last executing test programs:

3.964163001s ago: executing program 4 (id=1584):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010080030900010073797a300000000020000000030a01010000000000000000010000000900010073797a300000000068000000060a010400000000000000000104000008000b40000000004c000480340001800b000100657874686472000024000280080001400000000c080003400000000008000440000000220500020007000000140001800c000100626974776973650004000280140000001100010000000000000000000700000a39467fa9feb2effae3adce2e0db4e69879a993"], 0xd0}}, 0x0)
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="02011400012918000e3580609f0001140000002f0600ac141430e0000003808a8972bd0b72e41082b1a3d206"], 0xdd12}], 0x1}, 0x10)

3.781054352s ago: executing program 4 (id=1587):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4400000010000305000000040000000000000000", @ANYRES32=0x0, @ANYBLOB="1546010000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r4], 0x44}}, 0x20008040)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000001180)={<r5=>r3, 0x7, 0x3, 0xffffffffffff8000})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0xa, &(0x7f00000011c0)=@raw=[@call={0x85, 0x0, 0x0, 0x51}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}}], &(0x7f00000005c0)='GPL\x00', 0x5, 0xd1, &(0x7f00000002c0)=""/209, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002000)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r6, 0x0, 0xd}, 0x18)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe(&(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
socket$kcm(0x1e, 0x1, 0x0)
readv(r7, &(0x7f0000000100)=[{&(0x7f0000000180)=""/4096, 0x1000}], 0x1)
write$cgroup_int(r8, &(0x7f0000000140), 0xfffffdef)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000300)={0xffffffffffffffff, 0x20, &(0x7f00000002c0)={0x0, 0x0, 0x0, &(0x7f0000002b00)=""/171, 0xab}}, 0x10)

3.567524339s ago: executing program 1 (id=1589):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000200)={0x10000802, 0x0, 0x40000, 0x40000}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f00000002c0)={0x0, &(0x7f0000000280)})
sendto$inet6(r0, &(0x7f0000000280)="bc387e1700b9c403e972e6ca3acadc863d2c1ad3b223a062f16fed908bff1aee7f94481d81936ec5", 0x28, 0x2400c000, &(0x7f0000000500)={0xa, 0x4e20, 0x8001, @private0}, 0x1c)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_ADD(r5, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)={0x24, 0x0, 0x0, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4400000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800e000100697036677265746170000000080002800400120008000a00", @ANYRES32=r6, @ANYBLOB="c77f06003602dbb53e106d9b13606f"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x803, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x403, 0x70bd25, 0x0, {0x0, 0x0, 0x0, 0x0, 0x500}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000804}, 0x8000)
r8 = socket(0x1, 0x803, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'erspan0\x00'}, @IFLA_MASTER={0x8, 0xa, r9}]}, 0x3c}, 0x1, 0x0, 0x0, 0x600}, 0x24044800)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0xb8}}, 0x20050800)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000005200011904000000000000001c"], 0x28}}, 0x0)
r10 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x1}, 0x28)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r10, 0x20, &(0x7f0000000100)={0x0, 0x0, <r11=>0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xf, 0xf, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x583e}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x4, 0x0, 0x0, 0x40f00, 0x1b, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94)
r12 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_generic(r12, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000002d00090027bd7000fedbdf250500000008000a"], 0x1c}}, 0x20000086)

3.011167895s ago: executing program 1 (id=1596):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000200)={0x10000802, 0x0, 0x40000, 0x40000}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f00000002c0)={0x0, &(0x7f0000000280)})
sendto$inet6(r0, &(0x7f0000000280)="bc387e1700b9c403e972e6ca3acadc863d2c1ad3b223a062f16fed908bff1aee7f94481d81936ec5", 0x28, 0x2400c000, &(0x7f0000000500)={0xa, 0x4e20, 0x8001, @private0}, 0x1c)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_ADD(r5, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)={0x24, 0x0, 0x0, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4400000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800e000100697036677265746170000000080002800400120008000a00", @ANYRES32=r6, @ANYBLOB="c77f06003602dbb53e106d9b13606f"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x403, 0x70bd25, 0x0, {0x0, 0x0, 0x0, 0x0, 0x500}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000804}, 0x8000)
r9 = socket(0x1, 0x803, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'erspan0\x00'}, @IFLA_MASTER={0x8, 0xa, r10}]}, 0x3c}, 0x1, 0x0, 0x0, 0x600}, 0x24044800)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0xb8}}, 0x20050800)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000005200011904000000000000001c"], 0x28}}, 0x0)
r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x1}, 0x28)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r11, 0x20, &(0x7f0000000100)={0x0, 0x0, <r12=>0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xf, 0xf, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x583e}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x4, 0x0, 0x0, 0x40f00, 0x1b, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94)
r13 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_generic(r13, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000002d00090027bd7000fedbdf250500000008000a"], 0x1c}}, 0x20000086)

2.789622097s ago: executing program 4 (id=1598):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x7, 0x8000, 0x1}, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x4, @local, 'bridge_slave_1\x00'}}, 0x1e)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x5, 0x8, 0x40, 0x42}, 0x48)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)={0xcc, 0x3e, 0x107, 0xfffffffe, 0xfffffffc, {0x4, 0x7c}, [@nested={0xc, 0x117, 0x0, 0x1, [@typed={0x8, 0x8, 0x0, 0x0, @ipv4=@multicast1}]}, @generic="cc37389ee118a1ac750f6b09432d2c5d29a2013be9d942ae8a855d41c1f65a77706036ef8db7f91f7d84731200ab5842875d1a2752bd2c9863d82f118e4211e1fce50f44a45829499209153660bb6e158b480707c03175fe900a869d7124075f0ab3ef3ba2eaeb3e9f976872a0375c5cad9d04da498d4e2c0dc991a571eaa774947480a3a05fccd9218cde508e0cf76365ae3e6d3184f06137931b7c6c40125c17d2c0d3d2efea0b4c"]}, 0xcc}, 0x1, 0x0, 0x0, 0x4000c000}, 0xc000)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22, 0x6}, 0x1c)
listen(r1, 0x3)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f00000002c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x65, 0x0, 0xf, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x1, 0xffff}}}}}}, 0x0)
r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r3, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x3, 0xfd}, 0x8)
write$rfkill(r3, &(0x7f0000000000)={0x0, 0x2, 0xff, 0x0, 0x1}, 0x8)
syz_emit_ethernet(0xc4, &(0x7f0000000480)={@broadcast, @link_local, @void, {@ipv4={0x800, @tcp={{0x1c, 0x4, 0x0, 0x0, 0xb6, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local, {[@ra={0x94, 0x4}, @cipso={0x86, 0x56, 0x0, [{0x7, 0x6, "f6162a05"}, {0x1, 0x7, "31bf50d98c"}, {0x7, 0xe, "a7fbd22b83ebefab66f6cbfc"}, {0x4, 0x11, "6b6256a50d6922ed2031853ce8dd62"}, {0x0, 0xa, "2dc1a7c2cab28dd1"}, {0x6, 0xe, "4fcac25a109fb1a037305b7d"}, {0x2, 0xc, "4b8dd90277c845924759"}]}]}}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x2, 0x0, 0x0, 0x1000, {[@timestamp={0x8, 0xa, 0x4}]}}, {"83c28bcb1ad8b8d36292345e51d7592f06063c3723788e3752d56c88a684d46b5445f44c1e54"}}}}}}, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x101801, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, 0x0)
ioctl$TUNSETDEBUG(r4, 0x400454c9, 0xffffffffffffffff)
ioctl$TUNSETLINK(r4, 0x400454cd, 0x10e)
r5 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x14, 0x14, 0x1, 0x0, 0x0, {0x2c}}, 0x14}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
write$rfkill(r3, &(0x7f0000000340)={0x6, 0x0, 0x3, 0x0, 0x1}, 0x8)
setsockopt$MRT6_DEL_MFC(0xffffffffffffffff, 0x29, 0xcd, &(0x7f0000000380)={{0xa, 0x4e20, 0x8, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4}, {0xa, 0x4e21, 0xb11c, @private0={0xfc, 0x0, '\x00', 0x1}, 0x2}, 0x0, {[0x40002, 0x8, 0x0, 0x0, 0x100, 0x4, 0x80, 0xffffffff]}}, 0x5c)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)

2.491123269s ago: executing program 1 (id=1601):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4020000)
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'xfrm0\x00'})
socket$kcm(0x10, 0x2, 0x10)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x18, &(0x7f0000000080)=0x5, 0x4)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f00000001c0)=0x2, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100), 0x10)
mmap$xdp(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x300000c, 0x11, 0xffffffffffffffff, 0x180000000)
r4 = socket$xdp(0x2c, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="4499bc0bdfc9036976f7aac1b0b10108000300", @ANYRES32, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20004841}, 0x80)
r7 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000003e00)={0xffffffffffffffff, 0xffffffffffffffff, 0x11, 0x0, @void}, 0x10)
r8 = accept$netrom(r2, &(0x7f0000003e40)={{0x3, @default}, [@default, @default, @default, @default, @remote, @default, @bcast]}, &(0x7f0000000200)=0x48)
sendmmsg$unix(r3, &(0x7f0000004140)=[{{&(0x7f00000037c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003b40)=[{&(0x7f0000003840)="46b5a705237b724832ff14bdb5c17c98268822317bc1b7b0ac52c18865add4673a2aa3fb3c3689d3ac187f89781c0a50440195b0925aa4f0", 0x38}, {&(0x7f0000003880)="e963adc386e86e097a97c5627b54847b0c31cacc9b3a0423dda2e9a2de9c22843a555b14e0d7621dee54b8510f274fdbdc3cee189f789401aedbc006b320311321c381770c918a731efd90a74b4aeca26949", 0x52}, {0x0}, {&(0x7f0000003ac0)="e29b86bdbbf945bf07ef0578dd6d50312bfc0d077cbd", 0x16}, {&(0x7f0000003b00)="a6dcabcafe40aef371a75969b7d9e96404", 0x11}], 0x5, &(0x7f0000003bc0)=ANY=[@ANYBLOB="1c0000000000000001f300000002000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r3, @ANYRES32=r0, @ANYBLOB="30000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r3, @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32, @ANYRES32=r4], 0x80, 0x20000000}}, {{&(0x7f0000003d00)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003dc0)=[{&(0x7f0000003d80)="910c9710412474", 0x7}], 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000a50000100000001000000", @ANYRES32=r1, @ANYRES32=r3, @ANYBLOB="24000000000000000100000001000000", @ANYRES32=r5, @ANYRES32=r3, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r2, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r7, @ANYRES32=r8, @ANYRES32=r3, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYRES32=r3, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00'], 0xa8, 0x40000}}, {{&(0x7f0000004080)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000004100), 0x0, 0x0, 0x0, 0x880}}], 0x3, 0x40080)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r9, {0xffff, 0xb}, {}, {0xa, 0x2}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0x10, 0x1, 0x0, 0x0, {{0x9, 0x0, 0x1}, "01"}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)

2.407972648s ago: executing program 4 (id=1603):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0xc, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x201}, [@call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.344280495s ago: executing program 0 (id=1604):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
getsockname$packet(r1, 0x0, &(0x7f0000000180))
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000640)={{{@in=@broadcast, @in=@local, 0x4e21, 0x6, 0x4e21, 0x0, 0x2, 0x10, 0xa0, 0x29}, {0x6, 0x9, 0x4, 0x2, 0x2, 0x8001, 0x0, 0x6}, {0x7fffffffffffffff, 0x8, 0x7ff, 0x42}, 0x7fff, 0x0, 0x0, 0x0, 0x1, 0x2}, {{@in6=@remote, 0x4d5, 0x32}, 0x0, @in6=@empty, 0x3503, 0x0, 0x2, 0x40, 0x6, 0x5aa, 0x3be}}, 0xe8)
setsockopt$inet_tcp_int(r0, 0x6, 0x24, &(0x7f0000000280)=0x1, 0x4)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0)

2.272227469s ago: executing program 3 (id=1605):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x600, 0x8}, [@call={0x85, 0x0, 0x0, 0x14}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.191936541s ago: executing program 0 (id=1607):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x9c, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x44, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4041}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)={0xc0, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa, 0x0, 0x5}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x2c, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @ipv4={'\x00', '\xff\xff', @local}}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @mcast2}]}]}, 0xc0}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@ipv4_newrule={0x28, 0x20, 0x301, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7, 0x2}, [@FRA_TUN_ID={0xc, 0xc, 0x1, 0x0, 0x9}]}, 0x28}}, 0x44004)
bpf$MAP_CREATE(0x0, &(0x7f0000003940)=@base={0x21, 0x0, 0x0, 0x40000000, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x18}, 0x48)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=@newlink={0x3c, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9801, 0x1303}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @multicast1}]}}}]}, 0x3c}}, 0x0)

2.168994715s ago: executing program 3 (id=1608):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000080000000000000000000000850000004100000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70200000000000062000000860000009500000000000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet6(0xa, 0x80002, 0x0)
r4 = socket(0x23, 0x5, 0x0)
ioctl$sock_qrtr_TIOCINQ(r4, 0x541b, &(0x7f0000000000))
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x4e20, 0x2b, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x39}}}, 0x1c)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='ext4_fc_commit_stop\x00', r5, 0x0, 0x2}, 0x18)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
vmsplice(r7, &(0x7f0000000340)=[{&(0x7f0000002000)="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", 0xfe41}, {&(0x7f0000000300)="9b364acaa018d77f8143825708d8", 0x1}], 0x1000000000000029, 0xa)
ioctl$TUNSETVNETLE(r7, 0x400454dc, &(0x7f0000000140)=0x1)
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
write$tun(r6, &(0x7f0000000280)={@val={0x800e, 0x6005}, @void, @eth={@broadcast, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0xe000, 0x0, 0x4, 0x0, @empty, @empty}, {0x4e22, 0x0, 0x8}}}}}}, 0x2e)
setsockopt$sock_linger(r3, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='/proc///\x00\x82q\xee\x00!\xbd\xc2\x98#YP\xee\x9c2G\xf0\x81x\x97'}, 0x30)
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r9, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r10 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
close(r10)
setsockopt$packet_int(r4, 0x107, 0xe, &(0x7f0000000040)=0x2dbf6c21, 0x4)
sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)

1.824909517s ago: executing program 4 (id=1609):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x24, r1, 0x1, 0x70bd25, 0x25dfdbf8, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x404}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x24004899}, 0x40000c0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0xeffde9855acee6f2}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x78, r1, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_ADDR={0x30, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x8}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x4}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x14, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}]}, 0x78}, 0x1, 0x0, 0x0, 0x86}, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r2, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
unshare(0x20000400)
r3 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r3, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r4 = socket$unix(0x1, 0x2, 0x0)
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000780), r6)
sendmsg$NLBL_MGMT_C_ADD(r6, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7], 0x14}}, 0x0)
bind$nfc_llcp(r5, &(0x7f0000001040)={0x27, 0x0, 0xffffffffffffffff, 0x5, 0x2, 0x0, "d32984bd1ca44c066af5160e961701a077609475b78411e88509de050000000000f2170e65e3f50327e422000000000000000000001200000000001900", 0x3c}, 0x60)
bind$nfc_llcp(r5, &(0x7f00000000c0)={0x27, 0x0, 0x1, 0x4, 0x0, 0x1, "baae115c7dad488702b535116fad55baf63cdd52fc30106310abb622a1c3c01c38c04df6b99e65c39c5759b069d6e6d9589e5f2348878af41e8d00", 0x36}, 0x60)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r8, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
sendto$inet6(r8, &(0x7f0000000600)="d7612d", 0x3, 0x5, &(0x7f0000000100)={0xa, 0x0, 0x3, @loopback, 0x8}, 0x1c)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r8, 0x84, 0x19, 0x0, 0x0)
sendmmsg(r4, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
r9 = socket$unix(0x1, 0x2, 0x0)
sendmsg$unix(r9, &(0x7f0000000840)={&(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e, 0x0, 0x0, &(0x7f0000000440)=ANY=[], 0xa, 0x8800}, 0x4000080)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
getsockopt$XDP_MMAP_OFFSETS(r10, 0x11b, 0x1, &(0x7f0000000100), &(0x7f0000000280)=0x80)
close(r2)
socket(0x2, 0x80805, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @rand_addr=0x640100ff, 0x4e20, 0x3, 'lblcr\x00', 0x1, 0xa7e, 0x70}, 0x2c)

1.724323953s ago: executing program 1 (id=1611):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000a8a100000000000007010000f8ffe8ffb702000008000000b7030000000000838500000071009f400400009500000000000000304e72289319dea25a95f7755d379f0c4529ba97f0a1e4e99c5cf74856576dd6e6d7ae6e44b3adc0a01fce84d52636b5de40ba644d8c181502aee10df4305ff27d95c4d10180000000000000585a3f57c1df2a240a444e7b693ebee7e282a750117c99824391a2d6e10bcba854bcb1a92c9622e4d61722fd6b77d5ff4944d4915cb519514d09d4875e0428a44a26a72228c2f005b79f9b21bf027279d4ad428628796a71055fc5ee1f8c57c89ecc89fbcfe42b81bfcd3d0b8adbd7b87b9062be35c2160d9cb2d2f8221e7da74700"/309], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='rpcgss_svc_unwrap_failed\x00', r0, 0x0, 0xfff7fffffffffffc}, 0xfffffffffffffee5)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
recvmsg(r1, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000001880)}, 0x2)
connect$packet(r1, &(0x7f0000000200)={0x1f, 0xf8, 0x0, 0x1, 0x82}, 0x14)
r2 = accept4$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000001c0)=0x14, 0x800)
setsockopt$packet_buf(r2, 0x107, 0x1, &(0x7f00000002c0)="889c29d5efbaf3a2d9e01a4ae26efc751f827c32148a344dddd5539d7ba2578f20e4d76113579dea47d5fca1", 0x2c)
shutdown(r1, 0x1)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000817000001"], 0x50)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000180)={'syztnl1\x00', &(0x7f0000000100)={'ip6_vti0\x00', 0x0, 0x4, 0xfc, 0x6, 0x8, 0x10, @private0, @local, 0x700, 0x40, 0x5, 0x9}})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@gettaction={0x30, 0x32, 0xe72c5f922f23cad9, 0x70bd27, 0x25dfdbf7, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0xffffa8b4}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0x30}, 0x1, 0x0, 0x0, 0xc844}, 0x4000000)
r4 = socket$rds(0x15, 0x5, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x0, 0xf}, {0xffff, 0xffff}, {0x1, 0x8}}, [@TCA_RATE={0x6, 0x5, {0xf8, 0x6}}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x100}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0xce}, @qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x5f, 0x8}}}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0xc5e9}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
r7 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001803000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
sendmsg$TCPDIAG_GETSOCK(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000002c0)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x22004014}, 0x800)
r10 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000180), 0x4)
r11 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r11, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000002c0)="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", 0x1c0}, {&(0x7f0000000a40)="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", 0x275}], 0x2}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.545052633s ago: executing program 0 (id=1612):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000007c0)={'xfrm0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newqdisc={0x84, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x50}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x54, 0x2, {{}, [@TCA_NETEM_LOSS={0x18, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x37, 0x2, {0xe, 0x10, 0xbb2f, 0x7}}]}, @TCA_NETEM_RATE={0x14, 0xd}, @TCA_NETEM_CORRUPT={0xc, 0x2}]}}}]}, 0x84}, 0x1, 0x0, 0x8000000}, 0x0)

1.396447333s ago: executing program 0 (id=1614):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0xfffffe8b, &(0x7f0000000140)={&(0x7f0000000380)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x0, {}, [{0x50, 0x1, [@m_vlan={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0x64}}, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
recvmmsg(r1, &(0x7f0000000c00)=[{{0x0, 0x0, 0x0}, 0x71}, {{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000540)=""/1, 0x1}], 0x1}, 0x4}], 0x2, 0x40008140, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x22, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e24, @local}, 0x10)
sendmmsg$inet(r1, &(0x7f0000002300)=[{{&(0x7f0000000000)={0x2, 0x4e24, @empty}, 0x10, &(0x7f0000000100)=[{&(0x7f00000002c0)="e04476fb", 0x4}], 0x1}}], 0x1, 0x2000c000)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000240)={{0x2, 0x4e23, @loopback}, {0x307, @multicast}, 0x0, {0x2, 0x4e24, @multicast2}, 'team_slave_1\x00'})
socket$alg(0x26, 0x5, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r1}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='percpu_alloc_percpu\x00'}, 0x10)
unshare(0x2c020400)

1.327790923s ago: executing program 2 (id=1615):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4020000)
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'xfrm0\x00'})
socket$kcm(0x10, 0x2, 0x10)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x18, &(0x7f0000000080)=0x5, 0x4)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f00000001c0)=0x2, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100), 0x10)
mmap$xdp(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x300000c, 0x11, 0xffffffffffffffff, 0x180000000)
r4 = socket$xdp(0x2c, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_DEAUTHENTICATE(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="4499bc0bdfc9036976f7aac1b0b10108000300", @ANYRES32=r6, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20004841}, 0x80)
r7 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000003e00)={0xffffffffffffffff, 0xffffffffffffffff, 0x11, 0x0, @void}, 0x10)
r8 = accept$netrom(r2, &(0x7f0000003e40)={{0x3, @default}, [@default, @default, @default, @default, @remote, @default, @bcast]}, &(0x7f0000000200)=0x48)
sendmmsg$unix(r3, &(0x7f0000004140)=[{{&(0x7f00000037c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003b40)=[{&(0x7f0000003840)="46b5a705237b724832ff14bdb5c17c98268822317bc1b7b0ac52c18865add4673a2aa3fb3c3689d3ac187f89781c0a50440195b0925aa4f0", 0x38}, {&(0x7f0000003880)="e963adc386e86e097a97c5627b54847b0c31cacc9b3a0423dda2e9a2de9c22843a555b14e0d7621dee54b8510f274fdbdc3cee189f789401aedbc006b320311321c381770c918a731efd90a74b4aeca26949", 0x52}, {0x0}, {&(0x7f0000003ac0)="e29b86bdbbf945bf07ef0578dd6d50312bfc0d077cbd", 0x16}, {&(0x7f0000003b00)="a6dcabcafe40aef371a75969b7d9e96404", 0x11}], 0x5, &(0x7f0000003bc0)=ANY=[@ANYBLOB="1c0000000000000001f300000002000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r3, @ANYRES32=r0, @ANYBLOB="30000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r3, @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32, @ANYRES32=r4], 0x80, 0x20000000}}, {{&(0x7f0000003d00)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003dc0)=[{&(0x7f0000003d80)="910c9710412474", 0x7}], 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000a50000100000001000000", @ANYRES32=r1, @ANYRES32=r3, @ANYBLOB="24000000000000000100000001000000", @ANYRES32=r5, @ANYRES32=r3, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r2, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r7, @ANYRES32=r8, @ANYRES32=r3, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYRES32=r3, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00'], 0xa8, 0x40000}}, {{&(0x7f0000004080)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000004100), 0x0, 0x0, 0x0, 0x880}}], 0x3, 0x40080)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r9, {0xffff, 0xb}, {}, {0xa, 0x2}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0x10, 0x1, 0x0, 0x0, {{0x9, 0x0, 0x1}, "01"}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)

