last executing test programs:

10.960739077s ago: executing program 0 (id=1269):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newsa={0xf0, 0x10, 0x713, 0x0, 0x0, {{@in=@loopback}, {@in=@remote, 0x0, 0x32}, @in=@local, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @encap={0x1c, 0x4, {0x7}}]}, 0x154}}, 0x0)

10.839403226s ago: executing program 0 (id=1271):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0x8, 0x3, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000ffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001200)={r2, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000005c0)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x4207}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}]}, 0x3c}}, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="280000003b00070100000000000000000100000004000000080001"], 0x28}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@newtaction={0x44, 0x30, 0x109, 0x0, 0x0, {}, [{0x30, 0x1, [@m_nat={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x44}}, 0x0)
r7 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r8 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r8, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r8, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmmsg(r7, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000032c0)=ANY=[], 0x140}}], 0x2, 0x448d1)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1d, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b405000000000000711095000000000006000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc9, &(0x7f0000000080)=""/201, 0x0, 0x88, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)=@newlink={0x40, 0x10, 0x705, 0x0, 0x0, {0x0, 0x0, 0x600}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_STARTUP_QUERY_INTVL={0xc}]}}}]}, 0x40}}, 0x0)

9.861917092s ago: executing program 0 (id=1277):
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f00000006c0)=ANY=[@ANYBLOB="5000000008021100000108021100000008021100000000000000000000000000640001000006010101010101b1bdcc6b98a881072c892a569af6967b714a91248a7b956a4393"], 0x2c)
nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, &(0x7f0000000380))
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmmsg$inet(r0, &(0x7f0000000740)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000000)={0x2, 0x4e23, @remote}, 0x10, &(0x7f00000004c0)}}], 0x2, 0x24045005)
sendmsg$inet(r0, &(0x7f0000000180)={&(0x7f00000016c0)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x30064845)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000007c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x41)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x14}}, 0x0)
nanosleep(&(0x7f0000000440)={0x0, 0x2faf080}, 0x0)

9.040442456s ago: executing program 0 (id=1286):
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r1}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvmsg(r2, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f0000000100)='H', &(0x7f0000000000)=@tcp6=r4}, 0x20)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) (async)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000080)=ANY=[@ANYBLOB="bd49000100b4f5dc9307000000000000181100003af5e0d029260ec91914ae6cc589246f", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff})
vmsplice(r6, &(0x7f0000000300)=[{&(0x7f0000000200)='k', 0x1}], 0x1, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{0xffffffffffffffff, <r7=>0xffffffffffffffff}, &(0x7f0000000540), &(0x7f0000000580)='%pS    \x00'}, 0x20)
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
splice(r8, 0x0, r9, 0x0, 0x8ca, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000600)={0x0, 0x5, 0x18}, 0xc) (async)
r10 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000600)={0x0, 0x5, 0x18}, 0xc)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) (async)
r11 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r11}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x18, &(0x7f0000000800)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r11}, {}, {0x85, 0x0, 0x0, 0xb6}}, @printk={@lld}]}, &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xd, 0x10, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x3f4}, [@cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffff8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8}}, @map_fd]}, &(0x7f0000000300)='syzkaller\x00', 0x9, 0xf6, &(0x7f0000000400)=""/246, 0x41100, 0x14, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x0, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, r0, 0x3, &(0x7f0000000640)=[0xffffffffffffffff, 0xffffffffffffffff, r5, r6, r7, r8, r2, r10, r11], &(0x7f0000000680)=[{0x1, 0x1, 0xc, 0x5}, {0x0, 0x4, 0x2, 0xa}, {0x3, 0x3, 0x8}], 0x10, 0x80000001}, 0x90)
close(r3)
r12 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'macvlan0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'macvlan0\x00'})
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0) (async)
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000500), 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000500), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r13 = socket$nl_generic(0x10, 0x3, 0x10)
r14 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r13, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)={0x28, r14, 0x1, 0x0, 0x0, {0x5}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x4, 0x1, @udp='udp:syz0\x00'}]}]}, 0x28}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_ENABLE(r13, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)={0x28, r14, 0x1, 0x0, 0x0, {0x5}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x4, 0x1, @udp='udp:syz0\x00'}]}]}, 0x28}}, 0x0)

8.639956464s ago: executing program 0 (id=1291):
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYRESDEC=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000240001000000000000000000000000000600030000eb"], 0x1c}}, 0x0)
r1 = socket(0x11, 0x6, 0x100)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000500)={0x1, 0x6, 0x6, 0x8}, 0x22)
socket$inet(0x2, 0x3, 0x7fff)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f00000008c0)={0x0, 0xbf29}, &(0x7f0000000900)=0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000d000000085000000d000000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r2, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000040)={<r3=>0x0, @private, @private}, &(0x7f0000000080)=0xc)
syz_emit_ethernet(0x1c6, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd60922ff50190210000000000000000000000fffffffff0fffe8000000000000000000000000000aa000000006400000011"], 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000010e89807686c96d7541d00"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000940), r6)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x20, 0x0, 0x1, 0x70bd27, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x8001, 0x3d}}}}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x2000c8c0}, 0x41)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r5, &(0x7f0000000300)={0x0, 0x40, &(0x7f0000000240)={&(0x7f0000000740)=ANY=[@ANYBLOB="000000007bf376e8728fb5889467a2ce2b1c16e40a379644b42a1be94e82f04e2394679e9c2e2f5780b0e4fd1904259155695d64fd1a0127dce3a2ebb0992c3031f2e72cad5b5254a92a66ba7c86d71009c6a3012aa1331e8300000000000000484a222f5193489dc30ebecb2d13fca6addca5769823565851f5fe60c64a4254e40d106b87893123d3875731852cba2abb2159fc629103e729410931a00f89fe0baacfd3de08cbbc5250e5db527f47552b20f2d65a959a5a8ac1bb513ae6aec73e5b961674e6a50e456cbbbac5b65b6d061caf001f055a19d481f982c77cc8e8a96a7e86ba3a68607f0b71c97c4ed8cff310037c84d418c35ff6ee3a16c2a50044", @ANYRES16=r7, @ANYBLOB="010000000000000000002500000005002a00000000000a0001007770616e310000000c000500000000000000000005002b00000000000600060000000000"], 0x44}}, 0x0)
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r8, <r9=>0xffffffffffffffff}, &(0x7f0000000600), &(0x7f0000000640)}, 0x1c)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r9}, &(0x7f0000000000), &(0x7f0000000040)=r4}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x3c00, 0x40, '\x00', r3}, 0x90)
socket$packet(0x11, 0x2, 0x300)
r10 = socket$inet6_sctp(0xa, 0x5, 0x84)
r11 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r11, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r11, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000180)=0x10)
r12 = socket$inet(0x2, 0x0, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r12, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r13=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r10, 0x84, 0xa, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r13}, 0x20)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

8.252750586s ago: executing program 0 (id=1293):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f00000055c0), 0x400023c, 0x302, 0x0)
syz_extract_tcp_res(&(0x7f0000000240)={0x41424344, <r1=>0x41424344}, 0x0, 0x9)
syz_emit_ethernet(0x17c, &(0x7f0000000800)=ANY=[@ANYBLOB="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", @ANYRES32=r1, @ANYRES32, @ANYBLOB="b04001ff907800040101011312daf0785ec1f4828bd53f8d1544405792000000159e46da96b07465b70de8768b83"], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYRES8], 0x7c}}, 0x22008051)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x28, r2, 0x20, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x6, 0x80}}}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000014}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, 0xffffffffffffffff, 0x0)

3.355988404s ago: executing program 1 (id=1329):
socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f00000010c0), 0x4)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x18, 0x0, 0x310)
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r3 = epoll_create1(0x0)
epoll_pwait(r3, &(0x7f0000000040)=[{}], 0x1, 0x29a, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000000)={0x80000001})
r4 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(0xffffffffffffffff, 0x0, 0x0)
connect$l2tp6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote}, 0x20)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x38, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}], {0x14, 0x10}}, 0xc0}}, 0x0)

2.628084496s ago: executing program 3 (id=1337):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff00c}, {0x80000006}]}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000001180)=ANY=[@ANYBLOB="20a00000100203f7ffffff000400000500000000f2cad8104ca73c2202f73b528c38ff1eafe8c3fae68aa69e41c57d74e936178f3a9a5eb9f2c30d7334232f2a06a968b9c4bdf451339da6d7c7ad9ce33b97140461d72fc14e0727fbb056efce82bd73054126899c2a955fb6fae0c0a6df00"/123, @ANYBLOB="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", @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x20}}, 0x0)

2.453744376s ago: executing program 3 (id=1339):
bind$alg(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x900}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r1}, 0x90)

2.352454976s ago: executing program 3 (id=1341):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000002080)=@gettaction={0x48, 0x32, 0x0, 0x0, 0x0, {}, [@action_gd=@TCA_ACT_TAB={0x34, 0x1, [{0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}]}, 0x48}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {0x0}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})

2.249760844s ago: executing program 3 (id=1343):
pipe(&(0x7f0000000580)={<r0=>0xffffffffffffffff})
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket(0x2, 0x80805, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)={'syzkaller1\x00', 0xc201})
r2 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r2, 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r4 = openat$cgroup_devices(r3, &(0x7f0000000000)='devices.allow\x00', 0x2, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
write$cgroup_devices(r4, &(0x7f0000000140)=ANY=[@ANYRES64=0x0], 0xa)
r5 = socket$packet(0x11, 0x2, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f0000000280)={0x0, 0x1, 0x3e5e, 0x8, 0xe1fb, 0x7c73}, &(0x7f00000001c0)=0x14)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2}, 0xffffffffffffff14)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'syztnl1\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x4, 0x2, 0x1f, 0x76000000, 0x1b, @local, @rand_addr=' \x01\x00', 0x7800, 0x7800, 0x85e0, 0x8}})
socket$igmp6(0xa, 0x3, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000009000)={0x0, 0x0, &(0x7f0000008fc0)={0x0}}, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}], 0x10)
accept4$llc(r1, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x0, 0x80800)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r7 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r7, &(0x7f00000004c0)={0x18, 0x0, {0x4, @multicast, 'pimreg0\x00'}}, 0x1e)
connect$llc(r0, &(0x7f0000001d80)={0x1a, 0x339, 0x5, 0xd, 0x8, 0x5, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}}, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x8914, &(0x7f0000001e00)={'sit0\x00', 0x1})

1.728427861s ago: executing program 3 (id=1348):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x1, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000700000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000800000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x10, 0x38, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='cachefiles_unlink\x00'}, 0xffffffffffffff3d)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x18, 0x0, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x3b, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40}, 0x90)
r3 = socket$inet_sctp(0x2, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, 0x0, &(0x7f0000000240))
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000640)={0x0, @in={{0x2, 0x4e24, @multicast1}}, 0x0, 0x8001, 0x2, 0x10000005, 0xd2, 0xff}, 0x9c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r2}, 0x10)
socket(0x0, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x4000880)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000008c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x6}, {0x8, 0xffff}, {0xfff1}}}, 0x24}}, 0x40440d0)
r7 = socket$netlink(0x10, 0x3, 0x4)
writev(r7, &(0x7f0000000300)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a117436c379020000000000030058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100080c10000a000000224e0000", 0x58}], 0x1)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x10}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000700)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r8, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$inet(r11, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r12=>0xffffffffffffffff})
sendmsg$inet(r12, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)

1.364552912s ago: executing program 3 (id=1352):
r0 = socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f00000010c0), 0x4)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x18, 0x0, 0x310)
r1 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r4 = epoll_create1(0x0)
epoll_pwait(r4, &(0x7f0000000040)=[{}], 0x1, 0x29a, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r1, &(0x7f0000000000)={0x80000001})
r5 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(0xffffffffffffffff, 0x0, 0x0)
connect$l2tp6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote}, 0x20)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x0, 0x3a}, 0x1c)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x38, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}], {0x14, 0x10}}, 0xc0}}, 0x0)

1.333085275s ago: executing program 2 (id=1353):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000002080)=@gettaction={0x48, 0x32, 0x0, 0x0, 0x0, {}, [@action_gd=@TCA_ACT_TAB={0x34, 0x1, [{0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}]}, 0x48}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {0x0}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})

1.203418898s ago: executing program 2 (id=1355):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000000580), 0x0, 0x63, 0x0)

1.089123603s ago: executing program 4 (id=1356):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x702, 0xe, 0x0, &(0x7f0000000100)="e40c3fc1c79a0ed8a22f8aa6f5b9", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async, rerun: 64)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.time_recursive\x00', 0x275a, 0x0) (rerun: 64)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYRES8=r1], &(0x7f0000000380)='GPL\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3}, 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10) (async, rerun: 32)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) (async, rerun: 32)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000ac0)=ANY=[@ANYRESHEX=r2], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x76, '\x00', 0x0, 0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x2, &(0x7f00000001c0)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9aba, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
r5 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r5, &(0x7f0000000080)={&(0x7f00000000c0)={0xa, 0x4e24, 0x0, @empty}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="24000000000000000100000001"], 0x28}, 0x0)
r6 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x0, 0x0, 0x0, 0xfffff034}, {}]}, 0x10) (async, rerun: 32)
syz_emit_ethernet(0x26, &(0x7f0000000300)={@remote, @multicast, @val={@void, {0x8100, 0x2, 0x1, 0x2}}, {@ipv4={0x802, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @local}}}}}, 0x0) (rerun: 32)
syz_open_procfs$namespace(0x0, &(0x7f0000000d00)='ns/ipc\x00') (async, rerun: 32)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 32)
sendmsg$IPSET_CMD_SWAP(r7, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001140)={0x14, 0x6, 0x6, 0x801}, 0x14}}, 0x0) (async)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0) (async)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={<r8=>0xffffffffffffffff})
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x11b}, 0x24008051) (async)
recvmsg$unix(r8, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0) (async, rerun: 32)
recvmsg$unix(r9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0) (rerun: 32)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$inet(r11, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)

1.088265306s ago: executing program 2 (id=1357):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000dc0)=[{&(0x7f00000002c0)="5caee5954d5a5554b333fc25fc3d2ffe54", 0x11}, {&(0x7f00000003c0)="2bbc85abec8aebd1f4ddea09c0978fb78fe430030cf0f53c54b60388097765a85e7b529c420ebf47c78befb3cfe0b06c89e1309af50044dd5f75311b9048138cdf733165cfd550e17598ec83bc7bba86e899884c9f9c7251331e5b7f0ec55ef64872e88e534ba4ea793cb9b70bd3d85744ccf3155e7355798604bd638a18fbb0e644a3ec751f3ef927a5a5e4430ac2cc0cb9d4fde4bae82fc1521107fa4a9cc8a1c8499b3c35316cbf7d885fd273f92b9c26a8c2939b1a25af56c1e22b3a5b2aefb28a667f42434cb83b1447d0741a9f37d54bae08c3", 0xd6}, {&(0x7f0000000a40)="1f92866ab43fbfdb56d46170b6a1acf6ad3dcddb32ddfb7f1c47423d7fd450e669e5b4ad827631e02d9b1b867a57854b2c0c02825bb64d28b9138a85210c1c520716c53a79567cda8638d53870ee0a1152c15d8b7f8a35e223", 0x59}, {&(0x7f0000000ac0)="6e2d93d8a1cb529ac1c98587964cc3719fa8057a565fcddfc81d6f5bf8f2cb40bbe7fe95edf3e0a8d429bda0923fd4781351df65c302c062fbb59e5574b1cc96b661caf32ef12042f435b656dbb37746ad183343122fd0a7281433f9aad26d319df18a35cedf381916e8b69268cf72f5dd85", 0x72}, {&(0x7f0000000b40)="295f83e701bbd1c606009431ddbe27da65ad3b8aaf7049acd2185857debc61323b51e943f3be969bfe0e3a02bbe3b39f1984e988420104db3dbb9ff0e5d421f11d1f2ccb19d982ce957d7fbdf3f082bede97a10b8a9188a67cfca8a30850b892208ee376986cf5fa742866de784393b19a0d79d426f70f6e07cf05f4dd9cca2126d3ae6650805af9efd879fabdba1f51667af63775c80e364db134dbcba03a7db32800", 0xa3}, {&(0x7f00000004c0)="dfdceb00f76dc4a442a955b420e19f492be0a4df552b", 0x16}, {&(0x7f0000000c00)="7ff7b377378cb9a2d0954bc56d4fa595684b0c37c8a31319a710f3db55fe2856e3e2c000f360bf988775a8778b8b78a9752dc018bab4f3a72a10a243817e662321529bb4d49cd14f1ab46f0f682fb8becd223825e1dd492eb954594b391b57fae192718013e2f43c3dc2308badd165c11e95c66ae5f3d9033987742d78fce38858835d8eac544fbad9d82275871fa72733f8176ac894bba1cb69d1b3b12ab36e0b1eb00a9a3727b831681098c3c9b8a67a744cc93fa1871e8060f36baa2a317fa8f96b8294735dcc5a1d0f93731636bb5ca79088ee252bd72e5b60", 0xdb}, {&(0x7f0000000d00)="b4675d1f42acd433f4e555798a30092bb2091f3260aa76b137437af7727a4ff310d04facd70fd62fc8023e6a29006148dfe3d245312dceb36640daa5cebbb37761f857c5d78bc2fd863715e1836109e8d7ca21357c82ca78e756e54be6481f9006cf08420d89362910ec9af6505d2a7f14531602fa70de913c638eee2d826047947bc18e8433da7f33bedf86ea10ad040f85eb01d465b5ca38d0efb409dea4e11477f1ee3def", 0xa6}], 0x8}, 0x4000114)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc601000127a0a000600073582c137153e37080c188001ac0f000300", 0x33fe0}], 0x1, 0x0, 0x0, 0x8100000}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2ed0300000000000000af99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14008c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000006da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4978ea8e4aa37014191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d9a0e06da200481cde8bf475bc3e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a00"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r2}, 0x10)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000080000000000007110530000000080b26663621a95dc00"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
socket$inet6(0xa, 0x3, 0x87)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x4001, 0x3, 0x458, 0x300, 0xb, 0x148, 0x308, 0x148, 0x3c0, 0x230, 0x242, 0x3c0, 0x215, 0x3, 0x0, {[{{@ip={@local, @remote, 0x0, 0x0, 'batadv_slave_0\x00', 'macvtap0\x00', {}, {}, 0x73}, 0x0, 0x2d0, 0x300, 0x0, {0xff0f000000000000}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x0, 0x0, 0x8}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0xe, 0x0, 0x6, './file0\x00'}}]}, @common=@inet=@SET2={0x30}}, {{@uncond, 0xec010000, 0xa0, 0xc0, 0x0, {}, [@common=@ah={{0x30}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4b8)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000002030102000000000000000002000009080001000000000200000000000000de020000000800054000000020080001000a000022080005400000000408000100020000270800044000000000"], 0x50}, 0x1, 0x0, 0x0, 0x44010}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001c40)={&(0x7f0000001d00)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x6c, 0x6c, 0x2, [@fwd={0x1}, @func_proto={0x0, 0x7, 0x0, 0xd, 0x0, [{0xf, 0x5}, {0x9, 0x1}, {0xb}, {0x4, 0x3}, {0x4, 0x1}, {0x9, 0x4}, {0xe, 0x4}]}, @typedef={0x7, 0x0, 0x0, 0x8, 0x2}, @var={0x7, 0x0, 0x0, 0xe, 0x1, 0x1}]}}, 0x0, 0x86}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="f4ffffff42da33ff53ac00000002898443d9e38bf84a88e88965db00cd00950000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000840)={r5, 0x0, 0x1400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
pipe(&(0x7f0000000880))
pipe(&(0x7f0000000880))
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000100), 0xfecc)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r7, &(0x7f0000000000)={0xa, 0x4001, 0x0, @loopback}, 0x1c)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_FLAGS(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={0x34, r9, 0x1, 0x0, 0x0, {0x2}, [@MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}]}, 0x34}}, 0x0)

1.08729468s ago: executing program 1 (id=1358):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000240)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x4, 0x3}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{0x1, <r1=>0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f00000002c0)}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x28, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000400000000000000070000000667bd0e0400000018410000f8ffffff000000000000000018000000549e00000000000000800000183300000400000000000000000000002197ffffffffffff18110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000100000085000000820000008510000003000050d7a17f000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000000000"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x90)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_user\x00', 0x0, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, &(0x7f0000000040)={0x5, {{0xa, 0x4e20, 0x1, @dev={0xfe, 0x80, '\x00', 0x42}, 0xfffffc00}}}, 0x88)

876.714312ms ago: executing program 1 (id=1359):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close(0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, 0x0, 0x0)
accept4(0xffffffffffffffff, &(0x7f0000000340)=@pppoe={0x18, 0x0, {0x0, @local}}, 0x0, 0x1800)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000180), 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, 0x0, 0x0}, 0x90)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write(r0, 0x0, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
socket$l2tp6(0xa, 0x2, 0x73)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'wg0\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000180)="0b0306004f04020002004788aa96a13bb1000011430588ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)

