last executing test programs:

1m7.787054662s ago: executing program 0 (id=742):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x50, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8000}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x20, 0x4, 0x3}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x50}}, 0x0)

56.167573694s ago: executing program 0 (id=742):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x50, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8000}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x20, 0x4, 0x3}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x50}}, 0x0)

43.064724178s ago: executing program 0 (id=742):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x50, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8000}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x20, 0x4, 0x3}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x50}}, 0x0)

33.423042904s ago: executing program 0 (id=742):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x50, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8000}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x20, 0x4, 0x3}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x50}}, 0x0)

21.161201076s ago: executing program 0 (id=742):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x50, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8000}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x20, 0x4, 0x3}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x50}}, 0x0)

9.155147843s ago: executing program 0 (id=742):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x50, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8000}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x20, 0x4, 0x3}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x50}}, 0x0)

1.973121603s ago: executing program 2 (id=1782):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x12, 0x0, &(0x7f0000000a00)="2cbd805c88d340ee699d2e7150f677048003", 0x0, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)

1.694121196s ago: executing program 2 (id=1785):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000001880)={'wg1\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x40, r3, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r2}]}, 0x40}}, 0x0)

1.509150018s ago: executing program 2 (id=1787):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
recvmsg(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x40000000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x27)
unshare(0x8040480)
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
setsockopt$inet_MCAST_MSFILTER(r3, 0x0, 0x30, 0x0, 0x0)
r4 = socket(0x23, 0x5, 0x0)
bind$inet(r4, &(0x7f0000000140)={0x2, 0x0, @loopback}, 0x10)
r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="15000000100000000200"/20, @ANYRES32, @ANYBLOB="0000000000000000000004000000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000008000000000000005805000018100000", @ANYRES32=r6, @ANYBLOB="000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close(r5)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000580)={r5, r7, 0x4, r2}, 0x10)

1.263386883s ago: executing program 2 (id=1795):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0xb, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000007010000696c6c2500000c00002020207b1af8ff00000000bfa1000000000000070100fef7ffffff0bee000008000000b70300000040000085000000100000009500"/81], &(0x7f0000000040)='syzkaller\x00', 0x5, 0xfe3, &(0x7f0000001e00)=""/4067, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000280)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x11, &(0x7f0000000100)=ANY=[@ANYBLOB="1802000063f943ff00000000000000008500000041000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000090401010000000000000000070000050500010007000000"], 0x1c}, 0x1, 0x0, 0x0, 0xdc2c6d03604b4d6e}, 0x4080800)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x13, 0xb, &(0x7f0000000540)=ANY=[@ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x84, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, 0x0)
ioctl$FS_IOC_SETFLAGS(r3, 0xc0189436, &(0x7f0000000140))
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000140)={'wlan0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r6 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r6, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f00000001c0)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0x2, 0xb, 0xffffffff, 0x0, @private1, @loopback={0x0, 0x460c6}, 0x20, 0x80, 0x804, 0x3fffe}})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f00000003c0), r7)
r8 = socket(0x1f, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r8, 0x89f3, &(0x7f0000000240)={'syztnl0\x00', &(0x7f0000000400)={'syztnl1\x00', 0x0, 0x10, 0x8, 0xfb, 0x8001, {{0x5, 0x4, 0x3, 0x5, 0x14, 0x65, 0x0, 0x2, 0x29, 0x0, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}})
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r12=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="1100000018fc939732156e42480574988a48650300402e7716339b6c5341362b00abdacb0872d6de59d810e362aa2d0b3b886ce9d3b0b971ef1fe87949517f24fa296ff09ad19941631531b1e1d1", @ANYRES32=r12, @ANYBLOB="0a003400020202020202000005000800000000000a00340002020202020200000800260000000000"], 0x44}}, 0x4)

1.150144556s ago: executing program 1 (id=1797):
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000040)={{{@in6=@remote, @in6=@private1, 0xfffc, 0x0, 0xfffc, 0xfffe, 0xa, 0x0, 0x30}, {0x5, 0x0, 0x0, 0x0, 0x0, 0x7, 0x336a083a}, {0x0, 0x0, 0x8}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0x33}, 0xa, @in=@empty}}, 0xe8)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'gcm_base(ctr(aes-aesni),ghash-generic)\x00'}, 0x58)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r2, 0x117, 0x5, 0x0, 0xd)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000004c0)=@nat={'nat\x00', 0x1b, 0x5, 0x520, 0x360, 0x0, 0xffffffff, 0x360, 0x290, 0x450, 0x450, 0xffffffff, 0x450, 0x450, 0x5, &(0x7f0000000180), {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast2}, @private2, [0xffffff00, 0xff000000, 0x0, 0xffffff], [0xffffff00, 0xff000000, 0xffffffff], 'xfrm0\x00', 'pimreg\x00', {0xff}, {}, 0x2f, 0xa, 0x7, 0x6b}, 0x0, 0x108, 0x150, 0x0, {}, [@common=@ah={{0x30}, {[0x4d4, 0x4d5], 0x0, 0x3}}, @common=@ah={{0x30}, {[0x4d2, 0x4d5], 0x7, 0x9, 0x3}}]}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x5, @ipv4=@broadcast, @ipv6=@private1, @gre_key, @icmp_id=0x67}}}, {{@uncond, 0x0, 0xf8, 0x140, 0x0, {}, [@common=@ipv6header={{0x28}, {0x11, 0x2, 0x1}}, @common=@hl={{0x28}, {0x3, 0x5}}]}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x5, @ipv4=@local, @ipv6=@mcast2, @port=0x4e22, @port=0x4e24}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00', 0x0, {0x0, 0x4, 0x2}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @unspec=@DNAT1={0x48, 'DNAT\x00', 0x1, {0x4, @ipv6=@private0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}, @gre_key=0xc, @gre_key=0x2b}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x580)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
getsockopt$TIPC_IMPORTANCE(r4, 0x10f, 0x7f, &(0x7f00000002c0), &(0x7f0000000340)=0x4)
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x12}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_VALIDATION={0x5, 0xd, 0x9}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_NODELAY(r5, 0x84, 0x3, &(0x7f0000000b40), &(0x7f0000000040)=0x11)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000140)=0x2, 0x4)
r6 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c)
r7 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x14, 0x4, 0x8, 0x6, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r7, &(0x7f0000000280), &(0x7f0000001840)=@udp6=r6}, 0x20)
sendmsg$NFT_MSG_GETOBJ_RESET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000b80)=ANY=[@ANYBLOB="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"], 0xf8}, 0x1, 0x0, 0x0, 0x84}, 0x14)
recvmmsg(r0, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x7, 0x10012, r8, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000002, 0x13, 0xffffffffffffffff, 0x20000)
bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r8}, 0x8)

1.015938652s ago: executing program 3 (id=1799):
r0 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)=@o_path={&(0x7f0000000000)='./file0\x00', 0x0, 0x8}, 0x18)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x14)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000140)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x8, '\x00', r1, r2, 0x0, 0x4, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='rxrpc_transmit\x00', 0xffffffffffffffff, 0x0, 0x8}, 0x18)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000240)={'rose0\x00', @local})
r3 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000280)='syz0\x00', 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f00000002c0)='tasks\x00', 0x2, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_SET(r6, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x3c, 0x3e9, 0x200, 0x70bd2d, 0x25dfdbfb, {0x1, 0x0, 0x3, 0xffffffffffffffff, 0x7, 0x3, 0x2, 0x8, 0x0, 0x3, 0x8}, ["", "", "", "", ""]}, 0x3c}, 0x1, 0x0, 0x0, 0x460d0}, 0x4000)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000400)={0x4, 0x1}, 0x4)
socket$kcm(0x29, 0x5, 0x0)
ioctl$int_in(r4, 0x5421, &(0x7f0000000440)=0x1)
mmap$xdp(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x1010, r2, 0x80000000)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_STATION(r7, &(0x7f0000000680)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000640)={&(0x7f0000000500)={0x110, r8, 0x400, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x8, 0xbd, [0x4, 0x6]}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x1}, @NL80211_ATTR_STA_PLINK_ACTION={0x5}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0xc4, 0xbe, "a9dde4b3d741e1fb5892eb393acaba67557a45cfd7a234864a811f1e254cc2ae2ea22d0723450810ce7c192709fb815e4ae53005b11ea7ba2eb233c69dd4a8451b8df438fa0f682544f37235bf54618e17f94f0b110b5a2c2610a9cf86bcc0e1ddd807778cca59a12f1536cf74d3497c46d2ba6814315688a193bc0ae8cddaf9fac1451dfc9d32e7a204da42254e550ea098fb100382dbfd96776f84bd58fe1c606d34fa26655769cc5d7f990f7d0d17019f8951668e213db11c136af1c7af44"}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x4d8}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x3}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x4}]}, 0x110}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
r9 = openat$cgroup_ro(r3, &(0x7f00000006c0)='rdma.current\x00', 0x0, 0x0)
r10 = gettid()
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000009c0)=<r11=>0x0)
getsockopt$inet_IP_XFRM_POLICY(r9, 0x0, 0x11, &(0x7f0000000a00)={{{@in=@private, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@dev}}, &(0x7f0000000b00)=0xe8)
sendmsg$netlink(r7, &(0x7f0000000b80)={&(0x7f0000000700)=@proc={0x10, 0x0, 0x25dfdbfb, 0x400}, 0xc, &(0x7f0000000980)=[{&(0x7f0000000740)={0x1ac, 0x4, 0x1, 0x70bd2b, 0x25dfdbfd, "", [@generic="f21af61f76d2137e46c73447ab8e756098708a8b7c535dd6b6be63c0bb70c10f214c2c1cc6aade42b11fa5e28e4ac907f3468ade440d9a3f5e386699138b72d8d9000c51a6e3eb830b1df50557a4dcce2a0f07e11e5b7b01bc9c469fb5462b5ddc1b4d0768972e6005630caa8a5073f1ec5ae3312f07b682dedba40b24ceebcbfd67b90ea0284f91f70f388fc8c7b0d9afbf8270a47144f0c1796b555ecd781e90691efd6c937f308010b40cab7b5cc19932a5718a0724c31a084913c1ff", @generic="42b421b36c7f9331cce9d4431a2cca179d7a8c08ad0a4ede2acc3588f78f236505102c3ff7b3b6560a0eaf34db9ea1da3b94dd8ee5515cbb1e72ebb49422d851e6c4d3de5a842839f831ab4bd9d067aaf46505e2292cbe42b071112c5e66b64293c91c76b68d28901d14de068b476444a797ae3ce4d02b05604d4710966d0f0f041407f86b1795c1bc834bc9183c917f932fbe856c81c02b503982fa8f9fec364f54fa54531acf624ab33fefc05737b709415eb1381eea20e741e4b101dd3e4b8d89f968ff7c89cb5a2276c58ce31d2186094dcaaa101d6cf10af9"]}, 0x1ac}, {&(0x7f0000000900)={0x20, 0x2f, 0x200, 0x70bd27, 0x25dfdbfd, "", [@typed={0x8, 0x10b, 0x0, 0x0, @fd=r2}, @typed={0x8, 0xbf, 0x0, 0x0, @pid=r10}]}, 0x20}, {&(0x7f0000000940)={0x20, 0x41, 0x200, 0x70bd26, 0x25dfdbfe, "", [@typed={0x8, 0xd1, 0x0, 0x0, @u32=0x75}, @typed={0x8, 0xb2, 0x0, 0x0, @u32=0x3}]}, 0x20}], 0x3, &(0x7f0000000b40)=[@cred={{0x1c, 0x1, 0x2, {r11, r12, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [r6, r3, r6, r3]}}], 0x40, 0x4011}, 0x4000080)
sendmsg$IPSET_CMD_ADD(r9, &(0x7f0000000dc0)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000d80)={&(0x7f0000000c00)={0x168, 0x9, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0x1}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x700000}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_ADT={0x48, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0xc, 0x1a, ',^\\!%!(\x00'}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x1}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x6}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR={0x5, 0x3, 0xb}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz0\x00'}}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x80, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e20}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PROTO={0x5, 0x7, 0x6}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @ipv4={'\x00', '\xff\xff', @private=0xa010101}}}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e22}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x200}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}}]}, @IPSET_ATTR_ADT={0x54, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xddf}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x3ff}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e22}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAMEREF={0x9, 0x13, 'syz2\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0x8f}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x3ff}}]}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x168}, 0x1, 0x0, 0x0, 0x8800}, 0x20040805)
r13 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000e40)={&(0x7f0000000e00)='thermal_temperature\x00', r9, 0x0, 0xe}, 0x18)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000ec0)={r11, r13, 0x0, 0x4, &(0x7f0000000e80)='/\x99&\x00'}, 0x30)
setsockopt$packet_fanout(r9, 0x107, 0x12, &(0x7f0000000f00)={0x3, 0x1}, 0x4)
syz_genetlink_get_family_id$fou(&(0x7f0000000f40), r9)
setsockopt$ALG_SET_KEY(r9, 0x117, 0x1, &(0x7f0000000f80), 0x0)
socket(0x1e, 0x2, 0x5)

1.000370931s ago: executing program 2 (id=1800):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f0", @ANYRES32=r2, @ANYBLOB="0000000020000000280012000c"], 0x48}}, 0x0)

907.508462ms ago: executing program 4 (id=1801):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r0, &(0x7f00000000c0)={0x0, 0xffffffffffffff07, &(0x7f0000000000)={&(0x7f0000000100)="88734c98a3be9f95b85cd32ca54e80461e50a7ddeac1b1e279939c7f1de33ef1fe005e9e5c1335c00cc4fd55e0a28e67e0c07cc33c4c725fde88d2a512104bf423a8c2b07b629c", 0x47}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

860.387575ms ago: executing program 1 (id=1802):
r0 = socket$inet(0x2, 0x80001, 0x84)
sendmsg$inet_sctp(r0, &(0x7f00000008c0)={&(0x7f00000001c0)=@in={0x2, 0x0, @loopback}, 0x10, &(0x7f0000000a00)=[{&(0x7f00000023c0)="a4", 0x1}], 0x1, &(0x7f0000000ac0)=[@sndrcv={0x30}, @dstaddrv6={0x20, 0x84, 0x8, @mcast1}], 0x50}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000300)=0x208)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000180)=0x4000000, 0x4)
sendto$inet6(r1, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090011006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0)

859.843251ms ago: executing program 3 (id=1803):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000180001000000000000000000020000000000000900000000060015000400000014001680100008800c000380050001"], 0x38}}, 0x0)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@broadcast, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0xfffffffffffffffe, 0x200000000, 0x40000000007, 0x20000a0e0, 0x140000000000004, 0x6, 0x20000000b, 0x400}, {0x5}, 0x4, 0x0, 0x1, 0x0, 0x3, 0x3}, {{@in6=@mcast1, 0x0, 0x6c}, 0xa, @in6=@private0, 0x3502, 0x4, 0x8, 0x0, 0x9075}}, 0xe8)
r2 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r2, &(0x7f0000000180), 0x32bc45944b084a6, 0x0)

803.266617ms ago: executing program 2 (id=1804):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
shutdown(r0, 0x0) (async)
recvmmsg(r0, &(0x7f00000055c0), 0x400023c, 0x300, 0x0)
r1 = epoll_create1(0x80000) (async)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0xe429, @none, 0x401}, 0xe)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0xb0000000}) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x20, 0x2a, 0xb, 0x0, 0x0, {0x7}, [@typed={0x4, 0x3}, @nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x81}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x0) (async)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_KEY(r2, &(0x7f00000016c0)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001680)={&(0x7f0000001600)={0x58, r3, 0x10, 0x70bd29, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x8, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_ATTR_KEY={0x34, 0x50, 0x0, 0x1, [@NL80211_KEY_SEQ={0xc, 0x4, "90f7cdee1bf64347"}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}, @NL80211_KEY_DEFAULT_TYPES={0xc, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "86715de4b1"}]}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}]}, 0x58}, 0x1, 0x0, 0x0, 0x400c000}, 0x40000)
recvmsg(r0, &(0x7f0000001440)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000000)=""/164, 0xa4}, {&(0x7f0000000140)=""/128, 0x80}, {&(0x7f00000000c0)=""/25, 0x19}, {&(0x7f00000001c0)=""/211, 0xd3}, {&(0x7f0000000340)=""/2, 0x2}], 0x5, &(0x7f0000000440)=""/4096, 0x1000}, 0x41)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000200)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}, 0x58) (async)
r5 = accept4(r4, 0x0, 0x0, 0x0)
recvfrom$rxrpc(r5, 0x0, 0x0, 0x2000, 0x0, 0x0) (async)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) (async, rerun: 64)
r7 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
sendmsg$NL80211_CMD_VENDOR(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)={0x1c, r6, 0x701, 0x0, 0x0, {{}, {@void, @void, @void}}, [@NL80211_ATTR_VENDOR_SUBCMD={0xfffffffffffffe2a}]}, 0x1c}}, 0x812) (async)
getsockname$packet(0xffffffffffffffff, &(0x7f0000001480)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000014c0)=0x14)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001580)=ANY=[@ANYBLOB="020000004005ff005800000001c7cb817bc573d40010fc0637870000000000000000", @ANYRES32, @ANYBLOB='\t\x00'/20, @ANYRES32=r8, @ANYRES32, @ANYBLOB="02000000000000000200"/28], 0x50)

761.33658ms ago: executing program 1 (id=1805):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
sendmsg$alg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_type(r1, &(0x7f0000000300), 0x2, 0x0)
write$cgroup_type(r2, &(0x7f0000000280), 0x9)
r3 = openat$cgroup_procs(r1, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000c40), 0x12)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x48)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000480)={0x2, &(0x7f0000000080)=[{0x6, 0xfc, 0x1}, {0x6, 0x0, 0x5, 0xe3}]}, 0x10)
getsockopt$sock_buf(r5, 0x1, 0x1a, 0x0, &(0x7f0000000040)=0x2)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, 0x0, 0x4)
bind$alg(r4, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-avx\x00'}, 0x58)
r7 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001000)=@newqdisc={0x24, 0x24, 0xf0b, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}}, 0x24}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000005c0)="3504000040000511d25a35400c0002000200002037153e371d04018006041000450000002a560000e7ff00000000", 0x2e}, {&(0x7f0000000e80)="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"/1031, 0x407}], 0x2}, 0x10049014)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001500)=@newtfilter={0x40, 0x2c, 0x605, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0xffe0}, {}, {0x5, 0x2}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x0, 0xfff0}}]}}]}, 0x40}}, 0x20004084)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r10, &(0x7f00000002c0), 0x40000000000009f, 0x0)

696.472936ms ago: executing program 4 (id=1806):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_DELCHAIN={0x20, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x2000}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x1000000}}, 0x48}}, 0x200000d4)

656.644321ms ago: executing program 3 (id=1807):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000180), r1)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r1, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @empty}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @multicast2}]}, 0x24}}, 0x20040040)

615.310941ms ago: executing program 4 (id=1808):
r0 = socket$inet(0x2, 0x0, 0x4)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x004\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001a00000018000d801400008008000300090000000800040008000000"], 0x2c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000180)={0x7, [0x9, 0xc638, 0x23fa, 0x2, 0x5, 0x8, 0x7f]}, 0x12)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x10)

476.452763ms ago: executing program 1 (id=1809):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="18020000fcffffff000000000000000085"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x12, 0x0, &(0x7f0000000a00)="2cbd805c88d340ee699d2e7150f677048003", 0x0, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)

