last executing test programs:

4.442896959s ago: executing program 1 (id=2706):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000020000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372"], 0xfc}}, 0x0)

4.203202634s ago: executing program 1 (id=2709):
r0 = socket$alg(0x26, 0x5, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a54000000060a0b0400000000000000000200000028000480240001800a00010071756575650000001400028006000140000000000600034016020000090001"], 0x7c}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8947, &(0x7f0000000140)={'bond0\x00'})
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000180)={0x0, 0x1000, "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"}, &(0x7f0000000080)=0x1008)
bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes128\x00'}, 0x58)
r3 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)

3.787751895s ago: executing program 2 (id=2713):
connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x1, @rand_addr=0x64010101}, 0x10)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRESHEX=r0], 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYRES32=0x0, @ANYBLOB='\x00'/25], 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000280)={0x84, @remote, 0x15, 0x3, 'ovf\x00', 0x0, 0x4, 0x6a}, 0x2c)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r5, 0x0, 0x487, &(0x7f0000000000)={{0x84, @broadcast, 0x4e24, 0x3, 'lc\x00', 0xb, 0x323b, 0x3a}, {@rand_addr=0x64010102, 0x4e23, 0x0, 0xc3, 0x12d5c, 0x12d5c}}, 0x44)
setsockopt$IP_VS_SO_SET_FLUSH(r4, 0x0, 0x485, 0x0, 0x0)
sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000002c0)=ANY=[@ANYBLOB="8858b1ce", @ANYRES16, @ANYBLOB="100000000000000000000900000005000700020000000500070004000000050007001d000000"], 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x200048c0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000140)={{0x1, <r6=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000100)='%pi6   \x00'}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="267f26bc4a790000010000ca6f006d6508000099551292f518ada600000000", @ANYRES32=r6, @ANYBLOB="a6ffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="010000000100"/28], 0x50)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="4400000010003b1500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100626f6e64000000000c00028005000d000100000008000a00", @ANYRES32, @ANYBLOB="153ddac1909149d0e31990bbccf6fffee253b8f2a95e6289603f4c1064b9a3eefa03669c3cf27342577e29d55aa089d0114d6555a00b8beaaa30e30a2be37687bd4157d786d4bd823c88cf7feb47"], 0x44}}, 0x0)

2.947185675s ago: executing program 2 (id=2718):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2ed0300000000000000af99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14008c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000006da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399eb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4978ea8e4aa37014191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d9a0e06da200481cde8bf475bc3e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a00"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='rcu_utilization\x00', r2, 0x0, 0x2}, 0x18)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x8, 0x4, 0x4, 0x10002, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value=0x180}, 0x50)
sendmsg$NFC_CMD_GET_TARGET(r1, 0x0, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r1)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000001740)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={0x0, 0x0, 0x12a, 0x0, 0x0, 0x1000, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="5eaa0000000000006110a0000000000095000000000000007c077b3dcc180e9963de15a9588ba835676402d8b3ffc1762711cbab0fd4e1a94ff87154fb357470782fdd4705455e9ca92d7e8a8e2d1cf622695f3135773409395d2cea4d9815d46443c72faee8bea7ee56ba77dba365c7a1807b36f5800e487b5736d7b83180cf9334aa5d050f2f2eed1e1c2b527fbd4048955c46849362047b821188e239795586d74a054011578868a856b816dc5639896dfc723136b2ddac45ba7ba8ac69f680d7ff37"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
socket$nl_route(0x10, 0x3, 0x0)

2.649360372s ago: executing program 3 (id=2720):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000740)=ANY=[@ANYBLOB="6c00000002060104db406e3e0004000200000000100003006269746d61703a706f72740005000400000000000900020073797a32000000000500200000006c00050001000600000024000780080008400000137906000440fffff000060005400000000008000640"], 0x6c}}, 0x0)

2.439183284s ago: executing program 3 (id=2722):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef4100000c3e3bd6efb010511000b000a000d000000ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)

2.217484451s ago: executing program 0 (id=2724):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_RANGE_OP={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RANGE_TO_DATA={0xc, 0x4, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, 'i'}]}, @NFTA_RANGE_FROM_DATA={0xc, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, 'C'}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}}, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b000000000000000000000000fc010000000000c3c5f68531631412189a594baef2bd7eb7fcfcecfc559f98db9910ae53f7f5f37b5a4ec1ef9eb1686ced", @ANYRES32, @ANYBLOB='\t\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r3, 0x34}, 0x10)
close(r1)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x17, &(0x7f00000001c0)=0x201, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @empty}], 0x1c)
sendto$inet6(r4, &(0x7f0000000500)="a4", 0x1, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @private1, 0xffffffff}, 0x1c)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010007000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000048000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f0c00098008000140000100075c0000000e0a01020000000000000000010000000900020073797a32000000000900010073797a30"], 0xec}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$sock_timeval(r6, 0x1, 0x15, &(0x7f0000000000)={0x0, 0x2710}, 0x10)
sendmmsg$inet6(r6, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback={0xfec0ffff00000000}}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000180)='i', 0x20086}], 0x1}}], 0x1, 0x0)
sendmmsg$inet6(r6, &(0x7f00000071c0)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000080)='H', 0x1}], 0x1}}], 0x1, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="380000004800011d00000000000000000afe60ff", @ANYRES32=r7, @ANYBLOB="0000000014000100000000000000000000000000ffff0001080002"], 0x38}}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(r4, &(0x7f0000000740)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x58, 0x0, 0x10, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0xffff, 0x36}}}}, [@NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x6}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x75f3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x17}], @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_CONTROL_PORT={0x4}]}, 0x58}, 0x1, 0x0, 0x0, 0x4040080}, 0x4810)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSETELEM={0x20, 0xb, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x68}}, 0x0)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r4, 0x84, 0xc, 0x0, 0x0)

2.146924284s ago: executing program 3 (id=2726):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1fe8ffff0000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="21003300d08000000802110000000802", @ANYRES8=r0], 0x40}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000000), r0)

2.00248898s ago: executing program 3 (id=2727):
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000400)='syzkaller\x00', 0x1ff, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r0}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x1, 0x7, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000a00000500150003000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000000000), &(0x7f0000000080)=@udp, 0x2}, 0x20)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$tipc(0xffffffffffffffff, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000f00008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d61"], 0x5c}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, 0x0, 0x0)

1.691339187s ago: executing program 4 (id=2729):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[], 0x39)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x400000000000004)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000001c0)=0x100000, 0x4)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80fae0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6811778581acb6c0101ff0000000309", 0x48}], 0x1)

1.676334579s ago: executing program 0 (id=2730):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r2, &(0x7f0000000300)={{0x6, @rose, 0xffffffff}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @null]}, 0x48)
accept4(r1, 0x0, 0x0, 0x80000)
r3 = accept4$netrom(r1, 0x0, 0x0, 0x80000)
writev(r3, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0xc3ffffff, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000000000)={0x10, 0x0, 0x2ddfdbff, 0x2ffffffff}, 0xc)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000140)=ANY=[], 0x20)
r5 = socket$alg(0x26, 0x5, 0x0)
shutdown(r5, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2fefff7ff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r6, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000001b00)={0x14, 0x2c, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)

1.623907372s ago: executing program 2 (id=2731):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r1, &(0x7f0000003280)={0x0, 0x0, 0x0}, 0x0)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000680)={0x0, "137bf80938fcee74e1476ce62d32a702"})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r3=>0x0})
r4 = gettid()
r5 = gettid()
sendmsg$nl_generic(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x140, 0x10, 0x20, 0x70bd29, 0x25dfdbfc, {0xf}, [@typed={0x4, 0x119}, @nested={0x47, 0x5, 0x0, 0x1, [@nested={0x4, 0x5a}, @generic="67579d8ca3e55ab500059d744590c915c25b6ff8221cbdd68b9eac26b4beaa4d18f13ab2c24ca41c23fca2f0f32de663f1b977928a95d8a3383a079fa2b89c"]}, @typed={0x8, 0x6d, 0x0, 0x0, @u32=0x2}, @nested={0xd6, 0x40, 0x0, 0x1, [@generic="eabcefb12a1b3ed69e9727f2537edf71613b40d036304a8b7f7ebe02c1a01033f997f284d80d1be5d8f09994edd2f334fa008d", @typed={0x8, 0x1a, 0x0, 0x0, @uid=0xee00}, @typed={0x8, 0x32, 0x0, 0x0, @pid=r4}, @generic="299c8005b2a0057e8dd60722c38d8bac9efc1b3b70815e5a1877fe80f7d0056d554e610cb6936653bfbb251016779ca9d343cbd8a7bec2200c6b1788d33a56b5360744122bebbbc2db424a5731646c736ebac54e399c441d49bfe995297637c6e571dc0917e116cf45bafb", @typed={0x8, 0x23, 0x0, 0x0, @pid=r5}, @typed={0x14, 0x83, 0x0, 0x0, @ipv6=@mcast2}, @nested={0x4, 0x140}, @nested={0x4, 0x53}]}]}, 0x140}, 0x1, 0x0, 0x0, 0x4000000}, 0x240000c0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010026bd7000000000003b00000008000300", @ANYRES32=r3, @ANYBLOB="22003300c0b001000802110000115a"], 0x40}, 0x1, 0x0, 0x0, 0x90}, 0x0)
close(0x4)
close(0x3)

1.491147144s ago: executing program 1 (id=2732):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000800)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x60000000, 0x4f, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x6, &(0x7f0000000380)='\a', 0x1)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000200)=0x630a, 0x4)
setsockopt$inet6_int(r1, 0x29, 0x31, &(0x7f0000000000)=0xb2, 0x4)
sendmmsg$inet6(r1, &(0x7f00000002c0)=[{{&(0x7f0000000400)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c, 0x0}}], 0x1, 0x0)
recvmmsg(r1, &(0x7f0000000800), 0x62, 0x12141, 0x0)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x3c, r2, 0x1, 0x70bd29, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_RX_USECS={0x8, 0x2, 0x800000}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0xaff}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc809}, 0x40000)

1.480029969s ago: executing program 2 (id=2733):
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000000)={'team0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000040)={0x11, 0x5, r2, 0x1, 0xfe, 0x6, @local}, 0x69)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008188040f80ec59acbc0413200048100000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

1.365947141s ago: executing program 1 (id=2734):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x80, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000100), &(0x7f0000000140)=0x4)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r0, &(0x7f0000000180), 0x0}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000010004"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000002506317fe6b0c6abcd5860ad3ce759d9f6e941e4f37f6f4b5afabb5702f124cc0ffd2f30aafe0899d7db102650229628e98fcb19871cb7f87723c83f6c857531812f185dc832ac879632e3c58f126753697074a391f11beb58b54327602d2eda0b00acc60ab206d634135a5630164f16f502265ecc5716f46974228e34c01853104beec1d4ceace50ebe4a14d779e4d3e6769a593968602a03ad340ca88e17ac517e6ce4065f1c8574fa"], &(0x7f0000001f80)=""/226, 0x26, 0x81, 0x2, 0x0, 0x0, @void, @value}, 0x20)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_PEER_GET(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0d030000000000000000130000001c000980080002"], 0x30}}, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000040)={@local, @dev, @val={@void, {0x8100, 0x6, 0x1, 0x1}}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010101}, @info_request={0x3}}}}}, 0x0)

1.278253469s ago: executing program 3 (id=2735):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000300000000000000000a20000000000a0300000000000000f400010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000240000000001800038014000100626f6e64300000000000000000000000080001400000000048000000180a01010000000000000000010000000900020073797a30000000000900010073797a30"], 0xe8}}, 0x0)

1.20626578s ago: executing program 0 (id=2736):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r0)
recvmmsg(r0, &(0x7f0000000780)=[{{0x0, 0x0, 0x0}, 0x101}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)=""/154, 0x9a}, {&(0x7f0000001c40)=""/4096, 0x1000}], 0x2, 0x0, 0x700}, 0x7}, {{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000002c40)=""/4096, 0x1000}, {&(0x7f0000000540)=""/163, 0xa3}, {&(0x7f0000000640)=""/216, 0xd8}, {&(0x7f0000005c80)=""/4109, 0x100d}, {&(0x7f0000000240)=""/95, 0x5f}, {&(0x7f00000018c0)=""/147, 0x93}], 0x6}, 0x80000000}, {{0x0, 0x0, 0x0}, 0x4000007}], 0x5, 0x40008062, 0x0)

1.148491537s ago: executing program 4 (id=2737):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1fe8ffff0000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="21003300d08000000802110000000802", @ANYRES8=r0], 0x40}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000000), r0)

