last executing test programs:

12.99058748s ago: executing program 4 (id=430):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000400)=ANY=[@ANYBLOB="1401000031001fffffff00000000000003"], 0x114}], 0x1}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f00000004c0), r3)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000540)={'syzkaller0\x00', 0x402})
close(r4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000500))
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r6, &(0x7f0000000000)=ANY=[@ANYBLOB="1e040600bc5cb60128876360864666702c1ffe80000000000000", @ANYRESHEX], 0xffdd)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac148fefffffffffffff00001400020002000000e000000200000000000000000d0001007564703a73797a3200000000"], 0x54}}, 0x0)

12.140049769s ago: executing program 0 (id=438):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/96, 0x2329000, 0x800}, 0x20)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d00010073796e70726f7879000000000400028014000000110001"], 0xcc}}, 0x0) (async)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r2, &(0x7f0000000100)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @private=0xa010101}}, 0xffffffffffffff3d, &(0x7f0000000300)=[{&(0x7f0000000040)="18", 0x1}], 0x1}}, {{&(0x7f0000000600)={0xa, 0x4e20, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}, 0x1}, 0x1c, &(0x7f0000001480)=[{&(0x7f0000000a40)='~', 0x1}], 0x1}}], 0x2, 0x0) (async, rerun: 32)
shutdown(r2, 0x1) (rerun: 32)
syz_emit_ethernet(0x3a, &(0x7f0000000440)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @empty}, {{0x4e24, 0x4e29, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x16, 0x1, 0x0, 0x0, {[@generic={0x2, 0x4, "a000"}]}}}}}}}, 0x0)

11.714098457s ago: executing program 0 (id=441):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1dc, 0x1dc, 0x3, [@enum={0x3, 0x1, 0x0, 0x6, 0x4, [{0x6, 0xd09}]}, @restrict={0x8}, @union={0x5, 0x6, 0x0, 0x5, 0x1, 0x6, [{0x9, 0x1, 0x9}, {0xb, 0x2, 0x7}, {0xe, 0x4, 0x80000000}, {0x5, 0x2, 0x2}, {0x8, 0x2}, {0x0, 0x5, 0x800}]}, @struct={0x8, 0xa, 0x0, 0x4, 0x0, 0x4, [{0xd, 0x2, 0x2}, {0x4, 0x0, 0x4}, {0xc, 0x4, 0x4}, {0x1, 0x5, 0xe96d}, {0x8, 0x755a, 0x1e8}, {0x2, 0x3, 0x401}, {0x8, 0x5, 0x1000}, {0x2, 0x5, 0x6}, {0xc, 0x0, 0x7}, {0x5, 0x3, 0xfffffff7}]}, @func={0x2, 0x0, 0x0, 0xc, 0x2}, @union={0xc, 0x7, 0x0, 0x5, 0x0, 0x5, [{0x8, 0x2, 0x1}, {0x2, 0x4, 0x10000}, {0x4, 0x1, 0x400}, {0x5, 0x4, 0x7f}, {0xa, 0x2, 0x3}, {0x5}, {0xf, 0x5, 0x5}]}, @union={0x6, 0x8, 0x0, 0x5, 0x1, 0x579d, [{0x6, 0x4, 0x5}, {0xa, 0x3, 0xffffffff}, {0xc, 0x5, 0x2}, {0x3, 0x4, 0x8000}, {0xc, 0x2}, {0x3, 0x5, 0x80}, {0x8, 0x5, 0xa35}, {0xb, 0x0, 0x1000}]}, @const={0x5}]}, {0x0, [0x2e]}}, &(0x7f0000000480)=""/215, 0x1f7, 0xd7, 0x0, 0x9e, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x4, &(0x7f00000006c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xd2}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000071100d00000000009500000000000000e6582da86c9db092d988db292d7fcb1012058d64e0d3beb6f45f6d44ca13209286e2c5292ab72d1af005079bb5cacc5dda97a274f3dfdb3635e08adcd2e34af526108e1739cae0441844e7e169f98d4c61f31d73b749cb1dc866180f93a9bdc7e8f704a8de54e2610184c835360490bc3b839b1b3a4a90e52a8b4616d1cdcdd7d30c96eb3af966ab897194be1c6f295d9cd6519040a965de87c2a5e99a1b61c36ff721303ece640957e5"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

11.360895419s ago: executing program 0 (id=443):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000340)={0x0, 0x1, 0x0, 0x0, @vifc_lcl_addr=@rand_addr=0xc0000200, @private}, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$L2TP_CMD_TUNNEL_DELETE(r1, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x40, r2, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@L2TP_ATTR_FD={0x8, 0x17, @udp=r3}, @L2TP_ATTR_MTU={0x6, 0x1c, 0x6}, @L2TP_ATTR_MTU={0x6, 0x1c, 0xba7b}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x4}, @L2TP_ATTR_COOKIE={0xc, 0xf, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x44000}, 0x8041) (async, rerun: 64)
r4 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 64)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket(0x2a, 0x2, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r6, &(0x7f0000000200)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@gettclass={0x24, 0x2a, 0x0, 0x70bd2c, 0x25dfdbfc, {0x0, 0x0, 0x0, r7, {0x5, 0x9}, {0xfff3, 0x2}, {0xffe0, 0xfff1}}}, 0x24}}, 0x20040881)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x4c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xfff3}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x14, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5}]}]}]}}]}, 0x4c}}, 0x0) (async, rerun: 64)
r8 = socket$netlink(0x10, 0x3, 0x0) (rerun: 64)
sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000600)={0x50, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x50}}, 0x0)
r9 = socket$l2tp(0x2, 0x2, 0x73)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=@newtaction={0x50, 0x30, 0x1, 0x0, 0x0, {}, [{0x3c, 0x1, [@m_mpls={0x38, 0x1, 0x0, 0x0, {{0x9}, {0xc, 0x2, 0x0, 0x1, [@TCA_MPLS_LABEL={0x8, 0x5, 0x3}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x50}}, 0x0) (async)
connect$inet(r9, &(0x7f00000003c0)={0x2, 0x4e22, @loopback}, 0x10) (async)
sendmsg$NFT_BATCH(r5, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000340)={&(0x7f0000000a40)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x801, 0x0, 0x0, {0x7, 0x0, 0x2}, @NFT_OBJECT_SYNPROXY=@NFTA_OBJ_TYPE={0x8}}, @NFT_MSG_DELFLOWTABLE={0x58, 0x18, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0x44, 0x14, 0xa, 0x300, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_USERDATA={0x7, 0x8, "4a106a"}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x7}]}, @NFT_MSG_NEWCHAIN={0x50, 0x3, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x5}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x4}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffb}, @NFTA_CHAIN_TYPE={0xa, 0x7, 'route\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x100, 0x16, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x5}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x94, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x90, 0x3, 0x0, 0x1, [{0x14, 0x1, 'bond_slave_1\x00'}, {0x14, 0x1, 'team_slave_1\x00'}, {0x14, 0x1, 'veth1_to_team\x00'}, {0x14, 0x1, 'veth1_to_batadv\x00'}, {0x14, 0x1, 'pimreg\x00'}, {0x14, 0x1, 'macvlan1\x00'}, {0x14, 0x1, 'veth1_vlan\x00'}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x230}, 0x1, 0x0, 0x0, 0x44800}, 0x8810) (async)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c00000010000104000000000000000100000000", @ANYRES32=0x0, @ANYBLOB="fff0000000000000140012800b00010062617461647600000300028008000a001a"], 0x3c}}, 0x0)

10.627852757s ago: executing program 4 (id=448):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x0, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2}}}}]}]}, 0x70}}, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x2})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x30c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0)

8.550563752s ago: executing program 2 (id=463):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'bridge0\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r0, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

8.224389926s ago: executing program 2 (id=466):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = accept4$phonet_pipe(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10, 0x80800)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000006c0)={<r2=>0xffffffffffffffff})
sendmsg$tipc(r2, &(0x7f0000001880)={&(0x7f0000000700)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x3, 0x3}}, 0x10, 0x0}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={0x18, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_SOCKETS={0x4}]}, 0x18}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000080)={0x60000004})
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000540)={@loopback, @mcast1, @empty, 0x7fff, 0x6, 0x8000, 0x400, 0x9, 0x200002})
socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x10, &(0x7f0000000580)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r6}, {}, {0x85, 0x0, 0x0, 0x69}}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r7, 0x0, 0x10, 0x10, &(0x7f00000006c0)="0000000000000500", &(0x7f0000000700)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1a219c6543ce6e01}, 0xc, &(0x7f00000003c0)={&(0x7f0000000100)={0x2a0, r5, 0x100, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x98, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x401}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffa}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x103}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf470}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_MTU={0x8}]}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}]}, @TIPC_NLA_LINK={0xbc, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x25}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xb6}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x36}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_REF={0x8}]}, @TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x452e}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x792}]}, @TIPC_NLA_SOCK={0x94, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xffffffff}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}]}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}]}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x7310}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x63c47632}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xa4ae}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x7f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1000}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xd}]}]}, @TIPC_NLA_SOCK={0x28, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x100}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x101}]}]}]}, 0x2a0}, 0x1, 0x0, 0x0, 0x8800}, 0x4044000)

7.813450391s ago: executing program 2 (id=470):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x9}, 0x1c)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_T1(r1, 0x103, 0x1, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff02000000000000000000000000000104004e200023b0"], 0x0)

7.733255856s ago: executing program 4 (id=471):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f0000000300)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000340)='\b', 0x1, 0x0, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x0, 0x0, 0xfffffffffffffd25)
unshare(0x68040200)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000380)={0x0, 0x0, {}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000100)={0x0, 0x48000000, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x3c}}, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
socket$inet_icmp(0x2, 0x2, 0x1)

7.545240679s ago: executing program 3 (id=473):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r0, <r1=>0xffffffffffffffff}, 0x4)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r1}, 0x4)
r2 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000b80)={0x40, 0x1, 0x44f2ade573ff9a8a}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x9, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000000000007b0102000000000095001a9546a994d0"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

7.438037939s ago: executing program 2 (id=474):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000002cc0)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(r0, &(0x7f0000000180)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
writev(r2, &(0x7f0000000100)=[{&(0x7f0000000000)="7d39e3347d3b390ff1eae9cdaa4a9d666cb9091cdf3e6c528a20a47bd9bea11f429164fb4c08d0cc3b186a6e7597927f0cc74d6a", 0x34}, {&(0x7f00000002c0)="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", 0xfa}], 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r4=>0x0})
r5 = socket$nl_audit(0x10, 0x3, 0x9)
accept4(r5, &(0x7f00000004c0)=@generic, &(0x7f0000000240)=0x80, 0x800)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0xb}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0x89}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x84}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r1}]}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x48}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket(0x840000000002, 0x3, 0x100)
setsockopt$WPAN_SECURITY(r7, 0x0, 0x31, &(0x7f0000000fc0)=0x1, 0x4)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r9, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x0, 0x0, {0x0, 0x0, 0x0, r10}}, 0x24}}, 0x0)

7.359794888s ago: executing program 1 (id=475):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000001300), 0x4)
syz_emit_ethernet(0xae, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c20000000180c200000086dd60081f2000783afffe8000000000000000000000000000bbff02000000000000000000000000000186009078000000000000000000000000000aa78ce54006538080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96489269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af180200010000000004002600040000000101fe906d17efe3"], 0x0)

7.1845122s ago: executing program 3 (id=476):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'bridge0\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r0, &(0x7f00000000c0)="3f03fe7f0302121206001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

6.989190578s ago: executing program 1 (id=477):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x41}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r1}, 0x10)
r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
close(r3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r8, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$inet(r11, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r0, 0x0, 0x0}, 0x10)

6.849113781s ago: executing program 3 (id=478):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0x10001}, &(0x7f0000000140)=0x8)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
r2 = socket(0x10, 0x80002, 0x0)
getsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f00000010c0)={@multicast1}, &(0x7f0000001300)=0xc)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
setsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r4, 0x0, 0x0)
recvmmsg(r4, &(0x7f0000005600)=[{{0x0, 0x0, &(0x7f0000001a80)=[{&(0x7f0000000740)=""/105, 0x69}, {0x0}], 0x2}}], 0x1, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_COALESCE(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, 0x0, 0x0)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="1802000000000000a00000009500"/25], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN_LIVE(0xa, &(0x7f0000000080)={r6, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r7, &(0x7f0000000040)={0x1f, 0x0, @none, 0xffd}, 0xe)
r8 = socket(0x10, 0x2, 0x6)
sendmsg$IPCTNL_MSG_CT_GET_STATS(r8, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000005c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0xa, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0xc8c1}, 0x0)
setsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000001080), 0x4)
getsockopt$inet_sctp_SCTP_RTOINFO(r8, 0x84, 0x0, &(0x7f00000011c0)={<r9=>0x0, 0x0, 0x2, 0x401}, &(0x7f0000001200)=0x10)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r8, 0x84, 0x10, &(0x7f0000001240)=@assoc_value={r9, 0x4}, 0x8)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000080)={{{@in6=@remote, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x20}, {0x0, 0x60, 0x1000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x1000000000000003}, {}, 0x0, 0x0, 0x0, 0x0, 0x2}, {{@in=@local}, 0x0, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x3}}, 0xe8)

6.608593811s ago: executing program 1 (id=479):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
pipe(&(0x7f00000001c0))
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x80, &(0x7f0000000000)={@broadcast, @empty, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "dd690b", 0x4a, 0x2f, 0x0, @private0, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x8100, 0x0, 0xe803, [0x3e8, 0x20]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x0]}}}}}}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB="3400000012000000000000000000000000000000b3f7811b703add369ccbf94b105bdc3872ff1564503d931775b27de304adccb6bfbff302ca9d6e8ae0035a00811eb16607b3cc4ee37482861b0091063500ce26e38cd1ada67e0c09367138cdae518c3b49907cf34f4fac4d27e8d13464a019c16f9f55ceb50bda9b4ea104270753", @ANYRES32=0x0, @ANYBLOB="0000000000000000140003006970365f767469300000000000000000"], 0x34}}, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x1000)
bpf$ENABLE_STATS(0x20, &(0x7f00000000c0), 0x4)

6.434442257s ago: executing program 0 (id=480):
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r0}, 0x10)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000240)={r2}, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0600000004000000400200000700000000000000", @ANYRES32, @ANYBLOB="000000a7904661422965d2529b2f5c0800000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0), &(0x7f0000000380), 0xfff, r3, 0x0, 0xa0028000}, 0x38)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000300)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r5)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=ANY=[], 0x10c}, 0x1, 0x0, 0x0, 0x20000000}, 0x1)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1d, 0xf, &(0x7f00000004c0)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x6a, 0xa, 0xff00}, [@jmp={0x5, 0x1, 0xd, 0xa, 0xb, 0xf76d9505e25f07db}, @map_fd={0x18, 0x2, 0x1, 0x0, r3}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x6}, @btf_id={0x18, 0x2, 0x3, 0x0, 0x4}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000140)='GPL\x00', 0x4002, 0x95, &(0x7f0000000580)=""/149, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)={@ifindex, r6, 0x11, 0x0, 0x8000000, @void, @value=r2}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000540)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x5a, 0x5a, 0x4, [@fwd={0x8}, @int={0x4, 0x0, 0x0, 0x1, 0x0, 0x34, 0x0, 0x1e, 0x7}, @func={0x4, 0x0, 0x0, 0xc, 0x5}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x5, 0x9}}, @datasec={0x2, 0x1, 0x0, 0xf, 0x2, [{0x4, 0x2, 0x8}], "6fe5"}]}, {0x0, [0x2e, 0x5f]}}, &(0x7f00000006c0)=""/137, 0x78, 0x89, 0x1, 0x9, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000071121e000000000095"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r7, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70)

6.336486939s ago: executing program 4 (id=481):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"/1111], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x36, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000001c0)={r0, 0x40000f0, 0xe40, 0xffffffff, &(0x7f0000000280)="7b5515ccc8bca12641e65d58fd1a12f639", 0x0, 0x71e}, 0x28)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000d80), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000f00)={&(0x7f0000000000)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x48815}, 0x40004)
r2 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r2, &(0x7f0000000040)='cpuacct.usage_all\x00', 0x0, 0x0)

6.191863797s ago: executing program 1 (id=482):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r2=>0x0}) (async)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_STATION(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_WME={0xc, 0x81, [@NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0xb6}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x200000c0}, 0x40048d4) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x43}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
unshare(0x20000400) (async)
shutdown(r0, 0x7)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f8483e0000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0) (async)
syz_emit_ethernet(0xaa, &(0x7f0000000440)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @random="45b4676bd8f4", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x9c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0xb, 0x0, 0x0, 0x0, 0x0, 0x0, {0x20, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @dev, @local, {[@timestamp_prespec={0x44, 0xb, 0x0, 0x3, 0x0, [{@loopback}]}, @ssrr={0x89, 0xf, 0x0, [@private, @broadcast, @broadcast]}, @timestamp_addr={0x44, 0x4c, 0x0, 0x1, 0x0, [{@private=0xa010100}, {@private}, {}, {@broadcast, 0x7fff}, {@loopback}, {@private}, {@multicast2}, {@remote}, {@broadcast, 0xfffffffe}]}, @timestamp={0x44, 0x4}]}}}}}}}, 0x0) (async)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040), 0x8) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x5, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1000}, [@btf_id={0x18, 0x9, 0x3, 0x0, 0x3}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0200000004000000040000000900000000000000", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={r5, 0x0, 0x0}, 0x20) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x5, 0x4, 0xadd, 0x5, r5, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={r6, &(0x7f0000000300), 0x20000000}, 0x20) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=@getnexthop={0x18, 0x6a, 0xe976912f002a1383}, 0x18}}, 0x0) (async)
bpf$MAP_LOOKUP_ELEM(0x3, &(0x7f0000000300)={r6, &(0x7f0000000240), 0x0}, 0x20)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000002c0), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, &(0x7f0000000340)={<r8=>r1})
sendmsg$inet_sctp(r8, &(0x7f00000007c0)={&(0x7f0000000380)=@in={0x2, 0x4e21, @rand_addr=0x64010100}, 0x10, &(0x7f0000000700)=[{&(0x7f0000000400)="d21f4b560b4414bcb0dae272bc371b2538a574cdf664", 0x16}, {&(0x7f00000006c0)="536f3c2411fa2f289396152d86396e0167cdb79b00c98e895a4f7cc2fb5eb8efbcebb9c9891b570365ec0ee6f753b2714e7ba3f4", 0x34}], 0x2, &(0x7f0000000740)=[@init={0x18, 0x84, 0x0, {0x5b, 0x1, 0x4, 0x2}}, @dstaddrv6={0x20, 0x84, 0x8, @mcast1}, @dstaddrv4={0x18, 0x84, 0x7, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x50, 0x4000010}, 0x4820) (async)
r9 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r9, 0x29, 0x40, &(0x7f0000002140)=@raw={'raw\x00', 0x3c1, 0x3, 0x398, 0x0, 0xc8, 0x8, 0x170, 0x5803, 0x2c8, 0x2e8, 0x2e8, 0x2c8, 0x2e8, 0x3, 0x0, {[{{@ipv6={@empty, @private1, [], [], 'pim6reg0\x00', 'wlan0\x00'}, 0x0, 0x128, 0x170, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@time={{0x38}}, @common=@dst={{0x48}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x0, 0x0, 0x0, 'snmp\x00'}}}, {{@uncond, 0x0, 0x138, 0x158, 0x0, {}, [@common=@unspec=@rateest={{0x68}, {'dvmrp0\x00', 'batadv_slave_1\x00', 0x12}}, @inet=@rpfilter={{0x28}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3f8)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000200)={'syztnl1\x00', &(0x7f0000000080)={'erspan0\x00', 0x0, 0x8000, 0x1, 0x3, 0x400, {{0x1b, 0x4, 0x0, 0x3f, 0x6c, 0x66, 0x0, 0xa0, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x20}, @private=0xa010102, {[@timestamp={0x44, 0xc, 0x9d, 0x0, 0x8, [0xffff, 0x9]}, @ssrr={0x89, 0x7, 0x4d, [@empty]}, @lsrr={0x83, 0x7, 0xce, [@multicast1]}, @end, @timestamp_addr={0x44, 0x14, 0xe9, 0x1, 0x3, [{@dev={0xac, 0x14, 0x14, 0x42}, 0x77}, {@dev={0xac, 0x14, 0x14, 0x36}, 0xfffc0000}]}, @ssrr={0x89, 0x1b, 0xcb, [@private=0xa010101, @multicast2, @dev={0xac, 0x14, 0x14, 0x27}, @empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010101]}, @lsrr={0x83, 0xb, 0x7c, [@initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast]}, @noop]}}}}}) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000140)=@bpf_lsm={0x12, 0x5, &(0x7f0000000240)=ANY=[@ANYBLOB="bb1d12be2f329e4356550a00000061191c00000000001800000000001000000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffefc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff, @void, @value}, 0x94)

5.928372776s ago: executing program 4 (id=483):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000500)={'tunl0\x00', &(0x7f0000000400)={'syztnl0\x00', r1, 0x40, 0x0, 0x81, 0x3, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x10, 0x0, 0x0, @loopback, @local}}}})

5.813604347s ago: executing program 0 (id=484):
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x400003, 0x80040009, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd30", 0x10)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_FILTER(r1, 0x0, 0x2, 0x0, 0x0)
r2 = accept4(r0, 0x0, 0x0, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000400), r3)
sendmsg$NLBL_CALIPSO_C_LISTALL(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r5, 0x303}, 0x14}}, 0x0)
sendmmsg$alg(r2, &(0x7f00000044c0)=[{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000140)="0486d85c918a8950863a640fea17c88750f7f0948b2c4bd06e1c72", 0x1b}, {&(0x7f0000000180)="2abce30f9a7ed871fe7c62dda26be01e210458c64fdc129edc40ce6a288fade5ef27c2396949b0", 0x27}], 0x2, &(0x7f00000002c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)
recvmmsg(r2, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000240)=""/65, 0x41}], 0x1}}], 0x1, 0x0, 0x0)

