last executing test programs: 5.599155332s ago: executing program 2 (id=1804): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x34, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8, 0xb, 0xffffffff}, @TCA_RATE={0x6}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x40004) r1 = socket(0x10, 0x803, 0x0) sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x1b0}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x0) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@multicast, @remote, @void, {@ipv4={0x800, @tcp={{0x7, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa010102, @local, {[@noop, @timestamp_prespec={0x44, 0x4, 0xfc, 0x3, 0x1}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x0, 0x0, 0x0, 0xa}}}}}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff) syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0008004500001c00000000002f90780a0100fde000a5f1bf"], 0x0) sendmsg$NL802154_CMD_SET_CHANNEL(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000080)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010028bd706dfbdbdf25090000000500080001000000050007000000000008000100873413b408d852e482f3f51dd9f12aa373e49700d88b090c5e93084043aca668940df319897875f4a70f1fd4838a8f116897a4ab5c66db8f36fc40195372b461d785d06b61d4c3c019442c56c4737c551eb5ed3b52000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4008040}, 0x20040000) r4 = socket$inet6_udp(0xa, 0x2, 0x0) syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), r2) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000140), r5) r8 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f00000005c0)={0x0, 0x4}, &(0x7f00000006c0)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r8, 0x84, 0x19, &(0x7f0000000700)={r9, 0x52}, 0x8) sendmsg$NLBL_MGMT_C_ADDDEF(r6, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f00000007c0)={0x34, r7, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @local}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0xa}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x34}}, 0x0) sendmsg$NL802154_CMD_NEW_INTERFACE(r6, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)={0x58, r3, 0xa10, 0x70bd2c, 0x25dfdbfe, {}, [@NL802154_ATTR_IFTYPE={0x8}, @NL802154_ATTR_EXTENDED_ADDR={0xc}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0x1}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, {0xaaaaaaaaaaaa0202}}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0xffffffff}, @NL802154_ATTR_EXTENDED_ADDR={0xc}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x58}, 0x1, 0x0, 0x0, 0x40}, 0x4000) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'rose0\x00'}) 5.026275294s ago: executing program 2 (id=1809): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x15, 0x0, &(0x7f0000000540)='syzkaller\x00', 0x5, 0x0, 0x0, 0x1e00, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff, @void, @value}, 0x94) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c00)=@delchain={0x50, 0x65, 0x8, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x6}, {}, {0xffe0, 0xd}}, [@TCA_CHAIN={0x8, 0xb, 0xba41}, @filter_kind_options=@f_bpf={{0x8}, {0xc, 0x2, [@TCA_BPF_FD={0x8, 0x6, r0}]}}, @TCA_RATE={0x6, 0x5, {0x63, 0x2}}, @TCA_CHAIN={0x8, 0xb, 0x6}]}, 0x50}}, 0x0) r1 = socket(0x10, 0x803, 0x0) sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/143, 0x8f}, {&(0x7f00000001c0)=""/9, 0x9}], 0x8, &(0x7f0000000600)=""/176, 0xb0, 0xb00}, 0xfffffffd}], 0x1, 0x0, &(0x7f0000003700)={0x77359400}) 4.954515299s ago: executing program 2 (id=1812): r0 = socket(0x14, 0x2, 0x4) r1 = socket$tipc(0x1e, 0x5, 0x0) sendmsg$tipc(r1, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x0, 0x2004}}, 0x10, 0x0}, 0x45) r2 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000011008188e6b62aa73f72cc9f0ba1f8483d0000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0) r3 = socket$inet_icmp(0x2, 0x2, 0x1) getsockopt$inet_dccp_int(r3, 0x21, 0x3, &(0x7f0000000180), &(0x7f00000001c0)=0x4) bind$inet(r3, &(0x7f0000000140)={0x2, 0x4e20, @broadcast}, 0x10) getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000200)={@remote, @multicast1}, &(0x7f0000000080)=0xc) 4.515432691s ago: executing program 2 (id=1819): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r2, r3, 0x2, 0x2, 0x0, @void, @value}, 0x10) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r4, r5, 0x2, 0x2, 0x0, @void, @value}, 0x10) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r6, 0x2, 0x0, 0x0, &(0x7f0000000280)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40) sendmsg$NL802154_CMD_SET_TX_POWER(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x2, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_TX_POWER={0x8, 0xb, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x40000) r7 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000940)=@newtaction={0x6c, 0x30, 0x48b, 0x0, 0x0, {}, [{0x58, 0x1, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{}, @multicast2, @remote}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0x30}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0000f62d76"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x8, 0x1c, &(0x7f0000000300)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b702000014000000b70300000300000085000000b2000000bf0900000000000055090100000000009500000000000000b7020000000000007b2af0ff00000000d609080000000000db9af0ff41000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018280000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7050000080000001500000076000000bf9800000000000056080000000000008500000007000000b70000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 4.354347281s ago: executing program 2 (id=1821): r0 = socket(0xa, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x3f, 0x0, 0x0, 0x200004c0], 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"]}, 0x2a8) 2.912895441s ago: executing program 1 (id=1841): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x100010, r0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x21, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@tail_call, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x1, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x90) r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xf0) close(r1) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x403, 0x4, 0x25ffdbfe, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_NF_CALL_IP6TABLES={0x5}, @IFLA_BR_NF_CALL_ARPTABLES={0x5}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000010}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) write(0xffffffffffffffff, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000fe0000000000000008000f00fd", 0x21) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c1000003e0007012ebd700004101c000100000004000002041001"], 0x101c}}, 0x0) 2.845769927s ago: executing program 2 (id=1842): r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000008c0)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x20000480, 0x200004b0], 0xfffff9, 0x0, &(0x7f0000000480)=[{}, {}, {}]}, 0x108) 2.588056116s ago: executing program 1 (id=1843): socket$inet6_udp(0xa, 0x2, 0x0) r0 = socket$inet6(0xa, 0x6, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x0, 0x20000000}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x5c}}, 0x0) listen(r0, 0x101) r2 = socket$inet_dccp(0x2, 0x6, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r3, 0x0) syz_emit_ethernet(0x8a, &(0x7f0000000040)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '(#\a', 0x54, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xd, 0xc2, 0x0, 0x0, 0x0, {[@timestamp={0x22, 0xa}, @sack_perm={0x4, 0x2}, @window={0x3, 0x3}, @timestamp={0x8, 0xa}, @generic={0x2, 0x4, "67ca"}, @mptcp=@synack={0x1e, 0x10}, @mptcp=@synack={0x1e, 0x10}]}}}}}}}}, 0x0) socket(0x40000000015, 0x5, 0x0) setsockopt(r2, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r2, &(0x7f0000e5c000)={0x2, 0x4e20, @dev}, 0x10) r4 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$unix(r4, &(0x7f0000004400)=[{{0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000a00)="ca", 0x1}], 0x1, 0x0, 0x0, 0x4000000}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000540)="fa14f6145a38266be705a88daf0f4cdc1377b7d018909cd8de1d3de21933566570b6877201b8296077934b08f5048de7560dd1ef5b9b52060076096abb94a72e90ab7375b12e158d3f7a7a00092119ea0128a41b83ed99bdc373c2bb7354a0a5496cb72f2a984fcf30ea96affaf707fdb74430a9c95b4e4fc12c90665d1d9ccd98ecdd", 0x83}], 0x1, &(0x7f0000000ec0)=ANY=[@ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c"], 0x60}}, {{0x0, 0x0, &(0x7f0000001680)=[{&(0x7f00000014c0)="c2", 0x1}], 0x1}}], 0x3, 0x0) 2.58010381s ago: executing program 4 (id=1844): bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="b4000000000000007910489329ed8300000000006104082000000000950000002761bcd33c658a31302f05f1"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r1) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r1, 0x9) r2 = socket$inet_mptcp(0x2, 0x1, 0x106) sendmmsg(r2, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20000000) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x28, r4, 0x9, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1d}]}]}, 0x28}}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r6, @ANYBLOB], 0x84}}, 0x20000000) r7 = socket$inet_mptcp(0x2, 0x1, 0x106) unshare(0x480) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) shutdown(r8, 0x0) r9 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000080)={0x114, 0x2b, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe8101000000010000008b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd"]}]}, 0x114}], 0x1}, 0x0) connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) 2.288368984s ago: executing program 0 (id=1846): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x96) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0) sendmsg$nl_route(r1, 0x0, 0x0) getsockname$packet(r1, 0x0, 0x0) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0x20, &(0x7f0000000140)={&(0x7f0000000580)=""/208, 0xd0, 0x0, &(0x7f00000000c0)=""/79, 0x4f}}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x4, 0x3, &(0x7f0000000740)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}}, &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = socket$key(0xf, 0x3, 0x2) close(r4) r5 = socket$inet6(0xa, 0x6, 0x0) setsockopt$inet6_int(r5, 0x29, 0x1000000000021, &(0x7f0000000180)=0x1, 0x4) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f0000000000)={0x1, 0x9}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r3, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="7638300c000000000000e9000000", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) r6 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), r6) 1.627228717s ago: executing program 1 (id=1851): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x15, 0x0, &(0x7f0000000540)='syzkaller\x00', 0x5, 0x0, 0x0, 0x1e00, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff, @void, @value}, 0x94) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000c00)=@delchain={0x3c, 0x65, 0x8, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xffe0, 0xd}}, [@TCA_CHAIN={0x8, 0xb, 0xba41}, @TCA_RATE={0x6, 0x5, {0x63, 0x2}}, @TCA_CHAIN={0x8, 0xb, 0x6}]}, 0x3c}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380), 0x0, &(0x7f0000000600)=""/191, 0xbf, 0xb00}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400}) 1.61131104s ago: executing program 4 (id=1852): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000240)=ANY=[@ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB='\b\x00%\x00\x00\x00\x00@'], 0x3c}, 0x1, 0x0, 0x0, 0x7000000}, 0x0) 1.532542535s ago: executing program 4 (id=1853): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x100010, r0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x21, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@tail_call, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x1, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x90) r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xf0) close(r1) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x403, 0x4, 0x25ffdbfe, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_NF_CALL_IP6TABLES={0x5}, @IFLA_BR_NF_CALL_ARPTABLES={0x5}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000010}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) write(0xffffffffffffffff, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000fe0000000000000008000f00fd", 0x21) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c1000003e0007012ebd700004101c000100000004000002041001"], 0x101c}}, 0x0) 1.393935738s ago: executing program 4 (id=1854): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x15, 0x0, &(0x7f0000000540)='syzkaller\x00', 0x5, 0x0, 0x0, 0x1e00, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff, @void, @value}, 0x94) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000c00)=@delchain={0x34, 0x65, 0x8, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xffe0, 0xd}}, [@TCA_CHAIN={0x8, 0xb, 0xba41}, @TCA_RATE={0x6, 0x5, {0x63, 0x2}}]}, 0x34}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000001c0)=""/17, 0x11}], 0x7, &(0x7f0000000600)=""/191, 0xbf, 0xb00}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400}) 1.307382661s ago: executing program 0 (id=1855): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0xe0, 0x3a, 0xb, 0x0, 0x0, {0x4}, [@nested={0xca, 0x0, 0x0, 0x1, [@typed={0x8, 0x3, 0x0, 0x0, @uid}, @generic="51c56e7a8af9df30af85da790fe82226ec6cd6fd310c041117e5b2ac9d4c1c87da9d31cf6cc8f3dc6991a433da2ab163197be824fa75b75347420214c31c4897e66036ac4eeee9b75c2d09372d18346b0e0019e91d879081b2dc25918e54196e1333c9dd73d38af4c3e7c20a5ee2dce5dc8a3112cc4467d176490257771f4cc2e0ef8ca2ce5033ec17b50d32befdca19a928bcc787db0c38657df751e9b2d8c08cf373a8f2d3547101cfeec7f500bbd5076bf0c41b9bfbbd621af6bb0c88"]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x20004040}, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f00000000c0)={0x0, 0x8}, 0x8) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x2, @loopback, 0x4}, 0x1c) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f0000000580)='\a', 0x34000, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 1.037801583s ago: executing program 1 (id=1856): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x15, 0x0, &(0x7f0000000540)='syzkaller\x00', 0x5, 0x0, 0x0, 0x1e00, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff, @void, @value}, 0x94) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000c00)=@delchain={0x50, 0x65, 0x8, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xffe0, 0xd}}, [@TCA_CHAIN={0x8, 0xb, 0xba41}, @filter_kind_options=@f_bpf={{0x8}, {0xc, 0x2, [@TCA_BPF_FD={0x8, 0x6, r0}]}}, @TCA_RATE={0x6, 0x5, {0x63, 0x2}}, @TCA_CHAIN={0x8, 0xb, 0x6}]}, 0x50}}, 0x0) r1 = socket(0x10, 0x803, 0x0) sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x7e}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41, 0xb00}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) (fail_nth: 6) 1.014208388s ago: executing program 3 (id=1857): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) accept4(r0, 0x0, 0x0, 0x100000) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) syz_emit_ethernet(0x20, &(0x7f0000000040)={@remote, @remote, @val={@void}, {@mpls_mc={0x8864, {[], @generic="2d752a352b4daeaecc90ae876223"}}}}, 0x0) sendto$inet(r0, &(0x7f00000003c0)="845841867c9d27f7d549df9d791bf630b0fb0ad92b63a5778b5190449d9dcd62a640ceed17b40eccf052bb14bc1883a9909951388be2e320a062492f322020d1a39a863f5873c55581a2d4fffe17aa647c5b6465a677f9bf49205774be95c68256a1d726653eb5fe6df04167386582d07b146ee1e3f08ac56f9476eed5b4c3f04842d2ec164136222df8676e89371b7714b0a239656677ed06522011091f2a894a32bf145043532b4038e44172664f9e0fb7f982b899ade60ab4b442f9897d713a479eed4313e965dfae426e60cafe02177c86c5e6cc0bb1d5e1c9619891167c5906ae441c8bc6e69fc8fc5f3af03f9a0142be7087c75fedb5", 0xf9, 0x0, &(0x7f0000000200)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000002c0)="316f825a3d29f96a2093a917017b4cd300000000bee70035ed313e19d6dd1fb41a20baf7f7343067fd40cdd4b16742e94b62f4eb1c5d9faab7f3028100ae8180db94b9de7456ae62b0e6fe7766a0842912179154a96fa88e161d4adf77a486e10d1d1d0b90c8997e6917226fa4bb5d77e85729336ba6369a4c33ac53b45d46a92db9fda99af4429dc23db6a1706328df4e75eb173a81bd4af8b89d1870c9b2382a759d67a4cbb1280955e9a59cd8e5e8ac68c27da3d542aece1ba7920e8f39b270458224e7", 0xc5}], 0x1}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000014c0)="23004e4ee760d48ddc6b7a1ebfc6e0276028840fb20d5233e81c802684e8ac1dc195296ffaaeace75a07a652ee918f67beb970cd36769470f7acb5cd5becfa3839cec05a81f9488931e0a9ba9a246f45fee8b5240bd1e078539b56973bfbbee5a100668daf66ef25121ca65d", 0x6c}, {&(0x7f0000000000)="27c783110496bfea2d9c69357c016c02161e11b4ed0e25e2995d4bc7279caf25edc4b36cce068bc44e79b8099eec0998b2333faf15e1a5f6296549cb388e334df2d794f3bf8e0fb2dedbbcea615c6d3c248613460f70b9c1103d5628019bd9a801e923c8d6b263c3934b70f85a", 0x6d}, {&(0x7f0000000180)="c02623592d35f8b46b6eac4bb1ae6942f2bbc33bda6d06a89e90a4d2190dc01f8733f5d4634550c6d86093d0c72edb18bee6f69548e10eee99f1c6fc379b908d246fea10c2e159c79cb5b5d0004a19b2d0e1aec27b6846620a8bcbd32e11a1f70bc931eafcc23a72b099104db18eea02920e84b62b", 0x75}], 0x3}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000001bc0)="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", 0x29d}], 0x1}}], 0x3, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000004c0)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) sendto$inet(r1, &(0x7f0000000500)="09268a927f1a6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x4d, 0x11, 0x0, 0x0) 927.313377ms ago: executing program 4 (id=1858): socket$nl_generic(0x10, 0x3, 0x10) setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, 0x0, 0x0) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) r3 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000080)={0x7, 0xc, 0x7, 0x1, 0x0}, &(0x7f00000001c0)=0x10) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000240)={0x3, 0x1c, 0x1d, 0x5, r5}, &(0x7f0000000280)=0x10) close(r4) r6 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r6, 0x0) r7 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x51, 0x0, '.