876.400116ms ago: executing program 4 (id=1360):
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000940)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001040)=@newqdisc={0x88, 0x24, 0x4ee4e6a52ff56541, 0x15000000, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x34, 0x2, {{}, [@TCA_NETEM_REORDER={0xc}, @TCA_NETEM_CORRUPT={0xc, 0x4, {0x80, 0x5}}]}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0xff}}, {0x4}}]}]}, 0x88}}, 0x0)

747.179614ms ago: executing program 4 (id=1361):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x2400, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01080000000000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d65746100000000140002800800014000000012080002400000000014000000fe"], 0xd8}}, 0x0)

719.866608ms ago: executing program 2 (id=1362):
socket(0x0, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000640)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x41}}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000500)=[{{&(0x7f0000000080)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}, {{&(0x7f0000000180)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000001440)="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", 0x57b}], 0x1}}, {{&(0x7f0000000300)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x3, 0x2000c044)
sendmmsg$inet(r0, &(0x7f0000005f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) (fail_nth: 5)

628.335612ms ago: executing program 1 (id=1363):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000dc0)=[{&(0x7f00000002c0)="5caee5954d5a5554b333fc25fc3d2ffe54", 0x11}, {&(0x7f00000003c0)="2bbc85abec8aebd1f4ddea09c0978fb78fe430030cf0f53c54b60388097765a85e7b529c420ebf47c78befb3cfe0b06c89e1309af50044dd5f75311b9048138cdf733165cfd550e17598ec83bc7bba86e899884c9f9c7251331e5b7f0ec55ef64872e88e534ba4ea793cb9b70bd3d85744ccf3155e7355798604bd638a18fbb0e644a3ec751f3ef927a5a5e4430ac2cc0cb9d4fde4bae82fc1521107fa4a9cc8a1c8499b3c35316cbf7d885fd273f92b9c26a8c2939b1a25af56c1e22b3a5b2aefb28a667f42434cb83b1447d0741a9f37d54bae08c3", 0xd6}, {&(0x7f0000000a40)="1f92866ab43fbfdb56d46170b6a1acf6ad3dcddb32ddfb7f1c47423d7fd450e669e5b4ad827631e02d9b1b867a57854b2c0c02825bb64d28b9138a85210c1c520716c53a79567cda8638d53870ee0a1152c15d8b7f8a35e223", 0x59}, {&(0x7f0000000ac0)="6e2d93d8a1cb529ac1c98587964cc3719fa8057a565fcddfc81d6f5bf8f2cb40bbe7fe95edf3e0a8d429bda0923fd4781351df65c302c062fbb59e5574b1cc96b661caf32ef12042f435b656dbb37746ad183343122fd0a7281433f9aad26d319df18a35cedf381916e8b69268cf72f5dd85", 0x72}, {&(0x7f0000000b40)="295f83e701bbd1c606009431ddbe27da65ad3b8aaf7049acd2185857debc61323b51e943f3be969bfe0e3a02bbe3b39f1984e988420104db3dbb9ff0e5d421f11d1f2ccb19d982ce957d7fbdf3f082bede97a10b8a9188a67cfca8a30850b892208ee376986cf5fa742866de784393b19a0d79d426f70f6e07cf05f4dd9cca2126d3ae6650805af9efd879fabdba1f51667af63775c80e364db134dbcba03a7db32800", 0xa3}, {&(0x7f00000004c0)="dfdceb00f76dc4a442a955b420e19f492be0a4df552b", 0x16}, {&(0x7f0000000c00)="7ff7b377378cb9a2d0954bc56d4fa595684b0c37c8a31319a710f3db55fe2856e3e2c000f360bf988775a8778b8b78a9752dc018bab4f3a72a10a243817e662321529bb4d49cd14f1ab46f0f682fb8becd223825e1dd492eb954594b391b57fae192718013e2f43c3dc2308badd165c11e95c66ae5f3d9033987742d78fce38858835d8eac544fbad9d82275871fa72733f8176ac894bba1cb69d1b3b12ab36e0b1eb00a9a3727b831681098c3c9b8a67a744cc93fa1871e8060f36baa2a317fa8f96b8294735dcc5a1d0f93731636bb5ca79088ee252bd72e5b60", 0xdb}, {&(0x7f0000000d00)="b4675d1f42acd433f4e555798a30092bb2091f3260aa76b137437af7727a4ff310d04facd70fd62fc8023e6a29006148dfe3d245312dceb36640daa5cebbb37761f857c5d78bc2fd863715e1836109e8d7ca21357c82ca78e756e54be6481f9006cf08420d89362910ec9af6505d2a7f14531602fa70de913c638eee2d826047947bc18e8433da7f33bedf86ea10ad040f85eb01d465b5ca38d0efb409dea4e11477f1ee3def", 0xa6}], 0x8}, 0x4000114)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc601000127a0a000600073582c137153e37080c188001ac0f000300", 0x33fe0}], 0x1, 0x0, 0x0, 0x8100000}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2ed0300000000000000af99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14008c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000006da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4978ea8e4aa37014191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d9a0e06da200481cde8bf475bc3e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a00"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r2}, 0x10)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000080000000000007110530000000080b26663621a95dc00"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
socket$inet6(0xa, 0x3, 0x87)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x4001, 0x3, 0x458, 0x300, 0xb, 0x148, 0x308, 0x148, 0x3c0, 0x230, 0x242, 0x3c0, 0x215, 0x3, 0x0, {[{{@ip={@local, @remote, 0x0, 0x0, 'batadv_slave_0\x00', 'macvtap0\x00', {}, {}, 0x73}, 0x0, 0x2d0, 0x300, 0x0, {0xff0f000000000000}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x0, 0x0, 0x8}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0xe, 0x0, 0x6, './file0\x00'}}]}, @common=@inet=@SET2={0x30}}, {{@uncond, 0xec010000, 0xa0, 0xc0, 0x0, {}, [@common=@ah={{0x30}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4b8)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000002030102000000000000000002000009080001000000000200000000000000de020000000800054000000020080001000a000022080005400000000408000100020000270800044000000000"], 0x50}, 0x1, 0x0, 0x0, 0x44010}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001c40)={&(0x7f0000001d00)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x6c, 0x6c, 0x2, [@fwd={0x1}, @func_proto={0x0, 0x7, 0x0, 0xd, 0x0, [{0xf, 0x5}, {0x9, 0x1}, {0xb}, {0x4, 0x3}, {0x4, 0x1}, {0x9, 0x4}, {0xe, 0x4}]}, @typedef={0x7, 0x0, 0x0, 0x8, 0x2}, @var={0x7, 0x0, 0x0, 0xe, 0x1, 0x1}]}}, 0x0, 0x86}, 0x20)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x48, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_MARK_MASK={0x8}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x1}]}, 0x48}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="f4ffffff42da33ff53ac00000002898443d9e38bf84a88e88965db00cd00950000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000840)={r6, 0x0, 0x1400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
pipe(&(0x7f0000000880))
pipe(&(0x7f0000000880))
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000100), 0xfecc)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4001, 0x0, @loopback}, 0x1c)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_FLAGS(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={0x34, r8, 0x1, 0x0, 0x0, {0x2}, [@MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}]}, 0x34}}, 0x0)

553.876058ms ago: executing program 4 (id=1364):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth1_virt_wifi\x00'})
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x2, 0x300)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000080)="170000000200020000ffbe8c5ee17688a2006c000103000afdff02a257fc5ad90200bb6a880000d6c9db0000db00000200df0180", 0x34)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0), 0x4)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000000)=0x8, &(0x7f0000000040)=0x4)
r1 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_GET_MR(r1, 0x114, 0x6, &(0x7f0000000440)={{0x0}, 0x0}, 0x20)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x24, 0x0, 0x8, 0x301, 0x0, 0x0, {0x0, 0x0, 0x5}, [@CTA_TIMEOUT_L3PROTO={0x6}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008088}, 0x8000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000380)=ANY=[@ANYBLOB="1800"/13], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x3d, 0x0, &(0x7f0000000140))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x144000, 0x7fe2, 0x1}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r3, &(0x7f0000000180), 0x20000000}, 0x20)

444.374304ms ago: executing program 2 (id=1365):
r0 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xe, 0x4, 0x4, 0xa}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
r3 = socket(0x10, 0x803, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, 0x0, &(0x7f0000000580))
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r3, 0x0, 0x0)
getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4], 0x48}}, 0x0)
socket(0x29, 0x800, 0x8)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000009240)={&(0x7f0000001340)=@newtfilter={0x474, 0x2c, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {}, {0xb}}, [@filter_kind_options=@f_fw={{0x7}, {0x448, 0x2, [@TCA_FW_POLICE={0x444, 0x2, [@TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x20000000, 0x0, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0xfffffff7}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x100}}}]}]}}]}, 0x474}}, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000600)=0x9, 0x12)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r6, 0x84, 0x7c, &(0x7f0000000340), &(0x7f0000000000)=0xfffffffffffffc3c)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0)
r7 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, r7, 0x10, 0x70bd2d, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x800)

265.743338ms ago: executing program 4 (id=1366):
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_ARP_VALIDATE={0x8, 0x9, 0xffffffff}]}}}]}, 0x3c}}, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x44, 0x0, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x8, 0x4, '\x00\x00\x00\x00'}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}, @ETHTOOL_A_BITSET_MASK={0x4}]}]}, 0x44}}, 0x0)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100), r0)
sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)={0x58, r3, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x44, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'macvtap0\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'pim6reg1\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x2}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x50}, 0x4880)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r2, 0x6628)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000280)={0x6}, 0x6a)
sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000006c40)={0x28, 0x12, 0xa01, 0x0, 0x0, {0x80, 0x0, 0x2}, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@local}]}, 0x28}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt(r5, 0x1, 0x6, &(0x7f0000000180)=""/82, &(0x7f00000000c0)=0x52)
r6 = syz_genetlink_get_family_id$smc(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="270e0000000000000000030202000900010053"], 0x20}, 0x1, 0x40030000000000}, 0x0)

240.665706ms ago: executing program 2 (id=1367):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x8, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="85000000070000006a0a00ff010100002600000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="100000000000002505000000000000009500000000000000"], &(0x7f0000000140)='GPL\x00', 0x2, 0xa, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r2, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r2, 0xc0096616, &(0x7f0000000100)={0x3, [0x0, 0x0, 0x0]})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x9, 0x4)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x7, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r6=>0x0})
setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f0000000000)={@private1, r6}, 0x14)
write$tun(r0, &(0x7f0000000840)={@val, @void, @eth={@multicast, @local, @val={@void}, {@ipv4={0x800, @dccp={{0x7, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x21, 0x0, @private, @rand_addr, {[@noop, @timestamp_addr={0x44, 0x4}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "512605", 0x0, "938b31"}}}}}}}, 0x42)

202.455301ms ago: executing program 1 (id=1368):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha1-avx2)\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socket(0x0, 0x3, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge0\x00'}) (async)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x2, &(0x7f0000000140)=ANY=[@ANYBLOB="61104d000000000095"], 0x0}, 0x90) (async)
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x2e, 0x0, 0x0) (async)
r3 = openat$cgroup_devices(r2, &(0x7f0000000080)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r3, &(0x7f0000000140)=ANY=[@ANYBLOB='c 75:*\t\n'], 0xa)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002f80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) (async)
pwrite64(r1, &(0x7f0000000080)="3245b8e9dcebd85f371fe2bba5a7cec2ac6f5bc17d7b1b90592766cf42f66ff90c5f0da77bb0c24eb4be8084345cd7b64134f8242dbb1e09ced567c11055e6f3a1fd06c078e0471c005898527f60f722ab0b48e3a187e0e735c3df0f845f053ec1f27d186aa4ec9e049eb068ebb0a9ea904d2f6a93b09c3017a5fa82d08a11419c6a8b8503a557b9b6b3c9d34a1a29400a146efe9491b39239f3518522ba9b0012e2f126eb65d4bc080b6b913debd9fb892a28c49c7519eb43e702c80f8fe3c0482cfe3f0055258e1eedc6f820218b170129be8ca59222027f9b2e32", 0xdc, 0x3ff) (async)
r4 = accept4(r1, 0x0, 0x0, 0x0)
sendmsg$alg(r4, &(0x7f0000001a00)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000480)="b8", 0x1}, {&(0x7f0000000580)="03", 0x1}], 0x2}, 0x0) (async)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)=@newtaction={0x84, 0x30, 0xb, 0x0, 0x0, {}, [{0x70, 0x1, [@m_ct={0x6c, 0x1, 0x0, 0x0, {{0x7}, {0x44, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_ACTION={0x6, 0x3, 0x19}, @TCA_CT_NAT_IPV4_MIN={0x8, 0x9, @initdev={0xac, 0x1e, 0x0, 0x0}}, @TCA_CT_NAT_PORT_MAX={0x6}, @TCA_CT_NAT_PORT_MIN={0x6}, @TCA_CT_NAT_IPV4_MAX={0x8, 0xa, @multicast1}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x84}}, 0x0)

585.27µs ago: executing program 1 (id=1369):
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r3, @ANYBLOB="11980000000000002000128008000100677265001400028008000100", @ANYRES32, @ANYBLOB="080007007f"], 0x40}}, 0x0)
sendmmsg$inet(r0, &(0x7f0000005ac0)=[{{&(0x7f0000000180)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xbb8, &(0x7f0000000400)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @local, @local}}}], 0x20, 0x11000000}}], 0x1, 0x0)

0s ago: executing program 4 (id=1370):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x10)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r0, &(0x7f00000000c0)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x11, 0x3, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, &(0x7f00000001c0)=0x3)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r3=>0x0})
bind$packet(r2, &(0x7f0000000180)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000240)=0xea, 0x4)
r4 = socket(0x1e, 0x1, 0x0)
sendmmsg$sock(r4, &(0x7f0000000100)=[{{&(0x7f0000000000)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x1}}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1000000}}, {{&(0x7f0000000180)=@pppol2tpv3={0x1e, 0x4, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, 0x0}}], 0x2, 0x4048040)
sendmsg$netlink(r2, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000340)=ANY=[@ANYBLOB="03011400011218000e358000ad0001140000002f0600ac141418e0000003808a8972bd0b72e410820c520f061fe4fdfe4b889430ebb52997e36e039b1c598825f80100e3c06376c33076a167d514fa570a440261a67a34a07605c93a194946bc6283f4"], 0xdd12}], 0x1}, 0x0)
gettid()
socket$nl_rdma(0x10, 0x3, 0x14)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r5}, 0x10)
openat$cgroup_ro(r5, &(0x7f00000000c0)='cgroup.events\x00', 0x275a, 0x0)

kernel console output (not intermixed with test programs):

