last executing test programs:

1.562445439s ago: executing program 2 (id=1644):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x1f, 0xb, &(0x7f0000000080)=@framed={{}, [@printk={@lli, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x103}, {0x85, 0x0, 0x0, 0xcb}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x90)

1.549250219s ago: executing program 0 (id=1646):
r0 = socket(0x15, 0x5, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x440, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0), r0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000300)=<r2=>0x0)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000480))
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
getsockopt$IP6T_SO_GET_ENTRIES(r3, 0x29, 0x41, &(0x7f0000000380)={'security\x00', 0xb6, "1feebb7fbbd2641a2cc89abce0a4133de10e962d348046e160b4295aecb1e869aa9228c4e3d3195152e2e440cb6339a1771b88d2a8d45600ace6cc39365ded2eb0d3717058c3820e55359a64660fc23918a2b1131848e4433baf97ba8ec451d6bdd7a38eba6e0e689dbb02bfa63d0b06c213d9c623d5db49d313902f9200b6c5951fcf1717ecbf05f246d208045053435b6f00a29a8311c9d5a8a553b9cbb939c8d21613a5c08966da30309ea9991f5beea633ba15ba"}, &(0x7f0000000240)=0xda)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="180000005a00010000000000000000d531000000040005"], 0x18}}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000600), r0)
sendmsg$NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000000700)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x58, r4, 0x300, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x7}, @NL80211_ATTR_TDLS_ACTION={0x5, 0x88, 0x6}, @NL80211_ATTR_TDLS_ACTION={0x5}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x1b}, @NL80211_ATTR_TDLS_ACTION={0x5, 0x88, 0x4}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x6}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0xd}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x20004004)
ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000340)=r2)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140100005200010000000000000000000a000000"], 0x14}}, 0x0)
r6 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r7=>0x0]}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_STATUS(r6, 0x84, 0xe, &(0x7f0000000300)={r7, 0xffff, 0x2, 0x401, 0x0, 0x236c, 0x1000, 0x5, {r7, @in={{0x2, 0x4e22, @rand_addr=0x64010100}}, 0x3, 0x9, 0x3, 0xffd7f8d, 0x80}}, &(0x7f00000000c0)=0xb0)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r5, 0x84, 0x7b, &(0x7f0000000240)={r7, 0x93}, &(0x7f0000000280)=0x8)
r8 = socket(0x2, 0x80805, 0x0)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r10 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r10, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$tun(r9, &(0x7f00000003c0)=ANY=[@ANYBLOB="080000fa"], 0xdc)
sendmmsg$inet(r8, &(0x7f0000000440)=[{{&(0x7f0000000280)={0x2, 0x4e22, @private=0xa010101}, 0x10, &(0x7f0000000980)=[{&(0x7f0000000200)="9c", 0x1}], 0x1}}, {{&(0x7f0000000080)={0x2, 0x4e22, @rand_addr=0x64010101}, 0x10, &(0x7f0000000180)=[{&(0x7f00000000c0)="99", 0x1}], 0x1}}], 0x2, 0x48000)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={<r11=>0x0}, &(0x7f0000000000)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r8, 0x84, 0x17, &(0x7f00000004c0)={r11, 0x3, 0x3, "2a9a9e"}, 0xb)
getsockopt$inet_sctp6_SCTP_STATUS(r3, 0x84, 0xe, &(0x7f00000004c0)={r7, 0x4, 0xf08, 0x9, 0x1, 0x9, 0x5, 0x5, {r11, @in6={{0xa, 0x4e22, 0x1bbe683e, @remote, 0x3}}, 0x4, 0x5, 0x5, 0x39d, 0xe}}, &(0x7f0000000580)=0xb0)
ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0)

1.399651953s ago: executing program 2 (id=1649):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_PD_GET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000300)=ANY=[@ANYBLOB="280000000e14010028bd7000ffdbdf2508003c00030000000800030001000000080001"], 0x28}, 0x1, 0x0, 0x0, 0x20}, 0x10) (fail_nth: 2)

993.516276ms ago: executing program 3 (id=1652):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000001e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_HASH_TYPE={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_HASH_MODULUS={0x8, 0x4, 0x1, 0x0, 0x40000}, @NFTA_HASH_DREG={0x8, 0x2, 0x1, 0x0, 0xe}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x84}, 0x1, 0xfffffffffffc0000}, 0x0)

926.570946ms ago: executing program 2 (id=1653):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xc800}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000004c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa00, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x38, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0xc, 0x3, 0x0, 0x1, [{0x8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x4}]}]}]}], {0x14, 0x11, 0x20, 0x0, 0x0, {0x1}}}, 0x9c}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

924.949161ms ago: executing program 4 (id=1654):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x2000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

904.145022ms ago: executing program 0 (id=1655):
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x19, 0x4, 0xc, 0x2, 0x0, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r0, &(0x7f0000000280)="ca", &(0x7f0000000000)=""/3, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r0, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r0, &(0x7f0000000140)='t'}, 0x20)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000014007910480000000000790028000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f0000001540)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r1}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)={0x14, 0x22, 0x301, 0x0, 0x0, {0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
getsockopt$CAN_RAW_LOOPBACK(r1, 0x65, 0x3, &(0x7f0000001640), &(0x7f0000001680)=0x4)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x38, 0x10, 0x439, 0x70bd2c, 0xffffffea, {0x0, 0x0, 0xe403, 0x0, 0x40083, 0x715cb}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @sit={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_PROTO={0x5}]}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
clock_gettime(0x0, &(0x7f0000000480)={<r5=>0x0, <r6=>0x0})
recvmmsg(r4, &(0x7f0000000440)=[{{&(0x7f00000002c0)=@alg, 0x80, &(0x7f0000000400)=[{&(0x7f0000000100)=""/35, 0x23}, {&(0x7f0000000340)=""/21, 0x15}, {&(0x7f0000000380)=""/11, 0xb}, {&(0x7f00000003c0)=""/9, 0x9}], 0x4, &(0x7f0000000540)=""/4096, 0x1000}, 0x43}], 0x1, 0x12042, &(0x7f00000004c0)={r5, r6+10000000})

857.879967ms ago: executing program 4 (id=1656):
r0 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @rand_addr=0x640100fe, 0x4e22, 0x3, 'none\x00', 0x1, 0x80005, 0x6f}, 0x2c)
sendmsg$sock(r0, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18, 0xe000}, 0x0)

806.626396ms ago: executing program 1 (id=1657):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="8000000010000305000000000000fffffffe0000", @ANYRES32=0x0, @ANYBLOB="0000000000000000580012800c0001006d6163766c616e00480002800800010010000000280005800a000400aaaaaaaaaabb00000a000400aaaaaaaaaa0000009010994423fd8232aa00000008000300000000000a000400aaaaaaaaaabb000008000500", @ANYRES32=r1], 0x80}}, 0x0)

806.358526ms ago: executing program 0 (id=1658):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000800), &(0x7f0000000840)=0x30) (async)
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000800), &(0x7f0000000840)=0x30)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000000)={0x9c, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x70, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_MASK={0x5f, 0x5, "2bbc2ec9d5ea5d100d0895b55182f90541e02c17387013b1f430a9cbe0637a9601edcf2b2d7a65bb1e52f6d06fce0435c702a92ce12fd06956973a6aab23e58d038b321f53f18a73e91ddfbd8af75ece8bdc1d85c1930000000000"}, @ETHTOOL_A_BITSET_VALUE={0x4}]}]}, 0x9c}}, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000000)=ANY=[], 0x0)

805.953621ms ago: executing program 3 (id=1659):
sendmsg$RDMA_NLDEV_CMD_DELLINK(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="600000000414010027bd7000fbdbdf250800010000000000080001000200000008000100080001000000000026000100010000000800010002000000080001000000000008000100010000000800010001000000"], 0x60}, 0x1, 0x0, 0x0, 0x20000811}, 0x40000000)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
r3 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0xfffffffffffffda3, &(0x7f0000000180)={&(0x7f0000000200)=@delnexthop={0x20, 0x69, 0xb, 0x0, 0x0, {}, [{0x8, 0x1, 0x1}]}, 0x20}}, 0x4000000)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000640)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000300)="06", 0x1}], 0x1}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES16=r0], 0x1000f)

742.600663ms ago: executing program 1 (id=1660):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000026c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140091dd0000380001002cbd7000ffdbdf2512000000"], 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0xc804)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x6c, &(0x7f00000004c0)={@broadcast, @multicast, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @multicast1}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x8100, 0x2, 0x10, [0x7, 0x7], "7f1a"}, {0x0, 0x0, 0x0, 0x0, 0x11}, {}, {0x8, 0x88be, 0x0, {{0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3}}}, {0x8, 0x22eb, 0xfffffffc}}}}}}, 0x0) (async)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[], 0x5c}}, 0x80c4) (async)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), r2) (async)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB='O\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00082dbd7000fcdbdf252a0000000c0005000200aaaaaaaaaaaa06000400a3aa000008002f001600000008002f000500000006000400a2aa000005003600010000000c0005000200aaaaaaaaaaaa"], 0x54}}, 0x8080) (async, rerun: 64)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) (rerun: 64)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) (async)
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) (async)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000006c000000160a01020000000000000000010000000900010073797a30000000000900020073797a3000000000400003802c00038004000100766c616e31000000000000000000000014000100776c616e3100000000000000000000000800014000000000080002"], 0xfc}}, 0x0) (async)
write$tun(r4, &(0x7f0000000440)={@void, @void, @eth={@multicast, @broadcast, @val={@val={0x88a8, 0x5, 0x1, 0x4}, {0x8100, 0x6, 0x0, 0x5}}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x1, 0x6, 0x1c, 0xe4, 0x0, 0x8, 0x11, 0x0, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}}, "c0beef69fefbccb8"}}}}}, 0x32) (async)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="cb000000150081054e81f782db44b904021f08010a000000040000a118000200ac141414ffff0d1208000f0100810401880016ea1f0006ea7f400303000803600cfab94dcf5c046181d67f6f94007134cf6ee080005c4ab0f45312b3429fa0e408f456211bef32d4760000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd60100730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee", 0xcb}], 0x1, 0x0, 0x0, 0x7400}, 0x44804)

728.742191ms ago: executing program 4 (id=1661):
r0 = socket$inet6(0xa, 0x2, 0x3a)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e25, 0xeb, @initdev={0xfe, 0x88, '\x00', 0x21, 0x0}, 0x5b56}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="800037e92208a19e", 0x8, 0x40094, &(0x7f0000000040)={0xa, 0x1000, 0x6, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xc}, 0x1c) (async)
r1 = socket$netlink(0x10, 0x3, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xc, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000000061114c000000000085000000090000219500000000000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc9, &(0x7f0000000300)=""/201, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x2}, 0x10}, 0x94) (async, rerun: 64)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) (async, rerun: 64)
sendmsg$TIPC_CMD_SET_LINK_PRI(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x68, 0x0, 0x800, 0x70bd2a, 0x25dfdbff, {{}, {}, {0x4c, 0x18, {0xe21, @media='udp\x00'}}}, ["", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x40010}, 0x20040001)

654.682029ms ago: executing program 2 (id=1662):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000400000000000000000c00078008000640000000070500010007000007050005000a00000005000400000000000900020073797a310000000011000300686173683a69702c706f7274"], 0x58}}, 0x0)

642.258258ms ago: executing program 0 (id=1663):
r0 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000fc0)={&(0x7f0000001340)=@hci={0x1f, 0x0, 0x31}, 0x80, &(0x7f0000001000)=[{&(0x7f0000001040)="b8b2cc1e00c1dba49dbb66ca3a66bb0280000788fb", 0x15}], 0x1}, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x400400, 0x0)
ioctl$TUNSETVNETHDRSZ(r4, 0x400454d8, &(0x7f0000000400)=0xfffff800)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000500), r3)
syz_emit_ethernet(0x1d5, &(0x7f0000000140)=ANY=[@ANYBLOB="aa95aaaaaaaaaaaaaaaaaa1c86dd6000ed04019f3afffe8000000000000000000000000000bbff02000000000000000000000000000186009078000000000000000000000000050aa78c000005dc8080a2030003004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34060600000000000000dac15084dbaf736b41e5af0502000100000500000000002600040018fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf3915d1783e8eb477b0d1170f0ecbdef4c23e1b56e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc9000d06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba"], 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000004140)=[{&(0x7f0000000240)=""/212, 0xd4}], 0x1}, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000240)=ANY=[@ANYBLOB="240100001600010428bd700000000000fe8000000000000000000000000000bbfc01000000000000000000000000000100040000000000000000a00000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff02000000000000000000000000000100000000330000000a0101010000000000000000000000000000000000004e340100000000000000000000000000000004000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000a0000002bbd70000000000000000200000000000000000008000020ffffffdf2c0027cc"], 0x124}}, 0x0)
sendmsg$nl_xfrm(r7, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c030000160001000000000000000000fc010000000000000000000000000000fe88000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000000006c000000ac14140000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000025bd7000000000000000000000000000000000000300000006"], 0x34c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000580))
sendmsg$NFC_CMD_SE_IO(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000600)={0xd0, r5, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0x2}, @NFC_ATTR_SE_APDU={0x4}, @NFC_ATTR_SE_APDU={0xad, 0x19, "06d0b0d052bdd560da3cb2cd8194ecfb3985be37197171bbdf4ae02d9fab18eae68d6e409a97aa8ad12ada544cc1f6fb01fc160328d1c0fb1db61198b13ba2d466b17a1e9047cdf922d53b0abdc1ab3b676a58931739b456bd8e645c99c514558be45e5079a87d5ea824f9620e0d2a75419e6fecf6cd7c552976aee1f75e2328157b32c01daed1253925cefa193eaac50e6a9aa7e898a703a6c860fad17de4e0279ae8d0f13e24a2b1"}]}, 0xd0}, 0x1, 0x0, 0x0, 0x4048001}, 0x40811)
r9 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_INFO(r10, &(0x7f0000000480)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="08002cbd7000fddbdf250f0000003400028005000d0000000000060002004e21000006000e004e2200000800050000000000080007000500000006000f00090000000800050006253b25a4a609e3189ffb70bab50000001400038008000500ffffffff060007004e210000"], 0x64}, 0x1, 0x0, 0x0, 0x24004040}, 0x4040000)
sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000740)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r9, @ANYBLOB="0c0003800800010002000000"], 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x4000090)
r11 = socket(0x400000000010, 0x3, 0x0)
r12 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffff9, {0x0, 0x0, 0x0, r13, {0x0, 0xffe0}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x9}]}, 0x2c}}, 0x0)
r14 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000300)=@generic={&(0x7f0000000280)='./file0\x00', 0x0, 0x10}, 0x18)
ioctl$sock_kcm_SIOCKCMATTACH(r11, 0x89e0, &(0x7f0000000340)={r11, r14})

545.524361ms ago: executing program 2 (id=1664):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000200), 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x94}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)={0x14, 0x2, 0x1, 0x5, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x20044804}, 0x40040)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={0x14, 0x6, 0x1, 0x301, 0x0, 0x0, {0xa, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x2404c031}, 0x20000000)
recvmsg(r3, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x20)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
recvmsg(r4, &(0x7f0000000d40)={0x0, 0x0, 0x0}, 0x40012040)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0x8, 0x1, 'udp\x00'}, @NFTA_MATCH_INFO={0xe, 0x3, "7acc6338a90000b03bd9"}, @NFTA_MATCH_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x6, 0x1, 0x1, 0x0, 0x88}, @NFTA_RULE_COMPAT_FLAGS={0x8}]}]}], {0x14}}, 0xa0}}, 0x0)

466.572612ms ago: executing program 3 (id=1665):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="f000000010000d04000000000000000200000000", @ANYRES32=0x0, @ANYBLOB="0008000000020000bc0012800c0001006d6163766c616e00ac000280080003000100000008000100100000000a0004000180c200000300000a00040000000000030000000800070005000000080007000a0000004c0005800a000400aaaaaaaaaabb00000a000400aaaaaaaaaabb00000a0004004ac92f9d35ed00000a000400aaaaaaaaaaaa00000a000400aaaaaaaaaabb00000a000400aaaaaaaaaaaa000006000200010000000a000400aaaaaaaaaabb0000100005800a000400b25b12b8e5000000140035006d6163766c616e30"], 0xf0}, 0x1, 0x0, 0x0, 0x4}, 0x200000000000000)

466.457577ms ago: executing program 4 (id=1666):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x8}]}}}, @IFLA_LINK={0x8, 0x5, r1}]}, 0x44}}, 0x1100000000000000)

423.877771ms ago: executing program 1 (id=1667):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="4c20000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

373.138165ms ago: executing program 3 (id=1668):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_PMKSA(r1, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48041}, 0x0)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r1, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x14, 0x0, 0x300, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r0, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000c00)=@newtfilter={0x24, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {}, {0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0xc0d0}, 0x8000)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r7=>0x0]}, &(0x7f0000000040)=0x8)
syz_genetlink_get_family_id$tipc(0x0, r1)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r5, 0x84, 0x1, &(0x7f0000000580)={r7, 0x7ff, 0x4, 0xfffffffd, 0x2, 0x5}, 0x14)
r8 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r8, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r8, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r8, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r8, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r8, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r8, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000011c0)="93bffce623851797a8dc7901f0048678cd35ef833c350900f95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb600"/135, 0x87}, {&(0x7f0000000780)="029993440c7a1d95d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e430bcb03", 0x3e}], 0x2}, 0x500}, {{0x0, 0x0, &(0x7f0000000680)=[{0x0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000d40)=[{&(0x7f0000000800)="f6b328c40d4cc969a0513b8ffd72381d4ef4a89954104d4a81db2fa3c0f906a33482e2821787ac54c0c62da54d1c77255c322358d0e272be2ccacf8f689f0115afd7305a1ce39e8b54734910fd9257fc4d3d2f910d5b9965f73440df67940c76ddc3df03db0d78c28fc030a88d5060290a", 0x71}, {&(0x7f00000000c0)}, {&(0x7f00000008c0)="20c048210440d8394cdcb9ee88a6b7584a3e07b1b1d67f42b2dda515bffbb8de861e60d4ee6dad628fdf1055", 0x2c}, {&(0x7f0000000940)="ee41e16fcc123e48fa04ef6edfc0fe23b7a87e1e837f1d1104d11ab1934265fd5cfbca479a17e7420ec938e84ad449c00288b126e26d6d80fb16c3c64ebcecade0b529986f4cfbcfa9c1c7138091b2ba9da4c7af757ac4d7990bfb36460a2eaaa3b786e6", 0x64}], 0x4}}], 0x3, 0xc0)

309.29359ms ago: executing program 4 (id=1669):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001e00000085000000a000000095"], &(0x7f0000000840)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$FIONCLEX(r2, 0x5450)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x38}]}, @NFT_MSG_NEWSETELEM={0x44, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_DATA={0x8, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xd8}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_TYPE={0x5, 0x2, 0x83}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_EXTHDR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0x13}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}}, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x200}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xb, 0x10, &(0x7f0000000200)=@framed={{}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1000}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0xb6}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r5, 0x0, 0x10, 0x10, &(0x7f00000006c0)="0000000005000000", &(0x7f0000000700)=""/8, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve1\x00', <r6=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000010c0)=@newlink={0x28, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_AF_SPEC={0x8, 0x1a, 0x0, 0x1, [@AF_INET6={0x4}]}]}, 0x28}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001e00000085000000a000000095"], &(0x7f0000000840)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
ioctl$FIONCLEX(r2, 0x5450) (async)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x38}]}, @NFT_MSG_NEWSETELEM={0x44, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_DATA={0x8, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xd8}}, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_TYPE={0x5, 0x2, 0x83}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_EXTHDR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0x13}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}}, 0x0) (async)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x200}, 0x50) (async)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r4}, 0x4) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xb, 0x10, &(0x7f0000000200)=@framed={{}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1000}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0xb6}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r5, 0x0, 0x10, 0x10, &(0x7f00000006c0)="0000000005000000", &(0x7f0000000700)=""/8, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve1\x00'}) (async)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000010c0)=@newlink={0x28, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_AF_SPEC={0x8, 0x1a, 0x0, 0x1, [@AF_INET6={0x4}]}]}, 0x28}}, 0x0) (async)

292.469135ms ago: executing program 1 (id=1670):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="8000000010000305000000000000feffffff0000", @ANYRES32=0x0, @ANYBLOB="0000000000000000580012800c0001006d6163766c616e00480002800800010010000000280005800a000400aaaaaaaaaabb00000a000400aaaaaaaaaa0000009010994423fd8232aa00000008000300000000000a000400aaaaaaaaaabb000008000500", @ANYRES32=r1], 0x80}}, 0x0)

