last executing test programs:

8.13925429s ago: executing program 1 (id=1682):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

8.032205135s ago: executing program 1 (id=1684):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0xfff, 0x0, 0x0, 0x0, 0x19, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x80800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(r0, 0x0, 0x0)

7.875573605s ago: executing program 1 (id=1686):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000040)={0x2, [<r2=>0x0, <r3=>0x0]}, &(0x7f0000000080)=0xc)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={<r4=>r2, 0x8, 0x8, 0x2, 0x5, 0x9}, &(0x7f0000000100)=0x14)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000000140)={r4, 0x71, "faa3800403e5df3cfa36ef9626ed7db9d91ab06e9159c957f59430433243b9692ce4dc54685df799f0c2bb857b5ddb73afd742b3571839e3d225d4c3e7eaa7e8237f1153be956985be71a14df5d021f90ff59608fb07fba59f8b107ea006216296c9e7e1d552b7682fc527fe89c67c84ca"}, &(0x7f00000001c0)=0x79)
getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000200)={<r5=>r2, 0x7, 0x0, 0x5, 0x7f, 0x4, 0x9e57, 0x5, {r4, @in6={{0xa, 0x4e22, 0x2, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, 0x2}}, 0x3, 0x355e, 0xf, 0x784f, 0x9}}, &(0x7f00000002c0)=0xb0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x400200, 0x0)
ioctl$TUNSETDEBUG(r6, 0x400454c9, &(0x7f0000000340)=0x3)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_inet_SIOCSIFFLAGS(r7, 0x8914, &(0x7f0000000380)={'veth1_to_hsr\x00', 0x1000})
ioctl$sock_SIOCSIFBR(r1, 0x8941, &(0x7f0000000400)=@add_del={0x2, &(0x7f00000003c0)='macvlan0\x00'})
r8 = accept$nfc_llcp(r0, &(0x7f0000000440), &(0x7f00000004c0)=0x60)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r9=>0x0})
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000540)={{0x2, 0x4e22, @multicast1}, {0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x8, {0x2, 0x4e24, @private=0xa010100}, 'bridge_slave_1\x00'})
syz_genetlink_get_family_id$gtp(&(0x7f00000005c0), r0)
bpf$BPF_PROG_TEST_RUN_LIVE(0xa, &(0x7f0000000740)={r0, 0x0, 0xd4, 0x0, &(0x7f0000000600)="8b22ca6c40245bd1f3fe332d46d0bb30ce175b88c4c132364835065134278dd7bb551beb0f8b488b3c4e839619d30c258a2a2ed82a632fbcce85fdfee665dfe1c2456cef56f934d469480ef4a145af0e618b137a930f677093025a54c9fd3d04f120ea7665f56e2c990e81c290adf49ee8195dcb5f6a2c1ec76a1d6451a2c78b8963d052310a96b1fecfc5c969fd5b62a5361fa0ea445a40f27905d4cdf1b4e1afb1b8787ad0f6c52eab4c373728e74fb615b223d2a724380b4c72e9f303edf01771a768c30e11e41ab209535243fac29248f54f", 0x0, 0x1, 0x0, 0x25, 0x0, &(0x7f0000000700)="441bc8e5cf0cba388d8deafa2aedc46438469b131c0ef2758a4800e6d9dc93e9f6b7909c04", 0x0, 0x2, 0x0, 0xffffffff}, 0x50)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f00000007c0), r1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000800)={<r12=>0xffffffffffffffff, <r13=>0xffffffffffffffff})
ioctl$BTRFS_IOC_SNAP_CREATE(r8, 0x50009401, &(0x7f0000000840)={{r12}, "3d01f6d4b39d565b5b3d4ea555306c11a13bfe4899332414f0aa5cf5b425f4e0ec793c1941728975fcd20f250aac1ba7a061844ab5582538fdbb56c81182533486a2173afde642726d2466dbdc9da5c32f43b4106197dc941af9f2f2d11e4ab044b28476f777d40b68e2544fbec29b56f05c17860fe04329c9e0c8aaed921c1f6fe4a6993474cfabba30925a6102528ed6dde72714a737590e5818b73d764f79218e59401709947201e6744ccc177772235367cf372bcc671ec474c546d12f372f9eed7ea998ee295a5c5e3e86144ccddc0f5b0402b8c6a8e756beec133c5561de18942dcbe68c7fe0d30c164ae63bf107b6374222d948ca7cc322819381ae8a90624b927ad6a88d98f95dfc53e9d3ae33e27fe29e73cf273a2f3f4b2d80bc6b2f411547f8175006577c590b7c2efcafcdd7a6c4eecc9554e13cf76bf7feab4ed5e7323f7a847081c1c27c88ff5ab75985bbcaa411b83b5e5e7dafaf6618eb29594816c036ecc20a6c445c22afa0a448ae2b176357babd40fabedc8924280baa4a92a2c795706b56a35def301a8195767438e2e39d2594ba2220250086fa10d350668adbc5fdc194256dc345d604e06cdd733021cba06d64c432f00bfecae63c3b8c51c331dd61eb070909ce05394b340bfc8fa260594aa6a2d52c5503b5bf990513384253b8ce79cbbafee2251f88c74bd11b821ee25733e7a4e21dfa659944455af93204b4213d19f774762ec862d3cfab2b31618690e01b25e4582640ad38e77a7e93fead6645b1833025240913a661e7d1b24b2e11cac20eb7e1fcb5feeba39d95f820863fa2c635a09ad81cb03feb89eb749cf74858fe439633513e9ef45b7c907d426813979bac2304dfd32a8d645890aff45b00b3b4c93a1048a48090c1eb4458d6e12fb9130ae4e7353fd0ac0bcedc5720bba96911f92501b26db61c198b72dfcadf9802de88fb019d2cbe3f160477ec73a192db8d1860956320b5241e61e928989facd6471982afce9921d799531360a375062bcbd0b3f7612258ba18b196c4162f0504d7342f8e5756439577ec3a4ce98b11dcd2e3723b597498aa55a411338cb25558195cf1ae3471d7bc98ad2a315dd11b40028dbcbb475dff9172bd2ad5ca50b0eb3d79646a6c730e8a47427f804bc4554d9c706f4462796bf1bef6159d99d8adf19ecf2501c737a706a2dbdfb7d26850bc66e8b6341b86a740a2361b654a4585e0525b40ea1c25edd2d7da5e2ef111904ec7daf750849c3e5ace7a9f89c74461572f0ed5b63e44534e6767af32256b3511f60a75dbe6e18ea6933d0e56db903c6a2b8e82245b6ac73cd7e4308497063df67f8e37621a895618882dc5aed836acfe20e93a0f350868634f36c541e355e0a69424a2a6d8da436b693b1aa8d10fcba988bb00cd78f698ccf3fb9533e9abe92724fc35b689672994fc01c8004aaa1f364a9529484039e1761d86c5ddd3fa17198b0a67ef791bae1249e9705b0ebebc23490b5cc2f492920a8e025f8a2e14f652c06ace68202b0c139d8085d239193e20079a539464ea41b6c3da783380f00b959680ec1f67617ced609b0de46bf4a56ab4db5fe5fd7e5a76ecce687decdb25a00636b3662aca5dd44d556e5cdc575742d1f7001c5a98429f41a02cebb8d80f2465e7efd26c3d30f7ebfc60cfb9640efb4697a54ef796207a2f7fb2ab4e23e83aaec2c1d463fa5e22b8676272edab9dd9a3a29217364416ba7019ddb909d8e961c85afa82b3b6982a4e948e9b22120ff3b0780cd8e6a8864e3a46923b637a78dda3aebdb23b2e12b25866da5f1381adc8b020fed3e347a7409974ed3ca2dc86ad4faa2a8d69f55effd707ae5e7d80d05f330dba36889af247665d4a14d014e988f3fc02bee44d4daabc24c676ba3319ce86eff825be63c18400d8cd6e5e4af6100479d6ac09fd94975bd50d04e6d54925f1872f21913e1d159b8acc6ab58734a7f77196a742fc0fcd3416a332cd9dc663196aa120d93954a517ccd6b92131a5f3b2413c6296c58a0196573ec5c365caaef38be9b70a1443d2d2cbb433380a2174e4fdcbc0d59fd7c3b04be5fdf0d3043b96eeaddef951cd36fd169653847dfa64b39af217b3749ee53510a2a4fe6b3019709e1138c706040092fec7b307572405fe2654f2b9754e1a8c499c6ecba0e5a46b25d3181c036aea9688ea726651782c56e783185c3960306d5e22c6734edba69789b96095d259ae369d4991b45e266484d5b49210cb065c8381051b239cbe7244f3ca7ab47d1a40a55258b021a45a3ecbbba6828de8f7be85c9d817197e8141a52dc216e6ea73b21e21b3e1fffeefd5305977a93c405167fe0be6db2872ab7db354338b3ad4079ecf93a1d147c4ef86cde8d2c14ce64cf2259c9f0fd35f52ad8e06d6a04cd77b4edc0e8abeb6cffa602ee0ab50188602a46edfb01f27dd74d55043e2c83e3016c39119c9d2d816740a714a54d7a957251a8b6b7373abdbc0cb5cb3b74cb0f614e08561fc5a7c0d8f960060707d76f8fdf0fdf2cd801815536a9da3744c88daef7e9a3ff4eb92b4db93672cf936137b262352f8fbd81e032a1bcfe9ffb95d73f4d0494a182c9e5db0a401910c6d162dfca742c5396ba4c352d7dd90ae9b3b971a41a215bc69969c79612001a605a9c73072a680b26b32cf6c0b5fc98e8ac93528903273057bf49f2bd0ebd0ba2c0b44ea4bb9cc7f3161cf5e22e3ea8fff442f87b7c4491fb7ef12fb9f7ab51218d8877fc4c2960a5c0561937676c60d91250d6a4dcbf30bfd5aca70562764b2df9de16fd624e913719400f4ece85e013c8f369c9d2f3b4965a75b856b47e6ea25c54efd4ada344c976f9e798e75136a2e11fefd3ce7622595a450cf730d98154d113af7aa37c327c0c046bb8221e9177a92bacbcfbcb125058a3a8a3768696449eb5f9da0c97f3ce5bf96ef7282140bf387e0b2233ae94c7f561867ddb6c100b32efc582ae1ecee1697cf76204212cad4731b2e8ea50a7940c3c9c950fe3182671089b2a78a3f8487097c40e486f31ac30914b1c7fb91f318bcaafbc3f2e2e2ebc