5.706642474s ago: executing program 3 (id=485):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
recvmmsg(r0, &(0x7f00000004c0)=[{{&(0x7f0000000000)=@ll={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000080)=""/156, 0x9c}, {&(0x7f0000000140)=""/29, 0x1d}, {&(0x7f0000000180)=""/54, 0x36}, {&(0x7f00000001c0)=""/232, 0xe8}], 0x4, &(0x7f0000000300)=""/108, 0x6c}, 0x83}, {{&(0x7f0000000380)=@phonet, 0x80, &(0x7f0000000440)=[{&(0x7f0000000400)=""/52, 0x34}], 0x1, &(0x7f0000000480)=""/46, 0x2e}, 0x24ae}], 0x2, 0x40, &(0x7f0000000540)={0x77359400})
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000580)={<r2=>r0})
setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f00000005c0)={@in6={{0xa, 0x4e24, 0x5, @remote, 0x7}}, 0x0, 0x0, 0x1a, 0x0, "e7c14b3fe91eb85f155705b4aff4be5423ad7f0d8f917b24f425e717dec9457c25e85654571fd4efc4a3724a2a21a706fc15e342b2ed236f80b226ebe78bc6bfd1b916bfed7d7f421ea64075fe03ecfe"}, 0xd8)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f00000008c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x40600001}, 0xc, &(0x7f0000000880)={&(0x7f0000000700)={0x148, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xc}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x12}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xc0000000}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8}], @NL80211_ATTR_CSA_C_OFFSETS_TX={0x8, 0xcd, [0xfd3, 0x0]}, @NL80211_ATTR_FRAME={0xd9, 0x33, @reassoc_req={{{0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x9}, @device_b, @broadcast, @from_mac=@device_b, {0x5, 0x700}}, 0x800, 0x9, @device_a, {0x0, 0x8, @random="1da2f386d1e129c2"}, @val={0x1, 0x6, [{0x24, 0x1}, {0x2d, 0x1}, {0x18, 0x1}, {0x6}, {0x4}, {0x5, 0x1}]}, @void, [{0xdd, 0x9f, "0b7e0415615c3c090cf7169161a72e8a0f353d615689ef0db84f0a46c977ca173f09b55c8a4b44d46fa1a9af6ac04bf01e507f1936b3ffb7ac08e5f2471df5026192fb950808bc09716d0bd4ff522a672943814a1d31e6fd3a4d606943874b2efff7df4909abc3c4caac7c1434c348a194c895465b024592637dfaaf8769489e9fe9ec9fde1f7da6a19fe6319449c59f298cc87605a2d1add3dae874839ff3"}]}}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x148}}, 0xe1b241677353600) (async)
ioctl$sock_inet_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000900)) (async)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000980), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r2, &(0x7f0000000a80)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000a40)={&(0x7f00000009c0)={0x54, r3, 0x20, 0x70bd25, 0x25dfdbff, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x800}, @BATADV_ATTR_MULTICAST_FANOUT={0x8}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x4}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}]}, 0x54}, 0x1, 0x0, 0x0, 0x200000c0}, 0x8080) (async)
setsockopt$RXRPC_SECURITY_KEYRING(r2, 0x110, 0x2, &(0x7f0000000ac0)='**!,(]\x00', 0x7) (async)
r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000c40), 0x4)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000d00)={0x747b, <r5=>0x0}, 0x8) (async)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000fc0)={0x6, 0x11, &(0x7f0000000d40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4}, [@map_val={0x18, 0x0, 0x2, 0x0, 0x1}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @btf_id={0x18, 0x0, 0x3, 0x0, 0x4}, @map_idx={0x18, 0xa, 0x5, 0x0, 0xc}, @exit, @ldst={0x3, 0x0, 0x3, 0x0, 0x1, 0x1, 0x1}, @map_idx_val={0x18, 0x5, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1d62}, @map_fd={0x18, 0x1, 0x1, 0x0, 0x1}]}, &(0x7f0000000e00)='syzkaller\x00', 0x6, 0x7a, &(0x7f0000000e40)=""/122, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000ec0)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000f00)={0x4, 0x1, 0x7, 0x9}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000f40)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2], &(0x7f0000000f80)=[{0x4, 0x1, 0x9, 0xa}], 0x10, 0x401, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000001100)={0x10, 0x2, &(0x7f0000000b00)=@raw=[@jmp={0x5, 0x1, 0x0, 0x9, 0x5, 0x100}, @exit], &(0x7f0000000b40)='syzkaller\x00', 0xd, 0x88, &(0x7f0000000b80)=""/136, 0x40f00, 0x20, '\x00', 0x0, @fallback=0x16, r4, 0x8, &(0x7f0000000c80)={0x2, 0x1}, 0x8, 0x10, &(0x7f0000000cc0)={0x5, 0xb, 0x4, 0x79}, 0x10, r5, r6, 0x4, &(0x7f0000001080)=[0xffffffffffffffff, 0x1], &(0x7f00000010c0)=[{0x0, 0x2, 0xa}, {0x2, 0x1, 0x2, 0xb}, {0x2, 0x1, 0xb, 0x9}, {0x3, 0x4, 0x6, 0x8}], 0x10, 0x7, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001240)={{0xffffffffffffffff, <r8=>0xffffffffffffffff}, &(0x7f00000011c0), &(0x7f0000001200)=r7}, 0x20)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000001280), r9) (async)
r10 = bpf$TOKEN_CREATE(0x24, &(0x7f0000001340)={0x0, r8}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000012c0)=@base={0x7, 0x7764, 0x4, 0x8001, 0x10004, r8, 0x156, '\x00', r1, r4, 0x0, 0x4, 0x0, 0x0, @void, @value, @value=r10}, 0x50)
getsockopt$sock_buf(r0, 0x1, 0x1c, &(0x7f0000001380)=""/3, &(0x7f00000013c0)=0x3)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001400)) (async)
r11 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r12 = syz_genetlink_get_family_id$devlink(&(0x7f0000001480), r2)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r11, &(0x7f0000001600)={&(0x7f0000001440)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000015c0)={&(0x7f00000014c0)={0xcc, r12, 0x304, 0x70bd26, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0xcc}, 0x1, 0x0, 0x0, 0x20002804}, 0x8000) (async)
getsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000001640)=0x63f6, &(0x7f0000001680)=0x4) (async)
r13 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001700), r9) (async)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000001740)={'wpan1\x00', <r14=>0x0}) (async)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000001780)={'wpan3\x00', <r15=>0x0}) (async)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f00000017c0)={'wpan3\x00', <r16=>0x0})
sendmsg$IEEE802154_LLSEC_GETPARAMS(r9, &(0x7f0000001a00)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000019c0)={&(0x7f0000001940)={0x60, r13, 0x20, 0x70bd2b, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r14}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r15}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r16}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}]}, 0x60}, 0x1, 0x0, 0x0, 0x24004081}, 0x1)

5.503887635s ago: executing program 0 (id=486):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100)=0xfffffffe)
ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000000)={0x2, &(0x7f0000000040)=[{0x48, 0x0, 0x0, 0x8}, {0x6}]})
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x1}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0xf, &(0x7f0000000080)=0x3, 0x4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
write$ppp(r0, &(0x7f0000000300)="1632", 0x2)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000002c0)={@broadcast, @empty, <r3=>0x0}, &(0x7f0000001600)=0xc)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=@newlink={0x48, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4048b}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x18, 0x2, 0x0, 0x1, @val={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x400, 0x4140}}}}}}]}, 0x48}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="60000000020601036c0000000e77000000000000050005000a000000050001000600000205000400000000000900020073797a320000000013000300686173683a6e65742c6966616365000014000780080006400000000008000840"], 0x60}}, 0x0)
sendmmsg(r2, &(0x7f0000001ac0)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000200)="63651eecca5ec4d98d7e2229b1d8228daf23facf9cc6ea393ae336a8ddc8473a0d7f0974301ce1655e491ed8afb8b4c35b9c212d9cdfc0bfd8385e7b5776d3e108f2a0956fc89f980bc64cc15dd55d3770c9736fa20b66b623392ddf189566931e1da40b1c718d077036fbe416d2892efa3b1a224c9dc34a2745e42a94cd65ed7735c4639061693d", 0x88}, {&(0x7f0000000340)="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", 0x1000}], 0x2, 0xffffffffffffffff}}, {{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000001340)="d9ac4c1ae124fe4fae6b80286757fb19420996e90e07473d4f3efd55c88a5ad6b57eaea54239d030b6c555f76a133cc15775de64455b18bb70b06c96c3c0c65d109ffc13fb76956c22523d8b9636583e34fb42f1d482b086060ca0686574b78e5c1cb2bcd3867cb7044d245ef599b9c290b13e47dec18953c1c584b0fb9488d5e183d0763f650d1fd79dce98e84517a091f95b7cd44f83c362cd2826199b8337cb93b890a28c454d8fbffe8589b14e0ec82cd7af17777817d7860bfa8464a875aa4cc8844c564ed7bfb3d47363c651eb66c2d6cd7cd257a5a14c2a53598125c554050a6cfd4ae2ab30", 0xe9}, {&(0x7f0000001440)="e4b509a0e47132368028535a59cbfee95c4e453d4ac0d6950ca9382aa31f5d1debea0c518e2aba57237ddd35dc55faccd6a639e31ab07c8682f33eeb751d2c8ae7bdd4719fa1b451ae52fcd77a7f84659481ab5e56a1f1658a45d935508a7daa010aae017551f27432eeea88257b17ebeb6bd0b75ef2408fa7891821f99d2d0705ece993df3452b5fe24d326855b96a9956dd256b69f2d0e20ea0c84ac32b005fe518ecd598d39", 0xa7}, {&(0x7f0000000140)="f111c857085cd0330a130a449cf4368172b30625fb0970ad5034eaed6c7cdbdcb937d7d3e9516bb55e2e1fc444673c74c5512fbf2764f983431bc6d0c41206a2a4e8e11b5fec92739e74229f92", 0x4d}], 0x3, &(0x7f0000001500)=[{0xf8, 0x10d, 0x1, "cbb958ef90ac5703918ce7894081caa6998be49c83d2030fa85c18f51ce93aa58d9503ea86f0c85ad4e5cc936f8c974c8929acd94cd1e6591b5e696a21beca62e15a5349ddc193781760a69f4d1a521fed3e2024e48c965fe583bfbdf40901ab059cf538ab3f84320f5493b0e877f387adc16cd398313e99f4a5a37f42e78412c1f5dc4f97eec76760f6f2f5915fc39e128ed995eece5489ebda5301bcd12f2acc9403736a39a67c3518c973c5c5af9f6d56a134b3ddb9136305e29e9328713f0e4c357176e70778c0a68d617e283bac509caa40025894bd84fc32dfeb2578eedf"}], 0xf8}}, {{&(0x7f0000001640)=@xdp={0x2c, 0x3, r3, 0x9}, 0x80, &(0x7f0000001900)=[{&(0x7f00000016c0)="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", 0xfa}, {&(0x7f00000017c0)="0a7253e8e5f03a4ec0404066031e1e1ce20025d7340cd1baace17d2699bdaf5717d87770d94c189abd1950209de024b5b66820f2e5bda9a36d95eaa3f8359a9ea183b199739b8631455d17bf4e274fd8c0db56fdebc3fe50a4ea480c1efc55c275bbf7734f478f4c43da8a0646dfd4e170c6b9f3", 0x74}, {&(0x7f0000001840)="0d1d00e00c324151ab5e42656137cf827857599337f0deacf916875920d64ef19c2b2ccef40585bea061ebc4147e498b52c82d35f083133623c2f6a5cd3d", 0x3e}, {&(0x7f0000001880)="9b63ab4272fc74e65e33630561375a8432fa32b58e76a2c50d9f73ccc2f669f709e240f31005ceaaba383f76b95f6af46d1c62997de948c2917fd765b3b2818d823b7f332326bc09540c86", 0x4b}], 0x4, &(0x7f0000001940)=[{0x80, 0x1, 0x7, "aa7ce93aef5db0e1dc22be69a2af6fbac622037e6bf291cdec8ccda29f889d0e623a013d376063cc0ae012d279c27fbbfdbae033b362435957b5c794b728a319ba08f7eecd9c60bd01ff0f01f37d9dd421bb572cf6d2878e611624d89cb1cfc6fd71cff25d2bde44a4e1"}, {0xa0, 0x115, 0x3, "ba324de7664d5aa1853151b0a287ee0ad9bf75c82a1a45d9bb0f4698c0671c198d9a0b52a4b78125b03c16de140237fcfa6f7470bfe5386f37cf801255c4d88a3765c8ebbc1bfea00af5aedd00ee84d96b7b2649f6ab20ae802d38e0416ce24aa6fe7bf678e395a6c57345958a42212a1c8867da35549ecaca03b506bc1f381bd4aab934504dbaf3fa48181bd4"}, {0x48, 0x112, 0x5, "038ebcad1a4687777843f0749e8f70702525be90120c6e87d8fd850cad73b4d98b1ecd16aa7b8e483789ac1a2b85785499212c76578e"}], 0x168}}], 0x3, 0x4110)

5.44251825s ago: executing program 3 (id=487):
r0 = socket$inet6(0xa, 0x2, 0x3a)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=r2, @ANYBLOB="01000000000000000000010000000c00050000000000000000000c0002000000000000000000040007800c00080000000000000000000800010000007fff"], 0x90}}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x183442, 0x0)
ioctl$PPPIOCSMAXCID(r3, 0x40047451, &(0x7f00000002c0)=0x800100)
socket$key(0xf, 0x3, 0x2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0x1, 0x40, 0x40, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x1003, r4}, 0x38)
ioctl$BTRFS_IOC_SNAP_CREATE(r4, 0x50009401, &(0x7f0000001980)={{r0}, "a0349d2d7e400ebb456cba009eb03b25da193e24b1ba64607355dcd133da4f857c1d134bfee842a3e6f2b887fe2d6ab953d2a75132e952cf3a78c49615ca5ebebd92621dc3a27205fa7f4dc39b72d05ebdfb3c0afa51c551e475326b1c4de56469cb22f5835995ce032a1ce9dce24c0693cc67356fe85b1eb25ed9887726a27a5230a51b2939566b8185ccdca03cb6611fb1b6a8a677b1f7cdcf7c781d0a80225c1327a4499ab0af6e36a7d38cf5019e11a156df67b84676d894898c997b667744b98f46862eaa07cc9ca95a694454bba95af127b72f354489a0bc7a121efd2f7c1ec1f5c886772de76dc3f42470a4a77dc51e328062a5f40f2dfcfae802e22cf819976c8b3c7ff6c4356ddbebdf0bea79c66e3e5a182d9c8a5a4525739ae4ceccfffd62b6748035b74eabfe9484eac59836d2dd43879ec2375a0c0bced6f04f9108dce87582552f7be95435fd9cf3e2b1af3ac3a3fd182a87efa2406c28f4732b822a57892c55e9ed41a4871eaf1c46709c102ee4675e9fd3736229004345e7e90a6b8e106d66797f95eb8e7b0a0aa7c1219af8d39e5e1ff7b547568760e74c18cc57e7e6c552d01c4feb8cdb79b95ba2c457a583df52075c25e899a1f4f1d1e0b0b55d0145f049f84d418c603181ee25c7ff68f86bbf737e840a50c45f3297bb916076c28dcf36aaf07dbe1344cbf432a7cd764f72ccd7d68b9eadd3377c54c833e961845415e867e001c9eddf0db2f3f359afc2cd75b3bb936f7f7ae476c1e931aa12305e7712adfcf2824dd72ab75ea3fe6f5241223e0b833993b339e4c4a29a8cd857cb83a76e5a4cfca650110c8b9172e34a90d449749632e9a4560c93164eddb904b1b85e9641f040f1a84ecf8d6aa6db11ed8dc93ec912d7616d35996383e80e17260b44928bfa61576bfc98b9915b9e77633ca1f2432c0059dac8c83a233f5e9a46a4589e4578e3c858bea44855d75138ab1637454fba08d9c0dd2227c4b9dbfe19ae5531780fc57bedfa859e47e625465c63a3a8d2d5b9b303acd41fcae329a14fd740f94a61aa8c7bc15149713a07ee73849c0627699bc8936728085a4b171100213b0d7d5e2ba2d4d68df61e135019cacaed7df16c9a455457516b833adfde6cd4415065eed9c4cf9f201cdb58624265a300b36a7605a04a07a6d62099c6f6ca6f0aacce785d0458e0628ac0cc0d3afdbf93d46a5534fe897d0a2522fefd1fc986987fe2711ec8af41855a848d38d2314d43b8dc6764dad5761ace8acc5d5092224517eac8a75b4b33cecf35612b96b6e9439f9e97c83747bb8ea19679d120cc93b88b4679299c4dbc7a7775e7e25bb3702c484085e50cbdccea2772ac607e8e940378e9d6d9b7f6074ebe38f39e425db881c893a20f08c1d4e48f09d5f792acd6e339936151c3bdaa6df6bac3b6c7006ecef641a1e90b73c8da1ea05920cc4143a1ebf2b3441482ef09ed60ffcef763077d60f616ff1f94a6b63eab7c14960a14c33abf7dcdccc6427d196beb334b9de053c65ab5b339f6665ab27c511bef119c4df03028894a6b3f3a4da397e938c2a145964b7c4b9580aca895742251624fe62673d63442140b3c70fe7fd2c1cb947d422cef61ec023f712bb70597be964944fb3fab5eb43b048cd5bdccfa1f9f73d02ec9517d7be04010d5685c0eb9f6195d579eeb9a3d194954461f1379c361f416084ebe301e80a9e1d3c9552feb931411076d3981778d5a8c5955ce4ebe4e0c57d3cd8ac13747ed8f6bd1a7470bc54ea14a0dc3f5f97a055a8d75eba74d5acf4ec8266593ba2b8c86e49135185efc6c590d136e256a41ca18102ff5f291cce37889f0a6fa8d05f1a417cea73bfee8a5b838f670bb92ed1a1944fe25d1c271faadbc96107930d0789b6248fd948d8222deda9e2804412efa47afccec84408e73ada3755acbf11db194479499bba8e95afeafc3f5761e1f6b0da2c7a9c53b1b2d3d6317e07179966b5da8f3385fb02da0d6cda71bc825bba2608d060f67d9233a4af765b6b1feff42ab62f55793f0e90e7e7dfd41af82d3c0a29b96356a48b6b5ad32c2f32099c796537a681e11998de88d95eac0dcf9cec12f3b58568d011ce157cae3d59d5c4c04745be4222c9f5070516fbd95321c837bbc5fa033d2ddc1ae9141e9a48b2c413593fc23efbcc71aed87d90ea08e3007e706fe5a781773126d98a24e995332280eb54083dc56711f60e6f173c680b2830d3f634fc1457e5ba02781cc997fc454c1fea94dd41c646f47dde74ff8613cee7be6911c0bb45c8df1f0d41b401110b5f7d46650250d5082d2159995299edf730dbb81a89368b20bf1d85fa5d9f496b3c6224c4e43be5b4630f0782394ad3d40d9e87613df6baa4e0ef39d275cce011c22fd130a582b56eac0873b278d40fb6a3f7df9068c40ccb38b5314c8798c44028068380fb886cc989ddc2109f63634a4030751f93adfdc2d0b2aba844badde393fece641ef14244b60dc9775428ad961d9d93228de41cb13219f1bc03b11125d945025bcaeecc8f71f062f2c83e2a576967cb3109db21ebc30f5d6973fbe0edae8bbcf538964ab88247406dbd010e18cb5670a0ed29aa57d7634b47c34fec79f1378110a96cc0accfdea3444c293fac9af4f7495f5217633bd0f044ce3b38dc9746077c6356ab1c9e6fe044341aa52dace07035c43b7d933fa5c05408fb6a4d118248928e3925058c42acfcf616ce2b0cd0a20711f052f56f3ec87899cc57eb6db3c3073a86cedcc2ce892c52c9efdfb63d2c9008e98b9ca9863fd95f37e5dadff871192c1342a27b13a16093f98acb0102330e2d5f4a2f9d501f3017a6fcc9f01abfb8959eb0d7c04d8d1d64d71688199ccf2f6a8c8385e9658414d26408a1c0c3bce89bbce2bd9919e9c5c70bde5d3ff2fe75a26f7a37ea451c8234d1daa3bc910e5d1223640064ac6df9773388cd009241326e18b808cdfee57db792c5de501104b2c3a72eb15cfe5f24aae5182425c731845dd748eb95e3ed3d9d0efd4305cab736351bd3c64bb971ea4db14bb75d072baf0dda97c1e61894d9e9673d2618f0f8be0b2b4d63a1aecd0ccc0423ab1117c744a6e62edf07f45f7694f25c0a4af7757f48d84757733da3b80ebd9b3f99c6c593c2705f9debd0104d2d63c54f4d0ca22ef0ddf1b8cdf31f82634d3f26b68802fa5fb74401b0010e0f0fed54b72d25c7273a0303ad2ea4e2488afb8afa68878bfdaf503391b70a2002ea44f8d8b7eadd74b21ffb3f9e6d17fcf8d22abc99905425bca8881b72ca56715e9b4c0653c383fa0e1f28f405ac65bbe5981c1ad431b0a20b1fe644c31054a2b445271cbbcef66023b05d6e16876649966528d36be3439296e05850cb5eaa62d5bc1ae1693812fc731a56badbf8e6b57bc75656bac10bb111570796c5a922f5d62eaeea430a0c543548831a09267641daf780088c8991d5e7a57314d6ece6805ca88e14d2922870a17782feadbb48ab9fc4aef6ff4230c4c1604b7328737271f3378a2275914328ea6d8cee0ddc244467c291723fcd42665a6e71316e9e57288dcd8a40b90f1a913374bcd0446d0e0415ce086197df2ce9279d0862ebe72d7c14e2d6e8be3b9ec6746e3d0650402672dcda24bf05d48ad66e4dbc94b5ce366734eebcfab51aa970490f5af33f243aea6ad9664d0896c1a149483ec65414ec7d52e2621c3593ea5630bbe7b692503db989cadd30b98afe60ecb74646c39aac38bdaf06e99728dbdf5f89ade16ab514716eb4094ae467bdb56bed52410ff88b1b87466b12e7c92e1de475677c4323a29a296efbaf7c843c6a7ced515108eea43de4a0c5d019814c658d0666d0033601816564ccb3ec14267647ea5328d29af8e5aa8d17a4b1b68865d0a536973c9a5db0233eeed729a1404103722f72f6a2b60dbb94f8aa63288b4d8197d212d02b9b133ca168ab587043c1775243c4d4a3d392f671d853690d5e75b16ee47ba09faf2c29a01270af73cf5136d40c18d6708d43e6a21971bbb7f37ba45ff68a97d550a9a464056372b80509278d011b043d233ad7cf909362cfbe0bb45cf56d7b366d7778ddecca93b18199a6744d9ec0b253280e7293851b870fa070e7f6d4b3eb97951ad86ba089eb4e8887d79510bbb126630cbaba6d0e7851bbc494e167ed65a470a393613f44a86b292dcaca2a8ca7d666df507ba77e72f4601ada5b77e87f384a931d7421c35d23e345e557322ebda8e74d705635fbff10a990aea52f21c94064acf0d3c275cd7799ccd83bfc405f9033eed21921d126057599968c28997cf490f53bad7534050e62f304bca90fc6abe7cbcac64b3d80f0f5390a40f1802d4f6357a568c79599c22fe60ce21cef13019253b3c29811e2aca9bec3b219f50ab4e5167814594efe1e5dea25815518fefdee773eb4be629d59387de46d557802413908d03128629fb8d598bccfd15498b2725a5fc69b06227805f7d37aaddee7253ff22321a959a65d6dee3d8cac92fa42cc73c7d310bb236b8787d2dad434e6ab813c6307b2f3c029aaf4035b357cc9e2f76305afa6d33efeabd505815c7aca515021ac9135327cd3d11751111f1284b7e5f9aa071b5a9f3c737cf3d6b1f7432f079b46cb4a9da9a47c86e2ffa517ace4c7bb0803cb8b93db5c1f34448f2fe2f9c9a2da7185b61d907262eae795174daad931cb0bb706806a8b6959e4cfef1158015c987ea26f63f748df9c23238c7902f9e07f4a2a8e1e0fa2c51ca41eb74cd334d1329afc395233a02bee46b8bcbb08608a1f227771ca3baff5cc386170a4023a8fefda0d3eb65ec09ac1b931f94b9547bad1239a25b1157a348d386070f3b4ec126cd0661ec583beda03fc411e6c3b1bd21ba4dd514d1201bde4b81481f393f730792b55d8c02c931498fddf1158217350dd067a82a1cbddf7f960c66bea315bd55fd0436864c8951022a4420edde25fc2b531acbc422d54b90e35d50aaa19c2be654a81069927c44b020482731da63bc255a3c9b2ff657901685add0abc1d986b1c474863f6cd0926d96ed126f649c91a2e81f008aa7dbb4cbe62d0044f884de6b5fccf142a73b060c09c137d87f89581b2ce7a91700d97e774bb44fcdcddafeac431cfe7f5b7dc8b0118e47e4780b206ea646c223ec7cd46b816d025a14c0d9c2784668c702d2ea4a26548382c9bcdf5562b179e2fab87daebb3395f48befced13a8c933e7d0fb77269a27838296089fe4f4e258bb7f42829c2df14bd3415183e664e3db6fab0c274f39c1038fd20b35e5379de33208aa8771ee65d152912a5381f5690a3b77649ac7dac55f2e5c9bbb9beae675e07ac0788ac07339340de482f46e8b4319a01b8245bad8cf4d768d8a918605b47210bfa725e639792eaee2aeca189799ec9a598c6cadd7a6edb3709e1ac31a876292921ea825e9ab88567b75ab53c46cdc8b951c6ddd7554cc2581e7edc1476e509de0a4377283569c9f93ec4cfd6c2445ec848ad729d2f1d1a498a7fe8fcd63c341c700cf8038d76801238c88701a89b2a13aa82e4d3e2dc08a7dd8a7ee9ae6e70b968899625459803df86674088a7b85688b13fe0f4fa252329f6c373e26d7439a96181b35516456b7674b2ae12e348c5b9b20c944eaac5433db60b66de6ae170fa0c86fa0ba7515ba61eb1ff2764431f2936c30b3d7b1669a4c0b872c1b1a1fa5bbf1d3284bb9140a7ef88c0209abf9af54c464dbeeef644feff027d1bfd8651b6df03a5a4ccc6344b706b5e76ec5d105254894f4f791aaa20"})
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000b80)={r4, &(0x7f0000000a80), &(0x7f0000000b40)=""/31}, 0x20)