266.468669ms ago: executing program 2 (id=1671):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={<r2=>0x0}, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000001c0)={r2, 0x2}, 0x8)
sendmmsg$inet6(r0, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000034000000bca30000000000002403000040feffff720accff0000000071a4f0ff000000001f030000000000002e0a0200000000002600000000ff000e61141800000000001d430000000000007a0a00fe00581c1f6114140000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f30002af51efd601b6bf01c8e8b1fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7d06a59ff616236fd9aa58f0177184b6a89adaf17b0a6041bdef728f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101ab062cd54e67051d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566de74e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48b936e6f9e0fcda88fe4413537528fdb6153baae244e7bf573eac34b781337ad5901a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab51380d7b4ead35a385e0b4a26b602396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb1188883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcc536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d648532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2654026c6ea08b83b123145ab5703dad844ceb201efeb6dc5f6a9037d2283c42efc54dd84323afc4c10eff46248843187f1dd48ef0900000000000000ff0f4000000000f00700003c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fcdb4c1011e32f808890205f0e6da2819d2f9e77c7c64affa54fec0136cbafa5f62e96753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963442aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2869291b7d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e637d4219ef7ec61261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ecab5d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addbc4b3093c91b8068c5adfcb0d7fd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f0100e0eda300a43a13bd1b9f3322405d1efd78e578dc6b3fb84f3738a4b6caa800000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf699b3746979f99f6a1527f004f37e84fb478199dc1020f4beb98b8074bf7df8b5e783637daf121f175a81cffff4ac55a4385e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae543d44086b3f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80aba439772bf60a1db18c472dafc5569adc2c406f39f82928d2a1ffe29f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a4a274000000000000000000000000000000000000000000000009dd14b38f2f5426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4120260ffcd030000006d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa6ad4bf50c1acb3928143be1c1023a375e528285544d0064b98646f3109e9a4942ce42c6e7ec84b664f6c2770803f10b0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d3b332240d450fdb0a9a69f432e277f3a0386eb2bd1305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07e18b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e8c0a0d213c3ffad44d2a376def42e41e9fc3167a257e040fa7cf32c221aaac6cfdeb33c27500001a0000000000000000000017350000c11ae694b0c69c2c03f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d10522a7a945b93fb705b95b6aae27a8fab1e6984c8bdc12360627137ab6737b68ab08a1a4b94cb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481ffe46a4ce86be0b1f8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0b74903580ac98708007c80d6c7d0de4614195e40d797c0348dd70f36a220e8b3710fb5358c27e90793bcb9ee6319342c4b239ca8cbc6fc83d32e6eb62ad92e43991f2447be9c2a1ae1119eafb901a43d57e885116d19aa152bfb89f8d0b2516f80120a1cddff771657f3d0288ec3899f1e3ba0151c4037148fb479de703fc52b6573349c28d1b107d859b4961324c17756dde99de1924a1d2b7095d34a55060f47f4407d89acf9f1d2156befec432e8e993c79027b7ef285b20c2e6b3d0491d0d3591b0d94713332b6b79c8297117b0d14eff64e0aca8a4b4aa773d8fba1217e9519952419bb9dd998d0ec870ff00b6d556018602738fbc6cec89d6dd13cf55b96f6fe9a137d2d6a56ad78e52c23ed080000000000002bc261a781fd14126c146a0aac4221839a4b9bbf61e4bba695a41e2109eba8e40c370267cc51ffadbd15cafc97a4d3edfdcb9b5729307c6bdaf7b69325fb05fa8a9869de0600ee477d71bf3e36d1d9019edfa27aae24b632f251df210c86a18fae731ecb8b0d48357378caf2b6789509b1bacfd4fa812dc341875cfa5e798bbf59770000000000000000c8a594ea3c3347962d9113b1fecdfad5a8da641053f02e49456f5d21674521e67a5b18ea451eccf69dd6af928d2d68da9304a296c22fdc0500000000000000b1aade386b113045033a6188d56e675564d8cb8d5b40114b0f5bf15dd64c9ece60b8588ee8777d0ea8f4713b258427c7d90f9e93348e17723ba9ab8ae790f74cc41ae5795835f3cec40dff485d2802c08611454d9ea784a205bcc07ec26f906f3cf45bb37014ab6f22af6213618e242b283ea9d3f0677ee598072ec06f7170009d92bb87d9d12c378dfd3e74ec056ee83eef666423d934fc5908c9ff98715218a5964f1e00000000426ac9588e27aefe307f49662990ee823568bbc2f89596ced7c6c52d76b8096f1848410843b93fd404f535be474f456778b5ef85abb8fc2336abd5ea64a6efea8a5aca0015499b88ae780a7bae4df603bd3c72808cf300440b1b638a6640f7de8d0d82f359ca2f779cd48cd8d3603f4f69e47f386988c9b7b5d6dd3d48a1fdca780049d7c87bea42161a4c0d7cf0125b43dc9d8845f3c05a08acda647e7143d0e0aee2949a45e28488b0522c2288072467d2afe269f589fb7e034b92d3ca245b16b71998711bfe206c9690b6d0eebb06a29349229eb45ff15c63aa2c82c56d7420738cd1b04eb16e87cb524315d7361ea3635d3799bb7fcc56aa5e1dbe031a7a12554dee6754b72f43a6fddf427f32ec3df274a88097725679769beebf1aa6eb09d5154e4900000000000d0f7160a05911d969879953d3d4702b2676c07bb0fd14020a66718378825d5ed789711b77d40dc31e0b8fc651b45559da463f0000000000000000000000000052d42124e9c26aba885015e69d42ecd710342ac597ebea576ae15fdf611356f622e831741ab15549e0d7a2bd0324e2b3b48a10551607492c19eaf58485feb4cab19c303b30ba2ddea0d792d77724c9fa4ed58b93668fc20484f141ee2b6a0029e88fdc853189b4dafd36ff23b11967090e508f45e3f10857038a52ef275cf9e3e4b5d30b12d138dfa70930c603b5e3f4b7be67be3dba3cbd8d4d143195af0697d779445d67dcfbd922d12a8b49f93eac7a72faacf80346b3b669615f2710eb8df39fc8c04d2c9c196fa6facfea613569a35cde6451f2edf55ce25c7d72ec7ea85a92458c0559ca3a94727d495bd4671a55a70bc544d71d8e0257707a31936f1adf224077310a86bf447ec92c650acca8c6b0721020894b06178c32f4472d17174d6eb2b067030c5d2c12583f46d2da7fba42d4083259c7cdc8bf1f4299c248865d3c809356c3ed"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=@newlink={0x28, 0x10, 0x1, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x40810, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000011}, 0x4000000)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0xffff}, 0x8)
close(0x3)

182.26739ms ago: executing program 3 (id=1672):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="800000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000580012800c0001006d6163766c616e00480002800800010010000000280005800a000400aaaaaaaaaabb00000a000400aaaaaaaaaa0000000a000400aaaaaaaaaa00000008000300030000000a000400aaaaaaaaaabb000008000500", @ANYRES32=r1], 0x80}, 0x1, 0x300}, 0x0)

154.3984ms ago: executing program 1 (id=1673):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x1f, 0xb, &(0x7f0000000080)=@framed={{}, [@printk={@lli, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x300}, {0x85, 0x0, 0x0, 0xcb}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x90)

149.707079ms ago: executing program 4 (id=1674):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x80000025a5, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e23, @rand_addr=0x64010101}, 0x4, 0x2, 0x2, 0x3}}, 0x26)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r3, 0x5421, &(0x7f0000000280)=0x4)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
write(0xffffffffffffffff, &(0x7f0000000380)="a528d210215fed78d5c4f32bf971453e70eb52e7b4ec670dc404f4727536cfd97969efe1adf8c77f23d7e10b41845d47468ccffb3b8d68aedbed75828d675ab602b0ff4a3cf18f3e6d56c850bde005573779d013fa372016ba9aceb06b630377b3b3287bfda2626019e6ea782889fda1e6d5b68541380d306a5535268c04", 0x7e)
recvmsg(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000005580)=""/4084, 0xff4}, {&(0x7f00000016c0)=""/4098, 0x1002}, {0x0}, {&(0x7f0000000200)=""/157, 0x9d}], 0x4}, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x1e, 0x0, 0x0)
connect$inet(r3, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r6, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x104}, {{0x0, 0x0, 0x0}, 0x80000001}, {{0x0, 0x0, &(0x7f0000002b00)=[{&(0x7f00000029c0)=""/190, 0xbe}, {&(0x7f00000028c0)=""/236, 0xec}, {&(0x7f0000002b80)=""/4100, 0x1004}, {&(0x7f0000000640)=""/68, 0x44}, {&(0x7f0000000500)=""/240, 0xf0}, {&(0x7f0000000740)=""/251, 0xfb}], 0x6}, 0x9}], 0x3, 0x4022, 0x0)
r7 = openat$cgroup_subtree(r5, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r7, 0x0, 0xfdef)
close(r3)

93.012394ms ago: executing program 0 (id=1675):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="38000000210a011d29ca1e668192a400020000000c00034000000000000000000900020073797a3200000000090001"], 0x38}, 0x1, 0xf0ff}, 0x0)

6.541487ms ago: executing program 1 (id=1676):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x40, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x3c}, @val={0x8, 0x3, r2}, @val={0xc}}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x1}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x7}]}, 0x40}}, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
listen(r4, 0x3)
accept4(r4, 0x0, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r5}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f00000003c0)=@rc={0x1f, @none}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000500)=""/201, 0xc9}, {&(0x7f0000000600)=""/140, 0x8c}], 0x2, &(0x7f0000000700)=""/39, 0x27}, 0x1)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x69, 0x11, 0x1c}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r6, 0x0, 0x14, 0x0, &(0x7f0000000380)="f6f4e9a1d78ad62ceef1884386dd78bb3fb7dbfc", 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
splice(0xffffffffffffffff, 0x0, r6, 0x0, 0x7, 0x7)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x48, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_BR_GROUP_ADDR={0xa, 0x14, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, @IFLA_BR_GROUP_FWD_MASK={0x6}]}}}]}, 0x48}}, 0x0)

6.239585ms ago: executing program 3 (id=1677):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f0000000100)={&(0x7f0000000300)=""/102, 0x2000, 0x0, 0x800, 0x3}, 0x20) (async)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f0000000100)={&(0x7f0000000300)=""/102, 0x2000, 0x0, 0x800, 0x3}, 0x20)
socket$inet_sctp(0x2, 0x1, 0x84) (async)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmmsg$inet(r3, &(0x7f0000000680)=[{{&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000040)="93", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="e5eceeef", 0x4}], 0x1}}], 0x2, 0x4040040)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)={0x24, r1, 0x1, 0x20, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}]]}, 0x24}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000440)={@broadcast, @remote, @void, {@canfd={0xd, {{0x0, 0x0, 0x1, 0x1}, 0x3b, 0x2, 0x0, 0x0, "e07c5b27232aea10ec1cf9ec693db0cf125fc05c5bf09ab18d529a993ed59457950c034a1175e08b5c59c5b4720aafd0a327daa89a7b3a774dd43b832be3ea44"}}}}, 0x0) (async)
syz_emit_ethernet(0x56, &(0x7f0000000440)={@broadcast, @remote, @void, {@canfd={0xd, {{0x0, 0x0, 0x1, 0x1}, 0x3b, 0x2, 0x0, 0x0, "e07c5b27232aea10ec1cf9ec693db0cf125fc05c5bf09ab18d529a993ed59457950c034a1175e08b5c59c5b4720aafd0a327daa89a7b3a774dd43b832be3ea44"}}}}, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000002e40)={@local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "7428dd", 0x28, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_na={0x89, 0x0, 0x0, 0x0, '\x00', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [{0x0, 0x2, "122b472e41e24b11f34b608816e5"}]}}}}}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

0s ago: executing program 0 (id=1678):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket(0x18, 0x1, 0x1)
getsockopt$inet_int(r0, 0x111, 0x1, 0x0, &(0x7f0000000380)=0xffffffffffffff40)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0x48, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_AGEING_TIME={0x8, 0x8, 0x81}]}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x48}}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000001d00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}}, {{&(0x7f0000000280)=@abs={0x0, 0x0, 0x4e24}, 0x6e, 0x0, 0x0, &(0x7f00000018c0)=[@rights={{0x14, 0x1, 0x1, [r2]}}], 0x18, 0x20008880}}], 0x2, 0x4c054)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c00000010000305000000000005000900400000", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b0001006d616373656300000c000280050003003f000000"], 0x3c}}, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}, 0x1, 0x0, 0x0, 0x4080}, 0x20008880)

kernel console output (not intermixed with test programs):

