last executing test programs:

2.301145428s ago: executing program 2 (id=816):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}}, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4800000010005fff00000500000000000600000075383a5944846283d6d109d243151479ffe968e920590840da01ed75aa7f05e09ef2dec79737c80859f37ce82745adc72e678be4df92", @ANYRES16, @ANYRES16=r1], 0x3}}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4800000010005fff00000500000000000600000075383a5944846283d6d109d243151479ffe968e920590840da01ed75aa7f05e09ef2dec79737c80859f37ce82745adc72e678be4df92", @ANYRES16, @ANYRES16=r1], 0x3}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000880)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000880)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0)
close(r2)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$SIOCSIFHWADDR(r2, 0x8b19, &(0x7f0000000000)={'wlan1\x00', @random='\rh\x00 \x00'})
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000201000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000058000000060a010400000000000000000100000008004b4000000000300004802c000180090001007866726d000000001c0002800500030000000000080001400000000008000240000000060900010073797a3000000000140000001100010000000000000000000000000aaf374256e63fa196e536d4fc091402d56e8fea1b6e8ad1055bc3823cc6e40c36daa33bc48578b1fb694879227bdccc937ac4ada303e6dbedac7f065bb31a90998cdd4ff95383c579386aba568457d9c050020d6cbd6c61d6a1d4deae5f4c7de9e860632b98e5518fc4d8bd7f09762c4512f014ad5348214bea0e4dac685fa8"], 0xcc}}, 0x0) (async)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0xcc}}, 0x0)

2.208299168s ago: executing program 2 (id=818):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140), 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_IPV4_SRC={0x8, 0x1b, @remote}]}}]}, 0x3c}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0xfffffff1)

2.207927919s ago: executing program 2 (id=819):
socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r5 = socket$kcm(0x2, 0x0, 0x2)
r6 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r6, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00', {}, 0x9ddd})
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000340))
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
bind$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r4, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000240)={0x0, 0xffffffffffffff34, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="fc1302d5", @ANYRES16=r2, @ANYBLOB="01000000000000000000010000000500050007000000"], 0x1c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000a40)={'wlan0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_KEY(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x42, 0x40, 0x42}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000001a40), 0x1003, r9}, 0x38)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TLS_TX(r10, 0x29, 0x12, 0x0, 0x48)

2.099553704s ago: executing program 0 (id=821):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x16}, 0x80)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r0, 0x0, 0x0, 0xfe99, 0x0, 0x0, 0x0, 0x0, 0xfe99, 0x0, &(0x7f00000001c0)='N', 0x0}, 0x48)

2.042926884s ago: executing program 0 (id=823):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000880)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_DAEMON(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000800)=ANY=[@ANYBLOB="140000003af8d38b0c871c3b654cd8fb7f623bc6e3fc000000000000000c692a1859402569426b3416429eb288460baf3c38995e39028bd2", @ANYRES16=r1, @ANYBLOB="0d03000000000400000004000000"], 0x14}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r3}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000020a050000000000000000008200000009001c007379140000001100010000000000000000000000000a000000000000"], 0x48}}, 0x0)
r7 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8)
socket(0x11, 0x800000003, 0xfffffffd)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002220207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000600000085000000040000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='tlb_flush\x00', r8}, 0x10)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r9, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000680)=ANY=[@ANYBLOB="28010000170001000000000000000000e00000020000000000000000000000000000000000000000fe800000000000000000000000000000000000000000000000c2000000000001ac1414bb00000000000000000010000000000000000000000000000000080000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0000002000000000000000000000000fe8000000000000000000000000000aa00000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008d00"/128], 0x128}}, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000004001a80140003006970766c616e31000000000000000000140012800b0001006970766c616e0000040002809a3601050e401b079518371aa2f81d50ef6173205883dff76258b0b1c4622b0bf8ab6375fb8471a4e495bb9f4286a226a5886844dfe04b0b43eb76d0a0a49a7df748a1b8788eedceff95a2df0e59fa1c46b3c53cc65ba49c7b06953905133223e4018fbcee426ad8c2ae71a3521d90a4657e1b6223954d008700587dca517cfa6f6e3477659c43b2b03032d4486feb7431d211e442dc2e1b58cb"], 0x4c}}, 0x0)
r11 = socket$inet(0x2, 0x5, 0x0)
r12 = socket$phonet(0x23, 0x2, 0x1)
r13 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r12, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r14=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r13, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r14, @ANYBLOB="0a00180003030303030300001c005a8018000180140003000000000000000000000020"], 0x44}}, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000001a40)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "1200b0", 0x30, 0x3a, 0x0, @empty, @mcast2, {[], @dest_unreach={0xa0, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "277382", 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
shutdown(r11, 0x0)
recvmmsg(r11, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)
close(r7)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000001040), 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

1.818814616s ago: executing program 2 (id=826):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000400)=[{0x34}]}, 0x10)

1.696142686s ago: executing program 2 (id=828):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0xf3a, 0x0)
ioctl$sock_inet_sctp_SIOCINQ(r2, 0x5760, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f00000000c0)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58)
bind$alg(r5, &(0x7f00000001c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha256\x00'}, 0x58)
sendmmsg$unix(r0, &(0x7f0000004ec0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x2, &(0x7f0000000000)=0x8000, 0x4)
recvmmsg(0xffffffffffffffff, &(0x7f0000000f00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=""/47, 0x2f}}], 0x1, 0x0, 0x0)
r6 = socket(0x10, 0x3, 0x0)
setsockopt$CAN_RAW_FD_FRAMES(r6, 0x65, 0x5, &(0x7f0000000200), 0x4)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000580)={'team0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0x1c4, 0x24, 0xd0b, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@TCA_STAB={0x1a0, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x3, 0x4, 0x81, 0x8, 0x0, 0x77, 0xd0bf, 0x2}}, {0x8, 0x2, [0x1ff, 0x401]}}, {{0x1c, 0x1, {0x2, 0x3, 0x9, 0x1, 0x2, 0xc, 0xfffffff3, 0x9}}, {0x16, 0x2, [0x800, 0x4f, 0x8, 0x1, 0xa911, 0x8, 0x6c4d, 0xfff7, 0xfffb]}}, {{0x1c, 0x1, {0x1, 0x0, 0xfff8, 0x0, 0x2, 0xa, 0x401, 0x1}}, {0x6, 0x2, [0xd30d]}}, {{0x1c, 0x1, {0x4, 0x3, 0x3ff, 0x4, 0x1, 0xfffffffb, 0x8001, 0x4}}, {0xc, 0x2, [0x7, 0x5, 0xff, 0x34]}}, {{0x1c, 0x1, {0x1, 0x4, 0xb5, 0x8, 0x2, 0x10001, 0xea, 0x7}}, {0x12, 0x2, [0xfb3, 0x200, 0x4c, 0x1, 0x7, 0xf1ee, 0x4]}}, {{0x1c, 0x1, {0x2, 0x9, 0x1, 0x400, 0x2, 0xfffffffe, 0x6}}, {0x4}}, {{0x1c, 0x1, {0x9, 0x4a, 0x6b, 0x2, 0x1, 0x7, 0x1acf, 0xa}}, {0x18, 0x2, [0x0, 0x7, 0x8, 0x0, 0x5, 0x2800, 0x9, 0x8, 0x0, 0x1]}}, {{0x1c, 0x1, {0x31, 0x3, 0x0, 0x75b9, 0x0, 0xe5, 0x9, 0x3}}, {0xa, 0x2, [0xf3, 0x6, 0x1000]}}, {{0x1c, 0x1, {0x3, 0x4, 0x8000, 0xffe000, 0x1, 0x2, 0x5, 0x2}}, {0x8, 0x2, [0x81, 0xc663]}}, {{0x1c, 0x1, {0x7, 0x3a, 0x94, 0x0, 0x0, 0x44c, 0x5, 0x4}}, {0xc, 0x2, [0xa1e, 0xffff, 0x0, 0x4]}}]}]}, 0x1c4}, 0x1, 0x8100000000000000}, 0x4000)

1.694994021s ago: executing program 0 (id=829):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_pressure(r0, &(0x7f0000000040)='io.pressure\x00', 0x2, 0x0)
openat$cgroup_pressure(r0, &(0x7f00000000c0)='io.pressure\x00', 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)={0x2c, 0x13, 0x821, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd=r2}, @typed={0x6, 0x0, 0x0, 0x0, @str='!\xa5'}, @typed={0xc, 0x1, 0x0, 0x0, @u64}]}, 0x2c}], 0x1}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000002740)={&(0x7f0000000040)={0x34, r4, 0x301, 0x0, 0x0, {0x4e}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@RTM_NEWMDB={0x38, 0x54, 0x1e5, 0x0, 0x0, {0x7, r7}, [@MDBA_SET_ENTRY={0x20, 0x1, {r7, 0x0, 0x0, 0x0, {@in6_addr=@ipv4={'\x00', '\xff\xff', @empty}, 0x800}}}]}, 0x38}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003811400010076657468305f746f5f6873720000000048000000180a0101000b000000000000010000000900020073797a30000000000900010073797a30000000001c000380180003801400010076657468305f746f5f687372"], 0xe8}}, 0x0)

1.616510687s ago: executing program 3 (id=831):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0x6c, 0x30, 0x9, 0x0, 0x0, {}, [{0x58, 0x1, [@m_bpf={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x2}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0xfffffffc}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r2, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000000)={0x4c, r3, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_DEVKEY={0x2c, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x14, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}]}]}]}, 0x4c}}, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r4 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r4, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)={0x18, 0x2a, 0x9, 0x0, 0x0, {0x4, 0x0, 0x2c00}, [@nested={0x4, 0x18}]}, 0x18}}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
writev(r6, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = accept4$phonet_pipe(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
getsockopt$PNPIPE_INITSTATE(r7, 0x113, 0x4, &(0x7f00000001c0), &(0x7f0000000300)=0x4)
setsockopt$inet_mreqsrc(r4, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0xb, 0x4, &(0x7f0000000100)=@framed={{0x62, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x4a}, [@jmp={0x5, 0x0, 0x8, 0x4, 0x1, 0x0, 0xffffffffffffffeb}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x0, 0x0, 0xd, 0x2}, @union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x4}]}]}}, &(0x7f0000000f40)=""/4089, 0x3e, 0xff9, 0xa}, 0x20)

1.540236353s ago: executing program 0 (id=832):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0xf3a, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1f, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014001000b7030000000000008500000083000000bf0900000000000055090100000000009500020000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r4, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001580)=ANY=[@ANYBLOB="1000000009148307"], 0x10}, 0x1, 0xffffff7f00000000}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000700), r5)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
write$tun(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="0a000000aaaaaaaaaa00aaaaaaaaaabb88a80000810000006edd4500002c000006003a1f9078ac1e00010000000000000000001890780400"/70], 0x46)
ioctl$sock_inet_sctp_SIOCINQ(r2, 0x5760, 0x0)
sendmmsg$unix(r0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x2, &(0x7f0000000000)=0x8000, 0x4)
recvmmsg(0xffffffffffffffff, &(0x7f0000000f00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=""/47, 0x2f}}], 0x1, 0x0, 0x0)

1.516382209s ago: executing program 2 (id=834):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r0, 0x0, r1, 0x0, 0xf3a, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)={0x10, 0x5e, 0xe25}, 0x10}], 0x1}, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000700), r3)

1.340388925s ago: executing program 3 (id=837):
socket$alg(0x26, 0x5, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, 0x0, 0x0)
socketpair(0x25, 0x5, 0x0, &(0x7f0000000580))
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x6, 0x18, 0x0, 0x0, 0xf1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000005c0), 0x8}, 0x90)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)={0x20, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0)

1.246402618s ago: executing program 3 (id=840):
socket(0x0, 0x2, 0x0)
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'ipvlan1\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="9400000013004f0a000200"/20, @ANYRES32=r4, @ANYBLOB="00000000000000000800cfffecc507006c001a8054000a80140007"], 0x94}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x8f8, 0x0)
r5 = socket(0x0, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x50}}, 0x0)
setsockopt$TIPC_IMPORTANCE(r5, 0x10f, 0x7f, &(0x7f0000000cc0), 0x4)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x990, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"/2448]}, 0xa08)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r7, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r8, 0xc0c0583b, &(0x7f0000000d40)={0x0, 0x2904c, 0x3fffffffffffe52, 0x10003, '\x00', [{}, {0xffffffff}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x6, 0x2, 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000000000007201320422000000950000000000"], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180300000005000000000000000000001801000011af000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000838500000071000000180100002020752500000000806020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r9}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="01000000000000f6ffff050000000800090002000000"], 0x24}}, 0x0)
socket$inet(0x2b, 0x801, 0x0)
sendto$inet(r5, 0x0, 0x0, 0x240008d4, 0x0, 0x0)

866.733902ms ago: executing program 1 (id=848):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0x6c, 0x30, 0x9, 0x0, 0x0, {}, [{0x58, 0x1, [@m_bpf={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x2}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0xfffffffc}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r2, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000000)={0x4c, r3, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_DEVKEY={0x2c, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x14, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}]}]}]}, 0x4c}}, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r4 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r4, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)={0x18, 0x2a, 0x9, 0x0, 0x0, {0x4, 0x0, 0x2c00}, [@nested={0x4, 0x18}]}, 0x18}}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
writev(r6, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = accept4$phonet_pipe(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
getsockopt$PNPIPE_INITSTATE(r7, 0x113, 0x4, &(0x7f00000001c0), &(0x7f0000000300)=0x4)
setsockopt$inet_mreqsrc(r4, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0xb, 0x4, &(0x7f0000000100)=@framed={{0x62, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x4a}, [@jmp={0x5, 0x0, 0x8, 0x4, 0x1, 0x0, 0xffffffffffffffeb}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x0, 0x0, 0xd, 0x2}, @union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x4}]}]}}, &(0x7f0000000f40)=""/4089, 0x3e, 0xff9, 0xa}, 0x20)

700.840719ms ago: executing program 4 (id=851):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x7, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000300)={0x0, 0x0, 0x2}, 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='rcu_utilization\x00', r0}, 0xffffffffffffff92)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f00000004c0)={'wpan0\x00'})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x4c050}, 0x0)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0x5, &(0x7f0000000040)={&(0x7f0000000840)=ANY=[@ANYRESOCT=r2], 0x450}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
epoll_create1(0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='blkio.bfq.io_serviced\x00', 0x275a, 0x0)
close(r5)
socket$packet(0x11, 0x2, 0x300)
accept$packet(r4, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={0x0}}, 0x8044)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYRES16=r6, @ANYBLOB="f784b8b7001222f9c354b498d092759d05950e9365198ba29df2f9efca8ea7c7105194027678b49e089b6c29682666d43287d910cf56c764a56afe21843190b8c97baab4235963a53eee58497ad91a317fdd5c48eb26fdbcea89cc3b59efb98d3f6f29e304", @ANYRES64], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffef0}, 0x90)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, 0x0, 0x0, 0x0, 0x52, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000440)=ANY=[@ANYBLOB="300000001000"/20, @ANYRES32=r7, @ANYRES32], 0x30}, 0x1, 0x0, 0x0, 0x881}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000040000000160a01010000000000000000010000000900010073797a30000000000900020073797a3000000000140003800800024000000000080001400000000040000000160a01010000000000000000010000000900020073797a30001c00000900010073797a3000000000140003"], 0xc8}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000540)='f2fs_issue_flush\x00'}, 0x7)
r9 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r9, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r9, &(0x7f0000000000)={&(0x7f0000000880)=@l2tp6={0xa, 0x1100, 0x0, @mcast1, 0x5}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000780)="f4000900062b2f25fe80000000000000dc8b850f238466cc00007a000000ad6e911b51818462b400", 0x28}], 0x1}, 0x0)

686.799214ms ago: executing program 1 (id=852):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x26, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r1, 0x8994, &(0x7f00000008c0)={'team0\x00', 0xe761})

648.691065ms ago: executing program 0 (id=853):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40041, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000019000000000000000000004500002800000000008490783fffffffac1414aa00000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5400000090040000"], 0x36)
r2 = socket$inet6(0xa, 0x2, 0x1)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@empty, @in6=@dev, 0x0, 0x0, 0x0, 0x1000, 0xa}, {0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x3}}, {{@in=@multicast1, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, 0xe8)
socket$inet6(0xa, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)=@ipv6_newrule={0x38, 0x20, 0x1, 0x0, 0x0, {0xa, 0x80}, [@FIB_RULE_POLICY=@FRA_SPORT_RANGE={0x8, 0x17, {0x4e20, 0x4e22}}, @FRA_DST={0x14, 0x1, @private2}]}, 0x38}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="3000000003010101000000000a00000010000280"], 0x30}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$OSF_MSG_REMOVE(r4, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000080)={&(0x7f0000000680)={0x4bc, 0x1, 0x5, 0x101, 0x0, 0x0, {0xa, 0x0, 0x2}, [{{0x254, 0x1, {{0x2, 0x400}, 0x5, 0x3a, 0x100, 0x5, 0xe, 'syz1\x00', "c22ac6ffd5cbbed2b40fa0af1421845a375c4db9cc6eecfe2290243d81f46623", "8a54d35a416ddb8fb4f55516e070d92976ccfebb8e540784c628c56cbfd1ae30", [{0x75, 0xca, {0x1, 0x9}}, {0x98, 0x6d1d, {0x1, 0x9}}, {0x81, 0x6, {0x0, 0x2}}, {0xffff, 0x8, {0x1, 0x3f}}, {0x3, 0x2, {0x2, 0x1}}, {0xff, 0x8001, {0x2, 0x7b8}}, {0xfff7, 0x0, {0x3, 0x4}}, {0x20, 0x80, {0x2, 0x808c}}, {0x9, 0xf32, {0x3, 0x3f}}, {0x6, 0x4, {0x2, 0x5f}}, {0xfff, 0x1, {0x1, 0x1000}}, {0x0, 0x5, {0x3, 0x6}}, {0xff03, 0x8, {0x3, 0xff}}, {0xfff, 0x1ff, {0x0, 0xffffffff}}, {0x4, 0x7f, {0x3, 0xaf}}, {0x100, 0xfffd, {0x2, 0x3}}, {0x800, 0x0, {0x1, 0x6}}, {0xc9, 0x200, {0x3, 0x4}}, {0x604, 0x1, {0x3, 0x4}}, {0x200, 0x0, {0x0, 0xf63}}, {0xea01, 0x40, {0x0, 0x1}}, {0x8, 0x7, {0x3, 0x1}}, {0x6e, 0xfe01, {0x3, 0x1}}, {0x800, 0x7f, {0x2, 0x200}}, {0x7, 0x66, {0x2}}, {0x8, 0x5, {0x2, 0x1}}, {0x800, 0x8000, {0x3, 0x800}}, {0x9, 0x100, {0x4, 0x213c}}, {0xff00, 0x3, {0x0, 0xffffffff}}, {0xd500, 0x0, {0x0, 0x4ab}}, {0x7, 0x7, {0x2, 0x8}}, {0xfff, 0x3, {0x1, 0x8001}}, {0x9, 0x9f69, {0x1, 0x6}}, {0x9, 0xd, {0x0, 0x5}}, {0x100, 0x5, {0x2, 0x5}}, {0x5, 0xff80, {0x0, 0x9}}, {0xc7, 0x2, {0x3, 0xfffffff9}}, {0x6, 0x3f, {0x1, 0x3}}, {0x401, 0x7fff, {0x3, 0x6}}, {0x8809, 0x7, {0x1, 0x7fff}}]}}}, {{0x254, 0x1, {{0x1, 0x4}, 0x0, 0x1, 0x0, 0xa0e1, 0x1d, 'syz1\x00', "adb97be7eabdb0f471c616b60207090c84401db722402e7db69faaa8f82e1725", "47058ea5fdec3dc405fe99f0b5714ed0bbde2d877d1992d99e92af2ef0c94ad2", [{0x7, 0x0, {0x3, 0x6}}, {0x9, 0x20, {0x1}}, {0x200, 0xfb3, {0x0, 0x1ff}}, {0x1, 0x0, {0x3}}, {0x5, 0xbfc0, {0x2, 0x7}}, {0x3, 0x4, {0x2, 0x6}}, {0x6, 0x6, {0x2, 0x8}}, {0xffff, 0x1ff, {0x2, 0x5}}, {0x9, 0x40, {0x3, 0x4}}, {0x7, 0x9, {0x1, 0x6}}, {0x8, 0xfeff, {0x3}}, {0x6a5, 0x1, {0x0, 0x2}}, {0x4, 0xfff, {0x2, 0xe61}}, {0x3f0, 0xc9, {0x3, 0xffff}}, {0x0, 0x1, {0x2, 0x5}}, {0x1, 0x2, {0x2, 0x3}}, {0x9, 0x29c0, {0x3, 0x5}}, {0x4a1, 0x1f, {0x1, 0x7}}, {0xed, 0x4, {0x1, 0x9}}, {0x7, 0x4, {0x2, 0x7}}, {0x401, 0xfcbd, {0x3, 0x44}}, {0x6, 0x5, {0x2, 0x10001}}, {0x3, 0x30, {0x3, 0x7f}}, {0x6, 0xfff9, {0x0, 0x3}}, {0x7, 0x2, {0x1, 0xffff3918}}, {0xfffb, 0x8, {0x2, 0x6}}, {0x0, 0x8, {0x3, 0x5}}, {0x3, 0x7f, {0x2, 0x6}}, {0xffcf, 0x9, {0x1, 0x400}}, {0x100, 0x1, {0x0, 0x4}}, {0x3446, 0x1, {0x0, 0x9}}, {0xff, 0x3, {0x1, 0x6b}}, {0x7, 0x99, {0x1, 0x800}}, {0x3f, 0x56, {0x0, 0x3ff}}, {0x4, 0xffff, {0x0, 0x8}}, {0x7, 0x7fff, {0x0, 0x5}}, {0xb9bd, 0x1f, {0x1, 0x46}}, {0x66c2, 0x5, {0x3, 0x7fffffff}}, {0x6, 0x400, {0x3, 0x7fffffff}}, {0xffd3, 0x4, {0x3, 0x7}}]}}}]}, 0x4bc}, 0x1, 0x0, 0x0, 0x4885}, 0x42800)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="340000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="00005f5a000000000c003f8008000100", @ANYRES32, @ANYBLOB="08001b"], 0x34}}, 0x0)
syz_emit_ethernet(0x92, &(0x7f00000005c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0xf, 0x4, 0x0, 0x0, 0x84, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local, {[@cipso={0x86, 0x27, 0x3, [{0x1, 0x4, "8443"}, {0x5, 0x12, "fbca4dbda44efa5bf82d704b6c6c7fef"}, {0x2, 0xb, "871be7f879fe6353df"}]}]}}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x12, 0xc2, 0x0, 0x0, 0x0, {[@mss={0x2, 0x4}, @md5sig={0x13, 0x12, "c839616c0500cb080000000000e79490"}, @sack={0x5, 0xe, [0x0, 0x0, 0x0]}, @sack={0x5, 0xe, [0x0, 0x0, 0x0]}, @eol]}}}}}}}, 0x0)

