last executing test programs:

3m10.732717431s ago: executing program 2 (id=1862):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r1)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="05000000000000000000077400060800020000000000080003"], 0x30}, 0x1, 0xffffffff00000003, 0x0, 0x4000001}, 0x0) (fail_nth: 8)

3m10.46723848s ago: executing program 2 (id=1868):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)
close(r5)
r7 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r7, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

3m9.390307542s ago: executing program 2 (id=1885):
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0xff99, 0x0)
syz_80211_inject_frame(&(0x7f00000000c0), &(0x7f0000000100)=@mgmt_frame=@beacon={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)

3m8.778425649s ago: executing program 2 (id=1903):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x3c, 0x2, [@TCA_TBF_PBURST={0x8, 0x7, 0xb86}, @TCA_TBF_PARMS={0x28, 0x1, {{0xa, 0x2, 0xffff, 0x7, 0xcc, 0x3}, {0x0, 0x1, 0x7, 0x8, 0x7f, 0x9}, 0xa6, 0x7, 0x1bb6}}, @TCA_TBF_BURST={0x8, 0x6, 0x7f}]}}]}, 0x68}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r7, {}, {0x2, 0xb}, {0xd, 0xfff3}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x80000001, 0x4, 0x3, 0x4, 0x0, 0x5, 0x8, 0x5, 0x802}}}}]}, 0x58}}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

3m8.479770815s ago: executing program 2 (id=1912):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f0000000a80)=ANY=[@ANYBLOB="180000000000002000000000ff000000850000000f000000850000000500000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x4000, &(0x7f00000002c0)={&(0x7f000000cbc0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x97}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)

3m8.399150592s ago: executing program 2 (id=1915):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r1, &(0x7f0000000100)={0x8, 0x2, 0x2, 0x1, 0x1}, 0x8)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="2c24b9baa5cbff4b58c87e402f0c4232777c062eebb171b53c0d7981f6bd775d0a06995513ac604dfb5983797dfb11d30a48408fbcc6738671bddc1f0b0a9eccc06488092371c7ab67c7c0ee9792a1f3165214", @ANYRESDEC, @ANYRESDEC=r2, @ANYRES16, @ANYRES16=r0, @ANYRES64=r2], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='mr_alloc\x00', r3, 0x0, 0x6}, 0x18) (async, rerun: 32)
sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x20, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0) (rerun: 32)

2m53.371521037s ago: executing program 32 (id=1915):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r1, &(0x7f0000000100)={0x8, 0x2, 0x2, 0x1, 0x1}, 0x8)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="2c24b9baa5cbff4b58c87e402f0c4232777c062eebb171b53c0d7981f6bd775d0a06995513ac604dfb5983797dfb11d30a48408fbcc6738671bddc1f0b0a9eccc06488092371c7ab67c7c0ee9792a1f3165214", @ANYRESDEC, @ANYRESDEC=r2, @ANYRES16, @ANYRES16=r0, @ANYRES64=r2], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='mr_alloc\x00', r3, 0x0, 0x6}, 0x18) (async, rerun: 32)
sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x20, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0) (rerun: 32)

2.892244363s ago: executing program 5 (id=4684):
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f00000000c0)="1800000016005f0214fffffffffffff80700000023000000", 0x18)

2.839395187s ago: executing program 4 (id=4685):
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)=ANY=[@ANYBLOB="1800000024000103000000000000000001008c000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x4008001}, 0x4000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x81, 0x81, 0x9, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000), &(0x7f00000007c0), 0x402, r1}, 0x38)
bpf$MAP_DELETE_BATCH(0x18, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0), 0x0, 0x5, r1}, 0x38)
recvmmsg(r0, &(0x7f0000000240)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000004740)=""/4090, 0xffa}, {&(0x7f00000001c0)=""/91, 0x5b}], 0x2}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x4}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000001740)=""/4083, 0xff3}, {&(0x7f0000002740)=""/4092, 0xffc}], 0x2}, 0x8}], 0x3, 0x2, 0x0)

2.790211525s ago: executing program 5 (id=4687):
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)={@ifindex, 0xffffffffffffffff, 0x11}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4100}, [@snprintf={{}, {}, {}, {}, {}, {0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffe00}, {}, {0x7, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffe00}, {}, {}, {}, {0x85, 0x0, 0x0, 0xc5}}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x49, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xa0)

2.720232542s ago: executing program 4 (id=4690):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000f01e000100fdffffff00000000020000000100000700000000080006000200000008000100"], 0x2c}, 0x1, 0x0, 0x0, 0x42816}, 0x0)

2.630878841s ago: executing program 5 (id=4693):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000200), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="620ac4ff00000000711036000000000095"], &(0x7f0000000480)='GPL\x00'}, 0x90)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000280)={0x0, 0xffffff3a, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, r1, 0x1, 0x70bd2b, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x1}]}, 0x1c}}, 0x0)

2.599269077s ago: executing program 4 (id=4694):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0xffea, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3000000070000100000000000000000007000000", @ANYRES32, @ANYBLOB="0c00018008000100000001000c0002"], 0x30}}, 0x0)

2.554288167s ago: executing program 5 (id=4695):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x5, &(0x7f0000000200)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x27}, 0x74) (async)
sendmmsg$unix(r1, &(0x7f0000000b00)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}, {{&(0x7f0000000e80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000001dc0)="bb", 0x1}, {0x0}], 0x2}}, {{&(0x7f0000000580)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000600)='z', 0x1}], 0x1}}], 0x3, 0x0)

2.482519262s ago: executing program 5 (id=4697):
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f00000000c0)="1800000016005f0214fffffffffffff80700000023000000", 0x18)

2.40694963s ago: executing program 4 (id=4699):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})

2.376453722s ago: executing program 5 (id=4701):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000001080)={0x6, {{0x2, 0x4e22, @multicast1}}, {{0x2, 0x4e1f, @loopback}}}, 0x108)
r1 = accept4$ax25(0xffffffffffffffff, &(0x7f00000000c0)={{}, [@rose, @netrom, @bcast, @remote, @netrom, @netrom, @remote, @default]}, &(0x7f0000000140)=0x48, 0x80000)
ioctl$SIOCAX25GETINFOOLD(r1, 0x89e9, &(0x7f0000000180))
socket$inet_udplite(0x2, 0x2, 0x88)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)={0x60, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x1}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x60}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket(0x40000000015, 0x5, 0x0)
setsockopt$RDS_CONG_MONITOR(r5, 0x114, 0x6, &(0x7f0000000080)=0x1, 0x4)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r6, 0x84, 0x14, &(0x7f00000001c0)="020000000980", 0x6)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x54, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x84}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e22}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x4, 0x6}, 0x4)
bind$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0xfffd, 0x0, 0x0, 0x11, 0x0, @multicast1, @empty=0xe0000001}, {0x0, 0x4e20, 0x8}}}}}, 0x0)

2.235760695s ago: executing program 4 (id=4703):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
r2 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r2, &(0x7f0000000a40)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)
writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f00000002c0)="a609a89c9edd34187123b5adceb3968557f4e107445a53c0815c9636d00f896d1e8cd8de77a79f1e3e2c53ddf1bb9f8ac5cb5257ff4e8b960026bc4244c4b09179a97dffdf02563e23546d3e78f944e7e2fee2a00b6313048fe354223318badb21d8c086669c5f7772f4a6d90d0997babdf79f7d557e055b3e6f2e4f41ec06a39a57b9ccc00bbca22395e41f9e9652af665f0e1603fb85d4799d54d44c706ff8df9bb805b182a1260b5936ae44f649b5e2fdca240984dcd0033ec28aeaaa686608c5c50538eea153", 0xc8}, {&(0x7f00000004c0)="7ee25c099579d92f8da721f68a8100b6adf04e0cd543f7d26019d57e6a3ecf7ef34486da35c482845d517dc801cca9e4f248b15413a7e252b0", 0x39}], 0x2)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000002c0)={@loopback, 0x6e, 0x2, 0x2, 0xc, 0xffec}, 0x20)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r4}, &(0x7f0000000840), &(0x7f0000000880)=r5}, 0x20)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r7=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r5, r7, 0x25, 0x0, @val=@kprobe_multi=@syms={0x1, 0x0, 0x0, 0x0, 0x8000000000000001}}, 0x30)
syz_emit_ethernet(0xdc9, &(0x7f0000000a00)={@empty, @broadcast, @void, {@ipv6={0x86dd, @generic={0x2, 0x6, "7bbafa", 0xd93, 0x3148286a35062e53, 0xfe, @rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {[], "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"}}}}}, 0x0)
syz_emit_ethernet(0xe1, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], 0x0)
sendto$inet6(r3, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x56)
sendmmsg$inet6(r3, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000c80)="0b0ec2a1e3fc84788972f461fec29e0fe5be85ea822a7348bd54a57f68a85a2284ad43c367bae5f7bd6c1e1d9017109e232e5bb561d280b32fa2b07a0cd31f1b8b9acdc89d4d5725350a9ec9303e53def89bcb6bb6ea83324927b43749f25be60c4f8707382b8e3062032c28dcccb784fdcfe6f2febd55e05bf1ccb63237c1d1bea4db828a5be79e518cf55a88e130609528b8aff64359e76eee93584aad3f751172c449fb", 0xa5}, {&(0x7f0000000680)="5f62f632763c84825847145170282f67ba6d5dadf0baf135d503e93a17ee560409202f4c5f0de32b0e53e4d26d04c825d923318fd574b1924b09ebb91d5be30b532a2fb95030c6be2a14ccfbce6eef05ea88d2413dc3fc0ae8a2e071f8764a4843611ae28b340100ddefa8ffed32420677397aa63e880adc56d03d8799429f33741886bd6c4065bba5005d74f67508dc3434165b51bf8f73bf1a7c158d8905e518e8", 0xa2}, {&(0x7f0000000740)="dfd1db04f5eef4b5714a69f5392e27d1b79a961a16fbdc4f01a9e38a1f95f939a209f049ad8d4f9447506fd73cec26b8246758f684013c99b717e119d15432e9d46da8a0c25e7e3771b0b146e56d2fcf8107332acc1c56948171260ed44c97919f70210c914c1098c9ac622d46f0ffae373480c9d8e590395ea4365569b8ea75ea1a9a181cfa88541804ec97980211c9b7eb2235d6f0b644fd31dda9bc2cc99434e0df4934d0", 0xa6}, {&(0x7f0000000c40)="a405df87c6e89abd7ae7e6b8550f9923917c9d38e14a4e9ace3100b34d0056282b7ed43e9c", 0x25}, {&(0x7f0000000800)="f76c72c4066a174e1300da0da7d191a618fc5793ff23c6328c6d61df0a2fb72441d4ded25cf7b5f31eb5d65e412665a6177f09ca3ac5cfd751577dec547711dc43b694a601fcb6575547ee6ec2a01c32b65d3429fbb9623a83d457d3ddea9eb90ab14b6b323a9358af0b55cff95844d5b47f6994a72f984e19e961cc00f6e364e141c8", 0x83}, {&(0x7f00000008c0)="4b000ffd096c1b77cd99b1458609c4b82100375ca9411e734cc8e9627df29e9b97a002d7f15ea9f42bd71401384ed6b5772b5c618c35c4aab72b1d515ceada9e64d7a35fd435e98f06243fcd53966c196ff3f47537912a1a5dec7e8e1fbf4543d1a6c80467d6ba3d241e3fd22efa09c638c98b4ce9fbe6d2053fcfa334eaee64efad2d349f048afb2635ae06c05697746fe073ed230c9c7c4643396305424c1c7eaa3ee09891995a607de26be9abcd2b65a4f9093da8a07eea61b1ff21ea3b323b191f95b997cfdface3dc21a664e38896f9f689bc06f4800d5c977102358770b0d8425f098be9383b5e487e7165e847191d5e95233e971edd", 0xf9}, {&(0x7f0000002380)="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", 0xc72}, {&(0x7f0000003000)="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", 0x1000}], 0x8}}], 0x1, 0x8800)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x604ab000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f0000001380)=""/4080, 0xfffffffffffffdcc, 0x0, 0x0, 0xffffffffffffff29}, &(0x7f0000000000)=0x40)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000100)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff78, 0x0, 0x0}, &(0x7f0000000340)=0x40)
sendmsg$NFT_BATCH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x2}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x20000080)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000007c0)=ANY=[@ANYBLOB="280300002d00090027bd70000000000004"], 0x328}}, 0x84)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000004c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x58}}, 0x0)

1.579296649s ago: executing program 0 (id=4714):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="000e00"/12, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x96)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4) (async)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x20, 0x1418, 0x1, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}]}, 0x20}}, 0x0) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0x10, &(0x7f0000000740)=@framed={{}, [@snprintf={{0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x8, 0xfe00}, {0x7, 0x0, 0x8}, {}, {0x5}, {0x7, 0x0, 0x2, 0x0}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x49}}]}, &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x6, 0x0, 0x0, 0x2, 0x0, 0x70bd2d}, 0x10}}, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{0x1, <r6=>0xffffffffffffffff}, &(0x7f0000000100), &(0x7f0000000140)=r3}, 0x20) (async)
r7 = socket(0x5, 0x3, 0x1fff) (async)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000740)=@newtfilter={0x38, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r9, {0x0, 0x3}, {}, {0x8}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_FLAGS={0x8, 0xb, 0x1}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async)
r10 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000300), 0x4) (async)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0x20, &(0x7f0000000400)={&(0x7f00000007c0)=""/193, 0xc1, <r11=>0x0, &(0x7f0000000b00)=""/249, 0xf9}}, 0x10) (async)
r12 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x9, 0xff, 0x6, 0x27040, r1, 0x9, '\x00', r9, 0xffffffffffffffff, 0x1, 0x4, 0x0, 0x8}, 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000c80)=@bpf_lsm={0x1d, 0x30, &(0x7f0000000980)=ANY=[@ANYBLOB="1800000003000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70200f713000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000b7080000000000007b8af8ff00000000b7080000a100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008000000182300"/132, @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000590300007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000010000008500000082000000087c0000080000001837000004000000000000000000000018630000040000000000000005000000852000000300000085000000030000008510000004000000186900000c00000000000000b30900002360e0ffffffffffbf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x2, 0xac, &(0x7f0000000240)=""/172, 0x40f00, 0x80, '\x00', r9, 0x1b, r10, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x5, 0xd, 0x7, 0x4}, 0x10, r11, 0x0, 0x6, &(0x7f00000005c0)=[r1, r0, r1, r0, r1, r1, r12, r1], &(0x7f0000000c00)=[{0x1, 0x2, 0x9, 0x5}, {0x0, 0x5, 0x7}, {0x4, 0x1, 0xc, 0xc}, {0x2, 0x3, 0xc, 0x3}, {0x0, 0x2, 0x8}, {0x0, 0x2, 0x0, 0x6}], 0x10, 0xe76}, 0x94) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r3, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="7638300c000000000000e9000000", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
r13 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.events\x00', 0x275a, 0x0) (async)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x40047438, 0x8) (async)
r14 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000084"], 0x0, 0x26}, 0x20)
ioctl$AUTOFS_IOC_SETTIMEOUT(r10, 0x80049367, &(0x7f00000008c0)=0xfffffffffffffffd) (async)
r15 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_rose_SIOCADDRT(r15, 0x890b, &(0x7f0000000000)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0xf3, @null, @bpq0, 0x1, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @null, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @bcast]}) (async)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xe, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="850000002f000000620a00ff000000007500000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="00000000000000000504000000a48774000000f73b858730deef"], &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d) (async)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r14, 0x20, &(0x7f00000002c0)={0x0, 0x0, 0x0, &(0x7f0000001880)=""/4105, 0x1009}}, 0x10) (async)
r16 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r16, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="340000003e0007010000000000000000017c00000400fc800c00018006000600800a00000800028004007280080007"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x800001, 0x10012, r13, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x3, &(0x7f0000000000)=ANY=[@ANYRES32=0x0], &(0x7f0000000080)='syzkaller\x00', 0x8001, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x0, r13, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)

1.419420558s ago: executing program 0 (id=4717):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r1)
getsockname$packet(r1, &(0x7f0000000180)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="8c000000100037042a00"/20, @ANYRES32=r3, @ANYBLOB="83040500000000006c0012800900010069706970000000005c000280060012004e210000060010000f00000008000100", @ANYRES32=r2, @ANYBLOB="05000a0001000000060010007f000000060011004e200000050004004b000000060011004e20000006000f0002"], 0x8c}, 0x1, 0x0, 0x0, 0x40000}, 0x4004082)
sendmmsg$inet(r0, &(0x7f0000000880)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @empty, @multicast1}}}], 0x20, 0x64}}], 0x1, 0x4880)

1.374739451s ago: executing program 3 (id=4718):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$netlink(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="440000001f0001"], 0x44}], 0x1}, 0x0)
socket(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r5 = socket(0x400000000010, 0x0, 0x57)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x38, 0x2c, 0xd27, 0x30bd26, 0x25dfdc00, {0x0, 0x0, 0x0, r7, {0x0, 0xd}, {}, {0x3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x2000000, 0x0, 0x10}, 0x84)
sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000140)="600000002e000d190a762d7f089e", 0xfca2}, {&(0x7f0000000280)="68cabf2dfb58fc0a1d6b689866f05d490d010088a8ffff0200258f2e4409b8f9e6aaeb88bea123dc2c6726e89b1ae2f6e8bcb5ee52dcd7298d39093c510293bca0b646a3ce904f6e6b788b3204c233e60ddc", 0x52}], 0x2}, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r8, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@ipv4_newroute={0x3c, 0x18, 0x100, 0x70bd2b, 0x25dfdbfb, {0x2, 0x0, 0x10, 0x2, 0x0, 0x2, 0xc8, 0x7}, [@RTA_DPORT={0x6, 0x1d, 0x4e21}, @RTA_SRC={0x8, 0x2, @rand_addr=0x64010100}, @RTA_PREFSRC={0xffffffffffffff38, 0x7, @loopback}, @RTA_PREFSRC={0x8, 0x7, @remote}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="3c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="a4280400000000001400350076657468305f746f5f626f6e6400000008000a00", @ANYRES32=r8], 0x3c}, 0x1, 0x0, 0x0, 0x4008800}, 0x8000)
r10 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
setsockopt$rose(r10, 0x104, 0x7, 0x0, 0x0)
r11 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r11, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000100)=@ethtool_ringparam={0x8, 0x0, 0x0, 0x0, 0x0, 0xf}})
ioctl$AUTOFS_IOC_PROTOVER(0xffffffffffffffff, 0x80049363, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ_RESET(r12, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)={0x1c, 0x15, 0xa, 0x0, 0x0, 0x0, {0x5, 0x0, 0xa}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x24000000)
r13 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r13, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)

1.316094856s ago: executing program 0 (id=4719):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e21, @empty}, 0x2, 0x2, 0x2, 0x2}}, 0x26)
getsockopt(r0, 0x3, 0x1, &(0x7f0000000040)=""/4096, &(0x7f0000001040)=0x1000)
close(r0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000001080)={<r2=>0x0, @in6={{0xa, 0x4e21, 0x1, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8001}}, 0xffff, 0x52, 0x8000, 0x8, 0x4, 0x6, 0x3}, &(0x7f0000001140)=0x9c)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000001180)={r2, 0xe71, 0xa528}, 0x8)
r3 = socket(0x1d, 0x1, 0xff)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f00000011c0)={r2, 0x800, 0x0, 0xd, 0x592}, &(0x7f0000001200)=0x18)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r4, &(0x7f0000001240)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x4, 0x2, 0x4, 0x1, {0xa, 0x4e23, 0xc5cb, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}}}, 0x32)
r5 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000001280)={0xffffffffffffffff, 0x0, 0x25, 0x0, @val=@target_btf_id=0xffffffffffffffff}, 0x14)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001740)={0x6, 0x54, &(0x7f00000012c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x17e, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}, @cb_func={0x18, 0x2, 0x4, 0x0, 0x6}, @ringbuf_query, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x200}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xe7}}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7f}}, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x81}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xc0}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001580)='GPL\x00', 0xd51, 0x87, &(0x7f00000015c0)=""/135, 0x40f00, 0x4a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000001680)={0x3, 0x4}, 0x8, 0x10, &(0x7f00000016c0)={0x3, 0x5, 0x5, 0x9}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000001700)=[{0x0, 0x2, 0x10, 0xb}, {0x5, 0x5, 0x4, 0x8}, {0x2, 0x5, 0x9, 0x2}, {0x0, 0x4, 0x2, 0xb}], 0x10, 0x7}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000001a00)={0x20, 0xe, &(0x7f0000001800)=@raw=[@btf_id={0x18, 0x7, 0x3, 0x0, 0x4}, @ldst={0x1, 0x0, 0x3, 0x0, 0x6, 0xfffffffffffffff0, 0xffffffffffffffff}, @func={0x85, 0x0, 0x1, 0x0, 0x5}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x1}, @initr0={0x18, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x4}, @jmp={0x5, 0x0, 0x1, 0x2, 0x1, 0xfffffffffffffff0, 0xfffffffffffffff0}, @ringbuf_query, @ldst={0x3, 0x1, 0x0, 0x1, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffc}], &(0x7f0000001880)='GPL\x00', 0x81, 0x2, &(0x7f00000018c0)=""/2, 0x41100, 0x30, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001900)={0x2, 0xf, 0x4}, 0x10, 0x0, r3, 0xa, 0x0, &(0x7f0000001940)=[{0x1, 0x1, 0xb, 0x2}, {0x3, 0x4, 0x6, 0x1}, {0x0, 0x1, 0x5, 0x7}, {0x3, 0x1, 0x3, 0xb}, {0x0, 0x4, 0x10, 0xb}, {0x0, 0x4, 0x7, 0x6}, {0x0, 0x4, 0x10, 0x1}, {0x4, 0x4, 0x3, 0x2}, {0x3, 0x4, 0xd, 0x5}, {0x2, 0x2, 0x4}], 0x10, 0xcdf8c48}, 0x94)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000001ac0)={r5, r6, 0x4, r7}, 0x10)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockname$inet(r3, &(0x7f0000001b00)={0x2, 0x0, @multicast1}, &(0x7f0000001b40)=0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f0000001b80)={<r9=>r2, 0x3}, &(0x7f0000001bc0)=0x8)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r3, 0x84, 0x5, &(0x7f0000001c00)={r9, @in={{0x2, 0x4e24, @remote}}}, 0x84)
r10 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000001cc0)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r10, 0x6, 0x13, &(0x7f0000001d00), 0x4)
bind(r4, &(0x7f0000001d40)=@qipcrtr={0x2a, 0x1, 0x7fff}, 0x80)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000001dc0)={'vxcan1\x00', <r11=>0x0})
sendmsg$can_bcm(r3, &(0x7f0000001f00)={&(0x7f0000001e00)={0x1d, r11}, 0x10, &(0x7f0000001ec0)={&(0x7f0000001e40)={0x5, 0x66ef2919ec28e49f, 0x0, {0x0, 0xea60}, {}, {0x3}, 0x1, @canfd={{0x1, 0x0, 0x1, 0x1}, 0xf, 0x2, 0x0, 0x0, "b6cfe7f2e80749d94c8d2dbf5bdada92ea1c3136a89e8ada4f3803efabdd10566b0c7496489bdc7239c423e95b463b12d609d69d23d4d7b0cdcd5660807e7f07"}}, 0x80}, 0x1, 0x0, 0x0, 0xc0002}, 0x4000)
getsockopt$PNPIPE_HANDLE(r3, 0x113, 0x3, &(0x7f0000001f40), &(0x7f0000001f80)=0x4)
writev(r7, &(0x7f00000032c0)=[{&(0x7f0000001fc0)="eab2d176fdb0d25daab0d79a944243158581022eb00cd51e35d3987b9a24020e1bfd29279dc8f8c7a939af6d09fd7c6def444c08e59c06deb8d2e8074f9e42cff630fbfd245ff1b3e9e27bcac1ad15f76aad8ed64cc92c9b36f1af09c445786fd45c8f5157ab3e4734b7b7b7847659d64d475678a17764", 0x77}, {&(0x7f0000002040)="5a416220c21eb87913b3ad1f80b511f7131eccf1d76492264f397c6ee369fd2da81c9fd72555fbfcf7cb8845eb2a7e95ca318bac978c8471b49532fcc4d0d9df98724bd814639fcb", 0x48}, {&(0x7f00000020c0)="469a44ff6e94e83cfdec643cbe83648ffdae0c2ec320b54cdb32db49ba8d234c7ac39b35d93f483f801fd9aa586c44eabaa198471d7f83a274d2771f5dafee4feb04f668d05599ac6b3bb37da79e0f1e646a6efb4c6e1427454857a6581b882e1b62a8c95ebc175d70ac43c549dcd4a513d01e0c7579099435bbc2368f7bd341ce023274dd6ac48a", 0x88}, {&(0x7f0000002180)="79c8d591f5c3d8f4a033f2b5209f03c030bdfc0e53648073597b7fce1018a6676389aab0ec6fc574ef346b763e1a8569b403277d95db9cc26201bd8fb580c7b7c12b8cb86554d6d02001a83c7ea536f17b7f5ae6965a3f06", 0x58}, {&(0x7f0000002200)="4c57585c77d7fb94d842291993b471ec90eff649f2b8c3ec58c2276a834dddee5f67b71d6406d69871", 0x29}, {&(0x7f0000002240)="0c0c2d967dcc0e69b028967e26eb25505b87a37aef9c3f", 0x17}, {&(0x7f0000002280)="23071a500cd59d75c7c45b797528be6385a8a547d9667ea99e888cf739bd6d5391967311", 0x24}, {&(0x7f00000022c0)="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", 0x1000}], 0x8)
getsockopt$ARPT_SO_GET_INFO(r3, 0x0, 0x60, &(0x7f0000003340)={'filter\x00', 0x0, [0x9, 0x7, 0x4]}, &(0x7f00000033c0)=0x44)
getsockopt$TIPC_IMPORTANCE(r10, 0x10f, 0x7f, &(0x7f0000003400), &(0x7f0000003440)=0x4)
getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r10, 0x84, 0x1c, &(0x7f0000003480), &(0x7f00000034c0)=0x4)
ioctl$AUTOFS_IOC_ASKUMOUNT(r4, 0x80049370, &(0x7f0000003500))

