slave_0: left allmulticast mode [ 124.927675][ T8069] team_slave_1: left allmulticast mode [ 124.939241][ T8069] team0: left promiscuous mode [ 124.948226][ T8069] team_slave_0: left promiscuous mode [ 124.953759][ T8069] team_slave_1: left promiscuous mode [ 125.463766][ T8123] netlink: 'syz.2.693': attribute type 1 has an invalid length. [ 125.496105][ T8123] __nla_validate_parse: 3 callbacks suppressed [ 125.496794][ T8123] netlink: 224 bytes leftover after parsing attributes in process `syz.2.693'. [ 125.611591][ T8123] netlink: 16 bytes leftover after parsing attributes in process `syz.2.693'. [ 125.927939][ T8137] netlink: 12 bytes leftover after parsing attributes in process `syz.2.698'. [ 126.250533][ T8152] netlink: 104 bytes leftover after parsing attributes in process `syz.0.703'. [ 126.404746][ T8162] netlink: 100 bytes leftover after parsing attributes in process `syz.1.706'. [ 126.533678][ T8160] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 126.866902][ T8160] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 127.159852][ T8053] Set syz1 is full, maxelem 65536 reached [ 127.399949][ T8193] netlink: 4 bytes leftover after parsing attributes in process `syz.0.703'. [ 127.455162][ T8193] team_slave_0: entered promiscuous mode [ 127.460892][ T8193] team_slave_1: entered promiscuous mode [ 127.473236][ T8193] macvtap1: entered promiscuous mode [ 127.490376][ T8193] team0: entered promiscuous mode [ 127.506122][ T8193] macvtap1: entered allmulticast mode [ 127.512739][ T8193] team0: entered allmulticast mode [ 127.527426][ T8193] team_slave_0: entered allmulticast mode [ 127.542902][ T8193] team_slave_1: entered allmulticast mode [ 127.571752][ T8193] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 127.592217][ T8197] IPv6: Can't replace route, no match found [ 127.663868][ T8152] team0: left allmulticast mode [ 127.671317][ T8152] team_slave_0: left allmulticast mode [ 127.687900][ T8152] team_slave_1: left allmulticast mode [ 127.697709][ T8152] team0: left promiscuous mode [ 127.702965][ T8152] team_slave_0: left promiscuous mode [ 127.708535][ T8152] team_slave_1: left promiscuous mode [ 127.874033][ T8213] netlink: 100 bytes leftover after parsing attributes in process `syz.3.718'. [ 128.157019][ T8226] Set syz1 is full, maxelem 65536 reached [ 128.236830][ T8230] netlink: 8 bytes leftover after parsing attributes in process `syz.1.724'. [ 128.272120][ T8230] netlink: 36 bytes leftover after parsing attributes in process `syz.1.724'. [ 128.305194][ T8230] vlan2: entered allmulticast mode [ 129.108353][ T8254] netlink: 28 bytes leftover after parsing attributes in process `syz.1.729'. [ 129.356547][ T8255] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 129.700313][ T8264] IPv6: Can't replace route, no match found [ 129.721401][ T8262] xt_TCPMSS: Only works on TCP SYN packets [ 130.213876][ T8291] netlink: 'syz.3.737': attribute type 4 has an invalid length. [ 130.710645][ T8316] IPv6: Can't replace route, no match found [ 131.318483][ T8332] __nla_validate_parse: 8 callbacks suppressed [ 131.318503][ T8332] netlink: 36 bytes leftover after parsing attributes in process `syz.1.753'. [ 131.460160][ T8340] netlink: 100 bytes leftover after parsing attributes in process `syz.2.756'. [ 131.490619][ T8339] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 