4296595ef553979c9cf46c25aa5314ffe64f320e8035e348f8834e2f8977ca0cb4a8b0a38ca654353ad8440924430c796f2c725161a462b00609f5e311d499b791dccf016a40a247bdc0b1683e97a98ca10938df7d8cb127083d525455f073e7de09e9aa8161672d853d938c07b7124faccecccde7c06935b5e25477648d4b6155ef023d98771f9f5f6fd5d79e33962248d89d3b9c282dd8fbba7ea62cc3a3001945e3aae6cd14de3fe10da7b4b32a37901232fb9925114fc33a161bcd6ebb44badfb3d8fae5cf75b16e4c3916d0eb0a942ddde8bde476a2426657781b39040cd710c2b81738a9156163366f4727d0b4100084ce67f2a163be50fa711802a2d3e2f3704bff66a111be6c6caacf29b3f5fb8faaee00782d8d67a7348546712487dfb0c36e5216e03f7e1601172a632b838e68c2e20f433fbe0cd0fa542394ada8ec6646ea6c98678fa6d6bfe28c0a712d0a1adff641c1ffec4a7adf7e63e1586ddb45b4d5977092de2cea6b80fd55f4b6d059863e4c8cd0684d3f253edd2934aac7a91af62e8d80cf4efd59b0e84d9fac480abbc16e484ccc4654d24c22cc3d6439363aebdcc3416dd84a890486409c9679d318e75f8d278a9686a57c16670f7f2774cfe640529c1b375c216742705fdb248eae3a0b54301472b89f15ca6ba20eba0ed14a2b29e07b1e0a98760982d22fb9841c9dca77915cce04e9ccf58bc696bdfa0d1cc2265eaad2b5791bb1c74b20ef05272ed0c76c02a83c37c8caca5ca3cb7e2dc9bce1e19a84c9bb65b1f3b8663ab89b2405f6131ccc1325e43f50e4341eb8d176da57c3d7720b195985cfc53ee408d600099e14223f6305ee10aac6b3c35379d549d95e9ce0b6a079c188e14ebd1d54450b8ab98b516b09f508c762a96f910d12d490c21b3091485981e9a2a3c749fa7caa914d96c944d07b8572053179170c160210900a8cf7bd10e3cc58de7d7205b8689dfa499b3a9edef50a286aa0638daa48b6aaacc82a12bd2338b6ac4df432a7a6b998520d8bd385e48de1a5ba26cc36a11af38f7448803d59508dfad7574a6d724902ec358ca0c539bc92fb75ad2f035adf45c13dcbbcae701fc366b8e0e5a641e37611d4f8c1468a7d0bf5f0a2ee2204a03d2d70e4755ea9a5d4e0c19966ebae23942400ec31c69ec6008f870d60a26caf0b748002826d0c1014f434938739798bbb82387c8c316c38a3b8226444d576aaafd28e9c1dc507d4a0b2437e417a5d6766b634254be6eaf600b0ff807bb65bfbca37a152823458344ae11232730c66145eceec2af56bee3f828f0a1e2457050210e46d89375c7606af0f5c490d4dd7f20cea755c6620f24c3a34243247ad28fb6c273406bb9c24f9c108c42691ca27291ef7ebed68ffd667d37e5558ea61353778e74f574ccbd3842a39b065f82a8efdd739e45694b2f996c4c72102332730b3a6eb26be813715d6431cde8e848e807269dc57e337c3057f9eeadb78c72608edfead7e065003b6ea483084aedcf98634b4afd6100a3fba4ba49effa2e382158eaea23ea9524b5970f5ba13a39b3b29fe0bc98979cf87f8c2a6c2ee41b0496fc8269e37a1984df8a75992cd5983259cd2bd580ec664e89f64786c307137fe6c3f01eb8fff8afdeaa36c4b698aa471ac7f18964ac736b1953c6869a9e3a95d6429fbd0da05847b2ba37e7687e02e3df529244057736748074cba7262c62e4727369eed9115d637a9d38af74188775337d286bd824dfbb45397a32099c149766af9345f992436fad9890baac84fc594f272ce322c2fc2c24dd8b59340bc8bfa4b1ef864319167787f5275323936ba9bb53b0d4215c59d86313e40e3806c28dd453b2f22066a906afbcc2bdcdf0e207ddfa13ffc29518c4491a890026740e57e0479c438f8664d638048468be64a0055cb286ad43edf6e9bf7fc7c6b5742a6f61a6fcf499546284fa7bc395fb3d3e7f22cd5ea0b86f8e822cb049d5a35bb8b97d5ca002e3c84150e8e64454a05976cd611f06312c7b1b619b3eb32f348da3d1120b7f3a898dd3442d1aa30ad0d212d12e91fbc244d5636e0b3df6ba0dadcc594e894fbb2ec75487f1ca80efde0b4407bbe9decd302dd0cc13daa947a77bd3ed34f020a3810147253e8ae88b5531cddaf9ab9b8108a8e80153a6c0815c8eca6da9713673bbb637c48d8fce811ec4e0a63fc47f97db0a7c269b4b986997480e3d39711523148c151c2700237051a12365ff654331b0f6f5a76c2df4a7125c97f55a558888f53661d6fd8cbe240785f7b646bebb3a88f9d1946fa451f778e2961411972039192c01674624b094ae9ebc13778844c272cdd093dcf469704d88af9f0d02b735801e6fcaf0d1335120902a501cc8a79d64e46b3df5a330344ece9297264b0a291bc2a0d0f9aa9955696e415671f2c818d1268652d15787d2eeebd6a8ceb1fbde3d5e5a43f880d62290a6e02526795ed0a89415dd7d385143f7f28a2bcaac0796cc29ddaf764a9e60e052c3edb52579854ff46d61790510822990c7a31d9968a92160f09bbc8a8d29ff5e72a9bf3cb53beaf22ab7385836f4ad81a95319a8b359a9396df7c3d4fa0c811fbd41bb61dded48f3485b55a2322d0c6639891493ab3cc4f466a33ffde8a02c0fb5e71c8639ab4af16386b388e6f230d0449b673645fe549f70598997f8748ae48b5167c26b4196720565"})
syz_emit_ethernet(0x203, &(0x7f0000001840)={@remote, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x41}, @void, {@ipv6={0x86dd, @dccp_packet={0x7, 0x6, "e3b9e5", 0x1cd, 0x21, 0x0, @dev={0xfe, 0x80, '\x00', 0x38}, @local, {[@hopopts={0x0, 0x4, '\x00', [@hao={0xc9, 0x10, @private1}, @enc_lim={0x4, 0x1, 0xe}, @padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, @routing={0x6c, 0x8, 0x0, 0x6, 0x0, [@local, @private2={0xfc, 0x2, '\x00', 0x1}, @private0={0xfc, 0x0, '\x00', 0x1}, @loopback]}, @srh={0x0, 0x4, 0x4, 0x2, 0x6, 0x10, 0xccf7, [@local, @private0]}, @srh={0x73, 0x2, 0x4, 0x1, 0x9, 0x38, 0x94ef, [@local]}, @routing={0x87, 0x8, 0x1, 0x5, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private1={0xfc, 0x1, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, @remote]}], {{0x4e22, 0x4e24, 0x4, 0x1, 0x3, 0x0, 0x0, 0x9, 0x6, "158109", 0x6, "cd2008"}, "0ca5210190bc9922c5c37ce67fceab8e2c659f9b858abdd62bf6aa5b2b5b1ec33fae4347c493f824eae222aaf6b02c6fe045a39ed8debde42fca53f39530f65d2b49937184d12e03e6856ae7127a187af28400551fed86a7552b412f592e3dc7877436043a0bbfcc79fb2d61d2d2bd97d2572794760aa8997c262a65e0270427daa1f4f6dac03004e63855faf9f6b3b88424877fe2422fdb94c9c14c312a98740af103eefdcc2be42fa630f6990cd8c8c87cafd5d542b8f1de3a92df9f78181cf654d3fc40"}}}}}}, &(0x7f0000001a80)={0x0, 0x3, [0x87a, 0xe57, 0x4be, 0xa86]})
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000001c40)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001c00)={&(0x7f0000001b00)={0xd0, 0xa, 0x6, 0x801, 0x0, 0x0, {0x3, 0x0, 0x8}, [@IPSET_ATTR_DATA={0x4c, 0x7, 0x0, 0x1, [@IPSET_ATTR_NAMEREF={0x9, 0x13, 'syz1\x00'}, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x7000}, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x4}, @IPSET_ATTR_MARKMASK={0x8}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0xb2}, @IPSET_ATTR_CIDR2={0x5, 0x15, 0xfe}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x4}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xa}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x40, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x9}, @IPSET_ATTR_NAME={0x9, 0x12, 'syz1\x00'}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x4d}, @IPSET_ATTR_IFACE={0x14, 0x17, 'ip6erspan0\x00'}]}, @IPSET_ATTR_ADT={0x28, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x5}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0x4}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x4}}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x4040000}, 0x40)
sendmsg$NL80211_CMD_ADD_TX_TS(r10, &(0x7f0000001d80)={&(0x7f0000001c80)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001d40)={&(0x7f0000001cc0)={0x54, r11, 0x100, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x2, 0xf}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x8}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x5}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x3}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x3}]}, 0x54}}, 0x20040010)
ioctl$SIOCSIFHWADDR(r1, 0x8924, &(0x7f0000001dc0)={'ip6gretap0\x00', @remote})
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000001e00)={'batadv_slave_0\x00', @local})
syz_genetlink_get_family_id$batadv(&(0x7f0000001e40), r1)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000001e80)={r5, 0x1}, &(0x7f0000001ec0)=0x8)
tee(r13, r13, 0xc, 0x4)
unshare(0x20000000)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000001f00)={r3, 0x9, 0x30}, 0xc)