1.150249776s ago: executing program 0 (id=4721):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x9}, &(0x7f0000000140)=0x8)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0x20, &(0x7f0000000180)={@in={{0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3f}}}, 0x3, 0x0, 0x17, 0x0, "5e3b86774ed89ec669fabcaff49c2eeb8c1c0685564614c85bcf859a08695e2f3f309e196a0c67a7768e058e3008931c0870b2780eb77cbbee013423d43101cb8242bc42b8e0662749302c9ffcd1d119"}, 0xd8)
setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000280)={@in={{0x2, 0x4e26, @remote}}, 0x0, 0x0, 0x4e, 0x0, "25366c9c8467783835fb00d492c430c380e2a8b1ce8e820bc98bc75677ccedf1d307f2b62ed8335406ef1f5e68080b2f84c8e86a4487247a35151fbb0a3688cf394bd8d66dfeb454213e2000"}, 0xd8)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)

920.590603ms ago: executing program 1 (id=4724):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000280)={0x0, 0xffffff3a, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, r1, 0x1, 0x70bd2b, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x1}]}, 0x1c}, 0x1, 0x700}, 0x0)

919.75831ms ago: executing program 4 (id=4725):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$sock_buf(r0, 0x1, 0x37, 0x0, &(0x7f0000000040)) (async, rerun: 32)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 32)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x60, 0x2, 0x6, 0x201, 0x0, 0x0, {0x7}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x4004}, 0x0) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000007c0)=ANY=[@ANYBLOB="08010000000901080000000000000000010000060c00048008000140000000080c000480080001400000ffff080005400000001f0900010073797a300000000008000640000000010800064000000000b8000200060003400003000014000180080001000a01010208000200e00000012c00018014000300fe8000000000000000000000000000aa140004000000000000000000000000000000000014000180080001007f00000108000200ac1414340c0002"], 0x108}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'bridge_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f00000001c0)={&(0x7f0000000000), 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@getstats={0x1c, 0x5e, 0x200, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, 0x4}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000)

919.517833ms ago: executing program 3 (id=4726):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})

759.405896ms ago: executing program 1 (id=4727):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000480), r2)
sendmsg$NLBL_MGMT_C_PROTOCOLS(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="210326bd7000ffcbdf2507"], 0x1c}}, 0x880)
syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), r2)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000080)={'wpan4\x00'})
sendmsg$802154_dgram(r1, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000100)="04", 0x1}, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r0, 0x8905, &(0x7f0000000280))
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb010018000000009a82000000240000002400000003000000000000000000000903000000010000000000001200000000000000000000000202000000005f0083408db304980485f547e634c1d4ea14da29abc45b4d4044f2855cc096594c64b3317db8c156ae0b2d0bb3edb9718d3561b10f8469df005fc148286fa776d59fe499a36e083bfc1b"], 0x0, 0x3f}, 0x28)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r4, 0x0)
r5 = socket(0xa, 0x2400000001, 0x0)
getsockopt$inet6_buf(r5, 0x29, 0x10000000000030, &(0x7f0000034000)=""/144, &(0x7f0000e5f000)=0x90)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r6, 0x8b2a, &(0x7f0000000040))

717.788785ms ago: executing program 3 (id=4728):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x1, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@ipv4_delrule={0x30, 0x21, 0x1, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_OIFNAME={0x14, 0x11, 'netdevsim0\x00'}]}, 0x30}}, 0x0)
sendmsg$TIPC_CMD_SHOW_STATS(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x1, 0x70bd27, 0x25dfdbfe}, 0x1c}, 0x1, 0x0, 0x0, 0x20000841}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000140)={<r3=>r1, 0xf5, 0x8000000000000000, 0x81})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r1)
socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r5=>0x0})
syz_emit_ethernet(0x5a, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x4c, 0x67, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0xe, 0x0, 0x0, 0x0, 0x0, {[@md5sig={0x13, 0x12, "c2ad8e98be22f76b333c631c72065771"}, @md5sig={0x13, 0x12, "3e485e6a2fef685077d0813fabcb4246"}]}}}}}}}, 0x0)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r3, &(0x7f0000000440)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x3c, r4, 0x200, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0xce9a, 0x34}}}}, [@NL80211_ATTR_FRAME={0x14, 0x33, @ctrl_frame=@cf_end_cf_ack={{}, {0x3597}, @device_b, @device_b}}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc080}, 0x0)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x38, r6, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xfffff56b}]}]}, 0x38}}, 0x8044)
socket$inet6_mptcp(0xa, 0x1, 0x106) (async)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c) (async)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x1, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@ipv4_delrule={0x30, 0x21, 0x1, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_OIFNAME={0x14, 0x11, 'netdevsim0\x00'}]}, 0x30}}, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_STATS(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x1, 0x70bd27, 0x25dfdbfe}, 0x1c}, 0x1, 0x0, 0x0, 0x20000841}, 0x0) (async)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000140)={r1, 0xf5, 0x8000000000000000, 0x81}) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r1) (async)
socket$kcm(0x29, 0x2, 0x0) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000340)={'wlan1\x00'}) (async)
syz_emit_ethernet(0x5a, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x4c, 0x67, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0xe, 0x0, 0x0, 0x0, 0x0, {[@md5sig={0x13, 0x12, "c2ad8e98be22f76b333c631c72065771"}, @md5sig={0x13, 0x12, "3e485e6a2fef685077d0813fabcb4246"}]}}}}}}}, 0x0) (async)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r3, &(0x7f0000000440)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x3c, r4, 0x200, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0xce9a, 0x34}}}}, [@NL80211_ATTR_FRAME={0x14, 0x33, @ctrl_frame=@cf_end_cf_ack={{}, {0x3597}, @device_b, @device_b}}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc080}, 0x0) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x38, r6, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xfffff56b}]}]}, 0x38}}, 0x8044) (async)

586.679914ms ago: executing program 3 (id=4729):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha256\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg$unix(r1, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000380)=""/67, 0x43}], 0x1}, 0x43000000}], 0x1, 0x40012040, 0x0)

463.413086ms ago: executing program 1 (id=4730):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x44, 0x10, 0x413, 0x0, 0x0, {0x0, 0x0, 0x63}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_OKEY={0x8, 0x5, 0x4}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x44}}, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$sock_int(r1, 0x1, 0x29, &(0x7f0000007100)=0x8, 0x4)
r2 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r3=>0x0})
sendto$packet(r1, &(0x7f0000007080)="31e9200000007ef52f555f76c888", 0xe, 0x24000840, &(0x7f0000000040)={0x11, 0x86dd, r3, 0x1, 0xe2, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x33}}, 0x14)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f00000000c0)=0x401, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)

334.484471ms ago: executing program 3 (id=4731):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000840)={0x34, 0xd, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}, {0x4}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x3, 0x1, 0x1, 0x0, {0xa, 0x4e21, 0x1, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7}}}, 0x3a)
sendmsg$MPTCP_PM_CMD_REMOVE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000400)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x8, 0x9}}}, 0x24}, 0x1, 0x0, 0x0, 0x4080}, 0x4004004)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x20008004)
socket$inet_sctp(0x2, 0x5, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000540)={'veth0_macvtap\x00', <r1=>0x0})
r2 = gettid()
r3 = socket(0x10, 0x803, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c00000010000304f9fffffffe0adf2500007400", @ANYRES32=r1, @ANYBLOB="049c01000750050008001300", @ANYRES32=r2, @ANYBLOB="140003007665"], 0x3c}, 0x1, 0x0, 0x0, 0x4802}, 0x4000)

333.579131ms ago: executing program 1 (id=4732):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_GET_POWER_SAVE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="01002cbd7000ffdbdf253e00000008000300", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x90)

246.024001ms ago: executing program 1 (id=4733):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x48, 0x1411, 0x1, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_STAT_MODE={0x8, 0x4a, 0x1}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8, 0x4a, 0x1}, @RDMA_NLDEV_ATTR_STAT_RES={0x8, 0x4b, 0x13}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x3}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_RES_MRN={0x8, 0x3e, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000140)=@o_path={0x0, 0x0, 0x10, r1}, 0x18)
ioctl$TUNGETFILTER(r0, 0x801054db, &(0x7f0000000140)=""/125)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="1400000010000100005a3e00000000000000000a40000000060a0b0400000000000000000200000014000480100001800b000100656a4217a82c66013b00010073797a30000000000900020073797a3200000000140000001100010000000000000000000000000a3db9bb0394e5cd21f5db29183987f3bc277b0738db4a007a613ed6857ad8b6c265a8e020be856dd83da8c3755512bc150a9c7841a2e5fd4a6a49140b8bcf46923098"], 0x68}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000640)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100d0000000fbdbdf3a2700000018000180140002007665746831"], 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x4008800)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x18, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000fb000000000000000000e500020000000000e500fcff00000000060000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x8}, 0x90)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f00000001c0)={<r6=>0x0, 0x8}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r5, 0x84, 0xa, &(0x7f0000000280)={0x842, 0x9, 0xc, 0x4, 0x8, 0x0, 0x2, 0x7ff, r6}, &(0x7f0000000300)=0x20)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0) (async)
socket$nl_rdma(0x10, 0x3, 0x14) (async)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x48, 0x1411, 0x1, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_STAT_MODE={0x8, 0x4a, 0x1}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8, 0x4a, 0x1}, @RDMA_NLDEV_ATTR_STAT_RES={0x8, 0x4b, 0x13}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x3}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_RES_MRN={0x8, 0x3e, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000800}, 0x0) (async)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000140)=@o_path={0x0, 0x0, 0x10, r1}, 0x18) (async)
ioctl$TUNGETFILTER(r0, 0x801054db, &(0x7f0000000140)=""/125) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="1400000010000100005a3e00000000000000000a40000000060a0b0400000000000000000200000014000480100001800b000100656a4217a82c66013b00010073797a30000000000900020073797a3200000000140000001100010000000000000000000000000a3db9bb0394e5cd21f5db29183987f3bc277b0738db4a007a613ed6857ad8b6c265a8e020be856dd83da8c3755512bc150a9c7841a2e5fd4a6a49140b8bcf46923098"], 0x68}}, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_STRSET_GET(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000640)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100d0000000fbdbdf3a2700000018000180140002007665746831"], 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x4008800) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x18, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000fb000000000000000000e500020000000000e500fcff00000000060000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x8}, 0x90) (async)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f00000001c0)={0x0, 0x8}, &(0x7f0000000240)=0x8) (async)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r5, 0x84, 0xa, &(0x7f0000000280)={0x842, 0x9, 0xc, 0x4, 0x8, 0x0, 0x2, 0x7ff, r6}, &(0x7f0000000300)=0x20) (async)

235.876906ms ago: executing program 0 (id=4734):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x3, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000005000125000000000000000085000000cd96c700950000"], &(0x7f0000000040)='syzkaller\x00', 0x3}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r0, 0xe0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000080)=[0x0], ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x8, 0x8, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xc, &(0x7f0000000140)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000180), &(0x7f00000001c0), 0x8, 0x45, 0x8, 0x8, &(0x7f0000000200)}}, 0x10)
sendmsg$nl_route_sched(r1, &(0x7f0000000480)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)=@newtclass={0x5c, 0x28, 0x20, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0xe, 0xe}, {0x2, 0x8}, {0xe, 0x5}}, [@TCA_RATE={0x6, 0x5, {0x9}}, @TCA_RATE={0x6, 0x5, {0x6, 0xac}}, @TCA_RATE={0x6, 0x5, {0x7f}}, @tclass_kind_options=@c_ingress={0xc}, @tclass_kind_options=@c_clsact={0xb}, @TCA_RATE={0x6, 0x5, {0x5, 0x4}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x24000000)

103.553659ms ago: executing program 0 (id=4735):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="5c0000000a06030000000000000000000000000005000100070000000900020073797a31000000000c00078008000640000007010500050002000000050004000000000016000300686173683a6e65742c706f7274"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, 0x0, 0x1000d, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3c}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r1, 0x8b2a, 0x0)

45.66701ms ago: executing program 3 (id=4736):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x41071, 0xffffffffffffffff, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'nicvf0\x00', 0x2}, 0x18)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r3, 0x1, 0x70bd28, 0x25dfdbf9, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)

0s ago: executing program 1 (id=4737):
socket$netlink(0x10, 0x3, 0x0)
socket(0x23, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000000000009112df000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}})
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r3, 0x89fa, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000040)={@local, @local, 0x20, 0x10}})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r6, &(0x7f0000000000)=@name={0x1e, 0x2, 0x9d3354bba4295a8d, {{0x43}}}, 0x10)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r7 = socket$nl_audit(0x10, 0x3, 0x9)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r7, 0x10e, 0x1, &(0x7f0000000040)=0x1, 0x4)
clock_gettime(0xfffffffffffffffc, &(0x7f0000003a40))
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000880)={0x28, r0, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r2}, @val={0xc}}}}, 0x28}}, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000140)=@generic={&(0x7f0000000100)='./file0\x00', 0x0, 0x8}, 0x18)
r8 = socket(0x2, 0x2, 0x0)
r9 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x7d, 0x8, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000740)={r9, &(0x7f0000000340), &(0x7f0000000200)=@tcp6=r8}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r9}, &(0x7f0000000140), &(0x7f0000000180)=r8}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001d80)={r9, &(0x7f0000001d00), &(0x7f0000001d40)=@tcp6=r8}, 0x20)
sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x20000011}, 0x8855)
r10 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=@getstats={0x1c, 0x5e, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5a34}}, 0x1c}}, 0x0)
r11 = socket(0x10, 0x803, 0x0)
sendto(r11, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r11, &(0x7f0000000340)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000780)=""/227, 0xe3}, {&(0x7f0000001a40)=""/217, 0xd9}, {&(0x7f0000003500)=""/4096, 0x1000}, {&(0x7f0000000280)=""/172, 0xac}, {&(0x7f0000000680)=""/134, 0x86}, {&(0x7f0000002c40)=""/146, 0x92}, {&(0x7f0000002d00)=""/128, 0x80}, {&(0x7f0000000000)=""/260, 0x104}, {&(0x7f0000000140)=""/88, 0x58}], 0x9}, 0xe}, {{0x0, 0x0, 0x0}, 0xa}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, 0x0}, 0xffffffff}, {{0x0, 0x0, 0x0}, 0xfffffffe}, {{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}}], 0x400022e, 0x40000100, 0x0)

kernel console output (not intermixed with test programs):