588.135009ms ago: executing program 1 (id=854):
socket$packet(0x11, 0x3, 0x300)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ab4000000060a01040000000000000000020000280900010073797a30000000000900020073797a320000000088000480100001800c000100636f756e7465720014000180090001006d6173710000000004000280600001800a0001006c696d6974000000500002800c000140000000000000000808000440000000010c00014000000000000080010c00024000000000000000090800034000000fba0c00024000000000000000000c000140000000000000000714000000110001"], 0xdc}}, 0x0)
r1 = socket(0x0, 0x0, 0x0)
bind$inet(r1, 0x0, 0x0)
r2 = socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0)
r3 = accept4$phonet_pipe(r2, &(0x7f0000000100), &(0x7f0000000140)=0x10, 0x0)
getsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, &(0x7f0000000180), &(0x7f0000000280)=0x4)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x14, 0x19, 0xa, 0x201}, 0x14}}, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000040)=@filter={'filter\x00', 0xe, 0x4, 0x268, 0xffffffff, 0xf8, 0xf8, 0x0, 0xffffffff, 0xffffffff, 0x2c0, 0x2c0, 0x2c0, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @private, 0x0, 0x0, 'veth0_to_hsr\x00', 'veth0_vlan\x00'}, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c8)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="6c00000010000100000000a99ae8810007000000", @ANYRES32=r6, @ANYBLOB="00000000000000004c00168048000180280001"], 0x6c}}, 0x0)
r7 = socket(0x10, 0x803, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r4, 0x40806685, &(0x7f00000003c0)={0x1, 0x0, 0x1000, 0x7e, &(0x7f0000000100)="7b2f43fe52a1594933ed719976e7ee9720c5f02c912f2e6158163129ca676738dfcb9989d000a09ca7e52f369e56dd7e147b83fc0d7aecf13058893a9d5744e9efd49d6844511ee7e75284be939f582eef17c17edabf2673dbb30980ef1f3e54c1a9c5415c9a2a02174929f937dfb0b108ca9d5d6335e7cb7b81397587c3", 0xb1, 0x0, &(0x7f0000000200)="e183af3712a60a0267dae8fb63c5dbea95576b6bd8e2091e4de9cf4d0aa6d528d0df5476b40bc5ca21abb1d132e725e7e5828cf908e10e3c5e426d6f0d009165f5f5403a0a7571b1c40bf89a9a7a99ee341efb06e855fe0527d66ee0b734232821fa7a4c1b31d9e0a1770ae02650e98acd12fc92ad6f0a38298be5f984008ad3c8c68b8c6bc6a345e89a9e73e52795ecda3586ad185e01ee156ff68db46aae250aedfb9508537a26b2973eeb06b5e337d6"})
sendmsg$SMC_PNETID_GET(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r9, &(0x7f0000000000)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x3c)
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000840)=@ipv6_deladdrlabel={0x6c, 0x49, 0x1, 0x70bd2a, 0x0, {0xa, 0x0, 0x0, 0x0, r10, 0x3}, [@IFAL_ADDRESS={0x14, 0x1, @mcast2}, @IFAL_ADDRESS={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @loopback}}, @IFAL_ADDRESS={0x14, 0x1, @rand_addr=' \x01\x00'}, @IFAL_ADDRESS={0x14, 0x1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}, 0x6c}}, 0x8000)
getsockname$packet(r7, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000500), r7)
syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r9)

517.037451ms ago: executing program 4 (id=855):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000009c0)={0x0, 0x7a, &(0x7f0000000100)={&(0x7f00000002c0)=@newtaction={0x4c, 0x1e, 0x109, 0x5000300, 0x0, {}, [{0x38, 0x1, [@m_mirred={0x34, 0x8, 0x0, 0x0, {{0xb, 0x9}, {0x4}, {0x6, 0x6, "0300"}, {0xc}, {0xc}}}]}]}, 0x4c}, 0x1, 0x2b1e}, 0x0)
accept$alg(0xffffffffffffffff, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)

399.825127ms ago: executing program 1 (id=856):
syz_emit_ethernet(0x5e, &(0x7f0000000600)=ANY=[@ANYBLOB="aaaaaaaaaabb86dd603000bb00282b"], 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002500)=ANY=[@ANYBLOB="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"/3717], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000500)="b958945d8ae49c4f19be14f06558", 0x0, 0x38, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48)

350.740476ms ago: executing program 4 (id=857):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
r1 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty, 0x80}, 0x1c)
listen(r1, 0xc)
syz_genetlink_get_family_id$smc(&(0x7f00000003c0), r0)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r2, 0x10d, 0xa, &(0x7f00001c9fff)="03", 0x19)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10)
socket$inet6(0xa, 0x1, 0x7fffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000095c0), 0xffffffffffffffff)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x10, 0x0, 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000009a00)={0x0, 0x0, &(0x7f00000099c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0001000a002302000004000000200000000000000000000000000000c79462a79ba3c55250ee58956a2a6e6dba0500e7b7d4fcbb94600a6b1662d95a2f5145383605"], 0x28}}, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r6 = accept4(r5, 0x0, 0x0, 0x0)
ioctl$sock_netrom_SIOCADDRT(r6, 0x890b, &(0x7f0000000400)={0x1, @bcast, @bpq0, 0x8, 'syz0\x00', @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x9f, 0x1, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]})
sendmsg$alg(r6, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
sendmsg$nl_netfilter(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000003080)=ANY=[], 0xbb4}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYRES64=0x0], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a8c000000060a0104000000000000000002000000600004805c0001800b00010065787468647200004c00028008000540020000e1080001400000000f080003400000005b08000440000000b605000200830000000800074000000009080001400000000108000340000000fe08000340000000540900010073797a30000000000900020073797a32"], 0xb4}}, 0x0)
recvmmsg(r6, &(0x7f00000006c0)=[{{0x0, 0x0, &(0x7f0000000a80)=[{&(0x7f0000000640)=""/13, 0xd}, {&(0x7f0000000840)=""/218, 0xda}], 0x2}}], 0x1, 0x0, 0x0)

350.14754ms ago: executing program 3 (id=858):
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
listen(0xffffffffffffffff, 0x0)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r1, 0x10d, 0x9c, &(0x7f00000001c0), &(0x7f0000000080)=0x4)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)

295.870129ms ago: executing program 1 (id=859):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='mmap_lock_acquire_returned\x00', r0}, 0x10)
close(0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x12, &(0x7f0000000000)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe6}, {}, {}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @map_idx={0x18, 0xe, 0x5, 0x0, 0x10}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000000c0)='GPL\x00', 0x800, 0x15, &(0x7f0000000100)=""/21, 0x41100, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000140)={0x0, 0x1, 0x56}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000180)=[0x1, 0x1, 0x1], 0x0, 0x10, 0x9}, 0x90) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x12, &(0x7f0000000000)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe6}, {}, {}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @map_idx={0x18, 0xe, 0x5, 0x0, 0x10}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000000c0)='GPL\x00', 0x800, 0x15, &(0x7f0000000100)=""/21, 0x41100, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000140)={0x0, 0x1, 0x56}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000180)=[0x1, 0x1, 0x1], 0x0, 0x10, 0x9}, 0x90)
ioctl$EXT4_IOC_GET_ES_CACHE(r1, 0xc020662a, &(0x7f0000000280)={0x1800, 0xff, 0x5, 0x6, 0x1, [{0xffffffffffffffff, 0x5d10, 0x1, '\x00', 0x400}]})
socket$l2tp(0x2, 0x2, 0x73) (async)
r2 = socket$l2tp(0x2, 0x2, 0x73)
openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = accept4$llc(0xffffffffffffffff, 0x0, &(0x7f0000000600), 0x0)
r5 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1400000016000b63", 0x8}], 0x1}, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000040)=ANY=[@ANYBLOB="110000006a"], 0xfe33) (async)
write$cgroup_subtree(r5, &(0x7f0000000040)=ANY=[@ANYBLOB="110000006a"], 0xfe33)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000780)={'nr0\x00', &(0x7f0000000680)=@ethtool_regs={0x4, 0x7fffffff, 0xe3, "4f51a828c31135d518b8b3c87bd9b7df219b61354bee421c8e187f368ff094ed128c214aaad1128aa9a7d44dce39840cd7c9a5458efac485e15d54d7a2a1c44ff976d0ebe64e96e50b5df88c22f14cd23a060ed8677ffa9b60d73e40341d4b708b2b57ca6b1458d96aaf64e5eb5510618845f2745e3731f99656de86bc36100bae74755d2ce29096091c834d136affc8bb2e9fdd9e43b9d2b18b2df809de6f40cc53faa4969103fec8e368a4681be9f2c7e839f534561fb9beed83830d0b76dd6ca2c460d5c889d40c31cd9a898fecf776c03241b21d8c40e8e49f097a23f48aec4af4"}})
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r3, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000580)={&(0x7f00000007c0)={0x1b8, 0x3, 0x1, 0x401, 0x0, 0x0, {0x5, 0x0, 0x2}, [@CTA_STATUS={0x8}, @CTA_NAT_DST={0xbc, 0xd, 0x0, 0x1, [@CTA_NAT_PROTO={0x34, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}]}, @CTA_NAT_V4_MINIP={0x8, 0x1, @rand_addr=0x64010100}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @empty}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast1}, @CTA_NAT_PROTO={0x4c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}]}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast2}]}, @CTA_TUPLE_ORIG={0x40, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x9}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @rand_addr=0x64010101}}}]}, @CTA_NAT_DST={0xa0, 0xd, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @remote}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @local}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @private2={0xfc, 0x2, '\x00', 0x1}}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, @CTA_NAT_V6_MINIP={0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x21}}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @private1}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @rand_addr=0x64010100}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}]}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x1}, 0x1)
write$binfmt_misc(r2, 0x0, 0x0) (async)
write$binfmt_misc(r2, 0x0, 0x0)
ioctl$HCIINQUIRY(r4, 0x800448f0, &(0x7f0000000640)={0x0, 0xd108, "7d83f2", 0x8}) (async)
ioctl$HCIINQUIRY(r4, 0x800448f0, &(0x7f0000000640)={0x0, 0xd108, "7d83f2", 0x8})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001e000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00T'], 0x24}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x20, r8, 0x300, 0x0, 0x0, {{}, {@void, @val={0xc, 0x99, {0xa9, 0x16}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x8010}, 0x0)

294.844016ms ago: executing program 0 (id=860):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff})
openat$cgroup_ro(r1, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x20, 0x4, 0x0, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000004}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x22, &(0x7f0000000180)=r0, 0x4)
r3 = socket$kcm(0x10, 0x2, 0x0)
recvmsg$kcm(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000a40)=""/4072, 0xfe8}], 0x1}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000001ec0)=ANY=[@ANYBLOB="0040000b3a00913a74067388481f9c0e0a"], 0xfe33)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8947, 0x0)
socket$kcm(0x10, 0x0, 0x10)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x0, 0x3, &(0x7f00000006c0)=ANY=[], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='i2c_reply\x00'}, 0x10)
syz_genetlink_get_family_id$gtp(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
sendmsg$AUDIT_TTY_SET(0xffffffffffffffff, 0x0, 0x0)

242.714521ms ago: executing program 4 (id=861):
socket$alg(0x26, 0x5, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, 0x0, 0x0)
socketpair(0x25, 0x5, 0x0, &(0x7f0000000580))
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x6, 0x18, 0x0, 0x0, 0xf1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000005c0), 0x8}, 0x90)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)={0x20, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0)

224.409975ms ago: executing program 3 (id=862):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=@base={0x6, 0x4, 0x1000, 0x89}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000840)={0x0, &(0x7f0000000780)=""/106, &(0x7f0000000740), &(0x7f0000001b40), 0x80, r1, 0x0, 0x7}, 0x38)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000500a3d50000000d18116764", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000003000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r4, &(0x7f0000000180), 0x2000)
sendmsg$IPSET_CMD_SAVE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000080603000000000000000000020000000500010007"], 0x1c}}, 0x0)
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
unshare(0x26020480)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f00000028c0)=@filter={'filter\x00', 0x2, 0x4, 0x1428, 0xffffffff, 0x1250, 0x1250, 0x1250, 0xfeffffff, 0xffffffff, 0x1358, 0x1358, 0x1358, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x2f2, 0x1108, 0x1130, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0xfd, 0x0, 0x0, 0x0, './cgroup.cpu/syz0\x00'}}, @common=@frag={{0x30}}]}, @REJECT={0x28}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@common=@eui64={{0x28}}, @common=@mh={{0x28}, {"6bbf"}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffb}}, {{@ipv6={@loopback, @ipv4={'\x00', '\xff\xff', @loopback}, [], [], 'veth1_vlan\x00', 'veth0_to_bridge\x00'}, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@loopback}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1488)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x64, r5, 0x100, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x7d}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x5d}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x37}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x5}, @NL80211_ATTR_COOKIE={0xc}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x35}]}, 0x64}, 0x1, 0x0, 0x0, 0x40004}, 0x2404c000)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000700)={0x0, 0x0, 0x0}, 0x0)
setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x0, 0x0, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000003c0), &(0x7f0000000400)=0xc)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000440)={{{@in=@loopback, @in6=@empty, 0x4e22, 0x80, 0x0, 0x0, 0x2, 0x80, 0x80, 0x21, r8}, {0x7fffffffffffffff, 0x51c3, 0x200, 0x5, 0x4, 0x0, 0x2, 0x8000000000000000}, {0x1ff, 0x3, 0x3}, 0x6, 0x6e6bbb}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4d6, 0x3c}, 0x2, @in6=@loopback, 0x0, 0x0, 0x2, 0x11, 0x40000000, 0x6, 0x7}}, 0xe8)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000200)={r1, 0x58, &(0x7f0000000140)}, 0x10)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000008f8a1bfa9300000000000000"], &(0x7f0000000000)='syzkaller\x00'}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000001c0)='sched_process_wait\x00', r9}, 0x10)

160.259667ms ago: executing program 1 (id=863):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0xf3a, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1f, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014001000b7030000000000008500000083000000bf0900000000000055090100000000009500020000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r4, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001580)=ANY=[@ANYBLOB="1000000009148307"], 0x10}, 0x1, 0xffffff7f00000000}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000700), r5)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
write$tun(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="0a000000aaaaaaaaaa00aaaaaaaaaabb88a80000810000006edd4500002c000006003a1f9078ac1e00010000000000000000001890780400"/70], 0x46)
ioctl$sock_inet_sctp_SIOCINQ(r2, 0x5760, 0x0)
sendmmsg$unix(r0, &(0x7f0000004ec0), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x2, &(0x7f0000000000)=0x8000, 0x4)
recvmmsg(0xffffffffffffffff, &(0x7f0000000f00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=""/47, 0x2f}}], 0x1, 0x0, 0x0)

157.379002ms ago: executing program 4 (id=864):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0x8}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000700)={r1, 0x0, 0x0}, 0x20)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, 0xffffffffffffffff, &(0x7f0000000140))
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='dctcp\x00', 0x6)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60ff00f500140600fe8000000000000000000000000000aafe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="579d953110c991392631a28f62e8ecdf000000"], 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r4, 0x8b25, &(0x7f0000000040))
ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r4, 0x8983, &(0x7f00000001c0)={0x7, 'lo\x00', {0x76db}, 0x2})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r6=>0x0})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x8, 0x4, 0x4, 0x9}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x13, 0x8, &(0x7f0000000940)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7030000070400008500000021000000b70000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x0, 0xe, 0x0, &(0x7f0000000280)="e02742e8680d95ff9782762f22da", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000002c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010800000000000000000b00000008000300", @ANYRES32=r6, @ANYBLOB="2000509b0500020000000000090201004303d29cbc000000130e010009ac0f0054579a8670974b196e1c76f800b697"], 0x3c}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)={0xc4, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @local}}}]}, @CTA_TIMEOUT={0x8}, @CTA_TUPLE_MASTER={0x30, 0xe, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1}, {0x14, 0x4, @remote}}}]}]}, 0xc4}}, 0x0)
r10 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x40086602, &(0x7f0000000000)={'wlan0\x00'})

46.327027ms ago: executing program 3 (id=865):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x7, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000300)={0x0, 0x0, 0x2}, 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='rcu_utilization\x00', r0}, 0xffffffffffffff92)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f00000004c0)={'wpan0\x00'})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x4c050}, 0x0)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0x5, &(0x7f0000000040)={&(0x7f0000000840)=ANY=[@ANYRESOCT=r2], 0x450}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
epoll_create1(0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='blkio.bfq.io_serviced\x00', 0x275a, 0x0)
close(r5)
socket$packet(0x11, 0x2, 0x300)
accept$packet(r4, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={0x0}}, 0x8044)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYRES16=r6, @ANYBLOB="f784b8b7001222f9c354b498d092759d05950e9365198ba29df2f9efca8ea7c7105194027678b49e089b6c29682666d43287d910cf56c764a56afe21843190b8c97baab4235963a53eee58497ad91a317fdd5c48eb26fdbcea89cc3b59efb98d3f6f29e304", @ANYRES64], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffef0}, 0x90)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, 0x0, 0x0, 0x0, 0x52, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000440)=ANY=[@ANYBLOB="300000001000"/20, @ANYRES32=r7, @ANYRES32], 0x30}, 0x1, 0x0, 0x0, 0x881}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000040000000160a01010000000000000000010000000900010073797a30000000000900020073797a3000000000140003800800024000000000080001400000000040000000160a01010000000000000000010000000900020073797a30001c00000900010073797a3000000000140003"], 0xc8}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000540)='f2fs_issue_flush\x00'}, 0x7)
r9 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r9, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r9, &(0x7f0000000000)={&(0x7f0000000880)=@l2tp6={0xa, 0x1100, 0x0, @mcast1, 0x5}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000780)="f4000900062b2f25fe80000000000000dc8b850f238466cc00007a000000ad6e911b51818462b400", 0x28}], 0x1}, 0x0)

0s ago: executing program 4 (id=866):
unshare(0x26020480)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r0, 0x0)
poll(&(0x7f0000000000)=[{r0}], 0x1, 0x4000000)

kernel console output (not intermixed with test programs):