1.078593637s ago: executing program 1 (id=2738):
ioctl$sock_inet6_tcp_SIOCATMARK(0xffffffffffffffff, 0x8905, &(0x7f0000000000))
r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8)
ioctl$PPPIOCGL2TPSTATS(r0, 0x80487436, &(0x7f0000000080)="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")
shutdown(r0, 0x1)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000180)=0x60, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f00000001c0), r1)
r3 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_GET_MR(r3, 0x114, 0x2, &(0x7f0000000340)={{&(0x7f0000000200)=""/213, 0xd5}, &(0x7f0000000300), 0x2}, 0x20)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x40, &(0x7f0000000380)=0xa96, 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f00000003c0)=@ax25={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x5}, [@bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default]}, 0x80, &(0x7f0000000440)=[{0xfffffffffffffffe}], 0x1, &(0x7f0000000480)=[{0x70, 0x10e, 0x2, "811b2bf241a8b73fd6c58021f760d270ed3bb02d636fcb372356874dd2e3ad89b13b90a8ae6c79397786746f1ab7066360adc6fe460dcc2919fe5cf9e31af730a805bf6afece1975d36529c5a6f69b9db82d339dd1e696530c9d"}, {0x20, 0x112, 0x1, "3ea1292f7361e263dc0b73"}, {0xd0, 0x110, 0x500, "25ab1611582b9190351efbc7e752c4b49e5910627ddcb06ef0f9c239edc23696e3a7a37aea6913644cc38beb6ab848fa3446e53b357c1b1817d8451e9e483d2da864330338769602703b5047e3ca43f961e1cddeeebd5497a990c5d4d004ce75a929203f966aba00b28c8470675b34e50a7913a85dcd274634c4bb562199a989eb1c1a5b100e141dac07fa731db05c0ea1fcbc99026f82dab3eee994c83653bf96da8637b9a24fa8718201044de656f44db531c0644a626cb5ea283d61"}, {0xa8, 0x103, 0x1ff, "907457312b7cf179ac5fbc4401772f99184f592cbe363b1733c400c11671b74c0e33d8caa4ff09e95d2cc21c0880f4033f564c1f7a907f37e5cc91814cfe4126b5535e1a2c15eb3ca4a81ae6f2ddfe4b731eabf2179d60afa90650e8d278d1bbab0bd999cac35dfb75532039d6e39859dc1ed5ae5ad2ce242a8fcafb7ad00226247d1a6f7e5c4521d58f47d22b4102f37ebf469a41962067"}, {0xb0, 0x1, 0x6, "8c2a8d878f678a00ac6162cf3b5095810fe26211f8d45698c9f77bff3a9c45cac04eccffc12b1c33dd6a84af81824213a9177cab80334e605e0f4cce087a2e29b4be7fce67933c563c811c0535c26cd82fed522b3c41edf0671dbe476d579428d5373f1a203323ad776283982214f8db19d374121fe6ba3e5f2c6a7141d08f30f13e5833770534eefdc69f1abcda6bfc212c4ddbcd0ab573589929a270b890c4"}, {0x98, 0x84, 0xa, "34817d7719890ece579bd8c2ebb248fc198c947e58406207a645a409150616a3a1425fe536c004a7b034fccb3c1befd6fb064e48103c36ab2f9de1e41a3896eebea1b4230f3c82f038e7e77363bb7620ef45a6985ef6347a770f611d2a73d616ab7c15b8d7230e342b0952f31310ae255a26bb4ec90917a8f63309d2b4e20f5345583a8d08edf630"}], 0x350}, 0x8804)
socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x50, 0x4, 0x6, 0x401, 0x0, 0x0, {0x9, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x20048056}, 0x8010)
r4 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
ioctl$F2FS_IOC_SEC_TRIM_FILE(r4, 0x4018f514, &(0x7f0000000980)={0x5, 0xcb63, 0x3})
getsockopt$IPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x43, &(0x7f00000009c0)={'NETMAP\x00'}, &(0x7f0000000a00)=0x1e)
ioctl$SIOCGSTAMPNS(r0, 0x8907, &(0x7f0000000a40))
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000c40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000c00)={&(0x7f0000000ac0)={0x130, 0x9, 0x6, 0x401, 0x0, 0x0, {0x0, 0x0, 0x1}, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x80000000}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x44, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e23}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0xb, 0x1a, 'NETMAP\x00'}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0xc8}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR={0x5, 0x3, 0x7}}]}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0x4}, @IPSET_ATTR_NAMEREF={0x9, 0x13, 'syz2\x00'}, @IPSET_ATTR_IFACE={0x14, 0x17, 'ip6erspan0\x00'}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_ADT={0x74, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0x18, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @dev={0xfe, 0x80, '\x00', 0x27}}}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0xea}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2a}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x7fffffff}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAMEREF={0x9, 0x13, 'syz0\x00'}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x401}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x9}]}]}, 0x130}, 0x1, 0x0, 0x0, 0x84}, 0x8000)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000c80)='./cgroup.net/syz0\x00', 0x200002, 0x0)
setsockopt(r3, 0x4, 0x80, &(0x7f0000000cc0)="fe99c64c2426d00e3aad9fcfc4816a4ca080dccfb884177f43c68364919278e55256425ddf19a64abc39a5c6d58483d8f56c3e47b3a6eefa4a49edc39e25dfc19ed7f28235a2d80499c9e98a771b4256fa6cbade00626dbbe5b7996895b36ef042c1181c23a967304bc1e6f2e459d5962773ce93a9ebe37b017705445973e1017e37114d55c529ce3df1ea9cc71dbcf877", 0x91)
sendmmsg$alg(r4, &(0x7f0000001a40)=[{0x0, 0x0, &(0x7f0000001180)=[{&(0x7f0000000d80)="e4b496836e161080e58fa74f6f993eb36c352b7e44732a64d29d9df5f0d8ebdb8912137ae7fde663c9a0275c6540817f5bd7d3abb93a04d02793c944aa362805db88bb6fed899f3c02d30abacece0920797d184deb6de21e806887df6c02f8e4a24c4fd4d8faaa942e25cf25562f91f32be04bdb8dd2764ad1854f8c4ae2af410a8964b162f5b0acb65b5175c671ba1ffe4689a61b84e7e29165", 0x9a}, {&(0x7f0000000e40)="93d79a8080405c51332c5ed7e3158144b5744a2dd66f01c74b0b0f8cfabe8b19f0412a428b44674f42dd986ac98e88700350de522d0ae753f6b652ac12bfe4373f8e0e407ab747d5d0848abc1b8379895d52082eeb1ca11cecf02645f51a7d2ae2bce88ac4a68947fbfa553946fa16", 0x6f}, {&(0x7f0000000ec0)="15174e672830fa35580f1e0c45af542190", 0x11}, {&(0x7f0000000f00)="71c3d481ff0dad5d51c9e67c09f5d14c2182d0cf6f6316242adca1067885572f2c56261d8c6a7ed36e85617b2283b2a64f7ca9f5ff12f22047c405f60c8a63b300e5b90fd7844de4effc8fa3e136e153f361652b8538d9b6ddec26cb9188316164c29dd2b8c000b682a8c14f3827b427d984f1dc6eb881132b9e297863d34d86698cae51a77667cf049d3f554aaf3a0ddabb72a9ff7768e1ae4790d99a1b3b101ca097108d79d99b3f68e8a8c642c2cf0bebb4d37011501be5cbcde269849dea438c1acb3bd684082c227ff234fd3bc50135", 0xd2}, {&(0x7f0000001000)="697eb95b6c0b92f4e03284e58aa6630b699bef863708e21e5546aa5d22af91aec42989bc2eae4abb7c4899290e22de8e2ea5467f1442fd0d74df8f4976072ef5e00e2c9462173b4133c40e3d0b1f98ed2b5b8e10d64a84f5159b91bb2e8c392bdd10ea0ae006fb5fd7193514668d29da8eba4290e103b96342b6e2f8740f1de2752243d5c7e86a2cf44a5c3bf047c9f52660351b1e6ea626685bdc1b9ec66efa4c8a4561b8d1c72bc1", 0xa9}, {&(0x7f00000010c0)="62232dde41c23ce2f9a84af2e0ec9b71d76eccd2", 0x14}, {&(0x7f0000001100)="3c069624f796fe0fe5d46507d825478e37ded983057b66179def17e1e212c865e6221829b24fa67331009b6089cb63c6e25786ece1b00d4305c874fc5da1935777bffa1973b5", 0x46}], 0x7, &(0x7f0000001200)=[@iv={0x110, 0x117, 0x2, 0xf6, "468c7efffd10e056c0ca50344c3196b5ef0628270877793225aa9aaefaa00047fb7853b1f9bf7e8c9ce9872fed1fc5748aa0ee8a7dbea2503d882b276519fb92ea106488b5f2b51f692c4f652b29fc46dde246d9b9f292330fbabc25d8b629e17272d7277c31f11b13ae3f42650f9be538f99b00f1e403931df11427a5cdf50e2a90d2730dbb43f260fe406bde0cc0b72c0c4b8a11bd24e62b7d98883241bc53d8791ff9cbc233f34bdd6733a0bd582340d0620a01e8efb4d45594ed802ae6465120f4ec43cca9785ad9eaf1714b00eb40b1db247b5ea96a0c36ddcada3ac2d0a2e2c94b0ea871505166767ff823dd0a190bdf8e650b"}, @iv={0xd8, 0x117, 0x2, 0xc0, "2f3677d0b41a1b73c57197f5b71544c8adc217528ade606eaf6e2d478dea7b71fcda6dd4e341232ec9a2688ff01f3f74e879a699ae7370584c93387cc7a2e8113ad3cbbc07eb014b0fa81aacfdb0d74d794d2d5cfd88a4fc69c9bff4c184a9009cb135f0d18c07af79d2cd11c1d5b18855651a488747d7a59cfb94552b7bac985b47685188ed2914de401a1433e11108fd815e9eadfbeaef39bc67d624f68425240d7e77fea4aee3889b5c615c421afcc60e53b6be7ae831e9642ad9d1be93cb"}, @iv={0x90, 0x117, 0x2, 0x7c, "992de732b2fb13f2ec04a252f68a378c618f47c8bc7364cab42c37d66da43525e2b815f611a0e7f742e904d0d36813f869a1a8bc1c2d272a04df6f9d11348a8ae21c51bb4bdc47c1870d55c2c9accaa74e3e80ed2b710bae9e8cdb0ddac6bda8ecb891b786b53da60b2011f0f7d713785cecc52336f72e888aa81ad2"}, @iv={0x70, 0x117, 0x2, 0x5c, "aba7350ffd3cbb12758f02b483981f7ed993310449a3de6720daa716238d8b116562bdf4cf317b69c7d0d417457450d0fd6686867c0ed8a1da448af4fa5b23035fba48ce434ff84ef553d4b818951f8b348817fd78ca0268bed8b784"}, @assoc={0x18, 0x117, 0x4, 0x8}], 0x300, 0x60080}, {0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f0000001500)="4481912961544ef48f51d4b8ebe60ae0a0ed5a0910e05bcbecd1420aa7798b35131f2c4dfb04d7f098bf440bb2dc5a579e72598fe67185f71e97d5ad101431a37041025d2bf9b467d02f4e6bf1453a26f480363c27f2ec38d3ba7a79682b483a40918caee748aa77c12a175d9a4ad13585d10d", 0x73}, {&(0x7f0000001580)="7a470435e6c4b82ef3eda3d26961dab904b58b1e27d4a1edb21fbc6806ff433d30fcf86b39059a54ce843f28081b49778160ec74b2ce964e8dae4c770e14755dd7efebded150a263ef411e637ea0a8", 0x4f}, {&(0x7f0000001600)}, {&(0x7f0000001640)="4fbea5e1a8aab545b04031cb63ca69e2d4c99d0d2db82790e331cabcf5bcc95269eb483c73194887721d15bb898ed298e76180e4003e3b4fc413b533de3544fd63", 0x41}], 0x4, &(0x7f0000001700)=[@iv={0x108, 0x117, 0x2, 0xf4, "fb63f6721624a518a73ad2336e52b7468a569d650bd677842d8973f901785e27fe6c670f38b901a0bdc569508a56428eac15f6bd967c7c44bbe22c8713d55153ca9db98c55f681ccf65dbfa804b50e26699a6600c3abcc9e1f8df50158306cf28d9fa1d34d4ccab8b54eeafbda19fe414471ea127cb11e72da1cea9be709e3b57250591da309865f873acd0b8e5bdbd9952d2a471ca0990aa0c3907c711f408b0550ddd184d722b5217c76e48c0d9b78e81ac313e9b2fcc6a58ff88e1c81f9a418bc46b4d166ac475f54c81a92a7cbe0ad7439cbd9e53658833e7f70d21d2af4e3a259c1cd707955e8d0427f7940bcbc26ef93f7"}, @assoc={0x18, 0x117, 0x4, 0x80}, @iv={0xf0, 0x117, 0x2, 0xd8, "d06fb6b88ce48a4a23aa95ce60120090b189cd9c3e3bfd0a1e013bab998c7c3d96073fd84bf03ac3ee0da4b9befb11fef1282a672a40c6bcd89ad4e1abe0e9c93c3de26e875048dadc2db9451ad3fa5757e27d2cf20881e5485684e144ca88a5a2682f7a7bc2ccb07c0ea9c70780376c4f993f88a478c3e60c0ec3672b4553798c57d02be3700a9a48f31feb311b3e574be5139d490d847339d4cb7880073183dc1215bd20177fef5b148308eed9b6b1b1cd39ec99874846013913bbc7481912dfa999476a3d5beee8e38b5ebdec7bbf536206f3754b6a5d"}, @iv={0x30, 0x117, 0x2, 0x1b, "01417b394e0fd1e0f0b16ac7d2516f5e1e934ef5114633102d1adb"}, @op={0x18}, @iv={0xe8, 0x117, 0x2, 0xcf, "2dc6b7cbd19c4c6ae7a7b07e6bff0e3b055c3b4f105f69e1a0dad264f9537342baaa46f73a0dce099ec77300d60548a7ba346426eb70a307e6f78d40768f01fa6e2a47799b477ce5ca558e718136618fe127058c02f624ba2f7d1ed99064bf2408754c5246749f082c27fdef905615b21c40eb2dbecce087984335aa971cc108f995944e05a798dc31c486c9d32cb7b59b9507386cc7e879ec86df04d64c7245f190ab1583cd2a9f03063f2f328a2084bc40a946ac7cbee4c24b8e7ba2790a470923a33e6ddac0e6d412feb688feb7"}], 0x340}], 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001d00)={'syztnl0\x00', &(0x7f0000001c80)={'syztnl0\x00', <r5=>0x0, 0x2f, 0x7, 0x2, 0x0, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1, 0x20, 0x1, 0x5, 0x7}})
bpf$PROG_LOAD(0x5, &(0x7f0000001e80)={0x1a, 0xd, &(0x7f0000001ac0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc7f5, 0x0, 0x0, 0x0, 0x1ff}, [@alu={0x7, 0x0, 0x5, 0x2, 0x3, 0xfffffffffffffffc}, @printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8}}, @generic={0x7, 0x0, 0x5, 0x3, 0x10001}]}, &(0x7f0000001b40)='GPL\x00', 0x5, 0xd4, &(0x7f0000001b80)=""/212, 0x41100, 0x28, '\x00', r5, @fallback=0x14, r0, 0x8, &(0x7f0000001d40)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0x10, 0x9, 0x9}, 0x10, 0xffffffffffffffff, r0, 0x7, &(0x7f0000001dc0)=[r0, r0, r0, r0], &(0x7f0000001e00)=[{0x0, 0x5, 0xb, 0x1}, {0x3, 0x4, 0xd, 0xa}, {0x4, 0x1, 0xc, 0x9}, {0x5, 0x3, 0x10, 0xc}, {0x0, 0x5, 0xe}, {0x2, 0x2, 0xb, 0x9}, {0x0, 0x5, 0x6, 0x9}], 0x10, 0x9, @void, @value}, 0x94)
r6 = socket$isdn(0x22, 0x3, 0x24)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000001f40)=r0, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000002000)={{r0, <r7=>0xffffffffffffffff}, &(0x7f0000001f80), &(0x7f0000001fc0)=r0}, 0x20)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000002100)={&(0x7f0000002040)={0x10, 0x0, 0x0, 0x11181004}, 0xc, &(0x7f00000020c0)={&(0x7f0000002080)={0x24, r2, 0x2, 0x70bd25, 0x25dfdbfc, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000)
close(r7)
socket$nl_netfilter(0x10, 0x3, 0xc)

1.078355877s ago: executing program 2 (id=2739):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x80000006, 0x0, 0x0, 0x8}]}, 0x10)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f00000006c0)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback={0x102000000000000}}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000300)="03", 0x1}], 0x1}}], 0x1, 0x34000001)

1.013287863s ago: executing program 3 (id=2740):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
mmap(&(0x7f000057a000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x183c1000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
unshare(0x62040200)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a03020000000000000000020000000900020073797a3000000000090001007379"], 0x80}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@bloom_filter={0x1e, 0x7f, 0xffffffc1, 0x0, 0x222e, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x80000000, 0x5, @void, @value, @void, @value}, 0x48)
r3 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
setsockopt$ax25_int(r3, 0x101, 0xc, &(0x7f0000000080)=0x10000, 0x4)
connect$ax25(r3, &(0x7f0000000100)={{0x3, @bcast, 0x4}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]}, 0x48)
syz_emit_ethernet(0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000208004500002800000000fd06907864010101ac1414aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5c04000290780000ec40b07d326aab87d723a92da5e7ec8150037795d285f08016237d4f8bad79be88391754f1eb267b69570853f4590b9bf7e9f0e4b2412889dbcc8e5cfc3626890791c2e445c15f5c1019ed0235654760d7a7fae18923c6719841b49267343380582add9971b74e24adb91c8a21112b77dc45a58667ba33a5633df971d7"], 0x0)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000280)={0x0, 0x2}, 0x8)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r4, &(0x7f00000032c0)={0x1f, @none}, 0x8)
connect$bt_sco(r4, &(0x7f0000003600), 0x8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
pipe(&(0x7f0000000180)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
write(r6, &(0x7f0000000000)="fc0000001d000724ab09254ec100070007ab08001b000000f0ffff002100057e0000000000000e000039000000039815fad151ba0101099cecb94b46fe0000000a00020025", 0xffffff0c)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
close(r7)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700)
splice(r5, 0x0, r7, 0x0, 0x4a0a, 0x0)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x2, &(0x7f0000000000)=[{0x2}, {0x6}]})

979.371327ms ago: executing program 0 (id=2741):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='rcu_utilization\x00', r2, 0x0, 0x2}, 0x18)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x8, 0x4, 0x4, 0x10002, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value=0x180}, 0x50)
sendmsg$NFC_CMD_GET_TARGET(r1, 0x0, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r1)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000001740)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={0x0, 0x0, 0x12a, 0x0, 0x0, 0x1000, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="5eaa0000000000006110a0000000000095000000000000007c077b3dcc180e9963de15a9588ba835676402d8b3ffc1762711cbab0fd4e1a94ff87154fb357470782fdd4705455e9ca92d7e8a8e2d1cf622695f3135773409395d2cea4d9815d46443c72faee8bea7ee56ba77dba365c7a1807b36f5800e487b5736d7b83180cf9334aa5d050f2f2eed1e1c2b527fbd4048955c46849362047b821188e239795586d74a054011578868a856b816dc5639896dfc723136b2ddac45ba7ba8ac69f680d7ff37"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
socket$nl_route(0x10, 0x3, 0x0)

967.643221ms ago: executing program 1 (id=2742):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000080)={'syztnl2\x00', &(0x7f0000000000)={'syztnl1\x00', <r1=>0x0, 0x0, 0x6, 0x1, 0xf, 0x1, @mcast2, @remote, 0xe00, 0x10, 0x0, 0x7}})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000100)={'syztnl0\x00', &(0x7f0000000300)={'syztnl2\x00', r1, 0x87, 0x7, 0x1, 0x0, {{0x1e, 0x4, 0x0, 0x2d, 0x78, 0x65, 0x0, 0x7, 0x4, 0x0, @remote, @empty, {[@generic={0x86, 0x11, "bca8ae9e900129ffca73a19ad31533"}, @timestamp_addr={0x44, 0xc, 0x34, 0x1, 0xa, [{@private=0xa010101, 0x7}]}, @rr={0x7, 0x3, 0xe6}, @generic={0x88, 0x11, "1bab822fa71bf4ca2f59431466a413"}, @timestamp_prespec={0x44, 0x14, 0x6b, 0x3, 0x2, [{@empty, 0x1f}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x2}]}, @cipso={0x86, 0x1e, 0x3, [{0x6, 0x6, "1243de29"}, {0x6, 0x12, "639586d56603f13357623bf21260f8d3"}]}]}}}}})
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-avx\x00'}, 0x58)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x0, 0x31, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$TIPC_DEST_DROPPABLE(r3, 0x10f, 0x81, &(0x7f00000003c0)=0x8, 0x4)
r4 = accept4(r2, 0x0, 0x0, 0x0)
recvmmsg$unix(r4, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x18)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
listen(r5, 0x100)
accept4(r5, 0x0, 0x0, 0x0)
shutdown(r5, 0x1)

967.234033ms ago: executing program 4 (id=2743):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000100)={0x40, r1, 0x1, 0x0, 0x4, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x6}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x8080}, 0x34000)

816.967828ms ago: executing program 4 (id=2744):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="00000000000000001e0000000d00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000e00"/28], 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001100)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=ANY=[@ANYRES64=r1], 0x20}}, 0x0)
r2 = accept(r1, &(0x7f0000000040)=@ax25={{0x3, @netrom}, [@remote, @default, @netrom, @bcast, @rose, @default, @rose, @null]}, &(0x7f0000000140)=0x80)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xchacha20-simd,anubis-generic,nhpoly1305-sse2)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r4 = accept4(r3, 0x0, 0x0, 0x0)
recvmmsg$unix(r4, &(0x7f0000000580)=[{{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000900)=""/57, 0x10b8c}], 0x1}}], 0x1, 0x2001, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000013a40)={0x0, 0x0, &(0x7f0000013a00)={&(0x7f00000158c0), 0x10b8c}}, 0x0)
r5 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@typedef={0x4, 0x0, 0x0, 0x7}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x10}, @union={0x0, 0x1, 0x0, 0x5, 0x1, 0x0, [{0x0, 0x2}]}]}, {0x0, [0x0, 0x0, 0x0, 0x2e]}}, 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
write(r5, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r5, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r2)

612.040524ms ago: executing program 4 (id=2745):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendto$inet6(r0, &(0x7f0000000300)="c4", 0x1, 0x2c01000000000000, &(0x7f00000004c0)={0xa, 0x4e23, 0x1, @dev={0xfe, 0x80, '\x00', 0xf}, 0x3}, 0x1c)

309.535125ms ago: executing program 4 (id=2746):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_RANGE_OP={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RANGE_TO_DATA={0xc, 0x4, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, 'i'}]}, @NFTA_RANGE_FROM_DATA={0xc, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, 'C'}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}}, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2385416ca719300"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b000000000000000000000000fc010000000000c3c5f68531631412189a594baef2bd7eb7fcfcecfc559f98db9910ae53f7f5f37b5a4ec1ef9eb1686ced", @ANYRES32, @ANYBLOB='\t\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r3, 0x34}, 0x10)
close(r1)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r4, 0x6, 0x17, &(0x7f00000001c0)=0x201, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @empty}], 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000500)="a4", 0x1, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @private1, 0xffffffff}, 0x1c)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010007000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000048000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f0c00098008000140000100075c0000000e0a01020000000000000000010000000900020073797a32000000000900010073797a30"], 0xec}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$sock_timeval(r6, 0x1, 0x15, &(0x7f0000000000)={0x0, 0x2710}, 0x10)
sendmmsg$inet6(r6, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback={0xfec0ffff00000000}}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000180)='i', 0x20086}], 0x1}}], 0x1, 0x0)
sendmmsg$inet6(r6, &(0x7f00000071c0)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000080)='H', 0x1}], 0x1}}], 0x1, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="380000004800011d00000000000000000afe60ff", @ANYRES32=r7, @ANYBLOB="0000000014000100000000000000000000000000ffff0001080002"], 0x38}}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x58, 0x0, 0x10, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0xffff, 0x36}}}}, [@NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x6}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x75f3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x17}], @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_CONTROL_PORT={0x4}]}, 0x58}, 0x1, 0x0, 0x0, 0x4040080}, 0x4810)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSETELEM={0x20, 0xb, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x68}}, 0x0)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, 0x0, 0x0)

111.255731ms ago: executing program 2 (id=2747):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x18)
r1 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r1, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r1, 0xfffffffd)
r2 = accept4(r1, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f0000001000), 0x581, 0x40000000, 0x0) (fail_nth: 11)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000002c0)={0x3, 0x1, 0x2, 0xff, 0xa4, 0x0, 0x1, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2, 0x20}, 0xe)

92.08149ms ago: executing program 0 (id=2748):
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x80, 0x0, @mcast1, 0x8}, 0x1c)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010004000000000000000000000a58000000060a0b042000000000000000020000002c000480280001800a0001006d617463680000001800028008000240000000010a0001006f776e657200000030000000000900020073797a320000000014004857caf6010000000000000000000000000a00000000000000"], 0x80}}, 0x4048010)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0xdd11, @empty}, 0x1c)
close(r0)

0s ago: executing program 0 (id=2749):
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000080)=ANY=[@ANYBLOB="400e0000", @ANYBLOB="cf0400000000", @ANYBLOB="0400130006001200000000000600b5"], 0x40}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$int_in(r2, 0x5452, &(0x7f0000000040)=0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0), r0)
sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000300)={0x98, r3, 0x8, 0x70bd2b, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x44, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x9}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xf5}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e20}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x3}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xffff0000}, @IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e20}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x9}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfe}]}, 0x98}, 0x1, 0x0, 0x0, 0x4000}, 0x4040080)
connect$llc(r2, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @broadcast}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000071104300000000009500"/32], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmmsg(r2, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="f16a0000008d454d82e17953"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r5}, &(0x7f0000000040), &(0x7f0000000140)=r4}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r5}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)=r4}, 0x20)
r6 = socket(0xa, 0x80000, 0x4)
getsockname$unix(r6, &(0x7f0000000200), &(0x7f0000000100)=0x6e)
bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000080)={r5, &(0x7f0000000040)}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000004700)={'team0\x00', <r7=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000040)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32=r7, @ANYBLOB="4800028044000100240001006d6f646500000000000000000000000000000000000000000000000000000000050003"], 0x64}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)

kernel console output (not intermixed with test programs):

