last executing test programs:

28.283616787s ago: executing program 4 (id=1104):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r1)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000005740000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000030000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0xfffffffd, 0x0, {0x0, 0x0, 0x0, r4, {0xb, 0xfff2}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r5, &(0x7f0000002100)=[{{0x0, 0x0, &(0x7f0000001a80)=[{&(0x7f0000000640)=""/216, 0xd8}, {&(0x7f0000000a40)=""/4104, 0x1008}, {&(0x7f0000000940)=""/223, 0xdf}], 0x3}, 0x3}], 0x1, 0x0, 0x0)

25.804017932s ago: executing program 4 (id=1119):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x8e, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd600a843500580600fe8000000005000000000000000000bbfe3c00000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='`'], 0x0)

25.670394353s ago: executing program 4 (id=1121):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000000000000000100000007"], 0x48)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r1, r2, 0x2, 0x2, 0x0, @void, @value}, 0x10)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r3, r4, 0x2, 0x2, 0x0, @void, @value}, 0x10)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r5, 0x2, 0x0, 0x0, &(0x7f0000000340)=[0x0, 0x0], 0x2, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x5, &(0x7f0000000000)=@framed={{}, [@map_fd={0x18, 0xa, 0x1, 0x0, r0}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

25.025470956s ago: executing program 4 (id=1124):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000ffffffef0000000000000a20000000000a03000000000000000000070000040900010073797a300000000048000000090a010400000000000000000784000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000210c0009800800014000000005600000000c0a010300000000000000000700fffe0900020073797a31000000000900010073797a300000000034000380300000802c00018025000100"], 0xf0}}, 0x0)

24.800583944s ago: executing program 4 (id=1126):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00')
socket$nl_route(0x10, 0x3, 0x0)
socket(0x840000000002, 0x3, 0xff)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x210, 0x320, 0xa, 0x148, 0x368, 0x60, 0x400, 0x2a8, 0x2a8, 0x400, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x70, 0xe0, 0x0, {0x200003ae, 0x7f00}}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x270)
socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r2, &(0x7f0000000440)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000004c0)=[{&(0x7f0000000100)="90", 0x1}], 0x1}}], 0x1, 0x20008050)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1000f)

13.310573967s ago: executing program 4 (id=1126):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00')
socket$nl_route(0x10, 0x3, 0x0)
socket(0x840000000002, 0x3, 0xff)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x210, 0x320, 0xa, 0x148, 0x368, 0x60, 0x400, 0x2a8, 0x2a8, 0x400, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x70, 0xe0, 0x0, {0x200003ae, 0x7f00}}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x270)
socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r2, &(0x7f0000000440)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000004c0)=[{&(0x7f0000000100)="90", 0x1}], 0x1}}], 0x1, 0x20008050)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1000f)

5.425601603s ago: executing program 0 (id=1228):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000002d40), r1)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000002dc0)={'wpan0\x00', <r3=>0x0})
sendmsg$IEEE802154_LLSEC_SETPARAMS(r1, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f00000002c0)={0x2c, r2, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x2}, @IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0xc}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x44010}, 0x804)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x64, 0x6, 0x780, 0x1d0, 0x5c8, 0x0, 0x5c8, 0x0, 0x6b0, 0x6b0, 0x6b0, 0x6b0, 0x6b0, 0x6, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @private0, [], [0xffffff00, 0x0, 0x0, 0x1f9814788dbf7ab2], 'veth1\x00', 'syz_tun\x00'}, 0x11e, 0xa8, 0x1d0, 0x1f000000, {0x0, 0x7}}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'unconfined\x00'}}}, {{@ipv6={@loopback, @dev, [], [], 'batadv_slave_0\x00', 'ip6gretap0\x00', {}, {}, 0x2b}, 0x0, 0x1e0, 0x208, 0x7400, {}, [@common=@rt={{0x138}, {0x0, [0x0, 0x5], 0x0, 0x0, 0x0, [@dev, @private2={0xfc, 0x2, '\x00', 0x1}, @remote, @private2, @private1, @dev, @dev={0xfe, 0x80, '\x00', 0x34}, @mcast2, @local, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private0, @loopback, @mcast1, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}}]}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@ipv6header={{0x28}, {0x81, 0x10, 0x1}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00', 0x0, {0x68}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@inet=@socket3={{0x28}, 0x2}]}, @inet=@TOS={0x28}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@mcast2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x7e0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000003e80)={0x0, 0x0, &(0x7f0000003e40)={&(0x7f0000002cc0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELOBJ={0x34, 0x14, 0xa, 0x5, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x7c}, 0x1, 0x0, 0x0, 0x4004000}, 0x0)
sendmsg$rds(r4, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)}}], 0x90}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
unshare(0x62040200)
socket$rxrpc(0x21, 0x2, 0xa)
socket$kcm(0x2, 0x1000000000000002, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f00000001c0)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket(0x10, 0x2, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYRES32], 0x238}, 0x1, 0x0, 0x0, 0x4001}, 0x4040000)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x5, 0x0, 0x0, 0xe, 0x0, 0x70bd29, 0x0, [@sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x4e22, 0xe0, @empty, 0xfffff000}}, @sadb_sa={0x2, 0x1, 0x4, 0x0, 0x0, 0x2, 0x3}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4e21, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7}}]}, 0x70}}, 0x0)
close(r6)

3.086353504s ago: executing program 0 (id=1243):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x4402}, 0x20000804)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000008000000000018000380140003801000018004000300080001"], 0x44}}, 0x20008000)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0700000000000000050005000000180003800800040000000000080002000900000004000100180001801400020073797a5f74756e"], 0x44}}, 0x0) (fail_nth: 10)

2.255104161s ago: executing program 0 (id=1245):
r0 = socket$tipc(0x1e, 0x5, 0x0)
syz_emit_ethernet(0x6e, &(0x7f0000000340)={@multicast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "02adf7", 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "fd9063", 0x0, 0x3a, 0x0, @loopback, @loopback={0xfffffffffffffffe}, [], "1e520b4c951ee12e"}}}}}}}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_mreq(r1, 0x29, 0x15, &(0x7f0000004fc0)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x14)
getsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000240), &(0x7f00000002c0)=0xe)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000002c00)={0x1, 0x8}, 0x8)
close(r2)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r4, &(0x7f0000000380)={&(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x41}, 0x2}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0xcc15, @dev, 0x7}, 0x1c)
r6 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r6, &(0x7f0000000280)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff000000010000000458000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$tipc(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)="9883bea23244ef6bc7d826743240314108f18856b113b662b615d1d6b59eb99da13033c97d", 0x25}], 0x1, &(0x7f0000000180)="064d94aa125b11dd7dc4708d410da7048b2540188194e0af2bd93190c97fc7129abbbe7b78d766fea80b8518772107d2940600a9c4ad9720fb49ae17c91b1672df5b8456960e7b8e22ca1905d9f985a9ba17c443b5c9f403bc9f6de401d3c0b3aa282dfd077c87b0a29f0c3d", 0x6c, 0x840}, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x1c0, 0x65, 0x2, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0xb}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}, @TCA_CHAIN={0x8, 0xb, 0x6}, @TCA_CHAIN={0x8, 0xb, 0x20000000}, @TCA_RATE={0x6, 0x5, {0x6, 0x2}}, @filter_kind_options=@f_route={{0xa}, {0x16c, 0x2, [@TCA_ROUTE4_TO={0x8, 0x2, 0xca}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0x158, 0x6, [@m_mirred={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x2a, 0x6, "b9e6cb743efb5818279b291a7d56a99d728d0d3c5750442cdd89714a7135052ff6aa167b6d47"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_mirred={0xd0, 0x9, 0x0, 0x0, {{0xb}, {0xa4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x7, 0x5, 0x10000000, 0xae, 0x2}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x3, 0x10000000, 0x8, 0x8}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1336e5ff, 0x9, 0x6, 0x0, 0x1}, 0x7}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x4, 0x20000000, 0x8}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x100, 0x6, 0x7, 0x1f31, 0xfffffff5}, 0x4}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2}}}}, @m_bpf={0x2c, 0x4, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}}]}, 0x1c0}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r8 = socket(0x10, 0x803, 0x0)
sendto(r8, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r8, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x44b, 0x0, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x41002, 0x1}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_GROUP_FWD_MASK={0x6}, @IFLA_BR_VLAN_STATS_PER_PORT={0x5}]}}}]}, 0x44}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x9, &(0x7f0000000680)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000500000085000000250000006d0000000000000018000000ffff00000000000000000000950000000000000095000000fdffffff"], &(0x7f0000000000)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff, @void, @value}, 0x94)

2.094861634s ago: executing program 3 (id=1247):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000011c0)=@newtaction={0xe98, 0x30, 0x25, 0x0, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x30, 0x5, 0x0, 0x1, [{0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x4}]}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{}, {}, {}, {}, {0x0, 0x0, 0xffe4}, {}, {}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x7}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x2}, {}, {}, {}, {0xfffffffc}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0x7}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0x0, 0x800000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x2, 0xfffffffd}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0xfffffffd}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}}, 0x0)

1.844477718s ago: executing program 3 (id=1251):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1d, 0x2, 0x6)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x6, &(0x7f0000000f00)=0x5, 0x4)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r4, 0x0, 0x48b, 0x0, 0x0)
sendmsg$IPSET_CMD_SAVE(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="30001700080601020000000000000000070000010900020073797a31000000000500010007000000050001000700fad127dc1b1b9b13ca92fe64ac79a20000"], 0x30}, 0x1, 0x0, 0x0, 0x2404a411}, 0x4000)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0)=ANY=[@ANYRES8=r2, @ANYRES8=r3, @ANYRES32, @ANYRES16=r1], 0x20)
r5 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3e0, 0x1b0, 0xc8, 0x8, 0x1b0, 0x5803, 0x310, 0x2e8, 0x2e8, 0x310, 0x2e8, 0x3, 0x0, {[{{@ipv6={@loopback, @mcast1, [], [], 'erspan0\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1b0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67442c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1}}, @common=@inet=@socket1={{0x28}, 0xa490f54eab606508}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@remote, @mcast2, [], [], 'macvtap0\x00', 'syzkaller1\x00'}, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x440)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x9, &(0x7f0000000680)=@framed={{0x18, 0x8, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x5}, [@func={0x85, 0x0, 0x1, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0xba}, @generic={0xa7}, @initr0, @exit]}, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r7, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x34, r8, 0x1, 0x70bd25, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES={0x8, 0x7, 0x4}]}, 0x34}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x8004)
sendmsg$NFT_BATCH(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a4c000000060a0b040000000000000000000100736f636b65740000040002800900010073797a30000000000900020073797a32000000000500074057000000140000001100010000000000000000000000000a"], 0x74}}, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r2, 0x0, 0x484, &(0x7f0000000500)=""/135, &(0x7f0000000140)=0x87)
r10 = accept(r2, &(0x7f00000005c0)=@sco={0x1f, @fixed}, &(0x7f0000000400)=0x80)
sendmsg$nl_generic(r10, &(0x7f0000000ac0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000f40)={0x4ac, 0x40, 0x100, 0x70bd29, 0x25dfdbfe, {0x1b}, [@generic="742a3bd87a460abfbe03117b98a38e0d9d110319cafbea66f83737cb136b33dfa447cb36d1aff6cc697097bf8ae328", @generic="9b15e162d2bd9fbf9b4d877bf1a9953c6fe08f0c", @generic="d0994a533166758caaf9541317390e3d", @typed={0x8, 0xf3, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x31}}, @generic="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", @nested={0x18f, 0x3, 0x0, 0x1, [@nested={0x4, 0xa6}, @generic="faae0a7d87e657bf547a825089755df7f950bcd1cb48c1baf017ae6f744b4c9222d36153c7c432a6e12800d3795fd070f16656f56949d74cf07fafea4f944a7772ada4feae1abeb9ed53b7b07fd8c948a0e16738c865fca94831401b4ba496a753fe2882da90b953a3c66da002d2713ab4b949c3329c295f70c4c0bc1603673c8eff4aeac48a245543f2ec18294f17f38a1d821808c09accd6ac7296916691754298fc2437f9caeca11978555c03ee87da26e13e0e25671cd7faf4921d44f709f40361643e30a90306dbadc8b707ec12d1e7f3e47926", @generic="9ebace24ee8b74a96571f5783a667a7efd6d248fa550fc9bcbf3bde8a5ff694e9e4e6331771e1e27e008e0f1339f87ee14f04828af805ebc447637d6017feeab4511c7f1e5f9ac8347dc2e1b520e9ec9a74cf8314545974453916f4e99ec0ec2fcc3139e0c5d351d6b0938d10b2d9aac999a2c1e748e53b8284f836571ee33e26efa8a2b22c9fa3e13fe5296b6d8a8777ae84f113666a14c97", @nested={0x4, 0xe8}, @typed={0xc, 0xe9, 0x0, 0x0, @u64=0xc}, @typed={0x8, 0x9e, 0x0, 0x0, @u32=0x33e6}]}, @typed={0x8, 0x9, 0x0, 0x0, @u32=0x8}, @generic="73e80c811cf1c1718a45d3baa2d27a7e9377d32a06c61c30c3df61e2f5671f1eec837c75fd3393c08575100c05877443856f3f3fc5e0b09cc76daf703f81d7f38ffa54f71981de484f42cc470d32d6536ac32ab63fbd79a0144039195845f95513c75eeb84e30dbeb6fd649ab3b3b27263f831e81f50118c8f7f3fffa34a427e3cd413a3f280c1df40eb3f1531", @generic="41ad9592b243f3f44775cc64b1e1a98521b61dff684696412d4cd543d86890b3df3d5dc8f392d1a726b328e7e419b04518dc3a0a34f861d79e77ee6faed83ac8e2a43465727e9532bc241871c069eb971cd8244b8802c2a6d669bc3043ad65be84008819c24bfae4c99b5770c8bf25ea5d9b5ec88874aeeb5608b3d5ca445893a2af4055d1c1b29f2802be64d25b031d2f834faa9f86a6a78078f34da78c8a232bf005e18d8aa85b64cf3be04584e50a34b5badbd12613007e06762acac6c1216143ef59b0a53eb7b19b4c18888db52217afc483b6841f9b756ac04a"]}, 0x4ac}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x3, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000040000008500000006000000850000002b00000095"], &(0x7f0000001680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(r3, &(0x7f0000000b00)={[{0x2b, 'rlimit'}, {0x2b, 'net_cls'}, {0x2d, 'blkio'}, {0x2b, 'hugetlb'}]}, 0x21)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r11=>0x0})
bind$can_j1939(r1, &(0x7f0000000100)={0x1d, r11, 0x2, {0x3}}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r12, {0x0, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000}, 0x98)

1.816278095s ago: executing program 2 (id=1252):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x16, 0x14, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000077cb0000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000840), r3)
sendmsg$NBD_CMD_RECONFIGURE(r3, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000880)={0x2c, r4, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0xa, 0xa, ')\'\'--+'}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SOCKETS={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x90}, 0x400c0)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000002080)={&(0x7f0000001e80)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002040)={&(0x7f0000001fc0)={0x64, r4, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x5, 0xa, '\x00'}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1ff}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x6}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x123}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x6}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}]}, 0x64}, 0x1, 0x0, 0x0, 0x24000010}, 0x3aa7d98722f44b79)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001ec0)=[{{&(0x7f0000000000)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000340)=[{&(0x7f0000000100)="0f0eb5e8494eea8ae173fe20419888fc71f059dc48bbd51ffad6f19cbd4e4eb8af79080212a4e86792cc1fc91b77fd8a01c73d9a6f36dc6ab95a4728ac91723b6635584c57ea93c8c9a4c4b9742095a046d21124b68903f6906da39cbfa1b63581e5115617913f76429d5434a1d22a01eb0e5bff9425beea9659118671018c375c39fe4afb902a527feba30931c72f142096af54830b375aee859a39cfd6653ef9b36ca54a511c30cfc0dd48396c786d9e54691db3862731274dbad1f3bd7f744a0ae96adf0fc0f8b6ad80a968fa6ae600336be50b5b762d1c9dc3622c1d7e420a7f28f7df55a6d113380d8308c78a50a7", 0xf1}], 0x1, &(0x7f0000000380)=[@rights={{0x28, 0x1, 0x1, [r1, r1, r1, r0, r1, r0]}}], 0x28, 0x24000004}}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f00000008c0)="65dcdfa12c1fe65cc739e2587759734536a38403977e28689abf5c9a69fbf42d2371e879480318ade87a2ec793e3225d895f275c733dfca564ae55df5928959b953c3334a90172a38475b59be148ead8cb03180d29785ac74c346049b571c7ed361efd1890471d0148454f22b06e452ec427fdae306e33b40c2544ce540b7d52cb2d94a5bdcc4bddc5da2f1022452b0096072cd0f7066580533c26b0312eb7043de4fbbbdf82daea72785413354d11cbce6af688a554548ece7e27fad8bdfcc20523dca4c70ba06aa33742c7856aa4f4994fb0ec891c1f2fcecb391a09f2dd06acde7f56a9245d9c542845a30ac40a06a1cbb0dd8ae111b0ccf5aa27d8062a2810a609d64823fdc35f6b1249aa6339ee853e76c907d7e252e8deccd2eb2d7ab07cb02b0366b8358570dcc934f88f4b52ad5b9951832bce782ac3278873c5641fc752cccc4d824cb28eadfc40693a9c94bbd7d5bc311af2cc80cd318bbbdb1fdb74895267c5d8f263ca5ed949b1473ee6b65295fba3910f5a9bb87c2b8c6ac98c5671b96fe996a48b01640fd7961daf410b3f4d2946049f5c027c633207b2b3ce9c56a9e20578eb77d76bcd662674cb0c38dfb625bccb9036e9079d12fdcba723523f6b83c0028d53d8ca0f514d57a89fcc36ea0bb8e7a14fbe26427a2173f03f2e6926162a83cf8cd4191d554ad8b2bb4fe64bf8c44779c6b908af6dd43112c4d895882f51d4ecfa1aac046b1f8eb4aad178a173bd485768a86bc78877c700fc50b25cf50c11570b49c83372a4fe6688348577b5540ec0db553cbc61a2de6bc3811744676e38190ae173ea67d8a7bab3260eb8a69d8c39a4a3713f7640e99d01719a7801dc1877b9056225a9e42e21567ef98de9e6ed408c2226f84244a57561579fccdeffbb3ef7d4ca7f100fafc852ec7ecd2dade63c0839564369002cb9457e3f74f72ab8a823d2b817447bf18a7fd2b563d25a604037ab37b483d7ed61022a36f7466dd9ccd97b38294e8142fa6c4a4fee9bf1f3b799781d98635ccaaa73cc60dba8d804c46629ee3764c04c7386475a3a1e1c900323c9fbca4e8402dcf0a04aa12b7a9f31ec3f0d1be4bbe6fde02ece1d2e83a663ba7941a6dd281c51b9cdae1d687f5db3faa0eb324cf31bbb9a4c019ee6112b4125d782e23d6582051267b4db20dab1aa15049adfc625ade40c8e31f4cf497fe8e6ff8c9bc26d02d0cb5a2fe500c99a509910b5bbead979d72340e8647fd9be6a5f98d13511d65fdf9d06a9fcf3a21b73b169ec5bf1d290f722bdf1f04f09cd3469bbfc53f3d573ce90a5b84a1baff998cab53696ada49cc1741c53fca5111d8428f10343d2209acdff08251d29aa4dc30a96848066cb15d41754c0329ad87c346891f864b5b94acf50dd04bfd832957fb8fe88f42f810c0cb5b31a8921ad7760c7e38d203e17731b0fddf03d3f970807db8e9662f0c24f0f15cf57705df60ad51bf3dd1f18b063094f1f9a51de3010f93c858993f435d0bb1defb8bad64f20ad7121e26654bfe35ae9047217c969e0b8153ff4d82d15183e54f8b2aca0685478641db408b4f73871bca1176046a4357a029203f7ba5121ada144fca3a2492003f904d73d32b1da7628d69cdd709130cab327cc44d90f3de714227d5f500162f7c8ed254dfed03d53793902585f8823d716dda6632c9b9027f49f5e5fe7a7e99e3b3cf5acd796429e320f9454d8be88d78a8b17ac270142f14bf8960e0316ebd9e6318fc7c50c40772cb7209e31561774093210097464819cbbceab316cbe6e9eb80f42f2f55c3a528af52711b4da559b327ffad29c30a2f2edc541c297a0d740b312431a39de2351394bc79dde37c3e451541c2ca15baacf549f0e3543d1e7aa72591eedefbedf44887dcb6092da1487d760594726a1326aa1443e9034596d04811109435c2ff208de9f9ade263f9a40b8713998c39af418a08bbf45e4ec07eff44439e120d6a3db7a50616422fffc1ba3e53723314e6c74c2297482ee9cd256a1360909a95c154f4ec8fe9e3a02ac78fb63cdeb73abb44ae2aa2dd1a1df7009d7a27869d02f6b5c8223845f2982f883aef0f7df86516d65de1a74142e9728e86f5cc0288387e1e0f7f5f489b11e899d43d28c809a550462351da870a7fe8b802f058504dee83311427418c6e166563854efa5ef96921eaf6eddf2cd23d25e7e8c36c3ccf236fda1fb12e26a6de563e1d63893aae54fb33ba6fa7e61765b6b2b7549b9d2e5eb2afbad585fe668d950a0a9fa4e4e6efcca95f7a307ec0d0a3adc6a6480975e99bc424792817e273c6048921873fa05ab3e07d83510f8d43114b5349591524926a344383add9d75f4e644757dd72d16f192c1ca330a37b442ac6e3c864b8ce314a8567935413debcf55e896950e371fc19a6a4801759e068e7b1095af6b81e3ab1d71ecf90a7475d75a739cdb9a32baf2dc0da07ec726a84a85f187852e2a9160c8953c7af8e4a55e61dc0f3ba09a38c06ef5027555458b1315528a69208b50d7a87d9b377607f8cad6a25ed568b19f6f0f27b1a0d4006dcb049174499c7d85d83050be0332ca8baca9e909a3e3ebcd3528499a9121e58159bf491265ff58b625c7dff3c698afb88dcf745e86522d376688e6c9588acca4d67709afebed44aaa94e548a1fb5bcc663a56d5b64361dc8008caa088954191eff7d135bd633add929fd78539fd3ee2f9815650a50c132adf3f6f8e34670216f5d9f589d936bc7ecf5351b3f95939d11c9ca83ce96cd712d157e4a9ab7c6759658d3d7fa9fd86b6711ca780ae2e09bdea0cf3382cf482f1cd7c4bdfdab3eef607dc64eb8d6bcbb095ece565d01e3e926a56629d6bfa95f78fdd58bbfb0fce78177b5021219444af64d10bdbe01138f48378c11b55755943705228b27c90818e669d4ae45d63e39e00acb914b35fffd82654eb2826c2923cef33e0f6b32186061b3941845cacb6672ae151f3f8f1bd2040bf6021c9fe699aeba88fcfc9b3740ae440efe79e48a31156a78ca5be21e6b32fa0ecbf954da83d6c858bd327decd88e25e132a31e312953c6a288bdeaf4c2fe82e0534bee8018fd8c65a372d10149499ac38aafc323a71ed8eea350432cd8fac0fd4853ebe1d9c3b68a2dbe4682a1a74ca535e84f2d2c0bea58c6dd1b36eeb2f7a066f06d9ade17a619a2ae1adab4cdf35603c914219155c01bfcf8db49b4e446c13ccc8f04d2ac9b1f99896739982cd314a2b0224b8c7421544ec000eee8b7d6604b982151630c90b858be33a0191dc34822c120d9384054770e84323d7eef40dd7189df09f92cbd186b10135ba8480857d637b096ba8497887a896417bdbfc38fa454e6640427e0a4189494d4a7e61a5d816b3c2b37715737243373a2300b85e66cd4e29629a125922a6a2fe38c36368c831596d2605b071917c064477785370febd5870aff5e7c0f3c1aded0751bbdccf3b94b47363ec46b586a0b81bad7180f221002f15a0da6beb8fcdb0fd1ae72caac33402f8c83110b154c730249054cb9019a1e6cf62d98956050313454ed2f0afb3d231b7308151e6d4281080a4de25961548a46cf844cb8ff4268fcb912839f5ecf3756f0c8e2b65e2f1d044b61f757e3397e9479a2f36cee06877685408bad5aeb718db875d609c33b9fcf7ebaedf7caf1094ff510041275bac3219efbb68f9547469a1257fa13756df3fc824dae322e95e0100fb85922482b864b983574c6a2be98305b51389e6319a8241ddf722c12d9c1d1623d93e25fed3c8c8999df332b43131b77346cb7de5f6a2d65f284e90ef03eb9a1539a16854ad9c4a92b1a4f54b5a1ed7cad739b4ecb35b1d58112c0e993a0e5f6f1c7c068f4a14b2ffee51788069b3406c58670199a1a4642cbbd3ec4010ec30655dbcf3d92384c906ee77e5d20cb48c0bccf20524b44f333d7ce8356eabd3c18006eb8913f43cb51a5106d0824773165a773f009426f40f77a0fccf24ab1111aa7520f75a4b1bfac97072c3f3266aaa064faba490a3c75287ce1f19ec88550a45e8f79b7dd16539c7111f0c0de139ba5b62c000a50037805e5bcf25c254b1947ad77939ddda78b28556251e250e16d84300ca7e348196e026f95bf5fc30ffc3ceb0a915d96b9c241e12794ed33b2f911b6b5a267912bba7bca7751bd0b4c0c48344cd8c7f1bb12756e495a21bf87f93e38dc14a0e96296836cbbbea33a19a5155d528b30e3a0dd98efde932c25bed8574d29ebf4db97d157b5e452eb6b9dc5d52c58b0db497da77d785841535ad36e1f0e6ff390a1dab0d2c87ed254e42acaa73ccb0c3a311bba0ff0a4c13ca232f47bdc6bc6239dc0fda26ab4337e0b15d23f0b662bece45240ef6944bcff327a3e952bb2685ce9a7fac4f85109c65e9f5dd738f95b0a7a3e91635787dc2ec1e3f959b97dfcbb39e620a17fca72454b25e220f16e2b43724cbd8a89841bc2947b3ce12964d5c2bbe2f2ed1fac458a60e55a0f789cfbad6abe9eaf8d1df0abd050c87212f5cdccfc66387c2ed8f286f782a80915c82a5c2bb2cab5325a0c9804a65f644248c246bbee3d6024a078f001d096b1975a243f2735fbccf7335d7d3c6a74f74dfbb5a5d807bdbc0a1bf16cedf72015eb3088d93067206b37e80f95ff8614fa42e337104576e39901626731921474c1b924f43d696583dcec17d288f5d2a6781ad81ad770e3f03b21b08d55dd8728e5429dd4bbc4e9f0fb88813d3a19401c98c67c80c6072b940cada708bd0ef5819370faf0fb95353869ac77ae2992a66019a7594ca64e6e716831daddc7ecfdfcf9c7720f3cff0438c6b2edd397bc7d8a8a93e2786eb2b344379a55766674a695e33439d97a747b8e8af54ceb78f10b85bf0a32e605e9e0e71b907fbbb83021f526018bacabe35002aa8e1f99d09992285e3516d37b60a3b8b07225b632e41ded0ddbd6e69fed471793c27582c9d16f55c7bd3f3d6d5995386a62b792218d39a76002de584c5f9a499fe39f09241fe608d6cb8d971905eae3ebe388a61ae20bcf49471bab29cb58ec51e35c8326b88b52ad9dcec5de9fffe9f098aabb0da19be704cba608fe784d7be01ab5dcb313b5de760e2d91b0529640a6e0da6da8d7df1648f17758c943aea80d64eefb63917c158f03648b91d5460800e77ecb93545c4d9ce5b3947ec1087e620df31780fae078d9658e95acfdfda7a27ae56bdfad8fbd96f1bece5cc0f2a3ad7c5655a9e0b23bc1959d95c2226f4086dbfe1249174ee3beb9653c61447b433fa26dae7d9c297aafa3fe47e69104f182740164e4f67cb31acd615945c81d2e41348de74aad20ff1771b199a281e035363f0800e3ae2c7ecd63b9eda82cf745c5875263637255abb956d0ab54b297177877d62600a7c8f01e9ff6e9c2cccfa01545f021aac0417011910961661709b810f15b4c85f64e3cea07c20dec139acce124f628f878169335ff804be105360a86fc0c21caaa33cbc9a69607c2187202778eef6f6c2febd9592c28889e402747a96fcb1f8d78063eceb4f7a1f4f75922f418ba06c165fbd56875008b0561b2449f139a48f50723c6bb7639495a95eef92f23b71f851fca2884137185d58754fe50558514639e6146acbc85982af85ad9ecfd8a28a5f078688b18060b8acfb6e3751980349a7a98224222b23b46eac9caa36f48992162810646fc45cf0cf90c55c996abf35cf1430334504b2b0d1d106a2a832b80f1ee34eb88ff49bed7881313d545430a9385687bad45037b8fa4b541a59710a6c093d026263572714966", 0x1000}, {&(0x7f00000003c0)="3bfb2205c8ad4e4ce878a84fae2e9c7b8674", 0x12}, {&(0x7f0000000500)="4c16fa29452f67824b052e99b617b5311f77951457cdab7b4fd5ee26053141b1b30a97573db00cadfb5ee5ff35095178fe352074d75254f62d782b06f2f2d818cbb3dc9c79d641f3e14aba9fd4c7a85c4dffa00f7dfe0353dc925e55f04e5caae699d4e808ea9bf0d594d909915ff664361319fc6b3bc9832f61633e50e8a5e0b4f1491047176d70005bc16bc91d7c023e154d3eac84cd934e18f16931002f7bf37188d0b75f3844926b4488db2746b01f18f805cba18fff9cbad120eb54d40e2c0599d1e60d4d7d5d97452996759840d2f3a5ee3bab0252cc52b543f4c0a6bd00171fac8de90c939638b6a7fcf59d3c46ebf487", 0xf4}, {&(0x7f0000000600)="6795c5b4a02346cf26c8c5c0fd811a2a2fe365dc848657d34a731979b316ed5b5fc7118d81fc1a8a0bddd9cd65bfac804292c74cc44c06d909", 0x39}, {&(0x7f00000018c0)="8d40007cdc4d11a3d520e0ca93e810c729d53e695daf3d6a875277e92755b5bb9eaa66e9dcc0c26eb0c7cc40bfef83fe215b5e043a5d628e6a76baf88f76b0406bf0ca020ef34d23c979fe8ee23e8f3f4284097cf0cbd9d02e5ede61ab1e82a541b13b0fc793f4737c728a8377d7a68a4ecab1e57fd7ee2c8bb226085241aee8c11912f4263dc18ffca7614711d9a32b698aa029e3fdec0f56344ef33655d8c11e691006a8564995d051", 0xaa}], 0x5, 0x0, 0x0, 0x24000894}}, {{0x0, 0x0, &(0x7f0000001d00)=[{&(0x7f0000001a00)="1e438de739579bb245bc5e5c60947f371329fc150b298f373a9a0ee8070478460836fc18c372ed766f729d57d08b8f9ff2868b1ed1e04f513684385f5d6b0c99a930c8061dfe8a67015c604c9ff726a978e234f83fd224", 0x57}, {&(0x7f0000001a80)="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", 0xfa}, {&(0x7f0000000640)="f1fcc6110070e6c74c713da3317a59fd54cffdd6af4a367fbbdf4eb703f5ee2970af476e70573e5288dc3805ea57026f486d1b5c0fd59a", 0x37}, {&(0x7f0000001b80)="7d449a487e98d9c50f0fae6d389d", 0xe}, {&(0x7f0000001bc0)="de88d955fd36b0e7d37e323b0a5e4be11a99c98501cff0b27ffe5b1384dad6537499116750086225a0a0bad7d29e489f2b8288bbaec2f617dde0441fea81040d643424a02144f032158f893ea0864d2acde19a45459e15fb779426e87044144ab0446669154631b7fdb35ec53ff94cde99292b0325475527d29f69e46e99a81a62a51d5305cb983c10e3b296a89fe43cdae1360c1f1f64de66b088b9e1", 0x9d}, {&(0x7f0000001c80)="0686e41be92d75842e5d58dacc712ce14378207f8ec441201539217aaa278d6e7c5ea730887dad5a227195ef1ddb766d53ae5b0a9137eedde6ddb4c27d87f1db677b75e26499e24d9e3ffbe7de440f6857d6cba654a5cca67aba7be2341ef1d6836199d2e59936255caea694e1154193951e5bfe4296", 0x76}], 0x6, 0x0, 0x0, 0x800}}, {{&(0x7f0000001d80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000001e40)=[{&(0x7f0000001e00)="5bebca881741a417adae343c72437e3856", 0x11}], 0x1, &(0x7f0000001e80), 0x0, 0x20000880}}], 0x4, 0x40000)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
readv(r5, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/243, 0xfffffdef}], 0x1)
write$cgroup_subtree(r6, &(0x7f0000000700)=ANY=[], 0xfe33)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x6, &(0x7f0000000680)=ANY=[@ANYBLOB="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"/542], &(0x7f0000000080)='GPL\x00', 0x4, 0x8f, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)