5
[  356.528347][T17352] 8021q: adding VLAN 0 to HW filter on device bond5
[  356.536359][T17352] bond5: (slave vxcan5): The slave device specified does not support setting the MAC address
[  356.552144][T17352] bond5: (slave vxcan5): Error -95 calling set_mac_address
[  356.567049][T17350] 8021q: VLANs not supported on ip6tnl0
[  356.604404][T17357] veth17: entered promiscuous mode
[  356.636266][T17371] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  356.655978][T17371] syzkaller0: entered promiscuous mode
[  356.672878][T17371] syzkaller0: entered allmulticast mode
[  356.691983][T17371] tipc: Resetting bearer <eth:syzkaller0>
[  356.711471][T17370] tipc: Resetting bearer <eth:syzkaller0>
[  356.756451][T17379] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3961'.
[  356.767481][T17370] tipc: Disabling bearer <eth:syzkaller0>
[  356.775442][T17376] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3960'.
[  356.797225][T17380] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3962'.
[  356.889544][T17384] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  356.901173][T17384] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3964'.
[  356.931905][T17390] FAULT_INJECTION: forcing a failure.
[  356.931905][T17390] name failslab, interval 1, probability 0, space 0, times 0
[  356.959452][T17390] CPU: 1 UID: 0 PID: 17390 Comm: syz.0.3966 Not tainted syzkaller #0 PREEMPT(full) 
[  356.959479][T17390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  356.959490][T17390] Call Trace:
[  356.959498][T17390]  <TASK>
[  356.959506][T17390]  dump_stack_lvl+0x189/0x250
[  356.959531][T17390]  ? __pfx____ratelimit+0x10/0x10
[  356.959554][T17390]  ? __pfx_dump_stack_lvl+0x10/0x10
[  356.959574][T17390]  ? __pfx__printk+0x10/0x10
[  356.959602][T17390]  ? __pfx___might_resched+0x10/0x10
[  356.959625][T17390]  should_fail_ex+0x414/0x560
[  356.959652][T17390]  should_failslab+0xa8/0x100
[  356.959677][T17390]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  356.959701][T17390]  ? __alloc_skb+0x112/0x2d0
[  356.959723][T17390]  __alloc_skb+0x112/0x2d0
[  356.959745][T17390]  netlink_sendmsg+0x5c6/0xb30
[  356.959772][T17390]  ? __pfx_netlink_sendmsg+0x10/0x10
[  356.959792][T17390]  ? aa_sock_msg_perm+0xf1/0x1d0
[  356.959812][T17390]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  356.959830][T17390]  ? __pfx_netlink_sendmsg+0x10/0x10
[  356.959848][T17390]  __sock_sendmsg+0x21c/0x270
[  356.959874][T17390]  ____sys_sendmsg+0x505/0x830
[  356.959899][T17390]  ? __pfx_____sys_sendmsg+0x10/0x10
[  356.959927][T17390]  ? import_iovec+0x74/0xa0
[  356.959951][T17390]  ___sys_sendmsg+0x21f/0x2a0
[  356.959972][T17390]  ? __pfx____sys_sendmsg+0x10/0x10
[  356.960026][T17390]  ? __fget_files+0x2a/0x420
[  356.960041][T17390]  ? __fget_files+0x3a0/0x420
[  356.960074][T17390]  __x64_sys_sendmsg+0x19b/0x260
[  356.960096][T17390]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  356.960125][T17390]  ? __pfx_ksys_write+0x10/0x10
[  356.960145][T17390]  ? rcu_is_watching+0x15/0xb0
[  356.960168][T17390]  ? do_syscall_64+0xbe/0x3b0
[  356.960189][T17390]  do_syscall_64+0xfa/0x3b0
[  356.960204][T17390]  ? lockdep_hardirqs_on+0x9c/0x150
[  356.960226][T17390]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.960244][T17390]  ? clear_bhb_loop+0x60/0xb0
[  356.960265][T17390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.960281][T17390] RIP: 0033:0x7f382738eba9
[  356.960297][T17390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.960311][T17390] RSP: 002b:00007f38281a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  356.960330][T17390] RAX: ffffffffffffffda RBX: 00007f38275d5fa0 RCX: 00007f382738eba9
[  356.960344][T17390] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000003
[  356.960356][T17390] RBP: 00007f38281a4090 R08: 0000000000000000 R09: 0000000000000000
[  356.960368][T17390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  356.960379][T17390] R13: 00007f38275d6038 R14: 00007f38275d5fa0 R15: 00007ffd52298fd8
[  356.960408][T17390]  </TASK>
[  357.262446][T17395] FAULT_INJECTION: forcing a failure.
[  357.262446][T17395] name failslab, interval 1, probability 0, space 0, times 0
[  357.317087][T17395] CPU: 0 UID: 0 PID: 17395 Comm: syz.1.3970 Not tainted syzkaller #0 PREEMPT(full) 
[  357.317114][T17395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  357.317125][T17395] Call Trace:
[  357.317133][T17395]  <TASK>
[  357.317141][T17395]  dump_stack_lvl+0x189/0x250
[  357.317168][T17395]  ? __pfx____ratelimit+0x10/0x10
[  357.317192][T17395]  ? __pfx_dump_stack_lvl+0x10/0x10
[  357.317212][T17395]  ? __pfx__printk+0x10/0x10
[  357.317240][T17395]  ? __pfx___might_resched+0x10/0x10
[  357.317257][T17395]  ? fs_reclaim_acquire+0x7d/0x100
[  357.317285][T17395]  should_fail_ex+0x414/0x560
[  357.317334][T17395]  should_failslab+0xa8/0x100
[  357.317359][T17395]  __kmalloc_noprof+0xcb/0x4f0
[  357.317379][T17395]  ? kfree+0x4d/0x440
[  357.317396][T17395]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  357.317419][T17395]  tomoyo_realpath_from_path+0xe3/0x5d0
[  357.317440][T17395]  ? tomoyo_domain+0xd9/0x130
[  357.317464][T17395]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  357.317487][T17395]  tomoyo_path_number_perm+0x1e8/0x5a0
[  357.317513][T17395]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  357.317552][T17395]  ? __lock_acquire+0xab9/0xd20
[  357.317596][T17395]  ? __fget_files+0x2a/0x420
[  357.317615][T17395]  ? __fget_files+0x2a/0x420
[  357.317630][T17395]  ? __fget_files+0x3a0/0x420
[  357.317645][T17395]  ? __fget_files+0x2a/0x420
[  357.317665][T17395]  security_file_ioctl+0xcb/0x2d0
[  357.317689][T17395]  __se_sys_ioctl+0x47/0x170
[  357.317712][T17395]  do_syscall_64+0xfa/0x3b0
[  357.317728][T17395]  ? lockdep_hardirqs_on+0x9c/0x150
[  357.317751][T17395]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.317768][T17395]  ? clear_bhb_loop+0x60/0xb0
[  357.317789][T17395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.317806][T17395] RIP: 0033:0x7f5b0a18e7ab
[  357.317822][T17395] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  357.317837][T17395] RSP: 002b:00007f5b0b0a4e10 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  357.317856][T17395] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f5b0a18e7ab
[  357.317869][T17395] RDX: 00007f5b0b0a4e70 RSI: 0000000000008933 RDI: 0000000000000005
[  357.317881][T17395] RBP: 00007f5b0b0a4e70 R08: 000000000000000a R09: 0000000000000000
[  357.317893][T17395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000024
[  357.317903][T17395] R13: 00007f5b0b0a4fa0 R14: 00007f5b0b0a4fa0 R15: 0000200000000080
[  357.317934][T17395]  </TASK>
[  357.317942][T17395] ERROR: Out of memory at tomoyo_realpath_from_path.
[  357.484422][T17386] lo speed is unknown, defaulting to 1000
[  357.582523][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  357.613200][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  357.624099][T17399] netlink: 'syz.5.3973': attribute type 1 has an invalid length.
[  357.625201][T17401] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3971'.
[  357.639557][T17395] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  357.642584][T17403] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  357.717984][T17399] 8021q: adding VLAN 0 to HW filter on device bond6
[  357.734381][T17409] FAULT_INJECTION: forcing a failure.
[  357.734381][T17409] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  357.748725][T17409] CPU: 1 UID: 0 PID: 17409 Comm: syz.0.3974 Not tainted syzkaller #0 PREEMPT(full) 
[  357.748749][T17409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  357.748761][T17409] Call Trace:
[  357.748769][T17409]  <TASK>
[  357.748777][T17409]  dump_stack_lvl+0x189/0x250
[  357.748802][T17409]  ? __pfx____ratelimit+0x10/0x10
[  357.748825][T17409]  ? __pfx_dump_stack_lvl+0x10/0x10
[  357.748845][T17409]  ? __pfx__printk+0x10/0x10
[  357.748867][T17409]  ? __might_fault+0xb0/0x130
[  357.748906][T17409]  should_fail_ex+0x414/0x560
[  357.748930][T17409]  _copy_from_user+0x2d/0xb0
[  357.748951][T17409]  ___sys_sendmsg+0x158/0x2a0
[  357.748973][T17409]  ? __pfx____sys_sendmsg+0x10/0x10
[  357.749029][T17409]  ? __fget_files+0x2a/0x420
[  357.749042][T17409]  ? __fget_files+0x3a0/0x420
[  357.749066][T17409]  __x64_sys_sendmsg+0x19b/0x260
[  357.749086][T17409]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  357.749112][T17409]  ? __pfx_ksys_write+0x10/0x10
[  357.749130][T17409]  ? rcu_is_watching+0x15/0xb0
[  357.749151][T17409]  ? do_syscall_64+0xbe/0x3b0
[  357.749171][T17409]  do_syscall_64+0xfa/0x3b0
[  357.749187][T17409]  ? lockdep_hardirqs_on+0x9c/0x150
[  357.749209][T17409]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.749227][T17409]  ? clear_bhb_loop+0x60/0xb0
[  357.749255][T17409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.749272][T17409] RIP: 0033:0x7f382738eba9
[  357.749289][T17409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  357.749304][T17409] RSP: 002b:00007f38281a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  357.749324][T17409] RAX: ffffffffffffffda RBX: 00007f38275d5fa0 RCX: 00007f382738eba9
[  357.749338][T17409] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  357.749350][T17409] RBP: 00007f38281a4090 R08: 0000000000000000 R09: 0000000000000000
[  357.749362][T17409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  357.749373][T17409] R13: 00007f38275d6038 R14: 00007f38275d5fa0 R15: 00007ffd52298fd8
[  357.749403][T17409]  </TASK>
[  358.035028][T17405] 8021q: adding VLAN 0 to HW filter on device bond6
[  358.042348][T17405] bond6: (slave vxcan5): The slave device specified does not support setting the MAC address
[  358.055585][T17405] bond6: (slave vxcan5): Error -95 calling set_mac_address
[  358.121382][T17399] veth19: entered promiscuous mode
[  358.131394][T17399] bond6: (slave veth19): Enslaving as an active interface with a down link
[  358.258642][T17416] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3976'.
[  358.287679][T17418] netlink: 'syz.3.3977': attribute type 16 has an invalid length.
[  358.945713][T17453] netlink: 'syz.3.3988': attribute type 1 has an invalid length.
[  359.008027][T17458] netlink: 'syz.1.3990': attribute type 16 has an invalid length.
[  359.019863][T17456] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3989'.
[  359.024514][T17453] 8021q: adding VLAN 0 to HW filter on device bond18
[  359.138973][T17459] 8021q: adding VLAN 0 to HW filter on device bond18
[  359.161499][T17459] bond18: (slave vxcan1): The slave device specified does not support setting the MAC address
[  359.176494][T17459] bond18: (slave vxcan1): Error -95 calling set_mac_address
[  359.293318][T17453] veth47: entered promiscuous mode
[  359.308553][T17453] bond18: (slave veth47): Enslaving as an active interface with a down link
[  359.434097][T17469] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3994'.
[  359.504902][T17473] FAULT_INJECTION: forcing a failure.
[  359.504902][T17473] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.530017][T17473] CPU: 1 UID: 0 PID: 17473 Comm: syz.0.3995 Not tainted syzkaller #0 PREEMPT(full) 
[  359.530042][T17473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  359.530053][T17473] Call Trace:
[  359.530062][T17473]  <TASK>
[  359.530070][T17473]  dump_stack_lvl+0x189/0x250
[  359.530095][T17473]  ? __pfx____ratelimit+0x10/0x10
[  359.530119][T17473]  ? __pfx_dump_stack_lvl+0x10/0x10
[  359.530139][T17473]  ? __pfx__printk+0x10/0x10
[  359.530161][T17473]  ? __might_fault+0xb0/0x130
[  359.530195][T17473]  should_fail_ex+0x414/0x560
[  359.530223][T17473]  _copy_from_user+0x2d/0xb0
[  359.530244][T17473]  ax25_ioctl+0x92c/0xca0
[  359.530270][T17473]  ? __pfx_ax25_ioctl+0x10/0x10
[  359.530291][T17473]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  359.530315][T17473]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  359.530340][T17473]  ? do_vfs_ioctl+0xbe8/0x1430
[  359.530363][T17473]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  359.530391][T17473]  sock_do_ioctl+0xd9/0x300
[  359.530416][T17473]  ? __pfx_sock_do_ioctl+0x10/0x10
[  359.530434][T17473]  ? __lock_acquire+0xab9/0xd20
[  359.530474][T17473]  sock_ioctl+0x576/0x790
[  359.530498][T17473]  ? __pfx_sock_ioctl+0x10/0x10
[  359.530519][T17473]  ? __fget_files+0x2a/0x420
[  359.530534][T17473]  ? __fget_files+0x3a0/0x420
[  359.530548][T17473]  ? __fget_files+0x2a/0x420
[  359.530567][T17473]  ? bpf_lsm_file_ioctl+0x9/0x20
[  359.530586][T17473]  ? __pfx_sock_ioctl+0x10/0x10
[  359.530604][T17473]  __se_sys_ioctl+0xfc/0x170
[  359.530624][T17473]  do_syscall_64+0xfa/0x3b0
[  359.530638][T17473]  ? lockdep_hardirqs_on+0x9c/0x150
[  359.530658][T17473]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.530673][T17473]  ? clear_bhb_loop+0x60/0xb0
[  359.530692][T17473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.530706][T17473] RIP: 0033:0x7f382738eba9
[  359.530722][T17473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.530736][T17473] RSP: 002b:00007f38281a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  359.530753][T17473] RAX: ffffffffffffffda RBX: 00007f38275d5fa0 RCX: 00007f382738eba9
[  359.530767][T17473] RDX: 0000200000000180 RSI: 00000000000089ea RDI: 0000000000000004
[  359.530778][T17473] RBP: 00007f38281a4090 R08: 0000000000000000 R09: 0000000000000000
[  359.530789][T17473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.530800][T17473] R13: 00007f38275d6038 R14: 00007f38275d5fa0 R15: 00007ffd52298fd8
[  359.530836][T17473]  </TASK>
[  359.876136][T17477] ip6gre1: entered allmulticast mode
[  359.967366][T17485] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4001'.
[  360.024100][T17490] netlink: 'syz.5.4003': attribute type 1 has an invalid length.
[  360.084249][T17490] 8021q: adding VLAN 0 to HW filter on device bond7
[  360.120316][T17496] 8021q: adding VLAN 0 to HW filter on device bond7
[  360.133731][T17496] bond7: (slave vxcan5): The slave device specified does not support setting the MAC address
[  360.147018][T17496] bond7: (slave vxcan5): Error -95 calling set_mac_address
[  360.173480][T17499] Bluetooth: MGMT ver 1.23
[  360.243744][T17506] netlink: zone id is out of range
[  360.250023][T17506] netlink: get zone limit has 8 unknown bytes
[  360.287952][T17490] veth21: entered promiscuous mode
[  360.306072][T17490] bond7: (slave veth21): Enslaving as an active interface with a down link
[  360.436674][T17516] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  360.593983][T17520] netlink: 'syz.1.4015': attribute type 10 has an invalid length.
[  360.607519][T17520] team0: Device lo is loopback device. Loopback devices can't be added as a team port
[  360.623513][T17520] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  360.723013][T17508] lo speed is unknown, defaulting to 1000
[  361.044688][T17536] __nla_validate_parse: 4 callbacks suppressed
[  361.044706][T17536] netlink: 516 bytes leftover after parsing attributes in process `syz.3.4020'.
[  361.094774][T17539] netlink: 'syz.1.4023': attribute type 1 has an invalid length.
[  361.247995][T17547] netlink: 'syz.4.4025': attribute type 1 has an invalid length.
[  361.371416][T17545] veth63: entered promiscuous mode
[  361.448499][T17547] 8021q: adding VLAN 0 to HW filter on device bond16
[  361.500442][T17539] 8021q: adding VLAN 0 to HW filter on device bond20
[  361.568519][T17550] 8021q: adding VLAN 0 to HW filter on device bond16
[  361.579666][T17550] bond16: (slave vxcan3): The slave device specified does not support setting the MAC address
[  361.609237][T17550] bond16: (slave vxcan3): Error -95 calling set_mac_address
[  361.683123][T17553] veth49: entered promiscuous mode
[  361.697396][T17553] bond16: (slave veth49): Enslaving as an active interface with a down link
[  361.873946][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  361.883329][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  361.888873][T17579] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  362.180225][T17587] netlink: 'syz.4.4038': attribute type 1 has an invalid length.
[  362.345423][T17587] 8021q: adding VLAN 0 to HW filter on device bond17
[  362.363501][T17593] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4038'.
[  362.392597][T17589] 8021q: adding VLAN 0 to HW filter on device bond17
[  362.400323][T17589] bond17: (slave vxcan3): The slave device specified does not support setting the MAC address
[  362.411993][T17589] bond17: (slave vxcan3): Error -95 calling set_mac_address
[  362.435616][T17590] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  362.467069][T17591] veth51: entered promiscuous mode
[  362.471950][T17596] FAULT_INJECTION: forcing a failure.
[  362.471950][T17596] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  362.483482][T17591] bond17: (slave veth51): Enslaving as an active interface with a down link
[  362.487815][T17596] CPU: 0 UID: 0 PID: 17596 Comm: syz.3.4039 Not tainted syzkaller #0 PREEMPT(full) 
[  362.487839][T17596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  362.487851][T17596] Call Trace:
[  362.487859][T17596]  <TASK>
[  362.487867][T17596]  dump_stack_lvl+0x189/0x250
[  362.487892][T17596]  ? __pfx____ratelimit+0x10/0x10
[  362.487916][T17596]  ? __pfx_dump_stack_lvl+0x10/0x10
[  362.487936][T17596]  ? __pfx__printk+0x10/0x10
[  362.487958][T17596]  ? __might_fault+0xb0/0x130
[  362.487990][T17596]  should_fail_ex+0x414/0x560
[  362.488017][T17596]  _copy_from_iter+0x1de/0x1790
[  362.488042][T17596]  ? rcu_is_watching+0x15/0xb0
[  362.488061][T17596]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  362.488083][T17596]  ? __pfx__copy_from_iter+0x10/0x10
[  362.488103][T17596]  ? __build_skb_around+0x257/0x3e0
[  362.488124][T17596]  ? netlink_sendmsg+0x642/0xb30
[  362.488138][T17596]  ? skb_put+0x11b/0x210
[  362.488155][T17596]  netlink_sendmsg+0x6b2/0xb30
[  362.488180][T17596]  ? __pfx_netlink_sendmsg+0x10/0x10
[  362.488200][T17596]  ? aa_sock_msg_perm+0xf1/0x1d0
[  362.488226][T17596]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  362.488244][T17596]  ? __pfx_netlink_sendmsg+0x10/0x10
[  362.488260][T17596]  __sock_sendmsg+0x21c/0x270
[  362.488284][T17596]  ____sys_sendmsg+0x505/0x830
[  362.488309][T17596]  ? __pfx_____sys_sendmsg+0x10/0x10
[  362.488336][T17596]  ? import_iovec+0x74/0xa0
[  362.488358][T17596]  ___sys_sendmsg+0x21f/0x2a0
[  362.488378][T17596]  ? __pfx____sys_sendmsg+0x10/0x10
[  362.488431][T17596]  ? __fget_files+0x2a/0x420
[  362.488445][T17596]  ? __fget_files+0x3a0/0x420
[  362.488470][T17596]  __x64_sys_sendmsg+0x19b/0x260
[  362.488491][T17596]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  362.488519][T17596]  ? __pfx_ksys_write+0x10/0x10
[  362.488538][T17596]  ? rcu_is_watching+0x15/0xb0
[  362.488559][T17596]  ? do_syscall_64+0xbe/0x3b0
[  362.488579][T17596]  do_syscall_64+0xfa/0x3b0
[  362.488594][T17596]  ? lockdep_hardirqs_on+0x9c/0x150
[  362.488616][T17596]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.488632][T17596]  ? clear_bhb_loop+0x60/0xb0
[  362.488653][T17596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.488668][T17596] RIP: 0033:0x7fadb9f8eba9
[  362.488684][T17596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.488698][T17596] RSP: 002b:00007fadbadbe038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  362.488717][T17596] RAX: ffffffffffffffda RBX: 00007fadba1d5fa0 RCX: 00007fadb9f8eba9
[  362.488729][T17596] RDX: 00000000040408c4 RSI: 0000200000000040 RDI: 0000000000000003
[  362.488741][T17596] RBP: 00007fadbadbe090 R08: 0000000000000000 R09: 0000000000000000
[  362.488760][T17596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  362.488771][T17596] R13: 00007fadba1d6038 R14: 00007fadba1d5fa0 R15: 00007ffc69023768
[  362.488799][T17596]  </TASK>
[  362.778563][T17592] syzkaller0: entered promiscuous mode
[  362.784155][T17592] syzkaller0: entered allmulticast mode
[  362.801496][T17597] tipc: Resetting bearer <eth:syzkaller0>
[  362.816928][T17584] tipc: Resetting bearer <eth:syzkaller0>
[  362.837874][T17584] tipc: Disabling bearer <eth:syzkaller0>
[  362.988611][T17608] FAULT_INJECTION: forcing a failure.
[  362.988611][T17608] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.006152][T17612] netlink: 'syz.5.4044': attribute type 2 has an invalid length.
[  363.034204][T17608] CPU: 0 UID: 0 PID: 17608 Comm: syz.3.4043 Not tainted syzkaller #0 PREEMPT(full) 
[  363.034229][T17608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  363.034240][T17608] Call Trace:
[  363.034249][T17608]  <TASK>
[  363.034258][T17608]  dump_stack_lvl+0x189/0x250
[  363.034283][T17608]  ? __pfx____ratelimit+0x10/0x10
[  363.034307][T17608]  ? __pfx_dump_stack_lvl+0x10/0x10
[  363.034333][T17608]  ? __pfx__printk+0x10/0x10
[  363.034355][T17608]  ? __might_fault+0xb0/0x130
[  363.034389][T17608]  should_fail_ex+0x414/0x560
[  363.034416][T17608]  _copy_from_iter+0x1de/0x1790
[  363.034442][T17608]  ? rcu_is_watching+0x15/0xb0
[  363.034460][T17608]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  363.034484][T17608]  ? __pfx__copy_from_iter+0x10/0x10
[  363.034503][T17608]  ? __build_skb_around+0x257/0x3e0
[  363.034525][T17608]  ? netlink_sendmsg+0x642/0xb30
[  363.034540][T17608]  ? skb_put+0x11b/0x210
[  363.034562][T17608]  netlink_sendmsg+0x6b2/0xb30
[  363.034588][T17608]  ? __pfx_netlink_sendmsg+0x10/0x10
[  363.034608][T17608]  ? aa_sock_msg_perm+0xf1/0x1d0
[  363.034627][T17608]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  363.034651][T17608]  ? __pfx_netlink_sendmsg+0x10/0x10
[  363.034669][T17608]  __sock_sendmsg+0x21c/0x270
[  363.034694][T17608]  ____sys_sendmsg+0x505/0x830
[  363.034720][T17608]  ? __pfx_____sys_sendmsg+0x10/0x10
[  363.034749][T17608]  ? import_iovec+0x74/0xa0
[  363.034772][T17608]  ___sys_sendmsg+0x21f/0x2a0
[  363.034794][T17608]  ? __pfx____sys_sendmsg+0x10/0x10
[  363.034851][T17608]  ? __fget_files+0x2a/0x420
[  363.034867][T17608]  ? __fget_files+0x3a0/0x420
[  363.034894][T17608]  __x64_sys_sendmsg+0x19b/0x260
[  363.034916][T17608]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  363.034945][T17608]  ? __pfx_ksys_write+0x10/0x10
[  363.034965][T17608]  ? rcu_is_watching+0x15/0xb0
[  363.034987][T17608]  ? do_syscall_64+0xbe/0x3b0
[  363.035008][T17608]  do_syscall_64+0xfa/0x3b0
[  363.035023][T17608]  ? lockdep_hardirqs_on+0x9c/0x150
[  363.035044][T17608]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.035061][T17608]  ? clear_bhb_loop+0x60/0xb0
[  363.035082][T17608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.035099][T17608] RIP: 0033:0x7fadb9f8eba9
[  363.035116][T17608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.035131][T17608] RSP: 002b:00007fadbadbe038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  363.035150][T17608] RAX: ffffffffffffffda RBX: 00007fadba1d5fa0 RCX: 00007fadb9f8eba9
[  363.035163][T17608] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  363.035175][T17608] RBP: 00007fadbadbe090 R08: 0000000000000000 R09: 0000000000000000
[  363.035186][T17608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.035197][T17608] R13: 00007fadba1d6038 R14: 00007fadba1d5fa0 R15: 00007ffc69023768
[  363.035226][T17608]  </TASK>
[  363.375205][T17614] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  363.508382][T17626] FAULT_INJECTION: forcing a failure.