0
[  310.687771][T10572]  ? sb_end_write+0xe9/0x1c0
[  310.687799][T10572]  ? vfs_write+0x7fa/0xd10
[  310.687821][T10572]  ? do_sys_openat2+0x17a/0x1d0
[  310.687858][T10572]  ? __pfx_do_sys_openat2+0x10/0x10
[  310.687902][T10572]  __x64_sys_recvmmsg+0x199/0x250
[  310.687931][T10572]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  310.687956][T10572]  ? do_syscall_64+0x100/0x230
[  310.687987][T10572]  ? do_syscall_64+0xb6/0x230
[  310.688016][T10572]  do_syscall_64+0xf3/0x230
[  310.688043][T10572]  ? clear_bhb_loop+0x35/0x90
[  310.688073][T10572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.688096][T10572] RIP: 0033:0x7f23ecb8d169
[  310.688113][T10572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.688128][T10572] RSP: 002b:00007f23eda94038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  310.688150][T10572] RAX: ffffffffffffffda RBX: 00007f23ecda5fa0 RCX: 00007f23ecb8d169
[  310.688163][T10572] RDX: 0000000000000a0d RSI: 00002000000066c0 RDI: 0000000000000005
[  310.688174][T10572] RBP: 00007f23eda94090 R08: 0000000000000000 R09: 0000000000000000
[  310.688186][T10572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  310.688198][T10572] R13: 0000000000000000 R14: 00007f23ecda5fa0 R15: 00007ffddea8e0e8
[  310.688228][T10572]  </TASK>
[  311.000164][ T5849] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  311.006950][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout
[  311.111765][T10592] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1336'.
[  311.344112][T10599] netlink: 368 bytes leftover after parsing attributes in process `syz.0.1339'.
[  311.353473][T10599] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1339'.
[  311.869276][T10608] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  311.900218][T10608] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  312.151258][T10614] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1344'.
[  312.369840][T10618] siw: device registration error -23
[  312.504705][T10620] lo speed is unknown, defaulting to 1000
[  312.541433][T10620] wg1 speed is unknown, defaulting to 1000
[  312.818791][T10628] lo speed is unknown, defaulting to 1000
[  312.930968][T10628] wg1 speed is unknown, defaulting to 1000
[  313.347683][T10645] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1353'.
[  314.409440][T10654] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1357'.
[  314.658648][T10661] openvswitch: netlink: Message has 4 unknown bytes.
[  314.686553][T10661] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  314.902663][T10665] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1360'.
[  315.045689][T10671] FAULT_INJECTION: forcing a failure.
[  315.045689][T10671] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.080161][T10671] CPU: 1 UID: 0 PID: 10671 Comm: syz.3.1363 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  315.080202][T10671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  315.080214][T10671] Call Trace:
[  315.080221][T10671]  <TASK>
[  315.080230][T10671]  dump_stack_lvl+0x241/0x360
[  315.080259][T10671]  ? __pfx_dump_stack_lvl+0x10/0x10
[  315.080279][T10671]  ? __pfx__printk+0x10/0x10
[  315.080301][T10671]  ? __pfx_lock_release+0x10/0x10
[  315.080338][T10671]  should_fail_ex+0x40a/0x550
[  315.080369][T10671]  _copy_from_user+0x2d/0xb0
[  315.080395][T10671]  vmemdup_user+0x149/0x1c0
[  315.080425][T10671]  map_get_next_key+0x1c4/0x5e0
[  315.080450][T10671]  ? __might_fault+0xc6/0x120
[  315.080475][T10671]  __sys_bpf+0x732/0x820
[  315.080504][T10671]  ? __pfx___sys_bpf+0x10/0x10
[  315.080543][T10671]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  315.080574][T10671]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  315.080603][T10671]  ? do_syscall_64+0x100/0x230
[  315.080637][T10671]  __x64_sys_bpf+0x7c/0x90
[  315.080662][T10671]  do_syscall_64+0xf3/0x230
[  315.080689][T10671]  ? clear_bhb_loop+0x35/0x90
[  315.080719][T10671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.080744][T10671] RIP: 0033:0x7f91ca38d169
[  315.080762][T10671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.080780][T10671] RSP: 002b:00007f91ca1f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  315.080802][T10671] RAX: ffffffffffffffda RBX: 00007f91ca5a5fa0 RCX: 00007f91ca38d169
[  315.080817][T10671] RDX: 0000000000000020 RSI: 0000200000001800 RDI: 0000000000000004
[  315.080829][T10671] RBP: 00007f91ca1f9090 R08: 0000000000000000 R09: 0000000000000000
[  315.080842][T10671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.080853][T10671] R13: 0000000000000000 R14: 00007f91ca5a5fa0 R15: 00007ffd66583a68
[  315.080884][T10671]  </TASK>
[  315.122512][T10673] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  315.280170][T10656] Bluetooth: hci3: Opcode 0x0401 failed: -4
[  315.601541][T10680] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1368'.
[  315.647415][T10684] lo speed is unknown, defaulting to 1000
[  315.654763][T10684] wg1 speed is unknown, defaulting to 1000
[  315.717910][T10687] netlink: 356 bytes leftover after parsing attributes in process `syz.0.1370'.
[  315.728872][T10687] netlink: 356 bytes leftover after parsing attributes in process `syz.0.1370'.
[  315.832215][T10692] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1371'.
[  316.582095][ T5149] Bluetooth: hci3: command 0x0406 tx timeout
[  316.715827][T10701] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1376'.
[  317.110248][T10717] wireguard0: entered promiscuous mode
[  317.115892][T10717] wireguard0: entered allmulticast mode
[  317.201395][T10717] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1380'.
[  317.277263][T10717] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1380'.
[  317.342136][T10727] wg1 speed is unknown, defaulting to 1000
[  317.855541][T10742] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1388'.
[  317.947123][T10739] syzkaller0: entered promiscuous mode
[  317.999774][T10739] syzkaller0: entered allmulticast mode
[  318.425563][T10755] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1390'.
[  320.295684][T10764] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1393'.
[  321.296137][T10777] netlink: 'syz.4.1395': attribute type 10 has an invalid length.
[  321.322534][T10778] FAULT_INJECTION: forcing a failure.
[  321.322534][T10778] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  321.336199][T10778] CPU: 0 UID: 0 PID: 10778 Comm: syz.3.1396 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  321.336227][T10778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  321.336240][T10778] Call Trace:
[  321.336247][T10778]  <TASK>
[  321.336255][T10778]  dump_stack_lvl+0x241/0x360
[  321.336284][T10778]  ? __pfx_dump_stack_lvl+0x10/0x10
[  321.336306][T10778]  ? __pfx__printk+0x10/0x10
[  321.336328][T10778]  ? __pfx_lock_release+0x10/0x10
[  321.336357][T10778]  ? rcu_is_watching+0x15/0xb0
[  321.336386][T10778]  should_fail_ex+0x40a/0x550
[  321.336420][T10778]  _copy_from_iter+0x1df/0x1c40
[  321.336450][T10778]  ? __pfx_lock_release+0x10/0x10
[  321.336482][T10778]  ? alloc_pages_mpol+0x4bd/0x660
[  321.336507][T10778]  ? __pfx__copy_from_iter+0x10/0x10
[  321.336535][T10778]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  321.336557][T10778]  ? aa_file_perm+0x137/0xf50
[  321.336583][T10778]  ? page_copy_sane+0x46/0x260
[  321.336608][T10778]  copy_page_from_iter+0x7a/0x100
[  321.336634][T10778]  pipe_write+0x7d7/0x1950
[  321.336688][T10778]  ? __pfx_pipe_write+0x10/0x10
[  321.336710][T10778]  ? common_file_perm+0x1a6/0x210
[  321.336740][T10778]  ? bpf_lsm_file_permission+0x9/0x10
[  321.336776][T10778]  vfs_write+0xacf/0xd10
[  321.336800][T10778]  ? __pfx_pipe_write+0x10/0x10
[  321.336825][T10778]  ? __pfx_vfs_write+0x10/0x10
[  321.336841][T10778]  ? do_sys_openat2+0x17a/0x1d0
[  321.336881][T10778]  ? __fget_files+0x2a/0x410
[  321.336910][T10778]  ? __fget_files+0x2a/0x410
[  321.336946][T10778]  ksys_write+0x18f/0x2b0
[  321.336968][T10778]  ? __pfx_ksys_write+0x10/0x10
[  321.336990][T10778]  ? do_syscall_64+0x100/0x230
[  321.337020][T10778]  ? do_syscall_64+0xb6/0x230
[  321.337048][T10778]  do_syscall_64+0xf3/0x230
[  321.337074][T10778]  ? clear_bhb_loop+0x35/0x90
[  321.337105][T10778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.337129][T10778] RIP: 0033:0x7f91ca38d169
[  321.337147][T10778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.337163][T10778] RSP: 002b:00007f91ca1d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  321.337185][T10778] RAX: ffffffffffffffda RBX: 00007f91ca5a6080 RCX: 00007f91ca38d169
[  321.337199][T10778] RDX: 00000000fffffdef RSI: 00002000000001c0 RDI: 0000000000000000
[  321.337212][T10778] RBP: 00007f91ca1d8090 R08: 0000000000000000 R09: 0000000000000000
[  321.337223][T10778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  321.337235][T10778] R13: 0000000000000000 R14: 00007f91ca5a6080 R15: 00007ffd66583a68
[  321.337268][T10778]  </TASK>
[  321.595479][T10777] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1395'.
[  321.614243][T10765] tipc: New replicast peer: 0.0.0.0
[  321.622916][T10765] tipc: Enabled bearer <udp:syz2>, priority 10
[  321.640364][T10767] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1393'.
[  321.905056][T10796] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1403'.
[  322.281564][T10803] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.517422][T10803] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.685818][T10803] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.828670][T10814] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1407'.
[  322.909664][T10811] syzkaller0: entered promiscuous mode
[  322.936878][T10811] syzkaller0: entered allmulticast mode
[  322.967567][T10819] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1408'.
[  323.052811][T10803] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.359352][T10826] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1405'.
[  325.824787][T10831] tipc: Bearer <udp:s>: already 2 bearers with priority 10
[  325.839493][T10831] tipc: Bearer <udp:s>: trying with adjusted priority
[  325.854612][T10831] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  325.942418][T10839] ip6_vti0: mtu less than device minimum
[  325.988008][T10803] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  326.046413][T10803] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  326.147070][T10803] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.236350][T10803] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.273243][T10867] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1425'.
[  327.411168][T10880] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1426'.
[  327.438504][T10880] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1426'.
[  327.454857][T10880] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1426'.
[  327.467622][T10880] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1426'.
[  327.507152][T10885] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1430'.
[  327.516786][T10885] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1430'.
[  327.578853][T10887] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1431'.
[  328.722834][T10918] wg1 speed is unknown, defaulting to 1000
[  328.784441][T10921] openvswitch: netlink: Message has 8 unknown bytes.
[  328.886317][T10924] netlink: 'syz.1.1439': attribute type 12 has an invalid length.
[  329.116823][T10930] syzkaller1: entered promiscuous mode
[  329.148969][T10930] syzkaller1: entered allmulticast mode
[  329.435463][T10941] 
: renamed from bond0
[  329.536563][T10937] 8021q: adding VLAN 0 to HW filter on device bond1
[  329.588489][T10937] bond0: (slave bond1): Enslaving as an active interface with an up link
[  329.667607][T10949] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  329.830558][T10954] tap0: tun_chr_ioctl cmd 1074025677
[  329.842919][T10954] tap0: linktype set to 6
[  329.928847][T10959] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1449'.
[  330.059773][T10965] FAULT_INJECTION: forcing a failure.
[  330.059773][T10965] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  330.073664][T10965] CPU: 0 UID: 0 PID: 10965 Comm: syz.0.1451 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  330.073694][T10965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  330.073706][T10965] Call Trace:
[  330.073713][T10965]  <TASK>
[  330.073720][T10965]  dump_stack_lvl+0x241/0x360
[  330.073749][T10965]  ? __pfx_dump_stack_lvl+0x10/0x10
[  330.073770][T10965]  ? __pfx__printk+0x10/0x10
[  330.073791][T10965]  ? __pfx_lock_release+0x10/0x10
[  330.073828][T10965]  should_fail_ex+0x40a/0x550
[  330.073933][T10965]  _copy_from_user+0x2d/0xb0
[  330.073973][T10965]  copy_msghdr_from_user+0xae/0x680
[  330.074002][T10965]  ? __pfx___might_resched+0x10/0x10
[  330.074029][T10965]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  330.074062][T10965]  ? do_recvmmsg+0x44e/0xab0
[  330.074085][T10965]  ? __might_fault+0xaa/0x120
[  330.074109][T10965]  do_recvmmsg+0x3bd/0xab0
[  330.074162][T10965]  ? __pfx_do_recvmmsg+0x10/0x10
[  330.074207][T10965]  ? rcu_read_lock_any_held+0xb7/0x160
[  330.074232][T10965]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  330.074256][T10965]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  330.074291][T10965]  ? sb_end_write+0xe9/0x1c0
[  330.074318][T10965]  ? vfs_write+0x7fa/0xd10
[  330.074339][T10965]  ? do_sys_openat2+0x17a/0x1d0
[  330.074361][T10965]  ? __pfx_do_sys_openat2+0x10/0x10
[  330.074386][T10965]  __x64_sys_recvmmsg+0x199/0x250
[  330.074403][T10965]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  330.074418][T10965]  ? do_syscall_64+0x100/0x230
[  330.074435][T10965]  ? do_syscall_64+0xb6/0x230
[  330.074453][T10965]  do_syscall_64+0xf3/0x230
[  330.074468][T10965]  ? clear_bhb_loop+0x35/0x90
[  330.074485][T10965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.074501][T10965] RIP: 0033:0x7f603238d169
[  330.074514][T10965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.074524][T10965] RSP: 002b:00007f6033216038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  330.074540][T10965] RAX: ffffffffffffffda RBX: 00007f60325a5fa0 RCX: 00007f603238d169
[  330.074549][T10965] RDX: 0000000000000a0d RSI: 00002000000066c0 RDI: 0000000000000005
[  330.074556][T10965] RBP: 00007f6033216090 R08: 0000000000000000 R09: 0000000000000000
[  330.074564][T10965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  330.074571][T10965] R13: 0000000000000000 R14: 00007f60325a5fa0 R15: 00007ffefd14b518
[  330.074588][T10965]  </TASK>
[  330.520855][T10974] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1454'.
[  331.057158][T10992] wg1 speed is unknown, defaulting to 1000
[  331.563199][T11015] wg1 speed is unknown, defaulting to 1000
[  332.178977][T11008] Bluetooth: hci1: Opcode 0x080f failed: -4
[  332.310586][T11033] __nla_validate_parse: 2 callbacks suppressed
[  332.310607][T11033] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1472'.
[  332.346994][T11033] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1472'.
[  332.811056][T11053] wg1 speed is unknown, defaulting to 1000
[  332.882679][T11058] batadv_slave_0: entered promiscuous mode
[  332.890877][T11058] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1478'.
[  333.463131][ T5149] Bluetooth: hci1: command 0x0406 tx timeout
[  334.128154][T11089] FAULT_INJECTION: forcing a failure.
[  334.128154][T11089] name failslab, interval 1, probability 0, space 0, times 0
[  334.161800][T11089] CPU: 0 UID: 0 PID: 11089 Comm: syz.1.1491 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  334.161830][T11089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  334.161842][T11089] Call Trace:
[  334.161850][T11089]  <TASK>
[  334.161858][T11089]  dump_stack_lvl+0x241/0x360
[  334.161900][T11089]  ? __pfx_dump_stack_lvl+0x10/0x10
[  334.161922][T11089]  ? __pfx__printk+0x10/0x10
[  334.161957][T11089]  should_fail_ex+0x40a/0x550
[  334.161993][T11089]  should_failslab+0xac/0x100
[  334.162021][T11089]  __kmalloc_cache_noprof+0x70/0x390
[  334.162047][T11089]  ? sctp_add_bind_addr+0x89/0x3a0
[  334.162079][T11089]  sctp_add_bind_addr+0x89/0x3a0
[  334.162110][T11089]  sctp_copy_local_addr_list+0x311/0x500
[  334.162139][T11089]  ? sctp_copy_local_addr_list+0xab/0x500
[  334.162165][T11089]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  334.162195][T11089]  ? sctp_v4_is_any+0x35/0x60
[  334.162221][T11089]  ? sctp_copy_one_addr+0x94/0x360
[  334.162251][T11089]  sctp_bind_addr_copy+0xad/0x3b0
[  334.162278][T11089]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  334.162305][T11089]  sctp_connect_new_asoc+0x2f3/0x6c0
[  334.162330][T11089]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  334.162348][T11089]  ? sctp_sendmsg+0xf1a/0x35d0
[  334.162374][T11089]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  334.162392][T11089]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  334.162427][T11089]  sctp_sendmsg+0x1f64/0x35d0
[  334.162469][T11089]  ? __pfx_sctp_sendmsg+0x10/0x10
[  334.162492][T11089]  ? aa_sk_perm+0x96d/0xab0
[  334.162541][T11089]  ? inet_sendmsg+0x330/0x390
[  334.162572][T11089]  __sock_sendmsg+0x1a6/0x270
[  334.162604][T11089]  __sys_sendto+0x363/0x4c0
[  334.162633][T11089]  ? __pfx___sys_sendto+0x10/0x10
[  334.162670][T11089]  ? __fget_files+0x2a/0x410
[  334.162710][T11089]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  334.162742][T11089]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  334.162777][T11089]  __x64_sys_sendto+0xde/0x100
[  334.162804][T11089]  do_syscall_64+0xf3/0x230
[  334.162831][T11089]  ? clear_bhb_loop+0x35/0x90
[  334.162861][T11089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.162894][T11089] RIP: 0033:0x7f7411b8d169
[  334.162913][T11089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.162929][T11089] RSP: 002b:00007f7412a01038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  334.162952][T11089] RAX: ffffffffffffffda RBX: 00007f7411da5fa0 RCX: 00007f7411b8d169
[  334.162966][T11089] RDX: 0000000000034000 RSI: 00002000000000c0 RDI: 0000000000000003
[  334.162979][T11089] RBP: 00007f7412a01090 R08: 0000200000000100 R09: 0000000000000010
[  334.162992][T11089] R10: 0000000026000854 R11: 0000000000000246 R12: 0000000000000002
[  334.163004][T11089] R13: 0000000000000000 R14: 00007f7411da5fa0 R15: 00007ffe78951148
[  334.163038][T11089]  </TASK>
[  334.576232][T11092] 
: (slave bond1): Releasing backup interface
[  335.143967][T11121] netlink: 'syz.3.1504': attribute type 6 has an invalid length.
[  335.237086][T11123] 8021q: adding VLAN 0 to HW filter on device bond2
[  335.246537][T11123] bond0: (slave bond2): Enslaving as an active interface with an up link
[  335.334160][T11129] netlink: 'syz.2.1506': attribute type 4 has an invalid length.
[  335.688660][T11105] Bluetooth: hci3: Opcode 0x0401 failed: -4
[  335.776483][T11146] wg1 speed is unknown, defaulting to 1000
[  336.098226][T11158] netlink: 1284 bytes leftover after parsing attributes in process `syz.2.1516'.
[  336.110944][T11158] openvswitch: netlink: Missing key (keys=40, expected=80)
[  336.131036][T11156] xt_CT: You must specify a L4 protocol and not use inversions on it
[  336.458595][T11168] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1519'.
[  336.494186][T11168] (unnamed net_device) (uninitialized): option ad_select: invalid value (47)
[  336.635568][T11173] netlink: 'syz.0.1522': attribute type 21 has an invalid length.
[  336.676512][T11173] netlink: 'syz.0.1522': attribute type 20 has an invalid length.
[  336.857569][T11182] xt_l2tp: missing protocol rule (udp|l2tpip)
[  336.980307][ T5149] Bluetooth: hci3: command 0x0406 tx timeout
[  337.178099][T11200] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1533'.
[  337.237138][T11202] vlan0: entered promiscuous mode
[  337.242560][T11202] bridge0: entered promiscuous mode
[  337.354257][T11206] netlink: 'syz.0.1536': attribute type 1 has an invalid length.
[  337.362478][T11206] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1536'.
[  337.394883][T11206] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1536'.
[  337.395002][T11207] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1536'.
[  337.432872][T11206] 
: entered promiscuous mode
[  337.438332][T11206] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  337.470676][T11206] 
: left promiscuous mode
[  337.531439][T11209] xt_bpf: check failed: parse error
[  337.534418][T11207] 
: entered promiscuous mode
[  337.545682][T11207] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  337.563832][T11207] 
: left promiscuous mode
[  338.084288][T11235] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1546'.
[  338.118360][T11235] netlink: 1256 bytes leftover after parsing attributes in process `syz.2.1546'.
[  338.142575][T11235] openvswitch: netlink: Encap mask attribute is set for non-VLAN frame.
[  338.226803][T11242] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1547'.