[   97.864690][ T6873]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.864718][ T6873]  kasprintf+0xd4/0x120
[   97.864742][ T6873]  ? __pfx_kasprintf+0x10/0x10
[   97.864773][ T6873]  nf_tables_set_alloc_name+0x109/0x720
[   97.864801][ T6873]  ? rcu_is_watching+0x15/0xb0
[   97.864819][ T6873]  ? __pfx_nf_tables_set_alloc_name+0x10/0x10
[   97.864838][ T6873]  ? nla_strdup+0xb8/0x140
[   97.864863][ T6873]  nf_tables_newset+0x138b/0x2530
[   97.864895][ T6873]  ? __pfx_nf_tables_newset+0x10/0x10
[   97.864934][ T6873]  ? __nla_parse+0x40/0x60
[   97.864961][ T6873]  nfnetlink_rcv+0x112f/0x2520
[   97.865015][ T6873]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   97.865052][ T6873]  ? ref_tracker_free+0x63a/0x7d0
[   97.865101][ T6873]  ? __netlink_deliver_tap+0x807/0x850
[   97.865123][ T6873]  ? netlink_deliver_tap+0x2e/0x1b0
[   97.865163][ T6873]  netlink_unicast+0x82c/0x9e0
[   97.865192][ T6873]  ? __pfx_netlink_unicast+0x10/0x10
[   97.865215][ T6873]  ? netlink_sendmsg+0x642/0xb30
[   97.865228][ T6873]  ? skb_put+0x11b/0x210
[   97.865249][ T6873]  netlink_sendmsg+0x805/0xb30
[   97.865274][ T6873]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.865293][ T6873]  ? aa_sock_msg_perm+0xf1/0x1d0
[   97.865311][ T6873]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   97.865332][ T6873]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.865349][ T6873]  __sock_sendmsg+0x21c/0x270
[   97.865374][ T6873]  ____sys_sendmsg+0x505/0x830
[   97.865398][ T6873]  ? __pfx_____sys_sendmsg+0x10/0x10
[   97.865426][ T6873]  ? import_iovec+0x74/0xa0
[   97.865448][ T6873]  ___sys_sendmsg+0x21f/0x2a0
[   97.865468][ T6873]  ? __pfx____sys_sendmsg+0x10/0x10
[   97.865524][ T6873]  ? __fget_files+0x2a/0x420
[   97.865543][ T6873]  ? __fget_files+0x3a0/0x420
[   97.865569][ T6873]  __x64_sys_sendmsg+0x19b/0x260
[   97.865589][ T6873]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   97.865617][ T6873]  ? __pfx_ksys_write+0x10/0x10
[   97.865635][ T6873]  ? rcu_is_watching+0x15/0xb0
[   97.865656][ T6873]  ? do_syscall_64+0xbe/0x3b0
[   97.865676][ T6873]  do_syscall_64+0xfa/0x3b0
[   97.865690][ T6873]  ? lockdep_hardirqs_on+0x9c/0x150
[   97.865711][ T6873]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.865727][ T6873]  ? clear_bhb_loop+0x60/0xb0
[   97.865746][ T6873]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.865762][ T6873] RIP: 0033:0x7f8329d8ebe9
[   97.865777][ T6873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.865789][ T6873] RSP: 002b:00007f832abe8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   97.865807][ T6873] RAX: ffffffffffffffda RBX: 00007f8329fc5fa0 RCX: 00007f8329d8ebe9
[   97.865819][ T6873] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000003
[   97.865829][ T6873] RBP: 00007f832abe8090 R08: 0000000000000000 R09: 0000000000000000
[   97.865839][ T6873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.865849][ T6873] R13: 00007f8329fc6038 R14: 00007f8329fc5fa0 R15: 00007ffef8cda618
[   97.865878][ T6873]  </TASK>
[   98.285863][ T6856] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.390133][ T6856] bond0: (slave rose0): Enslaving as an active interface with an up link
[   98.519815][ T6881] +
: renamed from syzkaller0
[   98.722078][ T6894] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.330'.
[   98.878708][ T6902] netlink: 1004 bytes leftover after parsing attributes in process `syz.3.333'.
[   98.975779][ T6908] netlink: 96 bytes leftover after parsing attributes in process `syz.4.335'.
[   99.063485][ T6908] 8021q: VLANs not supported on gre0
[   99.149998][ T6916] netlink: 'syz.2.336': attribute type 3 has an invalid length.
[   99.179098][ T6914] netlink: 'syz.2.336': attribute type 3 has an invalid length.
[   99.426060][ T6929] netlink: 12 bytes leftover after parsing attributes in process `syz.1.340'.
[   99.686131][ T6929] netlink: 12 bytes leftover after parsing attributes in process `syz.1.340'.
[   99.755504][ T6941] netlink: 12 bytes leftover after parsing attributes in process `syz.3.344'.
[   99.822252][ T6939] tipc: Started in network mode
[   99.833247][ T6939] tipc: Node identity 5a790358ff29, cluster identity 4711
[   99.867573][ T6939] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   99.952489][ T6929] netlink: 12 bytes leftover after parsing attributes in process `syz.1.340'.
[   99.998708][ T6938] tipc: Disabling bearer <eth:syzkaller0>
[  100.178390][ T6960] netlink: 'syz.4.348': attribute type 1 has an invalid length.
[  100.387959][ T6974] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.351'.
[  100.457509][ T6960] 8021q: adding VLAN 0 to HW filter on device bond4
[  100.538624][ T6981] FAULT_INJECTION: forcing a failure.
[  100.538624][ T6981] name failslab, interval 1, probability 0, space 0, times 0
[  100.609681][ T6986] FAULT_INJECTION: forcing a failure.
[  100.609681][ T6986] name failslab, interval 1, probability 0, space 0, times 0
[  100.704469][ T6981] CPU: 1 UID: 0 PID: 6981 Comm: syz.3.353 Not tainted syzkaller #0 PREEMPT(full) 
[  100.704493][ T6981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  100.704503][ T6981] Call Trace:
[  100.704510][ T6981]  <TASK>
[  100.704517][ T6981]  dump_stack_lvl+0x189/0x250
[  100.704542][ T6981]  ? __pfx____ratelimit+0x10/0x10
[  100.704564][ T6981]  ? __pfx_dump_stack_lvl+0x10/0x10
[  100.704592][ T6981]  ? __pfx__printk+0x10/0x10
[  100.704618][ T6981]  ? __pfx___might_resched+0x10/0x10
[  100.704634][ T6981]  ? fs_reclaim_acquire+0x7d/0x100
[  100.704661][ T6981]  should_fail_ex+0x414/0x560
[  100.704687][ T6981]  should_failslab+0xa8/0x100
[  100.704710][ T6981]  __kmalloc_noprof+0xcb/0x4f0
[  100.704731][ T6981]  ? nft_set_elem_init+0xa8/0x7e0
[  100.704757][ T6981]  nft_set_elem_init+0xa8/0x7e0
[  100.704787][ T6981]  nf_tables_newsetelem+0x220e/0x4340
[  100.704851][ T6981]  ? __pfx_nf_tables_newsetelem+0x10/0x10
[  100.704868][ T6981]  ? __lock_acquire+0xab9/0xd20
[  100.704911][ T6981]  ? nla_validate_array+0xfc/0x260
[  100.704959][ T6981]  ? __pfx___nla_validate_parse+0x10/0x10
[  100.704986][ T6981]  ? __lock_acquire+0xab9/0xd20
[  100.705018][ T6981]  ? nfnl_pernet+0x23/0x240
[  100.705049][ T6981]  ? __nla_parse+0x40/0x60
[  100.705076][ T6981]  nfnetlink_rcv+0x112f/0x2520
[  100.705130][ T6981]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  100.705167][ T6981]  ? ref_tracker_free+0x63a/0x7d0
[  100.705217][ T6981]  ? __netlink_deliver_tap+0x807/0x850
[  100.705240][ T6981]  ? netlink_deliver_tap+0x2e/0x1b0
[  100.705278][ T6981]  netlink_unicast+0x82c/0x9e0
[  100.705309][ T6981]  ? __pfx_netlink_unicast+0x10/0x10
[  100.705330][ T6981]  ? netlink_sendmsg+0x642/0xb30
[  100.705343][ T6981]  ? skb_put+0x11b/0x210
[  100.705364][ T6981]  netlink_sendmsg+0x805/0xb30
[  100.705389][ T6981]  ? __pfx_netlink_sendmsg+0x10/0x10
[  100.705409][ T6981]  ? aa_sock_msg_perm+0xf1/0x1d0
[  100.705427][ T6981]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  100.705445][ T6981]  ? __pfx_netlink_sendmsg+0x10/0x10
[  100.705462][ T6981]  __sock_sendmsg+0x21c/0x270
[  100.705485][ T6981]  ____sys_sendmsg+0x505/0x830
[  100.705509][ T6981]  ? __pfx_____sys_sendmsg+0x10/0x10
[  100.705536][ T6981]  ? import_iovec+0x74/0xa0
[  100.705559][ T6981]  ___sys_sendmsg+0x21f/0x2a0
[  100.705585][ T6981]  ? __pfx____sys_sendmsg+0x10/0x10
[  100.705641][ T6981]  ? __fget_files+0x2a/0x420
[  100.705655][ T6981]  ? __fget_files+0x3a0/0x420
[  100.705681][ T6981]  __x64_sys_sendmsg+0x19b/0x260
[  100.705702][ T6981]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  100.705731][ T6981]  ? __pfx_ksys_write+0x10/0x10
[  100.705750][ T6981]  ? rcu_is_watching+0x15/0xb0
[  100.705772][ T6981]  ? do_syscall_64+0xbe/0x3b0
[  100.705792][ T6981]  do_syscall_64+0xfa/0x3b0
[  100.705806][ T6981]  ? lockdep_hardirqs_on+0x9c/0x150
[  100.705828][ T6981]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.705844][ T6981]  ? clear_bhb_loop+0x60/0xb0
[  100.705864][ T6981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.705880][ T6981] RIP: 0033:0x7f432778ebe9
[  100.705896][ T6981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.705909][ T6981] RSP: 002b:00007f43259ee038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  100.705927][ T6981] RAX: ffffffffffffffda RBX: 00007f43279c5fa0 RCX: 00007f432778ebe9
[  100.705939][ T6981] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000003
[  100.705950][ T6981] RBP: 00007f43259ee090 R08: 0000000000000000 R09: 0000000000000000
[  100.705960][ T6981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  100.705969][ T6981] R13: 00007f43279c6038 R14: 00007f43279c5fa0 R15: 00007ffd6c5c8ee8
[  100.705998][ T6981]  </TASK>
[  100.876137][ T6986] CPU: 0 UID: 0 PID: 6986 Comm: syz.2.355 Not tainted syzkaller #0 PREEMPT(full) 
[  100.876161][ T6986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  100.876170][ T6986] Call Trace:
[  100.876177][ T6986]  <TASK>
[  100.876184][ T6986]  dump_stack_lvl+0x189/0x250
[  100.876209][ T6986]  ? __pfx____ratelimit+0x10/0x10
[  100.876232][ T6986]  ? __pfx_dump_stack_lvl+0x10/0x10
[  100.876251][ T6986]  ? __pfx__printk+0x10/0x10
[  100.876274][ T6986]  ? __pfx___might_resched+0x10/0x10
[  100.876290][ T6986]  ? fs_reclaim_acquire+0x7d/0x100
[  100.876324][ T6986]  should_fail_ex+0x414/0x560
[  100.876351][ T6986]  should_failslab+0xa8/0x100
[  100.876374][ T6986]  kmem_cache_alloc_noprof+0x73/0x3c0
[  100.876394][ T6986]  ? skb_clone+0x212/0x3a0
[  100.876416][ T6986]  skb_clone+0x212/0x3a0
[  100.876432][ T6986]  ? netlink_trim+0x188/0x2e0
[  100.876458][ T6986]  netlink_trim+0x19f/0x2e0
[  100.876481][ T6986]  netlink_broadcast_filtered+0xd6/0x12c0
[  100.876504][ T6986]  ? __lock_acquire+0xab9/0xd20
[  100.876536][ T6986]  ? nfnl_pernet+0x23/0x240
[  100.876559][ T6986]  ? __pfx_netlink_broadcast_filtered+0x10/0x10
[  100.876579][ T6986]  ? nfnl_pernet+0x23/0x240
[  100.876597][ T6986]  ? nfnl_pernet+0x23/0x240
[  100.876620][ T6986]  nlmsg_notify+0xf0/0x1a0
[  100.876646][ T6986]  nf_tables_commit+0x78ca/0x8700
[  100.876689][ T6986]  ? __pfx_nf_tables_commit+0x10/0x10
[  100.876714][ T6986]  ? free_large_kmalloc+0x13a/0x1f0
[  100.876738][ T6986]  ? nf_tables_newrule+0x23bc/0x2890
[  100.876770][ T6986]  ? __pfx_nf_tables_newrule+0x10/0x10
[  100.876810][ T6986]  nfnetlink_rcv+0x1a4e/0x2520
[  100.876862][ T6986]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  100.876898][ T6986]  ? ref_tracker_free+0x63a/0x7d0
[  100.876947][ T6986]  ? __netlink_deliver_tap+0x807/0x850
[  100.876968][ T6986]  ? netlink_deliver_tap+0x2e/0x1b0
[  100.877006][ T6986]  netlink_unicast+0x82c/0x9e0
[  100.877036][ T6986]  ? __pfx_netlink_unicast+0x10/0x10
[  100.877059][ T6986]  ? netlink_sendmsg+0x642/0xb30
[  100.877071][ T6986]  ? skb_put+0x11b/0x210
[  100.877091][ T6986]  netlink_sendmsg+0x805/0xb30
[  100.877115][ T6986]  ? __pfx_netlink_sendmsg+0x10/0x10
[  100.877134][ T6986]  ? aa_sock_msg_perm+0xf1/0x1d0
[  100.877152][ T6986]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  100.877168][ T6986]  ? __pfx_netlink_sendmsg+0x10/0x10
[  100.877184][ T6986]  __sock_sendmsg+0x21c/0x270
[  100.877208][ T6986]  ____sys_sendmsg+0x505/0x830
[  100.877231][ T6986]  ? __pfx_____sys_sendmsg+0x10/0x10
[  100.877258][ T6986]  ? import_iovec+0x74/0xa0
[  100.877280][ T6986]  ___sys_sendmsg+0x21f/0x2a0
[  100.877299][ T6986]  ? __pfx____sys_sendmsg+0x10/0x10
[  100.877358][ T6986]  ? __fget_files+0x2a/0x420
[  100.877371][ T6986]  ? __fget_files+0x3a0/0x420
[  100.877396][ T6986]  __x64_sys_sendmsg+0x19b/0x260
[  100.877416][ T6986]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  100.877443][ T6986]  ? __pfx_ksys_write+0x10/0x10
[  100.877461][ T6986]  ? rcu_is_watching+0x15/0xb0
[  100.877482][ T6986]  ? do_syscall_64+0xbe/0x3b0
[  100.877501][ T6986]  do_syscall_64+0xfa/0x3b0
[  100.877515][ T6986]  ? lockdep_hardirqs_on+0x9c/0x150
[  100.877535][ T6986]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.877551][ T6986]  ? clear_bhb_loop+0x60/0xb0
[  100.877569][ T6986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.877585][ T6986] RIP: 0033:0x7f8329d8ebe9
[  100.877599][ T6986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.877612][ T6986] RSP: 002b:00007f832abe8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  100.877629][ T6986] RAX: ffffffffffffffda RBX: 00007f8329fc5fa0 RCX: 00007f8329d8ebe9
[  100.877641][ T6986] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  100.877651][ T6986] RBP: 00007f832abe8090 R08: 0000000000000000 R09: 0000000000000000
[  100.877660][ T6986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  100.877670][ T6986] R13: 00007f8329fc6038 R14: 00007f8329fc5fa0 R15: 00007ffef8cda618
[  100.877697][ T6986]  </TASK>
[  101.770653][ T6997] netlink: 16 bytes leftover after parsing attributes in process `syz.0.362'.
[  101.858432][ T7005] tipc: Started in network mode
[  101.901001][ T7005] tipc: Node identity 72236eacc322, cluster identity 4711
[  101.940220][ T7005] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  101.955458][ T7012] netlink: 16 bytes leftover after parsing attributes in process `syz.3.365'.
[  101.974238][ T7011] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.364'.
[  102.031199][ T7000] tipc: Disabling bearer <eth:syzkaller0>
[  102.618130][ T7046] netlink: 12 bytes leftover after parsing attributes in process `syz.4.373'.
[  102.708305][ T7050] netlink: 12 bytes leftover after parsing attributes in process `syz.4.373'.
[  102.738153][ T7049] netlink: 16 bytes leftover after parsing attributes in process `syz.0.376'.
[  102.811590][ T7046] netlink: 12 bytes leftover after parsing attributes in process `syz.4.373'.
[  102.897074][ T7037] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.905263][ T7037] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.031485][ T7046] netlink: 12 bytes leftover after parsing attributes in process `syz.4.373'.
[  103.099516][ T7037] net_ratelimit: 5 callbacks suppressed
[  103.099536][ T7037] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  103.345000][    C1] Illegal XDP return value 16128 on prog  (id 36) dev team0, expect packet loss!
[  103.431350][ T7077] lo speed is unknown, defaulting to 1000
[  103.907330][ T7097] netlink: 16 bytes leftover after parsing attributes in process `syz.2.392'.
[  104.120616][ T7107] netlink: 64 bytes leftover after parsing attributes in process `syz.2.394'.
[  104.206437][ T7099] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  104.218753][ T7099] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  104.398803][ T7107] team0: No ports can be present during mode change
[  104.466222][   T36] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  104.493981][   T36] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  104.608708][   T36] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  104.650592][   T36] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  105.107843][ T7146] team0: No ports can be present during mode change
[  105.442455][ T7157] netlink: 'syz.3.411': attribute type 10 has an invalid length.
[  105.502295][ T7157] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  106.191661][ T7196] team0: No ports can be present during mode change
[  106.536802][ T7216] netlink: 'syz.4.431': attribute type 1 has an invalid length.
[  106.578073][ T7216] netlink: 'syz.4.431': attribute type 1 has an invalid length.
[  106.618510][ T7216] netlink: 'syz.4.431': attribute type 1 has an invalid length.
[  106.634592][ T7216] netlink: 'syz.4.431': attribute type 1 has an invalid length.
[  106.835304][ T7229] FAULT_INJECTION: forcing a failure.
[  106.835304][ T7229] name failslab, interval 1, probability 0, space 0, times 0
[  106.860290][ T7229] CPU: 1 UID: 0 PID: 7229 Comm: syz.2.437 Not tainted syzkaller #0 PREEMPT(full) 
[  106.860314][ T7229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  106.860324][ T7229] Call Trace:
[  106.860330][ T7229]  <TASK>
[  106.860338][ T7229]  dump_stack_lvl+0x189/0x250
[  106.860362][ T7229]  ? __pfx____ratelimit+0x10/0x10
[  106.860385][ T7229]  ? __pfx_dump_stack_lvl+0x10/0x10
[  106.860403][ T7229]  ? __pfx__printk+0x10/0x10
[  106.860419][ T7229]  ? netlink_unicast+0x82c/0x9e0
[  106.860440][ T7229]  ? ___sys_sendmsg+0x21f/0x2a0
[  106.860455][ T7229]  ? do_syscall_64+0xfa/0x3b0
[  106.860479][ T7229]  should_fail_ex+0x414/0x560
[  106.860506][ T7229]  should_failslab+0xa8/0x100
[  106.860528][ T7229]  kmem_cache_alloc_noprof+0x73/0x3c0
[  106.860546][ T7229]  ? skb_clone+0x212/0x3a0
[  106.860566][ T7229]  skb_clone+0x212/0x3a0
[  106.860584][ T7229]  __netlink_deliver_tap+0x404/0x850
[  106.860616][ T7229]  ? netlink_deliver_tap+0x2e/0x1b0
[  106.860639][ T7229]  netlink_deliver_tap+0x19c/0x1b0
[  106.860662][ T7229]  netlink_sendskb+0x68/0x140
[  106.860684][ T7229]  netlink_unicast+0x397/0x9e0
[  106.860702][ T7229]  ? __asan_memcpy+0x40/0x70
[  106.860728][ T7229]  ? __pfx_netlink_unicast+0x10/0x10
[  106.860757][ T7229]  nfnetlink_rcv+0x2290/0x2520
[  106.860809][ T7229]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  106.860845][ T7229]  ? ref_tracker_free+0x63a/0x7d0
[  106.860905][ T7229]  ? __netlink_deliver_tap+0x807/0x850
[  106.860927][ T7229]  ? netlink_deliver_tap+0x2e/0x1b0
[  106.860966][ T7229]  netlink_unicast+0x82c/0x9e0
[  106.860994][ T7229]  ? __pfx_netlink_unicast+0x10/0x10
[  106.861016][ T7229]  ? netlink_sendmsg+0x642/0xb30
[  106.861029][ T7229]  ? skb_put+0x11b/0x210
[  106.861049][ T7229]  netlink_sendmsg+0x805/0xb30
[  106.861073][ T7229]  ? __pfx_netlink_sendmsg+0x10/0x10
[  106.861092][ T7229]  ? aa_sock_msg_perm+0xf1/0x1d0
[  106.861110][ T7229]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  106.861127][ T7229]  ? __pfx_netlink_sendmsg+0x10/0x10
[  106.861144][ T7229]  __sock_sendmsg+0x21c/0x270
[  106.861175][ T7229]  ____sys_sendmsg+0x505/0x830
[  106.861199][ T7229]  ? __pfx_____sys_sendmsg+0x10/0x10
[  106.861224][ T7229]  ? import_iovec+0x74/0xa0
[  106.861250][ T7229]  ___sys_sendmsg+0x21f/0x2a0
[  106.861271][ T7229]  ? __pfx____sys_sendmsg+0x10/0x10
[  106.861323][ T7229]  ? __fget_files+0x2a/0x420
[  106.861337][ T7229]  ? __fget_files+0x3a0/0x420
[  106.861362][ T7229]  __x64_sys_sendmsg+0x19b/0x260
[  106.861384][ T7229]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  106.861413][ T7229]  ? __pfx_ksys_write+0x10/0x10
[  106.861431][ T7229]  ? rcu_is_watching+0x15/0xb0
[  106.861453][ T7229]  ? do_syscall_64+0xbe/0x3b0
[  106.861474][ T7229]  do_syscall_64+0xfa/0x3b0
[  106.861489][ T7229]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.861509][ T7229]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.861525][ T7229]  ? clear_bhb_loop+0x60/0xb0
[  106.861544][ T7229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.861559][ T7229] RIP: 0033:0x7f8329d8ebe9
[  106.861575][ T7229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.861587][ T7229] RSP: 002b:00007f832abe8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  106.861605][ T7229] RAX: ffffffffffffffda RBX: 00007f8329fc5fa0 RCX: 00007f8329d8ebe9
[  106.861617][ T7229] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000003
[  106.861626][ T7229] RBP: 00007f832abe8090 R08: 0000000000000000 R09: 0000000000000000
[  106.861636][ T7229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  106.861646][ T7229] R13: 00007f8329fc6038 R14: 00007f8329fc5fa0 R15: 00007ffef8cda618
[  106.861671][ T7229]  </TASK>
[  107.249787][ T7238] __nla_validate_parse: 9 callbacks suppressed
[  107.249804][ T7238] netlink: 72 bytes leftover after parsing attributes in process `syz.1.441'.
[  107.308759][ T7234] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.316525][ T7234] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.417286][ T7234] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  107.431359][ T7234] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  107.559577][ T5923] lo speed is unknown, defaulting to 1000
[  107.609272][   T36] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  107.621868][ T1150] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  107.655357][ T5923] syz0: Port: 1 Link DOWN
[  107.764585][ T5923] lo speed is unknown, defaulting to 1000
[  107.772309][ T7257] FAULT_INJECTION: forcing a failure.
[  107.772309][ T7257] name failslab, interval 1, probability 0, space 0, times 0
[  107.825262][ T7257] CPU: 0 UID: 0 PID: 7257 Comm: syz.4.448 Not tainted syzkaller #0 PREEMPT(full) 
[  107.825286][ T7257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  107.825295][ T7257] Call Trace:
[  107.825302][ T7257]  <TASK>
[  107.825309][ T7257]  dump_stack_lvl+0x189/0x250
[  107.825332][ T7257]  ? __pfx____ratelimit+0x10/0x10
[  107.825354][ T7257]  ? __pfx_dump_stack_lvl+0x10/0x10
[  107.825373][ T7257]  ? __pfx__printk+0x10/0x10
[  107.825401][ T7257]  ? __pfx___might_resched+0x10/0x10
[  107.825416][ T7257]  ? fs_reclaim_acquire+0x7d/0x100
[  107.825445][ T7257]  should_fail_ex+0x414/0x560
[  107.825471][ T7257]  ? alloc_netdev_mqs+0xa3/0x11b0
[  107.825488][ T7257]  should_failslab+0xa8/0x100
[  107.825512][ T7257]  __kvmalloc_node_noprof+0x161/0x5f0
[  107.825534][ T7257]  ? alloc_netdev_mqs+0xa3/0x11b0
[  107.825551][ T7257]  ? snprintf+0xda/0x120
[  107.825575][ T7257]  alloc_netdev_mqs+0xa3/0x11b0
[  107.825593][ T7257]  ? __pfx_macvlan_setup+0x10/0x10
[  107.825621][ T7257]  rtnl_create_link+0x31f/0xd10
[  107.825648][ T7257]  rtnl_newlink_create+0x25c/0xb00
[  107.825672][ T7257]  ? __lock_acquire+0xab9/0xd20
[  107.825700][ T7257]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  107.825721][ T7257]  ? __pfx___mutex_lock+0x10/0x10
[  107.825747][ T7257]  ? ns_capable+0x8a/0xf0
[  107.825769][ T7257]  rtnl_newlink+0x16d6/0x1c70
[  107.825815][ T7257]  ? __pfx_rtnl_newlink+0x10/0x10
[  107.825847][ T7257]  ? is_bpf_text_address+0x26/0x2b0
[  107.825877][ T7257]  ? __lock_acquire+0xab9/0xd20
[  107.825912][ T7257]  ? __lock_acquire+0xab9/0xd20
[  107.825955][ T7257]  ? is_bpf_text_address+0x26/0x2b0
[  107.825982][ T7257]  ? is_bpf_text_address+0x292/0x2b0
[  107.826003][ T7257]  ? is_bpf_text_address+0x26/0x2b0
[  107.826033][ T7257]  ? __lock_acquire+0xab9/0xd20
[  107.826082][ T7257]  ? __pfx_rtnl_newlink+0x10/0x10
[  107.826104][ T7257]  rtnetlink_rcv_msg+0x7cf/0xb70
[  107.826125][ T7257]  ? __lock_acquire+0xab9/0xd20
[  107.826147][ T7257]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  107.826169][ T7257]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  107.826210][ T7257]  netlink_rcv_skb+0x205/0x470
[  107.826231][ T7257]  ? __lock_acquire+0xab9/0xd20
[  107.826253][ T7257]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  107.826277][ T7257]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  107.826313][ T7257]  ? netlink_deliver_tap+0x2e/0x1b0
[  107.826344][ T7257]  netlink_unicast+0x82c/0x9e0
[  107.826376][ T7257]  ? __pfx_netlink_unicast+0x10/0x10
[  107.826400][ T7257]  ? netlink_sendmsg+0x642/0xb30
[  107.826413][ T7257]  ? skb_put+0x11b/0x210
[  107.826435][ T7257]  netlink_sendmsg+0x805/0xb30
[  107.826462][ T7257]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.826482][ T7257]  ? aa_sock_msg_perm+0xf1/0x1d0
[  107.826501][ T7257]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  107.826519][ T7257]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.826537][ T7257]  __sock_sendmsg+0x21c/0x270