[  363.508382][T17626] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.526686][T17626] CPU: 0 UID: 0 PID: 17626 Comm: syz.5.4049 Not tainted syzkaller #0 PREEMPT(full) 
[  363.526709][T17626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  363.526719][T17626] Call Trace:
[  363.526726][T17626]  <TASK>
[  363.526735][T17626]  dump_stack_lvl+0x189/0x250
[  363.526768][T17626]  ? __pfx____ratelimit+0x10/0x10
[  363.526790][T17626]  ? __pfx_dump_stack_lvl+0x10/0x10
[  363.526809][T17626]  ? __pfx__printk+0x10/0x10
[  363.526841][T17626]  should_fail_ex+0x414/0x560
[  363.526864][T17626]  _copy_to_user+0x31/0xb0
[  363.526885][T17626]  simple_read_from_buffer+0xe1/0x170
[  363.526911][T17626]  proc_fail_nth_read+0x1b3/0x220
[  363.526932][T17626]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.526953][T17628] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4048'.
[  363.526952][T17626]  ? rw_verify_area+0x2a6/0x4d0
[  363.526972][T17626]  ? __lock_acquire+0xab9/0xd20
[  363.526990][T17626]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.527010][T17626]  vfs_read+0x200/0xa30
[  363.527029][T17626]  ? fdget_pos+0x247/0x320
[  363.527047][T17626]  ? __pfx___mutex_lock+0x10/0x10
[  363.527064][T17626]  ? __pfx_vfs_read+0x10/0x10
[  363.527081][T17626]  ? __fget_files+0x2a/0x420
[  363.527096][T17626]  ? __fget_files+0x3a0/0x420
[  363.527107][T17626]  ? __fget_files+0x2a/0x420
[  363.527126][T17626]  ksys_read+0x145/0x250
[  363.527141][T17626]  ? __fget_files+0x3a0/0x420
[  363.527155][T17626]  ? __pfx_ksys_read+0x10/0x10
[  363.527176][T17626]  ? do_syscall_64+0xbe/0x3b0
[  363.527192][T17626]  do_syscall_64+0xfa/0x3b0
[  363.527205][T17626]  ? lockdep_hardirqs_on+0x9c/0x150
[  363.527225][T17626]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.527242][T17626]  ? clear_bhb_loop+0x60/0xb0
[  363.527263][T17626]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.527279][T17626] RIP: 0033:0x7efda558d5bc
[  363.527296][T17626] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  363.527309][T17626] RSP: 002b:00007efda37f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  363.527328][T17626] RAX: ffffffffffffffda RBX: 00007efda57d5fa0 RCX: 00007efda558d5bc
[  363.527341][T17626] RDX: 000000000000000f RSI: 00007efda37f60a0 RDI: 0000000000000003
[  363.527361][T17626] RBP: 00007efda37f6090 R08: 0000000000000000 R09: 0000000000000000
[  363.527372][T17626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.527382][T17626] R13: 00007efda57d6038 R14: 00007efda57d5fa0 R15: 00007ffd6c891168
[  363.527411][T17626]  </TASK>
[  363.708613][T17634] netlink: 'syz.3.4051': attribute type 1 has an invalid length.
[  363.897000][T17631] veth49: entered promiscuous mode
[  363.906434][T17634] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4051'.
[  364.026802][T17651] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4058'.
[  364.121014][T17656] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  364.338511][T17655] tipc: Disabling bearer <eth:syzkaller0>
[  364.410382][T17667] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4062'.
[  364.419779][T17667] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4062'.
[  364.592380][T17648] lo speed is unknown, defaulting to 1000
[  364.606661][T17676] netlink: 'syz.4.4066': attribute type 6 has an invalid length.
[  364.735243][T17681] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4069'.
[  364.870309][T17690] netlink: 'syz.1.4073': attribute type 33 has an invalid length.
[  364.881142][T17685] syzkaller0: entered promiscuous mode
[  364.886636][T17685] syzkaller0: entered allmulticast mode
[  364.975494][T17692] FAULT_INJECTION: forcing a failure.
[  364.975494][T17692] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  365.012755][T17692] CPU: 0 UID: 0 PID: 17692 Comm: syz.0.4074 Not tainted syzkaller #0 PREEMPT(full) 
[  365.012780][T17692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  365.012794][T17692] Call Trace:
[  365.012801][T17692]  <TASK>
[  365.012809][T17692]  dump_stack_lvl+0x189/0x250
[  365.012832][T17692]  ? __pfx____ratelimit+0x10/0x10
[  365.012854][T17692]  ? __pfx_dump_stack_lvl+0x10/0x10
[  365.012873][T17692]  ? __pfx__printk+0x10/0x10
[  365.012894][T17692]  ? __might_fault+0xb0/0x130
[  365.012926][T17692]  should_fail_ex+0x414/0x560
[  365.012952][T17692]  _copy_from_iter+0x1de/0x1790
[  365.012976][T17692]  ? rcu_is_watching+0x15/0xb0
[  365.012995][T17692]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  365.013017][T17692]  ? __pfx__copy_from_iter+0x10/0x10
[  365.013036][T17692]  ? __build_skb_around+0x257/0x3e0
[  365.013056][T17692]  ? netlink_sendmsg+0x642/0xb30
[  365.013070][T17692]  ? skb_put+0x11b/0x210
[  365.013089][T17692]  netlink_sendmsg+0x6b2/0xb30
[  365.013115][T17692]  ? __pfx_netlink_sendmsg+0x10/0x10
[  365.013135][T17692]  ? aa_sock_msg_perm+0xf1/0x1d0
[  365.013153][T17692]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  365.013169][T17692]  ? __pfx_netlink_sendmsg+0x10/0x10
[  365.013186][T17692]  __sock_sendmsg+0x21c/0x270
[  365.013210][T17692]  ____sys_sendmsg+0x505/0x830
[  365.013233][T17692]  ? __pfx_____sys_sendmsg+0x10/0x10
[  365.013258][T17692]  ? import_iovec+0x74/0xa0
[  365.013280][T17692]  ___sys_sendmsg+0x21f/0x2a0
[  365.013299][T17692]  ? __pfx____sys_sendmsg+0x10/0x10
[  365.013353][T17692]  ? __fget_files+0x2a/0x420
[  365.013367][T17692]  ? __fget_files+0x3a0/0x420
[  365.013394][T17692]  __x64_sys_sendmsg+0x19b/0x260
[  365.013415][T17692]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  365.013443][T17692]  ? __pfx_ksys_write+0x10/0x10
[  365.013461][T17692]  ? rcu_is_watching+0x15/0xb0
[  365.013490][T17692]  ? do_syscall_64+0xbe/0x3b0
[  365.013510][T17692]  do_syscall_64+0xfa/0x3b0
[  365.013525][T17692]  ? lockdep_hardirqs_on+0x9c/0x150
[  365.013547][T17692]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.013563][T17692]  ? clear_bhb_loop+0x60/0xb0
[  365.013583][T17692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.013605][T17692] RIP: 0033:0x7f382738eba9
[  365.013622][T17692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.013635][T17692] RSP: 002b:00007f38281a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  365.013655][T17692] RAX: ffffffffffffffda RBX: 00007f38275d5fa0 RCX: 00007f382738eba9
[  365.013668][T17692] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000003
[  365.013680][T17692] RBP: 00007f38281a4090 R08: 0000000000000000 R09: 0000000000000000
[  365.013692][T17692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  365.013703][T17692] R13: 00007f38275d6038 R14: 00007f38275d5fa0 R15: 00007ffd52298fd8
[  365.013732][T17692]  </TASK>
[  365.498518][T17710] FAULT_INJECTION: forcing a failure.
[  365.498518][T17710] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  365.512185][T17710] CPU: 0 UID: 0 PID: 17710 Comm: syz.4.4082 Not tainted syzkaller #0 PREEMPT(full) 
[  365.512211][T17710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  365.512222][T17710] Call Trace:
[  365.512230][T17710]  <TASK>
[  365.512238][T17710]  dump_stack_lvl+0x189/0x250
[  365.512262][T17710]  ? __pfx____ratelimit+0x10/0x10
[  365.512285][T17710]  ? __pfx_dump_stack_lvl+0x10/0x10
[  365.512305][T17710]  ? __pfx__printk+0x10/0x10
[  365.512337][T17710]  ? __might_fault+0xb0/0x130
[  365.512369][T17710]  should_fail_ex+0x414/0x560
[  365.512396][T17710]  _copy_from_iter+0x1de/0x1790
[  365.512420][T17710]  ? rcu_is_watching+0x15/0xb0
[  365.512439][T17710]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  365.512463][T17710]  ? __pfx__copy_from_iter+0x10/0x10
[  365.512490][T17710]  ? __build_skb_around+0x257/0x3e0
[  365.512511][T17710]  ? netlink_sendmsg+0x642/0xb30
[  365.512527][T17710]  ? skb_put+0x11b/0x210
[  365.512548][T17710]  netlink_sendmsg+0x6b2/0xb30
[  365.512572][T17710]  ? __pfx_netlink_sendmsg+0x10/0x10
[  365.512591][T17710]  ? aa_sock_msg_perm+0xf1/0x1d0
[  365.512611][T17710]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  365.512629][T17710]  ? __pfx_netlink_sendmsg+0x10/0x10
[  365.512647][T17710]  __sock_sendmsg+0x21c/0x270
[  365.512673][T17710]  ____sys_sendmsg+0x505/0x830
[  365.512698][T17710]  ? __pfx_____sys_sendmsg+0x10/0x10
[  365.512727][T17710]  ? import_iovec+0x74/0xa0
[  365.512750][T17710]  ___sys_sendmsg+0x21f/0x2a0
[  365.512772][T17710]  ? __pfx____sys_sendmsg+0x10/0x10
[  365.512828][T17710]  ? __fget_files+0x2a/0x420
[  365.512843][T17710]  ? __fget_files+0x3a0/0x420
[  365.512870][T17710]  __x64_sys_sendmsg+0x19b/0x260
[  365.512892][T17710]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  365.512921][T17710]  ? __pfx_ksys_write+0x10/0x10
[  365.512940][T17710]  ? rcu_is_watching+0x15/0xb0
[  365.512963][T17710]  ? do_syscall_64+0xbe/0x3b0
[  365.512990][T17710]  do_syscall_64+0xfa/0x3b0
[  365.513005][T17710]  ? lockdep_hardirqs_on+0x9c/0x150
[  365.513029][T17710]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.513046][T17710]  ? clear_bhb_loop+0x60/0xb0
[  365.513067][T17710]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.513084][T17710] RIP: 0033:0x7eff8c18eba9
[  365.513100][T17710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.513116][T17710] RSP: 002b:00007eff8d057038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  365.513136][T17710] RAX: ffffffffffffffda RBX: 00007eff8c3d5fa0 RCX: 00007eff8c18eba9
[  365.513155][T17710] RDX: 0000000000008000 RSI: 0000200000000080 RDI: 0000000000000003
[  365.513167][T17710] RBP: 00007eff8d057090 R08: 0000000000000000 R09: 0000000000000000
[  365.513180][T17710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  365.513191][T17710] R13: 00007eff8c3d6038 R14: 00007eff8c3d5fa0 R15: 00007ffcd852f3d8
[  365.513221][T17710]  </TASK>
[  365.936279][T17714] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4081'.
[  365.958405][T17719] FAULT_INJECTION: forcing a failure.
[  365.958405][T17719] name failslab, interval 1, probability 0, space 0, times 0
[  365.974871][T17719] CPU: 0 UID: 0 PID: 17719 Comm: syz.5.4084 Not tainted syzkaller #0 PREEMPT(full) 
[  365.974896][T17719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  365.974908][T17719] Call Trace:
[  365.974916][T17719]  <TASK>
[  365.974924][T17719]  dump_stack_lvl+0x189/0x250
[  365.974950][T17719]  ? __pfx____ratelimit+0x10/0x10
[  365.974973][T17719]  ? __pfx_dump_stack_lvl+0x10/0x10
[  365.974993][T17719]  ? __pfx__printk+0x10/0x10
[  365.975021][T17719]  ? __pfx___might_resched+0x10/0x10
[  365.975038][T17719]  ? fs_reclaim_acquire+0x7d/0x100
[  365.975066][T17719]  should_fail_ex+0x414/0x560
[  365.975092][T17719]  should_failslab+0xa8/0x100
[  365.975117][T17719]  __kmalloc_cache_noprof+0x70/0x3d0
[  365.975138][T17719]  ? rtnl_newlink+0xed/0x1c70
[  365.975166][T17719]  rtnl_newlink+0xed/0x1c70
[  365.975189][T17719]  ? __lock_acquire+0xab9/0xd20
[  365.975221][T17719]  ? __pfx_rtnl_newlink+0x10/0x10
[  365.975251][T17719]  ? is_bpf_text_address+0x26/0x2b0
[  365.975282][T17719]  ? __lock_acquire+0xab9/0xd20
[  365.975315][T17719]  ? __lock_acquire+0xab9/0xd20
[  365.975398][T17719]  ? is_bpf_text_address+0x26/0x2b0
[  365.975425][T17719]  ? is_bpf_text_address+0x292/0x2b0
[  365.975446][T17719]  ? is_bpf_text_address+0x26/0x2b0
[  365.975476][T17719]  ? __lock_acquire+0xab9/0xd20
[  365.975522][T17719]  ? __pfx_rtnl_newlink+0x10/0x10
[  365.975544][T17719]  rtnetlink_rcv_msg+0x7cf/0xb70
[  365.975566][T17719]  ? __lock_acquire+0xab9/0xd20
[  365.975588][T17719]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  365.975611][T17719]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  365.975650][T17719]  netlink_rcv_skb+0x205/0x470
[  365.975673][T17719]  ? __lock_acquire+0xab9/0xd20
[  365.975695][T17719]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  365.975720][T17719]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  365.975752][T17719]  ? netlink_deliver_tap+0x2e/0x1b0
[  365.975781][T17719]  netlink_unicast+0x82f/0x9e0
[  365.975810][T17719]  ? __pfx_netlink_unicast+0x10/0x10
[  365.975832][T17719]  ? netlink_sendmsg+0x642/0xb30
[  365.975846][T17719]  ? skb_put+0x11b/0x210
[  365.975865][T17719]  netlink_sendmsg+0x805/0xb30
[  365.975889][T17719]  ? __pfx_netlink_sendmsg+0x10/0x10
[  365.975908][T17719]  ? aa_sock_msg_perm+0xf1/0x1d0
[  365.975928][T17719]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  365.975945][T17719]  ? __pfx_netlink_sendmsg+0x10/0x10
[  365.975962][T17719]  __sock_sendmsg+0x21c/0x270
[  365.975986][T17719]  ____sys_sendmsg+0x505/0x830
[  365.976008][T17719]  ? __pfx_____sys_sendmsg+0x10/0x10
[  365.976032][T17719]  ? import_iovec+0x74/0xa0
[  365.976054][T17719]  ___sys_sendmsg+0x21f/0x2a0
[  365.976071][T17719]  ? __pfx____sys_sendmsg+0x10/0x10
[  365.976115][T17719]  ? __fget_files+0x2a/0x420
[  365.976130][T17719]  ? __fget_files+0x3a0/0x420
[  365.976156][T17719]  __x64_sys_sendmsg+0x19b/0x260
[  365.976176][T17719]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  365.976202][T17719]  ? __pfx_ksys_write+0x10/0x10
[  365.976221][T17719]  ? rcu_is_watching+0x15/0xb0
[  365.976243][T17719]  ? do_syscall_64+0xbe/0x3b0
[  365.976264][T17719]  do_syscall_64+0xfa/0x3b0
[  365.976279][T17719]  ? lockdep_hardirqs_on+0x9c/0x150
[  365.976300][T17719]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.976316][T17719]  ? clear_bhb_loop+0x60/0xb0
[  365.976361][T17719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.976378][T17719] RIP: 0033:0x7efda558eba9
[  365.976395][T17719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.976409][T17719] RSP: 002b:00007efda37f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  365.976429][T17719] RAX: ffffffffffffffda RBX: 00007efda57d5fa0 RCX: 00007efda558eba9
[  365.976442][T17719] RDX: 00000000040408c4 RSI: 0000200000000040 RDI: 0000000000000003
[  365.976454][T17719] RBP: 00007efda37f6090 R08: 0000000000000000 R09: 0000000000000000
[  365.976465][T17719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  365.976476][T17719] R13: 00007efda57d6038 R14: 00007efda57d5fa0 R15: 00007ffd6c891168
[  365.976506][T17719]  </TASK>
[  366.590596][T17736] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4088'.
[  366.601435][T17736] netlink: 36 bytes leftover after parsing attributes in process `syz.1.4088'.
[  366.616713][T17737] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  366.926805][T17735] syzkaller0: entered promiscuous mode
[  366.933691][T17735] syzkaller0: entered allmulticast mode
[  368.514945][T17743] syzkaller1: entered promiscuous mode
[  368.520659][T17743] syzkaller1: entered allmulticast mode
[  368.527122][T17737] syzkaller0: entered promiscuous mode
[  368.532987][T17737] syzkaller0: entered allmulticast mode
[  368.654689][T17767] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4094'.
[  368.664002][T17767] netlink: 60 bytes leftover after parsing attributes in process `syz.0.4094'.
[  368.863915][T17782] netlink: 112 bytes leftover after parsing attributes in process `syz.0.4101'.
[  369.141823][T17800] netlink: 'syz.1.4106': attribute type 6 has an invalid length.
[  369.220701][T17805] netlink: 'syz.0.4108': attribute type 2 has an invalid length.
[  369.246759][T17809] FAULT_INJECTION: forcing a failure.
[  369.246759][T17809] name failslab, interval 1, probability 0, space 0, times 0
[  369.262302][T17809] CPU: 0 UID: 0 PID: 17809 Comm: syz.1.4110 Not tainted syzkaller #0 PREEMPT(full) 
[  369.262327][T17809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  369.262337][T17809] Call Trace:
[  369.262344][T17809]  <TASK>
[  369.262352][T17809]  dump_stack_lvl+0x189/0x250
[  369.262377][T17809]  ? __pfx____ratelimit+0x10/0x10
[  369.262400][T17809]  ? __pfx_dump_stack_lvl+0x10/0x10
[  369.262417][T17809]  ? __pfx__printk+0x10/0x10
[  369.262456][T17809]  ? __pfx___might_resched+0x10/0x10
[  369.262473][T17809]  ? fs_reclaim_acquire+0x7d/0x100
[  369.262502][T17809]  should_fail_ex+0x414/0x560
[  369.262528][T17809]  should_failslab+0xa8/0x100
[  369.262552][T17809]  __kmalloc_noprof+0xcb/0x4f0
[  369.262572][T17809]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  369.262597][T17809]  genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  369.262623][T17809]  genl_family_rcv_msg_doit+0xb8/0x300
[  369.262648][T17809]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  369.262674][T17809]  ? apparmor_capable+0x137/0x1b0
[  369.262697][T17809]  ? bpf_lsm_capable+0x9/0x20
[  369.262716][T17809]  ? security_capable+0x7e/0x2e0
[  369.262745][T17809]  genl_rcv_msg+0x60e/0x790
[  369.262770][T17809]  ? __pfx_genl_rcv_msg+0x10/0x10
[  369.262787][T17809]  ? __pfx_devlink_nl_pre_doit_dev_lock+0x10/0x10
[  369.262805][T17809]  ? __pfx_devlink_nl_reload_doit+0x10/0x10
[  369.262823][T17809]  ? __pfx_devlink_nl_post_doit_dev_lock+0x10/0x10
[  369.262858][T17809]  netlink_rcv_skb+0x205/0x470
[  369.262885][T17809]  ? __lock_acquire+0xab9/0xd20
[  369.262906][T17809]  ? __pfx_genl_rcv_msg+0x10/0x10
[  369.262927][T17809]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  369.262966][T17809]  ? down_read+0x1ad/0x2e0
[  369.262987][T17809]  genl_rcv+0x28/0x40
[  369.263005][T17809]  netlink_unicast+0x82f/0x9e0
[  369.263036][T17809]  ? __pfx_netlink_unicast+0x10/0x10
[  369.263067][T17809]  ? netlink_sendmsg+0x642/0xb30
[  369.263082][T17809]  ? skb_put+0x11b/0x210
[  369.263105][T17809]  netlink_sendmsg+0x805/0xb30
[  369.263129][T17809]  ? __pfx_netlink_sendmsg+0x10/0x10
[  369.263150][T17809]  ? aa_sock_msg_perm+0xf1/0x1d0
[  369.263170][T17809]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  369.263188][T17809]  ? __pfx_netlink_sendmsg+0x10/0x10
[  369.263204][T17809]  __sock_sendmsg+0x21c/0x270
[  369.263229][T17809]  ____sys_sendmsg+0x505/0x830
[  369.263259][T17809]  ? __pfx_____sys_sendmsg+0x10/0x10
[  369.263288][T17809]  ? import_iovec+0x74/0xa0
[  369.263310][T17809]  ___sys_sendmsg+0x21f/0x2a0
[  369.263331][T17809]  ? __pfx____sys_sendmsg+0x10/0x10
[  369.263388][T17809]  ? __fget_files+0x2a/0x420
[  369.263404][T17809]  ? __fget_files+0x3a0/0x420
[  369.263430][T17809]  __x64_sys_sendmsg+0x19b/0x260
[  369.263452][T17809]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  369.263481][T17809]  ? __pfx_ksys_write+0x10/0x10
[  369.263500][T17809]  ? rcu_is_watching+0x15/0xb0
[  369.263523][T17809]  ? do_syscall_64+0xbe/0x3b0
[  369.263543][T17809]  do_syscall_64+0xfa/0x3b0
[  369.263558][T17809]  ? lockdep_hardirqs_on+0x9c/0x150
[  369.263580][T17809]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.263598][T17809]  ? clear_bhb_loop+0x60/0xb0
[  369.263619][T17809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.263635][T17809] RIP: 0033:0x7f5b0a18eba9
[  369.263651][T17809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.263666][T17809] RSP: 002b:00007f5b0b0a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  369.263685][T17809] RAX: ffffffffffffffda RBX: 00007f5b0a3d5fa0 RCX: 00007f5b0a18eba9
[  369.263698][T17809] RDX: 0000000000008000 RSI: 0000200000000080 RDI: 0000000000000003
[  369.263709][T17809] RBP: 00007f5b0b0a6090 R08: 0000000000000000 R09: 0000000000000000
[  369.263721][T17809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  369.263731][T17809] R13: 00007f5b0a3d6038 R14: 00007f5b0a3d5fa0 R15: 00007ffd5ec476e8
[  369.263761][T17809]  </TASK>
[  369.325368][T17812] FAULT_INJECTION: forcing a failure.
[  369.325368][T17812] name failslab, interval 1, probability 0, space 0, times 0
[  369.500387][T17819] netlink: 112 bytes leftover after parsing attributes in process `syz.1.4113'.
[  369.518740][T17812] CPU: 1 UID: 0 PID: 17812 Comm: syz.0.4112 Not tainted syzkaller #0 PREEMPT(full) 
[  369.518765][T17812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  369.518775][T17812] Call Trace:
[  369.518783][T17812]  <TASK>
[  369.518791][T17812]  dump_stack_lvl+0x189/0x250
[  369.518816][T17812]  ? __pfx____ratelimit+0x10/0x10
[  369.518839][T17812]  ? __pfx_dump_stack_lvl+0x10/0x10
[  369.518859][T17812]  ? __pfx__printk+0x10/0x10
[  369.518888][T17812]  ? __pfx___nla_validate_parse+0x10/0x10
[  369.518918][T17812]  should_fail_ex+0x414/0x560
[  369.518944][T17812]  should_failslab+0xa8/0x100
[  369.518969][T17812]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  369.518992][T17812]  ? __alloc_skb+0x112/0x2d0
[  369.519013][T17812]  __alloc_skb+0x112/0x2d0
[  369.519042][T17812]  inet6_ifinfo_notify+0x70/0x120
[  369.519063][T17812]  inet6_set_link_af+0x801/0xb00
[  369.519091][T17812]  ? __pfx_inet6_set_link_af+0x10/0x10
[  369.519124][T17812]  ? rtnl_af_lookup+0x49/0x2b0
[  369.519145][T17812]  ? rtnl_af_lookup+0x49/0x2b0
[  369.519164][T17812]  ? rtnl_af_lookup+0x49/0x2b0
[  369.519185][T17812]  ? rtnl_af_lookup+0x241/0x2b0
[  369.519209][T17812]  do_setlink+0x2bdb/0x41c0
[  369.519229][T17812]  ? __kernel_text_address+0xd/0x40
[  369.519254][T17812]  ? arch_stack_walk+0xfc/0x150
[  369.519279][T17812]  ? __pfx_do_setlink+0x10/0x10
[  369.519317][T17812]  ? __lock_acquire+0xab9/0xd20
[  369.519348][T17812]  ? __mutex_trylock_common+0x153/0x260
[  369.519370][T17812]  ? __pfx___mutex_trylock_common+0x10/0x10
[  369.519392][T17812]  ? rcu_is_watching+0x15/0xb0
[  369.519410][T17812]  ? trace_contention_end+0x39/0x120
[  369.519429][T17812]  ? __mutex_lock+0x335/0x1350
[  369.519458][T17812]  ? rtnl_newlink+0x8db/0x1c70
[  369.519484][T17812]  ? __pfx___mutex_lock+0x10/0x10
[  369.519507][T17812]  ? full_name_hash+0x92/0xe0
[  369.519528][T17812]  ? netdev_name_node_lookup+0xdf/0x120
[  369.519553][T17812]  rtnl_newlink+0x160b/0x1c70
[  369.519589][T17812]  ? __pfx_rtnl_newlink+0x10/0x10
[  369.519630][T17812]  ? __lock_acquire+0xab9/0xd20
[  369.519664][T17812]  ? __lock_acquire+0xab9/0xd20
[  369.519721][T17812]  ? is_bpf_text_address+0x26/0x2b0
[  369.519750][T17812]  ? is_bpf_text_address+0x292/0x2b0
[  369.519772][T17812]  ? is_bpf_text_address+0x26/0x2b0
[  369.519802][T17812]  ? __lock_acquire+0xab9/0xd20
[  369.519850][T17812]  ? __pfx_rtnl_newlink+0x10/0x10
[  369.519872][T17812]  rtnetlink_rcv_msg+0x7cf/0xb70
[  369.519894][T17812]  ? __lock_acquire+0xab9/0xd20
[  369.519917][T17812]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  369.519940][T17812]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  369.519979][T17812]  netlink_rcv_skb+0x205/0x470
[  369.520000][T17812]  ? __lock_acquire+0xab9/0xd20
[  369.520021][T17812]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  369.520051][T17812]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  369.520086][T17812]  ? netlink_deliver_tap+0x2e/0x1b0
[  369.520116][T17812]  netlink_unicast+0x82f/0x9e0
[  369.520147][T17812]  ? __pfx_netlink_unicast+0x10/0x10
[  369.520170][T17812]  ? netlink_sendmsg+0x642/0xb30
[  369.520185][T17812]  ? skb_put+0x11b/0x210
[  369.520205][T17812]  netlink_sendmsg+0x805/0xb30
[  369.520231][T17812]  ? __pfx_netlink_sendmsg+0x10/0x10
[  369.520250][T17812]  ? aa_sock_msg_perm+0xf1/0x1d0
[  369.520269][T17812]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  369.520286][T17812]  ? __pfx_netlink_sendmsg+0x10/0x10
[  369.520304][T17812]  __sock_sendmsg+0x21c/0x270
[  369.520329][T17812]  ____sys_sendmsg+0x505/0x830
[  369.520354][T17812]  ? __pfx_____sys_sendmsg+0x10/0x10
[  369.520383][T17812]  ? import_iovec+0x74/0xa0
[  369.520406][T17812]  ___sys_sendmsg+0x21f/0x2a0
[  369.520427][T17812]  ? __pfx____sys_sendmsg+0x10/0x10
[  369.520483][T17812]  ? __fget_files+0x2a/0x420
[  369.520498][T17812]  ? __fget_files+0x3a0/0x420
[  369.520524][T17812]  __x64_sys_sendmsg+0x19b/0x260