451.467437ms ago: executing program 3 (id=1810):
r0 = socket$igmp6(0xa, 0x3, 0x2)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r3=>0x0})
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000ac0)=@bridge_setlink={0x20, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r3}}, 0x20}}, 0x48010)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000003900)={'ip6gre0\x00', &(0x7f0000003880)={'syztnl1\x00', <r5=>0x0, 0x29, 0x6, 0x7, 0x7, 0x5, @dev={0xfe, 0x80, '\x00', 0x17}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x7, 0x6, 0xbc4b}})
sendmmsg$inet(r1, &(0x7f00000039c0)=[{{&(0x7f0000000340)={0x2, 0x4e24, @local}, 0x10, &(0x7f0000000600)=[{&(0x7f00000003c0)="284bc3642c0d137896b863d78d8f656d5344498655e1790fcf3527948efcf5fe9dcbe0a418f61618cac2c8d03359c66759cb1ac0391a5254a37ba180d1f12812bc024c252538fdf52e18bf6e830356cff86cab70cf137918e4e96b11722864865852cf66dacda0c2020364231edb09319afd0a95696f06580838295e4942caeab7a1a8a2ffa7bad69549aaa1f6bb7ca0e4e810747e9d604a4c87b51329704e08609d642611fa4d0dd9f4920da62a25ff90dd9c0be7c197d566b1f057f0df379b4f26dfb96b1fc801d377a0f6b1d9486840de439ee5b1af336c65808a92b4d9b50673eeaf5160392330a40e09977fc1a0a622ebcd8937", 0xf6}, {&(0x7f0000000540)="a1cb1d934168073e3d502a2ab4d9a1cdd9a807b800a02f6a3bbe3e77ab1c429b83d712b2ba8f52cc22c218231833146fc5602da6a7048aa3ca653242b5831c6cc8485de05e0d8f0be834acd053b4c021e849edb2b5c2debdd856451ebddbc8f7cd34e4735852f70d66d4dc43e63aa507ecfaf7cc5b97a19228079c0418c55188316fbcc6900cf4821fab82e1a72b7ff648de22c435aa233da23d725cfe03870106af481d", 0xa4}], 0x2}}, {{&(0x7f0000000640)={0x2, 0x4e20, @multicast2}, 0x10, &(0x7f0000000680)=[{&(0x7f0000000c00)="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", 0x1000}], 0x1, &(0x7f0000000780)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x3fc}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xffffffff}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x6}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x8}}, @ip_ttl={{0x14, 0x0, 0x2, 0x2}}], 0x78}}, {{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f00000006c0)="3c9b29da7a80fb", 0x7}], 0x1}}, {{&(0x7f0000000880)={0x2, 0x4e23, @multicast2}, 0x10, &(0x7f0000001cc0)=[{&(0x7f00000008c0)="e0cb1f9bfeb4168ac9d27700918d109625a2b70f6143b45a998ce62096af04fe29757af9006a71e6f33682e79deab1f3eaebd25a888e9a2e532603dc1a537ed2177cb9a13bc3d43c5dbc117db915a198eacda7bf2daa39d6e74faac444ad", 0x5e}, {&(0x7f0000000940)="4bebe00bc13d7468ab06e842a6a90928a32cbe2fe17715e2a4a76ce1d83f8869d15762253b1c5924d137fea95e22e38102d7b4ceba5b6103b2f086bafe55df74424664f3d26430401795fb3485261d556c6da9f503336015ba97a10c9305644dba2846b10f7aa3dc41b6e03afae092dcbb2e", 0x72}, {&(0x7f00000009c0)="d30722be1eb5c3f28cb4d41dcc5938fc19091a83ba9b0e817625f86ccad85fdeda9bcd9e4baaf9c9461cfdbe1c399685f02004544455d2d7c76f5a167abce510eaa899d0918715c8ce34566fcc29335bc305b6b3472c569a6149223b6ff2e7fa4817a05217bfea24910718ae059942d70ddf601c08acadbfcf5efdfd26ce9197f62fd8fb720416d821f21d64e38f1abcbbf00d8beb78a937e884fe469079821d4f640f9017d581129ce52beb596138f5cb81166f8daa0abd63a05522fc0a05a974eb38c7a37f6ab1ec2052c588f0a5385bf0c25bd669189dbe5c97607bf953604cb68ac234e7b2", 0xe7}, {&(0x7f0000001c00)="d884e87b49fd9f5ddefd31f7d951351914a31176140f4098d8350a37e38f0b2b3b5252f7576e2d054c1de2f61dad18f910a3bb18ed8a896716e05c3ee8e1e33b8ab8ea118d4892ea582335115d16bef7ecf7f12bbd11112d888a9f0db9c5ce63e57dce6fb2521c1b6f5846ae397940bab36499ab96ed3e1aa555ecb31438b25f89a28ac7c9260185b3ca2d9240e67fb151ab3245d419442bfb6eab4f", 0x9c}, {&(0x7f0000000b40)}], 0x5, &(0x7f0000001d40)=[@ip_retopts={{0xc0, 0x0, 0x7, {[@lsrr={0x83, 0x1f, 0xc5, [@initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010102, @broadcast, @rand_addr=0x64010101, @private=0xa010102, @private=0xa010102, @multicast1]}, @ssrr={0x89, 0x13, 0xe6, [@loopback, @empty, @dev={0xac, 0x14, 0x14, 0x3c}, @remote]}, @ssrr={0x89, 0x17, 0xaf, [@private=0xa010100, @rand_addr=0x64010102, @private=0xa010101, @remote, @empty]}, @end, @ssrr={0x89, 0x17, 0x46, [@loopback, @multicast2, @private=0xa010102, @private=0xa010102, @loopback]}, @lsrr={0x83, 0x27, 0x3d, [@loopback, @multicast2, @dev={0xac, 0x14, 0x14, 0x33}, @remote, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x19}, @multicast1, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp={0x44, 0x8, 0xc4, 0x0, 0x4, [0x7]}, @noop, @timestamp_addr={0x44, 0x1c, 0xac, 0x1, 0x5, [{@multicast2}, {@broadcast, 0x400}, {@local, 0x1b6e}]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x800}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @dev={0xac, 0x14, 0x14, 0x26}, @dev={0xac, 0x14, 0x14, 0x1b}}}}], 0x110}}, {{0x0, 0x0, &(0x7f00000022c0)=[{&(0x7f0000001e80)="75092d8c96e9059720d3f3c864f878ccdb43d634abc5b14f922adfb52413683a28b6eecaa899216b39223ff8f10db6a8d9ab42818580c7c5082bfb56b2586985677700c9378cc951dcd8c2b0a921496e4e42c3282b50c6c05993748e9af2f8f5fa95410325297b68db3d36b5bb5ad8a3446eb409523375c72e9db4f00ce1d9", 0x7f}, {&(0x7f0000001f00)="e867bc7320e9d9af6ee4e094c37e1f2d129e0ff0357d8c55aee6763ac0e093889308c0ded60edd4a1d2e6f104c8db4ed6c27f86ce65bf4154c4cde91b742c8fe2c5fe8048e074bfdd779272ecf2b45c38f2ec202756c51187d8d4e776c5126bf7a6bda9d12e616b0fdb26cfb5f2e6943c7275a5015a893d9423429cabf940d7373d29f9776d42bd996ab05b5f859bea0ef29b8874a91654faa42bdbc56bba8ea8a8695ec06a5579362c05b6cd648e91ebb64c9942b47ddcb8076edfe029a8641cbe5eef4080b4f50c69c663dd7b5405530407b4e7080d8d2169efe5ac9a66b2fdb740e778eb3d54981", 0xe9}, {&(0x7f0000002000)="6e9dd8b638a6527faea0a6e63155157b60c58eb551f255215e7e8c6ab365a50a6061be8e06c767be518104a31e701db118ca2d33a0b34948f7a0de74c7cf16049e851c98cedc4606c81df1a8aa26f37f946123c1b6fdcb3d7514eb65e1bf6179a62dae17af816ac7eca8ce3cd304ded378a0a1d1bbeb2cf9642fd47ef1018dd65f7b24f0c553667b0da752a59586b66f8300d2788cd475d15340", 0x9a}, {&(0x7f00000020c0)="cc916b35617a7403d236667ba09ab85de59b8e664fb775666425fb9eb278df177f42b1736a71bfa398aa20ccd3d49454e004c2beacb5de6908fef6eb290b67b81608ca65273cb97c3d2640f7ac2ba73c6b25dbbc4dbe6ee1c72a81e59153cb9a7b977727a5e942638739c0c720ddb4ffa5665dd59653c780e04073eae7c3e5de2362cb243970d037d7721de666a987c066be0e90c7d8be583d53300f2e59c653c8916620660df05ccb030f085134520361c20ffa981b5d9cf405c16ea45b285e6680cc23d9cfd7cb08314005a3b19f56eda03a888316967f6cf4", 0xda}, {&(0x7f00000021c0)="573d21b399a15197ceb36fcadb6276f1848364683c4db7f303b8f985323c8aebf270d4049603fd38ed3e9f84415c2d4755976cb95e49aefd60a7d3ecd7c56dc79e723285136abaac1346a328679a67efcaf56d66f6ae029a29eb2b7d35bc06e383d247c0db64f027ef7c05c458139e7e024d9be1e0c85e739bb08c1bd49c142386c15342211d347aedad979a4f74124ae1fd0d5737ed33d08f74c9f9733f651eb340745a123da5beb50f2c4a756cbbc8b2435ccc226565aa7b3cb625cc7a2936b6702427a396", 0xc6}], 0x5}}, {{&(0x7f0000000b80)={0x2, 0x4e23, @empty}, 0x10, &(0x7f0000002480)=[{&(0x7f0000002340)="5b0d8c96e9656a4391c3dd9bb5a5f7fc30acd24e5304ef73b362148a8d7e73e1e192", 0x22}, {&(0x7f0000002380)="c920298fbf910e6405fbf7019c46121d5de72a460cb56976ae3e65b16c7fcb6e67", 0x21}, {&(0x7f00000023c0)}, {&(0x7f0000002400)="4c537b6ddad3d38cd294408bfa5a7b939d96c8832b6520f9a33c6bc2b67018ad3656ce3204765c1510293eb3c36d3c03717610588b0b5b7dce32d022ccca3c6ebcf7fb3c5629278bef3f91f9436458891858fd305f64c3a07b517a95ac54e99fdc1a2d4d1629", 0x66}], 0x4}}, {{0x0, 0x0, &(0x7f0000003680)=[{&(0x7f00000024c0)="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", 0x1000}, {&(0x7f00000034c0)="73a3cb06c08c4faa618159cc86893a8a98b1337762303bc43f5527fb124613ca2cd1793d2fda7e107bf6746745dc5bfdccbef9354c331dfb83ad9442b3289bb82d869108da161bb7526e525c7590c03744c36e783eaceffbc1c369e895b4668960a7f2f5e6ab1e1e37ae900fa58883545ef5a2c2c7999016f5bf7b9d47bb2b8797df93afadfdf2af138c331ea11341cb8ff20d", 0x93}, {&(0x7f0000003580)="b3b20c1495d0db01e79b866b300bbf82c87bb8dc65b59ab36d7a122ceb819758bde9d58877c8af4a09c84323f183515c90edb20203fd82df970cf200732227ebc998773397379afe6760d651b9003bebd5462aaa1bd2ce6b2098e77fc5c45758d940b7951236d1cbee609107a6e8", 0x6e}, {&(0x7f0000003600)="5ee773a8", 0x4}, {&(0x7f0000003640)="745cfc1b5cce77f04d9ac6d3c84c15c29b33fee9ede039873251da42b3a09c", 0x1f}], 0x5, &(0x7f0000003700)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x8000}}], 0x18}}, {{&(0x7f0000003740)={0x2, 0x4e21, @multicast1}, 0x10, &(0x7f0000003840)=[{&(0x7f0000003780)="1cc9206ed9735929470637e94966907ed5b3848e7291a539f4f211d79f67afc8e421fa46c872489447a226630e43be131c438d66e0145d2de864a6cbce15caeabb664c7564eb3a8d63021d13848cdc74a89e25c2710fe422d8734a7eb613c0f59adcef655b82373f239a979dd4a955fe92323230251a040ef7f779425cb4682bff0d476e16093d9710f48e507dd4dbe3035e5afc03d45459216a92be158171b2060c1491f85d2e9d7236271c1e", 0xad}], 0x1, &(0x7f0000003940)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x6}}, @ip_tos_u8={{0x11}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x8}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x78}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2}}}], 0x80}}], 0x8, 0x4000)
r6 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x7, &(0x7f0000000100)=0x7fff, 0x4)
recvmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x0, 0x0, 0x0)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r7, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000480)=ANY=[], 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
socket$igmp6(0xa, 0x3, 0x2)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r8, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff26bd70000002000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32=r9, @ANYBLOB], 0x3c}}, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
r11 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r11, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r12 = socket(0x1, 0x803, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r7, 0x89e2, &(0x7f0000000240)={r1})
getsockname$packet(r12, &(0x7f0000000100)={0x11, 0x0, <r13=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000700)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r13, @ANYBLOB='\b\x00\n'], 0x64}, 0x1, 0x0, 0x0, 0x4044045}, 0x814)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000000)=[{0xde, 0x4, 0x25, 0x2}]}, 0x10)
sendto(r0, 0x0, 0x0, 0x10, &(0x7f0000000140)=@pptp={0x18, 0x2, {0x3, @empty}}, 0x80)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000bc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2000c054)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x12, 0x3, 0x261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffd, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
recvmmsg(r12, &(0x7f0000000080), 0x0, 0x10000, 0x0)

375.436807ms ago: executing program 4 (id=1811):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000001880)={'wg1\x00', <r2=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r2}]}, 0x40}}, 0x0)

288.467039ms ago: executing program 1 (id=1812):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000280)={0x40, r1, 0xa29, 0x0, 0x0, {}, [@WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_PRIVATE_KEY={0x24}]}, 0x40}}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x40, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_IFINDEX={0x8}]}, 0x40}}, 0x0)

246.745993ms ago: executing program 4 (id=1813):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)=ANY=[@ANYBLOB="7c000000200101040000000000000000020000002400018014000180080001000000000008000200ac1414000c0002800500010000000000240002800c00028005000117000000001400018008000100e000000208000200e0"], 0x7c}}, 0x0)

210.255051ms ago: executing program 1 (id=1814):
r0 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r0, &(0x7f0000004ec0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=""/8, 0x8}, 0x5}], 0x1, 0x2000000002, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x73, 0x0, &(0x7f0000000200)=0x18)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a0101"], 0x57)
setsockopt$sock_int(r0, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
socket$alg(0x26, 0x5, 0x0)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="300000003d00090000000000000000000100000004000000100001800c0010"], 0x30}, 0x1, 0x0, 0x0, 0x4004015}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r5 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000180)={0x1f}, 0x10)
sendmsg$nl_route_sched(r5, &(0x7f000000a280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=@newtaction={0x14, 0x5a, 0x301, 0x0, 0x0, {0x2}}, 0x14}}, 0x0)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
r7 = socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r8=>0x0})
connect$can_bcm(r6, &(0x7f00000000c0)={0x1d, r8}, 0x10)
sendmsg$can_bcm(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x1, 0x922, 0x0, {0x0, 0x2710}, {0x0, 0x2710}, {}, 0x1, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "5c91440132bb112240fcbcc3fa9d0431575f8614d3538ce09c50eecd6ac579e8e83b944b666113f3afed71231e6653a13532f17b33515bdd7e1be14f53b9fc9b"}}, 0x80}}, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000280)={r4, <r9=>0xffffffffffffffff}, 0x4)
pipe(&(0x7f0000000300))
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x3, 0x11, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000000000000000000000400008500000061000000b7080000000000007b8af8ff00000000b7080000000040007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r8, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="020000000400000006000000aa0b000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000009002734843f0000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r10, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="b9ff0307600313b06ea8e0d306fa", 0x0, 0xfe5, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000030a010400000000000000000700000008000a40000000000900020073797a31040000000900010073797a30000000000800054000000021380000001d0a03000000000000000000070000000900010073797a300000000009"], 0xbc}}, 0x0)
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
close(0x3)

134.64032ms ago: executing program 3 (id=1815):
r0 = socket(0x10, 0x2, 0x0)
socket$nl_crypto(0x10, 0x3, 0x15)
r1 = socket$inet(0x2, 0xa, 0xea)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000002540)={{{@in6=@local, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@ipv4={""/10, ""/2, @multicast1}}, 0x0, @in=@private}}, &(0x7f0000000100)=0xe8)
getpid()
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRESOCT=r0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x98, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0x806000)
ioctl$FS_IOC_RESVSP(r5, 0x40305829, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x9ffffc})
mmap(&(0x7f00006a9000/0x2000)=nil, 0x2000, 0x1000005, 0x12, r4, 0xcd44a000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000002300), &(0x7f0000002340)=0xc)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000002380), &(0x7f00000023c0)=0xc)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000002680), r0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000002800), &(0x7f0000002840)=0xc)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000002780)={&(0x7f0000002640)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000002740)={&(0x7f00000026c0)=ANY=[@ANYBLOB="56080004", @ANYRES16=r6, @ANYBLOB="180726bd7000fbdbdf250e00000020000380050008001000000014000600fc0000000000000000000000000000010800040001000000080006000010000008000500030000000800060001000000"], 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x4014)
syz_genetlink_get_family_id$nl80211(&(0x7f00000027c0), r0)
getpid()
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_START_AP(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="8c000000", @ANYRES16=r9, @ANYBLOB="050000095e19030000000f0000000840c2c9", @ANYRES32=r10, @ANYBLOB="48000e0080000200ffffffffffff08021100000008021100000100000000004000000000a80101000100040603077f00fc0025030024047206030303030303710701000001010608080026006c09000008000c006400000008000d000000000010005a800c0002800500060002000000"], 0x8c}}, 0x0)
r11 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000040)={'lo\x00'})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=@deltclass={0x6c, 0x29, 0xc10, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x0, 0x1}, {0x6, 0x9}, {0x1}}, [@tclass_kind_options=@c_qfq={{0x8}, {0x34, 0x2, [@TCA_QFQ_LMAX={0x8, 0x2, 0x6}, @TCA_QFQ_WEIGHT={0x8, 0x1, 0x4}, @TCA_QFQ_WEIGHT={0x8, 0x1, 0xd22}, @TCA_QFQ_WEIGHT={0x8}, @TCA_QFQ_WEIGHT={0x8, 0x1, 0x62800}, @TCA_QFQ_WEIGHT={0x8, 0x1, 0x5}]}}, @tclass_kind_options=@c_netem={0xa}]}, 0x6c}}, 0x480d0)

59.00165ms ago: executing program 4 (id=1816):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x2, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fdffffff7b8abfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x2c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000001e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)={0x2c, 0x7, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x2c}}, 0x40054) (async)
sendmsg$NFT_MSG_GETRULE(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)={0x2c, 0x7, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x2c}}, 0x40054)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f00000000c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r6}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r6}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000500), r1)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'batadv_slave_0\x00', <r9=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000640)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x54, r8, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xfffffff9}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r9}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x9}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x81}]}, 0x54}, 0x1, 0x0, 0x0, 0x4040041}, 0xc040)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)={0x1c, 0x20, 0x9, 0x2, 0x25dfdbff, {0x4}, [@typed={0x8, 0x8, 0x0, 0x0, @fd=r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r11}, 0x10)
r12 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r13, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x7, 0x3, 0x0, 0x0, {}, [@NFACCT_FLAGS={0xa}, @NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8}]}]}, 0x28}}, 0x0)
r14 = socket$inet6_udp(0xa, 0x2, 0x0)
socket$packet(0x11, 0x2, 0x300) (async)
r15 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r15, 0x107, 0x0, 0x0, &(0x7f0000000040)=0xfffffffffffffd9c) (async)
getsockopt$packet_int(r15, 0x107, 0x0, 0x0, &(0x7f0000000040)=0xfffffffffffffd9c)
connect$inet6(r14, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c)
connect$pppl2tp(r12, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r14, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r12, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x8, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x8, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

0s ago: executing program 3 (id=1817):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000180001000000000000000000020000000000000900000000060015000400000014001680100008800c000380050001"], 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="021380ee02"], 0x10}}, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@broadcast, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0xfffffffffffffffe, 0x200000000, 0x40000000007, 0x20000a0e0, 0x140000000000004, 0x6, 0x20000000b, 0x400}, {0x5}, 0x4, 0x0, 0x1, 0x0, 0x3, 0x3}, {{@in6=@mcast1, 0x0, 0x6c}, 0xa, @in6=@private0, 0x3502, 0x4, 0x8, 0x0, 0x9075}}, 0xe8)
r2 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r2, &(0x7f0000000180), 0x32bc45944b084a6, 0x0)

kernel console output (not intermixed with test programs):