[  338.349250][T11242] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  338.359428][T11242] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  338.541070][T11255] netlink: 'syz.3.1551': attribute type 1 has an invalid length.
[  338.548900][T11255] netlink: 184 bytes leftover after parsing attributes in process `syz.3.1551'.
[  338.565881][T11255] netlink: 'syz.3.1551': attribute type 1 has an invalid length.
[  339.032120][T11276] syzkaller0: entered promiscuous mode
[  339.037707][T11276] syzkaller0: entered allmulticast mode
[  339.051223][T11279] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1557'.
[  339.156362][T11276] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1557'.
[  339.262440][T11289] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1559'.
[  339.275577][T11291] netlink: 'syz.3.1560': attribute type 10 has an invalid length.
[  341.921581][T11319] x_tables: ip6_tables: udp match: only valid for protocol 17
[  342.676233][T11349] wg1 speed is unknown, defaulting to 1000
[  342.733067][T11355] __nla_validate_parse: 1 callbacks suppressed
[  342.733087][T11355] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1575'.
[  342.761126][T11352] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1577'.
[  342.816097][T11359] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1577'.
[  342.901569][T11361] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1575'.
[  342.963408][T11358] wg1 speed is unknown, defaulting to 1000
[  342.979873][T11363] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1579'.
[  342.999008][T11363] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1579'.
[  343.297848][T11377] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1581'.
[  343.366080][T11374] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1581'.
[  343.390192][T11374] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1581'.
[  343.402570][T11374] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1581'.
[  343.824546][T11398] netlink: 'syz.1.1588': attribute type 5 has an invalid length.
[  344.712453][T11429] FAULT_INJECTION: forcing a failure.
[  344.712453][T11429] name failslab, interval 1, probability 0, space 0, times 0
[  344.761352][T11429] CPU: 0 UID: 0 PID: 11429 Comm: syz.3.1600 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  344.761384][T11429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  344.761395][T11429] Call Trace:
[  344.761403][T11429]  <TASK>
[  344.761411][T11429]  dump_stack_lvl+0x241/0x360
[  344.761442][T11429]  ? __pfx_dump_stack_lvl+0x10/0x10
[  344.761462][T11429]  ? __pfx__printk+0x10/0x10
[  344.761485][T11429]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  344.761514][T11429]  ? __pfx___might_resched+0x10/0x10
[  344.761545][T11429]  should_fail_ex+0x40a/0x550
[  344.761579][T11429]  should_failslab+0xac/0x100
[  344.761607][T11429]  kmem_cache_alloc_node_noprof+0x77/0x380
[  344.761633][T11429]  ? __alloc_skb+0x1c3/0x440
[  344.761660][T11429]  __alloc_skb+0x1c3/0x440
[  344.761681][T11429]  ? validate_chain+0x11e/0x5920
[  344.761707][T11429]  ? __pfx___alloc_skb+0x10/0x10
[  344.761728][T11429]  ? reacquire_held_locks+0x620/0x690
[  344.761751][T11429]  ? mark_lock+0x9a/0x360
[  344.761774][T11429]  alloc_skb_with_frags+0xc3/0x820
[  344.761797][T11429]  ? aa_label_sk_perm+0x4f3/0x6c0
[  344.761837][T11429]  sock_alloc_send_pskb+0x91a/0xa60
[  344.761883][T11429]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  344.761926][T11429]  hci_sock_sendmsg+0x22b/0x11c0
[  344.761960][T11429]  ? __pfx_aa_sk_perm+0x10/0x10
[  344.761992][T11429]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  344.762019][T11429]  ? __pfx_aa_file_perm+0x10/0x10
[  344.762037][T11429]  ? aa_sock_msg_perm+0x91/0x160
[  344.762071][T11429]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  344.762096][T11429]  __sock_sendmsg+0x221/0x270
[  344.762136][T11429]  sock_write_iter+0x2d7/0x3f0
[  344.762164][T11429]  ? __pfx_sock_write_iter+0x10/0x10
[  344.762202][T11429]  ? bpf_lsm_file_permission+0x9/0x10
[  344.762239][T11429]  vfs_write+0xacf/0xd10
[  344.762266][T11429]  ? __pfx_sock_write_iter+0x10/0x10
[  344.762294][T11429]  ? __pfx_vfs_write+0x10/0x10
[  344.762312][T11429]  ? do_sys_openat2+0x17a/0x1d0
[  344.762343][T11429]  ? __fget_files+0x2a/0x410
[  344.762374][T11429]  ? __fget_files+0x2a/0x410
[  344.762412][T11429]  ksys_write+0x18f/0x2b0
[  344.762435][T11429]  ? __pfx_ksys_write+0x10/0x10
[  344.762457][T11429]  ? do_syscall_64+0x100/0x230
[  344.762488][T11429]  ? do_syscall_64+0xb6/0x230
[  344.762517][T11429]  do_syscall_64+0xf3/0x230
[  344.762543][T11429]  ? clear_bhb_loop+0x35/0x90
[  344.762571][T11429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.762595][T11429] RIP: 0033:0x7f91ca38d169
[  344.762613][T11429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.762629][T11429] RSP: 002b:00007f91ca1f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  344.762651][T11429] RAX: ffffffffffffffda RBX: 00007f91ca5a5fa0 RCX: 00007f91ca38d169
[  344.762666][T11429] RDX: 0000000000000008 RSI: 0000200000000580 RDI: 0000000000000004
[  344.762678][T11429] RBP: 00007f91ca1f9090 R08: 0000000000000000 R09: 0000000000000000
[  344.762690][T11429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  344.762702][T11429] R13: 0000000000000000 R14: 00007f91ca5a5fa0 R15: 00007ffd66583a68
[  344.762732][T11429]  </TASK>
[  345.262035][T11441] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  345.274304][T11441] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  345.528107][T11441] wg1 speed is unknown, defaulting to 1000
[  346.318948][T11478] syzkaller0: entered promiscuous mode
[  346.324901][T11478] syzkaller0: entered allmulticast mode
[  346.334559][T11482] gretap0: left allmulticast mode
[  346.339844][T11482] gretap0: left promiscuous mode
[  346.357733][T11482] bridge0: port 3(gretap0) entered disabled state
[  346.414193][T11482] dvmrp0: left promiscuous mode
[  346.435075][T11482] bridge0: port 1(dvmrp0) entered disabled state
[  346.506682][T11482] bridge_slave_1: left allmulticast mode
[  346.523068][T11482] bridge_slave_1: left promiscuous mode
[  346.528913][T11482] bridge0: port 2(bridge_slave_1) entered disabled state
[  346.576660][T11482] 
: (slave bond_slave_0): Releasing backup interface
[  346.625218][T11482] 
: (slave bond_slave_1): Releasing backup interface
[  346.636542][T11482] batman_adv: batadv0: Removing interface: batadv_slave_0
[  346.673787][T11482] batman_adv: batadv0: Removing interface: batadv_slave_1
[  346.725087][T11482] bond0: (slave bond1): Releasing backup interface
[  346.744669][T11482] bond0: (slave bond1): the permanent HWaddr of slave - be:34:92:bb:9c:fe - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  346.791285][T11482] bond0: (slave bond2): Releasing backup interface
[  347.082557][T11508] netlink: 'syz.2.1623': attribute type 1 has an invalid length.
[  349.362002][T11514] __nla_validate_parse: 9 callbacks suppressed
[  349.362023][T11514] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1625'.
[  349.521200][T11527] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1626'.
[  349.738162][T11547] xt_hashlimit: size too large, truncated to 1048576
[  349.802077][T11534] xt_hashlimit: size too large, truncated to 1048576
[  349.875234][T11541] 
: renamed from bond0 (while UP)
[  349.918112][T11552] 8021q: adding VLAN 0 to HW filter on device bond7
[  349.939430][T11552] bond0: (slave bond7): Enslaving as an active interface with an up link
[  350.176245][T11561] 8021q: adding VLAN 0 to HW filter on device bond8
[  350.186444][T11561] bond0: (slave bond8): Enslaving as an active interface with an up link
[  350.631094][T11577] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1640'.
[  350.697314][T11577] gretap0: entered promiscuous mode
[  350.731602][T11572] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1637'.
[  350.734259][T11577] gretap0: left promiscuous mode
[  350.787045][T11583] FAULT_INJECTION: forcing a failure.
[  350.787045][T11583] name failslab, interval 1, probability 0, space 0, times 0
[  350.803060][T11583] CPU: 0 UID: 0 PID: 11583 Comm: syz.2.1642 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  350.803090][T11583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  350.803102][T11583] Call Trace:
[  350.803108][T11583]  <TASK>
[  350.803116][T11583]  dump_stack_lvl+0x241/0x360
[  350.803157][T11583]  ? __pfx_dump_stack_lvl+0x10/0x10
[  350.803178][T11583]  ? __pfx__printk+0x10/0x10
[  350.803215][T11583]  should_fail_ex+0x40a/0x550
[  350.803249][T11583]  should_failslab+0xac/0x100
[  350.803277][T11583]  __kmalloc_cache_noprof+0x70/0x390
[  350.803303][T11583]  ? sctp_add_bind_addr+0x89/0x3a0
[  350.803335][T11583]  sctp_add_bind_addr+0x89/0x3a0
[  350.803366][T11583]  sctp_copy_local_addr_list+0x311/0x500
[  350.803395][T11583]  ? sctp_copy_local_addr_list+0xab/0x500
[  350.803421][T11583]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  350.803453][T11583]  ? sctp_v4_is_any+0x35/0x60
[  350.803477][T11583]  ? sctp_copy_one_addr+0x94/0x360
[  350.803509][T11583]  sctp_bind_addr_copy+0xad/0x3b0
[  350.803534][T11583]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  350.803563][T11583]  sctp_connect_new_asoc+0x2f3/0x6c0
[  350.803587][T11583]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  350.803605][T11583]  ? sctp_sendmsg+0xf1a/0x35d0
[  350.803631][T11583]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  350.803649][T11583]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  350.803680][T11583]  sctp_sendmsg+0x1f64/0x35d0
[  350.803720][T11583]  ? __pfx_sctp_sendmsg+0x10/0x10
[  350.803744][T11583]  ? aa_sk_perm+0x96d/0xab0
[  350.803792][T11583]  ? inet_sendmsg+0x330/0x390
[  350.803821][T11583]  __sock_sendmsg+0x1a6/0x270
[  350.803854][T11583]  __sys_sendto+0x363/0x4c0
[  350.803881][T11583]  ? __pfx___sys_sendto+0x10/0x10
[  350.803919][T11583]  ? __fget_files+0x2a/0x410
[  350.803958][T11583]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  350.803991][T11583]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  350.804032][T11583]  __x64_sys_sendto+0xde/0x100
[  350.804057][T11583]  do_syscall_64+0xf3/0x230
[  350.804085][T11583]  ? clear_bhb_loop+0x35/0x90
[  350.804114][T11583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.804147][T11583] RIP: 0033:0x7f7eee58d169
[  350.804164][T11583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.804181][T11583] RSP: 002b:00007f7eef47c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  350.804203][T11583] RAX: ffffffffffffffda RBX: 00007f7eee7a5fa0 RCX: 00007f7eee58d169
[  350.804217][T11583] RDX: 0000000000034000 RSI: 00002000000000c0 RDI: 0000000000000003
[  350.804231][T11583] RBP: 00007f7eef47c090 R08: 0000200000000100 R09: 0000000000000010
[  350.804244][T11583] R10: 0000000026000854 R11: 0000000000000246 R12: 0000000000000002
[  350.804256][T11583] R13: 0000000000000000 R14: 00007f7eee7a5fa0 R15: 00007ffe81b16e58
[  350.804289][T11583]  </TASK>
[  351.104634][T11585] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  351.272174][T11586] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1643'.
[  351.578550][T11600] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1649'.
[  351.603628][T11597] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1647'.
[  351.847200][T11611] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1654'.
[  351.891940][T11614] netlink: 'syz.0.1655': attribute type 3 has an invalid length.
[  351.916189][T11611] vlan4: entered allmulticast mode
[  351.921855][T11611] hsr0: entered allmulticast mode
[  351.925719][T11614] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1655'.
[  351.930126][T11611] hsr_slave_0: entered allmulticast mode
[  351.950144][T11611] hsr_slave_1: entered allmulticast mode
[  352.006687][T11621] netlink: 'syz.1.1654': attribute type 12 has an invalid length.
[  352.017636][T11621] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1654'.
[  352.021378][T11624] openvswitch: netlink: Missing key (keys=40, expected=80)
[  352.058431][T11611] netlink: 'syz.1.1654': attribute type 12 has an invalid length.
[  352.547990][T11647] syzkaller0: entered promiscuous mode
[  352.565854][T11647] syzkaller0: entered allmulticast mode
[  352.661702][T11612] Bluetooth: hci3: Opcode 0x0401 failed: -4
[  353.865374][ T5849] Bluetooth: hci3: command 0x0406 tx timeout
[  354.428782][ T5849] Bluetooth: hci4: command 0x0406 tx timeout
[  355.905495][T11684] __nla_validate_parse: 10 callbacks suppressed
[  355.905510][T11684] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1675'.
[  355.921469][T11684] 0ªX¹¦À: renamed from caif0
[  355.928044][T11684] 0ªX¹¦À: entered allmulticast mode
[  355.937994][T11684] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  355.964269][T11687] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1675'.
[  355.979376][T11687] 1ªX¹¦À: renamed from 
60ªX¹¦À
[  355.988994][T11687] A link change request failed with some changes committed already. Interface 
61ªX¹¦À may have been left with an inconsistent configuration, please check.
[  356.790605][T11701] netlink: 'syz.2.1679': attribute type 1 has an invalid length.
[  356.816529][T11701] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1679'.
[  357.081549][T11722] wg1 speed is unknown, defaulting to 1000
[  357.277588][T11729] vlan1: entered allmulticast mode
[  357.284701][T11730] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1687'.
[  357.293984][T11729] batadv0: entered allmulticast mode
[  357.304356][T11730] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1687'.
[  357.742825][T11745] xt_CT: No such helper "netbios-ns"
[  357.817244][T11751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  357.840739][T11751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  357.919942][T11755] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1695'.
[  357.981716][T11755] bridge0: port 1(batadv1) entered blocking state
[  357.988350][T11755] bridge0: port 1(batadv1) entered disabled state
[  358.002809][T11755] batadv1: entered allmulticast mode
[  358.009591][T11755] batadv1: entered promiscuous mode
[  358.447831][T11767] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1698'.
[  358.480421][   T76] batman_adv: batadv1: IGMP Querier appeared
[  358.487050][   T76] batman_adv: batadv1: MLD Querier appeared
[  358.493340][T11767] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1698'.
[  358.524440][T11767] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1698'.
[  358.527901][T11776] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1702'.
[  358.877765][T11791] wg1 speed is unknown, defaulting to 1000
[  359.036662][T11798] dccp_v6_rcv: dropped packet with invalid checksum
[  359.446317][T11808] syzkaller0: entered promiscuous mode
[  359.452071][T11808] syzkaller0: entered allmulticast mode
[  359.562774][T11815] nbd: device at index 64 is going down
[  359.587831][T11812] syzkaller0: entered promiscuous mode
[  359.600398][T11812] syzkaller0: entered allmulticast mode
[  362.155482][T11836] xt_TCPMSS: Only works on TCP SYN packets
[  364.089786][T11822] netlink: 'syz.1.1715': attribute type 4 has an invalid length.
[  364.479584][T11852] __nla_validate_parse: 9 callbacks suppressed
[  364.479607][T11852] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1724'.
[  364.519272][T11852] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1724'.
[  364.735374][T11858] veth0_to_bond: entered promiscuous mode
[  364.743414][T11858] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1725'.
[  364.809578][T11861] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1725'.
[  364.858790][T11858] veth0_to_bond (unregistering): left promiscuous mode
[  364.911439][T11860] wg1 speed is unknown, defaulting to 1000
[  365.512625][T11877] delete_channel: no stack
[  365.809947][T11890] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1733'.
[  365.826738][T11887] syzkaller0: entered promiscuous mode
[  365.850557][T11891] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  365.878773][T11887] syzkaller0: entered allmulticast mode
[  365.884942][T11891] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  366.071101][T11897] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1737'.
[  366.105106][T11897] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1737'.
[  368.955797][T11940] syzkaller0: entered promiscuous mode
[  368.962006][T11940] syzkaller0: entered allmulticast mode
[  369.011828][T11940] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1750'.
[  369.072326][T11940] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1750'.
[  369.227541][T11954] xt_hashlimit: overflow, rate too high: 1125899906842624
[  369.837853][T11973] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1756'.
[  370.116035][T11970] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  370.446794][T11979] netlink: 'syz.3.1759': attribute type 4 has an invalid length.
[  371.879146][T11976] wg1 speed is unknown, defaulting to 1000
[  372.189013][T11991] FAULT_INJECTION: forcing a failure.
[  372.189013][T11991] name failslab, interval 1, probability 0, space 0, times 0
[  372.189802][T11987] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  372.201989][T11991] CPU: 1 UID: 0 PID: 11991 Comm: syz.1.1763 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  372.202019][T11991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  372.202030][T11991] Call Trace:
[  372.202037][T11991]  <TASK>
[  372.202045][T11991]  dump_stack_lvl+0x241/0x360
[  372.202074][T11991]  ? __pfx_dump_stack_lvl+0x10/0x10
[  372.202095][T11991]  ? __pfx__printk+0x10/0x10
[  372.202139][T11991]  should_fail_ex+0x40a/0x550
[  372.202173][T11991]  should_failslab+0xac/0x100
[  372.202198][T11991]  ? skb_clone+0x20c/0x390
[  372.202221][T11991]  kmem_cache_alloc_noprof+0x70/0x380
[  372.202252][T11991]  skb_clone+0x20c/0x390
[  372.202278][T11991]  bpf_clone_redirect+0xab/0x3d0
[  372.202311][T11991]  bpf_prog_297510cab277b9a5+0x5f/0x64
[  372.202332][T11991]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  372.202364][T11991]  ? bpf_test_run+0x370/0xa90
[  372.202388][T11991]  ? __pfx_lockdep_softirqs_off+0x10/0x10
[  372.202414][T11991]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  372.202449][T11991]  ? bpf_test_run+0x370/0xa90
[  372.202472][T11991]  ? __pfx___cant_migrate+0x10/0x10
[  372.202493][T11991]  ? bpf_test_run+0x370/0xa90
[  372.202515][T11991]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  372.202540][T11991]  ? bpf_test_timer_continue+0x11a/0x350
[  372.202570][T11991]  bpf_test_run+0x4f0/0xa90
[  372.202600][T11991]  ? bpf_test_run+0x370/0xa90
[  372.202637][T11991]  ? __pfx_bpf_test_run+0x10/0x10
[  372.202685][T11991]  ? __pfx_eth_type_trans+0x10/0x10
[  372.202707][T11991]  ? bpf_prog_test_run_skb+0x841/0x1830
[  372.202730][T11991]  ? convert___skb_to_skb+0x41/0x630
[  372.202759][T11991]  bpf_prog_test_run_skb+0xcaa/0x1830
[  372.202805][T11991]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  372.202827][T11991]  ? __fget_files+0x2a/0x410
[  372.202856][T11991]  ? fput+0x21b/0x290
[  372.202879][T11991]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  372.202906][T11991]  bpf_prog_test_run+0x2e4/0x360
[  372.202935][T11991]  __sys_bpf+0x487/0x820
[  372.202960][T11991]  ? __pfx___sys_bpf+0x10/0x10
[  372.202996][T11991]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  372.203024][T11991]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  372.203050][T11991]  ? do_syscall_64+0x100/0x230
[  372.203079][T11991]  __x64_sys_bpf+0x7c/0x90
[  372.203102][T11991]  do_syscall_64+0xf3/0x230
[  372.203133][T11991]  ? clear_bhb_loop+0x35/0x90
[  372.203160][T11991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.203182][T11991] RIP: 0033:0x7f7411b8d169
[  372.203198][T11991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.203213][T11991] RSP: 002b:00007f7412a01038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  372.203234][T11991] RAX: ffffffffffffffda RBX: 00007f7411da5fa0 RCX: 00007f7411b8d169
[  372.203247][T11991] RDX: 000000000000002c RSI: 0000200000000080 RDI: 000000000000000a
[  372.203258][T11991] RBP: 00007f7412a01090 R08: 0000000000000000 R09: 0000000000000000
[  372.203268][T11991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  372.203279][T11991] R13: 0000000000000000 R14: 00007f7411da5fa0 R15: 00007ffe78951148
[  372.203306][T11991]  </TASK>
[  372.908210][T12000] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1767'.
[  372.992025][T12002] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1768'.
[  373.264017][T12016] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1772'.
[  373.283797][T12010] syzkaller0: entered promiscuous mode
[  373.289374][T12010] syzkaller0: entered allmulticast mode
[  373.315922][T12014] dvmrp0: renamed from bridge_slave_0
[  373.353510][T12014] dvmrp0: entered promiscuous mode
[  373.375446][T12014] dvmrp0: entered allmulticast mode
[  373.652113][T12032] xt_l2tp: unknown flags: 10