tate
[   56.597541][ T5090] bridge_slave_0: entered allmulticast mode
[   56.604859][ T5090] bridge_slave_0: entered promiscuous mode
[   56.614507][ T5090] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.621801][ T5090] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.629615][ T5090] bridge_slave_1: entered allmulticast mode
[   56.637401][ T5090] bridge_slave_1: entered promiscuous mode
[   56.661039][ T5093] chnl_net:caif_netlink_parms(): no params data found
[   56.692072][ T5086] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.704581][ T5086] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.746624][ T5099] chnl_net:caif_netlink_parms(): no params data found
[   56.785863][ T5086] team0: Port device team_slave_0 added
[   56.808723][ T5090] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.821555][ T5090] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.845963][ T5086] team0: Port device team_slave_1 added
[   56.918098][ T5090] team0: Port device team_slave_0 added
[   56.927540][ T5090] team0: Port device team_slave_1 added
[   56.954196][ T5086] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.961389][ T5086] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.988348][ T5086] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   57.032157][ T5086] batman_adv: batadv0: Adding interface: batadv_slave_1
[   57.039296][ T5086] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.067793][ T5086] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   57.091702][ T5090] batman_adv: batadv0: Adding interface: batadv_slave_0
[   57.099316][ T5090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.125726][ T5090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   57.174666][ T5097] chnl_net:caif_netlink_parms(): no params data found
[   57.186665][ T5090] batman_adv: batadv0: Adding interface: batadv_slave_1
[   57.193709][ T5090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.220793][ T5090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   57.238846][ T5093] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.246046][ T5093] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.253504][ T5093] bridge_slave_0: entered allmulticast mode
[   57.260541][ T5093] bridge_slave_0: entered promiscuous mode
[   57.307418][ T5086] hsr_slave_0: entered promiscuous mode
[   57.314014][ T5086] hsr_slave_1: entered promiscuous mode
[   57.321252][ T5093] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.328556][ T5093] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.335791][ T5093] bridge_slave_1: entered allmulticast mode
[   57.343274][ T5093] bridge_slave_1: entered promiscuous mode
[   57.374347][ T5099] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.381848][ T5099] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.389375][ T5099] bridge_slave_0: entered allmulticast mode
[   57.396135][ T5099] bridge_slave_0: entered promiscuous mode
[   57.405236][ T5099] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.412422][ T5099] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.420004][ T5099] bridge_slave_1: entered allmulticast mode
[   57.427153][ T5099] bridge_slave_1: entered promiscuous mode
[   57.521103][ T5093] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.545035][ T5090] hsr_slave_0: entered promiscuous mode
[   57.553912][ T5090] hsr_slave_1: entered promiscuous mode
[   57.560462][ T5090] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   57.570862][ T5090] Cannot create hsr debugfs directory
[   57.585103][ T5099] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.597358][ T4489] Bluetooth: hci0: command tx timeout
[   57.607964][ T5093] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.624366][ T5099] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.712875][ T5099] team0: Port device team_slave_0 added
[   57.734221][ T5093] team0: Port device team_slave_0 added
[   57.740564][ T5097] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.748428][ T5097] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.755592][ T5097] bridge_slave_0: entered allmulticast mode
[   57.763094][ T5097] bridge_slave_0: entered promiscuous mode
[   57.786948][ T5099] team0: Port device team_slave_1 added
[   57.802383][ T5093] team0: Port device team_slave_1 added
[   57.820597][ T5097] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.828217][ T5097] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.835529][ T5097] bridge_slave_1: entered allmulticast mode
[   57.843623][ T5097] bridge_slave_1: entered promiscuous mode
[   57.849429][ T4489] Bluetooth: hci1: command tx timeout
[   57.916714][ T4489] Bluetooth: hci2: command tx timeout
[   57.925427][ T5097] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.955613][ T5099] batman_adv: batadv0: Adding interface: batadv_slave_0
[   57.962636][ T5099] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.988768][ T5099] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   57.999416][ T4489] Bluetooth: hci3: command tx timeout
[   58.007029][ T4489] Bluetooth: hci4: command tx timeout
[   58.007863][ T5093] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.019541][ T5093] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.045586][ T5093] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.058295][ T5093] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.065266][ T5093] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.091300][ T5093] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.114657][ T5097] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.134906][ T5099] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.142057][ T5099] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.168457][ T5099] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.284510][ T5097] team0: Port device team_slave_0 added
[   58.325095][ T5093] hsr_slave_0: entered promiscuous mode
[   58.332301][ T5093] hsr_slave_1: entered promiscuous mode
[   58.338706][ T5093] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.347060][ T5093] Cannot create hsr debugfs directory
[   58.355093][ T5097] team0: Port device team_slave_1 added
[   58.378037][ T5099] hsr_slave_0: entered promiscuous mode
[   58.384401][ T5099] hsr_slave_1: entered promiscuous mode
[   58.391181][ T5099] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.399528][ T5099] Cannot create hsr debugfs directory
[   58.454697][ T5097] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.461966][ T5097] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.488141][ T5097] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.528306][ T5097] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.535282][ T5097] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.561691][ T5097] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.685532][ T5086] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   58.697282][ T5086] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   58.707645][ T5086] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   58.724261][ T5086] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   58.746863][ T5097] hsr_slave_0: entered promiscuous mode
[   58.754262][ T5097] hsr_slave_1: entered promiscuous mode
[   58.761253][ T5097] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.769166][ T5097] Cannot create hsr debugfs directory
[   58.951038][ T5090] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   58.964313][ T5090] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   58.991725][ T5090] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   59.027644][ T5090] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   59.108087][ T5099] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   59.119790][ T5099] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   59.144454][ T5099] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   59.153898][ T5099] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   59.269804][ T5093] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   59.282162][ T5093] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   59.313898][ T5093] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   59.326290][ T5093] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   59.396254][ T5086] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.455658][ T5097] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   59.479764][ T5097] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   59.490735][ T5097] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   59.504332][ T5097] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   59.528999][ T5086] 8021q: adding VLAN 0 to HW filter on device team0
[   59.574702][ T5138] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.582092][ T5138] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.609628][ T5135] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.616813][ T5135] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.644137][ T5090] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.676805][ T4489] Bluetooth: hci0: command tx timeout
[   59.716246][ T5099] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.752946][ T5099] 8021q: adding VLAN 0 to HW filter on device team0
[   59.765207][ T5090] 8021q: adding VLAN 0 to HW filter on device team0
[   59.798575][ T5134] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.805786][ T5134] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.829137][ T5086] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   59.872880][ T5135] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.880262][ T5135] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.895421][ T5135] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.902627][ T5135] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.917218][ T4489] Bluetooth: hci1: command tx timeout
[   59.980895][ T5138] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.988111][ T5138] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.996654][ T4489] Bluetooth: hci2: command tx timeout
[   60.033617][ T5093] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.076870][   T53] Bluetooth: hci3: command tx timeout
[   60.082509][ T4489] Bluetooth: hci4: command tx timeout
[   60.102499][ T5097] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.125168][ T5093] 8021q: adding VLAN 0 to HW filter on device team0
[   60.170543][ T5137] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.177736][ T5137] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.215810][ T5086] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.250572][ T5097] 8021q: adding VLAN 0 to HW filter on device team0
[   60.285299][ T5135] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.292519][ T5135] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.303697][ T5135] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.310819][ T5135] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.321947][ T5135] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.329094][ T5135] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.495738][ T5086] veth0_vlan: entered promiscuous mode
[   60.534909][ T5086] veth1_vlan: entered promiscuous mode
[   60.587525][ T5099] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.696236][ T5086] veth0_macvtap: entered promiscuous mode
[   60.708272][ T5090] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.740215][ T5086] veth1_macvtap: entered promiscuous mode
[   60.828128][ T5086] batman_adv: batadv0: Interface activated: batadv_slave_0
[   60.904995][ T5086] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.915643][ T5099] veth0_vlan: entered promiscuous mode
[   60.942051][ T5086] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.951559][ T5086] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.962213][ T5086] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.971107][ T5086] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.996166][ T5090] veth0_vlan: entered promiscuous mode
[   61.011109][ T5097] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.057903][ T5099] veth1_vlan: entered promiscuous mode
[   61.072836][ T5093] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.092053][ T5090] veth1_vlan: entered promiscuous mode
[   61.201958][ T5099] veth0_macvtap: entered promiscuous mode
[   61.260951][ T5099] veth1_macvtap: entered promiscuous mode
[   61.293097][ T5099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.304040][ T5099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.317030][ T5099] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.334502][ T5093] veth0_vlan: entered promiscuous mode
[   61.353278][ T5099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.369223][ T5099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.382096][ T5099] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.392161][ T2818] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.400964][ T2818] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.447640][ T5099] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.456983][ T5099] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.465788][ T5099] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.475134][ T5099] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.512007][ T5093] veth1_vlan: entered promiscuous mode
[   61.521747][ T5090] veth0_macvtap: entered promiscuous mode
[   61.538660][ T5090] veth1_macvtap: entered promiscuous mode
[   61.552820][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.572024][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.617196][ T5097] veth0_vlan: entered promiscuous mode
[   61.652420][ T5097] veth1_vlan: entered promiscuous mode
[   61.692569][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.704396][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.714622][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.725809][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.739061][ T5090] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.750752][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.761894][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.766385][ T4489] Bluetooth: hci0: command tx timeout
[   61.773364][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.788674][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.799797][ T5090] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.812857][ T5093] veth0_macvtap: entered promiscuous mode
[   61.828387][ T5093] veth1_macvtap: entered promiscuous mode
[   61.850788][ T5093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.861567][ T5093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.871791][ T5093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.882740][ T5093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.892656][ T5093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.903631][ T5093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.915815][ T5093] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.939164][ T5090] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.959468][ T5090] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.974263][ T5090] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.983167][ T5090] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.997505][ T4489] Bluetooth: hci1: command tx timeout
[   62.010745][ T5093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.023042][ T5093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.034011][ T5093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.047520][ T5093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.057818][ T5093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.069263][ T5093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.079877][ T4489] Bluetooth: hci2: command tx timeout
[   62.083379][ T5093] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.109311][ T5093] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.118216][ T5093] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.127264][ T5093] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.135973][ T5093] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.157790][ T4489] Bluetooth: hci4: command tx timeout
[   62.159755][   T53] Bluetooth: hci3: command tx timeout
[   62.186796][   T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.194680][   T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.257985][ T5097] veth0_macvtap: entered promiscuous mode
[   62.268802][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.293374][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.326075][   T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.334993][ T5097] veth1_macvtap: entered promiscuous mode
[   62.349665][   T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.431112][ T5097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.442793][ T5097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.461146][ T5097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.472133][ T5097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.496468][ T5097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.510076][ T5097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.520952][ T5097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.531535][ T5097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.542700][ T5097] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.574017][ T5097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.586051][ T5097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.597254][ T5097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.608573][ T5097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.619376][ T5097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.630665][ T5097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.641492][ T5097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.659372][ T5097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.671948][ T5097] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.684713][   T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.703633][   T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.709574][ T5097] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.722968][ T5097] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.735726][ T5097] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.768664][ T5097] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.806564][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.848588][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.010764][ T2818] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.027735][ T2818] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.213487][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.235494][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.332119][ T5192] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   63.348047][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.355909][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.403786][ T5195] (unnamed net_device) (uninitialized): (slave team_slave_0): Device is not bonding slave
[   63.423177][ T5195] (unnamed net_device) (uninitialized): option active_slave: invalid value (team_slave_0)
[   63.543529][ T5200] netlink: 8 bytes leftover after parsing attributes in process `syz.2.15'.
[   63.594550][ T5200] netlink: 20 bytes leftover after parsing attributes in process `syz.2.15'.
[   63.651713][ T5204] netlink: 'syz.2.15': attribute type 4 has an invalid length.
[   63.701740][ T5209] syz.1.16 uses obsolete (PF_INET,SOCK_PACKET)
[   63.841052][   T53] Bluetooth: hci0: command tx timeout
[   64.073254][ T5232] FAULT_INJECTION: forcing a failure.
[   64.073254][ T5232] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   64.086936][   T53] Bluetooth: hci1: command tx timeout
[   64.123389][ T5232] CPU: 0 PID: 5232 Comm: syz.1.27 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   64.133342][ T5232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   64.143435][ T5232] Call Trace:
[   64.146739][ T5232]  <TASK>
[   64.149691][ T5232]  dump_stack_lvl+0x241/0x360
[   64.154421][ T5232]  ? __pfx_dump_stack_lvl+0x10/0x10
[   64.159652][ T5232]  ? __pfx__printk+0x10/0x10
[   64.164274][ T5232]  ? __pfx_lock_release+0x10/0x10
[   64.169334][ T5232]  should_fail_ex+0x3b0/0x4e0
[   64.174044][ T5232]  _copy_from_iter+0x1f6/0x1960
[   64.178930][ T5232]  ? __virt_addr_valid+0x183/0x520
[   64.184073][ T5232]  ? __pfx_lock_release+0x10/0x10
[   64.189128][ T5232]  ? __alloc_skb+0x28f/0x440
[   64.193742][ T5232]  ? __pfx__copy_from_iter+0x10/0x10
[   64.199061][ T5232]  ? __virt_addr_valid+0x183/0x520
[   64.204199][ T5232]  ? __virt_addr_valid+0x183/0x520
[   64.209335][ T5232]  ? __virt_addr_valid+0x44e/0x520
[   64.214474][ T5232]  ? __check_object_size+0x49c/0x900
[   64.219791][ T5232]  netlink_sendmsg+0x743/0xcb0
[   64.224590][ T5232]  ? __pfx_netlink_sendmsg+0x10/0x10
[   64.229897][ T5232]  ? __import_iovec+0x536/0x820
[   64.234752][ T5232]  ? aa_sock_msg_perm+0x91/0x160
[   64.239701][ T5232]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   64.244985][ T5232]  ? security_socket_sendmsg+0x87/0xb0
[   64.250457][ T5232]  ? __pfx_netlink_sendmsg+0x10/0x10
[   64.255749][ T5232]  __sock_sendmsg+0x221/0x270
[   64.260479][ T5232]  ____sys_sendmsg+0x525/0x7d0
[   64.265245][ T5232]  ? __pfx_____sys_sendmsg+0x10/0x10
[   64.270534][ T5232]  __sys_sendmsg+0x2b0/0x3a0
[   64.275120][ T5232]  ? __pfx___sys_sendmsg+0x10/0x10
[   64.280228][ T5232]  ? vfs_write+0x7c4/0xc90
[   64.284684][ T5232]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   64.291009][ T5232]  ? do_syscall_64+0x100/0x230
[   64.295778][ T5232]  ? do_syscall_64+0xb6/0x230
[   64.300465][ T5232]  do_syscall_64+0xf3/0x230
[   64.304980][ T5232]  ? clear_bhb_loop+0x35/0x90