88] bridge_slave_0: left allmulticast mode
[  212.742113][ T1088] bridge_slave_0: left promiscuous mode
[  212.758042][ T1088] bridge0: port 1(bridge_slave_0) entered disabled state
[  212.909798][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  212.924502][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  212.937804][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  212.947764][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  212.957151][ T5839] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  212.968556][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  213.223937][ T1088] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  213.235553][ T1088] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  213.247355][ T1088] bond0 (unregistering): Released all slaves
[  213.257181][ T9779] ipvlan0: left promiscuous mode
[  213.317144][ T9790] lo speed is unknown, defaulting to 1000
[  213.685135][ T9809] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1195'.
[  213.694565][ T9809] netlink: 'syz.1.1195': attribute type 1 has an invalid length.
[  213.745230][ T1088] hsr_slave_0: left promiscuous mode
[  213.766708][ T1088] hsr_slave_1: left promiscuous mode
[  213.774419][ T1088] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  213.778928][ T9817] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1198'.
[  213.791159][ T1088] batman_adv: batadv0: Removing interface: batadv_slave_0
[  213.801108][ T1088] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  213.808818][ T1088] batman_adv: batadv0: Removing interface: batadv_slave_1
[  213.834304][ T1088] veth1_macvtap: left promiscuous mode
[  213.839842][ T1088] veth0_macvtap: left promiscuous mode
[  213.847014][ T1088] veth1_vlan: left promiscuous mode
[  213.852636][ T1088] veth0_vlan: left promiscuous mode
[  214.399780][ T1088] team0 (unregistering): Port device team_slave_1 removed
[  214.449378][ T1088] team0 (unregistering): Port device team_slave_0 removed
[  214.963789][ T9835] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1200'.
[  215.000705][ T5849] Bluetooth: hci1: command tx timeout
[  215.010784][ T9835] netlink: 'syz.2.1200': attribute type 1 has an invalid length.
[  215.018622][ T9835] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1200'.
[  215.044079][ T9790] chnl_net:caif_netlink_parms(): no params data found
[  215.095077][ T9840] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1200'.
[  215.137537][ T9840] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1200'.
[  215.297579][ T9790] bridge0: port 1(bridge_slave_0) entered blocking state
[  215.316634][ T9790] bridge0: port 1(bridge_slave_0) entered disabled state
[  215.324499][ T9790] bridge_slave_0: entered allmulticast mode
[  215.332872][ T9790] bridge_slave_0: entered promiscuous mode
[  215.341279][ T9790] bridge0: port 2(bridge_slave_1) entered blocking state
[  215.348471][ T9790] bridge0: port 2(bridge_slave_1) entered disabled state
[  215.356299][ T9790] bridge_slave_1: entered allmulticast mode
[  215.363853][ T9790] bridge_slave_1: entered promiscuous mode
[  215.413789][ T9790] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  215.437024][ T9790] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  215.497304][ T9790] team0: Port device team_slave_0 added
[  215.507395][ T9790] team0: Port device team_slave_1 added
[  215.550194][ T9790] batman_adv: batadv0: Adding interface: batadv_slave_0
[  215.557187][ T9790] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  215.620011][ T9790] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  215.632877][ T9790] batman_adv: batadv0: Adding interface: batadv_slave_1
[  215.639855][ T9790] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  215.669264][ T9790] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  215.715456][ T9790] hsr_slave_0: entered promiscuous mode
[  215.732418][ T9790] hsr_slave_1: entered promiscuous mode
[  215.899389][ T9868] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1210'.
[  215.924581][ T9868] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1210'.
[  216.252604][ T9882] FAULT_INJECTION: forcing a failure.
[  216.252604][ T9882] name failslab, interval 1, probability 0, space 0, times 0
[  216.270893][ T9882] CPU: 1 UID: 0 PID: 9882 Comm: syz.3.1214 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  216.270921][ T9882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  216.270931][ T9882] Call Trace:
[  216.270937][ T9882]  <TASK>
[  216.270944][ T9882]  dump_stack_lvl+0x241/0x360
[  216.270971][ T9882]  ? __pfx_dump_stack_lvl+0x10/0x10
[  216.270989][ T9882]  ? __pfx__printk+0x10/0x10
[  216.271007][ T9882]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  216.271031][ T9882]  ? __pfx___might_resched+0x10/0x10
[  216.271057][ T9882]  should_fail_ex+0x40a/0x550
[  216.271083][ T9882]  should_failslab+0xac/0x100
[  216.271105][ T9882]  kmem_cache_alloc_node_noprof+0x77/0x380
[  216.271133][ T9882]  ? __alloc_skb+0x1c3/0x440
[  216.271152][ T9882]  __alloc_skb+0x1c3/0x440
[  216.271173][ T9882]  ? __pfx___alloc_skb+0x10/0x10
[  216.271194][ T9882]  ? netlink_ack_tlv_len+0x6e/0x200
[  216.271217][ T9882]  netlink_ack+0x145/0xa60
[  216.271242][ T9882]  ? __kasan_kmalloc+0x98/0xb0
[  216.271261][ T9882]  ? nfnetlink_rcv+0x12c6/0x2ab0
[  216.271282][ T9882]  nfnetlink_rcv+0x26bd/0x2ab0
[  216.271299][ T9882]  ? __pfx_validate_chain+0x10/0x10
[  216.271345][ T9882]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  216.271373][ T9882]  ? __lock_acquire+0x1397/0x2100
[  216.271427][ T9882]  ? netlink_deliver_tap+0x2e/0x1b0
[  216.271448][ T9882]  ? __pfx_lock_release+0x10/0x10
[  216.271482][ T9882]  ? netlink_deliver_tap+0x2e/0x1b0
[  216.271506][ T9882]  netlink_unicast+0x7f6/0x990
[  216.271532][ T9882]  ? __pfx_netlink_unicast+0x10/0x10
[  216.271549][ T9882]  ? __virt_addr_valid+0x45f/0x530
[  216.271566][ T9882]  ? __phys_addr_symbol+0x2f/0x70
[  216.271580][ T9882]  ? __check_object_size+0x47a/0x730
[  216.271605][ T9882]  netlink_sendmsg+0x8de/0xcb0
[  216.271637][ T9882]  ? __pfx_netlink_sendmsg+0x10/0x10
[  216.271661][ T9882]  ? aa_sock_msg_perm+0x91/0x160
[  216.271689][ T9882]  ? __pfx_netlink_sendmsg+0x10/0x10
[  216.271708][ T9882]  __sock_sendmsg+0x221/0x270
[  216.271731][ T9882]  ____sys_sendmsg+0x53a/0x860
[  216.271756][ T9882]  ? __pfx_____sys_sendmsg+0x10/0x10
[  216.271772][ T9882]  ? __fget_files+0x2a/0x410
[  216.271795][ T9882]  ? __fget_files+0x2a/0x410
[  216.271824][ T9882]  __sys_sendmsg+0x269/0x350
[  216.271847][ T9882]  ? __pfx___sys_sendmsg+0x10/0x10
[  216.271875][ T9882]  ? do_sys_openat2+0x17a/0x1d0
[  216.271920][ T9882]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  216.271943][ T9882]  ? do_syscall_64+0x100/0x230
[  216.271964][ T9882]  ? do_syscall_64+0xb6/0x230
[  216.271982][ T9882]  do_syscall_64+0xf3/0x230
[  216.272000][ T9882]  ? clear_bhb_loop+0x35/0x90
[  216.272023][ T9882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.272043][ T9882] RIP: 0033:0x7f76e2b8d169
[  216.272058][ T9882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.272071][ T9882] RSP: 002b:00007f76e3943038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  216.272090][ T9882] RAX: ffffffffffffffda RBX: 00007f76e2da5fa0 RCX: 00007f76e2b8d169
[  216.272102][ T9882] RDX: 0000000000000000 RSI: 0000400000000080 RDI: 0000000000000003
[  216.272120][ T9882] RBP: 00007f76e3943090 R08: 0000000000000000 R09: 0000000000000000
[  216.272130][ T9882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  216.272140][ T9882] R13: 0000000000000000 R14: 00007f76e2da5fa0 R15: 00007ffeb257b648
[  216.272167][ T9882]  </TASK>
[  216.767238][ T9790] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  216.781045][ T9790] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  216.856276][ T9790] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  216.885073][ T9790] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  216.962990][ T9900] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1217'.
[  216.974491][ T9901] lo speed is unknown, defaulting to 1000
[  217.080377][ T5849] Bluetooth: hci1: command tx timeout
[  217.132219][ T9790] 8021q: adding VLAN 0 to HW filter on device bond0
[  217.156353][ T9790] 8021q: adding VLAN 0 to HW filter on device team0
[  217.191981][ T7401] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.199164][ T7401] bridge0: port 1(bridge_slave_0) entered forwarding state
[  217.387348][ T7401] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.394579][ T7401] bridge0: port 2(bridge_slave_1) entered forwarding state
[  217.429710][ T9908] netdevsim0: left promiscuous mode
[  217.437761][ T9908] batadv_slave_0: left promiscuous mode
[  217.827659][ T9902] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1219'.
[  217.943911][ T9790] 8021q: adding VLAN 0 to HW filter on device batadv0
[  217.963855][ T9928] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1223'.
[  218.036887][ T9790] veth0_vlan: entered promiscuous mode
[  218.056992][ T9790] veth1_vlan: entered promiscuous mode
[  218.195143][ T9790] veth0_macvtap: entered promiscuous mode
[  218.228959][ T9790] veth1_macvtap: entered promiscuous mode
[  218.273808][ T9790] batman_adv: batadv0: Interface activated: batadv_slave_0
[  218.303010][ T9790] batman_adv: batadv0: Interface activated: batadv_slave_1
[  218.332958][ T9790] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  218.342330][ T9790] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  218.351814][ T9790] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  218.364982][ T9790] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  218.370854][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  218.489710][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  218.505173][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  218.530197][ T1088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  218.539316][ T1088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  218.725542][ T9956] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1231'.
[  218.757456][ T9958] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1232'.
[  218.905792][ T9967] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  218.966725][ T9969] lo speed is unknown, defaulting to 1000
[  219.933112][T10014] xt_TPROXY: Can be used only with -p tcp or -p udp
[  220.008299][T10019] netlink: 'syz.1.1254': attribute type 2 has an invalid length.
[  220.202851][ T1108] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.952575][T10034] netlink: 'syz.2.1255': attribute type 1 has an invalid length.
[  221.196535][ T1108] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.325892][ T1108] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.386813][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  221.398530][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  221.407253][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  221.416769][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  221.424545][ T5839] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  221.436443][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  221.517834][T10055] __nla_validate_parse: 6 callbacks suppressed
[  221.517855][T10055] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1261'.
[  221.546080][ T1108] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.645583][T10053] lo speed is unknown, defaulting to 1000
[  221.792122][ T1108] bridge_slave_1: left allmulticast mode
[  221.800398][ T1108] bridge_slave_1: left promiscuous mode
[  221.806143][ T1108] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.839842][ T1108] bridge_slave_0: left allmulticast mode
[  221.854290][ T1108] bridge_slave_0: left promiscuous mode
[  221.860728][ T1108] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.251600][ T1108] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  222.264267][ T1108] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  222.275003][ T1108] bond0 (unregistering): Released all slaves
[  222.311762][T10062] lo speed is unknown, defaulting to 1000
[  222.335629][T10067] lo speed is unknown, defaulting to 1000
[  222.571329][ T1108] hsr_slave_0: left promiscuous mode
[  222.577795][ T1108] hsr_slave_1: left promiscuous mode
[  222.584244][ T1108] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  222.593378][ T1108] batman_adv: batadv0: Removing interface: batadv_slave_0
[  222.611392][ T1108] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  222.618834][ T1108] batman_adv: batadv0: Removing interface: batadv_slave_1
[  222.671355][ T1108] veth1_macvtap: left promiscuous mode
[  222.690505][T10091] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1278'.
[  222.700130][ T1108] veth0_macvtap: left promiscuous mode
[  222.725279][ T1108] veth1_vlan: left promiscuous mode
[  222.730862][ T1108] veth0_vlan: left promiscuous mode
[  222.761128][T10093] netlink: 'syz.4.1267': attribute type 2 has an invalid length.
[  222.856987][T10099] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1270'.
[  222.874066][T10096] xt_TPROXY: Can be used only with -p tcp or -p udp
[  223.465572][ T1108] team0 (unregistering): Port device team_slave_1 removed
[  223.483478][ T5839] Bluetooth: hci1: command tx timeout
[  223.516009][ T1108] team0 (unregistering): Port device team_slave_0 removed
[  223.976604][T10053] chnl_net:caif_netlink_parms(): no params data found
[  224.085030][T10117] netlink: 'syz.2.1275': attribute type 29 has an invalid length.
[  224.128068][ T7401] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  224.146226][T10117] netlink: 'syz.2.1275': attribute type 4 has an invalid length.
[  224.185352][T10117] netlink: 'syz.2.1275': attribute type 29 has an invalid length.
[  224.301143][T10053] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.321891][T10053] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.336082][T10053] bridge_slave_0: entered allmulticast mode
[  224.348587][T10053] bridge_slave_0: entered promiscuous mode
[  224.367685][T10053] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.379489][T10137] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1283'.
[  224.399009][T10053] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.408361][T10053] bridge_slave_1: entered allmulticast mode
[  224.425287][T10053] bridge_slave_1: entered promiscuous mode
[  224.447193][T10137] netlink: 'syz.4.1283': attribute type 1 has an invalid length.
[  224.518663][T10137] 8021q: adding VLAN 0 to HW filter on device bond3
[  224.521466][T10143] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1283'.
[  224.549505][T10053] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  224.573639][T10143] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1283'.
[  224.587859][T10053] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  224.726826][T10053] team0: Port device team_slave_0 added
[  224.742928][T10053] team0: Port device team_slave_1 added
[  224.801861][T10158] netlink: 'syz.4.1287': attribute type 2 has an invalid length.
[  225.040943][T10053] batman_adv: batadv0: Adding interface: batadv_slave_0
[  225.070071][T10053] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  225.105477][T10053] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  225.117369][T10160] batadv_slave_1: entered promiscuous mode
[  225.128013][T10160] caif0: entered promiscuous mode
[  225.133524][T10160] caif0: entered allmulticast mode
[  225.144850][T10159] batadv_slave_1: left promiscuous mode
[  225.162853][T10053] batman_adv: batadv0: Adding interface: batadv_slave_1
[  225.169868][T10053] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  225.196066][T10053] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  225.237212][T10163] smc: net device bond0 erased user defined pnetid SYZ2
[  225.326748][T10053] hsr_slave_0: entered promiscuous mode
[  225.340510][T10053] hsr_slave_1: entered promiscuous mode
[  225.463691][T10173] FAULT_INJECTION: forcing a failure.
[  225.463691][T10173] name failslab, interval 1, probability 0, space 0, times 0
[  225.490796][T10173] CPU: 0 UID: 0 PID: 10173 Comm: syz.2.1293 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  225.490823][T10173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  225.490832][T10173] Call Trace:
[  225.490838][T10173]  <TASK>
[  225.490845][T10173]  dump_stack_lvl+0x241/0x360
[  225.490871][T10173]  ? __pfx_dump_stack_lvl+0x10/0x10
[  225.490889][T10173]  ? __pfx__printk+0x10/0x10
[  225.490908][T10173]  ? __kmalloc_noprof+0xb5/0x4c0
[  225.490930][T10173]  ? __pfx___might_resched+0x10/0x10
[  225.490950][T10173]  ? nf_tables_expr_parse+0x196/0xab0
[  225.490974][T10173]  should_fail_ex+0x40a/0x550
[  225.491001][T10173]  should_failslab+0xac/0x100
[  225.491022][T10173]  __kmalloc_noprof+0xdd/0x4c0
[  225.491038][T10173]  ? nf_tables_newrule+0x1609/0x2980
[  225.491062][T10173]  nf_tables_newrule+0x1609/0x2980
[  225.491095][T10173]  ? __pfx_nf_tables_newrule+0x10/0x10
[  225.491113][T10173]  ? __skb_clone+0x5c/0x6c0
[  225.491142][T10173]  ? __nla_parse+0x40/0x60
[  225.491162][T10173]  nfnetlink_rcv+0x14e3/0x2ab0
[  225.491210][T10173]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  225.491278][T10173]  ? netlink_deliver_tap+0x2e/0x1b0
[  225.491298][T10173]  ? skb_clone+0x240/0x390
[  225.491315][T10173]  ? __pfx_lock_release+0x10/0x10
[  225.491354][T10173]  ? netlink_deliver_tap+0x2e/0x1b0
[  225.491378][T10173]  netlink_unicast+0x7f6/0x990
[  225.491405][T10173]  ? __pfx_netlink_unicast+0x10/0x10
[  225.491423][T10173]  ? __virt_addr_valid+0x45f/0x530
[  225.491440][T10173]  ? __phys_addr_symbol+0x2f/0x70
[  225.491455][T10173]  ? __check_object_size+0x47a/0x730
[  225.491480][T10173]  netlink_sendmsg+0x8de/0xcb0
[  225.491513][T10173]  ? __pfx_netlink_sendmsg+0x10/0x10
[  225.491538][T10173]  ? aa_sock_msg_perm+0x91/0x160
[  225.491566][T10173]  ? __pfx_netlink_sendmsg+0x10/0x10
[  225.491585][T10173]  __sock_sendmsg+0x221/0x270
[  225.491609][T10173]  ____sys_sendmsg+0x53a/0x860
[  225.491635][T10173]  ? __pfx_____sys_sendmsg+0x10/0x10
[  225.491650][T10173]  ? __fget_files+0x2a/0x410
[  225.491674][T10173]  ? __fget_files+0x2a/0x410
[  225.491704][T10173]  __sys_sendmsg+0x269/0x350
[  225.491725][T10173]  ? __pfx___sys_sendmsg+0x10/0x10
[  225.491754][T10173]  ? do_sys_openat2+0x17a/0x1d0
[  225.491800][T10173]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  225.491824][T10173]  ? do_syscall_64+0x100/0x230
[  225.491844][T10173]  ? do_syscall_64+0xb6/0x230
[  225.491863][T10173]  do_syscall_64+0xf3/0x230
[  225.491879][T10173]  ? clear_bhb_loop+0x35/0x90
[  225.491902][T10173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.491922][T10173] RIP: 0033:0x7f34dff8d169
[  225.491937][T10173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.491949][T10173] RSP: 002b:00007f34e0dbb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  225.491966][T10173] RAX: ffffffffffffffda RBX: 00007f34e01a5fa0 RCX: 00007f34dff8d169
[  225.491978][T10173] RDX: 0000000000000000 RSI: 0000400000000080 RDI: 0000000000000003
[  225.491987][T10173] RBP: 00007f34e0dbb090 R08: 0000000000000000 R09: 0000000000000000
[  225.491998][T10173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.492008][T10173] R13: 0000000000000000 R14: 00007f34e01a5fa0 R15: 00007ffe19c808b8
[  225.492033][T10173]  </TASK>
[  225.823077][T10179] netlink: 'syz.4.1295': attribute type 1 has an invalid length.
[  225.837443][ T5839] Bluetooth: hci1: command tx timeout
[  226.036450][ T5956] IPVS: starting estimator thread 0...
[  226.109639][T10200] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1299'.
[  226.143207][T10200] netlink: 'syz.2.1299': attribute type 4 has an invalid length.
[  226.150147][T10194] IPVS: using max 28 ests per chain, 67200 per kthread
[  226.151467][T10200] netlink: 116 bytes leftover after parsing attributes in process `syz.2.1299'.
[  227.872198][T10210] dccp_invalid_packet: P.type (CLOSEREQ) not Data || [Data]Ack, while P.X == 0
[  227.887170][ T5849] Bluetooth: hci1: command tx timeout
[  228.043287][T10218] caif0: left promiscuous mode
[  228.054378][T10218] caif0: left allmulticast mode
[  228.073610][T10218] A link change request failed with some changes committed already. Interface vlan2 may have been left with an inconsistent configuration, please check.
[  228.339667][T10229] lo speed is unknown, defaulting to 1000