1.796377235s ago: executing program 1 (id=1253):
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r1=>0x0})
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000006c0)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x1000000, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0xffe0}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_AUTORATE={0x8, 0x9, 0x940}, @TCA_CAKE_TARGET={0x8, 0x8, 0xa47a}]}}]}, 0x44}}, 0x8014)
socket$netlink(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000800000008000300", @ANYRES32=r1, @ANYBLOB="ecad5365bcd2a48b3ddc51d77f72990b4a65bc4198d3f383a8a9e6927a002f4cde836edc699ba76ac33bf7f31c4df4f8994ef99949"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00"/20, @ANYRES32=r2, @ANYBLOB="000000000000f61600"/21, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000030000000100"/28], 0x50)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000240)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0x6, [@typedef={0xc, 0x0, 0x0, 0x8, 0x2}, @func_proto={0x0, 0x3, 0x0, 0xd, 0x0, [{0x8, 0x5}, {0x3, 0x3}, {0x3, 0x1}]}, @type_tag={0x5, 0x0, 0x0, 0x12, 0x5}]}, {0x0, [0x5f, 0x0, 0x61, 0x61]}}, &(0x7f0000000300)=""/64, 0x5a, 0x40, 0x1, 0x5, 0x0, @void, @value}, 0x28)
socket(0x28, 0x5, 0x0)
r6 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r6, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
r7 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
connect$llc(r7, &(0x7f0000000400)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = socket$pppl2tp(0x18, 0x1, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2, r8, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r9 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
connect$ax25(r9, &(0x7f0000000040)={{0x3, @bcast}, [@default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null, @bcast, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000ed000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r10}, 0x10)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@remote, 0x0, 0x2}, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)

1.592593471s ago: executing program 2 (id=1254):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001240)={0x8, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000001000000000000000220180018000000", @ANYRES32, @ANYBLOB="0000000000000000b702000014002000b70300000000000085000000d4000000bf0900440000000045090100000003709500000000000000bf91000000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x3, 0xffc, &(0x7f0000001e40)=""/4092, 0x40f00, 0x0, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100, @void, @value}, 0x94)

1.543786767s ago: executing program 3 (id=1255):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x4402}, 0x20000804)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000008000000000018000380140003801000018004000300080001"], 0x44}}, 0x20008000)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0700000000000000050005000000180003800800040000000000080002000900000004000100180001801400020073797a5f74756e"], 0x44}}, 0x0) (fail_nth: 11)

1.518872936s ago: executing program 2 (id=1256):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000380)='cdg\x00', 0x4)
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r1, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpuacct.usage_percpu\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffff8}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

1.400562976s ago: executing program 1 (id=1257):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0xe, &(0x7f0000000880)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0xfffffffd}, 0x8, 0x10, &(0x7f0000000040), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.400258651s ago: executing program 3 (id=1258):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000140)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x17, 0x18, &(0x7f0000000240)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@printk={@x, {}, {0x5}, {0x7, 0x0, 0x9}, {}, {}, {0x15}}, @ldst={0x1, 0x0, 0x4}], {{}, {0x5}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) (async)
writev(r1, &(0x7f0000000380)=[{&(0x7f0000002280)="2e9b3d0007e03dd65193dfb6c575963f86ddf06712e9232f118db0049d90491ceaebfd26ceeef23248000000f858dbb8a19052", 0x33}, {&(0x7f00000001c0)="080060820c3f1b048e5039a8d98f70", 0xf}], 0x2) (async)
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000000)={'veth1_to_batadv\x00', 0x200})

1.375669873s ago: executing program 1 (id=1259):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x8e, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd600a843500580600fe8000000000000300000000000000bbfe3c00000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='`'], 0x0)

1.313504454s ago: executing program 0 (id=1260):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$igmp6(0xa, 0x3, 0x2)
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, 0x0, 0x0)
close(0xffffffffffffffff)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, 0x0)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[], 0x2c}}, 0x0)
r4 = socket(0x2b, 0x80801, 0x1)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x3c1, 0x3, 0x320, 0x140, 0x5c, 0x160, 0x140, 0x3e0, 0x250, 0x228, 0x25a, 0x250, 0x228, 0x4, 0x0, {[{{@ipv6={@remote, @dev, [], [], 'veth0_to_batadv\x00', 'wg1\x00', {}, {0x222cecdb0fb5a62a}, 0x3a}, 0x5002, 0xf8, 0x140, 0x52020000, {0x0, 0x6802000000000000}, [@common=@icmp6={{0x28}, {0x0, "d176"}}, @common=@unspec=@state={{0x28}, {0xfffffffd}}]}, @unspec=@CT0={0x48}}, {{@ipv6={@local, @private2, [], [0xff], 'veth1_to_hsr\x00', 'dummy0\x00', {}, {}, 0x88}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x380)
sendmsg$nl_route(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x48014}, 0x20004000)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r3, 0x0, 0x40884)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000002c0)={0x64, 0x0, 0x1, 0x70bd2c, 0x0, {{}, {@val={0x8}, @val={0xc, 0x99, {0xffffffff, 0xc}}}}, [@NL80211_ATTR_FRAME={0x32, 0x33, @reassoc_req={{{0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1}, {0x6}, @device_b, @device_a, @random="d307e7b66e71", {0x9, 0xc4d}, @value=@ver_80211n={0x0, 0x2, 0x0, 0x0, 0x0, 0x2, 0x1}}, 0x10, 0x9, @device_a, {0x0, 0x6, @default_ap_ssid}, @void, @void}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x0]}]}, 0x64}, 0x1, 0x0, 0x0, 0x6a845ecb4f20be71}, 0x24008080)
recvmmsg(r1, &(0x7f0000008880), 0x45b, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@loopback, 0x53, 0x0, 0x0, 0x5, 0x8b, 0xc7e}, 0x20)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e23, @empty}}, 0x103d, 0x4}, 0x90)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x4f0, 0x340, 0x25, 0x148, 0x0, 0x60, 0x458, 0x2a8, 0x2a8, 0x458, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0x1, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00', {0x7}}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x20c49a, 'syz0\x00', {0xbd}}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x550)

1.224378482s ago: executing program 1 (id=1261):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000a40)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x10000, @private2, 0x3}, 0x1c, &(0x7f0000000080)=[{&(0x7f0000000040)="2a84d792adf5", 0x6}], 0x1}}, {{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000440)="3a365bbc439065af2ce1d763e92664a16d150b3f741a2741bac808b15bbaa80bed34aced8718e3dff61ee9a6271a31def7290196ad2f469d4d75772033de759638d0df42e8f5a8a463cc87f00556c0ae8def46a55b611a02209ea0315b36766c84f9c59a2266155512b45520fcaebdaafceaf7dc884c1d2a12dc5a677d00070b1ad45f3329187a8d601dbb13d81e04a5666f377c67ed12c6ccdbcb4e4c7c38caff5e11bfc81bfca8f216006087519c9290a99902f3020746728ab59e29ef1d57a871db", 0xc3}, {&(0x7f0000000540)="96243322281d478d760307add8fe7635d9f0bce99beadb2579f941948e4cc53b0c579890ea38365ba5abdcf4221cdb49c5bbb4ea12df322aa45644aac0e4f8b311458a1a6cf202f5aebd7f66af69bcedb2ede7609f24c48eb1d61bff8f1eb6ce263766e84319ca918e8825c49086120bfb3d4f358f353096e88ae734c6072b3479c28d41d0542aff04118fc60195b8854aa3194d358adf8652d9c574f3f8955310abb8fca3830b8223d57461d95e4e6d82b7adc5fd94e7e1ccd64d2fb88d7c82ad57fcb665f3de4bd3175998acac1457d3b83169b2db583ca6478fbda3ed306cef5b7b530f24", 0xe6}, {&(0x7f0000000180)="971bc5902e2ab2e1f9d11c081c5b3ce3457882751a8bf6483772b014ad4bfbdf4f1cdb515addd04dd5b3262b0c6b86d34b2fa1c7bf4d1ea49db387e0636ebb4bfb8bcf505da44b3e15b9e5", 0x4b}, {&(0x7f0000000640)="7f659e5860423c05136c6b491d1c331fead06284948f0c39bc89bb99c204db79d7ec316ca78ab8ca83dbd47ce2ca193872b9588447e73a823c3ff84bc6ee6d9da1243b7dbeac03b13d4f8e96f0e47fc3b1c31039ee9551e93a71a149bc0a7a1307c23f47eb8344261d347784f1b01fb04328bfeed1b36713bd95ca73c0aeff3eb48d1009214f6177314c79d5966b24af19bfc4ff4fc665bcc21ffacd73d798d254e10be738da94a2bcfc3685b859b73218eb3437d663fe4f4a6f10f91c", 0xbd}], 0x4, &(0x7f0000000ec0)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x1ff}}, @rthdrdstopts={{0x30, 0x29, 0x37, {0x3b, 0x3, '\x00', [@jumbo={0xc2, 0x4, 0xc195}, @enc_lim={0x4, 0x1, 0x80}, @pad1, @padn={0x1, 0x1, [0x0]}, @pad1, @jumbo={0xc2, 0x4, 0x4}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x3}}, @dstopts_2292={{0xf0, 0x29, 0x4, {0x97, 0x1a, '\x00', [@generic={0x5, 0x69, "925a12f647f263363e0c5adff5ffbb46223c4279d360655ef3d0e0bdddc1e04c68efdbf4de45a600eea37398bd18cca63fb16bfbed1293ac758e94d88836fe25c9434c0030a0db884c77f80379a9d017a9680807bafad28d05fa80fcbcb6ae0c70c2c542a6f7543f31"}, @generic={0xd, 0x62, "1a44be7eef6a3639f4fbb3b6d97890cc3cb2d599a7616c726e9bae65cc9bba98a3a6f8c657f19a3685ac3c9dc80198d66571d2e9ce9219ec5f1584ba43383e84f1b0a82acff9525ff6270d9d9f90ed7e43f231693fad2016f8b5b9aabb24e597ef35"}, @enc_lim={0x4, 0x1, 0x1}]}}}, @rthdr_2292={{0x68, 0x29, 0x39, {0x5c, 0xa, 0x1, 0x59, 0x0, [@mcast1, @dev={0xfe, 0x80, '\x00', 0x31}, @mcast1, @mcast2, @private0]}}}, @hopopts={{0x158, 0x29, 0x36, {0x3a, 0x28, '\x00', [@ra={0x5, 0x2, 0x8001}, @ra={0x5, 0x2, 0x8}, @generic={0x7, 0x2c, "8744cd900aad0642028c5f5525ba422e41a594e308ce4cd33c3b0a95a604f41f9241271f9e7b3a628badf7cb"}, @calipso={0x7, 0x28, {0x0, 0x8, 0x9, 0x8, [0x9, 0x100, 0x5f, 0xb537]}}, @calipso={0x7, 0x20, {0x2, 0x6, 0xd4, 0xfffb, [0x3, 0x15e69974, 0x3d70c0000000]}}, @ra={0x5, 0x2, 0x1ff}, @generic={0x3, 0xb5, "08ba71829c599fbc01048c93e4904c7da8dd948d17402c0cd8cf694618db095a16ad5c552df4b04e64e40735d9f47c6643e0815c92e2b6e82969e7bb9cdd447b8f4d1381cab7df6c8fce4b24cf6b3da45bef84d54eb99da00fce90e911934bbd8d51986c65cbdfcd7c95476f5c7da92a06ef925b5da3990badb57d49f4fd3abcface826f9d60fbd34e47eb8b38a0b98d55d0fbd6bb74984de3589aa89b5b5949fcb0db63a02d9a8cee98031d0cf9bcff76f671b3d6"}, @pad1]}}}, @rthdr={{0x28, 0x29, 0x39, {0x5c, 0x2, 0x0, 0x0, 0x0, [@local]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x10}}, @flowinfo={{0x14, 0x29, 0xb, 0x4}}, @rthdr_2292={{0x88, 0x29, 0x39, {0x4, 0xe, 0x1, 0x0, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private1={0xfc, 0x1, '\x00', 0x1}, @private0, @mcast2, @mcast2]}}}], 0x3f0}}], 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x4, 0xc, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000000000000000000000000008500000018000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x2f000000, 0xe, 0x0, &(0x7f0000000400)="e4e647c9e0b8e9a2f2ab3026da58", 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.156994977s ago: executing program 3 (id=1262):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000300)={r0, 0x2000000, 0x10, 0x0, &(0x7f00000000c0)="3a1d5bd9a05eb82766a03581b25692ed", 0x0, 0xfffffbff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r1, 0x0, 0xfffffffffffffe1a, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r2}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0xffffffffffffffab)
close(r4)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)={0x7c, 0x0, 0x1, 0x0, 0x0, 0x0, {0x3, 0x0, 0x9}, [@CTA_TUPLE_ORIG={0x38, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @broadcast}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'sip-20000\x00'}}, @CTA_SYNPROXY={0x1c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x1fbc}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x8080}, 0x40)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$cgroup_devices(r5, &(0x7f0000000040)=ANY=[], 0x9)
socket$inet(0x2, 0x2, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r7, 0x29, 0x24, &(0x7f0000000000)=0xd, 0x4)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$kcm(0x2, 0xa, 0x2)
write$tun(r6, &(0x7f00000005c0)=ANY=[@ANYBLOB="020086dd0300000000001400000060ec970012302c00fe8000000000000000000000000000aaff0200000000000000000000000000013a"], 0xfdef)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)

622.057537ms ago: executing program 2 (id=1263):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x0, 0x0, &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

512.584529ms ago: executing program 2 (id=1264):
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)={0x30, 0x3e, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0xc, 0x2, 0x0, 0x1, [@nested={0x8, 0x14, 0x0, 0x1, [@nested={0x4, 0x6}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) (async)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
socket$netlink(0x10, 0x3, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000040)=0x2, 0x4)
socket(0x10, 0x803, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x2c, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x400000000000004) (async)
socket$netlink(0x10, 0x3, 0x400000000000004)
socket$xdp(0x2c, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

431.626811ms ago: executing program 3 (id=1265):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1d, 0x2, 0x6)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x6, &(0x7f0000000f00)=0x5, 0x4)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r4, 0x0, 0x48b, 0x0, 0x0)
sendmsg$IPSET_CMD_SAVE(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="30001700080601020000000000000000070000010900020073797a31000000000500010007000000050001000700fad127dc1b1b9b13ca92fe64ac79a20000"], 0x30}, 0x1, 0x0, 0x0, 0x2404a411}, 0x4000)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0)=ANY=[@ANYRES8=r2, @ANYRES8=r3, @ANYRES32, @ANYRES16=r1], 0x20)
r5 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3e0, 0x1b0, 0xc8, 0x8, 0x1b0, 0x5803, 0x310, 0x2e8, 0x2e8, 0x310, 0x2e8, 0x3, 0x0, {[{{@ipv6={@loopback, @mcast1, [], [], 'erspan0\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1b0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67442c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1}}, @common=@inet=@socket1={{0x28}, 0xa490f54eab606508}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@remote, @mcast2, [], [], 'macvtap0\x00', 'syzkaller1\x00'}, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x440)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x9, &(0x7f0000000680)=@framed={{0x18, 0x8, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x5}, [@func={0x85, 0x0, 0x1, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0xba}, @generic={0xa7}, @initr0, @exit]}, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r7, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x34, r8, 0x1, 0x70bd25, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES={0x8, 0x7, 0x4}]}, 0x34}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x8004)
sendmsg$NFT_BATCH(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a4c000000060a0b040000000000000000000100736f636b65740000040002800900010073797a30000000000900020073797a32000000000500074057000000140000001100010000000000000000000000000a"], 0x74}}, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r2, 0x0, 0x484, &(0x7f0000000500)=""/135, &(0x7f0000000140)=0x87)
r10 = accept(r2, &(0x7f00000005c0)=@sco={0x1f, @fixed}, &(0x7f0000000400)=0x80)
sendmsg$nl_generic(r10, &(0x7f0000000ac0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000f40)={0x4ac, 0x40, 0x100, 0x70bd29, 0x25dfdbfe, {0x1b}, [@generic="742a3bd87a460abfbe03117b98a38e0d9d110319cafbea66f83737cb136b33dfa447cb36d1aff6cc697097bf8ae328", @generic="9b15e162d2bd9fbf9b4d877bf1a9953c6fe08f0c", @generic="d0994a533166758caaf9541317390e3d", @typed={0x8, 0xf3, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x31}}, @generic="1159ba71306df510e8e8dafdb715fe42587ae5e64d5f4a850d94d67be79ec0e309c5ef86a810d24e51ca7a0e6714baa91d1b442b0a0c8d44d8dd2366531f8b30ea3ace9162b9aad2e97841ae2974376684f428050483a97ed850d79262ff42f700000000000000034e0e8cc7357ceccce793708aef4d797ab8417f064051689e4d040000004b8fed74cf6b47ceebf0537681095b7aeaaf78d3a89e0e00000000000021abd494d50b16d7677d4c1a855396498b70a37dabcacf7a33a5d0d5550b5f3482bad6dc1d93c0d19af50b68f98efa5d2e518370d89c2776f57c232b06d6d08f5ab5a311692d971cb9eb2cf4f6c455cc86a867afa99a9412297771dd8a04c790a458721422a37be08d27bba51ccc7c16f85e43e28686e71af06fcde9983dc564ae93d2dbefb573d5db230198704663873f51cba716798b", @nested={0x18f, 0x3, 0x0, 0x1, [@nested={0x4, 0xa6}, @generic="faae0a7d87e657bf547a825089755df7f950bcd1cb48c1baf017ae6f744b4c9222d36153c7c432a6e12800d3795fd070f16656f56949d74cf07fafea4f944a7772ada4feae1abeb9ed53b7b07fd8c948a0e16738c865fca94831401b4ba496a753fe2882da90b953a3c66da002d2713ab4b949c3329c295f70c4c0bc1603673c8eff4aeac48a245543f2ec18294f17f38a1d821808c09accd6ac7296916691754298fc2437f9caeca11978555c03ee87da26e13e0e25671cd7faf4921d44f709f40361643e30a90306dbadc8b707ec12d1e7f3e47926", @generic="9ebace24ee8b74a96571f5783a667a7efd6d248fa550fc9bcbf3bde8a5ff694e9e4e6331771e1e27e008e0f1339f87ee14f04828af805ebc447637d6017feeab4511c7f1e5f9ac8347dc2e1b520e9ec9a74cf8314545974453916f4e99ec0ec2fcc3139e0c5d351d6b0938d10b2d9aac999a2c1e748e53b8284f836571ee33e26efa8a2b22c9fa3e13fe5296b6d8a8777ae84f113666a14c97", @nested={0x4, 0xe8}, @typed={0xc, 0xe9, 0x0, 0x0, @u64=0xc}, @typed={0x8, 0x9e, 0x0, 0x0, @u32=0x33e6}]}, @typed={0x8, 0x9, 0x0, 0x0, @u32=0x8}, @generic="73e80c811cf1c1718a45d3baa2d27a7e9377d32a06c61c30c3df61e2f5671f1eec837c75fd3393c08575100c05877443856f3f3fc5e0b09cc76daf703f81d7f38ffa54f71981de484f42cc470d32d6536ac32ab63fbd79a0144039195845f95513c75eeb84e30dbeb6fd649ab3b3b27263f831e81f50118c8f7f3fffa34a427e3cd413a3f280c1df40eb3f1531", @generic="41ad9592b243f3f44775cc64b1e1a98521b61dff684696412d4cd543d86890b3df3d5dc8f392d1a726b328e7e419b04518dc3a0a34f861d79e77ee6faed83ac8e2a43465727e9532bc241871c069eb971cd8244b8802c2a6d669bc3043ad65be84008819c24bfae4c99b5770c8bf25ea5d9b5ec88874aeeb5608b3d5ca445893a2af4055d1c1b29f2802be64d25b031d2f834faa9f86a6a78078f34da78c8a232bf005e18d8aa85b64cf3be04584e50a34b5badbd12613007e06762acac6c1216143ef59b0a53eb7b19b4c18888db52217afc483b6841f9b756ac04a"]}, 0x4ac}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x3, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000040000008500000006000000850000002b00000095"], &(0x7f0000001680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(r3, &(0x7f0000000b00)={[{0x2b, 'rlimit'}, {0x2b, 'net_cls'}, {0x2d, 'blkio'}, {0x2b, 'hugetlb'}]}, 0x21)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r11=>0x0})
bind$can_j1939(r1, &(0x7f0000000100)={0x1d, r11, 0x2, {0x3}}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r12, {0x0, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000}, 0x98)