131.551845][ T8343] netlink: 104 bytes leftover after parsing attributes in process `syz.4.758'. [ 131.586670][ T8339] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 131.647778][ T8347] netlink: 8 bytes leftover after parsing attributes in process `syz.2.760'. [ 131.663478][ T8347] netlink: 48 bytes leftover after parsing attributes in process `syz.2.760'. [ 131.679478][ T8339] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 131.690410][ T8350] FAULT_INJECTION: forcing a failure. [ 131.690410][ T8350] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 131.717270][ T8350] CPU: 1 UID: 0 PID: 8350 Comm: syz.3.761 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 131.727917][ T8350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 131.738002][ T8350] Call Trace: [ 131.741302][ T8350] [ 131.744252][ T8350] dump_stack_lvl+0x241/0x360 [ 131.748969][ T8350] ? __pfx_dump_stack_lvl+0x10/0x10 [ 131.754203][ T8350] ? __pfx__printk+0x10/0x10 [ 131.758832][ T8350] ? snprintf+0xda/0x120 [ 131.763110][ T8350] should_fail_ex+0x3b0/0x4e0 [ 131.767818][ T8350] _copy_to_user+0x31/0xb0 [ 131.772270][ T8350] simple_read_from_buffer+0xca/0x150 [ 131.777682][ T8350] proc_fail_nth_read+0x1e9/0x250 [ 131.782738][ T8350] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 131.788326][ T8350] ? rw_verify_area+0x55e/0x6f0 [ 131.793208][ T8350] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 131.798817][ T8350] vfs_read+0x1fc/0xb70 [ 131.803005][ T8350] ? __pfx___mutex_lock+0x10/0x10 [ 131.808060][ T8350] ? __pfx_vfs_read+0x10/0x10 [ 131.812768][ T8350] ? __fget_files+0x2a/0x410 [ 131.817390][ T8350] ? __fget_files+0x395/0x410 [ 131.822100][ T8350] ? __fget_files+0x2a/0x410 [ 131.826735][ T8350] ksys_read+0x18f/0x2b0 [ 131.831006][ T8350] ? __pfx_ksys_read+0x10/0x10 [ 131.835798][ T8350] ? do_syscall_64+0x100/0x230 [ 131.840592][ T8350] ? do_syscall_64+0xb6/0x230 [ 131.845304][ T8350] do_syscall_64+0xf3/0x230 [ 131.849843][ T8350] ? clear_bhb_loop+0x35/0x90 [ 131.854564][ T8350] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.860498][ T8350] RIP: 0033:0x7ff59138473c [ 131.864942][ T8350] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 131.884581][ T8350] RSP: 002b:00007ff5921ec030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 131.893039][ T8350] RAX: ffffffffffffffda RBX: 00007ff591575fa0 RCX: 00007ff59138473c [ 131.901041][ T8350] RDX: 000000000000000f RSI: 00007ff5921ec0a0 RDI: 0000000000000004 [ 131.909043][ T8350] RBP: 00007ff5921ec090 R08: 0000000000000000 R09: 0000000000000000 [ 131.917056][ T8350] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 [ 131.925152][ T8350] R13: 0000000000000000 R14: 00007ff591575fa0 R15: 00007ffc6f1e90b8 [ 131.933177][ T8350] [ 131.935207][ T8358] netlink: 'syz.2.760': attribute type 4 has an invalid length. [ 131.954477][ T8357] netlink: 4 bytes leftover after parsing attributes in process `syz.4.758'. [ 131.985661][ T8357] macvtap2: entered promiscuous mode [ 131.991010][ T8357] team0: entered promiscuous mode [ 132.013659][ T8357] macvtap2: entered allmulticast mode [ 132.019100][ T8357] team0: entered allmulticast mode [ 132.037225][ T8361] FAULT_INJECTION: forcing a failure. [ 132.037225][ T8361] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 132.054258][ T8357] 8021q: adding VLAN 0 to HW filter on device macvtap2 [ 132.061919][ T8361] CPU: 0 UID: 0 PID: 8361 Comm: syz.3.763 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 132.072546][ T8361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 132.082615][ T8361] Call Trace: [ 132.085894][ T8361] [ 132.088824][ T8361] dump_stack_lvl+0x241/0x360 [ 132.093532][ T8361] ? __pfx_dump_stack_lvl+0x10/0x10 [ 132.098730][ T8361] ? __pfx__printk+0x10/0x10 [ 132.103334][ T8361] ? __pfx_lock_release+0x10/0x10 [ 132.108363][ T8361] should_fail_ex+0x3b0/0x4e0 [ 132.113036][ T8361] _copy_from_user+0x2f/0xc0 [ 132.117625][ T8361] copy_msghdr_from_user+0xae/0x680 [ 132.122825][ T8361] ? __lock_acquire+0x1397/0x2100 [ 132.127858][ T8361] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 132.133667][ T8361] ? __fget_files+0x2a/0x410 [ 132.138257][ T8361] ? __fget_files+0x2a/0x410 [ 132.142848][ T8361] do_recvmmsg+0x3bd/0xab0 [ 132.147270][ T8361] ? __pfx_do_recvmmsg+0x10/0x10 [ 132.152218][ T8361] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 132.158114][ T8361] ? ksys_write+0x22a/0x2b0 [ 132.162610][ T8361] ? __pfx_lock_release+0x10/0x10 [ 132.167641][ T8361] ? vfs_write+0x730/0xd30 [ 132.172060][ T8361] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 132.178037][ T8361] ? __fget_files+0x2a/0x410 [ 132.182680][ T8361] __x64_sys_recvmmsg+0x199/0x250 [ 132.187704][ T8361] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 132.193248][ T8361] ? do_syscall_64+0x100/0x230 [ 132.198017][ T8361] ? do_syscall_64+0xb6/0x230 [ 132.202711][ T8361] do_syscall_64+0xf3/0x230 [ 132.207221][ T8361] ? clear_bhb_loop+0x35/0x90 [ 132.211901][ T8361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.217791][ T8361] RIP: 0033:0x7ff591385d29 [ 132.222203][ T8361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 132.241899][ T8361] RSP: 002b:00007ff5921ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 132.250317][ T8361] RAX: ffffffffffffffda RBX: 00007ff591575fa0 RCX: 00007ff591385d29 [ 132.258292][ T8361] RDX: 0000000000000700 RSI: 0000000020001140 RDI: 0000000000000004 [ 132.266280][ T8361] RBP: 00007ff5921ec090 R08: 0000000000000000 R09: 0000000000000000 [ 132.274266][ T8361] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 132.282269][ T8361] R13: 0000000000000000 R14: 00007ff591575fa0 R15: 00007ffc6f1e90b8 [ 132.290292][ T8361] [ 132.412715][ T8343] team0: left allmulticast mode [ 132.421040][ T8343] team0: left promiscuous mode [ 132.839180][ T8383] netlink: 596 bytes leftover after parsing attributes in process `syz.4.769'. [ 132.858481][ T8387] netlink: 24 bytes leftover after parsing attributes in process `syz.3.770'. [ 132.873192][ T8383] ip6gre1: entered allmulticast mode [ 132.986844][ T8390] netlink: 100 bytes leftover after parsing attributes in process `syz.0.772'. [ 133.055551][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.088305][ T8394] netlink: 104 bytes leftover after parsing attributes in process `syz.0.775'. [ 133.271127][ T8394] team_slave_0: entered promiscuous mode [ 133.276902][ T8394] team_slave_1: entered promiscuous mode [ 133.295601][ T8394] macvtap2: entered promiscuous mode [ 133.306883][ T8394] team0: entered promiscuous mode [ 133.329911][ T8394] macvtap2: entered allmulticast mode [ 133.348920][ T8394] team0: entered allmulticast mode [ 