[  228.364804][T10053] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  228.389479][T10053] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  228.409003][T10053] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  228.442315][T10053] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  228.797967][T10053] 8021q: adding VLAN 0 to HW filter on device bond0
[  228.836135][T10053] 8021q: adding VLAN 0 to HW filter on device team0
[  228.866211][ T1108] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.873421][ T1108] bridge0: port 1(bridge_slave_0) entered forwarding state
[  228.977882][ T1108] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.985191][ T1108] bridge0: port 2(bridge_slave_1) entered forwarding state
[  229.109380][T10252] ieee802154 phy1 wpan1: encryption failed: -22
[  229.230623][T10053] 8021q: adding VLAN 0 to HW filter on device batadv0
[  229.282920][T10053] veth0_vlan: entered promiscuous mode
[  229.295942][T10053] veth1_vlan: entered promiscuous mode
[  229.334846][T10053] veth0_macvtap: entered promiscuous mode
[  229.345635][T10053] veth1_macvtap: entered promiscuous mode
[  229.365438][T10053] batman_adv: batadv0: Interface activated: batadv_slave_0
[  229.383112][T10053] batman_adv: batadv0: Interface activated: batadv_slave_1
[  229.395760][T10053] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  229.409669][T10053] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  229.440067][T10053] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  229.469349][T10053] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  229.597483][ T3362] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  229.617862][ T3362] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  229.897956][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  229.913032][T10267] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1315'.
[  229.965529][ T5849] Bluetooth: hci1: command 0x0419 tx timeout
[  230.098454][ T3362] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.115273][ T3362] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.389896][T10212] Set syz1 is full, maxelem 65536 reached
[  230.483959][T10271] FAULT_INJECTION: forcing a failure.
[  230.483959][T10271] name failslab, interval 1, probability 0, space 0, times 0
[  230.497739][T10271] CPU: 0 UID: 0 PID: 10271 Comm: syz.4.1317 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  230.497762][T10271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  230.497772][T10271] Call Trace:
[  230.497778][T10271]  <TASK>
[  230.497784][T10271]  dump_stack_lvl+0x241/0x360
[  230.497811][T10271]  ? __pfx_dump_stack_lvl+0x10/0x10
[  230.497828][T10271]  ? __pfx__printk+0x10/0x10
[  230.497848][T10271]  ? kmem_cache_alloc_noprof+0x48/0x380
[  230.497871][T10271]  ? __pfx___might_resched+0x10/0x10
[  230.497898][T10271]  should_fail_ex+0x40a/0x550
[  230.497926][T10271]  should_failslab+0xac/0x100
[  230.497947][T10271]  ? __kernfs_new_node+0xd8/0x870
[  230.497966][T10271]  kmem_cache_alloc_noprof+0x70/0x380
[  230.497992][T10271]  __kernfs_new_node+0xd8/0x870
[  230.498014][T10271]  ? up_write+0x1a9/0x590
[  230.498037][T10271]  ? __pfx___kernfs_new_node+0x10/0x10
[  230.498056][T10271]  ? up_write+0x1a9/0x590
[  230.498079][T10271]  ? __pfx_up_write+0x10/0x10
[  230.498109][T10271]  kernfs_new_node+0x137/0x240
[  230.498134][T10271]  __kernfs_create_file+0x49/0x2e0
[  230.498154][T10271]  sysfs_add_file_mode_ns+0x24a/0x310
[  230.498181][T10271]  internal_create_group+0x782/0x12d0
[  230.498216][T10271]  ? __pfx_internal_create_group+0x10/0x10
[  230.498249][T10271]  sysfs_create_groups+0x56/0x120
[  230.498271][T10271]  device_add_attrs+0xe5/0x600
[  230.498297][T10271]  ? __pfx_device_add_attrs+0x10/0x10
[  230.498329][T10271]  device_add+0x576/0xbf0
[  230.498352][T10271]  ? device_initialize+0x266/0x460
[  230.498377][T10271]  netdev_register_kobject+0x157/0x2f0
[  230.498401][T10271]  register_netdevice+0x12c3/0x1b70
[  230.498436][T10271]  ? __pfx_register_netdevice+0x10/0x10
[  230.498471][T10271]  macsec_newlink+0x6a9/0x1140
[  230.498503][T10271]  ? __pfx_macsec_handle_frame+0x10/0x10
[  230.498526][T10271]  ? __pfx_macsec_newlink+0x10/0x10
[  230.498543][T10271]  ? rcu_is_watching+0x15/0xb0
[  230.498568][T10271]  ? trace_kmalloc+0x1f/0xd0
[  230.498588][T10271]  ? validate_linkmsg+0x828/0xa40
[  230.498607][T10271]  ? read_word_at_a_time+0xe/0x20
[  230.498626][T10271]  ? sized_strscpy+0x9a/0x2b0
[  230.498648][T10271]  ? __pfx_validate_linkmsg+0x10/0x10
[  230.498667][T10271]  ? alloc_netdev_mqs+0xe8e/0x1210
[  230.498685][T10271]  ? rtnl_create_link+0x56e/0xc90
[  230.498705][T10271]  ? __asan_memcpy+0x40/0x70
[  230.498722][T10271]  ? rtnl_create_link+0x95b/0xc90
[  230.498743][T10271]  ? __pfx_macsec_newlink+0x10/0x10
[  230.498763][T10271]  rtnl_newlink_create+0x37b/0xbd0
[  230.498793][T10271]  ? __pfx_aa_get_newest_label+0x10/0x10
[  230.498818][T10271]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  230.498844][T10271]  ? __pfx___mutex_lock+0x10/0x10
[  230.498873][T10271]  ? ns_capable+0x8a/0xf0
[  230.498896][T10271]  rtnl_newlink+0x167a/0x1d90
[  230.498920][T10271]  ? __lock_acquire+0x1397/0x2100
[  230.498956][T10271]  ? __pfx_rtnl_newlink+0x10/0x10
[  230.498977][T10271]  ? __pfx_validate_chain+0x10/0x10
[  230.499015][T10271]  ? validate_chain+0x11e/0x5920
[  230.499032][T10271]  ? __pfx_lock_acquire+0x10/0x10
[  230.499056][T10271]  ? __pfx_lock_release+0x10/0x10
[  230.499081][T10271]  ? __pfx_validate_chain+0x10/0x10
[  230.499101][T10271]  ? mark_lock+0x9a/0x360
[  230.499121][T10271]  ? __lock_acquire+0x1397/0x2100
[  230.499177][T10271]  ? __pfx_lock_release+0x10/0x10
[  230.499214][T10271]  ? __pfx_rtnl_newlink+0x10/0x10
[  230.499237][T10271]  rtnetlink_rcv_msg+0x791/0xcf0
[  230.499257][T10271]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  230.499278][T10271]  ? __lock_acquire+0x1397/0x2100
[  230.499301][T10271]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  230.499340][T10271]  netlink_rcv_skb+0x206/0x480
[  230.499362][T10271]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  230.499386][T10271]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  230.499430][T10271]  ? netlink_deliver_tap+0x2e/0x1b0
[  230.499454][T10271]  netlink_unicast+0x7f6/0x990
[  230.499482][T10271]  ? __pfx_netlink_unicast+0x10/0x10
[  230.499499][T10271]  ? __virt_addr_valid+0x45f/0x530
[  230.499515][T10271]  ? __phys_addr_symbol+0x2f/0x70
[  230.499530][T10271]  ? __check_object_size+0x47a/0x730
[  230.499560][T10271]  netlink_sendmsg+0x8de/0xcb0
[  230.499594][T10271]  ? __pfx_netlink_sendmsg+0x10/0x10
[  230.499619][T10271]  ? aa_sock_msg_perm+0x91/0x160
[  230.499647][T10271]  ? __pfx_netlink_sendmsg+0x10/0x10
[  230.499666][T10271]  __sock_sendmsg+0x221/0x270
[  230.499690][T10271]  ____sys_sendmsg+0x53a/0x860
[  230.499716][T10271]  ? __pfx_____sys_sendmsg+0x10/0x10
[  230.499732][T10271]  ? __fget_files+0x2a/0x410
[  230.499757][T10271]  ? __fget_files+0x2a/0x410
[  230.499787][T10271]  __sys_sendmsg+0x269/0x350
[  230.499809][T10271]  ? __pfx___sys_sendmsg+0x10/0x10
[  230.499839][T10271]  ? do_sys_openat2+0x17a/0x1d0
[  230.499887][T10271]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  230.499909][T10271]  ? do_syscall_64+0x100/0x230
[  230.499931][T10271]  ? do_syscall_64+0xb6/0x230
[  230.499956][T10271]  do_syscall_64+0xf3/0x230
[  230.499973][T10271]  ? clear_bhb_loop+0x35/0x90
[  230.499995][T10271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.500013][T10271] RIP: 0033:0x7f5a6198d169
[  230.500028][T10271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.500040][T10271] RSP: 002b:00007f5a62700038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  230.500058][T10271] RAX: ffffffffffffffda RBX: 00007f5a61ba5fa0 RCX: 00007f5a6198d169
[  230.500069][T10271] RDX: 0000000000000800 RSI: 0000400000000080 RDI: 0000000000000004
[  230.500079][T10271] RBP: 00007f5a62700090 R08: 0000000000000000 R09: 0000000000000000
[  230.500089][T10271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  230.500099][T10271] R13: 0000000000000000 R14: 00007f5a61ba5fa0 R15: 00007ffc3a8c67f8
[  230.500126][T10271]  </TASK>
[  231.175282][T10281] netlink: 'syz.2.1322': attribute type 2 has an invalid length.
[  231.314735][T10283] xt_CT: No such helper "snmp"
[  231.363025][T10293] netlink: 'syz.1.1325': attribute type 4 has an invalid length.
[  231.366723][T10283] lo speed is unknown, defaulting to 1000
[  231.379150][T10294] netlink: 'syz.1.1325': attribute type 4 has an invalid length.
[  231.397801][T10295] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1324'.
[  231.695200][ T7399] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.963570][T10313] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1328'.
[  232.642468][T10325] netlink: 'syz.3.1335': attribute type 8 has an invalid length.
[  232.660679][T10325] FAULT_INJECTION: forcing a failure.
[  232.660679][T10325] name failslab, interval 1, probability 0, space 0, times 0
[  232.700353][T10325] CPU: 0 UID: 0 PID: 10325 Comm: syz.3.1335 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  232.700379][T10325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  232.700389][T10325] Call Trace:
[  232.700395][T10325]  <TASK>
[  232.700403][T10325]  dump_stack_lvl+0x241/0x360
[  232.700429][T10325]  ? __pfx_dump_stack_lvl+0x10/0x10
[  232.700447][T10325]  ? __pfx__printk+0x10/0x10
[  232.700467][T10325]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  232.700489][T10325]  ? __pfx___might_resched+0x10/0x10
[  232.700516][T10325]  should_fail_ex+0x40a/0x550
[  232.700543][T10325]  should_failslab+0xac/0x100
[  232.700565][T10325]  __kmalloc_node_noprof+0xe1/0x4d0
[  232.700584][T10325]  ? __pfx_br_dev_setup+0x10/0x10
[  232.700602][T10325]  ? __kvmalloc_node_noprof+0x72/0x190
[  232.700623][T10325]  ? __raw_spin_lock_init+0x45/0x100
[  232.700647][T10325]  __kvmalloc_node_noprof+0x72/0x190
[  232.700671][T10325]  alloc_netdev_mqs+0x92c/0x1210
[  232.700699][T10325]  rtnl_create_link+0x2f9/0xc90
[  232.700725][T10325]  rtnl_newlink_create+0x2e1/0xbd0
[  232.700754][T10325]  ? __pfx_aa_get_newest_label+0x10/0x10
[  232.700781][T10325]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  232.700807][T10325]  ? __pfx___mutex_lock+0x10/0x10
[  232.700837][T10325]  ? ns_capable+0x8a/0xf0
[  232.700860][T10325]  rtnl_newlink+0x167a/0x1d90
[  232.700882][T10325]  ? __lock_acquire+0x1397/0x2100
[  232.700919][T10325]  ? __pfx_rtnl_newlink+0x10/0x10
[  232.700940][T10325]  ? __pfx_validate_chain+0x10/0x10
[  232.700978][T10325]  ? validate_chain+0x11e/0x5920
[  232.700995][T10325]  ? __pfx_lock_acquire+0x10/0x10
[  232.701020][T10325]  ? __pfx_lock_release+0x10/0x10
[  232.701045][T10325]  ? __pfx_validate_chain+0x10/0x10
[  232.701065][T10325]  ? mark_lock+0x9a/0x360
[  232.701085][T10325]  ? __lock_acquire+0x1397/0x2100
[  232.701137][T10325]  ? __pfx_lock_release+0x10/0x10
[  232.701175][T10325]  ? __pfx_rtnl_newlink+0x10/0x10
[  232.701197][T10325]  rtnetlink_rcv_msg+0x791/0xcf0
[  232.701217][T10325]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  232.701239][T10325]  ? __lock_acquire+0x1397/0x2100
[  232.701262][T10325]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  232.701306][T10325]  netlink_rcv_skb+0x206/0x480
[  232.701329][T10325]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  232.701352][T10325]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  232.701398][T10325]  ? netlink_deliver_tap+0x2e/0x1b0
[  232.701421][T10325]  netlink_unicast+0x7f6/0x990
[  232.701450][T10325]  ? __pfx_netlink_unicast+0x10/0x10
[  232.701467][T10325]  ? __virt_addr_valid+0x45f/0x530
[  232.701483][T10325]  ? __phys_addr_symbol+0x2f/0x70
[  232.701498][T10325]  ? __check_object_size+0x47a/0x730
[  232.701524][T10325]  netlink_sendmsg+0x8de/0xcb0
[  232.701557][T10325]  ? __pfx_netlink_sendmsg+0x10/0x10
[  232.701583][T10325]  ? aa_sock_msg_perm+0x91/0x160
[  232.701610][T10325]  ? __pfx_netlink_sendmsg+0x10/0x10
[  232.701629][T10325]  __sock_sendmsg+0x221/0x270
[  232.701653][T10325]  ____sys_sendmsg+0x53a/0x860
[  232.701680][T10325]  ? __pfx_____sys_sendmsg+0x10/0x10
[  232.701695][T10325]  ? __fget_files+0x2a/0x410
[  232.701720][T10325]  ? __fget_files+0x2a/0x410
[  232.701751][T10325]  __sys_sendmsg+0x269/0x350
[  232.701774][T10325]  ? __pfx___sys_sendmsg+0x10/0x10
[  232.701806][T10325]  ? do_sys_openat2+0x17a/0x1d0
[  232.701855][T10325]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  232.701879][T10325]  ? do_syscall_64+0x100/0x230
[  232.701901][T10325]  ? do_syscall_64+0xb6/0x230
[  232.701922][T10325]  do_syscall_64+0xf3/0x230
[  232.701941][T10325]  ? clear_bhb_loop+0x35/0x90
[  232.701965][T10325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.701985][T10325] RIP: 0033:0x7f76e2b8d169
[  232.702000][T10325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.702014][T10325] RSP: 002b:00007f76e3943038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  232.702032][T10325] RAX: ffffffffffffffda RBX: 00007f76e2da5fa0 RCX: 00007f76e2b8d169
[  232.702044][T10325] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000004
[  232.702054][T10325] RBP: 00007f76e3943090 R08: 0000000000000000 R09: 0000000000000000
[  232.702064][T10325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  232.702074][T10325] R13: 0000000000000000 R14: 00007f76e2da5fa0 R15: 00007ffeb257b648
[  232.702102][T10325]  </TASK>
[  233.136007][T10329] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  233.242587][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  233.253725][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  233.266584][ T5849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  233.274852][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  233.278000][T10335] bridge2: entered allmulticast mode
[  233.285099][ T5849] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  233.295097][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  233.331361][T10331] lo speed is unknown, defaulting to 1000
[  233.343155][T10337] bridge3: entered allmulticast mode
[  233.472623][T10346] netlink: 1280 bytes leftover after parsing attributes in process `syz.3.1341'.
[  233.591802][ T7399] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.629396][T10358] netlink: 'syz.2.1346': attribute type 21 has an invalid length.
[  233.650431][T10358] IPv6: NLM_F_CREATE should be specified when creating new route
[  233.692420][T10358] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1346'.
[  233.720799][ T7399] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.764970][T10331] chnl_net:caif_netlink_parms(): no params data found
[  233.837986][ T7399] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.016302][T10331] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.026819][T10331] bridge0: port 1(bridge_slave_0) entered disabled state
[  234.040285][T10331] bridge_slave_0: entered allmulticast mode
[  234.047417][T10331] bridge_slave_0: entered promiscuous mode
[  234.055694][T10331] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.063408][T10331] bridge0: port 2(bridge_slave_1) entered disabled state
[  234.070774][T10331] bridge_slave_1: entered allmulticast mode
[  234.077905][T10331] bridge_slave_1: entered promiscuous mode
[  234.093463][T10382] FAULT_INJECTION: forcing a failure.
[  234.093463][T10382] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  234.107020][T10382] CPU: 0 UID: 0 PID: 10382 Comm: syz.1.1353 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  234.107043][T10382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  234.107053][T10382] Call Trace:
[  234.107059][T10382]  <TASK>
[  234.107067][T10382]  dump_stack_lvl+0x241/0x360
[  234.107093][T10382]  ? __pfx_dump_stack_lvl+0x10/0x10
[  234.107111][T10382]  ? __pfx__printk+0x10/0x10
[  234.107130][T10382]  ? __pfx_lock_release+0x10/0x10
[  234.107161][T10382]  should_fail_ex+0x40a/0x550
[  234.107187][T10382]  _copy_from_user+0x2d/0xb0
[  234.107208][T10382]  copy_msghdr_from_user+0xae/0x680
[  234.107230][T10382]  ? __pfx___might_resched+0x10/0x10
[  234.107252][T10382]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  234.107270][T10382]  ? __fget_files+0x2a/0x410
[  234.107295][T10382]  ? __sys_sendmmsg+0x392/0x720
[  234.107312][T10382]  ? __might_fault+0xaa/0x120
[  234.107331][T10382]  __sys_sendmmsg+0x32b/0x720
[  234.107356][T10382]  ? __pfx___sys_sendmmsg+0x10/0x10
[  234.107384][T10382]  ? __pfx_lock_release+0x10/0x10
[  234.107403][T10382]  ? kstrtouint_from_user+0x128/0x190
[  234.107448][T10382]  ? ksys_write+0x22a/0x2b0
[  234.107462][T10382]  ? __pfx_lock_release+0x10/0x10
[  234.107485][T10382]  ? sb_end_write+0xe9/0x1c0
[  234.107507][T10382]  ? vfs_write+0x7fa/0xd10
[  234.107524][T10382]  ? __mutex_unlock_slowpath+0x227/0x800
[  234.107568][T10382]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  234.107591][T10382]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  234.107613][T10382]  ? do_syscall_64+0x100/0x230
[  234.107633][T10382]  __x64_sys_sendmmsg+0xa0/0xb0
[  234.107652][T10382]  do_syscall_64+0xf3/0x230
[  234.107669][T10382]  ? clear_bhb_loop+0x35/0x90
[  234.107692][T10382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.107711][T10382] RIP: 0033:0x7fc56af8d169
[  234.107726][T10382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.107740][T10382] RSP: 002b:00007fc56bebb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  234.107758][T10382] RAX: ffffffffffffffda RBX: 00007fc56b1a5fa0 RCX: 00007fc56af8d169
[  234.107770][T10382] RDX: 04924924924925c6 RSI: 0000400000000680 RDI: 0000000000000005
[  234.107781][T10382] RBP: 00007fc56bebb090 R08: 0000000000000000 R09: 0000000000000000
[  234.107791][T10382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  234.107801][T10382] R13: 0000000000000000 R14: 00007fc56b1a5fa0 R15: 00007ffcfa6968f8
[  234.107827][T10382]  </TASK>
[  234.426019][T10384] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1354'.
[  234.540234][ T7399] bridge_slave_1: left allmulticast mode
[  234.545936][ T7399] bridge_slave_1: left promiscuous mode
[  234.551791][ T7399] bridge0: port 2(bridge_slave_1) entered disabled state
[  234.559744][T10376] lo speed is unknown, defaulting to 1000
[  234.581885][ T7399] bridge_slave_0: left allmulticast mode
[  234.587576][ T7399] bridge_slave_0: left promiscuous mode
[  234.593763][ T7399] bridge0: port 1(bridge_slave_0) entered disabled state
[  234.841687][T10401] netlink: 34 bytes leftover after parsing attributes in process `syz.4.1357'.
[  234.871381][T10401] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1357'.
[  234.915171][T10369] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1349'.
[  235.014478][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  235.127645][ T7399] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  235.140472][ T7399] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  235.152100][ T7399] bond0 (unregistering): Released all slaves
[  235.166920][T10331] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  235.199196][T10331] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  235.321373][ T5849] Bluetooth: hci1: command tx timeout
[  235.338224][T10369] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  235.361846][T10399] tipc: Enabled bearer <eth:bond0>, priority 10
[  235.415197][T10331] team0: Port device team_slave_0 added
[  235.475733][    T9] lo speed is unknown, defaulting to 1000
[  235.492310][T10408] bridge0: entered promiscuous mode
[  235.513091][T10331] team0: Port device team_slave_1 added
[  235.567146][T10411] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  235.603130][T10378] lo speed is unknown, defaulting to 1000
[  235.713619][T10331] batman_adv: batadv0: Adding interface: batadv_slave_0
[  235.722952][T10331] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.741344][T10422] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1364'.
[  235.775288][T10331] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  235.869899][T10417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1363'.
[  235.886025][T10417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1363'.
[  235.933189][T10417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1363'.
[  235.942299][T10417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1363'.
[  235.951516][T10417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1363'.
[  235.980231][T10417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1363'.
[  235.989265][T10417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1363'.