1.233909066s ago: executing program 3 (id=1616):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="9feb010018000000000000005d0000005d000000020000009e45d13617ee707f00000000000000000100000007001c000204000004000000020000000000000005000000020000000000001205000000060000000200000f010000000200000037dd00000200000001"], 0x0, 0x7a, 0x0, 0x0, 0x0, 0x10000}, 0x28)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000325bd7000fbdbdf25050000000c000980080002000300000028000280080001"], 0x46}}, 0x4004)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newtaction={0xa0, 0x30, 0x51b, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_skbmod={0x5c, 0x1, 0x0, 0x0, {{0xb}, {0x30, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24, 0x2, {{0x7fffffff}}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x6}]}, {0x4, 0x14}, {0xc}, {0xc, 0x6}}}, @m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0xa0}}, 0x14008004)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000a80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r1, 0x0, 0xd}, 0x18)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=ANY=[@ANYBLOB="180100002e00010000000000fcdbdf250801f2800c00180008ac0f00000000"], 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0)

1.197674692s ago: executing program 2 (id=1617):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
socket$kcm(0x10, 0x2, 0x4)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000040)={0x50, 0x3, 0x60})
write$bt_hci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="5300030002"], 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r1, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$VFAT_IOCTL_READDIR_BOTH(r2, 0x82307201, &(0x7f00000005c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140), 0xffffffffffffffff)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt(r4, 0x84, 0x80, &(0x7f0000000040)='\x00\x00\x00\x00\t\x00\x00\x00', 0x8)
sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)={0x4c, r3, 0x511, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x38, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0xd769}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_bond\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @initdev={0xac, 0x1e, 0x0, 0x0}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40850}, 0x0)
ioctl$F2FS_IOC_ABORT_ATOMIC_WRITE(r0, 0xf505, 0x0)

1.112148805s ago: executing program 2 (id=1618):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x8}, [@call={0x85, 0x0, 0x0, 0x8b}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (fail_nth: 1)

1.111210899s ago: executing program 3 (id=1619):
socket$inet(0xa, 0x801, 0x801e)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x770, 0x0, 0xbabd}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(0xffffffffffffffff, 0x0, 0x4000)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000300)=[@in={0x2, 0x4e24, @loopback}]}, &(0x7f0000000540)=0x10) (fail_nth: 64)

816.101893ms ago: executing program 2 (id=1620):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$inet6(0xa, 0x3, 0x5)
sendmmsg(r1, &(0x7f0000001500)=[{{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @dev={0xfe, 0x80, '\x00', 0x31}, 0x4, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="28000000000000002900000002"], 0x28}}], 0x1, 0x40)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="c4000000190001000000000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000087000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000daf2cfab0000000000000000000000000000000000fbffffffffffffff00000000000000000000000000000400000000000000000200b889f30a35406fe200"], 0xc4}}, 0x2c000010)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b800000019000100ffff3f0000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000087000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbffffffffffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800adcfc9055ff509b4fb398a646a7298ad4ef616968df231f8040ecd1352d6d1816678e986aad89657b59fb11a5dcab387ca4d69aa69d385a2308"], 0xb8}}, 0x0)
setsockopt$MRT6_INIT(r1, 0x29, 0xc8, &(0x7f0000000000), 0x4)

478.385608ms ago: executing program 2 (id=1621):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x301, 0x0, 0x0, 0x0, 0x10001}, [@call={0x85, 0x0, 0x0, 0x18}]}, &(0x7f0000000080)='syzkaller\x00'}, 0x94)

476.820297ms ago: executing program 3 (id=1622):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000200)={0x10000802, 0x0, 0x40000, 0x40000}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f00000002c0)={0x0, &(0x7f0000000280)})
sendto$inet6(r0, &(0x7f0000000280)="bc387e1700b9c403e972e6ca3acadc863d2c1ad3b223a062f16fed908bff1aee7f94481d81936ec5", 0x28, 0x2400c000, &(0x7f0000000500)={0xa, 0x4e20, 0x8001, @private0}, 0x1c)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_ADD(r5, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)={0x24, 0x0, 0x0, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4400000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800e000100697036677265746170000000080002800400120008000a00", @ANYRES32=r6, @ANYBLOB="c77f06003602dbb53e106d9b13606f"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r7 = socket(0x1, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x403, 0x70bd25, 0x0, {0x0, 0x0, 0x0, 0x0, 0x500}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000804}, 0x8000)
r9 = socket(0x1, 0x803, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'erspan0\x00'}, @IFLA_MASTER={0x8, 0xa, r10}]}, 0x3c}, 0x1, 0x0, 0x0, 0x600}, 0x24044800)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000070000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000002f2c00128014000180090001006c6173740000000004000280140020800c000100636f756e74657200040002800800034000000106140000001000010000000000000000000084000a69131182d9068eaea9fc3b3ea1850fa6f8ebc5bb1faaeccbb4bd061e6aead72cfd67eecfca756abf70492aaf0f4fda572fcd6ea1b500b215c85089c8abdb1ac9e5e82d3eff"], 0xb8}}, 0x20050800)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000005200011904000000000000001c"], 0x28}}, 0x0)
r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x1}, 0x28)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r11, 0x20, &(0x7f0000000100)={0x0, 0x0, <r12=>0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xf, 0xf, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x583e}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x4, 0x0, 0x0, 0x40f00, 0x1b, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94)
r13 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_generic(r13, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000002d00090027bd7000fedbdf250500000008000a"], 0x1c}}, 0x20000086)

359.076677ms ago: executing program 0 (id=1623):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000200)="580000001400192340834b80040d8c560a0677bc45ff81050000000fff0058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010005081000418e00000004fcff", 0x58}], 0x1)

303.922488ms ago: executing program 2 (id=1624):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
syz_emit_ethernet(0x0, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000280)={<r1=>r0})
sendmsg$IPVS_CMD_DEL_SERVICE(r1, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000300)={0xd4, 0x0, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1000000}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x69}, @IPVS_CMD_ATTR_SERVICE={0x2c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x28, 0x10}}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}]}, @IPVS_CMD_ATTR_DEST={0x2c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x6}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x6}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x84}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffffff81}, @IPVS_CMD_ATTR_DEST={0x34, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e20}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e20}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x8001}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x10000}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x40814}, 0x4000000)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000080)={r3, @in6={{0xa, 0x4e22, 0x6, @empty, 0x1}}, 0x6, 0x2}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000059c0), 0xffffffffffffffff)
gettid()
socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x48241, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r5, 0x107, 0x12, 0x0, 0x0)
socket$kcm(0x2, 0xa, 0x2)
write$tun(r4, &(0x7f0000000200)=ANY=[@ANYBLOB="70000000000000fd5f"], 0x2e)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x50)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x5, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r6, @ANYBLOB="08000100", @ANYRES32=r7], 0x90}}, 0x0)

303.65925ms ago: executing program 1 (id=1625):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0xf, &(0x7f0000000cc0)=ANY=[@ANYBLOB="1800000003000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000140000007b030000000000008500000083000000790900000000000055090100000000009500000000000000bf91000000000000b70200000200000b8500000069000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

177.068299ms ago: executing program 4 (id=1626):
pipe(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x29}, 0x94)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f0000004240)=0x40000006, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="b40800000000000073113300000000008510000002000000b7000000000000009500c200000000009500001200000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x70)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000140)="0d2192106b6324038a09815d5fd4e299f2ca374bf41b07b4c09a4fb89a0c2d1ca0dac314818e7e9f50fd8da639aaab3a86674e8719b9404aef7842672969589f92e51c71c3e9592e777647dce5c662773c262c624d3635c1d3c2e106cc6ec65ff23d3f4637cde68b1200020214cb093d3cb520048ef6c47c0892877badb365a92a2a2b8f4e803a6c25e39357480271fd53962b462458af776be527d225ed18dcd71411d421070668298faae82aa9687d753b83a4e1c04ece9d2dab419f00ccce3cfdba53a0512b6b5aad3c11c64df582c099657db7bb8bb55ce89c51ce5eefbb62154fa8c9706186e8eb9ef65a93e771f833662a2a2ee7b31ede", 0xfa, 0x80, &(0x7f0000000240)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, 0x80000000}, 0x1c)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1e, 0x1, 0x0)
shutdown(r2, 0x2)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
write(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000001080)=ANY=[@ANYRES32, @ANYBLOB="29634b2ac35d30e3d53b956541bf7855693309efe8ceba5cca01a27dd356f02162e5f0b7fe97378e0ab7a69f2bb881ff664d1f27e3ea38b381fcd2e66e6dfead997aafa0a1b713a8686e0edb0d51f6773a75d1dd13c4b3c2aa063d4063ed6b4b6bf9d057d2988ce04e20fa608fcd44f78a6276fda4d9f8498ff0e7cf7982f3bf28b8976b5d3adb920b5985fe75091721a0482da704308c6864ff5fff76c05b8ccb9f9a557ae84699397c1cc69d919b6806a66c5ce7cc2f05fba3e72648da252f80448f1eca3fc1131b6c489f", @ANYBLOB='%\x00\x00\x00\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB, @ANYRES32, @ANYRESDEC=r1, @ANYRES64=0x0], 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r7, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r7, &(0x7f0000000000)="2e000400010002", 0x7)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x50, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_BROADCAST={0xa}, @IFLA_NET_NS_PID={0x8, 0x13, r6}, @IFLA_MTU={0x8, 0x4, 0xffe1}]}, 0x50}}, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r8, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030080e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000040}, 0x24004000)

175.01967ms ago: executing program 3 (id=1627):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4020000)
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'xfrm0\x00'})
socket$kcm(0x10, 0x2, 0x10)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x18, &(0x7f0000000080)=0x5, 0x4)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f00000001c0)=0x2, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100), 0x10)
mmap$xdp(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x300000c, 0x11, 0xffffffffffffffff, 0x180000000)
r4 = socket$xdp(0x2c, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_DEAUTHENTICATE(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="4499bc0bdfc9036976f7aac1b0b10108000300", @ANYRES32=r6, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20004841}, 0x80)
r7 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000003e00)={0xffffffffffffffff, 0xffffffffffffffff, 0x11, 0x0, @void}, 0x10)
r8 = accept$netrom(r2, &(0x7f0000003e40)={{0x3, @default}, [@default, @default, @default, @default, @remote, @default, @bcast]}, &(0x7f0000000200)=0x48)
sendmmsg$unix(r3, &(0x7f0000004140)=[{{&(0x7f00000037c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003b40)=[{&(0x7f0000003840)="46b5a705237b724832ff14bdb5c17c98268822317bc1b7b0ac52c18865add4673a2aa3fb3c3689d3ac187f89781c0a50440195b0925aa4f0", 0x38}, {&(0x7f0000003880)="e963adc386e86e097a97c5627b54847b0c31cacc9b3a0423dda2e9a2de9c22843a555b14e0d7621dee54b8510f274fdbdc3cee189f789401aedbc006b320311321c381770c918a731efd90a74b4aeca26949", 0x52}, {0x0}, {&(0x7f0000003ac0)="e29b86bdbbf945bf07ef0578dd6d50312bfc0d077cbd", 0x16}, {&(0x7f0000003b00)="a6dcabcafe40aef371a75969b7d9e96404", 0x11}], 0x5, &(0x7f0000003bc0)=ANY=[@ANYBLOB="1c0000000000000001f300000002000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r3, @ANYRES32=r0, @ANYBLOB="30000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r3, @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32, @ANYRES32=r4], 0x80, 0x20000000}}, {{&(0x7f0000003d00)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003dc0)=[{&(0x7f0000003d80)="910c9710412474", 0x7}], 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000a50000100000001000000", @ANYRES32=r1, @ANYRES32=r3, @ANYBLOB="24000000000000000100000001000000", @ANYRES32=r5, @ANYRES32=r3, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r2, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r7, @ANYRES32=r8, @ANYRES32=r3, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYRES32=r3, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00'], 0xa8, 0x40000}}, {{&(0x7f0000004080)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000004100), 0x0, 0x0, 0x0, 0x880}}], 0x3, 0x40080)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r9, {0xffff, 0xb}, {}, {0xa, 0x2}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0x10, 0x1, 0x0, 0x0, {{0x9, 0x0, 0x1}, "01"}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)

94.796014ms ago: executing program 1 (id=1628):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="88010000"], 0x188}}, 0x0)
r1 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010102}, 0xfffffffffffffd25)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r3=>0x0})
r4 = socket(0x10, 0x803, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="4400000010000104fcffffff8000000000000000", @ANYRES32=0x0, @ANYBLOB="0315000000000000140012800b0001006d61637365630000feff018008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x44}}, 0x0)

0s ago: executing program 0 (id=1629):
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x10)
connect$can_bcm(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4c00000002060108000034e400000000000000020500010006000000050004000000fe000900020073797a3100000000050005000200000012000300686173683a6e65742c706f727400"], 0x4c}}, 0x2)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000020000000000000001000079100000000000007a00e0ff000000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x2, 0xc4, &(0x7f00000002c0)=""/196}, 0x80)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="54000000090601080000000000000000050000000900020073797a310000000005000100070000002c000780060004404e21000005000700e30000000c00018008000140850101010c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

kernel console output (not intermixed with test programs):