[  369.520546][T17812]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  369.520575][T17812]  ? __pfx_ksys_write+0x10/0x10
[  369.520593][T17812]  ? rcu_is_watching+0x15/0xb0
[  369.520615][T17812]  ? do_syscall_64+0xbe/0x3b0
[  369.520636][T17812]  do_syscall_64+0xfa/0x3b0
[  369.520651][T17812]  ? lockdep_hardirqs_on+0x9c/0x150
[  369.520672][T17812]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.520687][T17812]  ? clear_bhb_loop+0x60/0xb0
[  369.520704][T17812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.520718][T17812] RIP: 0033:0x7f382738eba9
[  369.520733][T17812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.520746][T17812] RSP: 002b:00007f38281a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  369.520762][T17812] RAX: ffffffffffffffda RBX: 00007f38275d5fa0 RCX: 00007f382738eba9
[  369.520775][T17812] RDX: 00000000040408c4 RSI: 0000200000000040 RDI: 0000000000000003
[  369.520786][T17812] RBP: 00007f38281a4090 R08: 0000000000000000 R09: 0000000000000000
[  369.520797][T17812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  369.520807][T17812] R13: 00007f38275d6038 R14: 00007f38275d5fa0 R15: 00007ffd52298fd8
[  369.520838][T17812]  </TASK>
[  370.175668][T17838] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4119'.
[  370.410518][T17856] netlink: 52 bytes leftover after parsing attributes in process `syz.0.4121'.
[  370.703607][T17875] FAULT_INJECTION: forcing a failure.
[  370.703607][T17875] name failslab, interval 1, probability 0, space 0, times 0
[  370.723838][T17875] CPU: 0 UID: 0 PID: 17875 Comm: syz.1.4130 Not tainted syzkaller #0 PREEMPT(full) 
[  370.723863][T17875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  370.723874][T17875] Call Trace:
[  370.723883][T17875]  <TASK>
[  370.723891][T17875]  dump_stack_lvl+0x189/0x250
[  370.723917][T17875]  ? __pfx____ratelimit+0x10/0x10
[  370.723941][T17875]  ? __pfx_dump_stack_lvl+0x10/0x10
[  370.723961][T17875]  ? __pfx__printk+0x10/0x10
[  370.723990][T17875]  ? __pfx___might_resched+0x10/0x10
[  370.724005][T17875]  ? fs_reclaim_acquire+0x7d/0x100
[  370.724035][T17875]  should_fail_ex+0x414/0x560
[  370.724060][T17875]  ? __pfx_sock_alloc_inode+0x10/0x10
[  370.724081][T17875]  should_failslab+0xa8/0x100
[  370.724105][T17875]  ? __pfx_sock_alloc_inode+0x10/0x10
[  370.724125][T17875]  kmem_cache_alloc_lru_noprof+0x78/0x3d0
[  370.724147][T17875]  ? sock_alloc_inode+0x28/0xc0
[  370.724171][T17875]  ? __pfx_sock_alloc_inode+0x10/0x10
[  370.724191][T17875]  sock_alloc_inode+0x28/0xc0
[  370.724212][T17875]  alloc_inode+0x67/0x1b0
[  370.724237][T17875]  __sock_create+0x12d/0x9f0
[  370.724271][T17875]  udp_sock_create4+0xbe/0x4b0
[  370.724297][T17875]  ? __pfx_udp_sock_create4+0x10/0x10
[  370.724323][T17875]  ? __pfx___nla_validate_parse+0x10/0x10
[  370.724355][T17875]  fou_nl_add_doit+0x16c/0x690
[  370.724382][T17875]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  370.724427][T17875]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  370.724458][T17875]  genl_family_rcv_msg_doit+0x215/0x300
[  370.724486][T17875]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  370.724526][T17875]  ? bpf_lsm_capable+0x9/0x20
[  370.724547][T17875]  ? security_capable+0x7e/0x2e0
[  370.724578][T17875]  genl_rcv_msg+0x60e/0x790
[  370.724606][T17875]  ? __pfx_genl_rcv_msg+0x10/0x10
[  370.724625][T17875]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  370.724722][T17875]  netlink_rcv_skb+0x205/0x470
[  370.724750][T17875]  ? __lock_acquire+0xab9/0xd20
[  370.724774][T17875]  ? __pfx_genl_rcv_msg+0x10/0x10
[  370.724796][T17875]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  370.724848][T17875]  ? down_read+0x1ad/0x2e0
[  370.724867][T17875]  genl_rcv+0x28/0x40
[  370.724885][T17875]  netlink_unicast+0x82f/0x9e0
[  370.724918][T17875]  ? __pfx_netlink_unicast+0x10/0x10
[  370.724942][T17875]  ? netlink_sendmsg+0x642/0xb30
[  370.724957][T17875]  ? skb_put+0x11b/0x210
[  370.724980][T17875]  netlink_sendmsg+0x805/0xb30
[  370.725008][T17875]  ? __pfx_netlink_sendmsg+0x10/0x10
[  370.725028][T17875]  ? aa_sock_msg_perm+0xf1/0x1d0
[  370.725048][T17875]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  370.725066][T17875]  ? __pfx_netlink_sendmsg+0x10/0x10
[  370.725085][T17875]  __sock_sendmsg+0x21c/0x270
[  370.725111][T17875]  ____sys_sendmsg+0x505/0x830
[  370.725137][T17875]  ? __pfx_____sys_sendmsg+0x10/0x10
[  370.725166][T17875]  ? import_iovec+0x74/0xa0
[  370.725188][T17875]  ___sys_sendmsg+0x21f/0x2a0
[  370.725208][T17875]  ? __pfx____sys_sendmsg+0x10/0x10
[  370.725267][T17875]  ? __fget_files+0x2a/0x420
[  370.725282][T17875]  ? __fget_files+0x3a0/0x420
[  370.725310][T17875]  __x64_sys_sendmsg+0x19b/0x260
[  370.725339][T17875]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  370.725370][T17875]  ? __pfx_ksys_write+0x10/0x10
[  370.725390][T17875]  ? rcu_is_watching+0x15/0xb0
[  370.725414][T17875]  ? do_syscall_64+0xbe/0x3b0
[  370.725436][T17875]  do_syscall_64+0xfa/0x3b0
[  370.725452][T17875]  ? lockdep_hardirqs_on+0x9c/0x150
[  370.725475][T17875]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.725493][T17875]  ? clear_bhb_loop+0x60/0xb0
[  370.725522][T17875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.725539][T17875] RIP: 0033:0x7f5b0a18eba9
[  370.725557][T17875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.725572][T17875] RSP: 002b:00007f5b0b0a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  370.725648][T17875] RAX: ffffffffffffffda RBX: 00007f5b0a3d5fa0 RCX: 00007f5b0a18eba9
[  370.725663][T17875] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000004
[  370.725675][T17875] RBP: 00007f5b0b0a6090 R08: 0000000000000000 R09: 0000000000000000
[  370.725687][T17875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  370.725698][T17875] R13: 00007f5b0a3d6038 R14: 00007f5b0a3d5fa0 R15: 00007ffd5ec476e8
[  370.725727][T17875]  </TASK>
[  370.725738][T17875] socket: no more sockets
[  371.313044][T17893] netlink: 'syz.3.4135': attribute type 6 has an invalid length.
[  371.357110][T17896] syzkaller1: entered promiscuous mode
[  371.368048][T17896] syzkaller1: entered allmulticast mode
[  371.386186][T17894] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  371.395993][T17897] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4136'.
[  371.443639][T17894] syzkaller0: entered promiscuous mode
[  371.450321][T17894] syzkaller0: entered allmulticast mode
[  371.511121][T17894] tipc: Resetting bearer <eth:syzkaller0>
[  371.545420][T17891] tipc: Resetting bearer <eth:syzkaller0>
[  371.595712][T17891] tipc: Disabling bearer <eth:syzkaller0>
[  371.611248][T17903] netlink: 1 bytes leftover after parsing attributes in process `syz.3.4141'.
[  371.620749][T17903] xt_policy: neither incoming nor outgoing policy selected
[  371.625755][T17907] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  371.640983][T17907] syzkaller0: entered promiscuous mode
[  371.646544][T17907] syzkaller0: entered allmulticast mode
[  371.670288][T17907] tipc: Resetting bearer <eth:syzkaller0>
[  371.686438][T17906] tipc: Resetting bearer <eth:syzkaller0>
[  371.732411][T17906] tipc: Disabling bearer <eth:syzkaller0>
[  371.863193][T17923] ip6gre1: entered allmulticast mode
[  371.954688][T17929] FAULT_INJECTION: forcing a failure.
[  371.954688][T17929] name failslab, interval 1, probability 0, space 0, times 0
[  371.969585][T17929] CPU: 1 UID: 0 PID: 17929 Comm: syz.0.4152 Not tainted syzkaller #0 PREEMPT(full) 
[  371.969609][T17929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  371.969619][T17929] Call Trace:
[  371.969627][T17929]  <TASK>
[  371.969635][T17929]  dump_stack_lvl+0x189/0x250
[  371.969661][T17929]  ? __pfx____ratelimit+0x10/0x10
[  371.969685][T17929]  ? __pfx_dump_stack_lvl+0x10/0x10
[  371.969705][T17929]  ? __pfx__printk+0x10/0x10
[  371.969734][T17929]  ? __pfx___might_resched+0x10/0x10
[  371.969758][T17929]  ? fs_reclaim_acquire+0x7d/0x100
[  371.969788][T17929]  should_fail_ex+0x414/0x560
[  371.969816][T17929]  should_failslab+0xa8/0x100
[  371.969841][T17929]  __kmalloc_noprof+0xcb/0x4f0
[  371.969861][T17929]  ? unregister_netdevice_many_notify+0x88e/0x1ff0
[  371.969890][T17929]  unregister_netdevice_many_notify+0x88e/0x1ff0
[  371.969916][T17929]  ? rcu_is_watching+0x15/0xb0
[  371.969939][T17929]  ? __mutex_lock+0x335/0x1350
[  371.969957][T17929]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  371.969977][T17929]  ? net_passive_dec+0x167/0x240
[  371.970000][T17929]  ? __pfx_net_passive_dec+0x10/0x10
[  371.970020][T17929]  ? rtnl_net_dev_lock+0x36/0x2f0
[  371.970043][T17929]  ? nsim_destroy+0xe5/0x670
[  371.970071][T17929]  unregister_netdevice_queue+0x33c/0x380
[  371.970094][T17929]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  371.970128][T17929]  nsim_destroy+0x1dd/0x670
[  371.970156][T17929]  __nsim_dev_port_del+0x14d/0x1b0
[  371.970182][T17929]  nsim_dev_reload_destroy+0x288/0x490
[  371.970211][T17929]  nsim_dev_reload_down+0x8a/0xc0
[  371.970235][T17929]  devlink_reload+0x1b6/0x8d0
[  371.970268][T17929]  ? __pfx_devlink_reload+0x10/0x10
[  371.970292][T17929]  ? devlink_resources_validate+0xa7/0xd0
[  371.970317][T17929]  ? devlink_resources_validate+0xa7/0xd0
[  371.970341][T17929]  devlink_nl_reload_doit+0xb35/0xd50
[  371.970374][T17929]  ? __pfx_devlink_nl_reload_doit+0x10/0x10
[  371.970401][T17929]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  371.970431][T17929]  genl_family_rcv_msg_doit+0x215/0x300
[  371.970460][T17929]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  371.970496][T17929]  ? bpf_lsm_capable+0x9/0x20
[  371.970513][T17929]  ? security_capable+0x7e/0x2e0
[  371.970537][T17929]  genl_rcv_msg+0x60e/0x790
[  371.970562][T17929]  ? __pfx_genl_rcv_msg+0x10/0x10
[  371.970581][T17929]  ? __pfx_devlink_nl_pre_doit_dev_lock+0x10/0x10
[  371.970599][T17929]  ? __pfx_devlink_nl_reload_doit+0x10/0x10
[  371.970617][T17929]  ? __pfx_devlink_nl_post_doit_dev_lock+0x10/0x10
[  371.970654][T17929]  netlink_rcv_skb+0x205/0x470
[  371.970675][T17929]  ? __lock_acquire+0xab9/0xd20
[  371.970699][T17929]  ? __pfx_genl_rcv_msg+0x10/0x10
[  371.970720][T17929]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  371.970772][T17929]  ? down_read+0x1ad/0x2e0
[  371.970793][T17929]  genl_rcv+0x28/0x40
[  371.970811][T17929]  netlink_unicast+0x82f/0x9e0
[  371.970845][T17929]  ? __pfx_netlink_unicast+0x10/0x10
[  371.970870][T17929]  ? netlink_sendmsg+0x642/0xb30
[  371.970884][T17929]  ? skb_put+0x11b/0x210
[  371.970907][T17929]  netlink_sendmsg+0x805/0xb30
[  371.970935][T17929]  ? __pfx_netlink_sendmsg+0x10/0x10
[  371.970957][T17929]  ? aa_sock_msg_perm+0xf1/0x1d0
[  371.970977][T17929]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  371.970995][T17929]  ? __pfx_netlink_sendmsg+0x10/0x10
[  371.971013][T17929]  __sock_sendmsg+0x21c/0x270
[  371.971040][T17929]  ____sys_sendmsg+0x505/0x830
[  371.971067][T17929]  ? __pfx_____sys_sendmsg+0x10/0x10
[  371.971098][T17929]  ? import_iovec+0x74/0xa0
[  371.971122][T17929]  ___sys_sendmsg+0x21f/0x2a0
[  371.971143][T17929]  ? __pfx____sys_sendmsg+0x10/0x10
[  371.971202][T17929]  ? __fget_files+0x2a/0x420
[  371.971217][T17929]  ? __fget_files+0x3a0/0x420
[  371.971246][T17929]  __x64_sys_sendmsg+0x19b/0x260
[  371.971268][T17929]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  371.971300][T17929]  ? __pfx_ksys_write+0x10/0x10
[  371.971319][T17929]  ? rcu_is_watching+0x15/0xb0
[  371.971343][T17929]  ? do_syscall_64+0xbe/0x3b0
[  371.971365][T17929]  do_syscall_64+0xfa/0x3b0
[  371.971380][T17929]  ? lockdep_hardirqs_on+0x9c/0x150
[  371.971402][T17929]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.971419][T17929]  ? clear_bhb_loop+0x60/0xb0
[  371.971441][T17929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.971459][T17929] RIP: 0033:0x7f382738eba9
[  371.971475][T17929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.971490][T17929] RSP: 002b:00007f38281a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  371.971509][T17929] RAX: ffffffffffffffda RBX: 00007f38275d5fa0 RCX: 00007f382738eba9
[  371.971523][T17929] RDX: 0000000000008000 RSI: 0000200000000080 RDI: 0000000000000003
[  371.971536][T17929] RBP: 00007f38281a4090 R08: 0000000000000000 R09: 0000000000000000
[  371.971547][T17929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.971559][T17929] R13: 00007f38275d6038 R14: 00007f38275d5fa0 R15: 00007ffd52298fd8
[  371.971592][T17929]  </TASK>
[  372.632981][T17938] netlink: 52 bytes leftover after parsing attributes in process `syz.1.4156'.
[  372.690743][T17940] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  372.752515][T17944] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  372.945529][T17957] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4164'.
[  373.084813][T17967] netlink: 56 bytes leftover after parsing attributes in process `syz.0.4168'.
[  373.155851][T17969] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  373.166028][T17969] syzkaller0: entered promiscuous mode
[  373.171685][T17969] syzkaller0: entered allmulticast mode
[  373.198430][T17969] tipc: Resetting bearer <eth:syzkaller0>
[  373.212872][T17968] tipc: Resetting bearer <eth:syzkaller0>
[  373.273582][T17968] tipc: Disabling bearer <eth:syzkaller0>
[  373.663643][T18004] syzkaller1: entered promiscuous mode
[  373.692647][T18004] syzkaller1: entered allmulticast mode
[  373.813845][T18012] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.4184'.
[  374.194555][T18034] FAULT_INJECTION: forcing a failure.
[  374.194555][T18034] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  374.198058][T18035] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4192'.
[  374.238357][T17991] lo speed is unknown, defaulting to 1000
[  374.260664][T18034] CPU: 0 UID: 0 PID: 18034 Comm: syz.1.4193 Not tainted syzkaller #0 PREEMPT(full) 
[  374.260689][T18034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  374.260700][T18034] Call Trace:
[  374.260708][T18034]  <TASK>
[  374.260716][T18034]  dump_stack_lvl+0x189/0x250
[  374.260741][T18034]  ? __pfx____ratelimit+0x10/0x10
[  374.260765][T18034]  ? __pfx_dump_stack_lvl+0x10/0x10
[  374.260784][T18034]  ? __pfx__printk+0x10/0x10
[  374.260819][T18034]  should_fail_ex+0x414/0x560
[  374.260846][T18034]  _copy_to_user+0x31/0xb0
[  374.260868][T18034]  simple_read_from_buffer+0xe1/0x170
[  374.260897][T18034]  proc_fail_nth_read+0x1b3/0x220
[  374.260921][T18034]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  374.260941][T18034]  ? rw_verify_area+0x2a6/0x4d0
[  374.260958][T18034]  ? __lock_acquire+0xab9/0xd20
[  374.260977][T18034]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  374.260997][T18034]  vfs_read+0x200/0xa30
[  374.261017][T18034]  ? fdget_pos+0x247/0x320
[  374.261038][T18034]  ? __pfx___mutex_lock+0x10/0x10
[  374.261054][T18034]  ? __pfx_vfs_read+0x10/0x10
[  374.261077][T18034]  ? __fget_files+0x2a/0x420
[  374.261098][T18034]  ? __fget_files+0x3a0/0x420
[  374.261112][T18034]  ? __fget_files+0x2a/0x420
[  374.261137][T18034]  ksys_read+0x145/0x250
[  374.261161][T18034]  ? __pfx_ksys_read+0x10/0x10
[  374.261179][T18034]  ? rcu_is_watching+0x15/0xb0
[  374.261201][T18034]  ? do_syscall_64+0xbe/0x3b0
[  374.261221][T18034]  do_syscall_64+0xfa/0x3b0
[  374.261235][T18034]  ? lockdep_hardirqs_on+0x9c/0x150
[  374.261270][T18034]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.261287][T18034]  ? clear_bhb_loop+0x60/0xb0
[  374.261307][T18034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.261323][T18034] RIP: 0033:0x7f5b0a18d5bc
[  374.261338][T18034] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  374.261354][T18034] RSP: 002b:00007f5b0b0a6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  374.261372][T18034] RAX: ffffffffffffffda RBX: 00007f5b0a3d5fa0 RCX: 00007f5b0a18d5bc
[  374.261386][T18034] RDX: 000000000000000f RSI: 00007f5b0b0a60a0 RDI: 0000000000000004
[  374.261398][T18034] RBP: 00007f5b0b0a6090 R08: 0000000000000000 R09: 0000000000000000
[  374.261409][T18034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  374.261420][T18034] R13: 00007f5b0a3d6038 R14: 00007f5b0a3d5fa0 R15: 00007ffd5ec476e8
[  374.261451][T18034]  </TASK>
[  374.514947][T18039] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4192'.
[  374.617576][T18035] bridge24: port 1(veth51) entered blocking state
[  374.628988][T18035] bridge24: port 1(veth51) entered disabled state
[  374.641432][T18035] veth51: entered allmulticast mode
[  374.651905][T18035] veth51: entered promiscuous mode
[  374.995932][T18062] syzkaller0: entered promiscuous mode
[  375.019214][T18062] syzkaller0: entered allmulticast mode
[  375.266711][T18074] syz_tun: entered allmulticast mode
[  375.295004][T18073] syz_tun: left allmulticast mode
[  375.326923][T18078] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4210'.
[  375.426791][T18084] FAULT_INJECTION: forcing a failure.
[  375.426791][T18084] name failslab, interval 1, probability 0, space 0, times 0
[  375.446744][T18084] CPU: 1 UID: 0 PID: 18084 Comm: syz.1.4213 Not tainted syzkaller #0 PREEMPT(full) 
[  375.446768][T18084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  375.446779][T18084] Call Trace:
[  375.446788][T18084]  <TASK>
[  375.446796][T18084]  dump_stack_lvl+0x189/0x250
[  375.446822][T18084]  ? __pfx____ratelimit+0x10/0x10
[  375.446845][T18084]  ? __pfx_dump_stack_lvl+0x10/0x10
[  375.446863][T18084]  ? __pfx__printk+0x10/0x10
[  375.446892][T18084]  ? __pfx___might_resched+0x10/0x10
[  375.446913][T18084]  should_fail_ex+0x414/0x560
[  375.446942][T18084]  should_failslab+0xa8/0x100
[  375.446967][T18084]  kmem_cache_alloc_noprof+0x73/0x3c0
[  375.446989][T18084]  ? sk_prot_alloc+0x57/0x220
[  375.447012][T18084]  sk_prot_alloc+0x57/0x220
[  375.447028][T18084]  ? sk_alloc+0x24/0x370
[  375.447048][T18084]  sk_alloc+0x3a/0x370
[  375.447071][T18084]  inet_create+0x7a0/0x1000
[  375.447094][T18084]  ? inet_create+0x9c/0x1000
[  375.447118][T18084]  __sock_create+0x4b3/0x9f0
[  375.447164][T18084]  udp_sock_create4+0xbe/0x4b0
[  375.447189][T18084]  ? __pfx_udp_sock_create4+0x10/0x10
[  375.447214][T18084]  ? __pfx___nla_validate_parse+0x10/0x10
[  375.447245][T18084]  fou_nl_add_doit+0x16c/0x690
[  375.447272][T18084]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  375.447316][T18084]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  375.447346][T18084]  genl_family_rcv_msg_doit+0x215/0x300
[  375.447372][T18084]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  375.447404][T18084]  ? bpf_lsm_capable+0x9/0x20
[  375.447423][T18084]  ? security_capable+0x7e/0x2e0
[  375.447453][T18084]  genl_rcv_msg+0x60e/0x790
[  375.447486][T18084]  ? __pfx_genl_rcv_msg+0x10/0x10
[  375.447504][T18084]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  375.447543][T18084]  netlink_rcv_skb+0x205/0x470
[  375.447564][T18084]  ? __lock_acquire+0xab9/0xd20
[  375.447588][T18084]  ? __pfx_genl_rcv_msg+0x10/0x10
[  375.447609][T18084]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  375.447653][T18084]  ? down_read+0x1ad/0x2e0
[  375.447674][T18084]  genl_rcv+0x28/0x40
[  375.447692][T18084]  netlink_unicast+0x82f/0x9e0
[  375.447724][T18084]  ? __pfx_netlink_unicast+0x10/0x10
[  375.447748][T18084]  ? netlink_sendmsg+0x642/0xb30
[  375.447763][T18084]  ? skb_put+0x11b/0x210
[  375.447784][T18084]  netlink_sendmsg+0x805/0xb30
[  375.447812][T18084]  ? __pfx_netlink_sendmsg+0x10/0x10
[  375.447833][T18084]  ? aa_sock_msg_perm+0xf1/0x1d0
[  375.447852][T18084]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  375.447870][T18084]  ? __pfx_netlink_sendmsg+0x10/0x10
[  375.447888][T18084]  __sock_sendmsg+0x21c/0x270
[  375.447913][T18084]  ____sys_sendmsg+0x505/0x830
[  375.447938][T18084]  ? __pfx_____sys_sendmsg+0x10/0x10
[  375.447967][T18084]  ? import_iovec+0x74/0xa0
[  375.447991][T18084]  ___sys_sendmsg+0x21f/0x2a0
[  375.448014][T18084]  ? __pfx____sys_sendmsg+0x10/0x10
[  375.448072][T18084]  ? __fget_files+0x2a/0x420
[  375.448094][T18084]  ? __fget_files+0x3a0/0x420
[  375.448121][T18084]  __x64_sys_sendmsg+0x19b/0x260
[  375.448150][T18084]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  375.448179][T18084]  ? __pfx_ksys_write+0x10/0x10
[  375.448197][T18084]  ? rcu_is_watching+0x15/0xb0
[  375.448220][T18084]  ? do_syscall_64+0xbe/0x3b0
[  375.448241][T18084]  do_syscall_64+0xfa/0x3b0
[  375.448256][T18084]  ? lockdep_hardirqs_on+0x9c/0x150
[  375.448278][T18084]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.448296][T18084]  ? clear_bhb_loop+0x60/0xb0
[  375.448317][T18084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.448333][T18084] RIP: 0033:0x7f5b0a18eba9
[  375.448350][T18084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  375.448365][T18084] RSP: 002b:00007f5b0b0a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  375.448383][T18084] RAX: ffffffffffffffda RBX: 00007f5b0a3d5fa0 RCX: 00007f5b0a18eba9
[  375.448396][T18084] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000004
[  375.448408][T18084] RBP: 00007f5b0b0a6090 R08: 0000000000000000 R09: 0000000000000000
[  375.448419][T18084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  375.448430][T18084] R13: 00007f5b0a3d6038 R14: 00007f5b0a3d5fa0 R15: 00007ffd5ec476e8
[  375.448462][T18084]  </TASK>
[  375.868940][T18078] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4210'.
[  375.988120][T18083] bridge18: port 1(veth51) entered blocking state
[  376.017694][T18083] bridge18: port 1(veth51) entered disabled state
[  376.024759][T18083] veth51: entered allmulticast mode
[  376.057669][T18083] veth51: entered promiscuous mode
[  376.102269][T18092] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  376.155525][T18089] syzkaller0: entered promiscuous mode
[  376.161154][T18089] syzkaller0: entered allmulticast mode
[  376.341199][T18109] netlink: 'syz.1.4220': attribute type 6 has an invalid length.
[  376.403646][T18099] syzkaller0: entered promiscuous mode
[  376.415536][T18099] syzkaller0: entered allmulticast mode
[  377.435093][T18133] FAULT_INJECTION: forcing a failure.
[  377.435093][T18133] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  377.448473][T18133] CPU: 0 UID: 0 PID: 18133 Comm: syz.0.4230 Not tainted syzkaller #0 PREEMPT(full) 
[  377.448496][T18133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  377.448507][T18133] Call Trace:
[  377.448515][T18133]  <TASK>
[  377.448523][T18133]  dump_stack_lvl+0x189/0x250
[  377.448549][T18133]  ? __pfx____ratelimit+0x10/0x10
[  377.448572][T18133]  ? __pfx_dump_stack_lvl+0x10/0x10
[  377.448591][T18133]  ? __pfx__printk+0x10/0x10
[  377.448611][T18133]  ? __might_fault+0xb0/0x130
[  377.448644][T18133]  should_fail_ex+0x414/0x560
[  377.448667][T18133]  _copy_from_user+0x2d/0xb0
[  377.448685][T18133]  __sys_sendto+0x25c/0x520
[  377.448701][T18133]  ? __pfx___sys_sendto+0x10/0x10
[  377.448726][T18133]  ? fput_close_sync+0x119/0x200
[  377.448755][T18133]  ? rcu_is_watching+0x15/0xb0
[  377.448774][T18133]  __x64_sys_sendto+0xde/0x100
[  377.448791][T18133]  do_syscall_64+0xfa/0x3b0
[  377.448804][T18133]  ? lockdep_hardirqs_on+0x9c/0x150
[  377.448823][T18133]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.448836][T18133]  ? clear_bhb_loop+0x60/0xb0
[  377.448853][T18133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.448867][T18133] RIP: 0033:0x7f3827390a3c