[  236.010294][T10417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1363'.
[  236.019311][T10417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1363'.
[  236.053933][T10417] wg1: left promiscuous mode
[  236.058921][T10417] wg1: left allmulticast mode
[  236.124877][T10331] batman_adv: batadv0: Adding interface: batadv_slave_1
[  236.137859][T10331] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  236.200105][T10331] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  236.252485][T10441] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  236.329422][ T7399] hsr_slave_0: left promiscuous mode
[  236.361983][ T5887] tipc: Node number set to 16385
[  236.383285][ T7399] hsr_slave_1: left promiscuous mode
[  236.389508][ T7399] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  236.407477][ T7399] batman_adv: batadv0: Removing interface: batadv_slave_0
[  236.425654][ T7399] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  236.436575][ T7399] batman_adv: batadv0: Removing interface: batadv_slave_1
[  236.475886][T10446] netlink: 'syz.3.1369': attribute type 13 has an invalid length.
[  236.501997][ T7399] veth1_macvtap: left promiscuous mode
[  236.507666][ T7399] veth0_macvtap: left promiscuous mode
[  236.520237][ T7399] veth1_vlan: left promiscuous mode
[  236.527192][ T7399] veth0_vlan: left promiscuous mode
[  237.226544][ T7399] team0 (unregistering): Port device team_slave_1 removed
[  237.303332][ T7399] team0 (unregistering): Port device team_slave_0 removed
[  237.401227][ T5849] Bluetooth: hci1: command tx timeout
[  237.834933][T10416] Set syz1 is full, maxelem 65536 reached
[  238.005001][T10331] hsr_slave_0: entered promiscuous mode
[  238.036726][T10331] hsr_slave_1: entered promiscuous mode
[  238.270266][T10456] lo speed is unknown, defaulting to 1000
[  238.360832][T10454] lo speed is unknown, defaulting to 1000
[  238.924732][T10484] netlink: 'syz.4.1378': attribute type 2 has an invalid length.
[  239.020617][T10331] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  239.039850][T10331] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  239.072943][T10331] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  239.119763][T10331] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  239.163464][T10488] vlan2: left allmulticast mode
[  239.168594][T10488] bridge0: port 1(vlan2) entered disabled state
[  239.189857][T10488] bond2: (slave veth3): Releasing active interface
[  239.204838][T10486] tipc: Started in network mode
[  239.212006][T10486] tipc: Node identity 3e7b755d6b1, cluster identity 4711
[  239.219208][T10486] tipc: Enabled bearer <eth:bond0>, priority 10
[  239.352599][T10498] netlink: 'syz.1.1393': attribute type 10 has an invalid length.
[  239.373610][T10498] hsr0: entered promiscuous mode
[  239.378838][T10498] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  239.406692][T10498] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  239.432574][T10498] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  239.481481][ T5849] Bluetooth: hci1: command tx timeout
[  239.541764][T10331] 8021q: adding VLAN 0 to HW filter on device bond0
[  239.600274][T10331] 8021q: adding VLAN 0 to HW filter on device team0
[  239.613178][T10505] netlink: 'syz.3.1386': attribute type 3 has an invalid length.
[  239.669533][ T7399] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.676778][ T7399] bridge0: port 1(bridge_slave_0) entered forwarding state
[  239.738123][T10512] netlink: 'syz.3.1386': attribute type 21 has an invalid length.
[  239.765172][T10512] IPv6: NLM_F_CREATE should be specified when creating new route
[  239.774359][T10512] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  239.781701][T10512] IPv6: NLM_F_CREATE should be set when creating new route
[  239.789007][T10512] IPv6: NLM_F_CREATE should be set when creating new route
[  239.796335][T10512] IPv6: NLM_F_CREATE should be set when creating new route
[  239.798496][T10517] Cannot find set identified by id 0 to match
[  239.807570][ T3362] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.817089][ T3362] bridge0: port 2(bridge_slave_1) entered forwarding state
[  239.834668][   T12] tipc: Subscription rejected, illegal request
[  239.864710][T10515] lo speed is unknown, defaulting to 1000
[  239.923317][T10331] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  239.934902][T10331] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  239.993448][T10525] netlink: 'syz.3.1391': attribute type 2 has an invalid length.
[  240.341640][ T5887] tipc: Node number set to 1433105757
[  240.464422][T10331] 8021q: adding VLAN 0 to HW filter on device batadv0
[  240.485675][T10547] erspan0: entered promiscuous mode
[  240.496388][T10547] macvtap1: entered promiscuous mode
[  240.502976][T10547] macvtap1: entered allmulticast mode
[  240.508871][T10547] erspan0: entered allmulticast mode
[  240.532302][T10550] erspan0: left allmulticast mode
[  240.547800][T10550] erspan0: left promiscuous mode
[  240.605374][T10331] veth0_vlan: entered promiscuous mode
[  240.617616][T10331] veth1_vlan: entered promiscuous mode
[  240.697633][T10556] bridge0: port 1(vlan2) entered disabled state
[  240.727109][T10556] bond2: (slave bridge1): Releasing active interface
[  240.747111][T10560] team0: Unable to change to the same mode the team is in
[  240.765639][T10331] veth0_macvtap: entered promiscuous mode
[  240.781210][T10331] veth1_macvtap: entered promiscuous mode
[  240.805908][T10561] lo speed is unknown, defaulting to 1000
[  240.841122][T10331] batman_adv: batadv0: Interface activated: batadv_slave_0
[  240.904277][T10331] batman_adv: batadv0: Interface activated: batadv_slave_1
[  240.989715][T10331] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  240.998829][T10331] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  241.009566][T10331] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  241.018423][T10331] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  241.033844][T10570] lo speed is unknown, defaulting to 1000
[  241.068177][T10573] lo speed is unknown, defaulting to 1000
[  241.299309][T10581] netlink: 'syz.2.1407': attribute type 2 has an invalid length.
[  241.570474][ T5849] Bluetooth: hci1: command tx timeout
[  242.942188][T10596] Cannot find del_set index 2 as target
[  243.195323][T10586] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒw˜}�zR'
[  243.207775][T10586] CPU: 1 UID: 0 PID: 10586 Comm: syz.2.1409 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  243.207792][T10586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  243.207799][T10586] Call Trace:
[  243.207803][T10586]  <TASK>
[  243.207808][T10586]  dump_stack_lvl+0x241/0x360
[  243.207827][T10586]  ? __pfx_dump_stack_lvl+0x10/0x10
[  243.207838][T10586]  ? __pfx__printk+0x10/0x10
[  243.207851][T10586]  ? __kmalloc_cache_noprof+0x243/0x390
[  243.207865][T10586]  ? sysfs_warn_dup+0x51/0xa0
[  243.207879][T10586]  sysfs_warn_dup+0x8e/0xa0
[  243.207890][T10586]  sysfs_do_create_link_sd+0xbe/0x110
[  243.207904][T10586]  device_add_class_symlinks+0x1c5/0x250
[  243.207921][T10586]  device_add+0x553/0xbf0
[  243.207938][T10586]  wiphy_register+0x1922/0x2650
[  243.207959][T10586]  ? __pfx_wiphy_register+0x10/0x10
[  243.207970][T10586]  ? minstrel_ht_alloc+0x84b/0x940
[  243.207987][T10586]  ? ieee80211_init_rate_ctrl_alg+0x5a2/0x620
[  243.208005][T10586]  ieee80211_register_hw+0x35d9/0x42e0
[  243.208026][T10586]  ? ieee80211_register_hw+0x1651/0x42e0
[  243.208044][T10586]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  243.208064][T10586]  ? __asan_memset+0x23/0x50
[  243.208074][T10586]  ? __hrtimer_init+0x170/0x250
[  243.208087][T10586]  mac80211_hwsim_new_radio+0x2a89/0x49f0
[  243.208117][T10586]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  243.208129][T10586]  ? trace_kmalloc+0x1f/0xd0
[  243.208140][T10586]  ? __kmalloc_node_track_caller_noprof+0x2a8/0x4c0
[  243.208154][T10586]  ? kstrndup+0xbb/0x150
[  243.208175][T10586]  hwsim_new_radio_nl+0xece/0x2290
[  243.208194][T10586]  ? __pfx___nla_validate_parse+0x10/0x10
[  243.208207][T10586]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  243.208238][T10586]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  243.208255][T10586]  genl_rcv_msg+0xb1f/0xec0
[  243.208270][T10586]  ? __pfx_genl_rcv_msg+0x10/0x10
[  243.208296][T10586]  ? __pfx_lock_acquire+0x10/0x10
[  243.208310][T10586]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  243.208323][T10586]  ? __pfx___might_resched+0x10/0x10
[  243.208343][T10586]  netlink_rcv_skb+0x206/0x480
[  243.208356][T10586]  ? __pfx_genl_rcv_msg+0x10/0x10
[  243.208367][T10586]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  243.208397][T10586]  genl_rcv+0x28/0x40
[  243.208406][T10586]  netlink_unicast+0x7f6/0x990
[  243.208422][T10586]  ? __pfx_netlink_unicast+0x10/0x10
[  243.208432][T10586]  ? __virt_addr_valid+0x45f/0x530
[  243.208442][T10586]  ? __phys_addr_symbol+0x2f/0x70
[  243.208450][T10586]  ? __check_object_size+0x47a/0x730
[  243.208466][T10586]  netlink_sendmsg+0x8de/0xcb0
[  243.208486][T10586]  ? __pfx_netlink_sendmsg+0x10/0x10
[  243.208501][T10586]  ? aa_sock_msg_perm+0x91/0x160
[  243.208527][T10586]  ? __pfx_netlink_sendmsg+0x10/0x10
[  243.208540][T10586]  __sock_sendmsg+0x221/0x270
[  243.208556][T10586]  ____sys_sendmsg+0x53a/0x860
[  243.208572][T10586]  ? __pfx_____sys_sendmsg+0x10/0x10
[  243.208581][T10586]  ? __fget_files+0x2a/0x410
[  243.208597][T10586]  ? __fget_files+0x2a/0x410
[  243.208615][T10586]  __sys_sendmsg+0x269/0x350
[  243.208629][T10586]  ? __pfx___sys_sendmsg+0x10/0x10
[  243.208664][T10586]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  243.208679][T10586]  ? do_syscall_64+0x100/0x230
[  243.208692][T10586]  ? do_syscall_64+0xb6/0x230
[  243.208705][T10586]  do_syscall_64+0xf3/0x230
[  243.208716][T10586]  ? clear_bhb_loop+0x35/0x90
[  243.208734][T10586]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.208747][T10586] RIP: 0033:0x7f34dff8d169
[  243.208757][T10586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.208766][T10586] RSP: 002b:00007f34e0dbb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  243.208777][T10586] RAX: ffffffffffffffda RBX: 00007f34e01a5fa0 RCX: 00007f34dff8d169
[  243.208784][T10586] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000004
[  243.208790][T10586] RBP: 00007f34e000e2a0 R08: 0000000000000000 R09: 0000000000000000
[  243.208795][T10586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  243.208801][T10586] R13: 0000000000000000 R14: 00007f34e01a5fa0 R15: 00007ffe19c808b8
[  243.208817][T10586]  </TASK>
[  243.612435][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  243.620407][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  243.767871][ T7399] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  243.780262][ T7399] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  243.785788][T10602] __nla_validate_parse: 76 callbacks suppressed
[  243.785806][T10602] netlink: 240 bytes leftover after parsing attributes in process `syz.2.1414'.
[  243.817637][T10603] netlink: 240 bytes leftover after parsing attributes in process `syz.2.1414'.
[  244.070874][T10609] sctp: [Deprecated]: syz.1.1416 (pid 10609) Use of int in max_burst socket option deprecated.
[  244.070874][T10609] Use struct sctp_assoc_value instead
[  244.129650][T10617] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1415'.
[  244.288855][T10629] netlink: 'syz.2.1419': attribute type 2 has an invalid length.
[  244.309427][T10631] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1420'.
[  244.326914][T10631] macvtap1: entered promiscuous mode
[  244.332983][T10631] erspan0: entered promiscuous mode
[  244.338705][T10631] macvtap1: entered allmulticast mode
[  244.345038][T10631] erspan0: entered allmulticast mode
[  244.363067][T10631] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1420'.
[  244.376621][T10631] erspan0: left allmulticast mode
[  244.382806][T10631] erspan0: left promiscuous mode
[  244.416623][T10635] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1422'.
[  244.754465][ T7397] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.768629][T10651] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input6
[  244.787447][  T974] af_packet: tpacket_rcv: packet too big, clamped from 72 to 4294967272. macoff=96
[  244.877448][ T7397] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.216200][ T7397] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.269675][ T7397] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.361974][ T7397] bridge_slave_1: left allmulticast mode
[  245.367678][ T7397] bridge_slave_1: left promiscuous mode
[  245.374855][ T7397] bridge0: port 2(bridge_slave_1) entered disabled state
[  245.383596][ T7397] bridge_slave_0: left allmulticast mode
[  245.389246][ T7397] bridge_slave_0: left promiscuous mode
[  245.395381][ T7397] bridge0: port 1(bridge_slave_0) entered disabled state
[  245.678801][ T7397] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  245.689846][ T7397] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  245.700841][ T7397] bond0 (unregistering): Released all slaves
[  245.780810][T10658] netlink: 'syz.4.1431': attribute type 2 has an invalid length.
[  245.799387][T10663] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1430'.
[  245.827308][T10663] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1430'.
[  245.864894][T10659] lo speed is unknown, defaulting to 1000
[  246.135142][T10680] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1436'.
[  246.156784][T10677] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1435'.
[  246.196354][T10680] erspan0: entered promiscuous mode
[  246.213181][T10680] erspan0: left promiscuous mode
[  246.281945][   T35] wlan1: Trigger new scan to find an IBSS to join
[  246.288540][ T3362] wlan0: Trigger new scan to find an IBSS to join
[  246.303222][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  246.314597][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  246.325763][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  246.336988][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  246.350406][ T5839] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  246.358604][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  246.460129][T10686] lo speed is unknown, defaulting to 1000
[  246.517289][ T7397] hsr_slave_0: left promiscuous mode
[  246.524249][ T7397] hsr_slave_1: left promiscuous mode
[  246.542126][ T7397] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  246.555707][ T7397] batman_adv: batadv0: Removing interface: batadv_slave_0
[  246.563835][ T7397] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  246.571477][ T7397] batman_adv: batadv0: Removing interface: batadv_slave_1
[  246.659320][ T7397] veth1_macvtap: left promiscuous mode
[  246.665086][ T7397] veth0_macvtap: left promiscuous mode
[  246.679456][ T7397] veth1_vlan: left promiscuous mode
[  246.694707][T10705] netlink: 'syz.3.1445': attribute type 2 has an invalid length.
[  246.707121][ T7397] veth0_vlan: left promiscuous mode
[  246.753520][T10701] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  247.165383][ T7397] team0 (unregistering): Port device team_slave_1 removed
[  247.214810][ T7397] team0 (unregistering): Port device team_slave_0 removed
[  247.431051][T10715] netlink: 'syz.1.1448': attribute type 58 has an invalid length.
[  247.857945][T10686] chnl_net:caif_netlink_parms(): no params data found
[  248.106934][T10686] bridge0: port 1(bridge_slave_0) entered blocking state
[  248.130113][T10686] bridge0: port 1(bridge_slave_0) entered disabled state
[  248.143228][T10686] bridge_slave_0: entered allmulticast mode
[  248.157506][T10686] bridge_slave_0: entered promiscuous mode
[  248.190550][T10745] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  248.244674][T10686] bridge0: port 2(bridge_slave_1) entered blocking state
[  248.252148][T10746] xt_CT: No such helper "snmp"
[  248.266241][T10686] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.281481][T10686] bridge_slave_1: entered allmulticast mode
[  248.311246][T10686] bridge_slave_1: entered promiscuous mode
[  248.424658][T10686] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  248.441175][ T5839] Bluetooth: hci1: command tx timeout
[  248.450939][T10686] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  248.637436][T10686] team0: Port device team_slave_0 added
[  248.672682][T10686] team0: Port device team_slave_1 added
[  248.978387][T10686] batman_adv: batadv0: Adding interface: batadv_slave_0
[  248.996578][T10686] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  249.050146][T10686] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  249.071942][T10686] batman_adv: batadv0: Adding interface: batadv_slave_1
[  249.082150][T10686] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  249.130103][T10686] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  249.302555][T10686] hsr_slave_0: entered promiscuous mode
[  249.312415][T10686] hsr_slave_1: entered promiscuous mode
[  249.318244][T10798] __nla_validate_parse: 7 callbacks suppressed
[  249.318257][T10798] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1474'.
[  249.435546][T10798] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1474'.
[  249.443357][T10799] lo speed is unknown, defaulting to 1000
[  249.653070][T10808] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1477'.
[  249.945330][T10824] netlink: 'syz.1.1481': attribute type 39 has an invalid length.
[  250.213323][T10834] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1484'.
[  250.239833][T10837] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1485'.
[  250.255531][T10686] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  250.298484][T10686] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  250.314640][T10843] xt_TCPMSS: Only works on TCP SYN packets
[  250.341861][T10686] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  250.356700][T10841] Cannot find set identified by id 0 to match
[  250.368467][T10843] lo speed is unknown, defaulting to 1000
[  250.384007][T10686] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  250.520103][ T5839] Bluetooth: hci1: command tx timeout
[  250.698484][T10686] 8021q: adding VLAN 0 to HW filter on device bond0
[  250.742694][T10857] lo speed is unknown, defaulting to 1000
[  250.754789][T10863] netlink: 'syz.1.1491': attribute type 2 has an invalid length.
[  250.923565][T10686] 8021q: adding VLAN 0 to HW filter on device team0
[  250.971697][ T7401] bridge0: port 1(bridge_slave_0) entered blocking state
[  250.978853][ T7401] bridge0: port 1(bridge_slave_0) entered forwarding state
[  251.052070][ T7401] bridge0: port 2(bridge_slave_1) entered blocking state
[  251.059249][ T7401] bridge0: port 2(bridge_slave_1) entered forwarding state
[  251.193558][T10881] netlink: 296 bytes leftover after parsing attributes in process `syz.2.1497'.
[  251.196219][T10868] netlink: set zone limit has 4 unknown bytes
[  251.320102][ T7397] wlan1: Trigger new scan to find an IBSS to join
[  251.326754][   T35] wlan0: Trigger new scan to find an IBSS to join
[  251.576394][T10686] 8021q: adding VLAN 0 to HW filter on device batadv0
[  251.696531][T10686] veth0_vlan: entered promiscuous mode
[  251.731956][T10909] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1507'.
[  251.747045][T10686] veth1_vlan: entered promiscuous mode
[  251.773261][T10911] FAULT_INJECTION: forcing a failure.
[  251.773261][T10911] name failslab, interval 1, probability 0, space 0, times 0
[  251.791463][T10911] CPU: 0 UID: 0 PID: 10911 Comm: syz.1.1510 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  251.791484][T10911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  251.791499][T10911] Call Trace:
[  251.791506][T10911]  <TASK>
[  251.791513][T10911]  dump_stack_lvl+0x241/0x360
[  251.791539][T10911]  ? __pfx_dump_stack_lvl+0x10/0x10
[  251.791558][T10911]  ? __pfx__printk+0x10/0x10
[  251.791577][T10911]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  251.791601][T10911]  ? __pfx___might_resched+0x10/0x10
[  251.791627][T10911]  should_fail_ex+0x40a/0x550
[  251.791655][T10911]  should_failslab+0xac/0x100
[  251.791677][T10911]  kmem_cache_alloc_node_noprof+0x77/0x380
[  251.791705][T10911]  ? __alloc_skb+0x1c3/0x440
[  251.791724][T10911]  __alloc_skb+0x1c3/0x440
[  251.791745][T10911]  ? __pfx___alloc_skb+0x10/0x10