7.814329823s ago: executing program 1 (id=1688):
r0 = socket$igmp6(0xa, 0x3, 0x2)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r1, r2, 0x2, 0x2, 0x0, @void, @value}, 0x10)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r3, r4, 0x2, 0x2, 0x0, @void, @value}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
mmap(&(0x7f0000fa2000/0x4000)=nil, 0x4000, 0x2, 0x82011, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
connect$inet(r5, &(0x7f0000001980)={0x2, 0x1, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
socket$kcm(0x2, 0x3, 0x2)
sendmmsg$inet(r5, &(0x7f0000000780)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x8c37c2b979564e6e)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000ec0)=@raw={'raw\x00', 0x3c1, 0x3, 0x450, 0x2b0, 0x150, 0x150, 0x0, 0xf8010000, 0x380, 0x238, 0x238, 0x380, 0x238, 0x3, 0x0, {[{{@ipv6={@mcast1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, [], [], 'team_slave_0\x00', 'hsr0\x00', {}, {}, 0x84}, 0x0, 0x248, 0x2b0, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'batadv0\x00', {0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x4}}}, @common=@inet=@sctp={{0x148}, {[], [], [], 0x5, [], 0x0, 0x6}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}, {{@ipv6={@empty, @mcast1, [], [], 'batadv_slave_0\x00', 'gre0\x00'}, 0x0, 0xa8, 0xd0}, @common=@inet=@SYNPROXY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4b0)
syz_emit_ethernet(0x5e, &(0x7f0000001380)=ANY=[@ANYRES32=r0], 0x0)