[  107.826562][ T7257]  ____sys_sendmsg+0x505/0x830
[  107.826586][ T7257]  ? __pfx_____sys_sendmsg+0x10/0x10
[  107.826615][ T7257]  ? import_iovec+0x74/0xa0
[  107.826639][ T7257]  ___sys_sendmsg+0x21f/0x2a0
[  107.826660][ T7257]  ? __pfx____sys_sendmsg+0x10/0x10
[  107.826719][ T7257]  ? __fget_files+0x2a/0x420
[  107.826733][ T7257]  ? __fget_files+0x3a0/0x420
[  107.826760][ T7257]  __x64_sys_sendmsg+0x19b/0x260
[  107.826789][ T7257]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  107.826819][ T7257]  ? __pfx_ksys_write+0x10/0x10
[  107.826838][ T7257]  ? rcu_is_watching+0x15/0xb0
[  107.826861][ T7257]  ? do_syscall_64+0xbe/0x3b0
[  107.826882][ T7257]  do_syscall_64+0xfa/0x3b0
[  107.826896][ T7257]  ? lockdep_hardirqs_on+0x9c/0x150
[  107.826918][ T7257]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.826934][ T7257]  ? clear_bhb_loop+0x60/0xb0
[  107.826955][ T7257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.826971][ T7257] RIP: 0033:0x7fb24018ebe9
[  107.826987][ T7257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.827000][ T7257] RSP: 002b:00007fb2410a9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.827018][ T7257] RAX: ffffffffffffffda RBX: 00007fb2403c5fa0 RCX: 00007fb24018ebe9
[  107.827030][ T7257] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000004
[  107.827041][ T7257] RBP: 00007fb2410a9090 R08: 0000000000000000 R09: 0000000000000000
[  107.827051][ T7257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.827061][ T7257] R13: 00007fb2403c6038 R14: 00007fb2403c5fa0 R15: 00007ffec9437488
[  107.827091][ T7257]  </TASK>
[  107.827140][ T1150] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.285530][ T1150] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.642886][ T7299] netlink: 68 bytes leftover after parsing attributes in process `syz.4.459'.
[  108.909875][ T7310] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.464'.
[  109.192179][ T7325] netlink: 8 bytes leftover after parsing attributes in process `syz.1.468'.
[  109.198097][ T7323] netlink: 12 bytes leftover after parsing attributes in process `syz.3.469'.
[  109.280588][ T7330] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  109.326530][ T7323] netlink: 12 bytes leftover after parsing attributes in process `syz.3.469'.
[  109.430513][ T7340] netlink: 11 bytes leftover after parsing attributes in process `syz.0.473'.
[  109.565716][ T7348] netlink: 24 bytes leftover after parsing attributes in process `syz.2.477'.
[  109.658459][ T7323] netlink: 12 bytes leftover after parsing attributes in process `syz.3.469'.
[  109.898208][ T7363] netlink: 8 bytes leftover after parsing attributes in process `syz.2.482'.
[  110.027772][ T7366] netlink: 'syz.4.483': attribute type 12 has an invalid length.
[  110.053006][ T7366] netlink: 'syz.4.483': attribute type 29 has an invalid length.
[  110.060793][ T7366] netlink: 'syz.4.483': attribute type 2 has an invalid length.
[  110.119168][ T7366] netlink: 'syz.4.483': attribute type 1 has an invalid length.
[  110.133529][ T7379] delete_channel: no stack
[  110.345398][ T7387] : entered promiscuous mode
[  110.480194][ T7398] FAULT_INJECTION: forcing a failure.
[  110.480194][ T7398] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.509594][ T7398] CPU: 1 UID: 0 PID: 7398 Comm: syz.4.495 Not tainted syzkaller #0 PREEMPT(full) 
[  110.509627][ T7398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  110.509637][ T7398] Call Trace:
[  110.509644][ T7398]  <TASK>
[  110.509652][ T7398]  dump_stack_lvl+0x189/0x250
[  110.509676][ T7398]  ? __pfx____ratelimit+0x10/0x10
[  110.509700][ T7398]  ? __pfx_dump_stack_lvl+0x10/0x10
[  110.509719][ T7398]  ? __pfx__printk+0x10/0x10
[  110.509754][ T7398]  should_fail_ex+0x414/0x560
[  110.509780][ T7398]  _copy_to_user+0x31/0xb0
[  110.509801][ T7398]  simple_read_from_buffer+0xe1/0x170
[  110.509827][ T7398]  proc_fail_nth_read+0x1b3/0x220
[  110.509848][ T7398]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  110.509870][ T7398]  ? rw_verify_area+0x2a6/0x4d0
[  110.509888][ T7398]  ? __lock_acquire+0xab9/0xd20
[  110.509908][ T7398]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  110.509928][ T7398]  vfs_read+0x200/0xa30
[  110.509947][ T7398]  ? fdget_pos+0x247/0x320
[  110.509967][ T7398]  ? __pfx___mutex_lock+0x10/0x10
[  110.509983][ T7398]  ? __pfx_vfs_read+0x10/0x10
[  110.510005][ T7398]  ? __fget_files+0x2a/0x420
[  110.510024][ T7398]  ? __fget_files+0x3a0/0x420
[  110.510038][ T7398]  ? __fget_files+0x2a/0x420
[  110.510062][ T7398]  ksys_read+0x145/0x250
[  110.510085][ T7398]  ? __pfx_ksys_read+0x10/0x10
[  110.510101][ T7398]  ? rcu_is_watching+0x15/0xb0
[  110.510124][ T7398]  ? do_syscall_64+0xbe/0x3b0
[  110.510144][ T7398]  do_syscall_64+0xfa/0x3b0
[  110.510158][ T7398]  ? lockdep_hardirqs_on+0x9c/0x150
[  110.510180][ T7398]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.510196][ T7398]  ? clear_bhb_loop+0x60/0xb0
[  110.510216][ T7398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.510232][ T7398] RIP: 0033:0x7fb24018d5fc
[  110.510247][ T7398] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  110.510260][ T7398] RSP: 002b:00007fb2410a9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  110.510278][ T7398] RAX: ffffffffffffffda RBX: 00007fb2403c5fa0 RCX: 00007fb24018d5fc
[  110.510290][ T7398] RDX: 000000000000000f RSI: 00007fb2410a90a0 RDI: 0000000000000004
[  110.510301][ T7398] RBP: 00007fb2410a9090 R08: 0000000000000000 R09: 0000000000000000
[  110.510311][ T7398] R10: 0000000000000805 R11: 0000000000000246 R12: 0000000000000001
[  110.510321][ T7398] R13: 00007fb2403c6038 R14: 00007fb2403c5fa0 R15: 00007ffec9437488
[  110.510349][ T7398]  </TASK>
[  110.820640][ T7400] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  110.831346][ T7400] +
: renamed from syzkaller0
[  110.845846][ T7400] tipc: Disabling bearer <eth:syzkaller0>
[  110.957183][ T7410] netlink: 'syz.4.500': attribute type 11 has an invalid length.
[  110.965899][ T7379] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  111.397946][ T7419] team0 (unregistering): Port device team_slave_0 removed
[  111.430389][ T7419] team0 (unregistering): Port device team_slave_1 removed
[  111.568212][ T7443] tipc: Started in network mode
[  111.580884][ T7443] tipc: Node identity ac14140f, cluster identity 4711
[  111.599356][ T7443] tipc: New replicast peer: 255.255.255.255
[  111.631555][ T7443] tipc: Enabled bearer <udp:syz2>, priority 10
[  111.725899][ T7443] team0: Device vti0 is of different type
[  112.199244][ T7447] syz.0.509 (7447) used greatest stack depth: 15128 bytes left
[  112.234556][ T5189] Bluetooth: hci0: command 0x0c1a tx timeout
[  112.450555][ T7485] __nla_validate_parse: 8 callbacks suppressed
[  112.450573][ T7485] netlink: 4 bytes leftover after parsing attributes in process `syz.0.520'.
[  112.568376][ T7490] : entered promiscuous mode
[  112.670496][ T7503] netlink: 'syz.1.526': attribute type 2 has an invalid length.
[  112.754313][ T5923] tipc: Node number set to 2886997007
[  112.841725][ T7514] netlink: 'syz.0.529': attribute type 1 has an invalid length.
[  112.991197][ T7514] 8021q: adding VLAN 0 to HW filter on device bond5
[  113.128952][ T7520] 8021q: adding VLAN 0 to HW filter on device bond5
[  113.137333][ T7520] bond5: (slave vxcan3): The slave device specified does not support setting the MAC address
[  113.151344][ T7520] bond5: (slave vxcan3): Error -95 calling set_mac_address
[  113.165760][ T7529] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.529'.
[  113.181275][ T7529] netlink: zone id is out of range
[  113.186844][ T7529] netlink: zone id is out of range
[  113.191965][ T7529] netlink: zone id is out of range
[  113.200757][ T7529] netlink: zone id is out of range
[  113.208191][ T7529] netlink: zone id is out of range
[  113.217677][ T7529] netlink: get zone limit has 8 unknown bytes
[  113.226769][ T7522] veth3: entered promiscuous mode
[  113.243714][ T7522] bond5: (slave veth3): Enslaving as an active interface with a down link
[  113.407556][ T7514] gretap1: entered allmulticast mode
[  113.416579][ T7541] netlink: 'syz.4.534': attribute type 21 has an invalid length.
[  113.419105][ T7514] bond5: (slave gretap1): making interface the new active one
[  113.438812][ T7514] bond5: (slave gretap1): Enslaving as an active interface with an up link
[  113.472938][ T7543] netlink: 8 bytes leftover after parsing attributes in process `syz.2.535'.
[  113.480299][ T7541] netlink: 132 bytes leftover after parsing attributes in process `syz.4.534'.
[  113.482400][ T7543] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  113.499615][ T7543] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  113.520150][ T7546] netlink: 'syz.3.536': attribute type 10 has an invalid length.
[  113.584002][ T7546] 8021q: adding VLAN 0 to HW filter on device team0
[  113.608659][ T7546] bond0: (slave team0): Enslaving as an active interface with an up link
[  113.897112][ T7570] netlink: 20 bytes leftover after parsing attributes in process `syz.3.541'.
[  114.109617][ T7574] tipc: Started in network mode
[  114.171562][ T7574] tipc: Node identity 62263d6cbed9, cluster identity 4711
[  114.196306][ T7574] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  114.254331][ T7558] +
: renamed from syzkaller0
[  114.264988][ T7585] netlink: 'syz.1.545': attribute type 10 has an invalid length.
[  114.297427][ T7593] netlink: 'syz.3.547': attribute type 1 has an invalid length.
[  114.307779][ T7558] tipc: Disabling bearer <eth:syzkaller0>
[  114.556516][ T7593] 8021q: adding VLAN 0 to HW filter on device bond4
[  114.624646][ T7593] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.547'.
[  114.643121][ T7593] netlink: zone id is out of range
[  114.649507][ T7593] netlink: zone id is out of range
[  114.671351][ T7593] netlink: zone id is out of range
[  114.700078][ T7593] netlink: zone id is out of range
[  114.721446][ T7598] 8021q: adding VLAN 0 to HW filter on device bond4
[  114.726676][ T7593] netlink: zone id is out of range
[  114.733092][ T7598] bond4: (slave vxcan3): The slave device specified does not support setting the MAC address
[  114.745686][ T7598] bond4: (slave vxcan3): Error -95 calling set_mac_address
[  114.757038][ T7593] netlink: get zone limit has 8 unknown bytes
[  114.868220][ T7599] veth7: entered promiscuous mode
[  114.877358][ T7599] bond4: (slave veth7): Enslaving as an active interface with a down link
[  115.151358][ T7628] netlink: 48 bytes leftover after parsing attributes in process `syz.1.557'.
[  115.283825][ T7630] netlink: 12 bytes leftover after parsing attributes in process `syz.4.558'.
[  115.382374][ T7639] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  115.407579][ T7641] netlink: 'syz.3.561': attribute type 1 has an invalid length.
[  115.510419][ T7641] 8021q: adding VLAN 0 to HW filter on device bond5
[  115.527159][ T7647] netlink: 'syz.1.565': attribute type 1 has an invalid length.
[  115.577173][ T7647] 8021q: adding VLAN 0 to HW filter on device bond5
[  115.647375][ T7641] 8021q: adding VLAN 0 to HW filter on device bond5
[  115.654757][ T7641] bond5: (slave vxcan3): The slave device specified does not support setting the MAC address
[  115.667315][ T7641] bond5: (slave vxcan3): Error -95 calling set_mac_address
[  115.786570][ T7647] 8021q: adding VLAN 0 to HW filter on device bond5
[  115.799819][ T7647] bond5: (slave vxcan3): The slave device specified does not support setting the MAC address
[  115.815944][ T7647] bond5: (slave vxcan3): Error -95 calling set_mac_address
[  115.829052][ T7669] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.565'.
[  115.843804][ T7669] netlink: zone id is out of range
[  115.860453][ T7669] netlink: zone id is out of range
[  115.867580][ T7671] netlink: 4 bytes leftover after parsing attributes in process `syz.0.570'.
[  115.912274][ T7669] netlink: zone id is out of range
[  115.930659][ T7669] netlink: zone id is out of range
[  115.969337][ T7653] veth9: entered promiscuous mode
[  115.986416][ T7653] bond5: (slave veth9): Enslaving as an active interface with a down link
[  116.057188][ T7659] veth3: entered promiscuous mode
[  116.077867][ T7659] bond5: (slave veth3): Enslaving as an active interface with a down link
[  116.115675][ T7660] vlan2: entered allmulticast mode
[  116.121921][ T7660] bond5: entered allmulticast mode
[  116.177958][ T7664] gretap1: entered allmulticast mode
[  116.188144][ T7664] bond5: (slave gretap1): making interface the new active one
[  116.200381][ T7664] bond5: (slave gretap1): Enslaving as an active interface with an up link
[  116.210779][ T7665] +
: renamed from syzkaller0
[  116.901618][ T7708] bridge1: port 1(veth3) entered blocking state
[  116.920976][ T7708] bridge1: port 1(veth3) entered disabled state
[  116.925642][ T7713] ieee802154 phy0 wpan0: encryption failed: -22
[  116.928755][ T7708] veth3: entered allmulticast mode
[  116.949337][ T7708] veth3: entered promiscuous mode
[  116.976915][ T7712] vlan2: entered allmulticast mode
[  116.982135][ T7712] veth0_to_bond: entered allmulticast mode
[  116.989559][ T7712] bridge1: port 2(vlan2) entered blocking state
[  116.997491][ T7712] bridge1: port 2(vlan2) entered disabled state
[  117.006537][ T7712] vlan2: entered promiscuous mode
[  117.011625][ T7712] veth0_to_bond: entered promiscuous mode
[  117.386026][ T7737] netlink: 'syz.2.593': attribute type 6 has an invalid length.
[  117.397484][ T7737] netlink: 'syz.2.593': attribute type 1 has an invalid length.
[  117.398213][ T7735] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  117.436620][ T7735] +
: renamed from syzkaller0
[  117.450351][ T7735] tipc: Disabling bearer <eth:syzkaller0>
[  117.494610][ T7740] __nla_validate_parse: 5 callbacks suppressed
[  117.494627][ T7740] netlink: 64 bytes leftover after parsing attributes in process `syz.1.594'.
[  117.565601][ T7746] netlink: 12 bytes leftover after parsing attributes in process `syz.1.594'.
[  117.610773][ T7740] team0: No ports can be present during mode change
[  117.680383][ T7739] netlink: 224 bytes leftover after parsing attributes in process `syz.2.593'.
[  117.776923][ T7737] netlink: 'syz.2.593': attribute type 1 has an invalid length.
[  117.838024][ T7737] netlink: 244 bytes leftover after parsing attributes in process `syz.2.593'.
[  117.901017][ T7737] NCSI netlink: No device for ifindex 32773
[  118.243081][ T7778] batadv1: entered allmulticast mode
[  118.510161][ T7788] tap0: tun_chr_ioctl cmd 2148553947
[  118.531578][ T7788] macvlan0: entered promiscuous mode
[  118.548213][ T7786] macvlan0: left promiscuous mode
[  118.583206][ T7795] netlink: 'syz.0.604': attribute type 10 has an invalid length.
[  118.598372][ T7795] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  118.709839][ T7805] netlink: 64 bytes leftover after parsing attributes in process `syz.3.607'.
[  118.731596][ T7808] netlink: 12 bytes leftover after parsing attributes in process `syz.4.608'.
[  118.753056][ T7805] team0: No ports can be present during mode change
[  118.774778][ T7805] netlink: 12 bytes leftover after parsing attributes in process `syz.3.607'.
[  118.830036][ T7816] netlink: 8 bytes leftover after parsing attributes in process `syz.4.608'.
[  118.928464][ T7808] netlink: 12 bytes leftover after parsing attributes in process `syz.4.608'.
[  119.114062][ T7830] netlink: 'syz.1.613': attribute type 8 has an invalid length.
[  119.199302][ T7808] netlink: 12 bytes leftover after parsing attributes in process `syz.4.608'.
[  119.450574][ T7847] rdma_rxe: rxe_newlink: failed to add lo
[  120.062481][ T7878] Bluetooth: MGMT ver 1.23
[  120.145161][ T7883] rdma_rxe: rxe_newlink: failed to add lo
[  120.330815][ T7892] netlink: 'syz.3.638': attribute type 3 has an invalid length.
[  120.360381][ T7895] net_ratelimit: 2 callbacks suppressed
[  120.360398][ T7895] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  120.583001][   T30] audit: type=1800 audit(1757383593.826:2): pid=7873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.632" name="memory.events" dev="tmpfs" ino=651 res=0 errno=0
[  120.864154][ T7920] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  120.895386][ T7923] netlink: 'syz.2.652': attribute type 1 has an invalid length.
[  120.988144][ T7923] 8021q: adding VLAN 0 to HW filter on device bond5
[  121.006610][ T7922] macvtap1: entered allmulticast mode
[  121.012013][ T7922] veth0_macvtap: entered allmulticast mode
[  121.103932][ T7942] netlink: zone id is out of range
[  121.110056][ T7942] netlink: zone id is out of range
[  121.114538][ T7931] 8021q: adding VLAN 0 to HW filter on device bond5
[  121.118630][ T7942] netlink: zone id is out of range
[  121.147550][ T7931] bond5: (slave vxcan3): The slave device specified does not support setting the MAC address
[  121.160123][ T7942] netlink: zone id is out of range
[  121.196651][ T7942] netlink: zone id is out of range
[  121.202241][ T7942] netlink: get zone limit has 8 unknown bytes
[  121.212850][ T7947] netlink: 'syz.4.656': attribute type 1 has an invalid length.
[  121.236451][ T7931] bond5: (slave vxcan3): Error -95 calling set_mac_address
[  121.372566][ T7923] veth3: entered promiscuous mode
[  121.382234][ T7923] bond5: (slave veth3): Enslaving as an active interface with a down link
[  121.658903][ T7962] netlink: 'syz.0.662': attribute type 10 has an invalid length.
[  122.012326][ T7988] netlink: 'syz.1.671': attribute type 1 has an invalid length.
[  122.076970][ T7988] 8021q: adding VLAN 0 to HW filter on device bond7
[  122.151559][ T7995] 8021q: adding VLAN 0 to HW filter on device bond7
[  122.175739][ T7995] bond7: (slave vxcan3): The slave device specified does not support setting the MAC address
[  122.189465][ T7995] bond7: (slave vxcan3): Error -95 calling set_mac_address
[  122.255754][ T8002] netlink: zone id is out of range
[  122.271295][ T8002] netlink: zone id is out of range
[  122.284909][ T8002] netlink: zone id is out of range
[  122.332543][ T7988] veth5: entered promiscuous mode
[  122.380837][ T7988] bond7: (slave veth5): Enslaving as an active interface with a down link
[  122.905198][ T8037] tipc: Started in network mode
[  122.915062][ T8037] tipc: Node identity 16137468ce63, cluster identity 4711
[  122.945956][ T8037] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  123.034824][ T8042] rdma_rxe: rxe_newlink: failed to add lo
[  123.080458][ T8036] tipc: Disabling bearer <eth:syzkaller0>
[  123.100292][ T8047] netlink: 'syz.4.686': attribute type 1 has an invalid length.
[  123.116218][ T8047] __nla_validate_parse: 13 callbacks suppressed
[  123.116235][ T8047] netlink: 144 bytes leftover after parsing attributes in process `syz.4.686'.
[  123.142127][ T8047] netlink: 'syz.4.686': attribute type 1 has an invalid length.
[  123.151275][ T8047] netlink: 'syz.4.686': attribute type 2 has an invalid length.
[  123.160550][ T8047] netlink: 64 bytes leftover after parsing attributes in process `syz.4.686'.
[  123.339610][ T8054] netlink: 'syz.3.688': attribute type 1 has an invalid length.
[  123.351866][ T8055] netlink: 'syz.1.690': attribute type 1 has an invalid length.
[  123.362178][ T8055] netlink: 24 bytes leftover after parsing attributes in process `syz.1.690'.
[  123.564325][ T8054] 8021q: adding VLAN 0 to HW filter on device bond7
[  123.618066][ T8054] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.688'.
[  123.705179][ T8063] 8021q: adding VLAN 0 to HW filter on device bond7
[  123.712438][ T8063] bond7: (slave vxcan3): The slave device specified does not support setting the MAC address
[  123.725850][ T8063] bond7: (slave vxcan3): Error -95 calling set_mac_address
[  123.838459][ T8076] veth11: entered promiscuous mode
[  123.938765][ T8076] bond7: (slave veth11): Enslaving as an active interface with a down link
[  123.952953][ T8093] netlink: 36 bytes leftover after parsing attributes in process `syz.4.696'.
[  123.967033][ T8095] rdma_rxe: rxe_newlink: failed to add lo
[  123.986876][ T8080] netlink: 4 bytes leftover after parsing attributes in process `syz.0.693'.
[  124.248959][ T8109] netlink: 8 bytes leftover after parsing attributes in process `syz.1.703'.
[  124.288325][ T8106] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  124.380664][ T8104] tipc: Disabling bearer <eth:syzkaller0>
[  124.623337][ T8124] IPVS: set_ctl: invalid protocol: 33 172.20.20.187:20004
[  124.623883][ T8127] rdma_rxe: rxe_newlink: failed to add lo
[  124.650679][ T8132] netlink: 8 bytes leftover after parsing attributes in process `syz.0.710'.
[  124.835008][ T8139] netlink: 'syz.2.712': attribute type 1 has an invalid length.
[  124.851884][ T8140] netlink: 3 bytes leftover after parsing attributes in process `syz.4.713'.
[  124.975506][ T8146] netlink: 8 bytes leftover after parsing attributes in process `syz.1.716'.
[  125.078350][ T8139] 8021q: adding VLAN 0 to HW filter on device bond6
[  125.186971][ T8147] 8021q: adding VLAN 0 to HW filter on device bond6
[  125.213241][ T8147] bond6: (slave vxcan3): The slave device specified does not support setting the MAC address
[  125.249123][ T8147] bond6: (slave vxcan3): Error -95 calling set_mac_address
[  125.323912][ T8167] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  125.356768][ T8162] +
: renamed from syzkaller0
[  125.390530][ T8162] tipc: Disabling bearer <eth:syzkaller0>
[  125.552328][ T8178] batadv1: entered allmulticast mode
[  125.597455][ T8181] pim6reg527: entered allmulticast mode
[  125.784255][ T8192] netlink: 'syz.1.726': attribute type 33 has an invalid length.
[  125.982472][ T8205] netlink: 'syz.2.732': attribute type 1 has an invalid length.
[  126.124793][ T8205] 8021q: adding VLAN 0 to HW filter on device bond7
[  126.154221][ T8205] net_ratelimit: 16 callbacks suppressed
[  126.154239][ T8205] netlink: zone id is out of range
[  126.168186][ T8205] netlink: zone id is out of range
[  126.173573][ T8205] netlink: zone id is out of range
[  126.178865][ T8205] netlink: zone id is out of range
[  126.184356][ T8205] netlink: zone id is out of range
[  126.189670][ T8205] netlink: get zone limit has 8 unknown bytes
[  126.217610][ T8215] 8021q: adding VLAN 0 to HW filter on device bond7
[  126.228986][ T8215] bond7: (slave vxcan3): The slave device specified does not support setting the MAC address
[  126.240951][ T8215] bond7: (slave vxcan3): Error -95 calling set_mac_address
[  126.311658][ T8227] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  126.327915][ T8221] +
: renamed from syzkaller0
[  126.363248][ T8221] tipc: Disabling bearer <eth:syzkaller0>
[  126.828243][ T8254] netlink: 'syz.4.748': attribute type 10 has an invalid length.
[  126.843066][ T8264] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  126.875880][ T8254] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  126.915027][ T8267] netlink: 'syz.2.752': attribute type 1 has an invalid length.
[  127.025637][ T8267] 8021q: adding VLAN 0 to HW filter on device bond8
[  127.064817][ T8274] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  127.117570][ T8267] netlink: zone id is out of range
[  127.123988][ T8267] netlink: zone id is out of range
[  127.131723][ T8267] netlink: zone id is out of range