[  374.089003][T12041] netlink: 'syz.0.1780': attribute type 10 has an invalid length.
[  374.123096][T12041] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1780'.
[  376.392345][T12012] wg1 speed is unknown, defaulting to 1000
[  376.714927][T12058] netlink: 1268 bytes leftover after parsing attributes in process `syz.3.1786'.
[  376.724569][T12058] openvswitch: netlink: Message has 10 unknown bytes.
[  377.199137][T12076] FAULT_INJECTION: forcing a failure.
[  377.199137][T12076] name failslab, interval 1, probability 0, space 0, times 0
[  377.212418][T12076] CPU: 0 UID: 0 PID: 12076 Comm: syz.3.1793 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  377.212446][T12076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  377.212456][T12076] Call Trace:
[  377.212463][T12076]  <TASK>
[  377.212472][T12076]  dump_stack_lvl+0x241/0x360
[  377.212501][T12076]  ? __pfx_dump_stack_lvl+0x10/0x10
[  377.212519][T12076]  ? __pfx__printk+0x10/0x10
[  377.212541][T12076]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  377.212570][T12076]  ? __pfx___might_resched+0x10/0x10
[  377.212597][T12076]  should_fail_ex+0x40a/0x550
[  377.212630][T12076]  should_failslab+0xac/0x100
[  377.212657][T12076]  __kmalloc_node_noprof+0xe1/0x4d0
[  377.212681][T12076]  ? __kvmalloc_node_noprof+0x72/0x190
[  377.212715][T12076]  __kvmalloc_node_noprof+0x72/0x190
[  377.212744][T12076]  bpf_test_run_xdp_live+0x290/0x2220
[  377.212773][T12076]  ? __pfx_lock_release+0x10/0x10
[  377.212808][T12076]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  377.212830][T12076]  ? __pfx___might_resched+0x10/0x10
[  377.212857][T12076]  ? __mutex_unlock_slowpath+0x227/0x800
[  377.212895][T12076]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  377.212921][T12076]  ? synchronize_rcu+0x11b/0x360
[  377.212942][T12076]  ? __pfx_synchronize_rcu+0x10/0x10
[  377.212986][T12076]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  377.213012][T12076]  ? 0xffffffffa0000d58
[  377.213052][T12076]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  377.213088][T12076]  ? _copy_from_user+0x95/0xb0
[  377.213124][T12076]  ? bpf_test_init+0x137/0x160
[  377.213150][T12076]  ? xdp_convert_md_to_buff+0x5b/0x330
[  377.213181][T12076]  bpf_prog_test_run_xdp+0x805/0x11e0
[  377.213214][T12076]  ? __pfx_lock_release+0x10/0x10
[  377.213250][T12076]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  377.213279][T12076]  ? __fget_files+0x2a/0x410
[  377.213310][T12076]  ? __fget_files+0x2a/0x410
[  377.213347][T12076]  ? fput+0x21b/0x290
[  377.213373][T12076]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  377.213403][T12076]  bpf_prog_test_run+0x2e4/0x360
[  377.213436][T12076]  __sys_bpf+0x487/0x820
[  377.213464][T12076]  ? __pfx___sys_bpf+0x10/0x10
[  377.213505][T12076]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  377.213537][T12076]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  377.213565][T12076]  ? do_syscall_64+0x100/0x230
[  377.213599][T12076]  __x64_sys_bpf+0x7c/0x90
[  377.213623][T12076]  do_syscall_64+0xf3/0x230
[  377.213650][T12076]  ? clear_bhb_loop+0x35/0x90
[  377.213680][T12076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.213705][T12076] RIP: 0033:0x7f91ca38d169
[  377.213723][T12076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  377.213740][T12076] RSP: 002b:00007f91ca1f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  377.213763][T12076] RAX: ffffffffffffffda RBX: 00007f91ca5a5fa0 RCX: 00007f91ca38d169
[  377.213778][T12076] RDX: 0000000000000050 RSI: 0000200000000180 RDI: 000000000000000a
[  377.213790][T12076] RBP: 00007f91ca1f9090 R08: 0000000000000000 R09: 0000000000000000
[  377.213802][T12076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  377.213814][T12076] R13: 0000000000000000 R14: 00007f91ca5a5fa0 R15: 00007ffd66583a68
[  377.213844][T12076]  </TASK>
[  377.725647][T12085] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1794'.
[  377.880695][T12081] syzkaller0: entered promiscuous mode
[  377.906762][T12081] syzkaller0: entered allmulticast mode
[  378.167745][T12106] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1800'.
[  378.185009][T12106] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1800'.
[  380.586638][T12119] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1803'.
[  380.618479][T12121] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1804'.
[  380.738003][T12129] netlink: 140 bytes leftover after parsing attributes in process `syz.1.1804'.
[  381.569066][T12145] syzkaller0: entered promiscuous mode
[  381.621574][T12145] syzkaller0: entered allmulticast mode
[  381.687248][T12145] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1813'.
[  381.986481][T12157] wg1 speed is unknown, defaulting to 1000
[  382.016791][T12158] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1815'.
[  382.238573][T12166] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1816'.
[  383.343891][T12178] SET target dimension over the limit!
[  385.852186][T12153] wg1 speed is unknown, defaulting to 1000
[  385.868703][T12165] vlan0: entered promiscuous mode
[  386.087868][T12195] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1822'.
[  386.100262][T12195] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1822'.
[  386.117303][T12192] syz_tun: entered allmulticast mode
[  386.230407][T12191] syz_tun: left allmulticast mode
[  386.870772][T12215] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1826'.
[  387.481580][T12226] IPVS: set_ctl: invalid protocol: 8 255.255.255.255:20001
[  387.596214][T12223] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1831'.
[  387.802539][T12232] macvlan0: entered promiscuous mode
[  387.810659][T12230] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1834'.
[  387.914547][T12237] netlink: 'syz.4.1836': attribute type 5 has an invalid length.
[  387.933067][T12237] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1836'.
[  388.224734][T12230] macvlan0 (unregistering): left promiscuous mode
[  388.281194][T12245] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1837'.
[  388.345903][T12240] wg1 speed is unknown, defaulting to 1000
[  388.500514][ T5149] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  389.030922][T12250] bond0 (unregistering): Released all slaves
[  389.308898][T12269] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1844'.
[  389.965741][T12289] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1851'.
[  389.990190][T12289] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1851'.
[  390.013764][T12286] netlink: 4408 bytes leftover after parsing attributes in process `syz.4.1849'.
[  390.432518][T12301] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1854'.
[  390.451937][T12301] nbd: must specify at least one socket
[  390.658535][T12303] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1847'.
[  391.140380][ T5149] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  391.248383][T12328] FAULT_INJECTION: forcing a failure.
[  391.248383][T12328] name failslab, interval 1, probability 0, space 0, times 0
[  391.254930][T12326] wg1 speed is unknown, defaulting to 1000
[  391.282651][T12328] CPU: 0 UID: 0 PID: 12328 Comm: syz.0.1863 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  391.282680][T12328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  391.282692][T12328] Call Trace:
[  391.282699][T12328]  <TASK>
[  391.282708][T12328]  dump_stack_lvl+0x241/0x360
[  391.282739][T12328]  ? __pfx_dump_stack_lvl+0x10/0x10
[  391.282761][T12328]  ? __pfx__printk+0x10/0x10
[  391.282785][T12328]  ? __kmalloc_cache_noprof+0x48/0x390
[  391.282814][T12328]  ? __pfx___might_resched+0x10/0x10
[  391.282844][T12328]  should_fail_ex+0x40a/0x550
[  391.282879][T12328]  should_failslab+0xac/0x100
[  391.282904][T12328]  __kmalloc_cache_noprof+0x70/0x390
[  391.282929][T12328]  ? sctp_transport_new+0x7e/0x660
[  391.282969][T12328]  sctp_transport_new+0x7e/0x660
[  391.282995][T12328]  sctp_assoc_add_peer+0x225/0x1360
[  391.283030][T12328]  sctp_connect_new_asoc+0x31d/0x6c0
[  391.283055][T12328]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  391.283074][T12328]  ? sctp_sendmsg+0xf1a/0x35d0
[  391.283100][T12328]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  391.283119][T12328]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  391.283158][T12328]  sctp_sendmsg+0x1f64/0x35d0
[  391.283199][T12328]  ? __pfx_sctp_sendmsg+0x10/0x10
[  391.283223][T12328]  ? aa_sk_perm+0x96d/0xab0
[  391.283279][T12328]  ? inet_sendmsg+0x330/0x390
[  391.283308][T12328]  __sock_sendmsg+0x1a6/0x270
[  391.283341][T12328]  __sys_sendto+0x363/0x4c0
[  391.283369][T12328]  ? __pfx___sys_sendto+0x10/0x10
[  391.283406][T12328]  ? __fget_files+0x2a/0x410
[  391.283444][T12328]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  391.283476][T12328]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  391.283523][T12328]  __x64_sys_sendto+0xde/0x100
[  391.283549][T12328]  do_syscall_64+0xf3/0x230
[  391.283577][T12328]  ? clear_bhb_loop+0x35/0x90
[  391.283606][T12328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.283631][T12328] RIP: 0033:0x7f603238d169
[  391.283649][T12328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  391.283666][T12328] RSP: 002b:00007f6033216038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  391.283689][T12328] RAX: ffffffffffffffda RBX: 00007f60325a5fa0 RCX: 00007f603238d169
[  391.283704][T12328] RDX: 0000000000034000 RSI: 00002000000000c0 RDI: 0000000000000003
[  391.283718][T12328] RBP: 00007f6033216090 R08: 0000200000000100 R09: 0000000000000010
[  391.283730][T12328] R10: 0000000026000854 R11: 0000000000000246 R12: 0000000000000002
[  391.283743][T12328] R13: 0000000000000000 R14: 00007f60325a5fa0 R15: 00007ffefd14b518
[  391.283771][T12328]  </TASK>
[  391.634935][T12335] wg1 speed is unknown, defaulting to 1000
[  391.717163][T12342] wg1 speed is unknown, defaulting to 1000
[  392.021265][T12343] wg1 speed is unknown, defaulting to 1000
[  392.432885][T12356] FAULT_INJECTION: forcing a failure.
[  392.432885][T12356] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  392.477646][T12356] CPU: 0 UID: 0 PID: 12356 Comm: syz.0.1870 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  392.477682][T12356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  392.477692][T12356] Call Trace:
[  392.477699][T12356]  <TASK>
[  392.477708][T12356]  dump_stack_lvl+0x241/0x360
[  392.477738][T12356]  ? __pfx_dump_stack_lvl+0x10/0x10
[  392.477760][T12356]  ? __pfx__printk+0x10/0x10
[  392.477787][T12356]  ? snprintf+0xda/0x120
[  392.477812][T12356]  should_fail_ex+0x40a/0x550
[  392.477847][T12356]  _copy_to_user+0x31/0xb0
[  392.477877][T12356]  simple_read_from_buffer+0xca/0x150
[  392.477908][T12356]  proc_fail_nth_read+0x1e9/0x250
[  392.477938][T12356]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  392.477969][T12356]  ? rw_verify_area+0x243/0x630
[  392.477989][T12356]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  392.478030][T12356]  vfs_read+0x1f8/0xb40
[  392.478061][T12356]  ? fdget_pos+0x254/0x320
[  392.478090][T12356]  ? __pfx___mutex_lock+0x10/0x10
[  392.478119][T12356]  ? __pfx_vfs_read+0x10/0x10
[  392.478143][T12356]  ? __fget_files+0x2a/0x410
[  392.478172][T12356]  ? __fget_files+0x395/0x410
[  392.478198][T12356]  ? __fget_files+0x2a/0x410
[  392.478235][T12356]  ksys_read+0x18f/0x2b0
[  392.478260][T12356]  ? __pfx_ksys_read+0x10/0x10
[  392.478281][T12356]  ? do_syscall_64+0x100/0x230
[  392.478312][T12356]  ? do_syscall_64+0xb6/0x230
[  392.478342][T12356]  do_syscall_64+0xf3/0x230
[  392.478369][T12356]  ? clear_bhb_loop+0x35/0x90
[  392.478400][T12356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.478425][T12356] RIP: 0033:0x7f603238bb7c
[  392.478443][T12356] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  392.478460][T12356] RSP: 002b:00007f6033216030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  392.478482][T12356] RAX: ffffffffffffffda RBX: 00007f60325a5fa0 RCX: 00007f603238bb7c
[  392.478497][T12356] RDX: 000000000000000f RSI: 00007f60332160a0 RDI: 0000000000000006
[  392.478509][T12356] RBP: 00007f6033216090 R08: 0000000000000000 R09: 0000000000000000
[  392.478521][T12356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  392.478533][T12356] R13: 0000000000000000 R14: 00007f60325a5fa0 R15: 00007ffefd14b518
[  392.478565][T12356]  </TASK>
[  393.394096][T12373] wg1 speed is unknown, defaulting to 1000
[  393.753901][T12382] __nla_validate_parse: 3 callbacks suppressed
[  393.753923][T12382] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1879'.
[  393.759319][T12378] syzkaller0: entered promiscuous mode
[  393.851699][T12378] syzkaller0: entered allmulticast mode
[  394.097990][T12396] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1882'.
[  394.207902][T12396] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1882'.
[  397.255248][T12383] syzkaller0: entered promiscuous mode
[  397.280378][T12383] syzkaller0: entered allmulticast mode
[  397.482210][T12409] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1885'.
[  397.544267][T12411] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1886'.
[  400.260916][T12402] 8021q: adding VLAN 0 to HW filter on device bond3
[  400.268946][T12402] bond0: (slave bond3): Enslaving as an active interface with an up link
[  400.435925][T12406] wg1 speed is unknown, defaulting to 1000
[  400.637487][T12422] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1888'.
[  400.656688][T12430] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1890'.
[  400.703067][T12424] wg1 speed is unknown, defaulting to 1000
[  400.730924][T12432] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1889'.
[  401.468690][T12445] wg1 speed is unknown, defaulting to 1000
[  401.687935][T12447] smc: net device bond0 applied user defined pnetid SYZ2
[  402.312491][T12460] syzkaller0: entered promiscuous mode
[  402.318989][T12460] syzkaller0: entered allmulticast mode
[  402.399125][T12465] 8021q: adding VLAN 0 to HW filter on device bond10
[  402.421986][T12465] bond0: (slave bond10): Enslaving as an active interface with an up link
[  402.771617][T12473] xt_hashlimit: size too large, truncated to 1048576
[  402.841753][T12477] xt_hashlimit: size too large, truncated to 1048576
[  405.630591][ T5149] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  406.249873][T12470] wg1 speed is unknown, defaulting to 1000
[  406.598613][T12506] syzkaller0: entered promiscuous mode
[  406.617015][T12506] syzkaller0: entered allmulticast mode
[  406.640558][T12510] wg1 speed is unknown, defaulting to 1000
[  406.653923][T12513] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1913'.
[  407.031555][T12516] wg1 speed is unknown, defaulting to 1000
[  409.488926][T12517] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1912'.
[  409.792919][T12537] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1916'.
[  410.099852][T12541] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1919'.
[  410.275344][T12541] hsr_slave_1 (unregistering): left promiscuous mode
[  410.345741][T12546] syzkaller0: entered promiscuous mode
[  410.351851][T12546] syzkaller0: entered allmulticast mode
[  410.408489][T12549] bond0: (slave bond4): Releasing backup interface
[  410.451832][T12549] bond0: (slave bond4): the permanent HWaddr of slave - 7a:72:af:dd:e1:61 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  410.505985][T12549] bond0: (slave bond5): Releasing backup interface
[  410.544353][T12549] bond0: (slave bond6): Releasing backup interface
[  410.571512][T12549] bond0: (slave bond7): Releasing backup interface
[  410.594008][T12549] bond0: (slave bond8): Releasing backup interface
[  410.626386][T12549] bond0: (slave bond10): Releasing backup interface
[  410.650158][ T9075] wg1 speed is unknown, defaulting to 1000
[  410.667178][T12560] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1923'.
[  410.779894][T12563] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1926'.
[  411.479269][T12569] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1928'.
[  411.843559][T12581] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1930'.
[  411.868888][T12573] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1929'.
[  411.926692][T12583] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1930'.
[  413.989543][T12600] sctp: [Deprecated]: syz.3.1934 (pid 12600) Use of int in max_burst socket option deprecated.
[  413.989543][T12600] Use struct sctp_assoc_value instead
[  414.005855][T12597] wg1 speed is unknown, defaulting to 1000
[  414.153938][T12599] 8021q: adding VLAN 0 to HW filter on device bond4
[  414.164837][T12597] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1935'.
[  414.171317][T12599] bond0: (slave bond4): Enslaving as an active interface with an up link
[  414.373359][T12616] FAULT_INJECTION: forcing a failure.
[  414.373359][T12616] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  414.421271][T12616] CPU: 0 UID: 0 PID: 12616 Comm: syz.1.1940 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  414.421312][T12616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  414.421325][T12616] Call Trace:
[  414.421334][T12616]  <TASK>
[  414.421344][T12616]  dump_stack_lvl+0x241/0x360
[  414.421377][T12616]  ? __pfx_dump_stack_lvl+0x10/0x10
[  414.421399][T12616]  ? __pfx__printk+0x10/0x10
[  414.421422][T12616]  ? __pfx_lock_release+0x10/0x10
[  414.421461][T12616]  should_fail_ex+0x40a/0x550
[  414.421497][T12616]  _copy_from_user+0x2d/0xb0
[  414.421524][T12616]  copy_msghdr_from_user+0xae/0x680
[  414.421553][T12616]  ? __lock_acquire+0x1397/0x2100
[  414.421585][T12616]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  414.421611][T12616]  ? __fget_files+0x2a/0x410
[  414.421640][T12616]  ? __fget_files+0x2a/0x410
[  414.421676][T12616]  do_recvmmsg+0x3bd/0xab0
[  414.421712][T12616]  ? __pfx_do_recvmmsg+0x10/0x10
[  414.421756][T12616]  ? ksys_write+0x22a/0x2b0
[  414.421778][T12616]  ? __pfx_lock_release+0x10/0x10
[  414.421812][T12616]  ? sb_end_write+0xe9/0x1c0
[  414.421839][T12616]  ? vfs_write+0x7fa/0xd10
[  414.421875][T12616]  ? __mutex_unlock_slowpath+0x227/0x800
[  414.421914][T12616]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  414.421940][T12616]  ? __fget_files+0x2a/0x410
[  414.421982][T12616]  __x64_sys_recvmmsg+0x199/0x250
[  414.422010][T12616]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  414.422037][T12616]  ? do_syscall_64+0x100/0x230
[  414.422067][T12616]  ? do_syscall_64+0xb6/0x230
[  414.422097][T12616]  do_syscall_64+0xf3/0x230
[  414.422123][T12616]  ? clear_bhb_loop+0x35/0x90
[  414.422152][T12616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.422177][T12616] RIP: 0033:0x7f7411b8d169
[  414.422196][T12616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.422213][T12616] RSP: 002b:00007f7412a01038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  414.422237][T12616] RAX: ffffffffffffffda RBX: 00007f7411da5fa0 RCX: 00007f7411b8d169
[  414.422252][T12616] RDX: 0000000000000001 RSI: 0000200000000600 RDI: 0000000000000003
[  414.422264][T12616] RBP: 00007f7412a01090 R08: 0000000000000000 R09: 0000000000000000
[  414.422277][T12616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  414.422288][T12616] R13: 0000000000000000 R14: 00007f7411da5fa0 R15: 00007ffe78951148
[  414.422318][T12616]  </TASK>
[  414.441666][T12617] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1938'.
[  414.723113][T12621] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1941'.
[  414.862916][T12621] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1941'.
[  415.164188][T12630] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1943'.
[  415.534331][T12643] netlink: 'syz.1.1950': attribute type 1 has an invalid length.
[  415.570221][T12643] netlink: 'syz.1.1950': attribute type 2 has an invalid length.
[  415.658432][T12648] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  415.713301][T12651] netlink: 'syz.2.1953': attribute type 1 has an invalid length.
[  415.729865][T12651] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1953'.
[  415.754789][T12651] netlink: 'syz.2.1953': attribute type 1 has an invalid length.
[  415.777686][T12653] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  415.793454][T12651] netlink: 'syz.2.1953': attribute type 2 has an invalid length.
[  415.939379][T12658] batadv0: entered promiscuous mode
[  415.949345][T12658] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  415.975699][T12658] batadv0: left promiscuous mode
[  416.153568][T12659] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  416.226404][T12659] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  416.330750][T12659] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  416.366601][T12659] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  416.506748][T12669] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1959'.
[  416.955174][T12678] wg1 speed is unknown, defaulting to 1000
[  417.075649][T12679] __nla_validate_parse: 1 callbacks suppressed