4.410028456s ago: executing program 2 (id=488):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x34, r2, 0x1, 0x0, 0x25dfdbff, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_CH_SWITCH_COUNT={0x8}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}]]}, 0x34}}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x15, 0x301, 0x0, 0x0, {0x5}}, 0x14}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r5 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r5, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8, 0x3}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x13}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0xffffffffffffffaa}}, 0x7c}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x10, 0x4, &(0x7f0000001300)=ANY=[@ANYRESDEC=r6], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a8c010000060a0b0400000000000000000200000048000480200001800800010c6c6f67001400028006000440000800000600014000000000240001800a0001007265646972000000140002800800014000000016080002400000000c24010480140001800e000100696d6d656469617465000000100001800b000100736f636b657400004c0001800a00010071756f74610000003c0002800c00014000000000000000050c000140000000000000000808000240000000000c00014000000000000001ff0c00014000000000000000fa200001800e000100636f6e6e6c696d69740000000c0002800800024000000000340001800a00010071756575650000002400028006000340000500000600014000090000080004400000000b06000240000000000c000180080001006c6f6700140001800c0001006e6f747261636b00040002803c0001800900010068617368000000002c000280080003400000004908000740000000010800044000000003080006400000000208000240000000100900020073797a320000000014001100010000000000000000000000000aecc2d990002360b4403185c4f3e79002ab58f75d8d82c9243bb9595922dc5931fd70e1a14fab3c8ddcf5a6daa3602f1ae0c682ea65d6680aed9aa454db4f388eb4ae09b68fe4539b"], 0x1b4}}, 0x0)
r7 = accept(r3, &(0x7f0000000280)=@ethernet={0x0, @random}, &(0x7f0000000100)=0x80)
setsockopt$bt_BT_DEFER_SETUP(r7, 0x112, 0x7, &(0x7f0000000180), 0x4)

313.311009ms ago: executing program 1 (id=489):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x41}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r1}, 0x10)
r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
close(r3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r8, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$inet(r11, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r0, 0x0, 0x0}, 0x10)

303.89262ms ago: executing program 4 (id=490):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000140)={0x5, 0x3b}, 0xe)
shutdown(r0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=@delqdisc={0x290, 0x25, 0x700, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xffff, 0x3}, {0x8, 0xd}, {0x4, 0xfff2}}, [@TCA_STAB={0x13c, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x62, 0x10, 0xb, 0x1, 0x2, 0x66, 0xd4, 0x5}}, {0xe, 0x2, [0x1, 0x4, 0x81, 0x2739, 0x5]}}, {{0x1c, 0x1, {0x25, 0xfd, 0x7, 0x1, 0x1, 0x8000, 0x1, 0x7}}, {0x12, 0x2, [0x5, 0x4, 0x8, 0x0, 0x8000, 0x9, 0x9]}}, {{0x1c, 0x1, {0xd5, 0x81, 0xc9b, 0x0, 0x0, 0x0, 0x4, 0x2}}, {0x8, 0x2, [0x8a0, 0xfff]}}, {{0x1c, 0x1, {0x7, 0xff, 0x5, 0xc, 0x0, 0x7f, 0x3, 0x9}}, {0x16, 0x2, [0x1, 0xf, 0x9, 0x2, 0xbf, 0xfff8, 0x6, 0x100, 0x9]}}, {{0x1c, 0x1, {0x8, 0x5, 0x6, 0x9, 0x1, 0x81, 0x4, 0x2}}, {0x8, 0x2, [0x3, 0x7]}}, {{0x1c, 0x1, {0x9, 0xf6, 0x1, 0x6, 0x0, 0x6, 0x2, 0x8}}, {0x14, 0x2, [0x1a2, 0x3, 0x2, 0x6, 0x7fff, 0x3, 0x0, 0xfffb]}}, {{0x1c, 0x1, {0x96, 0xce, 0x3, 0x5f7, 0x2, 0x7fe0000, 0x2, 0x7}}, {0x12, 0x2, [0x7, 0x4, 0x8001, 0x7, 0x5, 0xa, 0x5]}}]}, @TCA_STAB={0x110, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x9, 0xbb, 0x8, 0x2, 0x0, 0xfffffff9, 0x6ca7, 0x4}}, {0xc, 0x2, [0x3, 0x0, 0x9, 0xc07]}}, {{0x1c, 0x1, {0x8, 0x5, 0xda, 0x5, 0x2, 0x5, 0x101, 0x1}}, {0x6, 0x2, [0x5437]}}, {{0x1c, 0x1, {0x12, 0x0, 0x5, 0x3, 0x2, 0x0, 0x3ff, 0x2}}, {0x8, 0x2, [0x200, 0xae46]}}, {{0x1c, 0x1, {0x9, 0x80, 0x3, 0xe6, 0x0, 0xfffffffc, 0x6, 0x5}}, {0xe, 0x2, [0x7, 0x8, 0x81, 0x5, 0x5]}}, {{0x1c, 0x1, {0x4, 0x5, 0xe1, 0x4, 0x2, 0x79c, 0x8, 0x4}}, {0xc, 0x2, [0x1, 0x9, 0x8b3a, 0x9]}}, {{0x1c, 0x1, {0x4, 0x4, 0x719, 0x7, 0x2, 0x81, 0x9, 0x2}}, {0x8, 0x2, [0x0, 0x3]}}, {{0x1c, 0x1, {0x2, 0xd, 0x61, 0x6, 0x2, 0x1, 0x5, 0x1}}, {0x6, 0x2, [0x3b20]}}]}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8e}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x4}, @TCA_RATE={0x6, 0x5, {0x10, 0x1}}, @TCA_RATE={0x6, 0x5, {0x1, 0x1}}]}, 0x290}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[@ANYBLOB="200000006a0083130000000000000000000000000000000008000500d768d9f8"], 0x20}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r3, @ANYBLOB="08000100", @ANYRES32=r4], 0x90}}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000480)={0x0, @in6={{0xa, 0x4e22, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8}}, 0x5, 0x1, 0x3, 0x5, 0x80, 0x2, 0xa}, 0x9c)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={<r5=>0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @loopback}, 0x100}]}, &(0x7f00000001c0)=0x10)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x7a, &(0x7f00000000c0)=[{&(0x7f0000000280)="d8000000180081064e81f782db4cb904021d0800fd007c05e8fe55a10a000600014002020a600e41b0000900ac00040211000000160016000a0002000048035c3b61c1d67f6f94007133cf6efb8000a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000000008af26c8b7b55f4d2a6823a45f28fcb1d", 0xd8}], 0x1}, 0x0)
getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000340)={r5, 0xd72, 0xd27, 0xdc33, 0xb, 0x3, 0xd, 0x200, {r5, @in={{0x2, 0x4e24, @multicast2}}, 0x78, 0xfffffffa, 0xfffffffe, 0x400, 0xfffffeff}}, &(0x7f0000000180)=0xb0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0xa)
r9 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x3c, r9, 0x1, 0x1070bd2a, 0x4, {0x5}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}, @L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_PW_TYPE={0x6}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0xe}]}, 0x3c}}, 0x20)
accept(r0, 0x0, &(0x7f0000000200))
sendmsg$L2TP_CMD_TUNNEL_CREATE(r8, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000240)={0x34, r9, 0x200, 0x70bd2d, 0x25dfdbff, {}, [@L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0xcc}, @L2TP_ATTR_UDP_ZERO_CSUM6_TX={0x5}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x100}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000001}, 0x10000810)
r11 = socket$packet(0x11, 0x3, 0x300)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r12, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r13=>0x0})
setsockopt$packet_add_memb(r11, 0x107, 0x1, &(0x7f0000000240)={r13, 0x5, 0x6, @multicast}, 0x10)
r14 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r14, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r15=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r14, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000180)={0x58, r7, 0x801, 0x0, 0x0, {{}, {@val={0x8, 0x3, r15}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY={0x30, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee339084eeef16f162471f4"}, @NL80211_KEY_TYPE={0x8}, @NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}]}]}, 0x58}}, 0x0)

275.422131ms ago: executing program 3 (id=491):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f0000000300)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000340)='\b', 0x1, 0x0, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x0, 0x0, 0xfffffffffffffd25)
unshare(0x68040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000100)={0x0, 0x48000000, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x3c}}, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
socket$inet_icmp(0x2, 0x2, 0x1)

168.542123ms ago: executing program 2 (id=492):
r0 = socket$kcm(0x10, 0x2, 0x10)
recvmsg(r0, &(0x7f00000013c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b03d25a80258c6394f92024fc60030f030047000000053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