133.356513][ T8394] team_slave_0: entered allmulticast mode [ 133.362450][ T8394] team_slave_1: entered allmulticast mode [ 133.370178][ T8394] 8021q: adding VLAN 0 to HW filter on device macvtap2 [ 133.381998][ T8415] netlink: 'syz.3.777': attribute type 4 has an invalid length. [ 133.395840][ T8408] team0: left allmulticast mode [ 133.400733][ T8408] team_slave_0: left allmulticast mode [ 133.416067][ T8408] team_slave_1: left allmulticast mode [ 133.421811][ T8408] team0: left promiscuous mode [ 133.427625][ T8408] team_slave_0: left promiscuous mode [ 133.433126][ T8408] team_slave_1: left promiscuous mode [ 133.463026][ T8418] FAULT_INJECTION: forcing a failure. [ 133.463026][ T8418] name failslab, interval 1, probability 0, space 0, times 0 [ 133.484096][ T8418] CPU: 0 UID: 0 PID: 8418 Comm: syz.1.780 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 133.494751][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 133.504838][ T8418] Call Trace: [ 133.508140][ T8418] [ 133.511092][ T8418] dump_stack_lvl+0x241/0x360 [ 133.515891][ T8418] ? __pfx_dump_stack_lvl+0x10/0x10 [ 133.521129][ T8418] ? __pfx__printk+0x10/0x10 [ 133.525760][ T8418] ? __kmalloc_cache_noprof+0x48/0x390 [ 133.531258][ T8418] ? __pfx___might_resched+0x10/0x10 [ 133.536599][ T8418] should_fail_ex+0x3b0/0x4e0 [ 133.541324][ T8418] should_failslab+0xac/0x100 [ 133.546036][ T8418] __kmalloc_cache_noprof+0x70/0x390 [ 133.551371][ T8418] ? __request_module+0x2b9/0x640 [ 133.556442][ T8418] __request_module+0x2b9/0x640 [ 133.561335][ T8418] ? __pfx___request_module+0x10/0x10 [ 133.566750][ T8418] ? __pfx_lock_release+0x10/0x10 [ 133.571822][ T8418] ? __xfrm_init_state+0x708/0xea0 [ 133.576970][ T8418] __xfrm_init_state+0x745/0xea0 [ 133.581953][ T8418] xfrm_add_sa+0x2c6e/0x3d70 [ 133.586586][ T8418] ? __pfx_xfrm_add_sa+0x10/0x10 [ 133.591595][ T8418] ? __nla_parse+0x40/0x60 [ 133.596038][ T8418] xfrm_user_rcv_msg+0x890/0xb90 [ 133.600987][ T8418] ? __pfx_xfrm_user_rcv_msg+0x10/0x10 [ 133.606463][ T8418] ? __mutex_trylock_common+0x183/0x2e0 [ 133.612092][ T8418] ? __pfx___might_resched+0x10/0x10 [ 133.617385][ T8418] ? __pfx___mutex_trylock_common+0x10/0x10 [ 133.623342][ T8418] netlink_rcv_skb+0x1e3/0x430 [ 133.628102][ T8418] ? __pfx_xfrm_user_rcv_msg+0x10/0x10 [ 133.633562][ T8418] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 133.638863][ T8418] xfrm_netlink_rcv+0x79/0x90 [ 133.643562][ T8418] netlink_unicast+0x7f6/0x990 [ 133.648607][ T8418] ? __pfx_netlink_unicast+0x10/0x10 [ 133.653913][ T8418] ? __virt_addr_valid+0x45f/0x530 [ 133.659039][ T8418] ? __phys_addr_symbol+0x2f/0x70 [ 133.664070][ T8418] ? __check_object_size+0x47a/0x730 [ 133.669479][ T8418] netlink_sendmsg+0x8e4/0xcb0 [ 133.674267][ T8418] ? __pfx_netlink_sendmsg+0x10/0x10 [ 133.679560][ T8418] ? aa_sock_msg_perm+0x91/0x160 [ 133.684597][ T8418] ? __pfx_netlink_sendmsg+0x10/0x10 [ 133.690310][ T8418] __sock_sendmsg+0x221/0x270 [ 133.695024][ T8418] ____sys_sendmsg+0x52a/0x7e0 [ 133.699796][ T8418] ? __pfx_____sys_sendmsg+0x10/0x10 [ 133.705075][ T8418] ? __fget_files+0x2a/0x410 [ 133.709664][ T8418] ? __fget_files+0x2a/0x410 [ 133.714257][ T8418] __sys_sendmsg+0x269/0x350 [ 133.718841][ T8418] ? __pfx_lock_release+0x10/0x10 [ 133.723879][ T8418] ? __pfx___sys_sendmsg+0x10/0x10 [ 133.729011][ T8418] ? __pfx_vfs_write+0x10/0x10 [ 133.733800][ T8418] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 133.740150][ T8418] ? do_syscall_64+0x100/0x230 [ 133.744925][ T8418] ? do_syscall_64+0xb6/0x230 [ 133.749611][ T8418] do_syscall_64+0xf3/0x230 [ 133.754118][ T8418] ? clear_bhb_loop+0x35/0x90 [ 133.758794][ T8418] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.764793][ T8418] RIP: 0033:0x7fe640185d29 [ 133.769222][ T8418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.788846][ T8418] RSP: 002b:00007fe63fff9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 133.797266][ T8418] RAX: ffffffffffffffda RBX: 00007fe640375fa0 RCX: 00007fe640185d29 [ 133.805233][ T8418] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000004 [ 133.813197][ T8418] RBP: 00007fe63fff9090 R08: 0000000000000000 R09: 0000000000000000 [ 133.821161][ T8418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 133.829123][ T8418] R13: 0000000000000000 R14: 00007fe640375fa0 R15: 00007fffc5ffa2f8 [ 133.837105][ T8418] [ 134.498328][ T3749] IPVS: starting estimator thread 0... [ 134.501438][ T8450] IPVS: sh: UDP 224.0.0.2:0 - no destination available [ 134.577494][ T8459] team_slave_0: entered promiscuous mode [ 134.583336][ T8459] team_slave_1: entered promiscuous mode [ 134.604234][ T8459] macvtap3: entered promiscuous mode [ 134.613681][ T8455] IPVS: using max 30 ests per chain, 72000 per kthread [ 134.624092][ T8459] team0: entered promiscuous mode [ 134.638871][ T8459] macvtap3: entered allmulticast mode [ 134.650714][ T8459] team0: entered allmulticast mode [ 134.669794][ T8459] team_slave_0: entered allmulticast mode [ 134.678606][ T8465] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 134.682824][ T8459] team_slave_1: entered allmulticast mode [ 134.713360][ T8459] 8021q: adding VLAN 0 to HW filter on device macvtap3 [ 134.746623][ T8462] team0: left allmulticast mode [ 134.763101][ T8462] team_slave_0: left allmulticast mode [ 134.785241][ T8462] team_slave_1: left allmulticast mode [ 134.802235][ T8462] team0: left promiscuous mode [ 134.818052][ T8462] team_slave_0: left promiscuous mode [ 134.823591][ T8462] team_slave_1: left promiscuous mode [ 135.002265][ T8473] netlink: 'syz.2.798': attribute type 1 has an invalid length. [ 136.358155][ T8545] __nla_validate_parse: 15 callbacks suppressed [ 136.358187][ T8545] netlink: 24 bytes leftover after parsing attributes in process `syz.4.821'. [ 136.656716][ T8555] netlink: 100 bytes leftover after parsing attributes in process `syz.4.823'. [ 136.776362][ T8560] netlink: 104 bytes leftover after parsing attributes in process `syz.1.826'. [ 136.997930][ T8573] netlink: 12 bytes leftover after parsing attributes in process `syz.0.831'. [ 137.067554][ T8573] 8021q: adding VLAN 0 to HW filter on device bond0 [ 137.085378][ T8579] netlink: 24 bytes leftover after parsing attributes in process `syz.1.833'. [ 137.101004][ T8580] netlink: 8 bytes leftover after parsing attributes in process `syz.0.831'. [ 137.259364][ T8584] netlink: 4 bytes leftover after parsing attributes in process `syz.4.834'. [ 137.269974][ T8584] netlink: 8 bytes leftover after parsing attributes in process `syz.4.834'. [ 137.322231][ T8588] netlink: 100 bytes leftover after parsing attributes in process `syz.0.837'. [ 137.581408][ T8606] netlink: 104 bytes leftover