.861588][ T9341] erspan0: entered allmulticast mode
[  209.392108][ T9357] netlink: 'syz.3.892': attribute type 3 has an invalid length.
[  209.418324][ T9357] netlink: 'syz.3.892': attribute type 1 has an invalid length.
[  209.623062][ T6000] IPVS: starting estimator thread 0...
[  209.714921][ T9366] IPVS: using max 22 ests per chain, 52800 per kthread
[  209.743388][ T9374] __nla_validate_parse: 2 callbacks suppressed
[  209.743406][ T9374] netlink: 8 bytes leftover after parsing attributes in process `syz.3.895'.
[  209.895357][ T9378] netlink: 8 bytes leftover after parsing attributes in process `syz.2.900'.
[  210.080566][ T9386] netlink: 8 bytes leftover after parsing attributes in process `syz.4.901'.
[  210.106323][ T9386] netlink: 4 bytes leftover after parsing attributes in process `syz.4.901'.
[  210.125434][ T9386] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[  210.662469][ T9406] netlink: 85 bytes leftover after parsing attributes in process `syz.3.909'.
[  211.078352][ T9420] netlink: 12 bytes leftover after parsing attributes in process `syz.0.913'.
[  211.141288][ T9420] FAULT_INJECTION: forcing a failure.
[  211.141288][ T9420] name failslab, interval 1, probability 0, space 0, times 0
[  211.187558][ T9420] CPU: 0 UID: 0 PID: 9420 Comm: syz.0.913 Not tainted syzkaller #0 PREEMPT(full) 
[  211.187589][ T9420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  211.187601][ T9420] Call Trace:
[  211.187609][ T9420]  <TASK>
[  211.187619][ T9420]  dump_stack_lvl+0x189/0x250
[  211.187649][ T9420]  ? __pfx____ratelimit+0x10/0x10
[  211.187669][ T9420]  ? __pfx_dump_stack_lvl+0x10/0x10
[  211.187691][ T9420]  ? __pfx__printk+0x10/0x10
[  211.187731][ T9420]  should_fail_ex+0x414/0x560
[  211.187761][ T9420]  should_failslab+0xa8/0x100
[  211.187791][ T9420]  __kmalloc_cache_noprof+0x70/0x3d0
[  211.187816][ T9420]  ? sctp_add_bind_addr+0x8c/0x370
[  211.187849][ T9420]  sctp_add_bind_addr+0x8c/0x370
[  211.187882][ T9420]  sctp_copy_local_addr_list+0x30b/0x4e0
[  211.187914][ T9420]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  211.187941][ T9420]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  211.187982][ T9420]  ? sctp_v6_is_any+0x64/0x80
[  211.188004][ T9420]  ? sctp_copy_one_addr+0x93/0x360
[  211.188037][ T9420]  sctp_bind_addr_copy+0xb3/0x3c0
[  211.188066][ T9420]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  211.188097][ T9420]  sctp_connect_new_asoc+0x2e0/0x690
[  211.188124][ T9420]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  211.188145][ T9420]  ? __local_bh_enable_ip+0x12d/0x1c0
[  211.188173][ T9420]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  211.188196][ T9420]  ? security_sctp_bind_connect+0x7e/0x2e0
[  211.188226][ T9420]  sctp_sendmsg+0x155c/0x2810
[  211.188264][ T9420]  ? __pfx_sctp_sendmsg+0x10/0x10
[  211.188291][ T9420]  ? aa_sk_perm+0x81e/0x950
[  211.188325][ T9420]  ? __pfx_aa_sk_perm+0x10/0x10
[  211.188357][ T9420]  ? sock_rps_record_flow+0x19/0x410
[  211.188388][ T9420]  ? inet_sendmsg+0x2f4/0x370
[  211.188424][ T9420]  __sock_sendmsg+0x19c/0x270
[  211.188457][ T9420]  __sys_sendto+0x3bd/0x520
[  211.188480][ T9420]  ? __pfx___sys_sendto+0x10/0x10
[  211.188497][ T9420]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  211.188536][ T9420]  ? __fget_files+0x3a0/0x420
[  211.188568][ T9420]  ? ksys_write+0x22a/0x250
[  211.188597][ T9420]  ? __pfx_ksys_write+0x10/0x10
[  211.188619][ T9420]  ? rcu_is_watching+0x15/0xb0
[  211.188644][ T9420]  __x64_sys_sendto+0xde/0x100
[  211.188670][ T9420]  do_syscall_64+0xfa/0x3b0
[  211.188689][ T9420]  ? lockdep_hardirqs_on+0x9c/0x150
[  211.188708][ T9420]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.188726][ T9420]  ? clear_bhb_loop+0x60/0xb0
[  211.188749][ T9420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.188766][ T9420] RIP: 0033:0x7f268fb8ebe9
[  211.188783][ T9420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.188799][ T9420] RSP: 002b:00007f26909ee038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  211.188819][ T9420] RAX: ffffffffffffffda RBX: 00007f268fdc5fa0 RCX: 00007f268fb8ebe9
[  211.188832][ T9420] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000003
[  211.188843][ T9420] RBP: 00007f26909ee090 R08: 0000200000000080 R09: 000000000000001c
[  211.188856][ T9420] R10: 0000000000000051 R11: 0000000000000246 R12: 0000000000000002
[  211.188867][ T9420] R13: 00007f268fdc6038 R14: 00007f268fdc5fa0 R15: 00007ffed1551d08
[  211.188900][ T9420]  </TASK>
[  211.237150][ T9428] netlink: 'syz.3.916': attribute type 1 has an invalid length.
[  211.327219][ T9436] netlink: 'syz.0.918': attribute type 1 has an invalid length.
[  211.508427][ T9442] batman_adv: batadv0: Adding interface: dummy0
[  211.538615][ T9442] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  211.568648][ T9442] batman_adv: batadv0: Interface activated: dummy0
[  211.583382][ T9428] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  211.700780][ T9447] netlink: 12 bytes leftover after parsing attributes in process `syz.4.919'.
[  211.762123][ T9439] veth3: entered promiscuous mode
[  211.872254][ T9436] 8021q: adding VLAN 0 to HW filter on device bond2
[  211.880152][ T9441] erspan0: entered allmulticast mode
[  211.922342][ T9441] bond2: (slave erspan0): making interface the new active one
[  211.932440][ T9441] bond2: (slave erspan0): Enslaving as an active interface with an up link
[  211.987302][ T5879] Bluetooth: hci1: command 0x0406 tx timeout
[  211.992130][ T5880] Bluetooth: hci0: command 0x0c1a tx timeout
[  211.995941][ T5879] Bluetooth: hci3: command 0x0406 tx timeout
[  211.999881][ T5877] Bluetooth: hci2: command 0x0406 tx timeout
[  212.380995][ T9469] netlink: 104 bytes leftover after parsing attributes in process `syz.0.925'.
[  212.407488][ T9469] netlink: 32 bytes leftover after parsing attributes in process `syz.0.925'.
[  212.418360][ T9474] netlink: 'syz.4.926': attribute type 32 has an invalid length.
[  212.458262][ T9474] netlink: 8 bytes leftover after parsing attributes in process `syz.4.926'.
[  212.501707][ T9474] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  213.099081][ T9487] pim6reg: entered allmulticast mode
[  213.140773][ T9490] pim6reg: left allmulticast mode
[  213.258369][ T9505] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.295030][ T9482] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  213.353909][ T9505] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.414298][ T9505] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.478983][ T9505] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.579823][   T13] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  213.604989][   T13] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  213.632315][   T13] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  213.656402][ T6181] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  213.667325][ T9517] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  213.675542][ T9517] syzkaller0: entered promiscuous mode
[  213.681248][ T9517] syzkaller0: entered allmulticast mode
[  213.694325][ T9517] tipc: Resetting bearer <eth:syzkaller0>
[  213.728609][ T9517] tipc: Resetting bearer <eth:syzkaller0>
[  213.751540][ T9517] tipc: Disabling bearer <eth:syzkaller0>
[  214.026748][ T9532] veth0_vlan: mtu less than device minimum
[  214.294057][ T9513] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  214.385094][ T9513] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  214.443891][ T9536] Bluetooth: MGMT ver 1.23
[  214.447875][ T9513] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  214.454409][ T9513] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  214.487946][ T9513] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  214.493940][ T9513] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  214.519710][ T9538] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  214.522820][ T9513] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  214.539453][ T9513] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  214.561056][ T9513] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  214.567561][ T9513] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  215.269903][ T9561] geneve2: entered promiscuous mode
[  215.442117][ T9576] netlink: 'syz.4.956': attribute type 1 has an invalid length.
[  215.530648][ T9580] bond4: entered promiscuous mode
[  215.535942][ T9583] __nla_validate_parse: 5 callbacks suppressed
[  215.535962][ T9583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.957'.
[  215.556273][ T9580] bond4: entered allmulticast mode
[  215.562462][ T9580] 8021q: adding VLAN 0 to HW filter on device bond4
[  215.578168][ T9582] netlink: 'syz.2.959': attribute type 1 has an invalid length.
[  215.643045][ T9576] 8021q: adding VLAN 0 to HW filter on device bond5
[  215.652099][ T9576] bond5: entered promiscuous mode
[  215.657793][ T9576] bond5: entered allmulticast mode
[  215.664025][ T9576] bond4: (slave bond5): Enslaving as a backup interface with a down link
[  215.708461][ T9589] FAULT_INJECTION: forcing a failure.
[  215.708461][ T9589] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  215.726112][ T9590] netlink: 'syz.2.961': attribute type 1 has an invalid length.
[  215.747658][ T9590] netlink: 'syz.2.961': attribute type 1 has an invalid length.
[  215.764832][ T9590] netlink: 'syz.2.961': attribute type 1 has an invalid length.
[  215.780448][ T9589] CPU: 0 UID: 0 PID: 9589 Comm: syz.0.960 Not tainted syzkaller #0 PREEMPT(full) 
[  215.780477][ T9589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  215.780490][ T9589] Call Trace:
[  215.780498][ T9589]  <TASK>
[  215.780506][ T9589]  dump_stack_lvl+0x189/0x250
[  215.780536][ T9589]  ? __pfx____ratelimit+0x10/0x10
[  215.780557][ T9589]  ? __pfx_dump_stack_lvl+0x10/0x10
[  215.780579][ T9589]  ? __pfx__printk+0x10/0x10
[  215.780608][ T9589]  ? fs_reclaim_acquire+0x7d/0x100
[  215.780655][ T9589]  should_fail_ex+0x414/0x560
[  215.780687][ T9589]  prepare_alloc_pages+0x213/0x610
[  215.780716][ T9589]  __alloc_frozen_pages_noprof+0x123/0x370
[  215.780741][ T9589]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  215.780773][ T9589]  ? policy_nodemask+0x27c/0x720
[  215.780807][ T9589]  alloc_pages_mpol+0x232/0x4a0
[  215.780842][ T9589]  vma_alloc_folio_noprof+0xe4/0x200
[  215.780872][ T9589]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  215.780914][ T9589]  folio_prealloc+0x30/0x180
[  215.780944][ T9589]  do_wp_page+0x1231/0x5800
[  215.780996][ T9589]  ? __pfx_do_wp_page+0x10/0x10
[  215.781016][ T9589]  ? do_raw_spin_lock+0x121/0x290
[  215.781044][ T9589]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  215.781080][ T9589]  __handle_mm_fault+0x1033/0x5440
[  215.781126][ T9589]  ? __pfx___handle_mm_fault+0x10/0x10
[  215.781173][ T9589]  ? find_vma+0xe7/0x160
[  215.781196][ T9589]  ? __pfx_find_vma+0x10/0x10
[  215.781218][ T9589]  ? __up_read+0x280/0x680
[  215.781244][ T9589]  handle_mm_fault+0x40a/0x8e0
[  215.781283][ T9589]  do_user_addr_fault+0x764/0x1390
[  215.781333][ T9589]  exc_page_fault+0x76/0xf0
[  215.781354][ T9589]  asm_exc_page_fault+0x26/0x30
[  215.781372][ T9589] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  215.781395][ T9589] Code: 09 04 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  215.781412][ T9589] RSP: 0018:ffffc9001c357ca8 EFLAGS: 00050202
[  215.781431][ T9589] RAX: ffffffff84c82001 RBX: 0000000000100004 RCX: 00000000000c6244
[  215.781445][ T9589] RDX: 0000000000000000 RSI: ffff888045a39dc0 RDI: 000020000003a000
[  215.781458][ T9589] RBP: dffffc0000000000 R08: 0000000000000003 R09: 0000000000000004
[  215.781475][ T9589] R10: dffffc0000000000 R11: ffffed1008b60000 R12: 0000200000100244
[  215.781489][ T9589] R13: 00007ffffffff000 R14: ffff888045a00000 R15: 0000200000000240
[  215.781513][ T9589]  ? __pfx__copy_to_user+0x1/0x10
[  215.781546][ T9589]  _copy_to_user+0x8a/0xb0
[  215.781571][ T9589]  map_get_next_key+0x48b/0x5f0
[  215.781598][ T9589]  ? map_get_next_key+0x269/0x5f0
[  215.781635][ T9589]  __sys_bpf+0x65e/0x870
[  215.781661][ T9589]  ? __pfx___sys_bpf+0x10/0x10
[  215.781702][ T9589]  ? ksys_write+0x22a/0x250
[  215.781730][ T9589]  ? __pfx_ksys_write+0x10/0x10
[  215.781764][ T9589]  __x64_sys_bpf+0x7c/0x90
[  215.781788][ T9589]  do_syscall_64+0xfa/0x3b0
[  215.781807][ T9589]  ? lockdep_hardirqs_on+0x9c/0x150
[  215.781825][ T9589]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.781844][ T9589]  ? clear_bhb_loop+0x60/0xb0
[  215.781869][ T9589]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.781884][ T9589] RIP: 0033:0x7f268fb8ebe9
[  215.781899][ T9589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.781915][ T9589] RSP: 002b:00007f26909cd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  215.781934][ T9589] RAX: ffffffffffffffda RBX: 00007f268fdc6090 RCX: 00007f268fb8ebe9
[  215.781947][ T9589] RDX: 0000000000000020 RSI: 0000200000000040 RDI: 0000000000000004
[  215.781959][ T9589] RBP: 00007f26909cd090 R08: 0000000000000000 R09: 0000000000000000
[  215.781970][ T9589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  215.781980][ T9589] R13: 00007f268fdc6128 R14: 00007f268fdc6090 R15: 00007ffed1551d08
[  215.782015][ T9589]  </TASK>
[  215.804795][ T9590] netlink: 'syz.2.961': attribute type 1 has an invalid length.
[  215.976272][ T9594] netlink: 4 bytes leftover after parsing attributes in process `syz.1.963'.
[  215.986065][ T9590] netlink: 'syz.2.961': attribute type 1 has an invalid length.
[  216.191534][ T9590] netlink: 'syz.2.961': attribute type 1 has an invalid length.
[  216.216480][ T9590] netlink: 'syz.2.961': attribute type 1 has an invalid length.
[  216.224229][ T9590] netlink: 'syz.2.961': attribute type 1 has an invalid length.
[  216.407635][ T9603] netlink: 8 bytes leftover after parsing attributes in process `syz.0.967'.
[  216.425744][ T9603] netlink: 8 bytes leftover after parsing attributes in process `syz.0.967'.
[  216.517071][ T9603] veth0: entered promiscuous mode
[  216.531538][ T9613] netlink: 8 bytes leftover after parsing attributes in process `syz.4.970'.
[  216.572431][ T9613] netlink: 20 bytes leftover after parsing attributes in process `syz.4.970'.
[  216.592576][ T9613] netlink: 4 bytes leftover after parsing attributes in process `syz.4.970'.
[  216.593592][ T9617] FAULT_INJECTION: forcing a failure.
[  216.593592][ T9617] name failslab, interval 1, probability 0, space 0, times 0
[  216.639271][ T9617] CPU: 1 UID: 0 PID: 9617 Comm: syz.2.971 Not tainted syzkaller #0 PREEMPT(full) 
[  216.639301][ T9617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  216.639312][ T9617] Call Trace:
[  216.639320][ T9617]  <TASK>
[  216.639329][ T9617]  dump_stack_lvl+0x189/0x250
[  216.639358][ T9617]  ? __pfx____ratelimit+0x10/0x10
[  216.639379][ T9617]  ? __pfx_dump_stack_lvl+0x10/0x10
[  216.639403][ T9617]  ? __pfx__printk+0x10/0x10
[  216.639448][ T9617]  should_fail_ex+0x414/0x560
[  216.639481][ T9617]  should_failslab+0xa8/0x100
[  216.639510][ T9617]  __kmalloc_cache_noprof+0x70/0x3d0
[  216.639535][ T9617]  ? sctp_add_bind_addr+0x8c/0x370
[  216.639569][ T9617]  sctp_add_bind_addr+0x8c/0x370
[  216.639611][ T9617]  sctp_copy_local_addr_list+0x30b/0x4e0
[  216.639644][ T9617]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  216.639671][ T9617]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  216.639700][ T9617]  ? sctp_v6_is_any+0x64/0x80
[  216.639722][ T9617]  ? sctp_copy_one_addr+0x93/0x360
[  216.639756][ T9617]  sctp_bind_addr_copy+0xb3/0x3c0
[  216.639785][ T9617]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  216.639816][ T9617]  sctp_connect_new_asoc+0x2e0/0x690
[  216.639843][ T9617]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  216.639862][ T9617]  ? __local_bh_enable_ip+0x12d/0x1c0
[  216.639891][ T9617]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  216.639914][ T9617]  ? security_sctp_bind_connect+0x7e/0x2e0
[  216.639942][ T9617]  sctp_sendmsg+0x155c/0x2810
[  216.639981][ T9617]  ? __pfx_sctp_sendmsg+0x10/0x10
[  216.640009][ T9617]  ? aa_sk_perm+0x81e/0x950
[  216.640043][ T9617]  ? __pfx_aa_sk_perm+0x10/0x10
[  216.640076][ T9617]  ? sock_rps_record_flow+0x19/0x410
[  216.640105][ T9617]  ? inet_sendmsg+0x2f4/0x370
[  216.640137][ T9617]  __sock_sendmsg+0x19c/0x270
[  216.640170][ T9617]  __sys_sendto+0x3bd/0x520
[  216.640194][ T9617]  ? __pfx___sys_sendto+0x10/0x10
[  216.640211][ T9617]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  216.640249][ T9617]  ? __fget_files+0x3a0/0x420
[  216.640281][ T9617]  ? ksys_write+0x22a/0x250
[  216.640310][ T9617]  ? __pfx_ksys_write+0x10/0x10
[  216.640331][ T9617]  ? rcu_is_watching+0x15/0xb0
[  216.640358][ T9617]  __x64_sys_sendto+0xde/0x100
[  216.640383][ T9617]  do_syscall_64+0xfa/0x3b0
[  216.640401][ T9617]  ? lockdep_hardirqs_on+0x9c/0x150
[  216.640419][ T9617]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.640437][ T9617]  ? clear_bhb_loop+0x60/0xb0
[  216.640460][ T9617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.640476][ T9617] RIP: 0033:0x7f523238ebe9
[  216.640495][ T9617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.640511][ T9617] RSP: 002b:00007f52331d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  216.640532][ T9617] RAX: ffffffffffffffda RBX: 00007f52325c5fa0 RCX: 00007f523238ebe9
[  216.640545][ T9617] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000003
[  216.640556][ T9617] RBP: 00007f52331d5090 R08: 0000200000000080 R09: 000000000000001c
[  216.640569][ T9617] R10: 0000000000000051 R11: 0000000000000246 R12: 0000000000000002
[  216.640580][ T9617] R13: 00007f52325c6038 R14: 00007f52325c5fa0 R15: 00007fff1ed28988
[  216.640625][ T9617]  </TASK>
[  216.996177][ T9613] geneve3: entered promiscuous mode
[  217.051182][ T9623] syzkaller1: entered promiscuous mode
[  217.057634][ T9623] syzkaller1: entered allmulticast mode
[  217.113420][ T9631] netlink: 12 bytes leftover after parsing attributes in process `syz.0.975'.
[  217.157283][ T9626] netlink: 144 bytes leftover after parsing attributes in process `syz.1.973'.
[  217.298654][ T9638] ip6gretap0: entered promiscuous mode
[  217.358022][ T9640] netlink: 21 bytes leftover after parsing attributes in process `syz.0.978'.
[  217.411945][ T9642] FAULT_INJECTION: forcing a failure.
[  217.411945][ T9642] name failslab, interval 1, probability 0, space 0, times 0
[  217.449853][ T9642] CPU: 1 UID: 0 PID: 9642 Comm: syz.1.979 Not tainted syzkaller #0 PREEMPT(full) 
[  217.449883][ T9642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  217.449894][ T9642] Call Trace:
[  217.449903][ T9642]  <TASK>
[  217.449912][ T9642]  dump_stack_lvl+0x189/0x250
[  217.449942][ T9642]  ? __pfx____ratelimit+0x10/0x10
[  217.449968][ T9642]  ? __pfx_dump_stack_lvl+0x10/0x10
[  217.449991][ T9642]  ? __pfx__printk+0x10/0x10
[  217.450026][ T9642]  ? __pfx___might_resched+0x10/0x10
[  217.450044][ T9642]  ? fs_reclaim_acquire+0x7d/0x100
[  217.450079][ T9642]  should_fail_ex+0x414/0x560
[  217.450112][ T9642]  should_failslab+0xa8/0x100
[  217.450142][ T9642]  __kmalloc_cache_noprof+0x70/0x3d0
[  217.450166][ T9642]  ? nft_netdev_hook_alloc+0x1f0/0x530
[  217.450201][ T9642]  nft_netdev_hook_alloc+0x1f0/0x530
[  217.450242][ T9642]  nft_chain_parse_hook+0x97b/0x13e0
[  217.450285][ T9642]  ? __pfx_nft_chain_parse_hook+0x10/0x10
[  217.450320][ T9642]  ? nft_pernet+0x23/0x240
[  217.450355][ T9642]  nf_tables_newchain+0xf95/0x2900
[  217.450400][ T9642]  ? __pfx_nf_tables_newchain+0x10/0x10
[  217.450466][ T9642]  ? nfnl_pernet+0x23/0x240
[  217.450505][ T9642]  ? __nla_parse+0x40/0x60
[  217.450540][ T9642]  nfnetlink_rcv+0x1132/0x2520
[  217.450608][ T9642]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  217.450665][ T9642]  ? ref_tracker_free+0x63a/0x7d0
[  217.450728][ T9642]  ? __netlink_deliver_tap+0x807/0x850
[  217.450747][ T9642]  ? netlink_deliver_tap+0x2e/0x1b0
[  217.450789][ T9642]  netlink_unicast+0x82c/0x9e0
[  217.450829][ T9642]  ? __pfx_netlink_unicast+0x10/0x10
[  217.450859][ T9642]  ? netlink_sendmsg+0x642/0xb30
[  217.450876][ T9642]  ? skb_put+0x11b/0x210
[  217.450900][ T9642]  netlink_sendmsg+0x805/0xb30
[  217.450932][ T9642]  ? __pfx_netlink_sendmsg+0x10/0x10
[  217.450956][ T9642]  ? aa_sock_msg_perm+0xf1/0x1d0
[  217.450978][ T9642]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  217.450999][ T9642]  ? __pfx_netlink_sendmsg+0x10/0x10
[  217.451020][ T9642]  __sock_sendmsg+0x219/0x270
[  217.451052][ T9642]  ____sys_sendmsg+0x505/0x830
[  217.451084][ T9642]  ? __pfx_____sys_sendmsg+0x10/0x10
[  217.451118][ T9642]  ? import_iovec+0x74/0xa0
[  217.451146][ T9642]  ___sys_sendmsg+0x21f/0x2a0
[  217.451172][ T9642]  ? __pfx____sys_sendmsg+0x10/0x10
[  217.451258][ T9642]  ? __fget_files+0x2a/0x420
[  217.451274][ T9642]  ? __fget_files+0x3a0/0x420
[  217.451305][ T9642]  __x64_sys_sendmsg+0x19b/0x260
[  217.451331][ T9642]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  217.451366][ T9642]  ? __pfx_ksys_write+0x10/0x10
[  217.451389][ T9642]  ? rcu_is_watching+0x15/0xb0
[  217.451415][ T9642]  ? do_syscall_64+0xbe/0x3b0
[  217.451441][ T9642]  do_syscall_64+0xfa/0x3b0
[  217.451460][ T9642]  ? lockdep_hardirqs_on+0x9c/0x150
[  217.451478][ T9642]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.451498][ T9642]  ? clear_bhb_loop+0x60/0xb0
[  217.451523][ T9642]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.451563][ T9642] RIP: 0033:0x7fb1d838ebe9
[  217.451582][ T9642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.451598][ T9642] RSP: 002b:00007fb1d9126038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  217.451620][ T9642] RAX: ffffffffffffffda RBX: 00007fb1d85c5fa0 RCX: 00007fb1d838ebe9
[  217.451642][ T9642] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000004
[  217.451654][ T9642] RBP: 00007fb1d9126090 R08: 0000000000000000 R09: 0000000000000000