0s ago: executing program 1 (id=493):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r2, 0x1, 0x2c, &(0x7f0000000040)=0x800, 0x4)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x2c, &(0x7f0000000000)={0x0, 0x0}, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000580)={'veth1_virt_wifi\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB="280000001e00431b000000000000000007000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r3], 0x28}}, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.210' (ED25519) to the list of known hosts.
[   67.968284][ T5224] cgroup: Unknown subsys name 'net'
[   68.107282][ T5224] cgroup: Unknown subsys name 'cpuset'
[   68.115534][ T5224] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   69.643367][ T5224] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   71.634223][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[   71.640716][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[   73.255800][ T5251] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   73.263905][ T5251] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   73.272638][ T5251] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   73.280705][ T5251] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   73.288015][ T5251] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   73.296983][ T5251] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   73.304970][ T5251] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   73.313364][ T5251] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   73.315092][ T5254] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   73.321764][ T5251] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   73.334883][ T5255] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   73.336107][ T5251] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   73.349466][ T5251] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   73.358354][ T5251] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   73.365963][ T5255] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   73.366337][ T5251] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   73.381748][ T5251] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   73.391165][ T5258] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   73.391432][ T5257] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   73.398401][ T5247] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   73.406221][ T5257] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   73.412847][ T5247] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   73.420120][ T5257] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   73.449490][ T5257] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   73.460562][ T5257] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   73.471914][ T5247] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   73.480006][ T5257] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   73.480283][ T5247] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   73.496180][ T5247] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   73.504385][ T5247] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   73.916929][ T5235] chnl_net:caif_netlink_parms(): no params data found
[   73.995343][ T5234] chnl_net:caif_netlink_parms(): no params data found
[   74.049123][ T5246] chnl_net:caif_netlink_parms(): no params data found
[   74.058597][ T5236] chnl_net:caif_netlink_parms(): no params data found
[   74.143500][ T5239] chnl_net:caif_netlink_parms(): no params data found
[   74.194245][ T5235] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.202232][ T5235] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.209742][ T5235] bridge_slave_0: entered allmulticast mode
[   74.217445][ T5235] bridge_slave_0: entered promiscuous mode
[   74.226850][ T5235] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.234100][ T5235] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.241901][ T5235] bridge_slave_1: entered allmulticast mode
[   74.248621][ T5235] bridge_slave_1: entered promiscuous mode
[   74.300151][ T5235] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.318283][ T5234] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.327026][ T5234] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.334518][ T5234] bridge_slave_0: entered allmulticast mode
[   74.341894][ T5234] bridge_slave_0: entered promiscuous mode
[   74.366366][ T5235] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.390043][ T5234] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.397359][ T5234] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.404796][ T5234] bridge_slave_1: entered allmulticast mode
[   74.411796][ T5234] bridge_slave_1: entered promiscuous mode
[   74.463652][ T5246] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.470942][ T5246] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.478502][ T5246] bridge_slave_0: entered allmulticast mode
[   74.486124][ T5246] bridge_slave_0: entered promiscuous mode
[   74.512026][ T5236] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.519146][ T5236] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.526445][ T5236] bridge_slave_0: entered allmulticast mode
[   74.533500][ T5236] bridge_slave_0: entered promiscuous mode
[   74.551806][ T5246] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.559191][ T5246] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.566546][ T5246] bridge_slave_1: entered allmulticast mode
[   74.573811][ T5246] bridge_slave_1: entered promiscuous mode
[   74.583645][ T5235] team0: Port device team_slave_0 added
[   74.598303][ T5236] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.609298][ T5236] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.616604][ T5236] bridge_slave_1: entered allmulticast mode
[   74.623953][ T5236] bridge_slave_1: entered promiscuous mode
[   74.633820][ T5234] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.661217][ T5235] team0: Port device team_slave_1 added
[   74.676839][ T5239] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.684165][ T5239] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.692158][ T5239] bridge_slave_0: entered allmulticast mode
[   74.698933][ T5239] bridge_slave_0: entered promiscuous mode
[   74.716890][ T5234] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.730331][ T5246] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.747718][ T5239] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.755361][ T5239] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.762818][ T5239] bridge_slave_1: entered allmulticast mode
[   74.769545][ T5239] bridge_slave_1: entered promiscuous mode
[   74.795468][ T5246] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.805783][ T5235] batman_adv: batadv0: Adding interface: batadv_slave_0
[   74.812871][ T5235] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.839725][ T5235] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   74.852545][ T5235] batman_adv: batadv0: Adding interface: batadv_slave_1
[   74.859540][ T5235] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.885715][ T5235] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   74.916852][ T5236] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.957118][ T5239] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.968859][ T5239] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.980019][ T5236] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.002298][ T5234] team0: Port device team_slave_0 added
[   75.019840][ T5246] team0: Port device team_slave_0 added
[   75.045489][ T5234] team0: Port device team_slave_1 added
[   75.063184][ T5246] team0: Port device team_slave_1 added
[   75.095225][ T5239] team0: Port device team_slave_0 added
[   75.105416][ T5236] team0: Port device team_slave_0 added
[   75.138670][ T5235] hsr_slave_0: entered promiscuous mode
[   75.145492][ T5235] hsr_slave_1: entered promiscuous mode
[   75.166592][ T5239] team0: Port device team_slave_1 added
[   75.173684][ T5236] team0: Port device team_slave_1 added
[   75.188705][ T5234] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.195961][ T5234] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.222080][ T5234] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.235268][ T5234] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.242382][ T5234] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.268351][ T5234] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.310734][ T5246] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.318332][ T5246] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.345007][ T5246] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.358103][ T5246] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.365288][ T5246] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.391506][ T5246] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.420342][ T5239] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.427410][ T5239] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.454041][ T5239] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.466789][ T5239] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.474629][ T5247] Bluetooth: hci0: command tx timeout
[   75.480079][ T5239] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.506256][   T55] Bluetooth: hci4: command tx timeout
[   75.506581][ T5247] Bluetooth: hci3: command tx timeout
[   75.521073][ T5239] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.552186][ T5247] Bluetooth: hci2: command tx timeout
[   75.552196][ T5257] Bluetooth: hci1: command tx timeout
[   75.565680][ T5236] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.572836][ T5236] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.599512][ T5236] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.615100][ T5236] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.622765][ T5236] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.649212][ T5236] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.674039][ T5234] hsr_slave_0: entered promiscuous mode
[   75.680862][ T5234] hsr_slave_1: entered promiscuous mode
[   75.687528][ T5234] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   75.695458][ T5234] Cannot create hsr debugfs directory
[   75.798002][ T5246] hsr_slave_0: entered promiscuous mode
[   75.804748][ T5246] hsr_slave_1: entered promiscuous mode
[   75.811021][ T5246] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   75.819800][ T5246] Cannot create hsr debugfs directory
[   75.829493][ T5239] hsr_slave_0: entered promiscuous mode
[   75.837711][ T5239] hsr_slave_1: entered promiscuous mode
[   75.844582][ T5239] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   75.852723][ T5239] Cannot create hsr debugfs directory
[   75.895464][ T5236] hsr_slave_0: entered promiscuous mode
[   75.902793][ T5236] hsr_slave_1: entered promiscuous mode
[   75.909081][ T5236] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   75.917718][ T5236] Cannot create hsr debugfs directory
[   76.137502][ T5235] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   76.178773][ T5235] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   76.209211][ T5235] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   76.219977][ T5235] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   76.315688][ T5234] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   76.332507][ T5234] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   76.352925][ T5234] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   76.365023][ T5234] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   76.433234][ T5236] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   76.443587][ T5236] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   76.468083][ T5236] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   76.498730][ T5236] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   76.558078][ T5239] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   76.571127][ T5239] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   76.600464][ T5239] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   76.611230][ T5239] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   76.624234][ T5235] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.701007][ T5246] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   76.711195][ T5246] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   76.722112][ T5246] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   76.734889][ T5235] 8021q: adding VLAN 0 to HW filter on device team0
[   76.747859][ T5246] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   76.787502][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.794898][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.829907][ T1052] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.837095][ T1052] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.896117][ T5236] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.926137][ T5234] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.984905][ T5236] 8021q: adding VLAN 0 to HW filter on device team0
[   77.009255][ T5235] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   77.057058][ T5234] 8021q: adding VLAN 0 to HW filter on device team0
[   77.071073][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.078300][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.095575][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.102803][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.139187][ T5239] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.148353][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.155579][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.236460][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.243701][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.278763][ T5234] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   77.289980][ T5234] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   77.324477][ T5239] 8021q: adding VLAN 0 to HW filter on device team0
[   77.343025][ T5246] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.393061][ T5235] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.408577][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.415799][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.427349][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.435194][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.475759][ T5246] 8021q: adding VLAN 0 to HW filter on device team0
[   77.527908][ T1052] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.535133][ T1052] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.556149][ T5247] Bluetooth: hci4: command tx timeout
[   77.556201][ T5257] Bluetooth: hci0: command tx timeout
[   77.567298][   T55] Bluetooth: hci3: command tx timeout
[   77.602457][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.609692][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.634189][   T55] Bluetooth: hci2: command tx timeout
[   77.639816][ T5257] Bluetooth: hci1: command tx timeout
[   77.860646][ T5236] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.923105][ T5234] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.030370][ T5239] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.076724][ T5236] veth0_vlan: entered promiscuous mode
[   78.111302][ T5235] veth0_vlan: entered promiscuous mode
[   78.128858][ T5236] veth1_vlan: entered promiscuous mode
[   78.150082][ T5234] veth0_vlan: entered promiscuous mode
[   78.166738][ T5246] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.190715][ T5234] veth1_vlan: entered promiscuous mode
[   78.199973][ T5235] veth1_vlan: entered promiscuous mode
[   78.269275][ T5239] veth0_vlan: entered promiscuous mode
[   78.290804][ T5236] veth0_macvtap: entered promiscuous mode
[   78.308851][ T5246] veth0_vlan: entered promiscuous mode
[   78.317574][ T5236] veth1_macvtap: entered promiscuous mode
[   78.331167][ T5234] veth0_macvtap: entered promiscuous mode
[   78.343505][ T5239] veth1_vlan: entered promiscuous mode
[   78.364408][ T5234] veth1_macvtap: entered promiscuous mode
[   78.387503][ T5246] veth1_vlan: entered promiscuous mode
[   78.403895][ T5235] veth0_macvtap: entered promiscuous mode
[   78.428324][ T5235] veth1_macvtap: entered promiscuous mode
[   78.437751][ T5236] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.465344][ T5239] veth0_macvtap: entered promiscuous mode
[   78.475381][ T5236] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.487134][ T5234] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.498642][ T5234] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.510526][ T5234] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.530542][ T5235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.543316][ T5235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.553285][ T5235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.564326][ T5235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.576827][ T5235] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.589464][ T5234] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.602164][ T5234] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.613137][ T5234] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.627824][ T5236] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.637226][ T5236] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.646530][ T5236] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.656673][ T5236] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.667798][ T5239] veth1_macvtap: entered promiscuous mode
[   78.679147][ T5235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.690223][ T5235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.701227][ T5235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.712865][ T5235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.724287][ T5235] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.743324][ T5234] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.752480][ T5234] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.763139][ T5234] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.771936][ T5234] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.798429][ T5235] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.807417][ T5235] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.817315][ T5235] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.826893][ T5235] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.845207][ T5246] veth0_macvtap: entered promiscuous mode
[   78.855265][ T5246] veth1_macvtap: entered promiscuous mode
[   78.882396][ T5239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.893447][ T5239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.904620][ T5239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.915290][ T5239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.925297][ T5239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.935889][ T5239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.950684][ T5239] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.988088][ T5239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.999512][ T5239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.015062][ T5239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   79.025663][ T5239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.035528][ T5239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   79.046053][ T5239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.058709][ T5239] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.124664][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   79.136913][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.147448][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   79.158242][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.169026][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   79.179704][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.189636][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   79.200395][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.212280][ T5246] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.220435][ T5239] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.229362][ T5239] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.238229][ T5239] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.247059][ T5239] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.281239][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   79.298363][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.308434][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   79.319671][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.329908][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   79.340598][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.350636][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   79.361598][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.373843][ T5246] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.408711][ T5246] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.418344][ T5246] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.427243][ T5246] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.436087][ T5246] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.465786][ T2953] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.475279][ T2953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.484475][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.503430][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.533462][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.545936][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.582854][ T2953] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.592269][ T2953] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.632331][ T5257] Bluetooth: hci0: command tx timeout
[   79.637814][ T5257] Bluetooth: hci3: command tx timeout
[   79.643458][ T5247] Bluetooth: hci4: command tx timeout
[   79.670642][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.683391][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.711408][ T5247] Bluetooth: hci1: command tx timeout
[   79.714620][ T5257] Bluetooth: hci2: command tx timeout
[   79.747306][ T5235] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   79.754464][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.775514][ T2953] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.794921][ T2953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.802795][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.859854][ T1052] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.872003][ T1052] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.955926][ T1052] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.964261][ T1052] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.048163][ T1052] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.056440][ T1052] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.120763][ T5324] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5'.
[   80.683476][ T5343] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7'.
[   81.004711][ T5346] netlink: 'syz.2.8': attribute type 8 has an invalid length.
[   81.027965][ T5346] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[   81.094671][ T5364] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   81.114915][ T5362] FAULT_INJECTION: forcing a failure.
[   81.114915][ T5362] name failslab, interval 1, probability 0, space 0, times 1
[   81.139566][ T5362] CPU: 0 UID: 0 PID: 5362 Comm: syz.1.13 Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[   81.149822][ T5362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   81.159942][ T5362] Call Trace:
[   81.163285][ T5362]  <TASK>
[   81.166256][ T5362]  dump_stack_lvl+0x241/0x360
[   81.171015][ T5362]  ? __pfx_dump_stack_lvl+0x10/0x10
[   81.176278][ T5362]  ? __pfx__printk+0x10/0x10
[   81.180934][ T5362]  ? ref_tracker_alloc+0x332/0x490
[   81.186120][ T5362]  should_fail_ex+0x3b0/0x4e0
[   81.190862][ T5362]  ? skb_clone+0x20c/0x390
[   81.195336][ T5362]  should_failslab+0xac/0x100
[   81.200094][ T5362]  ? skb_clone+0x20c/0x390
[   81.204574][ T5362]  kmem_cache_alloc_noprof+0x6c/0x2a0
[   81.210009][ T5362]  skb_clone+0x20c/0x390
[   81.214293][ T5362]  __netlink_deliver_tap+0x3cc/0x7c0
[   81.219631][ T5362]  ? netlink_deliver_tap+0x2e/0x1b0
[   81.224889][ T5362]  netlink_deliver_tap+0x19d/0x1b0
[   81.230032][ T5362]  netlink_sendskb+0x68/0x140
[   81.234732][ T5362]  netlink_unicast+0x39d/0x990
[   81.239511][ T5362]  ? __asan_memcpy+0x40/0x70
[   81.244135][ T5362]  ? __pfx_netlink_unicast+0x10/0x10
[   81.249453][ T5362]  netlink_rcv_skb+0x262/0x430
[   81.254242][ T5362]  ? __pfx_genl_rcv_msg+0x10/0x10
[   81.259284][ T5362]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   81.264605][ T5362]  ? __netlink_deliver_tap+0x77e/0x7c0
[   81.270097][ T5362]  genl_rcv+0x28/0x40
[   81.274121][ T5362]  netlink_unicast+0x7f6/0x990
[   81.278920][ T5362]  ? __pfx_netlink_unicast+0x10/0x10
[   81.284218][ T5362]  ? __virt_addr_valid+0x183/0x530
[   81.289345][ T5362]  ? __check_object_size+0x48e/0x900
[   81.294658][ T5362]  netlink_sendmsg+0x8e4/0xcb0
[   81.299451][ T5362]  ? __pfx_netlink_sendmsg+0x10/0x10
[   81.304760][ T5362]  ? aa_sock_msg_perm+0x91/0x160
[   81.309715][ T5362]  ? __pfx_netlink_sendmsg+0x10/0x10
[   81.315018][ T5362]  __sock_sendmsg+0x221/0x270
[   81.319716][ T5362]  __sys_sendto+0x39b/0x4f0
[   81.324257][ T5362]  ? __pfx___sys_sendto+0x10/0x10
[   81.329324][ T5362]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   81.335324][ T5362]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   81.341684][ T5362]  __x64_sys_sendto+0xde/0x100
[   81.346500][ T5362]  do_syscall_64+0xf3/0x230
[   81.351020][ T5362]  ? clear_bhb_loop+0x35/0x90
[   81.355710][ T5362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.361623][ T5362] RIP: 0033:0x7f41d8d7fe8c
[   81.366065][ T5362] Code: 2a 5a 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5a 02 00 48 8b
[   81.385707][ T5362] RSP: 002b:00007f41d87fde20 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[   81.394142][ T5362] RAX: ffffffffffffffda RBX: 00007f41d87fdfa0 RCX: 00007f41d8d7fe8c
[   81.402127][ T5362] RDX: 0000000000000024 RSI: 00007f41d87fdff0 RDI: 0000000000000004
[   81.410113][ T5362] RBP: 0000000000000000 R08: 00007f41d87fde74 R09: 000000000000000c
[   81.418100][ T5362] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004
