last executing test programs: 34.378391996s ago: executing program 0 (id=923): r0 = socket$unix(0x1, 0x5, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) r2 = socket$unix(0x1, 0x5, 0x0) r3 = socket$can_bcm(0x1d, 0x2, 0x2) socket(0x2c, 0x80000, 0xffff) connect$can_bcm(r3, &(0x7f0000000000), 0x10) sendmsg$can_bcm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r2, @ANYBLOB], 0x20000600}}, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x10012, r4, 0x0) r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0) ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000140)) ioctl$PPPIOCSPASS(r5, 0x40107447, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x4d, 0x8, 0x0, 0x7}]}) socket$l2tp6(0xa, 0x2, 0x73) sendmsg$can_bcm(r3, &(0x7f0000000080)={&(0x7f0000000340)={0x1d, r1, 0x3f420f00}, 0x10, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[], 0x4640}, 0x2}, 0x0) 34.218321126s ago: executing program 0 (id=926): r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$nl_crypto(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@upd={0xe0, 0x12, 0x1, 0x0, 0x0, {{'drbg_pr_sha384\x00'}, '\x00', '\x00', 0x0, 0x2000}}, 0xe0}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a00)=ANY=[@ANYBLOB="0100000001800000000000000000000005000000"], 0x14}, 0x1, 0x0, 0x0, 0x24000001}, 0x0) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14040000", @ANYRES16=0x0, @ANYBLOB='\x00\x00#\x00'/18, @ANYRES32=0x0, @ANYBLOB="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"], 0x414}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000000)={'team0\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="3c00000010000100"/20, @ANYRES32=0x0, @ANYBLOB="02210000000000001400030076657468305f766c616e00000000000008000a00", @ANYRES32=r3, @ANYBLOB="a1c3f4222c102a0800000000000000a567f6ac38a0791647bbba730c3bdc49f24187b9a25440dfbf6b1c1800"], 0x3c}}, 0x0) r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$WPAN_WANTLQI(r4, 0x0, 0x3, &(0x7f0000000840), &(0x7f0000000880)=0x4) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) r6 = socket$netlink(0x10, 0x3, 0xc) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb790789005e107538e486dd6317ce22000000fffe80000000000000101000007f0600080000000000000071273fa7b49301641184a907"], 0xfdef) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r8, r9, 0x2, 0x2, 0x0, @void, @value}, 0x10) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000700)=ANY=[@ANYRES32=r7, @ANYRES32=r10, @ANYBLOB="0200000000000000000000216aa0c4771a0f053bfd5d2f10a0cef59b2374fac6335733ed512f5102dde52f6bdcf747403d7432107481e7ee9b10ec414f725f6d535bd78024f6df26004ab797df220cabd8ca39be7f4eabfccbacb5ca37e66513201799cc0be117587108d5f805e20dcd9c865ead96fb815c6ad8fa1499aef1c4f875ca72e3da5e4cdbc536", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r11 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r11, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1100}, 0x48) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r6, 0x10e, 0x1, &(0x7f0000000040)=0x7, 0x4) sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a050000000000efffffff010000005800010073797a30000000002c000000030a01010000000000000000010000070900030073797a310000000009000100797a300000000050000000060a010400000000000000000100000028000480240001800b00010072656a6563740000140002800800014000000003a70002020000ab57fafea9000008000b40000000000900010073797a300000000014000000110001000000000000000000"], 0xc4}}, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0) 34.030580317s ago: executing program 0 (id=929): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0) (async) r1 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f000000a280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=@newtaction={0x14, 0x5a, 0x301, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async) r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x10, &(0x7f0000000180)=@framed={{0x18, 0x8, 0x0, 0x60}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xffff8000}, {}, {0x7, 0x0, 0xb, 0x9}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x0}) (async) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0xb, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x7437b000) (async) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000024001280090001007866726d0000000014000280080001000400000008000200020000000a000200"], 0x5c}}, 0x0) syz_emit_ethernet(0x46, &(0x7f0000000400)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x4, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x6, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @loopback, @multicast2}, "00186371ae9b1c03"}}}}}, 0x0) (async) r4 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3b}, 0x1c) (async) r5 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0) write$cgroup_subtree(r5, &(0x7f0000000180)=ANY=[@ANYBLOB="2b706572665f0e07000000000000f55891b7bf0369217e656e74202b70696473202d668b65657a6572202d696f20"], 0x1f) r6 = socket$nl_route(0x10, 0x3, 0x0) (async) r7 = socket(0xa, 0x5, 0x194) recvfrom$ax25(r7, 0x0, 0x0, 0x12040, 0x0, 0x0) (async) r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r9}, 0x10) (async) sendmsg$netlink(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001940)={0x114, 0x2b, 0x1, 0x0, 0x0, "", [@nested={0x103, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@mcast2}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd"]}]}, 0x114}], 0x1}, 0x0) (async) r10 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000a01080000000000000000070000000900010073797a300000000054000000090a010400000000000000000700000008000a9e3f5367000900020073797a31000000000900010073797a3000000000080005400000000c080003400000000808000740000000310800064000000000440000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000180003801400008008000340000000020800028004000100140000001000010000000000000000000084000a"], 0xe0}}, 0x0) (async) getpeername$ax25(r7, &(0x7f0000000040)={{0x3, @rose}, [@bcast, @bcast, @null, @remote, @null, @remote, @rose, @bcast]}, &(0x7f0000000100)=0x48) (async) sendmsg$nl_route_sched(r6, &(0x7f0000000080)={0x0, 0x38, &(0x7f0000000000)={&(0x7f0000000200)=@newtaction={0x6c, 0x30, 0xffff, 0x0, 0x0, {}, [{0x58, 0x1, [@m_ife={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}, @TCA_IFE_METALST={0xc, 0x6, [@IFE_META_TCINDEX={0x6, 0x2}]}]}, {0x4}, {0xc}, {0x4a}}}]}]}, 0x6c}}, 0x0) (async) sendmsg$IPCTNL_MSG_EXP_NEW(r10, &(0x7f00000004c0)={&(0x7f0000000400), 0xc, &(0x7f0000000480)={&(0x7f0000000500)={0x14, 0x0, 0x2, 0x401, 0x0, 0x0, {0x7, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4040) socketpair(0xf, 0x800, 0x10000, &(0x7f00000002c0)) 33.771122135s ago: executing program 0 (id=933): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x400448df, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) 24.341809631s ago: executing program 0 (id=933): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x400448df, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) 13.628832928s ago: executing program 0 (id=933): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x400448df, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) 9.262578257s ago: executing program 3 (id=1205): socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'}) socket$nl_route(0x10, 0x3, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local, {[@generic={0x88, 0x2}, @noop]}}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0x4}}}}}}, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000180)='w', 0x1}], 0x1, 0x1) listen(0xffffffffffffffff, 0x40) close(0xffffffffffffffff) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r1}, 0x10) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$TIPC_NL_MON_PEER_GET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x14, r4, 0xb03, 0x0, 0x0, {0xe}}, 0x14}}, 0x0) syz_genetlink_get_family_id$SEG6(&(0x7f0000000340), r3) setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4) recvmmsg(r2, &(0x7f00000061c0)=[{{0x0, 0x300, &(0x7f0000000280)=[{&(0x7f0000000180)=""/153, 0x99}], 0x1}}], 0xffffff1f, 0x102, 0x0) setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f00000000c0)=@gcm_256={{0x303, 0x36}, "b1d65ab71f5ef2fe", "9e8ecc7bb5352776725e1047711330ff2bb17b550800", "dc5d3f00", "46b0dc72b7b1d30e"}, 0x38) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000000)=@nat={'nat\x00', 0x670, 0x5, 0x328, 0x1e8, 0xa8, 0xfeffffff, 0xa8, 0xa8, 0x290, 0x290, 0xffffffff, 0x290, 0x290, 0x5, 0x0, {[{{@ip={@broadcast, @remote, 0x0, 0x0, 'geneve1\x00', 'geneve0\x00'}, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x0, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, @port, @gre_key}}}}, {{@uncond, 0x0, 0x70, 0x98, 0x0, {0x0, 0x7}}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x1e8}}, {{@uncond, 0x0, 0x70, 0xa8}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @local, @local, @gre_key, @gre_key}}}}, {{@ip={@private, @local, 0x0, 0x0, 'veth1_virt_wifi\x00', 'pim6reg0\x00', {}, {}, 0x88}, 0x0, 0x70, 0xa8}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @local, @loopback, @port, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x388) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000080)=0x7c1, 0x4) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x18, 0x3e, 0x107, 0x0, 0x0, {0x2, 0x7c}, [@typed={0x4, 0xcd}]}, 0x18}}, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0xfffd, @local}, 0x10) 7.111166941s ago: executing program 1 (id=1212): sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffd, 0x0, {{@in=@local, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@mcast2, 0x0, 0x2b}, @in6=@remote, {0x0, 0xb13f}, {}, {}, 0x0, 0x0, 0x2}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}}, 0x0) 6.89091518s ago: executing program 1 (id=1213): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x3, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000500)={'gre0\x00', &(0x7f0000000400)={'syztnl1\x00', 0x0, 0x0, 0x8000, 0x0, 0x4000000, {{0x5, 0x4, 0x0, 0x0, 0x14, 0xffbf, 0x0, 0xfe, 0x2f, 0x0, @empty, @private}}}}) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9c000000100001008100"/20, @ANYRES32=0x0, @ANYBLOB="02200000400000001400030077673200000000000000000000000000600019805c0002"], 0x9c}, 0x1, 0x0, 0x0, 0x80}, 0x0) bpf$ENABLE_STATS(0x20, &(0x7f0000000180), 0x4) r3 = socket(0x2, 0x3, 0xff) bind$inet(r3, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000100)=0xac0, 0x4) sendmmsg$unix(r3, &(0x7f0000002fc0)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)="643c87cf2bd21d995e613d73613b1e78334efea0", 0x14}], 0x1}}], 0x1, 0x0) mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000006800010000000000000000000200000000000000080006000100000004000b"], 0x24}}, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000796400000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000"], &(0x7f0000000000)='GPL\x00', 0xa, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 6.397210343s ago: executing program 1 (id=1218): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendmsg$802154_raw(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x400c004) 6.103058639s ago: executing program 1 (id=1220): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r0, 0x0, 0x19, &(0x7f0000000040)=0x633, 0x4) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)={0xffffffffffffffff}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0) ioctl$PPPIOCSMAXCID(r2, 0x40047451, &(0x7f00000004c0)=0x7) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x11, 0x3, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}, &(0x7f0000000340)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000080)={0x0, @in={{0x2, 0x4e22, @remote}}, [0x1e2e, 0x9, 0xffffffff, 0x3, 0x4, 0x1, 0x401, 0x4, 0x7, 0x9, 0x1, 0x9, 0xa71a, 0xffffffffffffff00]}, &(0x7f00000001c0)=0x100) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000200)={r3, 0xf5, "04dde6d9d8b3fc25bba8d34187e6bc35121359c84e1ed836c943436432d65125c46c6951679f577140efec578c516ff873cdb86d0a724bd062b545e79a13be2e53d40d173400d7aad5646334fabfe60f79a33f4e5365aa3bf03b5fcf6155af7870f06def2d27c5f273197eeb51c736d335f19fad6c4bae8e10358afb752f211f50ea93225db23c9f2f6b6796ef4b3d668bc5721b6d3518413b5f8cc8495a86970936ec67422dba4429177bc673a24b84ff74a2c0352c3f44799ce4c10329c640f63bfa4db8b8a935d4bb1757482fcae9e80a4795bf3f2e76fa77c533871a338d34761678c10e968cbb5d56f54ad0a67a556a5b74c2"}, &(0x7f0000000300)=0xfd) sendto$inet(r0, &(0x7f0000000180)="0100000000000000", 0x8, 0x0, &(0x7f0000000340)={0x2, 0x0, @local}, 0x10) r4 = socket$inet_dccp(0x2, 0x6, 0x0) setsockopt(r4, 0x10d, 0x10, &(0x7f0000000180)="80d68a83", 0x4) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="4400000010000304000000000000000000007404", @ANYRES32=0x0, @ANYBLOB="00000000000000002400128009000100626f6e64000000001400028006001900020000000500010004000000"], 0x44}}, 0x0) r6 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140), 0x24}}, 0x0) getsockname$packet(r6, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000480), r1) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x14, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x1}]}, @TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x4}]}]}}]}, 0x48}}, 0x0) r8 = socket$netlink(0x10, 0x3, 0x0) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0) r9 = socket(0x1d, 0x2, 0x6) setsockopt$ALG_SET_AEAD_AUTHSIZE(r9, 0x6a, 0x5, 0x20000000, 0x3) sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0) recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0x243, 0x0, 0x0) ioctl$sock_ax25_SIOCADDRT(r1, 0x890b, &(0x7f0000000400)={@default, @null, 0x7, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) 5.588731162s ago: executing program 1 (id=1222): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_PMTUDISC={0x5, 0xa, 0x1}, @IFLA_GRE_TOS={0x5, 0x9, 0xfe}]}}}]}, 0x44}}, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB="020700001f0000000000000000000000020018"], 0xf8}}, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt$inet6_int(r2, 0x29, 0xce, 0x0, &(0x7f00000007c0)=0xffffff78) r3 = socket(0x28, 0x5, 0x0) bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x2710, @my=0x0}, 0x10) listen(r3, 0x0) r4 = socket$pptp(0x18, 0x1, 0x2) bind$pptp(r4, &(0x7f0000000000)={0x18, 0x2, {0x1, @local}}, 0x1e) r5 = socket$pptp(0x18, 0x1, 0x2) bind$pptp(r5, &(0x7f0000000000)={0x18, 0x2, {0x0, @dev}}, 0x1e) connect$pptp(r5, &(0x7f0000000040)={0x18, 0x2, {0x0, @multicast1}}, 0x1e) r6 = socket$kcm(0x10, 0x3, 0x10) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.idle_time\x00', 0x0, 0x0) write$tun(r7, &(0x7f0000000100)={@val={0x0, 0x88f5}, @void, @eth={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x31}, @dev, @void, {@llc_tr={0x11, {@snap={0xaa, 0x1, "e7c4", "26d129", 0x88f5}}}}}}, 0x1b) sendmsg$kcm(r6, 0x0, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}], {0x14}}, 0xa0}}, 0x0) 5.235198589s ago: executing program 1 (id=1224): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r2}, 0x10) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000000)={'geneve1\x00', 0x400}) close(r3) sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="d824000028000100020000080000000009"], 0x24d8}], 0x1}, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-avx2\x00'}, 0x58) r6 = accept4(r5, 0x0, 0x0, 0x0) sendmmsg$unix(r6, &(0x7f0000001440)=[{{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f00000009c0)="07300b31050d194caea3f31d424a24821c396a535b585a68c369d72d781957b733dbf3299d75671e4adfbac916d86047b9bc8320c056853f", 0x38}], 0x1}}], 0x1, 0x0) socket$inet(0x2, 0xa, 0x7) socket$nl_route(0x10, 0x3, 0x0) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=r7, @ANYBLOB="0000000000000000300012800b00010065727370616e00002000028004001200050016000200000005001700000000000600"], 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x4080) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, r4, 0xd, 0x0, 0x0, {0x1a}, [@ETHTOOL_A_LINKMODES_HEADER={0x4}]}, 0x18}}, 0x0) 3.015242453s ago: executing program 3 (id=1230): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendmsg$802154_raw(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)}}, 0x400c004) 2.826890988s ago: executing program 3 (id=1232): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) (async) close(r0) socket$inet6_mptcp(0xa, 0x1, 0x106) (async) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_GET_BYNAME(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x14, 0xe, 0x6, 0x5, 0x0, 0x0, {0x8, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x4800}, 0x10) syz_emit_ethernet(0x5a, &(0x7f00000002c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x11}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "fb0800", 0x24, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x9, 0xc2, 0x0, 0x0, 0x40, {[@mptcp=@add_addr={0x1e, 0xa, 0x0, 0xa, 0x0, @private=0xa010101}, @mptcp=@ack={0x1e, 0x4, 0x51}]}}}}}}}}, 0x0) 2.562988753s ago: executing program 3 (id=1233): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000005c0)=ANY=[@ANYBLOB="94f45a4b7cdf46ca26ec2d096f29a8fb7be85392444dae61719d872f6dcf8f638b398db51be83dac27b1495682d9d27b6bebcb5337ca8411f9626ba31bf86edf9a05597160dd365d9d2ab458463abfa254267be179a52a17e13214992fe8753bc26f96472de73abbf08d6bfec82d618585c5d82d1575dd62698798faebe029bed2f8c2e4dcdc09369c02f12a7a8e0eb8c4"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000400)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c-intel\x00'}, 0x58) r2 = accept4(r1, 0x0, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23}, 0x10) sendto$inet(r3, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0xffffffffffffff71, 0x11, 0x0, 0x27) accept$inet6(r2, &(0x7f0000000480)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000004c0)=0x1c) socket$nl_netfilter(0x10, 0x3, 0xc) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) connect$inet(0xffffffffffffffff, 0x0, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10) ppoll(&(0x7f0000000500)=[{r4}], 0x1, 0x0, 0x0, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x18) sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b80080001", @ANYRES32=r7, @ANYBLOB="08001b"], 0x34}}, 0x4004010) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="3400000010000108000000000000000000800000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b80080001", @ANYRES32, @ANYBLOB="08001b0000000000"], 0x34}}, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r9 = openat$cgroup_int(r8, &(0x7f0000000200)='hugetlb.1GB.max_usage_in_bytes\x00', 0x2, 0x0) r10 = openat$cgroup_ro(r8, &(0x7f0000000080)='cpuacct.stat\x00', 0x0, 0x0) sendfile(r9, r10, 0x0, 0x38) accept4(r0, &(0x7f0000000540)=@sco={0x1f, @none}, &(0x7f0000000340)=0x80, 0x80000) socket$nl_generic(0x10, 0x3, 0x10) socket$inet_sctp(0x2, 0x5, 0x84) socket$l2tp6(0xa, 0x2, 0x73) 1.97878735s ago: executing program 2 (id=1237): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x10, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r2 = openat$cgroup_devices(r1, &(0x7f0000000080)='devices.allow\x00', 0x2, 0x0) r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r4 = socket$inet6(0xa, 0x6, 0x8) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000b00)=@security={'security\x00', 0xe, 0x4, 0x548, 0xffffffff, 0x2f0, 0xd0, 0x0, 0xffffffff, 0xffffffff, 0x478, 0x478, 0x478, 0xffffffff, 0x4, &(0x7f0000000980), {[{{@ipv6={@private1, @mcast2, [0x0, 0xffffff00], [0x0, 0xffffffff, 0x0, 0xffffff00], 'nicvf0\x00', 'vcan0\x00', {}, {}, 0x67, 0x24, 0x6, 0x35}, 0x0, 0xa8, 0xd0}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0x3, 0x6, 0x2}, {0x1, 0x2, 0x4}}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @loopback}, [0xff000000, 0xff, 0x0, 0xffffff00], [0xffffffff, 0x0, 0xff, 0xff000000], 'dvmrp1\x00', 'pimreg0\x00', {0xff}, {0xff}, 0x2c, 0x5, 0x4, 0x60}, 0x0, 0xf8, 0x220, 0x0, {}, [@common=@inet=@tcpmss={{0x28}, {0x7, 0x38, 0x1}}, @common=@ipv6header={{0x28}, {0xc, 0x8, 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:audit_spool_t:s0\x00'}}}, {{@uncond, 0x0, 0x160, 0x188, 0x0, {}, [@common=@srh1={{0x90}, {0x89, 0x0, 0x9, 0x40, 0x1, @ipv4={'\x00', '\xff\xff', @loopback}, @private1={0xfc, 0x1, '\x00', 0x1}, @local, [0xff, 0xff000000, 0x0, 0xffffffff], [0x0, 0xff000000, 0xff000000, 0xffffff00], [0xff, 0xffffff00, 0xff, 0xff000000], 0x2011, 0x100}}, @common=@ipv6header={{0x28}, {0x10, 0x4a}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5a8) sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="1400000013000104000000000000000003"], 0x14}], 0x1}, 0x0) write$cgroup_devices(r2, &(0x7f0000000000)=ANY=[@ANYBLOB='b *:'], 0xa) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r6, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000000)=@newsa={0x180, 0x10, 0x1, 0x0, 0x0, {{@in=@empty, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in=@remote, 0x0, 0x6c}, @in6=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @algo_crypt={0x48, 0x4, {{'ecb(arc4)\x00'}}}]}, 0x180}}, 0x0) r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f00000010c0)=ANY=[@ANYBLOB="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"], &(0x7f00000003c0)=""/219, 0xed, 0xdb, 0x0, 0x80, 0x10000, @value}, 0x28) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000800)={r5, 0xe0, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000540)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x7, &(0x7f0000000580)=[0x0, 0x0], &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x26, &(0x7f0000000600)=[{}], 0x8, 0x10, &(0x7f0000000640), &(0x7f0000000680), 0x8, 0x2e, 0x8, 0x8, &(0x7f00000006c0)}}, 0x10) r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000840)={0x1b, 0x0, 0x0, 0xe, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x4, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x3, 