[  217.451666][ T9642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  217.451678][ T9642] R13: 00007fb1d85c6038 R14: 00007fb1d85c5fa0 R15: 00007fff7db40448
[  217.451713][ T9642]  </TASK>
[  217.893305][ T9649] tap0: tun_chr_ioctl cmd 1074025677
[  217.899228][ T9649] tap0: linktype set to 270
[  218.314984][ T9668] FAULT_INJECTION: forcing a failure.
[  218.314984][ T9668] name failslab, interval 1, probability 0, space 0, times 0
[  218.345726][ T9668] CPU: 1 UID: 0 PID: 9668 Comm: syz.1.989 Not tainted syzkaller #0 PREEMPT(full) 
[  218.345755][ T9668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  218.345766][ T9668] Call Trace:
[  218.345774][ T9668]  <TASK>
[  218.345782][ T9668]  dump_stack_lvl+0x189/0x250
[  218.345811][ T9668]  ? __pfx____ratelimit+0x10/0x10
[  218.345831][ T9668]  ? __pfx_dump_stack_lvl+0x10/0x10
[  218.345854][ T9668]  ? __pfx__printk+0x10/0x10
[  218.345894][ T9668]  ? __pfx___might_resched+0x10/0x10
[  218.345913][ T9668]  ? fs_reclaim_acquire+0x7d/0x100
[  218.345947][ T9668]  should_fail_ex+0x414/0x560
[  218.345980][ T9668]  should_failslab+0xa8/0x100
[  218.346009][ T9668]  __kmalloc_noprof+0xcb/0x4f0
[  218.346034][ T9668]  ? ethnl_default_set_doit+0x168/0x890
[  218.346062][ T9668]  ethnl_default_set_doit+0x168/0x890
[  218.346085][ T9668]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  218.346109][ T9668]  ? genl_family_rcv_msg_attrs_parse+0x212/0x2a0
[  218.346143][ T9668]  genl_family_rcv_msg_doit+0x215/0x300
[  218.346177][ T9668]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  218.346219][ T9668]  ? bpf_lsm_capable+0x9/0x20
[  218.346243][ T9668]  ? security_capable+0x7e/0x2e0
[  218.346279][ T9668]  genl_rcv_msg+0x60e/0x790
[  218.346313][ T9668]  ? __pfx_genl_rcv_msg+0x10/0x10
[  218.346336][ T9668]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  218.346360][ T9668]  ? __asan_memcpy+0x40/0x70
[  218.346381][ T9668]  ? __pfx_ref_tracker_free+0x10/0x10
[  218.346419][ T9668]  netlink_rcv_skb+0x205/0x470
[  218.346436][ T9668]  ? __lock_acquire+0xab9/0xd20
[  218.346463][ T9668]  ? __pfx_genl_rcv_msg+0x10/0x10
[  218.346490][ T9668]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  218.346533][ T9668]  ? down_read+0x1ad/0x2e0
[  218.346559][ T9668]  genl_rcv+0x28/0x40
[  218.346581][ T9668]  netlink_unicast+0x82c/0x9e0
[  218.346618][ T9668]  ? __pfx_netlink_unicast+0x10/0x10
[  218.346646][ T9668]  ? netlink_sendmsg+0x642/0xb30
[  218.346662][ T9668]  ? skb_put+0x11b/0x210
[  218.346687][ T9668]  netlink_sendmsg+0x805/0xb30
[  218.346719][ T9668]  ? __pfx_netlink_sendmsg+0x10/0x10
[  218.346743][ T9668]  ? aa_sock_msg_perm+0xf1/0x1d0
[  218.346771][ T9668]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  218.346791][ T9668]  ? __pfx_netlink_sendmsg+0x10/0x10
[  218.346812][ T9668]  __sock_sendmsg+0x219/0x270
[  218.346844][ T9668]  ____sys_sendmsg+0x505/0x830
[  218.346883][ T9668]  ? __pfx_____sys_sendmsg+0x10/0x10
[  218.346917][ T9668]  ? import_iovec+0x74/0xa0
[  218.346946][ T9668]  ___sys_sendmsg+0x21f/0x2a0
[  218.346973][ T9668]  ? __pfx____sys_sendmsg+0x10/0x10
[  218.347041][ T9668]  ? __fget_files+0x2a/0x420
[  218.347059][ T9668]  ? __fget_files+0x3a0/0x420
[  218.347089][ T9668]  __x64_sys_sendmsg+0x19b/0x260
[  218.347116][ T9668]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  218.347151][ T9668]  ? __pfx_ksys_write+0x10/0x10
[  218.347174][ T9668]  ? rcu_is_watching+0x15/0xb0
[  218.347200][ T9668]  ? do_syscall_64+0xbe/0x3b0
[  218.347226][ T9668]  do_syscall_64+0xfa/0x3b0
[  218.347245][ T9668]  ? lockdep_hardirqs_on+0x9c/0x150
[  218.347264][ T9668]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.347283][ T9668]  ? clear_bhb_loop+0x60/0xb0
[  218.347307][ T9668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.347326][ T9668] RIP: 0033:0x7fb1d838ebe9
[  218.347344][ T9668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.347361][ T9668] RSP: 002b:00007fb1d9126038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  218.347383][ T9668] RAX: ffffffffffffffda RBX: 00007fb1d85c5fa0 RCX: 00007fb1d838ebe9
[  218.347396][ T9668] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000014
[  218.347408][ T9668] RBP: 00007fb1d9126090 R08: 0000000000000000 R09: 0000000000000000
[  218.347420][ T9668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  218.347432][ T9668] R13: 00007fb1d85c6038 R14: 00007fb1d85c5fa0 R15: 00007fff7db40448
[  218.347468][ T9668]  </TASK>
[  219.248811][ T9688] tap0: tun_chr_ioctl cmd 1074025677
[  219.254361][ T9688] tap0: linktype set to 270
[  219.608742][ T9697] 8021q: adding VLAN 0 to HW filter on device bond1
[  219.760730][ T9704] bond1: (slave ip6gretap1): making interface the new active one
[  219.809026][ T9704] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  219.894387][ T9697] veth3: entered promiscuous mode
[  219.907176][ T9697] bond1: (slave veth3): Enslaving as an active interface with a down link
[  219.955081][ T9718] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0
[  219.957685][ T9710] bond1: (slave erspan0): Enslaving as an active interface with an up link
[  220.260376][ T9729] bridge0: port 1(vlan3) entered blocking state
[  220.282671][ T9729] bridge0: port 1(vlan3) entered disabled state
[  220.303501][ T9729] vlan3: entered allmulticast mode
[  220.319555][ T9729] bridge0: entered allmulticast mode
[  220.348171][ T9729] vlan3: left allmulticast mode
[  220.353224][ T9729] bridge0: left allmulticast mode
[  220.591257][ T9740] tap0: tun_chr_ioctl cmd 1074025677
[  220.600084][ T9740] tap0: linktype set to 270
[  221.328271][ T9748] nbd1: detected capacity change from 0 to 127
[  221.339084][ T6294] block nbd1: Send control failed (result -32)
[  221.339983][ T5871] block nbd1: Receive control failed (result -32)
[  221.361250][ T6294] block nbd1: Request send failed, requeueing
[  221.370757][   T25] block nbd1: Dead connection, failed to find a fallback
[  221.379147][   T25] block nbd1: shutting down sockets
[  221.386848][   T25] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  221.401900][   T25] Buffer I/O error on dev nbd1, logical block 0, async page read
[  221.410045][ T6294] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  221.419895][ T6294] Buffer I/O error on dev nbd1, logical block 1, async page read
[  221.435104][ T6294] I/O error, dev nbd1, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  221.446579][ T6294] Buffer I/O error on dev nbd1, logical block 2, async page read
[  221.454542][ T6294] I/O error, dev nbd1, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  221.463677][ T6294] Buffer I/O error on dev nbd1, logical block 3, async page read
[  221.473076][ T6294] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  221.482184][ T6294] Buffer I/O error on dev nbd1, logical block 0, async page read
[  221.490429][ T6294] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  221.499607][ T6294] Buffer I/O error on dev nbd1, logical block 1, async page read
[  221.508019][ T6294] I/O error, dev nbd1, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  221.517170][ T6294] Buffer I/O error on dev nbd1, logical block 2, async page read
[  221.526154][ T6294] I/O error, dev nbd1, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  221.535374][ T6294] Buffer I/O error on dev nbd1, logical block 3, async page read
[  221.543332][ T6294] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  221.569441][ T6294] Buffer I/O error on dev nbd1, logical block 0, async page read
[  221.590488][ T6294] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  221.636144][ T6294] Buffer I/O error on dev nbd1, logical block 1, async page read
[  221.658845][ T6294] ldm_validate_partition_table(): Disk read failed.
[  221.689245][ T6294] Dev nbd1: unable to read RDB block 0
[  221.701771][ T6294]  nbd1: unable to read partition table
[  221.748268][ T6294] ldm_validate_partition_table(): Disk read failed.
[  221.781912][ T6294] Dev nbd1: unable to read RDB block 0
[  221.808796][ T6294]  nbd1: unable to read partition table
[  221.828513][ T9763] __nla_validate_parse: 6 callbacks suppressed
[  221.828533][ T9763] netlink: 9 bytes leftover after parsing attributes in process `syz.3.1018'.
[  221.870651][ T9763] ..0·: renamed from hsr0
[  221.895349][ T9763] ..0·: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  221.926090][ T9768] validate_nla: 3 callbacks suppressed
[  221.926112][ T9768] netlink: 'syz.1.1020': attribute type 1 has an invalid length.
[  221.974866][ T9763] ..0·: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  222.001314][ T9763] ..0·: entered allmulticast mode
[  222.007157][ T9763] hsr_slave_0: entered allmulticast mode
[  222.013419][ T9763] hsr_slave_1: entered allmulticast mode
[  222.026739][ T9763] A link change request failed with some changes committed already. Interface ..0· may have been left with an inconsistent configuration, please check.
[  222.052084][ T9767] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (65535)
[  222.080696][ T9767] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023
[  222.162030][ T9768] 8021q: adding VLAN 0 to HW filter on device bond3
[  222.199792][ T9779] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1017'.
[  222.221601][ T9771] bond3: (slave ip6gretap1): making interface the new active one
[  222.235861][ T9771] bond3: (slave ip6gretap1): Enslaving as an active interface with an up link
[  222.284019][ T9773] veth5: entered promiscuous mode
[  222.294816][ T9773] bond3: (slave veth5): Enslaving as an active interface with a down link
[  222.329677][ T9778] bond2: (slave erspan0): Releasing active interface
[  222.357646][ T9778] bond3: (slave erspan0): Enslaving as an active interface with an up link
[  222.587197][ T9786] netlink: 'syz.2.1023': attribute type 1 has an invalid length.
[  222.605311][ T9786] netlink: 144 bytes leftover after parsing attributes in process `syz.2.1023'.
[  222.639846][ T9786] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1023'.
[  222.723825][ T9796] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1024'.
[  222.747411][ T9796] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1024'.
[  222.749786][ T9794] tap0: tun_chr_ioctl cmd 1074025677
[  222.767844][ T9794] tap0: linktype set to 270
[  222.847260][ T9799] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1024'.
[  222.860336][ T9799] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1024'.
[  223.064351][ T9807] netlink: 100 bytes leftover after parsing attributes in process `syz.3.1031'.
[  223.269878][ T9818] netlink: 'syz.0.1036': attribute type 1 has an invalid length.
[  223.333440][ T9818] 8021q: adding VLAN 0 to HW filter on device bond3
[  223.383363][ T9821] vlan3: entered promiscuous mode
[  223.389024][ T9821] vlan3: entered allmulticast mode
[  223.394179][ T9821] hsr_slave_1: entered allmulticast mode
[  223.416507][ T9822] bond3: (slave ip6gretap1): making interface the new active one
[  223.426503][ T9822] bond3: (slave ip6gretap1): Enslaving as an active interface with an up link
[  223.494928][ T9818] veth3: entered promiscuous mode
[  223.523536][ T9818] bond3: (slave veth3): Enslaving as an active interface with a down link
[  223.601656][ T9827] netlink: 'syz.1.1038': attribute type 1 has an invalid length.
[  223.614437][ T9827] netlink: 144 bytes leftover after parsing attributes in process `syz.1.1038'.
[  223.661523][ T9818] bond2: (slave erspan0): Releasing active interface
[  223.729569][ T9818] bond3: (slave erspan0): Enslaving as an active interface with an up link
[  223.956587][ T9836] IPVS: persistence engine module ip_vs_pe_ not found
[  223.998662][ T9842] tap0: tun_chr_ioctl cmd 1074025677
[  224.004198][ T9842] tap0: linktype set to 270
[  224.055068][ T9836] Bluetooth: hci4: Opcode 0x0401 failed: -22
[  224.574351][ T9854] FAULT_INJECTION: forcing a failure.
[  224.574351][ T9854] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  224.601844][ T9854] CPU: 0 UID: 0 PID: 9854 Comm: syz.3.1046 Not tainted syzkaller #0 PREEMPT(full) 
[  224.601873][ T9854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  224.601884][ T9854] Call Trace:
[  224.601892][ T9854]  <TASK>
[  224.601900][ T9854]  dump_stack_lvl+0x189/0x250
[  224.601930][ T9854]  ? __pfx____ratelimit+0x10/0x10
[  224.601950][ T9854]  ? __pfx_dump_stack_lvl+0x10/0x10
[  224.601973][ T9854]  ? __pfx__printk+0x10/0x10
[  224.602000][ T9854]  ? __might_fault+0xb0/0x130
[  224.602040][ T9854]  should_fail_ex+0x414/0x560
[  224.602071][ T9854]  _copy_from_user+0x2d/0xb0
[  224.602094][ T9854]  ___sys_recvmsg+0x12e/0x510
[  224.602125][ T9854]  ? __pfx____sys_recvmsg+0x10/0x10
[  224.602179][ T9854]  ? __pfx_set_normalized_timespec64+0x10/0x10
[  224.602220][ T9854]  do_recvmmsg+0x307/0x770
[  224.602253][ T9854]  ? __pfx_do_recvmmsg+0x10/0x10
[  224.602292][ T9854]  ? _copy_from_user+0x94/0xb0
[  224.602333][ T9854]  __x64_sys_recvmmsg+0x1af/0x240
[  224.602360][ T9854]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  224.602380][ T9854]  ? rcu_is_watching+0x15/0xb0
[  224.602406][ T9854]  ? do_syscall_64+0xbe/0x3b0
[  224.602432][ T9854]  do_syscall_64+0xfa/0x3b0
[  224.602450][ T9854]  ? lockdep_hardirqs_on+0x9c/0x150
[  224.602469][ T9854]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.602488][ T9854]  ? clear_bhb_loop+0x60/0xb0
[  224.602512][ T9854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.602530][ T9854] RIP: 0033:0x7f3b95d8ebe9
[  224.602548][ T9854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  224.602574][ T9854] RSP: 002b:00007f3b96c40038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  224.602596][ T9854] RAX: ffffffffffffffda RBX: 00007f3b95fc5fa0 RCX: 00007f3b95d8ebe9
[  224.602610][ T9854] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000003
[  224.602624][ T9854] RBP: 00007f3b96c40090 R08: 00002000000001c0 R09: 0000000000000000
[  224.602636][ T9854] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  224.602647][ T9854] R13: 00007f3b95fc6038 R14: 00007f3b95fc5fa0 R15: 00007ffdaeddcaa8
[  224.602679][ T9854]  </TASK>
[  224.889587][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  224.899091][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  224.908255][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  224.911243][ T9869] netlink: 'syz.3.1051': attribute type 1 has an invalid length.
[  224.917422][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  224.917476][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  224.917513][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  224.952669][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  224.961815][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  224.970922][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  224.980063][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  224.989216][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  224.998376][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  225.007532][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  225.016691][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  225.025827][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  225.034934][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  225.044007][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  225.053171][ T9867] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  225.887646][ T9895] tap0: tun_chr_ioctl cmd 1074025677
[  225.893196][ T9895] tap0: linktype set to 270
[  226.068807][ T5871] Bluetooth: hci4: command tx timeout
[  226.190731][ T9908] netlink: 'syz.0.1062': attribute type 1 has an invalid length.
[  226.319310][ T9915] vti0: entered allmulticast mode
[  226.442719][ T9921] bridge0: entered promiscuous mode
[  226.463446][ T9921] macsec1: entered promiscuous mode
[  226.501081][ T9921] bridge0: port 1(macsec1) entered blocking state
[  226.512435][ T9921] bridge0: port 1(macsec1) entered disabled state
[  226.520264][ T9921] macsec1: entered allmulticast mode
[  226.525843][ T9921] bridge0: entered allmulticast mode
[  226.548038][ T9921] macsec1: left allmulticast mode
[  226.553247][ T9921] bridge0: left allmulticast mode
[  226.585603][ T9921] bridge0: left promiscuous mode
[  226.717320][ T9934] sctp: [Deprecated]: syz.0.1071 (pid 9934) Use of int in max_burst socket option.
[  226.717320][ T9934] Use struct sctp_assoc_value instead
[  227.077877][ T9947] netlink: 'syz.0.1075': attribute type 1 has an invalid length.
[  227.086239][ T9947] __nla_validate_parse: 9 callbacks suppressed
[  227.086259][ T9947] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1075'.
[  227.173094][ T9947] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1075'.
[  227.366125][ T9956] netlink: 'syz.4.1077': attribute type 17 has an invalid length.
[  227.814094][ T9966] FAULT_INJECTION: forcing a failure.
[  227.814094][ T9966] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  227.860456][ T9966] CPU: 0 UID: 0 PID: 9966 Comm: syz.3.1080 Not tainted syzkaller #0 PREEMPT(full) 
[  227.860484][ T9966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  227.860495][ T9966] Call Trace:
[  227.860503][ T9966]  <TASK>
[  227.860511][ T9966]  dump_stack_lvl+0x189/0x250
[  227.860538][ T9966]  ? __pfx____ratelimit+0x10/0x10
[  227.860558][ T9966]  ? __pfx_dump_stack_lvl+0x10/0x10
[  227.860580][ T9966]  ? __pfx__printk+0x10/0x10
[  227.860621][ T9966]  should_fail_ex+0x414/0x560
[  227.860652][ T9966]  _copy_to_user+0x31/0xb0
[  227.860677][ T9966]  simple_read_from_buffer+0xe1/0x170
[  227.860710][ T9966]  proc_fail_nth_read+0x1b3/0x220
[  227.860745][ T9966]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  227.860771][ T9966]  ? rw_verify_area+0x2a6/0x4d0
[  227.860794][ T9966]  ? __lock_acquire+0xab9/0xd20
[  227.860817][ T9966]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  227.860840][ T9966]  vfs_read+0x1fd/0xa30
[  227.860862][ T9966]  ? fdget_pos+0x247/0x320
[  227.860883][ T9966]  ? __pfx___mutex_lock+0x10/0x10
[  227.860904][ T9966]  ? __pfx_vfs_read+0x10/0x10
[  227.860929][ T9966]  ? __fget_files+0x2a/0x420
[  227.860951][ T9966]  ? __fget_files+0x3a0/0x420
[  227.860966][ T9966]  ? __fget_files+0x2a/0x420
[  227.860992][ T9966]  ksys_read+0x145/0x250
[  227.861019][ T9966]  ? __pfx_ksys_read+0x10/0x10
[  227.861039][ T9966]  ? rcu_is_watching+0x15/0xb0
[  227.861065][ T9966]  ? do_syscall_64+0xbe/0x3b0
[  227.861089][ T9966]  do_syscall_64+0xfa/0x3b0
[  227.861107][ T9966]  ? lockdep_hardirqs_on+0x9c/0x150
[  227.861125][ T9966]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.861143][ T9966]  ? clear_bhb_loop+0x60/0xb0
[  227.861165][ T9966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.861183][ T9966] RIP: 0033:0x7f3b95d8d5fc
[  227.861201][ T9966] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  227.861216][ T9966] RSP: 002b:00007f3b96c40030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  227.861237][ T9966] RAX: ffffffffffffffda RBX: 00007f3b95fc5fa0 RCX: 00007f3b95d8d5fc
[  227.861251][ T9966] RDX: 000000000000000f RSI: 00007f3b96c400a0 RDI: 0000000000000003
[  227.861262][ T9966] RBP: 00007f3b96c40090 R08: 0000000000000000 R09: 0000000000000000
[  227.861273][ T9966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.861284][ T9966] R13: 00007f3b95fc6038 R14: 00007f3b95fc5fa0 R15: 00007ffdaeddcaa8
[  227.861317][ T9966]  </TASK>
[  228.514163][ T9979] ip6gretap0: left promiscuous mode
[  228.566467][ T9979] veth3: left promiscuous mode
[  228.573808][ T9987] syz_tun: entered allmulticast mode
[  228.583023][ T9990] netlink: 'syz.1.1088': attribute type 1 has an invalid length.
[  228.608395][ T9990] netlink: 144 bytes leftover after parsing attributes in process `syz.1.1088'.
[  228.627808][ T9991] dvmrp8: entered allmulticast mode
[  228.630139][ T9990] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1088'.
[  228.700817][ T9987] syz_tun: left allmulticast mode
[  228.716651][ T9987] dvmrp8: left allmulticast mode
[  228.826707][T10002] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1092'.
[  229.043779][T10010] bond3: (slave erspan0): Releasing active interface
[  229.051548][T10010] ip6gretap1: entered promiscuous mode
[  229.079575][T10010] batman_adv: batadv0: Interface deactivated: dummy0
[  229.086526][T10010] batman_adv: batadv0: Removing interface: dummy0
[  229.093409][T10017] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1094'.
[  229.109021][T10017] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1094'.
[  229.131344][T10010] bond2: (slave veth3): Releasing active interface
[  229.171945][T10010] team0: Port device batadv1 removed
[  229.182588][T10010] bond3: (slave ip6gretap1): Releasing active interface
[  229.193702][T10010] bond3: (slave ip6gretap1): the permanent HWaddr of slave - 4e:ed:16:ef:37:f4 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  229.243779][T10020] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1095'.
[  229.244185][T10010] ip6gretap1: left promiscuous mode
[  229.269150][T10010] bond3: (slave veth5): Releasing active interface
[  229.291971][T10016] erspan0: left allmulticast mode
[  229.698433][T10034] netlink: 'syz.4.1102': attribute type 1 has an invalid length.
[  229.707176][T10034] netlink: 144 bytes leftover after parsing attributes in process `syz.4.1102'.
[  229.720671][T10034] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1102'.
[  230.118043][T10049] netlink: 'syz.3.1105': attribute type 1 has an invalid length.
[  230.307112][T10049] 8021q: adding VLAN 0 to HW filter on device bond2
[  230.451259][T10057] veth5: entered promiscuous mode
[  230.462758][T10057] bond2: (slave veth5): Enslaving as an active interface with a down link
[  230.521808][T10049] bond1: (slave erspan0): Releasing active interface
[  230.534990][T10049] ip6gretap1: entered promiscuous mode
[  230.585899][T10049] bond2: (slave erspan0): making interface the new active one
[  230.600255][T10049] erspan0: entered promiscuous mode
[  230.621620][T10049] bond2: (slave erspan0): Enslaving as an active interface with an up link