7.664158991s ago: executing program 1 (id=1690):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=r1], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0xffffffffffffffdb, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)=@newtfilter={0x480, 0x28, 0xd27, 0x1004001, 0x0, {0x0, 0x0, 0x0, r4, {0xd, 0x9}, {}, {0x2, 0xb}}, [@filter_kind_options=@f_u32={{0x8}, {0x454, 0x2, [@TCA_U32_HASH={0x8, 0x2, 0xb9be}, @TCA_U32_LINK={0x8, 0x3, 0x5}, @TCA_U32_CLASSID={0x8, 0x1, {0x1, 0xe}}, @TCA_U32_LINK={0x8, 0x3, 0x5470a9f9}, @TCA_U32_POLICE={0x430, 0x6, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0xb2, 0x10, 0xd0, 0x9, 0x81, 0x9, 0xa, 0x80000001, 0x100, 0x6, 0x932, 0x12, 0xd, 0x63, 0x8, 0x204000, 0x1, 0x80, 0x8, 0x80000000, 0x91fa, 0x3, 0x9e000000, 0xa49, 0x6, 0x0, 0x2, 0x9, 0x1, 0x2, 0x1000, 0xe, 0x5, 0x5, 0x5, 0x800, 0x9, 0xf2ca, 0x6, 0x4, 0x8, 0x2, 0x3, 0x10000, 0x2, 0x7f, 0x9, 0x2, 0x0, 0x401, 0x7, 0x40, 0xfffffffc, 0x4, 0x9, 0x100, 0x5, 0x1, 0xdd8, 0x2, 0x6, 0xe6367dc3, 0x7ef058f1, 0x7fffffff, 0x7, 0x7, 0x6fda, 0x5, 0x8, 0x7, 0x9, 0xd, 0x8, 0x7, 0xd01c, 0x6, 0x4, 0x35c, 0x2, 0x6b0, 0x5, 0x1, 0x7, 0x651b944c, 0x34, 0xd0, 0x6, 0xf9dd, 0x0, 0x2d, 0xe, 0x3, 0x8, 0xfff, 0x3, 0x0, 0xff, 0xf5f0, 0x9, 0x5, 0x7, 0x1, 0x3ff, 0x6, 0x9, 0x101, 0x8, 0x1, 0x8, 0x4, 0x8, 0xde89, 0x1, 0x10000, 0x3, 0x40, 0xb992, 0x6, 0x3ff, 0x7, 0x40, 0x8, 0x1, 0x5, 0x4, 0x3, 0x400, 0xf498, 0x9, 0x0, 0xebcd, 0x7, 0x3, 0x2, 0x5, 0x8, 0x0, 0x238e, 0x3, 0x6, 0x8000, 0xc, 0x1, 0xa, 0x1, 0x1, 0xf1, 0x0, 0x7, 0x354e, 0x7, 0x8, 0x6, 0x1, 0x8, 0x5, 0x101, 0x2, 0x5, 0x7, 0x400, 0x7bb4, 0xd0, 0x4, 0x1, 0xc, 0xfffffffe, 0xe, 0x10, 0x8, 0x400, 0x2, 0x62c4, 0x3, 0x3, 0x2, 0x5, 0x5, 0x3, 0x8000, 0x80000, 0x60, 0x2, 0x3, 0x3, 0x40, 0x9, 0x0, 0xfffffffa, 0xfff, 0xfffffffa, 0x565, 0xffffffff, 0x4, 0x8, 0x827, 0x12817934, 0x7, 0x8715, 0x9, 0x2, 0x40, 0x5, 0xfffffffa, 0xad, 0x101, 0xa, 0x9, 0xbd1, 0x100, 0x17, 0xa9c0, 0x6, 0x8, 0x9, 0x3, 0x9, 0x60000, 0x6, 0x0, 0x9, 0x4, 0x7fffffff, 0x44, 0xa, 0x0, 0xa6c9, 0x40, 0x4, 0x7fff, 0x9, 0x2ee6, 0x5, 0x3a6, 0x7509, 0x3, 0x4, 0x3, 0x8, 0x6, 0xf747, 0xfff, 0xfffffff5, 0x6, 0x2, 0x2, 0x1860daa8, 0x5, 0xcbf, 0x5, 0x4, 0x2, 0x3, 0x7f, 0x7, 0x1]}, @TCA_POLICE_RATE64={0xc, 0x8, 0xeb}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x9}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x2}, @TCA_POLICE_AVRATE={0x8}]}]}}]}, 0x480}, 0x1, 0x0, 0x0, 0x810}, 0x48c0)