89.722318][ T6199] RAX: ffffffffffffffda RBX: 00007ff653d03f60 RCX: 00007ff653b75bd9
[   89.730311][ T6199] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[   89.738310][ T6199] RBP: 00007ff6549460a0 R08: 00000000200000c0 R09: 000000000000001c
[   89.746415][ T6199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   89.756543][ T6199] R13: 000000000000000b R14: 00007ff653d03f60 R15: 00007fffe69f2558
[   89.765878][ T6199]  </TASK>
[   89.947792][   T45] IPVS: starting estimator thread 0...
[   90.054355][ T6220] IPVS: using max 20 ests per chain, 48000 per kthread
[   90.229518][ T6233] FAULT_INJECTION: forcing a failure.
[   90.229518][ T6233] name failslab, interval 1, probability 0, space 0, times 0
[   90.271240][ T6233] CPU: 0 PID: 6233 Comm: syz.2.325 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[   90.281269][ T6233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   90.291346][ T6233] Call Trace:
[   90.294645][ T6233]  <TASK>
[   90.297853][ T6233]  dump_stack_lvl+0x241/0x360
[   90.302559][ T6233]  ? __pfx_dump_stack_lvl+0x10/0x10
[   90.307776][ T6233]  ? __pfx__printk+0x10/0x10
[   90.312397][ T6233]  should_fail_ex+0x3b0/0x4e0
[   90.317100][ T6233]  ? sctp_add_bind_addr+0x89/0x3a0
[   90.322238][ T6233]  should_failslab+0x9/0x20
[   90.326758][ T6233]  kmalloc_trace_noprof+0x6c/0x2c0
[   90.331894][ T6233]  sctp_add_bind_addr+0x89/0x3a0
[   90.336853][ T6233]  sctp_copy_local_addr_list+0x311/0x500
[   90.342508][ T6233]  ? sctp_copy_local_addr_list+0xab/0x500
[   90.348256][ T6233]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[   90.354437][ T6233]  ? sctp_v4_is_any+0x35/0x60
[   90.359129][ T6233]  sctp_bind_addr_copy+0xad/0x3b0
[   90.364170][ T6233]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[   90.370521][ T6233]  sctp_connect_new_asoc+0x2f3/0x6c0
[   90.375824][ T6233]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[   90.381648][ T6233]  ? sctp_sendmsg+0xbb9/0x3520
[   90.386433][ T6233]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[   90.391997][ T6233]  ? security_sctp_bind_connect+0x90/0xb0
[   90.397740][ T6233]  sctp_sendmsg+0x219a/0x3520
[   90.402449][ T6233]  ? __pfx_sctp_sendmsg+0x10/0x10
[   90.407468][ T6233]  ? __pfx_aa_sk_perm+0x10/0x10
[   90.412313][ T6233]  ? inet_sendmsg+0x330/0x390
[   90.416975][ T6233]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   90.422250][ T6233]  ? security_socket_sendmsg+0x87/0xb0
[   90.427714][ T6233]  __sock_sendmsg+0x1a6/0x270
[   90.432406][ T6233]  ____sys_sendmsg+0x525/0x7d0
[   90.437175][ T6233]  ? __pfx_____sys_sendmsg+0x10/0x10
[   90.442478][ T6233]  __sys_sendmsg+0x2b0/0x3a0
[   90.447079][ T6233]  ? __pfx___sys_sendmsg+0x10/0x10
[   90.452283][ T6233]  ? vfs_write+0x7c4/0xc90
[   90.456722][ T6233]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   90.463309][ T6233]  ? do_syscall_64+0x100/0x230
[   90.468111][ T6233]  ? do_syscall_64+0xb6/0x230
[   90.472842][ T6233]  do_syscall_64+0xf3/0x230
[   90.477386][ T6233]  ? clear_bhb_loop+0x35/0x90
[   90.482089][ T6233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.488000][ T6233] RIP: 0033:0x7f723c375bd9
[   90.492438][ T6233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.512171][ T6233] RSP: 002b:00007f723d0a2048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   90.521047][ T6233] RAX: ffffffffffffffda RBX: 00007f723c504110 RCX: 00007f723c375bd9
[   90.529013][ T6233] RDX: 0000000000000000 RSI: 0000000020002e80 RDI: 0000000000000003
[   90.536971][ T6233] RBP: 00007f723d0a20a0 R08: 0000000000000000 R09: 0000000000000000
[   90.544934][ T6233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   90.552890][ T6233] R13: 000000000000006e R14: 00007f723c504110 R15: 00007fff0bafa228
[   90.560860][ T6233]  </TASK>
[   90.848039][ T6255] __nla_validate_parse: 6 callbacks suppressed
[   90.848058][ T6255] netlink: 12 bytes leftover after parsing attributes in process `syz.1.335'.
[   90.873073][ T6256] netlink: 8 bytes leftover after parsing attributes in process `syz.0.334'.
[   90.897364][ T6256] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[   90.912769][ T6255] netlink: 68 bytes leftover after parsing attributes in process `syz.1.335'.
[   91.008815][ T6261] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   91.066527][ T6255] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   91.322571][ T6281] netlink: 'syz.0.345': attribute type 29 has an invalid length.
[   91.336761][ T6281] netlink: 8 bytes leftover after parsing attributes in process `syz.0.345'.
[   91.357224][ T6281] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   91.415008][ T6284] netlink: 8 bytes leftover after parsing attributes in process `syz.3.346'.
[   91.439144][ T6284] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[   91.580911][ T6294] netlink: 'syz.3.351': attribute type 16 has an invalid length.
[   91.603666][ T6294] netlink: 4 bytes leftover after parsing attributes in process `syz.3.351'.
[   91.949168][ T6311] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   91.991841][ T6313] netlink: 'syz.4.358': attribute type 1 has an invalid length.
[   92.000404][ T6313] netlink: 112860 bytes leftover after parsing attributes in process `syz.4.358'.
[   92.009799][ T6313] netlink: 'syz.4.358': attribute type 1 has an invalid length.
[   92.020657][ T6311] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   92.092024][ T6317] netlink: 40 bytes leftover after parsing attributes in process `syz.4.361'.
[   92.173337][    C1] Dead loop on virtual device ipvlan1, fix it urgently!
[   92.384592][ T6334] netlink: 'syz.4.362': attribute type 9 has an invalid length.
[   92.553681][ T6339] netlink: 8 bytes leftover after parsing attributes in process `syz.2.364'.
[   92.590645][ T6339] netlink: 28 bytes leftover after parsing attributes in process `syz.2.364'.
[   92.821355][ T6363] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[   93.044273][ T6375] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   93.059057][ T6375] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   93.128370][ T6385] netlink: 'syz.4.378': attribute type 10 has an invalid length.
[   93.138579][ T6385] team0: Device ipvlan1 is up. Set it down before adding it as a team port
[   93.195212][ T6390] netlink: 'syz.3.377': attribute type 9 has an invalid length.
[   93.285655][ T6393] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[   93.770702][ T6413] netlink: 'syz.2.389': attribute type 4 has an invalid length.
[   93.781791][ T6413] netlink: 'syz.2.389': attribute type 8 has an invalid length.
[   94.063350][ T6430] netlink: 'syz.4.390': attribute type 9 has an invalid length.
[   94.166071][ T6436] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[   94.426736][ T6447] caif0: entered allmulticast mode
[   94.434075][ T6449] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[   94.663783][ T6459] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.671168][ T6459] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.740064][ T6459] bridge0: left promiscuous mode
[   94.845712][ T6471] sctp: [Deprecated]: syz.3.407 (pid 6471) Use of int in maxseg socket option.
[   94.845712][ T6471] Use struct sctp_assoc_value instead
[   94.885662][ T6453] mac80211_hwsim hwsim6 wlan0: entered promiscuous mode
[   94.913445][ T6453] macvlan2: entered allmulticast mode
[   94.936911][ T6453] mac80211_hwsim hwsim6 wlan0: entered allmulticast mode
[   95.178577][ T6453] mac80211_hwsim hwsim6 wlan0: left allmulticast mode
[   95.205179][ T6453] mac80211_hwsim hwsim6 wlan0: left promiscuous mode
[   95.399360][ T6467] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.406646][ T6467] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.414351][ T6467] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.421512][ T6467] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.430499][ T6467] bridge0: entered promiscuous mode
[   95.653817][ T6492] raw_sendmsg: syz.0.411 forgot to set AF_INET. Fix it!
[   96.004884][ T6513] __nla_validate_parse: 18 callbacks suppressed
[   96.004904][ T6513] netlink: 28 bytes leftover after parsing attributes in process `syz.0.421'.
[   96.044618][ T6513] netlink: 28 bytes leftover after parsing attributes in process `syz.0.421'.
[   96.270451][ T6521] FAULT_INJECTION: forcing a failure.
[   96.270451][ T6521] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   96.290365][ T6521] CPU: 1 PID: 6521 Comm: syz.0.424 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[   96.300391][ T6521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   96.310462][ T6521] Call Trace:
[   96.313753][ T6521]  <TASK>
[   96.316700][ T6521]  dump_stack_lvl+0x241/0x360
[   96.321400][ T6521]  ? __pfx_dump_stack_lvl+0x10/0x10
[   96.326614][ T6521]  ? __pfx__printk+0x10/0x10
[   96.331222][ T6521]  ? __lock_acquire+0x1346/0x1fd0
[   96.336270][ T6521]  should_fail_ex+0x3b0/0x4e0
[   96.340974][ T6521]  prepare_alloc_pages+0x1da/0x5d0
[   96.346112][ T6521]  __alloc_pages_noprof+0x166/0x6c0
[   96.351330][ T6521]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   96.357083][ T6521]  alloc_pages_mpol_noprof+0x3e8/0x680
[   96.362577][ T6521]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   96.368589][ T6521]  vma_alloc_folio_noprof+0xf3/0x1f0
[   96.373895][ T6521]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   96.379812][ T6521]  ? do_raw_spin_unlock+0x13c/0x8b0
[   96.385033][ T6521]  folio_prealloc+0x31/0x170
[   96.389652][ T6521]  do_wp_page+0x11cc/0x52f0
[   96.394193][ T6521]  ? __pfx_do_wp_page+0x10/0x10
[   96.399072][ T6521]  ? __pfx_lock_acquire+0x10/0x10
[   96.400892][ T6523] netlink: 40 bytes leftover after parsing attributes in process `syz.1.423'.
[   96.404091][ T6521]  ? validate_chain+0x11e/0x5900
[   96.404199][ T6521]  ? do_raw_spin_lock+0x14f/0x370
[   96.404246][ T6521]  handle_pte_fault+0x117e/0x7090
[   96.404269][ T6521]  ? cgroup_rstat_updated+0x13b/0xc60
[   96.404296][ T6521]  ? __pfx_validate_chain+0x10/0x10
[   96.404320][ T6521]  ? __pfx_cgroup_rstat_updated+0x10/0x10
[   96.445212][ T6521]  ? __pfx_handle_pte_fault+0x10/0x10
[   96.451181][ T6521]  ? __lock_acquire+0x1346/0x1fd0
[   96.456277][ T6521]  ? __pfx_lock_release+0x10/0x10
[   96.462131][ T6521]  handle_mm_fault+0x10df/0x1ba0
[   96.467152][ T6521]  ? __pfx_handle_mm_fault+0x10/0x10
[   96.472482][ T6521]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   96.479024][ T6521]  ? lock_mm_and_find_vma+0x9c/0x2f0
[   96.484339][ T6521]  exc_page_fault+0x2b9/0x8c0
[   96.489030][ T6521]  asm_exc_page_fault+0x26/0x30
[   96.493903][ T6521] RIP: 0010:rep_movs_alternative+0x4a/0x70
[   96.499705][ T6521] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[   96.519306][ T6521] RSP: 0018:ffffc9000cf37738 EFLAGS: 00050206
[   96.525367][ T6521] RAX: ffff888060dc0001 RBX: 0000000020030970 RCX: 000000000000e970
[   96.533330][ T6521] RDX: 0000000000000000 RSI: ffff888060dc1948 RDI: 0000000020022000
[   96.541288][ T6521] RBP: ffffc9000cf378b8 R08: ffff888060dd02b7 R09: 1ffff1100c1ba056
[   96.549250][ T6521] R10: dffffc0000000000 R11: ffffed100c1ba057 R12: dffffc0000000000
[   96.557211][ T6521] R13: 1ffff920019e6efc R14: 00000000000101d0 R15: ffff888060dc00e8
[   96.565187][ T6521]  _copy_to_iter+0x4c0/0x1960
[   96.569858][ T6521]  ? __virt_addr_valid+0x183/0x530
[   96.574977][ T6521]  ? __pfx__copy_to_iter+0x10/0x10
[   96.580083][ T6521]  ? __virt_addr_valid+0x183/0x530
[   96.585186][ T6521]  ? __virt_addr_valid+0x183/0x530
[   96.590286][ T6521]  ? __virt_addr_valid+0x45f/0x530
[   96.595402][ T6521]  ? __phys_addr_symbol+0x2f/0x70
[   96.600416][ T6521]  ? __check_object_size+0x49c/0x900
[   96.605697][ T6521]  __skb_datagram_iter+0x112/0x890
[   96.610801][ T6521]  ? __pfx_simple_copy_to_iter+0x10/0x10
[   96.616428][ T6521]  skb_copy_datagram_iter+0xd1/0x250
[   96.621708][ T6521]  tipc_recvstream+0x7a8/0xf80
[   96.626482][ T6521]  ? __pfx_tipc_recvstream+0x10/0x10
[   96.631755][ T6521]  ? aa_sock_msg_perm+0x91/0x160
[   96.636682][ T6521]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[   96.641952][ T6521]  ? security_socket_recvmsg+0x90/0xb0
[   96.647404][ T6521]  ? __pfx_tipc_recvstream+0x10/0x10
[   96.652701][ T6521]  sock_recvmsg+0x22f/0x280
[   96.657218][ T6521]  ____sys_recvmsg+0x1db/0x470
[   96.661998][ T6521]  ? __pfx_____sys_recvmsg+0x10/0x10
[   96.667305][ T6521]  __sys_recvmsg+0x2f0/0x3e0
[   96.671897][ T6521]  ? __pfx___sys_recvmsg+0x10/0x10
[   96.677029][ T6521]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   96.683354][ T6521]  ? do_syscall_64+0x100/0x230
[   96.688119][ T6521]  ? do_syscall_64+0xb6/0x230
[   96.692793][ T6521]  do_syscall_64+0xf3/0x230
[   96.697290][ T6521]  ? clear_bhb_loop+0x35/0x90
[   96.701969][ T6521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.707863][ T6521] RIP: 0033:0x7ff653b75bd9
[   96.712274][ T6521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.731867][ T6521] RSP: 002b:00007ff654946048 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[   96.740274][ T6521] RAX: ffffffffffffffda RBX: 00007ff653d03f60 RCX: 00007ff653b75bd9
[   96.748238][ T6521] RDX: 0000000000001f00 RSI: 0000000020000500 RDI: 0000000000000003
[   96.756201][ T6521] RBP: 00007ff6549460a0 R08: 0000000000000000 R09: 0000000000000000
[   96.764161][ T6521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   96.772121][ T6521] R13: 000000000000000b R14: 00007ff653d03f60 R15: 00007fffe69f2558
[   96.780117][ T6521]  </TASK>
[   96.826603][ T6533] netlink: 40 bytes leftover after parsing attributes in process `syz.3.427'.
[   96.967489][ T6536] netlink: 16 bytes leftover after parsing attributes in process `syz.2.428'.
[   97.012106][ T6536] netlink: 16 bytes leftover after parsing attributes in process `syz.2.428'.
[   97.159001][ T6547] validate_nla: 4 callbacks suppressed
[   97.159020][ T6547] netlink: 'syz.3.431': attribute type 1 has an invalid length.
[   97.349917][ T6565] FAULT_INJECTION: forcing a failure.
[   97.349917][ T6565] name failslab, interval 1, probability 0, space 0, times 0
[   97.398207][ T6565] CPU: 0 PID: 6565 Comm: syz.1.438 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[   97.408230][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   97.408589][ T6563] netlink: 8 bytes leftover after parsing attributes in process `syz.0.435'.
[   97.418276][ T6565] Call Trace:
[   97.418295][ T6565]  <TASK>
[   97.418305][ T6565]  dump_stack_lvl+0x241/0x360
[   97.418337][ T6565]  ? __pfx_dump_stack_lvl+0x10/0x10
[   97.418358][ T6565]  ? __pfx__printk+0x10/0x10
[   97.440655][ T6563] netlink: 8 bytes leftover after parsing attributes in process `syz.0.435'.
[   97.443144][ T6565]  should_fail_ex+0x3b0/0x4e0
[   97.443176][ T6565]  ? __alloc_skb+0x1c3/0x440
[   97.443201][ T6565]  should_failslab+0x9/0x20
[   97.443218][ T6565]  kmem_cache_alloc_node_noprof+0x71/0x320
[   97.443243][ T6565]  __alloc_skb+0x1c3/0x440
[   97.443266][ T6565]  ? __pfx___might_resched+0x10/0x10
[   97.443296][ T6565]  ? __pfx___alloc_skb+0x10/0x10
[   97.443323][ T6565]  ? bpf_lsm_socket_getpeersec_dgram+0x9/0x20
[   97.443342][ T6565]  ? security_socket_getpeersec_dgram+0x88/0xb0
[   97.443369][ T6565]  netlink_sendmsg+0x638/0xcb0
[   97.443405][ T6565]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.443428][ T6565]  ? __import_iovec+0x361/0x820
[   97.443445][ T6565]  ? aa_sock_msg_perm+0x91/0x160
[   97.522998][ T6565]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   97.528322][ T6565]  ? security_socket_sendmsg+0x87/0xb0
[   97.533791][ T6565]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.539093][ T6565]  __sock_sendmsg+0x221/0x270
[   97.543793][ T6565]  ____sys_sendmsg+0x525/0x7d0
[   97.548585][ T6565]  ? __pfx_____sys_sendmsg+0x10/0x10
[   97.553901][ T6565]  __sys_sendmsg+0x2b0/0x3a0
[   97.558508][ T6565]  ? __pfx___sys_sendmsg+0x10/0x10
[   97.563633][ T6565]  ? vfs_write+0x7c4/0xc90
[   97.568106][ T6565]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   97.574451][ T6565]  ? do_syscall_64+0x100/0x230
[   97.579215][ T6565]  ? do_syscall_64+0xb6/0x230
[   97.583879][ T6565]  do_syscall_64+0xf3/0x230
[   97.588367][ T6565]  ? clear_bhb_loop+0x35/0x90
[   97.593045][ T6565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.598954][ T6565] RIP: 0033:0x7fd5af175bd9
[   97.603382][ T6565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.623002][ T6565] RSP: 002b:00007fd5aff39048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   97.631433][ T6565] RAX: ffffffffffffffda RBX: 00007fd5af303f60 RCX: 00007fd5af175bd9
[   97.639414][ T6565] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[   97.647397][ T6565] RBP: 00007fd5aff390a0 R08: 0000000000000000 R09: 0000000000000000
[   97.655377][ T6565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.663357][ T6565] R13: 000000000000000b R14: 00007fd5af303f60 R15: 00007fff2099b858
[   97.671447][ T6565]  </TASK>
[   97.704738][ T6577] netlink: 76 bytes leftover after parsing attributes in process `syz.0.440'.
[   97.980993][ T6585] dccp_invalid_packet: P.type (CLOSE) not Data || [Data]Ack, while P.X == 0
[   98.047202][ T6585] mac80211_hwsim hwsim8 wlan0: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[   98.056633][ T6589] xt_CT: You must specify a L4 protocol and not use inversions on it
[   98.358735][ T6598] netlink: 8 bytes leftover after parsing attributes in process `syz.3.451'.
[   98.864808][ T6614] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[   99.185618][ T6631] netlink: 'syz.1.468': attribute type 1 has an invalid length.
[   99.262359][ T6638] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0
[   99.265377][ T6638] Cannot find add_set index 0 as target
[   99.867729][ T6662] FAULT_INJECTION: forcing a failure.
[   99.867729][ T6662] name failslab, interval 1, probability 0, space 0, times 0
[   99.919989][ T6662] CPU: 0 PID: 6662 Comm: syz.0.479 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[   99.930018][ T6662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   99.940086][ T6662] Call Trace:
[   99.943386][ T6662]  <TASK>
[   99.946330][ T6662]  dump_stack_lvl+0x241/0x360
[   99.951034][ T6662]  ? __pfx_dump_stack_lvl+0x10/0x10
[   99.956261][ T6662]  ? __pfx__printk+0x10/0x10
[   99.960882][ T6662]  ? rxrpc_lookup_local+0xb8/0x1890
[   99.966113][ T6662]  should_fail_ex+0x3b0/0x4e0
[   99.970815][ T6662]  ? rxrpc_lookup_local+0x54e/0x1890
[   99.976127][ T6662]  should_failslab+0x9/0x20
[   99.980647][ T6662]  kmalloc_trace_noprof+0x6c/0x2c0
[   99.985777][ T6662]  ? rxrpc_net+0x45/0x270
[   99.990128][ T6662]  rxrpc_lookup_local+0x54e/0x1890
[   99.995352][ T6662]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  100.001352][ T6662]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  100.007696][ T6662]  ? __pfx_rxrpc_lookup_local+0x10/0x10
[  100.013263][ T6662]  ? __local_bh_enable_ip+0x168/0x200
[  100.018645][ T6662]  ? lockdep_hardirqs_on+0x99/0x150
[  100.023860][ T6662]  ? __local_bh_enable_ip+0x168/0x200
[  100.029245][ T6662]  ? rxrpc_sendmsg+0x127/0x920
[  100.034025][ T6662]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  100.039753][ T6662]  ? do_raw_spin_unlock+0x13c/0x8b0
[  100.044979][ T6662]  rxrpc_sendmsg+0x4d9/0x920
[  100.049599][ T6662]  ? __pfx_rxrpc_sendmsg+0x10/0x10
[  100.054725][ T6662]  __sock_sendmsg+0x221/0x270
[  100.059427][ T6662]  ____sys_sendmsg+0x525/0x7d0
[  100.064192][ T6662]  ? __pfx_____sys_sendmsg+0x10/0x10
[  100.069477][ T6662]  __sys_sendmsg+0x2b0/0x3a0
[  100.074057][ T6662]  ? __pfx___sys_sendmsg+0x10/0x10
[  100.079180][ T6662]  ? bpf_trace_run2+0x1fc/0x540
[  100.084021][ T6662]  ? bpf_trace_run2+0x36e/0x540
[  100.088870][ T6662]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  100.095188][ T6662]  ? rcu_is_watching+0x15/0xb0
[  100.099939][ T6662]  ? trace_sys_enter+0x1f/0xd0
[  100.104694][ T6662]  do_syscall_64+0xf3/0x230
[  100.109190][ T6662]  ? clear_bhb_loop+0x35/0x90
[  100.113864][ T6662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.119746][ T6662] RIP: 0033:0x7ff653b75bd9
[  100.124151][ T6662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.143747][ T6662] RSP: 002b:00007ff654946048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  100.152152][ T6662] RAX: ffffffffffffffda RBX: 00007ff653d03f60 RCX: 00007ff653b75bd9
[  100.160111][ T6662] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  100.168083][ T6662] RBP: 00007ff6549460a0 R08: 0000000000000000 R09: 0000000000000000
[  100.176045][ T6662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.184014][ T6662] R13: 000000000000000b R14: 00007ff653d03f60 R15: 00007fffe69f2558
[  100.191986][ T6662]  </TASK>
[  100.234319][ T2431] wlan0: Trigger new scan to find an IBSS to join
[  100.620588][ T6684] FAULT_INJECTION: forcing a failure.
[  100.620588][ T6684] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.670438][ T6684] CPU: 0 PID: 6684 Comm: syz.1.486 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  100.680451][ T6684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  100.690521][ T6684] Call Trace:
[  100.693813][ T6684]  <TASK>
[  100.696759][ T6684]  dump_stack_lvl+0x241/0x360
[  100.701461][ T6684]  ? __pfx_dump_stack_lvl+0x10/0x10
[  100.703352][ T6693] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  100.706658][ T6684]  ? __pfx__printk+0x10/0x10