[  251.791763][T10911]  ? netlink_autobind+0xd6/0x2f0
[  251.791784][T10911]  ? netlink_autobind+0x2b0/0x2f0
[  251.791809][T10911]  netlink_sendmsg+0x634/0xcb0
[  251.791842][T10911]  ? __pfx_netlink_sendmsg+0x10/0x10
[  251.791867][T10911]  ? aa_sock_msg_perm+0x91/0x160
[  251.791896][T10911]  ? __pfx_netlink_sendmsg+0x10/0x10
[  251.791915][T10911]  __sock_sendmsg+0x221/0x270
[  251.791940][T10911]  sock_write_iter+0x2d7/0x3f0
[  251.791961][T10911]  ? __pfx_sock_write_iter+0x10/0x10
[  251.792002][T10911]  do_iter_readv_writev+0x71a/0x9d0
[  251.792025][T10911]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  251.792047][T10911]  ? bpf_lsm_file_permission+0x9/0x10
[  251.792068][T10911]  ? rw_verify_area+0x243/0x630
[  251.792087][T10911]  vfs_writev+0x38b/0xbc0
[  251.792123][T10911]  ? __pfx_vfs_writev+0x10/0x10
[  251.792156][T10911]  ? do_sys_openat2+0x17a/0x1d0
[  251.792178][T10911]  ? __fget_files+0x2a/0x410
[  251.792201][T10911]  ? __fget_files+0x395/0x410
[  251.792220][T10911]  ? __fget_files+0x2a/0x410
[  251.792250][T10911]  do_writev+0x1b6/0x360
[  251.792276][T10911]  ? __pfx_do_writev+0x10/0x10
[  251.792298][T10911]  ? do_syscall_64+0x100/0x230
[  251.792320][T10911]  ? do_syscall_64+0xb6/0x230
[  251.792341][T10911]  do_syscall_64+0xf3/0x230
[  251.792359][T10911]  ? clear_bhb_loop+0x35/0x90
[  251.792382][T10911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.792402][T10911] RIP: 0033:0x7fc56af8d169
[  251.792418][T10911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.792432][T10911] RSP: 002b:00007fc56bebb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  251.792451][T10911] RAX: ffffffffffffffda RBX: 00007fc56b1a5fa0 RCX: 00007fc56af8d169
[  251.792463][T10911] RDX: 0000000000000001 RSI: 0000400000000180 RDI: 0000000000000006
[  251.792473][T10911] RBP: 00007fc56bebb090 R08: 0000000000000000 R09: 0000000000000000
[  251.792484][T10911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  251.792493][T10911] R13: 0000000000000000 R14: 00007fc56b1a5fa0 R15: 00007ffcfa6968f8
[  251.792520][T10911]  </TASK>
[  252.161671][T10686] veth0_macvtap: entered promiscuous mode
[  252.171728][T10686] veth1_macvtap: entered promiscuous mode
[  252.188522][T10686] batman_adv: batadv0: Interface activated: batadv_slave_0
[  252.204973][T10686] batman_adv: batadv0: Interface activated: batadv_slave_1
[  252.224190][T10686] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  252.233145][T10686] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  252.242314][T10686] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  252.251435][T10686] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  252.397068][ T7399] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  252.406304][ T7399] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.471702][T10937] netlink: 'syz.1.1517': attribute type 64 has an invalid length.
[  252.489484][ T3362] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  252.513647][ T3362] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.552326][ T7399] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.562237][ T7401] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.600603][ T5839] Bluetooth: hci1: command tx timeout
[  253.277121][T10953] hsr0: left promiscuous mode
[  253.386613][T10957] FAULT_INJECTION: forcing a failure.
[  253.386613][T10957] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  253.401698][T10957] CPU: 0 UID: 0 PID: 10957 Comm: syz.1.1524 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  253.401722][T10957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  253.401731][T10957] Call Trace:
[  253.401737][T10957]  <TASK>
[  253.401744][T10957]  dump_stack_lvl+0x241/0x360
[  253.401770][T10957]  ? __pfx_dump_stack_lvl+0x10/0x10
[  253.401787][T10957]  ? __pfx__printk+0x10/0x10
[  253.401815][T10957]  should_fail_ex+0x40a/0x550
[  253.401842][T10957]  prepare_alloc_pages+0x1da/0x5b0
[  253.401868][T10957]  __alloc_frozen_pages_noprof+0x16f/0x710
[  253.401890][T10957]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  253.401927][T10957]  alloc_pages_mpol+0x311/0x660
[  253.401952][T10957]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  253.401979][T10957]  alloc_pages_noprof+0x121/0x190
[  253.402001][T10957]  get_free_pages_noprof+0xc/0x30
[  253.402016][T10957]  kasan_populate_vmalloc_pte+0x38/0xe0
[  253.402034][T10957]  __apply_to_page_range+0x806/0xde0
[  253.402062][T10957]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  253.402084][T10957]  ? __pfx___apply_to_page_range+0x10/0x10
[  253.402109][T10957]  ? do_raw_spin_unlock+0x13c/0x8b0
[  253.402129][T10957]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  253.402156][T10957]  alloc_vmap_area+0x1d4e/0x2400
[  253.402198][T10957]  ? __pfx_alloc_vmap_area+0x10/0x10
[  253.402220][T10957]  ? __kasan_kmalloc+0x98/0xb0
[  253.402260][T10957]  ? __kmalloc_cache_node_noprof+0x25d/0x3a0
[  253.402289][T10957]  ? __get_vm_area_node+0x132/0x2d0
[  253.402312][T10957]  ? prealloc_init+0x139/0x840
[  253.402330][T10957]  __get_vm_area_node+0x1c8/0x2d0
[  253.402356][T10957]  __vmalloc_node_range_noprof+0x344/0x1380
[  253.402372][T10957]  ? prealloc_init+0x139/0x840
[  253.402390][T10957]  ? __pfx_lock_acquire+0x10/0x10
[  253.402416][T10957]  ? __pfx_lock_release+0x10/0x10
[  253.402454][T10957]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  253.402472][T10957]  ? __pfx___might_resched+0x10/0x10
[  253.402491][T10957]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  253.402517][T10957]  bpf_map_area_alloc+0xfc/0x120
[  253.402540][T10957]  ? prealloc_init+0x139/0x840
[  253.402560][T10957]  prealloc_init+0x139/0x840
[  253.402591][T10957]  htab_map_alloc+0x86e/0xe70
[  253.402617][T10957]  map_create+0x946/0x11c0
[  253.402646][T10957]  __sys_bpf+0x6d3/0x820
[  253.402669][T10957]  ? __pfx___sys_bpf+0x10/0x10
[  253.402702][T10957]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  253.402727][T10957]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  253.402750][T10957]  ? do_syscall_64+0x100/0x230
[  253.402773][T10957]  __x64_sys_bpf+0x7c/0x90
[  253.402793][T10957]  do_syscall_64+0xf3/0x230
[  253.402812][T10957]  ? clear_bhb_loop+0x35/0x90
[  253.402835][T10957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.402854][T10957] RIP: 0033:0x7fc56af8d169
[  253.402869][T10957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.402883][T10957] RSP: 002b:00007fc56bebb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  253.402901][T10957] RAX: ffffffffffffffda RBX: 00007fc56b1a5fa0 RCX: 00007fc56af8d169
[  253.402913][T10957] RDX: 0000000000000050 RSI: 0000400000000140 RDI: 0000000000000000
[  253.402924][T10957] RBP: 00007fc56bebb090 R08: 0000000000000000 R09: 0000000000000000
[  253.402934][T10957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  253.402943][T10957] R13: 0000000000000001 R14: 00007fc56b1a5fa0 R15: 00007ffcfa6968f8
[  253.402970][T10957]  </TASK>
[  253.952285][T10961] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1526'.
[  254.466540][ T7397] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.523163][T10976] xt_hashlimit: max too large, truncated to 1048576
[  254.736115][T10947] Set syz1 is full, maxelem 65536 reached
[  255.399528][ T7397] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.477588][ T7397] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.632236][ T7397] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.934695][ T7397] bridge_slave_1: left allmulticast mode
[  255.963980][ T7397] bridge_slave_1: left promiscuous mode
[  255.969777][ T7397] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.978811][T11010] nftables ruleset with unbound chain
[  256.055871][ T7397] bridge_slave_0: left allmulticast mode
[  256.063755][ T7397] bridge_slave_0: left promiscuous mode
[  256.064484][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  256.069486][ T7397] bridge0: port 1(bridge_slave_0) entered disabled state
[  256.087364][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  256.098604][ T5849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  256.108499][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  256.118062][ T5849] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  256.131285][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  256.204905][T11023] netlink: 'syz.1.1540': attribute type 2 has an invalid length.
[  256.395541][T11033] x_tables: duplicate underflow at hook 1
[  256.997399][ T7397] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  257.008398][ T7397] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  257.019446][ T7397] bond0 (unregistering): Released all slaves
[  257.045991][T11020] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.068489][T11025] netlink: 'syz.3.1538': attribute type 21 has an invalid length.
[  257.077873][T11025] netlink: 'syz.3.1538': attribute type 20 has an invalid length.
[  257.128561][T11013] lo speed is unknown, defaulting to 1000
[  257.195388][T11020] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.301466][T11020] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.478439][T11020] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.603535][ T7397] hsr_slave_0: left promiscuous mode
[  257.625935][ T7397] hsr_slave_1: left promiscuous mode
[  257.644476][T11064] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  257.653486][ T7397] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  257.672320][ T7397] batman_adv: batadv0: Removing interface: batadv_slave_0
[  257.681926][ T7397] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  257.689419][ T7397] batman_adv: batadv0: Removing interface: batadv_slave_1
[  257.712907][ T7397] veth1_macvtap: left promiscuous mode
[  257.718495][ T7397] veth0_macvtap: left promiscuous mode
[  257.724514][ T7397] veth1_vlan: left promiscuous mode
[  257.729830][ T7397] veth0_vlan: left promiscuous mode
[  258.128087][ T7397] team0 (unregistering): Port device team_slave_1 removed
[  258.180530][ T7397] team0 (unregistering): Port device team_slave_0 removed
[  258.200295][ T5849] Bluetooth: hci1: command tx timeout
[  258.779838][T11020] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  258.856808][T11020] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  258.879341][T11020] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  258.895787][T11020] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  258.956388][T11013] chnl_net:caif_netlink_parms(): no params data found
[  259.150246][T11098] netlink: 'syz.4.1559': attribute type 2 has an invalid length.
[  259.309862][T11013] bridge0: port 1(bridge_slave_0) entered blocking state
[  259.342327][T11013] bridge0: port 1(bridge_slave_0) entered disabled state
[  259.359835][T11013] bridge_slave_0: entered allmulticast mode
[  259.371025][T11013] bridge_slave_0: entered promiscuous mode
[  259.419332][T11122] 8021q: adding VLAN 0 to HW filter on device bond3
[  259.427155][T11122] bridge0: port 1(bond3) entered blocking state
[  259.433784][T11122] bridge0: port 1(bond3) entered disabled state
[  259.440508][T11122] bond3: entered allmulticast mode
[  259.447380][T11122] bond3: entered promiscuous mode
[  259.454549][T11013] bridge0: port 2(bridge_slave_1) entered blocking state
[  259.462153][T11013] bridge0: port 2(bridge_slave_1) entered disabled state
[  259.469398][T11013] bridge_slave_1: entered allmulticast mode
[  259.476797][T11013] bridge_slave_1: entered promiscuous mode
[  259.532408][T11013] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  259.556185][T11013] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  259.638400][T11135] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1569'.
[  259.644032][T11013] team0: Port device team_slave_0 added
[  259.659499][T11013] team0: Port device team_slave_1 added
[  259.670171][T11135] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1569'.
[  259.694008][ T5956] IPVS: starting estimator thread 0...
[  259.782337][T11142] IPVS: using max 21 ests per chain, 50400 per kthread
[  259.796222][T11013] batman_adv: batadv0: Adding interface: batadv_slave_0
[  259.804244][T11013] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.831943][T11013] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  259.845051][T11013] batman_adv: batadv0: Adding interface: batadv_slave_1
[  259.852231][T11013] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.883317][T11013] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  259.906468][T11149] syzkaller1: entered promiscuous mode
[  259.912953][T11149] syzkaller1: entered allmulticast mode
[  259.974681][T11013] hsr_slave_0: entered promiscuous mode
[  259.981375][T11013] hsr_slave_1: entered promiscuous mode
[  260.067867][T11153] FAULT_INJECTION: forcing a failure.
[  260.067867][T11153] name failslab, interval 1, probability 0, space 0, times 0
[  260.082581][T11153] CPU: 1 UID: 0 PID: 11153 Comm: syz.3.1575 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  260.082605][T11153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  260.082616][T11153] Call Trace:
[  260.082621][T11153]  <TASK>
[  260.082629][T11153]  dump_stack_lvl+0x241/0x360
[  260.082663][T11153]  ? __pfx_dump_stack_lvl+0x10/0x10
[  260.082681][T11153]  ? __pfx__printk+0x10/0x10
[  260.082701][T11153]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  260.082725][T11153]  ? __pfx___might_resched+0x10/0x10
[  260.082752][T11153]  should_fail_ex+0x40a/0x550
[  260.082780][T11153]  should_failslab+0xac/0x100
[  260.082803][T11153]  __kmalloc_node_noprof+0xe1/0x4d0
[  260.082822][T11153]  ? __kvmalloc_node_noprof+0x72/0x190
[  260.082852][T11153]  __kvmalloc_node_noprof+0x72/0x190
[  260.082876][T11153]  alloc_netdev_mqs+0xce7/0x1210
[  260.082903][T11153]  ieee802154_if_add+0x11a/0x1160
[  260.082933][T11153]  ? __pfx_ieee802154_if_add+0x10/0x10
[  260.082949][T11153]  ? skb_put+0x114/0x1f0
[  260.082964][T11153]  ? __pfx___mutex_lock+0x10/0x10
[  260.082994][T11153]  ? genlmsg_put+0x145/0x2e0
[  260.083018][T11153]  ieee802154_add_iface_deprecated+0x44/0x70
[  260.083041][T11153]  ieee802154_add_iface+0x431/0x7d0
[  260.083070][T11153]  ? __pfx_ieee802154_add_iface+0x10/0x10
[  260.083092][T11153]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  260.083119][T11153]  genl_rcv_msg+0xb1f/0xec0
[  260.083146][T11153]  ? __pfx_genl_rcv_msg+0x10/0x10
[  260.083195][T11153]  ? __pfx_lock_acquire+0x10/0x10
[  260.083217][T11153]  ? __pfx_ieee802154_add_iface+0x10/0x10
[  260.083239][T11153]  ? __pfx___might_resched+0x10/0x10
[  260.083271][T11153]  netlink_rcv_skb+0x206/0x480
[  260.083293][T11153]  ? __pfx_genl_rcv_msg+0x10/0x10
[  260.083312][T11153]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  260.083367][T11153]  genl_rcv+0x28/0x40
[  260.083381][T11153]  netlink_unicast+0x7f6/0x990
[  260.083414][T11153]  ? __pfx_netlink_unicast+0x10/0x10
[  260.083432][T11153]  ? __virt_addr_valid+0x45f/0x530
[  260.083449][T11153]  ? __phys_addr_symbol+0x2f/0x70
[  260.083464][T11153]  ? __check_object_size+0x47a/0x730
[  260.083490][T11153]  netlink_sendmsg+0x8de/0xcb0
[  260.083525][T11153]  ? __pfx_netlink_sendmsg+0x10/0x10
[  260.083551][T11153]  ? aa_sock_msg_perm+0x91/0x160
[  260.083581][T11153]  ? __pfx_netlink_sendmsg+0x10/0x10
[  260.083600][T11153]  __sock_sendmsg+0x221/0x270
[  260.083625][T11153]  ____sys_sendmsg+0x53a/0x860
[  260.083657][T11153]  ? __pfx_____sys_sendmsg+0x10/0x10
[  260.083673][T11153]  ? __fget_files+0x2a/0x410
[  260.083698][T11153]  ? __fget_files+0x2a/0x410
[  260.083729][T11153]  __sys_sendmsg+0x269/0x350
[  260.083753][T11153]  ? __pfx___sys_sendmsg+0x10/0x10
[  260.083785][T11153]  ? do_sys_openat2+0x17a/0x1d0
[  260.083835][T11153]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  260.083858][T11153]  ? do_syscall_64+0x100/0x230
[  260.083881][T11153]  ? do_syscall_64+0xb6/0x230
[  260.083902][T11153]  do_syscall_64+0xf3/0x230
[  260.083920][T11153]  ? clear_bhb_loop+0x35/0x90
[  260.083944][T11153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.083964][T11153] RIP: 0033:0x7f76e2b8d169
[  260.083980][T11153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.083994][T11153] RSP: 002b:00007f76e3943038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  260.084012][T11153] RAX: ffffffffffffffda RBX: 00007f76e2da5fa0 RCX: 00007f76e2b8d169
[  260.084024][T11153] RDX: 16ba183637aa1df2 RSI: 00004000000087c0 RDI: 0000000000000004
[  260.084036][T11153] RBP: 00007f76e3943090 R08: 0000000000000000 R09: 0000000000000000
[  260.084046][T11153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  260.084055][T11153] R13: 0000000000000000 R14: 00007f76e2da5fa0 R15: 00007ffeb257b648
[  260.084086][T11153]  </TASK>
[  260.487390][ T5839] Bluetooth: hci1: command tx timeout
[  260.689404][T11168] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1580'.
[  260.773095][T11176] FAULT_INJECTION: forcing a failure.
[  260.773095][T11176] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  260.788697][T11176] CPU: 1 UID: 0 PID: 11176 Comm: syz.4.1582 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  260.788723][T11176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  260.788734][T11176] Call Trace:
[  260.788740][T11176]  <TASK>
[  260.788747][T11176]  dump_stack_lvl+0x241/0x360
[  260.788774][T11176]  ? __pfx_dump_stack_lvl+0x10/0x10
[  260.788792][T11176]  ? __pfx__printk+0x10/0x10
[  260.788814][T11176]  ? snprintf+0xda/0x120
[  260.788838][T11176]  should_fail_ex+0x40a/0x550
[  260.788866][T11176]  _copy_to_user+0x31/0xb0
[  260.788889][T11176]  simple_read_from_buffer+0xca/0x150
[  260.788913][T11176]  proc_fail_nth_read+0x1e9/0x250
[  260.788937][T11176]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  260.788961][T11176]  ? rw_verify_area+0x243/0x630
[  260.788977][T11176]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  260.788999][T11176]  vfs_read+0x1f8/0xb40
[  260.789016][T11176]  ? do_sock_setsockopt+0x3e2/0x720
[  260.789035][T11176]  ? do_sock_setsockopt+0x3e2/0x720
[  260.789052][T11176]  ? __pfx_vfs_read+0x10/0x10
[  260.789071][T11176]  ? __pfx_rds_setsockopt+0x10/0x10
[  260.789092][T11176]  ? do_sock_setsockopt+0x3e2/0x720
[  260.789114][T11176]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  260.789137][T11176]  ksys_read+0x18f/0x2b0
[  260.789156][T11176]  ? __pfx_ksys_read+0x10/0x10
[  260.789171][T11176]  ? do_syscall_64+0x100/0x230
[  260.789191][T11176]  ? do_syscall_64+0xb6/0x230
[  260.789209][T11176]  do_syscall_64+0xf3/0x230
[  260.789225][T11176]  ? clear_bhb_loop+0x35/0x90
[  260.789248][T11176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.789267][T11176] RIP: 0033:0x7f5a6198bb7c
[  260.789282][T11176] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  260.789296][T11176] RSP: 002b:00007f5a62700030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  260.789314][T11176] RAX: ffffffffffffffda RBX: 00007f5a61ba5fa0 RCX: 00007f5a6198bb7c
[  260.789326][T11176] RDX: 000000000000000f RSI: 00007f5a627000a0 RDI: 0000000000000004
[  260.789337][T11176] RBP: 00007f5a62700090 R08: 0000000000000000 R09: 0000000000000000
[  260.789347][T11176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  260.789357][T11176] R13: 0000000000000000 R14: 00007f5a61ba5fa0 R15: 00007ffc3a8c67f8
[  260.789382][T11176]  </TASK>
[  261.163000][T11186] geneve0: entered allmulticast mode
[  261.244966][T11193] IPVS: length: 78 != 8
[  261.324904][T11196] netlink: 'syz.1.1587': attribute type 20 has an invalid length.
[  261.401195][T11201] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1589'.
[  261.925387][T11221] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.1596'.
[  261.943241][T11221] netlink: zone id is out of range
[  261.958407][T11221] netlink: zone id is out of range
[  261.963795][T11221] netlink: zone id is out of range
[  261.969013][T11221] netlink: get zone limit has 8 unknown bytes
[  262.520337][ T5839] Bluetooth: hci1: command 0x040f tx timeout
[  263.397183][T11013] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  263.412625][T11013] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  263.460435][T11013] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  263.504305][T11013] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  263.563638][T11229] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1607'.
[  263.591281][T11228] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1599'.
[  263.594738][T11229] netlink: 'syz.2.1607': attribute type 1 has an invalid length.