[   64.309656][ T5232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.315559][ T5232] RIP: 0033:0x7f62adf75bd9
[   64.319974][ T5232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.339577][ T5232] RSP: 002b:00007f62aee29048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   64.347990][ T5232] RAX: ffffffffffffffda RBX: 00007f62ae103f60 RCX: 00007f62adf75bd9
[   64.355952][ T5232] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[   64.363914][ T5232] RBP: 00007f62aee290a0 R08: 0000000000000000 R09: 0000000000000000
[   64.371964][ T5232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.379938][ T5232] R13: 000000000000000b R14: 00007f62ae103f60 R15: 00007fff7779dab8
[   64.388004][ T5232]  </TASK>
[   64.404612][ T4489] Bluetooth: hci2: command tx timeout
[   64.410601][ T5103] Bluetooth: hci4: command tx timeout
[   64.416055][   T53] Bluetooth: hci3: command tx timeout
[   64.451411][ T5234] netlink: 24 bytes leftover after parsing attributes in process `syz.0.28'.
[   64.519790][ T5244] FAULT_INJECTION: forcing a failure.
[   64.519790][ T5244] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.534776][ T5244] CPU: 0 PID: 5244 Comm: syz.1.31 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   64.544712][ T5244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   64.554806][ T5244] Call Trace:
[   64.558106][ T5244]  <TASK>
[   64.561058][ T5244]  dump_stack_lvl+0x241/0x360
[   64.565773][ T5244]  ? __pfx_dump_stack_lvl+0x10/0x10
[   64.571001][ T5244]  ? __pfx__printk+0x10/0x10
[   64.575633][ T5244]  ? vfs_write+0x7c4/0xc90
[   64.580085][ T5244]  should_fail_ex+0x3b0/0x4e0
[   64.584802][ T5244]  _copy_from_user+0x2f/0xe0
[   64.589424][ T5244]  move_addr_to_kernel+0x82/0x150
[   64.594481][ T5244]  __sys_bind+0x168/0x2f0
[   64.598837][ T5244]  ? __pfx___sys_bind+0x10/0x10
[   64.603723][ T5244]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   64.610084][ T5244]  ? do_syscall_64+0x100/0x230
[   64.614882][ T5244]  __x64_sys_bind+0x7a/0x90
[   64.619409][ T5244]  do_syscall_64+0xf3/0x230
[   64.623943][ T5244]  ? clear_bhb_loop+0x35/0x90
[   64.628655][ T5244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.634576][ T5244] RIP: 0033:0x7f62adf75bd9
[   64.639020][ T5244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.658647][ T5244] RSP: 002b:00007f62aee29048 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[   64.667065][ T5244] RAX: ffffffffffffffda RBX: 00007f62ae103f60 RCX: 00007f62adf75bd9
[   64.675041][ T5244] RDX: 000000000000006e RSI: 0000000020000000 RDI: 0000000000000003
[   64.683007][ T5244] RBP: 00007f62aee290a0 R08: 0000000000000000 R09: 0000000000000000
[   64.690968][ T5244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.698932][ T5244] R13: 000000000000000b R14: 00007f62ae103f60 R15: 00007fff7779dab8
[   64.706919][ T5244]  </TASK>
[   64.749228][ T5237] bridge0: port 3(macvlan2) entered blocking state
[   64.787298][ T5237] bridge0: port 3(macvlan2) entered disabled state
[   64.843288][ T5237] macvlan2: entered allmulticast mode
[   64.868670][ T5237] macvlan2: entered promiscuous mode
[   64.895861][ T5254] netlink: 16 bytes leftover after parsing attributes in process `syz.3.35'.
[   64.908542][ T5256] FAULT_INJECTION: forcing a failure.
[   64.908542][ T5256] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   64.933529][ T5256] CPU: 0 PID: 5256 Comm: syz.1.34 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   64.943468][ T5256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   64.953542][ T5256] Call Trace:
[   64.956832][ T5256]  <TASK>
[   64.959770][ T5256]  dump_stack_lvl+0x241/0x360
[   64.964470][ T5256]  ? __pfx_dump_stack_lvl+0x10/0x10
[   64.969680][ T5256]  ? __pfx__printk+0x10/0x10
[   64.974282][ T5256]  ? __lock_acquire+0x1346/0x1fd0
[   64.979323][ T5256]  should_fail_ex+0x3b0/0x4e0
[   64.984020][ T5256]  prepare_alloc_pages+0x1da/0x5d0
[   64.989153][ T5256]  __alloc_pages_noprof+0x166/0x6c0
[   64.994367][ T5256]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   65.000115][ T5256]  alloc_pages_mpol_noprof+0x3e8/0x680
[   65.005590][ T5256]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   65.011618][ T5256]  vma_alloc_folio_noprof+0xf3/0x1f0
[   65.016928][ T5256]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   65.022836][ T5256]  ? do_raw_spin_unlock+0x13c/0x8b0
[   65.028051][ T5256]  folio_prealloc+0x31/0x170
[   65.032647][ T5256]  do_wp_page+0x11cc/0x52f0
[   65.037176][ T5256]  ? __pfx_do_wp_page+0x10/0x10
[   65.042039][ T5256]  ? __pfx_lock_acquire+0x10/0x10
[   65.047072][ T5256]  ? do_raw_spin_lock+0x14f/0x370
[   65.052129][ T5256]  handle_pte_fault+0x117e/0x7090
[   65.057161][ T5256]  ? cgroup_rstat_updated+0x13b/0xc60
[   65.062541][ T5256]  ? __pfx_validate_chain+0x10/0x10
[   65.067825][ T5256]  ? validate_chain+0x11e/0x5900
[   65.072804][ T5256]  ? __pfx_cgroup_rstat_updated+0x10/0x10
[   65.078555][ T5256]  ? __pfx_handle_pte_fault+0x10/0x10
[   65.083949][ T5256]  ? __lock_acquire+0x1346/0x1fd0
[   65.089020][ T5256]  ? __pfx_lock_release+0x10/0x10
[   65.094061][ T5256]  handle_mm_fault+0x10df/0x1ba0
[   65.099129][ T5256]  ? __pfx_handle_mm_fault+0x10/0x10
[   65.104446][ T5256]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   65.110787][ T5256]  ? lock_mm_and_find_vma+0x9c/0x2f0
[   65.116084][ T5256]  exc_page_fault+0x2b9/0x8c0
[   65.120779][ T5256]  asm_exc_page_fault+0x26/0x30
[   65.125640][ T5256] RIP: 0010:rep_movs_alternative+0x4a/0x70
[   65.131466][ T5256] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[   65.151093][ T5256] RSP: 0018:ffffc9000463fa70 EFLAGS: 00050206
[   65.157196][ T5256] RAX: ffffffff84aede01 RBX: 000000002000f4f8 RCX: 00000000000004f8
[   65.165157][ T5256] RDX: 0000000000000000 RSI: ffff888021b74505 RDI: 000000002000f000
[   65.173118][ T5256] RBP: ffffc9000463fd08 R08: ffff888021b749fc R09: 1ffff1100436e93f
[   65.181078][ T5256] R10: dffffc0000000000 R11: ffffed100436e940 R12: 00000000000009fd
[   65.189039][ T5256] R13: ffff888021b74000 R14: 000000002000eafb R15: ffff888021b74000
[   65.197008][ T5256]  ? _copy_to_user+0x1/0xb0
[   65.201511][ T5256]  _copy_to_user+0x86/0xb0
[   65.205917][ T5256]  __htab_map_lookup_and_delete_batch+0x21b6/0x2680
[   65.212540][ T5256]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[   65.219479][ T5256]  ? __fget_files+0x3f6/0x470
[   65.224156][ T5256]  ? __fget_files+0x29/0x470
[   65.228753][ T5256]  ? __pfx_htab_map_lookup_and_delete_batch+0x10/0x10
[   65.235510][ T5256]  bpf_map_do_batch+0x4da/0x690
[   65.240364][ T5256]  __sys_bpf+0x66f/0x810
[   65.244608][ T5256]  ? __pfx___sys_bpf+0x10/0x10
[   65.249375][ T5256]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   65.255347][ T5256]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   65.261684][ T5256]  ? do_syscall_64+0x100/0x230
[   65.266458][ T5256]  __x64_sys_bpf+0x7c/0x90
[   65.270888][ T5256]  do_syscall_64+0xf3/0x230
[   65.275399][ T5256]  ? clear_bhb_loop+0x35/0x90
[   65.280084][ T5256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.285975][ T5256] RIP: 0033:0x7f62adf75bd9
[   65.290386][ T5256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.309986][ T5256] RSP: 002b:00007f62aee08048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   65.318395][ T5256] RAX: ffffffffffffffda RBX: 00007f62ae104038 RCX: 00007f62adf75bd9
[   65.326465][ T5256] RDX: 0000000000000038 RSI: 0000000020000800 RDI: 0000000000000019
[   65.334446][ T5256] RBP: 00007f62aee080a0 R08: 0000000000000000 R09: 0000000000000000
[   65.342417][ T5256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   65.350383][ T5256] R13: 000000000000006e R14: 00007f62ae104038 R15: 00007fff7779dab8
[   65.358460][ T5256]  </TASK>
[   65.460108][ T5254] netlink: 36 bytes leftover after parsing attributes in process `syz.3.35'.
[   65.473727][ T5254] netlink: 40 bytes leftover after parsing attributes in process `syz.3.35'.
[   65.702488][ T5272] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   65.785959][ T5276] netlink: 'syz.1.45': attribute type 3 has an invalid length.
[   66.226112][ T5308] Zero length message leads to an empty skb
[   66.245989][ T5308] netlink: 'syz.2.55': attribute type 1 has an invalid length.
[   66.285756][ T5308] bond1: entered promiscuous mode
[   66.294858][ T5315] netlink: 56 bytes leftover after parsing attributes in process `syz.3.53'.
[   66.305030][ T5314] warning: `syz.4.56' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   66.358576][ T5308] netlink: 4 bytes leftover after parsing attributes in process `syz.2.55'.
[   66.419350][ T5314] netlink: 'syz.4.56': attribute type 12 has an invalid length.
[   66.453078][ T5314] bond0: option primary_reselect: invalid value (255)
[   66.844447][ T5336] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.865967][ T5336] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.933390][ T5341] netlink: 'syz.0.65': attribute type 29 has an invalid length.
[   67.027537][ T5344] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.034880][ T5344] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.045670][ T5344] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.053006][ T5344] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.150869][ T5341] netlink: 'syz.0.65': attribute type 29 has an invalid length.
[   67.243116][ T5358] netlink: 12 bytes leftover after parsing attributes in process `syz.1.68'.
[   67.362176][ T5368] netlink: 4 bytes leftover after parsing attributes in process `syz.3.72'.
[   67.384669][ T5370] netlink: 'syz.2.73': attribute type 30 has an invalid length.
[   67.390124][ T5368] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   67.399893][ T5368] IPv6: NLM_F_CREATE should be set when creating new route
[   68.487324][ T5430] IPVS: Scheduler module ip_vs_sip not found
[   68.638711][ T5443] netlink: 8 bytes leftover after parsing attributes in process `syz.3.96'.
[   68.677434][ T5445] netlink: 'syz.2.97': attribute type 3 has an invalid length.
[   68.690932][ T5448] netlink: 'syz.4.99': attribute type 1 has an invalid length.
[   68.832663][ T5464] FAULT_INJECTION: forcing a failure.
[   68.832663][ T5464] name failslab, interval 1, probability 0, space 0, times 1
[   68.891139][ T5464] CPU: 1 PID: 5464 Comm: syz.2.104 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   68.901177][ T5464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   68.911257][ T5464] Call Trace:
[   68.914560][ T5464]  <TASK>
[   68.917506][ T5464]  dump_stack_lvl+0x241/0x360
[   68.922209][ T5464]  ? __pfx_dump_stack_lvl+0x10/0x10
[   68.927437][ T5464]  ? __pfx__printk+0x10/0x10
[   68.932052][ T5464]  ? __pfx___might_resched+0x10/0x10
[   68.937360][ T5464]  ? __kasan_kmalloc+0x98/0xb0
[   68.942160][ T5464]  should_fail_ex+0x3b0/0x4e0
[   68.946862][ T5464]  ? __rds_conn_create+0x7ee/0x1ed0
[   68.952079][ T5464]  should_failslab+0x9/0x20
[   68.956608][ T5464]  kmem_cache_alloc_noprof+0x6c/0x2a0
[   68.962015][ T5464]  __rds_conn_create+0x7ee/0x1ed0
[   68.967239][ T5464]  ? __rds_conn_create+0x2d1/0x1ed0
[   68.972477][ T5464]  ? __pfx___rds_conn_create+0x10/0x10
[   68.977964][ T5464]  rds_conn_create_outgoing+0x43/0x60
[   68.983359][ T5464]  rds_sendmsg+0x1251/0x2270
[   68.987975][ T5464]  ? __pfx___might_resched+0x10/0x10
[   68.993297][ T5464]  ? __pfx_rds_sendmsg+0x10/0x10
[   68.998267][ T5464]  ? aa_sk_perm+0x967/0xab0
[   69.002803][ T5464]  ? __pfx_aa_sk_perm+0x10/0x10
[   69.007681][ T5464]  ? __fget_files+0x29/0x470
[   69.012300][ T5464]  ? aa_sock_msg_perm+0x91/0x160
[   69.017269][ T5464]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   69.022611][ T5464]  ? security_socket_sendmsg+0x87/0xb0
[   69.028096][ T5464]  ? __pfx_rds_sendmsg+0x10/0x10
[   69.030516][ T5472] rdma_op ffff8880692391f0 conn xmit_rdma 0000000000000000
[   69.033038][ T5464]  __sock_sendmsg+0x221/0x270
[   69.033075][ T5464]  __sys_sendto+0x3a4/0x4f0
[   69.033102][ T5464]  ? __pfx___sys_sendto+0x10/0x10
[   69.054489][ T5464]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   69.060498][ T5464]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   69.066857][ T5464]  __x64_sys_sendto+0xde/0x100
[   69.071654][ T5464]  do_syscall_64+0xf3/0x230
[   69.076183][ T5464]  ? clear_bhb_loop+0x35/0x90
[   69.080889][ T5464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.086807][ T5464] RIP: 0033:0x7f2c76975bd9
[   69.091239][ T5464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.110875][ T5464] RSP: 002b:00007f2c763ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   69.119320][ T5464] RAX: ffffffffffffffda RBX: 00007f2c76b03f60 RCX: 00007f2c76975bd9
[   69.127315][ T5464] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   69.135309][ T5464] RBP: 00007f2c763ff0a0 R08: 0000000020000000 R09: 000000000000001c
[   69.143303][ T5464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.151294][ T5464] R13: 000000000000000b R14: 00007f2c76b03f60 R15: 00007fff95400608
[   69.159306][ T5464]  </TASK>
[   69.286387][ T5481] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.294774][ T5481] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.347536][ T5484] netlink: 8 bytes leftover after parsing attributes in process `syz.3.112'.
[   69.462253][ T5487] xt_TCPMSS: Only works on TCP SYN packets
[   69.644526][ T5493] ebt_limit: overflow, try lower: 0/0
[   70.014845][ T5502] netlink: 'syz.0.118': attribute type 12 has an invalid length.
[   70.049285][ T5502] bond0: option primary_reselect: invalid value (255)
[   70.682654][ T5547] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   70.696071][ T5547] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   70.760999][ T5556] macsec1: entered promiscuous mode
[   70.766725][ T5556] batadv0: entered promiscuous mode
[   70.774522][ T5556] macsec1: entered allmulticast mode
[   70.782742][ T5556] batadv0: entered allmulticast mode
[   70.791795][ T5556] batadv0: left allmulticast mode
[   70.797458][ T5556] batadv0: left promiscuous mode
[   70.837849][ T5561] netlink: 52 bytes leftover after parsing attributes in process `syz.0.138'.
[   70.907134][ T5566] netlink: 32 bytes leftover after parsing attributes in process `syz.0.139'.
[   70.922981][ T5565] netlink: 32 bytes leftover after parsing attributes in process `syz.0.139'.
[   71.074198][ T5572] netlink: 4 bytes leftover after parsing attributes in process `syz.0.141'.
[   71.255010][ T5587] netlink: 4552 bytes leftover after parsing attributes in process `syz.0.145'.
[   71.280889][ T5587] netlink: 4552 bytes leftover after parsing attributes in process `syz.0.145'.
[   71.387685][ T5589] xt_CT: No such helper "syz0"
[   71.649389][ T5605] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   71.739414][ T4489] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   71.748224][ T4489] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   71.755979][ T4489] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   71.787160][ T1248] ieee802154 phy0 wpan0: encryption failed: -22
[   71.793805][ T1248] ieee802154 phy1 wpan1: encryption failed: -22
[   71.813032][ T4489] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   71.822350][ T5615] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   71.825034][ T4489] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   71.847200][ T4489] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   71.936322][ T5617] netlink: 12 bytes leftover after parsing attributes in process `syz.4.152'.
[   72.052252][ T5626] netlink: del zone limit has 8 unknown bytes
[   72.086680][ T5627] netlink: 28 bytes leftover after parsing attributes in process `syz.0.154'.
[   72.129065][ T5608] chnl_net:caif_netlink_parms(): no params data found
[   72.217114][ T5608] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.230020][ T5608] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.238504][ T5608] bridge_slave_0: entered allmulticast mode
[   72.246058][ T5608] bridge_slave_0: entered promiscuous mode
[   72.259593][ T5608] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.266912][ T5608] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.274666][ T5608] bridge_slave_1: entered allmulticast mode
[   72.283269][ T5608] bridge_slave_1: entered promiscuous mode
[   72.334173][ T5608] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.353331][ T5608] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.424003][ T5608] team0: Port device team_slave_0 added
[   72.437285][ T5608] team0: Port device team_slave_1 added
[   72.468374][ T5608] batman_adv: batadv0: Adding interface: batadv_slave_0
[   72.475456][ T5608] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.503720][ T5608] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.517578][ T5608] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.524550][ T5608] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.551203][ T5608] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.569387][ T5639] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   72.618902][ T5608] hsr_slave_0: entered promiscuous mode
[   72.625799][ T5608] hsr_slave_1: entered promiscuous mode
[   72.632891][ T5608] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   72.640977][ T5608] Cannot create hsr debugfs directory
[   72.677440][ T5645] IPVS: Scheduler module ip_vs_sip not found
[   72.839829][ T2818] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.918344][ T2818] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.981123][ T2818] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.081805][ T2818] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.205283][ T2818] bridge_slave_1: left allmulticast mode
[   73.212665][ T2818] bridge_slave_1: left promiscuous mode
[   73.219435][ T2818] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.231281][ T2818] bridge_slave_0: left allmulticast mode
[   73.237836][ T2818] bridge_slave_0: left promiscuous mode
[   73.243609][ T2818] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.584796][ T2818] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   73.602118][ T2818] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   73.613974][ T2818] bond0 (unregistering): Released all slaves
[   73.693823][ T5672] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[   73.916761][   T53] Bluetooth: hci4: command tx timeout
[   73.962717][ T5674] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   74.104828][ T5687] netlink: 28 bytes leftover after parsing attributes in process `syz.0.172'.
[   74.169228][ T2818] hsr_slave_0: left promiscuous mode
[   74.183427][ T2818] hsr_slave_1: left promiscuous mode
[   74.204747][ T5682] syz.4.171 (5682) used greatest stack depth: 18160 bytes left
[   74.221882][ T2818] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   74.234213][ T2818] batman_adv: batadv0: Removing interface: batadv_slave_0
[   74.246946][ T2818] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   74.254534][ T2818] batman_adv: batadv0: Removing interface: batadv_slave_1
[   74.279030][ T2818] veth1_macvtap: left promiscuous mode
[   74.288189][ T2818] veth0_macvtap: left promiscuous mode
[   74.293954][ T2818] veth1_vlan: left promiscuous mode
[   74.299823][ T2818] veth0_vlan: left promiscuous mode
[   74.758943][ T2818] team0 (unregistering): Port device team_slave_1 removed
[   74.803773][ T2818] team0 (unregistering): Port device team_slave_0 removed
[   75.118082][ T5711] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   75.300090][ T5721] netlink: 'syz.1.184': attribute type 1 has an invalid length.
[   75.313545][ T5721] netlink: 4 bytes leftover after parsing attributes in process `syz.1.184'.
[   75.502487][ T5608] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   75.520838][ T5608] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   75.552157][ T5608] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   75.590545][ T5608] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   75.677382][ T5739] netlink: 28 bytes leftover after parsing attributes in process `syz.2.191'.
[   75.823697][ T5743] syzkaller1: entered promiscuous mode
[   75.833751][ T5743] syzkaller1: entered allmulticast mode
[   75.878175][ T5608] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.949778][ T5608] 8021q: adding VLAN 0 to HW filter on device team0
[   75.997524][   T53] Bluetooth: hci4: command tx timeout
[   76.032636][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.034463][ T5745] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   76.039831][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.068841][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.076087][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.360007][ T5608] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.438439][ T5608] veth0_vlan: entered promiscuous mode
[   76.472343][ T5608] veth1_vlan: entered promiscuous mode
[   76.564021][ T5608] veth0_macvtap: entered promiscuous mode
[   76.581304][ T5608] veth1_macvtap: entered promiscuous mode
[   76.618401][ T5768] netlink: 'syz.1.200': attribute type 1 has an invalid length.
[   76.629497][ T5608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.640277][ T5768] netlink: 224 bytes leftover after parsing attributes in process `syz.1.200'.
[   76.640907][ T5608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.656434][ T5768] netlink: 8 bytes leftover after parsing attributes in process `syz.1.200'.
[   76.665224][ T5608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.675119][ T5768] netlink: 4 bytes leftover after parsing attributes in process `syz.1.200'.