[  127.159283][ T8277] 8021q: adding VLAN 0 to HW filter on device bond8
[  127.166602][ T8277] bond8: (slave vxcan3): The slave device specified does not support setting the MAC address
[  127.189252][ T8277] bond8: (slave vxcan3): Error -95 calling set_mac_address
[  128.859422][ T8375] __nla_validate_parse: 10 callbacks suppressed
[  128.859439][ T8375] netlink: 288 bytes leftover after parsing attributes in process `syz.4.795'.
[  128.957571][ T8384] netlink: 'syz.0.799': attribute type 10 has an invalid length.
[  129.079658][ T8388] netlink: 'syz.1.803': attribute type 1 has an invalid length.
[  129.237065][ T8405] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.803'.
[  129.244824][ T8388] 8021q: adding VLAN 0 to HW filter on device bond8
[  129.343833][ T8399] 8021q: adding VLAN 0 to HW filter on device bond8
[  129.384097][ T8399] bond8: (slave vxcan3): The slave device specified does not support setting the MAC address
[  129.407934][ T8399] bond8: (slave vxcan3): Error -95 calling set_mac_address
[  129.838552][ T8432] netlink: 'syz.4.814': attribute type 10 has an invalid length.
[  129.979104][ T8440] netlink: 4 bytes leftover after parsing attributes in process `syz.1.817'.
[  130.161205][ T8440] macvtap2: entered promiscuous mode
[  130.170437][ T8440] vlan0: entered promiscuous mode
[  130.183745][ T8440] macvtap2: entered allmulticast mode
[  130.222901][ T8440] vlan0: entered allmulticast mode
[  130.236270][ T8440] veth0_vlan: entered allmulticast mode
[  130.421577][ T8468] netlink: 'syz.1.824': attribute type 1 has an invalid length.
[  130.442856][ T8468] netlink: 224 bytes leftover after parsing attributes in process `syz.1.824'.
[  130.467740][ T8468] netlink: 8 bytes leftover after parsing attributes in process `syz.1.824'.
[  130.589807][ T8475] netlink: 4 bytes leftover after parsing attributes in process `syz.1.824'.
[  130.641189][ T8480] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.827'.
[  130.900482][ T8494] netlink: 108 bytes leftover after parsing attributes in process `syz.4.833'.
[  130.921058][ T8494] netlink: 108 bytes leftover after parsing attributes in process `syz.4.833'.
[  130.933308][ T8494] netlink: 108 bytes leftover after parsing attributes in process `syz.4.833'.
[  131.445829][ T8522] netlink: 'syz.4.844': attribute type 10 has an invalid length.
[  131.457180][ T8522] batman_adv: batadv0: Adding interface: virt_wifi0
[  131.468564][ T8522] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.521180][ T8522] batman_adv: batadv0: Interface activated: virt_wifi0
[  131.740776][ T8533] netlink: 'syz.3.848': attribute type 33 has an invalid length.
[  131.806280][ T8538] netlink: 'syz.4.849': attribute type 1 has an invalid length.
[  131.858190][ T8538] 8021q: adding VLAN 0 to HW filter on device bond5
[  131.876922][ T8539] bridge1: port 2(vlan2) entered blocking state
[  131.883492][ T8539] bridge1: port 2(vlan2) entered forwarding state
[  131.895178][ T8539] bond5: (slave veth0_to_bond): making interface the new active one
[  131.904522][ T8539] bond5: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  131.918285][ T8538] bridge1: port 2(vlan2) entered disabled state
[  131.964459][ T1150] bond5: (slave veth0_to_bond): link status definitely down, disabling slave
[  131.992144][ T1150] bond5: now running without any active interface!
[  132.132262][ T8558] sch_fq: defrate 0 ignored.
[  132.237250][ T8560] rdma_rxe: rxe_newlink: failed to add lo
[  132.788936][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  132.795669][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  132.860000][ T8597] rdma_rxe: rxe_newlink: failed to add lo
[  133.348753][ T8623] netlink: 'syz.0.879': attribute type 17 has an invalid length.
[  133.386846][ T8627] team0: No ports can be present during mode change
[  133.553489][ T8635] net_ratelimit: 9 callbacks suppressed
[  133.553506][ T8635] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  133.577690][ T8637] rdma_rxe: rxe_newlink: failed to add lo
[  133.587971][ T8631] netlink: 'syz.0.882': attribute type 10 has an invalid length.
[  133.690191][ T8641] syzkaller0: entered promiscuous mode
[  133.712865][ T8641] syzkaller0: entered allmulticast mode
[  133.867896][ T8643] netlink: 'syz.2.887': attribute type 10 has an invalid length.
[  133.885772][ T8643] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  134.167140][ T8660] netlink: 'syz.4.893': attribute type 1 has an invalid length.
[  134.196320][ T8664] rdma_rxe: rxe_newlink: failed to add lo
[  134.234069][ T8660] __nla_validate_parse: 23 callbacks suppressed
[  134.234085][ T8660] netlink: 128 bytes leftover after parsing attributes in process `syz.4.893'.
[  134.258098][ T8669] netlink: 284 bytes leftover after parsing attributes in process `syz.0.895'.
[  134.267827][ T8660] netlink: 'syz.4.893': attribute type 2 has an invalid length.
[  134.276380][ T8660] netlink: 'syz.4.893': attribute type 1 has an invalid length.
[  134.326352][ T8669] gtp0: entered promiscuous mode
[  134.346270][ T8669] gtp0: entered allmulticast mode
[  134.369651][ T8665] netlink: 16 bytes leftover after parsing attributes in process `syz.0.895'.
[  134.388546][ T8665] netlink: 12 bytes leftover after parsing attributes in process `syz.0.895'.
[  134.399719][ T8676] FAULT_INJECTION: forcing a failure.
[  134.399719][ T8676] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.413949][ T8676] CPU: 0 UID: 0 PID: 8676 Comm: syz.1.899 Not tainted syzkaller #0 PREEMPT(full) 
[  134.413966][ T8676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  134.413973][ T8676] Call Trace:
[  134.413979][ T8676]  <TASK>
[  134.413985][ T8676]  dump_stack_lvl+0x189/0x250
[  134.414013][ T8676]  ? __pfx____ratelimit+0x10/0x10
[  134.414032][ T8676]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.414046][ T8676]  ? __pfx__printk+0x10/0x10
[  134.414063][ T8676]  ? __might_fault+0xb0/0x130
[  134.414088][ T8676]  should_fail_ex+0x414/0x560
[  134.414108][ T8676]  _copy_from_user+0x2d/0xb0
[  134.414125][ T8676]  ___sys_sendmsg+0x158/0x2a0
[  134.414141][ T8676]  ? __pfx____sys_sendmsg+0x10/0x10
[  134.414183][ T8676]  ? __fget_files+0x2a/0x420
[  134.414194][ T8676]  ? __fget_files+0x3a0/0x420
[  134.414213][ T8676]  __x64_sys_sendmsg+0x19b/0x260
[  134.414229][ T8676]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  134.414250][ T8676]  ? __pfx_ksys_write+0x10/0x10
[  134.414264][ T8676]  ? rcu_is_watching+0x15/0xb0
[  134.414282][ T8676]  ? do_syscall_64+0xbe/0x3b0
[  134.414298][ T8676]  do_syscall_64+0xfa/0x3b0
[  134.414308][ T8676]  ? lockdep_hardirqs_on+0x9c/0x150
[  134.414326][ T8676]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.414339][ T8676]  ? clear_bhb_loop+0x60/0xb0
[  134.414356][ T8676]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.414371][ T8676] RIP: 0033:0x7f3d00d8ebe9
[  134.414394][ T8676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.414405][ T8676] RSP: 002b:00007f3d01b50038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  134.414424][ T8676] RAX: ffffffffffffffda RBX: 00007f3d00fc5fa0 RCX: 00007f3d00d8ebe9
[  134.414435][ T8676] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000004
[  134.414444][ T8676] RBP: 00007f3d01b50090 R08: 0000000000000000 R09: 0000000000000000
[  134.414454][ T8676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.414462][ T8676] R13: 00007f3d00fc6038 R14: 00007f3d00fc5fa0 R15: 00007fff0ab0df18
[  134.414490][ T8676]  </TASK>
[  134.850554][ T8687] netlink: 284 bytes leftover after parsing attributes in process `syz.3.904'.
[  135.028170][ T8700] netlink: 'syz.4.906': attribute type 10 has an invalid length.
[  135.051085][ T8702] FAULT_INJECTION: forcing a failure.
[  135.051085][ T8702] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.083993][ T8702] CPU: 1 UID: 0 PID: 8702 Comm: syz.0.907 Not tainted syzkaller #0 PREEMPT(full) 
[  135.084017][ T8702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  135.084030][ T8702] Call Trace:
[  135.084038][ T8702]  <TASK>
[  135.084045][ T8702]  dump_stack_lvl+0x189/0x250
[  135.084070][ T8702]  ? __pfx____ratelimit+0x10/0x10
[  135.084093][ T8702]  ? __pfx_dump_stack_lvl+0x10/0x10
[  135.084112][ T8702]  ? __pfx__printk+0x10/0x10
[  135.084133][ T8702]  ? __might_fault+0xb0/0x130
[  135.084167][ T8702]  should_fail_ex+0x414/0x560
[  135.084194][ T8702]  _copy_from_user+0x2d/0xb0
[  135.084214][ T8702]  ___sys_sendmsg+0x158/0x2a0
[  135.084236][ T8702]  ? __pfx____sys_sendmsg+0x10/0x10
[  135.084291][ T8702]  ? __fget_files+0x2a/0x420
[  135.084306][ T8702]  ? __fget_files+0x3a0/0x420
[  135.084332][ T8702]  __x64_sys_sendmsg+0x19b/0x260
[  135.084353][ T8702]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  135.084382][ T8702]  ? __pfx_ksys_write+0x10/0x10
[  135.084400][ T8702]  ? rcu_is_watching+0x15/0xb0
[  135.084423][ T8702]  ? do_syscall_64+0xbe/0x3b0
[  135.084443][ T8702]  do_syscall_64+0xfa/0x3b0
[  135.084457][ T8702]  ? lockdep_hardirqs_on+0x9c/0x150
[  135.084478][ T8702]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.084495][ T8702]  ? clear_bhb_loop+0x60/0xb0
[  135.084515][ T8702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.084531][ T8702] RIP: 0033:0x7ffafe58ebe9
[  135.084547][ T8702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.084560][ T8702] RSP: 002b:00007ffaff39f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  135.084578][ T8702] RAX: ffffffffffffffda RBX: 00007ffafe7c5fa0 RCX: 00007ffafe58ebe9
[  135.084591][ T8702] RDX: 0000000000000000 RSI: 00002000000014c0 RDI: 0000000000000003
[  135.084601][ T8702] RBP: 00007ffaff39f090 R08: 0000000000000000 R09: 0000000000000000
[  135.084611][ T8702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.084621][ T8702] R13: 00007ffafe7c6038 R14: 00007ffafe7c5fa0 R15: 00007ffebf7438c8
[  135.084650][ T8702]  </TASK>
[  135.380860][ T8709] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  135.412252][ T8711] FAULT_INJECTION: forcing a failure.
[  135.412252][ T8711] name failslab, interval 1, probability 0, space 0, times 0
[  135.425175][ T8709] +
: renamed from syzkaller0
[  135.433463][ T8711] CPU: 0 UID: 0 PID: 8711 Comm: syz.2.912 Not tainted syzkaller #0 PREEMPT(full) 
[  135.433484][ T8711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  135.433493][ T8711] Call Trace:
[  135.433500][ T8711]  <TASK>
[  135.433507][ T8711]  dump_stack_lvl+0x189/0x250
[  135.433531][ T8711]  ? __pfx____ratelimit+0x10/0x10
[  135.433554][ T8711]  ? __pfx_dump_stack_lvl+0x10/0x10
[  135.433573][ T8711]  ? __pfx__printk+0x10/0x10
[  135.433600][ T8711]  ? __pfx___might_resched+0x10/0x10
[  135.433621][ T8711]  should_fail_ex+0x414/0x560
[  135.433646][ T8711]  should_failslab+0xa8/0x100
[  135.433670][ T8711]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  135.433692][ T8711]  ? __alloc_skb+0x112/0x2d0
[  135.433713][ T8711]  __alloc_skb+0x112/0x2d0
[  135.433733][ T8711]  netlink_sendmsg+0x5c6/0xb30
[  135.433759][ T8711]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.433778][ T8711]  ? aa_sock_msg_perm+0xf1/0x1d0
[  135.433796][ T8711]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  135.433814][ T8711]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.433831][ T8711]  __sock_sendmsg+0x21c/0x270
[  135.433855][ T8711]  ____sys_sendmsg+0x505/0x830
[  135.433879][ T8711]  ? __pfx_____sys_sendmsg+0x10/0x10
[  135.433906][ T8711]  ? import_iovec+0x74/0xa0
[  135.433929][ T8711]  ___sys_sendmsg+0x21f/0x2a0
[  135.433949][ T8711]  ? __pfx____sys_sendmsg+0x10/0x10
[  135.434003][ T8711]  ? __fget_files+0x2a/0x420
[  135.434017][ T8711]  ? __fget_files+0x3a0/0x420
[  135.434049][ T8711]  __x64_sys_sendmsg+0x19b/0x260
[  135.434070][ T8711]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  135.434098][ T8711]  ? __pfx_ksys_write+0x10/0x10
[  135.434116][ T8711]  ? rcu_is_watching+0x15/0xb0
[  135.434139][ T8711]  ? do_syscall_64+0xbe/0x3b0
[  135.434158][ T8711]  do_syscall_64+0xfa/0x3b0
[  135.434172][ T8711]  ? lockdep_hardirqs_on+0x9c/0x150
[  135.434193][ T8711]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.434209][ T8711]  ? clear_bhb_loop+0x60/0xb0
[  135.434229][ T8711]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.434244][ T8711] RIP: 0033:0x7f8329d8ebe9
[  135.434260][ T8711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.434273][ T8711] RSP: 002b:00007f832abe8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  135.434291][ T8711] RAX: ffffffffffffffda RBX: 00007f8329fc5fa0 RCX: 00007f8329d8ebe9
[  135.434303][ T8711] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000004
[  135.434313][ T8711] RBP: 00007f832abe8090 R08: 0000000000000000 R09: 0000000000000000
[  135.434324][ T8711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.434333][ T8711] R13: 00007f8329fc6038 R14: 00007f8329fc5fa0 R15: 00007ffef8cda618
[  135.434362][ T8711]  </TASK>
[  135.438885][ T8709] tipc: Disabling bearer <eth:syzkaller0>
[  159.306792][ T8759] netlink: 'syz.4.920': attribute type 10 has an invalid length.
[  159.384625][ T8761] netlink: 12 bytes leftover after parsing attributes in process `syz.4.922'.
[  159.464538][ T8765] FAULT_INJECTION: forcing a failure.
[  159.464538][ T8765] name failslab, interval 1, probability 0, space 0, times 0
[  159.526943][ T8765] CPU: 0 UID: 0 PID: 8765 Comm: syz.1.921 Not tainted syzkaller #0 PREEMPT(full) 
[  159.526968][ T8765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  159.526977][ T8765] Call Trace:
[  159.526984][ T8765]  <TASK>
[  159.526991][ T8765]  dump_stack_lvl+0x189/0x250
[  159.527016][ T8765]  ? __pfx____ratelimit+0x10/0x10
[  159.527037][ T8765]  ? __pfx_dump_stack_lvl+0x10/0x10
[  159.527053][ T8765]  ? __pfx__printk+0x10/0x10
[  159.527087][ T8765]  ? __pfx___might_resched+0x10/0x10
[  159.527107][ T8765]  should_fail_ex+0x414/0x560
[  159.527133][ T8765]  should_failslab+0xa8/0x100
[  159.527156][ T8765]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  159.527176][ T8765]  ? __alloc_skb+0x112/0x2d0
[  159.527192][ T8765]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  159.527216][ T8765]  __alloc_skb+0x112/0x2d0
[  159.527234][ T8765]  pfkey_sendmsg+0x1dd/0x1090
[  159.527256][ T8765]  ? __pfx___might_resched+0x10/0x10
[  159.527268][ T8765]  ? __lock_acquire+0xab9/0xd20
[  159.527293][ T8765]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  159.527314][ T8765]  ? aa_sk_perm+0x81e/0x950
[  159.527339][ T8765]  ? __pfx_aa_sk_perm+0x10/0x10
[  159.527358][ T8765]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x300
[  159.527379][ T8765]  ? aa_sock_msg_perm+0xf1/0x1d0
[  159.527396][ T8765]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  159.527413][ T8765]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  159.527429][ T8765]  __sock_sendmsg+0x21c/0x270
[  159.527452][ T8765]  ____sys_sendmsg+0x505/0x830
[  159.527475][ T8765]  ? __pfx_____sys_sendmsg+0x10/0x10
[  159.527503][ T8765]  ? import_iovec+0x74/0xa0
[  159.527525][ T8765]  ___sys_sendmsg+0x21f/0x2a0
[  159.527544][ T8765]  ? __pfx____sys_sendmsg+0x10/0x10
[  159.527592][ T8765]  ? __fget_files+0x2a/0x420
[  159.527605][ T8765]  ? __fget_files+0x3a0/0x420
[  159.527629][ T8765]  __x64_sys_sendmsg+0x19b/0x260
[  159.527650][ T8765]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  159.527678][ T8765]  ? __pfx_ksys_write+0x10/0x10
[  159.527696][ T8765]  ? rcu_is_watching+0x15/0xb0
[  159.527718][ T8765]  ? do_syscall_64+0xbe/0x3b0
[  159.527737][ T8765]  do_syscall_64+0xfa/0x3b0
[  159.527750][ T8765]  ? lockdep_hardirqs_on+0x9c/0x150
[  159.527771][ T8765]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.527787][ T8765]  ? clear_bhb_loop+0x60/0xb0
[  159.527807][ T8765]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.527823][ T8765] RIP: 0033:0x7f3d00d8ebe9
[  159.527837][ T8765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.527849][ T8765] RSP: 002b:00007f3d01b50038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  159.527867][ T8765] RAX: ffffffffffffffda RBX: 00007f3d00fc5fa0 RCX: 00007f3d00d8ebe9
[  159.527879][ T8765] RDX: 0000000000000000 RSI: 00002000000014c0 RDI: 0000000000000003
[  159.527889][ T8765] RBP: 00007f3d01b50090 R08: 0000000000000000 R09: 0000000000000000
[  159.527898][ T8765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.527908][ T8765] R13: 00007f3d00fc6038 R14: 00007f3d00fc5fa0 R15: 00007fff0ab0df18
[  159.527933][ T8765]  </TASK>
[  159.913925][ T8772] syzkaller1: entered promiscuous mode
[  159.919434][ T8772] syzkaller1: entered allmulticast mode
[  159.991070][ T8772] netlink: 16 bytes leftover after parsing attributes in process `syz.2.923'.
[  160.087121][ T8790] netlink: 8 bytes leftover after parsing attributes in process `syz.1.931'.
[  160.193769][ T8788] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  160.211686][ T8795] netlink: 'syz.4.932': attribute type 10 has an invalid length.
[  160.236456][ T8788] +
: renamed from syzkaller0
[  160.274635][ T8788] tipc: Disabling bearer <eth:syzkaller0>
[  160.369665][ T8802] FAULT_INJECTION: forcing a failure.
[  160.369665][ T8802] name failslab, interval 1, probability 0, space 0, times 0
[  160.436478][ T8802] CPU: 1 UID: 0 PID: 8802 Comm: syz.2.935 Not tainted syzkaller #0 PREEMPT(full) 
[  160.436502][ T8802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  160.436513][ T8802] Call Trace:
[  160.436520][ T8802]  <TASK>
[  160.436528][ T8802]  dump_stack_lvl+0x189/0x250
[  160.436553][ T8802]  ? __pfx____ratelimit+0x10/0x10
[  160.436577][ T8802]  ? __pfx_dump_stack_lvl+0x10/0x10
[  160.436596][ T8802]  ? __pfx__printk+0x10/0x10
[  160.436621][ T8802]  ? __pfx___might_resched+0x10/0x10
[  160.436638][ T8802]  ? fs_reclaim_acquire+0x7d/0x100
[  160.436665][ T8802]  should_fail_ex+0x414/0x560
[  160.436691][ T8802]  should_failslab+0xa8/0x100
[  160.436716][ T8802]  __kmalloc_cache_noprof+0x70/0x3d0
[  160.436737][ T8802]  ? __nft_trans_set_add+0x5e/0x710
[  160.436762][ T8802]  __nft_trans_set_add+0x5e/0x710
[  160.436781][ T8802]  ? kfree+0x18e/0x440
[  160.436805][ T8802]  nf_tables_newset+0x1d6f/0x2530
[  160.436839][ T8802]  ? __pfx_nf_tables_newset+0x10/0x10
[  160.436881][ T8802]  ? __nla_parse+0x40/0x60
[  160.436909][ T8802]  nfnetlink_rcv+0x112f/0x2520
[  160.436965][ T8802]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  160.437004][ T8802]  ? ref_tracker_free+0x63a/0x7d0
[  160.437056][ T8802]  ? __netlink_deliver_tap+0x807/0x850
[  160.437080][ T8802]  ? netlink_deliver_tap+0x2e/0x1b0
[  160.437121][ T8802]  netlink_unicast+0x82c/0x9e0
[  160.437153][ T8802]  ? __pfx_netlink_unicast+0x10/0x10
[  160.437176][ T8802]  ? netlink_sendmsg+0x642/0xb30
[  160.437190][ T8802]  ? skb_put+0x11b/0x210
[  160.437218][ T8802]  netlink_sendmsg+0x805/0xb30
[  160.437245][ T8802]  ? __pfx_netlink_sendmsg+0x10/0x10
[  160.437264][ T8802]  ? aa_sock_msg_perm+0xf1/0x1d0
[  160.437283][ T8802]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  160.437301][ T8802]  ? __pfx_netlink_sendmsg+0x10/0x10
[  160.437319][ T8802]  __sock_sendmsg+0x21c/0x270
[  160.437345][ T8802]  ____sys_sendmsg+0x505/0x830
[  160.437370][ T8802]  ? __pfx_____sys_sendmsg+0x10/0x10
[  160.437399][ T8802]  ? import_iovec+0x74/0xa0
[  160.437423][ T8802]  ___sys_sendmsg+0x21f/0x2a0
[  160.437445][ T8802]  ? __pfx____sys_sendmsg+0x10/0x10
[  160.437507][ T8802]  ? __fget_files+0x2a/0x420
[  160.437521][ T8802]  ? __fget_files+0x3a0/0x420
[  160.437548][ T8802]  __x64_sys_sendmsg+0x19b/0x260
[  160.437570][ T8802]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  160.437599][ T8802]  ? __pfx_ksys_write+0x10/0x10
[  160.437618][ T8802]  ? rcu_is_watching+0x15/0xb0
[  160.437640][ T8802]  ? do_syscall_64+0xbe/0x3b0
[  160.437660][ T8802]  do_syscall_64+0xfa/0x3b0
[  160.437675][ T8802]  ? lockdep_hardirqs_on+0x9c/0x150
[  160.437697][ T8802]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.437713][ T8802]  ? clear_bhb_loop+0x60/0xb0
[  160.437734][ T8802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.437750][ T8802] RIP: 0033:0x7f8329d8ebe9
[  160.437765][ T8802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.437780][ T8802] RSP: 002b:00007f832abe8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  160.437798][ T8802] RAX: ffffffffffffffda RBX: 00007f8329fc5fa0 RCX: 00007f8329d8ebe9
[  160.437811][ T8802] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000003
[  160.437822][ T8802] RBP: 00007f832abe8090 R08: 0000000000000000 R09: 0000000000000000
[  160.437833][ T8802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  160.437843][ T8802] R13: 00007f8329fc6038 R14: 00007f8329fc5fa0 R15: 00007ffef8cda618
[  160.437874][ T8802]  </TASK>
[  161.004237][ T8818] netlink: 'syz.2.941': attribute type 7 has an invalid length.
[  161.012138][ T8818] netlink: 'syz.2.941': attribute type 8 has an invalid length.
[  161.068837][ T8820] netlink: 12 bytes leftover after parsing attributes in process `syz.3.943'.
[  161.221881][ T8828] netlink: 'syz.2.945': attribute type 11 has an invalid length.
[  161.227954][ T8831] rdma_rxe: rxe_newlink: failed to add lo
[  161.262533][ T8828] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  161.398417][ T8836] sctp: [Deprecated]: syz.3.948 (pid 8836) Use of int in max_burst socket option deprecated.
[  161.398417][ T8836] Use struct sctp_assoc_value instead
[  161.459707][ T8842] FAULT_INJECTION: forcing a failure.
[  161.459707][ T8842] name failslab, interval 1, probability 0, space 0, times 0
[  161.488150][ T8842] CPU: 0 UID: 0 PID: 8842 Comm: syz.2.951 Not tainted syzkaller #0 PREEMPT(full) 
[  161.488175][ T8842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  161.488185][ T8842] Call Trace:
[  161.488193][ T8842]  <TASK>
[  161.488201][ T8842]  dump_stack_lvl+0x189/0x250
[  161.488224][ T8842]  ? __pfx____ratelimit+0x10/0x10
[  161.488247][ T8842]  ? __pfx_dump_stack_lvl+0x10/0x10
[  161.488266][ T8842]  ? __pfx__printk+0x10/0x10
[  161.488293][ T8842]  ? __pfx___might_resched+0x10/0x10
[  161.488308][ T8842]  ? fs_reclaim_acquire+0x7d/0x100
[  161.488336][ T8842]  should_fail_ex+0x414/0x560
[  161.488363][ T8842]  should_failslab+0xa8/0x100
[  161.488384][ T8842]  __kmalloc_cache_noprof+0x70/0x3d0
[  161.488405][ T8842]  ? nfnetlink_rcv+0xeff/0x2520
[  161.488428][ T8842]  nfnetlink_rcv+0xeff/0x2520
[  161.488479][ T8842]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  161.488515][ T8842]  ? ref_tracker_free+0x63a/0x7d0
[  161.488566][ T8842]  ? __netlink_deliver_tap+0x807/0x850
[  161.488587][ T8842]  ? netlink_deliver_tap+0x2e/0x1b0
[  161.488626][ T8842]  netlink_unicast+0x82c/0x9e0
[  161.488655][ T8842]  ? __pfx_netlink_unicast+0x10/0x10
[  161.488678][ T8842]  ? netlink_sendmsg+0x642/0xb30
[  161.488691][ T8842]  ? skb_put+0x11b/0x210
[  161.488710][ T8842]  netlink_sendmsg+0x805/0xb30
[  161.488735][ T8842]  ? __pfx_netlink_sendmsg+0x10/0x10
[  161.488753][ T8842]  ? aa_sock_msg_perm+0xf1/0x1d0
[  161.488772][ T8842]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  161.488788][ T8842]  ? __pfx_netlink_sendmsg+0x10/0x10
[  161.488805][ T8842]  __sock_sendmsg+0x21c/0x270
[  161.488829][ T8842]  ____sys_sendmsg+0x505/0x830
[  161.488853][ T8842]  ? __pfx_____sys_sendmsg+0x10/0x10
[  161.488878][ T8842]  ? import_iovec+0x74/0xa0
[  161.488901][ T8842]  ___sys_sendmsg+0x21f/0x2a0
[  161.488930][ T8842]  ? __pfx____sys_sendmsg+0x10/0x10