[  100.706687][ T6684]  ? __pfx_lock_release+0x10/0x10
[  100.706715][ T6684]  should_fail_ex+0x3b0/0x4e0
[  100.733101][ T6684]  _copy_from_user+0x2f/0xe0
[  100.737709][ T6684]  copy_msghdr_from_user+0xae/0x680
[  100.742931][ T6684]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  100.748862][ T6684]  __sys_sendmsg+0x23d/0x3a0
[  100.753467][ T6684]  ? __pfx___sys_sendmsg+0x10/0x10
[  100.758597][ T6684]  ? vfs_write+0x7c4/0xc90
[  100.763076][ T6684]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  100.769418][ T6684]  ? do_syscall_64+0x100/0x230
[  100.774199][ T6684]  ? do_syscall_64+0xb6/0x230
[  100.778927][ T6684]  do_syscall_64+0xf3/0x230
[  100.783449][ T6684]  ? clear_bhb_loop+0x35/0x90
[  100.788148][ T6684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.794055][ T6684] RIP: 0033:0x7fd5af175bd9
[  100.798480][ T6684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.818095][ T6684] RSP: 002b:00007fd5aff39048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  100.826524][ T6684] RAX: ffffffffffffffda RBX: 00007fd5af303f60 RCX: 00007fd5af175bd9
[  100.834504][ T6684] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[  100.842484][ T6684] RBP: 00007fd5aff390a0 R08: 0000000000000000 R09: 0000000000000000
[  100.850464][ T6684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.858443][ T6684] R13: 000000000000000b R14: 00007fd5af303f60 R15: 00007fff2099b858
[  100.866443][ T6684]  </TASK>
[  100.889822][ T6701] sctp: [Deprecated]: syz.2.489 (pid 6701) Use of struct sctp_assoc_value in delayed_ack socket option.
[  100.889822][ T6701] Use struct sctp_sack_info instead
[  101.186972][ T6714] __nla_validate_parse: 7 callbacks suppressed
[  101.186990][ T6714] netlink: 12 bytes leftover after parsing attributes in process `syz.1.493'.
[  101.221945][ T6714] netlink: 68 bytes leftover after parsing attributes in process `syz.1.493'.
[  101.324103][ T6714] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  101.354592][ T6714] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  101.437073][ T6724] netlink: 44 bytes leftover after parsing attributes in process `syz.0.499'.
[  101.472133][ T5107] IPVS: starting estimator thread 0...
[  101.572577][ T6727] IPVS: using max 24 ests per chain, 57600 per kthread
[  101.588421][ T6730] netlink: 40 bytes leftover after parsing attributes in process `syz.3.501'.
[  101.830042][ T6740] netlink: 8 bytes leftover after parsing attributes in process `syz.2.504'.
[  101.830364][ T6739] x_tables: duplicate underflow at hook 3
[  101.841805][ T6740] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  102.252187][ T6756] netlink: 40 bytes leftover after parsing attributes in process `syz.2.513'.
[  102.514778][ T6767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.518'.
[  102.967753][ T6792] netlink: 20 bytes leftover after parsing attributes in process `syz.3.527'.
[  103.342297][ T6812] x_tables: duplicate underflow at hook 3
[  104.026783][ T6850] netlink: 12 bytes leftover after parsing attributes in process `syz.3.545'.
[  104.174245][ T2468] wlan0: Trigger new scan to find an IBSS to join
[  104.287631][ T6862] x_tables: duplicate underflow at hook 3
[  104.346189][ T6817] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  104.534116][ T6872] netlink: 40 bytes leftover after parsing attributes in process `syz.1.552'.
[  104.688907][ T6882] FAULT_INJECTION: forcing a failure.
[  104.688907][ T6882] name failslab, interval 1, probability 0, space 0, times 0
[  104.702607][ T6882] CPU: 0 PID: 6882 Comm: syz.3.557 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  104.712611][ T6882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  104.722669][ T6882] Call Trace:
[  104.725939][ T6882]  <TASK>
[  104.728860][ T6882]  dump_stack_lvl+0x241/0x360
[  104.733549][ T6882]  ? __pfx_dump_stack_lvl+0x10/0x10
[  104.738751][ T6882]  ? __pfx__printk+0x10/0x10
[  104.743352][ T6882]  ? __pfx___might_resched+0x10/0x10
[  104.748639][ T6882]  should_fail_ex+0x3b0/0x4e0
[  104.753319][ T6882]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  104.759030][ T6882]  should_failslab+0x9/0x20
[  104.763523][ T6882]  __kmalloc_noprof+0xd8/0x400
[  104.768279][ T6882]  ? kfree+0x4e/0x360
[  104.772340][ T6882]  tomoyo_realpath_from_path+0xcf/0x5e0
[  104.777883][ T6882]  tomoyo_path_number_perm+0x23a/0x880
[  104.783342][ T6882]  ? tomoyo_path_number_perm+0x208/0x880
[  104.788965][ T6882]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  104.794965][ T6882]  ? __fget_files+0x29/0x470
[  104.799723][ T6882]  ? __fget_files+0x3f6/0x470
[  104.804423][ T6882]  ? __fget_files+0x29/0x470
[  104.809013][ T6882]  security_file_ioctl+0x75/0xb0
[  104.813953][ T6882]  __se_sys_ioctl+0x47/0x170
[  104.818542][ T6882]  do_syscall_64+0xf3/0x230
[  104.823040][ T6882]  ? clear_bhb_loop+0x35/0x90
[  104.827717][ T6882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.833606][ T6882] RIP: 0033:0x7fee1a975bd9
[  104.838009][ T6882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.857606][ T6882] RSP: 002b:00007fee1a3ff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  104.866015][ T6882] RAX: ffffffffffffffda RBX: 00007fee1ab03f60 RCX: 00007fee1a975bd9
[  104.873981][ T6882] RDX: 0000000020000000 RSI: 0000000040088a01 RDI: 0000000000000003
[  104.881941][ T6882] RBP: 00007fee1a3ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  104.889899][ T6882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.897859][ T6882] R13: 000000000000000b R14: 00007fee1ab03f60 R15: 00007ffdd7984b68
[  104.905831][ T6882]  </TASK>
[  104.913152][ T6882] ERROR: Out of memory at tomoyo_realpath_from_path.
[  105.332978][   T51] wlan0: Creating new IBSS network, BSSID 3a:7d:9c:9c:6e:21
[  106.283834][ T6920] __nla_validate_parse: 1 callbacks suppressed
[  106.283852][ T6920] netlink: 47 bytes leftover after parsing attributes in process `syz.1.574'.
[  106.555188][ T6937] netlink: 24 bytes leftover after parsing attributes in process `syz.1.579'.
[  106.628075][ T6937] macvlan3: entered allmulticast mode
[  106.687375][ T6943] netlink: 40 bytes leftover after parsing attributes in process `syz.0.583'.
[  107.304674][ T6953] infiniband syz1: set active
[  107.309942][ T6953] infiniband syz1: added bond0
[  107.469779][ T6968] netlink: 32 bytes leftover after parsing attributes in process `syz.2.594'.
[  107.490271][ T6953] RDS/IB: syz1: added
[  107.495460][ T6953] smc: adding ib device syz1 with port count 1
[  107.504080][ T6953] smc:    ib device syz1 port 1 has pnetid 
[  107.816341][ T6972] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.823997][ T6972] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.873899][ T6972] bridge0: entered allmulticast mode
[  107.917488][ T6974] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.924715][ T6974] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.932173][ T6974] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.939353][ T6974] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.960897][ T6974] bridge0: entered promiscuous mode
[  108.067381][ T6981] vxcan1: entered promiscuous mode
[  108.078556][ T6985] FAULT_INJECTION: forcing a failure.
[  108.078556][ T6985] name failslab, interval 1, probability 0, space 0, times 0
[  108.092307][ T6983] netlink: 20 bytes leftover after parsing attributes in process `syz.2.600'.
[  108.092380][ T6985] CPU: 1 PID: 6985 Comm: syz.0.601 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  108.111134][ T6985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  108.121194][ T6985] Call Trace:
[  108.124480][ T6985]  <TASK>
[  108.127419][ T6985]  dump_stack_lvl+0x241/0x360
[  108.132118][ T6985]  ? __pfx_dump_stack_lvl+0x10/0x10
[  108.137332][ T6985]  ? __pfx__printk+0x10/0x10
[  108.141952][ T6985]  should_fail_ex+0x3b0/0x4e0
[  108.146650][ T6985]  ? __alloc_skb+0x1c3/0x440
[  108.151267][ T6985]  should_failslab+0x9/0x20
[  108.155782][ T6985]  kmem_cache_alloc_node_noprof+0x71/0x320
[  108.161603][ T6985]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  108.167600][ T6985]  __alloc_skb+0x1c3/0x440
[  108.172034][ T6985]  ? trace_irq_enable+0x2c/0x120
[  108.176983][ T6985]  ? __pfx___alloc_skb+0x10/0x10
[  108.181926][ T6985]  ? queue_work_on+0x25f/0x380
[  108.186684][ T6985]  ? __pfx_queue_work_on+0x10/0x10
[  108.191783][ T6985]  virtio_transport_alloc_skb+0x4b/0xe90
[  108.197418][ T6985]  virtio_transport_send_pkt_info+0x5dd/0xf10
[  108.203488][ T6985]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  108.209488][ T6985]  virtio_transport_stream_enqueue+0x155/0x200
[  108.215661][ T6985]  ? __pfx_virtio_transport_stream_enqueue+0x10/0x10
[  108.222352][ T6985]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  108.228689][ T6985]  ? virtio_transport_stream_has_space+0x4b/0x120
[  108.235113][ T6985]  ? remove_wait_queue+0x33/0x130
[  108.240140][ T6985]  vsock_connectible_sendmsg+0xa40/0xf60
[  108.245790][ T6985]  ? __pfx_vsock_connectible_sendmsg+0x10/0x10
[  108.251941][ T6985]  ? __pfx_aa_sk_perm+0x10/0x10
[  108.256805][ T6985]  ? __pfx_woken_wake_function+0x10/0x10
[  108.262443][ T6985]  ? aa_sock_msg_perm+0x91/0x160
[  108.267381][ T6985]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  108.272662][ T6985]  ? security_socket_sendmsg+0x87/0xb0
[  108.278124][ T6985]  ? __pfx_vsock_connectible_sendmsg+0x10/0x10
[  108.284276][ T6985]  __sock_sendmsg+0x221/0x270
[  108.288954][ T6985]  sock_write_iter+0x2dd/0x400
[  108.293711][ T6985]  ? __pfx_sock_write_iter+0x10/0x10
[  108.299004][ T6985]  do_iter_readv_writev+0x5a4/0x800
[  108.304201][ T6985]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  108.309915][ T6985]  ? bpf_lsm_file_permission+0x9/0x10
[  108.315286][ T6985]  ? security_file_permission+0x7f/0xa0
[  108.320827][ T6985]  ? rw_verify_area+0x1d2/0x6b0
[  108.325673][ T6985]  vfs_writev+0x37c/0xbb0
[  108.330003][ T6985]  ? __pfx_lock_acquire+0x10/0x10
[  108.335018][ T6985]  ? __pfx_vfs_writev+0x10/0x10
[  108.339859][ T6985]  ? vfs_write+0x7c4/0xc90
[  108.344277][ T6985]  ? __fget_files+0x29/0x470
[  108.348875][ T6985]  do_writev+0x1b1/0x350
[  108.353116][ T6985]  ? __pfx_do_writev+0x10/0x10
[  108.357870][ T6985]  ? do_syscall_64+0x100/0x230
[  108.362627][ T6985]  ? do_syscall_64+0xb6/0x230
[  108.367301][ T6985]  do_syscall_64+0xf3/0x230
[  108.371792][ T6985]  ? clear_bhb_loop+0x35/0x90
[  108.376467][ T6985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.382351][ T6985] RIP: 0033:0x7ff653b75bd9
[  108.386756][ T6985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.406347][ T6985] RSP: 002b:00007ff654946048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  108.414751][ T6985] RAX: ffffffffffffffda RBX: 00007ff653d03f60 RCX: 00007ff653b75bd9
[  108.422711][ T6985] RDX: 0000000000000001 RSI: 00000000200002c0 RDI: 0000000000000006
[  108.430669][ T6985] RBP: 00007ff6549460a0 R08: 0000000000000000 R09: 0000000000000000
[  108.438628][ T6985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  108.446585][ T6985] R13: 000000000000000b R14: 00007ff653d03f60 R15: 00007fffe69f2558
[  108.454653][ T6985]  </TASK>
[  108.631813][ T6991] netlink: 'syz.1.603': attribute type 10 has an invalid length.
[  108.684070][ T6991] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.718658][ T6991] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  108.760252][ T6992] netlink: 24 bytes leftover after parsing attributes in process `syz.0.604'.
[  108.779939][ T6992] netlink: 24 bytes leftover after parsing attributes in process `syz.0.604'.
[  108.794848][ T6997] tipc: Can't bind to reserved service type 0
[  108.801091][ T6991] netem: change failed
[  109.023273][ T7001] IPVS: Scheduler module ip_vs_sip not found
[  109.365655][ T7017] netlink: 20 bytes leftover after parsing attributes in process `syz.1.612'.
[  109.459050][ T7019] netlink: 24 bytes leftover after parsing attributes in process `syz.1.613'.
[  109.571349][ T5102] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  109.585460][ T5102] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  109.594695][ T5102] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  109.604510][ T5102] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  109.615063][ T5102] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  109.622538][ T5102] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  109.868630][ T7035] netlink: 24 bytes leftover after parsing attributes in process `syz.1.616'.
[  110.216097][ T7046] netlink: 'syz.0.621': attribute type 12 has an invalid length.
[  110.764028][ T7067] FAULT_INJECTION: forcing a failure.
[  110.764028][ T7067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.843020][ T7067] CPU: 1 PID: 7067 Comm: syz.3.628 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  110.853054][ T7067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  110.863150][ T7067] Call Trace:
[  110.866445][ T7067]  <TASK>
[  110.869386][ T7067]  dump_stack_lvl+0x241/0x360
[  110.874088][ T7067]  ? __pfx_dump_stack_lvl+0x10/0x10
[  110.879312][ T7067]  ? __pfx__printk+0x10/0x10
[  110.883945][ T7067]  ? __pfx_lock_release+0x10/0x10
[  110.888993][ T7067]  should_fail_ex+0x3b0/0x4e0
[  110.893701][ T7067]  _copy_from_iter+0x1f6/0x1960
[  110.898564][ T7067]  ? __virt_addr_valid+0x183/0x530
[  110.903690][ T7067]  ? __pfx_lock_release+0x10/0x10
[  110.908740][ T7067]  ? __alloc_skb+0x28f/0x440
[  110.913356][ T7067]  ? __pfx__copy_from_iter+0x10/0x10
[  110.918665][ T7067]  ? __virt_addr_valid+0x183/0x530
[  110.923791][ T7067]  ? __virt_addr_valid+0x183/0x530
[  110.928914][ T7067]  ? __virt_addr_valid+0x45f/0x530
[  110.934034][ T7067]  ? __check_object_size+0x49c/0x900
[  110.939313][ T7067]  netlink_sendmsg+0x73d/0xcb0
[  110.944084][ T7067]  ? __pfx_netlink_sendmsg+0x10/0x10
[  110.949366][ T7067]  ? __import_iovec+0x536/0x820
[  110.954209][ T7067]  ? aa_sock_msg_perm+0x91/0x160
[  110.959144][ T7067]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  110.964420][ T7067]  ? security_socket_sendmsg+0x87/0xb0
[  110.969878][ T7067]  ? __pfx_netlink_sendmsg+0x10/0x10
[  110.975158][ T7067]  __sock_sendmsg+0x221/0x270
[  110.979844][ T7067]  ____sys_sendmsg+0x525/0x7d0
[  110.984613][ T7067]  ? __pfx_____sys_sendmsg+0x10/0x10
[  110.989901][ T7067]  __sys_sendmsg+0x2b0/0x3a0
[  110.994486][ T7067]  ? __pfx___sys_sendmsg+0x10/0x10
[  110.999584][ T7067]  ? vfs_write+0x7c4/0xc90
[  111.004023][ T7067]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  111.010345][ T7067]  ? do_syscall_64+0x100/0x230
[  111.015109][ T7067]  ? do_syscall_64+0xb6/0x230
[  111.019781][ T7067]  do_syscall_64+0xf3/0x230
[  111.024277][ T7067]  ? clear_bhb_loop+0x35/0x90
[  111.028951][ T7067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.034838][ T7067] RIP: 0033:0x7fee1a975bd9
[  111.039244][ T7067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.058842][ T7067] RSP: 002b:00007fee1a3ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  111.067250][ T7067] RAX: ffffffffffffffda RBX: 00007fee1ab03f60 RCX: 00007fee1a975bd9
[  111.075215][ T7067] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  111.083176][ T7067] RBP: 00007fee1a3ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  111.091137][ T7067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.099096][ T7067] R13: 000000000000000b R14: 00007fee1ab03f60 R15: 00007ffdd7984b68
[  111.107070][ T7067]  </TASK>
[  111.207378][ T5102] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  111.216165][ T5102] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  111.225184][ T5102] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  111.238051][ T5102] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  111.250987][ T5102] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  111.258493][ T5102] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  111.466091][ T7022] chnl_net:caif_netlink_parms(): no params data found
[  111.500190][ T7085] rdma_rxe: rxe_newlink: failed to add bond0
[  111.692855][ T5102] Bluetooth: hci5: command tx timeout
[  111.890552][ T7022] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.911481][ T7022] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.912963][ T7100] IPVS: persistence engine module ip_vs_pe_ not found
[  111.922844][ T7022] bridge_slave_0: entered allmulticast mode
[  111.944765][ T7022] bridge_slave_0: entered promiscuous mode
[  111.970634][ T7022] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.982584][ T7022] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.000063][ T7022] bridge_slave_1: entered allmulticast mode
[  112.014876][ T7022] bridge_slave_1: entered promiscuous mode
[  112.159795][ T7022] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  112.201771][ T7022] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  112.283769][ T7117] __nla_validate_parse: 2 callbacks suppressed
[  112.283796][ T7117] netlink: 8 bytes leftover after parsing attributes in process `syz.1.642'.
[  112.301481][ T7117] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  112.319430][ T7022] team0: Port device team_slave_0 added
[  112.328414][ T7119] FAULT_INJECTION: forcing a failure.
[  112.328414][ T7119] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.353050][ T7022] team0: Port device team_slave_1 added
[  112.362969][ T7119] CPU: 1 PID: 7119 Comm: syz.0.643 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  112.372974][ T7119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  112.383043][ T7119] Call Trace:
[  112.386334][ T7119]  <TASK>
[  112.389275][ T7119]  dump_stack_lvl+0x241/0x360
[  112.393977][ T7119]  ? __pfx_dump_stack_lvl+0x10/0x10
[  112.399198][ T7119]  ? __pfx__printk+0x10/0x10
[  112.403809][ T7119]  ? __pfx_lock_release+0x10/0x10
[  112.408860][ T7119]  should_fail_ex+0x3b0/0x4e0
[  112.413578][ T7119]  _copy_from_iter+0x1f6/0x1960
[  112.418446][ T7119]  ? __virt_addr_valid+0x183/0x530
[  112.423573][ T7119]  ? __pfx_lock_release+0x10/0x10
[  112.428610][ T7119]  ? __alloc_skb+0x2d5/0x440
[  112.433199][ T7119]  ? __pfx__copy_from_iter+0x10/0x10
[  112.438476][ T7119]  ? __virt_addr_valid+0x183/0x530
[  112.443583][ T7119]  ? __virt_addr_valid+0x183/0x530
[  112.448687][ T7119]  ? __virt_addr_valid+0x45f/0x530
[  112.453792][ T7119]  ? __check_object_size+0x49c/0x900
[  112.459092][ T7119]  tipc_msg_build+0x488/0x1070
[  112.463875][ T7119]  ? register_lock_class+0x102/0x980
[  112.469160][ T7119]  ? mark_lock+0x9a/0x350
[  112.473493][ T7119]  ? __pfx_tipc_msg_build+0x10/0x10
[  112.478960][ T7119]  ? mark_lock+0x9a/0x350
[  112.483292][ T7119]  ? __lock_acquire+0x1346/0x1fd0
[  112.488320][ T7119]  __tipc_sendstream+0xa39/0x14e0
[  112.493374][ T7119]  ? __pfx___tipc_sendstream+0x10/0x10
[  112.498829][ T7119]  ? __local_bh_enable_ip+0x168/0x200
[  112.504191][ T7119]  ? __pfx_woken_wake_function+0x10/0x10
[  112.509815][ T7119]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  112.515523][ T7119]  ? do_raw_spin_unlock+0x13c/0x8b0
[  112.520727][ T7119]  ? __pfx_tipc_sendstream+0x10/0x10
[  112.526006][ T7119]  tipc_sendstream+0x55/0x70
[  112.530589][ T7119]  __sock_sendmsg+0x221/0x270
[  112.535263][ T7119]  __sys_sendto+0x3a4/0x4f0
[  112.539766][ T7119]  ? __pfx___sys_sendto+0x10/0x10
[  112.544808][ T7119]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  112.550785][ T7119]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  112.557107][ T7119]  ? exc_page_fault+0x590/0x8c0
[  112.561951][ T7119]  __x64_sys_sendto+0xde/0x100
[  112.566721][ T7119]  do_syscall_64+0xf3/0x230
[  112.571216][ T7119]  ? clear_bhb_loop+0x35/0x90
[  112.575892][ T7119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.581777][ T7119] RIP: 0033:0x7ff653b7796c
[  112.586183][ T7119] Code: 2a 5a 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5a 02 00 48 8b
[  112.605776][ T7119] RSP: 002b:00007ff654923ed0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  112.614182][ T7119] RAX: ffffffffffffffda RBX: 00007ff654923fd0 RCX: 00007ff653b7796c
[  112.622141][ T7119] RDX: 0000000000000020 RSI: 00007ff654924020 RDI: 0000000000000008
[  112.630102][ T7119] RBP: 0000000000000000 R08: 00007ff654923f24 R09: 000000000000000c
[  112.638060][ T7119] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000008
[  112.646036][ T7119] R13: 00007ff654923f78 R14: 00007ff654924020 R15: 0000000000000000
[  112.654031][ T7119]  </TASK>
[  112.728410][ T7022] batman_adv: batadv0: Adding interface: batadv_slave_0
[  112.747383][ T7022] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  112.780518][ T7022] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  112.824458][ T7022] batman_adv: batadv0: Adding interface: batadv_slave_1
[  112.831482][ T7022] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  112.858531][ T7022] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  112.890910][ T7130] netlink: 'syz.1.646': attribute type 4 has an invalid length.
[  112.965921][ T7127] netlink: 'syz.1.646': attribute type 4 has an invalid length.
[  112.991436][ T7022] hsr_slave_0: entered promiscuous mode
[  113.001249][ T7022] hsr_slave_1: entered promiscuous mode
[  113.007800][ T7022] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  113.016154][ T7022] Cannot create hsr debugfs directory