344.030601ms ago: executing program 0 (id=1266):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)=ANY=[], 0x22)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r0, @ANYRES32=r1], 0x90}}, 0x0)

276.452826ms ago: executing program 2 (id=1267):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
bind$alg(r3, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000010000000000000000000000791210000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = accept4(r3, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
recvmmsg(r5, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x5b, 0x80000, 0x3fffc)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r5)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x4, 0x3032, 0xffffffffffffffff, 0x0)
connect$inet(r5, &(0x7f00000000c0)={0x2, 0x4e20, @multicast1}, 0x10)
unshare(0xc000000)
socket$inet6(0xa, 0x3, 0x8000000003c)
getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000240)={'broute\x00', 0x0, 0x0, 0x0, [0xf1, 0xa, 0x7, 0x619347a8, 0xfffffffffffffffc, 0x3]}, &(0x7f00000002c0)=0x78)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYRESHEX], 0x0, 0x5a, 0x0, 0x1, 0x1, 0x10000, @value}, 0x28)
ioctl$FS_IOC_FSGETXATTR(r4, 0x801c581f, &(0x7f0000000180)={0xfffffffc, 0x279, 0x2, 0x7fffffff, 0xb})
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000840)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES64=r0], 0x64}}, 0x0)

240.671494ms ago: executing program 1 (id=1268):
bind$l2tp6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xfffffffc, 0x3}, 0x20)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce620300fe"], 0xfe1b)
socket$packet(0x11, 0x2, 0x300)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1c0000001800599c6d0eab070004000523"], 0xfe33)

174.906145ms ago: executing program 0 (id=1269):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r2 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNADD(r2, 0x400442c8, &(0x7f0000000080)={r1, 0x1, 0x3})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x2200, 0x0)
ioctl$TUNSETOFFLOAD(r3, 0x400454d0, 0x0)
ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000080)={0x0, &(0x7f0000000100)})

0s ago: executing program 1 (id=1270):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1d, 0x2, 0x6)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x6, &(0x7f0000000f00)=0x5, 0x4)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r4, 0x0, 0x48b, 0x0, 0x0)
sendmsg$IPSET_CMD_SAVE(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="30001700080601020000000000000000070000010900020073797a31000000000500010007000000050001000700fad127dc1b1b9b13ca92fe64ac79a20000"], 0x30}, 0x1, 0x0, 0x0, 0x2404a411}, 0x4000)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0)=ANY=[@ANYRES8=r2, @ANYRES8=r3, @ANYRES32, @ANYRES16=r1], 0x20)
r5 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3e0, 0x1b0, 0xc8, 0x8, 0x1b0, 0x5803, 0x310, 0x2e8, 0x2e8, 0x310, 0x2e8, 0x3, 0x0, {[{{@ipv6={@loopback, @mcast1, [], [], 'erspan0\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1b0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67442c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1}}, @common=@inet=@socket1={{0x28}, 0xa490f54eab606508}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@remote, @mcast2, [], [], 'macvtap0\x00', 'syzkaller1\x00'}, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x440)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x8, &(0x7f0000000680)=@framed={{0x18, 0x8, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x5}, [@func={0x85, 0x0, 0x1, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0xba}, @generic={0xa7}, @initr0]}, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r7, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x34, r8, 0x1, 0x70bd25, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES={0x8, 0x7, 0x4}]}, 0x34}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a4c000000060a0b040000000000000000000100736f636b65740000040002800900010073797a30000000000900020073797a32000000000500074057000000140000001100010000000000000000000000000a"], 0x74}}, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r2, 0x0, 0x484, &(0x7f0000000500)=""/135, &(0x7f0000000140)=0x87)
r10 = accept(r2, &(0x7f00000005c0)=@sco={0x1f, @fixed}, &(0x7f0000000400)=0x80)
sendmsg$nl_generic(r10, &(0x7f0000000ac0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000f40)={0x4a8, 0x40, 0x100, 0x70bd29, 0x25dfdbfe, {0x1b}, [@generic="742a3bd87a460abfbe03117b98a38e0d9d110319cafbea66f83737cb136b33dfa447cb36d1aff6cc697097bf8ae328", @generic="9b15e162d2bd9fbf9b4d877bf1a9953c6fe08f0c", @generic="d0994a533166758caaf954131739", @typed={0x8, 0xf3, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x31}}, @generic="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", @nested={0x18f, 0x3, 0x0, 0x1, [@nested={0x4, 0xa6}, @generic="faae0a7d87e657bf547a825089755df7f950bcd1cb48c1baf017ae6f744b4c9222d36153c7c432a6e12800d3795fd070f16656f56949d74cf07fafea4f944a7772ada4feae1abeb9ed53b7b07fd8c948a0e16738c865fca94831401b4ba496a753fe2882da90b953a3c66da002d2713ab4b949c3329c295f70c4c0bc1603673c8eff4aeac48a245543f2ec18294f17f38a1d821808c09accd6ac7296916691754298fc2437f9caeca11978555c03ee87da26e13e0e25671cd7faf4921d44f709f40361643e30a90306dbadc8b707ec12d1e7f3e47926", @generic="9ebace24ee8b74a96571f5783a667a7efd6d248fa550fc9bcbf3bde8a5ff694e9e4e6331771e1e27e008e0f1339f87ee14f04828af805ebc447637d6017feeab4511c7f1e5f9ac8347dc2e1b520e9ec9a74cf8314545974453916f4e99ec0ec2fcc3139e0c5d351d6b0938d10b2d9aac999a2c1e748e53b8284f836571ee33e26efa8a2b22c9fa3e13fe5296b6d8a8777ae84f113666a14c97", @nested={0x4, 0xe8}, @typed={0xc, 0xe9, 0x0, 0x0, @u64=0xc}, @typed={0x8, 0x9e, 0x0, 0x0, @u32=0x33e6}]}, @typed={0x8, 0x9, 0x0, 0x0, @u32=0x8}, @generic="73e80c811cf1c1718a45d3baa2d27a7e9377d32a06c61c30c3df61e2f5671f1eec837c75fd3393c08575100c05877443856f3f3fc5e0b09cc76daf703f81d7f38ffa54f71981de484f42cc470d32d6536ac32ab63fbd79a0144039195845f95513c75eeb84e30dbeb6fd649ab3b3b27263f831e81f50118c8f7f3fffa34a427e3cd413a3f280c1df40eb3f1531", @generic="41ad9592b243f3f44775cc64b1e1a98521b61dff684696412d4cd543d86890b3df3d5dc8f392d1a726b328e7e419b04518dc3a0a34f861d79e77ee6faed83ac8e2a43465727e9532bc241871c069eb971cd8244b8802c2a6d669bc3043ad65be84008819c24bfae4c99b5770c8bf25ea5d9b5ec88874aeeb5608b3d5ca445893a2af4055d1c1b29f2802be64d25b031d2f834faa9f86a6a78078f34da78c8a232bf005e18d8aa85b64cf3be04584e50a34b5badbd12613007e06762acac6c1216143ef59b0a53eb7b19b4c18888db52217afc483b6841f9b756ac04a"]}, 0x4a8}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x3, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000040000008500000006000000850000002b00000095"], &(0x7f0000001680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(r3, &(0x7f0000000b00)={[{0x2b, 'rlimit'}, {0x2b, 'net_cls'}, {0x2d, 'blkio'}, {0x2b, 'hugetlb'}]}, 0x21)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r11=>0x0})
bind$can_j1939(r1, &(0x7f0000000100)={0x1d, r11, 0x2, {0x3}}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r12, {0x0, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000}, 0x98)

kernel console output (not intermixed with test programs):