[  231.089686][T10082] netlink: 'syz.0.1113': attribute type 1 has an invalid length.
[  231.491485][T10099] netlink: 'syz.0.1118': attribute type 1 has an invalid length.
[  231.772395][T10099] 8021q: adding VLAN 0 to HW filter on device bond4
[  231.920917][T10108] veth5: entered promiscuous mode
[  231.932660][T10108] bond4: (slave veth5): Enslaving as an active interface with a down link
[  231.982853][T10111] bond3: (slave erspan0): Releasing active interface
[  232.025139][T10111] ip6gretap1: entered promiscuous mode
[  232.047548][T10111] bond4: (slave erspan0): making interface the new active one
[  232.070666][T10111] erspan0: entered promiscuous mode
[  232.079157][T10111] bond4: (slave erspan0): Enslaving as an active interface with an up link
[  232.313380][T10127] __nla_validate_parse: 3 callbacks suppressed
[  232.313401][T10127] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1122'.
[  232.355070][T10127] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1122'.
[  232.497508][T10135] FAULT_INJECTION: forcing a failure.
[  232.497508][T10135] name failslab, interval 1, probability 0, space 0, times 0
[  232.510562][T10135] CPU: 0 UID: 0 PID: 10135 Comm: syz.2.1125 Not tainted syzkaller #0 PREEMPT(full) 
[  232.510592][T10135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  232.510604][T10135] Call Trace:
[  232.510612][T10135]  <TASK>
[  232.510620][T10135]  dump_stack_lvl+0x189/0x250
[  232.510651][T10135]  ? __pfx____ratelimit+0x10/0x10
[  232.510672][T10135]  ? __pfx_dump_stack_lvl+0x10/0x10
[  232.510692][T10135]  ? __pfx__printk+0x10/0x10
[  232.510735][T10135]  should_fail_ex+0x414/0x560
[  232.510769][T10135]  should_failslab+0xa8/0x100
[  232.510799][T10135]  __kmalloc_cache_noprof+0x70/0x3d0
[  232.510824][T10135]  ? sctp_add_bind_addr+0x8c/0x370
[  232.510859][T10135]  sctp_add_bind_addr+0x8c/0x370
[  232.510894][T10135]  sctp_copy_local_addr_list+0x30b/0x4e0
[  232.510929][T10135]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  232.510959][T10135]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  232.510991][T10135]  ? sctp_v6_is_any+0x64/0x80
[  232.511013][T10135]  ? sctp_copy_one_addr+0x93/0x360
[  232.511047][T10135]  sctp_bind_addr_copy+0xb3/0x3c0
[  232.511078][T10135]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  232.511109][T10135]  sctp_connect_new_asoc+0x2e0/0x690
[  232.511137][T10135]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  232.511158][T10135]  ? __local_bh_enable_ip+0x12d/0x1c0
[  232.511188][T10135]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  232.511210][T10135]  ? security_sctp_bind_connect+0x7e/0x2e0
[  232.511240][T10135]  sctp_sendmsg+0x155c/0x2810
[  232.511279][T10135]  ? __pfx_sctp_sendmsg+0x10/0x10
[  232.511306][T10135]  ? aa_sk_perm+0x81e/0x950
[  232.511342][T10135]  ? __pfx_aa_sk_perm+0x10/0x10
[  232.511396][T10135]  ? sock_rps_record_flow+0x19/0x410
[  232.511434][T10135]  ? inet_sendmsg+0x2f4/0x370
[  232.511463][T10135]  __sock_sendmsg+0x19c/0x270
[  232.511495][T10135]  __sys_sendto+0x3bd/0x520
[  232.511518][T10135]  ? __pfx___sys_sendto+0x10/0x10
[  232.511542][T10135]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  232.511581][T10135]  ? __fget_files+0x3a0/0x420
[  232.511613][T10135]  ? ksys_write+0x22a/0x250
[  232.511642][T10135]  ? __pfx_ksys_write+0x10/0x10
[  232.511664][T10135]  ? rcu_is_watching+0x15/0xb0
[  232.511690][T10135]  __x64_sys_sendto+0xde/0x100
[  232.511716][T10135]  do_syscall_64+0xfa/0x3b0
[  232.511736][T10135]  ? lockdep_hardirqs_on+0x9c/0x150
[  232.511755][T10135]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.511775][T10135]  ? clear_bhb_loop+0x60/0xb0
[  232.511799][T10135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.511818][T10135] RIP: 0033:0x7f523238ebe9
[  232.511837][T10135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.511853][T10135] RSP: 002b:00007f52331d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  232.511876][T10135] RAX: ffffffffffffffda RBX: 00007f52325c5fa0 RCX: 00007f523238ebe9
[  232.511890][T10135] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000003
[  232.511902][T10135] RBP: 00007f52331d5090 R08: 0000200000000080 R09: 000000000000001c
[  232.511915][T10135] R10: 0000000000000051 R11: 0000000000000246 R12: 0000000000000002
[  232.511926][T10135] R13: 00007f52325c6038 R14: 00007f52325c5fa0 R15: 00007fff1ed28988
[  232.511962][T10135]  </TASK>
[  233.006165][T10144] netlink: 'syz.0.1126': attribute type 1 has an invalid length.
[  233.014089][T10144] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1126'.
[  233.023237][T10144] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1126'.
[  233.254411][T10150] netlink: 'syz.1.1132': attribute type 1 has an invalid length.
[  233.375462][T10156] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1135'.
[  233.379016][T10158] vlan2: entered promiscuous mode
[  233.384538][T10156] IPv6: Can't replace route, no match found
[  233.390147][T10158] batadv0: entered promiscuous mode
[  233.557335][T10163] tap0: tun_chr_ioctl cmd 1074025677
[  233.563130][T10163] tap0: linktype set to 270
[  233.848550][T10167] FAULT_INJECTION: forcing a failure.
[  233.848550][T10167] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  233.873615][T10167] CPU: 0 UID: 0 PID: 10167 Comm: syz.3.1140 Not tainted syzkaller #0 PREEMPT(full) 
[  233.873645][T10167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  233.873656][T10167] Call Trace:
[  233.873664][T10167]  <TASK>
[  233.873672][T10167]  dump_stack_lvl+0x189/0x250
[  233.873701][T10167]  ? __pfx____ratelimit+0x10/0x10
[  233.873719][T10167]  ? __pfx_dump_stack_lvl+0x10/0x10
[  233.873741][T10167]  ? __pfx__printk+0x10/0x10
[  233.873783][T10167]  should_fail_ex+0x414/0x560
[  233.873815][T10167]  _copy_to_user+0x31/0xb0
[  233.873839][T10167]  simple_read_from_buffer+0xe1/0x170
[  233.873869][T10167]  proc_fail_nth_read+0x1b3/0x220
[  233.873895][T10167]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  233.873920][T10167]  ? rw_verify_area+0x2a6/0x4d0
[  233.873942][T10167]  ? __lock_acquire+0xab9/0xd20
[  233.873967][T10167]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  233.873990][T10167]  vfs_read+0x1fd/0xa30
[  233.874014][T10167]  ? fdget_pos+0x247/0x320
[  233.874038][T10167]  ? __pfx___mutex_lock+0x10/0x10
[  233.874060][T10167]  ? __pfx_vfs_read+0x10/0x10
[  233.874087][T10167]  ? __fget_files+0x2a/0x420
[  233.874111][T10167]  ? __fget_files+0x3a0/0x420
[  233.874126][T10167]  ? __fget_files+0x2a/0x420
[  233.874155][T10167]  ksys_read+0x145/0x250
[  233.874183][T10167]  ? __pfx_ksys_read+0x10/0x10
[  233.874204][T10167]  ? rcu_is_watching+0x15/0xb0
[  233.874230][T10167]  ? do_syscall_64+0xbe/0x3b0
[  233.874256][T10167]  do_syscall_64+0xfa/0x3b0
[  233.874274][T10167]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.874291][T10167]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.874309][T10167]  ? clear_bhb_loop+0x60/0xb0
[  233.874332][T10167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.874348][T10167] RIP: 0033:0x7f3b95d8d5fc
[  233.874365][T10167] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  233.874381][T10167] RSP: 002b:00007f3b96c40030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  233.874402][T10167] RAX: ffffffffffffffda RBX: 00007f3b95fc5fa0 RCX: 00007f3b95d8d5fc
[  233.874415][T10167] RDX: 000000000000000f RSI: 00007f3b96c400a0 RDI: 0000000000000015
[  233.874427][T10167] RBP: 00007f3b96c40090 R08: 0000000000000000 R09: 0000000000000000
[  233.874439][T10167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.874450][T10167] R13: 00007f3b95fc6038 R14: 00007f3b95fc5fa0 R15: 00007ffdaeddcaa8
[  233.874482][T10167]  </TASK>
[  234.369200][T10196] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1146'.
[  234.391545][T10196] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1146'.
[  234.585981][T10203] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1149'.
[  234.739772][T10209] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:20000
[  234.846346][T10215] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1153'.
[  234.914033][T10215] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1153'.
[  234.951810][T10214] tap0: tun_chr_ioctl cmd 1074025677
[  234.961892][T10214] tap0: linktype set to 270
[  235.078567][T10225] netlink: 'syz.2.1158': attribute type 1 has an invalid length.
[  235.113328][T10225] 8021q: adding VLAN 0 to HW filter on device bond3
[  235.167224][T10225] bond3: (slave ip6gretap2): making interface the new active one
[  235.189032][T10225] bond3: (slave ip6gretap2): Enslaving as an active interface with an up link
[  235.409911][T10225] veth5: entered promiscuous mode
[  235.439441][T10225] bond3: (slave veth5): Enslaving as an active interface with a down link
[  235.515949][   T55] block nbd0: Possible stuck request ffff888025465080: control (read@0,1024B). Runtime 60 seconds
[  235.530726][   T55] block nbd0: Possible stuck request ffff888025465240: control (read@1024,1024B). Runtime 60 seconds
[  235.542435][   T55] block nbd0: Possible stuck request ffff888025465400: control (read@2048,1024B). Runtime 60 seconds
[  235.553526][   T55] block nbd0: Possible stuck request ffff8880254655c0: control (read@3072,1024B). Runtime 60 seconds
[  235.712047][T10231] erspan0: entered allmulticast mode
[  235.750703][T10231] bond3: (slave erspan0): Enslaving as an active interface with an up link
[  235.839692][T10239] batman_adv: batadv0: Adding interface: ip6gretap3
[  235.884010][T10239] batman_adv: batadv0: The MTU of interface ip6gretap3 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.961418][T10239] batman_adv: batadv0: Interface activated: ip6gretap3
[  236.076573][T10256] vlan3: entered promiscuous mode
[  236.333256][T10263] tap0: tun_chr_ioctl cmd 1074025677
[  236.355914][T10263] tap0: linktype set to 270
[  236.867410][T10278] syzkaller0: entered promiscuous mode
[  236.873045][T10278] syzkaller0: entered allmulticast mode
[  237.640710][T10310] __nla_validate_parse: 11 callbacks suppressed
[  237.640731][T10310] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1180'.
[  237.770615][T10316] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1183'.
[  239.346526][T10316] batadv0: entered promiscuous mode
[  239.351920][T10316] macsec1: entered promiscuous mode
[  239.360655][T10318] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1185'.
[  239.370218][T10318] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1185'.
[  239.560292][T10324] tap0: tun_chr_ioctl cmd 1074025677
[  239.567115][T10324] tap0: linktype set to 270
[  239.598766][T10326] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1188'.
[  240.248473][T10345] netlink: 'syz.3.1196': attribute type 1 has an invalid length.
[  240.332164][T10345] 8021q: adding VLAN 0 to HW filter on device bond3
[  240.349647][T10353] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1198'.
[  240.367443][T10353] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1198'.
[  240.386141][T10353] netlink: 'syz.1.1198': attribute type 6 has an invalid length.
[  240.402523][T10356] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1199'.
[  240.430851][T10358] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1200'.
[  240.438293][T10353] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  240.440051][T10358] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1200'.
[  240.471001][T10359] FAULT_INJECTION: forcing a failure.
[  240.471001][T10359] name failslab, interval 1, probability 0, space 0, times 0
[  240.483642][T10353] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  240.556062][T10359] CPU: 1 UID: 0 PID: 10359 Comm: syz.0.1199 Not tainted syzkaller #0 PREEMPT(full) 
[  240.556093][T10359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  240.556104][T10359] Call Trace:
[  240.556112][T10359]  <TASK>
[  240.556121][T10359]  dump_stack_lvl+0x189/0x250
[  240.556151][T10359]  ? __pfx____ratelimit+0x10/0x10
[  240.556171][T10359]  ? __pfx_dump_stack_lvl+0x10/0x10
[  240.556195][T10359]  ? __pfx__printk+0x10/0x10
[  240.556240][T10359]  should_fail_ex+0x414/0x560
[  240.556273][T10359]  should_failslab+0xa8/0x100
[  240.556303][T10359]  __kmalloc_cache_noprof+0x70/0x3d0
[  240.556328][T10359]  ? sctp_add_bind_addr+0x8c/0x370
[  240.556376][T10359]  sctp_add_bind_addr+0x8c/0x370
[  240.556410][T10359]  sctp_copy_local_addr_list+0x30b/0x4e0
[  240.556443][T10359]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  240.556471][T10359]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  240.556502][T10359]  ? sctp_v6_is_any+0x64/0x80
[  240.556524][T10359]  ? sctp_copy_one_addr+0x93/0x360
[  240.556557][T10359]  sctp_bind_addr_copy+0xb3/0x3c0
[  240.556588][T10359]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  240.556615][T10359]  sctp_connect_new_asoc+0x2e0/0x690
[  240.556642][T10359]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  240.556663][T10359]  ? __local_bh_enable_ip+0x12d/0x1c0
[  240.556692][T10359]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  240.556714][T10359]  ? security_sctp_bind_connect+0x7e/0x2e0
[  240.556742][T10359]  sctp_sendmsg+0x155c/0x2810
[  240.556776][T10359]  ? __pfx_sctp_sendmsg+0x10/0x10
[  240.556802][T10359]  ? aa_sk_perm+0x81e/0x950
[  240.556836][T10359]  ? __pfx_aa_sk_perm+0x10/0x10
[  240.556868][T10359]  ? sock_rps_record_flow+0x19/0x410
[  240.556899][T10359]  ? inet_sendmsg+0x2f4/0x370
[  240.556931][T10359]  __sock_sendmsg+0x19c/0x270
[  240.556963][T10359]  __sys_sendto+0x3bd/0x520
[  240.556987][T10359]  ? __pfx___sys_sendto+0x10/0x10
[  240.557003][T10359]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  240.557041][T10359]  ? __fget_files+0x3a0/0x420
[  240.557072][T10359]  ? ksys_write+0x22a/0x250
[  240.557101][T10359]  ? __pfx_ksys_write+0x10/0x10
[  240.557133][T10359]  __x64_sys_sendto+0xde/0x100
[  240.557158][T10359]  do_syscall_64+0xfa/0x3b0
[  240.557176][T10359]  ? lockdep_hardirqs_on+0x9c/0x150
[  240.557195][T10359]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.557214][T10359]  ? clear_bhb_loop+0x60/0xb0
[  240.557238][T10359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.557256][T10359] RIP: 0033:0x7f268fb8ebe9
[  240.557274][T10359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.557290][T10359] RSP: 002b:00007f26909cd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  240.557312][T10359] RAX: ffffffffffffffda RBX: 00007f268fdc6090 RCX: 00007f268fb8ebe9
[  240.557326][T10359] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000003
[  240.557338][T10359] RBP: 00007f26909cd090 R08: 0000200000000080 R09: 000000000000001c
[  240.557358][T10359] R10: 0000000000000051 R11: 0000000000000246 R12: 0000000000000002
[  240.557370][T10359] R13: 00007f268fdc6128 R14: 00007f268fdc6090 R15: 00007ffed1551d08
[  240.557406][T10359]  </TASK>
[  240.893971][T10345] veth7: entered promiscuous mode
[  240.949049][T10345] bond3: (slave veth7): Enslaving as an active interface with a down link
[  241.007932][T10354] bond2: (slave erspan0): Releasing active interface
[  241.015698][T10354] erspan0: left promiscuous mode
[  241.036819][T10354] bond3: (slave erspan0): making interface the new active one
[  241.067524][T10354] erspan0: entered promiscuous mode
[  241.101792][T10354] bond3: (slave erspan0): Enslaving as an active interface with an up link
[  241.397376][T10379] tap0: tun_chr_ioctl cmd 1074025677
[  241.403103][T10379] tap0: linktype set to 270
[  242.490598][T10411] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  242.505992][T10411] syzkaller0: entered promiscuous mode
[  242.514744][T10411] syzkaller0: entered allmulticast mode
[  242.671810][T10406] tipc: Resetting bearer <eth:syzkaller0>
[  242.694226][T10420] __nla_validate_parse: 50 callbacks suppressed
[  242.694249][T10420] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1220'.
[  242.758206][T10406] tipc: Disabling bearer <eth:syzkaller0>
[  242.995634][T10429] netlink: 'syz.4.1223': attribute type 10 has an invalid length.
[  243.153212][T10422] bond4: (slave geneve2): Enslaving as an active interface with an up link
[  243.170543][T10431] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1220'.
[  243.198610][T10429] bridge0: port 1(macsec0) entered blocking state
[  243.209214][T10429] bridge0: port 1(macsec0) entered disabled state
[  243.216201][T10429] macsec0: entered allmulticast mode
[  243.221661][T10429] veth1_macvtap: entered allmulticast mode
[  243.230096][T10429] macsec0: entered promiscuous mode
[  243.237196][T10429] bridge0: port 1(macsec0) entered blocking state
[  243.243794][T10429] bridge0: port 1(macsec0) entered forwarding state
[  243.270568][ T7534] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  243.294096][ T7534] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  243.320372][T10436] tap0: tun_chr_ioctl cmd 1074025677
[  243.335872][T10436] tap0: linktype set to 270
[  243.346213][ T7534] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  243.413386][ T7534] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  243.556251][T10447] pim6reg: entered allmulticast mode
[  243.601699][T10447] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1228'.
[  243.606041][T10454] netlink: 'syz.1.1230': attribute type 11 has an invalid length.
[  243.707358][ T6173] ip6gretap1: left promiscuous mode
[  243.771569][T10447] pim6reg: left allmulticast mode
[  244.055368][ T7534] erspan0: left promiscuous mode
[  244.062335][ T7534] ip6gretap1: left promiscuous mode
[  244.077820][T10471] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1233'.
[  244.116405][T10462] syzkaller1: entered promiscuous mode
[  244.122437][T10462] syzkaller1: entered allmulticast mode
[  244.136374][T10471] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1233'.
[  244.172544][T10473] FAULT_INJECTION: forcing a failure.
[  244.172544][T10473] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  244.225559][T10473] CPU: 1 UID: 0 PID: 10473 Comm: syz.3.1232 Not tainted syzkaller #0 PREEMPT(full) 
[  244.225590][T10473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  244.225602][T10473] Call Trace:
[  244.225610][T10473]  <TASK>
[  244.225618][T10473]  dump_stack_lvl+0x189/0x250
[  244.225648][T10473]  ? __pfx____ratelimit+0x10/0x10
[  244.225669][T10473]  ? __pfx_dump_stack_lvl+0x10/0x10
[  244.225693][T10473]  ? __pfx__printk+0x10/0x10
[  244.225721][T10473]  ? fs_reclaim_acquire+0x7d/0x100
[  244.225762][T10473]  should_fail_ex+0x414/0x560
[  244.225794][T10473]  prepare_alloc_pages+0x213/0x610
[  244.225824][T10473]  __alloc_frozen_pages_noprof+0x123/0x370
[  244.225850][T10473]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  244.225880][T10473]  ? policy_nodemask+0x27c/0x720
[  244.225915][T10473]  alloc_pages_mpol+0x232/0x4a0
[  244.225949][T10473]  folio_alloc_mpol_noprof+0x39/0x70
[  244.225979][T10473]  shmem_alloc_and_add_folio+0x447/0xf60
[  244.226010][T10473]  ? filemap_get_entry+0xad/0x2f0
[  244.226028][T10473]  ? filemap_get_entry+0xad/0x2f0
[  244.226045][T10473]  ? filemap_get_entry+0xad/0x2f0
[  244.226064][T10473]  ? filemap_get_entry+0x28f/0x2f0
[  244.226086][T10473]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  244.226116][T10473]  ? shmem_allowable_huge_orders+0x1f8/0x420
[  244.226149][T10473]  shmem_get_folio_gfp+0x59d/0x1660
[  244.226200][T10473]  shmem_write_begin+0xf7/0x2b0
[  244.226235][T10473]  generic_perform_write+0x2c5/0x900
[  244.226273][T10473]  ? __pfx_generic_perform_write+0x10/0x10
[  244.226296][T10473]  ? do_raw_spin_unlock+0x122/0x240
[  244.226320][T10473]  ? mnt_put_write_access_file+0xc0/0x100
[  244.226345][T10473]  ? file_update_time+0x416/0x490
[  244.226373][T10473]  shmem_file_write_iter+0xf8/0x120
[  244.226404][T10473]  vfs_write+0x5c6/0xb30
[  244.226436][T10473]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  244.226465][T10473]  ? __pfx_vfs_write+0x10/0x10
[  244.226545][T10473]  ? __fget_files+0x2a/0x420
[  244.226575][T10473]  ksys_write+0x145/0x250
[  244.226604][T10473]  ? __pfx_ksys_write+0x10/0x10
[  244.226626][T10473]  ? rcu_is_watching+0x15/0xb0
[  244.226652][T10473]  ? do_syscall_64+0xbe/0x3b0
[  244.226678][T10473]  do_syscall_64+0xfa/0x3b0
[  244.226697][T10473]  ? lockdep_hardirqs_on+0x9c/0x150
[  244.226715][T10473]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.226735][T10473]  ? clear_bhb_loop+0x60/0xb0
[  244.226759][T10473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.226777][T10473] RIP: 0033:0x7f3b95d8ebe9
[  244.226795][T10473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.226811][T10473] RSP: 002b:00007f3b96c40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  244.226833][T10473] RAX: ffffffffffffffda RBX: 00007f3b95fc5fa0 RCX: 00007f3b95d8ebe9
[  244.226848][T10473] RDX: 0000000000040010 RSI: 0000200000000180 RDI: 0000000000000008
[  244.226860][T10473] RBP: 00007f3b96c40090 R08: 0000000000000000 R09: 0000000000000000
[  244.226871][T10473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  244.226882][T10473] R13: 00007f3b95fc6038 R14: 00007f3b95fc5fa0 R15: 00007ffdaeddcaa8
[  244.226917][T10473]  </TASK>
[  245.138956][T10501] netlink: 201916 bytes leftover after parsing attributes in process `syz.4.1239'.
[  245.198969][T10501] netlink: 464 bytes leftover after parsing attributes in process `syz.4.1239'.
[  245.246578][T10505] netlink: 'syz.3.1240': attribute type 1 has an invalid length.
[  245.358680][T10505] 8021q: adding VLAN 0 to HW filter on device bond4
[  245.431490][T10514] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1242'.
[  245.458166][T10512] veth9: entered promiscuous mode
[  245.469238][T10512] bond4: (slave veth9): Enslaving as an active interface with a down link
[  245.499753][T10505] bond3: (slave erspan0): Releasing active interface
[  245.525820][T10507] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1241'.
[  245.544946][T10505] erspan0: left promiscuous mode
[  245.573595][T10505] bond4: (slave erspan0): making interface the new active one