after parsing attributes in process `syz.2.844'. [ 137.885850][ T8625] FAULT_INJECTION: forcing a failure. [ 137.885850][ T8625] name failslab, interval 1, probability 0, space 0, times 0 [ 137.923243][ T8625] CPU: 0 UID: 0 PID: 8625 Comm: syz.0.848 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 137.933917][ T8625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 137.944007][ T8625] Call Trace: [ 137.947322][ T8625] [ 137.950286][ T8625] dump_stack_lvl+0x241/0x360 [ 137.955011][ T8625] ? __pfx_dump_stack_lvl+0x10/0x10 [ 137.960258][ T8625] ? __pfx__printk+0x10/0x10 [ 137.964899][ T8625] ? __kmalloc_noprof+0xb5/0x4c0 [ 137.969951][ T8625] ? __pfx___might_resched+0x10/0x10 [ 137.975259][ T8625] should_fail_ex+0x3b0/0x4e0 [ 137.980043][ T8625] should_failslab+0xac/0x100 [ 137.984754][ T8625] __kmalloc_noprof+0xdd/0x4c0 [ 137.989564][ T8625] ? __kmalloc_cache_noprof+0x243/0x390 [ 137.995123][ T8625] ? netlbl_mgmt_add_common+0x142/0x12e0 [ 138.000772][ T8625] netlbl_mgmt_add_common+0x142/0x12e0 [ 138.006326][ T8625] ? apparmor_current_getlsmprop_subj+0xde/0x160 [ 138.012656][ T8625] netlbl_mgmt_add+0x2ed/0x3d0 [ 138.017442][ T8625] ? __pfx_netlbl_mgmt_add+0x10/0x10 [ 138.022752][ T8625] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 138.029092][ T8625] genl_rcv_msg+0xb14/0xec0 [ 138.033607][ T8625] ? __pfx_genl_rcv_msg+0x10/0x10 [ 138.038644][ T8625] ? __pfx_lock_acquire+0x10/0x10 [ 138.043660][ T8625] ? __pfx_netlbl_mgmt_add+0x10/0x10 [ 138.048941][ T8625] ? __pfx___might_resched+0x10/0x10 [ 138.054233][ T8625] netlink_rcv_skb+0x1e3/0x430 [ 138.058992][ T8625] ? __pfx_genl_rcv_msg+0x10/0x10 [ 138.064021][ T8625] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 138.069334][ T8625] genl_rcv+0x28/0x40 [ 138.073332][ T8625] netlink_unicast+0x7f6/0x990 [ 138.078116][ T8625] ? __pfx_netlink_unicast+0x10/0x10 [ 138.083403][ T8625] ? __virt_addr_valid+0x45f/0x530 [ 138.088526][ T8625] ? __phys_addr_symbol+0x2f/0x70 [ 138.093568][ T8625] ? __check_object_size+0x47a/0x730 [ 138.098878][ T8625] netlink_sendmsg+0x8e4/0xcb0 [ 138.103659][ T8625] ? __pfx_netlink_sendmsg+0x10/0x10 [ 138.108949][ T8625] ? aa_sock_msg_perm+0x91/0x160 [ 138.113889][ T8625] ? __pfx_netlink_sendmsg+0x10/0x10 [ 138.119175][ T8625] __sock_sendmsg+0x221/0x270 [ 138.123857][ T8625] ____sys_sendmsg+0x52a/0x7e0 [ 138.128623][ T8625] ? __pfx_____sys_sendmsg+0x10/0x10 [ 138.133917][ T8625] ? __fget_files+0x2a/0x410 [ 138.138508][ T8625] ? __fget_files+0x2a/0x410 [ 138.143114][ T8625] __sys_sendmsg+0x269/0x350 [ 138.147708][ T8625] ? __pfx_lock_release+0x10/0x10 [ 138.152733][ T8625] ? __pfx___sys_sendmsg+0x10/0x10 [ 138.157874][ T8625] ? __pfx_vfs_write+0x10/0x10 [ 138.162652][ T8625] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 138.168984][ T8625] ? do_syscall_64+0x100/0x230 [ 138.173767][ T8625] ? do_syscall_64+0xb6/0x230 [ 138.178486][ T8625] do_syscall_64+0xf3/0x230 [ 138.183032][ T8625] ? clear_bhb_loop+0x35/0x90 [ 138.187744][ T8625] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.193664][ T8625] RIP: 0033:0x7f3490b85d29 [ 138.198095][ T8625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 138.217723][ T8625] RSP: 002b:00007f34919ba038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 138.226164][ T8625] RAX: ffffffffffffffda RBX: 00007f3490d75fa0 RCX: 