[  161.488985][ T8842]  ? __fget_files+0x2a/0x420
[  161.489000][ T8842]  ? __fget_files+0x3a0/0x420
[  161.489026][ T8842]  __x64_sys_sendmsg+0x19b/0x260
[  161.489048][ T8842]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  161.489078][ T8842]  ? __pfx_ksys_write+0x10/0x10
[  161.489096][ T8842]  ? rcu_is_watching+0x15/0xb0
[  161.489119][ T8842]  ? do_syscall_64+0xbe/0x3b0
[  161.489140][ T8842]  do_syscall_64+0xfa/0x3b0
[  161.489154][ T8842]  ? lockdep_hardirqs_on+0x9c/0x150
[  161.489176][ T8842]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.489193][ T8842]  ? clear_bhb_loop+0x60/0xb0
[  161.489214][ T8842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.489229][ T8842] RIP: 0033:0x7f8329d8ebe9
[  161.489245][ T8842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.489259][ T8842] RSP: 002b:00007f832abe8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  161.489278][ T8842] RAX: ffffffffffffffda RBX: 00007f8329fc5fa0 RCX: 00007f8329d8ebe9
[  161.489291][ T8842] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000003
[  161.489302][ T8842] RBP: 00007f832abe8090 R08: 0000000000000000 R09: 0000000000000000
[  161.489313][ T8842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  161.489323][ T8842] R13: 00007f8329fc6038 R14: 00007f8329fc5fa0 R15: 00007ffef8cda618
[  161.489352][ T8842]  </TASK>
[  161.873810][ T8855] netlink: 20 bytes leftover after parsing attributes in process `syz.2.953'.
[  162.051459][ T8864] netlink: 'syz.4.954': attribute type 2 has an invalid length.
[  162.059576][ T8864] netlink: 244 bytes leftover after parsing attributes in process `syz.4.954'.
[  162.216961][ T8867] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.221336][ T8878] netlink: 'syz.0.960': attribute type 11 has an invalid length.
[  162.235908][ T8878] netlink: 224 bytes leftover after parsing attributes in process `syz.0.960'.
[  162.263961][ T8874] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  162.362377][ T8867] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.482992][ T8891] FAULT_INJECTION: forcing a failure.
[  162.482992][ T8891] name failslab, interval 1, probability 0, space 0, times 0
[  162.528242][ T8891] CPU: 0 UID: 0 PID: 8891 Comm: syz.0.963 Not tainted syzkaller #0 PREEMPT(full) 
[  162.528266][ T8891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  162.528277][ T8891] Call Trace:
[  162.528284][ T8891]  <TASK>
[  162.528292][ T8891]  dump_stack_lvl+0x189/0x250
[  162.528316][ T8891]  ? __pfx____ratelimit+0x10/0x10
[  162.528335][ T8891]  ? __pfx_dump_stack_lvl+0x10/0x10
[  162.528351][ T8891]  ? __pfx__printk+0x10/0x10
[  162.528374][ T8891]  ? __pfx___might_resched+0x10/0x10
[  162.528387][ T8891]  ? fs_reclaim_acquire+0x7d/0x100
[  162.528415][ T8891]  should_fail_ex+0x414/0x560
[  162.528436][ T8891]  should_failslab+0xa8/0x100
[  162.528455][ T8891]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  162.528471][ T8891]  ? __pfx_nf_tables_abort+0x10/0x10
[  162.528485][ T8891]  ? __alloc_skb+0x112/0x2d0
[  162.528502][ T8891]  __alloc_skb+0x112/0x2d0
[  162.528518][ T8891]  netlink_ack+0x146/0xa50
[  162.528541][ T8891]  ? __kasan_kmalloc+0x93/0xb0
[  162.528560][ T8891]  ? nfnetlink_rcv+0xf63/0x2520
[  162.528575][ T8891]  ? skb_pull+0xc1/0x1d0
[  162.528593][ T8891]  nfnetlink_rcv+0x2290/0x2520
[  162.528636][ T8891]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  162.528701][ T8891]  ? netlink_deliver_tap+0x2e/0x1b0
[  162.528739][ T8891]  netlink_unicast+0x82c/0x9e0
[  162.528765][ T8891]  ? __pfx_netlink_unicast+0x10/0x10
[  162.528783][ T8891]  ? netlink_sendmsg+0x642/0xb30
[  162.528793][ T8891]  ? skb_put+0x11b/0x210
[  162.528809][ T8891]  netlink_sendmsg+0x805/0xb30
[  162.528831][ T8891]  ? __pfx_netlink_sendmsg+0x10/0x10
[  162.528847][ T8891]  ? aa_sock_msg_perm+0xf1/0x1d0
[  162.528861][ T8891]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  162.528876][ T8891]  ? __pfx_netlink_sendmsg+0x10/0x10
[  162.528890][ T8891]  __sock_sendmsg+0x21c/0x270
[  162.528912][ T8891]  ____sys_sendmsg+0x505/0x830
[  162.528933][ T8891]  ? __pfx_____sys_sendmsg+0x10/0x10
[  162.528957][ T8891]  ? import_iovec+0x74/0xa0
[  162.528975][ T8891]  ___sys_sendmsg+0x21f/0x2a0
[  162.528991][ T8891]  ? __pfx____sys_sendmsg+0x10/0x10
[  162.529037][ T8891]  ? __fget_files+0x2a/0x420
[  162.529050][ T8891]  ? __fget_files+0x3a0/0x420
[  162.529080][ T8891]  __x64_sys_sendmsg+0x19b/0x260
[  162.529099][ T8891]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  162.529123][ T8891]  ? __pfx_ksys_write+0x10/0x10
[  162.529139][ T8891]  ? rcu_is_watching+0x15/0xb0
[  162.529160][ T8891]  ? do_syscall_64+0xbe/0x3b0
[  162.529179][ T8891]  do_syscall_64+0xfa/0x3b0
[  162.529192][ T8891]  ? lockdep_hardirqs_on+0x9c/0x150
[  162.529210][ T8891]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.529223][ T8891]  ? clear_bhb_loop+0x60/0xb0
[  162.529240][ T8891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.529253][ T8891] RIP: 0033:0x7ffafe58ebe9
[  162.529267][ T8891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.529280][ T8891] RSP: 002b:00007ffaff39f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  162.529298][ T8891] RAX: ffffffffffffffda RBX: 00007ffafe7c5fa0 RCX: 00007ffafe58ebe9
[  162.529309][ T8891] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000003
[  162.529317][ T8891] RBP: 00007ffaff39f090 R08: 0000000000000000 R09: 0000000000000000
[  162.529326][ T8891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.529335][ T8891] R13: 00007ffafe7c6038 R14: 00007ffafe7c5fa0 R15: 00007ffebf7438c8
[  162.529360][ T8891]  </TASK>
[  162.534782][ T8867] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.988759][ T8901] netlink: 'syz.2.967': attribute type 12 has an invalid length.
[  163.008827][ T8867] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.194151][ T8909] netlink: 8 bytes leftover after parsing attributes in process `syz.4.970'.
[  163.641432][ T8901] (unnamed net_device) (uninitialized): option primary_reselect: invalid value (255)
[  163.936341][ T8925] netlink: 'syz.0.973': attribute type 2 has an invalid length.
[  164.005709][   T13] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.121482][   T13] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.202235][   T36] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.268293][ T1166] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.315120][ T8949] netlink: 'syz.3.980': attribute type 1 has an invalid length.
[  164.446563][ T8957] FAULT_INJECTION: forcing a failure.
[  164.446563][ T8957] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.454865][ T8959] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  164.469754][ T8959] syzkaller0: entered promiscuous mode
[  164.478082][ T8959] syzkaller0: entered allmulticast mode
[  164.487429][ T8959] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  164.496623][ T8957] CPU: 1 UID: 0 PID: 8957 Comm: syz.1.981 Not tainted syzkaller #0 PREEMPT(full) 
[  164.496646][ T8957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  164.496657][ T8957] Call Trace:
[  164.496664][ T8957]  <TASK>
[  164.496672][ T8957]  dump_stack_lvl+0x189/0x250
[  164.496698][ T8957]  ? __pfx____ratelimit+0x10/0x10
[  164.496722][ T8957]  ? __pfx_dump_stack_lvl+0x10/0x10
[  164.496741][ T8957]  ? __pfx__printk+0x10/0x10
[  164.496763][ T8957]  ? __might_fault+0xb0/0x130
[  164.496797][ T8957]  should_fail_ex+0x414/0x560
[  164.496824][ T8957]  _copy_from_user+0x2d/0xb0
[  164.496844][ T8957]  kstrtouint_from_user+0xc4/0x170
[  164.496868][ T8957]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  164.496910][ T8957]  proc_fail_nth_write+0x88/0x200
[  164.496929][ T8957]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  164.496961][ T8957]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  164.496982][ T8957]  vfs_write+0x27b/0xb30
[  164.497013][ T8957]  ? __pfx_vfs_write+0x10/0x10
[  164.497036][ T8957]  ? __fget_files+0x2a/0x420
[  164.497056][ T8957]  ? __fget_files+0x3a0/0x420
[  164.497070][ T8957]  ? __fget_files+0x2a/0x420
[  164.497095][ T8957]  ksys_write+0x145/0x250
[  164.497119][ T8957]  ? __pfx_ksys_write+0x10/0x10
[  164.497136][ T8957]  ? rcu_is_watching+0x15/0xb0
[  164.497160][ T8957]  ? do_syscall_64+0xbe/0x3b0
[  164.497180][ T8957]  do_syscall_64+0xfa/0x3b0
[  164.497195][ T8957]  ? lockdep_hardirqs_on+0x9c/0x150
[  164.497217][ T8957]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.497234][ T8957]  ? clear_bhb_loop+0x60/0xb0
[  164.497255][ T8957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.497271][ T8957] RIP: 0033:0x7f3d00d8d69f
[  164.497287][ T8957] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  164.497302][ T8957] RSP: 002b:00007f3d01b50030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  164.497320][ T8957] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3d00d8d69f
[  164.497332][ T8957] RDX: 0000000000000001 RSI: 00007f3d01b500a0 RDI: 0000000000000003
[  164.497342][ T8957] RBP: 00007f3d01b50090 R08: 0000000000000000 R09: 0000000000000000
[  164.497352][ T8957] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  164.497363][ T8957] R13: 00007f3d00fc6038 R14: 00007f3d00fc5fa0 R15: 00007fff0ab0df18
[  164.497393][ T8957]  </TASK>
[  164.793899][ T8959] tipc: Resetting bearer <eth:syzkaller0>
[  164.818906][ T8958] tipc: Resetting bearer <eth:syzkaller0>
[  164.882302][ T8971] netlink: 144 bytes leftover after parsing attributes in process `syz.2.987'.
[  164.892229][ T8971] netlink: 12 bytes leftover after parsing attributes in process `syz.2.987'.
[  164.906373][ T8971] netlink: 'syz.2.987': attribute type 1 has an invalid length.
[  164.921541][ T8958] tipc: Disabling bearer <eth:syzkaller0>
[  164.951999][ T8971] netlink: 'syz.2.987': attribute type 1 has an invalid length.
[  164.960175][ T8971] netlink: 'syz.2.987': attribute type 2 has an invalid length.
[  164.968930][ T8971] netlink: 68 bytes leftover after parsing attributes in process `syz.2.987'.
[  165.238532][ T8987] netlink: 24 bytes leftover after parsing attributes in process `syz.4.994'.
[  165.394242][ T8994] netlink: zone id is out of range
[  165.400894][ T8994] netlink: zone id is out of range
[  165.416490][ T8994] netlink: zone id is out of range
[  165.426510][ T8994] netlink: zone id is out of range
[  165.445365][ T8994] netlink: zone id is out of range
[  165.463825][ T8994] netlink: zone id is out of range
[  165.514115][ T8994] netlink: zone id is out of range
[  165.521507][ T8994] netlink: zone id is out of range
[  165.542900][ T8994] netlink: zone id is out of range
[  165.551445][ T8994] netlink: zone id is out of range
[  165.565565][ T9001] netlink: 208 bytes leftover after parsing attributes in process `syz.2.999'.
[  165.580280][ T9003] netlink: 'syz.0.1000': attribute type 2 has an invalid length.
[  165.589081][ T8994] netlink: 4 bytes leftover after parsing attributes in process `syz.3.995'.
[  165.779182][ T9024] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1006'.
[  166.571139][ T9047] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1014'.
[  166.589458][ T9049] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1014'.
[  166.659154][ T9052] block nbd2: not configured, cannot reconfigure
[  167.050579][ T9069] lo speed is unknown, defaulting to 1000
[  167.061050][ T9073] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1021'.
[  167.168722][ T9073] netlink: 'syz.3.1021': attribute type 8 has an invalid length.
[  167.780022][ T9096] FAULT_INJECTION: forcing a failure.
[  167.780022][ T9096] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.798024][ T9096] CPU: 1 UID: 0 PID: 9096 Comm: syz.2.1029 Not tainted syzkaller #0 PREEMPT(full) 
[  167.798044][ T9096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  167.798054][ T9096] Call Trace:
[  167.798062][ T9096]  <TASK>
[  167.798070][ T9096]  dump_stack_lvl+0x189/0x250
[  167.798095][ T9096]  ? __pfx____ratelimit+0x10/0x10
[  167.798118][ T9096]  ? __pfx_dump_stack_lvl+0x10/0x10
[  167.798137][ T9096]  ? __pfx__printk+0x10/0x10
[  167.798159][ T9096]  ? __might_fault+0xb0/0x130
[  167.798191][ T9096]  should_fail_ex+0x414/0x560
[  167.798218][ T9096]  _copy_from_user+0x2d/0xb0
[  167.798238][ T9096]  ___sys_sendmsg+0x158/0x2a0
[  167.798259][ T9096]  ? __pfx____sys_sendmsg+0x10/0x10
[  167.798306][ T9096]  ? __fget_files+0x2a/0x420
[  167.798320][ T9096]  ? __fget_files+0x3a0/0x420
[  167.798346][ T9096]  __x64_sys_sendmsg+0x19b/0x260
[  167.798367][ T9096]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  167.798395][ T9096]  ? __pfx_ksys_write+0x10/0x10
[  167.798413][ T9096]  ? rcu_is_watching+0x15/0xb0
[  167.798449][ T9096]  ? do_syscall_64+0xbe/0x3b0
[  167.798468][ T9096]  do_syscall_64+0xfa/0x3b0
[  167.798481][ T9096]  ? lockdep_hardirqs_on+0x9c/0x150
[  167.798498][ T9096]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.798510][ T9096]  ? clear_bhb_loop+0x60/0xb0
[  167.798525][ T9096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.798537][ T9096] RIP: 0033:0x7f8329d8ebe9
[  167.798549][ T9096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.798559][ T9096] RSP: 002b:00007f832abe8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  167.798574][ T9096] RAX: ffffffffffffffda RBX: 00007f8329fc5fa0 RCX: 00007f8329d8ebe9
[  167.798583][ T9096] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000004
[  167.798591][ T9096] RBP: 00007f832abe8090 R08: 0000000000000000 R09: 0000000000000000
[  167.798598][ T9096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  167.798605][ T9096] R13: 00007f8329fc6038 R14: 00007f8329fc5fa0 R15: 00007ffef8cda618
[  167.798627][ T9096]  </TASK>
[  168.211549][ T9106] netlink: 'syz.2.1032': attribute type 1 has an invalid length.
[  168.374579][ T9111] 8021q: adding VLAN 0 to HW filter on device bond11
[  168.387445][ T9111] bond10: (slave bond11): making interface the new active one
[  168.396093][ T9111] bond10: (slave bond11): Enslaving as an active interface with an up link
[  168.407790][ T9117] ieee802154 phy0 wpan0: encryption failed: -22
[  168.437237][ T9106] bond10: (slave gretap1): Enslaving as a backup interface with an up link
[  168.457143][ T9111] 8021q: adding VLAN 0 to HW filter on device bond10
[  169.599654][ T9183] netlink: 'syz.0.1059': attribute type 5 has an invalid length.
[  169.876433][ T9202] xt_l2tp: missing protocol rule (udp|l2tpip)
[  169.990421][ T9209] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  170.006621][ T9212] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  170.019137][ T9209] syzkaller0: entered promiscuous mode
[  170.033695][ T9209] syzkaller0: entered allmulticast mode
[  170.057152][ T9208] tipc: Resetting bearer <eth:syzkaller0>
[  170.074525][ T9208] tipc: Disabling bearer <eth:syzkaller0>
[  170.248937][ T9229] __nla_validate_parse: 14 callbacks suppressed
[  170.248954][ T9229] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1072'.
[  170.769310][ T9258] netlink: 272 bytes leftover after parsing attributes in process `syz.3.1084'.
[  170.793061][ T9256] netlink: 'syz.2.1085': attribute type 2 has an invalid length.
[  171.120508][ T9283] netlink: 146840 bytes leftover after parsing attributes in process `syz.4.1094'.
[  171.249667][ T9291] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1097'.
[  171.264275][ T9294] syzkaller0: create flow: hash 4113896941 index 1
[  171.294039][ T9296] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1098'.
[  171.430622][ T9281] syzkaller0: delete flow: hash 4113896941 index 1
[  172.841915][ T9323] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.1107'.
[  172.873701][ T9327] net_ratelimit: 18 callbacks suppressed
[  172.873719][ T9327] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  172.964280][ T9334] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1107'.
[  172.989062][ T9323] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1107'.
[  173.012452][ T9336] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  173.039641][ T9323] gretap2: entered promiscuous mode
[  173.128057][ T9338] ipvlan2: entered promiscuous mode
[  173.138215][ T9341] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  173.164731][ T9345] netlink: 'syz.3.1115': attribute type 11 has an invalid length.
[  173.183056][ T9345] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1115'.
[  173.350682][ T9353] rdma_rxe: rxe_newlink: failed to add lo
[  173.691332][ T9374] netlink: 'syz.0.1125': attribute type 16 has an invalid length.
[  173.730296][ T9374] netlink: 'syz.0.1125': attribute type 17 has an invalid length.
[  173.823247][ T9374] veth3: left promiscuous mode
[  173.840695][ T9374] gretap1: left allmulticast mode
[  173.848831][ T9385] FAULT_INJECTION: forcing a failure.
[  173.848831][ T9385] name failslab, interval 1, probability 0, space 0, times 0
[  173.860003][ T9374] gtp0: left promiscuous mode
[  173.862973][ T9385] CPU: 1 UID: 0 PID: 9385 Comm: syz.3.1129 Not tainted syzkaller #0 PREEMPT(full) 
[  173.862994][ T9385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  173.863011][ T9385] Call Trace:
[  173.863019][ T9385]  <TASK>
[  173.863026][ T9385]  dump_stack_lvl+0x189/0x250
[  173.863050][ T9385]  ? __pfx____ratelimit+0x10/0x10
[  173.863073][ T9385]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.863092][ T9385]  ? __pfx__printk+0x10/0x10
[  173.863119][ T9385]  ? __pfx___might_resched+0x10/0x10
[  173.863140][ T9385]  should_fail_ex+0x414/0x560
[  173.863168][ T9385]  should_failslab+0xa8/0x100
[  173.863192][ T9385]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  173.863214][ T9385]  ? __alloc_skb+0x112/0x2d0
[  173.863235][ T9385]  __alloc_skb+0x112/0x2d0
[  173.863255][ T9385]  netlink_dump+0x1b7/0xe90
[  173.863290][ T9385]  ? __pfx_netlink_dump+0x10/0x10
[  173.863311][ T9385]  ? genl_start+0x1c9/0x6c0
[  173.863344][ T9385]  ? genl_start+0x499/0x6c0
[  173.863371][ T9385]  __netlink_dump_start+0x5cb/0x7e0
[  173.863402][ T9385]  genl_family_rcv_msg_dumpit+0x1e7/0x2c0
[  173.863425][ T9385]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  173.863443][ T9385]  ? genl_get_cmd+0x7d9/0x910
[  173.863464][ T9385]  ? __pfx___mutex_lock+0x10/0x10
[  173.863480][ T9385]  ? __pfx_genl_start+0x10/0x10
[  173.863496][ T9385]  ? __pfx_genl_dumpit+0x10/0x10
[  173.863512][ T9385]  ? __pfx_genl_done+0x10/0x10
[  173.863536][ T9385]  ? stack_trace_save+0x9c/0xe0
[  173.863562][ T9385]  genl_rcv_msg+0x5da/0x790
[  173.863587][ T9385]  ? __pfx_genl_rcv_msg+0x10/0x10
[  173.863605][ T9385]  ? __pfx_nl802154_dump_interface+0x10/0x10
[  173.863643][ T9385]  netlink_rcv_skb+0x205/0x470
[  173.863664][ T9385]  ? __lock_acquire+0xab9/0xd20
[  173.863685][ T9385]  ? __pfx_genl_rcv_msg+0x10/0x10
[  173.863706][ T9385]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  173.863744][ T9385]  ? down_read+0x1ad/0x2e0
[  173.863764][ T9385]  genl_rcv+0x28/0x40
[  173.863780][ T9385]  netlink_unicast+0x82c/0x9e0
[  173.863810][ T9385]  ? __pfx_netlink_unicast+0x10/0x10
[  173.863833][ T9385]  ? netlink_sendmsg+0x642/0xb30
[  173.863846][ T9385]  ? skb_put+0x11b/0x210
[  173.863866][ T9385]  netlink_sendmsg+0x805/0xb30
[  173.863892][ T9385]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.863912][ T9385]  ? aa_sock_msg_perm+0xf1/0x1d0
[  173.863930][ T9385]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  173.863948][ T9385]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.863964][ T9385]  __sock_sendmsg+0x21c/0x270
[  173.863989][ T9385]  ____sys_sendmsg+0x505/0x830
[  173.864019][ T9385]  ? __pfx_____sys_sendmsg+0x10/0x10
[  173.864046][ T9385]  ? import_iovec+0x74/0xa0
[  173.864069][ T9385]  ___sys_sendmsg+0x21f/0x2a0
[  173.864090][ T9385]  ? __pfx____sys_sendmsg+0x10/0x10
[  173.864145][ T9385]  ? __fget_files+0x2a/0x420
[  173.864159][ T9385]  ? __fget_files+0x3a0/0x420
[  173.864185][ T9385]  __x64_sys_sendmsg+0x19b/0x260
[  173.864206][ T9385]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  173.864234][ T9385]  ? __pfx_ksys_write+0x10/0x10
[  173.864261][ T9385]  ? do_syscall_64+0xbe/0x3b0
[  173.864281][ T9385]  do_syscall_64+0xfa/0x3b0
[  173.864294][ T9385]  ? lockdep_hardirqs_on+0x9c/0x150
[  173.864316][ T9385]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.864332][ T9385]  ? clear_bhb_loop+0x60/0xb0
[  173.864352][ T9385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.864367][ T9385] RIP: 0033:0x7f432778ebe9
[  173.864383][ T9385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.864396][ T9385] RSP: 002b:00007f43259ee038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  173.864413][ T9385] RAX: ffffffffffffffda RBX: 00007f43279c5fa0 RCX: 00007f432778ebe9
[  173.864426][ T9385] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000004
[  173.864436][ T9385] RBP: 00007f43259ee090 R08: 0000000000000000 R09: 0000000000000000
[  173.864446][ T9385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.864455][ T9385] R13: 00007f43279c6038 R14: 00007f43279c5fa0 R15: 00007ffd6c5c8ee8
[  173.864485][ T9385]  </TASK>
[  174.258071][ T9374] gtp0: left allmulticast mode
[  174.275027][ T9374] ipvlan2: left promiscuous mode
[  174.454573][ T9401] rdma_rxe: rxe_newlink: failed to add lo
[  174.674912][   T24] IPVS: starting estimator thread 0...
[  174.784584][ T9414] IPVS: using max 28 ests per chain, 67200 per kthread
[  174.948823][ T9426] netlink: 'syz.4.1145': attribute type 23 has an invalid length.
[  175.031104][ T9438] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2
[  175.049080][ T9438] gretap2: default qdisc (pfifo_fast) fail, fallback to noqueue
[  175.058606][ T9438] gretap2: entered promiscuous mode
[  175.067028][ T9438] gretap2: entered allmulticast mode
[  175.076739][ T9426] bridge: RTM_NEWNEIGH with unconfigured vlan 3 on bridge_slave_0
[  175.256031][ T9446] FAULT_INJECTION: forcing a failure.
[  175.256031][ T9446] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  175.288350][ T9446] CPU: 1 UID: 0 PID: 9446 Comm: syz.3.1155 Not tainted syzkaller #0 PREEMPT(full) 
[  175.288374][ T9446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  175.288385][ T9446] Call Trace:
[  175.288392][ T9446]  <TASK>
[  175.288399][ T9446]  dump_stack_lvl+0x189/0x250
[  175.288424][ T9446]  ? __pfx____ratelimit+0x10/0x10
[  175.288448][ T9446]  ? __pfx_dump_stack_lvl+0x10/0x10
[  175.288467][ T9446]  ? __pfx__printk+0x10/0x10
[  175.288502][ T9446]  should_fail_ex+0x414/0x560
[  175.288530][ T9446]  _copy_to_user+0x31/0xb0
[  175.288551][ T9446]  simple_read_from_buffer+0xe1/0x170
[  175.288579][ T9446]  proc_fail_nth_read+0x1b3/0x220
[  175.288602][ T9446]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  175.288623][ T9446]  ? rw_verify_area+0x2a6/0x4d0
[  175.288643][ T9446]  ? __lock_acquire+0xab9/0xd20
[  175.288662][ T9446]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  175.288683][ T9446]  vfs_read+0x200/0xa30
[  175.288701][ T9446]  ? fdget_pos+0x247/0x320
[  175.288721][ T9446]  ? __pfx___mutex_lock+0x10/0x10
[  175.288738][ T9446]  ? __pfx_vfs_read+0x10/0x10
[  175.288761][ T9446]  ? __fget_files+0x2a/0x420
[  175.288780][ T9446]  ? __fget_files+0x3a0/0x420
[  175.288798][ T9446]  ? __fget_files+0x2a/0x420
[  175.288822][ T9446]  ksys_read+0x145/0x250
[  175.288845][ T9446]  ? __pfx_ksys_read+0x10/0x10