4][ T8337] RSP: 0018:ffffc9001bf1fac8 EFLAGS: 00050206
[  155.189959][ T8337] RAX: ffffffff84b89201 RBX: 00000000000009fd RCX: 00000000000004f8
[  155.189971][ T8337] RDX: 0000000000000000 RSI: ffff88807e0f8505 RDI: 000020000000f000
[  155.189986][ T8337] RBP: ffffc9001bf1fd00 R08: ffff88807e0f89fc R09: 1ffff1100fc1f13f
[  155.190001][ T8337] R10: dffffc0000000000 R11: ffffed100fc1f140 R12: 000020000000f4f8
[  155.190015][ T8337] R13: 00007ffffffff000 R14: ffff88807e0f8000 R15: 000020000000eafb
[  155.190040][ T8337]  ? _copy_from_user+0x61/0xb0
[  155.190079][ T8337]  _copy_to_user+0x8a/0xb0
[  155.190111][ T8337]  __htab_map_lookup_and_delete_batch+0x103e/0x13a0
[  155.190182][ T8337]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  155.190238][ T8337]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  155.190263][ T8337]  bpf_map_do_batch+0x412/0x5f0
[  155.190298][ T8337]  __sys_bpf+0x666/0x860
[  155.190327][ T8337]  ? __pfx___sys_bpf+0x10/0x10
[  155.190368][ T8337]  ? ksys_write+0x1f0/0x250
[  155.190407][ T8337]  __x64_sys_bpf+0x7c/0x90
[  155.190432][ T8337]  do_syscall_64+0xf6/0x210
[  155.190453][ T8337]  ? clear_bhb_loop+0x45/0xa0
[  155.190480][ T8337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.190499][ T8337] RIP: 0033:0x7fb6ddb8e969
[  155.190517][ T8337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.190535][ T8337] RSP: 002b:00007fb6de9f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  155.190555][ T8337] RAX: ffffffffffffffda RBX: 00007fb6dddb6080 RCX: 00007fb6ddb8e969
[  155.190570][ T8337] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  155.190584][ T8337] RBP: 00007fb6de9f3090 R08: 0000000000000000 R09: 0000000000000000
[  155.190597][ T8337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  155.190610][ T8337] R13: 0000000000000001 R14: 00007fb6dddb6080 R15: 00007fffe8db7b88
[  155.190644][ T8337]  </TASK>
[  155.279880][ T8353] netlink: 'syz.0.745': attribute type 10 has an invalid length.
[  155.604569][ T8330] bridge_slave_1: left allmulticast mode
[  155.610690][ T8330] bridge_slave_1: left promiscuous mode
[  155.629568][ T8330] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.663376][ T8330] bond0: (slave bond_slave_0): Releasing backup interface
[  155.684857][ T8330] bond0: (slave bond_slave_1): Releasing backup interface
[  155.744255][ T8330] team0: Port device team_slave_0 removed
[  155.787122][    C0] vcan0: j1939_tp_rxtimer: 0xffff888059823800: rx timeout, send abort
[  155.796377][ T8330] team0: Port device team_slave_1 removed
[  155.811909][ T8330] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  155.827245][ T8330] batman_adv: batadv0: Removing interface: batadv_slave_0
[  155.847020][ T8330] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  155.856356][ T8330] batman_adv: batadv0: Removing interface: batadv_slave_1
[  155.938924][ T8353] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  156.087554][ T8393] xt_socket: unknown flags 0x8
[  156.120089][ T8393] IPVS: length: 135 != 24
[  156.295541][    C0] vcan0: j1939_tp_rxtimer: 0xffff888059823800: abort rx timeout. Force session deactivation
[  156.628104][ T8416] FAULT_INJECTION: forcing a failure.
[  156.628104][ T8416] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  156.676509][ T8416] CPU: 1 UID: 0 PID: 8416 Comm: syz.2.757 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  156.676540][ T8416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.676553][ T8416] Call Trace:
[  156.676560][ T8416]  <TASK>
[  156.676569][ T8416]  dump_stack_lvl+0x189/0x250
[  156.676612][ T8416]  ? __pfx_dump_stack_lvl+0x10/0x10
[  156.676642][ T8416]  ? __pfx__printk+0x10/0x10
[  156.676665][ T8416]  ? lockdep_hardirqs_on+0x9c/0x150
[  156.676705][ T8416]  should_fail_ex+0x414/0x560
[  156.676731][ T8416]  _copy_to_user+0x31/0xb0
[  156.676762][ T8416]  __htab_map_lookup_and_delete_batch+0xfe5/0x13a0
[  156.676827][ T8416]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  156.676861][ T8416]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  156.676885][ T8416]  bpf_map_do_batch+0x412/0x5f0
[  156.676919][ T8416]  __sys_bpf+0x666/0x860
[  156.676947][ T8416]  ? __pfx___sys_bpf+0x10/0x10
[  156.676985][ T8416]  ? ksys_write+0x1f0/0x250
[  156.677022][ T8416]  __x64_sys_bpf+0x7c/0x90
[  156.677045][ T8416]  do_syscall_64+0xf6/0x210
[  156.677066][ T8416]  ? clear_bhb_loop+0x45/0xa0
[  156.677098][ T8416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.677118][ T8416] RIP: 0033:0x7fe39fb8e969
[  156.677137][ T8416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.677155][ T8416] RSP: 002b:00007fe3a0a16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  156.677177][ T8416] RAX: ffffffffffffffda RBX: 00007fe39fdb6080 RCX: 00007fe39fb8e969
[  156.677191][ T8416] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  156.677204][ T8416] RBP: 00007fe3a0a16090 R08: 0000000000000000 R09: 0000000000000000
[  156.677217][ T8416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  156.677228][ T8416] R13: 0000000000000001 R14: 00007fe39fdb6080 R15: 00007fff5dd18da8
[  156.677259][ T8416]  </TASK>
[  157.126066][ T8432] openvswitch: netlink: Actions may not be safe on all matching packets
[  157.148886][ T8435] xt_socket: unknown flags 0x8
[  157.177463][ T8435] IPVS: length: 135 != 24
[  157.407143][ T8452] nbd: nbd0 already in use
[  157.868424][ T8477] FAULT_INJECTION: forcing a failure.
[  157.868424][ T8477] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.906543][ T8477] CPU: 0 UID: 0 PID: 8477 Comm: syz.2.775 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  157.906575][ T8477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  157.906587][ T8477] Call Trace:
[  157.906595][ T8477]  <TASK>
[  157.906604][ T8477]  dump_stack_lvl+0x189/0x250
[  157.906642][ T8477]  ? __pfx_dump_stack_lvl+0x10/0x10
[  157.906671][ T8477]  ? __pfx__printk+0x10/0x10
[  157.906694][ T8477]  ? lockdep_hardirqs_on+0x9c/0x150
[  157.906741][ T8477]  should_fail_ex+0x414/0x560
[  157.906767][ T8477]  _copy_to_user+0x31/0xb0
[  157.906797][ T8477]  __htab_map_lookup_and_delete_batch+0x103e/0x13a0
[  157.906861][ T8477]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  157.906895][ T8477]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  157.906918][ T8477]  bpf_map_do_batch+0x412/0x5f0
[  157.906952][ T8477]  __sys_bpf+0x666/0x860
[  157.906980][ T8477]  ? __pfx___sys_bpf+0x10/0x10
[  157.907018][ T8477]  ? ksys_write+0x1f0/0x250
[  157.907053][ T8477]  __x64_sys_bpf+0x7c/0x90
[  157.907076][ T8477]  do_syscall_64+0xf6/0x210
[  157.907095][ T8477]  ? clear_bhb_loop+0x45/0xa0
[  157.907119][ T8477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.907137][ T8477] RIP: 0033:0x7fe39fb8e969
[  157.907162][ T8477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.907179][ T8477] RSP: 002b:00007fe3a0a16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  157.907200][ T8477] RAX: ffffffffffffffda RBX: 00007fe39fdb6080 RCX: 00007fe39fb8e969
[  157.907215][ T8477] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  157.907228][ T8477] RBP: 00007fe3a0a16090 R08: 0000000000000000 R09: 0000000000000000
[  157.907240][ T8477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  157.907252][ T8477] R13: 0000000000000001 R14: 00007fe39fdb6080 R15: 00007fff5dd18da8
[  157.907284][ T8477]  </TASK>
[  158.196928][ T8479] vlan0: entered promiscuous mode
[  158.245461][ T8488] __nla_validate_parse: 15 callbacks suppressed
[  158.245487][ T8488] netlink: 12 bytes leftover after parsing attributes in process `syz.2.780'.
[  158.281411][    C1] vcan0: j1939_tp_rxtimer: 0xffff888027c48000: rx timeout, send abort
[  158.297245][ T8488] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 2314 - 0
[  158.306328][ T8488] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 2314 - 0
[  158.315154][ T8488] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 2314 - 0
[  158.326059][ T8488] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 2314 - 0
[  158.335666][ T8488] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 2314 - 0
[  158.346711][ T8488] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 2314 - 0
[  158.364444][ T8496] xt_socket: unknown flags 0x8
[  158.374445][ T8496] netlink: 56 bytes leftover after parsing attributes in process `syz.0.782'.
[  158.387009][ T8496] IPVS: length: 135 != 24
[  158.451973][ T8492] netlink: 40 bytes leftover after parsing attributes in process `syz.3.781'.
[  158.461294][ T8491] netlink: 4 bytes leftover after parsing attributes in process `syz.0.782'.
[  158.494584][ T8488] netlink: 12 bytes leftover after parsing attributes in process `syz.2.780'.
[  158.513871][ T8488] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 2314 - 0
[  158.523080][ T8488] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 2314 - 0
[  158.532289][ T8488] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 2314 - 0
[  158.553034][ T8488] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 2314 - 0
[  158.562619][ T8488] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 2314 - 0
[  158.571986][ T8488] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 2314 - 0
[  158.619551][ T8502] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌUvy¸ÚØ¢
…D£øUDŒw˜}�z'
[  158.641702][ T8502] CPU: 1 UID: 0 PID: 8502 Comm: syz.4.784 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  158.641734][ T8502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.641748][ T8502] Call Trace:
[  158.641756][ T8502]  <TASK>
[  158.641766][ T8502]  dump_stack_lvl+0x189/0x250
[  158.641802][ T8502]  ? lockdep_hardirqs_on+0x9c/0x150
[  158.641834][ T8502]  ? __pfx_dump_stack_lvl+0x10/0x10
[  158.641863][ T8502]  ? __pfx__printk+0x10/0x10
[  158.641888][ T8502]  ? kernfs_path_from_node+0x2b/0x260
[  158.641918][ T8502]  ? kernfs_path_from_node+0x216/0x260
[  158.641950][ T8502]  sysfs_warn_dup+0x8e/0xa0
[  158.641976][ T8502]  sysfs_do_create_link_sd+0xc0/0x110
[  158.642007][ T8502]  device_add_class_symlinks+0x1cf/0x240
[  158.642037][ T8502]  device_add+0x475/0xb50
[  158.642067][ T8502]  wiphy_register+0x199a/0x26b0
[  158.642111][ T8502]  ? __pfx_wiphy_register+0x10/0x10
[  158.642134][ T8502]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  158.642168][ T8502]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  158.642201][ T8502]  ieee80211_register_hw+0x334b/0x4060
[  158.642247][ T8502]  ? ieee80211_register_hw+0x14d1/0x4060
[  158.642289][ T8502]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  158.642328][ T8502]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  158.642368][ T8502]  ? __hrtimer_setup+0x187/0x210
[  158.642397][ T8502]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  158.642425][ T8502]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  158.642494][ T8502]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  158.642525][ T8502]  ? trace_kmalloc+0x1f/0xd0
[  158.642547][ T8502]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  158.642574][ T8502]  ? kstrndup+0xbf/0x160
[  158.642606][ T8502]  hwsim_new_radio_nl+0xea4/0x1b10
[  158.642629][ T8502]  ? __pfx___nla_validate_parse+0x10/0x10
[  158.642671][ T8502]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  158.642701][ T8502]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  158.642745][ T8502]  ? __nla_parse+0x40/0x60
[  158.642776][ T8502]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  158.642817][ T8502]  genl_family_rcv_msg_doit+0x212/0x300
[  158.642856][ T8502]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  158.642904][ T8502]  ? bpf_lsm_capable+0x9/0x20
[  158.642932][ T8502]  ? security_capable+0x7e/0x2e0
[  158.642963][ T8502]  genl_rcv_msg+0x60e/0x790
[  158.643003][ T8502]  ? __pfx_genl_rcv_msg+0x10/0x10
[  158.643033][ T8502]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  158.643070][ T8502]  netlink_rcv_skb+0x219/0x490
[  158.643097][ T8502]  ? __pfx_genl_rcv_msg+0x10/0x10
[  158.643131][ T8502]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  158.643185][ T8502]  ? down_read+0x1ad/0x2e0
[  158.643210][ T8502]  genl_rcv+0x28/0x40
[  158.643238][ T8502]  netlink_unicast+0x758/0x8d0
[  158.643274][ T8502]  netlink_sendmsg+0x805/0xb30
[  158.643311][ T8502]  ? __pfx_netlink_sendmsg+0x10/0x10
[  158.643340][ T8502]  ? aa_sock_msg_perm+0x94/0x160
[  158.643365][ T8502]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  158.643387][ T8502]  ? __pfx_netlink_sendmsg+0x10/0x10
[  158.643414][ T8502]  __sock_sendmsg+0x219/0x270
[  158.643440][ T8502]  ____sys_sendmsg+0x505/0x830
[  158.643475][ T8502]  ? __pfx_____sys_sendmsg+0x10/0x10
[  158.643515][ T8502]  ? import_iovec+0x74/0xa0
[  158.643548][ T8502]  ___sys_sendmsg+0x21f/0x2a0
[  158.643578][ T8502]  ? __pfx____sys_sendmsg+0x10/0x10
[  158.643651][ T8502]  ? __fget_files+0x2a/0x420
[  158.643676][ T8502]  ? __fget_files+0x3a0/0x420
[  158.643722][ T8502]  __x64_sys_sendmsg+0x19b/0x260
[  158.643754][ T8502]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  158.643804][ T8502]  ? do_syscall_64+0xba/0x210
[  158.643830][ T8502]  do_syscall_64+0xf6/0x210
[  158.643852][ T8502]  ? clear_bhb_loop+0x45/0xa0
[  158.643877][ T8502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.643897][ T8502] RIP: 0033:0x7f2c22d8e969
[  158.643915][ T8502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.643934][ T8502] RSP: 002b:00007f2c23b3d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  158.643955][ T8502] RAX: ffffffffffffffda RBX: 00007f2c22fb5fa0 RCX: 00007f2c22d8e969
[  158.643970][ T8502] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000006
[  158.643984][ T8502] RBP: 00007f2c22e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  158.643997][ T8502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  158.644009][ T8502] R13: 0000000000000000 R14: 00007f2c22fb5fa0 R15: 00007ffcbba90198
[  158.644043][ T8502]  </TASK>
[  158.645918][ T8505] openvswitch: netlink: Key type 5136 is out of range max 32
[  158.789739][    C1] vcan0: j1939_tp_rxtimer: 0xffff888027c48000: abort rx timeout. Force session deactivation
[  158.830129][ T8506] netlink: 8 bytes leftover after parsing attributes in process `syz.0.785'.
[  159.157064][ T8516] netlink: 28 bytes leftover after parsing attributes in process `syz.1.787'.
[  159.166128][ T8516] netlink: 28 bytes leftover after parsing attributes in process `syz.1.787'.
[  159.209812][ T8516] syz_tun: entered promiscuous mode
[  159.258711][ T8516] syz_tun: left promiscuous mode
[  159.460961][ T8528] lo speed is unknown, defaulting to 1000
[  159.473604][ T8531] FAULT_INJECTION: forcing a failure.
[  159.473604][ T8531] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  159.525892][ T8531] CPU: 1 UID: 0 PID: 8531 Comm: syz.0.790 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  159.525925][ T8531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.525938][ T8531] Call Trace:
[  159.525947][ T8531]  <TASK>
[  159.525956][ T8531]  dump_stack_lvl+0x189/0x250
[  159.526000][ T8531]  ? __pfx_dump_stack_lvl+0x10/0x10
[  159.526029][ T8531]  ? __pfx__printk+0x10/0x10
[  159.526052][ T8531]  ? fs_reclaim_acquire+0x7d/0x100
[  159.526092][ T8531]  should_fail_ex+0x414/0x560
[  159.526119][ T8531]  prepare_alloc_pages+0x213/0x610
[  159.526158][ T8531]  __alloc_frozen_pages_noprof+0x123/0x370
[  159.526202][ T8531]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  159.526233][ T8531]  ? __lock_acquire+0xaac/0xd20
[  159.526271][ T8531]  ? policy_nodemask+0x27c/0x720
[  159.526304][ T8531]  alloc_pages_mpol+0x232/0x4a0
[  159.526342][ T8531]  vma_alloc_folio_noprof+0xe4/0x200
[  159.526379][ T8531]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  159.526425][ T8531]  folio_prealloc+0x30/0x180
[  159.526455][ T8531]  do_wp_page+0x123a/0x5760
[  159.526502][ T8531]  ? __pfx_do_wp_page+0x10/0x10
[  159.526520][ T8531]  ? do_raw_spin_lock+0x121/0x290
[  159.526553][ T8531]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  159.526588][ T8531]  __handle_mm_fault+0x1028/0x5380
[  159.526612][ T8531]  ? mt_find+0x15c/0x5f0
[  159.526650][ T8531]  ? __pfx___handle_mm_fault+0x10/0x10
[  159.526693][ T8531]  ? find_vma+0xe7/0x160
[  159.526717][ T8531]  ? __pfx_find_vma+0x10/0x10
[  159.526745][ T8531]  ? __up_read+0x280/0x680
[  159.526776][ T8531]  handle_mm_fault+0x3f6/0x8c0
[  159.526818][ T8531]  do_user_addr_fault+0x764/0x1390
[  159.526856][ T8531]  exc_page_fault+0x68/0x110
[  159.526889][ T8531]  asm_exc_page_fault+0x26/0x30
[  159.526908][ T8531] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  159.526941][ T8531] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  159.526959][ T8531] RSP: 0018:ffffc9001c54fac8 EFLAGS: 00050206
[  159.526977][ T8531] RAX: ffffffff84b89201 RBX: 00000000000009fd RCX: 00000000000008f2
[  159.526991][ T8531] RDX: 0000000000000000 RSI: ffff888031ec810b RDI: 0000200000010000
[  159.527005][ T8531] RBP: ffffc9001c54fd00 R08: ffff888031ec89fc R09: 1ffff110063d913f
[  159.527020][ T8531] R10: dffffc0000000000 R11: ffffed10063d9140 R12: 00002000000108f2
[  159.527034][ T8531] R13: 00007ffffffff000 R14: ffff888031ec8000 R15: 000020000000fef5
[  159.527058][ T8531]  ? _copy_from_user+0x61/0xb0
[  159.527098][ T8531]  _copy_to_user+0x8a/0xb0
[  159.527128][ T8531]  __htab_map_lookup_and_delete_batch+0x103e/0x13a0
[  159.527204][ T8531]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  159.527239][ T8531]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  159.527268][ T8531]  bpf_map_do_batch+0x412/0x5f0
[  159.527302][ T8531]  __sys_bpf+0x666/0x860
[  159.527330][ T8531]  ? __pfx___sys_bpf+0x10/0x10
[  159.527374][ T8531]  ? ksys_write+0x1f0/0x250
[  159.527419][ T8531]  __x64_sys_bpf+0x7c/0x90
[  159.527443][ T8531]  do_syscall_64+0xf6/0x210
[  159.527464][ T8531]  ? clear_bhb_loop+0x45/0xa0
[  159.527488][ T8531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.527507][ T8531] RIP: 0033:0x7f15c658e969
[  159.527524][ T8531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.527541][ T8531] RSP: 002b:00007f15c7395038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  159.527567][ T8531] RAX: ffffffffffffffda RBX: 00007f15c67b6080 RCX: 00007f15c658e969
[  159.527581][ T8531] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  159.527593][ T8531] RBP: 00007f15c7395090 R08: 0000000000000000 R09: 0000000000000000
[  159.527605][ T8531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  159.527617][ T8531] R13: 0000000000000001 R14: 00007f15c67b6080 R15: 00007ffc5db94b18
[  159.527655][ T8531]  </TASK>
[  160.061880][ T8540] netlink: 32 bytes leftover after parsing attributes in process `syz.3.795'.
[  160.129382][ T8541] netlink: 12 bytes leftover after parsing attributes in process `syz.0.796'.
[  160.209418][ T8541] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 2314 - 0
[  160.217845][ T8541] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 2314 - 0
[  160.226479][ T8541] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 2314 - 0
[  160.234844][ T8541] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 2314 - 0
[  160.293197][ T8541] netdevsim netdevsim0 eth0: unset [0, 0] type 1 family 0 port 2314 - 0
[  160.301698][ T8541] netdevsim netdevsim0 eth1: unset [0, 0] type 1 family 0 port 2314 - 0
[  160.310117][ T8541] netdevsim netdevsim0 eth2: unset [0, 0] type 1 family 0 port 2314 - 0
[  160.318560][ T8541] netdevsim netdevsim0 eth3: unset [0, 0] type 1 family 0 port 2314 - 0
[  160.361918][   T30] audit: type=1800 audit(1747123991.526:2): pid=8542 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.791" name="memory.events" dev="tmpfs" ino=907 res=0 errno=0
[  160.511669][ T8541] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 2314 - 0
[  160.520128][ T8541] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 2314 - 0
[  160.528694][ T8541] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 2314 - 0
[  160.537475][ T8541] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 2314 - 0
[  160.555277][ T8541] netdevsim netdevsim0 eth0: unset [0, 0] type 1 family 0 port 2314 - 0
[  160.564842][ T8541] netdevsim netdevsim0 eth1: unset [0, 0] type 1 family 0 port 2314 - 0
[  160.573898][ T8541] netdevsim netdevsim0 eth2: unset [0, 0] type 1 family 0 port 2314 - 0
[  160.582539][ T8541] netdevsim netdevsim0 eth3: unset [0, 0] type 1 family 0 port 2314 - 0
[  160.721708][ T8533] Bluetooth: hci3: Opcode 0x0401 failed: -4
[  161.068072][ T8570] syz_tun: entered promiscuous mode
[  161.097885][ T8570] syz_tun: left promiscuous mode
[  161.306535][ T8585] FAULT_INJECTION: forcing a failure.
[  161.306535][ T8585] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  161.334648][ T8585] CPU: 1 UID: 0 PID: 8585 Comm: syz.0.807 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  161.334678][ T8585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  161.334689][ T8585] Call Trace:
[  161.334695][ T8585]  <TASK>
[  161.334703][ T8585]  dump_stack_lvl+0x189/0x250
[  161.334735][ T8585]  ? __pfx_dump_stack_lvl+0x10/0x10
[  161.334759][ T8585]  ? __pfx__printk+0x10/0x10
[  161.334778][ T8585]  ? lockdep_hardirqs_on+0x9c/0x150
[  161.334810][ T8585]  should_fail_ex+0x414/0x560
[  161.334830][ T8585]  _copy_to_user+0x31/0xb0
[  161.334855][ T8585]  __htab_map_lookup_and_delete_batch+0xfe5/0x13a0
[  161.334906][ T8585]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  161.334933][ T8585]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  161.334952][ T8585]  bpf_map_do_batch+0x412/0x5f0
[  161.334979][ T8585]  __sys_bpf+0x666/0x860
[  161.335001][ T8585]  ? __pfx___sys_bpf+0x10/0x10
[  161.335032][ T8585]  ? rcu_is_watching+0x15/0xb0
[  161.335065][ T8585]  __x64_sys_bpf+0x7c/0x90
[  161.335083][ T8585]  do_syscall_64+0xf6/0x210
[  161.335101][ T8585]  ? clear_bhb_loop+0x45/0xa0
[  161.335121][ T8585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.335136][ T8585] RIP: 0033:0x7f15c658e969
[  161.335151][ T8585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.335166][ T8585] RSP: 002b:00007f15c7395038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  161.335183][ T8585] RAX: ffffffffffffffda RBX: 00007f15c67b6080 RCX: 00007f15c658e969
[  161.335195][ T8585] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  161.335206][ T8585] RBP: 00007f15c7395090 R08: 0000000000000000 R09: 0000000000000000
[  161.335215][ T8585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  161.335225][ T8585] R13: 0000000000000001 R14: 00007f15c67b6080 R15: 00007ffc5db94b18
[  161.335249][ T8585]  </TASK>
[  161.539895][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880310c6400: rx timeout, send abort
[  161.658188][ T8593] bond0: option lacp_rate: mode dependency failed, not supported in mode balance-rr(0)
[  161.784374][ T8602] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 2314 - 0
[  161.793741][ T8602] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 2314 - 0
[  161.802610][ T8602] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 2314 - 0
[  161.819386][ T8602] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 2314 - 0
[  161.828517][ T8602] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 2314 - 0
[  161.837754][ T8602] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 2314 - 0
[  161.930833][ T8602] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 2314 - 0
[  161.939730][ T8602] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 2314 - 0
[  161.948700][ T8602] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 2314 - 0
[  161.965182][ T8602] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 2314 - 0
[  161.974550][ T8602] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 2314 - 0
[  161.983628][ T8602] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 2314 - 0
[  162.048503][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880310c6400: abort rx timeout. Force session deactivation
[  162.257982][ T8619] vlan2: entered promiscuous mode
[  162.271133][ T8619] bridge0: entered promiscuous mode
[  162.336311][ T8624] FAULT_INJECTION: forcing a failure.
[  162.336311][ T8624] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  162.350825][ T8624] CPU: 0 UID: 0 PID: 8624 Comm: syz.0.823 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  162.350853][ T8624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  162.350866][ T8624] Call Trace:
[  162.350874][ T8624]  <TASK>
[  162.350882][ T8624]  dump_stack_lvl+0x189/0x250
[  162.350918][ T8624]  ? __pfx_dump_stack_lvl+0x10/0x10
[  162.350947][ T8624]  ? __pfx__printk+0x10/0x10
[  162.350969][ T8624]  ? fs_reclaim_acquire+0x7d/0x100
[  162.351007][ T8624]  should_fail_ex+0x414/0x560
[  162.351032][ T8624]  prepare_alloc_pages+0x213/0x610
[  162.351070][ T8624]  __alloc_frozen_pages_noprof+0x123/0x370
[  162.351105][ T8624]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  162.351134][ T8624]  ? __lock_acquire+0xaac/0xd20
[  162.351169][ T8624]  ? policy_nodemask+0x27c/0x720
[  162.351218][ T8624]  alloc_pages_mpol+0x232/0x4a0
[  162.351250][ T8624]  vma_alloc_folio_noprof+0xe4/0x200
[  162.351281][ T8624]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  162.351321][ T8624]  folio_prealloc+0x30/0x180
[  162.351350][ T8624]  do_wp_page+0x123a/0x5760
[  162.351397][ T8624]  ? __pfx_do_wp_page+0x10/0x10
[  162.351417][ T8624]  ? do_raw_spin_lock+0x121/0x290
[  162.351443][ T8624]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  162.351478][ T8624]  __handle_mm_fault+0x1028/0x5380
[  162.351509][ T8624]  ? mt_find+0x15c/0x5f0
[  162.351550][ T8624]  ? __pfx___handle_mm_fault+0x10/0x10
[  162.351591][ T8624]  ? find_vma+0xe7/0x160
[  162.351615][ T8624]  ? __pfx_find_vma+0x10/0x10
[  162.351637][ T8624]  ? __up_read+0x280/0x680
[  162.351662][ T8624]  handle_mm_fault+0x3f6/0x8c0
[  162.351698][ T8624]  do_user_addr_fault+0x764/0x1390
[  162.351736][ T8624]  exc_page_fault+0x68/0x110
[  162.351769][ T8624]  asm_exc_page_fault+0x26/0x30
[  162.351788][ T8624] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  162.351815][ T8624] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  162.351833][ T8624] RSP: 0018:ffffc90005307ac8 EFLAGS: 00050206
[  162.351851][ T8624] RAX: ffffffff84b89201 RBX: 00000000000009fd RCX: 00000000000008f2
[  162.351864][ T8624] RDX: 0000000000000000 RSI: ffff88805dfc410b RDI: 0000200000010000
[  162.351877][ T8624] RBP: ffffc90005307d00 R08: ffff88805dfc49fc R09: 1ffff1100bbf893f
[  162.351892][ T8624] R10: dffffc0000000000 R11: ffffed100bbf8940 R12: 00002000000108f2
[  162.351906][ T8624] R13: 00007ffffffff000 R14: ffff88805dfc4000 R15: 000020000000fef5
[  162.351929][ T8624]  ? _copy_from_user+0x61/0xb0
[  162.351966][ T8624]  _copy_to_user+0x8a/0xb0
[  162.351995][ T8624]  __htab_map_lookup_and_delete_batch+0x103e/0x13a0