[  263.629626][T11229] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1607'.
[  263.659546][T11013] 8021q: adding VLAN 0 to HW filter on device bond0
[  263.695534][T11013] 8021q: adding VLAN 0 to HW filter on device team0
[  263.717522][ T7397] bridge0: port 1(bridge_slave_0) entered blocking state
[  263.724716][ T7397] bridge0: port 1(bridge_slave_0) entered forwarding state
[  263.745960][T11236] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  263.772426][T11229] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  263.794726][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  263.801933][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  264.105474][T11013] 8021q: adding VLAN 0 to HW filter on device batadv0
[  264.138757][T11250] syzkaller1: entered promiscuous mode
[  264.147607][T11250] syzkaller1: entered allmulticast mode
[  264.219886][T11013] veth0_vlan: entered promiscuous mode
[  264.239023][T11013] veth1_vlan: entered promiscuous mode
[  264.285100][T11250] bond0: left allmulticast mode
[  264.333097][T11250] team_slave_1: left promiscuous mode
[  264.338526][T11250] team_slave_1: left allmulticast mode
[  264.411819][T11250] veth1_vlan: left allmulticast mode
[  264.434541][T11261] netlink: 'syz.4.1606': attribute type 2 has an invalid length.
[  264.450164][T11250] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  264.458821][T11250] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  264.468220][T11250] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  264.490133][T11250] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  264.553237][T11250] mac80211_hwsim hwsim5 wlan1: left allmulticast mode
[  264.566072][T11250] macsec1: left promiscuous mode
[  264.576812][T11250] macsec1: left allmulticast mode
[  264.587836][T11250] hsr0: left allmulticast mode
[  264.600557][ T5849] Bluetooth: hci1: command 0x040f tx timeout
[  264.608947][T11250] hsr_slave_0: left allmulticast mode
[  264.625883][T11250] hsr_slave_1: left allmulticast mode
[  264.641318][T11250] macvlan4: left promiscuous mode
[  264.647605][T11250] macvlan4: left allmulticast mode
[  264.656351][T11250] vlan2: left allmulticast mode
[  264.663457][T11250] macvlan1: left allmulticast mode
[  264.668774][T11250] macvlan1: left promiscuous mode
[  264.674987][T11250] macsec3: left promiscuous mode
[  264.682679][T11250] macsec3: left allmulticast mode
[  264.693995][T11250] gtp0: left promiscuous mode
[  264.698762][T11250] gtp0: left allmulticast mode
[  264.706928][T11250] macvtap1: left promiscuous mode
[  264.712247][T11250] macvtap1: left allmulticast mode
[  264.717873][    T9] lo speed is unknown, defaulting to 1000
[  264.768154][T11013] veth0_macvtap: entered promiscuous mode
[  264.786769][T11013] veth1_macvtap: entered promiscuous mode
[  264.826867][T11013] batman_adv: batadv0: Interface activated: batadv_slave_0
[  264.852450][T11013] batman_adv: batadv0: Interface activated: batadv_slave_1
[  264.870598][T11278] netlink: 'syz.4.1610': attribute type 9 has an invalid length.
[  264.894441][T11013] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  264.910941][T11013] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  264.915949][T11281] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1611'.
[  264.925409][T11013] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  264.946580][T11013] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  265.080644][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  265.088513][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  265.117728][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  265.126859][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  265.177343][T11288] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1613'.
[  265.386691][T11299] netlink: 'syz.2.1617': attribute type 2 has an invalid length.
[  265.470405][T11303] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1619'.
[  265.841785][T11333] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1628'.
[  265.871835][T11329] openvswitch: netlink: Missing valid actions attribute.
[  265.879093][T11329] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  265.938866][T11337] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  266.011685][T11340] netlink: 'syz.4.1632': attribute type 1 has an invalid length.
[  266.050833][T11340] 8021q: adding VLAN 0 to HW filter on device bond4
[  266.071411][T11340] bond4: (slave gretap1): making interface the new active one
[  266.082118][T11340] bond4: (slave gretap1): Enslaving as an active interface with an up link
[  266.191804][T11353] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1636'.
[  266.660802][T11381] FAULT_INJECTION: forcing a failure.
[  266.660802][T11381] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  266.701466][T11381] CPU: 1 UID: 0 PID: 11381 Comm: syz.3.1646 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  266.701493][T11381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  266.701503][T11381] Call Trace:
[  266.701509][T11381]  <TASK>
[  266.701517][T11381]  dump_stack_lvl+0x241/0x360
[  266.701543][T11381]  ? __pfx_dump_stack_lvl+0x10/0x10
[  266.701561][T11381]  ? __pfx__printk+0x10/0x10
[  266.701580][T11381]  ? __pfx_lock_release+0x10/0x10
[  266.701610][T11381]  should_fail_ex+0x40a/0x550
[  266.701637][T11381]  _copy_from_user+0x2d/0xb0
[  266.701658][T11381]  bpf_test_init+0xfc/0x160
[  266.701683][T11381]  bpf_prog_test_run_xdp+0x48e/0x11e0
[  266.701709][T11381]  ? __pfx_lock_release+0x10/0x10
[  266.701740][T11381]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  266.701762][T11381]  ? __fget_files+0x2a/0x410
[  266.701787][T11381]  ? __fget_files+0x2a/0x410
[  266.701811][T11381]  ? fput+0x21b/0x290
[  266.701829][T11381]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  266.701852][T11381]  bpf_prog_test_run+0x2e4/0x360
[  266.701877][T11381]  __sys_bpf+0x487/0x820
[  266.701900][T11381]  ? __pfx___sys_bpf+0x10/0x10
[  266.701933][T11381]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  266.701958][T11381]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  266.701982][T11381]  ? do_syscall_64+0x100/0x230
[  266.702005][T11381]  __x64_sys_bpf+0x7c/0x90
[  266.702032][T11381]  do_syscall_64+0xf3/0x230
[  266.702051][T11381]  ? clear_bhb_loop+0x35/0x90
[  266.702075][T11381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.702095][T11381] RIP: 0033:0x7f76e2b8d169
[  266.702111][T11381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.702125][T11381] RSP: 002b:00007f76e3943038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  266.702144][T11381] RAX: ffffffffffffffda RBX: 00007f76e2da5fa0 RCX: 00007f76e2b8d169
[  266.702157][T11381] RDX: 0000000000000050 RSI: 0000400000000600 RDI: 000000000000000a
[  266.702167][T11381] RBP: 00007f76e3943090 R08: 0000000000000000 R09: 0000000000000000
[  266.702178][T11381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.702188][T11381] R13: 0000000000000000 R14: 00007f76e2da5fa0 R15: 00007ffeb257b648
[  266.702215][T11381]  </TASK>
[  266.706373][ T7399] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.539181][ T7399] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.736010][ T7399] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.787890][ T7399] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.882057][ T7399] bridge_slave_1: left allmulticast mode
[  267.887744][ T7399] bridge_slave_1: left promiscuous mode
[  267.894010][ T7399] bridge0: port 2(bridge_slave_1) entered disabled state
[  267.903146][ T7399] bridge_slave_0: left allmulticast mode
[  267.908800][ T7399] bridge_slave_0: left promiscuous mode
[  267.914861][ T7399] bridge0: port 1(bridge_slave_0) entered disabled state
[  268.443793][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  268.453792][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  268.455523][T11405] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1656'.
[  268.470989][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  268.500276][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  268.519482][ T5839] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  268.538954][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  268.671428][ T7399] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  268.686007][ T7399] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  268.698510][ T7399] bond0 (unregistering): Released all slaves
[  268.757687][T11406] lo speed is unknown, defaulting to 1000
[  269.197218][ T7399] hsr_slave_0: left promiscuous mode
[  269.213711][T11420] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1660'.
[  269.223581][T11420] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1660'.
[  269.243139][ T7399] hsr_slave_1: left promiscuous mode
[  269.258138][T11420] netlink: 92 bytes leftover after parsing attributes in process `syz.1.1660'.
[  269.278082][ T7399] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  269.299076][T11420] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1660'.
[  269.319410][ T7399] batman_adv: batadv0: Removing interface: batadv_slave_0
[  269.341453][ T7399] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  269.362630][T11424] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  269.369638][ T7399] batman_adv: batadv0: Removing interface: batadv_slave_1
[  269.434194][ T7399] veth1_macvtap: left promiscuous mode
[  269.447649][ T7399] veth0_macvtap: left promiscuous mode
[  269.457567][T11411] infiniband syz1: set down
[  269.466815][ T7399] veth1_vlan: left promiscuous mode
[  269.467800][T11411] infiniband syz1: added team_slave_0
[  269.483260][ T7399] veth0_vlan: left promiscuous mode
[  269.528731][T11411] RDS/IB: syz1: added
[  269.534573][T11411] smc: adding ib device syz1 with port count 1
[  269.544184][T11411] smc:    ib device syz1 port 1 has pnetid 
[  269.554611][T11428] xt_hashlimit: invalid rate
[  269.956676][T11431] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  270.311553][ T7399] team0 (unregistering): Port device team_slave_1 removed
[  270.377230][ T7399] team0 (unregistering): Port device team_slave_0 removed
[  270.600128][ T5849] Bluetooth: hci1: command tx timeout
[  271.055373][T11406] chnl_net:caif_netlink_parms(): no params data found
[  271.292497][T11406] bridge0: port 1(bridge_slave_0) entered blocking state
[  271.299904][T11406] bridge0: port 1(bridge_slave_0) entered disabled state
[  271.310122][T11406] bridge_slave_0: entered allmulticast mode
[  271.319570][T11406] bridge_slave_0: entered promiscuous mode
[  271.335332][T11406] bridge0: port 2(bridge_slave_1) entered blocking state
[  271.353869][T11406] bridge0: port 2(bridge_slave_1) entered disabled state
[  271.370177][T11406] bridge_slave_1: entered allmulticast mode
[  271.381828][T11406] bridge_slave_1: entered promiscuous mode
[  271.584306][T11406] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  271.600647][T11449] tun0: tun_chr_ioctl cmd 1074025675
[  271.605992][T11449] tun0: persist enabled
[  271.614986][T11406] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  271.645435][T11444] tun0: tun_chr_ioctl cmd 1074025675
[  271.660510][T11444] tun0: persist disabled
[  271.734132][T11406] team0: Port device team_slave_0 added
[  271.755319][T11406] team0: Port device team_slave_1 added
[  271.862595][T11406] batman_adv: batadv0: Adding interface: batadv_slave_0
[  271.873424][T11406] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  271.934253][T11406] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  271.959223][T11406] batman_adv: batadv0: Adding interface: batadv_slave_1
[  271.973167][T11406] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  272.018229][T11406] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  272.065739][T11455] x_tables: ip_tables: osf match: only valid for protocol 6
[  272.075126][T11455] netlink: 'syz.1.1667': attribute type 21 has an invalid length.
[  272.083340][T11455] netlink: 144 bytes leftover after parsing attributes in process `syz.1.1667'.
[  272.182829][T11406] hsr_slave_0: entered promiscuous mode
[  272.197505][T11406] hsr_slave_1: entered promiscuous mode
[  272.209232][T11459] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1669'.
[  272.240912][T11459] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1669'.
[  272.595955][T11469] netlink: 'syz.4.1673': attribute type 10 has an invalid length.
[  272.606615][T11469] tipc: Resetting bearer <eth:bond0>
[  272.683242][ T5849] Bluetooth: hci1: command tx timeout
[  272.866416][T11406] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  272.881008][T11479] syzkaller1: entered promiscuous mode
[  272.887424][T11479] syzkaller1: entered allmulticast mode
[  272.968537][T11406] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  272.993821][T11406] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  273.036557][T11479] geneve0: left allmulticast mode
[  273.061357][T11479] macvtap1: left promiscuous mode
[  273.073463][T11479] macvtap1: left allmulticast mode
[  273.107433][T11406] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  273.204388][T11487] syzkaller0: entered promiscuous mode
[  273.211020][T11487] syzkaller0: entered allmulticast mode
[  274.767000][ T5849] Bluetooth: hci1: command tx timeout
[  275.601498][T11448] Set syz1 is full, maxelem 65536 reached
[  275.783633][T11466] Set syz1 is full, maxelem 65536 reached
[  275.855754][T11501] FAULT_INJECTION: forcing a failure.
[  275.855754][T11501] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  275.870774][T11501] CPU: 1 UID: 0 PID: 11501 Comm: syz.1.1682 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  275.870798][T11501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  275.870807][T11501] Call Trace:
[  275.870812][T11501]  <TASK>
[  275.870819][T11501]  dump_stack_lvl+0x241/0x360
[  275.870843][T11501]  ? __pfx_dump_stack_lvl+0x10/0x10
[  275.870858][T11501]  ? __pfx__printk+0x10/0x10
[  275.870873][T11501]  ? __pfx_lock_release+0x10/0x10
[  275.870893][T11501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  275.870915][T11501]  should_fail_ex+0x40a/0x550
[  275.870938][T11501]  _copy_from_user+0x2d/0xb0
[  275.870956][T11501]  copy_msghdr_from_user+0xae/0x680
[  275.870974][T11501]  ? exc_page_fault+0x590/0x8b0
[  275.870993][T11501]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  275.871023][T11501]  __sys_sendmmsg+0x32b/0x720
[  275.871046][T11501]  ? __pfx___sys_sendmmsg+0x10/0x10
[  275.871071][T11501]  ? __pfx_lock_release+0x10/0x10
[  275.871088][T11501]  ? kstrtouint_from_user+0x128/0x190
[  275.871142][T11501]  ? ksys_write+0x22a/0x2b0
[  275.871157][T11501]  ? __pfx_lock_release+0x10/0x10
[  275.871181][T11501]  ? sb_end_write+0xe9/0x1c0
[  275.871199][T11501]  ? vfs_write+0x7fa/0xd10
[  275.871215][T11501]  ? __mutex_unlock_slowpath+0x227/0x800
[  275.871254][T11501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  275.871274][T11501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  275.871294][T11501]  ? do_syscall_64+0x100/0x230
[  275.871313][T11501]  __x64_sys_sendmmsg+0xa0/0xb0
[  275.871330][T11501]  do_syscall_64+0xf3/0x230
[  275.871346][T11501]  ? clear_bhb_loop+0x35/0x90
[  275.871367][T11501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.871385][T11501] RIP: 0033:0x7fc56af8d169
[  275.871400][T11501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.871412][T11501] RSP: 002b:00007fc56bebb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  275.871428][T11501] RAX: ffffffffffffffda RBX: 00007fc56b1a5fa0 RCX: 00007fc56af8d169
[  275.871439][T11501] RDX: 04924924924925c6 RSI: 0000400000000680 RDI: 0000000000000004
[  275.871449][T11501] RBP: 00007fc56bebb090 R08: 0000000000000000 R09: 0000000000000000
[  275.871458][T11501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  275.871466][T11501] R13: 0000000000000000 R14: 00007fc56b1a5fa0 R15: 00007ffcfa6968f8
[  275.871489][T11501]  </TASK>
[  276.332592][T11506] netlink: 'syz.1.1684': attribute type 13 has an invalid length.
[  276.478941][T11506] macvtap0: entered promiscuous mode
[  276.490140][T11506] macvtap0: refused to change device tx_queue_len
[  276.510224][T11406] 8021q: adding VLAN 0 to HW filter on device bond0
[  276.545248][T11406] 8021q: adding VLAN 0 to HW filter on device team0
[  276.585893][ T7397] bridge0: port 1(bridge_slave_0) entered blocking state
[  276.593064][ T7397] bridge0: port 1(bridge_slave_0) entered forwarding state
[  276.656432][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  276.663620][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  276.840098][ T5849] Bluetooth: hci1: command tx timeout
[  276.957728][T11525] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1690'.
[  276.976039][T11526] netlink: 'syz.1.1692': attribute type 2 has an invalid length.
[  277.213339][T11406] 8021q: adding VLAN 0 to HW filter on device batadv0
[  277.277711][T11406] veth0_vlan: entered promiscuous mode
[  277.310918][T11406] veth1_vlan: entered promiscuous mode
[  277.364027][T11406] veth0_macvtap: entered promiscuous mode
[  277.380472][T11541] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1697'.
[  277.420472][T11543] netlink: 'syz.1.1699': attribute type 2 has an invalid length.
[  277.429750][T11406] veth1_macvtap: entered promiscuous mode
[  277.468448][T11406] batman_adv: batadv0: Interface activated: batadv_slave_0
[  277.503841][T11406] batman_adv: batadv0: Interface activated: batadv_slave_1
[  277.536379][T11406] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  277.549730][T11406] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  277.571530][T11406] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  277.590111][T11406] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  277.743506][T11547] netlink: 148 bytes leftover after parsing attributes in process `syz.2.1701'.
[  277.773198][T11559] netlink: 'syz.4.1705': attribute type 2 has an invalid length.
[  277.784240][T11547] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check.
[  277.893499][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  277.908837][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  277.930597][ T7397] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  277.938490][ T7397] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  278.301799][T11590] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1716'.
[  278.629143][T11611] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1727'.
[  278.636230][ T7397] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  278.695329][T11608] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1717'.
[  278.705833][T11611] xt_CT: You must specify a L4 protocol and not use inversions on it
[  278.869643][ T7397] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.177133][ T7397] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.370229][ T7397] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.646426][ T7397] bridge_slave_1: left allmulticast mode
[  279.652502][ T7397] bridge_slave_1: left promiscuous mode
[  279.659125][ T7397] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.668773][ T7397] bridge_slave_0: left allmulticast mode
[  279.674739][ T7397] bridge_slave_0: left promiscuous mode
[  279.680545][ T7397] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.358495][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  280.370222][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  280.378782][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  280.387611][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  280.396818][ T5839] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  280.404486][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  280.430454][ T7397] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  280.456514][ T7397] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  280.477284][ T7397] bond0 (unregistering): Released all slaves
[  280.523638][T11648] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1728'.
[  280.587974][T11639] lo speed is unknown, defaulting to 1000
[  280.964282][T11661] netlink: 'syz.4.1733': attribute type 4 has an invalid length.
[  281.337493][T11675] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  281.352361][T11675] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  281.495017][ T7397] hsr_slave_0: left promiscuous mode
[  281.515958][ T7397] hsr_slave_1: left promiscuous mode
[  281.526001][ T7397] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  281.534679][ T7397] batman_adv: batadv0: Removing interface: batadv_slave_0