[  417.075673][T12679] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1956'.
[  417.436589][T12687] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1958'.
[  417.705801][T12690] netlink: 'syz.4.1964': attribute type 2 has an invalid length.
[  418.379405][T12708] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1970'.
[  418.552408][T12710] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1969'.
[  418.562625][T12706] syzkaller0: entered promiscuous mode
[  418.568163][T12706] syzkaller0: entered allmulticast mode
[  418.699598][T12711] wg1 speed is unknown, defaulting to 1000
[  418.882536][T12724] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1971'.
[  421.098067][T12741] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1977'.
[  422.518980][T12726] wg1 speed is unknown, defaulting to 1000
[  422.528446][T12733] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  422.536365][T12733] batadv0: mtu less than device minimum
[  422.545332][T12733] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  422.558357][T12733] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  422.571369][T12733] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  422.584501][T12733] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  422.597330][T12733] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  422.610795][T12733] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  422.623839][T12733] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  422.637129][T12733] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  422.650651][T12733] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  422.690481][T12733] batadv_slave_1: entered promiscuous mode
[  422.710713][T12733] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1975'.
[  422.938568][T12750] netlink: 'syz.1.1981': attribute type 4 has an invalid length.
[  423.041986][T12753] xt_l2tp: missing protocol rule (udp|l2tpip)
[  423.461905][T12761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:aa) already exists on: dummy0
[  423.487558][T12761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  423.562242][T12766] 8021q: adding VLAN 0 to HW filter on device bond11
[  423.571549][T12766] bond0: (slave bond11): Enslaving as an active interface with an up link
[  423.586603][T12765] ip6tnl2: entered promiscuous mode
[  423.602435][T12765] ip6tnl2: entered allmulticast mode
[  423.639509][T12765] team0: Device ip6tnl2 is up. Set it down before adding it as a team port
[  423.702343][ T5149] Bluetooth: hci4: link tx timeout
[  423.707552][ T5149] Bluetooth: hci4: killing stalled connection 10:aa:aa:aa:aa:aa
[  423.716672][ T5849] Bluetooth: hci4: link tx timeout
[  423.722887][ T5849] Bluetooth: hci4: killing stalled connection 10:aa:aa:aa:aa:aa
[  423.730907][ T5849] Bluetooth: hci4: link tx timeout
[  423.736317][ T5849] Bluetooth: hci4: killing stalled connection 10:aa:aa:aa:aa:aa
[  423.973732][T12784] 1ªX¹¦D: left allmulticast mode
[  424.023315][T12784] batadv_slave_1: left promiscuous mode
[  424.027999][T12786] netlink: 'syz.3.1994': attribute type 10 has an invalid length.
[  424.045486][T12786] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1994'.
[  424.048144][T12784] vlan0: left promiscuous mode
[  424.062390][T12784] batadv1: left allmulticast mode
[  424.074598][T12788] bridge0: port 2(
31ªX¹¦D) entered blocking state
[  424.082171][T12788] bridge0: port 2(
31ªX¹¦D) entered disabled state
[  424.089557][T12788] 1ªX¹¦D: entered allmulticast mode
[  424.107104][T12788] 1ªX¹¦D: entered promiscuous mode
[  424.125234][T12784] 1ªX¹¦D: left allmulticast mode
[  424.137077][T12784] 1ªX¹¦D: left promiscuous mode
[  424.147332][T12784] bridge0: port 2(
31ªX¹¦D) entered disabled state
[  424.154747][T12790] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1992'.
[  424.364012][T12797] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  424.439385][T12797] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  424.511955][T12800] wg1 speed is unknown, defaulting to 1000
[  424.568997][T12797] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  424.614913][T12806] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1998'.
[  424.734175][T12797] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  425.684339][T12797] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  425.780736][ T5849] Bluetooth: hci4: command 0x0406 tx timeout
[  425.856452][T12822] vlan1: entered promiscuous mode
[  425.874428][T12822] syz_tun: entered promiscuous mode
[  426.075519][T12797] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  426.086011][T12827] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1997'.
[  426.179513][T12797] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  426.296194][T12797] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  426.307091][T12839] netlink: 1268 bytes leftover after parsing attributes in process `syz.4.2006'.
[  426.502169][T12847] wg1 speed is unknown, defaulting to 1000
[  426.551515][T12849] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2009'.
[  426.826142][T12851] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2009'.
[  427.346249][T12847] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2007'.
[  427.919832][T12880] syzkaller0: entered promiscuous mode
[  427.946404][T12880] syzkaller0: entered allmulticast mode
[  427.956920][T12884] wg1 speed is unknown, defaulting to 1000
[  428.001844][T12880] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2016'.
[  428.087053][T12887] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2016'.
[  428.239290][T12897] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2018'.
[  428.318253][T12896] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  428.359259][T12894] batman_adv: batadv0: Adding interface: ipvlan2
[  428.440086][T12894] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  428.472776][T12894] batman_adv: batadv0: Not using interface ipvlan2 (retrying later): interface not active
[  429.140562][ T5149] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  429.328460][T12911] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2021'.
[  431.619264][T12900] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[  431.644294][T12896] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  431.811979][T12896] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  431.881980][T12896] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  431.967081][T12924] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2025'.
[  432.076793][T12896] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  432.127986][T12896] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  432.176434][T12933] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2028'.
[  432.190214][T12896] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  432.199021][T12933] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2028'.
[  432.215628][T12896] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  432.283134][T12934] 8021q: adding VLAN 0 to HW filter on device bond4
[  432.306132][T12934] bond0: (slave bond4): Enslaving as an active interface with an up link
[  432.550534][T12947] netlink: 'syz.2.2035': attribute type 10 has an invalid length.
[  432.763945][T12954] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2037'.
[  432.814740][T12957] xt_hashlimit: size too large, truncated to 1048576
[  432.870719][T12959] xt_hashlimit: size too large, truncated to 1048576
[  432.971431][T12963] netlink: 2292 bytes leftover after parsing attributes in process `syz.1.2040'.
[  433.109351][T12967] xt_TCPMSS: Only works on TCP SYN packets
[  433.156639][T12969] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.232479][T12969] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.455135][T12969] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.592083][T12976] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2046'.
[  433.622426][T12969] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.883721][T12969] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  433.960495][T12969] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  434.017408][T12969] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  434.062460][T12969] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  434.321113][T12993] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2043'.
[  434.324349][T12998] net_ratelimit: 14 callbacks suppressed
[  434.324368][T12998] Set syz1 is full, maxelem 65536 reached
[  434.580208][ T5149] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  434.695148][T13011] veth0_to_bond: entered promiscuous mode
[  434.719131][T13011] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2058'.
[  434.830586][T13011] veth0_to_bond (unregistering): left promiscuous mode
[  434.928500][T13013] 8021q: adding VLAN 0 to HW filter on device bond5
[  434.937098][T13013] bond0: (slave bond5): Enslaving as an active interface with an up link
[  435.102372][T13023] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2063'.
[  435.138826][T13023] nbd: must specify at least one socket
[  436.056634][T13056] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2075'.
[  436.561902][T13063] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2071'.
[  436.590913][T13068] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2081'.
[  437.090643][T13078] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  437.108857][T13078] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  437.581467][T13094] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2089'.
[  437.730746][T13101] netlink: 'syz.2.2094': attribute type 3 has an invalid length.
[  437.758080][T13101] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.2094'.
[  438.113506][T13117] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.220378][T13117] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.339043][T13117] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.340260][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  438.600912][T13117] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.839289][T13140] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2107'.
[  439.026036][T13117] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  439.114995][T13117] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  439.171696][T13117] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  439.273042][T13117] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  439.589542][T13158] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2099'.
[  439.831990][T13174] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2121'.
[  440.073804][T13184] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (6)
[  440.213216][T13189] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.2127'.
[  440.223001][T13189] openvswitch: netlink: Message has 44053 unknown bytes.
[  440.652579][T13205] netlink: 'syz.2.2134': attribute type 29 has an invalid length.
[  440.703224][T13205] netlink: 'syz.2.2134': attribute type 29 has an invalid length.
[  441.137546][T13217] netlink: 'syz.3.2140': attribute type 1 has an invalid length.
[  441.156128][T13217] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2140'.
[  441.442271][T13228] syzkaller0: entered promiscuous mode
[  441.457925][T13228] syzkaller0: entered allmulticast mode
[  441.590440][T13238] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2147'.
[  441.757636][T13242] netlink: 'syz.0.2150': attribute type 5 has an invalid length.
[  441.767616][T13242] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2150'.
[  442.100447][T13254] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2154'.
[  443.705396][T13264] openvswitch: netlink: VXLAN extension 0 has unexpected len 3 expected 0
[  444.674665][T13254] gretap0: entered promiscuous mode
[  444.682892][T13254] gretap0: left promiscuous mode
[  444.724860][T13257] bond0: Unable to set peer notification delay as MII monitoring is disabled
[  445.192829][T13290] wg1 speed is unknown, defaulting to 1000
[  446.105629][T13304] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2171'.
[  446.125479][T13311] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2170'.
[  446.148826][T13312] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2173'.
[  446.719316][T13333] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2177'.
[  446.961315][T13336] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2180'.
[  447.066966][T13343] FAULT_INJECTION: forcing a failure.
[  447.066966][T13343] name failslab, interval 1, probability 0, space 0, times 0
[  447.108985][T13341] pim6reg1: entered promiscuous mode
[  447.115889][T13343] CPU: 1 UID: 0 PID: 13343 Comm: syz.1.2184 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  447.115918][T13343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  447.115930][T13343] Call Trace:
[  447.115937][T13343]  <TASK>
[  447.115946][T13343]  dump_stack_lvl+0x241/0x360
[  447.115979][T13343]  ? __pfx_dump_stack_lvl+0x10/0x10
[  447.116001][T13343]  ? __pfx__printk+0x10/0x10
[  447.116036][T13343]  should_fail_ex+0x40a/0x550
[  447.116073][T13343]  should_failslab+0xac/0x100
[  447.116101][T13343]  __kmalloc_cache_noprof+0x70/0x390
[  447.116126][T13343]  ? sctp_add_bind_addr+0x89/0x3a0
[  447.116159][T13343]  sctp_add_bind_addr+0x89/0x3a0
[  447.116189][T13343]  sctp_copy_local_addr_list+0x311/0x500
[  447.116218][T13343]  ? sctp_copy_local_addr_list+0xab/0x500
[  447.116252][T13343]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  447.116283][T13343]  ? sctp_v4_is_any+0x35/0x60
[  447.116309][T13343]  ? sctp_copy_one_addr+0x94/0x360
[  447.116340][T13343]  sctp_bind_addr_copy+0xad/0x3b0
[  447.116366][T13343]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  447.116395][T13343]  sctp_connect_new_asoc+0x2f3/0x6c0
[  447.116419][T13343]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  447.116437][T13343]  ? sctp_sendmsg+0xf1a/0x35d0
[  447.116463][T13343]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  447.116480][T13343]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  447.116510][T13343]  sctp_sendmsg+0x1f64/0x35d0
[  447.116552][T13343]  ? __pfx_sctp_sendmsg+0x10/0x10
[  447.116576][T13343]  ? aa_sk_perm+0x96d/0xab0
[  447.116624][T13343]  ? inet_sendmsg+0x330/0x390
[  447.116655][T13343]  __sock_sendmsg+0x1a6/0x270
[  447.116688][T13343]  __sys_sendto+0x363/0x4c0
[  447.116717][T13343]  ? __pfx___sys_sendto+0x10/0x10
[  447.116755][T13343]  ? __fget_files+0x2a/0x410
[  447.116803][T13343]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  447.116835][T13343]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  447.116871][T13343]  __x64_sys_sendto+0xde/0x100
[  447.116897][T13343]  do_syscall_64+0xf3/0x230
[  447.116926][T13343]  ? clear_bhb_loop+0x35/0x90
[  447.116956][T13343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  447.116981][T13343] RIP: 0033:0x7f7411b8d169
[  447.116999][T13343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  447.117015][T13343] RSP: 002b:00007f7412a01038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  447.117036][T13343] RAX: ffffffffffffffda RBX: 00007f7411da5fa0 RCX: 00007f7411b8d169
[  447.117050][T13343] RDX: 0000000000034000 RSI: 00002000000000c0 RDI: 0000000000000003
[  447.117063][T13343] RBP: 00007f7412a01090 R08: 0000200000000100 R09: 0000000000000010
[  447.117075][T13343] R10: 0000000026000854 R11: 0000000000000246 R12: 0000000000000002
[  447.117087][T13343] R13: 0000000000000000 R14: 00007f7411da5fa0 R15: 00007ffe78951148
[  447.117121][T13343]  </TASK>
[  447.130199][T13341] pim6reg1: entered allmulticast mode
[  447.360321][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  447.558158][T13356] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2187'.
[  447.719152][T13358] openvswitch: netlink: Message has 8 unknown bytes.
[  447.781149][T13358] netlink: 'syz.0.2188': attribute type 12 has an invalid length.
[  447.974094][T13367] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2192'.
[  448.115902][T13369] wg1 speed is unknown, defaulting to 1000
[  448.341172][T13374] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2194'.
[  448.623862][T13378] syzkaller0: entered promiscuous mode
[  448.629775][T13378] syzkaller0: entered allmulticast mode
[  448.703673][T13387] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  448.897405][T13386] 8021q: adding VLAN 0 to HW filter on device bond12
[  448.941466][T13386] bond0: (slave bond12): Enslaving as an active interface with an up link
[  451.465216][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  452.193549][T13426] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2208'.
[  452.392222][T13433] bond0 (unregistering): Released all slaves
[  452.572264][T13448] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2214'.
[  452.794101][T13453] syzkaller0: entered promiscuous mode
[  452.799669][T13453] syzkaller0: entered allmulticast mode
[  454.662379][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  455.060385][ T5849] Bluetooth: hci4: command 0x0406 tx timeout
[  455.972193][T13488] 8021q: adding VLAN 0 to HW filter on device bond13
[  456.032713][T13488] bond0: (slave bond13): Enslaving as an active interface with an up link
[  456.299597][T13500] netlink: 'syz.4.2233': attribute type 7 has an invalid length.
[  456.336658][T13500] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2233'.
[  456.398595][T13504] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.571043][T13504] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.733063][T13511] netlink: 'syz.0.2237': attribute type 11 has an invalid length.
[  456.765742][T13504] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.988476][T13504] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.060533][T13515] FAULT_INJECTION: forcing a failure.
[  457.060533][T13515] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  457.128893][T13515] CPU: 1 UID: 0 PID: 13515 Comm: syz.2.2239 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  457.128923][T13515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  457.128936][T13515] Call Trace:
[  457.128944][T13515]  <TASK>
[  457.128952][T13515]  dump_stack_lvl+0x241/0x360
[  457.128983][T13515]  ? __pfx_dump_stack_lvl+0x10/0x10
[  457.129005][T13515]  ? __pfx__printk+0x10/0x10
[  457.129027][T13515]  ? __pfx_lock_release+0x10/0x10
[  457.129064][T13515]  should_fail_ex+0x40a/0x550
[  457.129098][T13515]  _copy_from_user+0x2d/0xb0
[  457.129126][T13515]  move_addr_to_kernel+0x82/0x150
[  457.129156][T13515]  __sys_sendto+0x268/0x4c0
[  457.129184][T13515]  ? __pfx___sys_sendto+0x10/0x10
[  457.129234][T13515]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  457.129265][T13515]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  457.129293][T13515]  ? exc_page_fault+0x590/0x8b0
[  457.129323][T13515]  __x64_sys_sendto+0xde/0x100
[  457.129349][T13515]  do_syscall_64+0xf3/0x230
[  457.129376][T13515]  ? clear_bhb_loop+0x35/0x90
[  457.129405][T13515]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.129430][T13515] RIP: 0033:0x7f7eee58effc
[  457.129448][T13515] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  457.129464][T13515] RSP: 002b:00007f7eef47aec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  457.129487][T13515] RAX: ffffffffffffffda RBX: 00007f7eef47afc0 RCX: 00007f7eee58effc
[  457.129501][T13515] RDX: 0000000000000020 RSI: 00007f7eef47b010 RDI: 0000000000000004
[  457.129514][T13515] RBP: 0000000000000000 R08: 00007f7eef47af14 R09: 000000000000000c
[  457.129525][T13515] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004
[  457.129537][T13515] R13: 00007f7eef47af68 R14: 00007f7eef47b010 R15: 0000000000000000
[  457.129567][T13515]  </TASK>
[  457.450094][T13525] xt_hashlimit: size too large, truncated to 1048576
[  457.631776][T13521] syzkaller0: entered promiscuous mode
[  457.637418][T13521] syzkaller0: entered allmulticast mode
[  457.730797][T13532] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2235'.
[  458.180885][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  460.704273][T13550] netlink: 'syz.1.2250': attribute type 4 has an invalid length.
[  460.795102][T13504] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  460.831879][T13504] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  460.884104][T13504] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  460.927057][T13504] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  461.104901][T13563] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2255'.
[  461.286885][T13569] bridge0: port 1(gretap0) entered blocking state
[  461.294070][T13569] bridge0: port 1(gretap0) entered disabled state
[  461.303101][T13569] gretap0: entered allmulticast mode
[  461.309806][T13569] gretap0: entered promiscuous mode
[  461.318307][T13569] bridge0: port 1(gretap0) entered blocking state
[  461.325542][T13569] bridge0: port 1(gretap0) entered forwarding state
[  461.347048][T13571] xt_bpf: check failed: parse error
[  461.347184][T13572] gretap0: left allmulticast mode