[   76.685340][ T5608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.698166][ T5608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.710211][ T5608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.721184][ T5608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.732121][ T5608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.743619][ T5608] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.762146][ T5608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.777430][ T5608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.793273][ T5608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.811019][ T5608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.822034][ T5608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.832767][ T5608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.842905][ T5608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.853531][ T5608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.865743][ T5608] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.885366][  T786] cfg80211: failed to load regulatory.db
[   76.919197][ T5608] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.944024][ T5608] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.974522][ T5608] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.993682][ T5608] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.168191][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.168247][ T5786] IPVS: set_ctl: invalid protocol: 136 172.30.0.3:20004
[   77.176039][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.224005][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.229353][ T5787] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[   77.276126][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.422404][ T5798] netlink: 4 bytes leftover after parsing attributes in process `syz.2.209'.
[   77.462002][ T5798] netlink: 92 bytes leftover after parsing attributes in process `syz.2.209'.
[   77.473367][ T5798] netlink: 76 bytes leftover after parsing attributes in process `syz.2.209'.
[   77.628785][ T5810] netlink: 28 bytes leftover after parsing attributes in process `syz.1.210'.
[   77.714868][ T5807] syz.3.212: vmalloc error: size 8593408, failed to allocated page array size 16784, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[   77.740779][ T5807] CPU: 0 PID: 5807 Comm: syz.3.212 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   77.750804][ T5807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   77.760856][ T5807] Call Trace:
[   77.764126][ T5807]  <TASK>
[   77.767049][ T5807]  dump_stack_lvl+0x241/0x360
[   77.771734][ T5807]  ? __pfx_dump_stack_lvl+0x10/0x10
[   77.776932][ T5807]  ? __pfx__printk+0x10/0x10
[   77.781519][ T5807]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[   77.787927][ T5807]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[   77.794422][ T5807]  warn_alloc+0x278/0x410
[   77.798757][ T5807]  ? __pfx_warn_alloc+0x10/0x10
[   77.803609][ T5807]  ? translate_table+0x196/0x21f0
[   77.808628][ T5807]  ? __get_vm_area_node+0x23d/0x270
[   77.813824][ T5807]  __vmalloc_node_range_noprof+0x69f/0x1460
[   77.819730][ T5807]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   77.826051][ T5807]  ? rcu_is_watching+0x15/0xb0
[   77.830807][ T5807]  ? trace_kmalloc+0x1f/0xd0
[   77.835392][ T5807]  ? __kmalloc_node_noprof+0x247/0x440
[   77.840868][ T5807]  ? kvmalloc_node_noprof+0x72/0x190
[   77.846175][ T5807]  kvmalloc_node_noprof+0x142/0x190
[   77.851383][ T5807]  ? translate_table+0x196/0x21f0
[   77.856412][ T5807]  translate_table+0x196/0x21f0
[   77.861276][ T5807]  ? __pfx___might_resched+0x10/0x10
[   77.866570][ T5807]  ? __might_fault+0xaa/0x120
[   77.871246][ T5807]  ? __pfx_translate_table+0x10/0x10
[   77.876527][ T5807]  ? __might_fault+0xaa/0x120
[   77.881197][ T5807]  ? __might_fault+0xc6/0x120
[   77.885868][ T5807]  ? _copy_from_user+0xa6/0xe0
[   77.890621][ T5807]  ? copy_from_sockptr_offset+0x6b/0xb0
[   77.896161][ T5807]  do_arpt_set_ctl+0x101c/0x1650
[   77.901101][ T5807]  ? __pfx_do_arpt_set_ctl+0x10/0x10
[   77.906383][ T5807]  ? __pfx___might_resched+0x10/0x10
[   77.911663][ T5807]  ? nf_setsockopt+0x240/0x2c0
[   77.916440][ T5807]  ? __pfx_lock_release+0x10/0x10
[   77.921492][ T5807]  ? __mutex_lock+0x2ef/0xd70
[   77.926177][ T5807]  ? __mutex_unlock_slowpath+0x21d/0x750
[   77.931811][ T5807]  ? __pfx_do_ip_setsockopt+0x10/0x10
[   77.937199][ T5807]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   77.943192][ T5807]  ? __pfx_aa_sk_perm+0x10/0x10
[   77.948046][ T5807]  ? module_put+0x13a/0x2d0
[   77.952550][ T5807]  nf_setsockopt+0x295/0x2c0
[   77.957136][ T5807]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   77.963026][ T5807]  do_sock_setsockopt+0x3af/0x720
[   77.968044][ T5807]  ? __pfx_do_sock_setsockopt+0x10/0x10
[   77.973578][ T5807]  ? __fget_files+0x29/0x470
[   77.978162][ T5807]  ? __fget_files+0x3f6/0x470
[   77.982837][ T5807]  __sys_setsockopt+0x1ae/0x250
[   77.987684][ T5807]  __x64_sys_setsockopt+0xb5/0xd0
[   77.992698][ T5807]  do_syscall_64+0xf3/0x230
[   77.997198][ T5807]  ? clear_bhb_loop+0x35/0x90
[   78.001879][ T5807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.007765][ T5807] RIP: 0033:0x7f4dc5375bd9
[   78.012168][ T5807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.031767][ T5807] RSP: 002b:00007f4dc6113048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   78.040175][ T5807] RAX: ffffffffffffffda RBX: 00007f4dc5503f60 RCX: 00007f4dc5375bd9
[   78.048138][ T5807] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000005
[   78.056095][ T5807] RBP: 00007f4dc53e4e60 R08: 0000000000000458 R09: 0000000000000000
[   78.064053][ T5807] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[   78.072011][ T5807] R13: 000000000000000b R14: 00007f4dc5503f60 R15: 00007ffc26cb7a68
[   78.079981][ T5807]  </TASK>
[   78.116803][   T53] Bluetooth: hci4: command tx timeout
[   78.154621][ T5807] Mem-Info:
[   78.163872][ T5807] active_anon:3035 inactive_anon:0 isolated_anon:0
[   78.163872][ T5807]  active_file:1439 inactive_file:38133 isolated_file:0
[   78.163872][ T5807]  unevictable:768 dirty:646 writeback:0
[   78.163872][ T5807]  slab_reclaimable:9049 slab_unreclaimable:93135
[   78.163872][ T5807]  mapped:13092 shmem:1252 pagetables:657
[   78.163872][ T5807]  sec_pagetables:0 bounce:0
[   78.163872][ T5807]  kernel_misc_reclaimable:0
[   78.163872][ T5807]  free:1412600 free_pcp:1346 free_cma:0
[   78.191035][ T5817] xt_hashlimit: max too large, truncated to 1048576
[   78.215795][ T5817] xt_hashlimit: overflow, try lower: 0/0
[   78.244108][ T5807] Node 0 active_anon:12104kB inactive_anon:0kB active_file:5756kB inactive_file:152460kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:52364kB dirty:2584kB writeback:0kB shmem:3544kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9764kB pagetables:2616kB sec_pagetables:0kB all_unreclaimable? no
[   78.300564][ T5807] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[   78.376471][ T5807] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   78.426314][ T5807] lowmem_reserve[]: 0 2571 2571 0 0
[   78.434417][ T5807] Node 0 DMA32 free:1694148kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:12060kB inactive_anon:0kB active_file:5756kB inactive_file:152148kB unevictable:1536kB writepending:2580kB present:3129332kB managed:2659880kB mlocked:0kB bounce:0kB free_pcp:1140kB local_pcp:800kB free_cma:0kB
[   78.466959][ T5807] lowmem_reserve[]: 0 0 0 0 0
[   78.471966][ T5807] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:312kB unevictable:0kB writepending:4kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[   78.596486][ T5807] lowmem_reserve[]: 0 0 0 0 0
[   78.607358][ T5807] Node 1 Normal free:3942928kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:0kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:2672kB local_pcp:0kB free_cma:0kB
[   78.616616][ T5834] netlink: 'syz.0.220': attribute type 5 has an invalid length.
[   78.698802][ T5807] lowmem_reserve[]: 0 0 0 0 0
[   78.703598][ T5807] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   78.754020][ T5807] Node 0 DMA32: 0*4kB 2*8kB (UE) 26*16kB (M) 125*32kB (UM) 90*64kB (UME) 73*128kB (UM) 43*256kB (UME) 33*512kB (UME) 23*1024kB (UME) 5*2048kB (UME) 393*4096kB (UM) = 1690960kB
[   78.820561][ T5807] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[   78.838676][ T5807] Node 1 Normal: 2*4kB (UM) 5*8kB (UM) 6*16kB (UM) 9*32kB (UM) 8*64kB (UM) 7*128kB (UM) 7*256kB (UM) 2*512kB (U) 2*1024kB (U) 2*2048kB (U) 960*4096kB (M) = 3942960kB
[   78.856027][ T5807] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   78.869143][ T5807] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   78.880571][ T5807] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   78.893776][ T5807] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   78.903623][ T5807] 40827 total pagecache pages
[   78.921486][ T5807] 0 pages in swap cache
[   78.935810][ T5807] Free swap  = 124996kB
[   78.944788][ T5807] Total swap = 124996kB
[   78.971940][ T5807] 2097051 pages RAM
[   78.975801][ T5807] 0 pages HighMem/MovableOnly
[   78.987886][ T5807] 400871 pages reserved
[   78.992248][ T5807] 0 pages cma reserved
[   79.013337][ T5850] FAULT_INJECTION: forcing a failure.
[   79.013337][ T5850] name failslab, interval 1, probability 0, space 0, times 0
[   79.045544][ T5850] CPU: 0 PID: 5850 Comm: syz.0.227 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   79.055584][ T5850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   79.065668][ T5850] Call Trace:
[   79.068965][ T5850]  <TASK>
[   79.071911][ T5850]  dump_stack_lvl+0x241/0x360
[   79.076629][ T5850]  ? __pfx_dump_stack_lvl+0x10/0x10
[   79.081857][ T5850]  ? __pfx__printk+0x10/0x10
[   79.086478][ T5850]  ? ref_tracker_alloc+0x332/0x490
[   79.091626][ T5850]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   79.097118][ T5850]  should_fail_ex+0x3b0/0x4e0
[   79.101826][ T5850]  ? skb_clone+0x20c/0x390
[   79.106268][ T5850]  should_failslab+0x9/0x20
[   79.110796][ T5850]  kmem_cache_alloc_noprof+0x6c/0x2a0
[   79.116201][ T5850]  skb_clone+0x20c/0x390
[   79.120474][ T5850]  __netlink_deliver_tap+0x3cc/0x7c0
[   79.125791][ T5850]  ? netlink_deliver_tap+0x2e/0x1b0
[   79.131015][ T5850]  netlink_deliver_tap+0x19d/0x1b0
[   79.136152][ T5850]  netlink_sendskb+0x68/0x140
[   79.140856][ T5850]  netlink_unicast+0x39d/0x980
[   79.145641][ T5850]  ? __asan_memcpy+0x40/0x70
[   79.150263][ T5850]  ? __pfx_netlink_unicast+0x10/0x10
[   79.155580][ T5850]  netlink_rcv_skb+0x262/0x430
[   79.160465][ T5850]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   79.165952][ T5850]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   79.171287][ T5850]  ? __rcu_read_unlock+0xa1/0x110
[   79.176335][ T5850]  netlink_unicast+0x7ea/0x980
[   79.181126][ T5850]  ? __pfx_netlink_unicast+0x10/0x10
[   79.186439][ T5850]  ? __virt_addr_valid+0x183/0x520
[   79.191552][ T5850]  ? __check_object_size+0x49c/0x900
[   79.196851][ T5850]  ? bpf_lsm_netlink_send+0x9/0x10
[   79.201961][ T5850]  netlink_sendmsg+0x8db/0xcb0
[   79.206728][ T5850]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.212006][ T5850]  ? __import_iovec+0x536/0x820
[   79.216844][ T5850]  ? aa_sock_msg_perm+0x91/0x160
[   79.221776][ T5850]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   79.227046][ T5850]  ? security_socket_sendmsg+0x87/0xb0
[   79.232495][ T5850]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.237769][ T5850]  __sock_sendmsg+0x221/0x270
[   79.242446][ T5850]  ____sys_sendmsg+0x525/0x7d0
[   79.247218][ T5850]  ? __pfx_____sys_sendmsg+0x10/0x10
[   79.252511][ T5850]  __sys_sendmsg+0x2b0/0x3a0
[   79.257095][ T5850]  ? __pfx___sys_sendmsg+0x10/0x10
[   79.262196][ T5850]  ? vfs_write+0x7c4/0xc90
[   79.266636][ T5850]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   79.272954][ T5850]  ? do_syscall_64+0x100/0x230
[   79.277734][ T5850]  ? do_syscall_64+0xb6/0x230
[   79.282436][ T5850]  do_syscall_64+0xf3/0x230
[   79.286949][ T5850]  ? clear_bhb_loop+0x35/0x90
[   79.291629][ T5850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.297518][ T5850] RIP: 0033:0x7f6b30375bd9
[   79.301928][ T5850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.321522][ T5850] RSP: 002b:00007f6b310fb048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.329934][ T5850] RAX: ffffffffffffffda RBX: 00007f6b30503f60 RCX: 00007f6b30375bd9
[   79.337895][ T5850] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[   79.345855][ T5850] RBP: 00007f6b310fb0a0 R08: 0000000000000000 R09: 0000000000000000
[   79.353820][ T5850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.361786][ T5850] R13: 000000000000000b R14: 00007f6b30503f60 R15: 00007ffe38c26118
[   79.369764][ T5850]  </TASK>
[   79.466777][ T5860] __nla_validate_parse: 1 callbacks suppressed
[   79.466797][ T5860] netlink: 28 bytes leftover after parsing attributes in process `syz.4.228'.
[   79.544633][ T5866] netlink: 100 bytes leftover after parsing attributes in process `syz.0.233'.
[   79.805265][ T5874] lo: entered promiscuous mode
[   79.897482][ T5873] lo: left promiscuous mode
[   80.157798][   T53] Bluetooth: hci4: command tx timeout
[   80.419171][ T5898] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   80.481857][ T5905] x_tables: duplicate underflow at hook 1
[   80.647163][ T5913] netlink: 'syz.1.248': attribute type 3 has an invalid length.
[   80.739472][ T5919] netlink: 'syz.3.252': attribute type 2 has an invalid length.
[   80.860594][ T5930] netlink: 28 bytes leftover after parsing attributes in process `syz.1.253'.
[   80.939720][ T5928] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   81.213842][ T5940] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   81.429161][ T5964] netlink: 4 bytes leftover after parsing attributes in process `syz.2.266'.
[   81.465793][ T5964] veth0_macvtap: left promiscuous mode
[   81.564351][ T5970] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.268'.
[   81.577415][ T5965] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.268'.
[   82.314030][ T6002] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   82.455572][ T6016] netlink: 28 bytes leftover after parsing attributes in process `syz.2.281'.
[   82.551255][ T6022] syzkaller0: entered promiscuous mode
[   82.563159][ T6022] syzkaller0: entered allmulticast mode
[   83.596679][ T4489] Bluetooth: hci4: command 0x0405 tx timeout
[   83.982404][ T6066] rdma_op ffff88802ca2c1f0 conn xmit_rdma 0000000000000000
[   84.479085][ T6047] lo: entered promiscuous mode
[   84.496999][ T6046] tipc: Started in network mode
[   84.502004][ T6046] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   84.514800][ T6046] tipc: Enabled bearer <eth:team0>, priority 0
[   84.537327][ T6047] lo: left promiscuous mode
[   84.641196][ T6075] batman_adv: batadv0: adding TT local entry 4a:c8:93:75:00:00 to non-existent VLAN 2358
[   84.682872][ T6079] x_tables: duplicate underflow at hook 1
[   84.729556][ T6083] netlink: 'syz.3.303': attribute type 1 has an invalid length.
[   84.756702][ T6083] netlink: 20 bytes leftover after parsing attributes in process `syz.3.303'.
[   84.781997][ T6086] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   84.789309][ T6086] IPv6: NLM_F_CREATE should be set when creating new route
[   84.796692][ T6086] IPv6: NLM_F_CREATE should be set when creating new route
[   84.815649][ T6092] netlink: 28 bytes leftover after parsing attributes in process `syz.0.305'.
[   85.089620][ T6102] netlink: 76 bytes leftover after parsing attributes in process `syz.3.309'.
[   85.114707][ T6109] openvswitch: netlink: Missing key (keys=40, expected=2000)
[   85.141807][   T45] IPVS: starting estimator thread 0...
[   85.143793][ T6102] Êü�: entered promiscuous mode
[   85.240214][ T6110] IPVS: using max 19 ests per chain, 45600 per kthread
[   85.382959][ T6118] FAULT_INJECTION: forcing a failure.
[   85.382959][ T6118] name failslab, interval 1, probability 0, space 0, times 0
[   85.397709][ T6118] CPU: 1 PID: 6118 Comm: syz.3.315 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   85.407729][ T6118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   85.417813][ T6118] Call Trace:
[   85.421109][ T6118]  <TASK>
[   85.424051][ T6118]  dump_stack_lvl+0x241/0x360
[   85.428757][ T6118]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.433981][ T6118]  ? __pfx__printk+0x10/0x10
[   85.438600][ T6118]  ? __mutex_unlock_slowpath+0x21d/0x750
[   85.444274][ T6118]  should_fail_ex+0x3b0/0x4e0
[   85.448953][ T6118]  ? __alloc_skb+0x1c3/0x440
[   85.453541][ T6118]  should_failslab+0x9/0x20
[   85.458041][ T6118]  kmem_cache_alloc_node_noprof+0x71/0x320
[   85.463844][ T6118]  ? nft_pernet+0x1ef/0x240
[   85.468341][ T6118]  __alloc_skb+0x1c3/0x440
[   85.472759][ T6118]  ? __pfx___alloc_skb+0x10/0x10
[   85.477691][ T6118]  ? netlink_ack_tlv_len+0x6e/0x200
[   85.482883][ T6118]  netlink_ack+0x13f/0xa30
[   85.487293][ T6118]  ? __pfx_nf_tables_abort+0x10/0x10
[   85.492573][ T6118]  ? nfnetlink_rcv+0x11b8/0x2a80
[   85.497502][ T6118]  ? nfnetlink_rcv+0x1219/0x2a80
[   85.502434][ T6118]  nfnetlink_rcv+0x24f9/0x2a80
[   85.507189][ T6118]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   85.513530][ T6118]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   85.518641][ T6118]  ? __dev_queue_xmit+0x2d2/0x3d30
[   85.523769][ T6118]  ? netlink_deliver_tap+0x2e/0x1b0
[   85.528959][ T6118]  ? skb_clone+0x240/0x390
[   85.533370][ T6118]  ? __pfx_lock_release+0x10/0x10
[   85.538396][ T6118]  ? netlink_deliver_tap+0x2e/0x1b0
[   85.543588][ T6118]  netlink_unicast+0x7ea/0x980
[   85.548351][ T6118]  ? __pfx_netlink_unicast+0x10/0x10
[   85.553624][ T6118]  ? __virt_addr_valid+0x183/0x520
[   85.558733][ T6118]  ? __check_object_size+0x49c/0x900
[   85.564010][ T6118]  ? bpf_lsm_netlink_send+0x9/0x10
[   85.569117][ T6118]  netlink_sendmsg+0x8db/0xcb0
[   85.573888][ T6118]  ? __pfx_netlink_sendmsg+0x10/0x10
[   85.579166][ T6118]  ? __import_iovec+0x536/0x820
[   85.584004][ T6118]  ? aa_sock_msg_perm+0x91/0x160
[   85.588937][ T6118]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   85.594248][ T6118]  ? security_socket_sendmsg+0x87/0xb0
[   85.599724][ T6118]  ? __pfx_netlink_sendmsg+0x10/0x10
[   85.605003][ T6118]  __sock_sendmsg+0x221/0x270
[   85.609681][ T6118]  ____sys_sendmsg+0x525/0x7d0
[   85.614445][ T6118]  ? __pfx_____sys_sendmsg+0x10/0x10
[   85.619736][ T6118]  __sys_sendmsg+0x2b0/0x3a0
[   85.624320][ T6118]  ? __pfx___sys_sendmsg+0x10/0x10
[   85.629421][ T6118]  ? vfs_write+0x7c4/0xc90
[   85.633855][ T6118]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   85.640174][ T6118]  ? do_syscall_64+0x100/0x230
[   85.644933][ T6118]  ? do_syscall_64+0xb6/0x230
[   85.649665][ T6118]  do_syscall_64+0xf3/0x230
[   85.654161][ T6118]  ? clear_bhb_loop+0x35/0x90
[   85.658834][ T6118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.664722][ T6118] RIP: 0033:0x7f4dc5375bd9
[   85.669130][ T6118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.688729][ T6118] RSP: 002b:00007f4dc6113048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   85.697137][ T6118] RAX: ffffffffffffffda RBX: 00007f4dc5503f60 RCX: 00007f4dc5375bd9
[   85.705097][ T6118] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[   85.713057][ T6118] RBP: 00007f4dc61130a0 R08: 0000000000000000 R09: 0000000000000000
[   85.721016][ T6118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   85.728979][ T6118] R13: 000000000000000b R14: 00007f4dc5503f60 R15: 00007ffc26cb7a68
[   85.736950][ T6118]  </TASK>
[   85.790590][   T45] tipc: Node number set to 11578026
[   85.822175][ T6119] rdma_op ffff88802b13c9f0 conn xmit_rdma 0000000000000000
[   86.064660][ T6130] netlink: 8 bytes leftover after parsing attributes in process `syz.2.319'.
[   86.260132][ T6138] Bluetooth: MGMT ver 1.22
[   86.328392][ T6144] openvswitch: netlink: Missing key (keys=40, expected=2000)
[   86.359759][ T6146] FAULT_INJECTION: forcing a failure.
[   86.359759][ T6146] name failslab, interval 1, probability 0, space 0, times 0
[   86.384016][ T6146] CPU: 0 PID: 6146 Comm: syz.0.325 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   86.394038][ T6146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   86.404112][ T6146] Call Trace:
[   86.407412][ T6146]  <TASK>
[   86.410354][ T6146]  dump_stack_lvl+0x241/0x360
[   86.415063][ T6146]  ? __pfx_dump_stack_lvl+0x10/0x10
[   86.420288][ T6146]  ? __pfx__printk+0x10/0x10
[   86.424903][ T6146]  ? __pfx___might_resched+0x10/0x10
[   86.430214][ T6146]  ? __mutex_lock+0x2ef/0xd70
[   86.434921][ T6146]  should_fail_ex+0x3b0/0x4e0
[   86.439621][ T6146]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[   86.445857][ T6146]  should_failslab+0x9/0x20
[   86.450356][ T6146]  __kmalloc_noprof+0xd8/0x400
[   86.455114][ T6146]  ? __asan_memcpy+0x40/0x70
[   86.459699][ T6146]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[   86.465767][ T6146]  genl_rcv_msg+0x802/0xec0
[   86.470258][ T6146]  ? mark_lock+0x9a/0x350
[   86.474587][ T6146]  ? __pfx_genl_rcv_msg+0x10/0x10
[   86.479622][ T6146]  ? __pfx_lock_acquire+0x10/0x10
[   86.484636][ T6146]  ? __pfx_ctrl_getfamily+0x10/0x10
[   86.489831][ T6146]  ? __pfx___might_resched+0x10/0x10
[   86.495118][ T6146]  netlink_rcv_skb+0x1e3/0x430
[   86.499880][ T6146]  ? __pfx_genl_rcv_msg+0x10/0x10
[   86.504905][ T6146]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   86.510195][ T6146]  ? __netlink_deliver_tap+0x77e/0x7c0
[   86.515668][ T6146]  genl_rcv+0x28/0x40
[   86.519660][ T6146]  netlink_unicast+0x7ea/0x980
[   86.524423][ T6146]  ? __pfx_netlink_unicast+0x10/0x10
[   86.529696][ T6146]  ? __virt_addr_valid+0x183/0x520
[   86.534803][ T6146]  ? __check_object_size+0x49c/0x900
[   86.540090][ T6146]  ? bpf_lsm_netlink_send+0x9/0x10
[   86.545197][ T6146]  netlink_sendmsg+0x8db/0xcb0