[   81.426083][ T5362] R13: 0000000000000000 R14: 00007f41d87fdff0 R15: 0000000000000000
[   81.434085][ T5362]  </TASK>
[   81.632318][ T5346] sctp: failed to load transform for md5: -2
[   81.719651][ T5257] Bluetooth: hci3: command tx timeout
[   81.719695][ T5247] Bluetooth: hci0: command tx timeout
[   81.728590][ T5257] Bluetooth: hci4: command tx timeout
[   81.791579][ T5257] Bluetooth: hci2: command tx timeout
[   81.797067][ T5257] Bluetooth: hci1: command tx timeout
[   81.837598][ T5379] veth2: entered allmulticast mode
[   81.874311][ T5384] netlink: 76 bytes leftover after parsing attributes in process `syz.4.19'.
[   81.897126][ T5384] nbd: illegal input index -8454144
[   81.908830][ T5384] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   82.236431][ T5396] netlink: 40 bytes leftover after parsing attributes in process `syz.1.22'.
[   82.308066][ T5398] netlink: 'syz.1.22': attribute type 10 has an invalid length.
[   82.573431][ T5407] netlink: 'syz.4.25': attribute type 1 has an invalid length.
[   82.589614][ T5407] netlink: 512 bytes leftover after parsing attributes in process `syz.4.25'.
[   82.698557][ T5413] netlink: 'syz.2.24': attribute type 3 has an invalid length.
[   82.723191][ T5398] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[   82.894886][ T5415] tipc: Failed to obtain node identity
[   82.928152][ T5415] tipc: Enabling of bearer <ib:gre0> rejected, failed to enable media
[   82.979892][ T5425] netlink: 'syz.0.33': attribute type 4 has an invalid length.
[   82.988448][ T5422] netlink: 'syz.2.30': attribute type 12 has an invalid length.
[   83.007768][ T5422] (unnamed net_device) (uninitialized): option primary_reselect: invalid value (255)
[   83.022188][ T5425] syz.0.33 uses obsolete (PF_INET,SOCK_PACKET)
[   83.145669][ T5422] netlink: 20 bytes leftover after parsing attributes in process `syz.2.30'.
[   83.222123][ T5437] netlink: 76 bytes leftover after parsing attributes in process `syz.1.35'.
[   83.246533][ T5437] nbd: illegal input index -8454144
[   83.385907][ T5447] netlink: 4096 bytes leftover after parsing attributes in process `syz.2.39'.
[   83.396673][ T5447] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   83.408736][ T5447] netlink: 12 bytes leftover after parsing attributes in process `syz.2.39'.
[   86.998134][  T937] cfg80211: failed to load regulatory.db
[  107.866644][ T5479] netlink: 8 bytes leftover after parsing attributes in process `syz.4.47'.
[  107.919148][ T5482] netlink: 20 bytes leftover after parsing attributes in process `syz.1.49'.
[  107.968731][ T5487] netlink: 76 bytes leftover after parsing attributes in process `syz.3.50'.
[  108.000039][ T5487] nbd: illegal input index -8454144
[  108.004616][ T5489] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[  108.040703][ T5479] netlink: 792 bytes leftover after parsing attributes in process `syz.4.47'.
[  108.080893][ T5489] IPVS: Scheduler module ip_vs_ not found
[  108.081501][ T5479] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  108.178725][ T5497] netlink: 68 bytes leftover after parsing attributes in process `syz.2.53'.
[  108.316480][ T5507] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  108.361024][ T5507] xt_l2tp: invalid flags combination: c
[  108.455906][ T5505] Zero length message leads to an empty skb
[  108.587038][ T5518] netlink: 36 bytes leftover after parsing attributes in process `syz.2.58'.
[  108.984556][ T5544] x_tables: unsorted underflow at hook 3
[  108.987871][ T5543] netlink: 76 bytes leftover after parsing attributes in process `syz.2.65'.
[  109.047471][ T5543] nbd: illegal input index -8454144
[  109.179000][ T5544] dccp_close: ABORT with 14 bytes unread
[  109.309207][ T5558] netlink: 36 bytes leftover after parsing attributes in process `syz.4.70'.
[  109.328375][ T5558] netlink: 'syz.4.70': attribute type 34 has an invalid length.
[  109.368377][ T5565] netlink: 36 bytes leftover after parsing attributes in process `syz.1.72'.
[  109.645435][ T5575] netlink: 44 bytes leftover after parsing attributes in process `syz.4.77'.
[  109.671525][ T5575] netlink: 'syz.4.77': attribute type 6 has an invalid length.
[  109.691444][ T5575] netlink: 'syz.4.77': attribute type 5 has an invalid length.
[  110.000151][ T5593] nbd: illegal input index -8454144
[  110.186596][ T5604] openvswitch: netlink: Actions may not be safe on all matching packets
[  110.387738][ T5613] veth1_macvtap: left promiscuous mode
[  110.393617][ T5613] macsec0: entered promiscuous mode
[  110.400486][ T5613] macsec0: entered allmulticast mode
[  110.412550][ T5619] veth1_macvtap: entered promiscuous mode
[  110.418440][ T5619] veth1_macvtap: entered allmulticast mode
[  110.425278][ T5619] macsec0: left promiscuous mode
[  110.430415][ T5619] macsec0: left allmulticast mode
[  110.436912][ T5619] veth1_macvtap: left allmulticast mode
[  110.641166][ T5628] netlink: 'syz.3.94': attribute type 1 has an invalid length.
[  110.658843][ T5626] openvswitch: netlink: nsh attr 9332 is out of range max 3
[  111.064620][ T5649] nbd: illegal input index -8454144
[  111.217398][ T5657] netlink: 'syz.4.103': attribute type 10 has an invalid length.
[  111.269632][ T5657] 8021q: adding VLAN 0 to HW filter on device batadv0
[  111.303588][ T5657] team0: Port device batadv0 added
[  111.547027][ T5676] warning: `syz.2.110' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  111.747267][ T5683] nbd: illegal input index -8454144
[  111.950822][ T5697] xt_hashlimit: max too large, truncated to 1048576
[  113.957834][ T5737] __nla_validate_parse: 9 callbacks suppressed
[  113.957851][ T5737] netlink: 44 bytes leftover after parsing attributes in process `syz.4.130'.
[  113.977825][ T5739] netlink: 4 bytes leftover after parsing attributes in process `syz.4.130'.
[  114.216302][ T5750] xt_nat: multiple ranges no longer supported
[  114.255957][ T5748] netlink: 'syz.0.134': attribute type 1 has an invalid length.
[  114.286836][ T5748] netlink: 9344 bytes leftover after parsing attributes in process `syz.0.134'.
[  114.297710][ T5755] sctp: [Deprecated]: syz.3.136 (pid 5755) Use of int in max_burst socket option.
[  114.297710][ T5755] Use struct sctp_assoc_value instead
[  114.328803][ T5748] netlink: 'syz.0.134': attribute type 1 has an invalid length.
[  114.349395][ T5753] netlink: 48 bytes leftover after parsing attributes in process `syz.3.136'.
[  114.667502][ T5784] bridge1: the hash_elasticity option has been deprecated and is always 16
[  114.823074][ T5791] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  114.877285][ T5790] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  115.151982][ T5807] openvswitch: netlink: Flow actions attr not present in new flow.
[  115.904788][ T5841] netlink: 72 bytes leftover after parsing attributes in process `syz.4.163'.
[  116.017446][ T5848] netlink: 36 bytes leftover after parsing attributes in process `syz.4.166'.
[  116.347995][ T5864] netlink: 28 bytes leftover after parsing attributes in process `syz.4.172'.
[  116.387890][ T5864] dvmrp1: entered allmulticast mode
[  116.642072][ T5874] Bluetooth: MGMT ver 1.23
[  116.794688][ T5879] netlink: 40 bytes leftover after parsing attributes in process `syz.3.179'.
[  116.807683][ T5880] netlink: 40 bytes leftover after parsing attributes in process `syz.3.179'.
[  117.338178][ T5915] mac80211_hwsim hwsim10 wlan1: entered promiscuous mode
[  117.346119][ T5916] netlink: 16 bytes leftover after parsing attributes in process `syz.3.193'.
[  117.356476][ T5915] mac80211_hwsim hwsim10 wlan1: left promiscuous mode
[  117.798967][ T5934] xt_addrtype: ipv6 BLACKHOLE matching not supported
[  118.532347][ T5974] vxcan1: tx drop: invalid da for name 0x0000000000000016
[  119.204724][ T6007] FAULT_INJECTION: forcing a failure.
[  119.204724][ T6007] name failslab, interval 1, probability 0, space 0, times 0
[  119.218555][ T6007] CPU: 1 UID: 0 PID: 6007 Comm: syz.1.220 Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  119.228863][ T6007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  119.238967][ T6007] Call Trace:
[  119.242301][ T6007]  <TASK>
[  119.245280][ T6007]  dump_stack_lvl+0x241/0x360
[  119.250027][ T6007]  ? __pfx_dump_stack_lvl+0x10/0x10
[  119.255300][ T6007]  ? __pfx__printk+0x10/0x10
[  119.259970][ T6007]  should_fail_ex+0x3b0/0x4e0
[  119.264719][ T6007]  should_failslab+0xac/0x100
[  119.269456][ T6007]  ? sctp_add_bind_addr+0x89/0x3a0
[  119.274714][ T6007]  __kmalloc_cache_noprof+0x6c/0x2c0
[  119.280089][ T6007]  sctp_add_bind_addr+0x89/0x3a0
[  119.285357][ T6007]  sctp_copy_local_addr_list+0x311/0x500
[  119.291057][ T6007]  ? sctp_copy_local_addr_list+0xab/0x500
[  119.296841][ T6007]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  119.303065][ T6007]  ? sctp_v4_is_any+0x35/0x60
[  119.307894][ T6007]  sctp_bind_addr_copy+0xad/0x3b0
[  119.312977][ T6007]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  119.319384][ T6007]  sctp_connect_new_asoc+0x2f3/0x6c0
[  119.324732][ T6007]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  119.330578][ T6007]  ? sctp_sendmsg+0xbb9/0x3520
[  119.335375][ T6007]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[  119.341197][ T6007]  ? sctp_endpoint_lookup_assoc+0x217/0x250
[  119.347181][ T6007]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  119.352788][ T6007]  sctp_sendmsg+0x219a/0x3520
[  119.357504][ T6007]  ? aa_sk_perm+0x96d/0xab0
[  119.362057][ T6007]  ? __pfx_sctp_sendmsg+0x10/0x10
[  119.367104][ T6007]  ? __pfx_aa_sk_perm+0x10/0x10
[  119.372004][ T6007]  ? inet_sendmsg+0x330/0x390
[  119.376708][ T6007]  __sock_sendmsg+0x1a6/0x270
[  119.381452][ T6007]  __sys_sendto+0x39b/0x4f0
[  119.386001][ T6007]  ? __pfx___sys_sendto+0x10/0x10
[  119.391050][ T6007]  ? __mutex_unlock_slowpath+0x21d/0x750
[  119.396801][ T6007]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  119.402807][ T6007]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  119.409181][ T6007]  __x64_sys_sendto+0xde/0x100
[  119.413982][ T6007]  do_syscall_64+0xf3/0x230
[  119.418522][ T6007]  ? clear_bhb_loop+0x35/0x90
[  119.423243][ T6007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.429196][ T6007] RIP: 0033:0x7f41d8d7dff9
[  119.433637][ T6007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.453283][ T6007] RSP: 002b:00007f41d87ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  119.461820][ T6007] RAX: ffffffffffffffda RBX: 00007f41d8f35f80 RCX: 00007f41d8d7dff9
[  119.469808][ T6007] RDX: 0000000000000001 RSI: 0000000020000100 RDI: 0000000000000003
[  119.477808][ T6007] RBP: 00007f41d87ff090 R08: 0000000020000000 R09: 0000000000000010
[  119.485823][ T6007] R10: e61e2840a154b0c0 R11: 0000000000000246 R12: 0000000000000002
[  119.493805][ T6007] R13: 0000000000000000 R14: 00007f41d8f35f80 R15: 00007ffdbf71b858
[  119.501810][ T6007]  </TASK>
[  119.800030][ T6027] __nla_validate_parse: 4 callbacks suppressed
[  119.800051][ T6027] netlink: 8 bytes leftover after parsing attributes in process `syz.3.222'.
[  119.874011][ T6032] netlink: 4 bytes leftover after parsing attributes in process `syz.1.228'.
[  119.949308][ T6023] batadv0: entered promiscuous mode
[  119.957970][ T6023] macsec1: entered promiscuous mode
[  119.990132][ T6023] macsec1: entered allmulticast mode
[  119.997446][ T6023] batadv0: entered allmulticast mode
[  120.008428][ T6023] batadv0: left allmulticast mode
[  120.019879][ T6041] netlink: 64 bytes leftover after parsing attributes in process `syz.3.232'.
[  120.020539][ T6023] batadv0: left promiscuous mode
[  120.122907][ T6049] FAULT_INJECTION: forcing a failure.
[  120.122907][ T6049] name failslab, interval 1, probability 0, space 0, times 0
[  120.136229][ T6049] CPU: 1 UID: 0 PID: 6049 Comm: syz.0.233 Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  120.146517][ T6049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  120.156710][ T6049] Call Trace:
[  120.160041][ T6049]  <TASK>
[  120.163022][ T6049]  dump_stack_lvl+0x241/0x360
[  120.167776][ T6049]  ? __pfx_dump_stack_lvl+0x10/0x10
[  120.173045][ T6049]  ? __pfx__printk+0x10/0x10
[  120.177803][ T6049]  should_fail_ex+0x3b0/0x4e0
[  120.182555][ T6049]  should_failslab+0xac/0x100
[  120.187313][ T6049]  ? sctp_add_bind_addr+0x89/0x3a0
[  120.192486][ T6049]  __kmalloc_cache_noprof+0x6c/0x2c0
[  120.197847][ T6049]  sctp_add_bind_addr+0x89/0x3a0
[  120.202859][ T6049]  sctp_copy_local_addr_list+0x311/0x500
[  120.208775][ T6049]  ? sctp_copy_local_addr_list+0xab/0x500
[  120.214554][ T6049]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  120.220775][ T6049]  ? sctp_v4_is_any+0x35/0x60
[  120.225516][ T6049]  sctp_bind_addr_copy+0xad/0x3b0
[  120.230595][ T6049]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  120.237080][ T6049]  sctp_connect_new_asoc+0x2f3/0x6c0
[  120.242441][ T6049]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  120.248321][ T6049]  ? sctp_sendmsg+0xbb9/0x3520
[  120.253159][ T6049]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[  120.259027][ T6049]  ? sctp_endpoint_lookup_assoc+0x217/0x250
[  120.264983][ T6049]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  120.270595][ T6049]  sctp_sendmsg+0x219a/0x3520
[  120.275357][ T6049]  ? aa_sk_perm+0x96d/0xab0
[  120.279925][ T6049]  ? __pfx_sctp_sendmsg+0x10/0x10
[  120.285040][ T6049]  ? __pfx_aa_sk_perm+0x10/0x10
[  120.290013][ T6049]  ? inet_sendmsg+0x330/0x390
[  120.294853][ T6049]  __sock_sendmsg+0x1a6/0x270
[  120.299598][ T6049]  __sys_sendto+0x39b/0x4f0
[  120.304166][ T6049]  ? __pfx___sys_sendto+0x10/0x10
[  120.309252][ T6049]  ? __mutex_unlock_slowpath+0x21d/0x750
[  120.314971][ T6049]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  120.321070][ T6049]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  120.327467][ T6049]  __x64_sys_sendto+0xde/0x100
[  120.332314][ T6049]  do_syscall_64+0xf3/0x230
[  120.336864][ T6049]  ? clear_bhb_loop+0x35/0x90
[  120.341606][ T6049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.347678][ T6049] RIP: 0033:0x7f4eb837dff9
[  120.352127][ T6049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.371797][ T6049] RSP: 002b:00007f4eb9205038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  120.380348][ T6049] RAX: ffffffffffffffda RBX: 00007f4eb8535f80 RCX: 00007f4eb837dff9
[  120.388341][ T6049] RDX: 0000000000000001 RSI: 0000000020000100 RDI: 0000000000000003
[  120.396347][ T6049] RBP: 00007f4eb9205090 R08: 0000000020000000 R09: 0000000000000010
[  120.404384][ T6049] R10: e61e2840a154b0c0 R11: 0000000000000246 R12: 0000000000000002
[  120.412446][ T6049] R13: 0000000000000000 R14: 00007f4eb8535f80 R15: 00007ffcb15604e8
[  120.420483][ T6049]  </TASK>
[  120.455071][ T6032] netlink: 4 bytes leftover after parsing attributes in process `syz.1.228'.
[  120.718580][ T6059] veth1: mtu less than device minimum
[  120.743214][ T6067] netlink: 4088 bytes leftover after parsing attributes in process `syz.2.239'.
[  120.761816][ T6067] openvswitch: netlink: Actions may not be safe on all matching packets
[  121.017127][ T6079] netlink: 76 bytes leftover after parsing attributes in process `syz.0.243'.
[  121.029253][ T6079] netlink: 12 bytes leftover after parsing attributes in process `syz.0.243'.
[  121.068537][ T6079] x_tables: duplicate underflow at hook 1
[  121.098979][ T6089] FAULT_INJECTION: forcing a failure.
[  121.098979][ T6089] name failslab, interval 1, probability 0, space 0, times 0
[  121.124991][ T6090] netlink: 'syz.4.245': attribute type 1 has an invalid length.
[  121.141384][ T6089] CPU: 0 UID: 0 PID: 6089 Comm: syz.3.246 Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  121.151706][ T6089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  121.161783][ T6089] Call Trace:
[  121.165073][ T6089]  <TASK>
[  121.168010][ T6089]  dump_stack_lvl+0x241/0x360
[  121.172715][ T6089]  ? __pfx_dump_stack_lvl+0x10/0x10
[  121.177933][ T6089]  ? __pfx__printk+0x10/0x10
[  121.182550][ T6089]  should_fail_ex+0x3b0/0x4e0
[  121.187338][ T6089]  should_failslab+0xac/0x100
[  121.192031][ T6089]  ? sctp_add_bind_addr+0x89/0x3a0
[  121.197159][ T6089]  __kmalloc_cache_noprof+0x6c/0x2c0
[  121.202488][ T6089]  sctp_add_bind_addr+0x89/0x3a0
[  121.207630][ T6089]  sctp_copy_local_addr_list+0x311/0x500
[  121.213284][ T6089]  ? sctp_copy_local_addr_list+0xab/0x500
[  121.219020][ T6089]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  121.225207][ T6089]  ? sctp_v4_is_any+0x35/0x60
[  121.229927][ T6089]  sctp_bind_addr_copy+0xad/0x3b0
[  121.234966][ T6089]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  121.241312][ T6089]  sctp_connect_new_asoc+0x2f3/0x6c0
[  121.246616][ T6089]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  121.252438][ T6089]  ? sctp_sendmsg+0xbb9/0x3520
[  121.257230][ T6089]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[  121.263230][ T6089]  ? sctp_endpoint_lookup_assoc+0x217/0x250
[  121.269141][ T6089]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  121.274799][ T6089]  sctp_sendmsg+0x219a/0x3520
[  121.279527][ T6089]  ? aa_sk_perm+0x96d/0xab0
[  121.284075][ T6089]  ? __pfx_sctp_sendmsg+0x10/0x10
[  121.289208][ T6089]  ? __pfx_aa_sk_perm+0x10/0x10
[  121.294086][ T6089]  ? inet_sendmsg+0x330/0x390
[  121.298813][ T6089]  __sock_sendmsg+0x1a6/0x270
[  121.303522][ T6089]  __sys_sendto+0x39b/0x4f0
[  121.308155][ T6089]  ? __pfx___sys_sendto+0x10/0x10
[  121.313198][ T6089]  ? __mutex_unlock_slowpath+0x21d/0x750
[  121.318877][ T6089]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  121.324876][ T6089]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  121.331224][ T6089]  __x64_sys_sendto+0xde/0x100
[  121.336017][ T6089]  do_syscall_64+0xf3/0x230
[  121.340534][ T6089]  ? clear_bhb_loop+0x35/0x90
[  121.345226][ T6089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.351151][ T6089] RIP: 0033:0x7f82bd37dff9
[  121.355580][ T6089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.375199][ T6089] RSP: 002b:00007f82be1e8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  121.383630][ T6089] RAX: ffffffffffffffda RBX: 00007f82bd535f80 RCX: 00007f82bd37dff9
[  121.391616][ T6089] RDX: 0000000000000001 RSI: 0000000020000100 RDI: 0000000000000003
[  121.399593][ T6089] RBP: 00007f82be1e8090 R08: 0000000020000000 R09: 0000000000000010
[  121.407589][ T6089] R10: e61e2840a154b0c0 R11: 0000000000000246 R12: 0000000000000002
[  121.415661][ T6089] R13: 0000000000000000 R14: 00007f82bd535f80 R15: 00007ffc4362fb58
[  121.423669][ T6089]  </TASK>
[  121.466551][ T6098] netlink: 'syz.1.242': attribute type 11 has an invalid length.
[  121.475174][ T6098] netlink: 8 bytes leftover after parsing attributes in process `syz.1.242'.
[  121.564574][ T6088] netlink: 'syz.4.245': attribute type 18 has an invalid length.
[  121.595957][ T6088] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  121.605363][ T6088] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  121.614599][ T6088] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  121.623775][ T6088] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  121.676075][ T6088] netlink: 'syz.4.245': attribute type 18 has an invalid length.
[  122.027167][ T6126] netlink: 'syz.1.254': attribute type 6 has an invalid length.
[  122.172289][ T6137] FAULT_INJECTION: forcing a failure.
[  122.172289][ T6137] name failslab, interval 1, probability 0, space 0, times 0
[  122.192474][ T6137] CPU: 1 UID: 0 PID: 6137 Comm: syz.3.258 Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  122.202803][ T6137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  122.212906][ T6137] Call Trace:
[  122.216228][ T6137]  <TASK>
[  122.219201][ T6137]  dump_stack_lvl+0x241/0x360
[  122.223941][ T6137]  ? __pfx_dump_stack_lvl+0x10/0x10
[  122.229204][ T6137]  ? __pfx__printk+0x10/0x10
[  122.233870][ T6137]  should_fail_ex+0x3b0/0x4e0
[  122.238615][ T6137]  should_failslab+0xac/0x100
[  122.243351][ T6137]  ? sctp_add_bind_addr+0x89/0x3a0
[  122.248520][ T6137]  __kmalloc_cache_noprof+0x6c/0x2c0
[  122.253877][ T6137]  sctp_add_bind_addr+0x89/0x3a0
[  122.258876][ T6137]  sctp_copy_local_addr_list+0x311/0x500
[  122.264568][ T6137]  ? sctp_copy_local_addr_list+0xab/0x500
[  122.270346][ T6137]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  122.276559][ T6137]  ? sctp_v4_is_any+0x35/0x60
[  122.281304][ T6137]  sctp_bind_addr_copy+0xad/0x3b0
[  122.286383][ T6137]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  122.292786][ T6137]  sctp_connect_new_asoc+0x2f3/0x6c0
[  122.298144][ T6137]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  122.304010][ T6137]  ? sctp_sendmsg+0xbb9/0x3520
[  122.308835][ T6137]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[  122.314698][ T6137]  ? sctp_endpoint_lookup_assoc+0x217/0x250
[  122.320662][ T6137]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  122.326284][ T6137]  sctp_sendmsg+0x219a/0x3520
[  122.331036][ T6137]  ? aa_sk_perm+0x96d/0xab0
[  122.335605][ T6137]  ? __pfx_sctp_sendmsg+0x10/0x10
[  122.340693][ T6137]  ? __pfx_aa_sk_perm+0x10/0x10
[  122.345613][ T6137]  ? inet_sendmsg+0x330/0x390
[  122.350362][ T6137]  __sock_sendmsg+0x1a6/0x270
[  122.355105][ T6137]  __sys_sendto+0x39b/0x4f0
[  122.359681][ T6137]  ? __pfx___sys_sendto+0x10/0x10
[  122.364868][ T6137]  ? __mutex_unlock_slowpath+0x21d/0x750
[  122.370581][ T6137]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  122.376626][ T6137]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  122.383023][ T6137]  __x64_sys_sendto+0xde/0x100
[  122.387854][ T6137]  do_syscall_64+0xf3/0x230
[  122.392415][ T6137]  ? clear_bhb_loop+0x35/0x90
[  122.397167][ T6137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.403120][ T6137] RIP: 0033:0x7f82bd37dff9
[  122.407579][ T6137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.427526][ T6137] RSP: 002b:00007f82be1e8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  122.435995][ T6137] RAX: ffffffffffffffda RBX: 00007f82bd535f80 RCX: 00007f82bd37dff9
[  122.444014][ T6137] RDX: 0000000000000001 RSI: 0000000020000100 RDI: 0000000000000003
[  122.452034][ T6137] RBP: 00007f82be1e8090 R08: 0000000020000000 R09: 0000000000000010
[  122.460046][ T6137] R10: e61e2840a154b0c0 R11: 0000000000000246 R12: 0000000000000002
[  122.468054][ T6137] R13: 0000000000000000 R14: 00007f82bd535f80 R15: 00007ffc4362fb58
[  122.476083][ T6137]  </TASK>
[  122.490520][ T6144] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.870748][ T6164] netlink: 40 bytes leftover after parsing attributes in process `syz.0.267'.
[  122.936134][ T6167] netlink: 16 bytes leftover after parsing attributes in process `syz.3.268'.
[  123.488707][ T6203] netlink: 'syz.2.279': attribute type 4 has an invalid length.
[  125.149956][ T6294] netlink: 'syz.2.313': attribute type 1 has an invalid length.
[  125.177250][ T6294] netlink: 'syz.2.313': attribute type 2 has an invalid length.
[  125.181026][ T6299] FAULT_INJECTION: forcing a failure.
[  125.181026][ T6299] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  125.207790][ T6299] CPU: 1 UID: 0 PID: 6299 Comm: syz.1.315 Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  125.218133][ T6299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  125.228207][ T6299] Call Trace:
[  125.231511][ T6299]  <TASK>
[  125.234461][ T6299]  dump_stack_lvl+0x241/0x360
[  125.239197][ T6299]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.244424][ T6299]  ? __pfx__printk+0x10/0x10
[  125.249041][ T6299]  should_fail_ex+0x3b0/0x4e0
[  125.253765][ T6299]  _copy_from_user+0x2f/0xe0
[  125.258373][ T6299]  move_addr_to_kernel+0x82/0x150
[  125.263418][ T6299]  __sys_sendto+0x29f/0x4f0
[  125.267941][ T6299]  ? __pfx___sys_sendto+0x10/0x10
[  125.273011][ T6299]  ? __mutex_unlock_slowpath+0x21d/0x750
[  125.278674][ T6299]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  125.284679][ T6299]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  125.291032][ T6299]  __x64_sys_sendto+0xde/0x100
[  125.295834][ T6299]  do_syscall_64+0xf3/0x230
[  125.300358][ T6299]  ? clear_bhb_loop+0x35/0x90
[  125.305053][ T6299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.310967][ T6299] RIP: 0033:0x7f41d8d7dff9
[  125.315394][ T6299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.335012][ T6299] RSP: 002b:00007f41d87ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  125.343444][ T6299] RAX: ffffffffffffffda RBX: 00007f41d8f35f80 RCX: 00007f41d8d7dff9
[  125.351431][ T6299] RDX: 000000000000e90c RSI: 00000000200000c0 RDI: 0000000000000003
[  125.359412][ T6299] RBP: 00007f41d87ff090 R08: 0000000020000540 R09: 0000000000000014
[  125.367393][ T6299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.375374][ T6299] R13: 0000000000000000 R14: 00007f41d8f35f80 R15: 00007ffdbf71b858
[  125.383367][ T6299]  </TASK>
[  125.505065][ T6305] __nla_validate_parse: 3 callbacks suppressed
[  125.505085][ T6305] netlink: 100 bytes leftover after parsing attributes in process `syz.4.318'.
[  125.806187][ T6327] netlink: 4 bytes leftover after parsing attributes in process `syz.2.323'.
[  126.067282][ T6339] netlink: 'syz.2.328': attribute type 12 has an invalid length.
[  126.092960][ T6339] netlink: 'syz.2.328': attribute type 11 has an invalid length.
[  126.101798][ T6339] netlink: 'syz.2.328': attribute type 11 has an invalid length.
[  126.127541][ T6339] netlink: 'syz.2.328': attribute type 11 has an invalid length.
[  126.149299][ T6339] netlink: 'syz.2.328': attribute type 11 has an invalid length.
[  126.164474][ T6346] netlink: 'syz.4.330': attribute type 14 has an invalid length.
[  126.178761][ T6339] netlink: 'syz.2.328': attribute type 11 has an invalid length.
[  126.216689][ T6339] netlink: 'syz.2.328': attribute type 4 has an invalid length.
[  126.237194][ T6339] netlink: 'syz.2.328': attribute type 5 has an invalid length.
[  126.280837][ T6339] netlink: 196072 bytes leftover after parsing attributes in process `syz.2.328'.
[  126.554446][ T6356] FAULT_INJECTION: forcing a failure.
[  126.554446][ T6356] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.585635][ T6356] CPU: 1 UID: 0 PID: 6356 Comm: syz.3.332 Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  126.595955][ T6356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  126.606054][ T6356] Call Trace:
[  126.609368][ T6356]  <TASK>
[  126.612339][ T6356]  dump_stack_lvl+0x241/0x360
[  126.617095][ T6356]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.622349][ T6356]  ? __pfx__printk+0x10/0x10
[  126.627005][ T6356]  ? __pfx_lock_release+0x10/0x10
[  126.632096][ T6356]  should_fail_ex+0x3b0/0x4e0