7.451391832s ago: executing program 1 (id=1693):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x400300, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

5.411982547s ago: executing program 4 (id=1716):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1800000052000100fcff0000000058651c"], 0x18}}, 0x0)

5.278040055s ago: executing program 4 (id=1718):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x101842, 0x0)
r1 = socket$inet6(0xa, 0x806, 0x0)
ppoll(&(0x7f0000000240)=[{r1, 0x720}], 0x1, 0x0, 0x0, 0x0) (async)
setsockopt$inet6_buf(r1, 0x29, 0xcd, &(0x7f0000000080)="a6f44e4f8860fbd1d2d55997153f23e6235d62ac239ae55e4cc0ccec783a866df72f509e0411421b4aeecc336586e0924d64a43fd2872a307cd4ccf3", 0x3c)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000040)) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x40047452, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x1f1, 0x10, &(0x7f0000000000), 0xfffffffffffffe66, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000380)=ANY=[@ANYBLOB="44150000100013070000000000000000ffffffff000000000200000000000000ff0100000000000000000000000000010000000000000000000000000000000026e5804737d244e30c534235a1558e3196a40430918a3e714ef674a6d74156e7bfa90923511c1e8c57c2a8a5d4074edfca131fad484ff5b579a0203e3f2239b2cde26e665e7485653246d2ebf7a457abd202d6805a53c6e4bf4aa6a64be411d9fc26fed9614f44ffff00008d26cb7f8ff241c4837edba67c77bb9ab1336fb3c325cb29fef28bad30d25424a31024ae5a007aff1b2a151f497a42cccf22b194b8c808f90f2b09000000216f67e4cc9083f78ac5d7e154f4fd54c04829c5e9140b2f42a46a", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000000000000032000000ff01000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000008001600000000004c001400636d6163286165732900"/252], 0x144}}, 0x0)

4.239750442s ago: executing program 4 (id=1722):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(0x0, r1)
r2 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000b00), r1)
sendmsg$NLBL_CALIPSO_C_LIST(r1, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10020080}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x44, r2, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x44}}, 0x4)
sendmsg$NLBL_CALIPSO_C_ADD(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000b80)={0x0, 0x1c}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="12000000240000000400000002000000021000000076738da7ac366160f511eb4cdfef0c7e007092505a60144a19046eacf96d953c85a57b9b9e3ba233626c3948703eaceb75e772f28b6acddcb916088c9f0fbf614d16c155f9f5dfcd252c6029bbe1e511826dcf85bbb7c6158ef226551a5fcfd82d5d11bbc8052d54c6ff7c73eac29acea10995aec191091143b646283a117ef7cfb8660bf43a30daad86872169b9e1ab08058715edb2c8236c39fd372c2ccf3b444e0dba061f79c31baae390ea019665e1f8249335e80619", @ANYRES32, @ANYBLOB='\x00'/18, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000fdffffff00"/28], 0x50)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000140)={r3, &(0x7f0000000200)="375724c53d1eff4f23dbb123c9e3d5", 0x20000000}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r3}, &(0x7f0000000700), &(0x7f0000000740)}, 0x20)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r4, @ANYBLOB="0000000002000000b705000008000000850000005d00"], &(0x7f0000000300)='GPL\x00', 0x2, 0xff6, &(0x7f0000001e00)=""/4086, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x68, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_EXPRESSIONS={0x2c, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xb0}}, 0x20050800)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r7, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r7, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r7, 0x6, 0xd, &(0x7f0000000000)='bic\x00', 0x4)
recvfrom$inet(r7, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
sendmsg$nl_route_sched(r5, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x58040}, 0x0)
sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00', @ANYRES16=r2, @ANYBLOB="01002abd7000fedbdf25010000002885684339aac0620800020002000000"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x80c4)

2.980165689s ago: executing program 4 (id=1736):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001240)={<r1=>r0})
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000080)={{{@in=@initdev, @in6=@loopback}}, {{@in6=@initdev}, 0x0, @in6=@remote}}, 0x0)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x1014}], 0x1}, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_proto_private(r2, 0x8b15, &(0x7f0000000080))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvmsg$unix(r3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x2000)
ioctl$TUNSETNOCSUM(r4, 0xff05, 0x0)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b00), 0xffffffffffffffff)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000140)=ANY=[@ANYBLOB="44000000010101010000000000000000020000002400018014000180080001007f00000108000200000000000c000280050001003a0000000c001980080001000d"], 0x44}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000b40)={'wlan0\x00', <r8=>0x0})
r9 = socket(0x80000000000000a, 0x2, 0x0)
r10 = socket(0xa, 0x80000, 0x4d2)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r10, 0x84, 0x16, &(0x7f0000001280)={0x2, [0x8001, 0x0]}, &(0x7f00000012c0)=0x8)
setsockopt$inet6_group_source_req(r9, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
setsockopt$inet6_group_source_req(r9, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}, {{0xa, 0x0, 0x200, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x59)
socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet6_group_source_req(r9, 0x29, 0x2f, &(0x7f0000000480)={0x0, {{0xa, 0x4e23, 0x7, @mcast1={0xff, 0x7}, 0xffe}}, {{0xa, 0x4e21, 0x3e, @loopback}}}, 0x108)
sendmsg$NL80211_CMD_SET_STATION(r5, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000b80)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000001200000008000300", @ANYRES32=r8, @ANYBLOB="08001180040008000a000600"], 0x30}, 0x1, 0x0, 0x0, 0x40004}, 0x0)