[  377.448882][T18133] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  377.448895][T18133] RSP: 002b:00007f38281a2e20 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  377.448914][T18133] RAX: ffffffffffffffda RBX: 00007f38281a2fa0 RCX: 00007f3827390a3c
[  377.448937][T18133] RDX: 0000000000000024 RSI: 00007f38281a2ff0 RDI: 0000000000000004
[  377.448948][T18133] RBP: 0000000000000000 R08: 00007f38281a2e74 R09: 000000000000000c
[  377.448959][T18133] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004
[  377.448970][T18133] R13: 0000000000000000 R14: 00007f38281a2ff0 R15: 0000000000000000
[  377.448997][T18133]  </TASK>
[  377.637793][T18135] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  378.433988][T18156] FAULT_INJECTION: forcing a failure.
[  378.433988][T18156] name failslab, interval 1, probability 0, space 0, times 0
[  378.448505][T18152] bridge: RTM_NEWNEIGH with invalid state 0x9
[  378.457651][T18156] CPU: 0 UID: 0 PID: 18156 Comm: syz.0.4237 Not tainted syzkaller #0 PREEMPT(full) 
[  378.457673][T18156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  378.457683][T18156] Call Trace:
[  378.457691][T18156]  <TASK>
[  378.457698][T18156]  dump_stack_lvl+0x189/0x250
[  378.457722][T18156]  ? __pfx____ratelimit+0x10/0x10
[  378.457745][T18156]  ? __pfx_dump_stack_lvl+0x10/0x10
[  378.457764][T18156]  ? __pfx__printk+0x10/0x10
[  378.457786][T18156]  ? __pfx___might_resched+0x10/0x10
[  378.457803][T18156]  ? fs_reclaim_acquire+0x7d/0x100
[  378.457830][T18156]  should_fail_ex+0x414/0x560
[  378.457856][T18156]  should_failslab+0xa8/0x100
[  378.457878][T18156]  __kmalloc_cache_noprof+0x70/0x3d0
[  378.457898][T18156]  ? hash_netport_create+0x2fe/0xfe0
[  378.457919][T18156]  hash_netport_create+0x2fe/0xfe0
[  378.457943][T18156]  ? __nla_parse+0x40/0x60
[  378.457967][T18156]  ? __pfx_hash_netport_create+0x10/0x10
[  378.457988][T18156]  ip_set_create+0xa94/0x1940
[  378.458010][T18156]  ? ip_set_create+0x4a2/0x1940
[  378.458043][T18156]  ? __pfx_ip_set_create+0x10/0x10
[  378.458109][T18156]  nfnetlink_rcv_msg+0xb4d/0x1130
[  378.458134][T18156]  ? nfnetlink_rcv_msg+0x20d/0x1130
[  378.458175][T18156]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  378.458229][T18156]  ? is_bpf_text_address+0x26/0x2b0
[  378.458269][T18156]  netlink_rcv_skb+0x205/0x470
[  378.458295][T18156]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  378.458319][T18156]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  378.458355][T18156]  ? bpf_lsm_capable+0x9/0x20
[  378.458376][T18156]  ? security_capable+0x7e/0x2e0
[  378.458407][T18156]  nfnetlink_rcv+0x26a/0x2520
[  378.458429][T18156]  ? is_bpf_text_address+0x26/0x2b0
[  378.458455][T18156]  ? kernel_text_address+0xa5/0xe0
[  378.458478][T18156]  ? __kernel_text_address+0xd/0x40
[  378.458498][T18156]  ? unwind_get_return_address+0x4d/0x90
[  378.458518][T18156]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  378.458538][T18156]  ? arch_stack_walk+0xfc/0x150
[  378.458573][T18156]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  378.458594][T18156]  ? stack_depot_save_flags+0x40/0x860
[  378.458619][T18156]  ? __lock_acquire+0xab9/0xd20
[  378.458668][T18156]  ? __lock_acquire+0xab9/0xd20
[  378.458701][T18156]  ? netlink_deliver_tap+0x2e/0x1b0
[  378.458732][T18156]  ? netlink_deliver_tap+0x2e/0x1b0
[  378.458763][T18156]  netlink_unicast+0x82f/0x9e0
[  378.458810][T18156]  ? __pfx_netlink_unicast+0x10/0x10
[  378.458835][T18156]  ? netlink_sendmsg+0x642/0xb30
[  378.458850][T18156]  ? skb_put+0x11b/0x210
[  378.458872][T18156]  netlink_sendmsg+0x805/0xb30
[  378.458900][T18156]  ? __pfx_netlink_sendmsg+0x10/0x10
[  378.458920][T18156]  ? aa_sock_msg_perm+0xf1/0x1d0
[  378.458940][T18156]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  378.458959][T18156]  ? __pfx_netlink_sendmsg+0x10/0x10
[  378.458977][T18156]  __sock_sendmsg+0x21c/0x270
[  378.459003][T18156]  ____sys_sendmsg+0x505/0x830
[  378.459031][T18156]  ? __pfx_____sys_sendmsg+0x10/0x10
[  378.459063][T18156]  ? import_iovec+0x74/0xa0
[  378.459086][T18156]  ___sys_sendmsg+0x21f/0x2a0
[  378.459106][T18156]  ? __pfx____sys_sendmsg+0x10/0x10
[  378.459163][T18156]  ? __fget_files+0x2a/0x420
[  378.459178][T18156]  ? __fget_files+0x3a0/0x420
[  378.459204][T18156]  __x64_sys_sendmsg+0x19b/0x260
[  378.459226][T18156]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  378.459255][T18156]  ? __pfx_ksys_write+0x10/0x10
[  378.459274][T18156]  ? rcu_is_watching+0x15/0xb0
[  378.459297][T18156]  ? do_syscall_64+0xbe/0x3b0
[  378.459318][T18156]  do_syscall_64+0xfa/0x3b0
[  378.459333][T18156]  ? lockdep_hardirqs_on+0x9c/0x150
[  378.459355][T18156]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.459372][T18156]  ? clear_bhb_loop+0x60/0xb0
[  378.459393][T18156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.459409][T18156] RIP: 0033:0x7f382738eba9
[  378.459426][T18156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  378.459440][T18156] RSP: 002b:00007f38281a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  378.459459][T18156] RAX: ffffffffffffffda RBX: 00007f38275d5fa0 RCX: 00007f382738eba9
[  378.459473][T18156] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000003
[  378.459484][T18156] RBP: 00007f38281a4090 R08: 0000000000000000 R09: 0000000000000000
[  378.459495][T18156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  378.459506][T18156] R13: 00007f38275d6038 R14: 00007f38275d5fa0 R15: 00007ffd52298fd8
[  378.459533][T18156]  </TASK>
[  378.900748][ T1303] lec:lec_start_xmit: lec0:No lecd attached
[  379.028798][T18169] syzkaller0: entered promiscuous mode
[  379.038051][T18169] syzkaller0: entered allmulticast mode
[  379.121482][T18170] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  379.139562][T18170] syzkaller0: entered promiscuous mode
[  379.148818][T18170] syzkaller0: entered allmulticast mode
[  379.216864][T18170] tipc: Resetting bearer <eth:syzkaller0>
[  379.232872][T18165] tipc: Resetting bearer <eth:syzkaller0>
[  379.283765][T18187] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4247'.
[  379.304559][T18187] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4247'.
[  379.345561][T18165] tipc: Disabling bearer <eth:syzkaller0>
[  379.450149][T18195] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4249'.
[  379.502246][T18200] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  379.554543][T18194] netlink: 'syz.3.4250': attribute type 10 has an invalid length.
[  379.576018][T18194] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4250'.
[  379.611655][T18194] dummy0: entered promiscuous mode
[  379.643460][T18194] bridge0: port 3(dummy0) entered blocking state
[  379.657346][T18194] bridge0: port 3(dummy0) entered disabled state
[  379.667524][T18194] dummy0: entered allmulticast mode
[  379.885681][T18223] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  379.925238][T18227] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4262'.
[  379.961553][T18227] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4262'.
[  379.981567][T18227] netlink: 'syz.0.4262': attribute type 11 has an invalid length.
[  380.046245][   T36] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  380.068773][   T36] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  380.105789][   T36] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  380.106855][T18243] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4268'.
[  380.136508][   T36] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  380.159918][T18246] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4268'.
[  380.333465][T18256] netlink: 3 bytes leftover after parsing attributes in process `syz.4.4271'.
[  380.366684][T18259] netlink: 'syz.1.4273': attribute type 6 has an invalid length.
[  380.382787][T18256] openvswitch: netlink: Actions may not be safe on all matching packets
[  380.407016][T18264] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  380.422245][T18264] syzkaller0: entered promiscuous mode
[  380.427914][T18264] syzkaller0: entered allmulticast mode
[  380.517019][T18264] tipc: Resetting bearer <eth:syzkaller0>
[  380.530582][T18260] tipc: Resetting bearer <eth:syzkaller0>
[  380.533601][T18271] netlink: 112 bytes leftover after parsing attributes in process `syz.1.4276'.
[  380.563160][T18260] tipc: Disabling bearer <eth:syzkaller0>
[  380.657347][T18276] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  380.708466][   T30] audit: type=1804 audit(1757561550.135:4): pid=18283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.4279" name="/newroot/1062/cgroup.controllers" dev="tmpfs" ino=5392 res=1 errno=0
[  380.786097][   T30] audit: type=1800 audit(1757561550.135:5): pid=18283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.4279" name="cgroup.controllers" dev="tmpfs" ino=5392 res=0 errno=0
[  380.842974][T18291] syzkaller1: entered promiscuous mode
[  380.848644][T18291] syzkaller1: entered allmulticast mode
[  381.016545][T18302] : renamed from hsr0
[  381.053969][T18304] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  381.064627][T18304] syzkaller0: entered promiscuous mode
[  381.077264][T18304] syzkaller0: entered allmulticast mode
[  381.117055][T18304] tipc: Resetting bearer <eth:syzkaller0>
[  381.140817][T18303] tipc: Resetting bearer <eth:syzkaller0>
[  381.185417][T18303] tipc: Disabling bearer <eth:syzkaller0>
[  381.230919][T18314] netlink: 'syz.1.4292': attribute type 7 has an invalid length.
[  381.452763][T18328] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  381.715095][T18352] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  381.723154][T18352] syzkaller0: entered promiscuous mode
[  381.728773][T18352] syzkaller0: entered allmulticast mode
[  381.751024][T18354] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  381.769865][T18352] tipc: Resetting bearer <eth:syzkaller0>
[  381.791304][T18351] tipc: Resetting bearer <eth:syzkaller0>
[  381.821911][T18351] tipc: Disabling bearer <eth:syzkaller0>
[  381.861650][T18364] tipc: Resetting bearer <eth:syzkaller0>
[  382.159761][T18385] netlink: 'syz.0.4314': attribute type 7 has an invalid length.
[  382.174835][T18387] FAULT_INJECTION: forcing a failure.
[  382.174835][T18387] name failslab, interval 1, probability 0, space 0, times 0
[  382.208050][T18387] CPU: 0 UID: 0 PID: 18387 Comm: syz.1.4315 Not tainted syzkaller #0 PREEMPT(full) 
[  382.208075][T18387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  382.208086][T18387] Call Trace:
[  382.208095][T18387]  <TASK>
[  382.208104][T18387]  dump_stack_lvl+0x189/0x250
[  382.208128][T18387]  ? __pfx____ratelimit+0x10/0x10
[  382.208151][T18387]  ? __pfx_dump_stack_lvl+0x10/0x10
[  382.208170][T18387]  ? __pfx__printk+0x10/0x10
[  382.208197][T18387]  ? __pfx___might_resched+0x10/0x10
[  382.208220][T18387]  should_fail_ex+0x414/0x560
[  382.208247][T18387]  should_failslab+0xa8/0x100
[  382.208272][T18387]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  382.208294][T18387]  ? __alloc_skb+0x112/0x2d0
[  382.208316][T18387]  __alloc_skb+0x112/0x2d0
[  382.208337][T18387]  netlink_sendmsg+0x5c6/0xb30
[  382.208363][T18387]  ? __pfx_netlink_sendmsg+0x10/0x10
[  382.208382][T18387]  ? aa_sock_msg_perm+0xf1/0x1d0
[  382.208401][T18387]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  382.208420][T18387]  ? __pfx_netlink_sendmsg+0x10/0x10
[  382.208437][T18387]  __sock_sendmsg+0x21c/0x270
[  382.208471][T18387]  __sys_sendto+0x3bd/0x520
[  382.208492][T18387]  ? __pfx___sys_sendto+0x10/0x10
[  382.208521][T18387]  ? fput_close_sync+0x119/0x200
[  382.208557][T18387]  ? rcu_is_watching+0x15/0xb0
[  382.208578][T18387]  __x64_sys_sendto+0xde/0x100
[  382.208597][T18387]  do_syscall_64+0xfa/0x3b0
[  382.208612][T18387]  ? lockdep_hardirqs_on+0x9c/0x150
[  382.208634][T18387]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.208651][T18387]  ? clear_bhb_loop+0x60/0xb0
[  382.208672][T18387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.208688][T18387] RIP: 0033:0x7f5b0a190a3c
[  382.208705][T18387] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  382.208719][T18387] RSP: 002b:00007f5b0b0a4e20 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  382.208738][T18387] RAX: ffffffffffffffda RBX: 00007f5b0b0a4fa0 RCX: 00007f5b0a190a3c
[  382.208752][T18387] RDX: 0000000000000024 RSI: 00007f5b0b0a4ff0 RDI: 0000000000000004
[  382.208762][T18387] RBP: 0000000000000000 R08: 00007f5b0b0a4e74 R09: 000000000000000c
[  382.208773][T18387] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004
[  382.208784][T18387] R13: 0000000000000000 R14: 00007f5b0b0a4ff0 R15: 0000000000000000
[  382.208811][T18387]  </TASK>
[  382.933621][T18387] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  383.148400][T18417] netlink: 'syz.0.4323': attribute type 6 has an invalid length.
[  383.237524][T18423] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  383.268303][T18427] netlink: 'syz.0.4326': attribute type 1 has an invalid length.
[  383.547107][T18441] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  383.564650][T18441] syzkaller0: entered promiscuous mode
[  383.572702][T18441] syzkaller0: entered allmulticast mode
[  383.632492][T18441] tipc: Resetting bearer <eth:syzkaller0>
[  383.677755][T18440] tipc: Resetting bearer <eth:syzkaller0>
[  383.742231][T18440] tipc: Disabling bearer <eth:syzkaller0>
[  383.772833][T18456] netlink: 'syz.3.4340': attribute type 1 has an invalid length.
[  383.821407][T18461] tls_set_device_offload: netdev not found
[  383.832135][T18456] 8021q: adding VLAN 0 to HW filter on device bond19
[  383.840745][T18454] syzkaller1: entered promiscuous mode
[  383.846238][T18454] syzkaller1: entered allmulticast mode
[  384.029068][    C1] lec0: NETDEV WATCHDOG: CPU: 1: transmit queue 0 timed out 5130 ms
[  384.037150][    C1] lec:lec_tx_timeout: lec0
[  384.347043][T18499] FAULT_INJECTION: forcing a failure.
[  384.347043][T18499] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  384.368028][T18499] CPU: 0 UID: 0 PID: 18499 Comm: syz.0.4354 Not tainted syzkaller #0 PREEMPT(full) 
[  384.368054][T18499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  384.368065][T18499] Call Trace:
[  384.368073][T18499]  <TASK>
[  384.368081][T18499]  dump_stack_lvl+0x189/0x250
[  384.368106][T18499]  ? __pfx____ratelimit+0x10/0x10
[  384.368130][T18499]  ? __pfx_dump_stack_lvl+0x10/0x10
[  384.368149][T18499]  ? __pfx__printk+0x10/0x10
[  384.368184][T18499]  should_fail_ex+0x414/0x560
[  384.368220][T18499]  _copy_to_user+0x31/0xb0
[  384.368243][T18499]  simple_read_from_buffer+0xe1/0x170
[  384.368271][T18499]  proc_fail_nth_read+0x1b3/0x220
[  384.368294][T18499]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  384.368317][T18499]  ? rw_verify_area+0x2a6/0x4d0
[  384.368337][T18499]  ? __lock_acquire+0xab9/0xd20
[  384.368357][T18499]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  384.368378][T18499]  vfs_read+0x200/0xa30
[  384.368398][T18499]  ? fdget_pos+0x247/0x320
[  384.368418][T18499]  ? __pfx___mutex_lock+0x10/0x10
[  384.368436][T18499]  ? __pfx_vfs_read+0x10/0x10
[  384.368458][T18499]  ? __fget_files+0x2a/0x420
[  384.368479][T18499]  ? __fget_files+0x3a0/0x420
[  384.368493][T18499]  ? __fget_files+0x2a/0x420
[  384.368519][T18499]  ksys_read+0x145/0x250
[  384.368542][T18499]  ? __pfx_ksys_read+0x10/0x10
[  384.368560][T18499]  ? rcu_is_watching+0x15/0xb0
[  384.368584][T18499]  ? do_syscall_64+0xbe/0x3b0
[  384.368605][T18499]  do_syscall_64+0xfa/0x3b0
[  384.368621][T18499]  ? lockdep_hardirqs_on+0x9c/0x150
[  384.368643][T18499]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.368660][T18499]  ? clear_bhb_loop+0x60/0xb0
[  384.368682][T18499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.368699][T18499] RIP: 0033:0x7f382738d5bc
[  384.368715][T18499] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  384.368729][T18499] RSP: 002b:00007f38281a4030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  384.368748][T18499] RAX: ffffffffffffffda RBX: 00007f38275d5fa0 RCX: 00007f382738d5bc
[  384.368761][T18499] RDX: 000000000000000f RSI: 00007f38281a40a0 RDI: 0000000000000005
[  384.368773][T18499] RBP: 00007f38281a4090 R08: 0000000000000000 R09: 0000000000000000
[  384.368784][T18499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  384.368795][T18499] R13: 00007f38275d6038 R14: 00007f38275d5fa0 R15: 00007ffd52298fd8
[  384.368825][T18499]  </TASK>
[  384.621316][T18503] netlink: 'syz.4.4356': attribute type 7 has an invalid length.
[  384.730609][T18509] __nla_validate_parse: 14 callbacks suppressed
[  384.730627][T18509] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4359'.
[  384.764764][T18511] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4360'.
[  384.966454][T18519] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  385.002209][T18523] netlink: 'syz.3.4362': attribute type 4 has an invalid length.
[  385.019234][T18523] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4362'.
[  385.032048][T18526] netlink: 112 bytes leftover after parsing attributes in process `syz.4.4367'.
[  385.052194][T18523] wlan1: mtu less than device minimum
[  385.132032][T18532] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.4362'.
[  385.234879][T18541] FAULT_INJECTION: forcing a failure.
[  385.234879][T18541] name failslab, interval 1, probability 0, space 0, times 0
[  385.268066][T18541] CPU: 0 UID: 0 PID: 18541 Comm: syz.5.4370 Not tainted syzkaller #0 PREEMPT(full) 
[  385.268091][T18541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  385.268102][T18541] Call Trace:
[  385.268110][T18541]  <TASK>
[  385.268118][T18541]  dump_stack_lvl+0x189/0x250
[  385.268142][T18541]  ? __pfx____ratelimit+0x10/0x10
[  385.268166][T18541]  ? __pfx_dump_stack_lvl+0x10/0x10
[  385.268186][T18541]  ? __pfx__printk+0x10/0x10
[  385.268211][T18541]  ? __pfx___might_resched+0x10/0x10
[  385.268232][T18541]  should_fail_ex+0x414/0x560
[  385.268259][T18541]  should_failslab+0xa8/0x100
[  385.268283][T18541]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  385.268306][T18541]  ? __alloc_skb+0x112/0x2d0
[  385.268327][T18541]  __alloc_skb+0x112/0x2d0
[  385.268348][T18541]  netlink_sendmsg+0x5c6/0xb30
[  385.268394][T18541]  ? __pfx_netlink_sendmsg+0x10/0x10
[  385.268413][T18541]  ? aa_sock_msg_perm+0xf1/0x1d0
[  385.268431][T18541]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  385.268449][T18541]  ? __pfx_netlink_sendmsg+0x10/0x10
[  385.268465][T18541]  __sock_sendmsg+0x21c/0x270
[  385.268491][T18541]  ____sys_sendmsg+0x505/0x830
[  385.268516][T18541]  ? __pfx_____sys_sendmsg+0x10/0x10
[  385.268543][T18541]  ? import_iovec+0x74/0xa0
[  385.268566][T18541]  ___sys_sendmsg+0x21f/0x2a0
[  385.268587][T18541]  ? __pfx____sys_sendmsg+0x10/0x10
[  385.268642][T18541]  ? __fget_files+0x2a/0x420
[  385.268657][T18541]  ? __fget_files+0x3a0/0x420
[  385.268683][T18541]  __x64_sys_sendmsg+0x19b/0x260
[  385.268705][T18541]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  385.268742][T18541]  ? do_syscall_64+0xbe/0x3b0
[  385.268764][T18541]  do_syscall_64+0xfa/0x3b0
[  385.268782][T18541]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.268799][T18541]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  385.268816][T18541]  ? clear_bhb_loop+0x60/0xb0
[  385.268836][T18541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.268853][T18541] RIP: 0033:0x7efda558eba9
[  385.268870][T18541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  385.268886][T18541] RSP: 002b:00007efda37f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  385.268905][T18541] RAX: ffffffffffffffda RBX: 00007efda57d5fa0 RCX: 00007efda558eba9
[  385.268919][T18541] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  385.268930][T18541] RBP: 00007efda37f6090 R08: 0000000000000000 R09: 0000000000000000
[  385.268940][T18541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  385.268951][T18541] R13: 00007efda57d6038 R14: 00007efda57d5fa0 R15: 00007ffd6c891168
[  385.268981][T18541]  </TASK>
[  385.700190][T18552] netlink: 'syz.5.4376': attribute type 7 has an invalid length.
[  385.726856][T18554] syz_tun: entered allmulticast mode
[  385.750454][T18557] FAULT_INJECTION: forcing a failure.
[  385.750454][T18557] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  385.784389][T18557] CPU: 1 UID: 0 PID: 18557 Comm: syz.0.4375 Not tainted syzkaller #0 PREEMPT(full) 
[  385.784414][T18557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  385.784425][T18557] Call Trace:
[  385.784433][T18557]  <TASK>
[  385.784441][T18557]  dump_stack_lvl+0x189/0x250
[  385.784467][T18557]  ? __pfx____ratelimit+0x10/0x10
[  385.784491][T18557]  ? __pfx_dump_stack_lvl+0x10/0x10
[  385.784511][T18557]  ? __pfx__printk+0x10/0x10
[  385.784542][T18557]  should_fail_ex+0x414/0x560
[  385.784569][T18557]  _copy_to_user+0x31/0xb0
[  385.784591][T18557]  simple_read_from_buffer+0xe1/0x170
[  385.784620][T18557]  proc_fail_nth_read+0x1b3/0x220
[  385.784643][T18557]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  385.784665][T18557]  ? rw_verify_area+0x2a6/0x4d0
[  385.784685][T18557]  ? __lock_acquire+0xab9/0xd20
[  385.784705][T18557]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  385.784725][T18557]  vfs_read+0x200/0xa30
[  385.784745][T18557]  ? fdget_pos+0x247/0x320
[  385.784765][T18557]  ? __pfx___mutex_lock+0x10/0x10
[  385.784783][T18557]  ? __pfx_vfs_read+0x10/0x10
[  385.784806][T18557]  ? __fget_files+0x2a/0x420
[  385.784826][T18557]  ? __fget_files+0x3a0/0x420
[  385.784838][T18557]  ? __fget_files+0x2a/0x420
[  385.784861][T18557]  ksys_read+0x145/0x250
[  385.784884][T18557]  ? __pfx_ksys_read+0x10/0x10
[  385.784901][T18557]  ? rcu_is_watching+0x15/0xb0
[  385.784923][T18557]  ? do_syscall_64+0xbe/0x3b0
[  385.784943][T18557]  do_syscall_64+0xfa/0x3b0
[  385.784957][T18557]  ? lockdep_hardirqs_on+0x9c/0x150
[  385.784979][T18557]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.784996][T18557]  ? clear_bhb_loop+0x60/0xb0
[  385.785017][T18557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.785033][T18557] RIP: 0033:0x7f382738d5bc
[  385.785049][T18557] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  385.785063][T18557] RSP: 002b:00007f38281a4030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  385.785082][T18557] RAX: ffffffffffffffda RBX: 00007f38275d5fa0 RCX: 00007f382738d5bc
[  385.785095][T18557] RDX: 000000000000000f RSI: 00007f38281a40a0 RDI: 0000000000000004
[  385.785107][T18557] RBP: 00007f38281a4090 R08: 0000000000000000 R09: 0000000000000000
[  385.785118][T18557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  385.785128][T18557] R13: 00007f38275d6038 R14: 00007f38275d5fa0 R15: 00007ffd52298fd8
[  385.785154][T18557]  </TASK>
[  385.786564][T18554] syz_tun: left allmulticast mode
[  385.975950][T18566] netlink: 84 bytes leftover after parsing attributes in process `syz.5.4379'.
[  386.083437][T18562] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4379'.
[  386.364520][T18589] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4388'.
[  386.453547][T18599] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4391'.
[  386.495992][T18602] syzkaller1: entered promiscuous mode
[  386.503763][T18602] syzkaller1: entered allmulticast mode
[  386.534166][T18604] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  386.917872][T18625] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  386.926273][T18625] syzkaller0: entered promiscuous mode
[  386.932403][T18625] syzkaller0: entered allmulticast mode