[  126.636828][ T6356]  _copy_from_iter+0x1ed/0x1d60
[  126.641728][ T6356]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  126.647247][ T6356]  ? dev_get_by_index+0x23/0x2d0
[  126.652251][ T6356]  ? __pfx_lock_release+0x10/0x10
[  126.657328][ T6356]  ? __pfx__copy_from_iter+0x10/0x10
[  126.662703][ T6356]  ? dev_get_by_index+0x23/0x2d0
[  126.667702][ T6356]  packet_sendmsg+0x3a96/0x6860
[  126.672625][ T6356]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  126.678082][ T6356]  ? __pfx___might_resched+0x10/0x10
[  126.683448][ T6356]  ? aa_sk_perm+0x96d/0xab0
[  126.688060][ T6356]  ? __pfx_packet_sendmsg+0x10/0x10
[  126.693320][ T6356]  ? __fget_files+0x29/0x470
[  126.698111][ T6356]  ? aa_sock_msg_perm+0x91/0x160
[  126.703072][ T6356]  ? __pfx_packet_sendmsg+0x10/0x10
[  126.708289][ T6356]  __sock_sendmsg+0x221/0x270
[  126.713070][ T6356]  __sys_sendto+0x39b/0x4f0
[  126.717625][ T6356]  ? __pfx___sys_sendto+0x10/0x10
[  126.722669][ T6356]  ? __mutex_unlock_slowpath+0x21d/0x750
[  126.728326][ T6356]  ? bpf_trace_run2+0x1fc/0x540
[  126.733195][ T6356]  ? bpf_trace_run2+0x36e/0x540
[  126.738068][ T6356]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  126.744077][ T6356]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  126.750435][ T6356]  __x64_sys_sendto+0xde/0x100
[  126.755299][ T6356]  do_syscall_64+0xf3/0x230
[  126.759856][ T6356]  ? clear_bhb_loop+0x35/0x90
[  126.764559][ T6356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.770584][ T6356] RIP: 0033:0x7f82bd37dff9
[  126.775008][ T6356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.794630][ T6356] RSP: 002b:00007f82be1e8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  126.803061][ T6356] RAX: ffffffffffffffda RBX: 00007f82bd535f80 RCX: 00007f82bd37dff9
[  126.811041][ T6356] RDX: 000000000000e90c RSI: 00000000200000c0 RDI: 0000000000000003
[  126.819043][ T6356] RBP: 00007f82be1e8090 R08: 0000000020000540 R09: 0000000000000014
[  126.827042][ T6356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.835036][ T6356] R13: 0000000000000000 R14: 00007f82bd535f80 R15: 00007ffc4362fb58
[  126.843069][ T6356]  </TASK>
[  127.363570][ T6375] Bluetooth: MGMT ver 1.23
[  127.690666][ T6390] FAULT_INJECTION: forcing a failure.
[  127.690666][ T6390] name failslab, interval 1, probability 0, space 0, times 0
[  127.706644][ T6388] dvmrp1: entered allmulticast mode
[  127.722328][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.3.346 Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  127.732662][ T6390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  127.742763][ T6390] Call Trace:
[  127.746079][ T6390]  <TASK>
[  127.749047][ T6390]  dump_stack_lvl+0x241/0x360
[  127.753780][ T6390]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.759008][ T6390]  ? __pfx__printk+0x10/0x10
[  127.763625][ T6390]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  127.769624][ T6390]  ? __pfx___might_resched+0x10/0x10
[  127.775018][ T6390]  should_fail_ex+0x3b0/0x4e0
[  127.779737][ T6390]  should_failslab+0xac/0x100
[  127.784464][ T6390]  ? __alloc_skb+0x1c3/0x440
[  127.789093][ T6390]  kmem_cache_alloc_node_noprof+0x71/0x320
[  127.794942][ T6390]  __alloc_skb+0x1c3/0x440
[  127.799416][ T6390]  ? __pfx___alloc_skb+0x10/0x10
[  127.804387][ T6390]  ? __pfx___might_resched+0x10/0x10
[  127.809692][ T6390]  alloc_skb_with_frags+0xc3/0x820
[  127.814826][ T6390]  sock_alloc_send_pskb+0x91a/0xa60
[  127.820051][ T6390]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  127.825794][ T6390]  ? dev_get_by_index+0x23/0x2d0
[  127.830750][ T6390]  packet_sendmsg+0x3f33/0x6860
[  127.835617][ T6390]  ? mark_lock+0x9a/0x360
[  127.839984][ T6390]  ? __pfx___might_resched+0x10/0x10
[  127.845297][ T6390]  ? aa_sk_perm+0x96d/0xab0
[  127.849819][ T6390]  ? __pfx_packet_sendmsg+0x10/0x10
[  127.855041][ T6390]  ? __fget_files+0x29/0x470
[  127.859648][ T6390]  ? aa_sock_msg_perm+0x91/0x160
[  127.864603][ T6390]  ? __pfx_packet_sendmsg+0x10/0x10
[  127.869820][ T6390]  __sock_sendmsg+0x221/0x270
[  127.874538][ T6390]  __sys_sendto+0x39b/0x4f0
[  127.879075][ T6390]  ? __pfx___sys_sendto+0x10/0x10
[  127.884118][ T6390]  ? __mutex_unlock_slowpath+0x21d/0x750
[  127.889786][ T6390]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  127.895793][ T6390]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  127.902149][ T6390]  __x64_sys_sendto+0xde/0x100
[  127.906949][ T6390]  do_syscall_64+0xf3/0x230
[  127.911468][ T6390]  ? clear_bhb_loop+0x35/0x90
[  127.916190][ T6390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.922122][ T6390] RIP: 0033:0x7f82bd37dff9
[  127.926555][ T6390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.946177][ T6390] RSP: 002b:00007f82be1e8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  127.954611][ T6390] RAX: ffffffffffffffda RBX: 00007f82bd535f80 RCX: 00007f82bd37dff9
[  127.962602][ T6390] RDX: 000000000000e90c RSI: 00000000200000c0 RDI: 0000000000000003
[  127.970688][ T6390] RBP: 00007f82be1e8090 R08: 0000000020000540 R09: 0000000000000014
[  127.978786][ T6390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.986778][ T6390] R13: 0000000000000000 R14: 00007f82bd535f80 R15: 00007ffc4362fb58
[  127.994780][ T6390]  </TASK>
[  128.173360][ T6396] Unsupported ieee802154 address type: 0
[  128.191887][ T5257] Bluetooth: hci4: command tx timeout
[  128.202883][ T6396] (unnamed net_device) (uninitialized): (slave bond_slave_1): Device is not our slave
[  128.231818][ T6396] (unnamed net_device) (uninitialized): option active_slave: invalid value (bond_slave_1)
[  128.463432][ T6405] netlink: 44 bytes leftover after parsing attributes in process `syz.3.353'.
[  128.523209][ T6408] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  128.603615][ T6410] netlink: 9056 bytes leftover after parsing attributes in process `syz.0.355'.
[  128.666700][ T6413] netlink: 'syz.2.356': attribute type 3 has an invalid length.
[  128.691060][ T6413] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.356'.
[  128.902885][ T6422] SET target dimension over the limit!
[  129.227581][ T6449] netlink: 8 bytes leftover after parsing attributes in process `syz.3.365'.
[  129.251683][ T6449] netlink: 'syz.3.365': attribute type 3 has an invalid length.
[  129.288807][ T6441] netlink: 48 bytes leftover after parsing attributes in process `syz.2.364'.
[  129.307505][ T6441] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-tlb(5)
[  129.327960][ T6445] netlink: 8 bytes leftover after parsing attributes in process `syz.3.365'.
[  129.371462][ T6445] netlink: 'syz.3.365': attribute type 3 has an invalid length.
[  129.417844][ T6451] netlink: 'syz.4.368': attribute type 29 has an invalid length.
[  129.436690][ T6451] netlink: 8 bytes leftover after parsing attributes in process `syz.4.368'.
[  129.498185][ T6461] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode balance-xor(2)
[  129.732945][ T6475] netlink: 'syz.2.375': attribute type 5 has an invalid length.
[  129.998501][ T6483] syzkaller0: entered promiscuous mode
[  130.008719][ T6483] syzkaller0: entered allmulticast mode
[  130.017858][ T6483] tipc: Started in network mode
[  130.028060][ T6483] tipc: Node identity ac148fef, cluster identity 4711
[  130.035591][ T6483] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  130.068547][ T6494] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[  130.345546][ T6507] delete_channel: no stack
[  130.365474][ T6511] netlink: 'syz.4.389': attribute type 1 has an invalid length.
[  130.388968][ T6511] openvswitch: netlink: Actions may not be safe on all matching packets
[  130.451645][ T6515] Bluetooth: MGMT ver 1.23
[  130.748350][ T6529] : renamed from bond0 (while UP)
[  131.326353][ T6545] __nla_validate_parse: 5 callbacks suppressed
[  131.326377][ T6545] netlink: 8 bytes leftover after parsing attributes in process `syz.1.401'.
[  131.349289][ T6545] netlink: 24 bytes leftover after parsing attributes in process `syz.1.401'.
[  131.938575][ T6561] FAULT_INJECTION: forcing a failure.
[  131.938575][ T6561] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.106652][ T6564] netlink: 4 bytes leftover after parsing attributes in process `syz.2.411'.
[  132.146888][ T6564] dccp_invalid_packet: pskb_may_pull failed
[  132.381938][ T6573] netlink: 148 bytes leftover after parsing attributes in process `syz.2.413'.
[  132.744145][ T6561] CPU: 0 UID: 0 PID: 6561 Comm: syz.3.410 Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  132.754470][ T6561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  132.764572][ T6561] Call Trace:
[  132.767894][ T6561]  <TASK>
[  132.770954][ T6561]  dump_stack_lvl+0x241/0x360
[  132.775786][ T6561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.781047][ T6561]  ? __pfx__printk+0x10/0x10
[  132.785698][ T6561]  ? snprintf+0xda/0x120
[  132.789987][ T6561]  should_fail_ex+0x3b0/0x4e0
[  132.794728][ T6561]  _copy_to_user+0x2f/0xb0
[  132.799198][ T6561]  simple_read_from_buffer+0xca/0x150
[  132.804633][ T6561]  proc_fail_nth_read+0x1e9/0x250
[  132.809720][ T6561]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  132.815322][ T6561]  ? rw_verify_area+0x55e/0x6f0
[  132.820224][ T6561]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  132.825823][ T6561]  vfs_read+0x201/0xbc0
[  132.830035][ T6561]  ? __pfx_lock_release+0x10/0x10
[  132.835118][ T6561]  ? __pfx_vfs_read+0x10/0x10
[  132.839858][ T6561]  ? __fget_files+0x3f3/0x470
[  132.844592][ T6561]  ? fdget_pos+0x24e/0x320
[  132.849049][ T6561]  ksys_read+0x183/0x2b0
[  132.853344][ T6561]  ? __pfx_ksys_read+0x10/0x10
[  132.858158][ T6561]  ? do_syscall_64+0x100/0x230
[  132.862969][ T6561]  ? do_syscall_64+0xb6/0x230
[  132.867690][ T6561]  do_syscall_64+0xf3/0x230
[  132.872234][ T6561]  ? clear_bhb_loop+0x35/0x90
[  132.876965][ T6561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.882931][ T6561] RIP: 0033:0x7f82bd37ca3c
[  132.887634][ T6561] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  132.907301][ T6561] RSP: 002b:00007f82be1e8030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  132.915779][ T6561] RAX: ffffffffffffffda RBX: 00007f82bd535f80 RCX: 00007f82bd37ca3c
[  132.923845][ T6561] RDX: 000000000000000f RSI: 00007f82be1e80a0 RDI: 0000000000000003
[  132.931867][ T6561] RBP: 00007f82be1e8090 R08: 0000000000000000 R09: 0000000000000000
[  132.939886][ T6561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.947902][ T6561] R13: 0000000000000000 R14: 00007f82bd535f80 R15: 00007ffc4362fb58
[  132.955946][ T6561]  </TASK>
[  133.788239][ T6596] netlink: 76 bytes leftover after parsing attributes in process `syz.0.421'.
[  134.413605][ T6621] netlink: 'syz.3.425': attribute type 3 has an invalid length.
[  134.467890][ T6623] Cannot find add_set index 0 as target
[  134.513624][ T6621] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.425'.
[  135.083418][ T6630] syzkaller0: entered promiscuous mode
[  135.135159][ T6630] syzkaller0: entered allmulticast mode
[  135.192466][ T6630] tipc: Started in network mode
[  135.197412][ T6630] tipc: Node identity ac148fef, cluster identity 4711
[  135.289395][ T6630] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  135.729128][ T6649] netlink: 'syz.1.437': attribute type 12 has an invalid length.
[  135.791546][ T6649] netlink: 'syz.1.437': attribute type 11 has an invalid length.
[  135.851358][ T6649] netlink: 'syz.1.437': attribute type 11 has an invalid length.
[  135.901509][ T6649] netlink: 'syz.1.437': attribute type 11 has an invalid length.
[  135.940034][ T6649] netlink: 'syz.1.437': attribute type 11 has an invalid length.
[  135.991516][ T6649] netlink: 'syz.1.437': attribute type 11 has an invalid length.
[  136.051455][ T6649] netlink: 'syz.1.437': attribute type 4 has an invalid length.
[  136.084359][ T6649] netlink: 'syz.1.437': attribute type 5 has an invalid length.
[  136.142538][ T6649] netlink: 196072 bytes leftover after parsing attributes in process `syz.1.437'.
[  136.561083][ T6670] FAULT_INJECTION: forcing a failure.
[  136.561083][ T6670] name failslab, interval 1, probability 0, space 0, times 0
[  136.603137][ T6667] dvmrp0: entered allmulticast mode
[  136.641863][ T6670] CPU: 0 UID: 0 PID: 6670 Comm: syz.1.444 Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  136.652190][ T6670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  136.662299][ T6670] Call Trace:
[  136.665612][ T6670]  <TASK>
[  136.668575][ T6670]  dump_stack_lvl+0x241/0x360
[  136.673352][ T6670]  ? __pfx_dump_stack_lvl+0x10/0x10
[  136.678639][ T6670]  ? __pfx__printk+0x10/0x10
[  136.683309][ T6670]  should_fail_ex+0x3b0/0x4e0
[  136.688051][ T6670]  should_failslab+0xac/0x100
[  136.692781][ T6670]  ? sctp_add_bind_addr+0x89/0x3a0
[  136.697941][ T6670]  __kmalloc_cache_noprof+0x6c/0x2c0
[  136.703295][ T6670]  sctp_add_bind_addr+0x89/0x3a0
[  136.708281][ T6670]  sctp_copy_local_addr_list+0x311/0x500
[  136.713973][ T6670]  ? sctp_copy_local_addr_list+0xab/0x500
[  136.719738][ T6670]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  136.725939][ T6670]  ? sctp_v4_is_any+0x35/0x60
[  136.730665][ T6670]  sctp_bind_addr_copy+0xad/0x3b0
[  136.735730][ T6670]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  136.742121][ T6670]  sctp_connect_new_asoc+0x2f3/0x6c0
[  136.747461][ T6670]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  136.753328][ T6670]  ? sctp_sendmsg+0xbb9/0x3520
[  136.758150][ T6670]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[  136.764034][ T6670]  ? sctp_endpoint_lookup_assoc+0x217/0x250
[  136.769973][ T6670]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  136.775582][ T6670]  sctp_sendmsg+0x219a/0x3520
[  136.780335][ T6670]  ? aa_sk_perm+0x96d/0xab0
[  136.784897][ T6670]  ? __pfx_sctp_sendmsg+0x10/0x10
[  136.789982][ T6670]  ? __pfx_aa_sk_perm+0x10/0x10
[  136.794895][ T6670]  ? inet_sendmsg+0x330/0x390
[  136.799629][ T6670]  __sock_sendmsg+0x1a6/0x270
[  136.804367][ T6670]  __sys_sendto+0x39b/0x4f0
[  136.808934][ T6670]  ? __pfx___sys_sendto+0x10/0x10
[  136.814009][ T6670]  ? __mutex_unlock_slowpath+0x21d/0x750
[  136.819716][ T6670]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  136.825758][ T6670]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  136.832144][ T6670]  __x64_sys_sendto+0xde/0x100
[  136.836968][ T6670]  do_syscall_64+0xf3/0x230
[  136.841626][ T6670]  ? clear_bhb_loop+0x35/0x90
[  136.846345][ T6670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.852289][ T6670] RIP: 0033:0x7f41d8d7dff9
[  136.856745][ T6670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.876400][ T6670] RSP: 002b:00007f41d87ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  136.884884][ T6670] RAX: ffffffffffffffda RBX: 00007f41d8f35f80 RCX: 00007f41d8d7dff9
[  136.892905][ T6670] RDX: 0000000000000001 RSI: 0000000020000100 RDI: 0000000000000003
[  136.900939][ T6670] RBP: 00007f41d87ff090 R08: 0000000020000000 R09: 0000000000000010
[  136.908955][ T6670] R10: e61e2840a154b0c0 R11: 0000000000000246 R12: 0000000000000002
[  136.916978][ T6670] R13: 0000000000000000 R14: 00007f41d8f35f80 R15: 00007ffdbf71b858
[  136.925017][ T6670]  </TASK>
[  136.986088][ T6668] netlink: 4 bytes leftover after parsing attributes in process `syz.0.443'.
[  137.019376][ T6668] 8021q: adding VLAN 0 to HW filter on device batadv1
[  137.225190][ T6683] netlink: 104 bytes leftover after parsing attributes in process `syz.3.447'.
[  137.281940][ T6685] netlink: 28 bytes leftover after parsing attributes in process `syz.4.448'.
[  137.311570][ T6685] netlink: 'syz.4.448': attribute type 7 has an invalid length.
[  137.362266][ T6685] netlink: 'syz.4.448': attribute type 8 has an invalid length.
[  137.468485][ T6685] netlink: 4 bytes leftover after parsing attributes in process `syz.4.448'.
[  138.185686][ T6704] netlink: 'syz.3.456': attribute type 1 has an invalid length.
[  138.234507][ T6704] netlink: 9364 bytes leftover after parsing attributes in process `syz.3.456'.
[  138.282472][ T6704] netlink: 'syz.3.456': attribute type 1 has an invalid length.
[  138.942093][ T6716] netlink: 'syz.3.460': attribute type 3 has an invalid length.
[  138.979415][ T6716] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.460'.
[  139.685488][ T6733] nbd: must specify a size in bytes for the device
[  140.575280][ T6754] netlink: 4 bytes leftover after parsing attributes in process `syz.2.474'.
[  140.632634][ T6754] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  140.660586][ T6754] batman_adv: batadv0: Removing interface: batadv_slave_0
[  140.729836][ T6754] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  140.756966][ T6754] batman_adv: batadv0: Removing interface: batadv_slave_1
[  140.760565][    C1] Dead loop on virtual device ipvlan1, fix it urgently!
[  142.363318][ T6790] netlink: 76 bytes leftover after parsing attributes in process `syz.3.487'.
[  142.377185][ T6790] nbd: illegal input index -8454144
[  143.548930][ T6799] tipc: Can't bind to reserved service type 0
[  147.163297][ T6774] netlink: 'syz.1.482': attribute type 10 has an invalid length.
[  147.216802][ T6774] team0: Device veth0_macvtap failed to register rx_handler
[  147.737205][ T6811] netlink: 'syz.2.492': attribute type 3 has an invalid length.
[  147.795696][ T6811] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.492'.
[  152.702002][   T55] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  152.711174][   T55] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  152.720183][   T55] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  152.731731][   T55] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  152.741890][   T55] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  152.752379][   T55] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  152.771266][    C1] sched: DL replenish lagged too much
[  154.831672][   T55] Bluetooth: hci5: command tx timeout
[  156.911422][   T55] Bluetooth: hci5: command tx timeout
[  159.001387][   T55] Bluetooth: hci5: command tx timeout
[  159.629057][ T5257] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  159.651463][ T5257] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  159.659878][ T5257] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  159.672137][ T5257] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  159.681851][ T5257] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  159.689292][ T5257] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  159.803390][   T55] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  159.813656][   T55] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  159.825138][   T55] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  159.835331][   T55] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  159.844791][   T55] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  159.852806][   T55] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  159.979249][   T55] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  159.994708][   T55] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  160.005291][   T55] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  160.013920][   T55] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  160.027199][   T55] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  160.035293][   T55] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  160.080397][ T5257] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  160.089630][ T5257] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  160.099162][ T5257] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  160.107511][ T5257] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  160.116448][ T5257] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  160.126201][ T5257] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  161.071419][ T5257] Bluetooth: hci5: command tx timeout
[  161.791529][ T5257] Bluetooth: hci6: command tx timeout
[  161.951588][ T5257] Bluetooth: hci7: command tx timeout
[  162.111557][ T5257] Bluetooth: hci8: command tx timeout
[  162.191670][ T5257] Bluetooth: hci9: command tx timeout
[  163.871623][ T5257] Bluetooth: hci6: command tx timeout
[  164.031497][ T5257] Bluetooth: hci7: command tx timeout
[  164.191489][ T5257] Bluetooth: hci8: command tx timeout
[  164.271558][ T5257] Bluetooth: hci9: command tx timeout
[  165.951502][ T5257] Bluetooth: hci6: command tx timeout
[  166.111572][ T5257] Bluetooth: hci7: command tx timeout
[  166.271420][ T5257] Bluetooth: hci8: command tx timeout
[  166.351954][ T5257] Bluetooth: hci9: command tx timeout
[  168.031490][ T5257] Bluetooth: hci6: command tx timeout
[  168.191491][ T5257] Bluetooth: hci7: command tx timeout
[  168.355991][ T5257] Bluetooth: hci8: command tx timeout
[  168.431629][ T5257] Bluetooth: hci9: command tx timeout
[  196.617803][ T5257] Bluetooth: hci1: command 0x0406 tx timeout
[  196.623994][ T4621] Bluetooth: hci3: command 0x0406 tx timeout
[  196.630116][ T4621] Bluetooth: hci2: command 0x0406 tx timeout
[  196.644754][ T5257] Bluetooth: hci0: command 0x0406 tx timeout
[  204.754290][    C1] Dead loop on virtual device ipvlan1, fix it urgently!
[  214.582021][   T55] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  214.591733][   T55] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  214.599944][   T55] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  214.608523][   T55] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  214.620628][   T55] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  214.638152][   T55] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  216.671496][   T55] Bluetooth: hci10: command tx timeout
[  218.751452][   T55] Bluetooth: hci10: command tx timeout
[  220.000932][ T5253] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  220.010932][ T5253] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  220.023960][ T5253] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  220.032347][ T5253] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  220.040498][ T5253] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[  220.048150][ T5253] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  220.259558][   T55] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  220.270790][   T55] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  220.279798][   T55] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  220.292467][   T55] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  220.300315][   T55] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[  220.308593][   T55] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  220.394043][ T5253] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  220.403361][ T5253] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  220.412197][ T5253] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  220.420348][ T5253] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  220.437329][ T5253] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[  220.445299][ T5253] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  220.499324][   T55] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  220.513537][   T55] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  220.522353][   T55] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  220.531022][   T55] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  220.543808][   T55] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[  220.555607][   T55] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  220.831500][   T55] Bluetooth: hci10: command tx timeout
[  222.111548][   T55] Bluetooth: hci11: command tx timeout
[  222.351427][   T55] Bluetooth: hci12: command tx timeout
[  222.511537][   T55] Bluetooth: hci13: command tx timeout
[  222.591593][   T55] Bluetooth: hci14: command tx timeout
[  222.911415][   T55] Bluetooth: hci10: command tx timeout
[  224.191401][   T55] Bluetooth: hci11: command tx timeout
[  224.431597][   T55] Bluetooth: hci12: command tx timeout
[  224.592215][   T55] Bluetooth: hci13: command tx timeout
[  224.671543][   T55] Bluetooth: hci14: command tx timeout
[  226.271553][   T55] Bluetooth: hci11: command tx timeout
[  226.511509][   T55] Bluetooth: hci12: command tx timeout
[  226.671405][   T55] Bluetooth: hci13: command tx timeout
[  226.752874][   T55] Bluetooth: hci14: command tx timeout
[  228.351458][   T55] Bluetooth: hci11: command tx timeout
[  228.591404][   T55] Bluetooth: hci12: command tx timeout
[  228.751403][   T55] Bluetooth: hci13: command tx timeout
[  228.831601][   T55] Bluetooth: hci14: command tx timeout
[  263.158959][   T55] Bluetooth: hci4: command 0x0406 tx timeout
[  276.379794][   T55] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  276.389259][   T55] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  276.398040][   T55] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  276.406382][   T55] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  276.417183][   T55] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[  276.425172][   T55] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  278.519467][ T5253] Bluetooth: hci5: command 0x0406 tx timeout
[  278.525858][   T55] Bluetooth: hci15: command tx timeout
[  280.609268][ T5241] Bluetooth: hci15: command tx timeout
[  281.130429][   T55] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  281.141432][   T55] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  281.154159][   T55] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  281.165757][   T55] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  281.213268][   T55] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[  281.222170][   T55] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  281.322642][ T5253] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[  281.335168][ T5253] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[  281.343630][ T5253] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[  281.352684][ T5253] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[  281.362042][ T5253] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[  281.371341][ T5253] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[  281.380097][ T5253] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[  281.396976][ T5253] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[  281.409554][ T5253] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[  281.417971][ T5253] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[  281.437966][ T5253] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3