\x00'}}) r8 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r8, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) sendto$inet(r8, &(0x7f0000000040)="a6", 0xffffff4c, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) 749.972811ms ago: executing program 3 (id=1859): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0) 527.126916ms ago: executing program 3 (id=1860): r0 = socket$nl_route(0x10, 0x3, 0x0) (async) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8}, @NFTA_EXTHDR_TYPE={0x5}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x84}}, 0x0) (async) r2 = socket$inet_udp(0x2, 0x2, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000500)={0x6c, r5, 0x1, 0x0, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_REKEY_DATA={0x50, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="56a63d2db91432eb9a0a3edc4d0f14d8c59f81152d669299"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "046b97a2d52c9bb7"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="1bf147ecffa2f14efe650add31ce630c728186f9c4d523150c2f4d97968bb687"}]}]}, 0x6c}}, 0x40) (async) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c00000010000104000000000000000100000000", @ANYRES32=0x0, @ANYBLOB="fff0000000000000140012800b00010062617461647600000300028008000a001a"], 0x3c}}, 0x0) 407.413139ms ago: executing program 0 (id=1861): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) writev(r0, &(0x7f0000000080)=[{&(0x7f0000000200)='/', 0x1}], 0x1) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0) r1 = socket$l2tp(0x2, 0x2, 0x73) setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x500, 0x48a, &(0x7f00000003c0)={0x14ae4701}, 0xc) 378.50769ms ago: executing program 1 (id=1862): r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r1) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r1, 0x9) r2 = socket$inet_mptcp(0x2, 0x1, 0x106) sendmmsg(r2, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20000000) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x28, r4, 0x9, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1d}]}]}, 0x28}, 0x1, 0x0, 0x2800000000000000}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r6, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000) r7 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) 371.682794ms ago: executing program 0 (id=1863): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000240)=ANY=[@ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB='\b\x00%\x00\x00\x00\x00@'], 0x3c}, 0x1, 0x0, 0x0, 0x7000000}, 0x0) 251.492495ms ago: executing program 0 (id=1864): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x100010, r0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x21, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@tail_call, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x1, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x90) r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xf0) close(r1) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x403, 0x4, 0x25ffdbfe, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_NF_CALL_IP6TABLES={0x5}, @IFLA_BR_NF_CALL_ARPTABLES={0x5}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000010}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) write(0xffffffffffffffff, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000fe0000000000000008000f00fd", 0x21) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c1000003e0007012ebd700004101c000100000004000002041001"], 0x101c}}, 0x0) 151.333828ms ago: executing program 3 (id=1865): tee(0xffffffffffffffff, 0xffffffffffffffff, 0x80000001, 0x0) syz_emit_ethernet(0xc6, &(0x7f00000008c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x7, 0x4, 0x0, 0x0, 0xb8, 0x0, 0x0, 0x0, 0x11, 0x0, @dev, @local, {[@timestamp={0x44, 0x4, 0x8}, @rr={0x7, 0x3, 0xd7}]}}, {0x0, 0x0, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "6fdfa0d2001efbb3e29a4ac275ca11b984ff5def6ed2e4ea9bc0eabdd34c732b", "df23520b57e4c98679c7795a27c7bf3e7d776b600ba8d82d6ba417e219edd86fb708441efcf75fe803412dae374281c2", "5df814aa2e34e4f8a759805b993e2d69a8f476de686861a9850edbe3", {"2cfee9b9d5b0b2b171b51f9174963b0c", "e40ca7e0a7b4bbc4bc9720c876a57954"}}}}}}}, 0x0) syz_emit_ethernet(0x222, &(0x7f0000000300)={@local, @empty, @void, {@ipv6={0x86dd, @udp={0x7, 0x6, "f91aa3", 0x1ec, 0x11, 0xff, @local, @private1, {[@fragment={0x0, 0x0, 0xd2, 0x1, 0x0, 0x12, 0x68}, @hopopts={0x0, 0x1, '\x00', [@ra, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}, @dstopts={0x2b, 0x1, '\x00', [@jumbo={0xc2, 0x4, 0x7}, @padn]}, @fragment={0x21, 0x0, 0x3, 0x1, 0x0, 0xe, 0x64}, @dstopts={0xc, 0x21, '\x00', [@jumbo={0xc2, 0x4, 0x5}, @calipso={0x7, 0x28, {0x2, 0x8, 0x90, 0x0, [0xc, 0xfffffffffffffffe, 0x8, 0x1fffffffc0]}}, @pad1, @generic={0x3, 0xd8, "187e4ccda1aa19f747bb5440989517dfe4766fd401cf4f4711b84ca34d673e146767ed809191ed72ca40bd3e2dd317eb8b067e9d86fe01b40a99671ff619844e860ad2c6b3abc05864de2adb8476989555b70a0adae42bb0f9595dcedf677b030f749df399ad9199f4e8650555fa2eb1eaac855ae00cdb2f073fb00a26eab3cddbf514579593af6f3df8c7ab01eca4d5f715489250c922cfe9ff6d9dcbfe29c52d7eb9c3a48d01493576d8931eec9af6c782d464db669dea8287b264d4d19a109177747ca68ae4d355daeaa4cd5b73b9c665ee47c9e15751"}]}], {0x4e20, 0x4e23, 0x9c, 0x0, @wg=@initiation={0x1, 0x3, "6a56f66513428282f50b0a7fcfe9f1f75b4a22b2917bd32da55d2fab2df7a731", "3c5205a9922f87e232aa8b74794b19e9dfb39fca6f55edc47ca5a732eceadd277413fe454633ae2a9f8e943e7d893df4", "aacad662696823d0fccd78958a2b1d763e98df86dae295be48a71e92", {"d127434f1990e2fb30ea8fd8490c758c", "075c04bf343bf3971f8a68af44ffd5e8"}}}}}}}}, 0x0) 151.182401ms ago: executing program 1 (id=1866): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x15, 0x0, &(0x7f0000000540)='syzkaller\x00', 0x5, 0x0, 0x0, 0x1e00, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff, @void, @value}, 0x94) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000c00)=@delchain={0x3c, 0x65, 0x8, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xffe0, 0xd}}, [@TCA_CHAIN={0x8, 0xb, 0xba41}, @TCA_RATE={0x6, 0x5, {0x63, 0x2}}, @TCA_CHAIN={0x8, 0xb, 0x6}]}, 0x3c}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}], 0x7, &(0x7f0000000600)=""/191, 0xbf, 0xb00}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400}) 131.897784ms ago: executing program 3 (id=1867): socket$inet_udplite(0x2, 0x2, 0x88) syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', &(0x7f0000000040)=@default_ap_ssid, 0x6, 0x20) 89.818296ms ago: executing program 0 (id=1868): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)=@ipv6_newaddrlabel={0x44, 0x18, 0x1, 0x0, 0x0, {0xa, 0x37}, [@IFAL_ADDRESS={0x14, 0x5, @remote}, @IFAL_ADDRESS={0x4, 0x1, @remote}]}, 0x44}}, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$CAN_RAW_JOIN_FILTERS(r1, 0x65, 0x6, &(0x7f00000000c0), 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10) setsockopt$CAN_RAW_FD_FRAMES(r1, 0x65, 0x5, &(0x7f0000000140), 0x4) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r3) sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x38, r4, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x80}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x38}}, 0x0) connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) bind$bt_l2cap(r1, &(0x7f0000000200)={0x1f, 0x49a9, @none, 0xd30, 0x1}, 0xe) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a7c000000060a09040000000000000000020000005000048024000180090001006d6574610000000014000280080001400000000208000240000000002800018008000100666962001c0002800800014000000014080003400000000108000240000000010900010073797a30000000000900020073797a32"], 0xa4}}, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0), 0x4) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000100)) sendto$inet(r2, &(0x7f0000000340)='\b', 0x1, 0x0, 0x0, 0x0) sendto$inet(r1, &(0x7f0000000240), 0x0, 0x20000040, 0x0, 0x0) recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x0, 0x0, 0xfffffffffffffd25) 11.433716ms ago: executing program 3 (id=1869): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x6}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x10}}, 0x48}, 0x1, 0x0, 0x0, 0x34}, 0x0) 0s ago: executing program 4 (id=1870): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0) kernel console output (not intermixed with test programs): 8209] ? __pfx___sys_sendmsg+0x10/0x10 [ 229.236718][ T8209] ? __pfx_vfs_write+0x10/0x10 [ 229.241511][ T8209] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 229.247860][ T8209] ? do_syscall_64+0x100/0x230 [ 229.252644][ T8209] ? do_syscall_64+0xb6/0x230 [ 229.257337][ T8209] do_syscall_64+0xf3/0x230 [ 229.261856][ T8209] ? clear_bhb_loop+0x35/0x90 [ 229.266548][ T8209] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.272460][ T8209] RIP: 0033:0x7f6b1777dff9 [ 229.276887][ T8209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.296532][ T8209] RSP: 002b:00007f6b185ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 229.304969][ T8209] RAX: ffffffffffffffda RBX: 00007f6b17935f80 RCX: 00007f6b1777dff9 [ 229.312950][ T8209] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 229.320934][ T8209] RBP: 00007f6b185ce090 R08: 0000000000000000 R09: 0000000000000000 [ 229.328919][ T8209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 229.336906][ T8209] R13: 0000000000000000 R14: 00007f6b17935f80 R15: 00007ffdad6456f8 [ 229.344997][ T8209] [ 229.356177][ T8211] tipc: New replicast peer: 255.255.255.255 [ 229.369814][ T8211] tipc: Enabled bearer , priority 10 [ 229.496130][ T8216] tap0: tun_chr_ioctl cmd 1074812118 [ 229.594913][ T8220] __nla_validate_parse: 71 callbacks suppressed [ 229.594935][ T8220] netlink: 76 bytes leftover after parsing attributes in process `syz.3.961'. [ 229.696099][ T8220] team0: Port device team_slave_1 removed [ 229.810059][ T8227] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 229.900217][ T8229] netlink: 16 bytes leftover after parsing attributes in process `syz.0.965'. [ 229.938625][ T8233] netlink: 36 bytes leftover after parsing attributes in process `syz.3.966'. [ 229.948977][ T8233] netlink: 16 bytes leftover after parsing attributes in process `syz.3.966'. [ 229.958924][ T8233] netlink: 36 bytes leftover after parsing attributes in process `syz.3.966'. [ 229.968928][ T8233] netlink: 36 bytes leftover after parsing attributes in process `syz.3.966'. [ 230.089279][ T8240] FAULT_INJECTION: forcing a failure. [ 230.089279][ T8240] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 230.191217][ T8240] CPU: 1 UID: 0 PID: 8240 Comm: syz.2.968 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 230.201884][ T8240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 230.211992][ T8240] Call Trace: [ 230.215301][ T8240] [ 230.218261][ T8240] dump_stack_lvl+0x241/0x360 [ 230.222987][ T8240] ? __pfx_dump_stack_lvl+0x10/0x10 [ 230.228226][ T8240] ? __pfx__printk+0x10/0x10 [ 230.232872][ T8240] ? __pfx_lock_release+0x10/0x10 [ 230.237958][ T8240] should_fail_ex+0x3b0/0x4e0 [ 230.242689][ T8240] _copy_from_user+0x2f/0xe0 [ 230.247302][ T8240] copy_msghdr_from_user+0xae/0x680 [ 230.252523][ T8240] ? __pfx___might_resched+0x10/0x10 [ 230.257828][ T8240] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 230.263664][ T8240] ? rcu_is_watching+0x15/0xb0 [ 230.268462][ T8240] ? __might_fault+0xaa/0x120 [ 230.273190][ T8240] __sys_sendmmsg+0x36d/0x730 [ 230.277928][ T8240] ? __pfx___sys_sendmmsg+0x10/0x10 [ 230.283193][ T8240] ? __pfx_lock_release+0x10/0x10 [ 230.288256][ T8240] ? kstrtouint_from_user+0x128/0x190 [ 230.293678][ T8240] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 230.299620][ T8240] ? ksys_write+0x229/0x2b0 [ 230.304141][ T8240] ? __pfx_lock_release+0x10/0x10 [ 230.309193][ T8240] ? vfs_write+0x7bf/0xc90 [ 230.313672][ T8240] ? __mutex_unlock_slowpath+0x21d/0x750 [ 230.319328][ T8240] ? __fget_files+0x3f3/0x470 [ 230.324029][ T8240] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 230.330033][ T8240] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 230.336385][ T8240] ? do_syscall_64+0x100/0x230 [ 230.341172][ T8240] __x64_sys_sendmmsg+0xa0/0xb0 [ 230.346042][ T8240] do_syscall_64+0xf3/0x230 [ 230.350561][ T8240] ? clear_bhb_loop+0x35/0x90 [ 230.355262][ T8240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.361188][ T8240] RIP: 0033:0x7fd68e57dff9 [ 230.365740][ T8240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.385366][ T8240] RSP: 002b:00007fd68f2f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 230.393802][ T8240] RAX: ffffffffffffffda RBX: 00007fd68e736130 RCX: 00007fd68e57dff9 [ 230.401804][ T8240] RDX: 04000000000002ca RSI: 0000000020003bc0 RDI: 0000000000000004 [ 230.409845][ T8240] RBP: 00007fd68f2f0090 R08: 0000000000000000 R09: 0000000000000000 [ 230.417851][ T8240] R10: 0000000004040014 R11: 0000000000000246 R12: 0000000000000002 [ 230.425859][ T8240] R13: 0000000000000001 R14: 00007fd68e736130 R15: 00007fff77844eb8 [ 230.433878][ T8240] [ 230.471721][ T5316] tipc: Node number set to 2886997007 [ 230.639379][ T8259] gretap0: entered allmulticast mode [ 230.998204][ T8272] netlink: 216 bytes leftover after parsing attributes in process `syz.3.982'. [ 231.112289][ T8283] netlink: 36 bytes leftover after parsing attributes in process `syz.0.983'. [ 231.132648][ T8283] netlink: 16 bytes leftover after parsing attributes in process `syz.0.983'. [ 231.161658][ T8283] netlink: 36 bytes leftover after parsing attributes in process `syz.0.983'. [ 231.675241][ T8321] netlink: 'syz.4.999': attribute type 29 has an invalid length. [ 231.902487][ T8333] Dead loop on virtual device ipvlan1, fix it urgently! [ 231.957172][ T8333] syz.0.1005 (8333) used greatest stack depth: 7640 bytes left [ 232.199663][ T8347] x_tables: duplicate underflow at hook 1 [ 232.618794][ T54] Bluetooth: hci5: command 0x0406 tx timeout [ 232.618807][ T5244] Bluetooth: hci0: command 0x0406 tx timeout [ 232.657326][ T8371] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 232.696011][ T8369] ieee802154 phy1 wpan1: encryption failed: -22 [ 232.786486][ T8379] FAULT_INJECTION: forcing a failure. [ 232.786486][ T8379] name failslab, interval 1, probability 0, space 0, times 0 [ 232.809807][ T8379] CPU: 0 UID: 0 PID: 8379 Comm: syz.3.1024 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 232.820566][ T8379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 232.830716][ T8379] Call Trace: [ 232.834039][ T8379] [ 232.837002][ T8379] dump_stack_lvl+0x241/0x360 [ 232.841733][ T8379] ? __pfx_dump_stack_lvl+0x10/0x10 [ 232.846976][ T8379] ? __pfx__printk+0x10/0x10 [ 232.851624][ T8379] ? __kmalloc_noprof+0xb0/0x400 [ 232.856631][ T8379] ? __pfx___might_resched+0x10/0x10 [ 232.861976][ T8379] should_fail_ex+0x3b0/0x4e0 [ 232.866714][ T8379] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 232.873006][ T8379] should_failslab+0xac/0x100 [ 232.877726][ T8379] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 232.884009][ T8379] __kmalloc_noprof+0xd8/0x400 [ 232.888821][ T8379] ? apparmor_capable+0x13b/0x1b0 [ 232.893898][ T8379] genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 232.900031][ T8379] genl_rcv_msg+0x802/0xec0 [ 232.904613][ T8379] ? mark_lock+0x9a/0x360 [ 232.909000][ T8379] ? __pfx_genl_rcv_msg+0x10/0x10 [ 232.914106][ T8379] ? __pfx_lock_acquire+0x10/0x10 [ 232.919187][ T8379] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 232.924612][ T8379] ? __pfx_nl80211_tx_control_port+0x10/0x10 [ 232.930639][ T8379] ? __pfx_nl80211_post_doit+0x10/0x10 [ 232.936240][ T8379] ? __pfx___might_resched+0x10/0x10 [ 232.941591][ T8379] netlink_rcv_skb+0x1e3/0x430 [ 232.946418][ T8379] ? __pfx_genl_rcv_msg+0x10/0x10 [ 232.951496][ T8379] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 232.956844][ T8379] ? __netlink_deliver_tap+0x77e/0x7c0 [ 232.962359][ T8379] genl_rcv+0x28/0x40 [ 232.966393][ T8379] netlink_unicast+0x7f6/0x990 [ 232.971217][ T8379] ? __pfx_netlink_unicast+0x10/0x10 [ 232.976550][ T8379] ? __virt_addr_valid+0x183/0x530 [ 232.981710][ T8379] ? __check_object_size+0x48e/0x900 [ 232.987051][ T8379] netlink_sendmsg+0x8e4/0xcb0 [ 232.991874][ T8379] ? __pfx_netlink_sendmsg+0x10/0x10 [ 232.997394][ T8379] ? aa_sock_msg_perm+0x91/0x160 [ 233.002384][ T8379] ? __pfx_netlink_sendmsg+0x10/0x10 [ 233.007707][ T8379] __sock_sendmsg+0x221/0x270 [ 233.012433][ T8379] ____sys_sendmsg+0x52a/0x7e0 [ 233.017254][ T8379] ? __pfx_____sys_sendmsg+0x10/0x10 [ 233.022609][ T8379] __sys_sendmsg+0x292/0x380 [ 233.027265][ T8379] ? __pfx___sys_sendmsg+0x10/0x10 [ 233.032436][ T8379] ? __pfx_vfs_write+0x10/0x10 [ 233.037273][ T8379] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 233.043661][ T8379] ? do_syscall_64+0x100/0x230 [ 233.048566][ T8379] ? do_syscall_64+0xb6/0x230 [ 233.053301][ T8379] do_syscall_64+0xf3/0x230 [ 233.057893][ T8379] ? clear_bhb_loop+0x35/0x90 [ 233.062627][ T8379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.068581][ T8379] RIP: 0033:0x7f6b1777dff9 [ 233.073037][ T8379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 233.078572][ T8393] netlink: 'syz.1.1026': attribute type 10 has an invalid length. [ 233.092847][ T8379] RSP: 002b:00007f6b185ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 233.092886][ T8379] RAX: ffffffffffffffda RBX: 00007f6b17935f80 RCX: 00007f6b1777dff9 [ 233.092904][ T8379] RDX: 0000000000000000 RSI: 0000000020003700 RDI: 0000000000000003 [ 233.092919][ T8379] RBP: 00007f6b185ce090 R08: 0000000000000000 R09: 0000000000000000 [ 233.092935][ T8379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 233.092950][ T8379] R13: 0000000000000000 R14: 00007f6b17935f80 R15: 00007ffdad6456f8 [ 233.092984][ T8379] [ 233.180487][ T8393] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 233.238121][ T8396] netlink: 'syz.3.1031': attribute type 1 has an invalid length. [ 233.248617][ T8393] team0: Port device batadv0 added [ 233.462990][ T8403] xt_CT: No such helper "pptp" [ 233.882737][ T8423] FAULT_INJECTION: forcing a failure. [ 233.882737][ T8423] name failslab, interval 1, probability 0, space 0, times 0 [ 233.895795][ T8423] CPU: 0 UID: 0 PID: 8423 Comm: syz.0.1041 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 233.906523][ T8423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 233.916627][ T8423] Call Trace: [ 233.919956][ T8423] [ 233.922925][ T8423] dump_stack_lvl+0x241/0x360 [ 233.927647][ T8423] ? __pfx_dump_stack_lvl+0x10/0x10 [ 233.932894][ T8423] ? __pfx__printk+0x10/0x10 [ 233.937555][ T8423] ? reacquire_held_locks+0x3eb/0x690 [ 233.942991][ T8423] should_fail_ex+0x3b0/0x4e0 [ 233.947731][ T8423] should_failslab+0xac/0x100 [ 233.952455][ T8423] ? __alloc_skb+0x1c3/0x440 [ 233.957104][ T8423] kmem_cache_alloc_node_noprof+0x71/0x320 [ 233.962966][ T8423] __alloc_skb+0x1c3/0x440 [ 233.967427][ T8423] ? __pfx___alloc_skb+0x10/0x10 [ 233.972409][ T8423] ? __lock_acquire+0x2050/0x2050 [ 233.977494][ T8423] __netdev_alloc_skb+0x104/0xa10 [ 233.982573][ T8423] ? __pfx___netdev_alloc_skb+0x10/0x10 [ 233.988202][ T8423] ieee80211_tx_control_port+0x207/0xdb0 [ 233.993894][ T8423] ? __pfx___mutex_trylock_common+0x10/0x10 [ 233.999858][ T8423] ? __pfx_ieee80211_tx_control_port+0x10/0x10 [ 234.006064][ T8423] ? __rtnl_unlock+0xcc/0xf0 [ 234.010709][ T8423] ? netdev_run_todo+0xf88/0x1000 [ 234.015784][ T8423] nl80211_tx_control_port+0x672/0xa50 [ 234.021304][ T8423] ? __pfx_nl80211_tx_control_port+0x10/0x10 [ 234.027327][ T8423] genl_rcv_msg+0xb14/0xec0 [ 234.031853][ T8423] ? mark_lock+0x9a/0x360 [ 234.036205][ T8423] ? __pfx_genl_rcv_msg+0x10/0x10 [ 234.041271][ T8423] ? __pfx_lock_acquire+0x10/0x10 [ 234.046332][ T8423] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 234.051761][ T8423] ? __pfx_nl80211_tx_control_port+0x10/0x10 [ 234.057782][ T8423] ? __pfx_nl80211_post_doit+0x10/0x10 [ 234.063271][ T8423] ? __pfx___might_resched+0x10/0x10 [ 234.068595][ T8423] netlink_rcv_skb+0x1e3/0x430 [ 234.073419][ T8423] ? __pfx_genl_rcv_msg+0x10/0x10 [ 234.078483][ T8423] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 234.083852][ T8423] ? __netlink_deliver_tap+0x77e/0x7c0 [ 234.089360][ T8423] genl_rcv+0x28/0x40 [ 234.093375][ T8423] netlink_unicast+0x7f6/0x990 [ 234.098190][ T8423] ? __pfx_netlink_unicast+0x10/0x10 [ 234.103504][ T8423] ? __virt_addr_valid+0x183/0x530 [ 234.108637][ T8423] ? __check_object_size+0x48e/0x900 [ 234.113960][ T8423] netlink_sendmsg+0x8e4/0xcb0 [ 234.118801][ T8423] ? __pfx_netlink_sendmsg+0x10/0x10 [ 234.124112][ T8423] ? aa_sock_msg_perm+0x91/0x160 [ 234.129094][ T8423] ? __pfx_netlink_sendmsg+0x10/0x10 [ 234.134423][ T8423] __sock_sendmsg+0x221/0x270 [ 234.139168][ T8423] ____sys_sendmsg+0x52a/0x7e0 [ 234.143959][ T8423] ? __pfx_____sys_sendmsg+0x10/0x10 [ 234.149294][ T8423] __sys_sendmsg+0x292/0x380 [ 234.154001][ T8423] ? __pfx___sys_sendmsg+0x10/0x10 [ 234.159144][ T8423] ? __pfx_vfs_write+0x10/0x10 [ 234.163945][ T8423] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 234.170303][ T8423] ? do_syscall_64+0x100/0x230 [ 234.175084][ T8423] ? do_syscall_64+0xb6/0x230 [ 234.179776][ T8423] do_syscall_64+0xf3/0x230 [ 234.184293][ T8423] ? clear_bhb_loop+0x35/0x90 [ 234.188987][ T8423] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.194903][ T8423] RIP: 0033:0x7f402597dff9 [ 234.199329][ T8423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.218968][ T8423] RSP: 002b:00007f40267f1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 234.227403][ T8423] RAX: ffffffffffffffda RBX: 00007f4025b35f80 RCX: 00007f402597dff9 [ 234.235388][ T8423] RDX: 0000000000000000 RSI: 0000000020003700 RDI: 0000000000000003 [ 234.243457][ T8423] RBP: 00007f40267f1090 R08: 0000000000000000 R09: 0000000000000000 [ 234.251449][ T8423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 234.259444][ T8423] R13: 0000000000000000 R14: 00007f4025b35f80 R15: 00007ffd3bf7afb8 [ 234.267449][ T8423] [ 234.274425][ T8420] xt_policy: input policy not valid in POSTROUTING and OUTPUT [ 235.124144][ T8459] __nla_validate_parse: 15 callbacks suppressed [ 235.124168][ T8459] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1055'. [ 235.141743][ T8459] pim6reg1: entered promiscuous mode [ 235.147091][ T8459] pim6reg1: entered allmulticast mode [ 235.465134][ T8479] netlink: 'syz.2.1063': attribute type 1 has an invalid length. [ 235.511308][ T8479] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1063'. [ 235.605819][ T8485] netlink: 'syz.3.1066': attribute type 1 has an invalid length. [ 235.682496][ T8485] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1066'. [ 235.717687][ T8495] FAULT_INJECTION: forcing a failure. [ 235.717687][ T8495] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 235.731363][ T8485] FAULT_INJECTION: forcing a failure. [ 235.731363][ T8485] name failslab, interval 1, probability 0, space 0, times 0 [ 235.788775][ T8495] CPU: 1 UID: 0 PID: 8495 Comm: syz.4.1065 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 235.799530][ T8495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 235.809690][ T8495] Call Trace: [ 235.812982][ T8495] [ 235.815922][ T8495] dump_stack_lvl+0x241/0x360 [ 235.820619][ T8495] ? __pfx_dump_stack_lvl+0x10/0x10 [ 235.825831][ T8495] ? __pfx__printk+0x10/0x10 [ 235.830446][ T8495] ? __pfx_lock_release+0x10/0x10 [ 235.835501][ T8495] should_fail_ex+0x3b0/0x4e0 [ 235.840224][ T8495] _copy_from_user+0x2f/0xe0 [ 235.844858][ T8495] copy_msghdr_from_user+0xae/0x680 [ 235.850177][ T8495] ? __pfx___might_resched+0x10/0x10 [ 235.855505][ T8495] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 235.861427][ T8495] ? rcu_is_watching+0x15/0xb0 [ 235.866209][ T8495] ? __might_fault+0xaa/0x120 [ 235.870900][ T8495] __sys_sendmmsg+0x36d/0x730 [ 235.875597][ T8495] ? __pfx___sys_sendmmsg+0x10/0x10 [ 235.880818][ T8495] ? __pfx_lock_release+0x10/0x10 [ 235.885868][ T8495] ? kstrtouint_from_user+0x128/0x190 [ 235.891285][ T8495] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 235.897204][ T8495] ? ksys_write+0x229/0x2b0 [ 235.901721][ T8495] ? __pfx_lock_release+0x10/0x10 [ 235.906769][ T8495] ? vfs_write+0x7bf/0xc90 [ 235.911205][ T8495] ? kmem_cache_free+0x1a2/0x420 [ 235.916177][ T8495] ? __mutex_unlock_slowpath+0x21d/0x750 [ 235.921838][ T8495] ? __fget_files+0x3f3/0x470 [ 235.926539][ T8495] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 235.932546][ T8495] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 235.938893][ T8495] ? do_syscall_64+0x100/0x230 [ 235.943674][ T8495] __x64_sys_sendmmsg+0xa0/0xb0 [ 235.948545][ T8495] do_syscall_64+0xf3/0x230 [ 235.953062][ T8495] ? clear_bhb_loop+0x35/0x90 [ 235.957753][ T8495] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.963672][ T8495] RIP: 0033:0x7fad7e17dff9 [ 235.968094][ T8495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 235.987841][ T8495] RSP: 002b:00007fad7ef3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 235.996303][ T8495] RAX: ffffffffffffffda RBX: 00007fad7e336130 RCX: 00007fad7e17dff9 [ 236.004310][ T8495] RDX: 04000000000002ca RSI: 0000000020003bc0 RDI: 0000000000000004 [ 236.012303][ T8495] RBP: 00007fad7ef3c090 R08: 0000000000000000 R09: 0000000000000000 [ 236.020292][ T8495] R10: 0000000004040014 R11: 0000000000000246 R12: 0000000000000002 [ 236.028312][ T8495] R13: 0000000000000001 R14: 00007fad7e336130 R15: 00007ffce0c89258 [ 236.036350][ T8495] [ 236.078265][ T8485] CPU: 1 UID: 0 PID: 8485 Comm: syz.3.1066 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 236.089022][ T8485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 236.099129][ T8485] Call Trace: [ 236.102453][ T8485] [ 236.105427][ T8485] dump_stack_lvl+0x241/0x360 [ 236.110162][ T8485] ? __pfx_dump_stack_lvl+0x10/0x10 [ 236.115411][ T8485] ? __pfx__printk+0x10/0x10 [ 236.120065][ T8485] ? kmem_cache_alloc_noprof+0x44/0x2a0 [ 236.125667][ T8485] ? __pfx___might_resched+0x10/0x10 [ 236.131100][ T8485] should_fail_ex+0x3b0/0x4e0 [ 236.135841][ T8485] ? skb_clone+0x20c/0x390 [ 236.140310][ T8485] should_failslab+0xac/0x100 [ 236.145041][ T8485] ? skb_clone+0x20c/0x390 [ 236.149514][ T8485] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 236.154942][ T8485] skb_clone+0x20c/0x390 [ 236.159261][ T8485] nfnetlink_rcv+0x575/0x2ab0 [ 236.163961][ T8485] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 236.169707][ T8485] ? __dev_queue_xmit+0x171d/0x3ed0 [ 236.174921][ T8485] ? kasan_save_track+0x51/0x80 [ 236.179790][ T8485] ? do_syscall_64+0xf3/0x230 [ 236.184503][ T8485] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 236.189649][ T8485] ? ref_tracker_free+0x643/0x7e0 [ 236.194699][ T8485] ? __asan_memcpy+0x40/0x70 [ 236.199302][ T8485] ? __pfx_ref_tracker_free+0x10/0x10 [ 236.204699][ T8485] ? netlink_deliver_tap+0x2e/0x1b0 [ 236.209923][ T8485] ? skb_clone+0x240/0x390 [ 236.214357][ T8485] ? __pfx_lock_release+0x10/0x10 [ 236.219405][ T8485] ? __netlink_deliver_tap+0x77e/0x7c0 [ 236.224974][ T8485] ? netlink_deliver_tap+0x2e/0x1b0 [ 236.230188][ T8485] netlink_unicast+0x7f6/0x990 [ 236.234977][ T8485] ? __pfx_netlink_unicast+0x10/0x10 [ 236.240287][ T8485] ? __virt_addr_valid+0x183/0x530 [ 236.245418][ T8485] ? __check_object_size+0x48e/0x900 [ 236.250748][ T8485] netlink_sendmsg+0x8e4/0xcb0 [ 236.255533][ T8485] ? __pfx_netlink_sendmsg+0x10/0x10 [ 236.260845][ T8485] ? aa_sock_msg_perm+0x91/0x160 [ 236.265811][ T8485] ? __pfx_netlink_sendmsg+0x10/0x10 [ 236.271164][ T8485] __sock_sendmsg+0x221/0x270 [ 236.275869][ T8485] ____sys_sendmsg+0x52a/0x7e0 [ 236.280683][ T8485] ? __pfx_____sys_sendmsg+0x10/0x10 [ 236.285996][ T8485] __sys_sendmsg+0x292/0x380 [ 236.290606][ T8485] ? __pfx___sys_sendmsg+0x10/0x10 [ 236.295754][ T8485] ? __pfx_vfs_write+0x10/0x10 [ 236.300553][ T8485] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 236.306907][ T8485] ? do_syscall_64+0x100/0x230 [ 236.311690][ T8485] ? do_syscall_64+0xb6/0x230 [ 236.316408][ T8485] do_syscall_64+0xf3/0x230 [ 236.320921][ T8485] ? clear_bhb_loop+0x35/0x90 [ 236.325634][ T8485] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 236.331549][ T8485] RIP: 0033:0x7f6b1777dff9 [ 236.335983][ T8485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 236.355607][ T8485] RSP: 002b:00007f6b185ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 236.364042][ T8485] RAX: ffffffffffffffda RBX: 00007f6b17935f80 RCX: 00007f6b1777dff9 [ 236.372029][ T8485] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 236.380011][ T8485] RBP: 00007f6b185ce090 R08: 0000000000000000 R09: 0000000000000000 [ 236.387995][ T8485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 236.395977][ T8485] R13: 0000000000000000 R14: 00007f6b17935f80 R15: 00007ffdad6456f8 [ 236.403984][ T8485] [ 236.604471][ T8508] netlink: 116 bytes leftover after parsing attributes in process `syz.0.1072'. [ 236.876538][ T8521] netlink: 'syz.4.1079': attribute type 1 has an invalid length. [ 236.890980][ T8517] bridge0: port 1(bridge_slave_0) entered disabled state [ 236.899009][ T8521] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1079'. [ 236.922001][ T8517] bridge0: port 2(bridge_slave_1) entered disabled state [ 237.169164][ T8524] bridge0: port 1(bridge_slave_0) entered blocking state [ 237.176395][ T8524] bridge0: port 1(bridge_slave_0) entered forwarding state [ 237.188318][ T8524] bridge0: port 2(bridge_slave_1) entered blocking state [ 237.195537][ T8524] bridge0: port 2(bridge_slave_1) entered forwarding state [ 237.554433][ T8559] Dead loop on virtual device ipvlan1, fix it urgently! [ 238.111404][ T8580] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1100'. [ 238.128367][ T8580] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1100'. [ 238.358203][ T8559] syz.0.1089 (8559) used greatest stack depth: 7608 bytes left [ 238.405107][ T8592] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1106'. [ 238.994057][ T8626] vlan2: entered promiscuous mode [ 239.007466][ T8626] bond0: entered promiscuous mode [ 239.017423][ T8626] bond_slave_0: entered promiscuous mode [ 239.023762][ T8626] bond_slave_1: entered promiscuous mode [ 239.029703][ T8626] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 239.040936][ T8631] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1119'. [ 239.041828][ T8626] bond0: left promiscuous mode [ 239.055233][ T8626] bond_slave_0: left promiscuous mode [ 239.061330][ T8631] netlink: 'syz.3.1119': attribute type 1 has an invalid length. [ 239.062727][ T8626] bond_slave_1: left promiscuous mode [ 239.075253][ T8626] netdevsim netdevsim3 netdevsim0: left promiscuous mode [ 239.085061][ T8631] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1119'. [ 239.609889][ T8655] FAULT_INJECTION: forcing a failure. [ 239.609889][ T8655] name failslab, interval 1, probability 0, space 0, times 0 [ 239.623160][ T8655] CPU: 1 UID: 0 PID: 8655 Comm: syz.1.1132 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 239.633852][ T8655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 239.643914][ T8655] Call Trace: [ 239.647211][ T8655] [ 239.650144][ T8655] dump_stack_lvl+0x241/0x360 [ 239.654833][ T8655] ? __pfx_dump_stack_lvl+0x10/0x10 [ 239.660038][ T8655] ? __pfx__printk+0x10/0x10 [ 239.664651][ T8655] should_fail_ex+0x3b0/0x4e0 [ 239.669374][ T8655] should_failslab+0xac/0x100 [ 239.674065][ T8655] ? __alloc_skb+0x1c3/0x440 [ 239.678664][ T8655] kmem_cache_alloc_node_noprof+0x71/0x320 [ 239.684484][ T8655] __alloc_skb+0x1c3/0x440 [ 239.688902][ T8655] ? seqcount_lockdep_reader_access+0x1d7/0x220 [ 239.695174][ T8655] ? __pfx___alloc_skb+0x10/0x10 [ 239.700117][ T8655] ? do_raw_spin_lock+0x14f/0x370 [ 239.705155][ T8655] skb_copy+0x19d/0x9c0 [ 239.709318][ T8655] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 239.714704][ T8655] mac80211_hwsim_tx_frame_no_nl+0x106b/0x18d0 [ 239.720882][ T8655] ? __pfx_mac80211_hwsim_tx_frame_no_nl+0x10/0x10 [ 239.727423][ T8655] ? mac80211_hwsim_monitor_rx+0x1bc/0x810 [ 239.733247][ T8655] mac80211_hwsim_tx+0x1837/0x23c0 [ 239.738386][ T8655] ieee80211_handle_wake_tx_queue+0x1ae/0x2d0 [ 239.744473][ T8655] ? __pfx_ieee80211_handle_wake_tx_queue+0x10/0x10 [ 239.751074][ T8655] ? ieee80211_queue_skb+0x18b6/0x24c0 [ 239.756574][ T8655] ? do_raw_spin_unlock+0x13c/0x8b0 [ 239.761794][ T8655] ieee80211_queue_skb+0x1aec/0x24c0 [ 239.767109][ T8655] ieee80211_tx+0x2c4/0x470 [ 239.771621][ T8655] ? __pfx_ieee80211_tx+0x10/0x10 [ 239.776671][ T8655] ? ieee80211_xmit+0x30f/0x3f0 [ 239.781534][ T8655] __ieee80211_subif_start_xmit+0xe93/0x1600 [ 239.787537][ T8655] ? __ieee80211_subif_start_xmit+0x300/0x1600 [ 239.793696][ T8655] ? __pfx___ieee80211_subif_start_xmit+0x10/0x10 [ 239.800120][ T8655] ? ieee80211_downgrade_queue+0x413/0x5b0 [ 239.805942][ T8655] ? ieee80211_tx_control_port+0xb58/0xdb0 [ 239.811777][ T8655] ieee80211_tx_control_port+0xb98/0xdb0 [ 239.817446][ T8655] ? __pfx___mutex_trylock_common+0x10/0x10 [ 239.823364][ T8655] ? ieee80211_tx_control_port+0x7a6/0xdb0 [ 239.829198][ T8655] ? __pfx_ieee80211_tx_control_port+0x10/0x10 [ 239.835367][ T8655] ? __rtnl_unlock+0xcc/0xf0 [ 239.839973][ T8655] ? netdev_run_todo+0xf88/0x1000 [ 239.845019][ T8655] nl80211_tx_control_port+0x672/0xa50 [ 239.850524][ T8655] ? __pfx_nl80211_tx_control_port+0x10/0x10 [ 239.856568][ T8655] genl_rcv_msg+0xb14/0xec0 [ 239.861093][ T8655] ? mark_lock+0x9a/0x360 [ 239.865457][ T8655] ? __pfx_genl_rcv_msg+0x10/0x10 [ 239.870562][ T8655] ? __pfx_lock_acquire+0x10/0x10 [ 239.875617][ T8655] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 239.881076][ T8655] ? __pfx_nl80211_tx_control_port+0x10/0x10 [ 239.887077][ T8655] ? __pfx_nl80211_post_doit+0x10/0x10 [ 239.892556][ T8655] ? __pfx___might_resched+0x10/0x10 [ 239.897869][ T8655] netlink_rcv_skb+0x1e3/0x430 [ 239.902658][ T8655] ? __pfx_genl_rcv_msg+0x10/0x10 [ 239.907705][ T8655] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 239.913025][ T8655] ? __netlink_deliver_tap+0x77e/0x7c0 [ 239.918514][ T8655] genl_rcv+0x28/0x40 [ 239.922507][ T8655] netlink_unicast+0x7f6/0x990 [ 239.927313][ T8655] ? __pfx_netlink_unicast+0x10/0x10 [ 239.932612][ T8655] ? __virt_addr_valid+0x183/0x530 [ 239.937761][ T8655] ? __check_object_size+0x48e/0x900 [ 239.943063][ T8655] netlink_sendmsg+0x8e4/0xcb0 [ 239.947846][ T8655] ? __pfx_netlink_sendmsg+0x10/0x10 [ 239.953143][ T8655] ? aa_sock_msg_perm+0x91/0x160 [ 239.958124][ T8655] ? __pfx_netlink_sendmsg+0x10/0x10 [ 239.963457][ T8655] __sock_sendmsg+0x221/0x270 [ 239.968155][ T8655] ____sys_sendmsg+0x52a/0x7e0 [ 239.972937][ T8655] ? __pfx_____sys_sendmsg+0x10/0x10 [ 239.978260][ T8655] __sys_sendmsg+0x292/0x380 [ 239.982875][ T8655] ? __pfx___sys_sendmsg+0x10/0x10 [ 239.988025][ T8655] ? __pfx_vfs_write+0x10/0x10 [ 239.992830][ T8655] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 239.999203][ T8655] ? do_syscall_64+0x100/0x230 [ 240.004011][ T8655] ? do_syscall_64+0xb6/0x230 [ 240.008744][ T8655] do_syscall_64+0xf3/0x230 [ 240.013269][ T8655] ? clear_bhb_loop+0x35/0x90 [ 240.017984][ T8655] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.023949][ T8655] RIP: 0033:0x7f448237dff9 [ 240.028492][ T8655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 240.048127][ T8655] RSP: 002b:00007f44830d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 240.056571][ T8655] RAX: ffffffffffffffda RBX: 00007f4482535f80 RCX: 00007f448237dff9 [ 240.064566][ T8655] RDX: 0000000000000000 RSI: 0000000020003700 RDI: 0000000000000003 [ 240.072590][ T8655] RBP: 00007f44830d9090 R08: 0000000000000000 R09: 0000000000000000 [ 240.080600][ T8655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 240.088587][ T8655] R13: 0000000000000000 R14: 00007f4482535f80 R15: 00007ffcaa5c8598 [ 240.096586][ T8655] [ 240.159164][ T8658] __nla_validate_parse: 2 callbacks suppressed [ 240.159187][ T8658] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1133'. [ 240.175525][ T8658] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1133'. [ 240.186882][ T8658] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1133'. [ 240.207464][ T8658] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1133'. [ 240.402934][ T8670] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1134'. [ 240.422622][ T8661] netlink: 'syz.4.1134': attribute type 2 has an invalid length. [ 240.430413][ T8661] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.1134'. [ 240.482754][ T8671] xt_l2tp: invalid flags combination: 4 [ 240.563372][ T8680] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 240.808929][ T8695] FAULT_INJECTION: forcing a failure. [ 240.808929][ T8695] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 240.832829][ T8695] CPU: 0 UID: 0 PID: 8695 Comm: syz.2.1147 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 240.843581][ T8695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 240.853682][ T8695] Call Trace: [ 240.857006][ T8695] [ 240.859974][ T8695] dump_stack_lvl+0x241/0x360 [ 240.864704][ T8695] ? __pfx_dump_stack_lvl+0x10/0x10 [ 240.869953][ T8695] ? __pfx__printk+0x10/0x10 [ 240.874603][ T8695] ? snprintf+0xda/0x120 [ 240.879003][ T8695] should_fail_ex+0x3b0/0x4e0 [ 240.883747][ T8695] _copy_to_user+0x2f/0xb0 [ 240.888236][ T8695] simple_read_from_buffer+0xca/0x150 [ 240.893760][ T8695] proc_fail_nth_read+0x1e9/0x250 [ 240.898849][ T8695] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 240.904462][ T8695] ? rw_verify_area+0x55e/0x6f0 [ 240.909366][ T8695] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 240.914972][ T8695] vfs_read+0x201/0xbc0 [ 240.919185][ T8695] ? __pfx_lock_release+0x10/0x10 [ 240.924304][ T8695] ? __pfx_vfs_read+0x10/0x10 [ 240.929048][ T8695] ? __fget_files+0x3f3/0x470 [ 240.933783][ T8695] ? fdget_pos+0x24e/0x320 [ 240.938250][ T8695] ksys_read+0x183/0x2b0 [ 240.942529][ T8695] ? __pfx_ksys_read+0x10/0x10 [ 240.947358][ T8695] ? do_syscall_64+0x100/0x230 [ 240.952146][ T8695] ? do_syscall_64+0xb6/0x230 [ 240.956845][ T8695] do_syscall_64+0xf3/0x230 [ 240.961380][ T8695] ? clear_bhb_loop+0x35/0x90 [ 240.966085][ T8695] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.972006][ T8695] RIP: 0033:0x7fd68e57ca3c [ 240.976444][ T8695] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 240.996115][ T8695] RSP: 002b:00007fd68f332030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 241.004552][ T8695] RAX: ffffffffffffffda RBX: 00007fd68e735f80 RCX: 00007fd68e57ca3c [ 241.012546][ T8695] RDX: 000000000000000f RSI: 00007fd68f3320a0 RDI: 0000000000000004 [ 241.020532][ T8695] RBP: 00007fd68f332090 R08: 0000000000000000 R09: 0000000000000000 [ 241.028539][ T8695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 241.036531][ T8695] R13: 0000000000000000 R14: 00007fd68e735f80 R15: 00007fff77844eb8 [ 241.044577][ T8695] [ 241.057770][ T8694] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1146'. [ 241.087164][ T8694] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1146'. [ 241.106967][ T8694] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1146'. [ 241.120568][ T8694] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1146'. [ 241.379212][ T8711] tipc: Started in network mode [ 241.401978][ T8711] tipc: Node identity , cluster identity 7 [ 241.411003][ T8711] tipc: Failed to obtain node identity [ 241.431593][ T8711] tipc: Enabling of bearer rejected, failed to enable media [ 241.466693][ T8713] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 242.056286][ T8751] netlink: 'syz.3.1168': attribute type 29 has an invalid length. [ 242.099012][ T8756] ieee802154 phy1 wpan1: encryption failed: -22 [ 242.178269][ T8762] netlink: set zone limit has 4 unknown bytes [ 242.231426][ T8764] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 242.426453][ T8773] netlink: 'syz.0.1176': attribute type 2 has an invalid length. [ 242.726048][ T8786] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 242.925011][ T8801] netlink: set zone limit has 4 unknown bytes [ 243.118627][ T8810] netlink: 'syz.1.1189': attribute type 21 has an invalid length. [ 243.132186][ T8810] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0) [ 243.240263][ T8819] team0: Device ipvlan1 failed to register rx_handler [ 243.286665][ T8821] Illegal XDP return value 4294967274 on prog (id 252) dev N/A, expect packet loss! [ 243.640073][ T8838] Bluetooth: hci3: Opcode 0x0401 failed: -4 [ 243.768738][ T8843] tipc: Started in network mode [ 243.785826][ T8843] tipc: Node identity , cluster identity 7 [ 243.814680][ T8843] tipc: Failed to obtain node identity [ 243.820242][ T8843] tipc: Enabling of bearer rejected, failed to enable media [ 243.970584][ T8855] netlink: 'syz.2.1211': attribute type 32 has an invalid length. [ 243.985021][ T8855] (unnamed net_device) (uninitialized): Setting coupled_control to off (0) [ 243.994553][ T8855] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR [ 244.024798][ T8861] netlink: 'syz.4.1209': attribute type 3 has an invalid length. [ 244.076065][ T8861] netlink: 'syz.4.1209': attribute type 21 has an invalid length. [ 244.111313][ T8863] batadv0: entered promiscuous mode [ 244.125119][ T8863] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 244.141239][ T8863] bond0: (slave macvlan2): Enslaving as an active interface with an up link [ 245.666241][ T5253] Bluetooth: hci3: command 0x0405 tx timeout [ 245.952889][ T8881] __nla_validate_parse: 16 callbacks suppressed [ 245.952912][ T8881] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1215'. [ 246.265175][ T8898] tipc: Started in network mode [ 246.284324][ T8898] tipc: Node identity , cluster identity 4711 [ 246.312144][ T8898] tipc: Failed to obtain node identity [ 246.317944][ T8898] tipc: Enabling of bearer rejected, failed to enable media [ 246.420257][ T5253] Bluetooth: hci3: link tx timeout [ 246.426002][ T5253] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa [ 246.681300][ T8936] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1230'. [ 246.899187][ T8948] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1234'. [ 246.921262][ T8952] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1234'. [ 246.937310][ T8950] tipc: Enabled bearer , priority 0 [ 247.039215][ T8956] FAULT_INJECTION: forcing a failure. [ 247.039215][ T8956] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 247.100809][ T8956] CPU: 0 UID: 0 PID: 8956 Comm: syz.0.1235 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 247.111661][ T8956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 247.121748][ T8956] Call Trace: [ 247.125044][ T8956] [ 247.127986][ T8956] dump_stack_lvl+0x241/0x360 [ 247.132685][ T8956] ? __pfx_dump_stack_lvl+0x10/0x10 [ 247.137904][ T8956] ? __pfx__printk+0x10/0x10 [ 247.142524][ T8956] ? __pfx_lock_release+0x10/0x10 [ 247.147575][ T8956] should_fail_ex+0x3b0/0x4e0 [ 247.152288][ T8956] _copy_from_user+0x2f/0xe0 [ 247.156902][ T8956] copy_msghdr_from_user+0xae/0x680 [ 247.162126][ T8956] ? __pfx___might_resched+0x10/0x10 [ 247.167434][ T8956] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 247.173296][ T8956] ? rcu_is_watching+0x15/0xb0 [ 247.178078][ T8956] ? __might_fault+0xaa/0x120 [ 247.182771][ T8956] __sys_sendmmsg+0x36d/0x730 [ 247.187467][ T8956] ? __pfx___sys_sendmmsg+0x10/0x10 [ 247.192700][ T8956] ? __pfx_lock_release+0x10/0x10 [ 247.197745][ T8956] ? kstrtouint_from_user+0x128/0x190 [ 247.203152][ T8956] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 247.209066][ T8956] ? ksys_write+0x229/0x2b0 [ 247.213584][ T8956] ? __pfx_lock_release+0x10/0x10 [ 247.218646][ T8956] ? vfs_write+0x7bf/0xc90 [ 247.223096][ T8956] ? kmem_cache_free+0x1a2/0x420 [ 247.228054][ T8956] ? __mutex_unlock_slowpath+0x21d/0x750 [ 247.233708][ T8956] ? __fget_files+0x3f3/0x470 [ 247.238407][ T8956] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 247.244426][ T8956] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 247.250775][ T8956] ? do_syscall_64+0x100/0x230 [ 247.255557][ T8956] __x64_sys_sendmmsg+0xa0/0xb0 [ 247.260444][ T8956] do_syscall_64+0xf3/0x230 [ 247.264965][ T8956] ? clear_bhb_loop+0x35/0x90 [ 247.269686][ T8956] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.275648][ T8956] RIP: 0033:0x7f402597dff9 [ 247.280080][ T8956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 247.299717][ T8956] RSP: 002b:00007f40267af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 247.308151][ T8956] RAX: ffffffffffffffda RBX: 00007f4025b36130 RCX: 00007f402597dff9 [ 247.316137][ T8956] RDX: 04000000000002ca RSI: 0000000020003bc0 RDI: 0000000000000004 [ 247.324119][ T8956] RBP: 00007f40267af090 R08: 0000000000000000 R09: 0000000000000000 [ 247.332102][ T8956] R10: 0000000004040014 R11: 0000000000000246 R12: 0000000000000002 [ 247.340086][ T8956] R13: 0000000000000001 R14: 00007f4025b36130 R15: 00007ffd3bf7afb8 [ 247.348088][ T8956] [ 247.508856][ T8967] xt_hashlimit: invalid rate [ 247.544511][ T8969] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1242'. [ 247.772315][ T8983] netem: incorrect ge model size [ 247.777714][ T8983] netem: change failed [ 248.087408][ T9004] xt_ecn: cannot match TCP bits for non-tcp packets [ 248.231543][ T9013] netlink: 'syz.4.1259': attribute type 1 has an invalid length. [ 248.261339][ T9013] netlink: 9344 bytes leftover after parsing attributes in process `syz.4.1259'. [ 248.270575][ T9013] netlink: 'syz.4.1259': attribute type 1 has an invalid length. [ 248.296731][ T9013] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1259'. [ 248.451716][ T4626] Bluetooth: hci3: command 0x0405 tx timeout [ 248.562820][ T9032] FAULT_INJECTION: forcing a failure. [ 248.562820][ T9032] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 248.589862][ T9036] ebt_among: dst integrity fail: 200 [ 248.608349][ T9032] CPU: 1 UID: 0 PID: 9032 Comm: syz.1.1263 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 248.619115][ T9032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 248.629216][ T9032] Call Trace: [ 248.632541][ T9032] [ 248.635515][ T9032] dump_stack_lvl+0x241/0x360 [ 248.640229][ T9032] ? __pfx_dump_stack_lvl+0x10/0x10 [ 248.645443][ T9032] ? __pfx__printk+0x10/0x10 [ 248.650054][ T9032] ? __pfx_lock_release+0x10/0x10 [ 248.655105][ T9032] should_fail_ex+0x3b0/0x4e0 [ 248.659807][ T9032] _copy_from_user+0x2f/0xe0 [ 248.664421][ T9032] copy_msghdr_from_user+0xae/0x680 [ 248.669636][ T9032] ? __pfx___might_resched+0x10/0x10 [ 248.674939][ T9032] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 248.680765][ T9032] ? rcu_is_watching+0x15/0xb0 [ 248.685551][ T9032] ? __might_fault+0xaa/0x120 [ 248.690246][ T9032] __sys_sendmmsg+0x36d/0x730 [ 248.694947][ T9032] ? __pfx___sys_sendmmsg+0x10/0x10 [ 248.700254][ T9032] ? __pfx_lock_release+0x10/0x10 [ 248.705298][ T9032] ? kstrtouint_from_user+0x128/0x190 [ 248.710958][ T9032] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 248.716868][ T9032] ? ksys_write+0x229/0x2b0 [ 248.721384][ T9032] ? __pfx_lock_release+0x10/0x10 [ 248.726453][ T9032] ? vfs_write+0x7bf/0xc90 [ 248.730879][ T9032] ? kmem_cache_free+0x1a2/0x420 [ 248.735865][ T9032] ? __mutex_unlock_slowpath+0x21d/0x750 [ 248.741521][ T9032] ? __fget_files+0x3f3/0x470 [ 248.746221][ T9032] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 248.752223][ T9032] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 248.758571][ T9032] ? do_syscall_64+0x100/0x230 [ 248.763435][ T9032] __x64_sys_sendmmsg+0xa0/0xb0 [ 248.768300][ T9032] do_syscall_64+0xf3/0x230 [ 248.772821][ T9032] ? clear_bhb_loop+0x35/0x90 [ 248.777511][ T9032] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.783424][ T9032] RIP: 0033:0x7f448237dff9 [ 248.787853][ T9032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.807481][ T9032] RSP: 002b:00007f4483097038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 248.815916][ T9032] RAX: ffffffffffffffda RBX: 00007f4482536130 RCX: 00007f448237dff9 [ 248.823919][ T9032] RDX: 04000000000002ca RSI: 0000000020003bc0 RDI: 0000000000000004 [ 248.831920][ T9032] RBP: 00007f4483097090 R08: 0000000000000000 R09: 0000000000000000 [ 248.839924][ T9032] R10: 0000000004040014 R11: 0000000000000246 R12: 0000000000000002 [ 248.847921][ T9032] R13: 0000000000000001 R14: 00007f4482536130 R15: 00007ffcaa5c8598 [ 248.855919][ T9032] [ 249.769760][ T9074] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1281'. [ 249.816777][ T9074] Êü: entered promiscuous mode [ 250.527010][ T9121] netlink: 'syz.2.1297': attribute type 1 has an invalid length. [ 250.535573][ T9121] netlink: 'syz.2.1297': attribute type 2 has an invalid length. [ 250.544079][ T9121] netlink: 16146 bytes leftover after parsing attributes in process `syz.2.1297'. [ 250.556784][ T9121] netlink: zone id is out of range [ 250.562232][ T9121] netlink: zone id is out of range [ 250.567469][ T9121] netlink: zone id is out of range [ 250.572983][ T9121] netlink: zone id is out of range [ 250.578317][ T9121] netlink: zone id is out of range [ 250.584004][ T9121] netlink: zone id is out of range [ 250.589762][ T9121] netlink: zone id is out of range [ 250.602084][ T9121] netlink: set zone limit has 4 unknown bytes [ 250.800511][ T9131] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1301'. [ 250.829862][ T9138] vxcan1: tx address claim with different name [ 251.085239][ T9151] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1310'. [ 251.289139][ T9161] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 251.311919][ T9170] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1313'. [ 251.720045][ T9198] bond2: entered allmulticast mode [ 252.018974][ T9217] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1334'. [ 252.339938][ T9234] openvswitch: netlink: Key type 16151 is out of range max 32 [ 252.577876][ T9248] netlink: 'syz.0.1345': attribute type 1 has an invalid length. [ 252.610597][ T9248] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1345'. [ 252.880355][ T9257] netlink: 'syz.0.1348': attribute type 1 has an invalid length. [ 252.900616][ T9257] netlink: 'syz.0.1348': attribute type 2 has an invalid length. [ 252.948008][ T9265] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1348'. [ 253.070586][ T9273] FAULT_INJECTION: forcing a failure. [ 253.070586][ T9273] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 253.195633][ T9276] FAULT_INJECTION: forcing a failure. [ 253.195633][ T9276] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 253.208925][ T9276] CPU: 0 UID: 0 PID: 9276 Comm: syz.1.1353 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 253.219656][ T9276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 253.229763][ T9276] Call Trace: [ 253.233080][ T9276] [ 253.236048][ T9276] dump_stack_lvl+0x241/0x360 [ 253.240784][ T9276] ? __pfx_dump_stack_lvl+0x10/0x10 [ 253.246032][ T9276] ? __pfx__printk+0x10/0x10 [ 253.250698][ T9276] ? snprintf+0xda/0x120 [ 253.254982][ T9276] should_fail_ex+0x3b0/0x4e0 [ 253.259716][ T9276] _copy_to_user+0x2f/0xb0 [ 253.264193][ T9276] simple_read_from_buffer+0xca/0x150 [ 253.269617][ T9276] proc_fail_nth_read+0x1e9/0x250 [ 253.274672][ T9276] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 253.280244][ T9276] ? rw_verify_area+0x55e/0x6f0 [ 253.285120][ T9276] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 253.290695][ T9276] vfs_read+0x201/0xbc0 [ 253.294877][ T9276] ? __pfx_lock_release+0x10/0x10 [ 253.299941][ T9276] ? __pfx_vfs_read+0x10/0x10 [ 253.304732][ T9276] ? __fget_files+0x3f3/0x470 [ 253.309432][ T9276] ? fdget_pos+0x24e/0x320 [ 253.313870][ T9276] ksys_read+0x183/0x2b0 [ 253.318127][ T9276] ? __pfx_ksys_read+0x10/0x10 [ 253.322903][ T9276] ? do_syscall_64+0x100/0x230 [ 253.327683][ T9276] ? do_syscall_64+0xb6/0x230 [ 253.332387][ T9276] do_syscall_64+0xf3/0x230 [ 253.336899][ T9276] ? clear_bhb_loop+0x35/0x90 [ 253.341590][ T9276] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.347508][ T9276] RIP: 0033:0x7f448237ca3c [ 253.351938][ T9276] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 253.371593][ T9276] RSP: 002b:00007f44830d9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 253.380030][ T9276] RAX: ffffffffffffffda RBX: 00007f4482535f80 RCX: 00007f448237ca3c [ 253.388016][ T9276] RDX: 000000000000000f RSI: 00007f44830d90a0 RDI: 0000000000000004 [ 253.396022][ T9276] RBP: 00007f44830d9090 R08: 0000000000000000 R09: fffffffffffffd25 [ 253.404009][ T9276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 253.412000][ T9276] R13: 0000000000000000 R14: 00007f4482535f80 R15: 00007ffcaa5c8598 [ 253.420089][ T9276] [ 253.480760][ T9273] CPU: 0 UID: 0 PID: 9273 Comm: syz.3.1351 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 253.491516][ T9273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 253.501599][ T9273] Call Trace: [ 253.504896][ T9273] [ 253.507837][ T9273] dump_stack_lvl+0x241/0x360 [ 253.512535][ T9273] ? __pfx_dump_stack_lvl+0x10/0x10 [ 253.517745][ T9273] ? __pfx__printk+0x10/0x10 [ 253.522364][ T9273] ? __pfx_lock_release+0x10/0x10 [ 253.527415][ T9273] should_fail_ex+0x3b0/0x4e0 [ 253.532124][ T9273] _copy_from_user+0x2f/0xe0 [ 253.536739][ T9273] copy_msghdr_from_user+0xae/0x680 [ 253.541954][ T9273] ? __pfx___might_resched+0x10/0x10 [ 253.547268][ T9273] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 253.553098][ T9273] ? rcu_is_watching+0x15/0xb0 [ 253.557878][ T9273] ? __might_fault+0xaa/0x120 [ 253.562592][ T9273] __sys_sendmmsg+0x36d/0x730 [ 253.567294][ T9273] ? __pfx___sys_sendmmsg+0x10/0x10 [ 253.572518][ T9273] ? __pfx_lock_release+0x10/0x10 [ 253.577560][ T9273] ? kstrtouint_from_user+0x128/0x190 [ 253.582963][ T9273] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 253.588887][ T9273] ? ksys_write+0x229/0x2b0 [ 253.593403][ T9273] ? __pfx_lock_release+0x10/0x10 [ 253.598451][ T9273] ? vfs_write+0x7bf/0xc90 [ 253.602892][ T9273] ? __mutex_unlock_slowpath+0x21d/0x750 [ 253.608545][ T9273] ? __fget_files+0x3f3/0x470 [ 253.613246][ T9273] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 253.619249][ T9273] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 253.625598][ T9273] ? do_syscall_64+0x100/0x230 [ 253.630395][ T9273] __x64_sys_sendmmsg+0xa0/0xb0 [ 253.635269][ T9273] do_syscall_64+0xf3/0x230 [ 253.639782][ T9273] ? clear_bhb_loop+0x35/0x90 [ 253.644481][ T9273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.650442][ T9273] RIP: 0033:0x7f6b1777dff9 [ 253.654892][ T9273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 253.674532][ T9273] RSP: 002b:00007f6b1858c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 253.682973][ T9273] RAX: ffffffffffffffda RBX: 00007f6b17936130 RCX: 00007f6b1777dff9 [ 253.691048][ T9273] RDX: 04000000000002ca RSI: 0000000020003bc0 RDI: 0000000000000004 [ 253.699035][ T9273] RBP: 00007f6b1858c090 R08: 0000000000000000 R09: 0000000000000000 [ 253.707019][ T9273] R10: 0000000004040014 R11: 0000000000000246 R12: 0000000000000002 [ 253.715005][ T9273] R13: 0000000000000001 R14: 00007f6b17936130 R15: 00007ffdad6456f8 [ 253.723020][ T9273] [ 253.907207][ T9287] netlink: 'syz.1.1358': attribute type 1 has an invalid length. [ 253.915609][ T9287] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1358'. [ 254.319761][ T9316] netlink: 'syz.3.1369': attribute type 12 has an invalid length. [ 254.550311][ T9327] tipc: Invalid UDP bearer configuration [ 254.550361][ T9327] tipc: Enabling of bearer rejected, failed to enable media [ 254.658582][ T9332] netlink: 'syz.1.1375': attribute type 1 has an invalid length. [ 254.669935][ T9332] netlink: 9336 bytes leftover after parsing attributes in process `syz.1.1375'. [ 254.707237][ T9332] netlink: 'syz.1.1375': attribute type 1 has an invalid length. [ 254.726039][ T9337] FAULT_INJECTION: forcing a failure. [ 254.726039][ T9337] name failslab, interval 1, probability 0, space 0, times 0 [ 254.751341][ T9337] CPU: 0 UID: 0 PID: 9337 Comm: syz.2.1376 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 254.762094][ T9337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 254.767045][ T9332] netlink: 'syz.1.1375': attribute type 1 has an invalid length. [ 254.772167][ T9337] Call Trace: [ 254.772182][ T9337] [ 254.772194][ T9337] dump_stack_lvl+0x241/0x360 [ 254.772229][ T9337] ? __pfx_dump_stack_lvl+0x10/0x10 [ 254.772254][ T9337] ? __pfx__printk+0x10/0x10 [ 254.800721][ T9337] ? __kmalloc_noprof+0xb0/0x400 [ 254.805716][ T9337] ? __pfx___might_resched+0x10/0x10 [ 254.811056][ T9337] should_fail_ex+0x3b0/0x4e0 [ 254.815787][ T9337] ? sock_kmalloc+0xd7/0x160 [ 254.820428][ T9337] should_failslab+0xac/0x100 [ 254.825163][ T9337] ? sock_kmalloc+0xd7/0x160 [ 254.829800][ T9337] __kmalloc_noprof+0xd8/0x400 [ 254.834618][ T9337] ? __might_fault+0xaa/0x120 [ 254.839342][ T9337] sock_kmalloc+0xd7/0x160 [ 254.843806][ T9337] ____sys_sendmsg+0x216/0x7e0 [ 254.848630][ T9337] ? __pfx_____sys_sendmsg+0x10/0x10 [ 254.853987][ T9337] __sys_sendmmsg+0x3ab/0x730 [ 254.858718][ T9337] ? __pfx___sys_sendmmsg+0x10/0x10 [ 254.863986][ T9337] ? __pfx_lock_release+0x10/0x10 [ 254.869070][ T9337] ? kstrtouint_from_user+0x128/0x190 [ 254.874512][ T9337] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 254.880461][ T9337] ? ksys_write+0x229/0x2b0 [ 254.885028][ T9337] ? __pfx_lock_release+0x10/0x10 [ 254.890198][ T9337] ? vfs_write+0x7bf/0xc90 [ 254.894662][ T9337] ? kmem_cache_free+0x1a2/0x420 [ 254.899654][ T9337] ? __mutex_unlock_slowpath+0x21d/0x750 [ 254.905335][ T9337] ? __fget_files+0x3f3/0x470 [ 254.910067][ T9337] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 254.916117][ T9337] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 254.922500][ T9337] ? do_syscall_64+0x100/0x230 [ 254.927417][ T9337] __x64_sys_sendmmsg+0xa0/0xb0 [ 254.932313][ T9337] do_syscall_64+0xf3/0x230 [ 254.936857][ T9337] ? clear_bhb_loop+0x35/0x90 [ 254.941580][ T9337] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.947536][ T9337] RIP: 0033:0x7fd68e57dff9 [ 254.951993][ T9337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 254.971651][ T9337] RSP: 002b:00007fd68f332038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 254.980131][ T9337] RAX: ffffffffffffffda RBX: 00007fd68e735f80 RCX: 00007fd68e57dff9 [ 254.988238][ T9337] RDX: 0000000000000001 RSI: 0000000020001fc0 RDI: 0000000000000003 [ 254.996288][ T9337] RBP: 00007fd68f332090 R08: 0000000000000000 R09: 0000000000000000 [ 255.004307][ T9337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 255.012331][ T9337] R13: 0000000000000000 R14: 00007fd68e735f80 R15: 00007fff77844eb8 [ 255.020369][ T9337] [ 255.020704][ T9345] netlink: zone id is out of range [ 255.106955][ T9347] netlink: 116 bytes leftover after parsing attributes in process `syz.0.1380'. [ 255.260265][ T9356] rdma_rxe: rxe_newlink: failed to add ipvlan1 [ 255.406393][ T9364] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1385'. [ 255.542952][ T9371] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1388'. [ 255.590424][ T9371] bMtadv_lave_0: renamed from lo (while UP) [ 255.616432][ T9371] bMtadv_lave_0: entered allmulticast mode [ 255.817281][ T9391] IPv6: sit2: Disabled Multicast RS [ 256.027545][ C1] net_ratelimit: 7 callbacks suppressed [ 256.027570][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 256.114867][ T9413] delete_channel: no stack [ 256.133116][ T1268] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.199660][ T9415] openvswitch: netlink: Key type 1047 is out of range max 32 [ 256.389307][ T9421] __nla_validate_parse: 1 callbacks suppressed [ 256.389330][ T9421] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1404'. [ 256.517716][ T9426] batadv0: entered promiscuous mode [ 256.539353][ T9427] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1406'. [ 256.566072][ T9426] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 256.809777][ T9437] netlink: zone id is out of range [ 256.817523][ T9437] netlink: zone id is out of range [ 256.828395][ T9437] netlink: zone id is out of range [ 256.837794][ T9437] netlink: zone id is out of range [ 256.871508][ T9437] netlink: zone id is out of range [ 256.903840][ T9437] netlink: zone id is out of range [ 256.913980][ T9437] netlink: zone id is out of range [ 256.941802][ T9437] netlink: set zone limit has 4 unknown bytes [ 258.057985][ T9513] netlink: 'syz.4.1439': attribute type 11 has an invalid length. [ 258.165560][ T9521] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1443'. [ 258.208853][ T9522] netlink: 'syz.1.1446': attribute type 10 has an invalid length. [ 258.226023][ T9522] batadv0: left promiscuous mode [ 258.266447][ T9522] team0: Port device batadv0 removed [ 258.293542][ T9522] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 258.312371][ T9522] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 258.333969][ T9529] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1446'. [ 258.358641][ T9522] netlink: 'syz.1.1446': attribute type 11 has an invalid length. [ 258.524374][ T9540] netlink: 120 bytes leftover after parsing attributes in process `syz.2.1451'. [ 258.567906][ T9544] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1453'. [ 258.588167][ T9544] geneve2: entered promiscuous mode [ 259.010666][ T9565] IPVS: Error joining to the multicast group [ 259.080378][ T9567] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1463'. [ 259.410978][ T9589] netlink: 'syz.0.1470': attribute type 10 has an invalid length. [ 259.425217][ T9589] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1470'. [ 259.721347][ T9602] netlink: 'syz.1.1474': attribute type 6 has an invalid length. [ 259.760539][ T9605] xt_CT: You must specify a L4 protocol and not use inversions on it [ 260.082277][ T9614] netlink: 'syz.3.1467': attribute type 8 has an invalid length. [ 260.438193][ T9629] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 260.607863][ T9635] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1485'. [ 261.084815][ T9653] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1490'. [ 261.155651][ T9656] FAULT_INJECTION: forcing a failure. [ 261.155651][ T9656] name failslab, interval 1, probability 0, space 0, times 0 [ 261.199060][ T9656] CPU: 0 UID: 0 PID: 9656 Comm: syz.1.1494 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 261.209813][ T9656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 261.219911][ T9656] Call Trace: [ 261.223322][ T9656] [ 261.226295][ T9656] dump_stack_lvl+0x241/0x360 [ 261.231018][ T9656] ? __pfx_dump_stack_lvl+0x10/0x10 [ 261.236270][ T9656] ? __pfx__printk+0x10/0x10 [ 261.240920][ T9656] ? kmem_cache_alloc_node_noprof+0x49/0x320 [ 261.246959][ T9656] ? __pfx___might_resched+0x10/0x10 [ 261.252313][ T9656] should_fail_ex+0x3b0/0x4e0 [ 261.257067][ T9656] should_failslab+0xac/0x100 [ 261.261799][ T9656] ? __alloc_skb+0x1c3/0x440 [ 261.266436][ T9656] kmem_cache_alloc_node_noprof+0x71/0x320 [ 261.272312][ T9656] __alloc_skb+0x1c3/0x440 [ 261.276788][ T9656] ? __pfx___alloc_skb+0x10/0x10 [ 261.281779][ T9656] ? netlink_autobind+0xd6/0x2f0 [ 261.286769][ T9656] ? netlink_autobind+0x2b0/0x2f0 [ 261.291884][ T9656] netlink_sendmsg+0x638/0xcb0 [ 261.296884][ T9656] ? __pfx_netlink_sendmsg+0x10/0x10 [ 261.302236][ T9656] ? aa_sock_msg_perm+0x91/0x160 [ 261.307235][ T9656] ? __pfx_netlink_sendmsg+0x10/0x10 [ 261.312575][ T9656] __sock_sendmsg+0x221/0x270 [ 261.317315][ T9656] ____sys_sendmsg+0x52a/0x7e0 [ 261.322145][ T9656] ? __pfx_____sys_sendmsg+0x10/0x10 [ 261.322818][ T9633] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT [ 261.327478][ T9656] __sys_sendmsg+0x292/0x380 [ 261.327517][ T9656] ? __pfx___sys_sendmsg+0x10/0x10 [ 261.346034][ T9656] ? __pfx_vfs_write+0x10/0x10 [ 261.350874][ T9656] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 261.357272][ T9656] ? do_syscall_64+0x100/0x230 [ 261.362091][ T9656] ? do_syscall_64+0xb6/0x230 [ 261.366847][ T9656] do_syscall_64+0xf3/0x230 [ 261.371394][ T9656] ? clear_bhb_loop+0x35/0x90 [ 261.376118][ T9656] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.382072][ T9656] RIP: 0033:0x7f448237dff9 [ 261.386539][ T9656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 261.387305][ T9664] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 261.406168][ T9656] RSP: 002b:00007f44830d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 261.406206][ T9656] RAX: ffffffffffffffda RBX: 00007f4482535f80 RCX: 00007f448237dff9 [ 261.406223][ T9656] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 261.406238][ T9656] RBP: 00007f44830d9090 R08: 0000000000000000 R09: 0000000000000000 [ 261.406254][ T9656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 261.406270][ T9656] R13: 0000000000000000 R14: 00007f4482535f80 R15: 00007ffcaa5c8598 [ 261.406303][ T9656] [ 261.854788][ T9686] netlink: 168 bytes leftover after parsing attributes in process `syz.3.1502'. [ 261.906477][ T9683] delete_channel: no stack [ 261.914510][ T9683] netlink: 3084 bytes leftover after parsing attributes in process `syz.1.1500'. [ 261.924508][ T9683] netlink: 'syz.1.1500': attribute type 1 has an invalid length. [ 261.933955][ T9683] netlink: 193500 bytes leftover after parsing attributes in process `syz.1.1500'. [ 262.355285][ T9707] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 262.429336][ T9711] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 262.706449][ T9718] netlink: 209848 bytes leftover after parsing attributes in process `syz.2.1514'. [ 262.716637][ T9718] net_ratelimit: 26 callbacks suppressed [ 262.716656][ T9718] openvswitch: netlink: Message has 2 unknown bytes. [ 262.859042][ T9737] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 263.224097][ T9758] FAULT_INJECTION: forcing a failure. [ 263.224097][ T9758] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 263.249988][ T9761] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1530'. [ 263.298958][ T9758] CPU: 1 UID: 0 PID: 9758 Comm: syz.0.1527 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 263.309713][ T9758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 263.319821][ T9758] Call Trace: [ 263.323142][ T9758] [ 263.326111][ T9758] dump_stack_lvl+0x241/0x360 [ 263.330835][ T9758] ? __pfx_dump_stack_lvl+0x10/0x10 [ 263.336072][ T9758] ? __pfx__printk+0x10/0x10 [ 263.341296][ T9758] ? __pfx_lock_release+0x10/0x10 [ 263.346370][ T9758] should_fail_ex+0x3b0/0x4e0 [ 263.351075][ T9758] _copy_from_user+0x2f/0xe0 [ 263.355705][ T9758] copy_msghdr_from_user+0xae/0x680 [ 263.360925][ T9758] ? __pfx___might_resched+0x10/0x10 [ 263.366231][ T9758] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 263.372062][ T9758] ? rcu_is_watching+0x15/0xb0 [ 263.376839][ T9758] ? __might_fault+0xaa/0x120 [ 263.381531][ T9758] __sys_sendmmsg+0x36d/0x730 [ 263.386227][ T9758] ? __pfx___sys_sendmmsg+0x10/0x10 [ 263.391447][ T9758] ? __pfx_lock_release+0x10/0x10 [ 263.396520][ T9758] ? kstrtouint_from_user+0x128/0x190 [ 263.401923][ T9758] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 263.407841][ T9758] ? ksys_write+0x229/0x2b0 [ 263.412359][ T9758] ? __pfx_lock_release+0x10/0x10 [ 263.417408][ T9758] ? vfs_write+0x7bf/0xc90 [ 263.421836][ T9758] ? kmem_cache_free+0x1a2/0x420 [ 263.426795][ T9758] ? __mutex_unlock_slowpath+0x21d/0x750 [ 263.432452][ T9758] ? __fget_files+0x3f3/0x470 [ 263.437181][ T9758] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 263.443184][ T9758] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 263.449539][ T9758] ? do_syscall_64+0x100/0x230 [ 263.454322][ T9758] __x64_sys_sendmmsg+0xa0/0xb0 [ 263.459198][ T9758] do_syscall_64+0xf3/0x230 [ 263.463714][ T9758] ? clear_bhb_loop+0x35/0x90 [ 263.468407][ T9758] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.474323][ T9758] RIP: 0033:0x7f402597dff9 [ 263.478759][ T9758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 263.498386][ T9758] RSP: 002b:00007f40267af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 263.506821][ T9758] RAX: ffffffffffffffda RBX: 00007f4025b36130 RCX: 00007f402597dff9 [ 263.514879][ T9758] RDX: 04000000000002ca RSI: 0000000020003bc0 RDI: 0000000000000004 [ 263.522865][ T9758] RBP: 00007f40267af090 R08: 0000000000000000 R09: 0000000000000000 [ 263.530897][ T9758] R10: 0000000004040014 R11: 0000000000000246 R12: 0000000000000002 [ 263.538911][ T9758] R13: 0000000000000001 R14: 00007f4025b36130 R15: 00007ffd3bf7afb8 [ 263.546939][ T9758] [ 263.843947][ T9775] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 264.076124][ T9783] bridge0: port 3(batadv2) entered blocking state [ 264.109584][ T9783] bridge0: port 3(batadv2) entered disabled state [ 264.123123][ T9783] batadv2: entered allmulticast mode [ 264.129845][ T9783] batadv2: entered promiscuous mode [ 264.160936][ T9792] tipc: Started in network mode [ 264.168178][ T9792] tipc: Node identity , cluster identity 4711 [ 264.184764][ T9792] tipc: Failed to obtain node identity [ 264.190975][ T9792] tipc: Enabling of bearer rejected, failed to enable media [ 264.208440][ T9788] netlink: 'syz.3.1540': attribute type 1 has an invalid length. [ 264.227856][ T9788] netlink: 9320 bytes leftover after parsing attributes in process `syz.3.1540'. [ 264.237516][ T9788] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1540'. [ 264.246628][ T9788] netlink: 'syz.3.1540': attribute type 1 has an invalid length. [ 264.411538][ T9807] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 264.581917][ T3005] batman_adv: batadv2: No IGMP Querier present - multicast optimizations disabled [ 264.591983][ T3005] batman_adv: batadv2: No MLD Querier present - multicast optimizations disabled [ 264.845131][ T9840] FAULT_INJECTION: forcing a failure. [ 264.845131][ T9840] name failslab, interval 1, probability 0, space 0, times 0 [ 264.875284][ T9837] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1556'. [ 264.875279][ T9840] CPU: 1 UID: 0 PID: 9840 Comm: syz.4.1558 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 264.875311][ T9840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 264.905086][ T9840] Call Trace: [ 264.908407][ T9840] [ 264.911379][ T9840] dump_stack_lvl+0x241/0x360 [ 264.916113][ T9840] ? __pfx_dump_stack_lvl+0x10/0x10 [ 264.921362][ T9840] ? __pfx__printk+0x10/0x10 [ 264.926012][ T9840] ? kmem_cache_alloc_node_noprof+0x49/0x320 [ 264.932048][ T9840] ? __pfx___might_resched+0x10/0x10 [ 264.937392][ T9840] should_fail_ex+0x3b0/0x4e0 [ 264.942134][ T9840] should_failslab+0xac/0x100 [ 264.946869][ T9840] ? __alloc_skb+0x1c3/0x440 [ 264.950338][ T9844] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 264.951483][ T9840] kmem_cache_alloc_node_noprof+0x71/0x320 [ 264.951528][ T9840] __alloc_skb+0x1c3/0x440 [ 264.951559][ T9840] ? __pfx___alloc_skb+0x10/0x10 [ 264.974229][ T9840] tipc_nl_compat_doit+0x170/0x610 [ 264.979365][ T9840] ? __pfx_aa_get_newest_label+0x10/0x10 [ 264.985053][ T9840] ? __pfx_tipc_nl_compat_doit+0x10/0x10 [ 264.990720][ T9840] ? bpf_lsm_capable+0x9/0x10 [ 264.995432][ T9840] ? security_capable+0x7e/0x2d0 [ 265.000412][ T9840] tipc_nl_compat_recv+0xe25/0x14c0 [ 265.005668][ T9840] ? __pfx_tipc_nl_compat_recv+0x10/0x10 [ 265.011346][ T9840] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 265.017482][ T9840] ? genl_rcv_msg+0x121/0xec0 [ 265.022191][ T9840] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 265.028569][ T9840] ? __pfx___tipc_nl_bearer_enable+0x10/0x10 [ 265.034670][ T9840] ? __pfx_tipc_nl_compat_bearer_enable+0x10/0x10 [ 265.041119][ T9840] ? __pfx___mutex_lock+0x10/0x10 [ 265.046177][ T9840] ? genl_get_cmd+0x71c/0xbe0 [ 265.050884][ T9840] genl_rcv_msg+0xb14/0xec0 [ 265.055442][ T9840] ? mark_lock+0x9a/0x360 [ 265.059796][ T9840] ? __pfx_genl_rcv_msg+0x10/0x10 [ 265.064890][ T9840] ? __pfx_lock_acquire+0x10/0x10 [ 265.069955][ T9840] ? __pfx_tipc_nl_compat_recv+0x10/0x10 [ 265.075622][ T9840] ? __pfx___might_resched+0x10/0x10 [ 265.080942][ T9840] netlink_rcv_skb+0x1e3/0x430 [ 265.085774][ T9840] ? __pfx_genl_rcv_msg+0x10/0x10 [ 265.090819][ T9840] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 265.096142][ T9840] ? __netlink_deliver_tap+0x77e/0x7c0 [ 265.101632][ T9840] genl_rcv+0x28/0x40 [ 265.105667][ T9840] netlink_unicast+0x7f6/0x990 [ 265.110471][ T9840] ? __pfx_netlink_unicast+0x10/0x10 [ 265.115783][ T9840] ? __virt_addr_valid+0x183/0x530 [ 265.120913][ T9840] ? __check_object_size+0x48e/0x900 [ 265.126223][ T9840] netlink_sendmsg+0x8e4/0xcb0 [ 265.131018][ T9840] ? __pfx_netlink_sendmsg+0x10/0x10 [ 265.136324][ T9840] ? aa_sock_msg_perm+0x91/0x160 [ 265.141313][ T9840] ? __pfx_netlink_sendmsg+0x10/0x10 [ 265.146639][ T9840] __sock_sendmsg+0x221/0x270 [ 265.151348][ T9840] ____sys_sendmsg+0x52a/0x7e0 [ 265.156160][ T9840] ? __pfx_____sys_sendmsg+0x10/0x10 [ 265.161477][ T9840] __sys_sendmsg+0x292/0x380 [ 265.166088][ T9840] ? __pfx___sys_sendmsg+0x10/0x10 [ 265.171226][ T9840] ? __pfx_vfs_write+0x10/0x10 [ 265.176032][ T9840] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 265.182394][ T9840] ? do_syscall_64+0x100/0x230 [ 265.187174][ T9840] ? do_syscall_64+0xb6/0x230 [ 265.191868][ T9840] do_syscall_64+0xf3/0x230 [ 265.196389][ T9840] ? clear_bhb_loop+0x35/0x90 [ 265.201114][ T9840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.207077][ T9840] RIP: 0033:0x7fad7e17dff9 [ 265.211510][ T9840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 265.231159][ T9840] RSP: 002b:00007fad7ef7e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 265.239604][ T9840] RAX: ffffffffffffffda RBX: 00007fad7e335f80 RCX: 00007fad7e17dff9 [ 265.247591][ T9840] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 265.255575][ T9840] RBP: 00007fad7ef7e090 R08: 0000000000000000 R09: 0000000000000000 [ 265.263563][ T9840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 265.271550][ T9840] R13: 0000000000000000 R14: 00007fad7e335f80 R15: 00007ffce0c89258 [ 265.279551][ T9840] [ 265.499674][ T9850] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1564'. [ 265.523234][ T9859] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1566'. [ 265.774896][ T9873] netlink: 'syz.1.1571': attribute type 4 has an invalid length. [ 265.801410][ T9873] netlink: 'syz.1.1571': attribute type 1 has an invalid length. [ 265.884448][ T9879] netlink: 'syz.3.1570': attribute type 1 has an invalid length. [ 266.030401][ T9885] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 266.130631][ T9889] bond0: up delay (65535) is not a multiple of miimon (8196), value rounded to 57372 ms [ 266.143568][ T9892] netlink: 'syz.2.1576': attribute type 10 has an invalid length. [ 266.190961][ T9892] bond0: (slave netdevsim0): no link monitoring support [ 266.210772][ T9892] bond0: (slave netdevsim0): MII and ETHTOOL support not available for slave, and arp_interval/arp_ip_target module parameters not specified, thus bonding will not detect link failures! see bonding.txt for details [ 266.238253][ T9892] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 266.249904][ T9889] netlink: 'syz.2.1576': attribute type 10 has an invalid length. [ 266.566387][ T9914] bridge_slave_1: left allmulticast mode [ 266.579259][ T9914] bridge_slave_1: left promiscuous mode [ 266.589921][ T9914] bridge0: port 2(bridge_slave_1) entered disabled state [ 266.673155][ T9914] bridge_slave_0: left allmulticast mode [ 266.701962][ T9914] bridge_slave_0: left promiscuous mode [ 266.732734][ T9914] bridge0: port 1(bridge_slave_0) entered disabled state [ 266.766897][ T9921] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 266.870105][ T9914] bond0: (slave bridge0): Releasing backup interface [ 267.020760][ T9916] netlink: 'syz.1.1585': attribute type 10 has an invalid length. [ 267.047218][ T9916] macvlan0: entered promiscuous mode [ 267.054917][ T9916] macvlan0: entered allmulticast mode [ 267.077835][ T9916] veth1_vlan: entered allmulticast mode [ 267.087346][ T9916] bond0: (slave macvlan0): Enslaving as an active interface with an up link [ 267.096845][ T9932] netlink: 'syz.4.1595': attribute type 1 has an invalid length. [ 267.105024][ T9929] __nla_validate_parse: 5 callbacks suppressed [ 267.105044][ T9929] netlink: 116 bytes leftover after parsing attributes in process `syz.3.1593'. [ 267.130664][ T9934] FAULT_INJECTION: forcing a failure. [ 267.130664][ T9934] name failslab, interval 1, probability 0, space 0, times 0 [ 267.165345][ T9934] CPU: 1 UID: 0 PID: 9934 Comm: syz.2.1594 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 267.176104][ T9934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 267.186181][ T9934] Call Trace: [ 267.189501][ T9934] [ 267.192452][ T9934] dump_stack_lvl+0x241/0x360 [ 267.197149][ T9934] ? __pfx_dump_stack_lvl+0x10/0x10 [ 267.202363][ T9934] ? __pfx__printk+0x10/0x10 [ 267.206983][ T9934] ? __kmalloc_noprof+0xb0/0x400 [ 267.211965][ T9934] ? __pfx___might_resched+0x10/0x10 [ 267.217280][ T9934] should_fail_ex+0x3b0/0x4e0 [ 267.222002][ T9934] ? tipc_nl_compat_doit+0x1aa/0x610 [ 267.227306][ T9934] should_failslab+0xac/0x100 [ 267.232008][ T9934] ? tipc_nl_compat_doit+0x1aa/0x610 [ 267.237322][ T9934] __kmalloc_noprof+0xd8/0x400 [ 267.242123][ T9934] tipc_nl_compat_doit+0x1aa/0x610 [ 267.247270][ T9934] ? __pfx_aa_get_newest_label+0x10/0x10 [ 267.252971][ T9934] ? __pfx_tipc_nl_compat_doit+0x10/0x10 [ 267.258662][ T9934] ? bpf_lsm_capable+0x9/0x10 [ 267.263378][ T9934] ? security_capable+0x7e/0x2d0 [ 267.268368][ T9934] tipc_nl_compat_recv+0xe25/0x14c0 [ 267.273662][ T9934] ? __pfx_tipc_nl_compat_recv+0x10/0x10 [ 267.279343][ T9934] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 267.285405][ T9934] ? genl_rcv_msg+0x121/0xec0 [ 267.290108][ T9934] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 267.296489][ T9934] ? __pfx___tipc_nl_bearer_enable+0x10/0x10 [ 267.302514][ T9934] ? __pfx_tipc_nl_compat_bearer_enable+0x10/0x10 [ 267.308954][ T9934] ? __pfx___mutex_lock+0x10/0x10 [ 267.314023][ T9934] ? genl_get_cmd+0x71c/0xbe0 [ 267.318720][ T9934] genl_rcv_msg+0xb14/0xec0 [ 267.323255][ T9934] ? mark_lock+0x9a/0x360 [ 267.327645][ T9934] ? __pfx_genl_rcv_msg+0x10/0x10 [ 267.332729][ T9934] ? __pfx_lock_acquire+0x10/0x10 [ 267.337785][ T9934] ? __pfx_tipc_nl_compat_recv+0x10/0x10 [ 267.343451][ T9934] ? __pfx___might_resched+0x10/0x10 [ 267.348772][ T9934] netlink_rcv_skb+0x1e3/0x430 [ 267.353585][ T9934] ? __pfx_genl_rcv_msg+0x10/0x10 [ 267.358634][ T9934] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 267.363955][ T9934] ? __netlink_deliver_tap+0x77e/0x7c0 [ 267.369446][ T9934] genl_rcv+0x28/0x40 [ 267.373445][ T9934] netlink_unicast+0x7f6/0x990 [ 267.378269][ T9934] ? __pfx_netlink_unicast+0x10/0x10 [ 