0x6, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x845a, 0x0, 0x0, 0x0, 0x10}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}]}, &(0x7f00000000c0)='GPL\x00', 0x1, 0x6e, &(0x7f0000000100)=""/110, 0x40f00, 0x10, '\x00', 0x0, @sched_cls, r7, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000500)={0x3, 0x7, 0x10000, 0x3}, 0x10, r8, r5, 0x7, &(0x7f00000008c0)=[r0, r0, r9, r0, r0, r0, r0], &(0x7f0000000900)=[{0x1, 0x1, 0x5, 0x8}, {0x4, 0x1, 0x0, 0xa}, {0x5, 0x5, 0xc, 0x3}, {0x2, 0x3, 0x5, 0x6}, {0x1, 0x5, 0x0, 0x8}, {0x5, 0x4, 0x5, 0xa}, {0x2, 0x1, 0xc, 0x3}], 0x10, 0xd, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r5}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.stat\x00', 0x26e1, 0x0) 1.755735737s ago: executing program 4 (id=1238): r0 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488) r1 = socket$inet6(0xa, 0x3, 0x3c) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r2, &(0x7f0000000200), 0xf000) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x9, 0xfff, 0x17, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x800000, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0xc, @private0={0xfc, 0x0, '\x00', 0x1}, 0xd}, 0x1c) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002d01000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x82200, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r4, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c) sendmmsg$inet(r1, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000800)="21ae1baf930b4569b9ddef9797ffd935c7d80e6466b3e4e62dc9603583f5d4b61fbc65b6ac744d7319535e75bf552062e4cfde1ba7ce29263322e18ea9740aa82ca692f123993e57cda00d2b1f4e799bd41e3f76258180fa91a42aaa8b1ebc4e0ea8fb12f2c71e6e5bc57a8e91f254005514721d93c13c5606ae1fea7f31f558d562bd5a8dfb0b9fed873efa221fccffa847cd374c92e6cbb03e6a9de890ce323f000000abcc6c01326d588495b7c1a7db31ec4129e6336f26bb9e0b7552af3cd2d5dda1632799bbc98425c433384d8a8e4071ff39a36dfdfdf05af35a4ddd340cfecd7ec935f4ce7d3e851583ba1cf53a90a7f7bce5703de57ce93ddef7849b30a01de0637e6d5e507b801d32e582e0c2d564539ebfc84c098a23e765552767b122885fb1629e9c180be47da7931bd125b80de15aab0c56a2edf2e0483b87f5ab299dc046076203dea10ccbfc631d5bf4a87ce67004519f248f086346ce6a8a9d181789a59f81d9b7f6781daac3e229914b8b8998c15c3b6302a519331cb05995bc60b7cb872dd3b5b43331c77c5d72e21f7bd2b1a915ff3204e3f20d3a20b22d6a58155b5a4ebf6d1d1cd90c656ecada531c07ff91deb3efa91762cdecfbcc43553750f22ac5c18cc5e8b6f790c2f4e6373af9f98d10e6df49ff8e5cbcbd68e11ed0b967add11410dc2e34f08dbfaf8eb95d4d1153b4c6093192a340eb30fcc71619888c6486746a049585d249efb96b9cace83320b8f96b40ebe3a9a788d05a053380d1026b9434df87a3a387549bcabe88684c4dbf0da9a5212f3dbc8d1dff240856691243b203d7edd4d3cc89a38a6c80fdb1229a01044af7aaecb20d5570ebf24b30bbc6dfc3f70d85cd9f0d60ebd8fedd161d199d9997a0e2d18d1c99bc7158564e0ddb4673055de196535d706d142e1dc7d404583923cb1b286cfc5418884ac7e605d93652dc48ff690894405a0b6abc3c4d0f6a16c0a95c0508bd7eeffcd1da0b17f7701448658864b429e9472edfeffbf34d6e7c78f4aa73c0b585d5463a40298459e6ebb94bf2bf363c3a6d0a6c38b5", 0x2f5}, {&(0x7f0000000bc0)="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", 0x25a}, {&(0x7f00000005c0)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859007067c10aa7352abbdf98e9bf033a4784a11e84639d", 0x36}], 0x3, 0x0, 0x0, 0x900}}], 0x2, 0x0) 1.3066243s ago: executing program 3 (id=1239): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f00000010c0)=0x5, 0x4) setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) r3 = socket$nl_rdma(0x10, 0x3, 0x14) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendto$packet(r2, &(0x7f0000000180)="02030c65be4002000000ab5d71acedd7c9560385dcb1080084d7dc039806112405ce811cc352", 0xff88, 0x0, &(0x7f0000000140)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @broadcast}, 0x14) socket$nl_netfilter(0x10, 0x3, 0xc) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05400000000000000000010000000900010073797a300000000040000000030a01010000000000000000010000000900030073797a300000000014000480080002400000000008000140000000000900010073797a30000000004c000000060a01040000000000000000010000002400048020000180080001006f736600140002800500020000000000080001400000001408000b40000000000900010073797a300000000014000000110001"], 0xd4}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$inet6_udplite(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x4}], {0x95, 0x0, 0x700}}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r6, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000002500)={{0x14}, [@NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x50}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r0, 0x0) r7 = socket(0x40000000015, 0x5, 0x0) sendmsg$nl_generic(r7, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f0000000200)={0x324, 0x2e, 0x8, 0x70bd25, 0x25dfdbfd, {0x12}, [@generic="5a6d90ceb58872452993da5f08a3", @generic="365b98cac1c18013f8a2a2b2ae60ec21ae69fe3daaddb0c8faea44566fd436d0cd40f1c38a68d74f914d2284c5043d3ac2a84175f7aac2f64806b4a228fdf8234ab599d682545585911e8a7d8a46ad5827a8aec072c8ac9c304d3b2cf692d9589af25d4d56956f4f60ec321fcb1b366156e5d147a0453e22d75c5eed2f0cd145c9a68583fecf7d0fad93769853d072ef2d5c168431dff69da8542dedbcbe31bf81d6ee1b5e5bdeb5e35e4db286feef492b80f5fdd824316c89dc33015d76da9cf1e14f5e1585bf1ec93f3903d0bb31ce42cbd0b0082ca88b11c535da2d84b60795c3", @generic="8ed0587cd6b2278d18b96b047d119818f7caa09bb43cdc00b82d91120c5f5a0ed870cd5f852b36219c212bfd20f71ae07189eda24d2aa3a80c7c249c62b83acffe9824d43924a0846c72620a1fd1f758d7f13324ffaae9cb16e1582379c88af085c4621e5a089a29d4ff6471fa2689f8ec52809999ed360a42a1d31f8832c28bcf1c1e1c8dee2014dcf748f02a60c06709c8f8a3bb4d358c79f897cdbd1595f5", @nested={0xf7, 0xb2, 0x0, 0x1, [@generic="92f60427c542128a55b6528a8f2371c1228cdd031f5fa6c44ea3a899ff0ad1e25ca3b8b4219190e0b26906e4fd0ff9c23e518b2dcba24445d009c4abaab38e1b4fa1d5b27ec1e1091169e5c37b59370439b6cad22e8431aed9bf0b2f159a0d693648c651a55acbc996f5330e99c488da6d076a547196d1a940833093b03eff82071dd957c3fe9732f0cdee3dedb7b403fcfc294c8a08587b952726529a1d89feedcde13b74cf07a9210cb85f56da76324422d9919b249963edf7ea93aed9704ee8f12f51fd35af573c7d62ab9f12b735c009c5e74a79ff4b233b4c9b96f763503d1dc5dca03b97170960e35df44aacc588e1ed"]}, @typed={0x4, 0xc6}, @typed={0x8, 0x50, 0x0, 0x0, @ipv4=@local}, @generic="1bc8a4a9e033ddd03d7c986ad14d4fcccbfbd6128ad09f2bd9636cd5baf10e4a91e1f0cde589d100337050a70f992b720ac51ca22ef7f4b87bf957c1d424d382fcd08e9d87013894ee496561503bfbb12422da0207acc7ed475a8e40246424ac8410af27e3a7b90c880eb45a63044279a2035a8673858e0a8adbf1"]}, 0x324}, 0x1, 0x0, 0x0, 0x40020}, 0x2000091) setsockopt$SO_RDS_TRANSPORT(r7, 0x114, 0x8, &(0x7f0000000000), 0x4) 1.207243857s ago: executing program 2 (id=1240): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x14, 0x2, 0x6, 0x101, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) 990.371713ms ago: executing program 4 (id=1241): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000300), r0) sendmsg$NLBL_UNLABEL_C_ACCEPT(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0100c700f800000000000100000005000100e7"], 0x1c}}, 0x0) 905.792731ms ago: executing program 2 (id=1242): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendmsg$802154_raw(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)}}, 0x400c004) 778.706432ms ago: executing program 3 (id=1243): r0 = socket$netlink(0x10, 0x3, 0xc) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x8, &(0x7f00000000c0)=0x20003, 0x23) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x20, &(0x7f0000000040)=0x2, 0xf6) connect$inet(r1, &(0x7f0000000800)={0x2, 0x0, @local}, 0x10) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) ioctl$TUNSETQUEUE(r5, 0x400454d9, &(0x7f0000000180)={'vlan0\x00', 0x400}) ioctl$TUNSETQUEUE(r5, 0x400454d9, &(0x7f0000000540)={'ip6erspan0\x00', 0x600}) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x4, [@var={0x1}]}, {0x0, [0x2e, 0x2e]}}, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10) bind$bt_hci(r4, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) r9 = socket$tipc(0x1e, 0x2, 0x0) sendmsg$tipc(r9, &(0x7f00000014c0)={&(0x7f0000000000)=@id={0x1e, 0x3, 0x1, {0x4e20, 0x1}}, 0x10, &(0x7f0000000240)=[{&(0x7f00000002c0)="a50e7146c736d4223811c7978238cc093be02d8cf52eac18f09582c4823a825f913079aef8b2ddeb9d94c6abb5d25c82f00a976a7854ce9236d3756d0cefd27b727a1e7f33c2b2046027f943cb66efdc23ec0afd435b8cb8c35217caac9bd335d683baf046", 0x65}, {&(0x7f0000000340)="747a834c21ec9a3e686aefc0611b8b60e416c1df5ace60ac5d1d05835b485f36eeea97715448ab9d8c00a555f6ee8e0afa6a9521e727933a3d551ede605407c81891247472edfd1a364188feb6dc05", 0x4f}, {&(0x7f0000000440)="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", 0x1000}], 0x3, &(0x7f0000001440)="b3e7b667b550e35857b0d6e15156bc698fc18070ec863b4f6b04a22be4378d149bf67cd11d03541940b0fb01eb26af6ed89bf226bf9e8cfae8b103819b104c624212e0", 0x43, 0x8000}, 0x20008000) socket$nl_crypto(0x10, 0x3, 0x15) r10 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r10, 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r11, &(0x7f00000000c0)=@abs={0x1}, 0x6e) 676.353266ms ago: executing program 4 (id=1244): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x3c1, 0x3, 0x3b8, 0x190, 0xc8, 0x8, 0x7f510100, 0x5803, 0x2e8, 0x2e8, 0x2e8, 0x2e8, 0x2e8, 0x3, 0x0, {[{{@ipv6={@empty, @private1, [], [], 'pim6reg0\x00', 'wlan0\x00'}, 0x0, 0x128, 0x190, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@time={{0x38}}, @common=@dst={{0x48}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x1, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x138, 0x158, 0x0, {}, [@common=@unspec=@rateest={{0x68}, {'dvmrp0\x00', 'batadv_slave_1\x00', 0x12, 0x3}}, @inet=@rpfilter={{0x28}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x418) 627.215721ms ago: executing program 2 (id=1245): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000100)="02f864eb78c7a89a", 0x8}], 0x26) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0) socket$inet6(0xa, 0x6, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket(0x840000000002, 0x3, 0x100) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) socketpair$unix(0x1, 0x1, 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_emit_ethernet(0x66, &(0x7f00000068c0)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaabb86dd6007000000303a00fe8000000000000000000000000000aaff02000000000000000000000000000101"], 0x0) 432.457577ms ago: executing program 4 (id=1246): r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @fixed}, &(0x7f00000000c0)=0xe, 0x80000) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000500)=[@in6={0xa, 0x0, 0x0, @private1}]}, &(0x7f0000000340)=0x10) r1 = socket$inet(0x2, 0x80001, 0x84) r2 = socket$inet6(0xa, 0x2, 0x0) syz_emit_ethernet(0x76, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd602e5cea00403c00200100"/36, @ANYBLOB="ca24c9c217"], 0x0) setsockopt$inet6_int(r2, 0x29, 0x31, &(0x7f0000000000)=0x8000, 0x4) bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x18) recvmmsg(r2, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) sendto$inet6(r2, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='freezer.parent_freezing\x00', 0x275a, 0x0) mmap(&(0x7f00004e7000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0) mmap(&(0x7f0000071000/0x4000)=nil, 0x4000, 0x0, 0x13, r4, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000400)={r3, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0xfffa, 0x0, 0x4, 0x414d6714bf78e135}, 0x9c) 325.281333ms ago: executing program 2 (id=1247): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_PMTUDISC={0x5, 0xa, 0x1}, @IFLA_GRE_TOS={0x5, 0x9, 0xfe}]}}}]}, 0x44}}, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB="020700001f0000000000000000000000020018"], 0xf8}}, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt$inet6_int(r2, 0x29, 0xce, 0x0, &(0x7f00000007c0)=0xffffff78) r3 = socket(0x28, 0x5, 0x0) bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x2710, @my=0x0}, 0x10) listen(r3, 0x0) r4 = socket$pptp(0x18, 0x1, 0x2) bind$pptp(r4, &(0x7f0000000000)={0x18, 0x2, {0x1, @local}}, 0x1e) r5 = socket$pptp(0x18, 0x1, 0x2) bind$pptp(r5, &(0x7f0000000000)={0x18, 0x2, {0x0, @dev}}, 0x1e) connect$pptp(r5, &(0x7f0000000040)={0x18, 0x2, {0x0, @multicast1}}, 0x1e) r6 = socket$kcm(0x10, 0x3, 0x10) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.idle_time\x00', 0x0, 0x0) write$tun(r7, &(0x7f0000000100)={@val={0x0, 0x88f5}, @void, @eth={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x31}, @dev, @void, {@llc_tr={0x11, {@snap={0xaa, 0x1, "e7c4", "26d129", 0x88f5}}}}}}, 0x1b) sendmsg$kcm(r6, 0x0, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}], {0x14}}, 0xa0}}, 0x0) 181.397446ms ago: executing program 4 (id=1248): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x42, 0x4, 0x260, 0xffffffff, 0x98, 0x130, 0x130, 0xffffffff, 0xffffffff, 0x1c8, 0x1c8, 0x1c8, 0xffffffff, 0x4, 0x0, {[{{@ip={@local, @loopback, 0x0, 0x0, 'veth0_to_bridge\x00', 'veth1_to_bond\x00', {}, {}, 0x6}, 0x0, 0x70, 0x98, 0x0, {0x100000000000000}}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@ip={@broadcast, @local, 0x0, 0x0, 'veth1_to_bond\x00', 'gre0\x00'}, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c0) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r2, &(0x7f0000000000)="0a0000000100", 0x6) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000000)={0xffffffffffffffff, &(0x7f0000000140), &(0x7f0000000200)=""/221}, 0x20) socket$nl_route(0x10, 0x3, 0x0) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x2200c041, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) ioctl$HCIINQUIRY(r3, 0x400448ca, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x2, 0x0, 0x1, 0x14, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x4, 0x1, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000400), &(0x7f0000000440)}, 0x20) r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000280)={r5}, 0x3b) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x11, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0x6db}, [@call={0x85, 0x0, 0x0, 0x41}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000caefb8)={0x14, 0xe, &(0x7f00000004c0)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, r4}}, @tail_call, @exit, @cb_func={0x18, 0x6, 0x4, 0x0, 0xffffffffffffffff}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}], &(0x7f0000281ffc)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 167.666562ms ago: executing program 2 (id=1249): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000005c0)=ANY=[@ANYBLOB="94f45a4b7cdf46ca26ec2d096f29a8fb7be85392444dae61719d872f6dcf8f638b398db51be83dac27b1495682d9d27b6bebcb5337ca8411f9626ba31bf86edf9a05597160dd365d9d2ab458463abfa254267be179a52a17e13214992fe8753bc26f96472de73abbf08d6bfec82d618585c5d82d1575dd62698798faebe029bed2f8c2e4dcdc09369c02f12a7a8e0eb8c4"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000400)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c-intel\x00'}, 0x58) r2 = accept4(r1, 0x0, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23}, 0x10) sendto$inet(r3, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0xffffffffffffff71, 0x11, 0x0, 0x27) accept$inet6(r2, &(0x7f0000000480)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000004c0)=0x1c) socket$nl_netfilter(0x10, 0x3, 0xc) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) connect$inet(0xffffffffffffffff, 0x0, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10) ppoll(&(0x7f0000000500)=[{r4}], 0x1, 0x0, 0x0, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x18) sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b80080001", @ANYRES32=r7, @ANYBLOB="08001b"], 0x34}}, 0x4004010) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="3400000010000108000000000000000000800000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b80080001", @ANYRES32, @ANYBLOB="08001b0000000000"], 0x34}}, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r9 = openat$cgroup_int(r8, &(0x7f0000000200)='hugetlb.1GB.max_usage_in_bytes\x00', 0x2, 0x0) r10 = openat$cgroup_ro(r8, &(0x7f0000000080)='cpuacct.stat\x00', 0x0, 0x0) sendfile(r9, r10, 0x0, 0x38) accept4(r0, &(0x7f0000000540)=@sco={0x1f, @none}, &(0x7f0000000340)=0x80, 0x80000) socket$nl_generic(0x10, 0x3, 0x10) socket$inet_sctp(0x2, 0x5, 0x84) socket$l2tp6(0xa, 0x2, 0x73) 0s ago: executing program 4 (id=1250): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x500, 0x0, @loopback}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000280)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff810500000200000058000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1) kernel console output (not intermixed with test programs): an0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 240.267751][ T7347] 8021q: adding VLAN 0 to HW filter on device bond0 [ 240.325681][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 240.336064][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 240.383579][ T7349] veth0_macvtap: entered promiscuous mode [ 240.439663][ T7349] veth1_macvtap: entered promiscuous mode [ 240.462696][ T7347] 8021q: adding VLAN 0 to HW filter on device team0 [ 240.534057][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.541220][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 240.562519][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.569662][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 240.620860][ T7355] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 240.631532][ T7349] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 240.642547][ T7349] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 240.652518][ T7349] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 240.663125][ T7349] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 240.675703][ T7349] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 240.685562][ T7349] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 240.696068][ T7349] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 240.705975][ T7349] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 240.716491][ T7349] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 240.727726][ T7349] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 240.755346][ T7349] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.765256][ T7349] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.774327][ T7349] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.783120][ T7349] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.801987][ T7613] netlink: 8 bytes leftover after parsing attributes in process `syz.3.669'. [ 241.074483][ T7616] netlink: 12 bytes leftover after parsing attributes in process `syz.0.670'. [ 241.099481][ T7355] veth0_vlan: entered promiscuous mode [ 241.118826][ T7616] netlink: 8 bytes leftover after parsing attributes in process `syz.0.670'. [ 241.140161][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 241.178536][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 241.183014][ T7355] veth1_vlan: entered promiscuous mode [ 241.294313][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 241.346541][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 241.381124][ T7355] veth0_macvtap: entered promiscuous mode [ 241.384883][ T7626] Cannot find add_set index 0 as target [ 241.410622][ T7355] veth1_macvtap: entered promiscuous mode [ 241.503810][ T7347] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 241.554856][ T7632] xt_cluster: node mask cannot exceed total number of nodes [ 241.570618][ T7355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 241.593405][ T7355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 241.603657][ T7355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 241.614805][ T7355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 241.624911][ T7355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 241.635573][ T7355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 241.652071][ T7355] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 241.678363][ T7355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 241.692872][ T7355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 241.708849][ T7355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 241.729513][ T7355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 241.741051][ T7355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 241.761873][ T7355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 241.784533][ T7355] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 241.830224][ T7638] bridge1: entered promiscuous mode [ 241.861815][ T7638] bridge1: entered allmulticast mode [ 241.879672][ T7638] team0: Port device bridge1 added [ 241.908097][ T7638] netlink: 8 bytes leftover after parsing attributes in process `syz.3.672'. [ 241.925355][ T7642] netlink: 'syz.3.672': attribute type 10 has an invalid length. [ 241.966725][ T7642] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 241.985724][ T7355] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.009735][ T7355] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.018774][ T7355] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.027628][ T7355] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.039917][ T7643] bridge0: port 3(ip6gretap0) entered blocking state [ 242.047520][ T7643] bridge0: port 3(ip6gretap0) entered disabled state [ 242.055696][ T7643] ip6gretap0: entered allmulticast mode [ 242.061996][ T7643] ip6gretap0: entered promiscuous mode [ 242.068551][ T7643] bridge0: port 3(ip6gretap0) entered blocking state [ 242.075372][ T7643] bridge0: port 3(ip6gretap0) entered forwarding state [ 242.094735][ T7646] netlink: 'syz.0.674': attribute type 10 has an invalid length. [ 242.131049][ T7649] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 242.162791][ T7649] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 242.225190][ T7649] netdevsim netdevsim2: Falling back to sysfs fallback for: . [ 242.262873][ T2569] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.294312][ T2569] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.352053][ T7658] netlink: 'syz.0.677': attribute type 1 has an invalid length. [ 242.362252][ T7658] netlink: 4 bytes leftover after parsing attributes in process `syz.0.677'. [ 242.391749][ T7660] net_ratelimit: 77 callbacks suppressed [ 242.391765][ T7660] dccp_invalid_packet: P.Data Offset(172) too large [ 242.410075][ T3022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.418770][ T3022] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.487483][ T7347] veth0_vlan: entered promiscuous mode [ 242.545810][ T7347] veth1_vlan: entered promiscuous mode [ 242.622820][ T7347] veth0_macvtap: entered promiscuous mode [ 242.643378][ T7347] veth1_macvtap: entered promiscuous mode [ 242.670457][ T7669] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 242.680623][ T7669] gretap1: entered promiscuous mode [ 242.714467][ T7669] gretap1: entered allmulticast mode [ 242.746445][ T7347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.761458][ T7347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.813999][ T7347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.844507][ T7347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.886522][ T7347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.907999][ T7347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.911332][ T7674] xt_cluster: node mask cannot exceed total number of nodes [ 242.927401][ T7347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.939067][ T7347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.951257][ T7347] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 242.986842][ T7347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 243.013990][ T7347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 243.034085][ T7347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 243.061073][ T7347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 243.072789][ T7347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 243.090171][ T7347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 243.102356][ T7347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 243.118994][ T7347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 243.131506][ T7347] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 243.282351][ T7347] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.291440][ T7347] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.300884][ T7347] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.311000][ T7347] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.369281][ T7689] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 243.435883][ T3022] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.443739][ T3022] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.491946][ T7692] netlink: 'syz.3.688': attribute type 1 has an invalid length. [ 243.500101][ T7692] netlink: 'syz.3.688': attribute type 2 has an invalid length. [ 243.511396][ T3022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.519732][ T5243] IPVS: starting estimator thread 0... [ 243.526014][ T3022] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.617278][ T7696] IPVS: using max 20 ests per chain, 48000 per kthread [ 243.692181][ T7698] netlink: 'syz.1.690': attribute type 10 has an invalid length. [ 243.722671][ T7701] __nla_validate_parse: 4 callbacks suppressed [ 243.722689][ T7701] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.660'. [ 243.801854][ T7706] xt_l2tp: v2 doesn't support IP mode [ 243.862750][ T7709] xt_l2tp: missing protocol rule (udp|l2tpip) [ 244.072616][ T7718] netlink: 8 bytes leftover after parsing attributes in process `syz.2.697'. [ 244.123417][ T7724] netlink: 148 bytes leftover after parsing attributes in process `syz.1.700'. [ 244.152334][ T7724] FAULT_INJECTION: forcing a failure. [ 244.152334][ T7724] name failslab, interval 1, probability 0, space 0, times 0 [ 244.173282][ T7724] CPU: 0 UID: 0 PID: 7724 Comm: syz.1.700 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 244.183909][ T7724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 244.193982][ T7724] Call Trace: [ 244.197426][ T7724] [ 244.200389][ T7724] dump_stack_lvl+0x241/0x360 [ 244.205097][ T7724] ? __pfx_dump_stack_lvl+0x10/0x10 [ 244.210315][ T7724] ? __pfx__printk+0x10/0x10 [ 244.214924][ T7724] ? __kmalloc_node_track_caller_noprof+0xb2/0x440 [ 244.221453][ T7724] ? __pfx___might_resched+0x10/0x10 [ 244.226768][ T7724] ? do_syscall_64+0xf3/0x230 [ 244.231469][ T7724] should_fail_ex+0x3b0/0x4e0 [ 244.236177][ T7724] should_failslab+0xac/0x100 [ 244.239286][ T7728] netlink: 16 bytes leftover after parsing attributes in process `syz.3.698'. [ 244.240882][ T7724] __kmalloc_node_track_caller_noprof+0xda/0x440 [ 244.256047][ T7724] ? kobject_set_name_vargs+0x61/0x120 [ 244.261541][ T7724] kstrdup+0x3a/0x80 [ 244.265465][ T7724] kobject_set_name_vargs+0x61/0x120 [ 244.270775][ T7724] dev_set_name+0xd5/0x120 [ 244.275218][ T7724] ? __pfx_dev_set_name+0x10/0x10 [ 244.280274][ T7724] ? __kasan_kmalloc+0x98/0xb0 [ 244.285064][ T7724] ? tty_register_device_attr+0x311/0x960 [ 244.290808][ T7724] ? __kmalloc_cache_noprof+0x19c/0x2c0 [ 244.296384][ T7724] tty_register_device_attr+0x3cc/0x960 [ 244.301961][ T7724] ? __pfx_tty_register_device_attr+0x10/0x10 [ 244.308066][ T7724] ? tty_port_register_device+0x5b/0x100 [ 244.313725][ T7724] rfcomm_dev_ioctl+0x1a51/0x2220 [ 244.318778][ T7724] ? __pfx_rfcomm_dev_ioctl+0x10/0x10 [ 244.324181][ T7724] ? __local_bh_enable_ip+0x168/0x200 [ 244.329574][ T7724] ? lockdep_hardirqs_on+0x99/0x150 [ 244.334803][ T7724] ? __local_bh_enable_ip+0x168/0x200 [ 244.340204][ T7724] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 244.345945][ T7724] ? do_raw_spin_unlock+0x13c/0x8b0 [ 244.351174][ T7724] rfcomm_sock_ioctl+0x86/0xd0 [ 244.355958][ T7724] sock_do_ioctl+0x158/0x460 [ 244.360578][ T7724] ? __pfx_sock_do_ioctl+0x10/0x10 [ 244.365742][ T7724] sock_ioctl+0x626/0x8e0 [ 244.370102][ T7724] ? __pfx_sock_ioctl+0x10/0x10 [ 244.374973][ T7724] ? __fget_files+0x29/0x470 [ 244.379584][ T7724] ? __fget_files+0x3f3/0x470 [ 244.384290][ T7724] ? __pfx_sock_ioctl+0x10/0x10 [ 244.389166][ T7724] __se_sys_ioctl+0xf9/0x170 [ 244.393789][ T7724] do_syscall_64+0xf3/0x230 [ 244.398318][ T7724] ? clear_bhb_loop+0x35/0x90 [ 244.403021][ T7724] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.408943][ T7724] RIP: 0033:0x7fe45ab7dff9 [ 244.413375][ T7724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.433000][ T7724] RSP: 002b:00007fe45b911038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 244.441453][ T7724] RAX: ffffffffffffffda RBX: 00007fe45ad35f80 RCX: 00007fe45ab7dff9 [ 244.449446][ T7724] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 000000000000000a [ 244.457430][ T7724] RBP: 00007fe45b911090 R08: 0000000000000000 R09: 0000000000000000 [ 244.465425][ T7724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 244.473413][ T7724] R13: 0000000000000000 R14: 00007fe45ad35f80 R15: 00007ffd2bcf7ab8 [ 244.481423][ T7724] [ 244.525713][ T7741] netlink: 148 bytes leftover after parsing attributes in process `syz.0.703'. [ 244.782545][ T7752] ieee802154 phy0 wpan0: encryption failed: -22 [ 244.793111][ T7752] netlink: 24 bytes leftover after parsing attributes in process `syz.0.708'. [ 244.813602][ T7753] bridge0: port 1(bridge_slave_0) entered disabled state [ 244.842209][ T7753] bridge0: port 2(bridge_slave_1) entered disabled state [ 244.906821][ T7753] netlink: 4 bytes leftover after parsing attributes in process `syz.1.709'. [ 244.941886][ T7753] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 245.031981][ T7753] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 245.050784][ T7767] netlink: 20 bytes leftover after parsing attributes in process `syz.1.709'. [ 245.076785][ T7756] bridge0: port 3(ipvlan2) entered blocking state [ 245.083305][ T7756] bridge0: port 3(ipvlan2) entered disabled state [ 245.092021][ T7756] ipvlan2: entered allmulticast mode [ 245.098018][ T7756] bridge0: entered allmulticast mode [ 245.105562][ T7756] ipvlan2: left allmulticast mode [ 245.110616][ T7756] bridge0: left allmulticast mode [ 245.153565][ T7769] netlink: 8 bytes leftover after parsing attributes in process `syz.4.712'. [ 245.339404][ T7777] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 245.348546][ T7777] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 245.357742][ T7777] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 245.367213][ T7777] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 245.410101][ T7777] vxlan0: entered promiscuous mode [ 245.418424][ T7777] vxlan0: entered allmulticast mode [ 245.442453][ T7777] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 245.452120][ T7777] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 245.461559][ T7777] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 245.470923][ T7777] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 245.545247][ T7784] netlink: 12 bytes leftover after parsing attributes in process `syz.0.716'. [ 245.583839][ T7787] bridge2: entered promiscuous mode [ 245.589193][ T7787] bridge2: entered allmulticast mode [ 245.603644][ T7787] team0: Port device bridge2 added [ 245.613873][ T7790] netlink: 'syz.3.721': attribute type 10 has an invalid length. [ 245.829904][ T7802] netlink: 'syz.4.724': attribute type 10 has an invalid length. [ 245.854916][ T7802] 8021q: adding VLAN 0 to HW filter on device team0 [ 245.865791][ T7802] bond0: (slave team0): Enslaving as an active interface with an up link [ 245.880812][ T7802] netlink: 'syz.4.724': attribute type 10 has an invalid length. [ 245.890203][ T7802] bond0: (slave team0): Releasing backup interface [ 245.906010][ T7802] bridge0: port 3(team0) entered blocking state [ 245.912373][ T7802] bridge0: port 3(team0) entered disabled state [ 245.919559][ T7802] team0: entered allmulticast mode [ 245.925276][ T7802] team_slave_0: entered allmulticast mode [ 245.932563][ T7802] team_slave_1: entered allmulticast mode [ 245.946910][ T7802] team0: entered promiscuous mode [ 245.952047][ T7802] team_slave_0: entered promiscuous mode [ 245.959966][ T7802] team_slave_1: entered promiscuous mode [ 245.968103][ T7808] tipc: MTU too low for tipc bearer [ 246.379640][ T7816] netlink: 'syz.2.728': attribute type 2 has an invalid length. [ 246.573129][ T7823] FAULT_INJECTION: forcing a failure. [ 246.573129][ T7823] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 246.610059][ T7823] CPU: 0 UID: 0 PID: 7823 Comm: syz.1.731 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 246.620691][ T7823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 246.630765][ T7823] Call Trace: [ 246.634062][ T7823] [ 246.637024][ T7823] dump_stack_lvl+0x241/0x360 [ 246.641728][ T7823] ? __pfx_dump_stack_lvl+0x10/0x10 [ 246.646950][ T7823] ? __pfx__printk+0x10/0x10 [ 246.651561][ T7823] ? __pfx_lock_release+0x10/0x10 [ 246.656619][ T7823] should_fail_ex+0x3b0/0x4e0 [ 246.661329][ T7823] _copy_from_user+0x2f/0xe0 [ 246.665937][ T7823] copy_msghdr_from_user+0xae/0x680 [ 246.671139][ T7823] ? __pfx___might_resched+0x10/0x10 [ 246.676427][ T7823] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 246.682238][ T7823] ? rcu_is_watching+0x15/0xb0 [ 246.687010][ T7823] ? __might_fault+0xaa/0x120 [ 246.691683][ T7823] do_recvmmsg+0x3f9/0xad0 [ 246.696105][ T7823] ? __pfx_do_recvmmsg+0x10/0x10 [ 246.701058][ T7823] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 246.706946][ T7823] ? ksys_write+0x229/0x2b0 [ 246.711443][ T7823] ? __pfx_lock_release+0x10/0x10 [ 246.716472][ T7823] ? vfs_write+0x7bf/0xc90 [ 246.720878][ T7823] ? kmem_cache_free+0x1a2/0x420 [ 246.725820][ T7823] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 246.731802][ T7823] __x64_sys_recvmmsg+0x199/0x250 [ 246.736822][ T7823] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 246.742362][ T7823] ? do_syscall_64+0x100/0x230 [ 246.747121][ T7823] ? do_syscall_64+0xb6/0x230 [ 246.751788][ T7823] do_syscall_64+0xf3/0x230 [ 246.756282][ T7823] ? clear_bhb_loop+0x35/0x90 [ 246.760955][ T7823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.766844][ T7823] RIP: 0033:0x7fe45ab7dff9 [ 246.771251][ T7823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.790849][ T7823] RSP: 002b:00007fe45b911038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 246.799261][ T7823] RAX: ffffffffffffffda RBX: 00007fe45ad35f80 RCX: 00007fe45ab7dff9 [ 246.807226][ T7823] RDX: 0000000004000210 RSI: 0000000020001740 RDI: 0000000000000004 [ 246.815196][ T7823] RBP: 00007fe45b911090 R08: 0000000000000000 R09: 0000000000000000 [ 246.823160][ T7823] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 246.831121][ T7823] R13: 0000000000000000 R14: 00007fe45ad35f80 R15: 00007ffd2bcf7ab8 [ 246.839100][ T7823] [ 247.203595][ T7842] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 247.212715][ T7842] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 247.221697][ T7842] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 247.230626][ T7842] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 247.264130][ T7842] vxlan0: entered promiscuous mode [ 247.276572][ T7842] vxlan0: entered allmulticast mode [ 247.325534][ T7842] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 247.334848][ T7842] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 247.344104][ T7842] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 247.352991][ T7842] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 247.363808][ T7849] netlink: 'syz.2.740': attribute type 2 has an invalid length. [ 247.774004][ T7873] FAULT_INJECTION: forcing a failure. [ 247.774004][ T7873] name failslab, interval 1, probability 0, space 0, times 0 [ 247.787092][ T7873] CPU: 1 UID: 0 PID: 7873 Comm: syz.3.747 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 247.797715][ T7873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 247.807764][ T7873] Call Trace: [ 247.811039][ T7873] [ 247.813972][ T7873] dump_stack_lvl+0x241/0x360 [ 247.818661][ T7873] ? __pfx_dump_stack_lvl+0x10/0x10 [ 247.823856][ T7873] ? __pfx__printk+0x10/0x10 [ 247.828441][ T7873] ? __kmalloc_noprof+0xb0/0x400 [ 247.833376][ T7873] ? __pfx___might_resched+0x10/0x10 [ 247.838661][ T7873] should_fail_ex+0x3b0/0x4e0 [ 247.843343][ T7873] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 247.849586][ T7873] should_failslab+0xac/0x100 [ 247.854264][ T7873] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 247.860504][ T7873] __kmalloc_noprof+0xd8/0x400 [ 247.865268][ T7873] ? apparmor_capable+0x13b/0x1b0 [ 247.870290][ T7873] genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 247.876355][ T7873] genl_rcv_msg+0x802/0xec0 [ 247.880851][ T7873] ? mark_lock+0x9a/0x360 [ 247.885179][ T7873] ? __pfx_genl_rcv_msg+0x10/0x10 [ 247.890216][ T7873] ? __pfx_lock_acquire+0x10/0x10 [ 247.895238][ T7873] ? __pfx_nl802154_pre_doit+0x10/0x10 [ 247.900687][ T7873] ? __pfx_nl802154_set_channel+0x10/0x10 [ 247.906396][ T7873] ? __pfx_nl802154_post_doit+0x10/0x10 [ 247.911936][ T7873] ? __pfx___might_resched+0x10/0x10 [ 247.917228][ T7873] netlink_rcv_skb+0x1e3/0x430 [ 247.921990][ T7873] ? __pfx_genl_rcv_msg+0x10/0x10 [ 247.927011][ T7873] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 247.932307][ T7873] genl_rcv+0x28/0x40 [ 247.936283][ T7873] netlink_unicast+0x7f6/0x990 [ 247.941051][ T7873] ? __pfx_netlink_unicast+0x10/0x10 [ 247.946331][ T7873] ? __virt_addr_valid+0x183/0x530 [ 247.951436][ T7873] ? __check_object_size+0x48e/0x900 [ 247.956720][ T7873] netlink_sendmsg+0x8e4/0xcb0 [ 247.961487][ T7873] ? __pfx_netlink_sendmsg+0x10/0x10 [ 247.966764][ T7873] ? aa_sock_msg_perm+0x91/0x160 [ 247.971698][ T7873] ? __pfx_netlink_sendmsg+0x10/0x10 [ 247.976974][ T7873] __sock_sendmsg+0x221/0x270 [ 247.981737][ T7873] ____sys_sendmsg+0x52a/0x7e0 [ 247.986498][ T7873] ? __pfx_____sys_sendmsg+0x10/0x10 [ 247.991790][ T7873] __sys_sendmsg+0x292/0x380 [ 247.996377][ T7873] ? __pfx___sys_sendmsg+0x10/0x10 [ 248.001493][ T7873] ? __pfx_vfs_write+0x10/0x10 [ 248.006273][ T7873] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 248.012600][ T7873] ? do_syscall_64+0x100/0x230 [ 248.017363][ T7873] ? do_syscall_64+0xb6/0x230 [ 248.022039][ T7873] do_syscall_64+0xf3/0x230 [ 248.026536][ T7873] ? clear_bhb_loop+0x35/0x90 [ 248.031207][ T7873] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.037097][ T7873] RIP: 0033:0x7f5dc397dff9 [ 248.041515][ T7873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.061120][ T7873] RSP: 002b:00007f5dc4821038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 248.069529][ T7873] RAX: ffffffffffffffda RBX: 00007f5dc3b35f80 RCX: 00007f5dc397dff9 [ 248.077492][ T7873] RDX: 0000000000040000 RSI: 0000000020000780 RDI: 0000000000000004 [ 248.085453][ T7873] RBP: 00007f5dc4821090 R08: 0000000000000000 R09: 0000000000000000 [ 248.093417][ T7873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 248.101379][ T7873] R13: 0000000000000000 R14: 00007f5dc3b35f80 R15: 00007ffc84d259d8 [ 248.109355][ T7873] [ 248.339628][ T7884] netlink: 'syz.0.752': attribute type 2 has an invalid length. [ 248.456354][ T7888] FAULT_INJECTION: forcing a failure. [ 248.456354][ T7888] name failslab, interval 1, probability 0, space 0, times 0 [ 248.485683][ T7890] FAULT_INJECTION: forcing a failure. [ 248.485683][ T7890] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 248.502136][ T7888] CPU: 1 UID: 0 PID: 7888 Comm: syz.4.754 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 248.512762][ T7888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 248.522829][ T7888] Call Trace: [ 248.526117][ T7888] [ 248.529052][ T7888] dump_stack_lvl+0x241/0x360 [ 248.533726][ T7888] ? __pfx_dump_stack_lvl+0x10/0x10 [ 248.538914][ T7888] ? __pfx__printk+0x10/0x10 [ 248.543492][ T7888] ? kmem_cache_alloc_noprof+0x44/0x2a0 [ 248.549029][ T7888] ? __pfx___might_resched+0x10/0x10 [ 248.554325][ T7888] should_fail_ex+0x3b0/0x4e0 [ 248.559018][ T7888] ? mas_alloc_nodes+0x26c/0x840 [ 248.563966][ T7888] should_failslab+0xac/0x100 [ 248.568651][ T7888] ? mas_alloc_nodes+0x26c/0x840 [ 248.573596][ T7888] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 248.578983][ T7888] mas_alloc_nodes+0x26c/0x840 [ 248.583768][ T7888] mas_preallocate+0x554/0x8c0 [ 248.588548][ T7888] ? __pfx_mas_preallocate+0x10/0x10 [ 248.593848][ T7888] ? __mas_set_range+0x133/0x3c0 [ 248.598802][ T7888] __split_vma+0x302/0xc50 [ 248.603229][ T7888] ? process_measurement+0x1aea/0x1fb0 [ 248.608696][ T7888] ? __pfx___split_vma+0x10/0x10 [ 248.613631][ T7888] ? validate_chain+0x11e/0x5920 [ 248.618573][ T7888] vms_gather_munmap_vmas+0x2ee/0x15d0 [ 248.624025][ T7888] ? __lock_acquire+0x1384/0x2050 [ 248.629061][ T7888] ? mtree_range_walk+0x6fd/0x8e0 [ 248.634097][ T7888] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 248.640003][ T7888] ? mas_find+0x8c0/0xbb0 [ 248.644335][ T7888] mmap_region+0x817/0x2990 [ 248.648838][ T7888] ? __lock_acquire+0x1384/0x2050 [ 248.653860][ T7888] ? __pfx_validate_chain+0x10/0x10 [ 248.659054][ T7888] ? mark_lock+0x9a/0x360 [ 248.663378][ T7888] ? __pfx_mmap_region+0x10/0x10 [ 248.668330][ T7888] ? __pfx_lock_acquire+0x10/0x10 [ 248.673357][ T7888] ? aa_get_newest_label+0xff/0x6f0 [ 248.678553][ T7888] ? __pfx_aa_get_newest_label+0x10/0x10 [ 248.684183][ T7888] ? apparmor_capable+0x13b/0x1b0 [ 248.689203][ T7888] ? bpf_lsm_capable+0x9/0x10 [ 248.693877][ T7888] do_mmap+0x8f0/0x1000 [ 248.698041][ T7888] ? __pfx_do_mmap+0x10/0x10 [ 248.702627][ T7888] ? __pfx_down_write_killable+0x10/0x10 [ 248.708258][ T7888] ? common_file_perm+0x1a6/0x210 [ 248.713283][ T7888] vm_mmap_pgoff+0x1dd/0x3d0 [ 248.717872][ T7888] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 248.722976][ T7888] ? __fget_files+0x29/0x470 [ 248.727558][ T7888] ? __fget_files+0x3f3/0x470 [ 248.732227][ T7888] ? __fget_files+0x29/0x470 [ 248.736816][ T7888] ksys_mmap_pgoff+0x4eb/0x720 [ 248.741578][ T7888] ? __x64_sys_mmap+0x7f/0x140 [ 248.746334][ T7888] do_syscall_64+0xf3/0x230 [ 248.750831][ T7888] ? clear_bhb_loop+0x35/0x90 [ 248.755504][ T7888] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.761393][ T7888] RIP: 0033:0x7f180af7dff9 [ 248.765799][ T7888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.785394][ T7888] RSP: 002b:00007f180bd0c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 248.793802][ T7888] RAX: ffffffffffffffda RBX: 00007f180b135f80 RCX: 00007f180af7dff9 [ 248.801767][ T7888] RDX: 0000000000000002 RSI: 0000000000004000 RDI: 0000000020fa2000 [ 248.809729][ T7888] RBP: 00007f180bd0c090 R08: 0000000000000004 R09: 0000000000000000 [ 248.817696][ T7888] R10: 0000000000082011 R11: 0000000000000246 R12: 0000000000000001 [ 248.825661][ T7888] R13: 0000000000000000 R14: 00007f180b135f80 R15: 00007ffd7c9a3238 [ 248.833638][ T7888] [ 248.844617][ T7890] CPU: 1 UID: 0 PID: 7890 Comm: syz.3.756 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 248.855237][ T7890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 248.865305][ T7890] Call Trace: [ 248.868593][ T7890] [ 248.871538][ T7890] dump_stack_lvl+0x241/0x360 [ 248.876242][ T7890] ? __pfx_dump_stack_lvl+0x10/0x10 [ 248.881463][ T7890] ? __pfx__printk+0x10/0x10 [ 248.886078][ T7890] ? snprintf+0xda/0x120 [ 248.890343][ T7890] should_fail_ex+0x3b0/0x4e0 [ 248.895046][ T7890] _copy_to_user+0x2f/0xb0 [ 248.899482][ T7890] simple_read_from_buffer+0xca/0x150 [ 248.904866][ T7890] proc_fail_nth_read+0x1e9/0x250 [ 248.909895][ T7890] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 248.915440][ T7890] ? rw_verify_area+0x55e/0x6f0 [ 248.920288][ T7890] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 248.925832][ T7890] vfs_read+0x201/0xbc0 [ 248.929984][ T7890] ? __pfx_lock_release+0x10/0x10 [ 248.935015][ T7890] ? __pfx_vfs_read+0x10/0x10 [ 248.939693][ T7890] ? __fget_files+0x3f3/0x470 [ 248.944376][ T7890] ? fdget_pos+0x24e/0x320 [ 248.948788][ T7890] ksys_read+0x183/0x2b0 [ 248.953023][ T7890] ? __pfx_ksys_read+0x10/0x10 [ 248.957780][ T7890] ? do_syscall_64+0x100/0x230 [ 248.962536][ T7890] ? do_syscall_64+0xb6/0x230 [ 248.967209][ T7890] do_syscall_64+0xf3/0x230 [ 248.971706][ T7890] ? clear_bhb_loop+0x35/0x90 [ 248.976380][ T7890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.982276][ T7890] RIP: 0033:0x7f5dc397ca3c [ 248.986687][ T7890] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 249.006286][ T7890] RSP: 002b:00007f5dc4821030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 249.014696][ T7890] RAX: ffffffffffffffda RBX: 00007f5dc3b35f80 RCX: 00007f5dc397ca3c [ 249.022664][ T7890] RDX: 000000000000000f RSI: 00007f5dc48210a0 RDI: 0000000000000004 [ 249.030624][ T7890] RBP: 00007f5dc4821090 R08: 0000000000000000 R09: 0000000000000000 [ 249.038586][ T7890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 249.046551][ T7890] R13: 0000000000000000 R14: 00007f5dc3b35f80 R15: 00007ffc84d259d8 [ 249.054528][ T7890] [ 249.459458][ T7913] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 249.470906][ T7913] gretap1: entered promiscuous mode [ 249.479099][ T7913] gretap1: entered allmulticast mode [ 249.488318][ T7916] __nla_validate_parse: 16 callbacks suppressed [ 249.488335][ T7916] netlink: 8 bytes leftover after parsing attributes in process `syz.3.766'. [ 249.531208][ T7920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.763'. [ 250.369782][ T7961] netlink: 4 bytes leftover after parsing attributes in process `syz.2.782'. [ 250.696927][ T7981] netlink: 8 bytes leftover after parsing attributes in process `syz.0.792'. [ 250.721724][ T7984] IPv6: sit1: Disabled Multicast RS [ 250.816557][ T7988] FAULT_INJECTION: forcing a failure. [ 250.816557][ T7988] name failslab, interval 1, probability 0, space 0, times 0 [ 250.861211][ T7991] netlink: 8 bytes leftover after parsing attributes in process `syz.4.797'. [ 250.872361][ T7988] CPU: 0 UID: 0 PID: 7988 Comm: syz.1.795 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 250.882983][ T7988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 250.893038][ T7988] Call Trace: [ 250.896310][ T7988] [ 250.899236][ T7988] dump_stack_lvl+0x241/0x360 [ 250.903918][ T7988] ? __pfx_dump_stack_lvl+0x10/0x10 [ 250.909119][ T7988] ? __pfx__printk+0x10/0x10 [ 250.913700][ T7988] ? __kmalloc_noprof+0xb0/0x400 [ 250.918636][ T7988] ? __pfx___might_resched+0x10/0x10 [ 250.923927][ T7988] should_fail_ex+0x3b0/0x4e0 [ 250.928606][ T7988] ? security_sk_alloc+0x53/0x360 [ 250.933626][ T7988] should_failslab+0xac/0x100 [ 250.938301][ T7988] ? security_sk_alloc+0x53/0x360 [ 250.943319][ T7988] __kmalloc_noprof+0xd8/0x400 [ 250.948078][ T7988] ? sk_prot_alloc+0xe0/0x210 [ 250.952745][ T7988] ? rcu_is_watching+0x15/0xb0 [ 250.957503][ T7988] security_sk_alloc+0x53/0x360 [ 250.962357][ T7988] sk_prot_alloc+0xfa/0x210 [ 250.966855][ T7988] ? sk_alloc+0x26/0x370 [ 250.971088][ T7988] sk_alloc+0x38/0x370 [ 250.975154][ T7988] pptp_create+0x32/0x2f0 [ 250.979481][ T7988] pppox_create+0x12f/0x1b0 [ 250.983991][ T7988] ? __sock_create+0x337/0x920 [ 250.988761][ T7988] __sock_create+0x490/0x920 [ 250.993354][ T7988] __sys_socket+0x150/0x3c0 [ 250.997859][ T7988] ? __pfx___sys_socket+0x10/0x10 [ 251.002881][ T7988] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 251.009210][ T7988] ? do_syscall_64+0x100/0x230 [ 251.013970][ T7988] __x64_sys_socket+0x7a/0x90 [ 251.018643][ T7988] do_syscall_64+0xf3/0x230 [ 251.023141][ T7988] ? clear_bhb_loop+0x35/0x90 [ 251.027815][ T7988] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.033710][ T7988] RIP: 0033:0x7fe45ab7dff9 [ 251.038119][ T7988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.057716][ T7988] RSP: 002b:00007fe45b911038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 251.066126][ T7988] RAX: ffffffffffffffda RBX: 00007fe45ad35f80 RCX: 00007fe45ab7dff9 [ 251.074088][ T7988] RDX: 0000000000000002 RSI: 0000000000000001 RDI: 0000000000000018 [ 251.082048][ T7988] RBP: 00007fe45b911090 R08: 0000000000000000 R09: 0000000000000000 [ 251.090013][ T7988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 251.097979][ T7988] R13: 0000000000000001 R14: 00007fe45ad35f80 R15: 00007ffd2bcf7ab8 [ 251.105956][ T7988] [ 251.167707][ T7997] netlink: 8 bytes leftover after parsing attributes in process `syz.0.798'. [ 251.190612][ T7998] netlink: 8 bytes leftover after parsing attributes in process `syz.2.794'. [ 251.332996][ T8001] netlink: 14 bytes leftover after parsing attributes in process `syz.0.801'. [ 251.354602][ T8001] netlink: get zone limit has 4 unknown bytes [ 251.446899][ T8005] batman_adv: batadv0: Adding interface: macsec1 [ 251.462990][ T8005] batman_adv: batadv0: The MTU of interface macsec1 is too small (1436) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 251.530942][ T8005] batman_adv: batadv0: Not using interface macsec1 (retrying later): interface not active [ 251.553602][ T8012] FAULT_INJECTION: forcing a failure. [ 251.553602][ T8012] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 251.568453][ T8012] CPU: 0 UID: 0 PID: 8012 Comm: syz.0.804 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 251.579062][ T8012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 251.589108][ T8012] Call Trace: [ 251.592379][ T8012] [ 251.595312][ T8012] dump_stack_lvl+0x241/0x360 [ 251.600004][ T8012] ? __pfx_dump_stack_lvl+0x10/0x10 [ 251.605204][ T8012] ? __pfx__printk+0x10/0x10 [ 251.609813][ T8012] ? __pfx_lock_release+0x10/0x10 [ 251.614873][ T8012] should_fail_ex+0x3b0/0x4e0 [ 251.619567][ T8012] _copy_from_user+0x2f/0xe0 [ 251.624163][ T8012] copy_from_sockptr_offset+0x6b/0xb0 [ 251.629548][ T8012] do_ip6t_set_ctl+0xbe6/0x1270 [ 251.634409][ T8012] ? __pfx___might_resched+0x10/0x10 [ 251.639726][ T8012] ? __pfx_do_ip6t_set_ctl+0x10/0x10 [ 251.645011][ T8012] ? __pfx_lock_release+0x10/0x10 [ 251.650071][ T8012] ? __mutex_unlock_slowpath+0x21d/0x750 [ 251.655724][ T8012] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 251.661725][ T8012] nf_setsockopt+0x295/0x2c0 [ 251.666327][ T8012] dccp_setsockopt+0x17c/0x12c0 [ 251.671194][ T8012] ? __pfx_dccp_setsockopt+0x10/0x10 [ 251.676476][ T8012] ? __fget_files+0x29/0x470 [ 251.681055][ T8012] ? aa_sock_opt_perm+0x79/0x120 [ 251.685994][ T8012] ? sock_common_setsockopt+0x37/0xc0 [ 251.691378][ T8012] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 251.697266][ T8012] do_sock_setsockopt+0x3af/0x720 [ 251.702289][ T8012] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 251.707836][ T8012] ? __fget_files+0x29/0x470 [ 251.712431][ T8012] ? __fget_files+0x3f3/0x470 [ 251.717102][ T8012] ? __fget_files+0x29/0x470 [ 251.721695][ T8012] __sys_setsockopt+0x1a2/0x250 [ 251.726553][ T8012] __x64_sys_setsockopt+0xb5/0xd0 [ 251.731586][ T8012] do_syscall_64+0xf3/0x230 [ 251.736092][ T8012] ? clear_bhb_loop+0x35/0x90 [ 251.740777][ T8012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.746679][ T8012] RIP: 0033:0x7f732c77dff9 [ 251.751099][ T8012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.770701][ T8012] RSP: 002b:00007f732d640038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 251.779113][ T8012] RAX: ffffffffffffffda RBX: 00007f732c935f80 RCX: 00007f732c77dff9 [ 251.787090][ T8012] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000008 [ 251.795078][ T8012] RBP: 00007f732d640090 R08: 0000000000000520 R09: 0000000000000000 [ 251.803056][ T8012] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001 [ 251.811017][ T8012] R13: 0000000000000000 R14: 00007f732c935f80 R15: 00007fff6d9ba0a8 [ 251.819082][ T8012] [ 252.009386][ T8017] netlink: 'syz.4.806': attribute type 1 has an invalid length. [ 252.120237][ T8026] netlink: 8 bytes leftover after parsing attributes in process `syz.2.810'. [ 252.196219][ T8033] vlan2: entered promiscuous mode [ 252.272149][ T8040] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 252.299364][ T8037] tipc: Enabling of bearer rejected, failed to enable media [ 252.510305][ T8058] netlink: 20 bytes leftover after parsing attributes in process `syz.4.821'. [ 252.760900][ T8076] FAULT_INJECTION: forcing a failure. [ 252.760900][ T8076] name failslab, interval 1, probability 0, space 0, times 0 [ 252.802024][ T8076] CPU: 0 UID: 0 PID: 8076 Comm: syz.2.829 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 252.812662][ T8076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 252.822738][ T8076] Call Trace: [ 252.826037][ T8076] [ 252.828987][ T8076] dump_stack_lvl+0x241/0x360 [ 252.833693][ T8076] ? __pfx_dump_stack_lvl+0x10/0x10 [ 252.838908][ T8076] ? __pfx__printk+0x10/0x10 [ 252.843498][ T8076] ? ref_tracker_alloc+0x332/0x490 [ 252.848612][ T8076] should_fail_ex+0x3b0/0x4e0 [ 252.853291][ T8076] ? skb_clone+0x20c/0x390 [ 252.857706][ T8076] should_failslab+0xac/0x100 [ 252.862380][ T8076] ? skb_clone+0x20c/0x390 [ 252.866787][ T8076] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 252.872162][ T8076] skb_clone+0x20c/0x390 [ 252.876401][ T8076] __netlink_deliver_tap+0x3cc/0x7c0 [ 252.881684][ T8076] ? netlink_deliver_tap+0x2e/0x1b0 [ 252.886871][ T8076] netlink_deliver_tap+0x19d/0x1b0 [ 252.891976][ T8076] netlink_unicast+0x7c4/0x990 [ 252.896745][ T8076] ? __pfx_netlink_unicast+0x10/0x10 [ 252.902022][ T8076] ? __virt_addr_valid+0x183/0x530 [ 252.907125][ T8076] ? __check_object_size+0x48e/0x900 [ 252.912409][ T8076] netlink_sendmsg+0x8e4/0xcb0 [ 252.917182][ T8076] ? __pfx_netlink_sendmsg+0x10/0x10 [ 252.922463][ T8076] ? aa_sock_msg_perm+0x91/0x160 [ 252.927400][ T8076] ? __pfx_netlink_sendmsg+0x10/0x10 [ 252.932678][ T8076] __sock_sendmsg+0x221/0x270 [ 252.937361][ T8076] ____sys_sendmsg+0x52a/0x7e0 [ 252.942126][ T8076] ? __pfx_____sys_sendmsg+0x10/0x10 [ 252.947418][ T8076] __sys_sendmsg+0x292/0x380 [ 252.952004][ T8076] ? __pfx___sys_sendmsg+0x10/0x10 [ 252.957117][ T8076] ? __pfx_vfs_write+0x10/0x10 [ 252.961890][ T8076] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 252.968216][ T8076] ? do_syscall_64+0x100/0x230 [ 252.972973][ T8076] ? do_syscall_64+0xb6/0x230 [ 252.977644][ T8076] do_syscall_64+0xf3/0x230 [ 252.982138][ T8076] ? clear_bhb_loop+0x35/0x90 [ 252.986808][ T8076] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.992695][ T8076] RIP: 0033:0x7f1ca1d7dff9 [ 252.997104][ T8076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 253.016700][ T8076] RSP: 002b:00007f1ca2add038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 253.025110][ T8076] RAX: ffffffffffffffda RBX: 00007f1ca1f35f80 RCX: 00007f1ca1d7dff9 [ 253.033074][ T8076] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003 [ 253.041037][ T8076] RBP: 00007f1ca2add090 R08: 0000000000000000 R09: 0000000000000000 [ 253.049000][ T8076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 253.056963][ T8076] R13: 0000000000000000 R14: 00007f1ca1f35f80 R15: 00007ffc37af3148 [ 253.064937][ T8076] [ 253.167107][ T8046] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 253.190650][ T8047] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 253.356724][ T8098] bond0: entered promiscuous mode [ 253.362335][ T8098] bond_slave_0: entered promiscuous mode [ 253.370215][ T8098] bond_slave_1: entered promiscuous mode [ 253.398419][ T8100] netlink: 'syz.0.836': attribute type 2 has an invalid length. [ 253.688870][ T8118] netlink: 'syz.3.846': attribute type 2 has an invalid length. [ 254.276167][ T8157] FAULT_INJECTION: forcing a failure. [ 254.276167][ T8157] name failslab, interval 1, probability 0, space 0, times 0 [ 254.306223][ T8160] netlink: 'syz.4.859': attribute type 2 has an invalid length. [ 254.326006][ T8157] CPU: 1 UID: 0 PID: 8157 Comm: syz.0.860 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 254.336636][ T8157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 254.346711][ T8157] Call Trace: [ 254.350017][ T8157] [ 254.352966][ T8157] dump_stack_lvl+0x241/0x360 [ 254.357666][ T8157] ? __pfx_dump_stack_lvl+0x10/0x10 [ 254.362868][ T8157] ? __pfx__printk+0x10/0x10 [ 254.367462][ T8157] ? ref_tracker_alloc+0x332/0x490 [ 254.372588][ T8157] should_fail_ex+0x3b0/0x4e0 [ 254.377280][ T8157] ? skb_clone+0x20c/0x390 [ 254.381694][ T8157] should_failslab+0xac/0x100 [ 254.386377][ T8157] ? skb_clone+0x20c/0x390 [ 254.390794][ T8157] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 254.396183][ T8157] skb_clone+0x20c/0x390 [ 254.400433][ T8157] __netlink_deliver_tap+0x3cc/0x7c0 [ 254.405724][ T8157] ? netlink_deliver_tap+0x2e/0x1b0 [ 254.410918][ T8157] netlink_deliver_tap+0x19d/0x1b0 [ 254.416024][ T8157] netlink_unicast+0x7c4/0x990 [ 254.420792][ T8157] ? __pfx_netlink_unicast+0x10/0x10 [ 254.426073][ T8157] ? __virt_addr_valid+0x183/0x530 [ 254.431179][ T8157] ? __check_object_size+0x48e/0x900 [ 254.436467][ T8157] netlink_sendmsg+0x8e4/0xcb0 [ 254.441236][ T8157] ? __pfx_netlink_sendmsg+0x10/0x10 [ 254.446520][ T8157] ? aa_sock_msg_perm+0x91/0x160 [ 254.451455][ T8157] ? __pfx_netlink_sendmsg+0x10/0x10 [ 254.456733][ T8157] __sock_sendmsg+0x221/0x270 [ 254.461442][ T8157] ____sys_sendmsg+0x52a/0x7e0 [ 254.466211][ T8157] ? __pfx_____sys_sendmsg+0x10/0x10 [ 254.471512][ T8157] __sys_sendmsg+0x292/0x380 [ 254.476119][ T8157] ? __pfx___sys_sendmsg+0x10/0x10 [ 254.481245][ T8157] ? __pfx_vfs_write+0x10/0x10 [ 254.486021][ T8157] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 254.492356][ T8157] ? do_syscall_64+0x100/0x230 [ 254.497118][ T8157] ? do_syscall_64+0xb6/0x230 [ 254.501795][ T8157] do_syscall_64+0xf3/0x230 [ 254.506294][ T8157] ? clear_bhb_loop+0x35/0x90 [ 254.510991][ T8157] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.516882][ T8157] RIP: 0033:0x7f732c77dff9 [ 254.521287][ T8157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 254.540890][ T8157] RSP: 002b:00007f732d640038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 254.549305][ T8157] RAX: ffffffffffffffda RBX: 00007f732c935f80 RCX: 00007f732c77dff9 [ 254.557271][ T8157] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 254.565235][ T8157] RBP: 00007f732d640090 R08: 0000000000000000 R09: 0000000000000000 [ 254.573235][ T8157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 254.581549][ T8157] R13: 0000000000000000 R14: 00007f732c935f80 R15: 00007fff6d9ba0a8 [ 254.589526][ T8157] [ 254.615572][ T8157] __nla_validate_parse: 45 callbacks suppressed [ 254.615590][ T8157] netlink: 12 bytes leftover after parsing attributes in process `syz.0.860'. [ 254.647658][ T8157] netlink: 8 bytes leftover after parsing attributes in process `syz.0.860'. [ 254.661117][ T8165] FAULT_INJECTION: forcing a failure. [ 254.661117][ T8165] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 254.677824][ T8165] CPU: 0 UID: 0 PID: 8165 Comm: syz.4.863 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 254.688444][ T8165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 254.698505][ T8165] Call Trace: [ 254.701780][ T8165] [ 254.704706][ T8165] dump_stack_lvl+0x241/0x360 [ 254.709388][ T8165] ? __pfx_dump_stack_lvl+0x10/0x10 [ 254.714584][ T8165] ? __pfx__printk+0x10/0x10 [ 254.719171][ T8165] ? __pfx_lock_release+0x10/0x10 [ 254.724196][ T8165] ? __lock_acquire+0x1384/0x2050 [ 254.729222][ T8165] should_fail_ex+0x3b0/0x4e0 [ 254.733899][ T8165] _copy_from_user+0x2f/0xe0 [ 254.738497][ T8165] kstrtouint_from_user+0xc6/0x190 [ 254.743606][ T8165] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 254.749323][ T8165] ? __pfx_lock_acquire+0x10/0x10 [ 254.754358][ T8165] proc_fail_nth_write+0xaa/0x2d0 [ 254.759389][ T8165] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 254.765279][ T8165] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 254.770914][ T8165] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 254.776550][ T8165] vfs_write+0x29c/0xc90 [ 254.780794][ T8165] ? __pfx_vfs_write+0x10/0x10 [ 254.785556][ T8165] ? __fget_files+0x3f3/0x470 [ 254.790237][ T8165] ? fdget_pos+0x24e/0x320 [ 254.794651][ T8165] ksys_write+0x183/0x2b0 [ 254.798975][ T8165] ? __pfx_ksys_write+0x10/0x10 [ 254.803818][ T8165] ? do_syscall_64+0x100/0x230 [ 254.808582][ T8165] ? do_syscall_64+0xb6/0x230 [ 254.813253][ T8165] do_syscall_64+0xf3/0x230 [ 254.817751][ T8165] ? clear_bhb_loop+0x35/0x90 [ 254.822424][ T8165] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.828319][ T8165] RIP: 0033:0x7f180af7cadf [ 254.832729][ T8165] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 254.852331][ T8165] RSP: 002b:00007f180bd0c030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 254.860746][ T8165] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f180af7cadf [ 254.868710][ T8165] RDX: 0000000000000001 RSI: 00007f180bd0c0a0 RDI: 0000000000000006 [ 254.876677][ T8165] RBP: 00007f180bd0c090 R08: 0000000000000000 R09: 0000000000000000 [ 254.884644][ T8165] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 254.892607][ T8165] R13: 0000000000000000 R14: 00007f180b135f80 R15: 00007ffd7c9a3238 [ 254.900584][ T8165] [ 254.943799][ T8172] netlink: 8 bytes leftover after parsing attributes in process `syz.3.865'. [ 254.960567][ T8172] netlink: 20 bytes leftover after parsing attributes in process `syz.3.865'. [ 254.981780][ T8167] FAULT_INJECTION: forcing a failure. [ 254.981780][ T8167] name failslab, interval 1, probability 0, space 0, times 0 [ 255.005171][ T8175] netlink: 4 bytes leftover after parsing attributes in process `syz.0.866'. [ 255.009018][ T8167] CPU: 1 UID: 0 PID: 8167 Comm: syz.1.862 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 255.024542][ T8167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 255.034615][ T8167] Call Trace: [ 255.037909][ T8167] [ 255.040857][ T8167] dump_stack_lvl+0x241/0x360 [ 255.045556][ T8167] ? __pfx_dump_stack_lvl+0x10/0x10 [ 255.050778][ T8167] ? __pfx__printk+0x10/0x10 [ 255.055396][ T8167] ? ref_tracker_alloc+0x332/0x490 [ 255.060535][ T8167] should_fail_ex+0x3b0/0x4e0 [ 255.065244][ T8167] ? skb_clone+0x20c/0x390 [ 255.069680][ T8167] should_failslab+0xac/0x100 [ 255.074378][ T8167] ? skb_clone+0x20c/0x390 [ 255.078820][ T8167] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 255.084223][ T8167] skb_clone+0x20c/0x390 [ 255.088494][ T8167] __netlink_deliver_tap+0x3cc/0x7c0 [ 255.093805][ T8167] ? netlink_deliver_tap+0x2e/0x1b0 [ 255.099018][ T8167] netlink_deliver_tap+0x19d/0x1b0 [ 255.104154][ T8167] netlink_unicast+0x7c4/0x990 [ 255.108957][ T8167] ? __pfx_netlink_unicast+0x10/0x10 [ 255.114262][ T8167] ? __virt_addr_valid+0x183/0x530 [ 255.119392][ T8167] ? __check_object_size+0x48e/0x900 [ 255.124706][ T8167] netlink_sendmsg+0x8e4/0xcb0 [ 255.129505][ T8167] ? __pfx_netlink_sendmsg+0x10/0x10 [ 255.134817][ T8167] ? aa_sock_msg_perm+0x91/0x160 [ 255.139791][ T8167] ? __pfx_netlink_sendmsg+0x10/0x10 [ 255.145102][ T8167] __sock_sendmsg+0x221/0x270 [ 255.149814][ T8167] ____sys_sendmsg+0x52a/0x7e0 [ 255.154620][ T8167] ? __pfx_____sys_sendmsg+0x10/0x10 [ 255.159953][ T8167] __sys_sendmsg+0x292/0x380 [ 255.164572][ T8167] ? __pfx___sys_sendmsg+0x10/0x10 [ 255.169718][ T8167] ? __pfx_vfs_write+0x10/0x10 [ 255.174536][ T8167] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 255.181158][ T8167] ? do_syscall_64+0x100/0x230 [ 255.185950][ T8167] ? do_syscall_64+0xb6/0x230 [ 255.190649][ T8167] do_syscall_64+0xf3/0x230 [ 255.195178][ T8167] ? clear_bhb_loop+0x35/0x90 [ 255.199887][ T8167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.205814][ T8167] RIP: 0033:0x7fe45ab7dff9 [ 255.210258][ T8167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.229898][ T8167] RSP: 002b:00007fe45b911038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 255.238345][ T8167] RAX: ffffffffffffffda RBX: 00007fe45ad35f80 RCX: 00007fe45ab7dff9 [ 255.246340][ T8167] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000004 [ 255.254332][ T8167] RBP: 00007fe45b911090 R08: 0000000000000000 R09: 0000000000000000 [ 255.262324][ T8167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 255.270328][ T8167] R13: 0000000000000000 R14: 00007fe45ad35f80 R15: 00007ffd2bcf7ab8 [ 255.278319][ T8167] [ 255.343328][ T8178] netlink: 16 bytes leftover after parsing attributes in process `syz.4.868'. [ 255.480365][ T8186] netlink: 8 bytes leftover after parsing attributes in process `syz.0.870'. [ 255.554033][ T8187] netlink: 8 bytes leftover after parsing attributes in process `syz.0.870'. [ 255.885477][ T1263] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.891931][ T1263] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.058581][ T8191] netlink: 8 bytes leftover after parsing attributes in process `syz.3.872'. [ 256.470745][ T8210] netlink: 8 bytes leftover after parsing attributes in process `syz.0.877'. [ 256.491290][ T8213] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 256.512469][ T8210] FAULT_INJECTION: forcing a failure. [ 256.512469][ T8210] name failslab, interval 1, probability 0, space 0, times 0 [ 256.534583][ T8210] CPU: 1 UID: 0 PID: 8210 Comm: syz.0.877 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 256.545304][ T8210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 256.555376][ T8210] Call Trace: [ 256.558668][ T8210] [ 