[  281.450881][ T5253] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[  281.534310][ T5241] Bluetooth: hci19: unexpected cc 0x0c03 length: 249 > 1
[  281.544486][ T5241] Bluetooth: hci19: unexpected cc 0x1003 length: 249 > 9
[  281.560378][ T5241] Bluetooth: hci19: unexpected cc 0x1001 length: 249 > 9
[  281.574743][ T5241] Bluetooth: hci19: unexpected cc 0x0c23 length: 249 > 4
[  281.582681][ T5241] Bluetooth: hci19: unexpected cc 0x0c25 length: 249 > 3
[  281.590352][ T5241] Bluetooth: hci19: unexpected cc 0x0c38 length: 249 > 2
[  282.671495][ T5241] Bluetooth: hci15: command tx timeout
[  283.311765][ T5241] Bluetooth: hci16: command tx timeout
[  283.471550][ T5241] Bluetooth: hci17: command tx timeout
[  283.551515][ T5241] Bluetooth: hci18: command tx timeout
[  283.638107][ T5241] Bluetooth: hci19: command tx timeout
[  283.644103][ T5253] Bluetooth: hci9: command 0x0406 tx timeout
[  283.650173][ T5253] Bluetooth: hci6: command 0x0406 tx timeout
[  283.656344][ T5251] Bluetooth: hci7: command 0x0406 tx timeout
[  283.662513][   T55] Bluetooth: hci8: command 0x0406 tx timeout
[  284.751618][ T5257] Bluetooth: hci15: command tx timeout
[  285.391934][ T4621] Bluetooth: hci16: command tx timeout
[  285.553664][ T4621] Bluetooth: hci17: command tx timeout
[  285.631493][ T4621] Bluetooth: hci18: command tx timeout
[  285.711715][ T4621] Bluetooth: hci19: command tx timeout
[  287.471668][ T4621] Bluetooth: hci16: command tx timeout
[  287.631420][ T4621] Bluetooth: hci17: command tx timeout
[  287.711414][ T4621] Bluetooth: hci18: command tx timeout
[  287.791628][ T4621] Bluetooth: hci19: command tx timeout
[  289.551682][ T4621] Bluetooth: hci16: command tx timeout
[  289.711437][ T4621] Bluetooth: hci17: command tx timeout
[  289.791503][ T4621] Bluetooth: hci18: command tx timeout
[  289.872609][ T4621] Bluetooth: hci19: command tx timeout
[  293.071447][   T30] INFO: task kworker/u8:0:11 blocked for more than 143 seconds.
[  293.079177][   T30]       Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  293.125909][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  293.176950][   T30] task:kworker/u8:0    state:D stack:21208 pid:11    tgid:11    ppid:2      flags:0x00004000
[  293.272894][   T30] Workqueue: netns cleanup_net
[  293.277753][   T30] Call Trace:
[  293.281070][   T30]  <TASK>
[  293.366013][   T30]  __schedule+0x1895/0x4b30
[  293.370643][   T30]  ? __pfx___schedule+0x10/0x10
[  293.401029][   T30]  ? __pfx_lock_release+0x10/0x10
[  293.441357][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  293.446918][   T30]  ? kthread_data+0x52/0xd0
[  293.484619][   T30]  ? schedule+0x90/0x320
[  293.488954][   T30]  ? wq_worker_sleeping+0x66/0x240
[  293.529149][   T30]  ? schedule+0x90/0x320
[  293.548388][   T30]  schedule+0x14b/0x320
[  293.558370][   T30]  schedule_preempt_disabled+0x13/0x30
[  293.570627][   T30]  __mutex_lock+0x6a7/0xd70
[  293.575610][   T30]  ? __mutex_lock+0x52a/0xd70
[  293.580353][   T30]  ? mpls_net_exit+0x7d/0x2a0
[  293.590342][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  293.595859][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  293.601134][   T30]  ? mpls_net_exit+0x78/0x2a0
[  293.608223][   T30]  ? kfree+0x1a0/0x440
[  293.617447][   T30]  ? mpls_net_exit+0x78/0x2a0
[  293.622767][   T30]  mpls_net_exit+0x7d/0x2a0
[  293.627337][   T30]  cleanup_net+0x802/0xcc0
[  293.637403][   T30]  ? __pfx_cleanup_net+0x10/0x10
[  293.643589][   T30]  ? process_scheduled_works+0x976/0x1850
[  293.649380][   T30]  process_scheduled_works+0xa63/0x1850
[  293.662211][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  293.668884][   T30]  ? assign_work+0x364/0x3d0
[  293.679325][   T30]  worker_thread+0x870/0xd30
[  293.684478][   T30]  ? __kthread_parkme+0x169/0x1d0
[  293.689572][   T30]  ? __pfx_worker_thread+0x10/0x10
[  293.699994][   T30]  kthread+0x2f0/0x390
[  293.704531][   T30]  ? __pfx_worker_thread+0x10/0x10
[  293.709709][   T30]  ? __pfx_kthread+0x10/0x10
[  293.721400][   T30]  ret_from_fork+0x4b/0x80
[  293.725901][   T30]  ? __pfx_kthread+0x10/0x10
[  293.730550][   T30]  ret_from_fork_asm+0x1a/0x30
[  293.742478][   T30]  </TASK>
[  293.745885][   T30] INFO: task syz.0.486:6791 blocked for more than 144 seconds.
[  293.758702][   T30]       Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  293.766608][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  293.783017][   T30] task:syz.0.486       state:D stack:26840 pid:6791  tgid:6787  ppid:5234   flags:0x00004006
[  293.805169][   T30] Call Trace:
[  293.808524][   T30]  <TASK>
[  293.813139][   T30]  __schedule+0x1895/0x4b30
[  293.817747][   T30]  ? __pfx___schedule+0x10/0x10
[  293.826490][   T30]  ? __pfx_lock_release+0x10/0x10
[  293.833120][   T30]  ? schedule+0x90/0x320
[  293.837443][   T30]  schedule+0x14b/0x320
[  293.848088][   T30]  schedule_timeout+0xb0/0x310
[  293.856729][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[  293.866217][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  293.873860][   T30]  ? wait_for_completion+0x2fe/0x620
[  293.879739][   T30]  ? wait_for_completion+0x2fe/0x620
[  293.889090][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  293.895979][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  293.907610][   T30]  ? wait_for_completion+0x2fe/0x620
[  293.914596][   T30]  wait_for_completion+0x355/0x620
[  293.919813][   T30]  ? __pfx_wait_for_completion+0x10/0x10
[  293.929484][   T30]  ? __flush_work+0xe7/0xc50
[  293.935609][   T30]  __flush_work+0xa37/0xc50
[  293.940184][   T30]  ? __flush_work+0xe7/0xc50
[  293.949697][   T30]  ? __pfx___flush_work+0x10/0x10
[  293.957954][   T30]  ? __pfx_wq_barrier_func+0x10/0x10
[  293.969068][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  293.977703][   T30]  ? _raw_spin_lock_irq+0xdf/0x120
[  293.986868][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  293.993772][   T30]  unregister_netdevice_many_notify+0x87b/0x1da0
[  294.000176][   T30]  ? __mutex_lock+0x9a1/0xd70
[  294.008886][   T30]  ? do_raw_spin_lock+0x14f/0x370
[  294.015884][   T30]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  294.028677][   T30]  ? do_raw_spin_unlock+0x13c/0x8b0
[  294.035746][   T30]  ? __mutex_lock+0x9ab/0xd70
[  294.040530][   T30]  ? __mutex_lock+0x52a/0xd70
[  294.050020][   T30]  unregister_netdevice_queue+0x303/0x370
[  294.057437][   T30]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  294.067923][   T30]  ppp_release+0xed/0x1f0
[  294.073867][   T30]  ? __pfx_ppp_release+0x10/0x10
[  294.078888][   T30]  __fput+0x23f/0x880
[  294.089206][   T30]  task_work_run+0x24f/0x310
[  294.095491][   T30]  ? __se_sys_ioctl+0x158/0x170
[  294.100421][   T30]  ? do_syscall_64+0xf3/0x230
[  294.109195][   T30]  ? __pfx_task_work_run+0x10/0x10
[  294.117132][   T30]  get_signal+0x16ad/0x1810
[  294.126048][   T30]  ? __pfx_get_signal+0x10/0x10
[  294.130987][   T30]  arch_do_signal_or_restart+0x96/0x860
[  294.138250][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  294.148558][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  294.158715][   T30]  ? syscall_exit_to_user_mode+0xa3/0x370
[  294.168683][   T30]  syscall_exit_to_user_mode+0xc9/0x370
[  294.175964][   T30]  do_syscall_64+0x100/0x230
[  294.180668][   T30]  ? clear_bhb_loop+0x35/0x90
[  294.190022][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.197601][   T30] RIP: 0033:0x7f4eb837dff9
[  294.206051][   T30] RSP: 002b:00007f4eb91e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  294.217917][   T30] RAX: fffffffffffffff2 RBX: 00007f4eb8536058 RCX: 00007f4eb837dff9
[  294.229910][   T30] RDX: 0000000020000000 RSI: 0000000040107446 RDI: 0000000000000003
[  294.240014][   T30] RBP: 00007f4eb83f0296 R08: 0000000000000000 R09: 0000000000000000
[  294.253353][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  294.264919][   T30] R13: 0000000000000001 R14: 00007f4eb8536058 R15: 00007ffcb15604e8
[  294.277048][   T30]  </TASK>
[  294.280488][   T30] INFO: task syz.4.490:6804 blocked for more than 144 seconds.
[  294.293946][   T30]       Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  294.304236][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  294.316719][   T30] task:syz.4.490       state:D stack:26752 pid:6804  tgid:6802  ppid:5235   flags:0x00000004
[  294.329834][   T30] Call Trace:
[  294.335991][   T30]  <TASK>
[  294.338991][   T30]  __schedule+0x1895/0x4b30
[  294.348681][   T30]  ? __pfx___schedule+0x10/0x10
[  294.359002][   T30]  ? __pfx_lock_release+0x10/0x10
[  294.366840][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  294.375185][   T30]  ? schedule+0x90/0x320
[  294.379514][   T30]  schedule+0x14b/0x320
[  294.386688][   T30]  schedule_preempt_disabled+0x13/0x30
[  294.396760][   T30]  __mutex_lock+0x6a7/0xd70
[  294.406011][   T30]  ? __mutex_lock+0x52a/0xd70
[  294.410770][   T30]  ? rtnl_dumpit+0x99/0x200
[  294.418287][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  294.426091][   T30]  ? __alloc_skb+0x28f/0x440
[  294.430773][   T30]  ? __pfx___alloc_skb+0x10/0x10
[  294.438775][   T30]  ? __pfx_rtm_dump_nexthop+0x10/0x10
[  294.447017][   T30]  rtnl_dumpit+0x99/0x200
[  294.456785][   T30]  netlink_dump+0x647/0xd80
[  294.466707][   T30]  ? __pfx_netlink_dump+0x10/0x10
[  294.474572][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  294.479685][   T30]  __netlink_dump_start+0x5a2/0x790
[  294.488261][   T30]  ? __pfx_rtm_dump_nexthop+0x10/0x10
[  294.496412][   T30]  rtnetlink_rcv_msg+0xb3d/0xcf0
[  294.504259][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  294.509794][   T30]  ? __pfx_rtnl_dumpit+0x10/0x10
[  294.528801][   T30]  ? __pfx_rtm_dump_nexthop+0x10/0x10
[  294.536202][   T30]  ? ref_tracker_free+0x643/0x7e0
[  294.546422][   T30]  netlink_rcv_skb+0x1e3/0x430
[  294.551645][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  294.557287][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  294.569012][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  294.574751][   T30]  netlink_unicast+0x7f6/0x990
[  294.579595][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  294.591032][   T30]  ? __virt_addr_valid+0x183/0x530
[  294.598497][   T30]  ? __check_object_size+0x48e/0x900
[  294.609193][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  294.614474][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  294.619844][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  294.630114][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  294.635986][   T30]  __sock_sendmsg+0x221/0x270
[  294.640744][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  294.650777][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  294.657810][   T30]  __sys_sendmsg+0x292/0x380
[  294.668293][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  294.674282][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  294.680823][   T30]  ? do_syscall_64+0x100/0x230
[  294.691073][   T30]  ? do_syscall_64+0xb6/0x230
[  294.696231][   T30]  do_syscall_64+0xf3/0x230
[  294.706331][   T30]  ? clear_bhb_loop+0x35/0x90
[  294.711086][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.718796][   T30] RIP: 0033:0x7fa697b7dff9
[  294.728431][   T30] RSP: 002b:00007fa6989e0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  294.737343][   T30] RAX: ffffffffffffffda RBX: 00007fa697d35f80 RCX: 00007fa697b7dff9
[  294.750752][   T30] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[  294.761135][   T30] RBP: 00007fa697bf0296 R08: 0000000000000000 R09: 0000000000000000
[  294.775113][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  294.785540][   T30] R13: 0000000000000000 R14: 00007fa697d35f80 R15: 00007ffed9694508
[  294.799585][   T30]  </TASK>
[  294.803529][   T30] INFO: task syz.4.490:6809 blocked for more than 145 seconds.
[  294.811133][   T30]       Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  294.821710][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  294.830439][   T30] task:syz.4.490       state:D stack:27136 pid:6809  tgid:6802  ppid:5235   flags:0x00000004
[  294.850125][   T30] Call Trace:
[  294.853895][   T30]  <TASK>
[  294.856882][   T30]  __schedule+0x1895/0x4b30
[  294.866637][   T30]  ? __pfx___schedule+0x10/0x10
[  294.872744][   T30]  ? __pfx_lock_release+0x10/0x10
[  294.877852][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  294.887884][   T30]  ? schedule+0x90/0x320
[  294.894180][   T30]  schedule+0x14b/0x320
[  294.898417][   T30]  schedule_preempt_disabled+0x13/0x30
[  294.909169][   T30]  __mutex_lock+0x6a7/0xd70
[  294.916514][   T30]  ? __mutex_lock+0x52a/0xd70
[  294.923938][   T30]  ? rtnetlink_rcv_msg+0x6e6/0xcf0
[  294.929125][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  294.937128][   T30]  rtnetlink_rcv_msg+0x6e6/0xcf0
[  294.944926][   T30]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  294.950124][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  294.958681][   T30]  ? ref_tracker_free+0x643/0x7e0
[  294.967898][   T30]  netlink_rcv_skb+0x1e3/0x430
[  294.976099][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  294.984471][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  294.989868][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  295.000522][   T30]  netlink_unicast+0x7f6/0x990
[  295.008202][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  295.016809][   T30]  ? __virt_addr_valid+0x183/0x530
[  295.024782][   T30]  ? __check_object_size+0x48e/0x900
[  295.030145][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  295.039269][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.047317][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  295.055127][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.060513][   T30]  __sock_sendmsg+0x221/0x270
[  295.068550][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  295.076815][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  295.086291][   T30]  __sys_sendmsg+0x292/0x380
[  295.090956][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  295.099098][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  295.110047][   T30]  ? do_syscall_64+0x100/0x230
[  295.117634][   T30]  ? do_syscall_64+0xb6/0x230
[  295.125571][   T30]  do_syscall_64+0xf3/0x230
[  295.130144][   T30]  ? clear_bhb_loop+0x35/0x90
[  295.137676][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.146362][   T30] RIP: 0033:0x7fa697b7dff9
[  295.150841][   T30] RSP: 002b:00007fa6989bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  295.167415][   T30] RAX: ffffffffffffffda RBX: 00007fa697d36058 RCX: 00007fa697b7dff9
[  295.176607][   T30] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004
[  295.189821][   T30] RBP: 00007fa697bf0296 R08: 0000000000000000 R09: 0000000000000000
[  295.198750][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  295.213417][   T30] R13: 0000000000000000 R14: 00007fa697d36058 R15: 00007ffed9694508
[  295.225443][   T30]  </TASK>
[  295.228634][   T30] INFO: task syz.4.490:6812 blocked for more than 145 seconds.
[  295.238290][   T30]       Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  295.249756][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  295.260068][   T30] task:syz.4.490       state:D stack:25328 pid:6812  tgid:6802  ppid:5235   flags:0x00000004
[  295.276046][   T30] Call Trace:
[  295.280146][   T30]  <TASK>
[  295.287502][   T30]  __schedule+0x1895/0x4b30
[  295.295799][   T30]  ? __pfx___schedule+0x10/0x10
[  295.300734][   T30]  ? __pfx_lock_release+0x10/0x10
[  295.307514][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  295.317797][   T30]  ? schedule+0x90/0x320
[  295.323751][   T30]  schedule+0x14b/0x320
[  295.327985][   T30]  schedule_preempt_disabled+0x13/0x30
[  295.340134][   T30]  __mutex_lock+0x6a7/0xd70
[  295.346758][   T30]  ? __mutex_lock+0x52a/0xd70
[  295.353710][   T30]  ? rtnetlink_rcv_msg+0x6e6/0xcf0
[  295.358997][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  295.367679][   T30]  rtnetlink_rcv_msg+0x6e6/0xcf0
[  295.374363][   T30]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  295.380365][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  295.393562][   T30]  ? ref_tracker_free+0x643/0x7e0
[  295.398682][   T30]  netlink_rcv_skb+0x1e3/0x430
[  295.407427][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  295.415040][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  295.420465][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  295.429693][   T30]  netlink_unicast+0x7f6/0x990
[  295.436128][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  295.445272][   T30]  ? __virt_addr_valid+0x183/0x530
[  295.450473][   T30]  ? __check_object_size+0x48e/0x900
[  295.459969][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  295.468690][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.475816][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  295.480819][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.490985][   T30]  __sock_sendmsg+0x221/0x270
[  295.497531][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  295.506360][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  295.515703][   T30]  __sys_sendmsg+0x292/0x380
[  295.520389][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  295.528324][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  295.537806][   T30]  ? do_syscall_64+0x100/0x230
[  295.544266][   T30]  ? do_syscall_64+0xb6/0x230
[  295.549025][   T30]  do_syscall_64+0xf3/0x230
[  295.566693][   T30]  ? clear_bhb_loop+0x35/0x90
[  295.574996][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.580973][   T30] RIP: 0033:0x7fa697b7dff9
[  295.591431][   T30] RSP: 002b:00007fa69899e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  295.599930][   T30] RAX: ffffffffffffffda RBX: 00007fa697d36130 RCX: 00007fa697b7dff9
[  295.613885][   T30] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000007
[  295.624727][   T30] RBP: 00007fa697bf0296 R08: 0000000000000000 R09: 0000000000000000
[  295.640119][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  295.650953][   T30] R13: 0000000000000000 R14: 00007fa697d36130 R15: 00007ffed9694508
[  295.661865][   T30]  </TASK>
[  295.665025][   T30] INFO: task syz.4.490:6817 blocked for more than 145 seconds.
[  295.677148][   T30]       Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  295.686238][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  295.702891][   T30] task:syz.4.490       state:D stack:25984 pid:6817  tgid:6802  ppid:5235   flags:0x00000004
[  295.719716][   T30] Call Trace:
[  295.724761][   T30]  <TASK>
[  295.727765][   T30]  __schedule+0x1895/0x4b30
[  295.736392][   T30]  ? __pfx___schedule+0x10/0x10
[  295.742940][   T30]  ? __pfx_lock_release+0x10/0x10
[  295.748066][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  295.759718][   T30]  ? schedule+0x90/0x320
[  295.765729][   T30]  schedule+0x14b/0x320
[  295.769965][   T30]  schedule_preempt_disabled+0x13/0x30
[  295.779565][   T30]  __mutex_lock+0x6a7/0xd70
[  295.786259][   T30]  ? __mutex_lock+0x52a/0xd70
[  295.797632][   T30]  ? packet_mc_add+0x28/0x950
[  295.804009][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  295.809165][   T30]  ? __pfx___might_resched+0x10/0x10
[  295.820192][   T30]  ? __might_fault+0xaa/0x120
[  295.828523][   T30]  ? __pfx_lock_release+0x10/0x10
[  295.837589][   T30]  packet_mc_add+0x28/0x950
[  295.843772][   T30]  ? __might_fault+0xc6/0x120
[  295.848538][   T30]  packet_setsockopt+0x104f/0x1970
[  295.857697][   T30]  ? __pfx_packet_setsockopt+0x10/0x10
[  295.864864][   T30]  ? aa_sk_perm+0x96d/0xab0
[  295.869449][   T30]  ? __pfx_aa_sk_perm+0x10/0x10
[  295.883451][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  295.888576][   T30]  ? __fget_files+0x29/0x470
[  295.899589][   T30]  ? aa_sock_opt_perm+0x79/0x120
[  295.905037][   T30]  ? __pfx_packet_setsockopt+0x10/0x10
[  295.910582][   T30]  do_sock_setsockopt+0x3af/0x720
[  295.921591][   T30]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  295.927217][   T30]  ? __fget_files+0x29/0x470
[  295.938962][   T30]  ? __fget_files+0x3f3/0x470
[  295.944233][   T30]  ? __fget_files+0x29/0x470
[  295.948899][   T30]  __sys_setsockopt+0x1a2/0x250
[  295.961363][   T30]  __x64_sys_setsockopt+0xb5/0xd0
[  295.966493][   T30]  do_syscall_64+0xf3/0x230
[  295.971060][   T30]  ? clear_bhb_loop+0x35/0x90
[  295.980665][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.987151][   T30] RIP: 0033:0x7fa697b7dff9
[  295.997496][   T30] RSP: 002b:00007fa69897d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  296.008814][   T30] RAX: ffffffffffffffda RBX: 00007fa697d36208 RCX: 00007fa697b7dff9
[  296.021612][   T30] RDX: 0000000000000001 RSI: 0000000000000107 RDI: 000000000000000b
[  296.029657][   T30] RBP: 00007fa697bf0296 R08: 0000000000000010 R09: 0000000000000000
[  296.044141][   T30] R10: 0000000020000240 R11: 0000000000000246 R12: 0000000000000000
[  296.056726][   T30] R13: 0000000000000000 R14: 00007fa697d36208 R15: 00007ffed9694508
[  296.067956][   T30]  </TASK>
[  296.071145][   T30] INFO: task syz.4.490:6818 blocked for more than 146 seconds.
[  296.084051][   T30]       Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  296.094162][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  296.106393][   T30] task:syz.4.490       state:D stack:26976 pid:6818  tgid:6802  ppid:5235   flags:0x00000004
[  296.125585][   T30] Call Trace:
[  296.129755][   T30]  <TASK>
[  296.134912][   T30]  __schedule+0x1895/0x4b30
[  296.139548][   T30]  ? __pfx___schedule+0x10/0x10
[  296.148656][   T30]  ? __pfx_lock_release+0x10/0x10
[  296.155503][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  296.161055][   T30]  ? schedule+0x90/0x320
[  296.169372][   T30]  schedule+0x14b/0x320
[  296.175242][   T30]  schedule_preempt_disabled+0x13/0x30
[  296.180782][   T30]  __mutex_lock+0x6a7/0xd70
[  296.191161][   T30]  ? __mutex_lock+0x52a/0xd70
[  296.209469][   T30]  ? nl80211_pre_doit+0x5f/0x8b0
[  296.216104][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  296.230000][   T30]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  296.238443][   T30]  ? __nla_parse+0x40/0x60
[  296.248576][   T30]  nl80211_pre_doit+0x5f/0x8b0
[  296.255024][   T30]  genl_rcv_msg+0xaaa/0xec0
[  296.259602][   T30]  ? mark_lock+0x9a/0x360
[  296.268244][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  296.281451][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  296.286575][   T30]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  296.296578][   T30]  ? __pfx_nl80211_new_key+0x10/0x10
[  296.304367][   T30]  ? __pfx_nl80211_post_doit+0x10/0x10
[  296.309906][   T30]  ? __pfx___might_resched+0x10/0x10
[  296.320542][   T30]  netlink_rcv_skb+0x1e3/0x430
[  296.325807][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  296.330902][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  296.342843][   T30]  ? __netlink_deliver_tap+0x77e/0x7c0
[  296.348499][   T30]  genl_rcv+0x28/0x40
[  296.356769][   T30]  netlink_unicast+0x7f6/0x990
[  296.365013][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  296.370391][   T30]  ? __virt_addr_valid+0x183/0x530
[  296.379696][   T30]  ? __check_object_size+0x48e/0x900
[  296.386707][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  296.395592][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  296.400980][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  296.408518][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  296.417802][   T30]  __sock_sendmsg+0x221/0x270
[  296.426086][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  296.430994][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  296.441135][   T30]  __sys_sendmsg+0x292/0x380
[  296.447443][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  296.457092][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  296.465182][   T30]  ? do_syscall_64+0x100/0x230
[  296.470025][   T30]  ? do_syscall_64+0xb6/0x230
[  296.478858][   T30]  do_syscall_64+0xf3/0x230
[  296.486813][   T30]  ? clear_bhb_loop+0x35/0x90
[  296.495475][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.503059][   T30] RIP: 0033:0x7fa697b7dff9
[  296.508286][   T30] RSP: 002b:00007fa69895c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  296.521340][   T30] RAX: ffffffffffffffda RBX: 00007fa697d362e0 RCX: 00007fa697b7dff9
[  296.531156][   T30] RDX: 0000000000000000 RSI: 00000000200006c0 RDI: 000000000000000d
[  296.544567][   T30] RBP: 00007fa697bf0296 R08: 0000000000000000 R09: 0000000000000000
[  296.557314][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  296.568652][   T30] R13: 0000000000000000 R14: 00007fa697d362e0 R15: 00007ffed9694508
[  296.579553][   T30]  </TASK>
[  296.585653][   T30] INFO: task syz.3.491:6813 blocked for more than 146 seconds.
[  296.608166][   T30]       Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  296.617452][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  296.631416][   T30] task:syz.3.491       state:D stack:27160 pid:6813  tgid:6805  ppid:5239   flags:0x00004006
[  296.649216][   T30] Call Trace:
[  296.652922][   T30]  <TASK>
[  296.655910][   T30]  __schedule+0x1895/0x4b30
[  296.660488][   T30]  ? __pfx___schedule+0x10/0x10
[  296.673853][   T30]  ? __pfx_lock_release+0x10/0x10
[  296.678972][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  296.689797][   T30]  ? schedule+0x90/0x320
[  296.694512][   T30]  schedule+0x14b/0x320
[  296.698750][   T30]  schedule_preempt_disabled+0x13/0x30
[  296.709474][   T30]  __mutex_lock+0x6a7/0xd70
[  296.715224][   T30]  ? __mutex_lock+0x52a/0xd70
[  296.719979][   T30]  ? register_nexthop_notifier+0x84/0x290
[  296.731286][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  296.736415][   T30]  ? __asan_memset+0x23/0x50
[  296.741069][   T30]  register_nexthop_notifier+0x84/0x290
[  296.752478][   T30]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  296.758379][   T30]  ? __pfx_debug_check_no_locks_freed+0x10/0x10
[  296.768787][   T30]  ? __pfx_register_nexthop_notifier+0x10/0x10
[  296.776642][   T30]  ? __asan_memset+0x23/0x50
[  296.787696][   T30]  ops_init+0x31e/0x590
[  296.793620][   T30]  ? lockdep_init_map_type+0xa1/0x910
[  296.799080][   T30]  setup_net+0x287/0x9e0
[  296.807604][   T30]  ? __pfx_down_read_killable+0x10/0x10
[  296.815652][   T30]  ? __pfx_setup_net+0x10/0x10
[  296.820517][   T30]  copy_net_ns+0x33f/0x570
[  296.829013][   T30]  create_new_namespaces+0x425/0x7b0
[  296.837854][   T30]  unshare_nsproxy_namespaces+0x124/0x180
[  296.849802][   T30]  ksys_unshare+0x619/0xc10