267.383693][ T9934] ? __virt_addr_valid+0x183/0x530 [ 267.388840][ T9934] ? __check_object_size+0x48e/0x900 [ 267.394287][ T9934] netlink_sendmsg+0x8e4/0xcb0 [ 267.399083][ T9934] ? __pfx_netlink_sendmsg+0x10/0x10 [ 267.404395][ T9934] ? aa_sock_msg_perm+0x91/0x160 [ 267.409359][ T9934] ? __pfx_netlink_sendmsg+0x10/0x10 [ 267.414750][ T9934] __sock_sendmsg+0x221/0x270 [ 267.419454][ T9934] ____sys_sendmsg+0x52a/0x7e0 [ 267.424252][ T9934] ? __pfx_____sys_sendmsg+0x10/0x10 [ 267.429582][ T9934] __sys_sendmsg+0x292/0x380 [ 267.434194][ T9934] ? __pfx___sys_sendmsg+0x10/0x10 [ 267.439333][ T9934] ? __pfx_vfs_write+0x10/0x10 [ 267.444141][ T9934] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 267.450531][ T9934] ? do_syscall_64+0x100/0x230 [ 267.455347][ T9934] ? do_syscall_64+0xb6/0x230 [ 267.460050][ T9934] do_syscall_64+0xf3/0x230 [ 267.464572][ T9934] ? clear_bhb_loop+0x35/0x90 [ 267.469266][ T9934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.475190][ T9934] RIP: 0033:0x7fd68e57dff9 [ 267.479621][ T9934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 267.499249][ T9934] RSP: 002b:00007fd68f332038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 267.507693][ T9934] RAX: ffffffffffffffda RBX: 00007fd68e735f80 RCX: 00007fd68e57dff9 [ 267.515682][ T9934] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 267.523671][ T9934] RBP: 00007fd68f332090 R08: 0000000000000000 R09: 0000000000000000 [ 267.531693][ T9934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 267.539717][ T9934] R13: 0000000000000000 R14: 00007fd68e735f80 R15: 00007fff77844eb8 [ 267.547718][ T9934] [ 267.830185][ T9950] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 267.989616][ T9960] FAULT_INJECTION: forcing a failure. [ 267.989616][ T9960] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 268.003677][ T9960] CPU: 1 UID: 0 PID: 9960 Comm: syz.0.1607 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 268.014419][ T9960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 268.024520][ T9960] Call Trace: [ 268.027855][ T9960] [ 268.030830][ T9960] dump_stack_lvl+0x241/0x360 [ 268.035583][ T9960] ? __pfx_dump_stack_lvl+0x10/0x10 [ 268.040832][ T9960] ? __pfx__printk+0x10/0x10 [ 268.045477][ T9960] ? snprintf+0xda/0x120 [ 268.049747][ T9960] should_fail_ex+0x3b0/0x4e0 [ 268.054462][ T9960] _copy_to_user+0x2f/0xb0 [ 268.058911][ T9960] simple_read_from_buffer+0xca/0x150 [ 268.064320][ T9960] proc_fail_nth_read+0x1e9/0x250 [ 268.069378][ T9960] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 268.074955][ T9960] ? rw_verify_area+0x55e/0x6f0 [ 268.079831][ T9960] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 268.085401][ T9960] vfs_read+0x201/0xbc0 [ 268.089591][ T9960] ? __pfx_lock_release+0x10/0x10 [ 268.094733][ T9960] ? __pfx_vfs_read+0x10/0x10 [ 268.099438][ T9960] ? __fget_files+0x3f3/0x470 [ 268.104138][ T9960] ? fdget_pos+0x24e/0x320 [ 268.108663][ T9960] ksys_read+0x183/0x2b0 [ 268.112923][ T9960] ? __pfx_ksys_read+0x10/0x10 [ 268.117729][ T9960] ? do_syscall_64+0x100/0x230 [ 268.122513][ T9960] ? do_syscall_64+0xb6/0x230 [ 268.127214][ T9960] do_syscall_64+0xf3/0x230 [ 268.131758][ T9960] ? clear_bhb_loop+0x35/0x90 [ 268.136450][ T9960] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.142385][ T9960] RIP: 0033:0x7f402597ca3c [ 268.146817][ T9960] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 268.166451][ T9960] RSP: 002b:00007f40267f1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 268.174891][ T9960] RAX: ffffffffffffffda RBX: 00007f4025b35f80 RCX: 00007f402597ca3c [ 268.182878][ T9960] RDX: 000000000000000f RSI: 00007f40267f10a0 RDI: 0000000000000004 [ 268.190883][ T9960] RBP: 00007f40267f1090 R08: 0000000000000000 R09: 0000000000000000 [ 268.198897][ T9960] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000001 [ 268.206899][ T9960] R13: 0000000000000000 R14: 00007f4025b35f80 R15: 00007ffd3bf7afb8 [ 268.214911][ T9960] [ 268.341382][ T9962] netlink: 4272 bytes leftover after parsing attributes in process `syz.3.1608'. [ 268.397334][ T9962] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1608'. [ 268.496077][ T9974] FAULT_INJECTION: forcing a failure. [ 268.496077][ T9974] name failslab, interval 1, probability 0, space 0, times 0 [ 268.544479][ T9974] CPU: 1 UID: 0 PID: 9974 Comm: syz.0.1612 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 268.555343][ T9974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 268.565448][ T9974] Call Trace: [ 268.568766][ T9974] [ 268.571744][ T9974] dump_stack_lvl+0x241/0x360 [ 268.576473][ T9974] ? __pfx_dump_stack_lvl+0x10/0x10 [ 268.581725][ T9974] ? __pfx__printk+0x10/0x10 [ 268.586374][ T9974] ? kmem_cache_alloc_node_noprof+0x49/0x320 [ 268.588202][ T9977] netlink: zone id is out of range [ 268.592390][ T9974] ? __pfx___might_resched+0x10/0x10 [ 268.592436][ T9974] should_fail_ex+0x3b0/0x4e0 [ 268.592476][ T9974] should_failslab+0xac/0x100 [ 268.592505][ T9974] ? __alloc_skb+0x1c3/0x440 [ 268.592538][ T9974] kmem_cache_alloc_node_noprof+0x71/0x320 [ 268.592577][ T9974] __alloc_skb+0x1c3/0x440 [ 268.592604][ T9974] ? __pfx___alloc_skb+0x10/0x10 [ 268.592624][ T9974] ? tipc_nl_compat_doit+0x1aa/0x610 [ 268.592647][ T9974] ? tipc_nl_compat_doit+0x190/0x610 [ 268.592667][ T9974] ? tipc_nl_compat_doit+0x1aa/0x610 [ 268.592690][ T9974] ? __kmalloc_noprof+0x21a/0x400 [ 268.592726][ T9974] tipc_nl_compat_doit+0x1ce/0x610 [ 268.592750][ T9974] ? __pfx_aa_get_newest_label+0x10/0x10 [ 268.592781][ T9974] ? __pfx_tipc_nl_compat_doit+0x10/0x10 [ 268.615431][ T9977] netlink: zone id is out of range [ 268.617135][ T9974] ? bpf_lsm_capable+0x9/0x10 [ 268.629556][ T9977] netlink: zone id is out of range [ 268.632302][ T9974] ? security_capable+0x7e/0x2d0 [ 268.632343][ T9974] tipc_nl_compat_recv+0xe25/0x14c0 [ 268.632386][ T9974] ? __pfx_tipc_nl_compat_recv+0x10/0x10 [ 268.632421][ T9974] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 268.632460][ T9974] ? genl_rcv_msg+0x121/0xec0 [ 268.632488][ T9974] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 268.649541][ T9977] netlink: zone id is out of range [ 268.653445][ T9974] ? __pfx___tipc_nl_bearer_enable+0x10/0x10 [ 268.653489][ T9974] ? __pfx_tipc_nl_compat_bearer_enable+0x10/0x10 [ 268.653533][ T9974] ? __pfx___mutex_lock+0x10/0x10 [ 268.653563][ T9974] ? genl_get_cmd+0x71c/0xbe0 [ 268.653602][ T9974] genl_rcv_msg+0xb14/0xec0 [ 268.653629][ T9974] ? mark_lock+0x9a/0x360 [ 268.653661][ T9974] ? __pfx_genl_rcv_msg+0x10/0x10 [ 268.653724][ T9974] ? __pfx_lock_acquire+0x10/0x10 [ 268.653757][ T9974] ? __pfx_tipc_nl_compat_recv+0x10/0x10 [ 268.653792][ T9974] ? __pfx___might_resched+0x10/0x10 [ 268.653833][ T9974] netlink_rcv_skb+0x1e3/0x430 [ 268.653870][ T9974] ? __pfx_genl_rcv_msg+0x10/0x10 [ 268.653902][ T9974] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 268.653951][ T9974] ? __netlink_deliver_tap+0x77e/0x7c0 [ 268.653991][ T9974] genl_rcv+0x28/0x40 [ 268.654017][ T9974] netlink_unicast+0x7f6/0x990 [ 268.654060][ T9974] ? __pfx_netlink_unicast+0x10/0x10 [ 268.654091][ T9974] ? __virt_addr_valid+0x183/0x530 [ 268.654121][ T9974] ? __check_object_size+0x48e/0x900 [ 268.654156][ T9974] netlink_sendmsg+0x8e4/0xcb0 [ 268.825063][ T9974] ? __pfx_netlink_sendmsg+0x10/0x10 [ 268.830372][ T9974] ? aa_sock_msg_perm+0x91/0x160 [ 268.835368][ T9974] ? __pfx_netlink_sendmsg+0x10/0x10 [ 268.840670][ T9974] __sock_sendmsg+0x221/0x270 [ 268.845374][ T9974] ____sys_sendmsg+0x52a/0x7e0 [ 268.850159][ T9974] ? __pfx_____sys_sendmsg+0x10/0x10 [ 268.855478][ T9974] __sys_sendmsg+0x292/0x380 [ 268.860104][ T9974] ? __pfx___sys_sendmsg+0x10/0x10 [ 268.865611][ T9974] ? __pfx_vfs_write+0x10/0x10 [ 268.870412][ T9974] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 268.876762][ T9974] ? do_syscall_64+0x100/0x230 [ 268.881545][ T9974] ? do_syscall_64+0xb6/0x230 [ 268.886235][ T9974] do_syscall_64+0xf3/0x230 [ 268.890752][ T9974] ? clear_bhb_loop+0x35/0x90 [ 268.895445][ T9974] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.901363][ T9974] RIP: 0033:0x7f402597dff9 [ 268.905791][ T9974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 268.925422][ T9974] RSP: 002b:00007f40267f1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 268.933858][ T9974] RAX: ffffffffffffffda RBX: 00007f4025b35f80 RCX: 00007f402597dff9 [ 268.941843][ T9974] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 268.949844][ T9974] RBP: 00007f40267f1090 R08: 0000000000000000 R09: 0000000000000000 [ 268.957847][ T9974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 268.965849][ T9974] R13: 0000000000000000 R14: 00007f4025b35f80 R15: 00007ffd3bf7afb8 [ 268.973854][ T9974] [ 269.057576][ T9977] netlink: set zone limit has 4 unknown bytes [ 269.151379][ T9984] netlink: 'syz.1.1617': attribute type 1 has an invalid length. [ 269.176019][ T9984] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1617'. [ 269.185609][ T9985] IPVS: set_ctl: invalid protocol: 136 127.0.0.1:20001 [ 269.311433][ T9989] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1619'. [ 269.330850][ T9989] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1619'. [ 269.350347][ T9989] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1619'. [ 269.371337][ T9989] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1619'. [ 269.701929][T10015] netlink: zone id is out of range [ 269.707347][T10015] netlink: zone id is out of range [ 269.713333][T10015] netlink: zone id is out of range [ 269.719496][T10015] netlink: zone id is out of range [ 269.773840][T10015] netlink: set zone limit has 4 unknown bytes [ 269.963028][T10026] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1633'. [ 270.068707][T10031] netlink: 'syz.0.1635': attribute type 3 has an invalid length. [ 270.090061][T10031] netlink: 201372 bytes leftover after parsing attributes in process `syz.0.1635'. [ 270.104638][T10034] xt_addrtype: ipv6 does not support BROADCAST matching [ 270.116957][T10026] team1: Mode "" not found [ 270.586988][T10057] FAULT_INJECTION: forcing a failure. [ 270.586988][T10057] name failslab, interval 1, probability 0, space 0, times 0 [ 270.600562][T10057] CPU: 0 UID: 0 PID: 10057 Comm: syz.3.1647 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 270.611386][T10057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 270.621487][T10057] Call Trace: [ 270.624796][T10057] [ 270.627762][T10057] dump_stack_lvl+0x241/0x360 [ 270.632491][T10057] ? __pfx_dump_stack_lvl+0x10/0x10 [ 270.637736][T10057] ? __pfx__printk+0x10/0x10 [ 270.642391][T10057] ? __pfx_lock_acquire+0x10/0x10 [ 270.647484][T10057] ? tipc_net+0x45/0x270 [ 270.651783][T10057] ? __pfx_lock_release+0x10/0x10 [ 270.656853][T10057] should_fail_ex+0x3b0/0x4e0 [ 270.661566][T10057] should_failslab+0xac/0x100 [ 270.666265][T10057] ? __tipc_nl_bearer_enable+0xa8f/0x12f0 [ 270.672008][T10057] __kmalloc_cache_noprof+0x6c/0x2c0 [ 270.677321][T10057] __tipc_nl_bearer_enable+0xa8f/0x12f0 [ 270.682885][T10057] ? __pfx___might_resched+0x10/0x10 [ 270.688197][T10057] ? __pfx___tipc_nl_bearer_enable+0x10/0x10 [ 270.694200][T10057] ? trace_contention_end+0x3c/0x120 [ 270.699503][T10057] ? __asan_memcpy+0x40/0x70 [ 270.704113][T10057] ? nla_put+0x131/0x1e0 [ 270.708378][T10057] ? tipc_nl_compat_bearer_enable+0x416/0x5f0 [ 270.714481][T10057] ? __pfx_tipc_nl_compat_bearer_enable+0x10/0x10 [ 270.720927][T10057] ? __nla_parse+0x40/0x60 [ 270.725366][T10057] tipc_nl_compat_doit+0x3e2/0x610 [ 270.730492][T10057] ? __pfx_aa_get_newest_label+0x10/0x10 [ 270.736147][T10057] ? __pfx_tipc_nl_compat_doit+0x10/0x10 [ 270.741815][T10057] ? bpf_lsm_capable+0x9/0x10 [ 270.746509][T10057] ? security_capable+0x7e/0x2d0 [ 270.751469][T10057] tipc_nl_compat_recv+0xe25/0x14c0 [ 270.756782][T10057] ? __pfx_tipc_nl_compat_recv+0x10/0x10 [ 270.762457][T10057] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 270.768460][T10057] ? genl_rcv_msg+0x121/0xec0 [ 270.773164][T10057] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 270.779515][T10057] ? __pfx___tipc_nl_bearer_enable+0x10/0x10 [ 270.785509][T10057] ? __pfx_tipc_nl_compat_bearer_enable+0x10/0x10 [ 270.791963][T10057] ? __pfx___mutex_lock+0x10/0x10 [ 270.797013][T10057] ? genl_get_cmd+0x71c/0xbe0 [ 270.801716][T10057] genl_rcv_msg+0xb14/0xec0 [ 270.806294][T10057] ? mark_lock+0x9a/0x360 [ 270.810665][T10057] ? __pfx_genl_rcv_msg+0x10/0x10 [ 270.815754][T10057] ? __pfx_lock_acquire+0x10/0x10 [ 270.820831][T10057] ? __pfx_tipc_nl_compat_recv+0x10/0x10 [ 270.826524][T10057] ? __pfx___might_resched+0x10/0x10 [ 270.831950][T10057] netlink_rcv_skb+0x1e3/0x430 [ 270.836746][T10057] ? __pfx_genl_rcv_msg+0x10/0x10 [ 270.841799][T10057] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 270.847145][T10057] ? __netlink_deliver_tap+0x77e/0x7c0 [ 270.852644][T10057] genl_rcv+0x28/0x40 [ 270.856655][T10057] netlink_unicast+0x7f6/0x990 [ 270.861457][T10057] ? __pfx_netlink_unicast+0x10/0x10 [ 270.866772][T10057] ? __virt_addr_valid+0x183/0x530 [ 270.871902][T10057] ? __check_object_size+0x48e/0x900 [ 270.877210][T10057] netlink_sendmsg+0x8e4/0xcb0 [ 270.881999][T10057] ? __pfx_netlink_sendmsg+0x10/0x10 [ 270.887300][T10057] ? aa_sock_msg_perm+0x91/0x160 [ 270.892259][T10057] ? __pfx_netlink_sendmsg+0x10/0x10 [ 270.897554][T10057] __sock_sendmsg+0x221/0x270 [ 270.902341][T10057] ____sys_sendmsg+0x52a/0x7e0 [ 270.907131][T10057] ? __pfx_____sys_sendmsg+0x10/0x10 [ 270.912449][T10057] __sys_sendmsg+0x292/0x380 [ 270.917063][T10057] ? __pfx___sys_sendmsg+0x10/0x10 [ 270.922203][T10057] ? __pfx_vfs_write+0x10/0x10 [ 270.927006][T10057] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 270.933358][T10057] ? do_syscall_64+0x100/0x230 [ 270.938137][T10057] ? do_syscall_64+0xb6/0x230 [ 270.942829][T10057] do_syscall_64+0xf3/0x230 [ 270.947349][T10057] ? clear_bhb_loop+0x35/0x90 [ 270.952042][T10057] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.957956][T10057] RIP: 0033:0x7f6b1777dff9 [ 270.962381][T10057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.982197][T10057] RSP: 002b:00007f6b185ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 270.990656][T10057] RAX: ffffffffffffffda RBX: 00007f6b17935f80 RCX: 00007f6b1777dff9 [ 270.998664][T10057] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 271.006699][T10057] RBP: 00007f6b185ce090 R08: 0000000000000000 R09: 0000000000000000 [ 271.014703][T10057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 271.022707][T10057] R13: 0000000000000000 R14: 00007f6b17935f80 R15: 00007ffdad6456f8 [ 271.030719][T10057] [ 271.706300][T10103] bond1: entered promiscuous mode [ 271.716120][T10103] bond1: entered allmulticast mode [ 271.728195][T10103] 8021q: adding VLAN 0 to HW filter on device bond1 [ 271.899074][T10103] bond1 (unregistering): Released all slaves [ 271.915651][T10107] tipc: Enabling of bearer rejected, already enabled [ 272.199162][T10125] __nla_validate_parse: 5 callbacks suppressed [ 272.199183][T10125] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1668'. [ 272.380721][T10134] netlink: 'syz.2.1673': attribute type 1 has an invalid length. [ 272.389172][T10134] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1673'. [ 272.679612][T10146] tipc: Started in network mode [ 272.684712][T10146] tipc: Node identity , cluster identity 4711 [ 272.690913][T10146] tipc: Failed to obtain node identity [ 272.705098][T10148] FAULT_INJECTION: forcing a failure. [ 272.705098][T10148] name failslab, interval 1, probability 0, space 0, times 0 [ 272.731498][T10146] tipc: Enabling of bearer rejected, failed to enable media [ 272.740124][T10148] CPU: 1 UID: 0 PID: 10148 Comm: syz.0.1679 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 272.750934][T10148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 272.761008][T10148] Call Trace: [ 272.765176][T10148] [ 272.768128][T10148] dump_stack_lvl+0x241/0x360 [ 272.772834][T10148] ? __pfx_dump_stack_lvl+0x10/0x10 [ 272.778054][T10148] ? __pfx__printk+0x10/0x10 [ 272.782676][T10148] ? __build_skb_around+0x245/0x3d0 [ 272.787890][T10148] should_fail_ex+0x3b0/0x4e0 [ 272.792601][T10148] ? _sctp_make_chunk+0x161/0x460 [ 272.797638][T10148] should_failslab+0xac/0x100 [ 272.802338][T10148] ? _sctp_make_chunk+0x161/0x460 [ 272.807376][T10148] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 272.812770][T10148] _sctp_make_chunk+0x161/0x460 [ 272.817642][T10148] sctp_make_init+0x603/0x2840 [ 272.822424][T10148] ? layout_symtab+0x248/0xa50 [ 272.827201][T10148] ? kernel_text_address+0xa7/0xe0 [ 272.832371][T10148] ? __pfx_sctp_make_init+0x10/0x10 [ 272.837587][T10148] ? stack_trace_save+0x118/0x1d0 [ 272.842631][T10148] sctp_sf_do_prm_asoc+0xd2/0x3f0 [ 272.847767][T10148] ? __pfx_sctp_pname+0x10/0x10 [ 272.852636][T10148] sctp_do_sm+0x1f1/0x60c0 [ 272.857067][T10148] ? stack_depot_save_flags+0x29/0x830 [ 272.862560][T10148] ? kasan_save_track+0x51/0x80 [ 272.867424][T10148] ? __kasan_kmalloc+0x98/0xb0 [ 272.872200][T10148] ? sctp_stream_init_ext+0x56/0x180 [ 272.877498][T10148] ? sctp_sendmsg_to_asoc+0x12fd/0x1800 [ 272.883063][T10148] ? __sock_sendmsg+0x1a6/0x270 [ 272.888025][T10148] ? __sys_sendto+0x39b/0x4f0 [ 272.892711][T10148] ? __x64_sys_sendto+0xde/0x100 [ 272.897658][T10148] ? do_syscall_64+0xf3/0x230 [ 272.902343][T10148] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 272.908429][T10148] ? __pfx_sctp_do_sm+0x10/0x10 [ 272.913321][T10148] ? __sk_mem_raise_allocated+0xa5f/0x1140 [ 272.919152][T10148] sctp_primitive_ASSOCIATE+0x95/0xc0 [ 272.924549][T10148] sctp_sendmsg_to_asoc+0xfa5/0x1800 [ 272.929848][T10148] ? sctp_v6_to_sk_saddr+0x101/0x1c0 [ 272.935152][T10148] ? __asan_memcpy+0x40/0x70 [ 272.939752][T10148] ? sctp_assoc_add_peer+0xe3c/0x15c0 [ 272.945173][T10148] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 272.950928][T10148] ? sctp_connect_new_asoc+0x3fe/0x6c0 [ 272.956421][T10148] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 272.962256][T10148] ? sctp_sendmsg+0xbb9/0x3520 [ 272.967142][T10148] ? sctp_endpoint_lookup_assoc+0x7c/0x250 [ 272.972969][T10148] ? sctp_endpoint_lookup_assoc+0x217/0x250 [ 272.978887][T10148] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 272.984448][T10148] sctp_sendmsg+0x1bc3/0x3520 [ 272.989158][T10148] ? __pfx_sctp_sendmsg+0x10/0x10 [ 272.994212][T10148] ? __pfx_aa_sk_perm+0x10/0x10 [ 272.999077][T10148] ? inet_sendmsg+0x330/0x390 [ 273.003773][T10148] __sock_sendmsg+0x1a6/0x270 [ 273.008470][T10148] __sys_sendto+0x39b/0x4f0 [ 273.012992][T10148] ? __pfx___sys_sendto+0x10/0x10 [ 273.018022][T10148] ? __mutex_unlock_slowpath+0x21d/0x750 [ 273.023703][T10148] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 273.029723][T10148] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 273.036109][T10148] __x64_sys_sendto+0xde/0x100 [ 273.040899][T10148] do_syscall_64+0xf3/0x230 [ 273.045430][T10148] ? clear_bhb_loop+0x35/0x90 [ 273.050121][T10148] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.056035][T10148] RIP: 0033:0x7f402597dff9 [ 273.060467][T10148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.080109][T10148] RSP: 002b:00007f40267f1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 273.088552][T10148] RAX: ffffffffffffffda RBX: 00007f4025b35f80 RCX: 00007f402597dff9 [ 273.096545][T10148] RDX: 0000000000034000 RSI: 0000000020000580 RDI: 