[  386.943229][T18625] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  386.973446][T18625] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4400'.
[  386.987939][T18625] tipc: Resetting bearer <eth:syzkaller0>
[  386.998657][T18624] tipc: Resetting bearer <eth:syzkaller0>
[  387.025502][T18624] tipc: Disabling bearer <eth:syzkaller0>
[  387.097578][T18633] netlink: 'syz.5.4404': attribute type 1 has an invalid length.
[  387.118417][T18635] netlink: 'syz.1.4405': attribute type 6 has an invalid length.
[  387.226550][T18641] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  387.255078][T18641] syzkaller0: entered promiscuous mode
[  387.269683][T18641] syzkaller0: entered allmulticast mode
[  387.320290][ T3472] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  387.338898][ T3472] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  387.362377][T18641] tipc: Resetting bearer <eth:syzkaller0>
[  387.381762][T18638] tipc: Resetting bearer <eth:syzkaller0>
[  387.419672][T18638] tipc: Disabling bearer <eth:syzkaller0>
[  387.445732][ T3472] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  387.460268][ T3472] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  387.478577][T18648] syzkaller1: entered promiscuous mode
[  387.484899][T18648] syzkaller1: entered allmulticast mode
[  387.989976][T18686] FAULT_INJECTION: forcing a failure.
[  387.989976][T18686] name failslab, interval 1, probability 0, space 0, times 0
[  388.007669][T18686] CPU: 1 UID: 0 PID: 18686 Comm: syz.1.4427 Not tainted syzkaller #0 PREEMPT(full) 
[  388.007693][T18686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  388.007703][T18686] Call Trace:
[  388.007711][T18686]  <TASK>
[  388.007720][T18686]  dump_stack_lvl+0x189/0x250
[  388.007745][T18686]  ? __pfx____ratelimit+0x10/0x10
[  388.007768][T18686]  ? __pfx_dump_stack_lvl+0x10/0x10
[  388.007787][T18686]  ? __pfx__printk+0x10/0x10
[  388.007815][T18686]  ? __pfx___might_resched+0x10/0x10
[  388.007832][T18686]  ? fs_reclaim_acquire+0x7d/0x100
[  388.007859][T18686]  should_fail_ex+0x414/0x560
[  388.007886][T18686]  should_failslab+0xa8/0x100
[  388.007962][T18686]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  388.007984][T18686]  ? __alloc_skb+0x112/0x2d0
[  388.008006][T18686]  __alloc_skb+0x112/0x2d0
[  388.008026][T18686]  netlink_ack+0x146/0xa50
[  388.008046][T18686]  ? __pfx_genl_rcv_msg+0x10/0x10
[  388.008064][T18686]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  388.008083][T18686]  ? __pfx_nl80211_post_doit+0x10/0x10
[  388.008118][T18686]  netlink_rcv_skb+0x28c/0x470
[  388.008140][T18686]  ? __lock_acquire+0xab9/0xd20
[  388.008162][T18686]  ? __pfx_genl_rcv_msg+0x10/0x10
[  388.008184][T18686]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  388.008229][T18686]  ? down_read+0x1ad/0x2e0
[  388.008249][T18686]  genl_rcv+0x28/0x40
[  388.008266][T18686]  netlink_unicast+0x82f/0x9e0
[  388.008297][T18686]  ? __pfx_netlink_unicast+0x10/0x10
[  388.008322][T18686]  ? netlink_sendmsg+0x642/0xb30
[  388.008336][T18686]  ? skb_put+0x11b/0x210
[  388.008358][T18686]  netlink_sendmsg+0x805/0xb30
[  388.008385][T18686]  ? __pfx_netlink_sendmsg+0x10/0x10
[  388.008407][T18686]  ? aa_sock_msg_perm+0xf1/0x1d0
[  388.008426][T18686]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  388.008445][T18686]  ? __pfx_netlink_sendmsg+0x10/0x10
[  388.008463][T18686]  __sock_sendmsg+0x21c/0x270
[  388.008487][T18686]  __sys_sendto+0x3bd/0x520
[  388.008506][T18686]  ? __pfx___sys_sendto+0x10/0x10
[  388.008534][T18686]  ? fput_close_sync+0x119/0x200
[  388.008569][T18686]  ? rcu_is_watching+0x15/0xb0
[  388.008593][T18686]  __x64_sys_sendto+0xde/0x100
[  388.008618][T18686]  do_syscall_64+0xfa/0x3b0
[  388.008634][T18686]  ? lockdep_hardirqs_on+0x9c/0x150
[  388.008656][T18686]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.008673][T18686]  ? clear_bhb_loop+0x60/0xb0
[  388.008694][T18686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.008712][T18686] RIP: 0033:0x7f5b0a190a3c
[  388.008728][T18686] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  388.008743][T18686] RSP: 002b:00007f5b0b0a4e20 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  388.008762][T18686] RAX: ffffffffffffffda RBX: 00007f5b0b0a4fa0 RCX: 00007f5b0a190a3c
[  388.008776][T18686] RDX: 0000000000000024 RSI: 00007f5b0b0a4ff0 RDI: 0000000000000004
[  388.008788][T18686] RBP: 0000000000000000 R08: 00007f5b0b0a4e74 R09: 000000000000000c
[  388.008799][T18686] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004
[  388.008810][T18686] R13: 0000000000000000 R14: 00007f5b0b0a4ff0 R15: 0000000000000000
[  388.008840][T18686]  </TASK>
[  388.316503][T18686] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  388.567348][T18698] syzkaller1: entered promiscuous mode
[  388.582940][T18698] syzkaller1: entered allmulticast mode
[  388.622744][T18708] pim6reg: entered allmulticast mode
[  388.638120][T18708] netlink: 'syz.0.4435': attribute type 1 has an invalid length.
[  388.655721][T18708] netlink: 'syz.0.4435': attribute type 3 has an invalid length.
[  388.681471][T18710] !
: renamed from dummy0
[  388.688366][T18708] pim6reg: left allmulticast mode
[  388.775918][T18715] netlink: 'syz.4.4438': attribute type 6 has an invalid length.
[  388.891024][T18720] netlink: 'syz.1.4442': attribute type 1 has an invalid length.
[  388.910523][T18721] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  389.128207][T18734] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  389.144794][T18734] tipc: Resetting bearer <eth:syzkaller0>
[  389.293953][T18738] openvswitch: netlink: Tunnel attr 7940 out of range max 16
[  389.600269][T18751] FAULT_INJECTION: forcing a failure.
[  389.600269][T18751] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  389.616899][T18751] CPU: 0 UID: 0 PID: 18751 Comm: syz.1.4452 Not tainted syzkaller #0 PREEMPT(full) 
[  389.616921][T18751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  389.616931][T18751] Call Trace:
[  389.616938][T18751]  <TASK>
[  389.616946][T18751]  dump_stack_lvl+0x189/0x250
[  389.616968][T18751]  ? __pfx____ratelimit+0x10/0x10
[  389.616988][T18751]  ? __pfx_dump_stack_lvl+0x10/0x10
[  389.617012][T18751]  ? __pfx__printk+0x10/0x10
[  389.617028][T18751]  ? __might_fault+0xb0/0x130
[  389.617052][T18751]  should_fail_ex+0x414/0x560
[  389.617072][T18751]  _copy_from_user+0x2d/0xb0
[  389.617087][T18751]  ___sys_sendmsg+0x158/0x2a0
[  389.617107][T18751]  ? __pfx____sys_sendmsg+0x10/0x10
[  389.617158][T18751]  ? __fget_files+0x2a/0x420
[  389.617171][T18751]  ? __fget_files+0x3a0/0x420
[  389.617197][T18751]  __x64_sys_sendmsg+0x19b/0x260
[  389.617219][T18751]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  389.617245][T18751]  ? __pfx_ksys_write+0x10/0x10
[  389.617264][T18751]  ? rcu_is_watching+0x15/0xb0
[  389.617292][T18751]  ? do_syscall_64+0xbe/0x3b0
[  389.617313][T18751]  do_syscall_64+0xfa/0x3b0
[  389.617328][T18751]  ? lockdep_hardirqs_on+0x9c/0x150
[  389.617351][T18751]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.617368][T18751]  ? clear_bhb_loop+0x60/0xb0
[  389.617389][T18751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.617406][T18751] RIP: 0033:0x7f5b0a18eba9
[  389.617422][T18751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.617443][T18751] RSP: 002b:00007f5b0b0a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  389.617462][T18751] RAX: ffffffffffffffda RBX: 00007f5b0a3d5fa0 RCX: 00007f5b0a18eba9
[  389.617475][T18751] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  389.617487][T18751] RBP: 00007f5b0b0a6090 R08: 0000000000000000 R09: 0000000000000000
[  389.617498][T18751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.617514][T18751] R13: 00007f5b0a3d6038 R14: 00007f5b0a3d5fa0 R15: 00007ffd5ec476e8
[  389.617544][T18751]  </TASK>
[  389.888642][T18756] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  389.924028][T18760] __nla_validate_parse: 6 callbacks suppressed
[  389.924045][T18760] netlink: 112 bytes leftover after parsing attributes in process `syz.1.4457'.
[  389.948206][T18756] syzkaller0: entered promiscuous mode
[  389.958077][T18756] syzkaller0: entered allmulticast mode
[  389.966569][T18760] FAULT_INJECTION: forcing a failure.
[  389.966569][T18760] name failslab, interval 1, probability 0, space 0, times 0
[  389.979915][T18760] CPU: 0 UID: 0 PID: 18760 Comm: syz.1.4457 Not tainted syzkaller #0 PREEMPT(full) 
[  389.979938][T18760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  389.979949][T18760] Call Trace:
[  389.979957][T18760]  <TASK>
[  389.979965][T18760]  dump_stack_lvl+0x189/0x250
[  389.979990][T18760]  ? __pfx____ratelimit+0x10/0x10
[  389.980014][T18760]  ? __pfx_dump_stack_lvl+0x10/0x10
[  389.980033][T18760]  ? __pfx__printk+0x10/0x10
[  389.980061][T18760]  ? __pfx___might_resched+0x10/0x10
[  389.980077][T18760]  ? fs_reclaim_acquire+0x7d/0x100
[  389.980105][T18760]  should_fail_ex+0x414/0x560
[  389.980132][T18760]  should_failslab+0xa8/0x100
[  389.980157][T18760]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  389.980179][T18760]  ? __alloc_skb+0x112/0x2d0
[  389.980200][T18760]  __alloc_skb+0x112/0x2d0
[  389.980221][T18760]  netlink_ack+0x146/0xa50
[  389.980241][T18760]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  389.980277][T18760]  netlink_rcv_skb+0x28c/0x470
[  389.980298][T18760]  ? __lock_acquire+0xab9/0xd20
[  389.980322][T18760]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  389.980346][T18760]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  389.980382][T18760]  ? netlink_deliver_tap+0x2e/0x1b0
[  389.980413][T18760]  netlink_unicast+0x82f/0x9e0
[  389.980444][T18760]  ? __pfx_netlink_unicast+0x10/0x10
[  389.980469][T18760]  ? netlink_sendmsg+0x642/0xb30
[  389.980484][T18760]  ? skb_put+0x11b/0x210
[  389.980505][T18760]  netlink_sendmsg+0x805/0xb30
[  389.980532][T18760]  ? __pfx_netlink_sendmsg+0x10/0x10
[  389.980552][T18760]  ? aa_sock_msg_perm+0xf1/0x1d0
[  389.980572][T18760]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  389.980591][T18760]  ? __pfx_netlink_sendmsg+0x10/0x10
[  389.980609][T18760]  __sock_sendmsg+0x21c/0x270
[  389.980635][T18760]  ____sys_sendmsg+0x505/0x830
[  389.980660][T18760]  ? __pfx_____sys_sendmsg+0x10/0x10
[  389.980698][T18760]  ? import_iovec+0x74/0xa0
[  389.980722][T18760]  ___sys_sendmsg+0x21f/0x2a0
[  389.980744][T18760]  ? __pfx____sys_sendmsg+0x10/0x10
[  389.980800][T18760]  ? __fget_files+0x2a/0x420
[  389.980816][T18760]  ? __fget_files+0x3a0/0x420
[  389.980842][T18760]  __x64_sys_sendmsg+0x19b/0x260
[  389.980865][T18760]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  389.980895][T18760]  ? __pfx_ksys_write+0x10/0x10
[  389.980913][T18760]  ? rcu_is_watching+0x15/0xb0
[  389.980940][T18760]  ? do_syscall_64+0xbe/0x3b0
[  389.980961][T18760]  do_syscall_64+0xfa/0x3b0
[  389.980977][T18760]  ? lockdep_hardirqs_on+0x9c/0x150
[  389.981000][T18760]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.981017][T18760]  ? clear_bhb_loop+0x60/0xb0
[  389.981038][T18760]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.981055][T18760] RIP: 0033:0x7f5b0a18eba9
[  389.981071][T18760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.981086][T18760] RSP: 002b:00007f5b0b0a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  389.981105][T18760] RAX: ffffffffffffffda RBX: 00007f5b0a3d5fa0 RCX: 00007f5b0a18eba9
[  389.981118][T18760] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  389.981130][T18760] RBP: 00007f5b0b0a6090 R08: 0000000000000000 R09: 0000000000000000
[  389.981142][T18760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.981153][T18760] R13: 00007f5b0a3d6038 R14: 00007f5b0a3d5fa0 R15: 00007ffd5ec476e8
[  389.981183][T18760]  </TASK>
[  390.345599][T18756] tipc: Resetting bearer <eth:syzkaller0>
[  390.362847][T18755] tipc: Resetting bearer <eth:syzkaller0>
[  390.422798][T18755] tipc: Disabling bearer <eth:syzkaller0>
[  390.454704][T18772] netlink: 168 bytes leftover after parsing attributes in process `syz.3.4460'.
[  390.467842][T18770] netlink: 88 bytes leftover after parsing attributes in process `syz.3.4460'.
[  390.483040][T18773] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.4461'.
[  390.714352][T18792] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4469'.
[  390.733482][T18792] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4469'.
[  390.750896][T18792] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  390.761785][T18792] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  390.770081][T18792] gretap1: entered promiscuous mode
[  390.775373][T18792] gretap1: entered allmulticast mode
[  390.881793][T18808] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  390.964538][T18813] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4474'.
[  391.067786][T18820] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.225901][T18830] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4482'.
[  391.296578][T18834] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  391.667018][T18859] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4494'.
[  391.802426][T18867] veth0: entered promiscuous mode
[  391.811876][T18865] veth0: left promiscuous mode
[  392.042249][T18884] netlink: 112 bytes leftover after parsing attributes in process `syz.3.4501'.
[  392.064823][T18886] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[  392.214273][T18895] netlink: 'syz.4.4509': attribute type 5 has an invalid length.
[  392.437448][T18914] 8021q: adding VLAN 0 to HW filter on device bond0
[  392.475013][T18917] FAULT_INJECTION: forcing a failure.
[  392.475013][T18917] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  392.496359][T18917] CPU: 0 UID: 0 PID: 18917 Comm: syz.4.4517 Not tainted syzkaller #0 PREEMPT(full) 
[  392.496381][T18917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  392.496389][T18917] Call Trace:
[  392.496396][T18917]  <TASK>
[  392.496403][T18917]  dump_stack_lvl+0x189/0x250
[  392.496428][T18917]  ? __pfx____ratelimit+0x10/0x10
[  392.496452][T18917]  ? __pfx_dump_stack_lvl+0x10/0x10
[  392.496471][T18917]  ? __pfx__printk+0x10/0x10
[  392.496493][T18917]  ? __might_fault+0xb0/0x130
[  392.496527][T18917]  should_fail_ex+0x414/0x560
[  392.496554][T18917]  _copy_from_user+0x2d/0xb0
[  392.496576][T18917]  kstrtouint_from_user+0xc4/0x170
[  392.496611][T18917]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  392.496653][T18917]  proc_fail_nth_write+0x88/0x200
[  392.496674][T18917]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  392.496699][T18917]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  392.496720][T18917]  vfs_write+0x27b/0xb30
[  392.496751][T18917]  ? __pfx_vfs_write+0x10/0x10
[  392.496774][T18917]  ? __fget_files+0x2a/0x420
[  392.496795][T18917]  ? __fget_files+0x3a0/0x420
[  392.496809][T18917]  ? __fget_files+0x2a/0x420
[  392.496835][T18917]  ksys_write+0x145/0x250
[  392.496859][T18917]  ? __pfx_ksys_write+0x10/0x10
[  392.496878][T18917]  ? rcu_is_watching+0x15/0xb0
[  392.496902][T18917]  ? do_syscall_64+0xbe/0x3b0
[  392.496923][T18917]  do_syscall_64+0xfa/0x3b0
[  392.496939][T18917]  ? lockdep_hardirqs_on+0x9c/0x150
[  392.496961][T18917]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.496979][T18917]  ? clear_bhb_loop+0x60/0xb0
[  392.497000][T18917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.497017][T18917] RIP: 0033:0x7eff8c18d65f
[  392.497034][T18917] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  392.497049][T18917] RSP: 002b:00007eff8d057030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  392.497068][T18917] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007eff8c18d65f
[  392.497082][T18917] RDX: 0000000000000001 RSI: 00007eff8d0570a0 RDI: 0000000000000004
[  392.497093][T18917] RBP: 00007eff8d057090 R08: 0000000000000000 R09: 0000000000000000
[  392.497105][T18917] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  392.497116][T18917] R13: 00007eff8c3d6038 R14: 00007eff8c3d5fa0 R15: 00007ffcd852f3d8
[  392.497147][T18917]  </TASK>
[  392.773348][T18924] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  393.168187][T18954] netlink: 'syz.0.4529': attribute type 33 has an invalid length.
[  393.461786][T18976] vlan0: entered promiscuous mode
[  393.654033][T18984] syzkaller0: entered promiscuous mode
[  393.668481][T18984] syzkaller0: entered allmulticast mode
[  394.023595][T19012] netlink: 'syz.4.4550': attribute type 1 has an invalid length.
[  394.142452][T19021] netlink: 'syz.4.4553': attribute type 1 has an invalid length.
[  394.365392][T19031] syzkaller0: entered promiscuous mode
[  394.377219][T19031] syzkaller0: entered allmulticast mode
[  394.462735][T19029] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  394.987873][T19075] __nla_validate_parse: 9 callbacks suppressed
[  394.987891][T19075] netlink: 516 bytes leftover after parsing attributes in process `syz.0.4570'.
[  395.166643][T19088] syzkaller0: entered promiscuous mode
[  395.195395][T19088] syzkaller0: entered allmulticast mode
[  395.494254][T19110] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4582'.
[  395.556938][T19115] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  395.626810][T19115] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  395.666137][T19124] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4589'.
[  395.754293][T19115] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  395.755809][T19132] netlink: 112 bytes leftover after parsing attributes in process `syz.4.4588'.
[  395.857544][T19115] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  395.964768][T19146] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  395.987162][ T3488] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  395.997117][T19140] syzkaller0: entered promiscuous mode
[  396.008029][T19140] syzkaller0: entered allmulticast mode
[  396.075464][ T3488] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  396.090387][   T36] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  396.100429][T19151] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4596'.
[  396.109788][T19150] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4597'.
[  396.170218][   T36] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  396.326505][T19163] netlink: 'syz.3.4602': attribute type 1 has an invalid length.
[  396.404202][T19163] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4602'.
[  396.422868][T19169] netlink: 27 bytes leftover after parsing attributes in process `syz.0.4605'.
[  396.440084][T19171] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4605'.
[  396.484223][T19171] !
: renamed from dummy0
[  396.598322][T19179] netlink: 'syz.3.4608': attribute type 21 has an invalid length.
[  396.606342][T19179] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4608'.
[  396.738583][T19194] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  396.832388][T19194] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  396.906163][T19205] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  396.943487][T19194] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  397.027560][T19194] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  397.110744][   T36] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  397.154722][T19215] team_slave_0: mtu greater than device maximum
[  397.162283][T19216] team_slave_0: mtu greater than device maximum
[  397.168776][   T36] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  397.181492][T19215] netlink: 'syz.5.4624': attribute type 1 has an invalid length.
[  397.181882][   T36] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  397.202498][T19215] netlink: 'syz.5.4624': attribute type 1 has an invalid length.
[  397.224140][   T36] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  397.525518][T19240] netlink: 'syz.4.4634': attribute type 1 has an invalid length.
[  397.550814][T19245] netlink: 'syz.0.4631': attribute type 2 has an invalid length.
[  397.866142][T19264] netlink: 'syz.0.4639': attribute type 1 has an invalid length.
[  397.945948][T19270] netlink: 'syz.1.4642': attribute type 1 has an invalid length.
[  398.055446][T19273] bond23: (slave gretap2): making interface the new active one
[  398.064614][T19273] bond23: (slave gretap2): Enslaving as an active interface with an up link
[  398.851260][T19334] openvswitch: netlink: Flow actions attr not present in new flow.
[  398.878669][T19336] syz.1.4668: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  398.920269][T19336] CPU: 0 UID: 0 PID: 19336 Comm: syz.1.4668 Not tainted syzkaller #0 PREEMPT(full) 
[  398.920296][T19336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  398.920308][T19336] Call Trace:
[  398.920315][T19336]  <TASK>
[  398.920324][T19336]  dump_stack_lvl+0x189/0x250
[  398.920352][T19336]  ? __pfx_dump_stack_lvl+0x10/0x10
[  398.920373][T19336]  ? __pfx__printk+0x10/0x10
[  398.920396][T19336]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  398.920417][T19336]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  398.920439][T19336]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  398.920462][T19336]  warn_alloc+0x214/0x310
[  398.920488][T19336]  ? stack_depot_save_flags+0x40/0x860
[  398.920512][T19336]  ? __pfx_warn_alloc+0x10/0x10
[  398.920537][T19336]  ? kasan_save_track+0x4f/0x80
[  398.920558][T19336]  ? xskq_create+0x56/0x170
[  398.920577][T19336]  ? xsk_init_queue+0xb0/0x110
[  398.920596][T19336]  ? xsk_setsockopt+0x4dc/0x8d0
[  398.920614][T19336]  ? do_sock_setsockopt+0x17c/0x1b0
[  398.920630][T19336]  ? __x64_sys_setsockopt+0x13f/0x1b0
[  398.920646][T19336]  ? do_syscall_64+0xfa/0x3b0
[  398.920662][T19336]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.920688][T19336]  __vmalloc_node_range_noprof+0x125/0x12f0
[  398.920749][T19336]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  398.920778][T19336]  ? __kasan_kmalloc+0x93/0xb0
[  398.920802][T19336]  vmalloc_user_noprof+0xad/0xf0
[  398.920823][T19336]  ? xskq_create+0xbf/0x170
[  398.920846][T19336]  xskq_create+0xbf/0x170
[  398.920870][T19336]  xsk_init_queue+0xb0/0x110
[  398.920895][T19336]  xsk_setsockopt+0x4dc/0x8d0
[  398.920919][T19336]  ? __pfx_xsk_setsockopt+0x10/0x10
[  398.920939][T19336]  ? __pfx_aa_sk_perm+0x10/0x10
[  398.920967][T19336]  ? aa_sock_opt_perm+0xff/0x1b0
[  398.920987][T19336]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  398.921005][T19336]  ? __pfx_xsk_setsockopt+0x10/0x10
[  398.921028][T19336]  do_sock_setsockopt+0x17c/0x1b0
[  398.921051][T19336]  __x64_sys_setsockopt+0x13f/0x1b0
[  398.921075][T19336]  do_syscall_64+0xfa/0x3b0
[  398.921091][T19336]  ? lockdep_hardirqs_on+0x9c/0x150
[  398.921113][T19336]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.921130][T19336]  ? clear_bhb_loop+0x60/0xb0
[  398.921151][T19336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.921168][T19336] RIP: 0033:0x7f5b0a18eba9
[  398.921184][T19336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.921198][T19336] RSP: 002b:00007f5b0b0a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  398.921217][T19336] RAX: ffffffffffffffda RBX: 00007f5b0a3d5fa0 RCX: 00007f5b0a18eba9
[  398.921231][T19336] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[  398.921242][T19336] RBP: 00007f5b0a211e19 R08: 0000000000000004 R09: 0000000000000000
[  398.921254][T19336] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  398.921265][T19336] R13: 00007f5b0a3d6038 R14: 00007f5b0a3d5fa0 R15: 00007ffd5ec476e8