[  296.856825][   T30]  ? __pfx_ksys_unshare+0x10/0x10
[  296.865838][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  296.873557][   T30]  ? exc_page_fault+0x590/0x8c0
[  296.878581][   T30]  __x64_sys_unshare+0x38/0x40
[  296.887493][   T30]  do_syscall_64+0xf3/0x230
[  296.894249][   T30]  ? clear_bhb_loop+0x35/0x90
[  296.899004][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.910975][   T30] RIP: 0033:0x7f82bd37dff9
[  296.925673][   T30] RSP: 002b:00007f82be1a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  296.934679][   T30] RAX: ffffffffffffffda RBX: 00007f82bd536130 RCX: 00007f82bd37dff9
[  296.948248][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068040200
[  296.956735][   T30] RBP: 00007f82bd3f0296 R08: 0000000000000000 R09: 0000000000000000
[  296.971341][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  296.979398][   T30] R13: 0000000000000001 R14: 00007f82bd536130 R15: 00007ffc4362fb58
[  296.991965][   T30]  </TASK>
[  296.995130][   T30] INFO: task syz.2.492:6811 blocked for more than 147 seconds.
[  297.007270][   T30]       Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  297.016261][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  297.032975][   T30] task:syz.2.492       state:D stack:24272 pid:6811  tgid:6807  ppid:5236   flags:0x00004006
[  297.047648][   T30] Call Trace:
[  297.050997][   T30]  <TASK>
[  297.055813][   T30]  __schedule+0x1895/0x4b30
[  297.060417][   T30]  ? __pfx___schedule+0x10/0x10
[  297.069710][   T30]  ? __pfx_lock_release+0x10/0x10
[  297.075399][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  297.080936][   T30]  ? schedule+0x90/0x320
[  297.093681][   T30]  schedule+0x14b/0x320
[  297.097998][   T30]  schedule_preempt_disabled+0x13/0x30
[  297.106507][   T30]  __mutex_lock+0x6a7/0xd70
[  297.111099][   T30]  ? __mutex_lock+0x52a/0xd70
[  297.119320][   T30]  ? nl80211_prepare_wdev_dump+0x3fb/0x6c0
[  297.128636][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  297.136543][   T30]  ? __nla_parse+0x40/0x60
[  297.141127][   T30]  nl80211_prepare_wdev_dump+0x3fb/0x6c0
[  297.151504][   T30]  nl80211_dump_scan+0x1d3/0x2340
[  297.156705][   T30]  ? __sock_sendmsg+0x221/0x270
[  297.166223][   T30]  ? ____sys_sendmsg+0x52a/0x7e0
[  297.171736][   T30]  ? __sys_sendmsg+0x292/0x380
[  297.176572][   T30]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.189202][   T30]  ? __pfx_nl80211_dump_scan+0x10/0x10
[  297.195184][   T30]  ? rcu_is_watching+0x15/0xb0
[  297.200014][   T30]  ? trace_kmalloc+0x1f/0xd0
[  297.211335][   T30]  ? __kmalloc_node_track_caller_noprof+0x242/0x440
[  297.218037][   T30]  ? __build_skb_around+0x245/0x3d0
[  297.230063][   T30]  ? __alloc_skb+0x28f/0x440
[  297.236334][   T30]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.247732][   T30]  ? __pfx___alloc_skb+0x10/0x10
[  297.253714][   T30]  genl_dumpit+0x107/0x1a0
[  297.258225][   T30]  netlink_dump+0x647/0xd80
[  297.268320][   T30]  ? __pfx_netlink_dump+0x10/0x10
[  297.274086][   T30]  ? __asan_memset+0x23/0x50
[  297.278767][   T30]  ? genl_start+0x4a8/0x6d0
[  297.290521][   T30]  __netlink_dump_start+0x5a2/0x790
[  297.296362][   T30]  genl_rcv_msg+0x88c/0xec0
[  297.300952][   T30]  ? mark_lock+0x9a/0x360
[  297.310534][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  297.316130][   T30]  ? __pfx_genl_start+0x10/0x10
[  297.321054][   T30]  ? __pfx_genl_dumpit+0x10/0x10
[  297.331746][   T30]  ? __pfx_genl_done+0x10/0x10
[  297.336626][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  297.348498][   T30]  ? __pfx_nl80211_dump_scan+0x10/0x10
[  297.354509][   T30]  ? __pfx___might_resched+0x10/0x10
[  297.359877][   T30]  netlink_rcv_skb+0x1e3/0x430
[  297.370685][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  297.376423][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  297.386862][   T30]  ? __netlink_deliver_tap+0x77e/0x7c0
[  297.392988][   T30]  genl_rcv+0x28/0x40
[  297.397041][   T30]  netlink_unicast+0x7f6/0x990
[  297.408717][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  297.414724][   T30]  ? __virt_addr_valid+0x183/0x530
[  297.419923][   T30]  ? __check_object_size+0x48e/0x900
[  297.427987][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  297.436624][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.444118][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  297.449143][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.459082][   T30]  __sock_sendmsg+0x221/0x270
[  297.467058][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  297.476484][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  297.483456][   T30]  __sys_sendmsg+0x292/0x380
[  297.488124][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  297.497407][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  297.505043][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  297.515476][   T30]  ? exc_page_fault+0x590/0x8c0
[  297.520422][   T30]  ? do_syscall_64+0xb6/0x230
[  297.528664][   T30]  do_syscall_64+0xf3/0x230
[  297.538043][   T30]  ? clear_bhb_loop+0x35/0x90
[  297.544371][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.550350][   T30] RIP: 0033:0x7f486eb7dff9
[  297.561276][   T30] RSP: 002b:00007f486f8b3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  297.569780][   T30] RAX: ffffffffffffffda RBX: 00007f486ed36058 RCX: 00007f486eb7dff9
[  297.584557][   T30] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  297.595314][   T30] RBP: 00007f486ebf0296 R08: 0000000000000000 R09: 0000000000000000
[  297.606152][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  297.616947][   T30] R13: 0000000000000001 R14: 00007f486ed36058 R15: 00007ffd4f6e0da8
[  297.627868][   T30]  </TASK>
[  297.631051][   T30] INFO: task syz.1.493:6816 blocked for more than 147 seconds.
[  297.655140][   T30]       Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  297.666283][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  297.677996][   T30] task:syz.1.493       state:D stack:26752 pid:6816  tgid:6814  ppid:5246   flags:0x00000004
[  297.691697][   T30] Call Trace:
[  297.695071][   T30]  <TASK>
[  297.698049][   T30]  __schedule+0x1895/0x4b30
[  297.713306][   T30]  ? __pfx___schedule+0x10/0x10
[  297.718260][   T30]  ? __pfx_lock_release+0x10/0x10
[  297.728571][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  297.734586][   T30]  ? schedule+0x90/0x320
[  297.739546][   T30]  schedule+0x14b/0x320
[  297.749170][   T30]  schedule_preempt_disabled+0x13/0x30
[  297.755172][   T30]  __mutex_lock+0x6a7/0xd70
[  297.759745][   T30]  ? __mutex_lock+0x52a/0xd70
[  297.772573][   T30]  ? rtnl_dumpit+0x99/0x200
[  297.777202][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  297.787441][   T30]  ? __alloc_skb+0x28f/0x440
[  297.792697][   T30]  ? __pfx___alloc_skb+0x10/0x10
[  297.797711][   T30]  ? __pfx_rtnl_fdb_dump+0x10/0x10
[  297.808087][   T30]  rtnl_dumpit+0x99/0x200
[  297.812983][   T30]  netlink_dump+0x647/0xd80
[  297.817588][   T30]  ? __pfx_netlink_dump+0x10/0x10
[  297.829625][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  297.835312][   T30]  __netlink_dump_start+0x5a2/0x790
[  297.846350][   T30]  ? __pfx_rtnl_fdb_dump+0x10/0x10
[  297.852131][   T30]  rtnetlink_rcv_msg+0xb3d/0xcf0
[  297.857157][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  297.868295][   T30]  ? __pfx_rtnl_dumpit+0x10/0x10
[  297.877863][   T30]  ? __pfx_rtnl_fdb_dump+0x10/0x10
[  297.888710][   T30]  ? ref_tracker_free+0x643/0x7e0
[  297.895455][   T30]  netlink_rcv_skb+0x1e3/0x430
[  297.900315][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  297.911001][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  297.916855][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  297.927245][   T30]  netlink_unicast+0x7f6/0x990
[  297.932526][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  297.937886][   T30]  ? __virt_addr_valid+0x183/0x530
[  297.950748][   T30]  ? __check_object_size+0x48e/0x900
[  297.959881][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  297.970307][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.976164][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  297.986281][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.992587][   T30]  __sock_sendmsg+0x221/0x270
[  297.997431][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  298.008920][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  298.014915][   T30]  __sys_sendmsg+0x292/0x380
[  298.019581][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  298.030011][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  298.037097][   T30]  ? do_syscall_64+0x100/0x230
[  298.047672][   T30]  ? do_syscall_64+0xb6/0x230
[  298.052938][   T30]  do_syscall_64+0xf3/0x230
[  298.057509][   T30]  ? clear_bhb_loop+0x35/0x90
[  298.068900][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  298.076417][   T30] RIP: 0033:0x7f41d8d7dff9
[  298.080900][   T30] RSP: 002b:00007f41d87ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  298.093597][   T30] RAX: ffffffffffffffda RBX: 00007f41d8f35f80 RCX: 00007f41d8d7dff9
[  298.104984][   T30] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003
[  298.118940][   T30] RBP: 00007f41d8df0296 R08: 0000000000000000 R09: 0000000000000000
[  298.129803][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  298.140690][   T30] R13: 0000000000000000 R14: 00007f41d8f35f80 R15: 00007ffdbf71b858
[  298.154663][   T30]  </TASK>
[  298.157759][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  298.168634][   T30] 
[  298.168634][   T30] Showing all locks held in the system:
[  298.184104][   T30] 3 locks held by kworker/0:1/9:
[  298.189114][   T30]  #0: ffff88801ac81948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  298.207711][   T30]  #1: ffffc900000e7d00 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  298.219995][   T30]  #2: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x99/0xfd0
[  298.236799][   T30] 4 locks held by kworker/u8:0/11:
[  298.243650][   T30]  #0: ffff88801baed948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  298.259229][   T30]  #1: ffffc90000107d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  298.271612][   T30]  #2: ffffffff8fcc5f50 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  298.286872][   T30]  #3: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: mpls_net_exit+0x7d/0x2a0
[  298.299307][   T30] 1 lock held by khungtaskd/30:
[  298.308257][   T30]  #0: ffffffff8e937ee0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  298.319845][   T30] 2 locks held by getty/4997:
[  298.329181][   T30]  #0: ffff88814b61d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  298.340668][   T30]  #1: ffffc90002efe2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00
[  298.355687][   T30] 5 locks held by kworker/1:5/5292:
[  298.360959][   T30] 3 locks held by kworker/u8:10/5766:
[  298.370061][   T30]  #0: ffff88814b4f4148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  298.387805][   T30]  #1: ffffc9000dd87d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  298.406883][   T30]  #2: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  298.416972][   T30] 2 locks held by syz.0.486/6791:
[  298.429151][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: ppp_release+0x87/0x1f0
[  298.439182][   T30]  #1: ffffffff8e7d1dd0 (cpu_hotplug_lock){++++}-{0:0}, at: unregister_netdevice_many_notify+0x5ea/0x1da0
[  298.456561][   T30] 2 locks held by syz.4.490/6804:
[  298.462167][   T30]  #0: ffff8880601bc6c8 (nlk_cb_mutex-ROUTE){+.+.}-{3:3}, at: __netlink_dump_start+0x119/0x790
[  298.477741][   T30]  #1: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_dumpit+0x99/0x200
[  298.489353][   T30] 1 lock held by syz.4.490/6809:
[  298.499435][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.509443][   T30] 1 lock held by syz.4.490/6812:
[  298.519716][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.529690][   T30] 1 lock held by syz.4.490/6817:
[  298.539775][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: packet_mc_add+0x28/0x950
[  298.557180][   T30] 2 locks held by syz.4.490/6818:
[  298.562725][   T30]  #0: ffffffff8fd387b0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  298.571030][   T30]  #1: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_pre_doit+0x5f/0x8b0
[  298.586251][   T30] 2 locks held by syz.3.491/6813:
[  298.591941][   T30]  #0: ffffffff8fcc5f50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  298.606484][   T30]  #1: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  298.618920][   T30] 3 locks held by syz.2.492/6811:
[  298.630196][   T30]  #0: ffffffff8fd387b0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  298.638984][   T30]  #1: ffff8880601bd6c8 (nlk_cb_mutex-GENERIC){+.+.}-{3:3}, at: __netlink_dump_start+0x119/0x790
[  298.654767][   T30]  #2: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_prepare_wdev_dump+0x3fb/0x6c0
[  298.668389][   T30] 2 locks held by syz.1.493/6816:
[  298.687628][   T30]  #0: ffff8880314b46c8 (nlk_cb_mutex-ROUTE){+.+.}-{3:3}, at: __netlink_dump_start+0x119/0x790
[  298.698564][   T30]  #1: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_dumpit+0x99/0x200
[  298.711337][   T30] 1 lock held by syz-executor/6821:
[  298.716697][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.732885][   T30] 1 lock held by syz-executor/6829:
[  298.738238][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.754418][   T30] 1 lock held by syz-executor/6832:
[  298.760352][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.774635][   T30] 1 lock held by syz-executor/6836:
[  298.779904][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.795438][   T30] 1 lock held by syz-executor/6837:
[  298.800799][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.813394][   T30] 1 lock held by syz-executor/6844:
[  298.818658][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.832127][   T30] 1 lock held by syz-executor/6852:
[  298.837484][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.855277][   T30] 1 lock held by syz-executor/6857:
[  298.860582][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.874115][   T30] 1 lock held by syz-executor/6859:
[  298.879380][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.895263][   T30] 1 lock held by syz-executor/6861:
[  298.900534][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.914660][   T30] 1 lock held by syz-executor/6871:
[  298.919920][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.936906][   T30] 1 lock held by syz-executor/6880:
[  298.942592][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.957125][   T30] 1 lock held by syz-executor/6882:
[  298.962841][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  298.980197][   T30] 1 lock held by syz-executor/6883:
[  298.985965][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  299.004860][   T30] 1 lock held by syz-executor/6887:
[  299.010214][   T30]  #0: ffffffff8fcd2a48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  299.025826][   T30] 
[  299.028223][   T30] =============================================
[  299.028223][   T30] 
[  299.039079][   T30] NMI backtrace for cpu 0
[  299.043473][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  299.053683][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  299.063782][   T30] Call Trace:
[  299.067104][   T30]  <TASK>
[  299.070068][   T30]  dump_stack_lvl+0x241/0x360
[  299.074817][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  299.080070][   T30]  ? __pfx__printk+0x10/0x10
[  299.084728][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  299.089726][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  299.095237][   T30]  ? _printk+0xd5/0x120
[  299.099447][   T30]  ? __pfx__printk+0x10/0x10
[  299.104134][   T30]  ? __wake_up_klogd+0xcc/0x110
[  299.109036][   T30]  ? __pfx__printk+0x10/0x10
[  299.113680][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  299.118761][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  299.124823][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  299.130859][   T30]  watchdog+0xff4/0x1040
[  299.135158][   T30]  ? watchdog+0x1ea/0x1040
[  299.139629][   T30]  ? __pfx_watchdog+0x10/0x10
[  299.144358][   T30]  kthread+0x2f0/0x390
[  299.148467][   T30]  ? __pfx_watchdog+0x10/0x10
[  299.153192][   T30]  ? __pfx_kthread+0x10/0x10
[  299.157827][   T30]  ret_from_fork+0x4b/0x80
[  299.162292][   T30]  ? __pfx_kthread+0x10/0x10
[  299.166923][   T30]  ret_from_fork_asm+0x1a/0x30
[  299.171752][   T30]  </TASK>
[  299.175496][   T30] Sending NMI from CPU 0 to CPUs 1:
[  299.180773][    C1] NMI backtrace for cpu 1
[  299.180789][    C1] CPU: 1 UID: 0 PID: 5292 Comm: kworker/1:5 Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  299.180810][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  299.180823][    C1] Workqueue: events nsim_dev_trap_report_work
[  299.180850][    C1] RIP: 0010:unwind_next_frame+0x55/0x22d0
[  299.180880][    C1] Code: e8 03 48 89 44 24 30 42 80 3c 20 00 74 08 48 89 df e8 af 40 bd 00 48 89 5c 24 18 4d 8b 75 48 49 8d 6d 38 48 89 e8 48 c1 e8 03 <48> 89 44 24 58 42 80 3c 20 00 74 08 48 89 ef e8 87 40 bd 00 49 8b
[  299.180895][    C1] RSP: 0018:ffffc90000a17a30 EFLAGS: 00000a02
[  299.180910][    C1] RAX: 1ffff92000142f67 RBX: ffffc90000a17b48 RCX: ffffffff917b9000
[  299.180924][    C1] RDX: dffffc0000000000 RSI: ffffffff81fe2c5f RDI: ffffc90000a17b00
[  299.180937][    C1] RBP: ffffc90000a17b38 R08: 0000000000000000 R09: ffffc90000a17bf0
[  299.180950][    C1] R10: ffffc90000a17b50 R11: ffffffff81806870 R12: dffffc0000000000
[  299.180963][    C1] R13: ffffc90000a17b00 R14: ffffffff81fe2c5f R15: 0000000000000000
[  299.180976][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  299.180991][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  299.181003][    C1] CR2: 0000001b33109ff8 CR3: 000000000e734000 CR4: 00000000003506f0
[  299.181018][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  299.181035][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  299.181046][    C1] Call Trace:
[  299.181052][    C1]  <NMI>
[  299.181060][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  299.181081][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  299.181108][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  299.181128][    C1]  ? nmi_handle+0x2a/0x5a0
[  299.181152][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  299.181180][    C1]  ? nmi_handle+0x14f/0x5a0
[  299.181198][    C1]  ? nmi_handle+0x2a/0x5a0
[  299.181217][    C1]  ? unwind_next_frame+0x55/0x22d0
[  299.181244][    C1]  ? default_do_nmi+0x63/0x160
[  299.181267][    C1]  ? exc_nmi+0x123/0x1f0
[  299.181288][    C1]  ? end_repeat_nmi+0xf/0x53
[  299.181306][    C1]  ? kasan_save_track+0x3f/0x80
[  299.181324][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  299.181349][    C1]  ? __init_begin+0x41000/0x41000
[  299.181381][    C1]  ? kasan_save_track+0x3f/0x80
[  299.181400][    C1]  ? unwind_next_frame+0x55/0x22d0
[  299.181432][    C1]  ? unwind_next_frame+0x55/0x22d0
[  299.181459][    C1]  ? unwind_next_frame+0x55/0x22d0
[  299.181485][    C1]  </NMI>
[  299.181491][    C1]  <IRQ>
[  299.181501][    C1]  ? stack_trace_save+0x118/0x1d0
[  299.181520][    C1]  ? kasan_save_track+0x3f/0x80
[  299.181537][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  299.181558][    C1]  arch_stack_walk+0x11c/0x150
[  299.181578][    C1]  ? kasan_save_track+0x3f/0x80
[  299.181597][    C1]  stack_trace_save+0x118/0x1d0
[  299.181617][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  299.181635][    C1]  ? stack_trace_save+0x118/0x1d0
[  299.181655][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  299.181678][    C1]  kasan_save_track+0x3f/0x80
[  299.181709][    C1]  ? kasan_save_track+0x3f/0x80
[  299.181751][    C1]  __kasan_kmalloc+0x98/0xb0
[  299.181769][    C1]  __kmalloc_node_track_caller_noprof+0x225/0x440
[  299.181795][    C1]  ? __alloc_skb+0x1f3/0x440
[  299.181823][    C1]  ? __alloc_skb+0x1f3/0x440
[  299.181847][    C1]  kmalloc_reserve+0x111/0x2a0
[  299.181875][    C1]  __alloc_skb+0x1f3/0x440
[  299.181903][    C1]  ? __pfx___alloc_skb+0x10/0x10
[  299.181934][    C1]  synproxy_send_client_synack+0x1ba/0xf30
[  299.181961][    C1]  ? kasan_quarantine_put+0xdc/0x230
[  299.181988][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  299.182014][    C1]  ? __pfx_synproxy_send_client_synack+0x10/0x10
[  299.182044][    C1]  ? synproxy_pernet+0x45/0x270
[  299.182071][    C1]  nft_synproxy_eval_v4+0x3ca/0x610
[  299.182099][    C1]  ? __pfx_nft_synproxy_eval_v4+0x10/0x10
[  299.182125][    C1]  ? nf_ip_checksum+0x13a/0x500
[  299.182154][    C1]  nft_synproxy_do_eval+0x362/0xa60
[  299.182182][    C1]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[  299.182206][    C1]  ? seqcount_lockdep_reader_access+0x1c1/0x220
[  299.182230][    C1]  ? __pfx_validate_chain+0x10/0x10
[  299.182253][    C1]  nft_do_chain+0x4ad/0x1da0
[  299.182286][    C1]  ? __pfx_nft_do_chain+0x10/0x10
[  299.182310][    C1]  ? __local_bh_enable_ip+0x168/0x200
[  299.182346][    C1]  ? __pfx_nf_nat_inet_fn+0x10/0x10
[  299.182377][    C1]  nft_do_chain_inet+0x418/0x6b0
[  299.182403][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  299.182426][    C1]  ? ipt_do_table+0x312/0x1860
[  299.182460][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  299.182483][    C1]  nf_hook_slow+0xc3/0x220
[  299.182505][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  299.182524][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  299.182543][    C1]  NF_HOOK+0x29e/0x450
[  299.182563][    C1]  ? NF_HOOK+0x9a/0x450
[  299.182580][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  299.182599][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  299.182621][    C1]  ? ip_rcv_finish+0x406/0x560
[  299.182640][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[  299.182659][    C1]  NF_HOOK+0x3a4/0x450
[  299.182676][    C1]  ? __lock_acquire+0x1384/0x2050
[  299.182702][    C1]  ? NF_HOOK+0x9a/0x450
[  299.182719][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  299.182736][    C1]  ? ip_rcv_core+0x801/0xd10
[  299.182755][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[  299.182778][    C1]  ? __pfx_ip_rcv+0x10/0x10
[  299.182797][    C1]  __netif_receive_skb+0x2bf/0x650
[  299.182820][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  299.182845][    C1]  ? __pfx___netif_receive_skb+0x10/0x10
[  299.182865][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  299.182890][    C1]  ? __pfx_lock_release+0x10/0x10
[  299.182915][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[  299.182946][    C1]  process_backlog+0x662/0x15b0
[  299.182970][    C1]  ? process_backlog+0x33b/0x15b0
[  299.182996][    C1]  ? __pfx_process_backlog+0x10/0x10
[  299.183017][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  299.183049][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  299.183076][    C1]  __napi_poll+0xcb/0x490
[  299.183098][    C1]  net_rx_action+0x89b/0x1240
[  299.183131][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  299.183155][    C1]  ? sched_clock+0x4a/0x70
[  299.183184][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  299.183214][    C1]  handle_softirqs+0x2c5/0x980
[  299.183239][    C1]  ? do_softirq+0x11b/0x1e0
[  299.183262][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  299.183289][    C1]  do_softirq+0x11b/0x1e0
[  299.183310][    C1]  </IRQ>
[  299.183316][    C1]  <TASK>
[  299.183322][    C1]  ? __pfx_do_softirq+0x10/0x10
[  299.183344][    C1]  ? __pfx_lockdep_softirqs_on+0x10/0x10
[  299.183371][    C1]  ? rcu_is_watching+0x15/0xb0
[  299.183390][    C1]  __local_bh_enable_ip+0x1bb/0x200
[  299.183413][    C1]  ? nsim_dev_trap_report_work+0x75d/0xaa0
[  299.183432][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  299.183454][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  299.183476][    C1]  ? nsim_dev_trap_report_work+0x6a7/0xaa0
[  299.183497][    C1]  nsim_dev_trap_report_work+0x75d/0xaa0
[  299.183523][    C1]  ? process_scheduled_works+0x976/0x1850
[  299.183547][    C1]  process_scheduled_works+0xa63/0x1850
[  299.183583][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  299.183610][    C1]  ? assign_work+0x364/0x3d0
[  299.183634][    C1]  worker_thread+0x870/0xd30
[  299.183665][    C1]  ? __kthread_parkme+0x169/0x1d0
[  299.183691][    C1]  ? __pfx_worker_thread+0x10/0x10
[  299.183714][    C1]  kthread+0x2f0/0x390
[  299.183729][    C1]  ? __pfx_worker_thread+0x10/0x10
[  299.183751][    C1]  ? __pfx_kthread+0x10/0x10
[  299.183767][    C1]  ret_from_fork+0x4b/0x80
[  299.183792][    C1]  ? __pfx_kthread+0x10/0x10
[  299.183807][    C1]  ret_from_fork_asm+0x1a/0x30
[  299.183840][    C1]  </TASK>
[  299.965078][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  299.972086][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-11517-gc4a14f6d9d17 #0
[  299.982287][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  299.992387][   T30] Call Trace:
[  299.995702][   T30]  <TASK>
[  299.998661][   T30]  dump_stack_lvl+0x241/0x360
[  300.003407][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  300.008658][   T30]  ? __pfx__printk+0x10/0x10
[  300.013319][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  300.019396][   T30]  ? vscnprintf+0x5d/0x90
[  300.023786][   T30]  panic+0x349/0x880
[  300.027736][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  300.033952][   T30]  ? __pfx_panic+0x10/0x10
[  300.038425][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  300.043859][   T30]  ? __irq_work_queue_local+0x137/0x410
[  300.049460][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  300.054876][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  300.061083][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  300.067289][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  300.073498][   T30]  watchdog+0x1033/0x1040
[  300.077879][   T30]  ? watchdog+0x1ea/0x1040
[  300.082347][   T30]  ? __pfx_watchdog+0x10/0x10
[  300.087066][   T30]  kthread+0x2f0/0x390
[  300.091170][   T30]  ? __pfx_watchdog+0x10/0x10
[  300.095901][   T30]  ? __pfx_kthread+0x10/0x10
[  300.100528][   T30]  ret_from_fork+0x4b/0x80
[  300.104993][   T30]  ? __pfx_kthread+0x10/0x10
[  300.109625][   T30]  ret_from_fork_asm+0x1a/0x30
[  300.114455][   T30]  </TASK>
[  300.117809][   T30] Kernel Offset: disabled
[  300.122172][   T30] Rebooting in 86400 seconds..