[  162.352061][ T8624]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  162.352097][ T8624]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  162.352120][ T8624]  bpf_map_do_batch+0x412/0x5f0
[  162.352154][ T8624]  __sys_bpf+0x666/0x860
[  162.352181][ T8624]  ? __pfx___sys_bpf+0x10/0x10
[  162.352221][ T8624]  ? ksys_write+0x1f0/0x250
[  162.352242][ T8624]  ? rcu_is_watching+0x15/0xb0
[  162.352296][ T8624]  __x64_sys_bpf+0x7c/0x90
[  162.352318][ T8624]  do_syscall_64+0xf6/0x210
[  162.352338][ T8624]  ? clear_bhb_loop+0x45/0xa0
[  162.352362][ T8624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.352380][ T8624] RIP: 0033:0x7f15c658e969
[  162.352397][ T8624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.352413][ T8624] RSP: 002b:00007f15c73b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  162.352432][ T8624] RAX: ffffffffffffffda RBX: 00007f15c67b5fa0 RCX: 00007f15c658e969
[  162.352446][ T8624] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  162.352458][ T8624] RBP: 00007f15c73b6090 R08: 0000000000000000 R09: 0000000000000000
[  162.352470][ T8624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.352481][ T8624] R13: 0000000000000000 R14: 00007f15c67b5fa0 R15: 00007ffc5db94b18
[  162.352518][ T8624]  </TASK>
[  162.740314][   T55] Bluetooth: hci3: command 0x0401 tx timeout
[  162.822318][ T8631] netlink: 'syz.1.818': attribute type 30 has an invalid length.
[  163.421909][ T8662] __nla_validate_parse: 14 callbacks suppressed
[  163.421929][ T8662] netlink: 28 bytes leftover after parsing attributes in process `syz.4.835'.
[  163.421985][ T8664] xt_socket: unknown flags 0x8
[  163.428238][ T8662] netlink: 28 bytes leftover after parsing attributes in process `syz.4.835'.
[  163.504060][ T8664] netlink: 56 bytes leftover after parsing attributes in process `syz.3.836'.
[  163.554755][ T8664] IPVS: length: 135 != 24
[  163.627731][ T8678] netlink: 4 bytes leftover after parsing attributes in process `syz.3.836'.
[  163.654287][ T8680] FAULT_INJECTION: forcing a failure.
[  163.654287][ T8680] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  163.672998][ T8681] netlink: 4 bytes leftover after parsing attributes in process `syz.1.839'.
[  163.684366][ T8680] CPU: 1 UID: 0 PID: 8680 Comm: syz.4.840 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  163.684397][ T8680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  163.684410][ T8680] Call Trace:
[  163.684418][ T8680]  <TASK>
[  163.684426][ T8680]  dump_stack_lvl+0x189/0x250
[  163.684465][ T8680]  ? __pfx_dump_stack_lvl+0x10/0x10
[  163.684494][ T8680]  ? __pfx__printk+0x10/0x10
[  163.684517][ T8680]  ? fs_reclaim_acquire+0x7d/0x100
[  163.684557][ T8680]  should_fail_ex+0x414/0x560
[  163.684584][ T8680]  prepare_alloc_pages+0x213/0x610
[  163.684623][ T8680]  __alloc_frozen_pages_noprof+0x123/0x370
[  163.684659][ T8680]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  163.684689][ T8680]  ? __lock_acquire+0xaac/0xd20
[  163.684727][ T8680]  ? policy_nodemask+0x27c/0x720
[  163.684759][ T8680]  alloc_pages_mpol+0x232/0x4a0
[  163.684792][ T8680]  vma_alloc_folio_noprof+0xe4/0x200
[  163.684822][ T8680]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  163.684863][ T8680]  folio_prealloc+0x30/0x180
[  163.684891][ T8680]  do_wp_page+0x123a/0x5760
[  163.684939][ T8680]  ? __pfx_do_wp_page+0x10/0x10
[  163.684959][ T8680]  ? do_raw_spin_lock+0x121/0x290
[  163.684985][ T8680]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  163.685019][ T8680]  __handle_mm_fault+0x1028/0x5380
[  163.685044][ T8680]  ? mt_find+0x15c/0x5f0
[  163.685082][ T8680]  ? __pfx___handle_mm_fault+0x10/0x10
[  163.685133][ T8680]  ? find_vma+0xe7/0x160
[  163.685158][ T8680]  ? __pfx_find_vma+0x10/0x10
[  163.685180][ T8680]  ? __up_read+0x280/0x680
[  163.685205][ T8680]  handle_mm_fault+0x3f6/0x8c0
[  163.685246][ T8680]  do_user_addr_fault+0x764/0x1390
[  163.685284][ T8680]  exc_page_fault+0x68/0x110
[  163.685318][ T8680]  asm_exc_page_fault+0x26/0x30
[  163.685337][ T8680] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  163.685363][ T8680] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  163.685380][ T8680] RSP: 0018:ffffc9000421fac8 EFLAGS: 00050206
[  163.685398][ T8680] RAX: ffffffff84b89201 RBX: 00000000000009fd RCX: 00000000000002ef
[  163.685412][ T8680] RDX: 0000000000000000 RSI: ffff88802f79470e RDI: 0000200000011000
[  163.685426][ T8680] RBP: ffffc9000421fd00 R08: ffff88802f7949fc R09: 1ffff11005ef293f
[  163.685440][ T8680] R10: dffffc0000000000 R11: ffffed1005ef2940 R12: 00002000000112ef
[  163.685455][ T8680] R13: 00007ffffffff000 R14: ffff88802f794000 R15: 00002000000108f2
[  163.685478][ T8680]  ? _copy_from_user+0x61/0xb0
[  163.685515][ T8680]  _copy_to_user+0x8a/0xb0
[  163.685545][ T8680]  __htab_map_lookup_and_delete_batch+0x103e/0x13a0
[  163.685613][ T8680]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  163.685649][ T8680]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  163.685672][ T8680]  bpf_map_do_batch+0x412/0x5f0
[  163.685706][ T8680]  __sys_bpf+0x666/0x860
[  163.685733][ T8680]  ? __pfx___sys_bpf+0x10/0x10
[  163.685772][ T8680]  ? ksys_write+0x1f0/0x250
[  163.685809][ T8680]  __x64_sys_bpf+0x7c/0x90
[  163.685832][ T8680]  do_syscall_64+0xf6/0x210
[  163.685853][ T8680]  ? clear_bhb_loop+0x45/0xa0
[  163.685877][ T8680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.685896][ T8680] RIP: 0033:0x7f2c22d8e969
[  163.685914][ T8680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.685930][ T8680] RSP: 002b:00007f2c23b1c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  163.685949][ T8680] RAX: ffffffffffffffda RBX: 00007f2c22fb6080 RCX: 00007f2c22d8e969
[  163.685963][ T8680] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  163.685976][ T8680] RBP: 00007f2c23b1c090 R08: 0000000000000000 R09: 0000000000000000
[  163.685988][ T8680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  163.686000][ T8680] R13: 0000000000000001 R14: 00007f2c22fb6080 R15: 00007ffcbba90198
[  163.686032][ T8680]  </TASK>
[  164.264859][ T8682] netlink: 40 bytes leftover after parsing attributes in process `syz.2.843'.
[  164.378295][ T8693] netlink: 20 bytes leftover after parsing attributes in process `syz.3.845'.
[  164.535760][ T8707] netlink: 28 bytes leftover after parsing attributes in process `syz.1.850'.
[  164.571203][ T8711] netlink: 8 bytes leftover after parsing attributes in process `syz.4.849'.
[  164.595114][ T8707] netlink: 28 bytes leftover after parsing attributes in process `syz.1.850'.
[  164.616733][ T8707] syz_tun: entered promiscuous mode
[  164.627675][ T8707] syz_tun: left promiscuous mode
[  164.698761][ T8715] syz_tun: entered promiscuous mode
[  164.717911][ T8715] syz_tun: left promiscuous mode
[  164.948521][ T8722] bridge0: entered promiscuous mode
[  164.955044][ T8722] vlan2: entered promiscuous mode
[  164.989317][ T8724] syz_tun: entered promiscuous mode
[  164.995992][ T8724] syz_tun: left promiscuous mode
[  165.188772][ T8732] trusted_key: syz.1.860 sent an empty control message without MSG_MORE.
[  165.364196][ T8743] lo speed is unknown, defaulting to 1000
[  165.639849][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805c43b800: rx timeout, send abort
[  165.898359][ T8745] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.907671][ T8745] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.921286][ T8745] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.936918][ T5885] lo speed is unknown, defaulting to 1000
[  165.949498][ T5885] syz2: Port: 1 Link DOWN
[  165.956422][ T8746] 8021q: adding VLAN 0 to HW filter on device team0
[  166.148331][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805c43b800: abort rx timeout. Force session deactivation
[  166.295027][ T8753] lo speed is unknown, defaulting to 1000
[  166.342337][ T8752] ªªªªªª: renamed from lo
[  166.432128][ T8757] bridge0: entered promiscuous mode
[  166.442083][ T8757] vlan2: entered promiscuous mode
[  166.916553][ T8776] netlink: 'syz.4.877': attribute type 1 has an invalid length.
[  166.929631][ T8774] macsec0: entered promiscuous mode
[  166.941697][ T8774] macsec0: entered allmulticast mode
[  167.007766][ T8776] 8021q: adding VLAN 0 to HW filter on device bond1
[  167.046951][ T8782] bond1: (slave veth0_to_bond): making interface the new active one
[  167.056819][ T8782] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  167.116392][ T8774] veth1_macvtap: entered allmulticast mode
[  167.124064][ T8774] macsec0: left promiscuous mode
[  167.129477][ T8774] macsec0: left allmulticast mode
[  167.140783][ T8774] veth1_macvtap: left allmulticast mode
[  167.151070][ T8784] FAULT_INJECTION: forcing a failure.
[  167.151070][ T8784] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  167.164915][ T8784] CPU: 0 UID: 0 PID: 8784 Comm: syz.0.878 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  167.164943][ T8784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  167.164956][ T8784] Call Trace:
[  167.164964][ T8784]  <TASK>
[  167.164972][ T8784]  dump_stack_lvl+0x189/0x250
[  167.165011][ T8784]  ? __pfx_dump_stack_lvl+0x10/0x10
[  167.165040][ T8784]  ? __pfx__printk+0x10/0x10
[  167.165063][ T8784]  ? fs_reclaim_acquire+0x7d/0x100
[  167.165103][ T8784]  should_fail_ex+0x414/0x560
[  167.165128][ T8784]  prepare_alloc_pages+0x213/0x610
[  167.165168][ T8784]  __alloc_frozen_pages_noprof+0x123/0x370
[  167.165204][ T8784]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  167.165233][ T8784]  ? __lock_acquire+0xaac/0xd20
[  167.165272][ T8784]  ? policy_nodemask+0x27c/0x720
[  167.165304][ T8784]  alloc_pages_mpol+0x232/0x4a0
[  167.165337][ T8784]  vma_alloc_folio_noprof+0xe4/0x200
[  167.165366][ T8784]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  167.165407][ T8784]  folio_prealloc+0x30/0x180
[  167.165437][ T8784]  do_wp_page+0x123a/0x5760
[  167.165485][ T8784]  ? __pfx_do_wp_page+0x10/0x10
[  167.165505][ T8784]  ? do_raw_spin_lock+0x121/0x290
[  167.165530][ T8784]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  167.165566][ T8784]  __handle_mm_fault+0x1028/0x5380
[  167.165591][ T8784]  ? mt_find+0x15c/0x5f0
[  167.165629][ T8784]  ? __pfx___handle_mm_fault+0x10/0x10
[  167.165673][ T8784]  ? find_vma+0xe7/0x160
[  167.165697][ T8784]  ? __pfx_find_vma+0x10/0x10
[  167.165731][ T8784]  ? __up_read+0x280/0x680
[  167.165756][ T8784]  handle_mm_fault+0x3f6/0x8c0
[  167.165791][ T8784]  do_user_addr_fault+0x764/0x1390
[  167.165829][ T8784]  exc_page_fault+0x68/0x110
[  167.165860][ T8784]  asm_exc_page_fault+0x26/0x30
[  167.165878][ T8784] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  167.165902][ T8784] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  167.165919][ T8784] RSP: 0018:ffffc9000423fac8 EFLAGS: 00050202
[  167.165936][ T8784] RAX: ffffffff84b89201 RBX: 00000000000013fa RCX: 00000000000000e6
[  167.165950][ T8784] RDX: 0000000000000000 RSI: ffff8880590cd314 RDI: 0000200000013000
[  167.165962][ T8784] RBP: ffffc9000423fd00 R08: ffff8880590cd3f9 R09: 1ffff1100b219a7f
[  167.165976][ T8784] R10: dffffc0000000000 R11: ffffed100b219a80 R12: 00002000000130e6
[  167.165990][ T8784] R13: 00007ffffffff000 R14: ffff8880590cc000 R15: 0000200000011cec
[  167.166013][ T8784]  ? _copy_from_user+0x61/0xb0
[  167.166049][ T8784]  _copy_to_user+0x8a/0xb0
[  167.166078][ T8784]  __htab_map_lookup_and_delete_batch+0x103e/0x13a0
[  167.166144][ T8784]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  167.166178][ T8784]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  167.166200][ T8784]  bpf_map_do_batch+0x412/0x5f0
[  167.166233][ T8784]  __sys_bpf+0x666/0x860
[  167.166259][ T8784]  ? __pfx___sys_bpf+0x10/0x10
[  167.166296][ T8784]  ? ksys_write+0x1f0/0x250
[  167.166316][ T8784]  ? rcu_is_watching+0x15/0xb0
[  167.166357][ T8784]  __x64_sys_bpf+0x7c/0x90
[  167.166380][ T8784]  do_syscall_64+0xf6/0x210
[  167.166400][ T8784]  ? clear_bhb_loop+0x45/0xa0
[  167.166424][ T8784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.166443][ T8784] RIP: 0033:0x7f15c658e969
[  167.166460][ T8784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.166477][ T8784] RSP: 002b:00007f15c73b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  167.166496][ T8784] RAX: ffffffffffffffda RBX: 00007f15c67b5fa0 RCX: 00007f15c658e969
[  167.166510][ T8784] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  167.166522][ T8784] RBP: 00007f15c73b6090 R08: 0000000000000000 R09: 0000000000000000
[  167.166534][ T8784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  167.166546][ T8784] R13: 0000000000000000 R14: 00007f15c67b5fa0 R15: 00007ffc5db94b18
[  167.166576][ T8784]  </TASK>
[  167.862131][ T8802] netlink: 'syz.4.884': attribute type 10 has an invalid length.
[  167.871024][ T8802] openvswitch: netlink: Flow key attr not present in new flow.
[  167.951129][ T8802] sctp: [Deprecated]: syz.4.884 (pid 8802) Use of int in max_burst socket option deprecated.
[  167.951129][ T8802] Use struct sctp_assoc_value instead
[  168.217878][ T8814] FAULT_INJECTION: forcing a failure.
[  168.217878][ T8814] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.233963][ T8814] CPU: 0 UID: 0 PID: 8814 Comm: syz.1.890 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  168.233994][ T8814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  168.234007][ T8814] Call Trace:
[  168.234015][ T8814]  <TASK>
[  168.234023][ T8814]  dump_stack_lvl+0x189/0x250
[  168.234060][ T8814]  ? __pfx_dump_stack_lvl+0x10/0x10
[  168.234089][ T8814]  ? __pfx__printk+0x10/0x10
[  168.234112][ T8814]  ? lockdep_hardirqs_on+0x9c/0x150
[  168.234152][ T8814]  should_fail_ex+0x414/0x560
[  168.234179][ T8814]  _copy_to_user+0x31/0xb0
[  168.234209][ T8814]  __htab_map_lookup_and_delete_batch+0xfe5/0x13a0
[  168.234273][ T8814]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  168.234308][ T8814]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  168.234332][ T8814]  bpf_map_do_batch+0x412/0x5f0
[  168.234366][ T8814]  __sys_bpf+0x666/0x860
[  168.234394][ T8814]  ? __pfx___sys_bpf+0x10/0x10
[  168.234432][ T8814]  ? ksys_write+0x1f0/0x250
[  168.234454][ T8814]  ? rcu_is_watching+0x15/0xb0
[  168.234495][ T8814]  __x64_sys_bpf+0x7c/0x90
[  168.234518][ T8814]  do_syscall_64+0xf6/0x210
[  168.234539][ T8814]  ? clear_bhb_loop+0x45/0xa0
[  168.234564][ T8814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.234583][ T8814] RIP: 0033:0x7fe70f18e969
[  168.234601][ T8814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.234619][ T8814] RSP: 002b:00007fe70ff71038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  168.234646][ T8814] RAX: ffffffffffffffda RBX: 00007fe70f3b5fa0 RCX: 00007fe70f18e969
[  168.234661][ T8814] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  168.234673][ T8814] RBP: 00007fe70ff71090 R08: 0000000000000000 R09: 0000000000000000
[  168.234686][ T8814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  168.234697][ T8814] R13: 0000000000000000 R14: 00007fe70f3b5fa0 R15: 00007fff7d0ff778
[  168.234728][ T8814]  </TASK>
[  168.542362][ T8819] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0
[  168.857439][ T8841] __nla_validate_parse: 12 callbacks suppressed
[  168.857462][ T8841] netlink: 24 bytes leftover after parsing attributes in process `syz.1.900'.
[  168.879131][ T8839] netlink: 8 bytes leftover after parsing attributes in process `syz.2.899'.
[  169.015606][    C0] vcan0: j1939_tp_rxtimer: 0xffff88803300a000: rx timeout, send abort
[  169.059995][ T8850] FAULT_INJECTION: forcing a failure.
[  169.059995][ T8850] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  169.124505][ T8850] CPU: 1 UID: 0 PID: 8850 Comm: syz.1.902 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  169.124537][ T8850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  169.124549][ T8850] Call Trace:
[  169.124564][ T8850]  <TASK>
[  169.124573][ T8850]  dump_stack_lvl+0x189/0x250
[  169.124614][ T8850]  ? __pfx_dump_stack_lvl+0x10/0x10
[  169.124641][ T8850]  ? __pfx__printk+0x10/0x10
[  169.124663][ T8850]  ? fs_reclaim_acquire+0x7d/0x100
[  169.124702][ T8850]  should_fail_ex+0x414/0x560
[  169.124727][ T8850]  prepare_alloc_pages+0x213/0x610
[  169.124766][ T8850]  __alloc_frozen_pages_noprof+0x123/0x370
[  169.124803][ T8850]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  169.124833][ T8850]  ? __lock_acquire+0xaac/0xd20
[  169.124870][ T8850]  ? policy_nodemask+0x27c/0x720
[  169.124903][ T8850]  alloc_pages_mpol+0x232/0x4a0
[  169.124936][ T8850]  vma_alloc_folio_noprof+0xe4/0x200
[  169.124965][ T8850]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  169.125006][ T8850]  folio_prealloc+0x30/0x180
[  169.125036][ T8850]  do_wp_page+0x123a/0x5760
[  169.125083][ T8850]  ? __pfx_do_wp_page+0x10/0x10
[  169.125103][ T8850]  ? do_raw_spin_lock+0x121/0x290
[  169.125129][ T8850]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  169.125164][ T8850]  __handle_mm_fault+0x1028/0x5380
[  169.125189][ T8850]  ? mt_find+0x15c/0x5f0
[  169.125227][ T8850]  ? __pfx___handle_mm_fault+0x10/0x10
[  169.125270][ T8850]  ? find_vma+0xe7/0x160
[  169.125294][ T8850]  ? __pfx_find_vma+0x10/0x10
[  169.125317][ T8850]  ? __up_read+0x280/0x680
[  169.125341][ T8850]  handle_mm_fault+0x3f6/0x8c0
[  169.125376][ T8850]  do_user_addr_fault+0x764/0x1390
[  169.125413][ T8850]  exc_page_fault+0x68/0x110
[  169.125446][ T8850]  asm_exc_page_fault+0x26/0x30
[  169.125464][ T8850] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  169.125490][ T8850] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  169.125507][ T8850] RSP: 0018:ffffc90003fefac8 EFLAGS: 00050206
[  169.125526][ T8850] RAX: ffffffff84b89201 RBX: 00000000000009fd RCX: 00000000000000e6
[  169.125539][ T8850] RDX: 0000000000000000 RSI: ffff888058fd8917 RDI: 0000200000013000
[  169.125553][ T8850] RBP: ffffc90003fefd00 R08: ffff888058fd89fc R09: 1ffff1100b1fb13f
[  169.125580][ T8850] R10: dffffc0000000000 R11: ffffed100b1fb140 R12: 00002000000130e6
[  169.125594][ T8850] R13: 00007ffffffff000 R14: ffff888058fd8000 R15: 00002000000126e9
[  169.125617][ T8850]  ? _copy_from_user+0x61/0xb0
[  169.125653][ T8850]  _copy_to_user+0x8a/0xb0
[  169.125683][ T8850]  __htab_map_lookup_and_delete_batch+0x103e/0x13a0
[  169.125748][ T8850]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  169.125783][ T8850]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  169.125807][ T8850]  bpf_map_do_batch+0x412/0x5f0
[  169.125840][ T8850]  __sys_bpf+0x666/0x860
[  169.125868][ T8850]  ? __pfx___sys_bpf+0x10/0x10
[  169.125908][ T8850]  ? ksys_write+0x1f0/0x250
[  169.125944][ T8850]  __x64_sys_bpf+0x7c/0x90
[  169.125969][ T8850]  do_syscall_64+0xf6/0x210
[  169.125990][ T8850]  ? clear_bhb_loop+0x45/0xa0
[  169.126014][ T8850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.126033][ T8850] RIP: 0033:0x7fe70f18e969
[  169.126051][ T8850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.126067][ T8850] RSP: 002b:00007fe70ff50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  169.126098][ T8850] RAX: ffffffffffffffda RBX: 00007fe70f3b6080 RCX: 00007fe70f18e969
[  169.126112][ T8850] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  169.126125][ T8850] RBP: 00007fe70ff50090 R08: 0000000000000000 R09: 0000000000000000
[  169.126136][ T8850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  169.126148][ T8850] R13: 0000000000000001 R14: 00007fe70f3b6080 R15: 00007fff7d0ff778
[  169.126178][ T8850]  </TASK>
[  169.523929][    C0] vcan0: j1939_tp_rxtimer: 0xffff88803300a000: abort rx timeout. Force session deactivation
[  169.596174][ T8856] ªªªªªª speed is unknown, defaulting to 1000
[  169.768248][ T8867] xt_socket: unknown flags 0x8
[  169.794606][ T5882] IPVS: starting estimator thread 0...
[  169.804575][ T8867] netlink: 56 bytes leftover after parsing attributes in process `syz.3.909'.
[  169.828660][ T8867] IPVS: length: 135 != 24
[  169.889657][ T8877] netlink: 4 bytes leftover after parsing attributes in process `syz.3.909'.
[  169.904070][ T8872] IPVS: using max 29 ests per chain, 69600 per kthread
[  169.985746][ T8879] netlink: 28 bytes leftover after parsing attributes in process `syz.0.910'.
[  170.025329][ T8879] netlink: 28 bytes leftover after parsing attributes in process `syz.0.910'.
[  170.275483][ T8884] ªªªªªª speed is unknown, defaulting to 1000
[  170.280351][ T8888] netlink: 24 bytes leftover after parsing attributes in process `syz.0.914'.
[  170.291220][ T8883] netlink: 132 bytes leftover after parsing attributes in process `syz.3.912'.
[  170.358598][ T8883] ªªªªªª: renamed from lo (while UP)
[  170.404970][ T8891] netlink: 8 bytes leftover after parsing attributes in process `syz.4.915'.
[  170.458133][ T8893] netlink: 12 bytes leftover after parsing attributes in process `syz.0.916'.
[  170.856622][ T8903] pimreg3: entered allmulticast mode
[  171.036694][ T8915] xt_socket: unknown flags 0x8
[  171.090576][ T8915] IPVS: length: 135 != 24
[  171.322370][ T8924] ªªªªªª speed is unknown, defaulting to 1000
[  171.337535][ T8931] bridge0: port 1(erspan0) entered blocking state
[  171.349866][ T8931] bridge0: port 1(erspan0) entered disabled state
[  171.357314][ T8931] erspan0: entered allmulticast mode
[  171.364552][ T8931] erspan0: entered promiscuous mode
[  171.373264][ T8927] ªªªªªª: renamed from lo (while UP)
[  171.400824][ T8936] xt_socket: unknown flags 0x8
[  171.437182][ T8936] IPVS: length: 135 != 24
[  171.454444][ T8932] erspan0: left allmulticast mode
[  171.460998][ T8932] erspan0: left promiscuous mode
[  171.482127][ T8932] bridge0: port 1(erspan0) entered disabled state
[  171.862738][ T8953] 0·: renamed from hsr_slave_1 (while UP)
[  171.929467][ T8953] 0·: entered allmulticast mode
[  171.949068][ T8953] A link change request failed with some changes committed already. Interface 
c0· may have been left with an inconsistent configuration, please check.
[  172.267934][ T8958] pimreg3: entered allmulticast mode
[  172.315372][ T8971] netlink: 'syz.1.938': attribute type 5 has an invalid length.
[  172.388034][ T8973] xt_socket: unknown flags 0x8
[  172.411092][ T8973] IPVS: length: 135 != 24
[  172.418868][ T8971] ªªªªªª speed is unknown, defaulting to 1000
[  172.488464][ T8982] FAULT_INJECTION: forcing a failure.
[  172.488464][ T8982] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.557368][ T8982] CPU: 1 UID: 0 PID: 8982 Comm: syz.2.941 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  172.557401][ T8982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  172.557414][ T8982] Call Trace:
[  172.557423][ T8982]  <TASK>
[  172.557431][ T8982]  dump_stack_lvl+0x189/0x250
[  172.557470][ T8982]  ? __pfx_dump_stack_lvl+0x10/0x10
[  172.557499][ T8982]  ? __pfx__printk+0x10/0x10
[  172.557522][ T8982]  ? lockdep_hardirqs_on+0x9c/0x150
[  172.557561][ T8982]  should_fail_ex+0x414/0x560
[  172.557586][ T8982]  _copy_to_user+0x31/0xb0
[  172.557617][ T8982]  __htab_map_lookup_and_delete_batch+0x103e/0x13a0
[  172.557681][ T8982]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  172.557716][ T8982]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  172.557739][ T8982]  bpf_map_do_batch+0x412/0x5f0
[  172.557772][ T8982]  __sys_bpf+0x666/0x860
[  172.557799][ T8982]  ? __pfx___sys_bpf+0x10/0x10
[  172.557838][ T8982]  ? ksys_write+0x1f0/0x250
[  172.557873][ T8982]  __x64_sys_bpf+0x7c/0x90
[  172.557896][ T8982]  do_syscall_64+0xf6/0x210
[  172.557917][ T8982]  ? clear_bhb_loop+0x45/0xa0
[  172.557941][ T8982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.557962][ T8982] RIP: 0033:0x7fe39fb8e969
[  172.557979][ T8982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.557996][ T8982] RSP: 002b:00007fe3a0a16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  172.558018][ T8982] RAX: ffffffffffffffda RBX: 00007fe39fdb6080 RCX: 00007fe39fb8e969
[  172.558032][ T8982] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  172.558045][ T8982] RBP: 00007fe3a0a16090 R08: 0000000000000000 R09: 0000000000000000
[  172.558057][ T8982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  172.558069][ T8982] R13: 0000000000000001 R14: 00007fe39fdb6080 R15: 00007fff5dd18da8
[  172.558100][ T8982]  </TASK>
[  172.856760][ T8987] netlink: 'syz.4.943': attribute type 7 has an invalid length.
[  172.875257][ T8991] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input7
[  172.900932][ T8987] netlink: 'syz.4.943': attribute type 8 has an invalid length.
[  172.956478][ T8996] xt_socket: unknown flags 0x8
[  172.981081][ T8990] IPVS: length: 135 != 24
[  173.224508][ T8987] bridge_slave_1: left allmulticast mode
[  173.230347][ T8987] bridge_slave_1: left promiscuous mode
[  173.241963][ T8987] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.258699][ T8987] bridge_slave_0: left allmulticast mode
[  173.265375][ T8987] bridge_slave_0: left promiscuous mode
[  173.271388][ T8987] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.012745][ T9039] xt_socket: unknown flags 0x8
[  174.020679][ T9039] __nla_validate_parse: 25 callbacks suppressed
[  174.020703][ T9039] netlink: 56 bytes leftover after parsing attributes in process `syz.3.958'.
[  174.038095][ T9039] IPVS: length: 135 != 24
[  174.099682][ T9045] netlink: 4 bytes leftover after parsing attributes in process `syz.3.958'.
[  174.218728][ T9052] netlink: 24 bytes leftover after parsing attributes in process `syz.2.962'.
[  174.252334][ T9058] netlink: 'syz.4.961': attribute type 5 has an invalid length.
[  174.394498][ T9062] netlink: 'syz.2.963': attribute type 1 has an invalid length.
[  174.440456][ T9062] 8021q: adding VLAN 0 to HW filter on device bond1
[  174.484104][ T9062] bond1: (slave veth0_to_bond): Enslaving as an active interface with a down link
[  174.525962][ T9053] ªªªªªª speed is unknown, defaulting to 1000
[  174.541910][ T9062] vlan2: entered allmulticast mode
[  174.547107][ T9062] veth1: entered allmulticast mode
[  174.661587][ T9073] netlink: 8 bytes leftover after parsing attributes in process `syz.0.967'.
[  174.661811][ T9072] IPVS: set_ctl: invalid protocol: 0 172.30.1.4:17952
[  174.755735][ T9077] ªªªªªª speed is unknown, defaulting to 1000
[  174.934870][ T9080] ªªªªªª speed is unknown, defaulting to 1000
[  175.127713][ T9089] netlink: 24 bytes leftover after parsing attributes in process `syz.3.972'.
[  175.148580][ T9089] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  175.169949][ T9095] xt_socket: unknown flags 0x8
[  175.210632][ T9089] netlink: 'syz.3.972': attribute type 4 has an invalid length.
[  175.231148][ T9092] netlink: 56 bytes leftover after parsing attributes in process `syz.4.974'.
[  175.243230][ T9089] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  175.259954][ T9092] IPVS: length: 135 != 24
[  175.355665][ T9095] netlink: 4 bytes leftover after parsing attributes in process `syz.4.974'.
[  175.387247][ T9101] netlink: 28 bytes leftover after parsing attributes in process `syz.0.975'.