2.070258178s ago: executing program 4 (id=1744):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040), 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x20, 0x0, 0x7, 0x401, 0x0, 0x0, {}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x48d5}, 0x8010)
sendmsg$NFNL_MSG_ACCT_NEW(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x20, 0x0, 0x7, 0x301, 0x0, 0x0, {}, [@NFACCT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0xfffffffffffffe83)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r4, 0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
sendmsg$NFNL_MSG_ACCT_DEL(r3, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000500)={0x14, 0x3, 0x7, 0x301, 0x0, 0x0, {0x5}}, 0x14}}, 0x4040000)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x4c, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x4c}}, 0x0)
sendto$inet6(r1, &(0x7f0000000340)="d1", 0x1, 0x8000, 0x0, 0x0)
syz_emit_ethernet(0x2a, &(0x7f00000004c0)={@multicast, @random="7f0a00034011", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x3, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local}, @echo={0x8, 0x0, 0x0, 0xfff, 0x200}}}}}, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$NFNL_MSG_ACCT_DEL(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f00000003c0)={0x84, 0x3, 0x7, 0x0, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x9}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x7f}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xfffffffffffffffd}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x1c0000000000}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x2}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x21e81b9b}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x5}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x7}]}, 0x84}, 0x1, 0x0, 0x0, 0x840}, 0x4040)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r6 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="4c000000150097f87059ae08060c040002ff0f0200000000000001870182fa73a69d35a2cca84708f7abca1bac1414aabd7c493872f750375ed08a560400000003c48f93b82a03000000461e", 0x4c}], 0x1}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
sendto$inet6(r1, &(0x7f0000000100)="0c45755bd552e0c2f424bb3a4fdf8808ee", 0x11, 0x8000, 0x0, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)="d8000000100081046881f782db44b904021d080b01000000e8fe55a11800150006001500000000120800030043000000a80016000400dfbfdb2d47782a462c9c801f298225c506000d00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d9308e56539322fe7c0aaa16b8ddc64193071e9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3", 0xd8}], 0x1}, 0x8040)

1.908765783s ago: executing program 2 (id=1746):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(0x0, r1)
r2 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000b00), r1)
sendmsg$NLBL_CALIPSO_C_LIST(r1, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10020080}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x44, r2, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x44}}, 0x4)
sendmsg$NLBL_CALIPSO_C_ADD(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000b80)={0x0, 0x1c}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="12000000240000000400000002000000021000000076738da7ac366160f511eb4cdfef0c7e007092505a60144a19046eacf96d953c85a57b9b9e3ba233626c3948703eaceb75e772f28b6acddcb916088c9f0fbf614d16c155f9f5dfcd252c6029bbe1e511826dcf85bbb7c6158ef226551a5fcfd82d5d11bbc8052d54c6ff7c73eac29acea10995aec191091143b646283a117ef7cfb8660bf43a30daad86872169b9e1ab08058715edb2c8236c39fd372c2ccf3b444e0dba061f79c31baae390ea019665e1f8249335e80619", @ANYRES32, @ANYBLOB='\x00'/19, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000fdffffff00"/28], 0x50)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000140)={r3, &(0x7f0000000200)="375724c53d1eff4f23dbb123c9e3d5", 0x20000000}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r3}, &(0x7f0000000700), &(0x7f0000000740)}, 0x20)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r4, @ANYBLOB="0000000002000000b705000008000000850000005d00"], &(0x7f0000000300)='GPL\x00', 0x2, 0xff6, &(0x7f0000001e00)=""/4086, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x68, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_EXPRESSIONS={0x2c, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xb0}}, 0x20050800)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r7, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r7, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r7, 0x6, 0xd, &(0x7f0000000000)='bic\x00', 0x4)
recvfrom$inet(r7, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
sendmsg$nl_route_sched(r5, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x58040}, 0x0)
sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00', @ANYRES16=r2, @ANYBLOB="01002abd7000fedbdf25010000002885684339aac0620800020002000000"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x80c4)

1.843165707s ago: executing program 3 (id=1747):
r0 = socket(0x10, 0x803, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000500)={'lo\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x70bf2c, 0x25dfdbff, {0xa, 0x38, 0x0, 0xff, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_RT_PRIORITY={0x8, 0x9, 0x2}]}, 0x34}, 0x1, 0xff00000000000000, 0x0, 0x20000000}, 0x0)

1.779861247s ago: executing program 0 (id=1748):
r0 = socket$netlink(0x10, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000001d00070f000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00005200060005000100000008000800", @ANYRES16=r1], 0x2c}}, 0x4000000)

1.706401601s ago: executing program 0 (id=1749):
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0) (async, rerun: 32)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x3, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (rerun: 32)

1.559907766s ago: executing program 0 (id=1750):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd0, &(0x7f0000000000)=0x9, 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000058000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d140012801000013084959000727400000400028008000340000001"], 0xa0}}, 0x0)

1.509016936s ago: executing program 3 (id=1751):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x50, 0x10, 0xf11, 0x0, 0x25dfdc03, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x13, 0x1f}}, @IFLA_VLAN_ID={0x6}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x50}}, 0x0)