[  245.608155][T10505] erspan0: entered promiscuous mode
[  245.614218][T10505] bond4: (slave erspan0): Enslaving as an active interface with an up link
[  245.841018][T10526] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1245'.
[  245.957465][T10529] team0: entered promiscuous mode
[  245.984931][T10529] team0: left promiscuous mode
[  246.769393][T10560] FAULT_INJECTION: forcing a failure.
[  246.769393][T10560] name failslab, interval 1, probability 0, space 0, times 0
[  246.851737][T10560] CPU: 1 UID: 0 PID: 10560 Comm: syz.3.1253 Not tainted syzkaller #0 PREEMPT(full) 
[  246.851769][T10560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  246.851781][T10560] Call Trace:
[  246.851789][T10560]  <TASK>
[  246.851798][T10560]  dump_stack_lvl+0x189/0x250
[  246.851829][T10560]  ? __pfx____ratelimit+0x10/0x10
[  246.851849][T10560]  ? __pfx_dump_stack_lvl+0x10/0x10
[  246.851872][T10560]  ? __pfx__printk+0x10/0x10
[  246.851916][T10560]  should_fail_ex+0x414/0x560
[  246.851948][T10560]  should_failslab+0xa8/0x100
[  246.851978][T10560]  __kmalloc_cache_noprof+0x70/0x3d0
[  246.852004][T10560]  ? sctp_add_bind_addr+0x8c/0x370
[  246.852039][T10560]  sctp_add_bind_addr+0x8c/0x370
[  246.852072][T10560]  sctp_copy_local_addr_list+0x30b/0x4e0
[  246.852107][T10560]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  246.852137][T10560]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  246.852177][T10560]  ? sctp_v6_is_any+0x64/0x80
[  246.852200][T10560]  ? sctp_copy_one_addr+0x93/0x360
[  246.852234][T10560]  sctp_bind_addr_copy+0xb3/0x3c0
[  246.852266][T10560]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  246.852298][T10560]  sctp_connect_new_asoc+0x2e0/0x690
[  246.852326][T10560]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  246.852346][T10560]  ? __local_bh_enable_ip+0x12d/0x1c0
[  246.852375][T10560]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  246.852397][T10560]  ? security_sctp_bind_connect+0x7e/0x2e0
[  246.852425][T10560]  sctp_sendmsg+0x155c/0x2810
[  246.852462][T10560]  ? __pfx_sctp_sendmsg+0x10/0x10
[  246.852490][T10560]  ? aa_sk_perm+0x81e/0x950
[  246.852525][T10560]  ? __pfx_aa_sk_perm+0x10/0x10
[  246.852557][T10560]  ? sock_rps_record_flow+0x19/0x410
[  246.852588][T10560]  ? inet_sendmsg+0x2f4/0x370
[  246.852619][T10560]  __sock_sendmsg+0x19c/0x270
[  246.852651][T10560]  __sys_sendto+0x3bd/0x520
[  246.852674][T10560]  ? __pfx___sys_sendto+0x10/0x10
[  246.852690][T10560]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  246.852727][T10560]  ? __fget_files+0x3a0/0x420
[  246.852760][T10560]  ? ksys_write+0x22a/0x250
[  246.852787][T10560]  ? __pfx_ksys_write+0x10/0x10
[  246.852809][T10560]  ? rcu_is_watching+0x15/0xb0
[  246.852835][T10560]  __x64_sys_sendto+0xde/0x100
[  246.852860][T10560]  do_syscall_64+0xfa/0x3b0
[  246.852879][T10560]  ? lockdep_hardirqs_on+0x9c/0x150
[  246.852898][T10560]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.852917][T10560]  ? clear_bhb_loop+0x60/0xb0
[  246.852941][T10560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.852959][T10560] RIP: 0033:0x7f3b95d8ebe9
[  246.852977][T10560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  246.852994][T10560] RSP: 002b:00007f3b96c40038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  246.853015][T10560] RAX: ffffffffffffffda RBX: 00007f3b95fc5fa0 RCX: 00007f3b95d8ebe9
[  246.853029][T10560] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000003
[  246.853041][T10560] RBP: 00007f3b96c40090 R08: 0000200000000080 R09: 000000000000001c
[  246.853053][T10560] R10: 0000000000000051 R11: 0000000000000246 R12: 0000000000000002
[  246.853064][T10560] R13: 00007f3b95fc6038 R14: 00007f3b95fc5fa0 R15: 00007ffdaeddcaa8
[  246.853096][T10560]  </TASK>
[  247.348836][T10574] IPv6: Can't replace route, no match found
[  247.457180][T10576] macvtap1: entered allmulticast mode
[  247.462639][T10576] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode
[  247.471721][T10576] batman_adv: batadv0: Adding interface: macvtap1
[  247.478217][T10576] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  247.505249][T10576] batman_adv: batadv0: Interface activated: macvtap1
[  247.538222][T10572] netlink: 'syz.1.1257': attribute type 6 has an invalid length.
[  247.767093][T10591] bond2: option mode: unable to set because the bond device is up
[  247.779936][T10591] __nla_validate_parse: 8 callbacks suppressed
[  247.779956][T10591] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1263'.
[  248.082330][T10605] ieee802154 phy0 wpan0: encryption failed: -22
[  248.248519][T10603] syzkaller1: entered promiscuous mode
[  248.254151][T10603] syzkaller1: entered allmulticast mode
[  248.848236][T10634] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1276'.
[  249.061136][T10647] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1280'.
[  249.090384][T10640] bond4: (slave geneve2): Releasing backup interface
[  249.120505][ T6181] netdevsim netdevsim1 eth0: unset [1, 1] type 2 family 0 port 20000 - 0
[  249.137406][T10647] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1280'.
[  249.151599][T10647] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1280'.
[  249.169123][ T6181] netdevsim netdevsim1 eth1: unset [1, 1] type 2 family 0 port 20000 - 0
[  249.180361][ T6181] netdevsim netdevsim1 eth2: unset [1, 1] type 2 family 0 port 20000 - 0
[  249.204404][ T6181] netdevsim netdevsim1 eth3: unset [1, 1] type 2 family 0 port 20000 - 0
[  249.347832][T10650] tap0: tun_chr_ioctl cmd 1074025677
[  249.353712][T10650] tap0: linktype set to 270
[  249.635680][T10666] netlink: 788 bytes leftover after parsing attributes in process `syz.4.1287'.
[  250.268686][T10689] FAULT_INJECTION: forcing a failure.
[  250.268686][T10689] name failslab, interval 1, probability 0, space 0, times 0
[  250.322176][T10689] CPU: 0 UID: 0 PID: 10689 Comm: syz.0.1293 Not tainted syzkaller #0 PREEMPT(full) 
[  250.322207][T10689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  250.322219][T10689] Call Trace:
[  250.322227][T10689]  <TASK>
[  250.322236][T10689]  dump_stack_lvl+0x189/0x250
[  250.322266][T10689]  ? __pfx____ratelimit+0x10/0x10
[  250.322286][T10689]  ? __pfx_dump_stack_lvl+0x10/0x10
[  250.322309][T10689]  ? __pfx__printk+0x10/0x10
[  250.322352][T10689]  should_fail_ex+0x414/0x560
[  250.322383][T10689]  should_failslab+0xa8/0x100
[  250.322411][T10689]  __kmalloc_cache_noprof+0x70/0x3d0
[  250.322436][T10689]  ? sctp_add_bind_addr+0x8c/0x370
[  250.322467][T10689]  sctp_add_bind_addr+0x8c/0x370
[  250.322498][T10689]  sctp_copy_local_addr_list+0x30b/0x4e0
[  250.322529][T10689]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  250.322555][T10689]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  250.322588][T10689]  ? sctp_v4_is_any+0x35/0x60
[  250.322605][T10689]  ? sctp_copy_one_addr+0x93/0x360
[  250.322638][T10689]  sctp_bind_addr_copy+0xb3/0x3c0
[  250.322666][T10689]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  250.322694][T10689]  sctp_connect_new_asoc+0x2e0/0x690
[  250.322720][T10689]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  250.322743][T10689]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  250.322764][T10689]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  250.322783][T10689]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  250.322804][T10689]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  250.322825][T10689]  ? security_sctp_bind_connect+0x7e/0x2e0
[  250.322853][T10689]  sctp_sendmsg+0x155c/0x2810
[  250.322888][T10689]  ? __pfx_sctp_sendmsg+0x10/0x10
[  250.322914][T10689]  ? aa_sk_perm+0x81e/0x950
[  250.322950][T10689]  ? __pfx_aa_sk_perm+0x10/0x10
[  250.322981][T10689]  ? sock_rps_record_flow+0x19/0x410
[  250.323011][T10689]  ? inet_sendmsg+0x2f4/0x370
[  250.323036][T10689]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  250.323061][T10689]  __sock_sendmsg+0x19c/0x270
[  250.323093][T10689]  ____sys_sendmsg+0x505/0x830
[  250.323122][T10689]  ? __pfx_____sys_sendmsg+0x10/0x10
[  250.323168][T10689]  ? import_iovec+0x74/0xa0
[  250.323195][T10689]  ___sys_sendmsg+0x21f/0x2a0
[  250.323221][T10689]  ? __pfx____sys_sendmsg+0x10/0x10
[  250.323290][T10689]  ? __fget_files+0x2a/0x420
[  250.323308][T10689]  ? __fget_files+0x3a0/0x420
[  250.323340][T10689]  __x64_sys_sendmsg+0x19b/0x260
[  250.323366][T10689]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  250.323400][T10689]  ? __pfx_ksys_write+0x10/0x10
[  250.323423][T10689]  ? rcu_is_watching+0x15/0xb0
[  250.323449][T10689]  ? do_syscall_64+0xbe/0x3b0
[  250.323475][T10689]  do_syscall_64+0xfa/0x3b0
[  250.323493][T10689]  ? lockdep_hardirqs_on+0x9c/0x150
[  250.323513][T10689]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.323533][T10689]  ? clear_bhb_loop+0x60/0xb0
[  250.323557][T10689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.323575][T10689] RIP: 0033:0x7f268fb8ebe9
[  250.323595][T10689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.323611][T10689] RSP: 002b:00007f26909ee038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  250.323632][T10689] RAX: ffffffffffffffda RBX: 00007f268fdc5fa0 RCX: 00007f268fb8ebe9
[  250.323646][T10689] RDX: 0000000020000000 RSI: 0000200000001640 RDI: 0000000000000003
[  250.323658][T10689] RBP: 00007f26909ee090 R08: 0000000000000000 R09: 0000000000000000
[  250.323670][T10689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  250.323682][T10689] R13: 00007f268fdc6038 R14: 00007f268fdc5fa0 R15: 00007ffed1551d08
[  250.323714][T10689]  </TASK>
[  250.765674][T10694] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1294'.
[  250.775262][T10694] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1294'.
[  251.416613][T10717] FAULT_INJECTION: forcing a failure.
[  251.416613][T10717] name failslab, interval 1, probability 0, space 0, times 0
[  251.433484][T10717] CPU: 1 UID: 0 PID: 10717 Comm: syz.2.1299 Not tainted syzkaller #0 PREEMPT(full) 
[  251.433515][T10717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  251.433526][T10717] Call Trace:
[  251.433534][T10717]  <TASK>
[  251.433543][T10717]  dump_stack_lvl+0x189/0x250
[  251.433572][T10717]  ? __pfx____ratelimit+0x10/0x10
[  251.433593][T10717]  ? __pfx_dump_stack_lvl+0x10/0x10
[  251.433614][T10717]  ? __pfx__printk+0x10/0x10
[  251.433659][T10717]  should_fail_ex+0x414/0x560
[  251.433691][T10717]  should_failslab+0xa8/0x100
[  251.433721][T10717]  __kmalloc_cache_noprof+0x70/0x3d0
[  251.433746][T10717]  ? sctp_add_bind_addr+0x8c/0x370
[  251.433781][T10717]  sctp_add_bind_addr+0x8c/0x370
[  251.433815][T10717]  sctp_copy_local_addr_list+0x30b/0x4e0
[  251.433849][T10717]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  251.433878][T10717]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  251.433910][T10717]  ? sctp_v6_is_any+0x64/0x80
[  251.433932][T10717]  ? sctp_copy_one_addr+0x93/0x360
[  251.433967][T10717]  sctp_bind_addr_copy+0xb3/0x3c0
[  251.433997][T10717]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  251.434029][T10717]  sctp_connect_new_asoc+0x2e0/0x690
[  251.434057][T10717]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  251.434076][T10717]  ? __local_bh_enable_ip+0x12d/0x1c0
[  251.434105][T10717]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  251.434127][T10717]  ? security_sctp_bind_connect+0x7e/0x2e0
[  251.434154][T10717]  sctp_sendmsg+0x155c/0x2810
[  251.434191][T10717]  ? __pfx_sctp_sendmsg+0x10/0x10
[  251.434227][T10717]  ? aa_sk_perm+0x81e/0x950
[  251.434261][T10717]  ? __pfx_aa_sk_perm+0x10/0x10
[  251.434294][T10717]  ? sock_rps_record_flow+0x19/0x410
[  251.434325][T10717]  ? inet_sendmsg+0x2f4/0x370
[  251.434356][T10717]  __sock_sendmsg+0x19c/0x270
[  251.434389][T10717]  __sys_sendto+0x3bd/0x520
[  251.434412][T10717]  ? __pfx___sys_sendto+0x10/0x10
[  251.434435][T10717]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  251.434472][T10717]  ? __fget_files+0x3a0/0x420
[  251.434512][T10717]  ? rcu_is_watching+0x15/0xb0
[  251.434546][T10717]  __x64_sys_sendto+0xde/0x100
[  251.434570][T10717]  do_syscall_64+0xfa/0x3b0
[  251.434588][T10717]  ? lockdep_hardirqs_on+0x9c/0x150
[  251.434606][T10717]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.434624][T10717]  ? clear_bhb_loop+0x60/0xb0
[  251.434646][T10717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.434664][T10717] RIP: 0033:0x7f523238ebe9
[  251.434681][T10717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.434696][T10717] RSP: 002b:00007f52331d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  251.434718][T10717] RAX: ffffffffffffffda RBX: 00007f52325c5fa0 RCX: 00007f523238ebe9
[  251.434731][T10717] RDX: 000000000002a0f5 RSI: 0000200000847fff RDI: 0000000000000004
[  251.434743][T10717] RBP: 00007f52331d5090 R08: 000020000005ffe4 R09: 000000000000001c
[  251.434755][T10717] R10: 00000000000000e0 R11: 0000000000000246 R12: 0000000000000002
[  251.434767][T10717] R13: 00007f52325c6038 R14: 00007f52325c5fa0 R15: 00007fff1ed28988
[  251.434801][T10717]  </TASK>
[  251.557702][T10709] syzkaller0: entered promiscuous mode
[  251.820621][T10709] syzkaller0: entered allmulticast mode
[  252.020135][T10722] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1300'.
[  252.056292][T10722] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1300'.
[  253.230392][T10748] FAULT_INJECTION: forcing a failure.
[  253.230392][T10748] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  253.254798][T10748] CPU: 1 UID: 0 PID: 10748 Comm: syz.3.1306 Not tainted syzkaller #0 PREEMPT(full) 
[  253.254829][T10748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  253.254840][T10748] Call Trace:
[  253.254848][T10748]  <TASK>
[  253.254857][T10748]  dump_stack_lvl+0x189/0x250
[  253.254886][T10748]  ? __pfx____ratelimit+0x10/0x10
[  253.254906][T10748]  ? __pfx_dump_stack_lvl+0x10/0x10
[  253.254926][T10748]  ? __pfx__printk+0x10/0x10
[  253.254949][T10748]  ? __might_fault+0xb0/0x130
[  253.254984][T10748]  should_fail_ex+0x414/0x560
[  253.255011][T10748]  _copy_from_iter+0x1de/0x1790
[  253.255027][T10748]  ? __lock_acquire+0xab9/0xd20
[  253.255055][T10748]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  253.255082][T10748]  ? policy_nodemask+0x27c/0x720
[  253.255106][T10748]  ? __pfx__copy_from_iter+0x10/0x10
[  253.255132][T10748]  ? set_page_refcounted+0xa0/0x1e0
[  253.255153][T10748]  ? page_copy_sane+0x4e/0x280
[  253.255173][T10748]  copy_page_from_iter+0xdd/0x170
[  253.255197][T10748]  tun_get_user+0x1d7b/0x3e20
[  253.255226][T10748]  ? tun_get_user+0x6f6/0x3e20
[  253.255254][T10748]  ? aa_file_perm+0x44d/0x1550
[  253.255272][T10748]  ? __pfx_tun_get_user+0x10/0x10
[  253.255290][T10748]  ? _parse_integer_limit+0x1ae/0x1f0
[  253.255326][T10748]  ? __lock_acquire+0xab9/0xd20
[  253.255355][T10748]  ? ref_tracker_alloc+0x318/0x460
[  253.255376][T10748]  ? __lock_acquire+0xab9/0xd20
[  253.255414][T10748]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  253.255447][T10748]  ? tun_get+0x1c/0x2f0
[  253.255471][T10748]  ? tun_get+0x1c/0x2f0
[  253.255490][T10748]  ? tun_get+0x1c/0x2f0
[  253.255515][T10748]  tun_chr_write_iter+0x113/0x200
[  253.255535][T10748]  vfs_write+0x5c6/0xb30
[  253.255563][T10748]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  253.255582][T10748]  ? __pfx_vfs_write+0x10/0x10
[  253.255619][T10748]  ? __fget_files+0x2a/0x420
[  253.255647][T10748]  ksys_write+0x145/0x250
[  253.255672][T10748]  ? __pfx_ksys_write+0x10/0x10
[  253.255692][T10748]  ? rcu_is_watching+0x15/0xb0
[  253.255715][T10748]  ? do_syscall_64+0xbe/0x3b0
[  253.255738][T10748]  do_syscall_64+0xfa/0x3b0
[  253.255757][T10748]  ? lockdep_hardirqs_on+0x9c/0x150
[  253.255775][T10748]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.255794][T10748]  ? clear_bhb_loop+0x60/0xb0
[  253.255816][T10748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.255835][T10748] RIP: 0033:0x7f3b95d8d69f
[  253.255853][T10748] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  253.255869][T10748] RSP: 002b:00007f3b96c40000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  253.255891][T10748] RAX: ffffffffffffffda RBX: 00007f3b95fc5fa0 RCX: 00007f3b95d8d69f
[  253.255905][T10748] RDX: 000000000000002a RSI: 00002000000005c0 RDI: 00000000000000c8
[  253.255917][T10748] RBP: 00007f3b96c40090 R08: 0000000000000000 R09: 0000000000000000
[  253.255929][T10748] R10: 000000000000002a R11: 0000000000000293 R12: 0000000000000001
[  253.255940][T10748] R13: 00007f3b95fc6038 R14: 00007f3b95fc5fa0 R15: 00007ffdaeddcaa8
[  253.255972][T10748]  </TASK>
[  254.791224][T10759] FAULT_INJECTION: forcing a failure.
[  254.791224][T10759] name failslab, interval 1, probability 0, space 0, times 0
[  254.824314][T10759] CPU: 1 UID: 0 PID: 10759 Comm: syz.2.1309 Not tainted syzkaller #0 PREEMPT(full) 
[  254.824343][T10759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  254.824353][T10759] Call Trace:
[  254.824360][T10759]  <TASK>
[  254.824368][T10759]  dump_stack_lvl+0x189/0x250
[  254.824396][T10759]  ? __pfx____ratelimit+0x10/0x10
[  254.824416][T10759]  ? __pfx_dump_stack_lvl+0x10/0x10
[  254.824438][T10759]  ? __pfx__printk+0x10/0x10
[  254.824469][T10759]  ? __pfx___might_resched+0x10/0x10
[  254.824492][T10759]  should_fail_ex+0x414/0x560
[  254.824522][T10759]  should_failslab+0xa8/0x100
[  254.824549][T10759]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  254.824581][T10759]  ? __alloc_skb+0x112/0x2d0
[  254.824606][T10759]  __alloc_skb+0x112/0x2d0
[  254.824628][T10759]  netlink_dump+0x1b7/0xe90
[  254.824647][T10759]  ? __pfx__copy_to_iter+0x10/0x10
[  254.824663][T10759]  ? __skb_try_recv_from_queue+0x58f/0x730
[  254.824697][T10759]  ? __pfx_netlink_dump+0x10/0x10
[  254.824749][T10759]  netlink_recvmsg+0x676/0xa30
[  254.824781][T10759]  ? __pfx_netlink_recvmsg+0x10/0x10
[  254.824799][T10759]  ? __up_read+0x280/0x680
[  254.824823][T10759]  ? __pfx___up_read+0x10/0x10
[  254.824845][T10759]  ? do_user_addr_fault+0xbc1/0x1390
[  254.824878][T10759]  ? __pfx_netlink_recvmsg+0x10/0x10
[  254.824899][T10759]  sock_recvmsg_nosec+0x186/0x1c0
[  254.824933][T10759]  ____sys_recvmsg+0x3aa/0x460
[  254.824967][T10759]  ? __pfx_____sys_recvmsg+0x10/0x10
[  254.825010][T10759]  ? import_iovec+0x74/0xa0
[  254.825038][T10759]  ___sys_recvmsg+0x1b5/0x510
[  254.825078][T10759]  ? __pfx____sys_recvmsg+0x10/0x10
[  254.825134][T10759]  ? __pfx_set_normalized_timespec64+0x10/0x10
[  254.825174][T10759]  do_recvmmsg+0x307/0x770
[  254.825209][T10759]  ? __pfx_do_recvmmsg+0x10/0x10
[  254.825244][T10759]  ? _copy_from_user+0x94/0xb0
[  254.825285][T10759]  __x64_sys_recvmmsg+0x1af/0x240
[  254.825313][T10759]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  254.825332][T10759]  ? rcu_is_watching+0x15/0xb0
[  254.825358][T10759]  ? do_syscall_64+0xbe/0x3b0
[  254.825382][T10759]  do_syscall_64+0xfa/0x3b0
[  254.825401][T10759]  ? lockdep_hardirqs_on+0x9c/0x150
[  254.825420][T10759]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.825439][T10759]  ? clear_bhb_loop+0x60/0xb0
[  254.825463][T10759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.825481][T10759] RIP: 0033:0x7f523238ebe9
[  254.825500][T10759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  254.825516][T10759] RSP: 002b:00007f52331d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  254.825536][T10759] RAX: ffffffffffffffda RBX: 00007f52325c5fa0 RCX: 00007f523238ebe9
[  254.825550][T10759] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000003
[  254.825563][T10759] RBP: 00007f52331d5090 R08: 00002000000001c0 R09: 0000000000000000
[  254.825575][T10759] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  254.825586][T10759] R13: 00007f52325c6038 R14: 00007f52325c5fa0 R15: 00007fff1ed28988
[  254.825620][T10759]  </TASK>
[  255.183380][T10762] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1311'.
[  255.266531][T10762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1311'.
[  255.287221][T10762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1311'.
[  255.297095][T10762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1311'.
[  255.306459][T10762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1311'.
[  255.315656][T10762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1311'.
[  255.327364][T10762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1311'.
[  255.336519][T10762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1311'.
[  255.346350][T10762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1311'.
[  255.362128][T10762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1311'.
[  255.806616][T10793] netlink: 'syz.2.1322': attribute type 1 has an invalid length.
[  255.989865][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  256.094149][T10803] macvtap1: entered allmulticast mode
[  256.112280][T10803] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode
[  256.128173][T10803] batman_adv: batadv0: Adding interface: macvtap1
[  256.139664][T10803] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  256.179292][T10803] batman_adv: batadv0: Interface activated: macvtap1
[  256.259826][T10808] tap0: tun_chr_ioctl cmd 1074025677
[  256.266577][T10808] tap0: linktype set to 270
[  256.478689][T10820] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 0
[  256.552133][T10822] ieee802154 phy0 wpan0: encryption failed: -22
[  257.323658][T10855] veth0: entered promiscuous mode
[  257.679287][T10863] netlink: 'syz.4.1342': attribute type 5 has an invalid length.
[  257.786743][T10862] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  257.798656][T10866] netlink: 'syz.0.1344': attribute type 1 has an invalid length.
[  257.817764][T10863] geneve3: entered promiscuous mode
[  257.859684][T10863] geneve3: entered allmulticast mode
[  257.884429][T10866] netlink: 'syz.0.1344': attribute type 2 has an invalid length.
[  257.919160][ T7534] netdevsim netdevsim4 eth0: set [1, 1] type 2 family 0 port 256 - 0
[  257.951210][ T6294] udevd[6294]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  257.966633][ T7534] netdevsim netdevsim4 eth1: set [1, 1] type 2 family 0 port 256 - 0