[   86.550139][ T6146]  ? __pfx_netlink_sendmsg+0x10/0x10
[   86.555418][ T6146]  ? aa_sock_msg_perm+0x91/0x160
[   86.560352][ T6146]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   86.565623][ T6146]  ? security_socket_sendmsg+0x87/0xb0
[   86.571075][ T6146]  ? __pfx_netlink_sendmsg+0x10/0x10
[   86.576353][ T6146]  __sock_sendmsg+0x221/0x270
[   86.581030][ T6146]  __sys_sendto+0x3a4/0x4f0
[   86.585556][ T6146]  ? __pfx___sys_sendto+0x10/0x10
[   86.590592][ T6146]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   86.596570][ T6146]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   86.602904][ T6146]  ? exc_page_fault+0x590/0x8c0
[   86.607749][ T6146]  __x64_sys_sendto+0xde/0x100
[   86.612509][ T6146]  do_syscall_64+0xf3/0x230
[   86.617006][ T6146]  ? clear_bhb_loop+0x35/0x90
[   86.621683][ T6146]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.627574][ T6146] RIP: 0033:0x7f6b3037796c
[   86.631979][ T6146] Code: 2a 5a 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5a 02 00 48 8b
[   86.651665][ T6146] RSP: 002b:00007f6b310f9ed0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[   86.660071][ T6146] RAX: ffffffffffffffda RBX: 00007f6b310f9fd0 RCX: 00007f6b3037796c
[   86.668034][ T6146] RDX: 0000000000000020 RSI: 00007f6b310fa020 RDI: 0000000000000004
[   86.675991][ T6146] RBP: 0000000000000000 R08: 00007f6b310f9f24 R09: 000000000000000c
[   86.683948][ T6146] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004
[   86.691912][ T6146] R13: 00007f6b310f9f78 R14: 00007f6b310fa020 R15: 0000000000000000
[   86.699891][ T6146]  </TASK>
[   86.748105][   T45] IPVS: starting estimator thread 0...
[   86.818735][ T6149] netlink: 28 bytes leftover after parsing attributes in process `syz.3.326'.
[   86.846988][ T6150] IPVS: using max 19 ests per chain, 45600 per kthread
[   86.913293][ T6152] netlink: 6 bytes leftover after parsing attributes in process `syz.1.327'.
[   86.922214][ T6152] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.327'.
[   86.952268][ T6155] netlink: 'syz.0.328': attribute type 4 has an invalid length.
[   87.152916][ T6167] FAULT_INJECTION: forcing a failure.
[   87.152916][ T6167] name failslab, interval 1, probability 0, space 0, times 0
[   87.178216][ T6167] CPU: 0 PID: 6167 Comm: syz.4.333 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   87.188240][ T6167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   87.198290][ T6167] Call Trace:
[   87.201562][ T6167]  <TASK>
[   87.204512][ T6167]  dump_stack_lvl+0x241/0x360
[   87.209201][ T6167]  ? __pfx_dump_stack_lvl+0x10/0x10
[   87.214412][ T6167]  ? __pfx__printk+0x10/0x10
[   87.218996][ T6167]  ? ref_tracker_alloc+0x332/0x490
[   87.224098][ T6167]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   87.229566][ T6167]  should_fail_ex+0x3b0/0x4e0
[   87.234279][ T6167]  ? skb_clone+0x20c/0x390
[   87.238736][ T6167]  should_failslab+0x9/0x20
[   87.243266][ T6167]  kmem_cache_alloc_noprof+0x6c/0x2a0
[   87.248650][ T6167]  skb_clone+0x20c/0x390
[   87.252892][ T6167]  __netlink_deliver_tap+0x3cc/0x7c0
[   87.258182][ T6167]  ? netlink_deliver_tap+0x2e/0x1b0
[   87.263372][ T6167]  netlink_deliver_tap+0x19d/0x1b0
[   87.268485][ T6167]  netlink_sendskb+0x68/0x140
[   87.273177][ T6167]  netlink_unicast+0x39d/0x980
[   87.277958][ T6167]  ? __asan_memcpy+0x40/0x70
[   87.282562][ T6167]  ? __pfx_netlink_unicast+0x10/0x10
[   87.287867][ T6167]  netlink_rcv_skb+0x262/0x430
[   87.292644][ T6167]  ? __pfx_genl_rcv_msg+0x10/0x10
[   87.297668][ T6167]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   87.302966][ T6167]  ? __netlink_deliver_tap+0x77e/0x7c0
[   87.308433][ T6167]  genl_rcv+0x28/0x40
[   87.312409][ T6167]  netlink_unicast+0x7ea/0x980
[   87.317176][ T6167]  ? __pfx_netlink_unicast+0x10/0x10
[   87.322450][ T6167]  ? __virt_addr_valid+0x183/0x520
[   87.327560][ T6167]  ? __check_object_size+0x49c/0x900
[   87.332841][ T6167]  ? bpf_lsm_netlink_send+0x9/0x10
[   87.337955][ T6167]  netlink_sendmsg+0x8db/0xcb0
[   87.342725][ T6167]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.348007][ T6167]  ? __import_iovec+0x536/0x820
[   87.352845][ T6167]  ? aa_sock_msg_perm+0x91/0x160
[   87.357779][ T6167]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   87.363052][ T6167]  ? security_socket_sendmsg+0x87/0xb0
[   87.368504][ T6167]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.373781][ T6167]  __sock_sendmsg+0x221/0x270
[   87.378469][ T6167]  ____sys_sendmsg+0x525/0x7d0
[   87.383235][ T6167]  ? __pfx_____sys_sendmsg+0x10/0x10
[   87.388526][ T6167]  __sys_sendmsg+0x2b0/0x3a0
[   87.393115][ T6167]  ? __pfx___sys_sendmsg+0x10/0x10
[   87.398216][ T6167]  ? vfs_write+0x7c4/0xc90
[   87.402767][ T6167]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   87.409089][ T6167]  ? do_syscall_64+0x100/0x230
[   87.413849][ T6167]  ? do_syscall_64+0xb6/0x230
[   87.418523][ T6167]  do_syscall_64+0xf3/0x230
[   87.423025][ T6167]  ? clear_bhb_loop+0x35/0x90
[   87.427787][ T6167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.433676][ T6167] RIP: 0033:0x7ffa6ed75bd9
[   87.438084][ T6167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.457686][ T6167] RSP: 002b:00007ffa6e7ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.466094][ T6167] RAX: ffffffffffffffda RBX: 00007ffa6ef03f60 RCX: 00007ffa6ed75bd9
[   87.474054][ T6167] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003
[   87.482020][ T6167] RBP: 00007ffa6e7ff0a0 R08: 0000000000000000 R09: 0000000000000000
[   87.489979][ T6167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   87.497937][ T6167] R13: 000000000000000b R14: 00007ffa6ef03f60 R15: 00007fff58c16228
[   87.505910][ T6167]  </TASK>
[   87.693225][ T6182] openvswitch: netlink: Flow actions attr not present in new flow.
[   87.703892][ T6182] FAULT_INJECTION: forcing a failure.
[   87.703892][ T6182] name failslab, interval 1, probability 0, space 0, times 0
[   87.719600][ T6184] netlink: 16 bytes leftover after parsing attributes in process `syz.2.339'.
[   87.722436][ T6182] CPU: 1 PID: 6182 Comm: syz.3.338 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   87.738457][ T6182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   87.748531][ T6182] Call Trace:
[   87.751809][ T6182]  <TASK>
[   87.754733][ T6182]  dump_stack_lvl+0x241/0x360
[   87.759512][ T6182]  ? __pfx_dump_stack_lvl+0x10/0x10
[   87.764709][ T6182]  ? __pfx__printk+0x10/0x10
[   87.769304][ T6182]  should_fail_ex+0x3b0/0x4e0
[   87.773976][ T6182]  ? __alloc_skb+0x1c3/0x440
[   87.778559][ T6182]  should_failslab+0x9/0x20
[   87.783057][ T6182]  kmem_cache_alloc_node_noprof+0x71/0x320
[   87.788862][ T6182]  __alloc_skb+0x1c3/0x440
[   87.793276][ T6182]  ? __pfx___alloc_skb+0x10/0x10
[   87.798208][ T6182]  ? netlink_ack_tlv_len+0x6e/0x200
[   87.803400][ T6182]  netlink_ack+0x13f/0xa30
[   87.807807][ T6182]  ? __pfx_lock_acquire+0x10/0x10
[   87.812822][ T6182]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[   87.818192][ T6182]  netlink_rcv_skb+0x262/0x430
[   87.822950][ T6182]  ? __pfx_genl_rcv_msg+0x10/0x10
[   87.827966][ T6182]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   87.833260][ T6182]  ? __netlink_deliver_tap+0x77e/0x7c0
[   87.838730][ T6182]  genl_rcv+0x28/0x40
[   87.842706][ T6182]  netlink_unicast+0x7ea/0x980
[   87.847472][ T6182]  ? __pfx_netlink_unicast+0x10/0x10
[   87.852750][ T6182]  ? __virt_addr_valid+0x183/0x520
[   87.857857][ T6182]  ? __check_object_size+0x49c/0x900
[   87.863134][ T6182]  ? bpf_lsm_netlink_send+0x9/0x10
[   87.868241][ T6182]  netlink_sendmsg+0x8db/0xcb0
[   87.873006][ T6182]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.878285][ T6182]  ? __import_iovec+0x536/0x820
[   87.883122][ T6182]  ? aa_sock_msg_perm+0x91/0x160
[   87.888058][ T6182]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   87.893329][ T6182]  ? security_socket_sendmsg+0x87/0xb0
[   87.898783][ T6182]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.904060][ T6182]  __sock_sendmsg+0x221/0x270
[   87.908737][ T6182]  ____sys_sendmsg+0x525/0x7d0
[   87.913504][ T6182]  ? __pfx_____sys_sendmsg+0x10/0x10
[   87.918795][ T6182]  __sys_sendmsg+0x2b0/0x3a0
[   87.923389][ T6182]  ? __pfx___sys_sendmsg+0x10/0x10
[   87.928491][ T6182]  ? vfs_write+0x7c4/0xc90
[   87.932936][ T6182]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   87.939256][ T6182]  ? do_syscall_64+0x100/0x230
[   87.944023][ T6182]  ? do_syscall_64+0xb6/0x230
[   87.948695][ T6182]  do_syscall_64+0xf3/0x230
[   87.953194][ T6182]  ? clear_bhb_loop+0x35/0x90
[   87.957872][ T6182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.963765][ T6182] RIP: 0033:0x7f4dc5375bd9
[   87.968171][ T6182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.987763][ T6182] RSP: 002b:00007f4dc6113048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.996166][ T6182] RAX: ffffffffffffffda RBX: 00007f4dc5503f60 RCX: 00007f4dc5375bd9
[   88.004129][ T6182] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[   88.012088][ T6182] RBP: 00007f4dc61130a0 R08: 0000000000000000 R09: 0000000000000000
[   88.020050][ T6182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.028011][ T6182] R13: 000000000000000b R14: 00007f4dc5503f60 R15: 00007ffc26cb7a68
[   88.035985][ T6182]  </TASK>
[   88.303517][ T6206] netlink: 'syz.3.348': attribute type 2 has an invalid length.
[   88.312509][ T6207] netlink: 28 bytes leftover after parsing attributes in process `syz.2.346'.
[   88.312988][ T6206] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.348'.
[   88.335833][ T6206] syz.3.348 uses old SIOCAX25GETINFO
[   88.346297][ T6209] netlink: 'syz.3.348': attribute type 2 has an invalid length.
[   88.564378][ T6223] Driver unsupported XDP return value 0 on prog  (id 102) dev N/A, expect packet loss!
[   88.611534][ T6225] netlink: 'syz.4.354': attribute type 4 has an invalid length.
[   88.708622][ T6232] netlink: 'syz.4.356': attribute type 29 has an invalid length.
[   88.717469][ T6232] netlink: 'syz.4.356': attribute type 29 has an invalid length.
[   88.727658][ T6232] netlink: 'syz.4.356': attribute type 29 has an invalid length.
[   88.736067][ T6232] netlink: 'syz.4.356': attribute type 29 has an invalid length.
[   88.750650][ T6232] netlink: 'syz.4.356': attribute type 29 has an invalid length.
[   88.760738][ T6232] netlink: 'syz.4.356': attribute type 29 has an invalid length.
[   88.823591][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[   89.981222][ T6291] __nla_validate_parse: 3 callbacks suppressed
[   89.981241][ T6291] netlink: 28 bytes leftover after parsing attributes in process `syz.4.377'.
[   90.284344][ T6300] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   90.302250][ T6311] netlink: 8 bytes leftover after parsing attributes in process `syz.3.383'.
[   90.522328][ T6317] netlink: 8 bytes leftover after parsing attributes in process `syz.3.385'.
[   91.012768][    C1] vxcan0: j1939_tp_rxtimer: 0xffff88802a6a9800: rx timeout, send abort
[   91.179580][ T6341] netlink: 8 bytes leftover after parsing attributes in process `syz.0.394'.
[   91.522211][    C1] vxcan0: j1939_tp_rxtimer: 0xffff88802a6a9800: abort rx timeout. Force session deactivation
[   91.729307][ T6363] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   91.952827][ T6392] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   92.012681][ T6395] validate_nla: 22 callbacks suppressed
[   92.012700][ T6395] netlink: 'syz.3.413': attribute type 10 has an invalid length.
[   92.710155][ T6441] netlink: 'syz.0.422': attribute type 6 has an invalid length.
[   92.972609][ T6454] openvswitch: netlink: Missing key (keys=40, expected=2000)
[   92.977145][ T6452] netlink: 'syz.1.423': attribute type 12 has an invalid length.
[   92.994865][  T786] IPVS: starting estimator thread 0...
[   93.096711][ T6456] IPVS: using max 17 ests per chain, 40800 per kthread
[   93.139534][ T6462] netlink: 16 bytes leftover after parsing attributes in process `syz.0.427'.
[   93.150526][ T6462] netlink: 16 bytes leftover after parsing attributes in process `syz.0.427'.
[   93.163792][ T6462] batman_adv: batadv0: adding TT local entry 4a:c8:93:75:00:00 to non-existent VLAN 2358
[   93.496891][ T6469] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   93.770807][ T6497] tap0: tun_chr_ioctl cmd 1074025677
[   93.777846][ T6497] tap0: linktype set to 1
[   93.921610][ T6503] netlink: 'syz.0.439': attribute type 2 has an invalid length.
[   94.044591][ T6511] FAULT_INJECTION: forcing a failure.
[   94.044591][ T6511] name failslab, interval 1, probability 0, space 0, times 0
[   94.074725][ T6511] CPU: 1 PID: 6511 Comm: syz.3.443 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   94.084769][ T6511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   94.094851][ T6511] Call Trace:
[   94.098149][ T6511]  <TASK>
[   94.101100][ T6511]  dump_stack_lvl+0x241/0x360
[   94.105799][ T6511]  ? __pfx_dump_stack_lvl+0x10/0x10
[   94.111001][ T6511]  ? __pfx__printk+0x10/0x10
[   94.115591][ T6511]  ? __pfx___might_resched+0x10/0x10
[   94.121022][ T6511]  ? dynamic_dname+0x141/0x1b0
[   94.125810][ T6511]  should_fail_ex+0x3b0/0x4e0
[   94.130500][ T6511]  ? tomoyo_encode+0x26f/0x540
[   94.135257][ T6511]  should_failslab+0x9/0x20
[   94.139757][ T6511]  __kmalloc_noprof+0xd8/0x400
[   94.144534][ T6511]  tomoyo_encode+0x26f/0x540
[   94.149117][ T6511]  ? __pfx_sockfs_dname+0x10/0x10
[   94.154141][ T6511]  tomoyo_realpath_from_path+0x59e/0x5e0
[   94.159797][ T6511]  tomoyo_path_number_perm+0x23a/0x880
[   94.165259][ T6511]  ? tomoyo_path_number_perm+0x208/0x880
[   94.170894][ T6511]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   94.176902][ T6511]  ? __fget_files+0x29/0x470
[   94.181485][ T6511]  ? __fget_files+0x3f6/0x470
[   94.186151][ T6511]  ? __fget_files+0x29/0x470
[   94.190737][ T6511]  security_file_ioctl+0x75/0xb0
[   94.195671][ T6511]  __se_sys_ioctl+0x47/0x170
[   94.200257][ T6511]  do_syscall_64+0xf3/0x230
[   94.204756][ T6511]  ? clear_bhb_loop+0x35/0x90
[   94.209430][ T6511]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.215316][ T6511] RIP: 0033:0x7f4dc5375bd9
[   94.219723][ T6511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.239329][ T6511] RSP: 002b:00007f4dc6113048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   94.247823][ T6511] RAX: ffffffffffffffda RBX: 00007f4dc5503f60 RCX: 00007f4dc5375bd9
[   94.255786][ T6511] RDX: 0000000020002040 RSI: 00000000000089e0 RDI: 0000000000000003
[   94.263748][ T6511] RBP: 00007f4dc61130a0 R08: 0000000000000000 R09: 0000000000000000
[   94.271710][ T6511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.279669][ T6511] R13: 000000000000000b R14: 00007f4dc5503f60 R15: 00007ffc26cb7a68
[   94.287667][ T6511]  </TASK>
[   94.294797][ T4489] Bluetooth: hci4: command 0x0405 tx timeout
[   94.309899][ T6511] ERROR: Out of memory at tomoyo_realpath_from_path.
[   94.468663][ T6531] netlink: 'syz.1.448': attribute type 3 has an invalid length.
[   94.475320][ T6515] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   94.752029][ T6552] netlink: 44 bytes leftover after parsing attributes in process `syz.0.458'.
[   94.762576][ T6552] netlink: 44 bytes leftover after parsing attributes in process `syz.0.458'.
[   94.798785][ T6552] netlink: 44 bytes leftover after parsing attributes in process `syz.0.458'.
[   94.811419][ T6555] netlink: 'syz.2.457': attribute type 10 has an invalid length.
[   94.822191][ T6552] netlink: 44 bytes leftover after parsing attributes in process `syz.0.458'.
[   94.827713][ T6555] team0: Device ipvlan1 is up. Set it down before adding it as a team port
[   94.843399][ T6556] netlink: 'syz.0.458': attribute type 1 has an invalid length.
[   94.860946][ T6556] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   95.200713][ T6577] Bluetooth: MGMT ver 1.22
[   95.585154][ T6596] netlink: 'syz.0.471': attribute type 10 has an invalid length.
[   95.587289][   T29] audit: type=1107 audit(1720627070.609:2): pid=6595 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='O'
[   95.636798][ T6600] FAULT_INJECTION: forcing a failure.
[   95.636798][ T6600] name failslab, interval 1, probability 0, space 0, times 0
[   95.636912][ T6596] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.649504][ T6600] CPU: 0 PID: 6600 Comm: syz.4.472 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   95.649540][ T6600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   95.649552][ T6600] Call Trace:
[   95.649561][ T6600]  <TASK>
[   95.649570][ T6600]  dump_stack_lvl+0x241/0x360
[   95.649605][ T6600]  ? __pfx_dump_stack_lvl+0x10/0x10
[   95.649630][ T6600]  ? __pfx__printk+0x10/0x10
[   95.649662][ T6600]  ? pskb_expand_head+0xc89/0x1390
[   95.649690][ T6600]  should_fail_ex+0x3b0/0x4e0
[   95.649719][ T6600]  ? skb_clone+0x20c/0x390
[   95.649741][ T6600]  should_failslab+0x9/0x20
[   95.649765][ T6600]  kmem_cache_alloc_noprof+0x6c/0x2a0
[   95.649800][ T6600]  skb_clone+0x20c/0x390
[   95.649825][ T6600]  bpf_clone_redirect+0xab/0x3d0
[   95.649850][ T6600]  ? bpf_test_run+0x31e/0x910
[   95.649874][ T6600]  bpf_prog_6893982b85ceadf7+0x5e/0x63
[   95.740427][ T6600]  ? debug_mutex_wake_waiter+0xb0/0x320
[   95.745981][ T6600]  ? timekeeping_get_ns+0x5c/0x420
[   95.751093][ T6600]  ? bpf_test_run+0x31e/0x910
[   95.755764][ T6600]  ? __pfx_lockdep_softirqs_off+0x10/0x10
[   95.761482][ T6600]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   95.767799][ T6600]  ? ktime_get+0x3c/0xb0
[   95.772046][ T6600]  ? bpf_test_run+0x31e/0x910
[   95.776716][ T6600]  ? __pfx___cant_migrate+0x10/0x10
[   95.781904][ T6600]  ? bpf_test_run+0x31e/0x910
[   95.786571][ T6600]  ? __pfx___local_bh_enable_ip+0x10/0x10
[   95.792281][ T6600]  ? bpf_test_timer_continue+0x11a/0x350
[   95.797908][ T6600]  ? bpf_test_run+0x31e/0x910
[   95.802576][ T6600]  bpf_test_run+0x409/0x910
[   95.807087][ T6600]  ? __pfx_bpf_test_run+0x10/0x10
[   95.812102][ T6600]  ? eth_type_trans+0x3d1/0x7a0
[   95.816949][ T6600]  ? __pfx_eth_type_trans+0x10/0x10
[   95.822136][ T6600]  ? convert___skb_to_skb+0x41/0x620
[   95.827414][ T6600]  bpf_prog_test_run_skb+0xafa/0x13a0
[   95.832781][ T6600]  ? __pfx_lock_release+0x10/0x10
[   95.837813][ T6600]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[   95.843620][ T6600]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[   95.849421][ T6600]  bpf_prog_test_run+0x33a/0x3b0
[   95.854352][ T6600]  __sys_bpf+0x48d/0x810
[   95.858609][ T6600]  ? __pfx___sys_bpf+0x10/0x10
[   95.863385][ T6600]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   95.869358][ T6600]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   95.875681][ T6600]  ? do_syscall_64+0x100/0x230
[   95.880444][ T6600]  __x64_sys_bpf+0x7c/0x90
[   95.884854][ T6600]  do_syscall_64+0xf3/0x230
[   95.889351][ T6600]  ? clear_bhb_loop+0x35/0x90
[   95.894027][ T6600]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.899912][ T6600] RIP: 0033:0x7ffa6ed75bd9
[   95.904316][ T6600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.923910][ T6600] RSP: 002b:00007ffa6e7ff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   95.932322][ T6600] RAX: ffffffffffffffda RBX: 00007ffa6ef03f60 RCX: 00007ffa6ed75bd9
[   95.940288][ T6600] RDX: 000000000000002c RSI: 0000000020000080 RDI: 000000000000000a
[   95.948251][ T6600] RBP: 00007ffa6e7ff0a0 R08: 0000000000000000 R09: 0000000000000000
[   95.956210][ T6600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   95.964176][ T6600] R13: 000000000000000b R14: 00007ffa6ef03f60 R15: 00007fff58c16228
[   95.972151][ T6600]  </TASK>
[   95.992133][ T6596] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   96.051526][ T6599] syz_tun: entered promiscuous mode
[   96.060070][ T6599] batadv_slave_0: entered promiscuous mode
[   96.075740][ T6599] hsr1: entered allmulticast mode
[   96.083446][ T6599] syz_tun: entered allmulticast mode
[   96.095254][ T6599] batadv_slave_0: entered allmulticast mode
[   96.351207][ T6623] __nla_validate_parse: 2 callbacks suppressed
[   96.351227][ T6623] netlink: 36 bytes leftover after parsing attributes in process `syz.4.479'.
[   96.374243][ T6621] netlink: 'syz.4.479': attribute type 13 has an invalid length.
[   96.382149][ T6621] macvtap0: entered allmulticast mode
[   96.389768][ T6621] veth0_macvtap: entered allmulticast mode
[   96.429477][ T6621] macvtap0: refused to change device tx_queue_len
[   96.444993][ T6623] netlink: 36 bytes leftover after parsing attributes in process `syz.4.479'.
[   96.465860][ T6621] netlink: 'syz.4.479': attribute type 13 has an invalid length.
[   96.475706][ T6621] macvtap0: refused to change device tx_queue_len
[   96.486838][ T6621] macvtap0: refused to change device tx_queue_len
[   96.496514][ T6623] netlink: 36 bytes leftover after parsing attributes in process `syz.4.479'.
[   96.525120][ T6623] netlink: 36 bytes leftover after parsing attributes in process `syz.4.479'.
[   96.556192][ T6621] macvtap0: refused to change device tx_queue_len
[   96.583064][ T6621] macvtap0: refused to change device tx_queue_len
[   96.596645][ T6623] netlink: 36 bytes leftover after parsing attributes in process `syz.4.479'.
[   96.615856][ T6633] netlink: 8 bytes leftover after parsing attributes in process `syz.2.485'.
[   96.619745][ T6632] FAULT_INJECTION: forcing a failure.
[   96.619745][ T6632] name failslab, interval 1, probability 0, space 0, times 0
[   96.625280][ T6633] –: renamed from bridge_slave_1 (while UP)
[   96.645132][ T6632] CPU: 0 PID: 6632 Comm: syz.3.483 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   96.655144][ T6632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   96.665194][ T6632] Call Trace:
[   96.668481][ T6632]  <TASK>