1.388026562s ago: executing program 3 (id=1752):
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4c, &(0x7f0000000000)=0x2000000, 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched_retired(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000300)=@delqdisc={0x100, 0x25, 0x51c, 0x70bd26, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xfff1, 0x6}, {0x5, 0x2}}, [@q_dsmark={{0xb}, {0x1c, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x8}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x38}]}}, @q_dsmark={{0xb}, {0x20, 0x2, [@TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x2}, @TCA_DSMARK_INDICES={0x6}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xe0f}]}}, @q_dsmark={{0xb}, {0x20, 0x2, [@TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x1}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x8}, @TCA_DSMARK_DEFAULT_INDEX={0x6}]}}, @q_dsmark={{0xb}, {0x14, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x22}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x1ff}]}}, @q_dsmark={{0xb}, {0x18, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xe3e9}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x8}]}}, @q_dsmark={{0xb}, {0xc, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x2}]}}]}, 0x100}, 0x1, 0x0, 0x0, 0x4000}, 0x4044884)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x503}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x10, 0x2, 0x0, 0x1, [@IFLA_VLAN_INGRESS_QOS={0x4}, @IFLA_VLAN_ID={0x6, 0x1, 0x3}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)

1.319822031s ago: executing program 0 (id=1753):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@ipv6_getroute={0x2c, 0x1a, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe80}, [@RTA_MARK={0x8}, @RTA_OIF={0x8}]}, 0x2c}}, 0x0)

1.25899449s ago: executing program 0 (id=1754):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001240)={<r1=>r0})
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000080)={{{@in=@initdev, @in6=@loopback}}, {{@in6=@initdev}, 0x0, @in6=@remote}}, 0x0)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x1014}], 0x1}, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_proto_private(r2, 0x8b15, &(0x7f0000000080))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvmsg$unix(r3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x2000)
ioctl$TUNSETNOCSUM(r4, 0xff05, 0x0)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b00), 0xffffffffffffffff)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000140)=ANY=[@ANYBLOB="44000000010101010000000000000000020000002400018014000180080001007f00000108000200000000000c000280050001003a0000000c001980080001000d"], 0x44}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000b40)={'wlan0\x00', <r8=>0x0})
r9 = socket(0x80000000000000a, 0x2, 0x0)
r10 = socket(0xa, 0x80000, 0x4d2)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r10, 0x84, 0x16, &(0x7f0000001280)={0x2, [0x8001, 0x0]}, &(0x7f00000012c0)=0x8)
setsockopt$inet6_group_source_req(r9, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
setsockopt$inet6_group_source_req(r9, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}, {{0xa, 0x0, 0x200, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x59)
socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet6_group_source_req(r9, 0x29, 0x2f, &(0x7f0000000480)={0x0, {{0xa, 0x4e23, 0x7, @mcast1={0xff, 0x7}, 0xffe}}, {{0xa, 0x4e21, 0x3e, @loopback}}}, 0x108)
sendmsg$NL80211_CMD_SET_STATION(r5, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000b80)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000001200000008000300", @ANYRES32=r8, @ANYBLOB="08001180040008000a000600"], 0x30}, 0x1, 0x0, 0x0, 0x40004}, 0x0)

1.183615775s ago: executing program 3 (id=1755):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x3}]}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x4c}, 0x1, 0x0, 0x300000000000000}, 0x8000)

1.120911019s ago: executing program 4 (id=1756):
socket$kcm(0xa, 0x3, 0x87)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(r1, &(0x7f0000000040)="05000000010000", 0x7)

950.983296ms ago: executing program 2 (id=1757):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001840)=@newtaction={0xe68, 0x30, 0x25, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x3}, [{}, {}, {0x0, 0x8000}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x9, 0xfffffffc, 0x0, 0x0, 0x9}, {}, {0x0, 0x1}, {0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3cf}, {0x0, 0x7}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x3}, {}, {}, {}, {0x0, 0x0, 0x4000}, {}, {0xfffffffd}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x4}, {}, {}, {0x0, 0x0, 0x200}, {}, {0x8, 0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x7f, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0xfffffffd}, {0x0, 0xffffff01}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0xdf}, {0x0, 0xfffffff2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x0, 0x2, 0xf}, {}, {}, {}, {0x0, 0x0, 0x10}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, {}, {0x0, 0x0, 0x100}, {}, {0xfffffffc, 0x3}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x4, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x2, 0x0, 0x0, 0x4000000}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@gettaction={0x30, 0x32, 0x6dd711a25f4cb68b, 0x0, 0x0, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x100}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}]}, 0x30}, 0x1, 0x0, 0xf0ff}, 0x0)

802.870872ms ago: executing program 3 (id=1758):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x2, 0x8}}]}}]}, 0x48}}, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r4, 0x5)
accept(r4, &(0x7f0000000080)=@can, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, 0x0, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sm3\x00'}, 0x58)
r6 = accept4(r5, 0x0, 0x0, 0x0)
recvmmsg$unix(r6, &(0x7f0000001280)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20, 0x0)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r7, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

723.752231ms ago: executing program 2 (id=1759):
syz_emit_ethernet(0xbe, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, '\x00@\x00'}}}}}}, 0x0)
syz_emit_ethernet(0x9e, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x90, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x7c, 0x0, @wg=@data={0x4, 0x0, 0x0, '\x00'/100}}}}}}, 0x0)

698.391201ms ago: executing program 2 (id=1760):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)="d8000000100081046881f782db44b904021d080b01002000e8fe55a11800150006001500000000120800030043000000a80016000400dfbfdb2d47782a462c9c801f298225c506000d00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d9308e56539322fe7c0aaa16b8ddc64193071e9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3", 0xd8}], 0x1}, 0x8040)

648.384892ms ago: executing program 2 (id=1761):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000dd0a00000000000073019d00000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7, 0x0, 0xffffffffffffffff, 0x68000000, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000640)={'wlan0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000640)={'wlan0\x00'})
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)={0x30, r1, 0x800, 0x30b527, 0x8, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_WIPHY_FREQ_HINT={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x488d0)

563.747078ms ago: executing program 2 (id=1762):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000001c0)='bic\x00', 0x4)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a80)=ANY=[], 0x14}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000c80), r2)
r3 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000b00), r2)
sendmsg$NLBL_CALIPSO_C_LIST(r2, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10020080}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x44, r3, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x44}}, 0x4)
sendmsg$NLBL_CALIPSO_C_ADD(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01000000002000000000020000"], 0x1c}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="12000000240000000400000002000000021000000076738da7ac366160f511eb4cdfef0c7e007092505a60144a19046eacf96d953c85a57b9b9e3ba233626c3948703eaceb75e772f28b6acddcb916088c9f0fbf614d16c155f9f5dfcd252c6029bbe1e511826dcf85bbb7c6158ef226551a5fcfd82d5d11bbc8052d54c6ff7c73eac29acea10995aec191091143b646283a117ef7cfb8660bf43a30daad86872169b9e1ab08058715edb2c8236c39fd372c2ccf3b444e0dba061f79c31baae390ea019665e1f8249335e80619", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000fdffffff00"/28], 0x50)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000140)={r6, &(0x7f0000000200)="375724c53d1eff4f23dbb123c9e3d5", 0x20000000}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r6}, &(0x7f0000000700), &(0x7f0000000740)=r4}, 0x20)
shutdown(r5, 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r7, @ANYBLOB="0000000002000000b705000008000000850000005d00"], &(0x7f0000000300)='GPL\x00', 0x2, 0xff6, &(0x7f0000001e00)=""/4086, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r8, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r8, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r8, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r8, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x58040}, 0x0)
sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000fedbdf25010000002885684339aac0620800020002000000"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x80c4)