[  175.399295][ T9101] netlink: 28 bytes leftover after parsing attributes in process `syz.0.975'.
[  175.712999][ T9110] netlink: 28 bytes leftover after parsing attributes in process `syz.0.988'.
[  176.255237][ T9135] xt_socket: unknown flags 0x8
[  176.276906][ T9135] IPVS: length: 135 != 24
[  176.483992][ T9146] veth1_to_bond: entered allmulticast mode
[  176.498445][ T9146] veth1_to_bond: entered promiscuous mode
[  176.505101][ T9146] veth1_to_bond: left promiscuous mode
[  176.514798][ T9146] veth1_to_bond: left allmulticast mode
[  176.601164][ T9154] ªªªªªª speed is unknown, defaulting to 1000
[  176.664068][ T9160] netlink: 'syz.2.993': attribute type 5 has an invalid length.
[  176.672194][ T9161] netlink: 'syz.2.993': attribute type 5 has an invalid length.
[  176.694391][    C0] vcan0: j1939_tp_rxtimer: 0xffff888024008400: rx timeout, send abort
[  176.870528][ T9166] ªªªªªª speed is unknown, defaulting to 1000
[  177.185660][ T9179] x_tables: ip_tables: osf match: only valid for protocol 6
[  177.194220][ T9185] xt_socket: unknown flags 0x8
[  177.202891][    C0] vcan0: j1939_tp_rxtimer: 0xffff888024008400: abort rx timeout. Force session deactivation
[  177.221918][ T9185] IPVS: length: 135 != 24
[  177.335735][ T9191] netlink: 'syz.3.1006': attribute type 1 has an invalid length.
[  177.452608][ T9199] netlink: 'syz.1.1009': attribute type 18 has an invalid length.
[  177.464534][ T9197] netlink: 'syz.1.1009': attribute type 18 has an invalid length.
[  177.826055][ T9210] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  177.952967][ T9225] xt_socket: unknown flags 0x8
[  177.961912][ T9225] IPVS: length: 135 != 24
[  178.181053][ T9231] ªªªªªª speed is unknown, defaulting to 1000
[  178.342617][ T9221] infiniband syz1: set active
[  178.349141][ T9221] infiniband syz1: added macvlan1
[  178.457977][ T9221] RDS/IB: syz1: added
[  178.474176][ T9221] smc: adding ib device syz1 with port count 1
[  178.489619][ T9221] smc:    ib device syz1 port 1 has pnetid 
[  179.027692][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805fb04c00: rx timeout, send abort
[  179.216053][ T9265] FAULT_INJECTION: forcing a failure.
[  179.216053][ T9265] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.271656][ T9265] CPU: 0 UID: 0 PID: 9265 Comm: syz.1.1030 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  179.271687][ T9265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  179.271700][ T9265] Call Trace:
[  179.271708][ T9265]  <TASK>
[  179.271716][ T9265]  dump_stack_lvl+0x189/0x250
[  179.271753][ T9265]  ? __pfx_dump_stack_lvl+0x10/0x10
[  179.271789][ T9265]  ? __pfx__printk+0x10/0x10
[  179.271812][ T9265]  ? lockdep_hardirqs_on+0x9c/0x150
[  179.271851][ T9265]  should_fail_ex+0x414/0x560
[  179.271877][ T9265]  _copy_to_user+0x31/0xb0
[  179.271908][ T9265]  __htab_map_lookup_and_delete_batch+0xfe5/0x13a0
[  179.271970][ T9265]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  179.272006][ T9265]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  179.272030][ T9265]  bpf_map_do_batch+0x412/0x5f0
[  179.272064][ T9265]  __sys_bpf+0x666/0x860
[  179.272091][ T9265]  ? __pfx___sys_bpf+0x10/0x10
[  179.272129][ T9265]  ? ksys_write+0x1f0/0x250
[  179.272150][ T9265]  ? rcu_is_watching+0x15/0xb0
[  179.272191][ T9265]  __x64_sys_bpf+0x7c/0x90
[  179.272214][ T9265]  do_syscall_64+0xf6/0x210
[  179.272235][ T9265]  ? clear_bhb_loop+0x45/0xa0
[  179.272259][ T9265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.272278][ T9265] RIP: 0033:0x7fe70f18e969
[  179.272295][ T9265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.272313][ T9265] RSP: 002b:00007fe70ff71038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  179.272353][ T9265] RAX: ffffffffffffffda RBX: 00007fe70f3b5fa0 RCX: 00007fe70f18e969
[  179.272367][ T9265] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  179.272380][ T9265] RBP: 00007fe70ff71090 R08: 0000000000000000 R09: 0000000000000000
[  179.272392][ T9265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  179.272404][ T9265] R13: 0000000000000000 R14: 00007fe70f3b5fa0 R15: 00007fff7d0ff778
[  179.272435][ T9265]  </TASK>
[  179.536033][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805fb04c00: abort rx timeout. Force session deactivation
[  179.595254][ T9270] __nla_validate_parse: 24 callbacks suppressed
[  179.595277][ T9270] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1032'.
[  179.859719][ T9286] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1037'.
[  179.885192][ T9286] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1037'.
[  179.918784][ T9285] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1036'.
[  180.012475][ T9291] xt_socket: unknown flags 0x8
[  180.039447][ T9291] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1038'.
[  180.086787][ T9291] IPVS: length: 135 != 24
[  180.164508][ T9294] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1038'.
[  180.299119][ T9299] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1040'.
[  180.318634][ T9299] netlink: 'syz.1.1040': attribute type 7 has an invalid length.
[  180.322355][ T9298] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1039'.
[  180.334423][ T9299] netlink: 'syz.1.1040': attribute type 8 has an invalid length.
[  180.344509][ T9298] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1039'.
[  180.345664][ T9299] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1040'.
[  181.213293][ T9326] FAULT_INJECTION: forcing a failure.
[  181.213293][ T9326] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  181.233033][ T9326] CPU: 0 UID: 0 PID: 9326 Comm: syz.2.1048 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  181.233061][ T9326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  181.233074][ T9326] Call Trace:
[  181.233081][ T9326]  <TASK>
[  181.233090][ T9326]  dump_stack_lvl+0x189/0x250
[  181.233127][ T9326]  ? __pfx_dump_stack_lvl+0x10/0x10
[  181.233155][ T9326]  ? __pfx__printk+0x10/0x10
[  181.233177][ T9326]  ? lockdep_hardirqs_on+0x9c/0x150
[  181.233215][ T9326]  should_fail_ex+0x414/0x560
[  181.233241][ T9326]  _copy_to_user+0x31/0xb0
[  181.233271][ T9326]  __htab_map_lookup_and_delete_batch+0xfe5/0x13a0
[  181.233334][ T9326]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  181.233369][ T9326]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  181.233392][ T9326]  bpf_map_do_batch+0x412/0x5f0
[  181.233425][ T9326]  __sys_bpf+0x666/0x860
[  181.233453][ T9326]  ? __pfx___sys_bpf+0x10/0x10
[  181.233491][ T9326]  ? ksys_write+0x1f0/0x250
[  181.233527][ T9326]  __x64_sys_bpf+0x7c/0x90
[  181.233564][ T9326]  do_syscall_64+0xf6/0x210
[  181.233586][ T9326]  ? clear_bhb_loop+0x45/0xa0
[  181.233610][ T9326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.233629][ T9326] RIP: 0033:0x7fe39fb8e969
[  181.233647][ T9326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.233664][ T9326] RSP: 002b:00007fe3a0a37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  181.233685][ T9326] RAX: ffffffffffffffda RBX: 00007fe39fdb5fa0 RCX: 00007fe39fb8e969
[  181.233700][ T9326] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  181.233713][ T9326] RBP: 00007fe3a0a37090 R08: 0000000000000000 R09: 0000000000000000
[  181.233725][ T9326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  181.233736][ T9326] R13: 0000000000000000 R14: 00007fe39fdb5fa0 R15: 00007fff5dd18da8
[  181.233765][ T9326]  </TASK>
[  181.522113][ T9329] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  181.550926][    T9] IPVS: starting estimator thread 0...
[  181.653009][ T9333] IPVS: using max 29 ests per chain, 69600 per kthread
[  181.689634][ T9337] xt_socket: unknown flags 0x8
[  181.723988][ T9337] IPVS: length: 135 != 24
[  181.979963][ T9343] ªªªªªª speed is unknown, defaulting to 1000
[  182.942698][ T9385] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  182.967269][ T9391] FAULT_INJECTION: forcing a failure.
[  182.967269][ T9391] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  182.971454][ T9392] xt_socket: unknown flags 0x8
[  183.030064][ T9392] IPVS: length: 135 != 24
[  183.101694][ T9391] CPU: 0 UID: 0 PID: 9391 Comm: syz.4.1063 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  183.101725][ T9391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  183.101738][ T9391] Call Trace:
[  183.101746][ T9391]  <TASK>
[  183.101755][ T9391]  dump_stack_lvl+0x189/0x250
[  183.101792][ T9391]  ? __pfx_dump_stack_lvl+0x10/0x10
[  183.101821][ T9391]  ? __pfx__printk+0x10/0x10
[  183.101844][ T9391]  ? lockdep_hardirqs_on+0x9c/0x150
[  183.101883][ T9391]  should_fail_ex+0x414/0x560
[  183.101908][ T9391]  _copy_to_user+0x31/0xb0
[  183.101944][ T9391]  __htab_map_lookup_and_delete_batch+0xfe5/0x13a0
[  183.102007][ T9391]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  183.102041][ T9391]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  183.102064][ T9391]  bpf_map_do_batch+0x412/0x5f0
[  183.102096][ T9391]  __sys_bpf+0x666/0x860
[  183.102123][ T9391]  ? __pfx___sys_bpf+0x10/0x10
[  183.102161][ T9391]  ? ksys_write+0x1f0/0x250
[  183.102196][ T9391]  __x64_sys_bpf+0x7c/0x90
[  183.102220][ T9391]  do_syscall_64+0xf6/0x210
[  183.102241][ T9391]  ? clear_bhb_loop+0x45/0xa0
[  183.102266][ T9391]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.102285][ T9391] RIP: 0033:0x7f2c22d8e969
[  183.102303][ T9391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.102320][ T9391] RSP: 002b:00007f2c23b1c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  183.102341][ T9391] RAX: ffffffffffffffda RBX: 00007f2c22fb6080 RCX: 00007f2c22d8e969
[  183.102356][ T9391] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  183.102368][ T9391] RBP: 00007f2c23b1c090 R08: 0000000000000000 R09: 0000000000000000
[  183.102381][ T9391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  183.102401][ T9391] R13: 0000000000000001 R14: 00007f2c22fb6080 R15: 00007ffcbba90198
[  183.102431][ T9391]  </TASK>
[  183.445820][ T9399] ªªªªªª speed is unknown, defaulting to 1000
[  183.752695][ T9410] nbd: socks must be embedded in a SOCK_ITEM attr
[  183.790723][ T9410] block nbd1: shutting down sockets
[  183.905556][ T9408] (unnamed net_device) (uninitialized): up delay (1024) is not a multiple of miimon (100), value rounded to 1000 ms
[  183.927530][ T9408] (unnamed net_device) (uninitialized): down delay (4) is not a multiple of miimon (100), value rounded to 0 ms
[  184.535115][ T9436] xt_socket: unknown flags 0x8
[  184.574426][ T9436] IPVS: length: 135 != 24
[  184.625976][ T9431] ªªªªªª speed is unknown, defaulting to 1000
[  184.644209][ T9438] __nla_validate_parse: 16 callbacks suppressed
[  184.644230][ T9438] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1077'.
[  184.865071][ T9441] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1078'.
[  184.895101][ T9441] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1078'.
[  185.027000][ T9443] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1079'.
[  185.250051][ T9455] IPVS: sync thread started: state = BACKUP, mcast_ifn = vlan0, syncid = 1, id = 0
[  185.250669][ T9452] IPVS: stopping backup sync thread 9455 ...
[  185.591372][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805d0b7c00: rx timeout, send abort
[  185.693900][ T9473] xt_socket: unknown flags 0x8
[  185.704023][ T9473] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1089'.
[  185.714922][ T9473] IPVS: length: 135 != 24
[  185.778584][ T9476] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1089'.
[  185.929291][ T9478] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1090'.
[  185.939327][ T9478] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1090'.
[  186.099752][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805d0b7c00: abort rx timeout. Force session deactivation
[  186.303102][ T9492] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1095'.
[  186.401111][ T9496] xt_TCPMSS: Only works on TCP SYN packets
[  186.410634][ T5914] hid-generic 0005:10CF:0009.0001: unknown main item tag 0x0
[  186.434716][ T5914] hid-generic 0005:10CF:0009.0001: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  186.618120][ T9506] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1102'.
[  186.662708][ T9504] xt_socket: unknown flags 0x8
[  186.703966][ T9515] FAULT_INJECTION: forcing a failure.
[  186.703966][ T9515] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  186.736004][ T9504] IPVS: length: 135 != 24
[  186.759337][ T9512] syzkaller0: entered promiscuous mode
[  186.765417][ T9515] CPU: 0 UID: 0 PID: 9515 Comm: syz.0.1101 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  186.765446][ T9515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  186.765459][ T9515] Call Trace:
[  186.765466][ T9515]  <TASK>
[  186.765474][ T9515]  dump_stack_lvl+0x189/0x250
[  186.765511][ T9515]  ? __pfx_dump_stack_lvl+0x10/0x10
[  186.765540][ T9515]  ? __pfx__printk+0x10/0x10
[  186.765563][ T9515]  ? fs_reclaim_acquire+0x7d/0x100
[  186.765603][ T9515]  should_fail_ex+0x414/0x560
[  186.765629][ T9515]  prepare_alloc_pages+0x213/0x610
[  186.765668][ T9515]  __alloc_frozen_pages_noprof+0x123/0x370
[  186.765704][ T9515]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  186.765743][ T9515]  ? __lock_acquire+0xaac/0xd20
[  186.765781][ T9515]  ? policy_nodemask+0x27c/0x720
[  186.765814][ T9515]  alloc_pages_mpol+0x232/0x4a0
[  186.765846][ T9515]  vma_alloc_folio_noprof+0xe4/0x200
[  186.765877][ T9515]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  186.765917][ T9515]  folio_prealloc+0x30/0x180
[  186.765946][ T9515]  do_wp_page+0x123a/0x5760
[  186.765992][ T9515]  ? __pfx_do_wp_page+0x10/0x10
[  186.766013][ T9515]  ? do_raw_spin_lock+0x121/0x290
[  186.766039][ T9515]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  186.766074][ T9515]  __handle_mm_fault+0x1028/0x5380
[  186.766098][ T9515]  ? mt_find+0x15c/0x5f0
[  186.766136][ T9515]  ? __pfx___handle_mm_fault+0x10/0x10
[  186.766180][ T9515]  ? find_vma+0xe7/0x160
[  186.766204][ T9515]  ? __pfx_find_vma+0x10/0x10
[  186.766226][ T9515]  ? __up_read+0x280/0x680
[  186.766251][ T9515]  handle_mm_fault+0x3f6/0x8c0
[  186.766287][ T9515]  do_user_addr_fault+0x764/0x1390
[  186.766325][ T9515]  exc_page_fault+0x68/0x110
[  186.766360][ T9515]  asm_exc_page_fault+0x26/0x30
[  186.766379][ T9515] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  186.766406][ T9515] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  186.766423][ T9515] RSP: 0018:ffffc9001bf1fac8 EFLAGS: 00050202
[  186.766446][ T9515] RAX: ffffffff84b89201 RBX: 00000000000013fa RCX: 00000000000012d7
[  186.766459][ T9515] RDX: 0000000000000000 RSI: ffff888054460123 RDI: 0000200000015000
[  186.766473][ T9515] RBP: ffffc9001bf1fd00 R08: ffff8880544613f9 R09: 1ffff1100a88c27f
[  186.766486][ T9515] R10: dffffc0000000000 R11: ffffed100a88c280 R12: 00002000000162d7
[  186.766500][ T9515] R13: 00007ffffffff000 R14: ffff888054460000 R15: 0000200000014edd
[  186.766524][ T9515]  ? _copy_from_user+0x61/0xb0
[  186.766561][ T9515]  _copy_to_user+0x8a/0xb0
[  186.766591][ T9515]  __htab_map_lookup_and_delete_batch+0x103e/0x13a0
[  186.766658][ T9515]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  186.766693][ T9515]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  186.766717][ T9515]  bpf_map_do_batch+0x412/0x5f0
[  186.766756][ T9515]  __sys_bpf+0x666/0x860
[  186.766784][ T9515]  ? __pfx___sys_bpf+0x10/0x10
[  186.766823][ T9515]  ? ksys_write+0x1f0/0x250
[  186.766860][ T9515]  __x64_sys_bpf+0x7c/0x90
[  186.766883][ T9515]  do_syscall_64+0xf6/0x210
[  186.766904][ T9515]  ? clear_bhb_loop+0x45/0xa0
[  186.766928][ T9515]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.766947][ T9515] RIP: 0033:0x7f15c658e969
[  186.766963][ T9515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.766979][ T9515] RSP: 002b:00007f15c7395038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  186.766998][ T9515] RAX: ffffffffffffffda RBX: 00007f15c67b6080 RCX: 00007f15c658e969
[  186.767011][ T9515] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  186.767023][ T9515] RBP: 00007f15c7395090 R08: 0000000000000000 R09: 0000000000000000
[  186.767036][ T9515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  186.767047][ T9515] R13: 0000000000000001 R14: 00007f15c67b6080 R15: 00007ffc5db94b18
[  186.767079][ T9515]  </TASK>
[  187.162273][ T9512] syzkaller0: entered allmulticast mode
[  187.945114][ T9554] xt_socket: unknown flags 0x8
[  187.968468][ T9554] IPVS: length: 135 != 24
[  188.973011][ T9550] 8021q: VLANs not supported on nlmon0
[  189.197798][ T9570] FAULT_INJECTION: forcing a failure.
[  189.197798][ T9570] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  189.246137][ T9570] CPU: 1 UID: 0 PID: 9570 Comm: syz.3.1117 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  189.246173][ T9570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  189.246186][ T9570] Call Trace:
[  189.246193][ T9570]  <TASK>
[  189.246201][ T9570]  dump_stack_lvl+0x189/0x250
[  189.246235][ T9570]  ? lockdep_hardirqs_on+0x9c/0x150
[  189.246267][ T9570]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.246302][ T9570]  ? dump_stack+0x9/0x20
[  189.246336][ T9570]  should_fail_ex+0x414/0x560
[  189.246361][ T9570]  prepare_alloc_pages+0x213/0x610
[  189.246401][ T9570]  __alloc_frozen_pages_noprof+0x123/0x370
[  189.246445][ T9570]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  189.246474][ T9570]  ? __lock_acquire+0xaac/0xd20
[  189.246510][ T9570]  ? policy_nodemask+0x27c/0x720
[  189.246541][ T9570]  alloc_pages_mpol+0x232/0x4a0
[  189.246573][ T9570]  vma_alloc_folio_noprof+0xe4/0x200
[  189.246602][ T9570]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  189.246641][ T9570]  folio_prealloc+0x30/0x180
[  189.246674][ T9570]  do_wp_page+0x123a/0x5760
[  189.246719][ T9570]  ? __pfx_do_wp_page+0x10/0x10
[  189.246739][ T9570]  ? do_raw_spin_lock+0x121/0x290
[  189.246764][ T9570]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  189.246798][ T9570]  __handle_mm_fault+0x1028/0x5380
[  189.246822][ T9570]  ? mt_find+0x15c/0x5f0
[  189.246858][ T9570]  ? __pfx___handle_mm_fault+0x10/0x10
[  189.246900][ T9570]  ? find_vma+0xe7/0x160
[  189.246924][ T9570]  ? __pfx_find_vma+0x10/0x10
[  189.246946][ T9570]  ? __up_read+0x280/0x680
[  189.246969][ T9570]  handle_mm_fault+0x3f6/0x8c0
[  189.247004][ T9570]  do_user_addr_fault+0x764/0x1390
[  189.247041][ T9570]  exc_page_fault+0x68/0x110
[  189.247094][ T9570]  asm_exc_page_fault+0x26/0x30
[  189.247113][ T9570] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  189.247140][ T9570] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  189.247158][ T9570] RSP: 0018:ffffc9001b79fac8 EFLAGS: 00050206
[  189.247184][ T9570] RAX: ffffffff84b89201 RBX: 00000000000009fd RCX: 00000000000002d7
[  189.247198][ T9570] RDX: 0000000000000000 RSI: ffff88805f064726 RDI: 0000200000016000
[  189.247212][ T9570] RBP: ffffc9001b79fd00 R08: ffff88805f0649fc R09: 1ffff1100be0c93f
[  189.247227][ T9570] R10: dffffc0000000000 R11: ffffed100be0c940 R12: 00002000000162d7
[  189.247241][ T9570] R13: 00007ffffffff000 R14: ffff88805f064000 R15: 00002000000158da
[  189.247265][ T9570]  ? _copy_from_user+0x61/0xb0
[  189.247303][ T9570]  _copy_to_user+0x8a/0xb0
[  189.247334][ T9570]  __htab_map_lookup_and_delete_batch+0x103e/0x13a0
[  189.247401][ T9570]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  189.247447][ T9570]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  189.247471][ T9570]  bpf_map_do_batch+0x412/0x5f0
[  189.247505][ T9570]  __sys_bpf+0x666/0x860
[  189.247532][ T9570]  ? __pfx___sys_bpf+0x10/0x10
[  189.247570][ T9570]  ? ksys_write+0x1f0/0x250
[  189.247607][ T9570]  __x64_sys_bpf+0x7c/0x90
[  189.247630][ T9570]  do_syscall_64+0xf6/0x210
[  189.247652][ T9570]  ? clear_bhb_loop+0x45/0xa0
[  189.247677][ T9570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.247696][ T9570] RIP: 0033:0x7fb6ddb8e969
[  189.247713][ T9570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.247730][ T9570] RSP: 002b:00007fb6de9f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  189.247750][ T9570] RAX: ffffffffffffffda RBX: 00007fb6dddb6080 RCX: 00007fb6ddb8e969
[  189.247764][ T9570] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  189.247776][ T9570] RBP: 00007fb6de9f3090 R08: 0000000000000000 R09: 0000000000000000
[  189.247788][ T9570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  189.247799][ T9570] R13: 0000000000000001 R14: 00007fb6dddb6080 R15: 00007fffe8db7b88
[  189.247831][ T9570]  </TASK>
[  190.059432][ T9585] __nla_validate_parse: 6 callbacks suppressed
[  190.059455][ T9585] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1125'.
[  190.256866][ T5901] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  190.290546][ T5901] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.397871][ T5901] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  190.409162][ T5901] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.490787][ T9592] xt_socket: unknown flags 0x8
[  190.528332][ T5901] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  190.555243][ T5901] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.596780][ T9592] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1128'.
[  190.617453][ T9592] IPVS: length: 135 != 24
[  190.680703][ T9597] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1128'.
[  190.823170][ T9604] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1132'.
[  190.907452][ T9604] gtp0: entered promiscuous mode
[  190.955563][ T9604] gtp0: entered allmulticast mode
[  190.955809][ T9607] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1134'.
[  191.084714][ T9610] nbd: couldn't find a device at index 135
[  191.098656][ T5846] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  191.109130][ T5846] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  191.111370][    C0] vcan0: j1939_tp_rxtimer: 0xffff888058c43c00: rx timeout, send abort
[  191.130023][ T5846] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  191.138913][ T5846] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  191.151140][ T5846] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  191.236367][ T5901] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  191.387235][ T9627] netlink: 'syz.0.1137': attribute type 4 has an invalid length.
[  191.495406][ T5901] batman_adv: batadv0: Removing interface: ip6gretap1
[  191.624430][    C0] vcan0: j1939_tp_rxtimer: 0xffff888058c43c00: abort rx timeout. Force session deactivation
[  191.784895][ T9628] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1139'.
[  191.831364][ T5901] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  191.851173][ T5901] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  191.865962][ T5901] bond0 (unregistering): Released all slaves
[  191.898513][ T9636] FAULT_INJECTION: forcing a failure.
[  191.898513][ T9636] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  191.919596][ T9636] CPU: 0 UID: 0 PID: 9636 Comm: syz.3.1141 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  191.919625][ T9636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  191.919636][ T9636] Call Trace:
[  191.919644][ T9636]  <TASK>
[  191.919652][ T9636]  dump_stack_lvl+0x189/0x250
[  191.919682][ T9636]  ? __lock_acquire+0xaac/0xd20
[  191.919711][ T9636]  ? __pfx_dump_stack_lvl+0x10/0x10
[  191.919736][ T9636]  ? __pfx__printk+0x10/0x10
[  191.919754][ T9636]  ? __might_fault+0xb0/0x130
[  191.919787][ T9636]  should_fail_ex+0x414/0x560
[  191.919810][ T9636]  _copy_from_user+0x2d/0xb0
[  191.919835][ T9636]  ___sys_sendmsg+0x158/0x2a0
[  191.919864][ T9636]  ? __pfx____sys_sendmsg+0x10/0x10
[  191.919924][ T9636]  ? __fget_files+0x2a/0x420
[  191.919946][ T9636]  ? __fget_files+0x3a0/0x420
[  191.919979][ T9636]  __x64_sys_sendmsg+0x19b/0x260
[  191.920006][ T9636]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  191.920047][ T9636]  ? do_syscall_64+0xba/0x210
[  191.920068][ T9636]  do_syscall_64+0xf6/0x210
[  191.920086][ T9636]  ? clear_bhb_loop+0x45/0xa0
[  191.920108][ T9636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.920125][ T9636] RIP: 0033:0x7fb6ddb8e969
[  191.920142][ T9636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.920157][ T9636] RSP: 002b:00007fb6de9f3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  191.920176][ T9636] RAX: ffffffffffffffda RBX: 00007fb6dddb6080 RCX: 00007fb6ddb8e969
[  191.920198][ T9636] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  191.920210][ T9636] RBP: 00007fb6de9f3090 R08: 0000000000000000 R09: 0000000000000000
[  191.920220][ T9636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.920230][ T9636] R13: 0000000000000001 R14: 00007fb6dddb6080 R15: 00007fffe8db7b88
[  191.920259][ T9636]  </TASK>
[  192.162123][ T5901] bond1 (unregistering): (slave veth0_to_bond): Releasing active interface
[  192.175612][ T5901] bond1 (unregistering): Released all slaves
[  192.198405][ T9612] ªªªªªª speed is unknown, defaulting to 1000
[  192.252339][ T9625] ªªªªªª speed is unknown, defaulting to 1000
[  192.274417][ T9620] ªªªªªª speed is unknown, defaulting to 1000
[  192.470416][ T9643] xt_socket: unknown flags 0x8
[  192.490972][ T9643] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1144'.
[  192.540565][ T9643] IPVS: length: 135 != 24
[  192.635979][ T9647] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1144'.
[  192.689942][ T9649] FAULT_INJECTION: forcing a failure.
[  192.689942][ T9649] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  192.718932][ T9649] CPU: 0 UID: 0 PID: 9649 Comm: syz.0.1145 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  192.718963][ T9649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  192.718975][ T9649] Call Trace:
[  192.718983][ T9649]  <TASK>
[  192.718992][ T9649]  dump_stack_lvl+0x189/0x250
[  192.719030][ T9649]  ? __pfx_dump_stack_lvl+0x10/0x10
[  192.719059][ T9649]  ? __pfx__printk+0x10/0x10
[  192.719081][ T9649]  ? fs_reclaim_acquire+0x7d/0x100
[  192.719122][ T9649]  should_fail_ex+0x414/0x560
[  192.719148][ T9649]  prepare_alloc_pages+0x213/0x610
[  192.719188][ T9649]  __alloc_frozen_pages_noprof+0x123/0x370
[  192.719224][ T9649]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  192.719265][ T9649]  ? policy_nodemask+0x27c/0x720
[  192.719291][ T9649]  ? bpf_trace_run1+0x181/0x4b0
[  192.719328][ T9649]  alloc_pages_mpol+0x232/0x4a0
[  192.719360][ T9649]  vma_alloc_folio_noprof+0xe4/0x200
[  192.719390][ T9649]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  192.719431][ T9649]  folio_prealloc+0x30/0x180
[  192.719460][ T9649]  do_wp_page+0x123a/0x5760
[  192.719509][ T9649]  ? __pfx_do_wp_page+0x10/0x10
[  192.719528][ T9649]  ? do_raw_spin_lock+0x121/0x290