[   96.671418][ T6632]  dump_stack_lvl+0x241/0x360
[   96.676094][ T6632]  ? __pfx_dump_stack_lvl+0x10/0x10
[   96.681284][ T6632]  ? __pfx__printk+0x10/0x10
[   96.685868][ T6632]  ? seqcount_lockdep_reader_access+0x1d7/0x220
[   96.692118][ T6632]  should_fail_ex+0x3b0/0x4e0
[   96.696800][ T6632]  ? iter_file_splice_write+0x308/0x14e0
[   96.702425][ T6632]  should_failslab+0x9/0x20
[   96.706922][ T6632]  __kmalloc_noprof+0xd8/0x400
[   96.711683][ T6632]  iter_file_splice_write+0x308/0x14e0
[   96.717129][ T6632]  ? __lock_acquire+0x1346/0x1fd0
[   96.722162][ T6632]  ? __pfx_iter_file_splice_write+0x10/0x10
[   96.728054][ T6632]  ? rcu_read_lock_any_held+0xb7/0x160
[   96.733505][ T6632]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   96.739405][ T6632]  ? __pfx_iter_file_splice_write+0x10/0x10
[   96.745296][ T6632]  direct_splice_actor+0x11e/0x220
[   96.750405][ T6632]  splice_direct_to_actor+0x58e/0xc90
[   96.755792][ T6632]  ? __pfx_direct_splice_actor+0x10/0x10
[   96.761427][ T6632]  ? __pfx_splice_direct_to_actor+0x10/0x10
[   96.767313][ T6632]  ? __fget_files+0x29/0x470
[   96.771896][ T6632]  ? __pfx_lock_release+0x10/0x10
[   96.776936][ T6632]  do_splice_direct+0x28c/0x3e0
[   96.781783][ T6632]  ? __pfx_do_splice_direct+0x10/0x10
[   96.787147][ T6632]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   96.793036][ T6632]  ? rw_verify_area+0x1d2/0x6b0
[   96.797968][ T6632]  do_sendfile+0x56d/0xe20
[   96.802387][ T6632]  ? __pfx_do_sendfile+0x10/0x10
[   96.807327][ T6632]  __se_sys_sendfile64+0x17c/0x1e0
[   96.812433][ T6632]  ? __pfx___se_sys_sendfile64+0x10/0x10
[   96.818062][ T6632]  ? do_syscall_64+0x100/0x230
[   96.822829][ T6632]  ? do_syscall_64+0xb6/0x230
[   96.827501][ T6632]  do_syscall_64+0xf3/0x230
[   96.831999][ T6632]  ? clear_bhb_loop+0x35/0x90
[   96.836681][ T6632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.842573][ T6632] RIP: 0033:0x7f4dc5375bd9
[   96.846980][ T6632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.866581][ T6632] RSP: 002b:00007f4dc60f2048 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   96.875008][ T6632] RAX: ffffffffffffffda RBX: 00007f4dc5504038 RCX: 00007f4dc5375bd9
[   96.882990][ T6632] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004
[   96.890955][ T6632] RBP: 00007f4dc60f20a0 R08: 0000000000000000 R09: 0000000000000000
[   96.898915][ T6632] R10: 00000000f03a0005 R11: 0000000000000246 R12: 0000000000000002
[   96.906878][ T6632] R13: 000000000000006e R14: 00007f4dc5504038 R15: 00007ffc26cb7a68
[   96.914851][ T6632]  </TASK>
[   96.953950][ T6621] macvtap0: refused to change device tx_queue_len
[   96.967823][ T6621] macvtap0: refused to change device tx_queue_len
[   96.982419][ T6623] netlink: 36 bytes leftover after parsing attributes in process `syz.4.479'.
[   97.002944][ T6621] macvtap0: refused to change device tx_queue_len
[   97.014758][ T6621] macvtap0: refused to change device tx_queue_len
[   97.025094][ T6623] netlink: 36 bytes leftover after parsing attributes in process `syz.4.479'.
[   97.037710][ T6621] validate_nla: 7 callbacks suppressed
[   97.037725][ T6621] netlink: 'syz.4.479': attribute type 13 has an invalid length.
[   97.064258][   T29] audit: type=1107 audit(1720627072.089:3): pid=6641 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='O'
[   97.082118][ T6621] macvtap0: refused to change device tx_queue_len
[   97.090409][ T6621] netlink: 'syz.4.479': attribute type 13 has an invalid length.
[   97.118830][ T6621] macvtap0: refused to change device tx_queue_len
[   97.143154][ T6643] netlink: 'syz.2.488': attribute type 10 has an invalid length.
[   97.190881][ T6643] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.204392][ T6643] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   97.223741][ T6623] netlink: 36 bytes leftover after parsing attributes in process `syz.4.479'.
[   97.244262][ T6621] netlink: 'syz.4.479': attribute type 13 has an invalid length.
[   97.264511][ T6621] macvtap0: refused to change device tx_queue_len
[   97.296018][ T6650] netlink: 4 bytes leftover after parsing attributes in process `syz.3.489'.
[   97.668732][ T6674] FAULT_INJECTION: forcing a failure.
[   97.668732][ T6674] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.701096][ T6674] CPU: 1 PID: 6674 Comm: syz.0.498 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[   97.711135][ T6674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   97.721215][ T6674] Call Trace:
[   97.724510][ T6674]  <TASK>
[   97.727461][ T6674]  dump_stack_lvl+0x241/0x360
[   97.732176][ T6674]  ? __pfx_dump_stack_lvl+0x10/0x10
[   97.737402][ T6674]  ? __pfx__printk+0x10/0x10
[   97.742014][ T6674]  ? __pfx_lock_release+0x10/0x10
[   97.747062][ T6674]  should_fail_ex+0x3b0/0x4e0
[   97.751764][ T6674]  _copy_from_user+0x2f/0xe0
[   97.756372][ T6674]  copy_msghdr_from_user+0xae/0x680
[   97.761601][ T6674]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   97.767451][ T6674]  __sys_sendmsg+0x23d/0x3a0
[   97.772067][ T6674]  ? __pfx___sys_sendmsg+0x10/0x10
[   97.777198][ T6674]  ? vfs_write+0x7c4/0xc90
[   97.781674][ T6674]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   97.788021][ T6674]  ? do_syscall_64+0x100/0x230
[   97.792810][ T6674]  ? do_syscall_64+0xb6/0x230
[   97.797515][ T6674]  do_syscall_64+0xf3/0x230
[   97.802040][ T6674]  ? clear_bhb_loop+0x35/0x90
[   97.806742][ T6674]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.812658][ T6674] RIP: 0033:0x7f6b30375bd9
[   97.817105][ T6674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.836730][ T6674] RSP: 002b:00007f6b310fb048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   97.845171][ T6674] RAX: ffffffffffffffda RBX: 00007f6b30503f60 RCX: 00007f6b30375bd9
[   97.853142][ T6674] RDX: 0000000000000000 RSI: 0000000020000500 RDI: 0000000000000004
[   97.853161][ T6674] RBP: 00007f6b310fb0a0 R08: 0000000000000000 R09: 0000000000000000
[   97.853173][ T6674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.853184][ T6674] R13: 000000000000000b R14: 00007f6b30503f60 R15: 00007ffe38c26118
[   97.853212][ T6674]  </TASK>
[   98.813889][ T6742] netlink: 'syz.4.524': attribute type 1 has an invalid length.
[   99.158688][ T6776] syzkaller1: entered promiscuous mode
[   99.176551][ T6776] syzkaller1: entered allmulticast mode
[   99.339321][ T6770] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   99.538154][ T6796] xt_SECMARK: mode already set to 1 cannot mix with rules for mode 0
[  101.499719][ T6888] __nla_validate_parse: 14 callbacks suppressed
[  101.499739][ T6888] netlink: 60 bytes leftover after parsing attributes in process `syz.0.572'.
[  101.536554][ T6888] netlink: 60 bytes leftover after parsing attributes in process `syz.0.572'.
[  101.754518][ T6906] xt_cgroup: invalid path, errno=-2
[  102.312222][ T6923] netlink: 8 bytes leftover after parsing attributes in process `syz.1.581'.
[  102.364833][ T6923] netlink: 32 bytes leftover after parsing attributes in process `syz.1.581'.
[  102.415484][ T6923] netlink: 4 bytes leftover after parsing attributes in process `syz.1.581'.
[  102.448201][    C0] Unknown status report in ack skb
[  102.934385][ T6954] netlink: 'syz.1.589': attribute type 5 has an invalid length.
[  103.004492][ T6939] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  103.273689][ T6965] netlink: 60 bytes leftover after parsing attributes in process `syz.2.592'.
[  103.294862][ T6965] netlink: 60 bytes leftover after parsing attributes in process `syz.2.592'.
[  103.486854][ T6970] xt_cgroup: invalid path, errno=-2
[  103.672415][ T6974] nbd: must specify at least one socket
[  104.083719][ T6983] netlink: 8 bytes leftover after parsing attributes in process `syz.0.597'.
[  104.091102][ T6981] dccp_close: ABORT with 1 bytes unread
[  104.393902][ T7000] FAULT_INJECTION: forcing a failure.
[  104.393902][ T7000] name failslab, interval 1, probability 0, space 0, times 0
[  104.417115][ T7000] CPU: 0 PID: 7000 Comm: syz.4.603 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[  104.427151][ T7000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  104.437231][ T7000] Call Trace:
[  104.440523][ T7000]  <TASK>
[  104.443470][ T7000]  dump_stack_lvl+0x241/0x360
[  104.448178][ T7000]  ? __pfx_dump_stack_lvl+0x10/0x10
[  104.453409][ T7000]  ? __pfx__printk+0x10/0x10
[  104.458026][ T7000]  ? __pfx___might_resched+0x10/0x10
[  104.463335][ T7000]  ? mark_lock+0x9a/0x350
[  104.467703][ T7000]  should_fail_ex+0x3b0/0x4e0
[  104.472403][ T7000]  ? __kernfs_new_node+0xd8/0x870
[  104.477446][ T7000]  should_failslab+0x9/0x20
[  104.481965][ T7000]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  104.487360][ T7000]  __kernfs_new_node+0xd8/0x870
[  104.492236][ T7000]  ? __pfx___kernfs_new_node+0x10/0x10
[  104.497712][ T7000]  ? __pfx_lock_acquire+0x10/0x10
[  104.502758][ T7000]  ? __pfx___might_resched+0x10/0x10
[  104.508070][ T7000]  ? sysfs_create_dir_ns+0x189/0x3a0
[  104.513379][ T7000]  ? sysfs_create_dir_ns+0x1cf/0x3a0
[  104.518692][ T7000]  kernfs_new_node+0x137/0x240
[  104.523479][ T7000]  __kernfs_create_file+0x49/0x2e0
[  104.528614][ T7000]  sysfs_add_file_mode_ns+0x24a/0x310
[  104.534013][ T7000]  sysfs_create_file_ns+0x197/0x2a0
[  104.539236][ T7000]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[  104.544972][ T7000]  ? kobject_init+0x83/0x1f0
[  104.549585][ T7000]  ? __dev_fwnode+0x50/0x80
[  104.554115][ T7000]  ? device_create_file+0xf2/0x1c0
[  104.559258][ T7000]  device_add+0x522/0xbf0
[  104.563611][ T7000]  ? device_initialize+0x266/0x460
[  104.568749][ T7000]  wakeup_source_sysfs_add+0x1aa/0x270
[  104.574241][ T7000]  wakeup_source_register+0x171/0x250
[  104.579639][ T7000]  ep_insert+0xd8c/0x1ac0
[  104.584005][ T7000]  ? __pfx_ep_insert+0x10/0x10
[  104.588889][ T7000]  ? bpf_lsm_capable+0x9/0x10
[  104.593592][ T7000]  do_epoll_ctl+0x8d2/0xf70
[  104.598119][ T7000]  ? do_epoll_ctl+0x761/0xf70
[  104.602823][ T7000]  __x64_sys_epoll_ctl+0x161/0x1a0
[  104.607956][ T7000]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  104.613612][ T7000]  ? do_syscall_64+0x100/0x230
[  104.618397][ T7000]  ? do_syscall_64+0xb6/0x230
[  104.623096][ T7000]  do_syscall_64+0xf3/0x230
[  104.627622][ T7000]  ? clear_bhb_loop+0x35/0x90
[  104.632322][ T7000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.638234][ T7000] RIP: 0033:0x7ffa6ed75bd9
[  104.642662][ T7000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.662286][ T7000] RSP: 002b:00007ffa6e7ff048 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  104.670720][ T7000] RAX: ffffffffffffffda RBX: 00007ffa6ef03f60 RCX: 00007ffa6ed75bd9
[  104.678709][ T7000] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000003
[  104.686696][ T7000] RBP: 00007ffa6e7ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  104.694681][ T7000] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000002
[  104.702667][ T7000] R13: 000000000000000b R14: 00007ffa6ef03f60 R15: 00007fff58c16228
[  104.710670][ T7000]  </TASK>
[  104.772530][ T7006] IPVS: set_ctl: invalid protocol: 43 127.0.0.1:20002
[  105.063084][ T7008] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  105.119377][ T7020] netlink: 28 bytes leftover after parsing attributes in process `syz.0.606'.
[  105.319359][ T7029] netlink: 60 bytes leftover after parsing attributes in process `syz.2.608'.
[  105.702136][ T7040] FAULT_INJECTION: forcing a failure.
[  105.702136][ T7040] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.715643][ T7040] CPU: 0 PID: 7040 Comm: syz.3.611 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[  105.725626][ T7040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  105.735682][ T7040] Call Trace:
[  105.738966][ T7040]  <TASK>
[  105.741884][ T7040]  dump_stack_lvl+0x241/0x360
[  105.746572][ T7040]  ? __pfx_dump_stack_lvl+0x10/0x10
[  105.751783][ T7040]  ? __pfx__printk+0x10/0x10
[  105.756381][ T7040]  ? snprintf+0xda/0x120
[  105.760621][ T7040]  should_fail_ex+0x3b0/0x4e0
[  105.765294][ T7040]  _copy_to_user+0x2f/0xb0
[  105.769700][ T7040]  simple_read_from_buffer+0xca/0x150
[  105.775064][ T7040]  proc_fail_nth_read+0x1e9/0x250
[  105.780077][ T7040]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  105.785611][ T7040]  ? rw_verify_area+0x520/0x6b0
[  105.789604][ T7042] xt_cgroup: invalid path, errno=-2
[  105.790442][ T7040]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  105.790499][ T7040]  vfs_read+0x204/0xbc0
[  105.805360][ T7040]  ? __pfx_lock_release+0x10/0x10
[  105.810378][ T7040]  ? __pfx_vfs_read+0x10/0x10
[  105.815058][ T7040]  ? __fget_files+0x29/0x470
[  105.819673][ T7040]  ? __fget_files+0x3f6/0x470
[  105.824387][ T7040]  ksys_read+0x1a0/0x2c0
[  105.828654][ T7040]  ? __pfx_ksys_read+0x10/0x10
[  105.833440][ T7040]  ? do_syscall_64+0x100/0x230
[  105.838227][ T7040]  ? do_syscall_64+0xb6/0x230
[  105.842926][ T7040]  do_syscall_64+0xf3/0x230
[  105.847449][ T7040]  ? clear_bhb_loop+0x35/0x90
[  105.852141][ T7040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.858023][ T7040] RIP: 0033:0x7f4dc53746bc
[  105.862431][ T7040] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  105.882028][ T7040] RSP: 002b:00007f4dc6113040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  105.890440][ T7040] RAX: ffffffffffffffda RBX: 00007f4dc5503f60 RCX: 00007f4dc53746bc
[  105.898429][ T7040] RDX: 000000000000000f RSI: 00007f4dc61130b0 RDI: 0000000000000005
[  105.906418][ T7040] RBP: 00007f4dc61130a0 R08: 0000000000000000 R09: 0000000000000000
[  105.914404][ T7040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.922391][ T7040] R13: 000000000000000b R14: 00007f4dc5503f60 R15: 00007ffc26cb7a68
[  105.930381][ T7040]  </TASK>
[  106.021329][ T7049] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  106.328101][ T7057] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  106.531854][ T7084] __nla_validate_parse: 2 callbacks suppressed
[  106.531873][ T7084] netlink: 4 bytes leftover after parsing attributes in process `syz.3.622'.
[  106.562670][ T7084] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  106.572255][ T7084] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  106.581083][ T7084] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  106.590103][ T7084] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  106.603136][ T7084] vxlan0: entered promiscuous mode
[  106.899591][ T7098] netlink: 16 bytes leftover after parsing attributes in process `syz.4.627'.
[  106.908824][ T7098] netlink: 4 bytes leftover after parsing attributes in process `syz.4.627'.
[  106.918874][ T7100] netlink: 60 bytes leftover after parsing attributes in process `syz.0.626'.
[  106.933976][ T7100] netlink: 60 bytes leftover after parsing attributes in process `syz.0.626'.
[  107.426883][ T7127] xt_cgroup: invalid path, errno=-2
[  107.430469][ T7126] team0: Device macvtap1 is already an upper device of the team interface
[  107.561111][ T7134] netlink: 8 bytes leftover after parsing attributes in process `syz.3.640'.
[  107.685614][ T7139] wg2: entered promiscuous mode
[  107.700795][ T7139] wg2: entered allmulticast mode
[  107.833086][ T7153] netlink: 4 bytes leftover after parsing attributes in process `syz.3.645'.
[  108.758087][ T5134] IPVS: starting estimator thread 0...
[  108.877727][ T7168] IPVS: using max 20 ests per chain, 48000 per kthread
[  108.947609][ T7176] netlink: 60 bytes leftover after parsing attributes in process `syz.4.653'.
[  108.964091][ T7176] netlink: 60 bytes leftover after parsing attributes in process `syz.4.653'.
[  109.514076][ T7191] netlink: 8 bytes leftover after parsing attributes in process `syz.2.658'.
[  109.538345][ T7191] xt_cgroup: invalid path, errno=-2
[  109.711351][ T7196] hsr0: entered promiscuous mode
[  109.904200][ T7202] syzkaller0: entered promiscuous mode
[  109.911919][ T7202] syzkaller0: entered allmulticast mode
[  111.095746][ T7239] FAULT_INJECTION: forcing a failure.
[  111.095746][ T7239] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  111.109578][ T7239] CPU: 0 PID: 7239 Comm: syz.1.675 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[  111.119591][ T7239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  111.129665][ T7239] Call Trace:
[  111.132966][ T7239]  <TASK>
[  111.135912][ T7239]  dump_stack_lvl+0x241/0x360
[  111.140623][ T7239]  ? __pfx_dump_stack_lvl+0x10/0x10
[  111.145856][ T7239]  ? __pfx__printk+0x10/0x10
[  111.150487][ T7239]  ? snprintf+0xda/0x120
[  111.154762][ T7239]  should_fail_ex+0x3b0/0x4e0
[  111.155139][ T7243] IPv6: sit1: Disabled Multicast RS
[  111.159457][ T7239]  _copy_to_user+0x2f/0xb0
[  111.159485][ T7239]  simple_read_from_buffer+0xca/0x150
[  111.159509][ T7239]  proc_fail_nth_read+0x1e9/0x250
[  111.159530][ T7239]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  111.165638][ T7243] team0: Device sit1 is of different type
[  111.169106][ T7239]  ? rw_verify_area+0x520/0x6b0
[  111.169132][ T7239]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  111.169151][ T7239]  vfs_read+0x204/0xbc0
[  111.169170][ T7239]  ? __pfx_lock_release+0x10/0x10
[  111.169191][ T7239]  ? do_sock_setsockopt+0x3e2/0x720
[  111.169214][ T7239]  ? __pfx_vfs_read+0x10/0x10
[  111.169235][ T7239]  ? __fget_files+0x29/0x470
[  111.169258][ T7239]  ? __fget_files+0x3f6/0x470
[  111.169294][ T7239]  ksys_read+0x1a0/0x2c0
[  111.169321][ T7239]  ? __pfx_ksys_read+0x10/0x10
[  111.169343][ T7239]  ? do_syscall_64+0x100/0x230
[  111.169370][ T7239]  ? do_syscall_64+0xb6/0x230
[  111.169396][ T7239]  do_syscall_64+0xf3/0x230
[  111.169420][ T7239]  ? clear_bhb_loop+0x35/0x90
[  111.169447][ T7239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.169471][ T7239] RIP: 0033:0x7f62adf746bc
[  111.169490][ T7239] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  111.169505][ T7239] RSP: 002b:00007f62aee08040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  111.169527][ T7239] RAX: ffffffffffffffda RBX: 00007f62ae104038 RCX: 00007f62adf746bc
[  111.169541][ T7239] RDX: 000000000000000f RSI: 00007f62aee080b0 RDI: 0000000000000004
[  111.169554][ T7239] RBP: 00007f62aee080a0 R08: 0000000000000000 R09: 0000000000000000
[  111.169566][ T7239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.169584][ T7239] R13: 000000000000006e R14: 00007f62ae104038 R15: 00007fff7779dab8
[  111.169615][ T7239]  </TASK>
[  111.513109][ T7257] netlink: 'syz.4.682': attribute type 11 has an invalid length.
[  111.620324][ T7262] __nla_validate_parse: 6 callbacks suppressed
[  111.620336][ T7262] netlink: 8 bytes leftover after parsing attributes in process `syz.4.684'.
[  111.640743][ T7262] xt_cgroup: invalid path, errno=-2
[  111.789587][ T7272] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  112.106978][ T7294] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  112.672736][ T7302] netlink: 60 bytes leftover after parsing attributes in process `syz.3.697'.
[  112.683351][ T7302] netlink: 60 bytes leftover after parsing attributes in process `syz.3.697'.
[  112.948830][ T7313] netlink: 36 bytes leftover after parsing attributes in process `syz.0.702'.
[  113.184276][ T7329] netlink: 256 bytes leftover after parsing attributes in process `syz.0.707'.
[  113.205898][ T7329] netlink: 8 bytes leftover after parsing attributes in process `syz.0.707'.
[  113.745238][ T7363] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[  113.867901][ T7366] netlink: 8 bytes leftover after parsing attributes in process `syz.0.717'.
[  113.868973][ T7370] netlink: 60 bytes leftover after parsing attributes in process `syz.2.720'.
[  113.885703][ T7366] xt_cgroup: invalid path, errno=-2
[  114.090813][ T7385] netlink: 60 bytes leftover after parsing attributes in process `syz.0.722'.
[  114.101222][ T7385] netlink: 60 bytes leftover after parsing attributes in process `syz.0.722'.
[  114.273696][ T7396] syz.4.726[7396] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.273931][ T7396] syz.4.726[7396] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.539892][ T7406] RDS: rds_bind could not find a transport for 2001::, load rds_tcp or rds_rdma?
[  114.805328][ T7415] xt_cgroup: invalid path, errno=-2
[  114.951381][ T7423] vxcan0: tx drop: invalid da for name 0x0000000000000002
[  115.029572][ T7427] netlink: 'syz.4.737': attribute type 1 has an invalid length.
[  115.922923][ T7466] xt_cgroup: invalid path, errno=-2
[  116.142226][ T7482] FAULT_INJECTION: forcing a failure.
[  116.142226][ T7482] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.157304][ T7482] CPU: 1 PID: 7482 Comm: syz.4.752 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[  116.167324][ T7482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  116.177385][ T7482] Call Trace:
[  116.180660][ T7482]  <TASK>
[  116.183588][ T7482]  dump_stack_lvl+0x241/0x360
[  116.188269][ T7482]  ? __pfx_dump_stack_lvl+0x10/0x10
[  116.193464][ T7482]  ? __pfx__printk+0x10/0x10
[  116.198050][ T7482]  ? __pfx_lock_release+0x10/0x10
[  116.203083][ T7482]  should_fail_ex+0x3b0/0x4e0
[  116.207762][ T7482]  _copy_from_user+0x2f/0xe0
[  116.212345][ T7482]  generic_map_update_batch+0x5ba/0x900
[  116.217894][ T7482]  ? __pfx_generic_map_update_batch+0x10/0x10
[  116.223954][ T7482]  ? __pfx_generic_map_update_batch+0x10/0x10
[  116.230100][ T7482]  bpf_map_do_batch+0x3e0/0x690
[  116.234944][ T7482]  __sys_bpf+0x377/0x810
[  116.239185][ T7482]  ? __pfx___sys_bpf+0x10/0x10
[  116.243949][ T7482]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  116.249920][ T7482]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  116.256257][ T7482]  ? do_syscall_64+0x100/0x230
[  116.261025][ T7482]  __x64_sys_bpf+0x7c/0x90
[  116.265437][ T7482]  do_syscall_64+0xf3/0x230
[  116.269934][ T7482]  ? clear_bhb_loop+0x35/0x90