[  175.288862][ T9446]  ? rcu_is_watching+0x15/0xb0
[  175.288886][ T9446]  ? do_syscall_64+0xbe/0x3b0
[  175.288906][ T9446]  do_syscall_64+0xfa/0x3b0
[  175.288921][ T9446]  ? lockdep_hardirqs_on+0x9c/0x150
[  175.288942][ T9446]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.288959][ T9446]  ? clear_bhb_loop+0x60/0xb0
[  175.288980][ T9446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.288996][ T9446] RIP: 0033:0x7f432778d5fc
[  175.289011][ T9446] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  175.289025][ T9446] RSP: 002b:00007f43259ee030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  175.289045][ T9446] RAX: ffffffffffffffda RBX: 00007f43279c5fa0 RCX: 00007f432778d5fc
[  175.289057][ T9446] RDX: 000000000000000f RSI: 00007f43259ee0a0 RDI: 0000000000000003
[  175.289068][ T9446] RBP: 00007f43259ee090 R08: 0000000000000000 R09: 0000000000000000
[  175.289079][ T9446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.289089][ T9446] R13: 00007f43279c6038 R14: 00007f43279c5fa0 R15: 00007ffd6c5c8ee8
[  175.289120][ T9446]  </TASK>
[  175.806398][ T9471] openvswitch: netlink: IPv4 tun info is not correct
[  176.060306][ T9484] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1170'.
[  176.831284][ T9532] netlink: 'syz.4.1191': attribute type 64 has an invalid length.
[  176.856770][ T9532] netlink: 5 bytes leftover after parsing attributes in process `syz.4.1191'.
[  176.886291][ T9532] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  176.949043][ T9541] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1193'.
[  177.376919][ T9565] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1202'.
[  177.586423][ T9575] nbd: must specify an index to disconnect
[  177.680872][ T9582] netlink: 'syz.0.1207': attribute type 1 has an invalid length.
[  177.794855][ T9582] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1207'.
[  177.810318][ T9582] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1207'.
[  177.821046][ T9582] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1207'.
[  177.830465][ T9582] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1207'.
[  178.018822][ T9598] netlink: 6 bytes leftover after parsing attributes in process `syz.4.1213'.
[  178.747813][ T9618] delete_channel: no stack
[  179.021314][ T9637] netem: change failed
[  179.050329][ T9637] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1230'.
[  179.072941][ T9637] netlink: 'syz.1.1230': attribute type 5 has an invalid length.
[  179.124881][ T9637] geneve2: entered promiscuous mode
[  179.149653][ T9637] geneve2: entered allmulticast mode
[  179.172365][ T9643] team0: Device ip6gre1 is of different type
[  179.269595][ T2971] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 256 - 0
[  179.299027][ T2971] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 256 - 0
[  179.330752][ T2971] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 256 - 0
[  179.377011][ T2971] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 256 - 0
[  180.240978][ T9712] tipc: Enabled bearer <udp:s>, priority 10
[  180.351937][ T9724] netlink: 'syz.2.1256': attribute type 1 has an invalid length.
[  180.385957][ T9726] bridge_slave_1: left allmulticast mode
[  180.413749][ T9726] bridge_slave_1: left promiscuous mode
[  180.436901][ T9726] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.507390][ T9726] bridge_slave_0: left allmulticast mode
[  180.532023][ T9726] bridge_slave_0: left promiscuous mode
[  180.563846][ T9726] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.669253][ T9733] tipc: Enabled bearer <ib:macvlan1>, priority 0
[  181.047630][ T9711] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  181.186930][ T9770] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode
[  181.219922][ T9770] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  181.220945][ T9776] netlink: 'syz.0.1276': attribute type 10 has an invalid length.
[  181.310166][ T9782] FAULT_INJECTION: forcing a failure.
[  181.310166][ T9782] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  181.313374][ T9776] mac80211_hwsim hwsim3 wlan1: left promiscuous mode
[  181.324580][ T9782] CPU: 1 UID: 0 PID: 9782 Comm: syz.1.1279 Not tainted syzkaller #0 PREEMPT(full) 
[  181.324600][ T9782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  181.324611][ T9782] Call Trace:
[  181.324618][ T9782]  <TASK>
[  181.324626][ T9782]  dump_stack_lvl+0x189/0x250
[  181.324649][ T9782]  ? __pfx____ratelimit+0x10/0x10
[  181.324672][ T9782]  ? __pfx_dump_stack_lvl+0x10/0x10
[  181.324691][ T9782]  ? __pfx__printk+0x10/0x10
[  181.324714][ T9782]  ? fs_reclaim_acquire+0x7d/0x100
[  181.324752][ T9782]  should_fail_ex+0x414/0x560
[  181.324778][ T9782]  prepare_alloc_pages+0x213/0x610
[  181.324802][ T9782]  __alloc_frozen_pages_noprof+0x123/0x370
[  181.324823][ T9782]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  181.324850][ T9782]  ? policy_nodemask+0x27c/0x720
[  181.324876][ T9782]  alloc_pages_mpol+0x232/0x4a0
[  181.324904][ T9782]  vma_alloc_folio_noprof+0xe4/0x200
[  181.324928][ T9782]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  181.324962][ T9782]  folio_prealloc+0x30/0x180
[  181.324986][ T9782]  do_wp_page+0x1231/0x5800
[  181.325027][ T9782]  ? __pfx_do_wp_page+0x10/0x10
[  181.325044][ T9782]  ? do_raw_spin_lock+0x121/0x290
[  181.325066][ T9782]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  181.325096][ T9782]  __handle_mm_fault+0x1033/0x5440
[  181.325132][ T9782]  ? __pfx___handle_mm_fault+0x10/0x10
[  181.325172][ T9782]  ? find_vma+0xe7/0x160
[  181.325191][ T9782]  ? __pfx_find_vma+0x10/0x10
[  181.325212][ T9782]  handle_mm_fault+0x40a/0x8e0
[  181.325243][ T9782]  do_user_addr_fault+0x764/0x1390
[  181.325282][ T9782]  exc_page_fault+0x76/0xf0
[  181.325307][ T9782]  asm_exc_page_fault+0x26/0x30
[  181.325322][ T9782] RIP: 0010:__put_user_4+0xd/0x20
[  181.325337][ T9782] Code: 66 89 01 31 c9 0f 01 ca e9 10 45 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90
[  181.325350][ T9782] RSP: 0018:ffffc9001bba7c98 EFLAGS: 00050206
[  181.325366][ T9782] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000200000005278
[  181.325378][ T9782] RDX: 0000000000000000 RSI: ffffffff8dba8050 RDI: ffffffff8be33880
[  181.325389][ T9782] RBP: ffffc9001bba7eb0 R08: 0000000000000000 R09: ffffffff820b8010
[  181.325400][ T9782] R10: dffffc0000000000 R11: fffffbfff1f472e7 R12: 0000200000005240
[  181.325412][ T9782] R13: 0000000000040000 R14: 0000200000005240 R15: 0000000000000000
[  181.325430][ T9782]  ? __might_fault+0xb0/0x130
[  181.325461][ T9782]  __sys_sendmmsg+0x25f/0x430
[  181.325485][ T9782]  ? __pfx___sys_sendmmsg+0x10/0x10
[  181.325501][ T9782]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  181.325543][ T9782]  ? ksys_write+0x22a/0x250
[  181.325565][ T9782]  ? __pfx_ksys_write+0x10/0x10
[  181.325583][ T9782]  ? rcu_is_watching+0x15/0xb0
[  181.325607][ T9782]  __x64_sys_sendmmsg+0xa0/0xc0
[  181.325626][ T9782]  do_syscall_64+0xfa/0x3b0
[  181.325640][ T9782]  ? lockdep_hardirqs_on+0x9c/0x150
[  181.325661][ T9782]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.325677][ T9782]  ? clear_bhb_loop+0x60/0xb0
[  181.325697][ T9782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.325712][ T9782] RIP: 0033:0x7f3d00d8ebe9
[  181.325727][ T9782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.325745][ T9782] RSP: 002b:00007f3d01b50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  181.325761][ T9782] RAX: ffffffffffffffda RBX: 00007f3d00fc5fa0 RCX: 00007f3d00d8ebe9
[  181.325773][ T9782] RDX: 0000000004000095 RSI: 0000200000005240 RDI: 0000000000000003
[  181.325784][ T9782] RBP: 00007f3d01b50090 R08: 0000000000000000 R09: 0000000000000000
[  181.325794][ T9782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  181.325804][ T9782] R13: 00007f3d00fc6038 R14: 00007f3d00fc5fa0 R15: 00007fff0ab0df18
[  181.325832][ T9782]  </TASK>
[  181.712664][ T5923] tipc: Node number set to 3707714924
[  181.732074][ T9776] mac80211_hwsim hwsim3 wlan1: left allmulticast mode
[  181.783058][   T24] tipc: Node number set to 3631248488
[  181.787391][ T9770] bond0: (slave bond_slave_0): Releasing backup interface
[  181.814272][ T9799] rdma_rxe: rxe_newlink: failed to add lo
[  181.830162][ T9770] bond0: (slave bond_slave_1): Releasing backup interface
[  181.855476][ T9770] batman_adv: batadv0: Removing interface: batadv_slave_0
[  181.887460][ T9770] batman_adv: batadv0: Removing interface: batadv_slave_1
[  181.900715][ T9770] bond0: (slave wlan1): Releasing backup interface
[  181.937791][ T9770] bond5: (slave veth3): Releasing active interface
[  181.944952][ T9770] gretap1: entered promiscuous mode
[  181.966527][ T9770] bond5: (slave gretap1): Releasing active interface
[  181.977168][ T9770] gretap1: left promiscuous mode
[  182.196031][ T9814] __nla_validate_parse: 7 callbacks suppressed
[  182.196050][ T9814] netlink: 184 bytes leftover after parsing attributes in process `syz.4.1292'.
[  182.213694][ T9814] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1292'.
[  182.345034][    T9] IPVS: starting estimator thread 0...
[  182.453807][ T9826] IPVS: using max 31 ests per chain, 74400 per kthread
[  182.491624][ T9824] bridge0: port 1(bridge_slave_0) entered disabled state
[  182.527994][ T9824] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  182.596454][ T9843] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1299'.
[  182.644164][ T9843] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1299'.
[  182.681342][ T9843] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1299'.
[  182.721815][ T9847] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1302'.
[  182.746219][ T9843] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1299'.
[  182.830697][ T9848] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1301'.
[  182.901596][ T9855] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1304'.
[  183.081082][ T9863] netlink: 184 bytes leftover after parsing attributes in process `syz.3.1309'.
[  183.206502][ T9873] netlink: 'syz.0.1311': attribute type 12 has an invalid length.
[  183.388702][   T13] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  183.427992][   T13] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  183.479652][   T13] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  183.499693][   T13] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  183.818262][ T9916] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  187.056900][ T9995] bridge_slave_1: left allmulticast mode
[  187.062976][ T9995] bridge_slave_1: left promiscuous mode
[  187.068844][ T9995] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.088016][ T9995] bridge_slave_0: left allmulticast mode
[  187.099338][ T9995] bridge_slave_0: left promiscuous mode
[  187.114398][ T9995] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.178234][T10001] netlink: 'syz.1.1356': attribute type 10 has an invalid length.
[  187.310217][T10001] team0: Device ipvlan1 failed to register rx_handler
[  187.468492][T10013] __nla_validate_parse: 13 callbacks suppressed
[  187.468511][T10013] netlink: 208 bytes leftover after parsing attributes in process `syz.0.1359'.
[  187.502283][T10020] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1362'.
[  187.530135][T10017] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1358'.
[  187.552765][T10017] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1358'.
[  187.576574][T10017] netlink: 58 bytes leftover after parsing attributes in process `syz.4.1358'.
[  187.613862][T10026] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1364'.
[  187.662162][T10027] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1363'.
[  187.881788][T10039] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1369'.
[  187.921411][T10044] netlink: 192 bytes leftover after parsing attributes in process `syz.1.1370'.
[  187.943712][T10047] bridge_slave_1: left allmulticast mode
[  187.949504][T10047] bridge_slave_1: left promiscuous mode
[  187.969496][T10047] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.976503][T10052] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1370'.
[  187.988877][T10047] bridge_slave_0: left allmulticast mode
[  187.995746][T10047] bridge_slave_0: left promiscuous mode
[  188.001740][T10047] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.326692][T10063] mac80211_hwsim hwsim7 wlan1: entered promiscuous mode
[  188.348134][T10063] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  188.378867][T10063] netlink: 'syz.1.1376': attribute type 10 has an invalid length.
[  188.606803][T10063] mac80211_hwsim hwsim7 wlan1: left promiscuous mode
[  188.623461][T10063] mac80211_hwsim hwsim7 wlan1: left allmulticast mode
[  188.657924][T10063] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  188.742289][T10069] bridge_slave_0: left allmulticast mode
[  188.750314][T10069] bridge_slave_0: left promiscuous mode
[  188.764955][T10069] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.789140][T10069] bridge_slave_1: left allmulticast mode
[  188.809701][T10069] bridge_slave_1: left promiscuous mode
[  188.832076][T10069] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.902124][T10069] bond0: (slave bond_slave_0): Releasing backup interface
[  188.925224][T10069] bond0: (slave bond_slave_1): Releasing backup interface
[  188.942386][T10069] team0: Port device team_slave_0 removed
[  188.953748][T10069] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  188.961231][T10069] batman_adv: batadv0: Removing interface: batadv_slave_0
[  188.970351][T10069] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  188.977811][T10069] batman_adv: batadv0: Removing interface: batadv_slave_1
[  188.991433][T10069] bond0: (slave wlan1): Releasing backup interface
[  189.009467][T10069] bond5: (slave veth3): Releasing active interface
[  189.023768][T10069] gretap1: entered promiscuous mode
[  189.036532][T10069] bond5: (slave gretap1): Releasing active interface
[  189.044463][T10069] gretap1: left promiscuous mode
[  189.056907][T10069] bond7: (slave veth5): Releasing active interface
[  189.082141][T10097] bridge_slave_1: left allmulticast mode
[  189.107129][T10097] bridge_slave_1: left promiscuous mode
[  189.130913][T10097] bridge0: port 2(bridge_slave_1) entered disabled state
[  189.171928][T10097] bridge_slave_0: left allmulticast mode
[  189.206343][T10097] bridge_slave_0: left promiscuous mode
[  189.248059][T10097] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.733304][T10132] ieee802154 phy0 wpan0: encryption failed: -22
[  190.845533][T10193] bond0: Device is already in use.
[  191.140896][T10207] sock: sock_timestamping_bind_phc: sock not bind to device
[  191.185348][ T5871] Bluetooth: hci1: command 0x0406 tx timeout
[  191.191480][ T5882] Bluetooth: hci3: command 0x0406 tx timeout
[  191.197548][ T5874] Bluetooth: hci2: command 0x0406 tx timeout
[  191.609353][T10226] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  191.698859][T10226] syzkaller0: entered promiscuous mode
[  191.704507][T10226] syzkaller0: entered allmulticast mode
[  192.238763][T10216] tipc: Resetting bearer <eth:syzkaller0>
[  192.477166][ T5189] Bluetooth: hci4: command tx timeout
[  193.529247][T10216] tipc: Disabling bearer <eth:syzkaller0>
[  193.762491][T10272] __nla_validate_parse: 10 callbacks suppressed
[  193.762510][T10272] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1439'.
[  193.811445][T10275] IPVS: length: 8 != 1152
[  194.231667][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  194.238202][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  194.355411][   T13] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  194.384770][   T13] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  194.433335][T10305] (unnamed net_device) (uninitialized): Unable to set down delay as MII monitoring is disabled
[  194.472153][   T13] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  194.506156][T10316] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1455'.
[  194.524014][   T13] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  194.812708][T10321] nbd1: detected capacity change from 0 to 127
[  194.893871][T10324] netlink: 'syz.4.1456': attribute type 10 has an invalid length.
[  194.913384][ T5189] block nbd1: Receive control failed (result -104)
[  194.939785][T10324] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  195.473650][T10357] netlink: 'syz.2.1467': attribute type 5 has an invalid length.
[  195.487322][T10357] netlink: 'syz.2.1467': attribute type 5 has an invalid length.
[  195.521464][T10357] netlink: 'syz.2.1467': attribute type 5 has an invalid length.
[  195.619964][T10365] raw_sendmsg: syz.3.1468 forgot to set AF_INET. Fix it!
[  195.882081][T10374] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1469'.
[  196.026361][T10387] netlink: 260 bytes leftover after parsing attributes in process `syz.3.1472'.
[  196.106455][T10387] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1472'.
[  196.115520][T10387] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1472'.
[  196.197508][T10399] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1478'.
[  196.368427][T10408] netlink: 'syz.0.1480': attribute type 11 has an invalid length.
[  196.393152][T10408] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1480'.
[  196.454545][T10412] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1480'.
[  196.720505][T10433] netlink: 165 bytes leftover after parsing attributes in process `syz.0.1486'.
[  197.408081][T10467] sctp: [Deprecated]: syz.4.1500 (pid 10467) Use of int in max_burst socket option.
[  197.408081][T10467] Use struct sctp_assoc_value instead
[  197.950314][T10497] unsupported nlmsg_type 40
[  197.979638][T10497] openvswitch: netlink: Missing key (keys=40, expected=100)
[  198.053664][T10503] netlink: zone id is out of range
[  198.059781][T10503] netlink: zone id is out of range
[  198.097560][T10503] netlink: zone id is out of range
[  198.136585][T10503] netlink: zone id is out of range
[  198.172667][T10503] netlink: zone id is out of range
[  198.177814][T10503] netlink: zone id is out of range
[  198.207950][T10503] netlink: zone id is out of range
[  198.238260][T10503] netlink: zone id is out of range
[  198.253251][T10503] netlink: get zone limit has 8 unknown bytes
[  198.887271][T10556] veth0_virt_wifi: entered promiscuous mode
[  198.922701][T10556] veth0_virt_wifi: entered allmulticast mode
[  198.951761][ T5189] Bluetooth: hci4: link tx timeout
[  198.958187][ T5189] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  199.065854][T10559] C: renamed from lo
[  199.152014][T10569] __nla_validate_parse: 7 callbacks suppressed
[  199.152033][T10569] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1532'.
[  199.180433][   T51] Bluetooth: hci4: link tx timeout
[  199.186032][   T51] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  199.205861][   T51] Bluetooth: hci4: link tx timeout
[  199.211105][   T51] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  199.232317][T10570] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1532'.
[  199.488551][T10580] netlink: 'syz.3.1537': attribute type 1 has an invalid length.
[  199.558811][T10587] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1537'.
[  199.633206][   T51] Bluetooth: hci4: link tx timeout
[  199.638449][   T51] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  199.727865][T10597] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1541'.
[  199.799204][T10597] nbd: socks must be embedded in a SOCK_ITEM attr
[  199.855976][T10597] netlink: 'syz.2.1541': attribute type 12 has an invalid length.
[  199.864894][T10597] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1541'.
[  199.874642][T10597] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1541'.
[  199.883708][T10597] nbd: couldn't find a device at index 0
[  200.147012][   T51] Bluetooth: hci4: link tx timeout
[  200.152765][   T51] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  200.211533][T10628] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1547'.
[  200.257704][T10628] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1547'.
[  200.317987][T10635] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1549'.
[  200.334688][T10639] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1550'.
[  200.378987][T10641] netlink: 'syz.2.1551': attribute type 142 has an invalid length.
[  200.843659][T10659] syzkaller1: entered promiscuous mode
[  200.849169][T10659] syzkaller1: entered allmulticast mode
[  200.920399][   T51] Bluetooth: hci4: link tx timeout
[  200.925746][   T51] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  201.026562][   T51] Bluetooth: hci4: command 0x0406 tx timeout
[  201.614211][T10714] bond12: entered promiscuous mode
[  201.619373][T10714] bond12: entered allmulticast mode
[  201.625518][T10714] 8021q: adding VLAN 0 to HW filter on device bond12
[  201.689210][T10724] netlink: 'syz.2.1579': attribute type 10 has an invalid length.
[  201.816062][T10727] bond0: (slave bond_slave_0): Releasing backup interface
[  201.846122][T10727] bond0: (slave bond_slave_1): Releasing backup interface
[  201.894932][T10727] team0: Port device team_slave_0 removed
[  201.922271][T10727] team0: Port device team_slave_1 removed
[  201.938101][T10727] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  201.964615][T10727] batman_adv: batadv0: Removing interface: batadv_slave_0
[  201.994294][T10727] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  202.001708][T10727] batman_adv: batadv0: Removing interface: batadv_slave_1
[  202.040314][T10727] bond0: (slave wlan1): Releasing backup interface
[  202.089408][T10727] bond5: (slave veth3): Releasing active interface
[  202.112235][T10727] bond10: (slave bond11): Releasing backup interface
[  202.132076][T10727] bond10: (slave bond11): the permanent HWaddr of slave - 66:91:64:23:18:89 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  202.158755][T10727] bond10: (slave gretap1): making interface the new active one
[  202.206661][T10727] bond10: (slave gretap1): Releasing backup interface
[  202.477201][   T36] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  202.503360][T10747] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  202.520995][T10747] mac80211_hwsim hwsim6 syzkaller0: entered promiscuous mode
[  202.528868][T10747] mac80211_hwsim hwsim6 syzkaller0: entered allmulticast mode
[  202.540087][   T36] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  202.560408][   T36] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  202.571136][T10749] lo speed is unknown, defaulting to 1000
[  202.597130][T10747] tipc: Resetting bearer <eth:syzkaller0>
[  202.625056][   T36] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  202.938347][T10758] netlink: 'syz.3.1587': attribute type 10 has an invalid length.
[  202.972750][T10758] veth0_vlan: entered allmulticast mode
[  202.978656][T10758] veth0_vlan: left promiscuous mode
[  203.012225][T10758] veth0_vlan: entered promiscuous mode
[  203.026331][T10758] team0: Device veth0_vlan failed to register rx_handler
[  203.232279][T10775] net_ratelimit: 2 callbacks suppressed
[  203.232296][T10775] netlink: zone id is out of range
[  203.243728][T10775] netlink: get zone limit has 8 unknown bytes