256.561610][ T8210] dump_stack_lvl+0x241/0x360 [ 256.566331][ T8210] ? __pfx_dump_stack_lvl+0x10/0x10 [ 256.571544][ T8210] ? __pfx__printk+0x10/0x10 [ 256.576157][ T8210] ? ref_tracker_alloc+0x332/0x490 [ 256.581288][ T8210] should_fail_ex+0x3b0/0x4e0 [ 256.586001][ T8210] ? skb_clone+0x20c/0x390 [ 256.590442][ T8210] should_failslab+0xac/0x100 [ 256.595159][ T8210] ? skb_clone+0x20c/0x390 [ 256.599601][ T8210] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 256.605114][ T8210] skb_clone+0x20c/0x390 [ 256.609379][ T8210] __netlink_deliver_tap+0x3cc/0x7c0 [ 256.614691][ T8210] ? netlink_deliver_tap+0x2e/0x1b0 [ 256.619910][ T8210] netlink_deliver_tap+0x19d/0x1b0 [ 256.625051][ T8210] netlink_sendskb+0x68/0x140 [ 256.629751][ T8210] netlink_unicast+0x39d/0x990 [ 256.634533][ T8210] ? __asan_memcpy+0x40/0x70 [ 256.639146][ T8210] ? __pfx_netlink_unicast+0x10/0x10 [ 256.644507][ T8210] netlink_rcv_skb+0x262/0x430 [ 256.649287][ T8210] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 256.654769][ T8210] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 256.660090][ T8210] ? netlink_deliver_tap+0x2e/0x1b0 [ 256.665305][ T8210] netlink_unicast+0x7f6/0x990 [ 256.670100][ T8210] ? __pfx_netlink_unicast+0x10/0x10 [ 256.675401][ T8210] ? __virt_addr_valid+0x183/0x530 [ 256.680531][ T8210] ? __check_object_size+0x48e/0x900 [ 256.685842][ T8210] netlink_sendmsg+0x8e4/0xcb0 [ 256.690662][ T8210] ? __pfx_netlink_sendmsg+0x10/0x10 [ 256.695967][ T8210] ? aa_sock_msg_perm+0x91/0x160 [ 256.700929][ T8210] ? __pfx_netlink_sendmsg+0x10/0x10 [ 256.706226][ T8210] __sock_sendmsg+0x221/0x270 [ 256.710928][ T8210] ____sys_sendmsg+0x52a/0x7e0 [ 256.715723][ T8210] ? __pfx_____sys_sendmsg+0x10/0x10 [ 256.721050][ T8210] __sys_sendmsg+0x292/0x380 [ 256.725661][ T8210] ? __pfx___sys_sendmsg+0x10/0x10 [ 256.730798][ T8210] ? __pfx_vfs_write+0x10/0x10 [ 256.735609][ T8210] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 256.741963][ T8210] ? do_syscall_64+0x100/0x230 [ 256.746759][ T8210] ? do_syscall_64+0xb6/0x230 [ 256.751461][ T8210] do_syscall_64+0xf3/0x230 [ 256.755982][ T8210] ? clear_bhb_loop+0x35/0x90 [ 256.760679][ T8210] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 256.766596][ T8210] RIP: 0033:0x7f732c77dff9 [ 256.771023][ T8210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 256.790727][ T8210] RSP: 002b:00007f732d640038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 256.799232][ T8210] RAX: ffffffffffffffda RBX: 00007f732c935f80 RCX: 00007f732c77dff9 [ 256.807200][ T8210] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003 [ 256.815168][ T8210] RBP: 00007f732d640090 R08: 0000000000000000 R09: 0000000000000000 [ 256.823132][ T8210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 256.831097][ T8210] R13: 0000000000000000 R14: 00007f732c935f80 R15: 00007fff6d9ba0a8 [ 256.839083][ T8210] [ 257.682601][ T8263] netlink: 'syz.2.893': attribute type 11 has an invalid length. [ 257.717961][ T8265] pimreg: entered allmulticast mode [ 257.761167][ T8265] sock: sock_timestamping_bind_phc: sock not bind to device [ 257.902952][ T8276] xfrm1: entered promiscuous mode [ 257.907189][ T8274] netlink: 'syz.3.897': attribute type 11 has an invalid length. [ 257.909785][ T8276] xfrm1: entered allmulticast mode [ 258.061271][ T8280] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 258.071996][ T8280] gretap1: entered allmulticast mode [ 258.318314][ T8291] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD [ 258.473020][ T8295] FAULT_INJECTION: forcing a failure. [ 258.473020][ T8295] name failslab, interval 1, probability 0, space 0, times 0 [ 258.516706][ T8295] CPU: 1 UID: 0 PID: 8295 Comm: syz.4.905 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 258.527342][ T8295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 258.537403][ T8295] Call Trace: [ 258.540680][ T8295] [ 258.543604][ T8295] dump_stack_lvl+0x241/0x360 [ 258.548289][ T8295] ? __pfx_dump_stack_lvl+0x10/0x10 [ 258.553508][ T8295] ? __pfx__printk+0x10/0x10 [ 258.558120][ T8295] ? __kmalloc_cache_noprof+0x44/0x2c0 [ 258.563601][ T8295] ? __pfx___might_resched+0x10/0x10 [ 258.568891][ T8295] should_fail_ex+0x3b0/0x4e0 [ 258.573570][ T8295] should_failslab+0xac/0x100 [ 258.578237][ T8295] ? alloc_netdev_mqs+0xb9e/0x1000 [ 258.583341][ T8295] __kmalloc_cache_noprof+0x6c/0x2c0 [ 258.588630][ T8295] ? __xdp_rxq_info_reg+0x142/0x290 [ 258.593826][ T8295] alloc_netdev_mqs+0xb9e/0x1000 [ 258.598762][ T8295] rtnl_create_link+0x2f9/0xc20 [ 258.603617][ T8295] rtnl_newlink+0x1423/0x20a0 [ 258.608288][ T8295] ? rtnl_newlink+0xaf1/0x20a0 [ 258.613054][ T8295] ? __pfx_rtnl_newlink+0x10/0x10 [ 258.618078][ T8295] ? __pfx___mutex_trylock_common+0x10/0x10 [ 258.623979][ T8295] ? rcu_is_watching+0x15/0xb0 [ 258.628756][ T8295] ? trace_contention_end+0x3c/0x120 [ 258.634043][ T8295] ? __mutex_lock+0x2ef/0xd70 [ 258.638729][ T8295] ? __pfx_lock_release+0x10/0x10 [ 258.643757][ T8295] ? __pfx_rtnl_newlink+0x10/0x10 [ 258.648775][ T8295] rtnetlink_rcv_msg+0x73f/0xcf0 [ 258.653709][ T8295] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 258.658814][ T8295] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 258.664273][ T8295] ? ref_tracker_free+0x643/0x7e0 [ 258.669292][ T8295] netlink_rcv_skb+0x1e3/0x430 [ 258.674058][ T8295] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 258.679531][ T8295] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 258.684815][ T8295] ? netlink_deliver_tap+0x2e/0x1b0 [ 258.690000][ T8295] netlink_unicast+0x7f6/0x990 [ 258.694762][ T8295] ? __pfx_netlink_unicast+0x10/0x10 [ 258.700036][ T8295] ? __virt_addr_valid+0x183/0x530 [ 258.705139][ T8295] ? __check_object_size+0x48e/0x900 [ 258.710431][ T8295] netlink_sendmsg+0x8e4/0xcb0 [ 258.715221][ T8295] ? __pfx_netlink_sendmsg+0x10/0x10 [ 258.720515][ T8295] ? aa_sock_msg_perm+0x91/0x160 [ 258.725462][ T8295] ? __pfx_netlink_sendmsg+0x10/0x10 [ 258.730770][ T8295] __sock_sendmsg+0x221/0x270 [ 258.735477][ T8295] ____sys_sendmsg+0x52a/0x7e0 [ 258.740272][ T8295] ? __pfx_____sys_sendmsg+0x10/0x10 [ 258.745597][ T8295] __sys_sendmsg+0x292/0x380 [ 258.750213][ T8295] ? __pfx___sys_sendmsg+0x10/0x10 [ 258.755349][ T8295] ? __pfx_vfs_write+0x10/0x10 [ 258.760123][ T8295] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 258.766461][ T8295] ? do_syscall_64+0x100/0x230 [ 258.771241][ T8295] ? do_syscall_64+0xb6/0x230 [ 258.775911][ T8295] do_syscall_64+0xf3/0x230 [ 258.780406][ T8295] ? clear_bhb_loop+0x35/0x90 [ 258.785075][ T8295] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 258.790962][ T8295] RIP: 0033:0x7f180af7dff9 [ 258.795367][ T8295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 258.814966][ T8295] RSP: 002b:00007f180bd0c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 258.823375][ T8295] RAX: ffffffffffffffda RBX: 00007f180b135f80 RCX: 00007f180af7dff9 [ 258.831337][ T8295] RDX: 0000000000000810 RSI: 0000000020000280 RDI: 0000000000000003 [ 258.839309][ T8295] RBP: 00007f180bd0c090 R08: 0000000000000000 R09: 0000000000000000 [ 258.847294][ T8295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 258.855252][ T8295] R13: 0000000000000000 R14: 00007f180b135f80 R15: 00007ffd7c9a3238 [ 258.863222][ T8295] [ 258.886979][ T8297] FAULT_INJECTION: forcing a failure. [ 258.886979][ T8297] name failslab, interval 1, probability 0, space 0, times 0 [ 258.900105][ T8297] CPU: 1 UID: 0 PID: 8297 Comm: syz.1.907 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 258.910720][ T8297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 258.920797][ T8297] Call Trace: [ 258.924094][ T8297] [ 258.927047][ T8297] dump_stack_lvl+0x241/0x360 [ 258.931755][ T8297] ? __pfx_dump_stack_lvl+0x10/0x10 [ 258.936981][ T8297] ? __pfx__printk+0x10/0x10 [ 258.941594][ T8297] ? __kmalloc_cache_noprof+0x44/0x2c0 [ 258.947082][ T8297] ? __pfx___might_resched+0x10/0x10 [ 258.952398][ T8297] should_fail_ex+0x3b0/0x4e0 [ 258.957109][ T8297] should_failslab+0xac/0x100 [ 258.961811][ T8297] ? alloc_netdev_mqs+0xb9e/0x1000 [ 258.966948][ T8297] __kmalloc_cache_noprof+0x6c/0x2c0 [ 258.972259][ T8297] ? __xdp_rxq_info_reg+0x142/0x290 [ 258.977476][ T8297] alloc_netdev_mqs+0xb9e/0x1000 [ 258.982427][ T8297] rtnl_create_link+0x2f9/0xc20 [ 258.987291][ T8297] rtnl_newlink+0x1423/0x20a0 [ 258.991961][ T8297] ? rtnl_newlink+0xaf1/0x20a0 [ 258.996742][ T8297] ? __pfx_rtnl_newlink+0x10/0x10 [ 259.001768][ T8297] ? do_raw_spin_unlock+0x13c/0x8b0 [ 259.006974][ T8297] ? __mutex_lock+0x9ab/0xd70 [ 259.011648][ T8297] ? __mutex_lock+0x52a/0xd70 [ 259.016335][ T8297] ? __pfx_rtnl_newlink+0x10/0x10 [ 259.021355][ T8297] rtnetlink_rcv_msg+0x73f/0xcf0 [ 259.026290][ T8297] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 259.031400][ T8297] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 259.036860][ T8297] ? ref_tracker_free+0x643/0x7e0 [ 259.041884][ T8297] netlink_rcv_skb+0x1e3/0x430 [ 259.046654][ T8297] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 259.052115][ T8297] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 259.057409][ T8297] ? netlink_deliver_tap+0x2e/0x1b0 [ 259.062601][ T8297] netlink_unicast+0x7f6/0x990 [ 259.067368][ T8297] ? __pfx_netlink_unicast+0x10/0x10 [ 259.072652][ T8297] ? __virt_addr_valid+0x183/0x530 [ 259.077766][ T8297] ? __check_object_size+0x48e/0x900 [ 259.083055][ T8297] netlink_sendmsg+0x8e4/0xcb0 [ 259.087822][ T8297] ? __pfx_netlink_sendmsg+0x10/0x10 [ 259.093104][ T8297] ? aa_sock_msg_perm+0x91/0x160 [ 259.098045][ T8297] ? __pfx_netlink_sendmsg+0x10/0x10 [ 259.103324][ T8297] __sock_sendmsg+0x221/0x270 [ 259.108003][ T8297] ____sys_sendmsg+0x52a/0x7e0 [ 259.112801][ T8297] ? __pfx_____sys_sendmsg+0x10/0x10 [ 259.118092][ T8297] __sys_sendmsg+0x292/0x380 [ 259.122681][ T8297] ? __pfx___sys_sendmsg+0x10/0x10 [ 259.127796][ T8297] ? __pfx_vfs_write+0x10/0x10 [ 259.132569][ T8297] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 259.138898][ T8297] ? do_syscall_64+0x100/0x230 [ 259.143665][ T8297] ? do_syscall_64+0xb6/0x230 [ 259.148338][ T8297] do_syscall_64+0xf3/0x230 [ 259.152835][ T8297] ? clear_bhb_loop+0x35/0x90 [ 259.157510][ T8297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.163400][ T8297] RIP: 0033:0x7fe45ab7dff9 [ 259.167807][ T8297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 259.187422][ T8297] RSP: 002b:00007fe45b911038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 259.195855][ T8297] RAX: ffffffffffffffda RBX: 00007fe45ad35f80 RCX: 00007fe45ab7dff9 [ 259.203829][ T8297] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000003 [ 259.211802][ T8297] RBP: 00007fe45b911090 R08: 0000000000000000 R09: 0000000000000000 [ 259.219788][ T8297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 259.227753][ T8297] R13: 0000000000000000 R14: 00007fe45ad35f80 R15: 00007ffd2bcf7ab8 [ 259.235731][ T8297] [ 259.239507][ T8290] Bluetooth: hci1: Opcode 0x0401 failed: -4 [ 259.408013][ T8307] netlink: 'syz.2.911': attribute type 2 has an invalid length. [ 259.447551][ T8309] netlink: 'syz.1.910': attribute type 3 has an invalid length. [ 259.541076][ T8317] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2 [ 259.567214][ T8317] gretap2: default qdisc (pfifo_fast) fail, fallback to noqueue [ 259.575328][ T8317] gretap2: entered promiscuous mode [ 259.588367][ T8317] gretap2: entered allmulticast mode [ 259.601996][ T8323] Â: renamed from pim6reg1 [ 259.797236][ T8330] raw_sendmsg: syz.1.920 forgot to set AF_INET. Fix it! [ 259.818133][ T8330] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (511) [ 259.839967][ T8330] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255 [ 259.892810][ T8334] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 260.012215][ T8338] __nla_validate_parse: 9 callbacks suppressed [ 260.012234][ T8338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.924'. [ 260.087241][ T8342] team0: Device veth0_vlan failed to register rx_handler [ 260.124935][ T8346] netlink: 12 bytes leftover after parsing attributes in process `syz.0.926'. [ 260.128844][ T8347] nbd: must specify a device to reconfigure [ 260.144479][ T8344] openvswitch: netlink: Missing key (keys=20040, expected=100) [ 260.354713][ T5247] Bluetooth: hci1: command 0x0401 tx timeout [ 260.468562][ T2569] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 260.572899][ T2569] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 260.610060][ T8369] netlink: 8 bytes leftover after parsing attributes in process `syz.4.934'. [ 260.650107][ T2569] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 260.688492][ T8369] netlink: 20 bytes leftover after parsing attributes in process `syz.4.934'. [ 260.759776][ T2569] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 260.969669][ T2569] bridge_slave_1: left allmulticast mode [ 260.984630][ T5235] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 260.999813][ T5235] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 261.008215][ T5235] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 261.010474][ T2569] bridge_slave_1: left promiscuous mode [ 261.034954][ T5235] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 261.047674][ T5235] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 261.059730][ T5235] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 261.090307][ T2569] bridge0: port 2(bridge_slave_1) entered disabled state [ 261.137901][ T2569] bridge_slave_0: left allmulticast mode [ 261.166776][ T2569] bridge_slave_0: left promiscuous mode [ 261.183268][ T2569] bridge0: port 1(bridge_slave_0) entered disabled state [ 261.776106][ T2569] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 261.788166][ T2569] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 261.799255][ T2569] bond0 (unregistering): Released all slaves [ 261.818135][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.2.938'. [ 261.832377][ T8391] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 261.841416][ T8391] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 261.850336][ T8391] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 261.859186][ T8391] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 261.870214][ T8391] vxlan0: entered promiscuous mode [ 261.875522][ T8391] vxlan0: entered allmulticast mode [ 261.891763][ T8391] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 261.900757][ T8391] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 261.909705][ T8391] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 261.918631][ T8391] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 262.029336][ T8406] dvmrp8: entered allmulticast mode [ 262.072921][ T8404] dvmrp8: left allmulticast mode [ 262.252609][ T2569] hsr_slave_0: left promiscuous mode [ 262.267874][ T2569] hsr_slave_1: left promiscuous mode [ 262.282654][ T2569] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 262.296387][ T2569] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 262.307785][ T8417] netlink: 12 bytes leftover after parsing attributes in process `syz.3.944'. [ 262.321245][ T2569] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 262.334409][ T2569] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 262.368123][ T2569] veth1_macvtap: left promiscuous mode [ 262.374021][ T2569] veth0_macvtap: left promiscuous mode [ 262.379809][ T2569] veth1_vlan: left promiscuous mode [ 262.447892][ T8423] FAULT_INJECTION: forcing a failure. [ 262.447892][ T8423] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 262.461979][ T8423] CPU: 1 UID: 0 PID: 8423 Comm: syz.1.948 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 262.472597][ T8423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 262.482669][ T8423] Call Trace: [ 262.485963][ T8423] [ 262.488911][ T8423] dump_stack_lvl+0x241/0x360 [ 262.493618][ T8423] ? __pfx_dump_stack_lvl+0x10/0x10 [ 262.498841][ T8423] ? __pfx__printk+0x10/0x10 [ 262.503443][ T8423] ? __pfx_lock_release+0x10/0x10 [ 262.508484][ T8423] should_fail_ex+0x3b0/0x4e0 [ 262.513176][ T8423] _copy_from_user+0x2f/0xe0 [ 262.517773][ T8423] sctp_getsockopt_active_key+0x10c/0x6d0 [ 262.523512][ T8423] ? __pfx_sctp_getsockopt_active_key+0x10/0x10 [ 262.529759][ T8423] sctp_getsockopt+0xa49/0xbb0 [ 262.534521][ T8423] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 262.540501][ T8423] do_sock_getsockopt+0x3c4/0x7e0 [ 262.545523][ T8423] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 262.551061][ T8423] ? __fget_files+0x3f3/0x470 [ 262.555743][ T8423] ? __fget_files+0x29/0x470 [ 262.560338][ T8423] __sys_getsockopt+0x267/0x330 [ 262.565188][ T8423] ? __pfx___sys_getsockopt+0x10/0x10 [ 262.570563][ T8423] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 262.576890][ T8423] ? do_syscall_64+0x100/0x230 [ 262.581650][ T8423] __x64_sys_getsockopt+0xb5/0xd0 [ 262.586672][ T8423] do_syscall_64+0xf3/0x230 [ 262.591168][ T8423] ? clear_bhb_loop+0x35/0x90 [ 262.595843][ T8423] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.601732][ T8423] RIP: 0033:0x7fe45ab7dff9 [ 262.606138][ T8423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 262.625739][ T8423] RSP: 002b:00007fe45b911038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 262.634150][ T8423] RAX: ffffffffffffffda RBX: 00007fe45ad35f80 RCX: 00007fe45ab7dff9 [ 262.642114][ T8423] RDX: 0000000000000018 RSI: 0000000000000084 RDI: 0000000000000003 [ 262.650094][ T8423] RBP: 00007fe45b911090 R08: 0000000020000100 R09: 0000000000000000 [ 262.658058][ T8423] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001 [ 262.666025][ T8423] R13: 0000000000000000 R14: 00007fe45ad35f80 R15: 00007ffd2bcf7ab8 [ 262.674003][ T8423] [ 263.063876][ T2569] team0 (unregistering): Port device team_slave_1 removed [ 263.107748][ T2569] team0 (unregistering): Port device team_slave_0 removed [ 263.166522][ T5247] Bluetooth: hci2: command tx timeout [ 263.534020][ T8428] netlink: 8 bytes leftover after parsing attributes in process `syz.1.949'. [ 263.582155][ T8429] netlink: 20 bytes leftover after parsing attributes in process `syz.1.949'. [ 263.736270][ T8442] netlink: 8 bytes leftover after parsing attributes in process `syz.2.951'. [ 263.831189][ T8452] FAULT_INJECTION: forcing a failure. [ 263.831189][ T8452] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 263.907548][ T8374] chnl_net:caif_netlink_parms(): no params data found [ 263.925417][ T8452] CPU: 1 UID: 0 PID: 8452 Comm: syz.3.952 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 263.936055][ T8452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 263.946139][ T8452] Call Trace: [ 263.949440][ T8452] [ 263.952387][ T8452] dump_stack_lvl+0x241/0x360 [ 263.957097][ T8452] ? __pfx_dump_stack_lvl+0x10/0x10 [ 263.962316][ T8452] ? __pfx__printk+0x10/0x10 [ 263.966922][ T8452] should_fail_ex+0x3b0/0x4e0 [ 263.971595][ T8452] _copy_from_user+0x2f/0xe0 [ 263.976181][ T8452] move_addr_to_kernel+0x82/0x150 [ 263.981211][ T8452] __sys_sendto+0x29f/0x4f0 [ 263.985738][ T8452] ? __pfx___sys_sendto+0x10/0x10 [ 263.990775][ T8452] ? __mutex_unlock_slowpath+0x21d/0x750 [ 263.996423][ T8452] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 264.002403][ T8452] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 264.008732][ T8452] __x64_sys_sendto+0xde/0x100 [ 264.013491][ T8452] do_syscall_64+0xf3/0x230 [ 264.017988][ T8452] ? clear_bhb_loop+0x35/0x90 [ 264.022660][ T8452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 264.028551][ T8452] RIP: 0033:0x7f5dc397dff9 [ 264.032958][ T8452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 264.052559][ T8452] RSP: 002b:00007f5dc4800038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 264.060968][ T8452] RAX: ffffffffffffffda RBX: 00007f5dc3b36058 RCX: 00007f5dc397dff9 [ 264.068931][ T8452] RDX: 000000000000fee4 RSI: 0000000020847fff RDI: 0000000000000005 [ 264.076894][ T8452] RBP: 00007f5dc4800090 R08: 000000002005ffe4 R09: 000000000000001c [ 264.084856][ T8452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 264.092822][ T8452] R13: 0000000000000000 R14: 00007f5dc3b36058 R15: 00007ffc84d259d8 [ 264.100801][ T8452] [ 264.305815][ T8374] bridge0: port 1(bridge_slave_0) entered blocking state [ 264.312944][ T8374] bridge0: port 1(bridge_slave_0) entered disabled state [ 264.374232][ T8374] bridge_slave_0: entered allmulticast mode [ 264.381225][ T8374] bridge_slave_0: entered promiscuous mode [ 264.419907][ T8374] bridge0: port 2(bridge_slave_1) entered blocking state [ 264.450851][ T8374] bridge0: port 2(bridge_slave_1) entered disabled state [ 264.479461][ T8374] bridge_slave_1: entered allmulticast mode [ 264.497288][ T8374] bridge_slave_1: entered promiscuous mode [ 264.514070][ T8476] netlink: 60 bytes leftover after parsing attributes in process `syz.2.959'. [ 264.626079][ T8374] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 264.649986][ T8374] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 264.735487][ T8374] team0: Port device team_slave_0 added [ 264.752018][ T8492] bridge1: entered promiscuous mode [ 264.760269][ T8492] bridge1: entered allmulticast mode [ 264.775626][ T8492] team0: Port device bridge1 added [ 264.788363][ T8374] team0: Port device team_slave_1 added [ 264.803138][ T8492] netlink: 'syz.1.965': attribute type 10 has an invalid length. [ 264.826397][ T8492] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 264.849145][ T8492] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 264.961646][ T8498] bridge0: port 3(ip6gretap0) entered blocking state [ 264.977125][ T8498] bridge0: port 3(ip6gretap0) entered disabled state [ 264.989533][ T8498] ip6gretap0: entered allmulticast mode [ 264.999739][ T8498] ip6gretap0: entered