[  116.274606][ T7482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.280491][ T7482] RIP: 0033:0x7ffa6ed75bd9
[  116.284894][ T7482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.304488][ T7482] RSP: 002b:00007ffa6e7ff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  116.312892][ T7482] RAX: ffffffffffffffda RBX: 00007ffa6ef03f60 RCX: 00007ffa6ed75bd9
[  116.320855][ T7482] RDX: 0000000000000038 RSI: 0000000020000400 RDI: 000000000000001a
[  116.328833][ T7482] RBP: 00007ffa6e7ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  116.336810][ T7482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  116.344775][ T7482] R13: 000000000000000b R14: 00007ffa6ef03f60 R15: 00007fff58c16228
[  116.352749][ T7482]  </TASK>
[  116.768120][ T7514] sctp: [Deprecated]: syz.1.762 (pid 7514) Use of int in max_burst socket option.
[  116.768120][ T7514] Use struct sctp_assoc_value instead
[  116.939877][ T7531] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  117.034686][ T7529] __nla_validate_parse: 7 callbacks suppressed
[  117.034700][ T7529] netlink: 60 bytes leftover after parsing attributes in process `syz.3.766'.
[  117.055275][ T7529] netlink: 60 bytes leftover after parsing attributes in process `syz.3.766'.
[  117.967888][ T7574] sctp: [Deprecated]: syz.3.783 (pid 7574) Use of int in maxseg socket option.
[  117.967888][ T7574] Use struct sctp_assoc_value instead
[  118.168264][ T7571] infiniband syz2: set active
[  118.173458][ T7571] infiniband syz2: added bond_slave_0
[  118.174057][ T7581] netlink: 'syz.0.785': attribute type 4 has an invalid length.
[  118.188148][ T7581] netlink: 17 bytes leftover after parsing attributes in process `syz.0.785'.
[  118.303353][ T7571] RDS/IB: syz2: added
[  118.308990][ T7571] smc: adding ib device syz2 with port count 1
[  118.325671][ T7571] smc:    ib device syz2 port 1 has pnetid 
[  118.361972][ T7587] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  118.527259][ T7595] netlink: 'syz.3.788': attribute type 5 has an invalid length.
[  118.535266][ T7595] netlink: 'syz.3.788': attribute type 11 has an invalid length.
[  118.550060][ T7595] netlink: 156 bytes leftover after parsing attributes in process `syz.3.788'.
[  118.550161][ T7597] netlink: 216 bytes leftover after parsing attributes in process `syz.3.788'.
[  118.596560][ T7597] netlink: 'syz.3.788': attribute type 1 has an invalid length.
[  118.607431][ T7597] netlink: 216 bytes leftover after parsing attributes in process `syz.3.788'.
[  118.620516][ T7597] netlink: 'syz.3.788': attribute type 1 has an invalid length.
[  118.765238][ T7605] netlink: 60 bytes leftover after parsing attributes in process `syz.3.789'.
[  118.780169][ T7605] netlink: 60 bytes leftover after parsing attributes in process `syz.3.789'.
[  118.933940][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  119.213234][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.2.794'.
[  119.369939][ T7631] FAULT_INJECTION: forcing a failure.
[  119.369939][ T7631] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  119.388507][ T7631] CPU: 0 PID: 7631 Comm: syz.0.796 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[  119.398561][ T7631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  119.408636][ T7631] Call Trace:
[  119.411924][ T7631]  <TASK>
[  119.414880][ T7631]  dump_stack_lvl+0x241/0x360
[  119.419592][ T7631]  ? __pfx_dump_stack_lvl+0x10/0x10
[  119.424815][ T7631]  ? __pfx__printk+0x10/0x10
[  119.429426][ T7631]  ? __pfx_lock_release+0x10/0x10
[  119.434468][ T7631]  should_fail_ex+0x3b0/0x4e0
[  119.439168][ T7631]  _copy_from_user+0x2f/0xe0
[  119.443770][ T7631]  copy_msghdr_from_user+0xae/0x680
[  119.448990][ T7631]  ? __pfx___might_resched+0x10/0x10
[  119.454294][ T7631]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  119.460125][ T7631]  ? __might_fault+0xaa/0x120
[  119.464826][ T7631]  __sys_sendmmsg+0x374/0x740
[  119.469527][ T7631]  ? __pfx___sys_sendmmsg+0x10/0x10
[  119.474781][ T7631]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  119.480686][ T7631]  ? ksys_write+0x23e/0x2c0
[  119.485203][ T7631]  ? __pfx_lock_release+0x10/0x10
[  119.490249][ T7631]  ? vfs_write+0x7c4/0xc90
[  119.494685][ T7631]  ? __mutex_unlock_slowpath+0x21d/0x750
[  119.500338][ T7631]  ? __pfx_vfs_write+0x10/0x10
[  119.505141][ T7631]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  119.511136][ T7631]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  119.517473][ T7631]  ? do_syscall_64+0x100/0x230
[  119.522253][ T7631]  __x64_sys_sendmmsg+0xa0/0xb0
[  119.527118][ T7631]  do_syscall_64+0xf3/0x230
[  119.531651][ T7631]  ? clear_bhb_loop+0x35/0x90
[  119.536361][ T7631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.542282][ T7631] RIP: 0033:0x7f6b30375bd9
[  119.546727][ T7631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.566357][ T7631] RSP: 002b:00007f6b310fb048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  119.574817][ T7631] RAX: ffffffffffffffda RBX: 00007f6b30503f60 RCX: 00007f6b30375bd9
[  119.582802][ T7631] RDX: 000000007fffefff RSI: 0000000020000cc0 RDI: 0000000000000008
[  119.590778][ T7631] RBP: 00007f6b310fb0a0 R08: 0000000000000000 R09: 0000000000000000
[  119.598774][ T7631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  119.606771][ T7631] R13: 000000000000000b R14: 00007f6b30503f60 R15: 00007ffe38c26118
[  119.614775][ T7631]  </TASK>
[  119.893157][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  120.094931][ T7666] dccp_invalid_packet: invalid packet type
[  120.272312][ T7677] IPVS: length: 4096 != 24
[  120.290453][ T7680] netlink: 60 bytes leftover after parsing attributes in process `syz.1.810'.
[  120.576696][ T7697] netlink: 'syz.0.820': attribute type 4 has an invalid length.
[  120.633588][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  120.983127][ T7720] team0: Device macvtap1 is already an upper device of the team interface
[  121.284399][ T7747] netlink: 'syz.3.831': attribute type 4 has an invalid length.
[  121.291369][ T7745] netlink: 'syz.1.833': attribute type 11 has an invalid length.
[  121.334395][ T7745] netlink: 'syz.1.833': attribute type 11 has an invalid length.
[  121.360119][ T7745] debugfs: Directory 'netdev:' with parent 'phy7' already present!
[  121.469655][ T7760] netlink: 'syz.4.839': attribute type 2 has an invalid length.
[  121.490498][ T7760] netlink: 'syz.4.839': attribute type 8 has an invalid length.
[  121.499936][ T7760] netlink: 'syz.4.839': attribute type 1 has an invalid length.
[  121.508900][ T7760] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.951232][ T7790] netlink: 'syz.1.848': attribute type 4 has an invalid length.
[  122.108020][ T7798] __nla_validate_parse: 5 callbacks suppressed
[  122.108038][ T7798] netlink: 16 bytes leftover after parsing attributes in process `syz.4.851'.
[  122.215447][ T7808] netlink: 'syz.0.853': attribute type 63 has an invalid length.
[  122.244684][ T7811] netlink: 'syz.4.855': attribute type 9 has an invalid length.
[  122.256491][ T7809] netlink: 28 bytes leftover after parsing attributes in process `syz.1.854'.
[  122.269747][ T7811] netlink: 'syz.4.855': attribute type 7 has an invalid length.
[  122.279942][ T7811] netlink: 'syz.4.855': attribute type 8 has an invalid length.
[  122.443094][ T7817] trusted_key: syz.4.857 sent an empty control message without MSG_MORE.
[  122.592427][ T7831] xt_cgroup: invalid path, errno=-2
[  122.719988][ T7842] netlink: 16 bytes leftover after parsing attributes in process `syz.3.865'.
[  122.745069][ T7842] 
[  122.747444][ T7842] ======================================================
[  122.754458][ T7842] WARNING: possible circular locking dependency detected
[  122.761455][ T7842] 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0 Not tainted
[  122.768557][ T7842] ------------------------------------------------------
[  122.775584][ T7842] syz.3.865/7842 is trying to acquire lock:
[  122.781455][ T7842] ffff88801bf6c218 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#2){+...}-{2:2}, at: __dev_queue_xmit+0x22f5/0x3d30
[  122.793621][ T7842] 
[  122.793621][ T7842] but task is already holding lock:
[  122.801072][ T7842] ffff8880659eacd8 (&qdisc_xmit_lock_key#3){+.-.}-{2:2}, at: sch_direct_xmit+0x1c4/0x5f0
[  122.810910][ T7842] 
[  122.810910][ T7842] which lock already depends on the new lock.
[  122.810910][ T7842] 
[  122.821295][ T7842] 
[  122.821295][ T7842] the existing dependency chain (in reverse order) is:
[  122.830307][ T7842] 
[  122.830307][ T7842] -> #1 (&qdisc_xmit_lock_key#3){+.-.}-{2:2}:
[  122.838553][ T7842]        lock_acquire+0x1ed/0x550
[  122.843570][ T7842]        _raw_spin_lock+0x2e/0x40
[  122.848590][ T7842]        sch_direct_xmit+0x1c4/0x5f0
[  122.853893][ T7842]        __dev_queue_xmit+0x1a24/0x3d30
[  122.859429][ T7842]        ip6_finish_output2+0xff8/0x1670
[  122.865047][ T7842]        ip6_finish_output+0x41e/0x810
[  122.870497][ T7842]        NF_HOOK+0x9e/0x430
[  122.874981][ T7842]        mld_sendpack+0x838/0xda0
[  122.879989][ T7842]        mld_ifc_work+0x7d6/0xd90
[  122.885005][ T7842]        process_scheduled_works+0xa2c/0x1830
[  122.891057][ T7842]        worker_thread+0x86d/0xd50
[  122.896170][ T7842]        kthread+0x2f0/0x390
[  122.900760][ T7842]        ret_from_fork+0x4b/0x80
[  122.905696][ T7842]        ret_from_fork_asm+0x1a/0x30
[  122.910979][ T7842] 
[  122.910979][ T7842] -> #0 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#2){+...}-{2:2}:
[  122.921311][ T7842]        validate_chain+0x18e0/0x5900
[  122.926675][ T7842]        __lock_acquire+0x1346/0x1fd0
[  122.932029][ T7842]        lock_acquire+0x1ed/0x550
[  122.937035][ T7842]        _raw_spin_lock+0x2e/0x40
[  122.942059][ T7842]        __dev_queue_xmit+0x22f5/0x3d30
[  122.947593][ T7842]        ip6_finish_output2+0xff8/0x1670
[  122.953213][ T7842]        ip6_finish_output+0x41e/0x810
[  122.958663][ T7842]        ndisc_send_skb+0xab0/0x1380
[  122.963934][ T7842]        ndisc_solicit+0x493/0x6a0
[  122.969032][ T7842]        __neigh_event_send+0xec8/0x15a0
[  122.974653][ T7842]        neigh_resolve_output+0x1b5/0x740
[  122.980365][ T7842]        ip6_finish_output2+0xff8/0x1670
[  122.985986][ T7842]        ip6_finish_output+0x41e/0x810
[  122.991455][ T7842]        ip6_send_skb+0x112/0x230
[  122.996469][ T7842]        icmp6_send+0x15fc/0x2070
[  123.001498][ T7842]        ip6_link_failure+0x3c/0x4f0
[  123.006777][ T7842]        ip_tunnel_xmit+0x164f/0x2940
[  123.012140][ T7842]        __gre_xmit+0x1cf/0x260
[  123.016977][ T7842]        erspan_xmit+0xaba/0x1310
[  123.021989][ T7842]        dev_hard_start_xmit+0x27a/0x7e0
[  123.027605][ T7842]        sch_direct_xmit+0x2b6/0x5f0
[  123.032875][ T7842]        __qdisc_run+0xbfd/0x2170
[  123.037891][ T7842]        __dev_queue_xmit+0x14f0/0x3d30
[  123.043427][ T7842]        ip6_finish_output2+0xff8/0x1670
[  123.049052][ T7842]        ip6_finish_output+0x41e/0x810
[  123.054502][ T7842]        rawv6_send_hdrinc+0xb79/0x1610
[  123.060038][ T7842]        rawv6_sendmsg+0x1962/0x23c0
[  123.065305][ T7842]        __sock_sendmsg+0x1a6/0x270
[  123.070491][ T7842]        ____sys_sendmsg+0x525/0x7d0
[  123.075760][ T7842]        __sys_sendmsg+0x2b0/0x3a0
[  123.080968][ T7842]        do_syscall_64+0xf3/0x230
[  123.085983][ T7842]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.092388][ T7842] 
[  123.092388][ T7842] other info that might help us debug this:
[  123.092388][ T7842] 
[  123.102597][ T7842]  Possible unsafe locking scenario:
[  123.102597][ T7842] 
[  123.110025][ T7842]        CPU0                    CPU1
[  123.115372][ T7842]        ----                    ----
[  123.120717][ T7842]   lock(&qdisc_xmit_lock_key#3);
[  123.125733][ T7842]                                lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#2);
[  123.135348][ T7842]                                lock(&qdisc_xmit_lock_key#3);
[  123.142879][ T7842]   lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#2);
[  123.149993][ T7842] 
[  123.149993][ T7842]  *** DEADLOCK ***
[  123.149993][ T7842] 
[  123.158118][ T7842] 10 locks held by syz.3.865/7842:
[  123.163209][ T7842]  #0: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: rawv6_send_hdrinc+0x9df/0x1610
[  123.172944][ T7842]  #1: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: ip6_finish_output2+0x712/0x1670
[  123.182850][ T7842]  #2: ffffffff8e333f80 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x2d2/0x3d30
[  123.192759][ T7842]  #3: ffff8880659eacd8 (&qdisc_xmit_lock_key#3){+.-.}-{2:2}, at: sch_direct_xmit+0x1c4/0x5f0
[  123.203024][ T7842]  #4: ffff88802a4201d8 (k-slock-AF_INET6){+.-.}-{2:2}, at: icmp6_send+0xc45/0x2070
[  123.212418][ T7842]  #5: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: icmp6_send+0xba4/0x2070
[  123.221542][ T7842]  #6: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: ip6_finish_output2+0x712/0x1670
[  123.231358][ T7842]  #7: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: ndisc_send_skb+0x572/0x1380
[  123.240835][ T7842]  #8: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: ip6_finish_output2+0x712/0x1670
[  123.250652][ T7842]  #9: ffffffff8e333f80 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x2d2/0x3d30
[  123.260557][ T7842] 
[  123.260557][ T7842] stack backtrace:
[  123.266428][ T7842] CPU: 0 PID: 7842 Comm: syz.3.865 Not tainted 6.10.0-rc6-syzkaller-00177-ge1533b6319ab #0
[  123.276471][ T7842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  123.286519][ T7842] Call Trace:
[  123.289791][ T7842]  <TASK>
[  123.292709][ T7842]  dump_stack_lvl+0x241/0x360
[  123.297385][ T7842]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.302605][ T7842]  ? print_circular_bug+0x130/0x1a0
[  123.307811][ T7842]  check_noncircular+0x36a/0x4a0
[  123.312774][ T7842]  ? __pfx_check_noncircular+0x10/0x10
[  123.318234][ T7842]  ? __bfs+0x368/0x6f0
[  123.322323][ T7842]  ? __pfx_usage_skip+0x10/0x10
[  123.327170][ T7842]  validate_chain+0x18e0/0x5900
[  123.332018][ T7842]  ? __pfx_validate_chain+0x10/0x10
[  123.337204][ T7842]  ? __pfx_validate_chain+0x10/0x10
[  123.342399][ T7842]  ? register_lock_class+0x102/0x980
[  123.347671][ T7842]  ? __pfx_register_lock_class+0x10/0x10
[  123.353290][ T7842]  ? mark_lock+0x9a/0x350
[  123.357607][ T7842]  __lock_acquire+0x1346/0x1fd0
[  123.362456][ T7842]  lock_acquire+0x1ed/0x550
[  123.366961][ T7842]  ? __dev_queue_xmit+0x22f5/0x3d30
[  123.372175][ T7842]  ? __pfx_lock_acquire+0x10/0x10
[  123.377208][ T7842]  ? __pfx_lock_acquire+0x10/0x10
[  123.382229][ T7842]  ? rcu_lockdep_current_cpu_online+0x37/0x120
[  123.388384][ T7842]  ? rcu_read_lock_bh_held+0x7e/0x120
[  123.393750][ T7842]  ? __pfx_rcu_read_lock_bh_held+0x10/0x10
[  123.399550][ T7842]  _raw_spin_lock+0x2e/0x40
[  123.404046][ T7842]  ? __dev_queue_xmit+0x22f5/0x3d30
[  123.409256][ T7842]  __dev_queue_xmit+0x22f5/0x3d30
[  123.414269][ T7842]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  123.420584][ T7842]  ? read_seqbegin+0x157/0x2b0
[  123.425347][ T7842]  ? __dev_queue_xmit+0x2d2/0x3d30
[  123.430449][ T7842]  ? read_seqbegin+0x208/0x2b0
[  123.435201][ T7842]  ? __pfx___dev_queue_xmit+0x10/0x10
[  123.440560][ T7842]  ? neigh_resolve_output+0x2e5/0x740
[  123.445918][ T7842]  ? eth_header+0x11c/0x1f0
[  123.450410][ T7842]  ? __asan_memcpy+0x40/0x70
[  123.454986][ T7842]  ? eth_header+0x11c/0x1f0
[  123.459475][ T7842]  ? __pfx_eth_header+0x10/0x10
[  123.464307][ T7842]  ? neigh_resolve_output+0x61f/0x740
[  123.469681][ T7842]  ip6_finish_output2+0xff8/0x1670
[  123.474781][ T7842]  ? ip6_finish_output2+0x712/0x1670
[  123.480050][ T7842]  ? nf_hook+0x9e/0x450
[  123.484194][ T7842]  ? __pfx_ip6_finish_output2+0x10/0x10
[  123.489733][ T7842]  ? ip6_mtu+0x81/0x3f0
[  123.493969][ T7842]  ip6_finish_output+0x41e/0x810
[  123.498902][ T7842]  ndisc_send_skb+0xab0/0x1380
[  123.503653][ T7842]  ? ndisc_send_skb+0x572/0x1380
[  123.508579][ T7842]  ? __pfx_ndisc_send_skb+0x10/0x10
[  123.513765][ T7842]  ? __pfx_dst_output+0x10/0x10
[  123.518602][ T7842]  ? __asan_memcpy+0x40/0x70
[  123.523180][ T7842]  ? __pfx_ndisc_ns_create+0x10/0x10
[  123.528452][ T7842]  ? ipv6_get_lladdr+0x35a/0x3d0
[  123.533374][ T7842]  ? ipv6_get_lladdr+0x2c/0x3d0
[  123.538235][ T7842]  ndisc_solicit+0x493/0x6a0
[  123.542813][ T7842]  ? __pfx_ndisc_solicit+0x10/0x10
[  123.547915][ T7842]  ? __skb_clone+0x454/0x6c0
[  123.552496][ T7842]  ? __pfx_ndisc_solicit+0x10/0x10
[  123.557594][ T7842]  __neigh_event_send+0xec8/0x15a0
[  123.562701][ T7842]  neigh_resolve_output+0x1b5/0x740
[  123.567887][ T7842]  ? __ipv6_neigh_lookup_noref+0x52c/0x730
[  123.573681][ T7842]  ip6_finish_output2+0xff8/0x1670
[  123.578779][ T7842]  ? ip6_finish_output2+0x712/0x1670
[  123.584055][ T7842]  ? nf_hook+0x9e/0x450
[  123.588200][ T7842]  ? __pfx_ip6_finish_output2+0x10/0x10
[  123.593734][ T7842]  ? ip6_mtu+0x81/0x3f0
[  123.597888][ T7842]  ip6_finish_output+0x41e/0x810
[  123.602823][ T7842]  ip6_send_skb+0x112/0x230
[  123.607314][ T7842]  ? icmp6_send+0xba4/0x2070
[  123.611890][ T7842]  icmp6_send+0x15fc/0x2070
[  123.616388][ T7842]  ? icmp6_send+0xba4/0x2070
[  123.620968][ T7842]  ? __pfx_icmp6_send+0x10/0x10
[  123.625802][ T7842]  ? inet6_set_link_af+0xc80/0xc80
[  123.630900][ T7842]  ? __pfx_lock_release+0x10/0x10
[  123.635917][ T7842]  ? ip6_neigh_lookup+0x44b/0x580
[  123.640929][ T7842]  ? __pfx_ip6_neigh_lookup+0x10/0x10
[  123.646285][ T7842]  ? do_syscall_64+0xf3/0x230
[  123.650957][ T7842]  ip6_link_failure+0x3c/0x4f0
[  123.655707][ T7842]  ? dst_link_failure+0x107/0x160
[  123.660724][ T7842]  ip_tunnel_xmit+0x164f/0x2940
[  123.665573][ T7842]  ? __pfx_ip_tunnel_xmit+0x10/0x10
[  123.670759][ T7842]  ? gre_build_header+0x341/0xb30
[  123.675771][ T7842]  ? skb_release_data+0x2b5/0x880
[  123.680783][ T7842]  ? __pfx_gre_build_header+0x10/0x10
[  123.686146][ T7842]  ? pskb_expand_head+0xc89/0x1390
[  123.691253][ T7842]  __gre_xmit+0x1cf/0x260
[  123.695575][ T7842]  ? __pfx___gre_xmit+0x10/0x10
[  123.700420][ T7842]  ? erspan_build_header+0x174/0x360
[  123.705759][ T7842]  erspan_xmit+0xaba/0x1310
[  123.710345][ T7842]  ? __pfx_erspan_xmit+0x10/0x10
[  123.715271][ T7842]  ? dev_queue_xmit_nit+0x2b/0xc10
[  123.720376][ T7842]  dev_hard_start_xmit+0x27a/0x7e0
[  123.725478][ T7842]  sch_direct_xmit+0x2b6/0x5f0
[  123.730233][ T7842]  ? __pfx_sch_direct_xmit+0x10/0x10
[  123.735534][ T7842]  __qdisc_run+0xbfd/0x2170
[  123.740024][ T7842]  ? do_raw_spin_lock+0x14f/0x370
[  123.745038][ T7842]  ? skbprio_enqueue+0x72f/0x1130
[  123.750052][ T7842]  __dev_queue_xmit+0x14f0/0x3d30
[  123.755069][ T7842]  ? read_seqbegin+0x157/0x2b0
[  123.759818][ T7842]  ? __dev_queue_xmit+0x2d2/0x3d30
[  123.764917][ T7842]  ? read_seqbegin+0x208/0x2b0
[  123.769668][ T7842]  ? __pfx___dev_queue_xmit+0x10/0x10
[  123.775029][ T7842]  ? neigh_resolve_output+0x2e5/0x740
[  123.780388][ T7842]  ? eth_header+0x11c/0x1f0
[  123.784873][ T7842]  ? __asan_memcpy+0x40/0x70
[  123.789468][ T7842]  ? eth_header+0x11c/0x1f0
[  123.793967][ T7842]  ? __pfx_eth_header+0x10/0x10
[  123.798803][ T7842]  ? neigh_resolve_output+0x61f/0x740
[  123.804173][ T7842]  ip6_finish_output2+0xff8/0x1670
[  123.809274][ T7842]  ? ip6_finish_output2+0x712/0x1670
[  123.814543][ T7842]  ? nf_hook+0x9e/0x450
[  123.818688][ T7842]  ? __pfx_ip6_finish_output2+0x10/0x10
[  123.824223][ T7842]  ? ip6_mtu+0x81/0x3f0
[  123.828370][ T7842]  ip6_finish_output+0x41e/0x810
[  123.833297][ T7842]  ? rawv6_send_hdrinc+0x9df/0x1610
[  123.838480][ T7842]  rawv6_send_hdrinc+0xb79/0x1610
[  123.843494][ T7842]  ? __pfx_rawv6_send_hdrinc+0x10/0x10
[  123.848936][ T7842]  ? ip6_dst_lookup_flow+0x13e/0x180
[  123.854203][ T7842]  ? __pfx_dst_output+0x10/0x10
[  123.859038][ T7842]  ? __pfx_ip6_dst_lookup_flow+0x10/0x10
[  123.864652][ T7842]  ? aa_label_sk_perm+0x4f0/0x6d0
[  123.869667][ T7842]  ? rawv6_sendmsg+0xef9/0x23c0
[  123.874506][ T7842]  rawv6_sendmsg+0x1962/0x23c0
[  123.879266][ T7842]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  123.884372][ T7842]  ? aa_sk_perm+0x967/0xab0
[  123.888869][ T7842]  ? inet_sendmsg+0x330/0x390
[  123.893531][ T7842]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  123.898805][ T7842]  ? security_socket_sendmsg+0x87/0xb0
[  123.904254][ T7842]  __sock_sendmsg+0x1a6/0x270
[  123.908924][ T7842]  ____sys_sendmsg+0x525/0x7d0
[  123.913678][ T7842]  ? __pfx_____sys_sendmsg+0x10/0x10
[  123.918957][ T7842]  __sys_sendmsg+0x2b0/0x3a0
[  123.923533][ T7842]  ? __pfx___sys_sendmsg+0x10/0x10
[  123.928630][ T7842]  ? rawv6_setsockopt+0x432/0x740
[  123.933653][ T7842]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  123.939967][ T7842]  ? do_syscall_64+0x100/0x230
[  123.944740][ T7842]  ? do_syscall_64+0xb6/0x230
[  123.949409][ T7842]  do_syscall_64+0xf3/0x230
[  123.953902][ T7842]  ? clear_bhb_loop+0x35/0x90
[  123.958571][ T7842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.964453][ T7842] RIP: 0033:0x7f4dc5375bd9
[  123.968854][ T7842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.988440][ T7842] RSP: 002b:00007f4dc6113048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  123.996847][ T7842] RAX: ffffffffffffffda RBX: 00007f4dc5503f60 RCX: 00007f4dc5375bd9
[  124.004814][ T7842] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 000000000000000c
[  124.012781][ T7842] RBP: 00007f4dc53e4e60 R08: 0000000000000000 R09: 0000000000000000
[  124.020735][ T7842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  124.028688][ T7842] R13: 000000000000000b R14: 00007f4dc5503f60 R15: 00007ffc26cb7a68
[  124.036650][ T7842]  </TASK>
[  124.100795][ T7842] syz.3.865 (7842) used greatest stack depth: 17680 bytes left