0000000000000003 [ 273.104535][T10148] RBP: 00007f40267f1090 R08: 0000000020000100 R09: 000000000000001c [ 273.112519][T10148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 273.120500][T10148] R13: 0000000000000000 R14: 00007f4025b35f80 R15: 00007ffd3bf7afb8 [ 273.128499][T10148] [ 273.180531][T10150] tipc: Enabling of bearer rejected, already enabled [ 273.373439][T10158] xt_CT: You must specify a L4 protocol and not use inversions on it [ 273.740268][T10176] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1691'. [ 273.754587][T10179] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1690'. [ 273.769533][T10179] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1690'. [ 273.782037][T10181] FAULT_INJECTION: forcing a failure. [ 273.782037][T10181] name failslab, interval 1, probability 0, space 0, times 0 [ 273.795544][T10181] CPU: 1 UID: 0 PID: 10181 Comm: syz.2.1693 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 273.795643][T10179] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1690'. [ 273.806339][T10181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 273.806427][T10181] Call Trace: [ 273.806439][T10181] [ 273.806451][T10181] dump_stack_lvl+0x241/0x360 [ 273.806487][T10181] ? __pfx_dump_stack_lvl+0x10/0x10 [ 273.806511][T10181] ? __pfx__printk+0x10/0x10 [ 273.806547][T10181] ? kmem_cache_alloc_node_noprof+0x49/0x320 [ 273.806582][T10181] ? __pfx___might_resched+0x10/0x10 [ 273.806620][T10181] should_fail_ex+0x3b0/0x4e0 [ 273.806660][T10181] should_failslab+0xac/0x100 [ 273.806688][T10181] ? __alloc_skb+0x1c3/0x440 [ 273.846122][T10179] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1690'. [ 273.846429][T10181] kmem_cache_alloc_node_noprof+0x71/0x320 [ 273.886458][T10181] __alloc_skb+0x1c3/0x440 [ 273.890903][T10181] ? __pfx___alloc_skb+0x10/0x10 [ 273.895851][T10181] ? __pfx_lock_acquire+0x10/0x10 [ 273.900896][T10181] ? sctp_packet_config+0x5b2/0xdb0 [ 273.906132][T10181] sctp_packet_transmit+0x30c/0x2ca0 [ 273.911457][T10181] ? __sctp_packet_append_chunk+0x945/0xd20 [ 273.917396][T10181] ? sctp_packet_append_chunk+0x9d4/0x1010 [ 273.923249][T10181] sctp_packet_singleton+0x22c/0x320 [ 273.928565][T10181] ? __pfx_sctp_packet_singleton+0x10/0x10 [ 273.934397][T10181] ? sctp_outq_select_transport+0x474/0x580 [ 273.940321][T10181] ? sctp_transport_burst_limited+0x18c/0x270 [ 273.946407][T10181] sctp_outq_flush+0x6d5/0x3e20 [ 273.951279][T10181] ? rcu_is_watching+0x15/0xb0 [ 273.956075][T10181] ? __pfx_sctp_outq_flush+0x10/0x10 [ 273.961389][T10181] ? sctp_outq_tail+0x67a/0x930 [ 273.966270][T10181] ? sctp_outq_uncork+0x4f/0xb0 [ 273.971143][T10181] sctp_do_sm+0x59cc/0x60c0 [ 273.975668][T10181] ? stack_depot_save_flags+0x29/0x830 [ 273.981185][T10181] ? kasan_save_track+0x51/0x80 [ 273.986119][T10181] ? __kasan_kmalloc+0x98/0xb0 [ 273.990914][T10181] ? sctp_stream_init_ext+0x56/0x180 [ 273.996234][T10181] ? __pfx_sctp_do_sm+0x10/0x10 [ 274.001146][T10181] ? __sk_mem_raise_allocated+0xa5f/0x1140 [ 274.007052][T10181] sctp_primitive_ASSOCIATE+0x95/0xc0 [ 274.012454][T10181] sctp_sendmsg_to_asoc+0xfa5/0x1800 [ 274.017776][T10181] ? sctp_v6_to_sk_saddr+0x101/0x1c0 [ 274.023084][T10181] ? __asan_memcpy+0x40/0x70 [ 274.027686][T10181] ? sctp_assoc_add_peer+0xe3c/0x15c0 [ 274.033088][T10181] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 274.038852][T10181] ? sctp_connect_new_asoc+0x3fe/0x6c0 [ 274.044351][T10181] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 274.050205][T10181] ? sctp_sendmsg+0xbb9/0x3520 [ 274.055007][T10181] ? sctp_endpoint_lookup_assoc+0x7c/0x250 [ 274.060848][T10181] ? sctp_endpoint_lookup_assoc+0x217/0x250 [ 274.066768][T10181] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 274.072336][T10181] sctp_sendmsg+0x1bc3/0x3520 [ 274.077051][T10181] ? __pfx_sctp_sendmsg+0x10/0x10 [ 274.082106][T10181] ? __pfx_aa_sk_perm+0x10/0x10 [ 274.086980][T10181] ? inet_sendmsg+0x330/0x390 [ 274.091679][T10181] __sock_sendmsg+0x1a6/0x270 [ 274.096382][T10181] __sys_sendto+0x39b/0x4f0 [ 274.100903][T10181] ? __pfx___sys_sendto+0x10/0x10 [ 274.105947][T10181] ? __mutex_unlock_slowpath+0x21d/0x750 [ 274.111631][T10181] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 274.117648][T10181] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 274.124015][T10181] __x64_sys_sendto+0xde/0x100 [ 274.128804][T10181] do_syscall_64+0xf3/0x230 [ 274.133333][T10181] ? clear_bhb_loop+0x35/0x90 [ 274.138041][T10181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.144054][T10181] RIP: 0033:0x7fd68e57dff9 [ 274.148506][T10181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 274.168514][T10181] RSP: 002b:00007fd68f332038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 274.176957][T10181] RAX: ffffffffffffffda RBX: 00007fd68e735f80 RCX: 00007fd68e57dff9 [ 274.184951][T10181] RDX: 0000000000034000 RSI: 0000000020000580 RDI: 0000000000000003 [ 274.192943][T10181] RBP: 00007fd68f332090 R08: 0000000020000100 R09: 000000000000001c [ 274.201021][T10181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 274.209007][T10181] R13: 0000000000000000 R14: 00007fd68e735f80 R15: 00007fff77844eb8 [ 274.217006][T10181] [ 274.499926][T10197] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1699'. [ 274.705674][ T61] net_ratelimit: 2 callbacks suppressed [ 274.705698][ T61] bond0: (slave netdevsim0): link status down again after 0 ms [ 274.742029][ T61] bond0: (slave netdevsim0): link status definitely down, disabling slave [ 274.819158][T10210] netlink: zone id is out of range [ 274.839633][T10210] netlink: zone id is out of range [ 274.851381][T10210] netlink: zone id is out of range [ 274.860324][T10210] netlink: zone id is out of range [ 274.872276][T10210] netlink: zone id is out of range [ 274.893371][T10210] netlink: set zone limit has 4 unknown bytes [ 275.079876][T10223] tipc: Started in network mode [ 275.089390][T10223] tipc: Node identity , cluster identity 7 [ 275.121396][T10223] tipc: Failed to obtain node identity [ 275.130398][T10223] tipc: Enabling of bearer rejected, failed to enable media [ 275.314051][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 275.342441][T10236] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1717'. [ 275.460937][T10246] netlink: zone id is out of range [ 275.466718][T10246] netlink: zone id is out of range [ 276.220169][T10268] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1727'. [ 277.372099][T10318] __nla_validate_parse: 6 callbacks suppressed [ 277.372124][T10318] netlink: 116 bytes leftover after parsing attributes in process `syz.4.1747'. [ 277.577607][T10330] FAULT_INJECTION: forcing a failure. [ 277.577607][T10330] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 277.627857][T10330] CPU: 1 UID: 0 PID: 10330 Comm: syz.0.1749 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 277.638753][T10330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 277.648823][T10330] Call Trace: [ 277.652113][T10330] [ 277.655054][T10330] dump_stack_lvl+0x241/0x360 [ 277.659752][T10330] ? __pfx_dump_stack_lvl+0x10/0x10 [ 277.664964][T10330] ? __pfx__printk+0x10/0x10 [ 277.669574][T10330] ? __pfx_lock_release+0x10/0x10 [ 277.674627][T10330] should_fail_ex+0x3b0/0x4e0 [ 277.679328][T10330] _copy_from_user+0x2f/0xe0 [ 277.683940][T10330] copy_msghdr_from_user+0xae/0x680 [ 277.689184][T10330] ? __pfx___might_resched+0x10/0x10 [ 277.694493][T10330] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 277.700317][T10330] ? rcu_is_watching+0x15/0xb0 [ 277.705115][T10330] ? __might_fault+0xaa/0x120 [ 277.709807][T10330] __sys_sendmmsg+0x36d/0x730 [ 277.714504][T10330] ? __pfx___sys_sendmmsg+0x10/0x10 [ 277.719728][T10330] ? __pfx_lock_release+0x10/0x10 [ 277.724773][T10330] ? kstrtouint_from_user+0x128/0x190 [ 277.730175][T10330] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 277.736088][T10330] ? ksys_write+0x229/0x2b0 [ 277.740603][T10330] ? __pfx_lock_release+0x10/0x10 [ 277.745665][T10330] ? vfs_write+0x7bf/0xc90 [ 277.750095][T10330] ? kmem_cache_free+0x1a2/0x420 [ 277.755052][T10330] ? __mutex_unlock_slowpath+0x21d/0x750 [ 277.760728][T10330] ? __fget_files+0x3f3/0x470 [ 277.765430][T10330] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 277.771447][T10330] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 277.777800][T10330] ? do_syscall_64+0x100/0x230 [ 277.782581][T10330] __x64_sys_sendmmsg+0xa0/0xb0 [ 277.787447][T10330] do_syscall_64+0xf3/0x230 [ 277.791962][T10330] ? clear_bhb_loop+0x35/0x90 [ 277.796742][T10330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 277.802655][T10330] RIP: 0033:0x7f402597dff9 [ 277.807167][T10330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 277.826828][T10330] RSP: 002b:00007f40267af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 277.835292][T10330] RAX: ffffffffffffffda RBX: 00007f4025b36130 RCX: 00007f402597dff9 [ 277.843278][T10330] RDX: 04000000000002ca RSI: 0000000020003bc0 RDI: 0000000000000004 [ 277.851270][T10330] RBP: 00007f40267af090 R08: 0000000000000000 R09: 0000000000000000 [ 277.859253][T10330] R10: 0000000004040014 R11: 0000000000000246 R12: 0000000000000002 [ 277.867232][T10330] R13: 0000000000000001 R14: 00007f4025b36130 R15: 00007ffd3bf7afb8 [ 277.875236][T10330] [ 277.919005][T10332] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1752'. [ 278.212267][T10344] tipc: Enabling of bearer rejected, already enabled [ 278.242976][T10344] FAULT_INJECTION: forcing a failure. [ 278.242976][T10344] name failslab, interval 1, probability 0, space 0, times 0 [ 278.288204][T10344] CPU: 0 UID: 0 PID: 10344 Comm: syz.4.1758 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 278.299048][T10344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 278.309151][T10344] Call Trace: [ 278.312471][T10344] [ 278.315439][T10344] dump_stack_lvl+0x241/0x360 [ 278.320269][T10344] ? __pfx_dump_stack_lvl+0x10/0x10 [ 278.325523][T10344] ? __pfx__printk+0x10/0x10 [ 278.330181][T10344] ? ref_tracker_alloc+0x332/0x490 [ 278.335352][T10344] should_fail_ex+0x3b0/0x4e0 [ 278.340088][T10344] ? skb_clone+0x20c/0x390 [ 278.344552][T10344] should_failslab+0xac/0x100 [ 278.349272][T10344] ? skb_clone+0x20c/0x390 [ 278.353713][T10344] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 278.359113][T10344] skb_clone+0x20c/0x390 [ 278.363381][T10344] __netlink_deliver_tap+0x3cc/0x7c0 [ 278.368688][T10344] ? netlink_deliver_tap+0x2e/0x1b0 [ 278.373906][T10344] netlink_deliver_tap+0x19d/0x1b0 [ 278.379030][T10344] netlink_sendskb+0x68/0x140 [ 278.383731][T10344] netlink_unicast+0x39d/0x990 [ 278.388523][T10344] ? __asan_memcpy+0x40/0x70 [ 278.393148][T10344] ? __pfx_netlink_unicast+0x10/0x10 [ 278.398465][T10344] netlink_rcv_skb+0x262/0x430 [ 278.403252][T10344] ? __pfx_genl_rcv_msg+0x10/0x10 [ 278.408294][T10344] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 278.413610][T10344] ? __netlink_deliver_tap+0x77e/0x7c0 [ 278.419096][T10344] genl_rcv+0x28/0x40 [ 278.423095][T10344] netlink_unicast+0x7f6/0x990 [ 278.427889][T10344] ? __pfx_netlink_unicast+0x10/0x10 [ 278.433193][T10344] ? __virt_addr_valid+0x183/0x530 [ 278.438318][T10344] ? __check_object_size+0x48e/0x900 [ 278.443624][T10344] netlink_sendmsg+0x8e4/0xcb0 [ 278.448413][T10344] ? __pfx_netlink_sendmsg+0x10/0x10 [ 278.453713][T10344] ? aa_sock_msg_perm+0x91/0x160 [ 278.458670][T10344] ? __pfx_netlink_sendmsg+0x10/0x10 [ 278.463967][T10344] __sock_sendmsg+0x221/0x270 [ 278.468666][T10344] ____sys_sendmsg+0x52a/0x7e0 [ 278.473453][T10344] ? __pfx_____sys_sendmsg+0x10/0x10 [ 278.478768][T10344] __sys_sendmsg+0x292/0x380 [ 278.483386][T10344] ? __pfx___sys_sendmsg+0x10/0x10 [ 278.488536][T10344] ? __pfx_vfs_write+0x10/0x10 [ 278.493345][T10344] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 278.499703][T10344] ? do_syscall_64+0x100/0x230 [ 278.504486][T10344] ? do_syscall_64+0xb6/0x230 [ 278.509178][T10344] do_syscall_64+0xf3/0x230 [ 278.513697][T10344] ? clear_bhb_loop+0x35/0x90 [ 278.518390][T10344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.524305][T10344] RIP: 0033:0x7fad7e17dff9 [ 278.528731][T10344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 278.548357][T10344] RSP: 002b:00007fad7ef7e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 278.556794][T10344] RAX: ffffffffffffffda RBX: 00007fad7e335f80 RCX: 00007fad7e17dff9 [ 278.564785][T10344] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 278.572774][T10344] RBP: 00007fad7ef7e090 R08: 0000000000000000 R09: 0000000000000000 [ 278.580755][T10344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 278.588748][T10344] R13: 0000000000000000 R14: 00007fad7e335f80 R15: 00007ffce0c89258 [ 278.596758][T10344] [ 278.610602][T10348] xt_nat: multiple ranges no longer supported [ 278.840115][T10353] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1763'. [ 279.181657][T10379] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1770'. [ 279.190689][T10379] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1770'. [ 279.223635][T10379] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1770'. [ 279.245862][T10379] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1770'. [ 279.329099][T10388] tipc: Started in network mode [ 279.348855][T10388] tipc: Node identity , cluster identity 7 [ 279.386429][T10388] tipc: Failed to obtain node identity [ 279.399201][T10388] tipc: Enabling of bearer rejected, failed to enable media [ 279.435605][T10388] FAULT_INJECTION: forcing a failure. [ 279.435605][T10388] name failslab, interval 1, probability 0, space 0, times 0 [ 279.436771][T10395] x_tables: duplicate underflow at hook 2 [ 279.492916][T10388] CPU: 1 UID: 0 PID: 10388 Comm: syz.2.1773 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 279.503765][T10388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 279.513845][T10388] Call Trace: [ 279.517226][T10388] [ 279.520168][T10388] dump_stack_lvl+0x241/0x360 [ 279.524868][T10388] ? __pfx_dump_stack_lvl+0x10/0x10 [ 279.530082][T10388] ? __pfx__printk+0x10/0x10 [ 279.534703][T10388] ? ref_tracker_alloc+0x332/0x490 [ 279.539833][T10388] should_fail_ex+0x3b0/0x4e0 [ 279.544539][T10388] ? skb_clone+0x20c/0x390 [ 279.548975][T10388] should_failslab+0xac/0x100 [ 279.553677][T10388] ? skb_clone+0x20c/0x390 [ 279.558130][T10388] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 279.563532][T10388] skb_clone+0x20c/0x390 [ 279.567883][T10388] __netlink_deliver_tap+0x3cc/0x7c0 [ 279.573195][T10388] ? netlink_deliver_tap+0x2e/0x1b0 [ 279.578409][T10388] netlink_deliver_tap+0x19d/0x1b0 [ 279.583536][T10388] netlink_sendskb+0x68/0x140 [ 279.588236][T10388] netlink_unicast+0x39d/0x990 [ 279.593020][T10388] ? __asan_memcpy+0x40/0x70 [ 279.597633][T10388] ? __pfx_netlink_unicast+0x10/0x10 [ 279.602951][T10388] netlink_rcv_skb+0x262/0x430 [ 279.607763][T10388] ? __pfx_genl_rcv_msg+0x10/0x10 [ 279.612835][T10388] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 279.618156][T10388] ? __netlink_deliver_tap+0x77e/0x7c0 [ 279.623642][T10388] genl_rcv+0x28/0x40 [ 279.627646][T10388] netlink_unicast+0x7f6/0x990 [ 279.632455][T10388] ? __pfx_netlink_unicast+0x10/0x10 [ 279.637781][T10388] ? __virt_addr_valid+0x183/0x530 [ 279.642912][T10388] ? __check_object_size+0x48e/0x900 [ 279.648243][T10388] netlink_sendmsg+0x8e4/0xcb0 [ 279.653052][T10388] ? __pfx_netlink_sendmsg+0x10/0x10 [ 279.658372][T10388] ? aa_sock_msg_perm+0x91/0x160 [ 279.663332][T10388] ? __pfx_netlink_sendmsg+0x10/0x10 [ 279.668647][T10388] __sock_sendmsg+0x221/0x270 [ 279.673350][T10388] ____sys_sendmsg+0x52a/0x7e0 [ 279.678139][T10388] ? __pfx_____sys_sendmsg+0x10/0x10 [ 279.683467][T10388] __sys_sendmsg+0x292/0x380 [ 279.688097][T10388] ? __pfx___sys_sendmsg+0x10/0x10 [ 279.693236][T10388] ? __pfx_vfs_write+0x10/0x10 [ 279.698045][T10388] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 279.704400][T10388] ? do_syscall_64+0x100/0x230 [ 279.709190][T10388] ? do_syscall_64+0xb6/0x230 [ 279.713889][T10388] do_syscall_64+0xf3/0x230 [ 279.718412][T10388] ? clear_bhb_loop+0x35/0x90 [ 279.723115][T10388] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.729554][T10388] RIP: 0033:0x7fd68e57dff9 [ 279.733986][T10388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 279.753609][T10388] RSP: 002b:00007fd68f332038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 279.762059][T10388] RAX: ffffffffffffffda RBX: 00007fd68e735f80 RCX: 00007fd68e57dff9 [ 279.770045][T10388] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 279.778029][T10388] RBP: 00007fd68f332090 R08: 0000000000000000 R09: 0000000000000000 [ 279.786014][T10388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 279.794007][T10388] R13: 0000000000000000 R14: 00007fd68e735f80 R15: 00007fff77844eb8 [ 279.802004][T10388] [ 280.034231][T10409] netlink: 'syz.2.1778': attribute type 1 has an invalid length. [ 280.042270][T10409] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1778'. [ 280.110709][T10411] xt_CT: You must specify a L4 protocol and not use inversions on it [ 280.323489][T10426] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 280.333504][T10426] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 280.342764][T10426] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 280.351683][T10426] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 280.377485][ T3005] net_ratelimit: 4 callbacks suppressed [ 280.377505][ T3005] Dead loop on virtual device ipvlan1, fix it urgently! [ 280.377752][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 280.470857][T10440] tipc: Started in network mode [ 280.477481][T10440] tipc: Node identity , cluster identity 4711 [ 280.494103][T10440] tipc: Failed to obtain node identity [ 280.504248][T10440] tipc: Enabling of bearer rejected, failed to enable media [ 280.517974][T10440] FAULT_INJECTION: forcing a failure. [ 280.517974][T10440] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 280.549050][T10440] CPU: 1 UID: 0 PID: 10440 Comm: syz.0.1789 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 280.559890][T10440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 280.569997][T10440] Call Trace: [ 280.573322][T10440] [ 280.576294][T10440] dump_stack_lvl+0x241/0x360 [ 280.581038][T10440] ? __pfx_dump_stack_lvl+0x10/0x10 [ 280.586295][T10440] ? __pfx__printk+0x10/0x10 [ 280.590953][T10440] ? snprintf+0xda/0x120 [ 280.595237][T10440] should_fail_ex+0x3b0/0x4e0 [ 280.599971][T10440] _copy_to_user+0x2f/0xb0 [ 280.604438][T10440] simple_read_from_buffer+0xca/0x150 [ 280.609865][T10440] proc_fail_nth_read+0x1e9/0x250 [ 280.614943][T10440] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 280.620550][T10440] ? rw_verify_area+0x55e/0x6f0 [ 280.625455][T10440] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 280.631057][T10440] vfs_read+0x201/0xbc0 [ 280.635264][T10440] ? __pfx_lock_release+0x10/0x10 [ 280.640349][T10440] ? __pfx_vfs_read+0x10/0x10 [ 280.645075][T10440] ? __fget_files+0x3f3/0x470 [ 280.649786][T10440] ? fdget_pos+0x24e/0x320 [ 280.654224][T10440] ksys_read+0x183/0x2b0 [ 280.658482][T10440] ? __pfx_ksys_read+0x10/0x10 [ 280.663259][T10440] ? do_syscall_64+0x100/0x230 [ 280.668042][T10440] ? do_syscall_64+0xb6/0x230 [ 280.672734][T10440] do_syscall_64+0xf3/0x230 [ 280.677249][T10440] ? clear_bhb_loop+0x35/0x90 [ 280.681941][T10440] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 