[  398.921295][T19336]  </TASK>
[  398.921313][T19336] Mem-Info:
[  399.271300][T19336] active_anon:4770 inactive_anon:0 isolated_anon:0
[  399.271300][T19336]  active_file:3470 inactive_file:39987 isolated_file:0
[  399.271300][T19336]  unevictable:768 dirty:178 writeback:0
[  399.271300][T19336]  slab_reclaimable:13679 slab_unreclaimable:142452
[  399.271300][T19336]  mapped:29436 shmem:1360 pagetables:1079
[  399.271300][T19336]  sec_pagetables:0 bounce:0
[  399.271300][T19336]  kernel_misc_reclaimable:0
[  399.271300][T19336]  free:1277081 free_pcp:13942 free_cma:0
[  399.343130][T19336] Node 0 active_anon:19080kB inactive_anon:0kB active_file:13880kB inactive_file:159744kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:117744kB dirty:712kB writeback:0kB shmem:3904kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:15028kB pagetables:4000kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  399.343295][T19356] netem: incorrect ge model size
[  399.376517][T19336] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:80kB pagetables:116kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  399.411549][T19336] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  399.484162][T19336] lowmem_reserve[]: 0 2497 2499 2499 2499
[  399.501153][T19336] Node 0 DMA32 free:1208592kB boost:0kB min:34248kB low:42808kB high:51368kB reserved_highatomic:0KB free_highatomic:0KB active_anon:19132kB inactive_anon:0kB active_file:13880kB inactive_file:158168kB unevictable:1536kB writepending:712kB present:3129332kB managed:2557428kB mlocked:0kB bounce:0kB free_pcp:35864kB local_pcp:21460kB free_cma:0kB
[  399.535127][T19336] lowmem_reserve[]: 0 0 1 1 1
[  399.564031][T19336] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1576kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  399.613561][T19336] lowmem_reserve[]: 0 0 0 0 0
[  399.643728][ T3488] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  399.669388][ T3488] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  399.678332][ T3488] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  399.686859][T19336] Node 1 Normal free:3884988kB boost:0kB min:55632kB low:69540kB high:83448kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:19392kB local_pcp:8448kB free_cma:0kB
[  399.724424][T19336] lowmem_reserve[]: 0 0 0 0 0
[  399.734773][ T3488] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  399.745853][T19336] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  399.762043][T19336] Node 0 DMA32: 327*4kB (UM) 85*8kB (UM) 234*16kB (UM) 146*32kB (UME) 43*64kB (UM) 20*128kB (ME) 55*256kB (UME) 39*512kB (UME) 15*1024kB (UM) 4*2048kB (UM) 277*4096kB (M) = 1207908kB
[  399.785013][T19336] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  399.802529][T19336] Node 1 Normal: 201*4kB (UME) 65*8kB (UME) 45*16kB (UME) 162*32kB (UME) 50*64kB (UME) 8*128kB (UME) 5*256kB (UME) 3*512kB (ME) 2*1024kB (UM) 1*2048kB (E) 944*4096kB (M) = 3884988kB
[  399.826801][T19336] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  399.836651][T19336] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  399.847838][T19336] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  399.915813][T19336] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  399.943201][T19336] 44814 total pagecache pages
[  399.953614][T19336] 0 pages in swap cache
[  399.963604][T19336] Free swap  = 124996kB
[  399.967926][T19336] Total swap = 124996kB
[  399.973902][T19336] 2097051 pages RAM
[  399.978427][T19336] 0 pages HighMem/MovableOnly
[  399.985036][T19336] 425668 pages reserved
[  399.990837][T19336] 0 pages cma reserved
[  400.237604][T19405] tipc: Resetting bearer <eth:syzkaller0>
[  400.291183][T19414] __nla_validate_parse: 86 callbacks suppressed
[  400.291983][T19414] netlink: 144 bytes leftover after parsing attributes in process `syz.3.4696'.
[  400.773136][T19440] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  400.811830][T19437] netlink: 788 bytes leftover after parsing attributes in process `syz.4.4703'.
[  401.385332][T19468] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4717'.
[  401.475931][T19474] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4718'.
[  401.537708][T19474] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4718'.
[  401.547537][T19474] validate_nla: 35 callbacks suppressed
[  401.547554][T19474] netlink: 'syz.3.4718': attribute type 1 has an invalid length.
[  401.912421][T19492] netlink: 'syz.4.4725': attribute type 1 has an invalid length.
[  401.928602][T19492] netlink: 'syz.4.4725': attribute type 1 has an invalid length.
[  401.965339][T19492] netlink: 'syz.4.4725': attribute type 1 has an invalid length.
[  401.995112][T19492] netlink: 'syz.4.4725': attribute type 2 has an invalid length.
[  402.022515][T19492] netlink: 76 bytes leftover after parsing attributes in process `syz.4.4725'.
[  402.584539][T19518] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4733'.
[  402.651100][T19523] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4733'.
[  402.823981][    C1] ==================================================================
[  402.832078][    C1] BUG: KASAN: slab-use-after-free in __xfrm_state_delete+0x696/0xca0
[  402.840242][    C1] Write of size 8 at addr ffff888050a96230 by task modprobe/19530
[  402.848054][    C1] 
[  402.850379][    C1] CPU: 1 UID: 0 PID: 19530 Comm: modprobe Not tainted syzkaller #0 PREEMPT(full) 
[  402.850402][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  402.850415][    C1] Call Trace:
[  402.850423][    C1]  <IRQ>
[  402.850431][    C1]  dump_stack_lvl+0x189/0x250
[  402.850457][    C1]  ? __virt_addr_valid+0x1c8/0x5c0
[  402.850480][    C1]  ? rcu_is_watching+0x15/0xb0
[  402.850498][    C1]  ? __kasan_check_byte+0x12/0x40
[  402.850524][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  402.850546][    C1]  ? rcu_is_watching+0x15/0xb0
[  402.850570][    C1]  ? lock_release+0x4b/0x3e0
[  402.850598][    C1]  ? __virt_addr_valid+0x1c8/0x5c0
[  402.850621][    C1]  ? __virt_addr_valid+0x4a5/0x5c0
[  402.850645][    C1]  print_report+0xca/0x240
[  402.850664][    C1]  ? __xfrm_state_delete+0x696/0xca0
[  402.850682][    C1]  kasan_report+0x118/0x150
[  402.850709][    C1]  ? __xfrm_state_delete+0x696/0xca0
[  402.850729][    C1]  __xfrm_state_delete+0x696/0xca0
[  402.850753][    C1]  xfrm_timer_handler+0x18f/0xa00
[  402.850776][    C1]  ? __pfx_xfrm_timer_handler+0x10/0x10
[  402.850793][    C1]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  402.850819][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  402.850847][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  402.850872][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  402.850900][    C1]  ? __pfx_xfrm_timer_handler+0x10/0x10
[  402.850919][    C1]  ? __pfx_xfrm_timer_handler+0x10/0x10
[  402.850936][    C1]  __hrtimer_run_queues+0x529/0xc60
[  402.850964][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  402.850982][    C1]  ? read_tsc+0x9/0x20
[  402.851008][    C1]  ? __pfx___local_bh_disable_ip+0x10/0x10
[  402.851030][    C1]  hrtimer_run_softirq+0x187/0x2b0
[  402.851052][    C1]  handle_softirqs+0x283/0x870
[  402.851073][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  402.851094][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  402.851114][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  402.851139][    C1]  __irq_exit_rcu+0xca/0x1f0
[  402.851157][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  402.851180][    C1]  irq_exit_rcu+0x9/0x30
[  402.851196][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  402.851223][    C1]  </IRQ>
[  402.851230][    C1]  <TASK>
[  402.851238][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  402.851258][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xa8/0x110
[  402.851286][    C1] Code: 74 05 e8 8b b9 4a f6 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4f f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> e3 5e 13 f6 65 8b 05 6c e1 23 07 85 c0 74 40 48 c7 04 24 0e 36
[  402.851302][    C1] RSP: 0018:ffffc9001b74f560 EFLAGS: 00000206
[  402.851316][    C1] RAX: 445f4f4c1dc85700 RBX: 0000000000000a02 RCX: 445f4f4c1dc85700
[  402.851327][    C1] RDX: 0000000000000006 RSI: ffffffff8d9b8d8d RDI: 0000000000000001
[  402.851337][    C1] RBP: ffffc9001b74f5f0 R08: ffffffff8fa39837 R09: 1ffffffff1f47306
[  402.851347][    C1] R10: dffffc0000000000 R11: fffffbfff1f47307 R12: dffffc0000000000
[  402.851362][    C1] R13: ffffc9001b74f858 R14: ffff88801b6f0098 R15: 1ffff920036e9eac
[  402.851386][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  402.851412][    C1]  ? __page_cache_release+0x8c9/0xc10
[  402.851435][    C1]  ? folios_put_refs+0x299/0x640
[  402.851457][    C1]  folios_put_refs+0x4ef/0x640
[  402.851482][    C1]  ? __pfx_folios_put_refs+0x10/0x10
[  402.851505][    C1]  ? free_swap_cache+0x9b/0x300
[  402.851526][    C1]  free_pages_and_swap_cache+0x277/0x520
[  402.851650][    C1]  ? __pfx_free_pages_and_swap_cache+0x10/0x10
[  402.851681][    C1]  ? __virt_addr_valid+0x1c8/0x5c0
[  402.851725][    C1]  ? tlb_table_flush+0x36d/0x410
[  402.851746][    C1]  tlb_flush_mmu+0x3a0/0x680
[  402.851764][    C1]  ? __pfx_down_write+0x10/0x10
[  402.851786][    C1]  tlb_finish_mmu+0xc3/0x1d0
[  402.851806][    C1]  exit_mmap+0x44c/0xb50
[  402.851830][    C1]  ? uprobe_clear_state+0x20f/0x290
[  402.851853][    C1]  ? __pfx_exit_mmap+0x10/0x10
[  402.851876][    C1]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  402.851900][    C1]  ? __pfx_exit_aio+0x10/0x10
[  402.851931][    C1]  ? uprobe_clear_state+0x274/0x290
[  402.851954][    C1]  __mmput+0x118/0x420
[  402.851974][    C1]  exit_mm+0x1da/0x2c0
[  402.851998][    C1]  ? __pfx_exit_mm+0x10/0x10
[  402.852020][    C1]  ? hrtimer_try_to_cancel+0x3d9/0x420
[  402.852050][    C1]  ? rcu_is_watching+0x15/0xb0
[  402.852069][    C1]  do_exit+0x648/0x2300
[  402.852096][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  402.852120][    C1]  ? __pfx_do_exit+0x10/0x10
[  402.852147][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  402.852172][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  402.852199][    C1]  do_group_exit+0x21c/0x2d0
[  402.852226][    C1]  __x64_sys_exit_group+0x3f/0x40
[  402.852251][    C1]  x64_sys_call+0x21f7/0x2200
[  402.852276][    C1]  do_syscall_64+0xfa/0x3b0
[  402.852292][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  402.852312][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  402.852327][    C1]  ? clear_bhb_loop+0x60/0xb0
[  402.852344][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  402.852362][    C1] RIP: 0033:0x7f5f3cef06c5
[  402.852378][    C1] Code: Unable to access opcode bytes at 0x7f5f3cef069b.
[  402.852389][    C1] RSP: 002b:00007ffe5489c8e8 EFLAGS: 00000206 ORIG_RAX: 00000000000000e7
[  402.852410][    C1] RAX: ffffffffffffffda RBX: 00007f5f3cff1fe8 RCX: 00007f5f3cef06c5
[  402.852425][    C1] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000001
[  402.852438][    C1] RBP: 0000000000000001 R08: 00007ffe5489c878 R09: 0000000000000000
[  402.852451][    C1] R10: 00007ffe5489c710 R11: 0000000000000206 R12: 0000000000000000
[  402.852464][    C1] R13: 0000000000000001 R14: 00007f5f3cff0680 R15: 00007f5f3cff2000
[  402.852484][    C1]  </TASK>
[  402.852492][    C1] 
[  403.388875][    C1] Allocated by task 17925:
[  403.393271][    C1]  kasan_save_track+0x3e/0x80
[  403.397938][    C1]  __kasan_slab_alloc+0x6c/0x80
[  403.402791][    C1]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  403.408237][    C1]  xfrm_state_alloc+0x24/0x2f0
[  403.412997][    C1]  __find_acq_core+0x8a7/0x1c00
[  403.417830][    C1]  xfrm_find_acq+0x78/0xa0
[  403.422260][    C1]  xfrm_alloc_userspi+0x6b3/0xc90
[  403.427275][    C1]  xfrm_user_rcv_msg+0x7a0/0xab0
[  403.432199][    C1]  netlink_rcv_skb+0x205/0x470
[  403.436955][    C1]  xfrm_netlink_rcv+0x79/0x90
[  403.441651][    C1]  netlink_unicast+0x82f/0x9e0
[  403.446405][    C1]  netlink_sendmsg+0x805/0xb30
[  403.451149][    C1]  __sock_sendmsg+0x21c/0x270
[  403.455810][    C1]  ____sys_sendmsg+0x505/0x830
[  403.460558][    C1]  ___sys_sendmsg+0x21f/0x2a0
[  403.465221][    C1]  __x64_sys_sendmsg+0x19b/0x260
[  403.470161][    C1]  do_syscall_64+0xfa/0x3b0
[  403.474647][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.480521][    C1] 
[  403.482829][    C1] Freed by task 5920:
[  403.486785][    C1]  kasan_save_track+0x3e/0x80
[  403.491450][    C1]  kasan_save_free_info+0x46/0x50
[  403.496457][    C1]  __kasan_slab_free+0x5b/0x80
[  403.501221][    C1]  kmem_cache_free+0x18f/0x400
[  403.505972][    C1]  xfrm_state_gc_task+0x52d/0x6b0
[  403.510987][    C1]  process_scheduled_works+0xae1/0x17b0
[  403.516512][    C1]  worker_thread+0x8a0/0xda0
[  403.521082][    C1]  kthread+0x70e/0x8a0
[  403.525136][    C1]  ret_from_fork+0x3fc/0x770
[  403.529707][    C1]  ret_from_fork_asm+0x1a/0x30
[  403.534462][    C1] 
[  403.536766][    C1] The buggy address belongs to the object at ffff888050a96200
[  403.536766][    C1]  which belongs to the cache xfrm_state of size 928
[  403.550712][    C1] The buggy address is located 48 bytes inside of
[  403.550712][    C1]  freed 928-byte region [ffff888050a96200, ffff888050a965a0)
[  403.564395][    C1] 
[  403.566701][    C1] The buggy address belongs to the physical page:
[  403.573090][    C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888050a95980 pfn:0x50a94
[  403.583144][    C1] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  403.591624][    C1] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  403.599148][    C1] page_type: f5(slab)
[  403.603116][    C1] raw: 00fff00000000040 ffff888142ac3140 dead000000000122 0000000000000000
[  403.611678][    C1] raw: ffff888050a95980 00000000800f000d 00000000f5000000 0000000000000000
[  403.620242][    C1] head: 00fff00000000040 ffff888142ac3140 dead000000000122 0000000000000000
[  403.628892][    C1] head: ffff888050a95980 00000000800f000d 00000000f5000000 0000000000000000
[  403.637545][    C1] head: 00fff00000000002 ffffea000142a501 00000000ffffffff 00000000ffffffff
[  403.646200][    C1] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  403.654854][    C1] page dumped because: kasan: bad access detected
[  403.661283][    C1] page_owner tracks the page as allocated
[  403.666987][    C1] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 12595, tgid 12592 (syz.1.2326), ts 242471431823, free_ts 242320895518
[  403.686422][    C1]  post_alloc_hook+0x240/0x2a0
[  403.691201][    C1]  get_page_from_freelist+0x21e4/0x22c0
[  403.696729][    C1]  __alloc_frozen_pages_noprof+0x181/0x370
[  403.702520][    C1]  alloc_pages_mpol+0x232/0x4a0
[  403.707356][    C1]  allocate_slab+0x8a/0x370
[  403.711836][    C1]  ___slab_alloc+0xbeb/0x1420
[  403.716513][    C1]  kmem_cache_alloc_noprof+0x283/0x3c0
[  403.721978][    C1]  xfrm_state_alloc+0x24/0x2f0
[  403.726736][    C1]  __find_acq_core+0x8a7/0x1c00
[  403.731583][    C1]  xfrm_find_acq+0x78/0xa0
[  403.735987][    C1]  xfrm_alloc_userspi+0x6b3/0xc90
[  403.741005][    C1]  xfrm_user_rcv_msg+0x7a0/0xab0
[  403.745928][    C1]  netlink_rcv_skb+0x205/0x470
[  403.751114][    C1]  xfrm_netlink_rcv+0x79/0x90
[  403.755782][    C1]  netlink_unicast+0x82f/0x9e0
[  403.760539][    C1]  netlink_sendmsg+0x805/0xb30
[  403.765283][    C1] page last free pid 12576 tgid 12575 stack trace:
[  403.771760][    C1]  __free_frozen_pages+0xbc4/0xd30
[  403.776974][    C1]  stack_depot_save_flags+0x436/0x860
[  403.782336][    C1]  kasan_save_track+0x4f/0x80
[  403.786998][    C1]  __kasan_kmalloc+0x93/0xb0
[  403.791666][    C1]  __kmalloc_cache_noprof+0x230/0x3d0
[  403.797111][    C1]  gro_cells_destroy+0x357/0x430
[  403.802038][    C1]  netdev_run_todo+0xcd7/0xea0
[  403.806784][    C1]  rtnl_newlink+0x177b/0x1c70
[  403.811455][    C1]  rtnetlink_rcv_msg+0x7cf/0xb70
[  403.816380][    C1]  netlink_rcv_skb+0x205/0x470
[  403.821134][    C1]  netlink_unicast+0x82f/0x9e0
[  403.825883][    C1]  netlink_sendmsg+0x805/0xb30
[  403.830630][    C1]  __sock_sendmsg+0x21c/0x270
[  403.835298][    C1]  ____sys_sendmsg+0x505/0x830
[  403.840047][    C1]  ___sys_sendmsg+0x21f/0x2a0
[  403.844712][    C1]  __x64_sys_sendmsg+0x19b/0x260
[  403.849641][    C1] 
[  403.851963][    C1] Memory state around the buggy address:
[  403.857583][    C1]  ffff888050a96100: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  403.865667][    C1]  ffff888050a96180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  403.873717][    C1] >ffff888050a96200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  403.881762][    C1]                                      ^
[  403.887375][    C1]  ffff888050a96280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  403.895417][    C1]  ffff888050a96300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  403.903555][    C1] ==================================================================
[  403.911743][    C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  403.918941][    C1] CPU: 1 UID: 0 PID: 19530 Comm: modprobe Not tainted syzkaller #0 PREEMPT(full) 
[  403.928142][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  403.938226][    C1] Call Trace:
[  403.941510][    C1]  <IRQ>
[  403.944349][    C1]  dump_stack_lvl+0x99/0x250
[  403.948948][    C1]  ? __asan_memcpy+0x40/0x70
[  403.953545][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  403.958747][    C1]  ? __pfx__printk+0x10/0x10
[  403.963356][    C1]  vpanic+0x281/0x750
[  403.967343][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  403.972540][    C1]  ? __pfx_vpanic+0x10/0x10
[  403.977047][    C1]  ? irqentry_exit+0x74/0x90
[  403.981649][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  403.986857][    C1]  panic+0xb9/0xc0
[  403.990580][    C1]  ? __pfx_panic+0x10/0x10
[  403.995013][    C1]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[  404.000913][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  404.007253][    C1]  ? __xfrm_state_delete+0x696/0xca0
[  404.012538][    C1]  check_panic_on_warn+0x89/0xb0
[  404.017486][    C1]  ? __xfrm_state_delete+0x696/0xca0
[  404.022773][    C1]  end_report+0x78/0x160
[  404.027022][    C1]  kasan_report+0x129/0x150
[  404.031533][    C1]  ? __xfrm_state_delete+0x696/0xca0
[  404.036826][    C1]  __xfrm_state_delete+0x696/0xca0
[  404.041948][    C1]  xfrm_timer_handler+0x18f/0xa00
[  404.046975][    C1]  ? __pfx_xfrm_timer_handler+0x10/0x10
[  404.052523][    C1]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  404.058427][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  404.063645][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  404.069544][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  404.075888][    C1]  ? __pfx_xfrm_timer_handler+0x10/0x10
[  404.081443][    C1]  ? __pfx_xfrm_timer_handler+0x10/0x10
[  404.086981][    C1]  __hrtimer_run_queues+0x529/0xc60
[  404.092186][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  404.097907][    C1]  ? read_tsc+0x9/0x20
[  404.101992][    C1]  ? __pfx___local_bh_disable_ip+0x10/0x10
[  404.107804][    C1]  hrtimer_run_softirq+0x187/0x2b0
[  404.112917][    C1]  handle_softirqs+0x283/0x870
[  404.117685][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  404.122449][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  404.127735][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  404.132935][    C1]  __irq_exit_rcu+0xca/0x1f0
[  404.137524][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  404.142724][    C1]  irq_exit_rcu+0x9/0x30
[  404.146964][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  404.152609][    C1]  </IRQ>
[  404.155545][    C1]  <TASK>
[  404.158474][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  404.164637][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xa8/0x110
[  404.171150][    C1] Code: 74 05 e8 8b b9 4a f6 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4f f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> e3 5e 13 f6 65 8b 05 6c e1 23 07 85 c0 74 40 48 c7 04 24 0e 36
[  404.190861][    C1] RSP: 0018:ffffc9001b74f560 EFLAGS: 00000206
[  404.196941][    C1] RAX: 445f4f4c1dc85700 RBX: 0000000000000a02 RCX: 445f4f4c1dc85700
[  404.204918][    C1] RDX: 0000000000000006 RSI: ffffffff8d9b8d8d RDI: 0000000000000001
[  404.212888][    C1] RBP: ffffc9001b74f5f0 R08: ffffffff8fa39837 R09: 1ffffffff1f47306
[  404.220857][    C1] R10: dffffc0000000000 R11: fffffbfff1f47307 R12: dffffc0000000000
[  404.228831][    C1] R13: ffffc9001b74f858 R14: ffff88801b6f0098 R15: 1ffff920036e9eac
[  404.236820][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  404.243165][    C1]  ? __page_cache_release+0x8c9/0xc10
[  404.248542][    C1]  ? folios_put_refs+0x299/0x640
[  404.253544][    C1]  folios_put_refs+0x4ef/0x640
[  404.258315][    C1]  ? __pfx_folios_put_refs+0x10/0x10
[  404.263606][    C1]  ? free_swap_cache+0x9b/0x300
[  404.268457][    C1]  free_pages_and_swap_cache+0x277/0x520
[  404.274097][    C1]  ? __pfx_free_pages_and_swap_cache+0x10/0x10
[  404.280256][    C1]  ? __virt_addr_valid+0x1c8/0x5c0
[  404.285379][    C1]  ? tlb_table_flush+0x36d/0x410
[  404.290310][    C1]  tlb_flush_mmu+0x3a0/0x680
[  404.294883][    C1]  ? __pfx_down_write+0x10/0x10
[  404.299718][    C1]  tlb_finish_mmu+0xc3/0x1d0
[  404.304292][    C1]  exit_mmap+0x44c/0xb50
[  404.308520][    C1]  ? uprobe_clear_state+0x20f/0x290
[  404.313702][    C1]  ? __pfx_exit_mmap+0x10/0x10
[  404.318452][    C1]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  404.324070][    C1]  ? __pfx_exit_aio+0x10/0x10
[  404.328744][    C1]  ? uprobe_clear_state+0x274/0x290
[  404.333932][    C1]  __mmput+0x118/0x420
[  404.337984][    C1]  exit_mm+0x1da/0x2c0
[  404.342040][    C1]  ? __pfx_exit_mm+0x10/0x10
[  404.346618][    C1]  ? hrtimer_try_to_cancel+0x3d9/0x420
[  404.352066][    C1]  ? rcu_is_watching+0x15/0xb0
[  404.356815][    C1]  do_exit+0x648/0x2300
[  404.360957][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  404.366322][    C1]  ? __pfx_do_exit+0x10/0x10
[  404.370905][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  404.376095][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  404.381297][    C1]  do_group_exit+0x21c/0x2d0
[  404.385874][    C1]  __x64_sys_exit_group+0x3f/0x40
[  404.390881][    C1]  x64_sys_call+0x21f7/0x2200
[  404.395546][    C1]  do_syscall_64+0xfa/0x3b0
[  404.400032][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  404.405216][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.411265][    C1]  ? clear_bhb_loop+0x60/0xb0
[  404.415942][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.421822][    C1] RIP: 0033:0x7f5f3cef06c5
[  404.426225][    C1] Code: Unable to access opcode bytes at 0x7f5f3cef069b.
[  404.433242][    C1] RSP: 002b:00007ffe5489c8e8 EFLAGS: 00000206 ORIG_RAX: 00000000000000e7
[  404.441638][    C1] RAX: ffffffffffffffda RBX: 00007f5f3cff1fe8 RCX: 00007f5f3cef06c5
[  404.449616][    C1] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000001
[  404.457569][    C1] RBP: 0000000000000001 R08: 00007ffe5489c878 R09: 0000000000000000
[  404.465521][    C1] R10: 00007ffe5489c710 R11: 0000000000000206 R12: 0000000000000000
[  404.473476][    C1] R13: 0000000000000001 R14: 00007f5f3cff0680 R15: 00007f5f3cff2000
[  404.481438][    C1]  </TASK>
[  404.484696][    C1] Kernel Offset: disabled
[  404.488999][    C1] Rebooting in 86400 seconds..