[  203.306644][T10777] netlink: 'syz.3.1597': attribute type 1 has an invalid length.
[  203.346153][T10779] netlink: 'syz.2.1596': attribute type 5 has an invalid length.
[  203.403009][T10784] netlink: 'syz.4.1595': attribute type 10 has an invalid length.
[  203.559111][T10783] bond12: (slave vxcan3): The slave device specified does not support setting the MAC address
[  203.574368][T10783] bond12: (slave vxcan3): Error -95 calling set_mac_address
[  203.609760][T10788] gretap2: entered promiscuous mode
[  203.620466][T10788] bond12: (slave gretap2): making interface the new active one
[  203.628212][ T5930] tipc: Node number set to 2969661100
[  203.635124][T10788] bond12: (slave gretap2): Enslaving as an active interface with an up link
[  203.657472][T10790] bond5: (slave veth0_to_bond): Releasing active interface
[  203.684387][T10790] bond0: (slave bond_slave_0): Releasing backup interface
[  203.700680][T10790] bond0: (slave bond_slave_1): Releasing backup interface
[  203.737360][T10790] team0: Port device team_slave_0 removed
[  203.767832][T10790] team0: Port device team_slave_1 removed
[  203.783695][T10790] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  203.793479][T10790] batman_adv: batadv0: Removing interface: batadv_slave_0
[  203.808546][T10790] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  203.816218][T10790] batman_adv: batadv0: Removing interface: batadv_slave_1
[  203.827070][T10790] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  203.834898][T10790] batman_adv: batadv0: Removing interface: virt_wifi0
[  203.848684][T10790] bond0: (slave wlan1): Releasing backup interface
[  203.857821][T10790] veth3: left allmulticast mode
[  203.863411][T10790] veth3: left promiscuous mode
[  203.868420][T10790] bridge1: port 1(veth3) entered disabled state
[  203.880046][T10790] vlan2: left promiscuous mode
[  203.885311][T10790] veth0_to_bond: left promiscuous mode
[  203.891158][T10790] bridge1: port 2(vlan2) entered disabled state
[  203.915192][T10797] macvlan8: entered promiscuous mode
[  203.920788][T10797] macvlan8: entered allmulticast mode
[  203.929918][T10797] bond12: entered promiscuous mode
[  203.936660][T10797] 8021q: adding VLAN 0 to HW filter on device macvlan8
[  203.947936][T10797] bond12: (slave macvlan8): the slave hw address is in use by the bond; giving it the hw address of gretap2
[  203.966254][T10797] bond12: left promiscuous mode
[  204.271305][T10828] __nla_validate_parse: 7 callbacks suppressed
[  204.271322][T10828] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1605'.
[  204.348028][T10828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1605'.
[  204.365032][T10834] netlink: 'syz.2.1605': attribute type 10 has an invalid length.
[  204.574821][T10834] team0: Port device dummy0 added
[  204.821422][T10846] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.1615'.
[  204.863140][T10852] netlink: 173368 bytes leftover after parsing attributes in process `syz.4.1616'.
[  204.881120][T10846] netlink: zone id is out of range
[  204.887332][T10846] netlink: get zone limit has 8 unknown bytes
[  204.900483][T10852] netlink: zone id is out of range
[  204.934967][T10852] netlink: zone id is out of range
[  204.953804][T10852] netlink: zone id is out of range
[  204.987830][T10852] netlink: zone id is out of range
[  205.049961][T10852] netlink: zone id is out of range
[  205.093672][T10852] netlink: zone id is out of range
[  205.729424][T10899] netlink: 'syz.2.1632': attribute type 1 has an invalid length.
[  205.737248][T10899] netlink: 172 bytes leftover after parsing attributes in process `syz.2.1632'.
[  206.039452][T10921] netlink: 4552 bytes leftover after parsing attributes in process `syz.4.1638'.
[  206.093025][T10921] netlink: 4552 bytes leftover after parsing attributes in process `syz.4.1638'.
[  206.217552][T10932] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1640'.
[  206.435091][T10938] syzkaller1: entered promiscuous mode
[  206.440602][T10938] syzkaller1: entered allmulticast mode
[  206.477011][T10946] FAULT_INJECTION: forcing a failure.
[  206.477011][T10946] name failslab, interval 1, probability 0, space 0, times 0
[  206.498458][T10941] netlink: 'syz.1.1645': attribute type 1 has an invalid length.
[  206.511664][T10941] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.1645'.
[  206.525520][T10946] CPU: 0 UID: 0 PID: 10946 Comm: syz.2.1649 Not tainted syzkaller #0 PREEMPT(full) 
[  206.525544][T10946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  206.525554][T10946] Call Trace:
[  206.525561][T10946]  <TASK>
[  206.525569][T10946]  dump_stack_lvl+0x189/0x250
[  206.525591][T10946]  ? __pfx____ratelimit+0x10/0x10
[  206.525612][T10946]  ? __pfx_dump_stack_lvl+0x10/0x10
[  206.525630][T10946]  ? __pfx__printk+0x10/0x10
[  206.525663][T10946]  ? __pfx___might_resched+0x10/0x10
[  206.525682][T10946]  should_fail_ex+0x414/0x560
[  206.525707][T10946]  should_failslab+0xa8/0x100
[  206.525731][T10946]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  206.525751][T10946]  ? __alloc_skb+0x112/0x2d0
[  206.525770][T10946]  __alloc_skb+0x112/0x2d0
[  206.525789][T10946]  netlink_sendmsg+0x5c6/0xb30
[  206.525815][T10946]  ? __pfx_netlink_sendmsg+0x10/0x10
[  206.525834][T10946]  ? aa_sock_msg_perm+0xf1/0x1d0
[  206.525851][T10946]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  206.525868][T10946]  ? __pfx_netlink_sendmsg+0x10/0x10
[  206.525883][T10946]  __sock_sendmsg+0x21c/0x270
[  206.525906][T10946]  ____sys_sendmsg+0x505/0x830
[  206.525928][T10946]  ? __pfx_____sys_sendmsg+0x10/0x10
[  206.525952][T10946]  ? import_iovec+0x74/0xa0
[  206.525974][T10946]  ___sys_sendmsg+0x21f/0x2a0
[  206.525994][T10946]  ? __pfx____sys_sendmsg+0x10/0x10
[  206.526045][T10946]  ? __fget_files+0x2a/0x420
[  206.526060][T10946]  ? __fget_files+0x3a0/0x420
[  206.526086][T10946]  __x64_sys_sendmsg+0x19b/0x260
[  206.526104][T10946]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  206.526129][T10946]  ? __pfx_ksys_write+0x10/0x10
[  206.526145][T10946]  ? rcu_is_watching+0x15/0xb0
[  206.526167][T10946]  ? do_syscall_64+0xbe/0x3b0
[  206.526186][T10946]  do_syscall_64+0xfa/0x3b0
[  206.526199][T10946]  ? lockdep_hardirqs_on+0x9c/0x150
[  206.526220][T10946]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.526235][T10946]  ? clear_bhb_loop+0x60/0xb0
[  206.526254][T10946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.526268][T10946] RIP: 0033:0x7f8329d8ebe9
[  206.526283][T10946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.526297][T10946] RSP: 002b:00007f832abe8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  206.526315][T10946] RAX: ffffffffffffffda RBX: 00007f8329fc5fa0 RCX: 00007f8329d8ebe9
[  206.526328][T10946] RDX: 0000000000000010 RSI: 0000200000000540 RDI: 0000000000000003
[  206.526339][T10946] RBP: 00007f832abe8090 R08: 0000000000000000 R09: 0000000000000000
[  206.526350][T10946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.526360][T10946] R13: 00007f8329fc6038 R14: 00007f8329fc5fa0 R15: 00007ffef8cda618
[  206.526390][T10946]  </TASK>
[  207.371938][T10981] netlink: 'syz.0.1663': attribute type 29 has an invalid length.
[  207.393565][T10989] netlink: 'syz.0.1663': attribute type 29 has an invalid length.
[  207.424745][T10981] unsupported nla_type 52263
[  207.440031][T10981] netlink: 596 bytes leftover after parsing attributes in process `syz.0.1663'.
[  207.485490][T10988] netlink: 'syz.2.1664': attribute type 1 has an invalid length.
[  207.893726][T11023] netlink: 'syz.0.1678': attribute type 8 has an invalid length.
[  208.811801][T11011] ------------[ cut here ]------------
[  208.817813][T11011] WARNING: CPU: 1 PID: 11011 at net/mac80211/chan.c:844 ieee80211_recalc_chanctx_chantype+0x89d/0x10f0
[  208.829185][T11011] Modules linked in:
[  208.833882][T11011] CPU: 1 UID: 0 PID: 11011 Comm: syz.2.1671 Not tainted syzkaller #0 PREEMPT(full) 
[  208.843333][T11011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  208.853510][T11011] RIP: 0010:ieee80211_recalc_chanctx_chantype+0x89d/0x10f0
[  208.860726][T11011] Code: c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 7b 32 25 f7 4d 8b 36 4d 39 fe 74 22 e8 0e c1 c1 f6 e9 ef f8 ff ff e8 04 c1 c1 f6 90 <0f> 0b 90 e9 47 07 00 00 e8 f6 c0 c1 f6 e9 39 07 00 00 48 83 7c 24
[  208.880718][T11011] RSP: 0018:ffffc90003346380 EFLAGS: 00010246
[  208.887106][T11011] RAX: ffffffff8afdf592 RBX: 0000000000000000 RCX: 0000000000080000
[  208.895363][T11011] RDX: ffffc9000de4e000 RSI: 000000000007ffff RDI: 0000000000080000
[  208.903680][T11011] RBP: ffffc90003346540 R08: ffff88807d2a9737 R09: 1ffff1100fa552e6
[  208.911657][T11011] R10: dffffc0000000000 R11: ffffed100fa552e7 R12: dffffc0000000000
[  208.919669][T11011] R13: 0000000000000070 R14: ffff8880280128c0 R15: ffff8880280128c0
[  208.927662][T11011] FS:  00007f832abc76c0(0000) GS:ffff888125d18000(0000) knlGS:0000000000000000
[  208.936904][T11011] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  208.943804][T11011] CR2: 0000558e6324a528 CR3: 0000000052206000 CR4: 00000000003526f0
[  208.951771][T11011] Call Trace:
[  208.955202][T11011]  <TASK>
[  208.958155][T11011]  ? __pfx_ieee80211_recalc_chanctx_chantype+0x10/0x10
[  208.965350][T11011]  ? __pfx___might_resched+0x10/0x10
[  208.970657][T11011]  ieee80211_assign_link_chanctx+0x5ca/0xd70
[  208.976694][T11011]  __ieee80211_link_release_channel+0x33b/0x4a0
[  208.982986][T11011]  ieee80211_leave_mesh+0xc5/0x130
[  208.988113][T11011]  cfg80211_leave_mesh+0x290/0x800
[  208.993607][T11011]  cfg80211_netdev_notifier_call+0x1b3/0x1450
[  208.999802][T11011]  ? __pfx_cfg80211_netdev_notifier_call+0x10/0x10
[  209.006369][T11011]  ? __lock_acquire+0xab9/0xd20
[  209.011235][T11011]  ? do_raw_spin_lock+0x121/0x290
[  209.016336][T11011]  ? inetdev_event+0x464/0x15b0
[  209.021198][T11011]  ? igmp_netdev_event+0x7c/0x770
[  209.026695][T11011]  notifier_call_chain+0x1b3/0x3e0
[  209.031825][T11011]  __dev_close_many+0x106/0x6f0
[  209.036735][T11011]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.041952][T11011]  ? __local_bh_enable_ip+0x12d/0x1c0
[  209.047382][T11011]  ? __pfx___dev_close_many+0x10/0x10
[  209.053122][T11011]  __dev_change_flags+0x2c7/0x6d0
[  209.058162][T11011]  ? __pfx___dev_change_flags+0x10/0x10
[  209.063771][T11011]  ? netif_state_change+0x256/0x3a0
[  209.068979][T11011]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  209.075001][T11011]  ? __pfx_netif_state_change+0x10/0x10
[  209.080554][T11011]  netif_change_flags+0x88/0x1a0
[  209.085778][T11011]  do_setlink+0xc55/0x41c0
[  209.090191][T11011]  ? __kernel_text_address+0xd/0x40
[  209.095463][T11011]  ? arch_stack_walk+0xfc/0x150
[  209.100440][T11011]  ? __pfx_do_setlink+0x10/0x10
[  209.105376][T11011]  ? __lock_acquire+0xab9/0xd20
[  209.110238][T11011]  ? __mutex_trylock_common+0x153/0x260
[  209.116122][T11011]  ? __pfx___mutex_trylock_common+0x10/0x10
[  209.122036][T11011]  ? rcu_is_watching+0x15/0xb0
[  209.126854][T11011]  ? trace_contention_end+0x39/0x120
[  209.132145][T11011]  ? __mutex_lock+0x335/0x1350
[  209.137001][T11011]  ? rtnl_newlink+0x8db/0x1c70
[  209.141779][T11011]  ? __pfx___mutex_lock+0x10/0x10
[  209.147114][T11011]  ? ns_capable+0x8a/0xf0
[  209.151443][T11011]  ? rtnl_link_get_net_capable+0x16a/0x350
[  209.157321][T11011]  rtnl_newlink+0x149f/0x1c70
[  209.162018][T11011]  ? netlink_sendmsg+0x805/0xb30
[  209.167014][T11011]  ? __pfx_rtnl_newlink+0x10/0x10
[  209.172059][T11011]  ? kasan_quarantine_put+0xdd/0x220
[  209.177655][T11011]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.182971][T11011]  ? nlmon_xmit+0xb0/0x100
[  209.187388][T11011]  ? kmem_cache_free+0x18f/0x400
[  209.192336][T11011]  ? __local_bh_enable_ip+0x12d/0x1c0
[  209.197783][T11011]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.203294][T11011]  ? __local_bh_enable_ip+0x12d/0x1c0
[  209.208665][T11011]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  209.214451][T11011]  ? __dev_queue_xmit+0x27b/0x3b50
[  209.219576][T11011]  ? __dev_queue_xmit+0x27b/0x3b50
[  209.224733][T11011]  ? __dev_queue_xmit+0x27b/0x3b50
[  209.229850][T11011]  ? __dev_queue_xmit+0x1d79/0x3b50
[  209.235346][T11011]  ? __lock_acquire+0xab9/0xd20
[  209.240210][T11011]  ? __pfx_rtnl_newlink+0x10/0x10
[  209.245276][T11011]  rtnetlink_rcv_msg+0x7cf/0xb70
[  209.250226][T11011]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  209.255452][T11011]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  209.260929][T11011]  ? ref_tracker_free+0x63a/0x7d0
[  209.266315][T11011]  ? __asan_memcpy+0x40/0x70
[  209.270919][T11011]  ? __pfx_ref_tracker_free+0x10/0x10
[  209.276393][T11011]  netlink_rcv_skb+0x205/0x470
[  209.281219][T11011]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  209.286759][T11011]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  209.292080][T11011]  ? netlink_deliver_tap+0x2e/0x1b0
[  209.297565][T11011]  netlink_unicast+0x82c/0x9e0
[  209.302482][T11011]  ? __pfx_netlink_unicast+0x10/0x10
[  209.307814][T11011]  ? netlink_sendmsg+0x642/0xb30
[  209.312820][T11011]  ? skb_put+0x11b/0x210
[  209.317073][T11011]  netlink_sendmsg+0x805/0xb30
[  209.321838][T11011]  ? __pfx_netlink_sendmsg+0x10/0x10
[  209.327412][T11011]  ? aa_sock_msg_perm+0xf1/0x1d0
[  209.332367][T11011]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  209.337715][T11011]  ? __pfx_netlink_sendmsg+0x10/0x10
[  209.343081][T11011]  __sock_sendmsg+0x21c/0x270
[  209.347771][T11011]  ____sys_sendmsg+0x505/0x830
[  209.352539][T11011]  ? __pfx_____sys_sendmsg+0x10/0x10
[  209.358160][T11011]  ? import_iovec+0x74/0xa0
[  209.362715][T11011]  ___sys_sendmsg+0x21f/0x2a0
[  209.367395][T11011]  ? __pfx____sys_sendmsg+0x10/0x10
[  209.372684][T11011]  ? __fget_files+0x2a/0x420
[  209.377282][T11011]  ? __fget_files+0x3a0/0x420
[  209.381965][T11011]  __x64_sys_sendmsg+0x19b/0x260
[  209.387188][T11011]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  209.392729][T11011]  ? rcu_is_watching+0x15/0xb0
[  209.397506][T11011]  ? do_syscall_64+0xbe/0x3b0
[  209.402193][T11011]  do_syscall_64+0xfa/0x3b0
[  209.406933][T11011]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.412148][T11011]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.418535][T11011]  ? clear_bhb_loop+0x60/0xb0
[  209.423254][T11011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.429152][T11011] RIP: 0033:0x7f8329d8ebe9
[  209.433622][T11011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.453406][T11011] RSP: 002b:00007f832abc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  209.461814][T11011] RAX: ffffffffffffffda RBX: 00007f8329fc6090 RCX: 00007f8329d8ebe9
[  209.469841][T11011] RDX: 0000000004000000 RSI: 0000200000000200 RDI: 0000000000000006
[  209.477866][T11011] RBP: 00007f8329e11e19 R08: 0000000000000000 R09: 0000000000000000
[  209.486131][T11011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  209.494159][T11011] R13: 00007f8329fc6128 R14: 00007f8329fc6090 R15: 00007ffef8cda618
[  209.502144][T11011]  </TASK>
[  209.505246][T11011] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  209.512522][T11011] CPU: 1 UID: 0 PID: 11011 Comm: syz.2.1671 Not tainted syzkaller #0 PREEMPT(full) 
[  209.521875][T11011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  209.531910][T11011] Call Trace:
[  209.535171][T11011]  <TASK>
[  209.538103][T11011]  dump_stack_lvl+0x99/0x250
[  209.542691][T11011]  ? __asan_memcpy+0x40/0x70
[  209.547282][T11011]  ? __pfx_dump_stack_lvl+0x10/0x10
[  209.552462][T11011]  ? __pfx__printk+0x10/0x10
[  209.557056][T11011]  vpanic+0x281/0x750
[  209.561024][T11011]  ? __pfx__printk+0x10/0x10
[  209.565604][T11011]  ? __pfx_vpanic+0x10/0x10
[  209.570097][T11011]  ? is_bpf_text_address+0x26/0x2b0
[  209.575295][T11011]  panic+0xb9/0xc0
[  209.579006][T11011]  ? __pfx_panic+0x10/0x10
[  209.583419][T11011]  __warn+0x31b/0x4b0
[  209.587391][T11011]  ? ieee80211_recalc_chanctx_chantype+0x89d/0x10f0
[  209.593978][T11011]  ? ieee80211_recalc_chanctx_chantype+0x89d/0x10f0
[  209.600556][T11011]  report_bug+0x2be/0x4f0
[  209.604875][T11011]  ? ieee80211_recalc_chanctx_chantype+0x89d/0x10f0
[  209.611455][T11011]  ? ieee80211_recalc_chanctx_chantype+0x89d/0x10f0
[  209.618038][T11011]  ? ieee80211_recalc_chanctx_chantype+0x89f/0x10f0
[  209.624629][T11011]  handle_bug+0x84/0x160
[  209.628862][T11011]  exc_invalid_op+0x1a/0x50
[  209.633351][T11011]  asm_exc_invalid_op+0x1a/0x20
[  209.638188][T11011] RIP: 0010:ieee80211_recalc_chanctx_chantype+0x89d/0x10f0
[  209.645395][T11011] Code: c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 7b 32 25 f7 4d 8b 36 4d 39 fe 74 22 e8 0e c1 c1 f6 e9 ef f8 ff ff e8 04 c1 c1 f6 90 <0f> 0b 90 e9 47 07 00 00 e8 f6 c0 c1 f6 e9 39 07 00 00 48 83 7c 24
[  209.664997][T11011] RSP: 0018:ffffc90003346380 EFLAGS: 00010246
[  209.671053][T11011] RAX: ffffffff8afdf592 RBX: 0000000000000000 RCX: 0000000000080000
[  209.679044][T11011] RDX: ffffc9000de4e000 RSI: 000000000007ffff RDI: 0000000000080000
[  209.687009][T11011] RBP: ffffc90003346540 R08: ffff88807d2a9737 R09: 1ffff1100fa552e6
[  209.694979][T11011] R10: dffffc0000000000 R11: ffffed100fa552e7 R12: dffffc0000000000
[  209.702939][T11011] R13: 0000000000000070 R14: ffff8880280128c0 R15: ffff8880280128c0
[  209.710911][T11011]  ? ieee80211_recalc_chanctx_chantype+0x10e2/0x10f0
[  209.717609][T11011]  ? __pfx_ieee80211_recalc_chanctx_chantype+0x10/0x10
[  209.724461][T11011]  ? __pfx___might_resched+0x10/0x10
[  209.729754][T11011]  ieee80211_assign_link_chanctx+0x5ca/0xd70
[  209.735731][T11011]  __ieee80211_link_release_channel+0x33b/0x4a0
[  209.741964][T11011]  ieee80211_leave_mesh+0xc5/0x130
[  209.747069][T11011]  cfg80211_leave_mesh+0x290/0x800
[  209.752185][T11011]  cfg80211_netdev_notifier_call+0x1b3/0x1450
[  209.758260][T11011]  ? __pfx_cfg80211_netdev_notifier_call+0x10/0x10
[  209.764753][T11011]  ? __lock_acquire+0xab9/0xd20
[  209.769613][T11011]  ? do_raw_spin_lock+0x121/0x290
[  209.774651][T11011]  ? inetdev_event+0x464/0x15b0
[  209.779501][T11011]  ? igmp_netdev_event+0x7c/0x770
[  209.784521][T11011]  notifier_call_chain+0x1b3/0x3e0
[  209.789631][T11011]  __dev_close_many+0x106/0x6f0
[  209.794477][T11011]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.799667][T11011]  ? __local_bh_enable_ip+0x12d/0x1c0
[  209.805022][T11011]  ? __pfx___dev_close_many+0x10/0x10
[  209.810397][T11011]  __dev_change_flags+0x2c7/0x6d0
[  209.815421][T11011]  ? __pfx___dev_change_flags+0x10/0x10
[  209.820949][T11011]  ? netif_state_change+0x256/0x3a0
[  209.826134][T11011]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  209.832098][T11011]  ? __pfx_netif_state_change+0x10/0x10
[  209.837637][T11011]  netif_change_flags+0x88/0x1a0
[  209.842577][T11011]  do_setlink+0xc55/0x41c0
[  209.846981][T11011]  ? __kernel_text_address+0xd/0x40
[  209.852169][T11011]  ? arch_stack_walk+0xfc/0x150
[  209.857008][T11011]  ? __pfx_do_setlink+0x10/0x10
[  209.861853][T11011]  ? __lock_acquire+0xab9/0xd20
[  209.866737][T11011]  ? __mutex_trylock_common+0x153/0x260
[  209.872271][T11011]  ? __pfx___mutex_trylock_common+0x10/0x10
[  209.878152][T11011]  ? rcu_is_watching+0x15/0xb0
[  209.882902][T11011]  ? trace_contention_end+0x39/0x120
[  209.888174][T11011]  ? __mutex_lock+0x335/0x1350
[  209.892931][T11011]  ? rtnl_newlink+0x8db/0x1c70
[  209.897687][T11011]  ? __pfx___mutex_lock+0x10/0x10
[  209.902703][T11011]  ? ns_capable+0x8a/0xf0
[  209.907016][T11011]  ? rtnl_link_get_net_capable+0x16a/0x350
[  209.912815][T11011]  rtnl_newlink+0x149f/0x1c70
[  209.917487][T11011]  ? netlink_sendmsg+0x805/0xb30
[  209.922424][T11011]  ? __pfx_rtnl_newlink+0x10/0x10
[  209.927459][T11011]  ? kasan_quarantine_put+0xdd/0x220
[  209.932730][T11011]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.937922][T11011]  ? nlmon_xmit+0xb0/0x100
[  209.942324][T11011]  ? kmem_cache_free+0x18f/0x400
[  209.947255][T11011]  ? __local_bh_enable_ip+0x12d/0x1c0
[  209.952613][T11011]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.957802][T11011]  ? __local_bh_enable_ip+0x12d/0x1c0
[  209.963160][T11011]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  209.968868][T11011]  ? __dev_queue_xmit+0x27b/0x3b50
[  209.973973][T11011]  ? __dev_queue_xmit+0x27b/0x3b50
[  209.979068][T11011]  ? __dev_queue_xmit+0x27b/0x3b50
[  209.984170][T11011]  ? __dev_queue_xmit+0x1d79/0x3b50
[  209.989358][T11011]  ? __lock_acquire+0xab9/0xd20
[  209.994231][T11011]  ? __pfx_rtnl_newlink+0x10/0x10
[  209.999245][T11011]  rtnetlink_rcv_msg+0x7cf/0xb70
[  210.004174][T11011]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  210.009275][T11011]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  210.014721][T11011]  ? ref_tracker_free+0x63a/0x7d0
[  210.019734][T11011]  ? __asan_memcpy+0x40/0x70
[  210.024337][T11011]  ? __pfx_ref_tracker_free+0x10/0x10
[  210.029713][T11011]  netlink_rcv_skb+0x205/0x470
[  210.034468][T11011]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  210.039916][T11011]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  210.045200][T11011]  ? netlink_deliver_tap+0x2e/0x1b0
[  210.050398][T11011]  netlink_unicast+0x82c/0x9e0
[  210.055161][T11011]  ? __pfx_netlink_unicast+0x10/0x10
[  210.060436][T11011]  ? netlink_sendmsg+0x642/0xb30
[  210.065356][T11011]  ? skb_put+0x11b/0x210
[  210.069593][T11011]  netlink_sendmsg+0x805/0xb30
[  210.074348][T11011]  ? __pfx_netlink_sendmsg+0x10/0x10
[  210.079626][T11011]  ? aa_sock_msg_perm+0xf1/0x1d0
[  210.084548][T11011]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  210.089843][T11011]  ? __pfx_netlink_sendmsg+0x10/0x10
[  210.095112][T11011]  __sock_sendmsg+0x21c/0x270
[  210.099781][T11011]  ____sys_sendmsg+0x505/0x830
[  210.104537][T11011]  ? __pfx_____sys_sendmsg+0x10/0x10
[  210.109815][T11011]  ? import_iovec+0x74/0xa0
[  210.114311][T11011]  ___sys_sendmsg+0x21f/0x2a0
[  210.118976][T11011]  ? __pfx____sys_sendmsg+0x10/0x10
[  210.124186][T11011]  ? __fget_files+0x2a/0x420
[  210.128768][T11011]  ? __fget_files+0x3a0/0x420
[  210.133434][T11011]  __x64_sys_sendmsg+0x19b/0x260
[  210.138360][T11011]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  210.143824][T11011]  ? rcu_is_watching+0x15/0xb0
[  210.148575][T11011]  ? do_syscall_64+0xbe/0x3b0
[  210.153239][T11011]  do_syscall_64+0xfa/0x3b0
[  210.157724][T11011]  ? lockdep_hardirqs_on+0x9c/0x150
[  210.162910][T11011]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.168961][T11011]  ? clear_bhb_loop+0x60/0xb0
[  210.173624][T11011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.179502][T11011] RIP: 0033:0x7f8329d8ebe9
[  210.183903][T11011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.203494][T11011] RSP: 002b:00007f832abc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  210.211895][T11011] RAX: ffffffffffffffda RBX: 00007f8329fc6090 RCX: 00007f8329d8ebe9
[  210.219851][T11011] RDX: 0000000004000000 RSI: 0000200000000200 RDI: 0000000000000006
[  210.227805][T11011] RBP: 00007f8329e11e19 R08: 0000000000000000 R09: 0000000000000000
[  210.235758][T11011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  210.243726][T11011] R13: 00007f8329fc6128 R14: 00007f8329fc6090 R15: 00007ffef8cda618
[  210.251700][T11011]  </TASK>
[  210.254930][T11011] Kernel Offset: disabled
[  210.259243][T11011] Rebooting in 86400 seconds..