[  113.297300][ T5098] Bluetooth: hci6: command tx timeout
[  113.372019][ T7147] netlink: 'syz.0.653': attribute type 8 has an invalid length.
[  113.458560][ T7071] chnl_net:caif_netlink_parms(): no params data found
[  113.772769][ T5098] Bluetooth: hci5: command tx timeout
[  113.790908][ T7179] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.660'.
[  113.907621][ T7022] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.075304][ T7022] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.115209][ T7188] tipc: Failed to remove unknown binding: 66,1,1/0:1520032202/1520032204
[  114.133195][ T7071] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.140386][ T7071] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.148511][ T7188] tipc: Failed to remove unknown binding: 66,1,1/0:1520032202/1520032204
[  114.167993][ T7071] bridge_slave_0: entered allmulticast mode
[  114.193961][ T7071] bridge_slave_0: entered promiscuous mode
[  114.266836][ T7022] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.317041][ T7198] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  114.351544][ T7190] netlink: 40 bytes leftover after parsing attributes in process `syz.0.665'.
[  114.361474][ T7071] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.394057][ T7071] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.401361][ T7071] bridge_slave_1: entered allmulticast mode
[  114.444514][ T7071] bridge_slave_1: entered promiscuous mode
[  114.489396][ T7202] FAULT_INJECTION: forcing a failure.
[  114.489396][ T7202] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  114.519266][ T7202] CPU: 1 PID: 7202 Comm: syz.0.671 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  114.529278][ T7202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  114.539323][ T7202] Call Trace:
[  114.542596][ T7202]  <TASK>
[  114.545516][ T7202]  dump_stack_lvl+0x241/0x360
[  114.550191][ T7202]  ? __pfx_dump_stack_lvl+0x10/0x10
[  114.555383][ T7202]  ? __pfx__printk+0x10/0x10
[  114.559973][ T7202]  ? snprintf+0xda/0x120
[  114.564211][ T7202]  should_fail_ex+0x3b0/0x4e0
[  114.568889][ T7202]  _copy_to_user+0x2f/0xb0
[  114.573302][ T7202]  simple_read_from_buffer+0xca/0x150
[  114.578672][ T7202]  proc_fail_nth_read+0x1e9/0x250
[  114.583694][ T7202]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  114.589233][ T7202]  ? rw_verify_area+0x520/0x6b0
[  114.594081][ T7202]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  114.599620][ T7202]  vfs_read+0x204/0xbc0
[  114.603779][ T7202]  ? __pfx_vfs_read+0x10/0x10
[  114.608451][ T7202]  ? bpf_lsm_socket_connect+0x9/0x10
[  114.613726][ T7202]  ? security_socket_connect+0x87/0xb0
[  114.619182][ T7202]  ? __sys_connect+0x15c/0x310
[  114.623948][ T7202]  ksys_read+0x1a0/0x2c0
[  114.628187][ T7202]  ? __pfx_ksys_read+0x10/0x10
[  114.632963][ T7202]  ? do_syscall_64+0x100/0x230
[  114.637743][ T7202]  ? do_syscall_64+0xb6/0x230
[  114.642427][ T7202]  do_syscall_64+0xf3/0x230
[  114.646939][ T7202]  ? clear_bhb_loop+0x35/0x90
[  114.651616][ T7202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.657506][ T7202] RIP: 0033:0x7ff653b746bc
[  114.661949][ T7202] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  114.681551][ T7202] RSP: 002b:00007ff654946040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  114.690395][ T7202] RAX: ffffffffffffffda RBX: 00007ff653d03f60 RCX: 00007ff653b746bc
[  114.698374][ T7202] RDX: 000000000000000f RSI: 00007ff6549460b0 RDI: 0000000000000004
[  114.706343][ T7202] RBP: 00007ff6549460a0 R08: 0000000000000000 R09: 0000000000000000
[  114.714342][ T7202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.722312][ T7202] R13: 000000000000000b R14: 00007ff653d03f60 R15: 00007fffe69f2558
[  114.730295][ T7202]  </TASK>
[  114.798004][ T7022] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.955774][ T7071] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  115.019171][ T7071] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  115.151561][ T7071] team0: Port device team_slave_0 added
[  115.187472][ T7071] team0: Port device team_slave_1 added
[  115.328321][ T7071] batman_adv: batadv0: Adding interface: batadv_slave_0
[  115.362827][ T7071] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.401276][ T5098] Bluetooth: hci6: command tx timeout
[  115.459712][ T7071] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  115.473784][ T7071] batman_adv: batadv0: Adding interface: batadv_slave_1
[  115.480813][ T7071] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.525664][ T7071] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  115.580916][ T7229] netlink: 40 bytes leftover after parsing attributes in process `syz.3.679'.
[  115.862307][ T5098] Bluetooth: hci5: command tx timeout
[  115.887983][ T7071] hsr_slave_0: entered promiscuous mode
[  115.903760][ T7071] hsr_slave_1: entered promiscuous mode
[  115.934962][ T7071] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  115.944654][ T7071] Cannot create hsr debugfs directory
[  116.010604][ T7254] IPVS: persistence engine module ip_vs_pe_ not found
[  116.023696][ T7022] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  116.068646][ T7022] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  116.118190][ T7022] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  116.187210][ T7022] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  116.412040][ T7071] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.536168][ T7071] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.684390][ T7071] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.733696][ T7273] netlink: 8 bytes leftover after parsing attributes in process `syz.3.691'.
[  116.751783][ T7270] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  116.875177][ T7071] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.998629][ T7022] 8021q: adding VLAN 0 to HW filter on device bond0
[  117.126712][ T7022] 8021q: adding VLAN 0 to HW filter on device team0
[  117.186148][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.193404][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  117.203371][ T7071] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  117.219766][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.227050][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[  117.249792][ T7071] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  117.268032][ T7071] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  117.327388][ T7071] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  117.368514][ T7301] netlink: 25 bytes leftover after parsing attributes in process `syz.0.700'.
[  117.453216][ T5098] Bluetooth: hci6: command tx timeout
[  117.478623][ T7022] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  117.519360][ T7301] netlink: 'syz.0.700': attribute type 17 has an invalid length.
[  117.527483][ T7301] lo: entered promiscuous mode
[  117.537889][ T7309] IPv6: addrconf: prefix option has invalid lifetime
[  117.544678][ T7309] IPv6: addrconf: prefix option has invalid lifetime
[  117.600099][ T7311] netlink: 'syz.3.704': attribute type 1 has an invalid length.
[  117.619278][ T7311] netlink: 9344 bytes leftover after parsing attributes in process `syz.3.704'.
[  117.632109][ T7300] lo: left promiscuous mode
[  117.639332][ T7311] netlink: 'syz.3.704': attribute type 1 has an invalid length.
[  117.780913][ T7319] netlink: 28 bytes leftover after parsing attributes in process `syz.0.707'.
[  117.789793][ T7071] 8021q: adding VLAN 0 to HW filter on device bond0
[  117.875503][ T7071] 8021q: adding VLAN 0 to HW filter on device team0
[  117.927424][ T5142] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.934618][ T5142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  117.943526][ T5098] Bluetooth: hci5: command tx timeout
[  117.960187][ T5142] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.967368][ T5142] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.007723][ T7327] dummy0: entered promiscuous mode
[  118.014548][ T7327] macsec1: entered promiscuous mode
[  118.020198][ T7327] macsec1: entered allmulticast mode
[  118.025899][ T7327] dummy0: entered allmulticast mode
[  118.039737][ T7327] dummy0: left allmulticast mode
[  118.045254][ T7327] dummy0: left promiscuous mode
[  118.100012][ T7022] 8021q: adding VLAN 0 to HW filter on device batadv0
[  118.472075][ T7071] 8021q: adding VLAN 0 to HW filter on device batadv0
[  118.500822][ T7353] xt_hashlimit: Unknown mode mask 242, kernel too old?
[  118.588452][ T7071] veth0_vlan: entered promiscuous mode
[  118.636592][ T7071] veth1_vlan: entered promiscuous mode
[  118.691028][ T7022] veth0_vlan: entered promiscuous mode
[  118.737684][ T7022] veth1_vlan: entered promiscuous mode
[  118.754134][ T7071] veth0_macvtap: entered promiscuous mode
[  118.779060][ T7071] veth1_macvtap: entered promiscuous mode
[  118.828900][ T7071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.853395][ T7071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.870984][ T7071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.889856][ T7071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.908153][ T7071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.932804][ T7071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.942872][ T7071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.954755][ T7071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.965611][ T7071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.977865][ T7071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.996490][ T7071] batman_adv: batadv0: Interface activated: batadv_slave_0
[  119.034431][ T7071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.051298][ T7071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.083590][ T7071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.103864][ T7071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.121745][ T7071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.149949][ T7071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.164477][ T7071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.184476][ T7071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.195590][ T7071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.207708][ T7071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.222826][ T7071] batman_adv: batadv0: Interface activated: batadv_slave_1
[  119.265571][ T7071] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  119.282479][ T7071] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  119.296509][ T7071] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.332707][ T7071] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.365860][ T7022] veth0_macvtap: entered promiscuous mode
[  119.425615][ T7378] netlink: 8 bytes leftover after parsing attributes in process `syz.3.722'.
[  119.460928][ T7022] veth1_macvtap: entered promiscuous mode
[  119.488295][ T7378] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  119.532926][ T5098] Bluetooth: hci6: command tx timeout
[  119.598555][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.647473][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.658393][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.679198][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.690438][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.703926][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.714938][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.725581][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.740940][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.754198][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.767683][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.779753][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.801895][ T7022] batman_adv: batadv0: Interface activated: batadv_slave_0
[  119.856131][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.893009][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.915820][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.929020][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.939116][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.949924][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.960370][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.971565][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.986433][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.998178][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  120.008999][ T7022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  120.022043][ T7022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  120.035850][ T7022] batman_adv: batadv0: Interface activated: batadv_slave_1
[  120.073157][ T7022] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  120.092166][ T7022] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  120.112726][ T7022] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  120.137793][ T7022] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  120.170311][ T1257] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.192788][ T1257] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.287360][ T4477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.322496][ T4477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.392025][ T7405] netlink: 'syz.0.732': attribute type 2 has an invalid length.
[  120.401068][ T7405] netlink: 52 bytes leftover after parsing attributes in process `syz.0.732'.
[  120.432740][ T4477] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.440585][ T4477] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.459900][ T7407] netlink: 'syz.0.732': attribute type 2 has an invalid length.
[  120.484536][ T7407] netlink: 52 bytes leftover after parsing attributes in process `syz.0.732'.
[  120.596135][ T4477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.623801][ T4477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.693538][ T7417] xt_CT: You must specify a L4 protocol and not use inversions on it
[  120.878425][ T7437] xt_hashlimit: overflow, try lower: 18446465897267724288/2047
[  121.215779][ T7453] netlink: 52 bytes leftover after parsing attributes in process `syz.1.749'.
[  121.312157][ T7457] netlink: 24 bytes leftover after parsing attributes in process `syz.4.750'.
[  121.813493][ T7469] netlink: 277 bytes leftover after parsing attributes in process `syz.0.756'.
[  122.147064][ T7489] netlink: 20 bytes leftover after parsing attributes in process `syz.0.761'.
[  122.581229][ T7500] hsr_slave_0: left promiscuous mode
[  122.596721][ T7500] hsr_slave_1: left promiscuous mode
[  122.790812][ T7502] netlink: 8 bytes leftover after parsing attributes in process `syz.4.767'.
[  123.327632][ T7518] netlink: 104 bytes leftover after parsing attributes in process `syz.3.773'.
[  123.720100][ T7542] dccp_invalid_packet: P.Data Offset(172) too large
[  123.761063][ T7544] netlink: 'syz.0.784': attribute type 1 has an invalid length.
[  123.817470][ T7544] bond1: entered promiscuous mode
[  123.916696][ T7544] bond1: (slave ip6gretap2): making interface the new active one
[  123.938196][ T7544] ip6gretap2: entered promiscuous mode
[  123.961423][ T7544] bond1: (slave ip6gretap2): Enslaving as an active interface with an up link
[  123.998640][ T7550] netlink: 4 bytes leftover after parsing attributes in process `syz.0.784'.
[  124.016906][ T7550] bond1: entered allmulticast mode
[  124.033449][ T7550] ip6gretap2: entered allmulticast mode
[  124.048673][ T7550] 8021q: adding VLAN 0 to HW filter on device bond1
[  124.062094][ T7559] FAULT_INJECTION: forcing a failure.
[  124.062094][ T7559] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.077204][ T7559] CPU: 0 PID: 7559 Comm: syz.4.789 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  124.087204][ T7559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  124.097267][ T7559] Call Trace:
[  124.100561][ T7559]  <TASK>
[  124.103500][ T7559]  dump_stack_lvl+0x241/0x360
[  124.108203][ T7559]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.113413][ T7559]  ? __pfx__printk+0x10/0x10
[  124.118036][ T7559]  ? __pfx_lock_release+0x10/0x10
[  124.123084][ T7559]  should_fail_ex+0x3b0/0x4e0
[  124.127782][ T7559]  _copy_from_iter+0x1f6/0x1960
[  124.132642][ T7559]  ? __virt_addr_valid+0x183/0x530
[  124.137774][ T7559]  ? __pfx_lock_release+0x10/0x10
[  124.142822][ T7559]  ? __alloc_skb+0x28f/0x440
[  124.147430][ T7559]  ? __pfx__copy_from_iter+0x10/0x10
[  124.152825][ T7559]  ? __virt_addr_valid+0x183/0x530
[  124.157946][ T7559]  ? __virt_addr_valid+0x183/0x530
[  124.163073][ T7559]  ? __virt_addr_valid+0x45f/0x530
[  124.168197][ T7559]  ? __check_object_size+0x49c/0x900
[  124.173493][ T7559]  pfkey_sendmsg+0x235/0x1050
[  124.178252][ T7559]  ? __pfx___might_resched+0x10/0x10
[  124.183566][ T7559]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  124.188701][ T7559]  ? aa_sk_perm+0x967/0xab0
[  124.193239][ T7559]  ? __pfx_aa_sk_perm+0x10/0x10
[  124.198111][ T7559]  ? __might_fault+0xaa/0x120
[  124.202804][ T7559]  ? __pfx_lock_release+0x10/0x10
[  124.207847][ T7559]  ? __import_iovec+0x536/0x820
[  124.212717][ T7559]  ? aa_sock_msg_perm+0x91/0x160
[  124.217651][ T7559]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  124.222936][ T7559]  ? security_socket_sendmsg+0x87/0xb0
[  124.228387][ T7559]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  124.233490][ T7559]  __sock_sendmsg+0x221/0x270
[  124.238162][ T7559]  ____sys_sendmsg+0x525/0x7d0
[  124.242936][ T7559]  ? __pfx_____sys_sendmsg+0x10/0x10
[  124.248228][ T7559]  __sys_sendmsg+0x2b0/0x3a0
[  124.252807][ T7559]  ? __pfx___sys_sendmsg+0x10/0x10
[  124.257906][ T7559]  ? vfs_write+0x7c4/0xc90
[  124.262347][ T7559]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  124.268665][ T7559]  ? do_syscall_64+0x100/0x230
[  124.273426][ T7559]  ? do_syscall_64+0xb6/0x230
[  124.278102][ T7559]  do_syscall_64+0xf3/0x230
[  124.282615][ T7559]  ? clear_bhb_loop+0x35/0x90
[  124.287300][ T7559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.293191][ T7559] RIP: 0033:0x7f6d34575bd9
[  124.297604][ T7559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.317207][ T7559] RSP: 002b:00007f6d35298048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  124.325632][ T7559] RAX: ffffffffffffffda RBX: 00007f6d34703f60 RCX: 00007f6d34575bd9
[  124.333600][ T7559] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005
[  124.341569][ T7559] RBP: 00007f6d352980a0 R08: 0000000000000000 R09: 0000000000000000
[  124.349530][ T7559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.357487][ T7559] R13: 000000000000000b R14: 00007f6d34703f60 R15: 00007ffcfd7a9988
[  124.365460][ T7559]  </TASK>
[  124.797154][ T7582] netlink: 12 bytes leftover after parsing attributes in process `syz.0.796'.
[  125.093144][ T7587] netlink: 104 bytes leftover after parsing attributes in process `syz.1.799'.
[  125.154011][ T7595] netlink: 'syz.3.802': attribute type 3 has an invalid length.
[  125.370439][ T7607] netlink: 'syz.4.807': attribute type 3 has an invalid length.
[  126.535120][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  126.564200][ T7654] netlink: 16 bytes leftover after parsing attributes in process `syz.3.818'.
[  126.678706][ T7662] netlink: 156164 bytes leftover after parsing attributes in process `syz.0.820'.
[  126.775556][ T7666] xt_bpf: check failed: parse error
[  126.827935][ T7662] netlink: 52 bytes leftover after parsing attributes in process `syz.0.820'.
[  127.313512][ T7692] netlink: 8 bytes leftover after parsing attributes in process `syz.3.831'.
[  127.332644][ T7692] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  127.550214][ T7698] netlink: 60 bytes leftover after parsing attributes in process `syz.0.834'.
[  127.573318][ T7698] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  127.666879][    C0] vcan0: j1939_session_tx_dat: 0xffff888029435400: queue data error: -100
[  127.993421][ T7707] ip6tnl0: mtu greater than device maximum
[  128.127447][ T7709] __nla_validate_parse: 1 callbacks suppressed
[  128.127468][ T7709] netlink: 156164 bytes leftover after parsing attributes in process `syz.4.838'.
[  128.274484][ T7712] xt_bpf: check failed: parse error
[  128.298878][ T7712] netlink: 52 bytes leftover after parsing attributes in process `syz.4.838'.
[  128.542548][ T7722] netlink: 8 bytes leftover after parsing attributes in process `syz.1.843'.
[  128.756422][ T7726] 8021q: adding VLAN 0 to HW filter on device bond0
[  128.803577][ T7726] team0: Port device bond0 added
[  129.424018][ T7765] netlink: 8 bytes leftover after parsing attributes in process `syz.4.859'.
[  129.482317][ T7767] netlink: 156164 bytes leftover after parsing attributes in process `syz.3.860'.
[  129.615131][ T7769] xt_bpf: check failed: parse error
[  129.696935][ T7767] netlink: 52 bytes leftover after parsing attributes in process `syz.3.860'.
[  130.192689][ T7788] netlink: 'syz.4.869': attribute type 1 has an invalid length.
[  130.219325][ T7788] netlink: 4 bytes leftover after parsing attributes in process `syz.4.869'.
[  130.411836][ T7799] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.872'.
[  130.455773][ T7799] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  130.587157][ T7799] sch_tbf: peakrate 6 is lower than or equals to rate 7694164503644904053 !