[  192.719554][ T9649]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  192.719589][ T9649]  __handle_mm_fault+0x1028/0x5380
[  192.719613][ T9649]  ? mt_find+0x15c/0x5f0
[  192.719652][ T9649]  ? __pfx___handle_mm_fault+0x10/0x10
[  192.719695][ T9649]  ? find_vma+0xe7/0x160
[  192.719720][ T9649]  ? __pfx_find_vma+0x10/0x10
[  192.719750][ T9649]  handle_mm_fault+0x3f6/0x8c0
[  192.719785][ T9649]  do_user_addr_fault+0x764/0x1390
[  192.719825][ T9649]  exc_page_fault+0x68/0x110
[  192.719859][ T9649]  asm_exc_page_fault+0x26/0x30
[  192.719877][ T9649] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  192.719904][ T9649] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  192.719921][ T9649] RSP: 0018:ffffc9001be87ac8 EFLAGS: 00050206
[  192.719939][ T9649] RAX: ffffffff84b89201 RBX: 00000000000009fd RCX: 00000000000002d7
[  192.719953][ T9649] RDX: 0000000000000000 RSI: ffff88807b9f8726 RDI: 0000200000016000
[  192.719966][ T9649] RBP: ffffc9001be87d00 R08: ffff88807b9f89fc R09: 1ffff1100f73f13f
[  192.719981][ T9649] R10: dffffc0000000000 R11: ffffed100f73f140 R12: 00002000000162d7
[  192.719995][ T9649] R13: 00007ffffffff000 R14: ffff88807b9f8000 R15: 00002000000158da
[  192.720019][ T9649]  ? _copy_from_user+0x61/0xb0
[  192.720055][ T9649]  _copy_to_user+0x8a/0xb0
[  192.720086][ T9649]  __htab_map_lookup_and_delete_batch+0x103e/0x13a0
[  192.720154][ T9649]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  192.720190][ T9649]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  192.720213][ T9649]  bpf_map_do_batch+0x412/0x5f0
[  192.720248][ T9649]  __sys_bpf+0x666/0x860
[  192.720275][ T9649]  ? __pfx___sys_bpf+0x10/0x10
[  192.720315][ T9649]  ? ksys_write+0x1f0/0x250
[  192.720359][ T9649]  __x64_sys_bpf+0x7c/0x90
[  192.720382][ T9649]  do_syscall_64+0xf6/0x210
[  192.720403][ T9649]  ? clear_bhb_loop+0x45/0xa0
[  192.720428][ T9649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.720447][ T9649] RIP: 0033:0x7f15c658e969
[  192.720464][ T9649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.720480][ T9649] RSP: 002b:00007f15c7395038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  192.720499][ T9649] RAX: ffffffffffffffda RBX: 00007f15c67b6080 RCX: 00007f15c658e969
[  192.720513][ T9649] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  192.720526][ T9649] RBP: 00007f15c7395090 R08: 0000000000000000 R09: 0000000000000000
[  192.720538][ T9649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  192.720550][ T9649] R13: 0000000000000001 R14: 00007f15c67b6080 R15: 00007ffc5db94b18
[  192.720582][ T9649]  </TASK>
[  193.224690][   T55] Bluetooth: hci2: command tx timeout
[  193.558427][ T9612] chnl_net:caif_netlink_parms(): no params data found
[  193.785885][ T9612] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.802066][ T9612] bridge0: port 1(bridge_slave_0) entered disabled state
[  193.819726][ T9612] bridge_slave_0: entered allmulticast mode
[  193.837104][ T9612] bridge_slave_0: entered promiscuous mode
[  193.846523][ T9612] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.854499][ T9612] bridge0: port 2(bridge_slave_1) entered disabled state
[  193.862070][ T9612] bridge_slave_1: entered allmulticast mode
[  193.870263][ T9612] bridge_slave_1: entered promiscuous mode
[  194.084812][ T9612] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  194.169837][ T9612] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  194.251231][ T9679] FAULT_INJECTION: forcing a failure.
[  194.251231][ T9679] name failslab, interval 1, probability 0, space 0, times 0
[  194.267198][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  194.277859][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  194.291302][ T9679] CPU: 1 UID: 0 PID: 9679 Comm: syz.0.1154 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  194.291333][ T9679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  194.291345][ T9679] Call Trace:
[  194.291353][ T9679]  <TASK>
[  194.291362][ T9679]  dump_stack_lvl+0x189/0x250
[  194.291400][ T9679]  ? __pfx_dump_stack_lvl+0x10/0x10
[  194.291430][ T9679]  ? __pfx__printk+0x10/0x10
[  194.291455][ T9679]  ? __pfx___might_resched+0x10/0x10
[  194.291479][ T9679]  should_fail_ex+0x414/0x560
[  194.291505][ T9679]  should_failslab+0xa8/0x100
[  194.291536][ T9679]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  194.291561][ T9679]  ? __alloc_skb+0x112/0x2d0
[  194.291590][ T9679]  __alloc_skb+0x112/0x2d0
[  194.291620][ T9679]  netlink_sendmsg+0x5c6/0xb30
[  194.291658][ T9679]  ? __pfx_netlink_sendmsg+0x10/0x10
[  194.291687][ T9679]  ? aa_sock_msg_perm+0x94/0x160
[  194.291712][ T9679]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  194.291734][ T9679]  ? __pfx_netlink_sendmsg+0x10/0x10
[  194.291760][ T9679]  __sock_sendmsg+0x219/0x270
[  194.291784][ T9679]  ____sys_sendmsg+0x505/0x830
[  194.291817][ T9679]  ? __pfx_____sys_sendmsg+0x10/0x10
[  194.291855][ T9679]  ? import_iovec+0x74/0xa0
[  194.291887][ T9679]  ___sys_sendmsg+0x21f/0x2a0
[  194.291918][ T9679]  ? __pfx____sys_sendmsg+0x10/0x10
[  194.291987][ T9679]  ? __fget_files+0x2a/0x420
[  194.292019][ T9679]  ? __fget_files+0x3a0/0x420
[  194.292057][ T9679]  __x64_sys_sendmsg+0x19b/0x260
[  194.292086][ T9679]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  194.292133][ T9679]  ? do_syscall_64+0xba/0x210
[  194.292158][ T9679]  do_syscall_64+0xf6/0x210
[  194.292180][ T9679]  ? clear_bhb_loop+0x45/0xa0
[  194.292205][ T9679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.292224][ T9679] RIP: 0033:0x7f15c658e969
[  194.292242][ T9679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.292259][ T9679] RSP: 002b:00007f15c7395038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  194.292281][ T9679] RAX: ffffffffffffffda RBX: 00007f15c67b6080 RCX: 00007f15c658e969
[  194.292296][ T9679] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  194.292308][ T9679] RBP: 00007f15c7395090 R08: 0000000000000000 R09: 0000000000000000
[  194.292319][ T9679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.292331][ T9679] R13: 0000000000000001 R14: 00007f15c67b6080 R15: 00007ffc5db94b18
[  194.292361][ T9679]  </TASK>
[  194.598389][ T9612] team0: Port device team_slave_0 added
[  194.648644][ T5901] hsr_slave_0: left promiscuous mode
[  194.655055][ T5901] 0·: left promiscuous mode
[  194.660293][ T5901] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  194.668912][ T5901] batman_adv: batadv0: Removing interface: batadv_slave_0
[  194.677549][ T5901] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  194.686542][ T5901] batman_adv: batadv0: Removing interface: batadv_slave_1
[  194.709742][ T5901] veth1_macvtap: left promiscuous mode
[  194.716060][ T5901] veth0_macvtap: left promiscuous mode
[  194.723099][ T5901] veth1_vlan: left promiscuous mode
[  194.824781][ T5901] pimreg3 (unregistering): left allmulticast mode
[  194.848982][ T5901] pim6reg (unregistering): left allmulticast mode
[  194.902883][    C0] vcan0: j1939_tp_rxtimer: 0xffff88807d433c00: rx timeout, send abort
[  195.178681][ T5901] team0 (unregistering): Port device team_slave_1 removed
[  195.218091][ T5901] team0 (unregistering): Port device team_slave_0 removed
[  195.295875][ T5846] Bluetooth: hci2: command tx timeout
[  195.411256][    C0] vcan0: j1939_tp_rxtimer: 0xffff88807d433c00: abort rx timeout. Force session deactivation
[  195.604433][ T9612] team0: Port device team_slave_1 added
[  195.741514][    C1] vcan0: j1939_tp_rxtimer: 0xffff888058107c00: rx timeout, send abort
[  195.797491][ T9612] batman_adv: batadv0: Adding interface: batadv_slave_0
[  195.821920][ T9612] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.867560][ T9612] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  195.905570][ T9612] batman_adv: batadv0: Adding interface: batadv_slave_1
[  195.914391][ T9612] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.940976][ T9612] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  196.055767][ T9612] hsr_slave_0: entered promiscuous mode
[  196.067668][ T9612] hsr_slave_1: entered promiscuous mode
[  196.150500][ T5901] IPVS: stop unused estimator thread 0...
[  196.160370][ T9688] xt_socket: unknown flags 0x8
[  196.177796][ T9688] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1157'.
[  196.191242][ T9688] IPVS: length: 135 != 24
[  196.242117][    C1] vcan0: j1939_tp_rxtimer: 0xffff88802ec04000: rx timeout, send abort
[  196.253126][    C1] vcan0: j1939_tp_rxtimer: 0xffff888058107c00: abort rx timeout. Force session deactivation
[  196.276846][ T9692] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1157'.
[  196.619283][ T9705] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1161'.
[  196.666916][ T9709] netlink: 'syz.3.1163': attribute type 1 has an invalid length.
[  196.724243][ T9713] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1162'.
[  196.750424][    C1] vcan0: j1939_tp_rxtimer: 0xffff88802ec04000: abort rx timeout. Force session deactivation
[  196.863422][ T9717] netlink: 'syz.3.1166': attribute type 11 has an invalid length.
[  196.871370][ T9717] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1166'.
[  196.892584][ T9715] ªªªªªª speed is unknown, defaulting to 1000
[  196.932759][ T9721] netlink: 'syz.3.1166': attribute type 1 has an invalid length.
[  197.350463][ T9726] ªªªªªª speed is unknown, defaulting to 1000
[  197.350503][ T9612] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  197.378851][ T5846] Bluetooth: hci2: command tx timeout
[  197.425366][ T9612] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  197.437973][ T9612] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  197.542665][ T9612] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  197.794102][ T9612] 8021q: adding VLAN 0 to HW filter on device bond0
[  197.840903][ T9612] 8021q: adding VLAN 0 to HW filter on device team0
[  198.238963][ T1336] bridge0: port 1(bridge_slave_0) entered blocking state
[  198.246236][ T1336] bridge0: port 1(bridge_slave_0) entered forwarding state
[  198.277618][ T9729] pimreg3: entered allmulticast mode
[  198.291159][ T9735] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1170'.
[  198.360506][ T9739] netlink: 'syz.2.1170': attribute type 5 has an invalid length.
[  198.415678][ T1336] bridge0: port 2(bridge_slave_1) entered blocking state
[  198.423083][ T1336] bridge0: port 2(bridge_slave_1) entered forwarding state
[  198.432875][ T9742] xt_socket: unknown flags 0x8
[  198.444494][ T9742] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1172'.
[  198.472719][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880593de800: rx timeout, send abort
[  198.520384][ T9744] IPVS: length: 135 != 24
[  198.615680][ T9744] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1172'.
[  198.716250][ T9612] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  198.972841][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880593dc800: rx timeout, send abort
[  198.981838][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880593de800: abort rx timeout. Force session deactivation
[  199.022758][ T9752] xt_socket: unknown flags 0x8
[  199.127374][ T9752] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1174'.
[  199.164899][ T9752] IPVS: length: 135 != 24
[  199.225950][ T9757] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1174'.
[  199.445431][ T9612] 8021q: adding VLAN 0 to HW filter on device batadv0
[  199.452805][ T5846] Bluetooth: hci2: command tx timeout
[  199.481183][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880593dc800: abort rx timeout. Force session deactivation
[  200.244872][ T5901] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  200.263198][ T5901] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  200.274929][ T9798] nbd: must specify at least one socket
[  200.382648][ T9612] veth0_vlan: entered promiscuous mode
[  200.417151][ T9612] veth1_vlan: entered promiscuous mode
[  200.551031][ T9612] veth0_macvtap: entered promiscuous mode
[  200.602102][ T9612] veth1_macvtap: entered promiscuous mode
[  200.672403][ T9612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  200.683513][ T9612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.695471][ T9612] batman_adv: batadv0: Interface activated: batadv_slave_0
[  200.740426][ T9612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.770868][ T9612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.814103][ T9612] batman_adv: batadv0: Interface activated: batadv_slave_1
[  200.847280][ T9612] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  200.871843][ T9612] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  200.895532][ T9612] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  200.911799][ T9612] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  201.055305][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805bb46000: rx timeout, send abort
[  201.089642][ T8373] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  201.118185][ T8373] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  201.143119][ T9822] xt_socket: unknown flags 0x8
[  201.181231][ T9822] IPVS: length: 135 != 24
[  201.196415][ T1336] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  201.212476][ T1336] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  201.244696][ T9826] __nla_validate_parse: 6 callbacks suppressed
[  201.244716][ T9826] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1189'.
[  201.343909][ T9824] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1190'.
[  201.468961][ T9831] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1191'.
[  201.483338][ T9831] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1191'.
[  201.555486][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805bb46400: rx timeout, send abort
[  201.564021][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805bb46000: abort rx timeout. Force session deactivation
[  201.650879][ T9835] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1193'.
[  201.723874][   T13] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.829570][ T9842] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1194'.
[  201.848943][   T13] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.063864][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805bb46400: abort rx timeout. Force session deactivation
[  202.111077][   T13] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.328839][ T9845] pim6reg: entered allmulticast mode
[  202.345036][ T9845] pim6reg: left allmulticast mode
[  202.386800][ T9851] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  202.403976][ T9851] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1196'.
[  202.424741][ T9852] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1197'.
[  202.452255][ T9852] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1197'.
[  202.470956][   T13] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.885095][   T13] bridge_slave_1: left allmulticast mode
[  202.890992][   T13] bridge_slave_1: left promiscuous mode
[  202.929473][ T9862] netlink: 'syz.3.1199': attribute type 23 has an invalid length.
[  202.943978][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.033658][   T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  203.056052][   T55] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  203.065045][   T55] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  203.073351][   T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  203.083020][   T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  203.104137][   T13] bridge_slave_0: left allmulticast mode
[  203.109846][   T13] bridge_slave_0: left promiscuous mode
[  203.132492][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  203.493235][ T9878] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1200'.
[  204.247293][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  204.267151][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  204.294751][   T13] bond0 (unregistering): Released all slaves
[  204.363748][ T9869] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.387599][ T9869] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.431306][ T9869] 0·: left allmulticast mode
[  204.467537][ T9869] macvlan2: left allmulticast mode
[  204.474981][ T9869] mac80211_hwsim hwsim6 wlan0: left allmulticast mode
[  204.606056][ T9863] ªªªªªª speed is unknown, defaulting to 1000
[  204.773855][ T9890] nbd: must specify at least one socket
[  204.854529][ T9894] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: invalid value (0)
[  204.885862][ T9894] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: allowed values 1 - 65535
[  205.015680][    C0] vcan0: j1939_tp_rxtimer: 0xffff888034595400: rx timeout, send abort
[  205.132470][   T55] Bluetooth: hci2: command tx timeout
[  205.198182][ T9897] ªªªªªª speed is unknown, defaulting to 1000
[  205.542267][    C0] vcan0: j1939_tp_rxtimer: 0xffff888034595800: rx timeout, send abort
[  205.550523][    C0] vcan0: j1939_tp_rxtimer: 0xffff888034595400: abort rx timeout. Force session deactivation
[  206.050554][    C0] vcan0: j1939_tp_rxtimer: 0xffff888034595800: abort rx timeout. Force session deactivation
[  206.165428][   T13] hsr_slave_0: left promiscuous mode
[  206.172024][ T9915] netlink: 'syz.1.1209': attribute type 3 has an invalid length.
[  206.180637][   T13] hsr_slave_1: left promiscuous mode
[  206.191431][ T9915] netlink: 'syz.1.1209': attribute type 7 has an invalid length.
[  206.202138][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  206.209702][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  206.218642][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  206.226187][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  206.259475][   T13] veth1_macvtap: left promiscuous mode
[  206.265197][   T13] veth0_macvtap: left promiscuous mode
[  206.270939][   T13] veth1_vlan: left promiscuous mode
[  206.276773][   T13] veth0_vlan: left promiscuous mode
[  206.758193][ T9839] Set syz1 is full, maxelem 65536 reached
[  206.850501][ T9918] FAULT_INJECTION: forcing a failure.
[  206.850501][ T9918] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.864052][ T9918] CPU: 1 UID: 0 PID: 9918 Comm: syz.0.1210 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  206.864081][ T9918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  206.864095][ T9918] Call Trace:
[  206.864102][ T9918]  <TASK>
[  206.864110][ T9918]  dump_stack_lvl+0x189/0x250
[  206.864149][ T9918]  ? __pfx_dump_stack_lvl+0x10/0x10
[  206.864177][ T9918]  ? __pfx__printk+0x10/0x10
[  206.864200][ T9918]  ? lockdep_hardirqs_on+0x9c/0x150
[  206.864240][ T9918]  should_fail_ex+0x414/0x560
[  206.864265][ T9918]  _copy_to_user+0x31/0xb0
[  206.864296][ T9918]  __htab_map_lookup_and_delete_batch+0xfe5/0x13a0
[  206.864359][ T9918]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  206.864394][ T9918]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[  206.864416][ T9918]  bpf_map_do_batch+0x412/0x5f0
[  206.864450][ T9918]  __sys_bpf+0x666/0x860
[  206.864476][ T9918]  ? __pfx___sys_bpf+0x10/0x10
[  206.864514][ T9918]  ? ksys_write+0x1f0/0x250
[  206.864535][ T9918]  ? rcu_is_watching+0x15/0xb0
[  206.864576][ T9918]  __x64_sys_bpf+0x7c/0x90
[  206.864599][ T9918]  do_syscall_64+0xf6/0x210
[  206.864620][ T9918]  ? clear_bhb_loop+0x45/0xa0
[  206.864653][ T9918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.864673][ T9918] RIP: 0033:0x7f15c658e969
[  206.864690][ T9918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.864707][ T9918] RSP: 002b:00007f15c73b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  206.864728][ T9918] RAX: ffffffffffffffda RBX: 00007f15c67b5fa0 RCX: 00007f15c658e969
[  206.864743][ T9918] RDX: 0000000000000038 RSI: 0000200000000800 RDI: 0000000000000019
[  206.864756][ T9918] RBP: 00007f15c73b6090 R08: 0000000000000000 R09: 0000000000000000
[  206.864768][ T9918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  206.864779][ T9918] R13: 0000000000000000 R14: 00007f15c67b5fa0 R15: 00007ffc5db94b18
[  206.864811][ T9918]  </TASK>
[  207.156644][   T13] team0 (unregistering): Port device team_slave_1 removed
[  207.205545][   T13] team0 (unregistering): Port device team_slave_0 removed
[  207.212828][   T55] Bluetooth: hci2: command tx timeout
[  207.237332][ T9921] __nla_validate_parse: 1 callbacks suppressed
[  207.237353][ T9921] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1211'.
[  207.656568][ T9927] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1213'.
[  207.689325][ T9863] chnl_net:caif_netlink_parms(): no params data found
[  207.713563][ T9928] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1213'.
[  207.819336][ T9915] : entered promiscuous mode
[  208.182224][ T9942] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  208.207586][ T9947] FAULT_INJECTION: forcing a failure.
[  208.207586][ T9947] name failslab, interval 1, probability 0, space 0, times 0
[  208.222200][ T9947] CPU: 1 UID: 0 PID: 9947 Comm: syz.1.1217 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  208.222233][ T9947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  208.222246][ T9947] Call Trace:
[  208.222254][ T9947]  <TASK>
[  208.222263][ T9947]  dump_stack_lvl+0x189/0x250
[  208.222301][ T9947]  ? __pfx_dump_stack_lvl+0x10/0x10
[  208.222330][ T9947]  ? __pfx__printk+0x10/0x10
[  208.222358][ T9947]  ? __pfx___might_resched+0x10/0x10
[  208.222377][ T9947]  ? fs_reclaim_acquire+0x7d/0x100
[  208.222412][ T9947]  should_fail_ex+0x414/0x560
[  208.222438][ T9947]  should_failslab+0xa8/0x100
[  208.222490][ T9947]  __kmalloc_noprof+0xcb/0x4f0
[  208.222513][ T9947]  ? ethnl_default_notify+0x1cd/0x990
[  208.222543][ T9947]  ethnl_default_notify+0x1cd/0x990
[  208.222575][ T9947]  ? __pfx_ethnl_default_notify+0x10/0x10
[  208.222609][ T9947]  ? trace_kmalloc+0x1f/0xd0
[  208.222648][ T9947]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  208.222680][ T9947]  ? mutex_is_locked+0x17/0x50
[  208.222698][ T9947]  ? rtnl_is_locked+0x15/0x20
[  208.222743][ T9947]  ethnl_default_set_doit+0x64e/0xa20
[  208.222780][ T9947]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  208.222811][ T9947]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  208.222851][ T9947]  genl_family_rcv_msg_doit+0x212/0x300
[  208.222890][ T9947]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  208.222935][ T9947]  ? bpf_lsm_capable+0x9/0x20
[  208.222961][ T9947]  ? security_capable+0x7e/0x2e0
[  208.222991][ T9947]  genl_rcv_msg+0x60e/0x790
[  208.223047][ T9947]  ? __pfx_genl_rcv_msg+0x10/0x10
[  208.223077][ T9947]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  208.223121][ T9947]  netlink_rcv_skb+0x219/0x490
[  208.223147][ T9947]  ? __pfx_genl_rcv_msg+0x10/0x10
[  208.223179][ T9947]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  208.223232][ T9947]  ? down_read+0x1ad/0x2e0
[  208.223257][ T9947]  genl_rcv+0x28/0x40
[  208.223285][ T9947]  netlink_unicast+0x758/0x8d0
[  208.223320][ T9947]  netlink_sendmsg+0x805/0xb30
[  208.223357][ T9947]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.223387][ T9947]  ? aa_sock_msg_perm+0x94/0x160
[  208.223412][ T9947]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  208.223434][ T9947]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.223466][ T9947]  __sock_sendmsg+0x219/0x270
[  208.223492][ T9947]  ____sys_sendmsg+0x505/0x830
[  208.223527][ T9947]  ? __pfx_____sys_sendmsg+0x10/0x10
[  208.223567][ T9947]  ? import_iovec+0x74/0xa0
[  208.223599][ T9947]  ___sys_sendmsg+0x21f/0x2a0
[  208.223628][ T9947]  ? __pfx____sys_sendmsg+0x10/0x10
[  208.223701][ T9947]  ? __fget_files+0x2a/0x420
[  208.223727][ T9947]  ? __fget_files+0x3a0/0x420
[  208.223766][ T9947]  __x64_sys_sendmsg+0x19b/0x260
[  208.223798][ T9947]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  208.223857][ T9947]  ? do_syscall_64+0xba/0x210
[  208.223882][ T9947]  do_syscall_64+0xf6/0x210
[  208.223903][ T9947]  ? clear_bhb_loop+0x45/0xa0
[  208.223927][ T9947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.223946][ T9947] RIP: 0033:0x7fe70f18e969
[  208.223963][ T9947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.223979][ T9947] RSP: 002b:00007fe70ff50038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  208.223999][ T9947] RAX: ffffffffffffffda RBX: 00007fe70f3b6080 RCX: 00007fe70f18e969
[  208.224014][ T9947] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  208.224026][ T9947] RBP: 00007fe70ff50090 R08: 0000000000000000 R09: 0000000000000000
[  208.224038][ T9947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.224049][ T9947] R13: 0000000000000001 R14: 00007fe70f3b6080 R15: 00007fff7d0ff778
[  208.224082][ T9947]  </TASK>
[  208.587859][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880318dec00: rx timeout, send abort
[  208.687682][ T9863] bridge0: port 1(bridge_slave_0) entered blocking state
[  208.695245][ T9863] bridge0: port 1(bridge_slave_0) entered disabled state
[  208.705135][ T9863] bridge_slave_0: entered allmulticast mode
[  208.712855][ T9863] bridge_slave_0: entered promiscuous mode
[  208.725582][ T9863] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.744015][ T9863] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.755551][ T9863] bridge_slave_1: entered allmulticast mode
[  208.766270][ T9863] bridge_slave_1: entered promiscuous mode
[  208.834577][ T9863] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  208.858612][ T9863] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  208.920199][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880318de000: rx timeout, send abort
[  208.955289][ T9863] team0: Port device team_slave_0 added
[  208.983865][ T9863] team0: Port device team_slave_1 added
[  209.086437][ T9962] xt_socket: unknown flags 0x8
[  209.087333][ T9863] batman_adv: batadv0: Adding interface: batadv_slave_0
[  209.096112][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880318dec00: abort rx timeout. Force session deactivation
[  209.102838][ T9863] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  209.122001][ T9962] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1222'.
[  209.148015][ T9962] IPVS: length: 135 != 24
[  209.152913][ T9863] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  209.183111][ T9863] batman_adv: batadv0: Adding interface: batadv_slave_1
[  209.200344][ T9863] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  209.216226][ T9966] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1222'.
[  209.249752][ T9863] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  209.291676][   T55] Bluetooth: hci2: command tx timeout
[  209.410506][ T9863] hsr_slave_0: entered promiscuous mode
[  209.417597][ T9863] hsr_slave_1: entered promiscuous mode
[  209.428532][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880318de000: abort rx timeout. Force session deactivation