[  258.030219][T10866] ip6erspan0: entered promiscuous mode
[  258.046413][ T7534] netdevsim netdevsim4 eth2: set [1, 1] type 2 family 0 port 256 - 0
[  258.080186][ T6177] netdevsim netdevsim4 eth3: set [1, 1] type 2 family 0 port 256 - 0
[  258.260045][T10876] tap0: tun_chr_ioctl cmd 1074025677
[  258.294971][T10884] IPv6: Can't replace route, no match found
[  258.301369][T10876] tap0: linktype set to 270
[  258.714370][T10896] netlink: 'syz.4.1353': attribute type 6 has an invalid length.
[  258.775079][   T36] erspan0: left promiscuous mode
[  260.176442][T10958] netlink: 'syz.1.1368': attribute type 6 has an invalid length.
[  260.192432][T10958] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  260.228948][T10958] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  260.441139][T10970] netlink: 'syz.2.1372': attribute type 11 has an invalid length.
[  260.590379][T10978] __nla_validate_parse: 62 callbacks suppressed
[  260.590401][T10978] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1372'.
[  260.975404][T10993] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1382'.
[  260.996470][T10993] macsec1: entered promiscuous mode
[  261.001878][T10993] batadv0: entered promiscuous mode
[  261.050418][T10993] batadv0: left promiscuous mode
[  261.539082][T11019] net_ratelimit: 3314 callbacks suppressed
[  261.539101][T11019] IPVS: dh: FWM 3 0x00000003 - no destination available
[  261.651700][T11021] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1394'.
[  261.669463][T11021] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1394'.
[  261.680747][T11021] netlink: 'syz.4.1394': attribute type 6 has an invalid length.
[  261.869344][T11033] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1397'.
[  262.091883][T11043] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  262.391909][T11061] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  262.418248][T11061] team0: Device macvtap2 is already an upper device of the team interface
[  262.527982][T11073] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1413'.
[  262.555982][T11063] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1410'.
[  262.596862][T11063] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1410'.
[  262.644870][T11063] netlink: 'syz.3.1410': attribute type 6 has an invalid length.
[  263.042931][T11098] netlink: 'syz.0.1423': attribute type 1 has an invalid length.
[  263.077319][T11098] netlink: 172 bytes leftover after parsing attributes in process `syz.0.1423'.
[  263.128246][T11098] netlink: 'syz.0.1423': attribute type 1 has an invalid length.
[  263.290583][   T30] audit: type=1107 audit(1756948487.042:4): pid=11101 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  263.306140][T11109] netlink: 'syz.4.1426': attribute type 12 has an invalid length.
[  263.337120][T11114] FAULT_INJECTION: forcing a failure.
[  263.337120][T11114] name failslab, interval 1, probability 0, space 0, times 0
[  263.356747][T11114] CPU: 0 UID: 0 PID: 11114 Comm: syz.2.1428 Not tainted syzkaller #0 PREEMPT(full) 
[  263.356775][T11114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  263.356787][T11114] Call Trace:
[  263.356795][T11114]  <TASK>
[  263.356803][T11114]  dump_stack_lvl+0x189/0x250
[  263.356832][T11114]  ? __pfx____ratelimit+0x10/0x10
[  263.356853][T11114]  ? __pfx_dump_stack_lvl+0x10/0x10
[  263.356875][T11114]  ? __pfx__printk+0x10/0x10
[  263.356920][T11114]  should_fail_ex+0x414/0x560
[  263.356952][T11114]  should_failslab+0xa8/0x100
[  263.357081][T11114]  __kmalloc_cache_noprof+0x70/0x3d0
[  263.357108][T11114]  ? sctp_add_bind_addr+0x8c/0x370
[  263.357143][T11114]  sctp_add_bind_addr+0x8c/0x370
[  263.357178][T11114]  sctp_copy_local_addr_list+0x30b/0x4e0
[  263.357212][T11114]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  263.357239][T11114]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  263.357274][T11114]  ? sctp_v4_is_any+0x35/0x60
[  263.357291][T11114]  ? sctp_copy_one_addr+0x93/0x360
[  263.357325][T11114]  sctp_bind_addr_copy+0xb3/0x3c0
[  263.357356][T11114]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  263.357387][T11114]  sctp_connect_new_asoc+0x2e0/0x690
[  263.357413][T11114]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  263.357437][T11114]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  263.357456][T11114]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  263.357471][T11114]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  263.357488][T11114]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  263.357505][T11114]  ? security_sctp_bind_connect+0x7e/0x2e0
[  263.357528][T11114]  sctp_sendmsg+0x155c/0x2810
[  263.357556][T11114]  ? __pfx_sctp_sendmsg+0x10/0x10
[  263.357577][T11114]  ? aa_sk_perm+0x81e/0x950
[  263.357603][T11114]  ? __pfx_aa_sk_perm+0x10/0x10
[  263.357628][T11114]  ? sock_rps_record_flow+0x19/0x410
[  263.357651][T11114]  ? inet_sendmsg+0x2f4/0x370
[  263.357669][T11114]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  263.357688][T11114]  __sock_sendmsg+0x19c/0x270
[  263.357712][T11114]  ____sys_sendmsg+0x505/0x830
[  263.357734][T11114]  ? __pfx_____sys_sendmsg+0x10/0x10
[  263.357760][T11114]  ? import_iovec+0x74/0xa0
[  263.357782][T11114]  ___sys_sendmsg+0x21f/0x2a0
[  263.357801][T11114]  ? __pfx____sys_sendmsg+0x10/0x10
[  263.357854][T11114]  ? __fget_files+0x2a/0x420
[  263.357866][T11114]  ? __fget_files+0x3a0/0x420
[  263.357890][T11114]  __x64_sys_sendmsg+0x19b/0x260
[  263.357910][T11114]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  263.357936][T11114]  ? __pfx_ksys_write+0x10/0x10
[  263.357954][T11114]  ? rcu_is_watching+0x15/0xb0
[  263.357981][T11114]  ? do_syscall_64+0xbe/0x3b0
[  263.358001][T11114]  do_syscall_64+0xfa/0x3b0
[  263.358015][T11114]  ? lockdep_hardirqs_on+0x9c/0x150
[  263.358029][T11114]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.358044][T11114]  ? clear_bhb_loop+0x60/0xb0
[  263.358062][T11114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.358076][T11114] RIP: 0033:0x7f523238ebe9
[  263.358091][T11114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.358103][T11114] RSP: 002b:00007f52331d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  263.358121][T11114] RAX: ffffffffffffffda RBX: 00007f52325c5fa0 RCX: 00007f523238ebe9
[  263.358131][T11114] RDX: 0000000020000000 RSI: 0000200000001640 RDI: 0000000000000003
[  263.358141][T11114] RBP: 00007f52331d5090 R08: 0000000000000000 R09: 0000000000000000
[  263.358150][T11114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  263.358158][T11114] R13: 00007f52325c6038 R14: 00007f52325c5fa0 R15: 00007fff1ed28988
[  263.358185][T11114]  </TASK>
[  264.076111][T11118] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  264.091486][T11118] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1430'.
[  264.611670][T11145] netlink: 'syz.0.1440': attribute type 1 has an invalid length.
[  264.676603][T11145] 8021q: adding VLAN 0 to HW filter on device bond5
[  264.802966][T11145] veth7: entered promiscuous mode
[  264.815828][T11145] bond5: (slave veth7): Enslaving as an active interface with a down link
[  264.838022][T11157] batadv1: entered promiscuous mode
[  264.843400][T11157] batadv1: entered allmulticast mode
[  264.908100][T11152] bond4: (slave erspan0): Releasing active interface
[  265.250352][T11174] netlink: 'syz.2.1449': attribute type 7 has an invalid length.
[  265.263856][T11174] netlink: 'syz.2.1449': attribute type 8 has an invalid length.
[  265.585284][   T55] block nbd0: Possible stuck request ffff888025465080: control (read@0,1024B). Runtime 90 seconds
[  265.596388][   T55] block nbd0: Possible stuck request ffff888025465240: control (read@1024,1024B). Runtime 90 seconds
[  265.607741][   T55] block nbd0: Possible stuck request ffff888025465400: control (read@2048,1024B). Runtime 90 seconds
[  265.618821][   T55] block nbd0: Possible stuck request ffff8880254655c0: control (read@3072,1024B). Runtime 90 seconds
[  266.133215][T11197] __nla_validate_parse: 5 callbacks suppressed
[  266.133236][T11197] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1454'.
[  266.185133][T11192] nbd2: detected capacity change from 0 to 127
[  266.193012][T11197] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  266.256683][T11195] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  266.288889][ T5871] block nbd2: Receive control failed (result -104)
[  266.333060][T11201] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.452241][T11201] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.536017][T11201] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.643008][T11201] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.892450][ T6177] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  266.923137][ T6181] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  267.028584][T11230] IPv6: Can't replace route, no match found
[  267.041536][   T13] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  267.242904][   T12] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  267.371602][T11236] netlink: 'syz.2.1471': attribute type 1 has an invalid length.
[  267.456536][T11236] 8021q: adding VLAN 0 to HW filter on device bond4
[  267.562841][T11236] bond3: (slave erspan0): Releasing active interface
[  267.579330][T11236] ip6gretap2: entered promiscuous mode
[  267.618553][T11236] bond4: (slave erspan0): making interface the new active one
[  267.657489][T11236] bond4: (slave erspan0): Enslaving as an active interface with an up link
[  267.883286][T11264] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1480'.
[  267.904104][T11264] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1480'.
[  268.010782][T11257] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1479'.
[  268.972163][T11310] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1495'.
[  269.008401][T11312] openvswitch: netlink: Geneve opt len 30 is not a multiple of 4.
[  269.016725][T11310] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1495'.
[  269.028062][T11310] netlink: 'syz.3.1495': attribute type 6 has an invalid length.
[  269.236028][T11324] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1498'.
[  269.839919][T11338] FAULT_INJECTION: forcing a failure.
[  269.839919][T11338] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  269.881579][T11338] CPU: 0 UID: 0 PID: 11338 Comm: syz.0.1502 Not tainted syzkaller #0 PREEMPT(full) 
[  269.881609][T11338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  269.881622][T11338] Call Trace:
[  269.881631][T11338]  <TASK>
[  269.881639][T11338]  dump_stack_lvl+0x189/0x250
[  269.881670][T11338]  ? __pfx____ratelimit+0x10/0x10
[  269.881691][T11338]  ? __pfx_dump_stack_lvl+0x10/0x10
[  269.881714][T11338]  ? __pfx__printk+0x10/0x10
[  269.881742][T11338]  ? __might_fault+0xb0/0x130
[  269.881782][T11338]  should_fail_ex+0x414/0x560
[  269.881814][T11338]  _copy_from_user+0x2d/0xb0
[  269.881838][T11338]  ___sys_recvmsg+0x12e/0x510
[  269.881870][T11338]  ? __pfx____sys_recvmsg+0x10/0x10
[  269.881923][T11338]  ? __pfx_set_normalized_timespec64+0x10/0x10
[  269.881964][T11338]  do_recvmmsg+0x307/0x770
[  269.881998][T11338]  ? __pfx_do_recvmmsg+0x10/0x10
[  269.882038][T11338]  ? _copy_from_user+0x94/0xb0
[  269.882079][T11338]  __x64_sys_recvmmsg+0x1af/0x240
[  269.882107][T11338]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  269.882145][T11338]  ? do_syscall_64+0xbe/0x3b0
[  269.882171][T11338]  do_syscall_64+0xfa/0x3b0
[  269.882190][T11338]  ? lockdep_hardirqs_on+0x9c/0x150
[  269.882210][T11338]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.882229][T11338]  ? clear_bhb_loop+0x60/0xb0
[  269.882253][T11338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.882271][T11338] RIP: 0033:0x7f268fb8ebe9
[  269.882289][T11338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  269.882305][T11338] RSP: 002b:00007f26909cd038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  269.882328][T11338] RAX: ffffffffffffffda RBX: 00007f268fdc6090 RCX: 00007f268fb8ebe9
[  269.882342][T11338] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000003
[  269.882355][T11338] RBP: 00007f26909cd090 R08: 00002000000001c0 R09: 0000000000000000
[  269.882367][T11338] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  269.882379][T11338] R13: 00007f268fdc6128 R14: 00007f268fdc6090 R15: 00007ffed1551d08
[  269.882412][T11338]  </TASK>
[  270.171746][T11343] syzkaller0: entered allmulticast mode
[  270.448123][T11354] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1509'.
[  270.611956][T11354] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1509'.
[  270.623906][T11358] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1510'.
[  270.693075][T11361] netlink: 'syz.2.1511': attribute type 1 has an invalid length.
[  270.867068][T11364] bond5: (slave vxcan3): The slave device specified does not support setting the MAC address
[  270.883766][T11364] bond5: (slave vxcan3): Error -95 calling set_mac_address
[  271.220548][T11372] __nla_validate_parse: 1 callbacks suppressed
[  271.220568][T11372] netlink: 136 bytes leftover after parsing attributes in process `syz.0.1515'.
[  271.295447][T11372] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1515'.
[  271.379884][T11381] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  271.414441][T11382] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1517'.
[  271.423766][T11381] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  271.443203][T11382] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1517'.
[  271.461042][T11377] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1514'.
[  271.470698][T11377] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1514'.
[  271.484442][T11377] netlink: 'syz.1.1514': attribute type 6 has an invalid length.
[  271.493211][T11372] netlink: 136 bytes leftover after parsing attributes in process `syz.0.1515'.
[  271.508256][T11372] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1515'.
[  271.536989][T11372] netlink: 136 bytes leftover after parsing attributes in process `syz.0.1515'.
[  271.576406][T11372] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1515'.
[  272.013066][T11398] team0: entered promiscuous mode
[  272.034704][T11398] team_slave_0: entered promiscuous mode
[  272.040739][T11398] team_slave_1: entered promiscuous mode
[  272.059899][T11398] geneve0: entered promiscuous mode
[  272.088462][T11398] bond0: entered promiscuous mode
[  272.093552][T11398] bond_slave_0: entered promiscuous mode
[  272.146767][T11398] bond_slave_1: entered promiscuous mode
[  272.153879][T11398] hsr0: Slave A (team0) is not up; please bring it up to get a fully working HSR network
[  272.198294][T11398] hsr0: Slave B (bond0) is not up; please bring it up to get a fully working HSR network
[  272.213102][T11402] FAULT_INJECTION: forcing a failure.
[  272.213102][T11402] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  272.226994][T11402] CPU: 0 UID: 0 PID: 11402 Comm: syz.1.1524 Not tainted syzkaller #0 PREEMPT(full) 
[  272.227020][T11402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  272.227031][T11402] Call Trace:
[  272.227040][T11402]  <TASK>
[  272.227048][T11402]  dump_stack_lvl+0x189/0x250
[  272.227076][T11402]  ? __pfx____ratelimit+0x10/0x10
[  272.227105][T11402]  ? __pfx_dump_stack_lvl+0x10/0x10
[  272.227128][T11402]  ? __pfx__printk+0x10/0x10
[  272.227155][T11402]  ? __might_fault+0xb0/0x130
[  272.227194][T11402]  should_fail_ex+0x414/0x560
[  272.227225][T11402]  _copy_from_user+0x2d/0xb0
[  272.227249][T11402]  ___sys_recvmsg+0x12e/0x510
[  272.227279][T11402]  ? __pfx____sys_recvmsg+0x10/0x10
[  272.227339][T11402]  ? __might_fault+0xb0/0x130
[  272.227369][T11402]  do_recvmmsg+0x307/0x770
[  272.227402][T11402]  ? __pfx_do_recvmmsg+0x10/0x10
[  272.227440][T11402]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  272.227483][T11402]  __x64_sys_recvmmsg+0x190/0x240
[  272.227510][T11402]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  272.227541][T11402]  ? do_syscall_64+0xbe/0x3b0
[  272.227565][T11402]  do_syscall_64+0xfa/0x3b0
[  272.227587][T11402]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.227605][T11402]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  272.227623][T11402]  ? clear_bhb_loop+0x60/0xb0
[  272.227647][T11402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.227665][T11402] RIP: 0033:0x7fb1d838ebe9
[  272.227683][T11402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  272.227700][T11402] RSP: 002b:00007fb1d9126038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  272.227721][T11402] RAX: ffffffffffffffda RBX: 00007fb1d85c5fa0 RCX: 00007fb1d838ebe9
[  272.227734][T11402] RDX: 040000000000049e RSI: 0000200000000300 RDI: 0000000000000003
[  272.227746][T11402] RBP: 00007fb1d9126090 R08: 0000000000000000 R09: 0000000000000000
[  272.227758][T11402] R10: 00001000000000fe R11: 0000000000000246 R12: 0000000000000002
[  272.227770][T11402] R13: 00007fb1d85c6038 R14: 00007fb1d85c5fa0 R15: 00007fff7db40448
[  272.227808][T11402]  </TASK>
[  272.249993][T11398] 8021q: adding VLAN 0 to HW filter on device hsr0
[  272.851525][T11423] netlink: 'syz.1.1532': attribute type 1 has an invalid length.
[  272.943166][T11423] 8021q: adding VLAN 0 to HW filter on device bond5
[  273.052816][T11423] erspan0: entered allmulticast mode
[  273.073927][T11423] bond5: (slave erspan0): making interface the new active one
[  273.093265][T11423] bond5: (slave erspan0): Enslaving as an active interface with an up link
[  273.742896][T11461] erspan0: left allmulticast mode
[  273.828494][T11461] ..0·: left allmulticast mode
[  273.853396][T11461] hsr_slave_0: left allmulticast mode
[  273.857494][T11469] RDS: rds_bind could not find a transport for fe88::2, load rds_tcp or rds_rdma?
[  273.872392][T11461] hsr_slave_1: left allmulticast mode
[  273.913395][T11461] veth5: left promiscuous mode
[  273.920127][T11472] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0
[  273.931809][T11461] batman_adv: batadv0: Interface deactivated: ip6gretap3
[  273.954866][T11461] veth7: left promiscuous mode
[  273.969619][T11461] veth9: left promiscuous mode
[  273.980675][T11461] veth0: left promiscuous mode
[  274.026675][T11467] batadv0: entered promiscuous mode
[  274.032328][T11467] vlan3: entered promiscuous mode
[  274.141928][T11481] tipc: Started in network mode
[  274.151212][T11481] tipc: Node identity 1e942f789476, cluster identity 4711
[  274.159138][T11481] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  274.179447][T11480] bond4: (slave erspan0): Releasing active interface
[  274.229139][T11480] bond3: (slave ip6gretap2): Releasing active interface
[  274.260802][T11480] bond3: (slave ip6gretap2): the permanent HWaddr of slave - aa:fe:b9:cd:21:8e - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  274.278615][T11480] ip6gretap2: left promiscuous mode
[  274.291782][T11480] bond3: (slave veth5): Releasing active interface
[  274.310770][T11477] syzkaller0: entered promiscuous mode
[  274.325135][T11477] syzkaller0: entered allmulticast mode
[  274.496461][T11477] tipc: Resetting bearer <eth:syzkaller0>
[  274.513383][T11476] tipc: Resetting bearer <eth:syzkaller0>
[  274.578708][T11476] tipc: Disabling bearer <eth:syzkaller0>
[  275.373040][T11530] netlink: 'syz.4.1568': attribute type 1 has an invalid length.
[  275.405977][T11535] batman_adv: batadv0: Adding interface: ip6gretap2
[  275.412640][T11535] batman_adv: batadv0: The MTU of interface ip6gretap2 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  275.444288][T11535] batman_adv: batadv0: Interface activated: ip6gretap2
[  275.526791][T11530] 8021q: adding VLAN 0 to HW filter on device bond6
[  275.554039][T11537] bond6: (slave ip6gretap1): making interface the new active one
[  275.563683][T11537] bond6: (slave ip6gretap1): Enslaving as an active interface with an up link
[  275.681280][T11541] veth3: entered promiscuous mode
[  275.700384][T11546] netlink: 'syz.3.1574': attribute type 6 has an invalid length.
[  275.709714][T11530] erspan0: entered allmulticast mode
[  275.725996][T11530] bond6: (slave erspan0): Enslaving as an active interface with an up link
[  275.746336][T11548] macsec1: entered promiscuous mode
[  275.892892][T11557] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  276.079613][T11567] netlink: 'syz.0.1578': attribute type 1 has an invalid length.
[  276.218933][T11567] 8021q: adding VLAN 0 to HW filter on device bond6
[  276.253138][T11574] veth9: entered promiscuous mode
[  276.301717][T11576] tap0: tun_chr_ioctl cmd 1074025677
[  276.310048][T11576] tap0: linktype set to 270
[  276.334514][T11567] bond6: (slave erspan0): making interface the new active one
[  276.343120][T11567] bond6: (slave erspan0): Enslaving as an active interface with an up link
[  276.586782][T11582] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  276.599913][T11582] netlink: 'syz.0.1582': attribute type 58 has an invalid length.
[  276.608011][T11582] __nla_validate_parse: 76 callbacks suppressed
[  276.608032][T11582] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1582'.
[  276.921382][T11590] bond6: entered promiscuous mode
[  277.037162][T11599] netlink: 'syz.1.1589': attribute type 1 has an invalid length.
[  277.037874][T11596] macvtap2: entered allmulticast mode
[  277.086464][T11603] netlink: 248 bytes leftover after parsing attributes in process `syz.0.1590'.
[  277.089208][T11596] batman_adv: batadv0: Adding interface: macvtap2
[  277.122739][T11596] batman_adv: batadv0: The MTU of interface macvtap2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  277.157985][T11596] batman_adv: batadv0: Interface activated: macvtap2
[  277.268743][T11599] 8021q: adding VLAN 0 to HW filter on device bond6
[  277.351694][T11610] veth7: entered promiscuous mode
[  277.373488][T11614] bond5: (slave erspan0): Releasing active interface