[  130.920819][ T7814] IPVS: Scheduler module ip_vs_sip not found
[  131.205479][ T7828] xt_CT: You must specify a L4 protocol and not use inversions on it
[  131.417823][ T7843] netlink: 36 bytes leftover after parsing attributes in process `syz.3.886'.
[  131.709293][ T7854] netlink: 'syz.4.890': attribute type 1 has an invalid length.
[  131.711073][ T7856] netlink: 'syz.3.891': attribute type 5 has an invalid length.
[  131.728241][ T7854] netlink: 4 bytes leftover after parsing attributes in process `syz.4.890'.
[  132.134680][ T7862] xt_bpf: check failed: parse error
[  132.573499][ T7872] FAULT_INJECTION: forcing a failure.
[  132.573499][ T7872] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.618104][ T7872] CPU: 0 PID: 7872 Comm: syz.3.898 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  132.628124][ T7872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  132.638592][ T7872] Call Trace:
[  132.641886][ T7872]  <TASK>
[  132.644829][ T7872]  dump_stack_lvl+0x241/0x360
[  132.649530][ T7872]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.654747][ T7872]  ? __pfx__printk+0x10/0x10
[  132.659355][ T7872]  ? __pfx_lock_release+0x10/0x10
[  132.664403][ T7872]  should_fail_ex+0x3b0/0x4e0
[  132.669109][ T7872]  _copy_from_iter+0x1f6/0x1960
[  132.673978][ T7872]  ? __virt_addr_valid+0x183/0x530
[  132.679102][ T7872]  ? __pfx_lock_release+0x10/0x10
[  132.684123][ T7872]  ? __alloc_skb+0x28f/0x440
[  132.688707][ T7872]  ? __pfx__copy_from_iter+0x10/0x10
[  132.693984][ T7872]  ? __virt_addr_valid+0x183/0x530
[  132.699094][ T7872]  ? __virt_addr_valid+0x183/0x530
[  132.704193][ T7872]  ? __virt_addr_valid+0x45f/0x530
[  132.709300][ T7872]  ? __check_object_size+0x49c/0x900
[  132.714578][ T7872]  netlink_sendmsg+0x73d/0xcb0
[  132.719345][ T7872]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.724629][ T7872]  ? __import_iovec+0x536/0x820
[  132.729471][ T7872]  ? aa_sock_msg_perm+0x91/0x160
[  132.734398][ T7872]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  132.739671][ T7872]  ? security_socket_sendmsg+0x87/0xb0
[  132.745141][ T7872]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.750424][ T7872]  __sock_sendmsg+0x221/0x270
[  132.755100][ T7872]  ____sys_sendmsg+0x525/0x7d0
[  132.759866][ T7872]  ? __pfx_____sys_sendmsg+0x10/0x10
[  132.765155][ T7872]  __sys_sendmsg+0x2b0/0x3a0
[  132.769739][ T7872]  ? __pfx___sys_sendmsg+0x10/0x10
[  132.774838][ T7872]  ? vfs_write+0x7c4/0xc90
[  132.779277][ T7872]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  132.785597][ T7872]  ? do_syscall_64+0x100/0x230
[  132.790356][ T7872]  ? do_syscall_64+0xb6/0x230
[  132.795033][ T7872]  do_syscall_64+0xf3/0x230
[  132.799534][ T7872]  ? clear_bhb_loop+0x35/0x90
[  132.804230][ T7872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.810124][ T7872] RIP: 0033:0x7fee1a975bd9
[  132.814537][ T7872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.834144][ T7872] RSP: 002b:00007fee1a3ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  132.842599][ T7872] RAX: ffffffffffffffda RBX: 00007fee1ab03f60 RCX: 00007fee1a975bd9
[  132.850655][ T7872] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  132.858618][ T7872] RBP: 00007fee1a3ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  132.866586][ T7872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.874553][ T7872] R13: 000000000000000b R14: 00007fee1ab03f60 R15: 00007ffdd7984b68
[  132.882533][ T7872]  </TASK>
[  132.976763][ T7874] IPVS: persistence engine module ip_vs_pe_ not found
[  133.140166][ T1244] ieee802154 phy0 wpan0: encryption failed: -22
[  133.146722][ T1244] ieee802154 phy1 wpan1: encryption failed: -22
[  133.180980][ T7879] __nla_validate_parse: 3 callbacks suppressed
[  133.180998][ T7879] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.901'.
[  133.244186][ T7879] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  133.258639][ T7879] sch_tbf: peakrate 6 is lower than or equals to rate 7694164503644904053 !
[  134.121216][ T7918] delete_channel: no stack
[  134.438614][ T7937] netlink: 'syz.0.921': attribute type 12 has an invalid length.
[  134.456111][ T7937] netlink: 197276 bytes leftover after parsing attributes in process `syz.0.921'.
[  134.689103][ T7945] cannot load conntrack support for proto=3
[  134.965622][ T7956] xt_hashlimit: invalid rate
[  135.050153][ T7955] IPVS: persistence engine module ip_vs_pe_ not found
[  136.404628][ T7991] netlink: 'syz.3.938': attribute type 3 has an invalid length.
[  136.434375][ T7991] netlink: 'syz.3.938': attribute type 3 has an invalid length.
[  136.443882][ T7994] netlink: 892 bytes leftover after parsing attributes in process `syz.2.939'.
[  136.531034][ T7999] netlink: 8 bytes leftover after parsing attributes in process `syz.2.939'.
[  137.127470][ T8020] netlink: 156164 bytes leftover after parsing attributes in process `syz.2.946'.
[  137.220603][ T8018] sctp: [Deprecated]: syz.0.945 (pid 8018) Use of int in maxseg socket option.
[  137.220603][ T8018] Use struct sctp_assoc_value instead
[  137.254851][ T8023] xt_bpf: check failed: parse error
[  137.310335][ T8023] netlink: 52 bytes leftover after parsing attributes in process `syz.2.946'.
[  137.494526][ T8025] netlink: 4 bytes leftover after parsing attributes in process `syz.3.947'.
[  137.526659][ T8025] bridge_slave_1: left allmulticast mode
[  137.552722][ T8025] bridge_slave_1: left promiscuous mode
[  137.558536][ T8025] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.597590][ T8025] bridge_slave_0: left allmulticast mode
[  137.613804][ T1257] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  137.626785][ T8041] netlink: 256 bytes leftover after parsing attributes in process `syz.2.950'.
[  137.634576][ T8025] bridge_slave_0: left promiscuous mode
[  137.664287][ T8025] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.896942][ T8035] netlink: 'syz.0.952': attribute type 3 has an invalid length.
[  137.914029][ T8035] netlink: 'syz.0.952': attribute type 3 has an invalid length.
[  138.180787][ T8060] netlink: 'syz.3.958': attribute type 3 has an invalid length.
[  138.208240][ T8064] netlink: 12 bytes leftover after parsing attributes in process `syz.0.956'.
[  138.212795][ T8060] netlink: 'syz.3.958': attribute type 3 has an invalid length.
[  138.223902][ T8064] netlink: 68 bytes leftover after parsing attributes in process `syz.0.956'.
[  138.307299][ T8071] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  138.353515][ T8067] netlink: 12 bytes leftover after parsing attributes in process `syz.1.960'.
[  138.411778][ T8074] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  138.451980][ T8064] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  138.584170][ T8080] netlink: 20 bytes leftover after parsing attributes in process `syz.1.962'.
[  138.627575][ T8084] sctp: [Deprecated]: syz.4.964 (pid 8084) Use of int in maxseg socket option.
[  138.627575][ T8084] Use struct sctp_assoc_value instead
[  138.683106][ T8086] FAULT_INJECTION: forcing a failure.
[  138.683106][ T8086] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  138.712642][ T8086] CPU: 1 PID: 8086 Comm: syz.2.966 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  138.722658][ T8086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  138.732712][ T8086] Call Trace:
[  138.735983][ T8086]  <TASK>
[  138.738907][ T8086]  dump_stack_lvl+0x241/0x360
[  138.743586][ T8086]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.748803][ T8086]  ? __pfx__printk+0x10/0x10
[  138.753410][ T8086]  should_fail_ex+0x3b0/0x4e0
[  138.758102][ T8086]  prepare_alloc_pages+0x1da/0x5d0
[  138.763227][ T8086]  __alloc_pages_noprof+0x166/0x6c0
[  138.768425][ T8086]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  138.774136][ T8086]  ? do_splice_direct+0x28c/0x3e0
[  138.779156][ T8086]  ? __se_sys_sendfile64+0x17c/0x1e0
[  138.784433][ T8086]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.790507][ T8086]  alloc_pages_bulk_noprof+0x729/0xd40
[  138.795969][ T8086]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  138.801947][ T8086]  ? copy_splice_read+0x18d/0xb60
[  138.806964][ T8086]  ? copy_splice_read+0x18d/0xb60
[  138.811979][ T8086]  ? __kmalloc_noprof+0x217/0x400
[  138.817000][ T8086]  copy_splice_read+0x1c5/0xb60
[  138.821852][ T8086]  ? __pfx_copy_splice_read+0x10/0x10
[  138.827226][ T8086]  ? file_end_write+0xe0/0x250
[  138.831988][ T8086]  ? direct_splice_actor+0x12b/0x220
[  138.837267][ T8086]  splice_direct_to_actor+0x502/0xc90
[  138.842643][ T8086]  ? __pfx_direct_splice_actor+0x10/0x10
[  138.848268][ T8086]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  138.854152][ T8086]  ? __fget_files+0x29/0x470
[  138.858734][ T8086]  ? __pfx_lock_release+0x10/0x10
[  138.863754][ T8086]  do_splice_direct+0x28c/0x3e0
[  138.868603][ T8086]  ? __pfx_do_splice_direct+0x10/0x10
[  138.873967][ T8086]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  138.879851][ T8086]  ? security_file_permission+0x7f/0xa0
[  138.885399][ T8086]  ? rw_verify_area+0x1d2/0x6b0
[  138.890242][ T8086]  do_sendfile+0x56d/0xe20
[  138.894661][ T8086]  ? __pfx_do_sendfile+0x10/0x10
[  138.899597][ T8086]  __se_sys_sendfile64+0x17c/0x1e0
[  138.904701][ T8086]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  138.910329][ T8086]  ? do_syscall_64+0x100/0x230
[  138.915085][ T8086]  ? do_syscall_64+0xb6/0x230
[  138.919756][ T8086]  do_syscall_64+0xf3/0x230
[  138.924249][ T8086]  ? clear_bhb_loop+0x35/0x90
[  138.928920][ T8086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.934806][ T8086] RIP: 0033:0x7ff0ead75bd9
[  138.939314][ T8086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.958997][ T8086] RSP: 002b:00007ff0ebace048 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  138.967496][ T8086] RAX: ffffffffffffffda RBX: 00007ff0eaf03f60 RCX: 00007ff0ead75bd9
[  138.975463][ T8086] RDX: 0000000000000000 RSI: 000000000000000d RDI: 000000000000000e
[  138.983423][ T8086] RBP: 00007ff0ebace0a0 R08: 0000000000000000 R09: 0000000000000000
[  138.991383][ T8086] R10: 0000000100000002 R11: 0000000000000246 R12: 0000000000000002
[  138.999341][ T8086] R13: 000000000000000b R14: 00007ff0eaf03f60 R15: 00007ffff091dd68
[  139.007317][ T8086]  </TASK>
[  139.200239][ T8101] netlink: 8 bytes leftover after parsing attributes in process `syz.2.971'.
[  139.221105][ T8101] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  139.346767][ T8109] netlink: 'syz.1.974': attribute type 3 has an invalid length.
[  139.371045][ T8109] netlink: 'syz.1.974': attribute type 3 has an invalid length.
[  139.530579][ T8115] netlink: 'syz.1.975': attribute type 3 has an invalid length.
[  139.554023][ T8115] netlink: 'syz.1.975': attribute type 3 has an invalid length.
[  139.762494][ T8122] xt_bpf: check failed: parse error
[  139.808165][ T8127] netlink: 76 bytes leftover after parsing attributes in process `syz.1.979'.
[  140.067350][ T8133] netlink: 12 bytes leftover after parsing attributes in process `syz.3.981'.
[  140.110652][ T8140] netlink: 56 bytes leftover after parsing attributes in process `syz.0.982'.
[  140.126788][ T8139] netlink: 36 bytes leftover after parsing attributes in process `syz.2.983'.
[  140.157253][ T8139] xt_CT: You must specify a L4 protocol and not use inversions on it
[  140.533430][ T8156] netlink: 12 bytes leftover after parsing attributes in process `syz.2.987'.
[  140.608916][ T8160] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  140.658449][ T8160] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  141.552811][ T8192] FAULT_INJECTION: forcing a failure.
[  141.552811][ T8192] name failslab, interval 1, probability 0, space 0, times 0
[  141.569464][ T8192] CPU: 1 PID: 8192 Comm: syz.3.998 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  141.579478][ T8192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  141.589544][ T8192] Call Trace:
[  141.592837][ T8192]  <TASK>
[  141.595778][ T8192]  dump_stack_lvl+0x241/0x360
[  141.600479][ T8192]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.605706][ T8192]  ? __pfx__printk+0x10/0x10
[  141.610317][ T8192]  ? __pfx___might_resched+0x10/0x10
[  141.615613][ T8192]  ? dynamic_dname+0x141/0x1b0
[  141.620405][ T8192]  should_fail_ex+0x3b0/0x4e0
[  141.625112][ T8192]  ? tomoyo_encode+0x26f/0x540
[  141.629890][ T8192]  should_failslab+0x9/0x20
[  141.634408][ T8192]  __kmalloc_noprof+0xd8/0x400
[  141.639195][ T8192]  tomoyo_encode+0x26f/0x540
[  141.643798][ T8192]  ? __pfx_sockfs_dname+0x10/0x10
[  141.648845][ T8192]  tomoyo_realpath_from_path+0x59e/0x5e0
[  141.654509][ T8192]  tomoyo_path_number_perm+0x23a/0x880
[  141.659994][ T8192]  ? tomoyo_path_number_perm+0x208/0x880
[  141.665643][ T8192]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  141.671679][ T8192]  ? __fget_files+0x29/0x470
[  141.676292][ T8192]  ? __fget_files+0x3f6/0x470
[  141.680979][ T8192]  ? __fget_files+0x29/0x470
[  141.685590][ T8192]  security_file_ioctl+0x75/0xb0
[  141.690555][ T8192]  __se_sys_ioctl+0x47/0x170
[  141.695165][ T8192]  do_syscall_64+0xf3/0x230
[  141.699687][ T8192]  ? clear_bhb_loop+0x35/0x90
[  141.704386][ T8192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.710291][ T8192] RIP: 0033:0x7fee1a975bd9
[  141.714723][ T8192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.735491][ T8192] RSP: 002b:00007fee1a3ff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  141.744197][ T8192] RAX: ffffffffffffffda RBX: 00007fee1ab03f60 RCX: 00007fee1a975bd9
[  141.752314][ T8192] RDX: 0000000000000000 RSI: 00000000400448c9 RDI: 0000000000000008
[  141.760326][ T8192] RBP: 00007fee1a3ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  141.770141][ T8192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.778406][ T8192] R13: 000000000000000b R14: 00007fee1ab03f60 R15: 00007ffdd7984b68
[  141.786421][ T8192]  </TASK>
[  141.873946][ T8192] ERROR: Out of memory at tomoyo_realpath_from_path.
[  141.881730][ T8192] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  141.964593][ T8198] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  142.121894][ T8204] validate_nla: 2 callbacks suppressed
[  142.121914][ T8204] netlink: 'syz.1.1003': attribute type 4 has an invalid length.
[  142.161110][ T8204] tipc: Failed to remove unknown binding: 66,1,1/0:90322260/90322262
[  142.181360][ T8204] tipc: Failed to remove unknown binding: 66,1,1/0:90322260/90322262
[  142.848346][ T8229] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  142.976566][ T8237] netlink: 'syz.1.1017': attribute type 10 has an invalid length.
[  142.985773][ T8237] team0: Device ipvlan1 is up. Set it down before adding it as a team port
[  143.076577][ T8242] netlink: 'syz.3.1018': attribute type 1 has an invalid length.
[  143.361979][ T8259] FAULT_INJECTION: forcing a failure.
[  143.361979][ T8259] name failslab, interval 1, probability 0, space 0, times 0
[  143.395394][ T8259] CPU: 1 PID: 8259 Comm: syz.3.1025 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  143.405503][ T8259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  143.415566][ T8259] Call Trace:
[  143.418853][ T8259]  <TASK>
[  143.421791][ T8259]  dump_stack_lvl+0x241/0x360
[  143.426495][ T8259]  ? __pfx_dump_stack_lvl+0x10/0x10
[  143.431712][ T8259]  ? __pfx__printk+0x10/0x10
[  143.436332][ T8259]  should_fail_ex+0x3b0/0x4e0
[  143.441028][ T8259]  ? __alloc_skb+0x1c3/0x440
[  143.445641][ T8259]  should_failslab+0x9/0x20
[  143.450153][ T8259]  kmem_cache_alloc_node_noprof+0x71/0x320
[  143.455978][ T8259]  __alloc_skb+0x1c3/0x440
[  143.460407][ T8259]  ? __pfx___might_resched+0x10/0x10
[  143.465708][ T8259]  ? __pfx___alloc_skb+0x10/0x10
[  143.470672][ T8259]  ? bpf_lsm_socket_getpeersec_dgram+0x9/0x20
[  143.476755][ T8259]  ? security_socket_getpeersec_dgram+0x88/0xb0
[  143.483019][ T8259]  netlink_sendmsg+0x638/0xcb0
[  143.487811][ T8259]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.493120][ T8259]  ? __import_iovec+0x361/0x820
[  143.497983][ T8259]  ? aa_sock_msg_perm+0x91/0x160
[  143.502932][ T8259]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  143.508223][ T8259]  ? security_socket_sendmsg+0x87/0xb0
[  143.513696][ T8259]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.518995][ T8259]  __sock_sendmsg+0x221/0x270
[  143.523689][ T8259]  ____sys_sendmsg+0x525/0x7d0
[  143.528474][ T8259]  ? __pfx_____sys_sendmsg+0x10/0x10
[  143.533785][ T8259]  __sys_sendmsg+0x2b0/0x3a0
[  143.538394][ T8259]  ? __pfx___sys_sendmsg+0x10/0x10
[  143.543516][ T8259]  ? vfs_write+0x7c4/0xc90
[  143.547990][ T8259]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  143.554330][ T8259]  ? do_syscall_64+0x100/0x230
[  143.559112][ T8259]  ? do_syscall_64+0xb6/0x230
[  143.563806][ T8259]  do_syscall_64+0xf3/0x230
[  143.568329][ T8259]  ? clear_bhb_loop+0x35/0x90
[  143.573029][ T8259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.578938][ T8259] RIP: 0033:0x7fee1a975bd9
[  143.583364][ T8259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.602978][ T8259] RSP: 002b:00007fee1a3ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  143.611408][ T8259] RAX: ffffffffffffffda RBX: 00007fee1ab03f60 RCX: 00007fee1a975bd9
[  143.619389][ T8259] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[  143.627378][ T8259] RBP: 00007fee1a3ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  143.635363][ T8259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.643346][ T8259] R13: 000000000000000b R14: 00007fee1ab03f60 R15: 00007ffdd7984b68
[  143.651346][ T8259]  </TASK>
[  143.730026][ T8258] __nla_validate_parse: 11 callbacks suppressed
[  143.730045][ T8258] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1026'.
[  144.020473][ T8271] IPv6: Can't replace route, no match found
[  144.252658][ T8275] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1031'.
[  144.683565][ T8289] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1036'.
[  144.694144][ T8288] netlink: 'syz.3.1037': attribute type 3 has an invalid length.
[  144.733146][ T8288] netlink: 'syz.3.1037': attribute type 3 has an invalid length.
[  145.323454][ T8303] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1042'.
[  145.375351][ T8305] FAULT_INJECTION: forcing a failure.
[  145.375351][ T8305] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  145.415630][ T8305] CPU: 1 PID: 8305 Comm: syz.2.1044 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  145.425750][ T8305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  145.435819][ T8305] Call Trace:
[  145.439108][ T8305]  <TASK>
[  145.442053][ T8305]  dump_stack_lvl+0x241/0x360
[  145.446758][ T8305]  ? __pfx_dump_stack_lvl+0x10/0x10
[  145.451976][ T8305]  ? __pfx__printk+0x10/0x10
[  145.456588][ T8305]  ? __pfx_lock_release+0x10/0x10
[  145.461629][ T8305]  ? vfs_write+0x7c4/0xc90
[  145.466069][ T8305]  should_fail_ex+0x3b0/0x4e0
[  145.470772][ T8305]  _copy_from_user+0x2f/0xe0
[  145.475401][ T8305]  __sys_bpf+0x1a4/0x810
[  145.479669][ T8305]  ? __pfx___sys_bpf+0x10/0x10
[  145.484468][ T8305]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  145.490467][ T8305]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  145.496808][ T8305]  ? do_syscall_64+0x100/0x230
[  145.501595][ T8305]  __x64_sys_bpf+0x7c/0x90
[  145.506034][ T8305]  do_syscall_64+0xf3/0x230
[  145.510554][ T8305]  ? clear_bhb_loop+0x35/0x90
[  145.515255][ T8305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.521164][ T8305] RIP: 0033:0x7ff0ead75bd9
[  145.525592][ T8305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.545208][ T8305] RSP: 002b:00007ff0ebace048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  145.553638][ T8305] RAX: ffffffffffffffda RBX: 00007ff0eaf03f60 RCX: 00007ff0ead75bd9
[  145.561623][ T8305] RDX: 0000000000000080 RSI: 0000000020000180 RDI: 0000000000000005
[  145.569607][ T8305] RBP: 00007ff0ebace0a0 R08: 0000000000000000 R09: 0000000000000000
[  145.577589][ T8305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.585567][ T8305] R13: 000000000000000b R14: 00007ff0eaf03f60 R15: 00007ffff091dd68
[  145.593567][ T8305]  </TASK>
[  145.701278][ T8312] netlink: 'syz.1.1048': attribute type 3 has an invalid length.
[  145.722236][ T8312] netlink: 'syz.1.1048': attribute type 3 has an invalid length.
[  145.753551][ T8313] netlink: 'syz.3.1047': attribute type 3 has an invalid length.
[  145.761305][ T8313] netlink: 'syz.3.1047': attribute type 3 has an invalid length.
[  145.783891][ T8315] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1049'.
[  145.792425][ T8313] netlink: 'syz.3.1047': attribute type 5 has an invalid length.
[  146.290343][ T8338] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1055'.
[  146.411825][ T8344] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1057'.
[  146.436291][ T8346] netlink: 296 bytes leftover after parsing attributes in process `syz.0.1059'.
[  146.641322][ T8358] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1061'.
[  146.773171][ T8366] FAULT_INJECTION: forcing a failure.
[  146.773171][ T8366] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.798791][ T8364] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1066'.