280.687890][T10440] RIP: 0033:0x7f402597ca3c [ 280.692327][T10440] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 280.711967][T10440] RSP: 002b:00007f40267f1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 280.720404][T10440] RAX: ffffffffffffffda RBX: 00007f4025b35f80 RCX: 00007f402597ca3c [ 280.728393][T10440] RDX: 000000000000000f RSI: 00007f40267f10a0 RDI: 0000000000000004 [ 280.736385][T10440] RBP: 00007f40267f1090 R08: 0000000000000000 R09: 0000000000000000 [ 280.744386][T10440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 280.752372][T10440] R13: 0000000000000000 R14: 00007f4025b35f80 R15: 00007ffd3bf7afb8 [ 280.760371][T10440] [ 280.825513][T10448] netlink: 116 bytes leftover after parsing attributes in process `syz.2.1793'. [ 281.095493][T10459] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1797'. [ 281.119692][T10459] openvswitch: netlink: IP tunnel attribute has 3056 unknown bytes. [ 281.203166][T10464] xt_connbytes: Forcing CT accounting to be enabled [ 281.625776][T10482] FAULT_INJECTION: forcing a failure. [ 281.625776][T10482] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 281.666735][T10482] CPU: 1 UID: 0 PID: 10482 Comm: syz.4.1806 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 281.677581][T10482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 281.687658][T10482] Call Trace: [ 281.690950][T10482] [ 281.693891][T10482] dump_stack_lvl+0x241/0x360 [ 281.698598][T10482] ? __pfx_dump_stack_lvl+0x10/0x10 [ 281.703814][T10482] ? __pfx__printk+0x10/0x10 [ 281.708429][T10482] ? __pfx_lock_release+0x10/0x10 [ 281.713507][T10482] ? rcu_is_watching+0x15/0xb0 [ 281.718288][T10482] should_fail_ex+0x3b0/0x4e0 [ 281.722990][T10482] _copy_from_iter+0x1ed/0x1d60 [ 281.727871][T10482] ? alloc_pages_mpol_noprof+0x417/0x680 [ 281.733551][T10482] ? __pfx__copy_from_iter+0x10/0x10 [ 281.738910][T10482] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 281.744954][T10482] ? alloc_pages_noprof+0xef/0x170 [ 281.750085][T10482] ? page_copy_sane+0x46/0x260 [ 281.754888][T10482] copy_page_from_iter+0x7a/0x100 [ 281.759932][T10482] tun_get_user+0x2046/0x47e0 [ 281.764636][T10482] ? tun_get_user+0x871/0x47e0 [ 281.769425][T10482] ? __lock_acquire+0x1384/0x2050 [ 281.774479][T10482] ? __pfx_tun_get_user+0x10/0x10 [ 281.779534][T10482] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 281.785026][T10482] ? tun_get+0x1e/0x2f0 [ 281.789196][T10482] ? __pfx_lock_release+0x10/0x10 [ 281.794267][T10482] ? tun_get+0x1e/0x2f0 [ 281.798444][T10482] ? tun_get+0x27d/0x2f0 [ 281.802703][T10482] tun_chr_write_iter+0x10d/0x1f0 [ 281.807744][T10482] vfs_write+0xa6d/0xc90 [ 281.812007][T10482] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 281.817569][T10482] ? __pfx_vfs_write+0x10/0x10 [ 281.822361][T10482] ? fdget_pos+0x19a/0x320 [ 281.826821][T10482] ksys_write+0x183/0x2b0 [ 281.831179][T10482] ? __pfx_ksys_write+0x10/0x10 [ 281.836057][T10482] ? do_syscall_64+0x100/0x230 [ 281.841549][T10482] ? do_syscall_64+0xb6/0x230 [ 281.846248][T10482] do_syscall_64+0xf3/0x230 [ 281.850767][T10482] ? clear_bhb_loop+0x35/0x90 [ 281.855532][T10482] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 281.861492][T10482] RIP: 0033:0x7fad7e17cadf [ 281.865933][T10482] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 281.885562][T10482] RSP: 002b:00007fad7ef7e000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 281.894003][T10482] RAX: ffffffffffffffda RBX: 00007fad7e335f80 RCX: 00007fad7e17cadf [ 281.901985][T10482] RDX: 000000000000006e RSI: 0000000020000340 RDI: 00000000000000c8 [ 281.909968][T10482] RBP: 00007fad7ef7e090 R08: 0000000000000000 R09: 0000000000000000 [ 281.917993][T10482] R10: 000000000000006e R11: 0000000000000293 R12: 0000000000000001 [ 281.925979][T10482] R13: 0000000000000000 R14: 00007fad7e335f80 R15: 00007ffce0c89258 [ 281.933979][T10482] [ 282.151010][T10491] netlink: 'syz.2.1812': attribute type 10 has an invalid length. [ 283.583625][T10543] __nla_validate_parse: 2 callbacks suppressed [ 283.583649][T10543] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1828'. [ 283.619742][T10539] netlink: 'syz.1.1829': attribute type 11 has an invalid length. [ 283.638559][T10543] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1828'. [ 283.662587][T10543] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1828'. [ 283.712567][T10537] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1828'. [ 283.767792][T10552] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1828'. [ 283.936860][T10560] netlink: 'syz.4.1834': attribute type 1 has an invalid length. [ 283.948630][T10556] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 283.959029][T10560] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1834'. [ 283.971308][ T5244] Bluetooth: hci2: command 0x0406 tx timeout [ 283.974582][ T54] Bluetooth: hci1: command 0x0406 tx timeout [ 284.208676][T10574] netlink: zone id is out of range [ 284.222096][T10574] netlink: zone id is out of range [ 284.227294][T10574] netlink: zone id is out of range [ 284.235846][T10574] netlink: zone id is out of range [ 284.246427][T10574] netlink: zone id is out of range [ 284.277331][T10574] netlink: set zone limit has 4 unknown bytes [ 284.354066][ T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 284.371864][ C0] Dead loop on virtual device ipvlan1, fix it urgently! [ 284.498970][ T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 284.628448][ T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 284.670907][T10583] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1844'. [ 284.741010][ T5253] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 284.750777][ T5253] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 284.760441][ T12] bond0: (slave netdevsim0): Releasing backup interface [ 284.768231][ T5253] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 284.784075][ T5253] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 284.785844][ T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 284.803328][ T5253] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 284.805775][T10589] netlink: 'syz.3.1845': attribute type 4 has an invalid length. [ 284.812191][ T5253] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 284.831451][T10589] netlink: 65628 bytes leftover after parsing attributes in process `syz.3.1845'. [ 285.067177][T10596] netlink: 'syz.3.1848': attribute type 1 has an invalid length. [ 285.075581][T10596] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1848'. [ 285.141447][ T12] batadv2: left allmulticast mode [ 285.146642][ T12] batadv2: left promiscuous mode [ 285.152018][ T12] bridge0: port 3(batadv2) entered disabled state [ 285.162927][ T12] bridge_slave_1: left allmulticast mode [ 285.168640][ T12] bridge_slave_1: left promiscuous mode [ 285.184163][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 285.199647][ T12] bridge_slave_0: left allmulticast mode [ 285.205552][ T12] bridge_slave_0: left promiscuous mode [ 285.211425][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 285.612784][T10610] net_ratelimit: 1 callbacks suppressed [ 285.612806][T10610] netlink: zone id is out of range [ 285.627732][T10610] netlink: zone id is out of range [ 285.633055][T10610] netlink: zone id is out of range [ 285.638627][T10610] netlink: zone id is out of range [ 285.644577][T10610] netlink: zone id is out of range [ 285.657264][T10610] netlink: set zone limit has 4 unknown bytes [ 285.768440][T10614] netlink: 192 bytes leftover after parsing attributes in process `syz.0.1855'. [ 285.940093][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 285.960259][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 285.974238][ T12] bond0 (unregistering): Released all slaves [ 286.133358][T10621] FAULT_INJECTION: forcing a failure. [ 286.133358][T10621] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 286.162031][T10621] CPU: 0 UID: 0 PID: 10621 Comm: syz.1.1856 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 286.172883][T10621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 286.182980][T10621] Call Trace: [ 286.186301][T10621] [ 286.189272][T10621] dump_stack_lvl+0x241/0x360 [ 286.194014][T10621] ? __pfx_dump_stack_lvl+0x10/0x10 [ 286.199280][T10621] ? __pfx__printk+0x10/0x10 [ 286.203985][T10621] ? __pfx_lock_release+0x10/0x10 [ 286.207060][T10586] chnl_net:caif_netlink_parms(): no params data found [ 286.209052][T10621] should_fail_ex+0x3b0/0x4e0 [ 286.220633][T10621] _copy_to_iter+0x434/0x1d60 [ 286.225355][T10621] ? __virt_addr_valid+0x183/0x530 [ 286.230518][T10621] ? __pfx__copy_to_iter+0x10/0x10 [ 286.235712][T10621] ? __virt_addr_valid+0x183/0x530 [ 286.240887][T10621] ? __virt_addr_valid+0x183/0x530 [ 286.246082][T10621] ? __virt_addr_valid+0x45f/0x530 [ 286.251249][T10621] ? __phys_addr_symbol+0x2f/0x70 [ 286.256320][T10621] ? __check_object_size+0x48e/0x900 [ 286.261656][T10621] __skb_datagram_iter+0x107/0x900 [ 286.266822][T10621] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 286.272518][T10621] skb_copy_datagram_iter+0xd1/0x250 [ 286.277866][T10621] netlink_recvmsg+0x2d0/0x11d0 [ 286.282771][T10621] ? __pfx_netlink_recvmsg+0x10/0x10 [ 286.288116][T10621] ? iovec_from_user+0x87/0x240 [ 286.293000][T10621] ? iovec_from_user+0x87/0x240 [ 286.297882][T10621] ? iovec_from_user+0x87/0x240 [ 286.302787][T10621] ? __pfx_aa_sk_perm+0x10/0x10 [ 286.307680][T10621] ? iovec_from_user+0x1b0/0x240 [ 286.312657][T10621] ? aa_sock_msg_perm+0x91/0x160 [ 286.317622][T10621] ? bpf_lsm_socket_recvmsg+0x9/0x10 [ 286.322962][T10621] ? __pfx_netlink_recvmsg+0x10/0x10 [ 286.328324][T10621] sock_recvmsg+0x22f/0x280 [ 286.332890][T10621] ____sys_recvmsg+0x1c6/0x480 [ 286.337727][T10621] ? __pfx_____sys_recvmsg+0x10/0x10 [ 286.343099][T10621] do_recvmmsg+0x45e/0xad0 [ 286.347562][T10621] ? mark_lock+0x9a/0x360 [ 286.351943][T10621] ? __lock_acquire+0x1384/0x2050 [ 286.357033][T10621] ? __pfx_do_recvmmsg+0x10/0x10 [ 286.362055][T10621] ? __pfx___might_resched+0x10/0x10 [ 286.367411][T10621] ? __might_fault+0xaa/0x120 [ 286.372146][T10621] ? __pfx_lock_release+0x10/0x10 [ 286.377249][T10621] ? vfs_write+0x7bf/0xc90 [ 286.381703][T10621] ? kmem_cache_free+0x1a2/0x420 [ 286.386685][T10621] ? get_timespec64+0x19c/0x280 [ 286.391566][T10621] __x64_sys_recvmmsg+0x1b8/0x250 [ 286.396614][T10621] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 286.402213][T10621] ? do_syscall_64+0x100/0x230 [ 286.407027][T10621] ? do_syscall_64+0xb6/0x230 [ 286.411835][T10621] do_syscall_64+0xf3/0x230 [ 286.416376][T10621] ? clear_bhb_loop+0x35/0x90 [ 286.421077][T10621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.427036][T10621] RIP: 0033:0x7f448237dff9 [ 286.431489][T10621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 286.451150][T10621] RSP: 002b:00007f44830d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 286.459588][T10621] RAX: ffffffffffffffda RBX: 00007f4482535f80 RCX: 00007f448237dff9 [ 286.467596][T10621] RDX: 04000000000003b4 RSI: 00000000200037c0 RDI: 0000000000000003 [ 286.475617][T10621] RBP: 00007f44830d9090 R08: 0000000020003700 R09: 0000000000000000 [ 286.483619][T10621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 286.491625][T10621] R13: 0000000000000000 R14: 00007f4482535f80 R15: 00007ffcaa5c8598 [ 286.499647][T10621] [ 286.612878][T10633] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 286.859860][ T4626] Bluetooth: hci1: command tx timeout [ 286.875705][T10644] netlink: zone id is out of range [ 286.881592][T10644] netlink: zone id is out of range [ 286.886751][T10644] netlink: zone id is out of range [ 286.892576][T10644] netlink: zone id is out of range [ 286.921617][T10586] bridge0: port 1(bridge_slave_0) entered blocking state [ 286.943862][T10586] bridge0: port 1(bridge_slave_0) entered disabled state [ 286.981428][T10586] bridge_slave_0: entered allmulticast mode [ 287.009155][T10586] bridge_slave_0: entered promiscuous mode [ 287.049906][ T12] ------------[ cut here ]------------ [ 287.058919][ T12] Have pending ack frames! [ 287.085661][ T12] WARNING: CPU: 0 PID: 12 at net/mac80211/main.c:1701 ieee80211_free_ack_frame+0x4c/0x60 [ 287.096033][ T12] Modules linked in: SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 287.100188][ T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:1 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 287.111477][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 287.121854][ T12] Workqueue: netns cleanup_net [ 287.126708][ T12] RIP: 0010:ieee80211_free_ack_frame+0x4c/0x60 [ 287.133175][ T12] Code: 00 00 00 e8 f6 87 5d fe 31 c0 5b c3 cc cc cc cc e8 d9 05 68 f6 c6 05 59 e2 d9 04 01 90 48 c7 c7 20 14 2a 8d e8 e5 ff 28 f6 90 <0f> 0b 90 90 eb c9 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 90 [ 287.153082][ T12] RSP: 0018:ffffc900001177d0 EFLAGS: 00010246 [ 287.159213][ T12] RAX: 51317ddb8d1f0300 RBX: ffff8880279b0780 RCX: ffff88801bef5a00 [ 287.167652][ T12] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 287.176323][ T12] RBP: ffffc900001178d8 R08: ffffffff8155e402 R09: fffffbfff1cf9fd8 [ 287.184677][ T12] R10: dffffc0000000000 R11: fffffbfff1cf9fd8 R12: ffffc90000117840 [ 287.193108][ T12] R13: dffffc0000000000 R14: ffff88807bfc152c R15: ffff888148f38870 [ 287.201828][ T12] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 287.210849][ T12] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.217996][ T12] CR2: 00007f4025a11b0c CR3: 000000005d4ee000 CR4: 00000000003526f0 [ 287.226186][ T12] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.234355][ T12] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.242465][ T12] Call Trace: [ 287.245784][ T12] [ 287.248800][ T12] ? __warn+0x168/0x4e0 [ 287.253143][ T12] ? ieee80211_free_ack_frame+0x4c/0x60 [ 287.258755][ T12] ? report_bug+0x2b3/0x500 [ 287.263432][ T12] ? ieee80211_free_ack_frame+0x4c/0x60 [ 287.269043][ T12] ? handle_bug+0x60/0x90 [ 287.273490][ T12] ? exc_invalid_op+0x1a/0x50 [ 287.278231][ T12] ? asm_exc_invalid_op+0x1a/0x20 [ 287.283416][ T12] ? __warn_printk+0x292/0x360 [ 287.288252][ T12] ? ieee80211_free_ack_frame+0x4c/0x60 [ 287.294184][ T12] idr_for_each+0x1e2/0x2d0 [ 287.299045][ T12] ? __pfx_ieee80211_free_ack_frame+0x10/0x10 [ 287.305261][ T12] ? __pfx_idr_for_each+0x10/0x10 [ 287.310337][ T12] ? kobject_put+0x272/0x480 [ 287.315051][ T12] ? kfree+0x1a0/0x440 [ 287.319187][ T12] ? kobject_put+0x272/0x480 [ 287.324020][ T12] ieee80211_free_hw+0xd0/0x480 [ 287.329028][ T12] mac80211_hwsim_del_radio+0x32b/0x4c0 [ 287.334729][ T12] ? __pfx_mac80211_hwsim_del_radio+0x10/0x10 [ 287.340941][ T12] hwsim_exit_net+0x5c1/0x670 [ 287.345742][ T12] ? __pfx_hwsim_exit_net+0x10/0x10 [ 287.351010][ T12] ? __ip_vs_dev_cleanup_batch+0x239/0x260 [ 287.356979][ T12] cleanup_net+0x802/0xcc0 [ 287.361547][ T12] ? __pfx_cleanup_net+0x10/0x10 [ 287.366561][ T12] ? process_scheduled_works+0x976/0x1850 [ 287.371420][T10586] bridge0: port 2(bridge_slave_1) entered blocking state [ 287.372412][ T12] process_scheduled_works+0xa63/0x1850 [ 287.379384][T10586] bridge0: port 2(bridge_slave_1) entered disabled state [ 287.384964][ T12] ? __pfx_process_scheduled_works+0x10/0x10 [ 287.385015][ T12] ? assign_work+0x364/0x3d0 [ 287.385056][ T12] worker_thread+0x870/0xd30 [ 287.385108][ T12] ? __kthread_parkme+0x169/0x1d0 [ 287.413148][ T12] ? __pfx_worker_thread+0x10/0x10 [ 287.418354][ T12] kthread+0x2f0/0x390 [ 287.421514][T10586] bridge_slave_1: entered allmulticast mode [ 287.422520][ T12] ? __pfx_worker_thread+0x10/0x10 [ 287.429517][T10586] bridge_slave_1: entered promiscuous mode [ 287.433476][ T12] ? __pfx_kthread+0x10/0x10 [ 287.433508][ T12] ret_from_fork+0x4b/0x80 [ 287.433542][ T12] ? __pfx_kthread+0x10/0x10 [ 287.433569][ T12] ret_from_fork_asm+0x1a/0x30 [ 287.433621][ T12] [ 287.433647][ T12] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 287.433662][ T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:1 Not tainted 6.12.0-rc2-syzkaller-00216-g0b84db5d8f25 #0 [ 287.433689][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 287.433706][ T12] Workqueue: netns cleanup_net [ 287.433747][ T12] Call Trace: [ 287.433757][ T12] [ 287.433769][ T12] dump_stack_lvl+0x241/0x360 [ 287.433800][ T12] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.433827][ T12] ? __pfx__printk+0x10/0x10 [ 287.433862][ T12] ? _printk+0xd5/0x120 [ 287.433899][ T12] ? __init_begin+0x41000/0x41000 [ 287.433930][ T12] ? vscnprintf+0x5d/0x90 [ 287.433962][ T12] panic+0x349/0x880 [ 287.434000][ T12] ? __warn+0x177/0x4e0 [ 287.434028][ T12] ? __pfx_panic+0x10/0x10 [ 287.434060][ T12] ? show_trace_log_lvl+0x3b2/0x410 [ 287.434100][ T12] ? ret_from_fork_asm+0x1a/0x30 [ 287.434141][ T12] __warn+0x34b/0x4e0 [ 287.434166][ T12] ? ieee80211_free_ack_frame+0x4c/0x60 [ 287.434203][ T12] report_bug+0x2b3/0x500 [ 287.434237][ T12] ? ieee80211_free_ack_frame+0x4c/0x60 [ 287.434275][ T12] handle_bug+0x60/0x90 [ 287.434301][ T12] exc_invalid_op+0x1a/0x50 [ 287.434328][ T12] asm_exc_invalid_op+0x1a/0x20 [ 287.434363][ T12] RIP: 0010:ieee80211_free_ack_frame+0x4c/0x60 [ 287.434397][ T12] Code: 00 00 00 e8 f6 87 5d fe 31 c0 5b c3 cc cc cc cc e8 d9 05 68 f6 c6 05 59 e2 d9 04 01 90 48 c7 c7 20 14 2a 8d e8 e5 ff 28 f6 90 <0f> 0b 90 90 eb c9 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 90 [ 287.434418][ T12] RSP: 0018:ffffc900001177d0 EFLAGS: 00010246 [ 287.434449][ T12] RAX: 51317ddb8d1f0300 RBX: ffff8880279b0780 RCX: ffff88801bef5a00 [ 287.434469][ T12] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 287.434492][ T12] RBP: ffffc900001178d8 R08: ffffffff8155e402 R09: fffffbfff1cf9fd8 [ 287.434511][ T12] R10: dffffc0000000000 R11: fffffbfff1cf9fd8 R12: ffffc90000117840 [ 287.434531][ T12] R13: dffffc0000000000 R14: ffff88807bfc152c R15: ffff888148f38870 [ 287.434560][ T12] ? __warn_printk+0x292/0x360 [ 287.434595][ T12] idr_for_each+0x1e2/0x2d0 [ 287.434633][ T12] ? __pfx_ieee80211_free_ack_frame+0x10/0x10 [ 287.434668][ T12] ? __pfx_idr_for_each+0x10/0x10 [ 287.434700][ T12] ? kobject_put+0x272/0x480 [ 287.434727][ T12] ? kfree+0x1a0/0x440 [ 287.434757][ T12] ? kobject_put+0x272/0x480 [ 287.434790][ T12] ieee80211_free_hw+0xd0/0x480 [ 287.434825][ T12] mac80211_hwsim_del_radio+0x32b/0x4c0 [ 287.434860][ T12] ? __pfx_mac80211_hwsim_del_radio+0x10/0x10 [ 287.434900][ T12] hwsim_exit_net+0x5c1/0x670 [ 287.434938][ T12] ? __pfx_hwsim_exit_net+0x10/0x10 [ 287.434978][ T12] ? __ip_vs_dev_cleanup_batch+0x239/0x260 [ 287.435014][ T12] cleanup_net+0x802/0xcc0 [ 287.435056][ T12] ? __pfx_cleanup_net+0x10/0x10 [ 287.435104][ T12] ? process_scheduled_works+0x976/0x1850 [ 287.435139][ T12] process_scheduled_works+0xa63/0x1850 [ 287.435207][ T12] ? __pfx_process_scheduled_works+0x10/0x10 [ 287.435252][ T12] ? assign_work+0x364/0x3d0 [ 287.435291][ T12] worker_thread+0x870/0xd30 [ 287.435342][ T12] ? __kthread_parkme+0x169/0x1d0 [ 287.435382][ T12] ? __pfx_worker_thread+0x10/0x10 [ 287.435416][ T12] kthread+0x2f0/0x390 [ 287.435446][ T12] ? __pfx_worker_thread+0x10/0x10 [ 287.435480][ T12] ? __pfx_kthread+0x10/0x10 [ 287.435506][ T12] ret_from_fork+0x4b/0x80 [ 287.435540][ T12] ? __pfx_kthread+0x10/0x10 [ 287.435566][ T12] ret_from_fork_asm+0x1a/0x30 [ 287.435617][ T12] [ 287.439805][ T12] Kernel Offset: disabled