[  461.379165][T13572] gretap0: left promiscuous mode
[  461.390388][T13572] bridge0: port 1(gretap0) entered disabled state
[  461.447422][T13569] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2257'.
[  461.662795][T13578] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  461.706172][T13576] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2260'.
[  461.815998][T13578] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  461.917242][T13583] syzkaller0: entered promiscuous mode
[  461.952102][T13583] syzkaller0: entered allmulticast mode
[  462.038420][T13591] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2264'.
[  462.057855][T13591] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2264'.
[  462.068145][T13592] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  462.368164][T13595] openvswitch: netlink: Multiple metadata blocks provided
[  462.485638][T13598] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2261'.
[  462.980330][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  464.628143][T13578] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.743338][T13578] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.892850][T13578] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  464.959474][T13578] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  465.016767][T13613] bond0 (unregistering): Released all slaves
[  465.045492][T13578] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  465.091749][T13578] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  465.767418][T13638] netlink: 1268 bytes leftover after parsing attributes in process `syz.1.2281'.
[  465.821087][T13638] openvswitch: netlink: Message has 10 unknown bytes.
[  465.863934][T13640] syzkaller0: entered promiscuous mode
[  465.878898][T13640] syzkaller0: entered allmulticast mode
[  466.072914][T13648] openvswitch: netlink: IPv4 tun info is not correct
[  466.351405][T13659] netlink: 68 bytes leftover after parsing attributes in process `syz.3.2288'.
[  467.626258][ T5149] Bluetooth: hci4: command 0x0406 tx timeout
[  468.967550][T13650] workqueue: Failed to create a rescuer kthread for wq "bond0": -EINTR
[  469.260984][T13688] netlink: 'syz.2.2299': attribute type 1 has an invalid length.
[  469.408230][T13697] FAULT_INJECTION: forcing a failure.
[  469.408230][T13697] name failslab, interval 1, probability 0, space 0, times 0
[  469.423690][T13697] CPU: 0 UID: 0 PID: 13697 Comm: syz.3.2303 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  469.423719][T13697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  469.423731][T13697] Call Trace:
[  469.423738][T13697]  <TASK>
[  469.423746][T13697]  dump_stack_lvl+0x241/0x360
[  469.423779][T13697]  ? __pfx_dump_stack_lvl+0x10/0x10
[  469.423801][T13697]  ? __pfx__printk+0x10/0x10
[  469.423834][T13697]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  469.423863][T13697]  ? __pfx___might_resched+0x10/0x10
[  469.423894][T13697]  should_fail_ex+0x40a/0x550
[  469.423928][T13697]  should_failslab+0xac/0x100
[  469.423955][T13697]  __kmalloc_node_noprof+0xe1/0x4d0
[  469.423979][T13697]  ? __kasan_kmalloc+0x98/0xb0
[  469.424000][T13697]  ? __kvmalloc_node_noprof+0x72/0x190
[  469.424035][T13697]  __kvmalloc_node_noprof+0x72/0x190
[  469.424063][T13697]  page_pool_create_percpu+0x2f5/0xb70
[  469.424103][T13697]  bpf_test_run_xdp_live+0x2e6/0x2220
[  469.424132][T13697]  ? __pfx_lock_release+0x10/0x10
[  469.424167][T13697]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  469.424189][T13697]  ? __pfx___might_resched+0x10/0x10
[  469.424219][T13697]  ? __mutex_unlock_slowpath+0x227/0x800
[  469.424256][T13697]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  469.424283][T13697]  ? synchronize_rcu+0x11b/0x360
[  469.424306][T13697]  ? __pfx_synchronize_rcu+0x10/0x10
[  469.424352][T13697]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  469.424378][T13697]  ? 0xffffffffa0000d50
[  469.424418][T13697]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  469.424455][T13697]  ? _copy_from_user+0x95/0xb0
[  469.424481][T13697]  ? bpf_test_init+0x137/0x160
[  469.424508][T13697]  ? xdp_convert_md_to_buff+0x5b/0x330
[  469.424539][T13697]  bpf_prog_test_run_xdp+0x805/0x11e0
[  469.424574][T13697]  ? __pfx_lock_release+0x10/0x10
[  469.424613][T13697]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  469.424642][T13697]  ? __fget_files+0x2a/0x410
[  469.424673][T13697]  ? __fget_files+0x2a/0x410
[  469.424703][T13697]  ? fput+0x21b/0x290
[  469.424728][T13697]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  469.424758][T13697]  bpf_prog_test_run+0x2e4/0x360
[  469.424790][T13697]  __sys_bpf+0x487/0x820
[  469.424826][T13697]  ? __pfx___sys_bpf+0x10/0x10
[  469.424867][T13697]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  469.424898][T13697]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  469.424927][T13697]  ? do_syscall_64+0x100/0x230
[  469.424960][T13697]  __x64_sys_bpf+0x7c/0x90
[  469.424984][T13697]  do_syscall_64+0xf3/0x230
[  469.425011][T13697]  ? clear_bhb_loop+0x35/0x90
[  469.425040][T13697]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.425064][T13697] RIP: 0033:0x7f91ca38d169
[  469.425081][T13697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  469.425097][T13697] RSP: 002b:00007f91ca1f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  469.425120][T13697] RAX: ffffffffffffffda RBX: 00007f91ca5a5fa0 RCX: 00007f91ca38d169
[  469.425134][T13697] RDX: 0000000000000050 RSI: 0000200000000180 RDI: 000000000000000a
[  469.425147][T13697] RBP: 00007f91ca1f9090 R08: 0000000000000000 R09: 0000000000000000
[  469.425160][T13697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  469.425172][T13697] R13: 0000000000000000 R14: 00007f91ca5a5fa0 R15: 00007ffd66583a68
[  469.425203][T13697]  </TASK>
[  469.425380][T13697] page_pool_create_percpu() gave up with errno -12
[  470.293684][T13708] 8021q: adding VLAN 0 to HW filter on device bond6
[  470.341661][T13708] bond0: (slave bond6): Enslaving as an active interface with an up link
[  470.424869][T13714] netlink: 100 bytes leftover after parsing attributes in process `syz.4.2310'.
[  470.477621][T13714] nbd: must specify at least one socket
[  470.984792][T13732] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2314'.
[  471.018225][T13732] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2314'.
[  471.075540][T13732] 
: entered promiscuous mode
[  471.109297][T13732] bridge0: entered promiscuous mode
[  471.123515][T13732] hsr2: Slave A (
) is not up; please bring it up to get a fully working HSR network
[  471.133386][T13732] hsr2: Slave B (bridge0) is not up; please bring it up to get a fully working HSR network
[  471.321099][T13702] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2305'.
[  471.693033][T13742] netlink: 'syz.2.2317': attribute type 10 has an invalid length.
[  472.092998][T13755] bond0 (unregistering): Released all slaves
[  472.346089][T13769] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2327'.
[  472.356853][T13767] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2326'.
[  472.378764][T13767] nbd: must specify at least one socket
[  473.237310][T13797] 8021q: adding VLAN 0 to HW filter on device bond5
[  473.251861][T13797] bond0: (slave bond5): Enslaving as an active interface with an up link
[  473.288894][T13799] wg1 speed is unknown, defaulting to 1000
[  473.393861][T13805] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2336'.
[  473.531210][T13809] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2340'.
[  473.551448][T13811] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2336'.
[  474.416618][T13822] wg1 speed is unknown, defaulting to 1000
[  475.290900][T13840] netlink: 100 bytes leftover after parsing attributes in process `syz.4.2348'.
[  475.320242][T13840] nbd: must specify at least one socket
[  475.690796][T13853] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2353'.
[  475.711197][T13850] FAULT_INJECTION: forcing a failure.
[  475.711197][T13850] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  475.734150][T13850] CPU: 0 UID: 0 PID: 13850 Comm: syz.1.2352 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  475.734183][T13850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  475.734194][T13850] Call Trace:
[  475.734202][T13850]  <TASK>
[  475.734210][T13850]  dump_stack_lvl+0x241/0x360
[  475.734240][T13850]  ? __pfx_dump_stack_lvl+0x10/0x10
[  475.734262][T13850]  ? __pfx__printk+0x10/0x10
[  475.734285][T13850]  ? __pfx_lock_release+0x10/0x10
[  475.734322][T13850]  should_fail_ex+0x40a/0x550
[  475.734356][T13850]  _copy_from_user+0x2d/0xb0
[  475.734382][T13850]  copy_msghdr_from_user+0xae/0x680
[  475.734410][T13850]  ? __pfx___might_resched+0x10/0x10
[  475.734439][T13850]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  475.734472][T13850]  ? do_recvmmsg+0x44e/0xab0
[  475.734496][T13850]  ? __might_fault+0xaa/0x120
[  475.734521][T13850]  do_recvmmsg+0x3bd/0xab0
[  475.734557][T13850]  ? __pfx_do_recvmmsg+0x10/0x10
[  475.734599][T13850]  ? arch_irq_work_raise+0x6f/0x80
[  475.734638][T13850]  ? __pfx_bpf_send_signal_common+0x10/0x10
[  475.734667][T13850]  ? bpf_trace_run2+0x1fc/0x540
[  475.734697][T13850]  ? __pfx_lock_release+0x10/0x10
[  475.734748][T13850]  ? trace_sys_enter+0x74/0x120
[  475.734775][T13850]  __x64_sys_recvmmsg+0x199/0x250
[  475.734811][T13850]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  475.734832][T13850]  ? trace_sys_enter+0x74/0x120
[  475.734850][T13850]  ? rcu_is_watching+0x15/0xb0
[  475.734872][T13850]  ? trace_sys_enter+0x25/0x120
[  475.734896][T13850]  do_syscall_64+0xf3/0x230
[  475.734924][T13850]  ? clear_bhb_loop+0x35/0x90
[  475.734953][T13850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  475.734977][T13850] RIP: 0033:0x7f7411b8d169
[  475.734994][T13850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  475.735010][T13850] RSP: 002b:00007f7412a01038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  475.735033][T13850] RAX: ffffffffffffffda RBX: 00007f7411da5fa0 RCX: 00007f7411b8d169
[  475.735047][T13850] RDX: 0000000000000581 RSI: 0000200000001000 RDI: 0000000000000006
[  475.735059][T13850] RBP: 00007f7412a01090 R08: 0000000000000000 R09: 0000000000000000
[  475.735071][T13850] R10: 0000000040000000 R11: 0000000000000246 R12: 0000000000000001
[  475.735083][T13850] R13: 0000000000000000 R14: 00007f7411da5fa0 R15: 00007ffe78951148
[  475.735114][T13850]  </TASK>
[  476.265558][T13860] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  476.292137][T13867] netlink: 1268 bytes leftover after parsing attributes in process `syz.4.2357'.
[  476.309001][T13867] openvswitch: netlink: Message has 10 unknown bytes.
[  476.751737][T13873] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2360'.
[  477.198665][T13885] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2364'.
[  477.341454][T13887] 8021q: adding VLAN 0 to HW filter on device bond6
[  477.368968][T13887] bond0: (slave bond6): Enslaving as an active interface with an up link
[  477.572187][T13893] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2367'.
[  477.597362][T13893] nbd: must specify at least one socket
[  477.613972][T13896] netlink: 2292 bytes leftover after parsing attributes in process `syz.3.2368'.
[  477.623330][T13898] xt_hashlimit: size too large, truncated to 1048576
[  477.681588][T13899] xt_TCPMSS: Only works on TCP SYN packets
[  477.730599][T13901] xt_hashlimit: size too large, truncated to 1048576
[  478.100828][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  478.162409][T13912] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2374'.
[  479.243450][T13928] net veth1_virt_wifi ÿÿÿÿÿÿ: renamed from virt_wifi0
[  479.325833][T13932] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2381'.
[  479.346245][T13932] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2381'.
[  479.370203][T13932] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2381'.
[  479.398059][T13932] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2381'.
[  479.941674][T13945] nbd: must specify at least one socket
[  480.042835][T13950] dccp_v4_rcv: dropped packet with invalid checksum
[  480.364174][T13955] netlink: 'syz.3.2391': attribute type 4 has an invalid length.
[  480.572030][T13965] netlink: 'syz.3.2395': attribute type 1 has an invalid length.
[  480.584171][T13965] netlink: 'syz.3.2395': attribute type 4 has an invalid length.
[  480.839467][T13970] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.942718][T13970] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.139622][T13970] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.362199][T13970] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.771935][T13970] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  481.853540][T13970] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  481.910631][T13970] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  481.952105][T13970] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  482.024934][T13991] __nla_validate_parse: 3 callbacks suppressed
[  482.024958][T13991] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2399'.
[  482.118860][T13990] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2397'.
[  482.619581][T14004] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2408'.
[  482.640376][T14004] nbd: must specify at least one socket
[  482.915962][T14009] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2410'.
[  483.461263][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  483.569524][T14027] batadv_slave_1: entered promiscuous mode
[  483.600221][T14027] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2416'.
[  483.643208][T14029] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2414'.
[  483.803353][T14033] wg1 speed is unknown, defaulting to 1000
[  484.103522][T14033] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2417'.
[  484.167080][T14044] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.214554][T14041] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2417'.
[  484.258519][T14046] netlink: 'syz.0.2421': attribute type 12 has an invalid length.
[  484.292897][T14046] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2421'.
[  484.738027][T14044] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.940468][T14044] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  485.298810][T14057] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2423'.
[  485.306655][T14044] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  485.871622][T14072] netlink: 'syz.2.2426': attribute type 3 has an invalid length.
[  486.011347][T14074] nbd: must specify at least one socket
[  486.338424][T14044] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  486.380675][T14044] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  486.425448][T14044] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  486.463106][T14044] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  486.738874][T14097] batadv1: left allmulticast mode
[  486.755053][T14097] batadv1: left promiscuous mode
[  486.770662][T14097] bridge0: port 1(batadv1) entered disabled state
[  486.812015][T14097] bond0: (slave bond3): Releasing backup interface
[  486.827273][T14097] bond0: (slave bond3): the permanent HWaddr of slave - ba:34:ca:0f:a8:70 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  486.893931][T14097] batman_adv: batadv0: Removing interface: ipvlan2
[  486.910893][T14097] bond0: (slave bond4): Releasing backup interface
[  486.945433][T14097] bond0: (slave bond5): Releasing backup interface
[  486.972473][T14097] bond0: (slave bond6): Releasing backup interface
[  487.227972][T14107] __nla_validate_parse: 4 callbacks suppressed
[  487.227995][T14107] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2439'.
[  487.537128][T14115] bond0 (unregistering): Released all slaves
[  487.903573][T14126] FAULT_INJECTION: forcing a failure.
[  487.903573][T14126] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  487.940407][T14126] CPU: 0 UID: 0 PID: 14126 Comm: syz.0.2445 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  487.940442][T14126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  487.940455][T14126] Call Trace:
[  487.940462][T14126]  <TASK>
[  487.940471][T14126]  dump_stack_lvl+0x241/0x360
[  487.940502][T14126]  ? __pfx_dump_stack_lvl+0x10/0x10
[  487.940523][T14126]  ? __pfx__printk+0x10/0x10
[  487.940546][T14126]  ? __pfx_lock_release+0x10/0x10
[  487.940583][T14126]  should_fail_ex+0x40a/0x550
[  487.940618][T14126]  _copy_from_user+0x2d/0xb0
[  487.940644][T14126]  copy_msghdr_from_user+0xae/0x680
[  487.940672][T14126]  ? __pfx___might_resched+0x10/0x10
[  487.940698][T14126]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  487.940728][T14126]  ? do_recvmmsg+0x44e/0xab0
[  487.940747][T14126]  ? __might_fault+0xaa/0x120
[  487.940767][T14126]  do_recvmmsg+0x3bd/0xab0
[  487.940799][T14126]  ? __pfx_do_recvmmsg+0x10/0x10
[  487.940843][T14126]  ? rcu_read_lock_any_held+0xb7/0x160
[  487.940866][T14126]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  487.940890][T14126]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  487.940924][T14126]  ? sb_end_write+0xe9/0x1c0
[  487.940962][T14126]  ? vfs_write+0x7fa/0xd10
[  487.940985][T14126]  ? do_sys_openat2+0x17a/0x1d0
[  487.941023][T14126]  ? __pfx_do_sys_openat2+0x10/0x10
[  487.941069][T14126]  __x64_sys_recvmmsg+0x199/0x250
[  487.941097][T14126]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  487.941123][T14126]  ? do_syscall_64+0x100/0x230
[  487.941155][T14126]  ? do_syscall_64+0xb6/0x230
[  487.941185][T14126]  do_syscall_64+0xf3/0x230
[  487.941212][T14126]  ? clear_bhb_loop+0x35/0x90
[  487.941241][T14126]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  487.941267][T14126] RIP: 0033:0x7f603238d169
[  487.941285][T14126] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  487.941302][T14126] RSP: 002b:00007f6033216038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  487.941326][T14126] RAX: ffffffffffffffda RBX: 00007f60325a5fa0 RCX: 00007f603238d169
[  487.941340][T14126] RDX: 0000000000000a0d RSI: 00002000000066c0 RDI: 0000000000000005
[  487.941354][T14126] RBP: 00007f6033216090 R08: 0000000000000000 R09: 0000000000000000
[  487.941366][T14126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  487.941379][T14126] R13: 0000000000000000 R14: 00007f60325a5fa0 R15: 00007ffefd14b518
[  487.941410][T14126]  </TASK>
[  488.275958][T14131] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  488.527352][T14131] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  488.624033][T14136] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2448'.
[  488.643546][T14136] nbd: must specify at least one socket
[  488.665589][T14131] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  488.945166][T14144] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2451'.
[  488.986747][T14131] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  489.274792][T14151] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2446'.
[  489.720813][T14142] Bluetooth: hci4: Opcode 0x0401 failed: -4
[  489.944609][T14163] 8021q: adding VLAN 0 to HW filter on device bond7
[  489.961753][T14163] bond0: (slave bond7): Enslaving as an active interface with an up link
[  490.038989][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  490.106052][T14167] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2457'.
[  490.120370][T14167] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2457'.
[  490.903696][ T5149] Bluetooth: hci4: command 0x0406 tx timeout
[  490.939222][T14183] netlink: 144 bytes leftover after parsing attributes in process `syz.1.2462'.
[  490.977201][T14088] Set syz1 is full, maxelem 65536 reached
[  491.072328][T14185] netlink: 100 bytes leftover after parsing attributes in process `syz.1.2463'.
[  491.081904][T14185] nbd: must specify at least one socket
[  491.259700][T14131] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  491.295575][T14131] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  491.328158][T14131] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  491.335973][T14192] netlink: 'syz.0.2465': attribute type 1 has an invalid length.
[  491.353287][T14131] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  491.397703][T14192] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2465'.
[  491.813392][T14207] netlink: 'syz.3.2470': attribute type 1 has an invalid length.
[  491.825049][T14207] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2470'.
[  492.064417][T14218] FAULT_INJECTION: forcing a failure.
[  492.064417][T14218] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  492.092145][T14218] CPU: 0 UID: 0 PID: 14218 Comm: syz.4.2473 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  492.092177][T14218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  492.092189][T14218] Call Trace:
[  492.092195][T14218]  <TASK>
[  492.092203][T14218]  dump_stack_lvl+0x241/0x360
[  492.092235][T14218]  ? __pfx_dump_stack_lvl+0x10/0x10