[  146.818285][ T8366] CPU: 1 PID: 8366 Comm: syz.1.1067 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  146.828391][ T8366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  146.838463][ T8366] Call Trace:
[  146.841754][ T8366]  <TASK>
[  146.844700][ T8366]  dump_stack_lvl+0x241/0x360
[  146.849402][ T8366]  ? __pfx_dump_stack_lvl+0x10/0x10
[  146.854619][ T8366]  ? __pfx__printk+0x10/0x10
[  146.859230][ T8366]  ? __pfx_lock_release+0x10/0x10
[  146.864271][ T8366]  ? vfs_write+0x7c4/0xc90
[  146.868707][ T8366]  should_fail_ex+0x3b0/0x4e0
[  146.873410][ T8366]  _copy_from_user+0x2f/0xe0
[  146.878017][ T8366]  __sys_bpf+0x1a4/0x810
[  146.882283][ T8366]  ? __pfx___sys_bpf+0x10/0x10
[  146.887077][ T8366]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  146.893079][ T8366]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  146.899425][ T8366]  ? do_syscall_64+0x100/0x230
[  146.904212][ T8366]  __x64_sys_bpf+0x7c/0x90
[  146.908651][ T8366]  do_syscall_64+0xf3/0x230
[  146.913174][ T8366]  ? clear_bhb_loop+0x35/0x90
[  146.917874][ T8366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.923780][ T8366] RIP: 0033:0x7fd5af175bd9
[  146.928187][ T8366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.947783][ T8366] RSP: 002b:00007fd5aff39048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  146.956194][ T8366] RAX: ffffffffffffffda RBX: 00007fd5af303f60 RCX: 00007fd5af175bd9
[  146.964162][ T8366] RDX: 0000000000000090 RSI: 0000000020000040 RDI: 0000000000000005
[  146.972154][ T8366] RBP: 00007fd5aff390a0 R08: 0000000000000000 R09: 0000000000000000
[  146.980125][ T8366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.988086][ T8366] R13: 000000000000000b R14: 00007fd5af303f60 R15: 00007fff2099b858
[  146.996059][ T8366]  </TASK>
[  147.034344][ T8368] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  147.445665][ T8388] xt_bpf: check failed: parse error
[  147.909441][ T8410] dccp_invalid_packet: P.Data Offset(172) too large
[  148.209014][ T8419] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  149.172608][ T8455] __nla_validate_parse: 6 callbacks suppressed
[  149.172627][ T8455] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1099'.
[  149.245201][ T8459] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1096'.
[  149.367286][ T8463] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1101'.
[  149.669018][ T8479] netlink: 'syz.4.1108': attribute type 3 has an invalid length.
[  149.685683][ T8479] netlink: 'syz.4.1108': attribute type 3 has an invalid length.
[  149.860220][ T8486] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1111'.
[  149.939062][ T8491] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1111'.
[  150.011615][ T8492] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1112'.
[  150.025178][ T8492] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  150.323599][ T8500] netlink: 156164 bytes leftover after parsing attributes in process `syz.2.1116'.
[  150.456283][ T8500] xt_bpf: check failed: parse error
[  150.472250][ T8500] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1116'.
[  150.675227][ T8504] netlink: 'syz.2.1117': attribute type 12 has an invalid length.
[  150.692917][ T8504] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1117'.
[  150.866510][ T8512] FAULT_INJECTION: forcing a failure.
[  150.866510][ T8512] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.891823][ T8512] CPU: 1 PID: 8512 Comm: syz.0.1120 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  150.896706][ T8516] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1123'.
[  150.901935][ T8512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  150.921096][ T8512] Call Trace:
[  150.924391][ T8512]  <TASK>
[  150.927336][ T8512]  dump_stack_lvl+0x241/0x360
[  150.932032][ T8512]  ? __pfx_dump_stack_lvl+0x10/0x10
[  150.937250][ T8512]  ? __pfx__printk+0x10/0x10
[  150.941860][ T8512]  ? __pfx_lock_release+0x10/0x10
[  150.946919][ T8512]  should_fail_ex+0x3b0/0x4e0
[  150.951624][ T8512]  _copy_from_user+0x2f/0xe0
[  150.956233][ T8512]  ep_eventpoll_ioctl+0x1b4/0x6d0
[  150.961273][ T8512]  ? __fget_files+0x29/0x470
[  150.965879][ T8512]  ? __pfx_ep_eventpoll_ioctl+0x10/0x10
[  150.971448][ T8512]  ? bpf_lsm_file_ioctl+0x9/0x10
[  150.976399][ T8512]  ? security_file_ioctl+0x87/0xb0
[  150.981531][ T8512]  ? __pfx_ep_eventpoll_ioctl+0x10/0x10
[  150.987094][ T8512]  __se_sys_ioctl+0xfc/0x170
[  150.991700][ T8512]  do_syscall_64+0xf3/0x230
[  150.996219][ T8512]  ? clear_bhb_loop+0x35/0x90
[  151.000921][ T8512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.006835][ T8512] RIP: 0033:0x7ff653b75bd9
[  151.011257][ T8512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.016148][ T8515] tc_dump_action: action bad kind
[  151.030852][ T8512] RSP: 002b:00007ff654946048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  151.030879][ T8512] RAX: ffffffffffffffda RBX: 00007ff653d03f60 RCX: 00007ff653b75bd9
[  151.030898][ T8512] RDX: 0000000020000000 RSI: 0000000040088a01 RDI: 0000000000000003
[  151.030910][ T8512] RBP: 00007ff6549460a0 R08: 0000000000000000 R09: 0000000000000000
[  151.030922][ T8512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.030933][ T8512] R13: 000000000000000b R14: 00007ff653d03f60 R15: 00007fffe69f2558
[  151.030960][ T8512]  </TASK>
[  151.513201][ T8550] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  151.709074][ T8555] netlink: 'syz.3.1131': attribute type 12 has an invalid length.
[  151.822147][ T8558] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  151.951379][ T8565] veth1_macvtap: left promiscuous mode
[  152.787969][ T8591] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  152.857180][ T8591] sch_tbf: peakrate 6 is lower than or equals to rate 7694164503644904053 !
[  153.130075][ T8604] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  153.366950][ T8614] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0
[  153.443334][ T8617] netlink: 'syz.0.1155': attribute type 13 has an invalid length.
[  154.071614][ T8640] netlink: 'syz.0.1162': attribute type 7 has an invalid length.
[  154.097707][ T8640] netlink: 'syz.0.1162': attribute type 39 has an invalid length.
[  154.633460][ T8652] __nla_validate_parse: 9 callbacks suppressed
[  154.633480][ T8652] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1164'.
[  154.755237][ T8660] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  154.799425][ T8652] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  154.854201][ T8665] pim6reg: entered allmulticast mode
[  154.880010][ T8665] pim6reg: left allmulticast mode
[  155.068713][ T8670] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1169'.
[  155.255293][ T8677] FAULT_INJECTION: forcing a failure.
[  155.255293][ T8677] name failslab, interval 1, probability 0, space 0, times 0
[  155.278125][ T8677] CPU: 0 PID: 8677 Comm: syz.1.1173 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  155.288843][ T8677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  155.299115][ T8677] Call Trace:
[  155.299139][ T8677]  <TASK>
[  155.299149][ T8677]  dump_stack_lvl+0x241/0x360
[  155.299180][ T8677]  ? __pfx_dump_stack_lvl+0x10/0x10
[  155.299200][ T8677]  ? __pfx__printk+0x10/0x10
[  155.299224][ T8677]  ? ref_tracker_alloc+0x332/0x490
[  155.299246][ T8677]  should_fail_ex+0x3b0/0x4e0
[  155.330158][ T8677]  ? skb_clone+0x20c/0x390
[  155.334598][ T8677]  should_failslab+0x9/0x20
[  155.339125][ T8677]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  155.344524][ T8677]  skb_clone+0x20c/0x390
[  155.348789][ T8677]  __netlink_deliver_tap+0x3cc/0x7c0
[  155.354107][ T8677]  ? netlink_deliver_tap+0x2e/0x1b0
[  155.359336][ T8677]  netlink_deliver_tap+0x19d/0x1b0
[  155.364466][ T8677]  netlink_unicast+0x7be/0x990
[  155.369250][ T8677]  ? __pfx_netlink_unicast+0x10/0x10
[  155.374543][ T8677]  ? __virt_addr_valid+0x183/0x530
[  155.379683][ T8677]  ? __check_object_size+0x49c/0x900
[  155.384981][ T8677]  ? bpf_lsm_netlink_send+0x9/0x10
[  155.390118][ T8677]  netlink_sendmsg+0x8e4/0xcb0
[  155.394913][ T8677]  ? __pfx_netlink_sendmsg+0x10/0x10
[  155.400214][ T8677]  ? __import_iovec+0x536/0x820
[  155.405076][ T8677]  ? aa_sock_msg_perm+0x91/0x160
[  155.410025][ T8677]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  155.415317][ T8677]  ? security_socket_sendmsg+0x87/0xb0
[  155.420791][ T8677]  ? __pfx_netlink_sendmsg+0x10/0x10
[  155.426090][ T8677]  __sock_sendmsg+0x221/0x270
[  155.430784][ T8677]  ____sys_sendmsg+0x525/0x7d0
[  155.435566][ T8677]  ? __pfx_____sys_sendmsg+0x10/0x10
[  155.440887][ T8677]  __sys_sendmsg+0x2b0/0x3a0
[  155.445494][ T8677]  ? __pfx___sys_sendmsg+0x10/0x10
[  155.450619][ T8677]  ? vfs_write+0x7c4/0xc90
[  155.455099][ T8677]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  155.461442][ T8677]  ? do_syscall_64+0x100/0x230
[  155.466224][ T8677]  ? do_syscall_64+0xb6/0x230
[  155.470919][ T8677]  do_syscall_64+0xf3/0x230
[  155.475436][ T8677]  ? clear_bhb_loop+0x35/0x90
[  155.480131][ T8677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.486038][ T8677] RIP: 0033:0x7fd5af175bd9
[  155.490466][ T8677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.510082][ T8677] RSP: 002b:00007fd5aff39048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  155.518514][ T8677] RAX: ffffffffffffffda RBX: 00007fd5af303f60 RCX: 00007fd5af175bd9
[  155.526496][ T8677] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  155.534478][ T8677] RBP: 00007fd5aff390a0 R08: 0000000000000000 R09: 0000000000000000
[  155.542461][ T8677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.550443][ T8677] R13: 000000000000000b R14: 00007fd5af303f60 R15: 00007fff2099b858
[  155.558442][ T8677]  </TASK>
[  155.610480][ T8677] IPVS: persistence engine module ip_vs_pe_ not found
[  155.650030][ T8687] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1175'.
[  155.679831][ T8687] bridge_slave_1: left allmulticast mode
[  155.690104][ T8687] bridge_slave_1: left promiscuous mode
[  155.695145][ T8692] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1178'.
[  155.699619][ T8687] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.739603][ T8687] bridge_slave_0: left allmulticast mode
[  155.745596][ T8687] bridge_slave_0: left promiscuous mode
[  155.761474][ T8687] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.817624][ T8697] netlink: 156164 bytes leftover after parsing attributes in process `syz.4.1180'.
[  155.886982][ T8700] xt_bpf: check failed: parse error
[  155.911840][ T8700] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1180'.
[  156.115335][ T8708] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  156.122634][ T8708] IPv6: NLM_F_CREATE should be set when creating new route
[  156.129936][ T8708] IPv6: NLM_F_CREATE should be set when creating new route
[  156.160674][ T8713] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1186'.
[  156.689191][ T8734] netlink: 'syz.0.1192': attribute type 2 has an invalid length.
[  156.697100][ T8734] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1192'.
[  156.802959][ T8738] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1194'.
[  156.863957][ T8745] netlink: 156164 bytes leftover after parsing attributes in process `syz.4.1196'.
[  156.928196][ T8749] xt_bpf: check failed: parse error
[  156.977908][ T8750] xt_bpf: check failed: parse error
[  157.031183][ T8748] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  157.040775][ T8748] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  157.049916][ T8748] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  157.059056][ T8748] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  157.120680][ T8748] vxlan0: entered promiscuous mode
[  157.160607][ T8748] vxlan0: entered allmulticast mode
[  157.214144][ T8748] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  157.223401][ T8748] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  157.232316][ T8748] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  157.241320][ T8748] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  157.437355][ T8764] delete_channel: no stack
[  157.816874][ T8780] FAULT_INJECTION: forcing a failure.
[  157.816874][ T8780] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.837693][ T8780] CPU: 1 PID: 8780 Comm: syz.4.1206 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  157.847791][ T8780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  157.857859][ T8780] Call Trace:
[  157.861152][ T8780]  <TASK>
[  157.864097][ T8780]  dump_stack_lvl+0x241/0x360
[  157.868799][ T8780]  ? __pfx_dump_stack_lvl+0x10/0x10
[  157.874019][ T8780]  ? __pfx__printk+0x10/0x10
[  157.878626][ T8780]  ? __pfx_lock_release+0x10/0x10
[  157.883670][ T8780]  ? __lock_acquire+0x1346/0x1fd0
[  157.888715][ T8780]  should_fail_ex+0x3b0/0x4e0
[  157.893421][ T8780]  _copy_from_iter+0x1f6/0x1960
[  157.898307][ T8780]  ? __pfx__copy_from_iter+0x10/0x10
[  157.903614][ T8780]  ? tun_get_user+0x871/0x4720
[  157.908399][ T8780]  ? __pfx_lock_release+0x10/0x10
[  157.913446][ T8780]  ? page_copy_sane+0x46/0x260
[  157.918228][ T8780]  copy_page_from_iter+0x7a/0x100
[  157.923274][ T8780]  tun_get_user+0x1f7d/0x4720
[  157.927981][ T8780]  ? tun_get_user+0x871/0x4720
[  157.932773][ T8780]  ? __lock_acquire+0x1346/0x1fd0
[  157.937814][ T8780]  ? __pfx_tun_get_user+0x10/0x10
[  157.942875][ T8780]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  157.948354][ T8780]  ? tun_get+0x1e/0x2f0
[  157.952533][ T8780]  ? __pfx_lock_release+0x10/0x10
[  157.957635][ T8780]  ? tun_get+0x1e/0x2f0
[  157.961810][ T8780]  ? tun_get+0x27d/0x2f0
[  157.966075][ T8780]  tun_chr_write_iter+0x113/0x1f0
[  157.971124][ T8780]  vfs_write+0xa72/0xc90
[  157.975391][ T8780]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  157.980957][ T8780]  ? __pfx_vfs_write+0x10/0x10
[  157.985788][ T8780]  ksys_write+0x1a0/0x2c0
[  157.990145][ T8780]  ? __pfx_ksys_write+0x10/0x10
[  157.995016][ T8780]  ? do_syscall_64+0x100/0x230
[  157.999799][ T8780]  ? do_syscall_64+0xb6/0x230
[  158.004499][ T8780]  do_syscall_64+0xf3/0x230
[  158.009020][ T8780]  ? clear_bhb_loop+0x35/0x90
[  158.013718][ T8780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.019631][ T8780] RIP: 0033:0x7f6d3457475f
[  158.024060][ T8780] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  158.043676][ T8780] RSP: 002b:00007f6d35298010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  158.052103][ T8780] RAX: ffffffffffffffda RBX: 00007f6d34703f60 RCX: 00007f6d3457475f
[  158.060087][ T8780] RDX: 00000000000009df RSI: 0000000020000800 RDI: 00000000000000c8
[  158.068066][ T8780] RBP: 00007f6d352980a0 R08: 0000000000000000 R09: 0000000000000000
[  158.076132][ T8780] R10: 00000000000009df R11: 0000000000000293 R12: 0000000000000001
[  158.084125][ T8780] R13: 000000000000000b R14: 00007f6d34703f60 R15: 00007ffcfd7a9988
[  158.092123][ T8780]  </TASK>
[  158.604321][ T8813] xt_bpf: check failed: parse error
[  158.964540][ T8832] FAULT_INJECTION: forcing a failure.
[  158.964540][ T8832] name failslab, interval 1, probability 0, space 0, times 0
[  159.001840][ T8832] CPU: 1 PID: 8832 Comm: syz.0.1225 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  159.011941][ T8832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  159.022006][ T8832] Call Trace:
[  159.025298][ T8832]  <TASK>
[  159.028241][ T8832]  dump_stack_lvl+0x241/0x360
[  159.032944][ T8832]  ? __pfx_dump_stack_lvl+0x10/0x10
[  159.038162][ T8832]  ? __pfx__printk+0x10/0x10
[  159.042771][ T8832]  ? __pfx___might_resched+0x10/0x10
[  159.048088][ T8832]  should_fail_ex+0x3b0/0x4e0
[  159.052795][ T8832]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  159.058532][ T8832]  should_failslab+0x9/0x20
[  159.063046][ T8832]  __kmalloc_noprof+0xd8/0x400
[  159.067820][ T8832]  ? kfree+0x4e/0x360
[  159.071819][ T8832]  tomoyo_realpath_from_path+0xcf/0x5e0
[  159.077398][ T8832]  tomoyo_path_number_perm+0x23a/0x880
[  159.082891][ T8832]  ? tomoyo_path_number_perm+0x208/0x880
[  159.088540][ T8832]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  159.094580][ T8832]  ? __fget_files+0x29/0x470
[  159.099285][ T8832]  ? __fget_files+0x3f6/0x470
[  159.103985][ T8832]  ? __fget_files+0x29/0x470
[  159.108602][ T8832]  security_file_ioctl+0x75/0xb0
[  159.113564][ T8832]  __se_sys_ioctl+0x47/0x170
[  159.118177][ T8832]  do_syscall_64+0xf3/0x230
[  159.122708][ T8832]  ? clear_bhb_loop+0x35/0x90
[  159.127408][ T8832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.133318][ T8832] RIP: 0033:0x7ff653b75bd9
[  159.137746][ T8832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.157361][ T8832] RSP: 002b:00007ff654946048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  159.165788][ T8832] RAX: ffffffffffffffda RBX: 00007ff653d03f60 RCX: 00007ff653b75bd9
[  159.173770][ T8832] RDX: 0000000020000080 RSI: 00000000800448f0 RDI: 0000000000000006
[  159.181760][ T8832] RBP: 00007ff6549460a0 R08: 0000000000000000 R09: 0000000000000000
[  159.189831][ T8832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.197816][ T8832] R13: 000000000000000b R14: 00007ff653d03f60 R15: 00007fffe69f2558
[  159.205818][ T8832]  </TASK>
[  159.232725][ T8832] ERROR: Out of memory at tomoyo_realpath_from_path.
[  159.270028][ T8835] xt_bpf: check failed: parse error
[  159.669661][ T8863] __nla_validate_parse: 11 callbacks suppressed
[  159.669682][ T8863] netlink: 156164 bytes leftover after parsing attributes in process `syz.4.1236'.
[  159.705764][ T8861] sctp: [Deprecated]: syz.2.1235 (pid 8861) Use of int in max_burst socket option.
[  159.705764][ T8861] Use struct sctp_assoc_value instead
[  159.791545][ T8871] xt_bpf: check failed: parse error
[  159.813262][ T8871] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1236'.
[  159.836102][ T8865] pimreg: entered allmulticast mode
[  159.959080][ T8877] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1239'.
[  160.576070][ T8909] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1252'.
[  160.613884][ T8912] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1253'.
[  160.646305][ T8914] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1254'.
[  160.696988][ T8915] netlink: 208 bytes leftover after parsing attributes in process `syz.4.1254'.
[  160.752574][ T8915] netlink: 'syz.4.1254': attribute type 1 has an invalid length.
[  160.768234][ T8921] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1256'.
[  160.939880][ T8929] sctp: [Deprecated]: syz.0.1257 (pid 8929) Use of int in max_burst socket option.
[  160.939880][ T8929] Use struct sctp_assoc_value instead
[  160.981033][ T8930] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1258'.
[  161.393202][ T8940] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1262'.
[  161.539977][ T8940] team1: Mode changed to "activebackup"
[  161.745473][ T8945] xt_bpf: check failed: parse error
[  162.243561][ T5102] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  162.253742][ T5102] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  162.254606][ T8963] openvswitch: netlink: Flow actions attr not present in new flow.
[  162.270010][ T5102] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  162.292771][ T5102] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  162.302244][ T5102] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  162.314434][ T5102] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  162.467709][ T8967] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  162.689333][ T8973] xt_bpf: check failed: parse error
[  162.965623][ T8978] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  163.121121][ T8985] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  163.181247][ T8964] chnl_net:caif_netlink_parms(): no params data found
[  163.359257][ T8964] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.366859][ T8964] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.376957][ T8964] bridge_slave_0: entered allmulticast mode
[  163.392958][ T8964] bridge_slave_0: entered promiscuous mode
[  163.403438][ T8964] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.410729][ T8964] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.418608][ T8964] bridge_slave_1: entered allmulticast mode
[  163.426073][ T8964] bridge_slave_1: entered promiscuous mode
[  163.481588][ T8964] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  163.512190][ T8964] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  163.570110][ T9000] xt_cgroup: path and classid specified
[  163.618473][ T8964] team0: Port device team_slave_0 added
[  163.633395][ T9002] 0ªX¹¦D: renamed from gretap0 (while UP)
[  163.645583][ T9002] 0ªX¹¦D: entered allmulticast mode
[  163.658265][ T9003] netlink: zone id is out of range
[  163.660036][ T9002] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[  163.673109][ T9003] netlink: zone id is out of range
[  163.694255][ T9003] netlink: zone id is out of range
[  163.713075][ T9003] netlink: zone id is out of range
[  163.725490][ T9003] netlink: zone id is out of range
[  163.736228][ T8964] team0: Port device team_slave_1 added
[  163.747068][ T9003] netlink: zone id is out of range
[  163.757308][ T9003] netlink: zone id is out of range
[  163.821885][ T8964] batman_adv: batadv0: Adding interface: batadv_slave_0