[  277.398719][T11622] netlink: 'syz.2.1595': attribute type 1 has an invalid length.
[  277.416541][T11614] bond6: (slave erspan0): making interface the new active one
[  277.433513][T11614] bond6: (slave erspan0): Enslaving as an active interface with an up link
[  277.526034][T11626] veth7: entered promiscuous mode
[  277.545708][T11616] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1593'.
[  277.558527][T11616] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1593'.
[  277.568355][T11616] netlink: 'syz.0.1593': attribute type 6 has an invalid length.
[  277.622681][T11622] 8021q: adding VLAN 0 to HW filter on device bond7
[  277.625656][T11633] netlink: 'syz.1.1596': attribute type 1 has an invalid length.
[  277.665805][T11630] bond7: (slave erspan0): making interface the new active one
[  277.676467][T11630] bond7: (slave erspan0): Enslaving as an active interface with an up link
[  277.749273][T11633] 8021q: adding VLAN 0 to HW filter on device bond7
[  277.866490][T11637] veth9: entered promiscuous mode
[  277.899375][T11633] bond6: (slave erspan0): Releasing active interface
[  277.922972][T11633] bond7: (slave erspan0): making interface the new active one
[  277.935776][T11633] bond7: (slave erspan0): Enslaving as an active interface with an up link
[  278.220542][T11651] netlink: 248 bytes leftover after parsing attributes in process `syz.2.1602'.
[  278.353836][T11658] FAULT_INJECTION: forcing a failure.
[  278.353836][T11658] name failslab, interval 1, probability 0, space 0, times 0
[  278.377652][T11658] CPU: 1 UID: 0 PID: 11658 Comm: syz.2.1606 Not tainted syzkaller #0 PREEMPT(full) 
[  278.377682][T11658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  278.377693][T11658] Call Trace:
[  278.377701][T11658]  <TASK>
[  278.377709][T11658]  dump_stack_lvl+0x189/0x250
[  278.377739][T11658]  ? __pfx____ratelimit+0x10/0x10
[  278.377760][T11658]  ? __pfx_dump_stack_lvl+0x10/0x10
[  278.377794][T11658]  ? __pfx__printk+0x10/0x10
[  278.377839][T11658]  should_fail_ex+0x414/0x560
[  278.377872][T11658]  should_failslab+0xa8/0x100
[  278.377902][T11658]  __kmalloc_cache_noprof+0x70/0x3d0
[  278.377928][T11658]  ? sctp_add_bind_addr+0x8c/0x370
[  278.377963][T11658]  sctp_add_bind_addr+0x8c/0x370
[  278.377999][T11658]  sctp_copy_local_addr_list+0x30b/0x4e0
[  278.378032][T11658]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  278.378062][T11658]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  278.378097][T11658]  ? sctp_v4_is_any+0x35/0x60
[  278.378115][T11658]  ? sctp_copy_one_addr+0x93/0x360
[  278.378149][T11658]  sctp_bind_addr_copy+0xb3/0x3c0
[  278.378180][T11658]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  278.378211][T11658]  sctp_connect_new_asoc+0x2e0/0x690
[  278.378238][T11658]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  278.378264][T11658]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  278.378287][T11658]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  278.378306][T11658]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  278.378329][T11658]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  278.378352][T11658]  ? security_sctp_bind_connect+0x7e/0x2e0
[  278.378381][T11658]  sctp_sendmsg+0x155c/0x2810
[  278.378419][T11658]  ? __pfx_sctp_sendmsg+0x10/0x10
[  278.378447][T11658]  ? aa_sk_perm+0x81e/0x950
[  278.378482][T11658]  ? __pfx_aa_sk_perm+0x10/0x10
[  278.378514][T11658]  ? sock_rps_record_flow+0x19/0x410
[  278.378545][T11658]  ? inet_sendmsg+0x2f4/0x370
[  278.378568][T11658]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  278.378593][T11658]  __sock_sendmsg+0x19c/0x270
[  278.378625][T11658]  ____sys_sendmsg+0x505/0x830
[  278.378656][T11658]  ? __pfx_____sys_sendmsg+0x10/0x10
[  278.378691][T11658]  ? import_iovec+0x74/0xa0
[  278.378719][T11658]  ___sys_sendmsg+0x21f/0x2a0
[  278.378745][T11658]  ? __pfx____sys_sendmsg+0x10/0x10
[  278.378819][T11658]  ? __fget_files+0x2a/0x420
[  278.378836][T11658]  ? __fget_files+0x3a0/0x420
[  278.378867][T11658]  __x64_sys_sendmsg+0x19b/0x260
[  278.378892][T11658]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  278.378927][T11658]  ? __pfx_ksys_write+0x10/0x10
[  278.378950][T11658]  ? rcu_is_watching+0x15/0xb0
[  278.378975][T11658]  ? do_syscall_64+0xbe/0x3b0
[  278.379001][T11658]  do_syscall_64+0xfa/0x3b0
[  278.379020][T11658]  ? lockdep_hardirqs_on+0x9c/0x150
[  278.379039][T11658]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.379057][T11658]  ? clear_bhb_loop+0x60/0xb0
[  278.379081][T11658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.379100][T11658] RIP: 0033:0x7f523238ebe9
[  278.379118][T11658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.379134][T11658] RSP: 002b:00007f52331d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  278.379156][T11658] RAX: ffffffffffffffda RBX: 00007f52325c5fa0 RCX: 00007f523238ebe9
[  278.379170][T11658] RDX: 0000000020000000 RSI: 0000200000001640 RDI: 0000000000000003
[  278.379183][T11658] RBP: 00007f52331d5090 R08: 0000000000000000 R09: 0000000000000000
[  278.379195][T11658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  278.379206][T11658] R13: 00007f52325c6038 R14: 00007f52325c5fa0 R15: 00007fff1ed28988
[  278.379241][T11658]  </TASK>
[  279.098710][T11683] netlink: 1041 bytes leftover after parsing attributes in process `syz.1.1611'.
[  279.258098][T11686] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1614'.
[  279.272335][T11686] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1614'.
[  279.281569][T11686] netlink: 'syz.0.1614': attribute type 6 has an invalid length.
[  279.410187][T11691] netlink: 248 bytes leftover after parsing attributes in process `syz.3.1616'.
[  279.477963][T11695] FAULT_INJECTION: forcing a failure.
[  279.477963][T11695] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  279.494319][T11695] CPU: 0 UID: 0 PID: 11695 Comm: syz.2.1618 Not tainted syzkaller #0 PREEMPT(full) 
[  279.494348][T11695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  279.494360][T11695] Call Trace:
[  279.494367][T11695]  <TASK>
[  279.494376][T11695]  dump_stack_lvl+0x189/0x250
[  279.494405][T11695]  ? __pfx____ratelimit+0x10/0x10
[  279.494426][T11695]  ? __pfx_dump_stack_lvl+0x10/0x10
[  279.494449][T11695]  ? __pfx__printk+0x10/0x10
[  279.494476][T11695]  ? __might_fault+0xb0/0x130
[  279.494513][T11695]  should_fail_ex+0x414/0x560
[  279.494555][T11695]  _copy_from_user+0x2d/0xb0
[  279.494577][T11695]  __sys_bpf+0x1ed/0x870
[  279.494603][T11695]  ? __pfx___sys_bpf+0x10/0x10
[  279.494642][T11695]  ? ksys_write+0x22a/0x250
[  279.494670][T11695]  ? __pfx_ksys_write+0x10/0x10
[  279.494702][T11695]  __x64_sys_bpf+0x7c/0x90
[  279.494724][T11695]  do_syscall_64+0xfa/0x3b0
[  279.494743][T11695]  ? lockdep_hardirqs_on+0x9c/0x150
[  279.494762][T11695]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.494781][T11695]  ? clear_bhb_loop+0x60/0xb0
[  279.494805][T11695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.494822][T11695] RIP: 0033:0x7f523238ebe9
[  279.494839][T11695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  279.494856][T11695] RSP: 002b:00007f52331d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  279.494877][T11695] RAX: ffffffffffffffda RBX: 00007f52325c5fa0 RCX: 00007f523238ebe9
[  279.494891][T11695] RDX: 0000000000000094 RSI: 0000200000000240 RDI: 0000000000000005
[  279.494903][T11695] RBP: 00007f52331d5090 R08: 0000000000000000 R09: 0000000000000000
[  279.494915][T11695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  279.494927][T11695] R13: 00007f52325c6038 R14: 00007f52325c5fa0 R15: 00007fff1ed28988
[  279.494960][T11695]  </TASK>
[  279.683954][T11698] FAULT_INJECTION: forcing a failure.
[  279.683954][T11698] name failslab, interval 1, probability 0, space 0, times 0
[  279.697366][T11698] CPU: 1 UID: 0 PID: 11698 Comm: syz.3.1619 Not tainted syzkaller #0 PREEMPT(full) 
[  279.697395][T11698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  279.697406][T11698] Call Trace:
[  279.697414][T11698]  <TASK>
[  279.697423][T11698]  dump_stack_lvl+0x189/0x250
[  279.697453][T11698]  ? __pfx____ratelimit+0x10/0x10
[  279.697474][T11698]  ? __pfx_dump_stack_lvl+0x10/0x10
[  279.697497][T11698]  ? __pfx__printk+0x10/0x10
[  279.697543][T11698]  should_fail_ex+0x414/0x560
[  279.697576][T11698]  should_failslab+0xa8/0x100
[  279.697606][T11698]  __kmalloc_cache_noprof+0x70/0x3d0
[  279.697632][T11698]  ? sctp_add_bind_addr+0x8c/0x370
[  279.697668][T11698]  sctp_add_bind_addr+0x8c/0x370
[  279.697700][T11698]  sctp_copy_local_addr_list+0x30b/0x4e0
[  279.697735][T11698]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  279.697764][T11698]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  279.697796][T11698]  ? sctp_v6_is_any+0x64/0x80
[  279.697828][T11698]  ? sctp_copy_one_addr+0x93/0x360
[  279.697862][T11698]  sctp_bind_addr_copy+0xb3/0x3c0
[  279.697893][T11698]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  279.697924][T11698]  sctp_connect_new_asoc+0x2e0/0x690
[  279.697952][T11698]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  279.697984][T11698]  ? sctp_get_af_specific+0x29/0x80
[  279.698011][T11698]  ? sctp_inet6_send_verify+0x80/0x300
[  279.698027][T11698]  ? sctp_endpoint_lookup_assoc+0xd1/0x260
[  279.698055][T11698]  __sctp_connect+0x5ba/0xd50
[  279.698093][T11698]  ? __pfx___sctp_connect+0x10/0x10
[  279.698121][T11698]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  279.698143][T11698]  ? security_sctp_bind_connect+0x7e/0x2e0
[  279.698180][T11698]  sctp_getsockopt_connectx3+0x2c4/0x440
[  279.698203][T11698]  ? __pfx_sctp_getsockopt_connectx3+0x10/0x10
[  279.698236][T11698]  ? __local_bh_enable_ip+0x12d/0x1c0
[  279.698256][T11698]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  279.698290][T11698]  sctp_getsockopt+0x98a/0xb60
[  279.698310][T11698]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  279.698343][T11698]  do_sock_getsockopt+0x372/0x450
[  279.698369][T11698]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  279.698389][T11698]  ? write_ibpb+0x30/0x40
[  279.698409][T11698]  ? __fget_files+0x3a0/0x420
[  279.698426][T11698]  ? __fget_files+0x2a/0x420
[  279.698453][T11698]  __x64_sys_getsockopt+0x1a5/0x250
[  279.698475][T11698]  ? write_ibpb+0x30/0x40
[  279.698496][T11698]  ? write_ibpb+0x30/0x40
[  279.698521][T11698]  do_syscall_64+0xfa/0x3b0
[  279.698541][T11698]  ? lockdep_hardirqs_on+0x9c/0x150
[  279.698560][T11698]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.698579][T11698]  ? clear_bhb_loop+0x60/0xb0
[  279.698604][T11698]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.698623][T11698] RIP: 0033:0x7f3b95d8ebe9
[  279.698642][T11698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  279.698658][T11698] RSP: 002b:00007f3b96c1f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  279.698680][T11698] RAX: ffffffffffffffda RBX: 00007f3b95fc6090 RCX: 00007f3b95d8ebe9
[  279.698694][T11698] RDX: 000000000000006f RSI: 0000000000000084 RDI: 0000000000000004
[  279.698706][T11698] RBP: 00007f3b96c1f090 R08: 0000200000000540 R09: 0000000000000000
[  279.698718][T11698] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000002
[  279.698730][T11698] R13: 00007f3b95fc6128 R14: 00007f3b95fc6090 R15: 00007ffdaeddcaa8
[  279.698767][T11698]  </TASK>
[  280.061287][T11700] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1620'.
[  280.151741][T11704] netlink: 'syz.3.1622': attribute type 1 has an invalid length.
[  280.195237][T11704] 8021q: adding VLAN 0 to HW filter on device bond5
[  280.208243][T11704] erspan0: entered allmulticast mode
[  280.225229][T11704] bond4: (slave erspan0): Releasing active interface
[  280.266341][T11704] bond5: (slave erspan0): making interface the new active one
[  280.282285][T11704] bond5: (slave erspan0): Enslaving as an active interface with an up link
[  280.372970][T11707] team0: entered promiscuous mode
[  280.445433][T11707] team0: left promiscuous mode
[  280.536405][T11715] ------------[ cut here ]------------
[  280.542043][T11715] verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0xfffffadd, 0xffffc823] s64=[0xfffffadd, 0xffffc823] u32=[0xfffffadd, 0xffffc823] s32=[0xfffffadd, 0xfffff2d9] var_off=(0xfffffadd, 0x0)(1)
[  280.622812][T11715] WARNING: CPU: 1 PID: 11715 at kernel/bpf/verifier.c:2733 reg_bounds_sanity_check+0x6e6/0xc20
[  280.633791][T11715] Modules linked in:
[  280.638215][T11715] CPU: 1 UID: 0 PID: 11715 Comm: syz.4.1626 Not tainted syzkaller #0 PREEMPT(full) 
[  280.648321][T11715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  280.659020][T11715] RIP: 0010:reg_bounds_sanity_check+0x6e6/0xc20
[  280.666113][T11715] Code: 24 20 4c 8b 44 24 60 4c 8b 4c 24 58 41 ff 75 00 53 41 57 55 ff 74 24 38 ff 74 24 70 ff 74 24 40 e8 7f 34 aa ff 48 83 c4 38 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4d 89 f7 4c 8b 74 24 08
[  280.686487][T11715] RSP: 0018:ffffc9000a906f08 EFLAGS: 00010282
[  280.692603][T11715] RAX: a80575cefcd01e00 RBX: 00000000fffffadd RCX: 0000000000080000
[  280.701679][T11715] RDX: ffffc9000bc9a000 RSI: 0000000000018605 RDI: 0000000000018606
[  280.709939][T11715] RBP: 00000000fffffadd R08: 0000000000000003 R09: 0000000000000004
[  280.718011][T11715] R10: dffffc0000000000 R11: fffffbfff1bfa1ec R12: ffff888028a3c168
[  280.726077][T11715] R13: ffff888028a3c188 R14: ffff888028a3c1a0 R15: 00000000fffff2d9
[  280.734083][T11715] FS:  00007fbab00e86c0(0000) GS:ffff888125d16000(0000) knlGS:0000000000000000
[  280.743115][T11715] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  280.749837][T11715] CR2: 00007fca8e513e9c CR3: 00000000741f6000 CR4: 00000000003526f0
[  280.757954][T11715] Call Trace:
[  280.761270][T11715]  <TASK>
[  280.764310][T11715]  reg_set_min_max+0x214/0x300
[  280.769234][T11715]  check_cond_jmp_op+0x1625/0x2910
[  280.774458][T11715]  ? __pfx_check_cond_jmp_op+0x10/0x10
[  280.780066][T11715]  ? incomplete_read_marks+0xc4/0x1f0
[  280.785563][T11715]  do_check+0x6751/0xe520
[  280.790182][T11715]  ? __pfx_do_check+0x10/0x10
[  280.795042][T11715]  ? init_func_state+0x1ddf/0x2d20
[  280.800246][T11715]  do_check_common+0x1949/0x24f0
[  280.805375][T11715]  bpf_check+0x1746a/0x1d2d0
[  280.810012][T11715]  ? is_bpf_text_address+0x26/0x2b0
[  280.815377][T11715]  ? kernel_text_address+0xa5/0xe0
[  280.820545][T11715]  ? __kernel_text_address+0xd/0x40
[  280.825949][T11715]  ? __lock_acquire+0xab9/0xd20
[  280.830883][T11715]  ? __mutex_trylock_common+0x153/0x260
[  280.836553][T11715]  ? __pfx___mutex_trylock_common+0x10/0x10
[  280.842525][T11715]  ? css_rstat_updated+0x23a/0x4f0
[  280.847777][T11715]  ? __lock_acquire+0xab9/0xd20
[  280.852707][T11715]  ? __pfx_bpf_check+0x10/0x10
[  280.857591][T11715]  ? ktime_get_with_offset+0x8c/0x2a0
[  280.863039][T11715]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  280.869417][T11715]  ? lockdep_hardirqs_on+0x9c/0x150
[  280.874824][T11715]  ? ktime_get_with_offset+0x8c/0x2a0
[  280.880255][T11715]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  280.886648][T11715]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  280.893357][T11715]  ? __asan_memset+0x22/0x50
[  280.898060][T11715]  ? bpf_obj_name_cpy+0x194/0x1e0
[  280.903144][T11715]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[  280.908446][T11715]  ? security_bpf_prog_load+0x7f/0x310
[  280.913966][T11715]  bpf_prog_load+0x1318/0x1930
[  280.918910][T11715]  ? __pfx_bpf_prog_load+0x10/0x10
[  280.924152][T11715]  ? bpf_lsm_bpf+0x9/0x20
[  280.928609][T11715]  ? security_bpf+0x7e/0x300
[  280.933266][T11715]  __sys_bpf+0x528/0x870
[  280.937681][T11715]  ? __pfx___sys_bpf+0x10/0x10
[  280.942652][T11715]  ? rcu_is_watching+0x15/0xb0
[  280.947576][T11715]  __x64_sys_bpf+0x7c/0x90
[  280.952055][T11715]  do_syscall_64+0xfa/0x3b0
[  280.956714][T11715]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.962823][T11715]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  280.969135][T11715]  ? clear_bhb_loop+0x60/0xb0
[  280.973885][T11715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.979899][T11715] RIP: 0033:0x7fbaaf18ebe9
[  280.984351][T11715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.004072][T11715] RSP: 002b:00007fbab00e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  281.012631][T11715] RAX: ffffffffffffffda RBX: 00007fbaaf3c5fa0 RCX: 00007fbaaf18ebe9
[  281.020725][T11715] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  281.028771][T11715] RBP: 00007fbaaf211e19 R08: 0000000000000000 R09: 0000000000000000
[  281.036841][T11715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  281.044930][T11715] R13: 00007fbaaf3c6038 R14: 00007fbaaf3c5fa0 R15: 00007ffee9a5fb58
[  281.052997][T11715]  </TASK>
[  281.056089][T11715] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  281.063393][T11715] CPU: 1 UID: 0 PID: 11715 Comm: syz.4.1626 Not tainted syzkaller #0 PREEMPT(full) 
[  281.072794][T11715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  281.082895][T11715] Call Trace:
[  281.086212][T11715]  <TASK>
[  281.089177][T11715]  dump_stack_lvl+0x99/0x250
[  281.093841][T11715]  ? __asan_memcpy+0x40/0x70
[  281.098474][T11715]  ? __pfx_dump_stack_lvl+0x10/0x10
[  281.103854][T11715]  ? __pfx__printk+0x10/0x10
[  281.108514][T11715]  vpanic+0x281/0x750
[  281.112533][T11715]  ? __pfx__printk+0x10/0x10
[  281.117165][T11715]  ? __pfx_vpanic+0x10/0x10
[  281.121711][T11715]  ? is_bpf_text_address+0x26/0x2b0
[  281.126972][T11715]  panic+0xb9/0xc0
[  281.130752][T11715]  ? __pfx_panic+0x10/0x10
[  281.135237][T11715]  __warn+0x31b/0x4b0
[  281.139253][T11715]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  281.144937][T11715]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  281.150619][T11715]  report_bug+0x2be/0x4f0
[  281.155001][T11715]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  281.160685][T11715]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  281.166362][T11715]  ? reg_bounds_sanity_check+0x6e8/0xc20
[  281.172034][T11715]  handle_bug+0x84/0x160
[  281.176298][T11715]  exc_invalid_op+0x1a/0x50
[  281.180829][T11715]  asm_exc_invalid_op+0x1a/0x20
[  281.185712][T11715] RIP: 0010:reg_bounds_sanity_check+0x6e6/0xc20
[  281.192012][T11715] Code: 24 20 4c 8b 44 24 60 4c 8b 4c 24 58 41 ff 75 00 53 41 57 55 ff 74 24 38 ff 74 24 70 ff 74 24 40 e8 7f 34 aa ff 48 83 c4 38 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4d 89 f7 4c 8b 74 24 08
[  281.211629][T11715] RSP: 0018:ffffc9000a906f08 EFLAGS: 00010282
[  281.217711][T11715] RAX: a80575cefcd01e00 RBX: 00000000fffffadd RCX: 0000000000080000
[  281.225693][T11715] RDX: ffffc9000bc9a000 RSI: 0000000000018605 RDI: 0000000000018606
[  281.233675][T11715] RBP: 00000000fffffadd R08: 0000000000000003 R09: 0000000000000004
[  281.241825][T11715] R10: dffffc0000000000 R11: fffffbfff1bfa1ec R12: ffff888028a3c168
[  281.249805][T11715] R13: ffff888028a3c188 R14: ffff888028a3c1a0 R15: 00000000fffff2d9
[  281.257836][T11715]  reg_set_min_max+0x214/0x300
[  281.262616][T11715]  check_cond_jmp_op+0x1625/0x2910
[  281.267756][T11715]  ? __pfx_check_cond_jmp_op+0x10/0x10
[  281.273240][T11715]  ? incomplete_read_marks+0xc4/0x1f0
[  281.278629][T11715]  do_check+0x6751/0xe520
[  281.283039][T11715]  ? __pfx_do_check+0x10/0x10
[  281.287748][T11715]  ? init_func_state+0x1ddf/0x2d20
[  281.292885][T11715]  do_check_common+0x1949/0x24f0
[  281.297849][T11715]  bpf_check+0x1746a/0x1d2d0
[  281.302442][T11715]  ? is_bpf_text_address+0x26/0x2b0
[  281.307679][T11715]  ? kernel_text_address+0xa5/0xe0
[  281.312855][T11715]  ? __kernel_text_address+0xd/0x40
[  281.318110][T11715]  ? __lock_acquire+0xab9/0xd20
[  281.322998][T11715]  ? __mutex_trylock_common+0x153/0x260
[  281.328639][T11715]  ? __pfx___mutex_trylock_common+0x10/0x10
[  281.334554][T11715]  ? css_rstat_updated+0x23a/0x4f0
[  281.339682][T11715]  ? __lock_acquire+0xab9/0xd20
[  281.344551][T11715]  ? __pfx_bpf_check+0x10/0x10
[  281.349328][T11715]  ? ktime_get_with_offset+0x8c/0x2a0
[  281.354715][T11715]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  281.360995][T11715]  ? lockdep_hardirqs_on+0x9c/0x150
[  281.366220][T11715]  ? ktime_get_with_offset+0x8c/0x2a0
[  281.371615][T11715]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  281.377872][T11715]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  281.384483][T11715]  ? __asan_memset+0x22/0x50
[  281.389079][T11715]  ? bpf_obj_name_cpy+0x194/0x1e0
[  281.394108][T11715]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[  281.399313][T11715]  ? security_bpf_prog_load+0x7f/0x310
[  281.404787][T11715]  bpf_prog_load+0x1318/0x1930
[  281.409573][T11715]  ? __pfx_bpf_prog_load+0x10/0x10
[  281.414718][T11715]  ? bpf_lsm_bpf+0x9/0x20
[  281.419057][T11715]  ? security_bpf+0x7e/0x300
[  281.423655][T11715]  __sys_bpf+0x528/0x870
[  281.427909][T11715]  ? __pfx___sys_bpf+0x10/0x10
[  281.432701][T11715]  ? rcu_is_watching+0x15/0xb0
[  281.437475][T11715]  __x64_sys_bpf+0x7c/0x90
[  281.441895][T11715]  do_syscall_64+0xfa/0x3b0
[  281.446402][T11715]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.452472][T11715]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  281.458626][T11715]  ? clear_bhb_loop+0x60/0xb0
[  281.463310][T11715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.469203][T11715] RIP: 0033:0x7fbaaf18ebe9
[  281.473622][T11715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.493233][T11715] RSP: 002b:00007fbab00e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  281.502090][T11715] RAX: ffffffffffffffda RBX: 00007fbaaf3c5fa0 RCX: 00007fbaaf18ebe9
[  281.510069][T11715] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  281.518042][T11715] RBP: 00007fbaaf211e19 R08: 0000000000000000 R09: 0000000000000000
[  281.526019][T11715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  281.533989][T11715] R13: 00007fbaaf3c6038 R14: 00007fbaaf3c5fa0 R15: 00007ffee9a5fb58
[  281.541986][T11715]  </TASK>
[  281.545418][T11715] Kernel Offset: disabled
[  281.549741][T11715] Rebooting in 86400 seconds..