[  492.092257][T14218]  ? __pfx__printk+0x10/0x10
[  492.092279][T14218]  ? __pfx_lock_release+0x10/0x10
[  492.092318][T14218]  should_fail_ex+0x40a/0x550
[  492.092352][T14218]  _copy_from_user+0x2d/0xb0
[  492.092380][T14218]  copy_msghdr_from_user+0xae/0x680
[  492.092416][T14218]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  492.092443][T14218]  ? __fget_files+0x2a/0x410
[  492.092474][T14218]  ? __fget_files+0x2a/0x410
[  492.092510][T14218]  __sys_sendmmsg+0x32b/0x720
[  492.092547][T14218]  ? __pfx___sys_sendmmsg+0x10/0x10
[  492.092583][T14218]  ? __pfx_lock_release+0x10/0x10
[  492.092608][T14218]  ? kstrtouint_from_user+0x128/0x190
[  492.092657][T14218]  ? ksys_write+0x22a/0x2b0
[  492.092677][T14218]  ? __pfx_lock_release+0x10/0x10
[  492.092713][T14218]  ? sb_end_write+0xe9/0x1c0
[  492.092740][T14218]  ? vfs_write+0x7fa/0xd10
[  492.092763][T14218]  ? __mutex_unlock_slowpath+0x227/0x800
[  492.092831][T14218]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  492.092862][T14218]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  492.092891][T14218]  ? do_syscall_64+0x100/0x230
[  492.092923][T14218]  __x64_sys_sendmmsg+0xa0/0xb0
[  492.092949][T14218]  do_syscall_64+0xf3/0x230
[  492.092977][T14218]  ? clear_bhb_loop+0x35/0x90
[  492.093006][T14218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.093031][T14218] RIP: 0033:0x7f23ecb8d169
[  492.093048][T14218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  492.093065][T14218] RSP: 002b:00007f23eda94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  492.093088][T14218] RAX: ffffffffffffffda RBX: 00007f23ecda5fa0 RCX: 00007f23ecb8d169
[  492.093103][T14218] RDX: 0000000000000001 RSI: 0000200000000640 RDI: 0000000000000003
[  492.093116][T14218] RBP: 00007f23eda94090 R08: 0000000000000000 R09: 0000000000000000
[  492.093128][T14218] R10: 0000000004000840 R11: 0000000000000246 R12: 0000000000000001
[  492.093141][T14218] R13: 0000000000000000 R14: 00007f23ecda5fa0 R15: 00007ffddea8e0e8
[  492.093173][T14218]  </TASK>
[  492.501958][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  492.862238][T14237] bond0 (unregistering): Released all slaves
[  493.135331][T14248] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  493.265763][T14256] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2485'.
[  493.275515][T14256] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2485'.
[  493.402940][T14262] netlink: 100 bytes leftover after parsing attributes in process `syz.4.2486'.
[  493.445666][T14262] nbd: must specify at least one socket
[  494.054158][T14281] openvswitch: netlink: VXLAN extension 0 has unexpected len 3 expected 0
[  494.518946][T14296] Cannot find map_set index 65532 as target
[  494.563603][T14292] bond0 (unregistering): Released all slaves
[  494.590765][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  495.255358][T14322] netlink: 100 bytes leftover after parsing attributes in process `syz.1.2504'.
[  495.285236][T14322] nbd: must specify at least one socket
[  495.449736][T14328] xt_recent: Unsupported userspace flags (00000042)
[  495.779871][T14334] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  495.942002][T14334] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.152211][T14334] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.302266][T14334] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.536734][T14368] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2517'.
[  496.567965][T14362] syzkaller0: entered promiscuous mode
[  496.582492][T14362] syzkaller0: entered allmulticast mode
[  496.600728][T14373] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2517'.
[  496.668846][T14365] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2518'.
[  496.727094][T14334] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  496.735403][T14369] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2518'.
[  496.735438][T14369] nbd: device at index 64 is going down
[  497.060098][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  497.274376][T14389] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2523'.
[  497.294755][T14389] nbd: must specify at least one socket
[  499.637397][T14334] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  499.672412][T14371] syzkaller0: entered promiscuous mode
[  499.677982][T14371] syzkaller0: entered allmulticast mode
[  501.786434][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  501.895245][T14334] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  501.936985][T14334] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  502.156451][T14416] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2531'.
[  502.211805][T14418] syzkaller0: entered promiscuous mode
[  502.250391][T14418] syzkaller0: entered allmulticast mode
[  502.252888][T14421] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2535'.
[  502.961321][T14440] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2539'.
[  503.027747][T14443] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2539'.
[  504.960529][T14433] workqueue: Failed to create a rescuer kthread for wq "bond0": -EINTR
[  505.168734][T14447] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2540'.
[  505.366006][T14462] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2546'.
[  505.687456][T14473] xt_policy: neither incoming nor outgoing policy selected
[  506.023430][T14479] syzkaller0: entered promiscuous mode
[  506.038406][T14479] syzkaller0: entered allmulticast mode
[  506.087686][T14480] bond0 (unregistering): Released all slaves
[  506.321509][T14495] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2555'.
[  506.405242][T14502] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2555'.
[  507.230847][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  508.822951][T14515] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2561'.
[  508.846083][T14520] netlink: 'syz.4.2563': attribute type 11 has an invalid length.
[  508.853265][T14519] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2565'.
[  509.006850][T14522] bond14: (slave ip6gretap1): Enslaving as an active interface with an up link
[  509.107147][T14519] 8021q: adding VLAN 0 to HW filter on device bond14
[  509.117122][T14522] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2565'.
[  509.128654][T14525] wg1 speed is unknown, defaulting to 1000
[  509.647687][T14542] syzkaller0: entered promiscuous mode
[  509.653622][T14542] syzkaller0: entered allmulticast mode
[  509.970656][T14564] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2575'.
[  510.047343][T14569] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2575'.
[  510.123140][T14571] No such timeout policy "syz0"
[  511.630184][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  512.597041][T14581] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2581'.
[  512.598907][T14583] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2582'.
[  512.648885][T14583] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2582'.
[  512.673230][T14584] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2581'.
[  513.074971][T14600] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2589'.
[  513.244893][T14604] wg1 speed is unknown, defaulting to 1000
[  513.486078][T14608] syzkaller0: entered promiscuous mode
[  513.501132][T14608] syzkaller0: entered allmulticast mode
[  513.545008][T14606] wg1 speed is unknown, defaulting to 1000
[  513.750649][T14622] openvswitch: netlink: Flow actions attr not present in new flow.
[  517.077077][T14648] wg1 speed is unknown, defaulting to 1000
[  517.129074][T14655] __nla_validate_parse: 3 callbacks suppressed
[  517.129097][T14655] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2606'.
[  517.368525][T14657] syzkaller0: entered promiscuous mode
[  517.386541][T14657] syzkaller0: entered allmulticast mode
[  517.739854][T14668] Set syz1 is full, maxelem 65536 reached
[  521.059708][T14693] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  521.088250][T14693] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  521.332142][T14707] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2624'.
[  521.469764][T14713] openvswitch: netlink: IP tunnel dst address not specified
[  521.636068][T14717] RDS: rds_bind could not find a transport for ::ffff:100.1.1.2, load rds_tcp or rds_rdma?
[  522.279589][T14737] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2634'.
[  522.587473][T14751] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2641'.
[  522.623635][T14748] 8021q: adding VLAN 0 to HW filter on device bond15
[  522.645465][T14748] bond0: (slave bond15): Enslaving as an active interface with an up link
[  523.120727][T14782] lo speed is unknown, defaulting to 1000
[  523.126782][T14782] lo speed is unknown, defaulting to 1000
[  523.148081][T14782] lo speed is unknown, defaulting to 1000
[  523.184852][T14785] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2650'.
[  523.201956][T14782] infiniband s›z0: RDMA CMA: cma_listen_on_dev, error -98
[  523.228332][T14785] netlink: 260 bytes leftover after parsing attributes in process `syz.0.2650'.
[  523.273568][T14782] lo speed is unknown, defaulting to 1000
[  523.289515][T14782] lo speed is unknown, defaulting to 1000
[  523.309576][T14782] lo speed is unknown, defaulting to 1000
[  523.330868][T14782] lo speed is unknown, defaulting to 1000
[  523.347107][T14782] lo speed is unknown, defaulting to 1000
[  523.412264][T14789] netlink: 1284 bytes leftover after parsing attributes in process `syz.3.2653'.
[  523.428051][T14789] openvswitch: netlink: Missing key (keys=40, expected=80)
[  523.645344][T14799] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  523.703386][T14801] openvswitch: netlink: Key 22 has unexpected len 2 expected 4
[  523.746839][T14799] wg1 speed is unknown, defaulting to 1000
[  523.773878][T14799] lo speed is unknown, defaulting to 1000
[  524.006434][T14815] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2660'.
[  524.101476][T14818] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2663'.
[  524.227331][T14823] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2664'.
[  524.747158][ T5849] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  525.021740][T14857] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2674'.
[  525.290931][T14866] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2678'.
[  525.523905][T14879] xt_l2tp: unknown flags: 10
[  525.626206][ T5849] Bluetooth: hci4: command 0x0406 tx timeout
[  525.695462][T14882] netlink: 'syz.4.2685': attribute type 13 has an invalid length.
[  525.985161][T14900] netlink: 'syz.2.2690': attribute type 1 has an invalid length.
[  526.011358][T14889] wg1 speed is unknown, defaulting to 1000
[  526.206156][T14889] lo speed is unknown, defaulting to 1000
[  526.221101][T14897] wg1 speed is unknown, defaulting to 1000
[  526.272158][ T6212] tipc: Subscription rejected, illegal request
[  526.300598][ T9072] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  526.313616][T14897] lo speed is unknown, defaulting to 1000
[  526.420538][ T9057] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  526.480498][ T5929] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  526.545470][ T9057] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  526.781919][ T9057] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  526.930450][ T9057] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  527.023233][ T9057] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  527.090769][ T9072] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  527.260255][ T9072] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  527.326602][T14928] __nla_validate_parse: 5 callbacks suppressed
[  527.326624][T14928] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2699'.
[  527.390249][ T9072] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  527.547604][T14933] netlink: 'syz.0.2701': attribute type 4 has an invalid length.
[  527.581977][T14928] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2699'.
[  527.952263][T14946] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2705'.
[  528.241928][T14951] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  528.971864][T14976] openvswitch: netlink: Missing valid actions attribute.
[  529.026897][T14976] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  529.051930][T14967] bond7 (unregistering): Released all slaves
[  529.504391][T14974] netlink: 'syz.3.2715': attribute type 3 has an invalid length.
[  529.912942][T14991] netlink: 'syz.3.2722': attribute type 10 has an invalid length.
[  529.933345][T14990] netlink: 'syz.4.2721': attribute type 72 has an invalid length.
[  529.980174][T14990] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2721'.
[  529.998994][T14991] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2722'.
[  530.212599][T15000] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2725'.
[  530.229599][T15000] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2725'.
[  530.252036][T15002] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2725'.
[  530.261854][T15002] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2725'.
[  530.317307][T14999] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2724'.
[  530.979812][T15022] netlink: 'syz.2.2733': attribute type 10 has an invalid length.
[  531.906027][T15050] wg1 speed is unknown, defaulting to 1000
[  531.924090][T15050] lo speed is unknown, defaulting to 1000
[  532.069024][T15037] ax25_connect(): syz.3.2740 uses autobind, please contact jreuter@yaina.de
[  532.246009][T15036] ------------[ cut here ]------------
[  532.252007][T15036] refcount_t: decrement hit 0; leaking memory.
[  532.270794][T15036] WARNING: CPU: 1 PID: 15036 at lib/refcount.c:31 refcount_warn_saturate+0xfa/0x1d0
[  532.280358][T15036] Modules linked in:
[  532.284304][T15036] CPU: 1 UID: 0 PID: 15036 Comm: syz.3.2740 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  532.295184][T15036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  532.305445][T15036] RIP: 0010:refcount_warn_saturate+0xfa/0x1d0
[  532.311648][T15036] Code: b2 00 00 00 e8 d7 2e cc fc 5b 5d c3 cc cc cc cc e8 cb 2e cc fc c6 05 38 7b 31 0b 01 90 48 c7 c7 80 b5 80 8c e8 87 e9 8b fc 90 <0f> 0b 90 90 eb d9 e8 ab 2e cc fc c6 05 15 7b 31 0b 01 90 48 c7 c7
[  532.332212][T15036] RSP: 0018:ffffc900033f7b68 EFLAGS: 00010246
[  532.338979][T15036] RAX: d42a6388978cc600 RBX: ffff88803104664c RCX: ffff888079c2bc00
[  532.347128][T15036] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  532.355379][T15036] RBP: 0000000000000004 R08: ffffffff8181ae52 R09: 1ffff110170c519a
[  532.363942][T15036] R10: dffffc0000000000 R11: ffffed10170c519b R12: ffff888031046608
[  532.372125][T15036] R13: 0000000000000000 R14: ffff88803104664c R15: dffffc0000000000
[  532.380307][T15036] FS:  0000555566a99500(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  532.389326][T15036] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  532.396190][T15036] CR2: 00007f60325762d8 CR3: 0000000027920000 CR4: 00000000003526f0
[  532.404435][T15036] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  532.412722][T15036] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  532.420865][T15036] Call Trace:
[  532.424289][T15036]  <TASK>
[  532.427605][T15036]  ? __warn+0x165/0x4d0
[  532.432275][T15036]  ? refcount_warn_saturate+0xfa/0x1d0
[  532.437824][T15036]  ? report_bug+0x2b3/0x500
[  532.442558][T15036]  ? refcount_warn_saturate+0xfa/0x1d0
[  532.448178][T15036]  ? handle_bug+0x60/0x90
[  532.452720][T15036]  ? exc_invalid_op+0x1a/0x50
[  532.457641][T15036]  ? asm_exc_invalid_op+0x1a/0x20
[  532.462800][T15036]  ? __warn_printk+0x292/0x360
[  532.467626][T15036]  ? refcount_warn_saturate+0xfa/0x1d0
[  532.473327][T15036]  ? refcount_warn_saturate+0xf9/0x1d0
[  532.478868][T15036]  ref_tracker_free+0x6af/0x7e0
[  532.483828][T15036]  ? __pfx_ref_tracker_free+0x10/0x10
[  532.489276][T15036]  ? ax25_destroy_socket+0x551/0x5c0
[  532.494791][T15036]  ax25_release+0x368/0x960
[  532.499390][T15036]  sock_close+0xbc/0x240
[  532.504100][T15036]  ? __pfx_sock_close+0x10/0x10
[  532.509022][T15036]  __fput+0x3e9/0x9f0
[  532.513155][T15036]  task_work_run+0x24f/0x310
[  532.517888][T15036]  ? _raw_spin_unlock+0x28/0x50
[  532.522881][T15036]  ? __pfx_task_work_run+0x10/0x10
[  532.528477][T15036]  ? syscall_exit_to_user_mode+0xa3/0x340
[  532.534659][T15036]  syscall_exit_to_user_mode+0x13f/0x340
[  532.540437][T15036]  do_syscall_64+0x100/0x230
[  532.545096][T15036]  ? clear_bhb_loop+0x35/0x90
[  532.549844][T15036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.555860][T15036] RIP: 0033:0x7f91ca38d169
[  532.560394][T15036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  532.560435][T15065] __nla_validate_parse: 5 callbacks suppressed
[  532.560452][T15065] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2749'.
[  532.580174][T15036] RSP: 002b:00007ffd66583bc8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  532.580241][T15036] RAX: 0000000000000000 RBX: 0000000000081b66 RCX: 00007f91ca38d169
[  532.580257][T15036] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  532.580270][T15036] RBP: 00007f91ca5a7ba0 R08: 0000000000000001 R09: 0000001b66583ebf
[  532.580286][T15036] R10: 00007f91ca000000 R11: 0000000000000246 R12: 00007f91ca5a5fac
[  532.580301][T15036] R13: 00007f91ca5a5fa0 R14: ffffffffffffffff R15: 00007ffd66583ce0
[  532.580338][T15036]  </TASK>
[  532.580352][T15036] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  532.580365][T15036] CPU: 1 UID: 0 PID: 15036 Comm: syz.3.2740 Not tainted 6.14.0-rc7-syzkaller-01433-g6bb0dcb3d321 #0
[  532.580388][T15036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  532.580400][T15036] Call Trace:
[  532.580407][T15036]  <TASK>
[  532.580416][T15036]  dump_stack_lvl+0x241/0x360
[  532.580445][T15036]  ? __pfx_dump_stack_lvl+0x10/0x10
[  532.580466][T15036]  ? __pfx__printk+0x10/0x10
[  532.580483][T15036]  ? _printk+0xd5/0x120
[  532.580503][T15036]  ? __init_begin+0x41000/0x41000
[  532.580531][T15036]  ? vscnprintf+0x5d/0x90
[  532.580556][T15036]  panic+0x349/0x880
[  532.580576][T15036]  ? __warn+0x174/0x4d0
[  532.580596][T15036]  ? __pfx_panic+0x10/0x10
[  532.580640][T15036]  __warn+0x344/0x4d0
[  532.580657][T15036]  ? refcount_warn_saturate+0xfa/0x1d0
[  532.580690][T15036]  report_bug+0x2b3/0x500
[  532.580770][T15036]  ? refcount_warn_saturate+0xfa/0x1d0
[  532.580803][T15036]  handle_bug+0x60/0x90
[  532.580820][T15036]  exc_invalid_op+0x1a/0x50
[  532.580837][T15036]  asm_exc_invalid_op+0x1a/0x20
[  532.580861][T15036] RIP: 0010:refcount_warn_saturate+0xfa/0x1d0
[  532.580886][T15036] Code: b2 00 00 00 e8 d7 2e cc fc 5b 5d c3 cc cc cc cc e8 cb 2e cc fc c6 05 38 7b 31 0b 01 90 48 c7 c7 80 b5 80 8c e8 87 e9 8b fc 90 <0f> 0b 90 90 eb d9 e8 ab 2e cc fc c6 05 15 7b 31 0b 01 90 48 c7 c7
[  532.580901][T15036] RSP: 0018:ffffc900033f7b68 EFLAGS: 00010246
[  532.580919][T15036] RAX: d42a6388978cc600 RBX: ffff88803104664c RCX: ffff888079c2bc00
[  532.580934][T15036] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  532.580945][T15036] RBP: 0000000000000004 R08: ffffffff8181ae52 R09: 1ffff110170c519a
[  532.580958][T15036] R10: dffffc0000000000 R11: ffffed10170c519b R12: ffff888031046608
[  532.580971][T15036] R13: 0000000000000000 R14: ffff88803104664c R15: dffffc0000000000
[  532.580991][T15036]  ? __warn_printk+0x292/0x360
[  532.581025][T15036]  ? refcount_warn_saturate+0xf9/0x1d0
[  532.581049][T15036]  ref_tracker_free+0x6af/0x7e0
[  532.581072][T15036]  ? __pfx_ref_tracker_free+0x10/0x10
[  532.581106][T15036]  ? ax25_destroy_socket+0x551/0x5c0
[  532.581131][T15036]  ax25_release+0x368/0x960
[  532.581160][T15036]  sock_close+0xbc/0x240
[  532.581184][T15036]  ? __pfx_sock_close+0x10/0x10
[  532.581211][T15036]  __fput+0x3e9/0x9f0
[  532.581249][T15036]  task_work_run+0x24f/0x310
[  532.581268][T15036]  ? _raw_spin_unlock+0x28/0x50
[  532.581296][T15036]  ? __pfx_task_work_run+0x10/0x10
[  532.581320][T15036]  ? syscall_exit_to_user_mode+0xa3/0x340
[  532.581349][T15036]  syscall_exit_to_user_mode+0x13f/0x340
[  532.581377][T15036]  do_syscall_64+0x100/0x230
[  532.581403][T15036]  ? clear_bhb_loop+0x35/0x90
[  532.581430][T15036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.581453][T15036] RIP: 0033:0x7f91ca38d169
[  532.581469][T15036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  532.581484][T15036] RSP: 002b:00007ffd66583bc8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  532.581504][T15036] RAX: 0000000000000000 RBX: 0000000000081b66 RCX: 00007f91ca38d169
[  532.581517][T15036] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  532.581528][T15036] RBP: 00007f91ca5a7ba0 R08: 0000000000000001 R09: 0000001b66583ebf
[  532.581541][T15036] R10: 00007f91ca000000 R11: 0000000000000246 R12: 00007f91ca5a5fac
[  532.581554][T15036] R13: 00007f91ca5a5fa0 R14: ffffffffffffffff R15: 00007ffd66583ce0
[  532.581584][T15036]  </TASK>
[  532.587365][T15036] Kernel Offset: disabled