promiscuous mode [ 265.012502][ T8374] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 265.035180][ T8374] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 265.102138][ T8374] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 265.117098][ T8374] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 265.130629][ T8374] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 265.156944][ T8374] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 265.226482][ T8374] hsr_slave_0: entered promiscuous mode [ 265.235679][ T5247] Bluetooth: hci2: command tx timeout [ 265.248228][ T8374] hsr_slave_1: entered promiscuous mode [ 265.262814][ T8374] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 265.271214][ T8374] Cannot create hsr debugfs directory [ 265.450869][ T8523] bridge0: entered promiscuous mode [ 265.486733][ T8523] __nla_validate_parse: 3 callbacks suppressed [ 265.486750][ T8523] netlink: 8 bytes leftover after parsing attributes in process `syz.1.969'. [ 265.899001][ T8520] bridge0: left promiscuous mode [ 266.154370][ T8553] netlink: 28 bytes leftover after parsing attributes in process `syz.1.978'. [ 266.321890][ T8563] netlink: 20 bytes leftover after parsing attributes in process `syz.4.979'. [ 266.384810][ T8571] netlink: 8 bytes leftover after parsing attributes in process `syz.2.981'. [ 266.421833][ T8571] netlink: 20 bytes leftover after parsing attributes in process `syz.2.981'. [ 266.554725][ T8374] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 266.572034][ T8374] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 266.596193][ T8374] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 266.623121][ T8374] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 266.813171][ T8374] 8021q: adding VLAN 0 to HW filter on device bond0 [ 266.868159][ T8374] 8021q: adding VLAN 0 to HW filter on device team0 [ 266.892972][ T2569] bridge0: port 1(bridge_slave_0) entered blocking state [ 266.900145][ T2569] bridge0: port 1(bridge_slave_0) entered forwarding state [ 266.950258][ T2569] bridge0: port 2(bridge_slave_1) entered blocking state [ 266.957418][ T2569] bridge0: port 2(bridge_slave_1) entered forwarding state [ 267.174797][ T8588] netlink: 8 bytes leftover after parsing attributes in process `syz.4.984'. [ 267.314177][ T5247] Bluetooth: hci2: command tx timeout [ 267.343085][ T8374] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 267.483848][ T8374] veth0_vlan: entered promiscuous mode [ 267.529821][ T8609] netlink: 44 bytes leftover after parsing attributes in process `syz.4.990'. [ 267.544597][ T8609] netlink: 43 bytes leftover after parsing attributes in process `syz.4.990'. [ 267.566505][ T8374] veth1_vlan: entered promiscuous mode [ 267.584256][ T8609] netlink: 'syz.4.990': attribute type 5 has an invalid length. [ 267.601123][ T8609] netlink: 43 bytes leftover after parsing attributes in process `syz.4.990'. [ 267.649105][ T8374] veth0_macvtap: entered promiscuous mode [ 267.752517][ T8374] veth1_macvtap: entered promiscuous mode [ 267.779677][ T8617] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 267.788501][ T8617] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 267.797404][ T8617] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 267.806795][ T8617] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 267.830610][ T8617] vxlan0: entered promiscuous mode [ 267.839587][ T8617] vxlan0: entered allmulticast mode [ 267.850101][ T8617] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 267.859328][ T8617] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 267.868379][ T8617] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 267.877623][ T8617] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 267.917789][ T8625] netlink: 'syz.3.994': attribute type 10 has an invalid length. [ 267.929160][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 267.951102][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 267.971546][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 267.998563][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 268.020668][ T8374] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 268.031939][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 268.044233][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 268.054597][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 268.065116][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 268.075076][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 268.085719][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 268.095734][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 268.106217][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 268.119046][ T8374] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 268.152391][ T8374] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 268.168791][ T8374] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 268.177742][ T8374] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 268.191354][ T8374] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 268.230920][ T8639] netlink: 8 bytes leftover after parsing attributes in process `syz.2.996'. [ 268.422775][ T3022] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 268.459203][ T3022] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 268.558519][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 268.591741][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 269.179016][ T8684] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 269.188039][ T8684] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 269.197138][ T8684] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 269.206168][ T8684] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 269.217260][ T8684] vxlan0: entered promiscuous mode [ 269.222554][ T8684] vxlan0: entered allmulticast mode [ 269.232075][ T8684] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 269.241229][ T8684] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 269.250162][ T8684] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 269.259270][ T8684] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 269.983524][ T3022] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 270.245420][ T8739] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 270.254383][ T8739] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 270.263109][ T8739] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 270.272253][ T8739] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 270.289123][ T8739] vxlan0: entered promiscuous mode [ 270.296702][ T8739] vxlan0: entered allmulticast mode [ 270.331550][ T8739] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 270.341083][ T8739] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 270.350501][ T8739] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 270.359633][ T8739] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 270.583284][ T5235] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 270.597629][ T5235] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 270.606395][ T5235] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 270.606730][ T8753] FAULT_INJECTION: forcing a failure. [ 270.606730][ T8753] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 270.649344][ T5235] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 270.655714][ T8753] CPU: 0 UID: 0 PID: 8753 Comm: syz.3.1024 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 270.666966][ T8753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 270.677036][ T8753] Call Trace: [ 270.680335][ T8753] [ 270.683273][ T8753] dump_stack_lvl+0x241/0x360 [ 270.687980][ T8753] ? __pfx_dump_stack_lvl+0x10/0x10 [ 270.693202][ T8753] ? __pfx__printk+0x10/0x10 [ 270.697819][ T8753] ? snprintf+0xda/0x120 [ 270.702098][ T8753] should_fail_ex+0x3b0/0x4e0 [ 270.706808][ T8753] _copy_to_user+0x2f/0xb0 [ 270.711253][ T8753] simple_read_from_buffer+0xca/0x150 [ 270.716660][ T8753] proc_fail_nth_read+0x1e9/0x250 [ 270.721715][ T8753] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 270.727292][ T8753] ? rw_verify_area+0x55e/0x6f0 [ 270.732175][ T8753] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 270.737744][ T8753] vfs_read+0x201/0xbc0 [ 270.741903][ T8753] ? __pfx_lock_release+0x10/0x10 [ 270.746935][ T8753] ? __pfx_vfs_read+0x10/0x10 [ 270.751614][ T8753] ? __fget_files+0x3f3/0x470 [ 270.756334][ T8753] ? fdget_pos+0x24e/0x320 [ 270.760749][ T8753] ksys_read+0x183/0x2b0 [ 270.764986][ T8753] ? __pfx_ksys_read+0x10/0x10 [ 270.769744][ T8753] ? do_syscall_64+0x100/0x230 [ 270.774503][ T8753] ? do_syscall_64+0xb6/0x230 [ 270.779172][ T8753] do_syscall_64+0xf3/0x230 [ 270.783666][ T8753] ? clear_bhb_loop+0x35/0x90 [ 270.788337][ T8753] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.794230][ T8753] RIP: 0033:0x7f5dc397ca3c [ 270.798638][ T8753] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 270.818239][ T8753] RSP: 002b:00007f5dc4821030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 270.826654][ T8753] RAX: ffffffffffffffda RBX: 00007f5dc3b35f80 RCX: 00007f5dc397ca3c [ 270.834619][ T8753] RDX: 000000000000000f RSI: 00007f5dc48210a0 RDI: 0000000000000006 [ 270.842589][ T8753] RBP: 00007f5dc4821090 R08: 0000000000000000 R09: 0000000000000000 [ 270.850553][ T8753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 270.858520][ T8753] R13: 0000000000000000 R14: 00007f5dc3b35f80 R15: 00007ffc84d259d8 [ 270.866497][ T8753] [ 270.877519][ T5235] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 270.887457][ T5235] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 271.232053][ T3022] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 271.317125][ T8751] chnl_net:caif_netlink_parms(): no params data found [ 271.396097][ T3022] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 271.434104][ T8786] __nla_validate_parse: 8 callbacks suppressed [ 271.434122][ T8786] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1031'. [ 271.470711][ T8786] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 271.482800][ T8786] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 271.493959][ T8786] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 271.502794][ T8786] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 271.631864][ T8798] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1033'. [ 271.702907][ T3022] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 271.760253][ T8807] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1034'. [ 271.801184][ T8811] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1034'. [ 271.931888][ T8824] ieee802154 phy0 wpan0: encryption failed: -22 [ 271.953546][ T8751] bridge0: port 1(bridge_slave_0) entered blocking state [ 271.982938][ T8751] bridge0: port 1(bridge_slave_0) entered disabled state [ 272.026146][ T8751] bridge_slave_0: entered allmulticast mode [ 272.065757][ T8751] bridge_slave_0: entered promiscuous mode [ 272.144421][ T8751] bridge0: port 2(bridge_slave_1) entered blocking state [ 272.161180][ T8751] bridge0: port 2(bridge_slave_1) entered disabled state [ 272.201652][ T8751] bridge_slave_1: entered allmulticast mode [ 272.212767][ T8751] bridge_slave_1: entered promiscuous mode [ 272.339332][ T8751] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 272.396308][ T8751] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 272.424479][ T3022] bridge_slave_1: left allmulticast mode [ 272.430450][ T3022] bridge_slave_1: left promiscuous mode [ 272.437599][ T3022] bridge0: port 2(bridge_slave_1) entered disabled state [ 272.468508][ T3022] bridge_slave_0: left allmulticast mode [ 272.475478][ T3022] bridge_slave_0: left promiscuous mode [ 272.503513][ T3022] bridge0: port 1(bridge_slave_0) entered disabled state [ 272.583870][ T8853] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1045'. [ 272.994204][ T5247] Bluetooth: hci2: command tx timeout [ 273.041557][ T8878] ieee802154 phy0 wpan0: encryption failed: -22 [ 273.302134][ T3022] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 273.317885][ T3022] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 273.332561][ T3022] bond0 (unregistering): Released all slaves [ 273.400121][ T8864] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1047'. [ 273.440687][ T8880] bridge3: entered promiscuous mode [ 273.457215][ T8880] bridge3: entered allmulticast mode [ 273.480740][ T8880] team0: Port device bridge3 added [ 273.625959][ T8751] team0: Port device team_slave_0 added [ 273.719540][ T8906] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1054'. [ 273.743663][ T8751] team0: Port device team_slave_1 added [ 273.867333][ T8919] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1056'. [ 273.887773][ T8751] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 273.900720][ T8751] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 273.955899][ T8751] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 273.980173][ T8914] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1053'. [ 274.001937][ T8924] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1057'. [ 274.141890][ T8751] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 274.174325][ T8751] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 274.249733][ T8751] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 274.301224][ T3022] hsr_slave_0: left promiscuous mode [ 274.311954][ T3022] hsr_slave_1: left promiscuous mode [ 274.324364][ T3022] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 274.332702][ T3022] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 274.360029][ T3022] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 274.371360][ T3022] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 274.399407][ T3022] veth1_macvtap: left promiscuous mode [ 274.405267][ T3022] veth0_macvtap: left promiscuous mode [ 274.412214][ T3022] veth1_vlan: left promiscuous mode [ 274.419320][ T3022] veth0_vlan: left promiscuous mode [ 274.828547][ T3022] team0 (unregistering): Port device team_slave_1 removed [ 274.869253][ T3022] team0 (unregistering): Port device team_slave_0 removed [ 275.076834][ T5247] Bluetooth: hci2: command tx timeout [ 275.290154][ T8936] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 275.299184][ T8936] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 275.308116][ T8936] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 275.316998][ T8936] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 275.335905][ T8936] vxlan0: entered promiscuous mode [ 275.341054][ T8936] vxlan0: entered allmulticast mode [ 275.356222][ T8936] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 275.365355][ T8936] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 275.374292][ T8936] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 275.383156][ T8936] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 275.528956][ T8751] hsr_slave_0: entered promiscuous mode [ 275.574716][ T8751] hsr_slave_1: entered promiscuous mode [ 275.602081][ T8751] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 275.631938][ T8751] Cannot create hsr debugfs directory [ 275.685617][ T8966] FAULT_INJECTION: forcing a failure. [ 275.685617][ T8966] name failslab, interval 1, probability 0, space 0, times 0 [ 275.730871][ T8966] CPU: 0 UID: 0 PID: 8966 Comm: syz.2.1071 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 275.741591][ T8966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 275.751667][ T8966] Call Trace: [ 275.754960][ T8966] [ 275.757907][ T8966] dump_stack_lvl+0x241/0x360 [ 275.762614][ T8966] ? __pfx_dump_stack_lvl+0x10/0x10 [ 275.767837][ T8966] ? __pfx__printk+0x10/0x10 [ 275.772450][ T8966] ? __kmalloc_cache_noprof+0x44/0x2c0 [ 275.777939][ T8966] ? __pfx___might_resched+0x10/0x10 [ 275.783255][ T8966] should_fail_ex+0x3b0/0x4e0 [ 275.787968][ T8966] should_failslab+0xac/0x100 [ 275.792671][ T8966] ? alloc_netdev_mqs+0xb9e/0x1000 [ 275.797809][ T8966] __kmalloc_cache_noprof+0x6c/0x2c0 [ 275.803125][ T8966] ? __xdp_rxq_info_reg+0x142/0x290 [ 275.808354][ T8966] alloc_netdev_mqs+0xb9e/0x1000 [ 275.813324][ T8966] rtnl_create_link+0x2f9/0xc20 [ 275.818197][ T8966] rtnl_newlink+0x1423/0x20a0 [ 275.822877][ T8966] ? rtnl_newlink+0xaf1/0x20a0 [ 275.827652][ T8966] ? __pfx_rtnl_newlink+0x10/0x10 [ 275.832673][ T8966] ? do_raw_spin_unlock+0x13c/0x8b0 [ 275.837875][ T8966] ? __mutex_lock+0x9ab/0xd70 [ 275.842546][ T8966] ? __mutex_lock+0x52a/0xd70 [ 275.847230][ T8966] ? __pfx_rtnl_newlink+0x10/0x10 [ 275.852249][ T8966] rtnetlink_rcv_msg+0x73f/0xcf0 [ 275.857182][ T8966] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 275.862294][ T8966] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 275.867760][ T8966] ? ref_tracker_free+0x643/0x7e0 [ 275.872785][ T8966] netlink_rcv_skb+0x1e3/0x430 [ 275.877547][ T8966] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 275.883005][ T8966] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 275.888299][ T8966] ? netlink_deliver_tap+0x2e/0x1b0 [ 275.893495][ T8966] netlink_unicast+0x7f6/0x990 [ 275.898265][ T8966] ? __pfx_netlink_unicast+0x10/0x10 [ 275.903546][ T8966] ? __virt_addr_valid+0x183/0x530 [ 275.908652][ T8966] ? __check_object_size+0x48e/0x900 [ 275.913940][ T8966] netlink_sendmsg+0x8e4/0xcb0 [ 275.918738][ T8966] ? __pfx_netlink_sendmsg+0x10/0x10 [ 275.924020][ T8966] ? aa_sock_msg_perm+0x91/0x160 [ 275.928954][ T8966] ? __pfx_netlink_sendmsg+0x10/0x10 [ 275.934231][ T8966] __sock_sendmsg+0x221/0x270 [ 275.938911][ T8966] ____sys_sendmsg+0x52a/0x7e0 [ 275.943674][ T8966] ? __pfx_____sys_sendmsg+0x10/0x10 [ 275.948965][ T8966] __sys_sendmsg+0x292/0x380 [ 275.953552][ T8966] ? __pfx___sys_sendmsg+0x10/0x10 [ 275.958666][ T8966] ? __pfx_vfs_write+0x10/0x10 [ 275.963440][ T8966] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 275.969769][ T8966] ? do_syscall_64+0x100/0x230 [ 275.974531][ T8966] ? do_syscall_64+0xb6/0x230 [ 275.979206][ T8966] do_syscall_64+0xf3/0x230 [ 275.983701][ T8966] ? clear_bhb_loop+0x35/0x90 [ 275.988379][ T8966] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.994271][ T8966] RIP: 0033:0x7f1ca1d7dff9 [ 275.998687][ T8966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 276.018288][ T8966] RSP: 002b:00007f1ca2add038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 276.026697][ T8966] RAX: ffffffffffffffda RBX: 00007f1ca1f35f80 RCX: 00007f1ca1d7dff9 [ 276.034665][ T8966] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 276.042629][ T8966] RBP: 00007f1ca2add090 R08: 0000000000000000 R09: 0000000000000000 [ 276.050590][ T8966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 276.058550][ T8966] R13: 0000000000000000 R14: 00007f1ca1f35f80 R15: 00007ffc37af3148 [ 276.066527][ T8966] [ 276.263497][ T8984] Cannot find add_set index 0 as target [ 276.321674][ T8981] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 276.330755][ T8981] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 276.339681][ T8981] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 276.348452][ T8981] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 276.374466][ T8981] vxlan0: entered promiscuous mode [ 276.380223][ T8981] vxlan0: entered allmulticast mode [ 276.394189][ T8981] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 276.403127][ T8981] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 276.412081][ T8981] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 276.421460][ T8981] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 276.502832][ T8991] __nla_validate_parse: 5 callbacks suppressed [ 276.502851][ T8991] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1078'. [ 276.670891][ T9000] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1080'. [ 276.765570][ T9007] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1082'. [ 277.030282][ T9023] Cannot find add_set index 0 as target [ 277.163252][ T9025] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1091'. [ 277.174101][ T5247] Bluetooth: hci2: command tx timeout [ 277.252506][ T8751] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 277.330547][ T8751] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 277.341648][ T8751] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 277.369152][ T8751] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 277.407992][ T9040] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1094'. [ 277.526382][ T8751] 8021q: adding VLAN 0 to HW filter on device bond0 [ 277.589361][ T8751] 8021q: adding VLAN 0 to HW filter on device team0 [ 277.611579][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 277.618744][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 277.705878][ T53] bridge0: port 2(bridge_slave_1) entered blocking state [ 277.713039][ T53] bridge0: port 2(bridge_slave_1) entered forwarding state [ 277.732029][ T9059] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.1099'. [ 277.773783][ T9053] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1099'. [ 277.956550][ T9068] Cannot find add_set index 0 as target [ 277.962226][ T9069] FAULT_INJECTION: forcing a failure. [ 277.962226][ T9069] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 277.995766][ T9069] CPU: 0 UID: 0 PID: 9069 Comm: syz.3.1103 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 278.006480][ T9069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 278.016538][ T9069] Call Trace: [ 278.019810][ T9069] [ 278.022732][ T9069] dump_stack_lvl+0x241/0x360 [ 278.027413][ T9069] ? __pfx_dump_stack_lvl+0x10/0x10 [ 278.032603][ T9069] ? __pfx__printk+0x10/0x10 [ 278.037185][ T9069] ? __pfx_lock_release+0x10/0x10 [ 278.042211][ T9069] should_fail_ex+0x3b0/0x4e0 [ 278.046890][ T9069] _copy_from_user+0x2f/0xe0 [ 278.051476][ T9069] copy_msghdr_from_user+0xae/0x680 [ 278.056677][ T9069] ? __pfx___might_resched+0x10/0x10 [ 278.061961][ T9069] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 278.067764][ T9069] ? rcu_is_watching+0x15/0xb0 [ 278.072521][ T9069] ? __might_fault+0xaa/0x120 [ 278.077193][ T9069] do_recvmmsg+0x3f9/0xad0 [ 278.081611][ T9069] ? __pfx_do_recvmmsg+0x10/0x10 [ 278.086555][ T9069] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 278.092439][ T9069] ? ksys_write+0x229/0x2b0 [ 278.096938][ T9069] ? __pfx_lock_release+0x10/0x10 [ 278.101964][ T9069] ? vfs_write+0x7bf/0xc90 [ 278.106369][ T9069] ? kmem_cache_free+0x1a2/0x420 [ 278.111312][ T9069] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 278.117297][ T9069] __x64_sys_recvmmsg+0x199/0x250 [ 278.122321][ T9069] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 278.127863][ T9069] ? do_syscall_64+0x100/0x230 [ 278.132620][ T9069] ? do_syscall_64+0xb6/0x230 [ 278.137291][ T9069] do_syscall_64+0xf3/0x230 [ 278.141787][ T9069] ? clear_bhb_loop+0x35/0x90 [ 278.146456][ T9069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.152350][ T9069] RIP: 0033:0x7f5dc397dff9 [ 278.156766][ T9069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 278.176365][ T9069] RSP: 002b:00007f5dc4821038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 278.184790][ T9069] RAX: ffffffffffffffda RBX: 00007f5dc3b35f80 RCX: 00007f5dc397dff9 [ 278.192784][ T9069] RDX: 0000000004000210 RSI: 0000000020001740 RDI: 0000000000000006 [ 278.200764][ T9069] RBP: 00007f5dc4821090 R08: 0000000000000000 R09: 0000000000000000 [ 278.208735][ T9069] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 278.216703][ T9069] R13: 0000000000000000 R14: 00007f5dc3b35f80 R15: 00007ffc84d259d8 [ 278.224687][ T9069] [ 278.327293][ T9075] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1105'. [ 278.385648][ T8751] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 278.420367][ T8751] veth0_vlan: entered promiscuous mode [ 278.433136][ T8751] veth1_vlan: entered promiscuous mode [ 278.457918][ T8751] veth0_macvtap: entered promiscuous mode [ 278.466604][ T8751] veth1_macvtap: entered promiscuous mode [ 278.480440][ T8751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 278.491002][ T8751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 278.500886][ T8751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 278.511402][ T8751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 278.523018][ T8751] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 278.531358][ T9083] netlink: 256 bytes leftover after parsing attributes in process `syz.2.1110'. [ 278.532499][ T8751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 278.550946][ T8751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 278.560835][ T8751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 278.571362][ T8751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 278.581256][ T8751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 278.591732][ T8751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 278.601701][ T8751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 278.612179][ T8751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 278.623195][ T8751] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 278.633492][ T8751] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.642508][ T8751] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.651539][ T8751] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.660561][ T8751] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.742868][ T9091] delete_channel: no stack [ 278.770908][ T9094] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.1112'. [ 278.880093][ T3022] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 278.902646][ T3022] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 278.976019][ T9099] syzkaller1: entered promiscuous mode [ 278.998255][ T9099] syzkaller1: entered allmulticast mode [ 279.011706][ T3022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 279.024150][ T3022] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 279.493566][ T9126] RDS: rds_bind could not find a transport for fe88::4, load rds_tcp or rds_rdma? [ 280.313502][ T9175] Cannot find add_set index 0 as target [ 280.634949][ T81] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 280.672523][ T9192] FAULT_INJECTION: forcing a failure. [ 280.672523][ T9192] name failslab, interval 1, probability 0, space 0, times 0 [ 280.692703][ T9192] CPU: 0 UID: 0 PID: 9192 Comm: syz.1.1155 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 280.703427][ T9192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 280.713509][ T9192] Call Trace: [ 280.716807][ T9192] [ 280.719748][ T9192] dump_stack_lvl+0x241/0x360 [ 280.724459][ T9192] ? __pfx_dump_stack_lvl+0x10/0x10 [ 280.729686][ T9192] ? __pfx__printk+0x10/0x10 [ 280.734295][ T9192] ? __kmalloc_cache_noprof+0x44/0x2c0 [ 280.739758][ T9192] ? __pfx___might_resched+0x10/0x10 [ 280.745048][ T9192] should_fail_ex+0x3b0/0x4e0 [ 280.749728][ T9192] should_failslab+0xac/0x100 [ 280.754403][ T9192] ? igmp6_group_dropped+0x3a6/0xef0 [ 280.759690][ T9192] __kmalloc_cache_noprof+0x6c/0x2c0 [ 280.764980][ T9192] igmp6_group_dropped+0x3a6/0xef0 [ 280.770091][ T9192] ? __ipv6_dev_mc_dec+0x66/0x340 [ 280.775116][ T9192] ? __pfx___mutex_lock+0x10/0x10 [ 280.780137][ T9192] ? __pfx_igmp6_group_dropped+0x10/0x10 [ 280.785783][ T9192] __ipv6_dev_mc_dec+0x2bd/0x340 [ 280.790729][ T9192] __ipv6_ifa_notify+0x93d/0x1230 [ 280.795760][ T9192] ? __pfx___ipv6_ifa_notify+0x10/0x10 [ 280.801223][ T9192] ? mark_lock+0x9a/0x360 [ 280.805555][ T9192] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 280.811538][ T9192] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 280.817868][ T9192] ? __local_bh_enable_ip+0x168/0x200 [ 280.823241][ T9192] ? lockdep_hardirqs_on+0x99/0x150 [ 280.828448][ T9192] ? __local_bh_enable_ip+0x168/0x200 [ 280.833820][ T9192] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 280.839546][ T9192] ? addrconf_ifdown+0xde0/0x1bd0 [ 280.844576][ T9192] addrconf_ifdown+0xef0/0x1bd0 [ 280.849433][ T9192] ? __pfx_addrconf_ifdown+0x10/0x10 [ 280.854720][ T9192] ? tls_dev_event+0x8f6/0x10c0 [ 280.859585][ T9192] addrconf_notify+0x3cb/0x1020 [ 280.864435][ T9192] notifier_call_chain+0x19f/0x3e0 [ 280.869556][ T9192] __dev_notify_flags+0x207/0x400 [ 280.874583][ T9192] ? dev_set_rx_mode+0x23c/0x2e0 [ 280.879524][ T9192] ? __pfx___dev_notify_flags+0x10/0x10 [ 280.885069][ T9192] ? __dev_change_flags+0x515/0x6f0 [ 280.890275][ T9192] ? __pfx___dev_change_flags+0x10/0x10 [ 280.895822][ T9192] ? __mutex_lock+0x9ab/0xd70 [ 280.900497][ T9192] dev_change_flags+0xf0/0x1a0 [ 280.905265][ T9192] dev_ifsioc+0x7c8/0xe70 [ 280.909590][ T9192] ? __pfx_dev_ifsioc+0x10/0x10 [ 280.914446][ T9192] ? dev_load+0x21/0x1f0 [ 280.918687][ T9192] dev_ioctl+0x719/0x1340 [ 280.923019][ T9192] sock_do_ioctl+0x240/0x460 [ 280.927614][ T9192] ? __pfx_sock_do_ioctl+0x10/0x10 [ 280.932735][ T9192] sock_ioctl+0x626/0x8e0 [ 280.937062][ T9192] ? __pfx_sock_ioctl+0x10/0x10 [ 280.941910][ T9192] ? __fget_files+0x29/0x470 [ 280.946498][ T9192] ? __fget_files+0x3f3/0x470 [ 280.951174][ T9192] ? __pfx_sock_ioctl+0x10/0x10 [ 280.956026][ T9192] __se_sys_ioctl+0xf9/0x170 [ 280.960619][ T9192] do_syscall_64+0xf3/0x230 [ 280.965119][ T9192] ? clear_bhb_loop+0x35/0x90 [ 280.969791][ T9192] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 280.975685][ T9192] RIP: 0033:0x7fe45ab7dff9 [ 280.980096][ T9192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 280.999699][ T9192] RSP: 002b:00007fe45b911038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 281.008115][ T9192] RAX: ffffffffffffffda RBX: 00007fe45ad35f80 RCX: 00007fe45ab7dff9 [ 281.016081][ T9192] RDX: 00000000200000c0 RSI: 0000000000008914 RDI: 0000000000000004 [ 281.024053][ T9192] RBP: 00007fe45b911090 R08: 0000000000000000 R09: 0000000000000000 [ 281.032017][ T9192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 281.039982][ T9192] R13: 0000000000000000 R14: 00007fe45ad35f80 R15: 00007ffd2bcf7ab8 [ 281.047959][ T9192] [ 281.256084][ T5235] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 281.266445][ T5235] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 281.279835][ T5235] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 281.289292][ T5235] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 281.299055][ T5235] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 281.308516][ T5235] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 281.575075][ T9220] __nla_validate_parse: 14 callbacks suppressed [ 281.575094][ T9220] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1163'. [ 281.595031][ T9203] chnl_net:caif_netlink_parms(): no params data found [ 281.806143][ T9231] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1165'. [ 281.842429][ T9238] FAULT_INJECTION: forcing a failure. [ 281.842429][ T9238] name failslab, interval 1, probability 0, space 0, times 0 [ 281.858362][ T9238] CPU: 0 UID: 0 PID: 9238 Comm: syz.4.1169 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 281.869072][ T9238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 281.879135][ T9238] Call Trace: [ 281.882414][ T9238] [ 281.885347][ T9238] dump_stack_lvl+0x241/0x360 [ 281.890044][ T9238] ? __pfx_dump_stack_lvl+0x10/0x10 [ 281.895230][ T9238] ? __pfx__printk+0x10/0x10 [ 281.899811][ T9238] should_fail_ex+0x3b0/0x4e0 [ 281.904494][ T9238] should_failslab+0xac/0x100 [ 281.909197][ T9238] ? sctp_add_bind_addr+0x89/0x3a0 [ 281.914320][ T9238] __kmalloc_cache_noprof+0x6c/0x2c0 [ 281.919598][ T9238] sctp_add_bind_addr+0x89/0x3a0 [ 281.924544][ T9238] sctp_copy_local_addr_list+0x311/0x500 [ 281.930202][ T9238] ? sctp_copy_local_addr_list+0xab/0x500 [ 281.935943][ T9238] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 281.942101][ T9238] ? sctp_v4_is_any+0x35/0x60 [ 281.946786][ T9238] sctp_bind_addr_copy+0xad/0x3b0 [ 281.951807][ T9238] ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190 [ 281.958135][ T9238] sctp_connect_new_asoc+0x2f3/0x6c0 [ 281.963423][ T9238] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 281.969319][ T9238] ? sctp_endpoint_lookup_assoc+0xc9/0x250 [ 281.975126][ T9238] __sctp_connect+0x66d/0xe30 [ 281.979809][ T9238] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 281.985786][ T9238] ? __pfx___sctp_connect+0x10/0x10 [ 281.990981][ T9238] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 281.997313][ T9238] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 282.002853][ T9238] sctp_setsockopt_connectx+0x181/0x2a0 [ 282.008405][ T9238] ? __pfx_sctp_setsockopt_connectx+0x10/0x10 [ 282.014475][ T9238] ? do_raw_spin_unlock+0x13c/0x8b0 [ 282.019684][ T9238] sctp_setsockopt+0x709/0x11c0 [ 282.024538][ T9238] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 282.030429][ T9238] do_sock_setsockopt+0x3af/0x720 [ 282.035454][ T9238] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 282.040994][ T9238] ? __fget_files+0x29/0x470 [ 282.045582][ T9238] ? __fget_files+0x3f3/0x470 [ 282.050256][ T9238] ? __fget_files+0x29/0x470 [ 282.054848][ T9238] __sys_setsockopt+0x1a2/0x250 [ 282.059696][ T9238] __x64_sys_setsockopt+0xb5/0xd0 [ 282.064720][ T9238] do_syscall_64+0xf3/0x230 [ 282.069217][ T9238] ? clear_bhb_loop+0x35/0x90 [ 282.073892][ T9238] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.079790][ T9238] RIP: 0033:0x7f180af7dff9 [ 282.084201][ T9238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 282.103799][ T9238] RSP: 002b:00007f180bd0c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 282.112211][ T9238] RAX: ffffffffffffffda RBX: 00007f180b135f80 RCX: 00007f180af7dff9 [ 282.120178][ T9238] RDX: 000000000000006e RSI: 0000000000000084 RDI: 0000000000000003 [ 282.128142][ T9238] RBP: 00007f180bd0c090 R08: 0000000000000010 R09: 0000000000000000 [ 282.136107][ T9238] R10: 0000000020009200 R11: 0000000000000246 R12: 0000000000000002 [ 282.144071][ T9238] R13: 0000000000000000 R14: 00007f180b135f80 R15: 00007ffd7c9a3238 [ 282.152064][ T9238] [ 282.193632][ T9203] bridge0: port 1(bridge_slave_0) entered blocking state [ 282.201635][ T9203] bridge0: port 1(bridge_slave_0) entered disabled state [ 282.208882][ T9203] bridge_slave_0: entered allmulticast mode [ 282.216448][ T9203] bridge_slave_0: entered promiscuous mode [ 282.225354][ T9203] bridge0: port 2(bridge_slave_1) entered blocking state [ 282.232456][ T9203] bridge0: port 2(bridge_slave_1) entered disabled state [ 282.239657][ T9203] bridge_slave_1: entered allmulticast mode [ 282.246580][ T9203] bridge_slave_1: entered promiscuous mode [ 282.317392][ T9203] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 282.343475][ T9203] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 282.431354][ T9203] team0: Port device team_slave_0 added [ 282.448045][ T9203] team0: Port device team_slave_1 added [ 282.454849][ T9247] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.1172'. [ 282.498118][ T9247] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1172'. [ 282.512657][ T9203] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 282.531733][ T9203] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 282.563794][ T9203] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 282.577380][ T9203] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 282.589771][ T9203] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 282.617462][ T9203] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 282.635746][ T9255] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1175'. [ 282.702370][ T9203] hsr_slave_0: entered promiscuous mode [ 282.755641][ T9203] hsr_slave_1: entered promiscuous mode [ 282.784214][ T9203] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 282.797639][ T9203] Cannot create hsr debugfs directory [ 282.805090][ T9263] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1179'. [ 282.877903][ T9259] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1177'. [ 283.021180][ T81] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 283.092020][ T9280] xt_l2tp: missing protocol rule (udp|l2tpip) [ 283.150636][ T81] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 283.279612][ T81] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 283.306103][ T9288] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1185'. [ 283.342922][ T9292] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1185'. [ 283.395126][ T5247] Bluetooth: hci2: command tx timeout [ 283.452302][ T9296] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1189'. [ 283.659561][ T81] bridge_slave_1: left allmulticast mode [ 283.672215][ T81] bridge_slave_1: left promiscuous mode [ 283.681609][ T81] bridge0: port 2(bridge_slave_1) entered disabled state [ 283.699559][ T81] bridge_slave_0: left allmulticast mode [ 283.705582][ T81] bridge_slave_0: left promiscuous mode [ 283.712269][ T81] bridge0: port 1(bridge_slave_0) entered disabled state [ 284.456979][ T81] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 284.468725][ T81] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 284.479928][ T81] bond0 (unregistering): Released all slaves [ 285.064553][ T81] hsr_slave_0: left promiscuous mode [ 285.087904][ T81] hsr_slave_1: left promiscuous mode [ 285.102317][ T81] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 285.150074][ T81] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 285.221327][ T81] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 285.236570][ T81] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 285.339002][ T81] veth1_macvtap: left promiscuous mode [ 285.374648][ T81] veth0_macvtap: left promiscuous mode [ 285.392120][ T81] veth1_vlan: left promiscuous mode [ 285.416831][ T81] veth0_vlan: left promiscuous mode [ 285.474098][ T5247] Bluetooth: hci2: command tx timeout [ 285.498195][ T9381] RDS: rds_bind could not find a transport for fe88::3, load rds_tcp or rds_rdma? [ 286.260104][ T81] team0 (unregistering): Port device team_slave_1 removed [ 286.300549][ T81] team0 (unregistering): Port device team_slave_0 removed [ 286.860340][ T9361] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 286.869420][ T9361] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 286.878412][ T9361] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 286.887363][ T9361] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 286.903692][ T9361] vxlan0: entered promiscuous mode [ 286.908890][ T9361] vxlan0: entered allmulticast mode [ 286.917700][ T9361] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 286.927187][ T9361] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 286.936312][ T9361] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 286.945425][ T9361] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 286.992015][ T9203] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 287.029931][ T9203] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 287.067140][ T9203] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 287.106975][ T9203] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 287.175983][ T9385] netlink: 'syz.4.1210': attribute type 72 has an invalid length. [ 287.220017][ T9385] __nla_validate_parse: 3 callbacks suppressed [ 287.220035][ T9385] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1210'. [ 287.332452][ T9203] 8021q: adding VLAN 0 to HW filter on device bond0 [ 287.396584][ T9391] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1213'. [ 287.439073][ T9203] 8021q: adding VLAN 0 to HW filter on device team0 [ 287.496325][ T9394] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1214'. [ 287.527678][ T2569] bridge0: port 1(bridge_slave_0) entered blocking state [ 287.534870][ T2569] bridge0: port 1(bridge_slave_0) entered forwarding state [ 287.556474][ T5247] Bluetooth: hci2: command tx timeout [ 287.639979][ T9203] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 287.662229][ T9203] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 287.725288][ T53] bridge0: port 2(bridge_slave_1) entered blocking state [ 287.732449][ T53] bridge0: port 2(bridge_slave_1) entered forwarding state [ 289.240905][ T9436] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.1224'. [ 289.321798][ T9438] netlink: 'syz.4.1225': attribute type 72 has an invalid length. [ 289.366113][ T9438] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1225'. [ 289.634636][ T5247] Bluetooth: hci2: command tx timeout [ 290.204330][ T9454] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1226'. [ 290.336255][ T937] IPVS: starting estimator thread 0... [ 290.362429][ T9459] FAULT_INJECTION: forcing a failure. [ 290.362429][ T9459] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 290.456879][ T9459] CPU: 0 UID: 0 PID: 9459 Comm: syz.4.1228 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 290.467608][ T9459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 290.477685][ T9459] Call Trace: [ 290.480981][ T9459] [ 290.483929][ T9459] dump_stack_lvl+0x241/0x360 [ 290.488634][ T9459] ? __pfx_dump_stack_lvl+0x10/0x10 [ 290.493853][ T9459] ? __pfx__printk+0x10/0x10 [ 290.498471][ T9459] should_fail_ex+0x3b0/0x4e0 [ 290.503180][ T9459] _copy_from_user+0x2f/0xe0 [ 290.507839][ T9459] sctp_setsockopt+0xcc/0x11c0 [ 290.512637][ T9459] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 290.518557][ T9459] do_sock_setsockopt+0x3af/0x720 [ 290.523610][ T9459] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 290.529173][ T9459] ? __fget_files+0x29/0x470 [ 290.533787][ T9459] ? __fget_files+0x3f3/0x470 [ 290.538483][ T9459] ? __fget_files+0x29/0x470 [ 290.543103][ T9459] __sys_setsockopt+0x1a2/0x250 [ 290.547979][ T9459] __x64_sys_setsockopt+0xb5/0xd0 [ 290.553022][ T9459] do_syscall_64+0xf3/0x230 [ 290.557544][ T9459] ? clear_bhb_loop+0x35/0x90 [ 290.562240][ T9459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.568156][ T9459] RIP: 0033:0x7f180af7dff9 [ 290.572589][ T9459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 290.592216][ T9459] RSP: 002b:00007f180bd0c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 290.600651][ T9459] RAX: ffffffffffffffda RBX: 00007f180b135f80 RCX: 00007f180af7dff9 [ 290.608641][ T9459] RDX: 000000000000006e RSI: 0000000000000084 RDI: 0000000000000004 [ 290.616715][ T9459] RBP: 00007f180bd0c090 R08: 0000000000000010 R09: 0000000000000000 [ 290.624710][ T9459] R10: 0000000020009200 R11: 0000000000000246 R12: 0000000000000001 [ 290.632707][ T9459] R13: 0000000000000000 R14: 00007f180b135f80 R15: 00007ffd7c9a3238 [ 290.640714][ T9459] [ 290.664359][ T9203] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 290.716918][ T9461] IPVS: using max 17 ests per chain, 40800 per kthread [ 290.893928][ T9203] veth0_vlan: entered promiscuous mode [ 290.970209][ T9203] veth1_vlan: entered promiscuous mode [ 291.080551][ T9203] veth0_macvtap: entered promiscuous mode [ 291.142764][ T9203] veth1_macvtap: entered promiscuous mode [ 291.180784][ T9465] netlink: 'syz.2.1229': attribute type 10 has an invalid length. [ 291.231415][ T9203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 291.291283][ T9203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.349596][ T9203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 291.409025][ T9203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.461056][ T9203] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 291.554116][ T9203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 291.614331][ T9203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.706668][ T9203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 291.765804][ T9203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.833134][ T9203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 291.887366][ T9203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.907860][ T9486] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1235'. [ 291.933501][ T9203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 291.986399][ T9203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 292.040676][ T9203] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 292.123650][ T9490] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1233'. [ 292.214898][ T9492] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1233'. [ 292.313262][ T9203] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 292.368268][ T9203] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 292.416446][ T9203] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 292.467646][ T9203] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 293.004307][ T2569] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 293.053507][ T2569] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 293.182761][ T2569] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 293.246242][ T2569] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 294.127624][ T9538] Cannot find add_set index 0 as target [ 300.233919][ C0] sched: DL replenish lagged too much [ 433.526384][ T1263] ieee802154 phy0 wpan0: encryption failed: -22 [ 433.539692][ T1263] ieee802154 phy1 wpan1: encryption failed: -22 [ 434.325310][ T1263] ieee802154 phy0 wpan0: encryption failed: -22 [ 434.337459][ T1263] ieee802154 phy1 wpan1: encryption failed: -22 [ 439.279737][ T30] INFO: task kworker/u8:4:81 blocked for more than 143 seconds. [ 439.354011][ T30] Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 439.361682][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 439.370400][ T30] task:kworker/u8:4 state:D stack:20480 pid:81 tgid:81 ppid:2 flags:0x00004000 [ 439.380660][ T30] Workqueue: netns cleanup_net [ 439.385796][ T30] Call Trace: [ 439.389090][ T30] [ 439.392035][ T30] __schedule+0x1895/0x4b30 [ 439.396718][ T30] ? __pfx___schedule+0x10/0x10 [ 439.402551][ T30] ? __pfx_lock_release+0x10/0x10 [ 439.407805][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 439.413286][ T30] ? kthread_data+0x52/0xd0 [ 439.417871][ T30] ? schedule+0x90/0x320 [ 439.422223][ T30] ? wq_worker_sleeping+0x66/0x240 [ 439.427387][ T30] ? schedule+0x90/0x320 [ 439.431646][ T30] schedule+0x14b/0x320 [ 439.436005][ T30] schedule_preempt_disabled+0x13/0x30 [ 439.441485][ T30] __mutex_lock+0x6a7/0xd70 [ 439.446096][ T30] ? __mutex_lock+0x52a/0xd70 [ 439.450790][ T30] ? rcu_barrier+0x4c/0x530 [ 439.455373][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 439.460413][ T30] ? cleanup_net+0x953/0xcc0 [ 439.465092][ T30] ? __up_read+0x2c2/0x6b0 [ 439.469527][ T30] rcu_barrier+0x4c/0x530 [ 439.473868][ T30] ? ops_free_list+0xc6/0x370 [ 439.478647][ T30] ? ops_free_list+0x351/0x370 [ 439.483428][ T30] cleanup_net+0x958/0xcc0 [ 439.487896][ T30] ? __pfx_cleanup_net+0x10/0x10 [ 439.492854][ T30] ? process_scheduled_works+0x976/0x1850 [ 439.498693][ T30] process_scheduled_works+0xa63/0x1850 [ 439.504942][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 439.510953][ T30] ? assign_work+0x364/0x3d0 [ 439.515972][ T30] worker_thread+0x870/0xd30 [ 439.520600][ T30] ? __kthread_parkme+0x169/0x1d0 [ 439.525700][ T30] ? __pfx_worker_thread+0x10/0x10 [ 439.530836][ T30] kthread+0x2f0/0x390 [ 439.534981][ T30] ? __pfx_worker_thread+0x10/0x10 [ 439.540108][ T30] ? __pfx_kthread+0x10/0x10 [ 439.544752][ T30] ret_from_fork+0x4b/0x80 [ 439.549185][ T30] ? __pfx_kthread+0x10/0x10 [ 439.553785][ T30] ret_from_fork_asm+0x1a/0x30 [ 439.558687][ T30] [ 439.561776][ T30] INFO: task kworker/u8:7:3022 blocked for more than 143 seconds. [ 439.569618][ T30] Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 439.584201][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 439.592887][ T30] task:kworker/u8:7 state:D stack:20920 pid:3022 tgid:3022 ppid:2 flags:0x00004000 [ 439.606034][ T30] Workqueue: events_unbound bpf_map_free_deferred [ 439.612488][ T30] Call Trace: [ 439.615825][ T30] [ 439.618778][ T30] __schedule+0x1895/0x4b30 [ 439.623322][ T30] ? __pfx___schedule+0x10/0x10 [ 439.628263][ T30] ? __pfx_lock_release+0x10/0x10 [ 439.633310][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 439.638866][ T30] ? kthread_data+0x52/0xd0 [ 439.643388][ T30] ? schedule+0x90/0x320 [ 439.647823][ T30] ? wq_worker_sleeping+0x66/0x240 [ 439.652958][ T30] ? schedule+0x90/0x320 [ 439.657277][ T30] schedule+0x14b/0x320 [ 439.661455][ T30] schedule_preempt_disabled+0x13/0x30 [ 439.667003][ T30] __mutex_lock+0x6a7/0xd70 [ 439.671524][ T30] ? __mutex_lock+0x52a/0xd70 [ 439.676275][ T30] ? rcu_barrier+0x4c/0x530 [ 439.680794][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 439.686166][ T30] ? synchronize_rcu+0x11b/0x360 [ 439.691124][ T30] ? __pfx_synchronize_rcu+0x10/0x10 [ 439.696479][ T30] rcu_barrier+0x4c/0x530 [ 439.700826][ T30] ? do_raw_spin_unlock+0x13c/0x8b0 [ 439.706837][ T30] dev_map_free+0x14c/0x680 [ 439.711357][ T30] ? percpu_ref_put+0x1f/0x250 [ 439.716612][ T30] ? percpu_ref_put+0x18b/0x250 [ 439.721483][ T30] ? bpf_map_free_deferred+0x58/0x100 [ 439.726921][ T30] bpf_map_free_deferred+0xe4/0x100 [ 439.732135][ T30] ? process_scheduled_works+0x976/0x1850 [ 439.738039][ T30] process_scheduled_works+0xa63/0x1850 [ 439.743630][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 439.749678][ T30] ? assign_work+0x364/0x3d0 [ 439.754358][ T30] worker_thread+0x870/0xd30 [ 439.758982][ T30] ? __kthread_parkme+0x169/0x1d0 [ 439.764070][ T30] ? __pfx_worker_thread+0x10/0x10 [ 439.769196][ T30] kthread+0x2f0/0x390 [ 439.773273][ T30] ? __pfx_worker_thread+0x10/0x10 [ 439.778487][ T30] ? __pfx_kthread+0x10/0x10 [ 439.783094][ T30] ret_from_fork+0x4b/0x80 [ 439.787561][ T30] ? __pfx_kthread+0x10/0x10 [ 439.792163][ T30] ret_from_fork_asm+0x1a/0x30 [ 439.797007][ T30] [ 439.800063][ T30] INFO: task syz-executor:9203 blocked for more than 144 seconds. [ 439.807951][ T30] Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 439.816699][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 439.825506][ T30] task:syz-executor state:D stack:21520 pid:9203 tgid:9203 ppid:9196 flags:0x00004002 [ 439.835750][ T30] Call Trace: [ 439.839035][ T30] [ 439.841976][ T30] __schedule+0x1895/0x4b30 [ 439.846569][ T30] ? __pfx___schedule+0x10/0x10 [ 439.851441][ T30] ? __pfx_lock_release+0x10/0x10 [ 439.856629][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 439.862118][ T30] ? schedule+0x90/0x320 [ 439.866453][ T30] schedule+0x14b/0x320 [ 439.870632][ T30] schedule_preempt_disabled+0x13/0x30 [ 439.876152][ T30] __mutex_lock+0x6a7/0xd70 [ 439.880673][ T30] ? __mutex_lock+0x52a/0xd70 [ 439.885452][ T30] ? rcu_barrier+0x4c/0x530 [ 439.889974][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 439.895056][ T30] ? __mutex_unlock_slowpath+0x6f9/0x750 [ 439.900713][ T30] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 439.906751][ T30] rcu_barrier+0x4c/0x530 [ 439.912233][ T30] netdev_run_todo+0x3a0/0x1000 [ 439.917167][ T30] ? __pfx_netdev_run_todo+0x10/0x10 [ 439.922467][ T30] ? netdev_state_change+0xa8/0x1a0 [ 439.930213][ T30] ? __pfx_netdev_state_change+0x10/0x10 [ 439.978001][ T30] ? tun_chr_close+0x105/0x1b0 [ 439.982814][ T30] ? tun_chr_close+0x105/0x1b0 [ 439.987674][ T30] tun_chr_close+0x137/0x1b0 [ 439.992279][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 439.997598][ T30] __fput+0x23f/0x880 [ 440.001615][ T30] task_work_run+0x24f/0x310 [ 440.006309][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 440.011612][ T30] ? __pfx_task_work_run+0x10/0x10 [ 440.017314][ T30] ? do_exit+0xa2a/0x28e0 [ 440.021663][ T30] ? kmem_cache_free+0x1a2/0x420 [ 440.026984][ T30] ? do_exit+0xa2a/0x28e0 [ 440.031334][ T30] do_exit+0xa2f/0x28e0 [ 440.035920][ T30] ? __pfx_do_exit+0x10/0x10 [ 440.040524][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 440.046698][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 440.053053][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 440.058318][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 440.063539][ T30] do_group_exit+0x207/0x2c0 [ 440.068177][ T30] __x64_sys_exit_group+0x3f/0x40 [ 440.073211][ T30] x64_sys_call+0x2634/0x2640 [ 440.077952][ T30] do_syscall_64+0xf3/0x230 [ 440.082471][ T30] ? clear_bhb_loop+0x35/0x90 [ 440.087195][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.093116][ T30] RIP: 0033:0x7fbb1c97dff9 [ 440.097813][ T30] RSP: 002b:00007ffdd394d488 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 440.109041][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbb1c97dff9 [ 440.117754][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043 [ 440.126374][ T30] RBP: 00007fbb1c9dd588 R08: 00007ffdd394b227 R09: 0000000000000003 [ 440.134413][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 440.142395][ T30] R13: 0000000000000003 R14: 00000000ffffffff R15: 00007ffdd394d630 [ 440.150475][ T30] [ 440.153522][ T30] [ 440.153522][ T30] Showing all locks held in the system: [ 440.161314][ T30] 3 locks held by kworker/0:0/8: [ 440.166294][ T30] #0: ffff88801ac80948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 440.177371][ T30] #1: ffffc900000d7d00 (xfrm_state_gc_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 440.188163][ T30] #2: ffffffff8e93d378 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 440.200464][ T30] 3 locks held by kworker/u8:0/11: [ 440.205849][ T30] 3 locks held by kworker/u8:1/12: [ 440.210970][ T30] 2 locks held by ksoftirqd/1/24: [ 440.216365][ T30] 1 lock held by khungtaskd/30: [ 440.222233][ T30] #0: ffffffff8e937de0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 440.232175][ T30] 3 locks held by kworker/u8:2/35: [ 440.237340][ T30] 3 locks held by kworker/u8:3/53: [ 440.242454][ T30] #0: ffff88814b7b3948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 440.254158][ T30] #1: ffffc90000be7d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 440.267038][ T30] #2: ffffffff8fcd2288 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 440.276572][ T30] 3 locks held by kworker/u8:4/81: [ 440.281688][ T30] #0: ffff88801baed948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 440.292685][ T30] #1: ffffc900015d7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 440.303322][ T30] #2: ffffffff8e93d240 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x4c/0x530 [ 440.313325][ T30] 2 locks held by kswapd0/89: [ 440.318111][ T30] 4 locks held by kswapd1/90: [ 440.323840][ T30] 3 locks held by kworker/0:3/1166: [ 440.329125][ T30] #0: ffff88801ac81948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 440.341606][ T30] #1: ffffc90003e97d00 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 440.352832][ T30] #2: ffffffff8fcd2288 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x99/0xfd0 [ 440.362602][ T30] 2 locks held by kworker/u8:6/2569: [ 440.367950][ T30] 3 locks held by kworker/u8:7/3022: [ 440.373237][ T30] #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 440.385018][ T30] #1: ffffc9000a417d00 ((work_completion)(&map->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 440.396774][ T30] #2: ffffffff8e93d240 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x4c/0x530 [ 440.406838][ T30] 2 locks held by jbd2/sda1-8/4648: [ 440.412042][ T30] 1 lock held by klogd/4675: [ 440.416671][ T30] 2 locks held by udevd/4686: [ 440.421357][ T30] 1 lock held by dhcpcd/4899: [ 440.426799][ T30] 2 locks held by getty/4984: [ 440.431485][ T30] #0: ffff88802eca60a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 440.441777][ T30] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00 [ 440.452087][ T30] 1 lock held by syz-executor/5218: [ 440.457326][ T30] 3 locks held by kworker/1:3/5243: [ 440.462535][ T30] 5 locks held by kworker/u9:7/5247: [ 440.467899][ T30] #0: ffff8880271e2148 ((wq_completion)hci3){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 440.478772][ T30] #1: ffffc90003a67d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 440.491403][ T30] #2: ffff88802effcd80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400 [ 440.501395][ T30] #3: ffff88802effc078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0 [ 440.511172][ T30] #4: ffffffff8fe3e968 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x15d/0x300 [ 440.520998][ T30] 3 locks held by kworker/1:4/5286: [ 440.527005][ T30] #0: ffff88801ac80948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 440.538426][ T30] #1: ffffc90004217d00 ((fqdir_free_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 440.549628][ T30] #2: ffffffff8e93d240 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x4c/0x530 [ 440.559640][ T30] 3 locks held by kworker/u8:8/7314: [ 440.564995][ T30] #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 440.576735][ T30] #1: ffffc90004017d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 440.587815][ T30] #2: ffffffff8fcd2288 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 440.596869][ T30] 1 lock held by syz-executor/9203: [ 440.602073][ T30] #0: ffffffff8e93d240 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x4c/0x530 [ 440.612103][ T30] 4 locks held by kworker/u8:9/9208: [ 440.617430][ T30] 1 lock held by syz.1.1224/9434: [ 440.622458][ T30] 2 locks held by syz.3.1243/9521: [ 440.628343][ T30] #0: ffffffff8fcd2288 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0 [ 440.637754][ T30] #1: ffffffff8e93d378 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 440.649008][ T30] 4 locks held by syz.2.1249/9537: [ 440.654201][ T30] 2 locks held by syz.4.1250/9541: [ 440.659317][ T30] [ 440.661652][ T30] ============================================= [ 440.661652][ T30] [ 440.670148][ T30] NMI backtrace for cpu 0 [ 440.674482][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 440.684996][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 440.695056][ T30] Call Trace: [ 440.698344][ T30] [ 440.701283][ T30] dump_stack_lvl+0x241/0x360 [ 440.705984][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 440.711196][ T30] ? __pfx__printk+0x10/0x10 [ 440.715808][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 440.720763][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 440.726235][ T30] ? _printk+0xd5/0x120 [ 440.730397][ T30] ? __pfx__printk+0x10/0x10 [ 440.734994][ T30] ? __wake_up_klogd+0xcc/0x110 [ 440.739859][ T30] ? __pfx__printk+0x10/0x10 [ 440.744457][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 440.749499][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 440.755507][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 440.761518][ T30] watchdog+0xff4/0x1040 [ 440.765786][ T30] ? watchdog+0x1ea/0x1040 [ 440.770224][ T30] ? __pfx_watchdog+0x10/0x10 [ 440.774918][ T30] kthread+0x2f0/0x390 [ 440.779004][ T30] ? __pfx_watchdog+0x10/0x10 [ 440.783696][ T30] ? __pfx_kthread+0x10/0x10 [ 440.788302][ T30] ret_from_fork+0x4b/0x80 [ 440.792734][ T30] ? __pfx_kthread+0x10/0x10 [ 440.797335][ T30] ret_from_fork_asm+0x1a/0x30 [ 440.802129][ T30] [ 440.806111][ T30] Sending NMI from CPU 0 to CPUs 1: [ 440.811353][ C1] NMI backtrace for cpu 1 [ 440.811366][ C1] CPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 440.811386][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 440.811396][ C1] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x8/0x90 [ 440.811423][ C1] Code: 44 0a 20 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 4c 8b 04 24 <65> 48 8b 14 25 c0 d7 03 00 65 8b 05 c0 f7 6e 7e 25 00 01 ff 00 74 [ 440.811437][ C1] RSP: 0018:ffffc900001e75d8 EFLAGS: 00000286 [ 440.811453][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffff88801d2f0000 [ 440.811465][ C1] RDX: 0000000000000100 RSI: 0000000000000001 RDI: 0000000000000008 [ 440.811475][ C1] RBP: ffffc900001e7710 R08: ffffffff81b2ce0d R09: fffff5200003ced4 [ 440.811488][ C1] R10: dffffc0000000000 R11: fffff5200003ced4 R12: 0000000000000000 [ 440.811500][ C1] R13: dffffc0000000000 R14: 0000000000000001 R15: 1ffff9200003cef6 [ 440.811512][ C1] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 440.811527][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 440.811539][ C1] CR2: 000000110c32b398 CR3: 000000000e734000 CR4: 00000000003526f0 [ 440.811559][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 440.811570][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 440.811581][ C1] Call Trace: [ 440.811587][ C1] [ 440.811594][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 440.811614][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 440.811638][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 440.811656][ C1] ? nmi_handle+0x2a/0x5a0 [ 440.811681][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 440.811701][ C1] ? nmi_handle+0x14f/0x5a0 [ 440.811718][ C1] ? nmi_handle+0x2a/0x5a0 [ 440.811734][ C1] ? __sanitizer_cov_trace_const_cmp4+0x8/0x90 [ 440.811754][ C1] ? default_do_nmi+0x63/0x160 [ 440.811774][ C1] ? exc_nmi+0x123/0x1f0 [ 440.811792][ C1] ? end_repeat_nmi+0xf/0x53 [ 440.811811][ C1] ? bpf_bprintf_prepare+0x1dd/0x1530 [ 440.811829][ C1] ? __sanitizer_cov_trace_const_cmp4+0x8/0x90 [ 440.811849][ C1] ? __sanitizer_cov_trace_const_cmp4+0x8/0x90 [ 440.811870][ C1] ? __sanitizer_cov_trace_const_cmp4+0x8/0x90 [ 440.811890][ C1] [ 440.811895][ C1] [ 440.811901][ C1] bpf_bprintf_prepare+0x1dd/0x1530 [ 440.811923][ C1] ? __pfx_bpf_bprintf_prepare+0x10/0x10 [ 440.811942][ C1] ? bpf_trace_printk+0x115/0x230 [ 440.811965][ C1] bpf_trace_printk+0x12f/0x230 [ 440.811986][ C1] ? bpf_trace_run3+0x27d/0x5a0 [ 440.812003][ C1] ? __pfx_bpf_trace_printk+0x10/0x10 [ 440.812024][ C1] ? bpf_trace_run3+0x27d/0x5a0 [ 440.812043][ C1] ? kasan_quarantine_put+0xdc/0x230 [ 440.812059][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 440.812082][ C1] ? bpf_trace_run3+0x24c/0x5a0 [ 440.812100][ C1] bpf_prog_0605f9f479290f07+0x38/0x3c [ 440.812115][ C1] bpf_trace_run3+0x33a/0x5a0 [ 440.812135][ C1] ? __pfx_bpf_trace_run3+0x10/0x10 [ 440.812152][ C1] ? __pfx_ref_tracker_free+0x10/0x10 [ 440.812168][ C1] ? dst_destroy+0x2ac/0x460 [ 440.812184][ C1] ? run_ksoftirqd+0xca/0x130 [ 440.812204][ C1] ? smpboot_thread_fn+0x544/0xa30 [ 440.812224][ C1] ? kthread+0x2f0/0x390 [ 440.812239][ C1] ? ret_from_fork+0x4b/0x80 [ 440.812259][ C1] ? ret_from_fork_asm+0x1a/0x30 [ 440.812283][ C1] ? dst_destroy+0x2ac/0x460 [ 440.812297][ C1] ? dst_destroy+0x2ac/0x460 [ 440.812312][ C1] kmem_cache_free+0x355/0x420 [ 440.812336][ C1] dst_destroy+0x2ac/0x460 [ 440.812352][ C1] ? rcu_core+0xa37/0x17a0 [ 440.812367][ C1] ? __pfx_dst_destroy_rcu+0x10/0x10 [ 440.812383][ C1] rcu_core+0xaaa/0x17a0 [ 440.812406][ C1] ? __pfx_rcu_core+0x10/0x10 [ 440.812424][ C1] ? rcu_qs+0xf1/0x190 [ 440.812439][ C1] ? __pfx_rcu_qs+0x10/0x10 [ 440.812459][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 440.812481][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 440.812508][ C1] handle_softirqs+0x2c5/0x980 [ 440.812530][ C1] ? run_ksoftirqd+0xca/0x130 [ 440.812558][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 440.812582][ C1] run_ksoftirqd+0xca/0x130 [ 440.812602][ C1] ? __pfx_run_ksoftirqd+0x10/0x10 [ 440.812622][ C1] ? __pfx_run_ksoftirqd+0x10/0x10 [ 440.812645][ C1] ? __pfx_ksoftirqd_should_run+0x10/0x10 [ 440.812665][ C1] ? smpboot_thread_fn+0x2d3/0xa30 [ 440.812685][ C1] ? smpboot_thread_fn+0x4fb/0xa30 [ 440.812703][ C1] ? smpboot_thread_fn+0x656/0xa30 [ 440.812723][ C1] ? __pfx_run_ksoftirqd+0x10/0x10 [ 440.812743][ C1] smpboot_thread_fn+0x544/0xa30 [ 440.812763][ C1] ? smpboot_thread_fn+0x4e/0xa30 [ 440.812787][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 440.812806][ C1] kthread+0x2f0/0x390 [ 440.812821][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 440.812841][ C1] ? __pfx_kthread+0x10/0x10 [ 440.812857][ C1] ret_from_fork+0x4b/0x80 [ 440.812877][ C1] ? __pfx_kthread+0x10/0x10 [ 440.812892][ C1] ret_from_fork_asm+0x1a/0x30 [ 440.812919][ C1] [ 440.813362][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 441.304867][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc1-syzkaller-00360-g09cf85ef183a #0 [ 441.315383][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 441.325457][ T30] Call Trace: [ 441.328749][ T30] [ 441.331686][ T30] dump_stack_lvl+0x241/0x360 [ 441.336381][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 441.341589][ T30] ? __pfx__printk+0x10/0x10 [ 441.346181][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 441.352183][ T30] ? vscnprintf+0x5d/0x90 [ 441.356526][ T30] panic+0x349/0x880 [ 441.360430][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 441.366599][ T30] ? __pfx_panic+0x10/0x10 [ 441.371024][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 441.376409][ T30] ? __irq_work_queue_local+0x137/0x410 [ 441.381972][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 441.387362][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 441.393532][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 441.399703][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 441.405875][ T30] watchdog+0x1033/0x1040 [ 441.410217][ T30] ? watchdog+0x1ea/0x1040 [ 441.414649][ T30] ? __pfx_watchdog+0x10/0x10 [ 441.419340][ T30] kthread+0x2f0/0x390 [ 441.423420][ T30] ? __pfx_watchdog+0x10/0x10 [ 441.428113][ T30] ? __pfx_kthread+0x10/0x10 [ 441.432714][ T30] ret_from_fork+0x4b/0x80 [ 441.437146][ T30] ? __pfx_kthread+0x10/0x10 [ 441.441748][ T30] ret_from_fork_asm+0x1a/0x30 [ 441.446542][ T30] [ 441.449812][ T30] Kernel Offset: disabled [ 441.454130][ T30] Rebooting in 86400 seconds..