[  163.862477][ T8964] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  163.931070][ T8964] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  163.973895][ T8964] batman_adv: batadv0: Adding interface: batadv_slave_1
[  163.980884][ T8964] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  164.021572][ T8964] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  164.191034][ T8964] hsr_slave_0: entered promiscuous mode
[  164.232718][ T9027] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  164.241299][ T8964] hsr_slave_1: entered promiscuous mode
[  164.262691][ T8964] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  164.275927][ T9029] sctp: [Deprecated]: syz.1.1290 (pid 9029) Use of int in max_burst socket option.
[  164.275927][ T9029] Use struct sctp_assoc_value instead
[  164.283283][ T8964] Cannot create hsr debugfs directory
[  164.413159][ T5098] Bluetooth: hci3: command tx timeout
[  164.755850][ T8964] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.865927][ T8964] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.979280][ T8964] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.113385][ T8964] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.349790][ T8964] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  165.371689][ T8964] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  165.396740][ T8964] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  165.415447][ T8964] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  165.704027][ T8964] 8021q: adding VLAN 0 to HW filter on device bond0
[  165.757100][ T8964] 8021q: adding VLAN 0 to HW filter on device team0
[  165.809226][ T5151] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.818254][ T5151] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.854923][ T5151] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.862123][ T5151] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.206927][ T9070] netlink: 'syz.2.1302': attribute type 33 has an invalid length.
[  166.343783][ T9072] __nla_validate_parse: 10 callbacks suppressed
[  166.343803][ T9072] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1302'.
[  166.372094][ T9072] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1302'.
[  166.501295][ T5098] Bluetooth: hci3: command tx timeout
[  166.572234][ T8964] 8021q: adding VLAN 0 to HW filter on device batadv0
[  166.782826][ T9079] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1303'.
[  167.210728][ T9089] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1307'.
[  167.268087][ T8964] veth0_vlan: entered promiscuous mode
[  167.329497][ T8964] veth1_vlan: entered promiscuous mode
[  167.437592][ T8964] veth0_macvtap: entered promiscuous mode
[  167.476193][ T8964] veth1_macvtap: entered promiscuous mode
[  167.518010][ T9093] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1306'.
[  167.557296][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.592880][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.618412][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.641101][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.654792][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.668253][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.679416][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.698249][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.720597][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.744140][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.755328][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.769429][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.781906][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.793828][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.810301][ T8964] batman_adv: batadv0: Interface activated: batadv_slave_0
[  167.857148][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.894038][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.917792][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.935276][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.953740][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.964364][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.974521][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.987160][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.997251][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  168.034625][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.062587][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  168.082407][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.126478][ T8964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  168.145056][ T8964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.157134][ T9114] net_ratelimit: 9 callbacks suppressed
[  168.157154][ T9114] dccp_invalid_packet: P.Data Offset(255) too large
[  168.174889][ T8964] batman_adv: batadv0: Interface activated: batadv_slave_1
[  168.198706][ T9109] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1314'.
[  168.286876][ T8964] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.337829][ T8964] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.380318][ T8964] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.402784][ T8964] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.573823][ T5098] Bluetooth: hci3: command tx timeout
[  168.644839][ T3879] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  168.661318][ T3879] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  168.686913][ T9136] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1322'.
[  168.723447][ T3879] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  168.740911][ T3879] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  168.965101][ T9150] netlink: 156164 bytes leftover after parsing attributes in process `syz.2.1324'.
[  169.043952][ T9153] xt_bpf: check failed: parse error
[  169.071387][ T9153] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1324'.
[  169.347664][ T9160] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  169.613025][ T1276] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  169.614249][ T9164] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1328'.
[  170.436481][ T9188] xt_bpf: check failed: parse error
[  170.652652][ T5098] Bluetooth: hci3: command tx timeout
[  170.831817][ T9197] xt_bpf: check failed: parse error
[  170.993401][ T9209] xt_bpf: check failed: parse error
[  171.356200][ T9221] __nla_validate_parse: 7 callbacks suppressed
[  171.356219][ T9221] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1348'.
[  171.723469][ T9234] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1354'.
[  171.878511][ T9239] netlink: 156164 bytes leftover after parsing attributes in process `syz.2.1357'.
[  172.005750][ T9247] xt_bpf: check failed: parse error
[  172.048967][ T9239] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1357'.
[  172.306058][ T9257] netlink: 156164 bytes leftover after parsing attributes in process `syz.1.1363'.
[  172.332929][ T9259] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  172.426545][ T9260] xt_bpf: check failed: parse error
[  172.557776][ T9264] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1365'.
[  172.577912][ T9257] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1363'.
[  172.735284][ T9266] (unnamed net_device) (uninitialized): option arp_validate: invalid value (18446744073709551615)
[  172.937622][ T9277] skb len=4745 headroom=168 headlen=4745 tailroom=2959
[  172.937622][ T9277] mac=(168,0) mac_len=0 net=(168,20) trans=188
[  172.937622][ T9277] shinfo(txflags=0 nr_frags=0 gso(size=0 type=0 segs=0))
[  172.937622][ T9277] csum(0x350e00c0 start=192 offset=13582 ip_summed=3 complete_sw=0 valid=0 level=0)
[  172.937622][ T9277] hash(0x0 sw=0 l4=0) proto=0x0800 pkttype=0 iif=0
[  172.937622][ T9277] priority=0x0 mark=0x0 alloc_cpu=0 vlan_all=0x0
[  172.937622][ T9277] encapsulation=1 inner(proto=0x0008, mac=192, net=192, trans=244)
[  172.987305][ T9277] dev name=veth0 feat=0x000061164fdd19e9
[  172.993004][ T9277] skb linear:   00000000: 45 02 12 89 4e ae 00 00 0f 2f aa 66 ac 14 14 18
[  173.001513][ T9277] skb linear:   00000010: e0 00 00 03 00 00 08 00 bd 0b 12 71 10 82 0c 52
[  173.010110][ T9277] skb linear:   00000020: 0f 06 01 a5 fd fe 4b 88 94 30 eb b5 29 97 e3 6e
[  173.018669][ T9277] skb linear:   00000030: 03 9b 1c 59 88 25 f8 01 00 e3 c0 63 76 c3 30 76
[  173.027217][ T9277] skb linear:   00000040: a1 67 d5 14 fa 57 0a 44 02 61 a6 7a 34 a0 76 05
[  173.035772][ T9277] skb linear:   00000050: c9 3a 19 49 46 bc 62 83 f4 00 00 00 35 80 00 00
[  173.044319][ T9277] skb linear:   00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.052864][ T9277] skb linear:   00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.061379][ T9277] skb linear:   00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.069993][ T9277] skb linear:   00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.078623][ T9277] skb linear:   000000a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.087181][ T9277] skb linear:   000000b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.095738][ T9277] skb linear:   000000c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.104296][ T9277] skb linear:   000000d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.112854][ T9277] skb linear:   000000e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.121391][ T9277] skb linear:   000000f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.130034][ T9277] skb linear:   00000100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.138586][ T9277] skb linear:   00000110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.147136][ T9277] skb linear:   00000120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.155695][ T9277] ------------[ cut here ]------------
[  173.161153][ T9277] offset+2 (13608) > skb_headlen() (4745)
[  173.167423][ T9277] WARNING: CPU: 0 PID: 9277 at net/core/dev.c:3336 skb_checksum_help+0x68f/0x730
[  173.176607][ T9277] Modules linked in:
[  173.180516][ T9277] CPU: 0 PID: 9277 Comm: syz.4.1370 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  173.190626][ T9277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  173.200745][ T9277] RIP: 0010:skb_checksum_help+0x68f/0x730
[  173.206524][ T9277] Code: 48 8b 4c 24 10 0f b6 04 01 84 c0 0f 85 89 00 00 00 48 8b 44 24 08 2b 18 48 c7 c7 c0 d5 c5 8c 4c 89 f6 89 da e8 02 84 ff f7 90 <0f> 0b 90 90 bb ea ff ff ff e9 cf fc ff ff 48 8b 0c 24 80 e1 07 80
[  173.226185][ T9277] RSP: 0018:ffffc900044b6d28 EFLAGS: 00010246
[  173.232274][ T9277] RAX: 0a7854cd97640800 RBX: 0000000000001289 RCX: 0000000000040000
[  173.240305][ T9277] RDX: ffffc9000bb9a000 RSI: 000000000003ffff RDI: 0000000000040000
[  173.248334][ T9277] RBP: dffffc0000000000 R08: ffffffff815857b2 R09: fffffbfff1c39994
[  173.256353][ T9277] R10: dffffc0000000000 R11: fffffbfff1c39994 R12: 1ffff110058f6d76
[  173.264402][ T9277] R13: 0000000000003526 R14: 0000000000003528 R15: ffff88802c7b6b40
[  173.272430][ T9277] FS:  00007f82d14986c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  173.281374][ T9277] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  173.288011][ T9277] CR2: 000000002000e000 CR3: 00000000121be000 CR4: 00000000003506f0
[  173.296036][ T9277] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  173.304063][ T9277] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  173.312046][ T9277] Call Trace:
[  173.315372][ T9277]  <TASK>
[  173.318314][ T9277]  ? __warn+0x163/0x4e0
[  173.322523][ T9277]  ? skb_checksum_help+0x68f/0x730
[  173.327662][ T9277]  ? report_bug+0x2b3/0x500
[  173.332183][ T9277]  ? skb_checksum_help+0x68f/0x730
[  173.337358][ T9277]  ? handle_bug+0x3e/0x70
[  173.341709][ T9277]  ? exc_invalid_op+0x1a/0x50
[  173.346443][ T9277]  ? asm_exc_invalid_op+0x1a/0x20
[  173.351495][ T9277]  ? __warn_printk+0x292/0x360
[  173.356329][ T9277]  ? skb_checksum_help+0x68f/0x730
[  173.361465][ T9277]  ? skb_checksum_help+0x68e/0x730
[  173.366651][ T9277]  ip_do_fragment+0x20d/0x1b30
[  173.371516][ T9277]  ? __pfx_ip_finish_output2+0x10/0x10
[  173.377341][ T9277]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  173.383740][ T9277]  ? __pfx_ip_do_fragment+0x10/0x10
[  173.388967][ T9277]  ? kasan_quarantine_put+0xdc/0x230
[  173.394318][ T9277]  ? lockdep_hardirqs_on+0x99/0x150
[  173.399554][ T9277]  ? __ip_finish_output+0x247/0x400
[  173.404804][ T9277]  ? kmem_cache_free+0x145/0x350
[  173.409760][ T9277]  ? ip_fragment+0x9a/0x220
[  173.414329][ T9277]  __ip_finish_output+0x290/0x400
[  173.419398][ T9277]  iptunnel_xmit+0x540/0x9b0
[  173.424073][ T9277]  ip_tunnel_xmit+0x2119/0x2950
[  173.428950][ T9277]  ? __phys_addr+0xba/0x170
[  173.433546][ T9277]  ? __pfx_ip_tunnel_xmit+0x10/0x10
[  173.438759][ T9277]  ? gre_build_header+0x341/0xb30
[  173.443859][ T9277]  ? __pfx_gre_build_header+0x10/0x10
[  173.449251][ T9277]  ? iptunnel_handle_offloads+0x25f/0x650
[  173.455051][ T9277]  ipgre_xmit+0x958/0xd40
[  173.459424][ T9277]  ? __pfx_ipgre_xmit+0x10/0x10
[  173.464332][ T9277]  ? dev_queue_xmit_nit+0x2b/0xc10
[  173.469480][ T9277]  dev_hard_start_xmit+0x27a/0x7e0
[  173.474675][ T9277]  __dev_queue_xmit+0x1b63/0x3e90
[  173.479732][ T9277]  ? __dev_queue_xmit+0x2da/0x3e90
[  173.484896][ T9277]  ? _copy_from_iter+0x26b/0x1960
[  173.489945][ T9277]  ? __pfx___dev_queue_xmit+0x10/0x10
[  173.495373][ T9277]  ? __virt_addr_valid+0x183/0x530
[  173.500508][ T9277]  ? skb_set_owner_w+0x238/0x3e0
[  173.505526][ T9277]  ? skb_partial_csum_set+0x105/0x350
[  173.510930][ T9277]  ? virtio_net_hdr_to_skb+0xa6a/0x1330
[  173.516538][ T9277]  ? packet_parse_headers+0x7bd/0xad0
[  173.521951][ T9277]  ? packet_xmit+0x68/0x330
[  173.526522][ T9277]  packet_sendmsg+0x4bc0/0x6710
[  173.531424][ T9277]  ? __pfx___might_resched+0x10/0x10
[  173.536781][ T9277]  ? aa_sk_perm+0x967/0xab0
[  173.541312][ T9277]  ? __pfx_packet_sendmsg+0x10/0x10
[  173.542563][ T5102] Bluetooth: hci3: command 0x0405 tx timeout
[  173.546549][ T9277]  ? __pfx_lock_release+0x10/0x10
[  173.546583][ T9277]  ? __import_iovec+0x536/0x820
[  173.562473][ T9277]  ? aa_sock_msg_perm+0x91/0x160
[  173.567443][ T9277]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  173.572801][ T9277]  ? security_socket_sendmsg+0x87/0xb0
[  173.578287][ T9277]  ? __pfx_packet_sendmsg+0x10/0x10
[  173.583547][ T9277]  __sock_sendmsg+0x221/0x270
[  173.588255][ T9277]  ____sys_sendmsg+0x525/0x7d0
[  173.593079][ T9277]  ? __pfx_____sys_sendmsg+0x10/0x10
[  173.598398][ T9277]  __sys_sendmsg+0x2b0/0x3a0
[  173.603047][ T9277]  ? __pfx___sys_sendmsg+0x10/0x10
[  173.608220][ T9277]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  173.614608][ T9277]  ? do_syscall_64+0x100/0x230
[  173.619395][ T9277]  ? do_syscall_64+0xb6/0x230
[  173.624127][ T9277]  do_syscall_64+0xf3/0x230
[  173.628651][ T9277]  ? clear_bhb_loop+0x35/0x90
[  173.633393][ T9277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.639310][ T9277] RIP: 0033:0x7f82d0775bd9
[  173.643782][ T9277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.663446][ T9277] RSP: 002b:00007f82d1498048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  173.672027][ T9277] RAX: ffffffffffffffda RBX: 00007f82d0903f60 RCX: 00007f82d0775bd9
[  173.680598][ T9277] RDX: 0000000000000000 RSI: 0000000020002ac0 RDI: 0000000000000006
[  173.692996][ T9277] RBP: 00007f82d07e4e60 R08: 0000000000000000 R09: 0000000000000000
[  173.701007][ T9277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  173.709246][ T9277] R13: 000000000000000b R14: 00007f82d0903f60 R15: 00007ffd36871838
[  173.718024][ T9277]  </TASK>
[  173.721859][ T9277] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  173.729249][ T9277] CPU: 0 PID: 9277 Comm: syz.4.1370 Not tainted 6.10.0-rc7-syzkaller-01816-g852e42cc2dd4 #0
[  173.739339][ T9277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  173.749428][ T9277] Call Trace:
[  173.752738][ T9277]  <TASK>
[  173.755684][ T9277]  dump_stack_lvl+0x241/0x360
[  173.760394][ T9277]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.765618][ T9277]  ? __pfx__printk+0x10/0x10
[  173.770242][ T9277]  ? vscnprintf+0x5d/0x90
[  173.774607][ T9277]  panic+0x349/0x860
[  173.778530][ T9277]  ? __warn+0x172/0x4e0
[  173.782714][ T9277]  ? __pfx_panic+0x10/0x10
[  173.787167][ T9277]  __warn+0x346/0x4e0
[  173.791167][ T9277]  ? skb_checksum_help+0x68f/0x730
[  173.796302][ T9277]  report_bug+0x2b3/0x500
[  173.800645][ T9277]  ? skb_checksum_help+0x68f/0x730
[  173.805783][ T9277]  handle_bug+0x3e/0x70
[  173.809961][ T9277]  exc_invalid_op+0x1a/0x50
[  173.814486][ T9277]  asm_exc_invalid_op+0x1a/0x20
[  173.819357][ T9277] RIP: 0010:skb_checksum_help+0x68f/0x730
[  173.825101][ T9277] Code: 48 8b 4c 24 10 0f b6 04 01 84 c0 0f 85 89 00 00 00 48 8b 44 24 08 2b 18 48 c7 c7 c0 d5 c5 8c 4c 89 f6 89 da e8 02 84 ff f7 90 <0f> 0b 90 90 bb ea ff ff ff e9 cf fc ff ff 48 8b 0c 24 80 e1 07 80
[  173.844721][ T9277] RSP: 0018:ffffc900044b6d28 EFLAGS: 00010246
[  173.850810][ T9277] RAX: 0a7854cd97640800 RBX: 0000000000001289 RCX: 0000000000040000
[  173.858797][ T9277] RDX: ffffc9000bb9a000 RSI: 000000000003ffff RDI: 0000000000040000
[  173.866780][ T9277] RBP: dffffc0000000000 R08: ffffffff815857b2 R09: fffffbfff1c39994
[  173.874766][ T9277] R10: dffffc0000000000 R11: fffffbfff1c39994 R12: 1ffff110058f6d76
[  173.882752][ T9277] R13: 0000000000003526 R14: 0000000000003528 R15: ffff88802c7b6b40
[  173.890744][ T9277]  ? __warn_printk+0x292/0x360
[  173.895538][ T9277]  ? skb_checksum_help+0x68e/0x730
[  173.901651][ T9277]  ip_do_fragment+0x20d/0x1b30
[  173.906457][ T9277]  ? __pfx_ip_finish_output2+0x10/0x10
[  173.911942][ T9277]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  173.918288][ T9277]  ? __pfx_ip_do_fragment+0x10/0x10
[  173.923508][ T9277]  ? kasan_quarantine_put+0xdc/0x230
[  173.928808][ T9277]  ? lockdep_hardirqs_on+0x99/0x150
[  173.934027][ T9277]  ? __ip_finish_output+0x247/0x400
[  173.939241][ T9277]  ? kmem_cache_free+0x145/0x350
[  173.944202][ T9277]  ? ip_fragment+0x9a/0x220
[  173.948728][ T9277]  __ip_finish_output+0x290/0x400
[  173.953792][ T9277]  iptunnel_xmit+0x540/0x9b0
[  173.958419][ T9277]  ip_tunnel_xmit+0x2119/0x2950
[  173.963288][ T9277]  ? __phys_addr+0xba/0x170
[  173.967842][ T9277]  ? __pfx_ip_tunnel_xmit+0x10/0x10
[  173.973054][ T9277]  ? gre_build_header+0x341/0xb30
[  173.978115][ T9277]  ? __pfx_gre_build_header+0x10/0x10
[  173.983504][ T9277]  ? iptunnel_handle_offloads+0x25f/0x650
[  173.989249][ T9277]  ipgre_xmit+0x958/0xd40
[  173.993614][ T9277]  ? __pfx_ipgre_xmit+0x10/0x10
[  173.998480][ T9277]  ? dev_queue_xmit_nit+0x2b/0xc10
[  174.003622][ T9277]  dev_hard_start_xmit+0x27a/0x7e0
[  174.008774][ T9277]  __dev_queue_xmit+0x1b63/0x3e90
[  174.013832][ T9277]  ? __dev_queue_xmit+0x2da/0x3e90
[  174.018958][ T9277]  ? _copy_from_iter+0x26b/0x1960
[  174.024007][ T9277]  ? __pfx___dev_queue_xmit+0x10/0x10
[  174.029393][ T9277]  ? __virt_addr_valid+0x183/0x530
[  174.034521][ T9277]  ? skb_set_owner_w+0x238/0x3e0
[  174.039475][ T9277]  ? skb_partial_csum_set+0x105/0x350
[  174.044877][ T9277]  ? virtio_net_hdr_to_skb+0xa6a/0x1330
[  174.050445][ T9277]  ? packet_parse_headers+0x7bd/0xad0
[  174.055859][ T9277]  ? packet_xmit+0x68/0x330
[  174.060386][ T9277]  packet_sendmsg+0x4bc0/0x6710
[  174.065276][ T9277]  ? __pfx___might_resched+0x10/0x10
[  174.070595][ T9277]  ? aa_sk_perm+0x967/0xab0
[  174.075122][ T9277]  ? __pfx_packet_sendmsg+0x10/0x10
[  174.080342][ T9277]  ? __pfx_lock_release+0x10/0x10
[  174.085378][ T9277]  ? __import_iovec+0x536/0x820
[  174.090243][ T9277]  ? aa_sock_msg_perm+0x91/0x160
[  174.095198][ T9277]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  174.100500][ T9277]  ? security_socket_sendmsg+0x87/0xb0
[  174.105981][ T9277]  ? __pfx_packet_sendmsg+0x10/0x10
[  174.111193][ T9277]  __sock_sendmsg+0x221/0x270
[  174.115896][ T9277]  ____sys_sendmsg+0x525/0x7d0
[  174.120781][ T9277]  ? __pfx_____sys_sendmsg+0x10/0x10
[  174.126096][ T9277]  __sys_sendmsg+0x2b0/0x3a0
[  174.130705][ T9277]  ? __pfx___sys_sendmsg+0x10/0x10
[  174.135876][ T9277]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  174.142216][ T9277]  ? do_syscall_64+0x100/0x230
[  174.146996][ T9277]  ? do_syscall_64+0xb6/0x230
[  174.151694][ T9277]  do_syscall_64+0xf3/0x230
[  174.156219][ T9277]  ? clear_bhb_loop+0x35/0x90
[  174.160922][ T9277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.166831][ T9277] RIP: 0033:0x7f82d0775bd9
[  174.171241][ T9277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.190841][ T9277] RSP: 002b:00007f82d1498048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  174.199251][ T9277] RAX: ffffffffffffffda RBX: 00007f82d0903f60 RCX: 00007f82d0775bd9
[  174.207737][ T9277] RDX: 0000000000000000 RSI: 0000000020002ac0 RDI: 0000000000000006
[  174.215706][ T9277] RBP: 00007f82d07e4e60 R08: 0000000000000000 R09: 0000000000000000
[  174.223675][ T9277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  174.231636][ T9277] R13: 000000000000000b R14: 00007f82d0903f60 R15: 00007ffd36871838
[  174.239614][ T9277]  </TASK>
[  174.242831][ T9277] Kernel Offset: disabled
[  174.247174][ T9277] Rebooting in 86400 seconds..