[  209.650918][ T9986] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1226'.
[  209.704513][ T9983] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1226'.
[  209.779463][ T9982] ªªªªªª speed is unknown, defaulting to 1000
[  210.093431][ T9995] FAULT_INJECTION: forcing a failure.
[  210.093431][ T9995] name failslab, interval 1, probability 0, space 0, times 0
[  210.120857][ T9995] CPU: 0 UID: 0 PID: 9995 Comm: syz.3.1230 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  210.120885][ T9995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  210.120897][ T9995] Call Trace:
[  210.120905][ T9995]  <TASK>
[  210.120914][ T9995]  dump_stack_lvl+0x189/0x250
[  210.120950][ T9995]  ? __pfx_dump_stack_lvl+0x10/0x10
[  210.120979][ T9995]  ? __pfx__printk+0x10/0x10
[  210.121006][ T9995]  ? __pfx___might_resched+0x10/0x10
[  210.121024][ T9995]  ? fs_reclaim_acquire+0x7d/0x100
[  210.121059][ T9995]  should_fail_ex+0x414/0x560
[  210.121084][ T9995]  should_failslab+0xa8/0x100
[  210.121113][ T9995]  __kmalloc_noprof+0xcb/0x4f0
[  210.121155][ T9995]  ? ethnl_default_notify+0x1cd/0x990
[  210.121187][ T9995]  ethnl_default_notify+0x1cd/0x990
[  210.121222][ T9995]  ? __pfx_ethnl_default_notify+0x10/0x10
[  210.121259][ T9995]  ? trace_kmalloc+0x1f/0xd0
[  210.121280][ T9995]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  210.121313][ T9995]  ? mutex_is_locked+0x17/0x50
[  210.121331][ T9995]  ? rtnl_is_locked+0x15/0x20
[  210.121363][ T9995]  ethnl_default_set_doit+0x64e/0xa20
[  210.121402][ T9995]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  210.121434][ T9995]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  210.121475][ T9995]  genl_family_rcv_msg_doit+0x212/0x300
[  210.121515][ T9995]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  210.121569][ T9995]  ? bpf_lsm_capable+0x9/0x20
[  210.121598][ T9995]  ? security_capable+0x7e/0x2e0
[  210.121627][ T9995]  genl_rcv_msg+0x60e/0x790
[  210.121665][ T9995]  ? __pfx_genl_rcv_msg+0x10/0x10
[  210.121695][ T9995]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  210.121725][ T9995]  ? ref_tracker_free+0x63a/0x7d0
[  210.121744][ T9995]  ? __copy_skb_header+0xa7/0x550
[  210.121784][ T9995]  netlink_rcv_skb+0x219/0x490
[  210.121810][ T9995]  ? __pfx_genl_rcv_msg+0x10/0x10
[  210.121843][ T9995]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  210.121896][ T9995]  ? down_read+0x1ad/0x2e0
[  210.121920][ T9995]  genl_rcv+0x28/0x40
[  210.121949][ T9995]  netlink_unicast+0x758/0x8d0
[  210.121985][ T9995]  netlink_sendmsg+0x805/0xb30
[  210.122021][ T9995]  ? __pfx_netlink_sendmsg+0x10/0x10
[  210.122051][ T9995]  ? aa_sock_msg_perm+0x94/0x160
[  210.122075][ T9995]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  210.122097][ T9995]  ? __pfx_netlink_sendmsg+0x10/0x10
[  210.122123][ T9995]  __sock_sendmsg+0x219/0x270
[  210.122149][ T9995]  ____sys_sendmsg+0x505/0x830
[  210.122184][ T9995]  ? __pfx_____sys_sendmsg+0x10/0x10
[  210.122224][ T9995]  ? import_iovec+0x74/0xa0
[  210.122256][ T9995]  ___sys_sendmsg+0x21f/0x2a0
[  210.122288][ T9995]  ? __pfx____sys_sendmsg+0x10/0x10
[  210.122360][ T9995]  ? __fget_files+0x2a/0x420
[  210.122385][ T9995]  ? __fget_files+0x3a0/0x420
[  210.122424][ T9995]  __x64_sys_sendmsg+0x19b/0x260
[  210.122455][ T9995]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  210.122504][ T9995]  ? do_syscall_64+0xba/0x210
[  210.122540][ T9995]  do_syscall_64+0xf6/0x210
[  210.122568][ T9995]  ? clear_bhb_loop+0x45/0xa0
[  210.122592][ T9995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.122611][ T9995] RIP: 0033:0x7fb6ddb8e969
[  210.122629][ T9995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.122645][ T9995] RSP: 002b:00007fb6dea14038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  210.122666][ T9995] RAX: ffffffffffffffda RBX: 00007fb6dddb5fa0 RCX: 00007fb6ddb8e969
[  210.122680][ T9995] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  210.122692][ T9995] RBP: 00007fb6dea14090 R08: 0000000000000000 R09: 0000000000000000
[  210.122703][ T9995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  210.122714][ T9995] R13: 0000000000000000 R14: 00007fb6dddb5fa0 R15: 00007fffe8db7b88
[  210.122746][ T9995]  </TASK>
[  211.077891][T10023] xt_socket: unknown flags 0x8
[  211.099450][T10023] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1238'.
[  211.141754][T10023] IPVS: length: 135 != 24
[  211.207840][T10030] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1238'.
[  211.251770][T10031] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1240'.
[  211.400120][ T5139] Bluetooth: hci2: command tx timeout
[  211.438592][ T9863] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  211.470335][ T9863] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  211.509778][ T9863] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  211.550990][ T9863] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  211.691640][ T5139] Bluetooth: hci3: command 0x0401 tx timeout
[  211.691733][ T5838] Bluetooth: hci1: command 0x0406 tx timeout
[  211.789434][ T9863] 8021q: adding VLAN 0 to HW filter on device bond0
[  211.915718][ T9863] 8021q: adding VLAN 0 to HW filter on device team0
[  211.952721][ T8373] bridge0: port 1(bridge_slave_0) entered blocking state
[  211.960046][ T8373] bridge0: port 1(bridge_slave_0) entered forwarding state
[  211.988822][ T8373] bridge0: port 2(bridge_slave_1) entered blocking state
[  211.996097][ T8373] bridge0: port 2(bridge_slave_1) entered forwarding state
[  212.037378][T10044] FAULT_INJECTION: forcing a failure.
[  212.037378][T10044] name failslab, interval 1, probability 0, space 0, times 0
[  212.091727][T10044] CPU: 0 UID: 0 PID: 10044 Comm: syz.0.1243 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  212.091761][T10044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  212.091775][T10044] Call Trace:
[  212.091783][T10044]  <TASK>
[  212.091792][T10044]  dump_stack_lvl+0x189/0x250
[  212.091832][T10044]  ? __pfx_dump_stack_lvl+0x10/0x10
[  212.091862][T10044]  ? __pfx__printk+0x10/0x10
[  212.091890][T10044]  ? __pfx___might_resched+0x10/0x10
[  212.091915][T10044]  should_fail_ex+0x414/0x560
[  212.091942][T10044]  should_failslab+0xa8/0x100
[  212.091971][T10044]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  212.091997][T10044]  ? ethnl_bitset32_size+0x3a/0x280
[  212.092023][T10044]  ? __alloc_skb+0x112/0x2d0
[  212.092053][T10044]  __alloc_skb+0x112/0x2d0
[  212.092083][T10044]  ethnl_default_notify+0x4a4/0x990
[  212.092117][T10044]  ? __pfx_ethnl_default_notify+0x10/0x10
[  212.092155][T10044]  ? trace_kmalloc+0x1f/0xd0
[  212.092176][T10044]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  212.092208][T10044]  ? mutex_is_locked+0x17/0x50
[  212.092226][T10044]  ? rtnl_is_locked+0x15/0x20
[  212.092257][T10044]  ethnl_default_set_doit+0x64e/0xa20
[  212.092296][T10044]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  212.092328][T10044]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  212.092377][T10044]  genl_family_rcv_msg_doit+0x212/0x300
[  212.092416][T10044]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  212.092463][T10044]  ? bpf_lsm_capable+0x9/0x20
[  212.092490][T10044]  ? security_capable+0x7e/0x2e0
[  212.092520][T10044]  genl_rcv_msg+0x60e/0x790
[  212.092558][T10044]  ? __pfx_genl_rcv_msg+0x10/0x10
[  212.092587][T10044]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  212.092617][T10044]  ? ref_tracker_free+0x63a/0x7d0
[  212.092637][T10044]  ? __copy_skb_header+0xa7/0x550
[  212.092676][T10044]  netlink_rcv_skb+0x219/0x490
[  212.092702][T10044]  ? __pfx_genl_rcv_msg+0x10/0x10
[  212.092734][T10044]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  212.092786][T10044]  ? down_read+0x1ad/0x2e0
[  212.092811][T10044]  genl_rcv+0x28/0x40
[  212.092838][T10044]  netlink_unicast+0x758/0x8d0
[  212.092873][T10044]  netlink_sendmsg+0x805/0xb30
[  212.092909][T10044]  ? __pfx_netlink_sendmsg+0x10/0x10
[  212.092939][T10044]  ? aa_sock_msg_perm+0x94/0x160
[  212.092964][T10044]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  212.092985][T10044]  ? __pfx_netlink_sendmsg+0x10/0x10
[  212.093012][T10044]  __sock_sendmsg+0x219/0x270
[  212.093037][T10044]  ____sys_sendmsg+0x505/0x830
[  212.093072][T10044]  ? __pfx_____sys_sendmsg+0x10/0x10
[  212.093108][T10044]  ? import_iovec+0x74/0xa0
[  212.093138][T10044]  ___sys_sendmsg+0x21f/0x2a0
[  212.093169][T10044]  ? __pfx____sys_sendmsg+0x10/0x10
[  212.093239][T10044]  ? __fget_files+0x2a/0x420
[  212.093265][T10044]  ? __fget_files+0x3a0/0x420
[  212.093310][T10044]  __x64_sys_sendmsg+0x19b/0x260
[  212.093341][T10044]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  212.093395][T10044]  ? do_syscall_64+0xba/0x210
[  212.093421][T10044]  do_syscall_64+0xf6/0x210
[  212.093442][T10044]  ? clear_bhb_loop+0x45/0xa0
[  212.093468][T10044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.093487][T10044] RIP: 0033:0x7f15c658e969
[  212.093506][T10044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.093523][T10044] RSP: 002b:00007f15c7395038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  212.093545][T10044] RAX: ffffffffffffffda RBX: 00007f15c67b6080 RCX: 00007f15c658e969
[  212.093560][T10044] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  212.093572][T10044] RBP: 00007f15c7395090 R08: 0000000000000000 R09: 0000000000000000
[  212.093584][T10044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  212.093596][T10044] R13: 0000000000000001 R14: 00007f15c67b6080 R15: 00007ffc5db94b18
[  212.093629][T10044]  </TASK>
[  212.497986][ T9863] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  212.508443][ T9863] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  212.888208][ T9863] 8021q: adding VLAN 0 to HW filter on device batadv0
[  212.941018][T10060] ip6gre1: entered allmulticast mode
[  213.107310][T10069] xt_socket: unknown flags 0x8
[  213.121420][T10069] __nla_validate_parse: 2 callbacks suppressed
[  213.121438][T10069] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1251'.
[  213.145908][T10069] IPVS: length: 135 != 24
[  213.156762][T10072] block nbd2: not configured, cannot reconfigure
[  213.206647][T10077] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1251'.
[  213.452091][   T55] Bluetooth: hci2: command tx timeout
[  213.518655][ T9863] veth0_vlan: entered promiscuous mode
[  213.560396][ T9863] veth1_vlan: entered promiscuous mode
[  213.670203][ T9863] veth0_macvtap: entered promiscuous mode
[  213.687558][ T9863] veth1_macvtap: entered promiscuous mode
[  213.724574][ T9863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  213.742503][T10101] xt_CT: No such helper "snmp"
[  213.749477][ T9863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.774989][ T9863] batman_adv: batadv0: Interface activated: batadv_slave_0
[  213.787075][T10101] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  213.799958][ T9863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  213.814541][ T9863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.830605][ T9863] batman_adv: batadv0: Interface activated: batadv_slave_1
[  213.858008][ T9863] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  213.869434][ T9863] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  213.884102][ T9863] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  213.894552][ T9863] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  214.428362][T10114] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  214.467003][ T8376] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  214.504610][ T8376] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  214.513565][T10113] 8021q: VLANs not supported on nlmon0
[  214.521057][T10116] xt_socket: unknown flags 0x8
[  214.561167][T10116] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1265'.
[  214.599017][T10118] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1266'.
[  214.599713][ T8341] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  214.612101][T10118] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1266'.
[  214.638316][T10119] IPVS: length: 135 != 24
[  214.660906][ T8341] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  214.726352][T10119] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1265'.
[  214.836306][T10122] ªªªªªª speed is unknown, defaulting to 1000
[  214.884094][T10128] kobject: kobject_add_internal failed for rx-0 (error: -2 parent: queues)
[  214.917569][T10128] ==================================================================
[  214.925692][T10128] BUG: KASAN: slab-use-after-free in cfusbl_device_notify+0x150/0x6a0
[  214.933896][T10128] Read of size 8 at addr ffff88805b85cc50 by task syz.0.1269/10128
[  214.941823][T10128] 
[  214.944184][T10128] CPU: 0 UID: 0 PID: 10128 Comm: syz.0.1269 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  214.944211][T10128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  214.944224][T10128] Call Trace:
[  214.944231][T10128]  <TASK>
[  214.944239][T10128]  dump_stack_lvl+0x189/0x250
[  214.944269][T10128]  ? __virt_addr_valid+0x18c/0x540
[  214.944294][T10128]  ? rcu_is_watching+0x15/0xb0
[  214.944321][T10128]  ? __kasan_check_byte+0x12/0x40
[  214.944344][T10128]  ? __pfx_dump_stack_lvl+0x10/0x10
[  214.944370][T10128]  ? rcu_is_watching+0x15/0xb0
[  214.944397][T10128]  ? lock_release+0x4b/0x3e0
[  214.944423][T10128]  ? __virt_addr_valid+0x18c/0x540
[  214.944446][T10128]  ? __virt_addr_valid+0x469/0x540
[  214.944471][T10128]  print_report+0xb4/0x290
[  214.944492][T10128]  ? cfusbl_device_notify+0x150/0x6a0
[  214.944514][T10128]  kasan_report+0x118/0x150
[  214.944539][T10128]  ? cfusbl_device_notify+0x150/0x6a0
[  214.944566][T10128]  cfusbl_device_notify+0x150/0x6a0
[  214.944587][T10128]  ? net_generic+0x1e/0x240
[  214.944608][T10128]  ? __pfx_cfusbl_device_notify+0x10/0x10
[  214.944631][T10128]  ? caif_device_notify+0x250/0xfc0
[  214.944654][T10128]  ? smc_pnet_netdev_event+0x3b5/0x6c0
[  214.944680][T10128]  notifier_call_chain+0x1b3/0x3e0
[  214.944703][T10128]  register_netdevice+0x12ee/0x1ae0
[  214.944739][T10128]  ? __pfx_register_netdevice+0x10/0x10
[  214.944769][T10128]  ? __asan_memset+0x22/0x50
[  214.944786][T10128]  ? dev_addr_mod+0x2ce/0x3d0
[  214.944812][T10128]  register_netdev+0x40/0x60
[  214.944838][T10128]  bnep_add_connection+0x6bf/0xbf0
[  214.944870][T10128]  ? __pfx_bnep_add_connection+0x10/0x10
[  214.944896][T10128]  ? __fget_files+0x3a0/0x420
[  214.944926][T10128]  do_bnep_sock_ioctl+0x40e/0x640
[  214.944954][T10128]  ? __pfx_do_bnep_sock_ioctl+0x10/0x10
[  214.944984][T10128]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  214.945004][T10128]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  214.945023][T10128]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  214.945042][T10128]  ? call_rcu+0x6dd/0x990
[  214.945062][T10128]  sock_do_ioctl+0xd9/0x300
[  214.945081][T10128]  ? __pfx_sock_do_ioctl+0x10/0x10
[  214.945106][T10128]  ? __lock_acquire+0xaac/0xd20
[  214.945139][T10128]  sock_ioctl+0x576/0x790
[  214.945156][T10128]  ? __pfx_sock_ioctl+0x10/0x10
[  214.945175][T10128]  ? __fget_files+0x3a0/0x420
[  214.945197][T10128]  ? __fget_files+0x2a/0x420
[  214.945223][T10128]  ? bpf_lsm_file_ioctl+0x9/0x20
[  214.945247][T10128]  ? __pfx_sock_ioctl+0x10/0x10
[  214.945267][T10128]  __se_sys_ioctl+0xf9/0x170
[  214.945287][T10128]  do_syscall_64+0xf6/0x210
[  214.945306][T10128]  ? clear_bhb_loop+0x45/0xa0
[  214.945327][T10128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.945345][T10128] RIP: 0033:0x7f15c658e969
[  214.945363][T10128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.945379][T10128] RSP: 002b:00007f15c73b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  214.945400][T10128] RAX: ffffffffffffffda RBX: 00007f15c67b5fa0 RCX: 00007f15c658e969
[  214.945413][T10128] RDX: 0000200000000080 RSI: 00000000400442c8 RDI: 0000000000000006
[  214.945426][T10128] RBP: 00007f15c6610ab1 R08: 0000000000000000 R09: 0000000000000000
[  214.945438][T10128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  214.945449][T10128] R13: 0000000000000000 R14: 00007f15c67b5fa0 R15: 00007ffc5db94b18
[  214.945470][T10128]  </TASK>
[  214.945477][T10128] 
[  215.166955][T10138] IPVS: length: 135 != 24
[  215.169202][T10128] Allocated by task 55:
[  215.169217][T10128]  kasan_save_track+0x3e/0x80
[  215.169243][T10128]  __kasan_kmalloc+0x93/0xb0
[  215.246683][T10136] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1270'.
[  215.251692][T10128]  __kmalloc_cache_noprof+0x230/0x3d0
[  215.251725][T10128]  __hci_conn_add+0x1ed/0x1aa0
[  215.251747][T10128]  hci_conn_request_evt+0x528/0xb50
[  215.251763][T10128]  hci_event_packet+0x7fb/0x1270
[  215.251788][T10128]  hci_rx_work+0x46a/0xe80
[  215.332411][T10128]  process_scheduled_works+0xadb/0x17a0
[  215.338015][T10128]  worker_thread+0x8a0/0xda0
[  215.342643][T10128]  kthread+0x70e/0x8a0
[  215.346752][T10128]  ret_from_fork+0x4b/0x80
[  215.351206][T10128]  ret_from_fork_asm+0x1a/0x30
[  215.356005][T10128] 
[  215.358355][T10128] Freed by task 10128:
[  215.362704][T10128]  kasan_save_track+0x3e/0x80
[  215.367416][T10128]  kasan_save_free_info+0x46/0x50
[  215.372489][T10128]  __kasan_slab_free+0x62/0x70
[  215.377305][T10128]  kfree+0x193/0x440
[  215.381237][T10128]  device_release+0x99/0x1c0
[  215.385865][T10128]  kobject_put+0x228/0x480
[  215.390316][T10128]  device_del+0x7a4/0x8e0
[  215.394681][T10128]  netdev_register_kobject+0x290/0x2f0
[  215.400181][T10128]  register_netdevice+0x126c/0x1ae0
[  215.405427][T10128]  register_netdev+0x40/0x60
[  215.410068][T10128]  bnep_add_connection+0x6bf/0xbf0
[  215.415220][T10128]  do_bnep_sock_ioctl+0x40e/0x640
[  215.420287][T10128]  sock_do_ioctl+0xd9/0x300
[  215.424826][T10128]  sock_ioctl+0x576/0x790
[  215.429177][T10128]  __se_sys_ioctl+0xf9/0x170
[  215.433797][T10128]  do_syscall_64+0xf6/0x210
[  215.438328][T10128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.444250][T10128] 
[  215.446608][T10128] Last potentially related work creation:
[  215.452340][T10128]  kasan_save_stack+0x3e/0x60
[  215.457046][T10128]  kasan_record_aux_stack+0xbc/0xd0
[  215.462288][T10128]  insert_work+0x3d/0x330
[  215.466652][T10128]  __queue_work+0xcfc/0xfe0
[  215.471183][T10128]  queue_delayed_work_on+0x18b/0x280
[  215.476507][T10128]  l2cap_chan_del+0x285/0x5e0
[  215.481220][T10128]  l2cap_conn_del+0x388/0x680
[  215.485926][T10128]  hci_conn_hash_flush+0x10a/0x230
[  215.491076][T10128]  hci_dev_close_sync+0xaef/0x1330
[  215.496218][T10128]  hci_unregister_dev+0x206/0x500
[  215.501283][T10128]  vhci_release+0x80/0xd0
[  215.505651][T10128]  __fput+0x449/0xa70
[  215.509671][T10128]  task_work_run+0x1d1/0x260
[  215.514297][T10128]  do_exit+0x8d6/0x2550
[  215.518487][T10128]  do_group_exit+0x21c/0x2d0
[  215.523108][T10128]  __x64_sys_exit_group+0x3f/0x40
[  215.528173][T10128]  x64_sys_call+0x21ba/0x21c0
[  215.532888][T10128]  do_syscall_64+0xf6/0x210
[  215.537421][T10128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.543345][T10128] 
[  215.545685][T10128] The buggy address belongs to the object at ffff88805b85c000
[  215.545685][T10128]  which belongs to the cache kmalloc-8k of size 8192
[  215.559764][T10128] The buggy address is located 3152 bytes inside of
[  215.559764][T10128]  freed 8192-byte region [ffff88805b85c000, ffff88805b85e000)
[  215.573764][T10128] 
[  215.576102][T10128] The buggy address belongs to the physical page:
[  215.582570][T10128] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5b858
[  215.591353][T10128] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  215.599871][T10128] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  215.607453][T10128] page_type: f5(slab)
[  215.611443][T10128] raw: 00fff00000000040 ffff88801a042280 dead000000000100 dead000000000122
[  215.620042][T10128] raw: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[  215.628664][T10128] head: 00fff00000000040 ffff88801a042280 dead000000000100 dead000000000122
[  215.637344][T10128] head: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[  215.646018][T10128] head: 00fff00000000003 ffffea00016e1601 00000000ffffffff 00000000ffffffff
[  215.654684][T10128] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  215.663346][T10128] page dumped because: kasan: bad access detected
[  215.669788][T10128] page_owner tracks the page as allocated
[  215.675504][T10128] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 9080, tgid 9075 (syz.1.969), ts 175395401568, free_ts 175302574814
[  215.696772][T10128]  post_alloc_hook+0x1d8/0x230
[  215.701547][T10128]  get_page_from_freelist+0x21e0/0x22c0
[  215.707104][T10128]  __alloc_frozen_pages_noprof+0x181/0x370
[  215.712917][T10128]  alloc_pages_mpol+0x232/0x4a0
[  215.717772][T10128]  allocate_slab+0x8a/0x3b0
[  215.722275][T10128]  ___slab_alloc+0xbfc/0x1480
[  215.726959][T10128]  __kmalloc_noprof+0x305/0x4f0
[  215.731810][T10128]  ops_init+0x7b/0x5c0
[  215.735880][T10128]  setup_net+0x219/0x4b0
[  215.740119][T10128]  copy_net_ns+0x32e/0x590
[  215.744539][T10128]  create_new_namespaces+0x3d3/0x700
[  215.749832][T10128]  unshare_nsproxy_namespaces+0x11c/0x170
[  215.755560][T10128]  ksys_unshare+0x4c8/0x8c0
[  215.760067][T10128]  __x64_sys_unshare+0x38/0x50
[  215.764831][T10128]  do_syscall_64+0xf6/0x210
[  215.769347][T10128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.775244][T10128] page last free pid 9080 tgid 9075 stack trace:
[  215.781573][T10128]  __free_frozen_pages+0xb14/0xce0
[  215.786700][T10128]  __put_partials+0x161/0x1c0
[  215.791384][T10128]  put_cpu_partial+0x17c/0x250
[  215.796142][T10128]  __slab_free+0x2f7/0x400
[  215.800557][T10128]  qlist_free_all+0x9a/0x140
[  215.805150][T10128]  kasan_quarantine_reduce+0x148/0x160
[  215.810614][T10128]  __kasan_slab_alloc+0x22/0x80
[  215.815466][T10128]  __kmalloc_cache_noprof+0x1be/0x3d0
[  215.820837][T10128]  ref_tracker_alloc+0x133/0x460
[  215.825774][T10128]  register_netdevice+0x14a3/0x1ae0
[  215.830985][T10128]  register_netdev+0x40/0x60
[  215.835589][T10128]  sit_init_net+0x228/0x5c0
[  215.840089][T10128]  ops_init+0x359/0x5c0
[  215.844247][T10128]  setup_net+0x219/0x4b0
[  215.848520][T10128]  copy_net_ns+0x32e/0x590
[  215.852954][T10128]  create_new_namespaces+0x3d3/0x700
[  215.858256][T10128] 
[  215.860579][T10128] Memory state around the buggy address:
[  215.866211][T10128]  ffff88805b85cb00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  215.874271][T10128]  ffff88805b85cb80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  215.882333][T10128] >ffff88805b85cc00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  215.890393][T10128]                                                  ^
[  215.897063][T10128]  ffff88805b85cc80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  215.905122][T10128]  ffff88805b85cd00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  215.913178][T10128] ==================================================================
[  215.932872][T10128] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  215.940125][T10128] CPU: 1 UID: 0 PID: 10128 Comm: syz.0.1269 Not tainted 6.15.0-rc5-syzkaller-01032-g6b466efc6365 #0 PREEMPT(full) 
[  215.952210][T10128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  215.962269][T10128] Call Trace:
[  215.965547][T10128]  <TASK>
[  215.968492][T10128]  dump_stack_lvl+0x99/0x250
[  215.973110][T10128]  ? __asan_memcpy+0x40/0x70
[  215.977720][T10128]  ? __pfx_dump_stack_lvl+0x10/0x10
[  215.982936][T10128]  ? __pfx__printk+0x10/0x10
[  215.987534][T10128]  panic+0x2db/0x790
[  215.991444][T10128]  ? __pfx_panic+0x10/0x10
[  215.995868][T10128]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  216.001771][T10128]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  216.008104][T10128]  ? print_memory_metadata+0x314/0x400
[  216.013570][T10128]  ? cfusbl_device_notify+0x150/0x6a0
[  216.018958][T10128]  check_panic_on_warn+0x89/0xb0
[  216.023901][T10128]  ? cfusbl_device_notify+0x150/0x6a0
[  216.029279][T10128]  end_report+0x78/0x160
[  216.033529][T10128]  kasan_report+0x129/0x150
[  216.038041][T10128]  ? cfusbl_device_notify+0x150/0x6a0
[  216.043421][T10128]  cfusbl_device_notify+0x150/0x6a0
[  216.048626][T10128]  ? net_generic+0x1e/0x240
[  216.053136][T10128]  ? __pfx_cfusbl_device_notify+0x10/0x10
[  216.058858][T10128]  ? caif_device_notify+0x250/0xfc0
[  216.064061][T10128]  ? smc_pnet_netdev_event+0x3b5/0x6c0
[  216.069529][T10128]  notifier_call_chain+0x1b3/0x3e0
[  216.074647][T10128]  register_netdevice+0x12ee/0x1ae0
[  216.079860][T10128]  ? __pfx_register_netdevice+0x10/0x10
[  216.085426][T10128]  ? __asan_memset+0x22/0x50
[  216.090030][T10128]  ? dev_addr_mod+0x2ce/0x3d0
[  216.094721][T10128]  register_netdev+0x40/0x60
[  216.099320][T10128]  bnep_add_connection+0x6bf/0xbf0
[  216.104449][T10128]  ? __pfx_bnep_add_connection+0x10/0x10
[  216.110093][T10128]  ? __fget_files+0x3a0/0x420
[  216.114780][T10128]  do_bnep_sock_ioctl+0x40e/0x640
[  216.119813][T10128]  ? __pfx_do_bnep_sock_ioctl+0x10/0x10
[  216.125367][T10128]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  216.131001][T10128]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  216.136637][T10128]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  216.142272][T10128]  ? call_rcu+0x6dd/0x990
[  216.146606][T10128]  sock_do_ioctl+0xd9/0x300
[  216.151114][T10128]  ? __pfx_sock_do_ioctl+0x10/0x10
[  216.156232][T10128]  ? __lock_acquire+0xaac/0xd20
[  216.161096][T10128]  sock_ioctl+0x576/0x790
[  216.165425][T10128]  ? __pfx_sock_ioctl+0x10/0x10
[  216.170279][T10128]  ? __fget_files+0x3a0/0x420
[  216.174960][T10128]  ? __fget_files+0x2a/0x420
[  216.179572][T10128]  ? bpf_lsm_file_ioctl+0x9/0x20
[  216.184525][T10128]  ? __pfx_sock_ioctl+0x10/0x10
[  216.189379][T10128]  __se_sys_ioctl+0xf9/0x170
[  216.193980][T10128]  do_syscall_64+0xf6/0x210
[  216.198507][T10128]  ? clear_bhb_loop+0x45/0xa0
[  216.203185][T10128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.209078][T10128] RIP: 0033:0x7f15c658e969
[  216.213502][T10128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.233112][T10128] RSP: 002b:00007f15c73b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  216.241541][T10128] RAX: ffffffffffffffda RBX: 00007f15c67b5fa0 RCX: 00007f15c658e969
[  216.249544][T10128] RDX: 0000200000000080 RSI: 00000000400442c8 RDI: 0000000000000006
[  216.257538][T10128] RBP: 00007f15c6610ab1 R08: 0000000000000000 R09: 0000000000000000
[  216.265532][T10128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  216.273522][T10128] R13: 0000000000000000 R14: 00007f15c67b5fa0 R15: 00007ffc5db94b18
[  216.281509][T10128]  </TASK>
[  216.284898][T10128] Kernel Offset: disabled
[  216.289232][T10128] Rebooting in 86400 seconds..