[  281.550483][ T7397] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  281.558341][ T7397] batman_adv: batadv0: Removing interface: batadv_slave_1
[  281.606274][ T7397] veth1_macvtap: left promiscuous mode
[  281.614486][ T7397] veth0_macvtap: left promiscuous mode
[  281.620373][ T7397] veth1_vlan: left promiscuous mode
[  281.625874][ T7397] veth0_vlan: left promiscuous mode
[  281.745137][T11688] FAULT_INJECTION: forcing a failure.
[  281.745137][T11688] name failslab, interval 1, probability 0, space 0, times 0
[  281.758595][T11688] CPU: 1 UID: 0 PID: 11688 Comm: syz.3.1742 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  281.758619][T11688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  281.758628][T11688] Call Trace:
[  281.758635][T11688]  <TASK>
[  281.758642][T11688]  dump_stack_lvl+0x241/0x360
[  281.758668][T11688]  ? __pfx_dump_stack_lvl+0x10/0x10
[  281.758687][T11688]  ? __pfx__printk+0x10/0x10
[  281.758718][T11688]  should_fail_ex+0x40a/0x550
[  281.758746][T11688]  should_failslab+0xac/0x100
[  281.758768][T11688]  __kmalloc_cache_noprof+0x70/0x390
[  281.758797][T11688]  ? sctp_add_bind_addr+0x89/0x3a0
[  281.758821][T11688]  sctp_add_bind_addr+0x89/0x3a0
[  281.758844][T11688]  sctp_copy_local_addr_list+0x311/0x500
[  281.758866][T11688]  ? sctp_copy_local_addr_list+0xab/0x500
[  281.758886][T11688]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  281.758908][T11688]  ? sctp_v6_is_any+0x60/0x70
[  281.758929][T11688]  ? sctp_copy_one_addr+0x94/0x360
[  281.758952][T11688]  sctp_bind_addr_copy+0xad/0x3b0
[  281.758971][T11688]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  281.758999][T11688]  sctp_connect_new_asoc+0x2f3/0x6c0
[  281.759024][T11688]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  281.759043][T11688]  ? sctp_sendmsg+0xf1a/0x35d0
[  281.759070][T11688]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  281.759090][T11688]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  281.759114][T11688]  sctp_sendmsg+0x1f64/0x35d0
[  281.759154][T11688]  ? __pfx_sctp_sendmsg+0x10/0x10
[  281.759178][T11688]  ? aa_sk_perm+0x96d/0xab0
[  281.759217][T11688]  ? inet_sendmsg+0x330/0x390
[  281.759240][T11688]  __sock_sendmsg+0x1a6/0x270
[  281.759264][T11688]  ____sys_sendmsg+0x53a/0x860
[  281.759291][T11688]  ? __pfx_____sys_sendmsg+0x10/0x10
[  281.759306][T11688]  ? __fget_files+0x2a/0x410
[  281.759331][T11688]  ? __fget_files+0x2a/0x410
[  281.759359][T11688]  __sys_sendmmsg+0x36a/0x720
[  281.759388][T11688]  ? __pfx___sys_sendmmsg+0x10/0x10
[  281.759419][T11688]  ? __pfx_lock_release+0x10/0x10
[  281.759439][T11688]  ? kstrtouint_from_user+0x128/0x190
[  281.759501][T11688]  ? ksys_write+0x22a/0x2b0
[  281.759518][T11688]  ? __pfx_lock_release+0x10/0x10
[  281.759545][T11688]  ? sb_end_write+0xe9/0x1c0
[  281.759566][T11688]  ? vfs_write+0x7fa/0xd10
[  281.759586][T11688]  ? __mutex_unlock_slowpath+0x227/0x800
[  281.759636][T11688]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  281.759661][T11688]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  281.759685][T11688]  ? do_syscall_64+0x100/0x230
[  281.759708][T11688]  __x64_sys_sendmmsg+0xa0/0xb0
[  281.759728][T11688]  do_syscall_64+0xf3/0x230
[  281.759747][T11688]  ? clear_bhb_loop+0x35/0x90
[  281.759771][T11688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.759796][T11688] RIP: 0033:0x7f76e2b8d169
[  281.759812][T11688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.759825][T11688] RSP: 002b:00007f76e3943038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  281.759844][T11688] RAX: ffffffffffffffda RBX: 00007f76e2da5fa0 RCX: 00007f76e2b8d169
[  281.759856][T11688] RDX: 0000000000000002 RSI: 0000400000000780 RDI: 0000000000000003
[  281.759866][T11688] RBP: 00007f76e3943090 R08: 0000000000000000 R09: 0000000000000000
[  281.759876][T11688] R10: 000000003404c8d4 R11: 0000000000000246 R12: 0000000000000002
[  281.759886][T11688] R13: 0000000000000000 R14: 00007f76e2da5fa0 R15: 00007ffeb257b648
[  281.759915][T11688]  </TASK>
[  282.299104][T11697] netlink: 'syz.2.1746': attribute type 2 has an invalid length.
[  282.349304][T11696] netlink: 11 bytes leftover after parsing attributes in process `syz.3.1745'.
[  282.447100][ T5849] Bluetooth: hci1: command tx timeout
[  282.734088][ T7397] team0 (unregistering): Port device team_slave_1 removed
[  282.778726][ T7397] team0 (unregistering): Port device team_slave_0 removed
[  283.247049][T11707] bridge0: left promiscuous mode
[  283.255715][T11707] 8021q: adding VLAN 0 to HW filter on device bond0
[  283.263560][T11707] tipc: Resetting bearer <eth:bond0>
[  283.269408][T11707] tipc: Resetting bearer <eth:bond0>
[  283.286025][T11707] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  283.441858][T11639] chnl_net:caif_netlink_parms(): no params data found
[  283.627906][T11639] bridge0: port 1(bridge_slave_0) entered blocking state
[  283.637227][T11639] bridge0: port 1(bridge_slave_0) entered disabled state
[  283.646102][T11639] bridge_slave_0: entered allmulticast mode
[  283.653723][T11639] bridge_slave_0: entered promiscuous mode
[  283.662376][T11639] bridge0: port 2(bridge_slave_1) entered blocking state
[  283.669578][T11639] bridge0: port 2(bridge_slave_1) entered disabled state
[  283.702864][T11639] bridge_slave_1: entered allmulticast mode
[  283.720852][T11639] bridge_slave_1: entered promiscuous mode
[  283.764431][T11739] FAULT_INJECTION: forcing a failure.
[  283.764431][T11739] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  283.778123][T11739] CPU: 0 UID: 0 PID: 11739 Comm: syz.3.1758 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  283.778146][T11739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  283.778156][T11739] Call Trace:
[  283.778162][T11739]  <TASK>
[  283.778170][T11739]  dump_stack_lvl+0x241/0x360
[  283.778196][T11739]  ? __pfx_dump_stack_lvl+0x10/0x10
[  283.778214][T11739]  ? __pfx__printk+0x10/0x10
[  283.778233][T11739]  ? __pfx_lock_release+0x10/0x10
[  283.778263][T11739]  should_fail_ex+0x40a/0x550
[  283.778291][T11739]  _copy_from_iter+0x1df/0x1c40
[  283.778307][T11739]  ? __virt_addr_valid+0x183/0x530
[  283.778325][T11739]  ? __pfx_lock_release+0x10/0x10
[  283.778352][T11739]  ? __alloc_skb+0x28f/0x440
[  283.778368][T11739]  ? __pfx__copy_from_iter+0x10/0x10
[  283.778387][T11739]  ? __virt_addr_valid+0x183/0x530
[  283.778402][T11739]  ? __virt_addr_valid+0x183/0x530
[  283.778416][T11739]  ? __virt_addr_valid+0x45f/0x530
[  283.778431][T11739]  ? __phys_addr_symbol+0x2f/0x70
[  283.778446][T11739]  ? __check_object_size+0x47a/0x730
[  283.778471][T11739]  netlink_sendmsg+0x742/0xcb0
[  283.778504][T11739]  ? __pfx_netlink_sendmsg+0x10/0x10
[  283.778529][T11739]  ? aa_sock_msg_perm+0x91/0x160
[  283.778563][T11739]  ? __pfx_netlink_sendmsg+0x10/0x10
[  283.778582][T11739]  __sock_sendmsg+0x221/0x270
[  283.778606][T11739]  ____sys_sendmsg+0x53a/0x860
[  283.778631][T11739]  ? __pfx_____sys_sendmsg+0x10/0x10
[  283.778647][T11739]  ? __fget_files+0x2a/0x410
[  283.778672][T11739]  ? __fget_files+0x2a/0x410
[  283.778702][T11739]  __sys_sendmsg+0x269/0x350
[  283.778724][T11739]  ? __pfx___sys_sendmsg+0x10/0x10
[  283.778754][T11739]  ? do_sys_openat2+0x17a/0x1d0
[  283.778800][T11739]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  283.778824][T11739]  ? do_syscall_64+0x100/0x230
[  283.778847][T11739]  ? do_syscall_64+0xb6/0x230
[  283.778867][T11739]  do_syscall_64+0xf3/0x230
[  283.778886][T11739]  ? clear_bhb_loop+0x35/0x90
[  283.778910][T11739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.778930][T11739] RIP: 0033:0x7f76e2b8d169
[  283.778945][T11739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  283.778959][T11739] RSP: 002b:00007f76e3943038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  283.778978][T11739] RAX: ffffffffffffffda RBX: 00007f76e2da5fa0 RCX: 00007f76e2b8d169
[  283.778990][T11739] RDX: 0000000000044084 RSI: 0000400000004bc0 RDI: 0000000000000003
[  283.779001][T11739] RBP: 00007f76e3943090 R08: 0000000000000000 R09: 0000000000000000
[  283.779011][T11739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  283.779021][T11739] R13: 0000000000000000 R14: 00007f76e2da5fa0 R15: 00007ffeb257b648
[  283.779049][T11739]  </TASK>
[  284.167535][T11639] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  284.177050][T11749] netlink: 176 bytes leftover after parsing attributes in process `syz.2.1761'.
[  284.200789][T11639] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  284.311607][T11759] netlink: 'syz.3.1764': attribute type 1 has an invalid length.
[  284.384841][T11639] team0: Port device team_slave_0 added
[  284.481895][T11750] lo speed is unknown, defaulting to 1000
[  284.494335][T11639] team0: Port device team_slave_1 added
[  284.522368][ T5849] Bluetooth: hci1: command tx timeout
[  284.581617][T11639] batman_adv: batadv0: Adding interface: batadv_slave_0
[  284.588612][T11639] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  284.650724][T11639] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  284.696122][T11639] batman_adv: batadv0: Adding interface: batadv_slave_1
[  284.704152][T11639] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  284.750020][T11639] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  284.892757][  T974] IPVS: starting estimator thread 0...
[  284.899064][T11790] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1772'.
[  284.920993][T11786] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  284.926866][T11790] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1772'.
[  285.000144][T11791] IPVS: using max 20 ests per chain, 48000 per kthread
[  285.015850][T11790] gtp0: entered promiscuous mode
[  285.052786][T11790] gtp0: entered allmulticast mode
[  285.089518][T11639] hsr_slave_0: entered promiscuous mode
[  285.096429][T11639] hsr_slave_1: entered promiscuous mode
[  285.215048][T11809] netlink: 'syz.2.1776': attribute type 10 has an invalid length.
[  285.336851][T11816] FAULT_INJECTION: forcing a failure.
[  285.336851][T11816] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  285.366509][T11816] CPU: 0 UID: 0 PID: 11816 Comm: syz.3.1779 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  285.366534][T11816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  285.366543][T11816] Call Trace:
[  285.366550][T11816]  <TASK>
[  285.366557][T11816]  dump_stack_lvl+0x241/0x360
[  285.366584][T11816]  ? __pfx_dump_stack_lvl+0x10/0x10
[  285.366601][T11816]  ? __pfx__printk+0x10/0x10
[  285.366619][T11816]  ? __pfx_lock_release+0x10/0x10
[  285.366648][T11816]  should_fail_ex+0x40a/0x550
[  285.366674][T11816]  _copy_from_user+0x2d/0xb0
[  285.366695][T11816]  bpf_prog_test_run_xdp+0xe07/0x11e0
[  285.366731][T11816]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  285.366753][T11816]  ? __fget_files+0x2a/0x410
[  285.366777][T11816]  ? __fget_files+0x2a/0x410
[  285.366798][T11816]  ? fput+0x21b/0x290
[  285.366816][T11816]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  285.366835][T11816]  bpf_prog_test_run+0x2e4/0x360
[  285.366856][T11816]  __sys_bpf+0x487/0x820
[  285.366876][T11816]  ? __pfx___sys_bpf+0x10/0x10
[  285.366907][T11816]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  285.366932][T11816]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  285.366954][T11816]  ? do_syscall_64+0x100/0x230
[  285.366978][T11816]  __x64_sys_bpf+0x7c/0x90
[  285.366998][T11816]  do_syscall_64+0xf3/0x230
[  285.367016][T11816]  ? clear_bhb_loop+0x35/0x90
[  285.367039][T11816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.367060][T11816] RIP: 0033:0x7f76e2b8d169
[  285.367075][T11816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  285.367090][T11816] RSP: 002b:00007f76e3943038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  285.367109][T11816] RAX: ffffffffffffffda RBX: 00007f76e2da5fa0 RCX: 00007f76e2b8d169
[  285.367121][T11816] RDX: 000000000000002b RSI: 0000400000000580 RDI: 000000000000000a
[  285.367132][T11816] RBP: 00007f76e3943090 R08: 0000000000000000 R09: 0000000000000000
[  285.367143][T11816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  285.367153][T11816] R13: 0000000000000000 R14: 00007f76e2da5fa0 R15: 00007ffeb257b648
[  285.367180][T11816]  </TASK>
[  285.819549][T11823] xt_CT: You must specify a L4 protocol and not use inversions on it
[  285.977297][T11831] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1794'.
[  285.986627][T11831] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1794'.
[  286.003707][T11831] bond0: entered promiscuous mode
[  286.026295][T11831] bridge0: entered promiscuous mode
[  286.041920][T11831] hsr1: Slave A (bond0) is not up; please bring it up to get a fully working HSR network
[  286.064687][T11831] hsr1: Slave B (bridge0) is not up; please bring it up to get a fully working HSR network
[  286.325902][T11639] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  286.382972][T11639] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  286.419592][T11639] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  286.453799][T11639] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  286.600494][ T5839] Bluetooth: hci1: command tx timeout
[  286.644242][T11639] 8021q: adding VLAN 0 to HW filter on device bond0
[  286.673374][T11860] x_tables: duplicate underflow at hook 1
[  286.694498][T11639] 8021q: adding VLAN 0 to HW filter on device team0
[  286.734139][ T3362] bridge0: port 1(bridge_slave_0) entered blocking state
[  286.741317][ T3362] bridge0: port 1(bridge_slave_0) entered forwarding state
[  286.797591][ T3362] bridge0: port 2(bridge_slave_1) entered blocking state
[  286.804778][ T3362] bridge0: port 2(bridge_slave_1) entered forwarding state
[  286.822795][T11868] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1800'.
[  287.015368][T11880] netlink: zone id is out of range
[  287.030317][T11880] netlink: zone id is out of range
[  287.035484][T11880] netlink: zone id is out of range
[  287.060114][T11880] netlink: zone id is out of range
[  287.072658][T11880] netlink: zone id is out of range
[  287.077817][T11880] netlink: zone id is out of range
[  287.093857][T11880] netlink: zone id is out of range
[  287.102468][T11880] netlink: zone id is out of range
[  287.253947][T11639] 8021q: adding VLAN 0 to HW filter on device batadv0
[  287.361957][T11900] netlink: 'syz.3.1810': attribute type 1 has an invalid length.
[  287.367472][T11639] veth0_vlan: entered promiscuous mode
[  287.419439][T11639] veth1_vlan: entered promiscuous mode
[  287.459130][T11905] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1810'.
[  287.484017][T11639] veth0_macvtap: entered promiscuous mode
[  287.514327][T11639] veth1_macvtap: entered promiscuous mode
[  287.548213][T11639] batman_adv: batadv0: Interface activated: batadv_slave_0
[  287.568449][T11639] batman_adv: batadv0: Interface activated: batadv_slave_1
[  287.598453][T11639] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  287.607692][T11639] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  287.621219][T11639] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  287.640466][T11911] netlink: 120 bytes leftover after parsing attributes in process `syz.3.1815'.
[  287.650529][T11639] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  287.740503][T11916] netlink: 'syz.4.1816': attribute type 5 has an invalid length.
[  287.761748][T11912] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000197: 0000 [#1] PREEMPT SMP KASAN PTI
[  287.774375][T11912] KASAN: null-ptr-deref in range [0x0000000000000cb8-0x0000000000000cbf]
[  287.782803][T11912] CPU: 1 UID: 0 PID: 11912 Comm: syz.1.1814 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  287.793575][T11912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  287.803654][T11912] RIP: 0010:bpf_map_offload_map_alloc+0x19a/0x910
[  287.810088][T11912] Code: 48 89 44 24 30 42 80 3c 20 00 74 08 48 89 df e8 ac e6 3b 00 48 89 5c 24 18 4c 89 2b 49 8d 9d bd 0c 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 df 06 00 00 0f b6 1b 31 ff 89 de e8 dd
[  287.829712][T11912] RSP: 0018:ffffc90003e9fbc0 EFLAGS: 00010203
[  287.835780][T11912] RAX: 0000000000000197 RBX: 0000000000000cbd RCX: 0000000000080000
[  287.843754][T11912] RDX: ffffc9000e5f9000 RSI: 0000000000000079 RDI: 000000000000007a
[  287.851732][T11912] RBP: ffffc90003e9fcd8 R08: ffffffff9455284f R09: 1ffffffff28aa509
[  287.859708][T11912] R10: dffffc0000000000 R11: fffffbfff28aa50a R12: dffffc0000000000
[  287.867678][T11912] R13: 0000000000000000 R14: ffff88807e4f1e40 R15: 1ffff920007d3f80
[  287.875643][T11912] FS:  00007fc56be9a6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  287.884563][T11912] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.891135][T11912] CR2: 00007fd01a77b440 CR3: 000000007d702000 CR4: 00000000003526f0
[  287.899098][T11912] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  287.907055][T11912] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  287.915017][T11912] Call Trace:
[  287.918285][T11912]  <TASK>
[  287.921212][T11912]  ? __die_body+0x5f/0xb0
[  287.925548][T11912]  ? die_addr+0xb0/0xe0
[  287.929782][T11912]  ? exc_general_protection+0x3dd/0x5d0
[  287.935332][T11912]  ? asm_exc_general_protection+0x26/0x30
[  287.941049][T11912]  ? bpf_map_offload_map_alloc+0x19a/0x910
[  287.946845][T11912]  ? __pfx_bpf_map_offload_map_alloc+0x10/0x10
[  287.952989][T11912]  ? __pfx___might_resched+0x10/0x10
[  287.958265][T11912]  ? __might_fault+0xaa/0x120
[  287.962929][T11912]  ? __pfx_lock_release+0x10/0x10
[  287.967968][T11912]  ? array_map_alloc_check+0x287/0x350
[  287.973423][T11912]  map_create+0x946/0x11c0
[  287.977837][T11912]  __sys_bpf+0x6d3/0x820
[  287.982071][T11912]  ? __pfx___sys_bpf+0x10/0x10
[  287.986827][T11912]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  287.992799][T11912]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  287.999119][T11912]  ? do_syscall_64+0x100/0x230
[  288.003872][T11912]  __x64_sys_bpf+0x7c/0x90
[  288.008281][T11912]  do_syscall_64+0xf3/0x230
[  288.012773][T11912]  ? clear_bhb_loop+0x35/0x90
[  288.017441][T11912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.023324][T11912] RIP: 0033:0x7fc56af8d169
[  288.027727][T11912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.047323][T11912] RSP: 002b:00007fc56be9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  288.055727][T11912] RAX: ffffffffffffffda RBX: 00007fc56b1a6080 RCX: 00007fc56af8d169
[  288.063685][T11912] RDX: 0000000000000048 RSI: 0000400000000440 RDI: 0000000000000000
[  288.071653][T11912] RBP: 00007fc56b00e2a0 R08: 0000000000000000 R09: 0000000000000000
[  288.079615][T11912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  288.087576][T11912] R13: 0000000000000000 R14: 00007fc56b1a6080 R15: 00007ffcfa6968f8
[  288.095544][T11912]  </TASK>
[  288.098550][T11912] Modules linked in:
[  288.103051][T11912] ---[ end trace 0000000000000000 ]---
[  288.116035][T11912] RIP: 0010:bpf_map_offload_map_alloc+0x19a/0x910
[  288.124654][T11912] Code: 48 89 44 24 30 42 80 3c 20 00 74 08 48 89 df e8 ac e6 3b 00 48 89 5c 24 18 4c 89 2b 49 8d 9d bd 0c 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 df 06 00 00 0f b6 1b 31 ff 89 de e8 dd
[  288.144841][T11912] RSP: 0018:ffffc90003e9fbc0 EFLAGS: 00010203
[  288.151055][T11912] RAX: 0000000000000197 RBX: 0000000000000cbd RCX: 0000000000080000
[  288.159174][T11912] RDX: ffffc9000e5f9000 RSI: 0000000000000079 RDI: 000000000000007a
[  288.168662][T11912] RBP: ffffc90003e9fcd8 R08: ffffffff9455284f R09: 1ffffffff28aa509
[  288.174950][T11909] netlink: 'syz.1.1814': attribute type 2 has an invalid length.
[  288.176929][T11912] R10: dffffc0000000000 R11: fffffbfff28aa50a R12: dffffc0000000000
[  288.192958][T11912] R13: 0000000000000000 R14: ffff88807e4f1e40 R15: 1ffff920007d3f80
[  288.203548][T11912] FS:  00007fc56be9a6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  288.214162][T11912] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  288.220925][T11912] CR2: 00007f76e3921f98 CR3: 000000007d702000 CR4: 00000000003526f0
[  288.229062][T11912] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  288.238000][T11912] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  288.246420][T11912] Kernel panic - not syncing: Fatal exception
[  288.252759][T11912] Kernel Offset: disabled
[  288.257070][T11912] Rebooting in 86400 seconds..