00007f3490b85d29 [ 138.234157][ T8625] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000004 [ 138.242143][ T8625] RBP: 00007f34919ba090 R08: 0000000000000000 R09: 0000000000000000 [ 138.250135][ T8625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 138.258159][ T8625] R13: 0000000000000000 R14: 00007f3490d75fa0 R15: 00007ffdfaebec08 [ 138.266166][ T8625] [ 140.670647][ T8678] IPv6: Can't replace route, no match found [ 140.952844][ T8691] bond_slave_0: entered promiscuous mode [ 140.959010][ T8691] bond_slave_1: entered promiscuous mode [ 140.971677][ T8691] macvtap5: entered promiscuous mode [ 140.999792][ T8691] bond0: entered promiscuous mode [ 141.008888][ T8691] macvtap5: entered allmulticast mode [ 141.024606][ T8691] bond0: entered allmulticast mode [ 141.041028][ T8691] bond_slave_0: entered allmulticast mode [ 141.057982][ T8691] bond_slave_1: entered allmulticast mode [ 141.076837][ T8691] 8021q: adding VLAN 0 to HW filter on device macvtap5 [ 141.096968][ T8694] bond0: left allmulticast mode [ 141.107243][ T8694] bond_slave_0: left allmulticast mode [ 141.112877][ T8694] bond_slave_1: left allmulticast mode [ 141.119159][ T8694] bond0: left promiscuous mode [ 141.124712][ T8694] bond_slave_0: left promiscuous mode [ 141.130539][ T8694] bond_slave_1: left promiscuous mode [ 141.324654][ T8709] IPv6: Can't replace route, no match found [ 141.428924][ T8714] IPv6: Can't replace route, no match found [ 141.679788][ T8725] bridge0: port 2(bridge_slave_1) entered disabled state [ 141.688381][ T8725] bridge0: port 1(bridge_slave_0) entered disabled state [ 141.937301][ T8735] netlink: 'syz.4.884': attribute type 9 has an invalid length. [ 142.176627][ T8747] __nla_validate_parse: 9 callbacks suppressed [ 142.176649][ T8747] netlink: 8 bytes leftover after parsing attributes in process `syz.2.890'. [ 142.221364][ T8747] batman_adv: batadv0: Adding interface: ip6gretap1 [ 142.236626][ T8747] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 142.283486][ T8747] batman_adv: batadv0: Interface activated: ip6gretap1 [ 142.639781][ T8772] netlink: 4 bytes leftover after parsing attributes in process `syz.1.904'. [ 142.695658][ T8777] netlink: 4 bytes leftover after parsing attributes in process `syz.4.901'. [ 142.731743][ T8777] erspan0: entered promiscuous mode [ 142.757433][ T8777] macvtap3: entered promiscuous mode [ 142.779884][ T8777] macvtap3: entered allmulticast mode [ 142.806038][ T8777] erspan0: entered allmulticast mode [ 142.827697][ T8782] netlink: 'syz.1.905': attribute type 1 has an invalid length. [ 142.846568][ T8780] erspan0: left allmulticast mode [ 142.858035][ T8780] erspan0: left promiscuous mode [ 142.934444][ T8786] bond2: (slave ip6erspan0): making interface the new active one [ 142.945188][ T8786] bond2: (slave ip6erspan0): Enslaving as an active interface with an up link [ 143.105925][ T8796] netlink: 4 bytes leftover after parsing attributes in process `syz.4.912'. [ 143.348026][ T8814] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0 [ 143.358457][ T8808] IPVS: stopping master sync thread 8814 ... [ 143.640335][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.649010][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 143.666200][ T8830] [ 143.668622][ T8830] ============================= [ 143.673678][ T8830] WARNING: suspicious RCU usage [ 143.678582][ T8830] 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 Not tainted [ 143.685915][ T8830] ----------------------------- [ 143.690802][ T8830] net/ethtool/common.c:873 suspicious rcu_dereference_protected() usage! [ 143.699346][ T8830] [ 143.699346][ T8830] other info that might help us debug this: [ 143.699346][ T8830] [ 143.703927][ T8828] netlink: 8 bytes leftover after parsing attributes in process `syz.4.927'. [ 143.709651][ T8830] [ 143.709651][ T8830] rcu_scheduler_active = 2, debug_locks = 1 [ 143.726661][ T8830] 1 lock held by syz.1.926/8830: [ 143.731619][ T8830] #0: ffff888021b42458 (sk_lock-AF_INET6){+.+.}-{0:0}, at: sk_setsockopt+0xebc/0x3290 [ 143.741397][ T8830] [ 143.741397][ T8830] stack backtrace: [ 143.747537][ T8830] CPU: 0 UID: 0 PID: 8830 Comm: syz.1.926 Not tainted 6.13.0-rc3-syzkaller-00692-ga502ea6fa94b #0 [ 143.758168][ T8830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 143.768259][ T8830] Call Trace: [ 143.771562][ T8830] [ 143.774509][ T8830] dump_stack_lvl+0x241/0x360 [ 143.779231][ T8830] ? __pfx_dump_stack_lvl+0x10/0x10 [ 143.784474][ T8830] ? __pfx__printk+0x10/0x10 [ 143.789128][ T8830] lockdep_rcu_suspicious+0x226/0x340 [ 143.794535][ T8830] __ethtool_get_ts_info+0x97/0x410 [ 143.799770][ T8830] ethtool_get_phc_vclocks+0xa1/0x160 [ 143.805176][ T8830] ? __pfx_ethtool_get_phc_vclocks+0x10/0x10 [ 143.811199][ T8830] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 143.817214][ T8830] ? dev_get_by_index+0x23/0x2d0 [ 143.822181][ T8830] sock_set_timestamping+0x3e2/0xab0 [ 143.827477][ T8830] ? __pfx_sock_set_timestamping+0x10/0x10 [ 143.833311][ T8830] sk_setsockopt+0x1fe7/0x3290 [ 143.838110][ T8830] ? __pfx_sk_setsockopt+0x10/0x10 [ 143.843246][ T8830] ? __pfx___might_resched+0x10/0x10 [ 143.848544][ T8830] ? __lock_acquire+0x1397/0x2100 [ 143.853597][ T8830] udp_lib_setsockopt+0x11d/0xc10 [ 143.858663][ T8830] ? __pfx_udp_lib_setsockopt+0x10/0x10 [ 143.864242][ T8830] ? __pfx_aa_sk_perm+0x10/0x10 [ 143.869102][ T8830] udpv6_setsockopt+0x73/0xb0 [ 143.873792][ T8830] ? __pfx_udp_v6_push_pending_frames+0x10/0x10 [ 143.880050][ T8830] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 143.885974][ T8830] do_sock_setsockopt+0x3af/0x720 [ 143.891004][ T8830] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 143.896570][ T8830] ? __fget_files+0x395/0x410 [ 143.901295][ T8830] ? __fget_files+0x2a/0x410 [ 143.905990][ T8830] __x64_sys_setsockopt+0x1ee/0x280 [ 143.911217][ T8830] do_syscall_64+0xf3/0x230 [ 143.915744][ T8830] ? clear_bhb_loop+0x35/0x90 [ 143.920494][ T8830] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.926396][ T8830] RIP: 0033:0x7fe640185d29 [ 143.930844][ T8830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 143.950450][ T8830] RSP: 002b:00007fe63fff9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 143.958881][ T8830] RAX: ffffffffffffffda RBX: 00007fe640375fa0 RCX: 00007fe640185d29 [ 143.966860][ T8830] RDX: 0000000000000041 RSI: 0000000000000001 RDI: 0000000000000005 [ 143.974850][ T8830] RBP: 00007fe640201aa8 R08: 0000000000000004 R09: 0000000000000000 [ 143.982843][ T8830] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000000 [ 143.990824][ T8830] R13: 0000000000000000 R14: 00007fe640375fa0 R15: 00007fffc5ffa2f8 [ 143.998831][ T8830]