311.421455ms ago: executing program 0 (id=1763):
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$netlink(0x10, 0x3, 0x0)
bind$rxrpc(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = accept4$alg(r0, 0x0, 0x0, 0x80000)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000140)={'tunl0\x00', 0x0})
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket(0x10, 0x803, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
socket$kcm(0x2, 0xa, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002840)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000fdfdfff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040000010000400404000001f7ff04b7050000240000006a0a00fe00000000850000000b000000b70000000000000095000000000000009cc6b3fcd62c061c6238975d43a4505f80e39c9f3c530cf08e467b592f868ee3b0a435df0a0e8c1bf176db2a6b2feb4b77d3d5707bfd2d84aaa3b1d4e984c46ea7e2b347a36f5662403e1b2be4284322a4988a0d411a9872971c7c56f0979bd10b97163c066d0e196bf0fb04e500b0c0502df9de9ca3c00cb9a323d9b401bf4e418d07fa22f0610a70f2bdf4000200000000b0c2c125080963f6324bb7b80197aa3161f45346b100000000000000000089e399f6609876b588743794298b79dc192dff048fc207c81f28bdd3e26a1a8a0481e9f0da43bb6ca66e2f55a9ff19ffcafe3e64be06000000000000005064caec04a367c23d9fb6a6991ddb737d527d6acb15426406991c3b404984dfa2c6e94bd0339454c13ad3c328a182c15dc760a313e3b3ca5d3393404029e98fa883c71949a34d84030323e3d54fc5b29d27643453ad9226e3550ee5520211d9370175fba303f003073afd1ec9f7c6133f260c6882a146880b9387f1beb5418618bc83a3becf9bb5d80eff7da7ba8b913c685fc6700848dc6665d73248c1f74e08ad04ce905faf32706e0000249a028044ede964362cfb2f30a246c3b2f60000fc4deb91da1368b0960b8d69bd99c64893d44f962524429dc0584b8e7e541c903869d96989b9a986620cb2c95c83f2a082c52764f49e51188f9418b01bcd8ae164acdac95318ec8b2c6feacdcf4b528e5e58219bc54f6ad5679e7f430e6960ed048c46e1dccca05bfa1d67c83795eae2d31968c055d325a9c794ef88b30c2de4a274878b73c05ffa88b7073be648b12bb1fee58958d6a6f31bfe568215dfbde59dad00008a73b40f09cf018cd496b36050d7fd45e3620c28f76749262e33e16429a6da35ceb1a989de81c3f8b8bc348ef2ac3781b847611fcb0a26acafdd6d9a1b17dcb9f7c493d8f8cd344a1d470ca0d6f16ab0293774b5509fb0e7113936d59d5a60dbd84a938476adeebab9ff44f531bb0200000000000000cc1fbc455a64fd449284f71761092a0302000000000000008a05d36fd9b814b4292745418c92d944763a4bf5e138d810e29a31f08f7dea7762d2d8f7e1d24cabe17ad4135d8872935ceac6eb4f046f2acc1b0efb4438abddcabb4e4e72a450aab72b589bec83bbb688e659fb426cd43d0ee993516fd4e867232cde69b6ffad447dcd92e0ef8234ff850ec3948dd1fa7afb77d951fe4abf618121b7894c106beb49a71c62df5544ef221973432ccc7e62b151eb898a01010a7ec5acd0a5dcb2de443880c8a682515d1da9a3048744acb44384d1591df789883c0560495cb0cb32283529926d25e5c7f481112ab8a82247e927fb6f256830dab3671f00500d36a17790bab7d0e89e6c15314f2b963bfc867953476b0505c7d728326d666f39e82cfcf7e7a85df288d75df24c5e4d529c349923f9a4fb882310391dd58b4cbd8def239a227724d39c3e6c40e20e07e68a22888a5c3941b7a765b92bcb37f302487bcbd93ccf3a104021ff34ddf7ffcca1a04eae963e25516a114573779b24a341dfb2e80f1f345c6d96493ffc2a18478b5bf3aab2ea59c51cf0678e1a57d0ea042d911548ff612002ddb2d54d42fbdde42b56887003d27468225b2594a05044baf314113e889468cf13dd92aa0d7744db6b56557a5adad95cb9a69d4de50642b4b9d6d3ba7eb534b00d0fea62f0a61535dfc4da06e7f8695be614c557caed7eb0120516e1351fed7d8ffa31c8f4be364185469cfc5f25c90d71bce745dd2d58a30e0844f12c4cbbdd7a08465e665c2620d78673dfb6d9263ed7def8924cfcd48a8a3534f1a3eac9ee9f18a18106ba3d7c7a62330f5c0e98cb7982dd7bad02c8dba9c13894185bfc4bd2520b6e2043fcb3fc5eb55ecf9e6e363ea2ac40a14a6f00f0ffffa0fdb6487c51ef12c2e88beeb5aa6f6a4151cfb90644e50630ed474df7d1635afcb1ea3f6c47b5acbba2ce5099a9387f74d1ffbd1da497613174f76a656ba5bacccbb58dddaf9a3510d65383829a51e0f41e661fa80ca1eaaa6cf0824305ba4ec80400c50ffe83ccb0e6fef321190c58aca8c7c8c6d26ff5cbc2cadebda8e1219e04f8dacffd33db1a0a2e74c9eb978d80a12d0b5327bfd053000000000000000000be0d02a14708504412fa93d335992b2983c5addc191b4a21c7b340d0536b01958e15315eb5f3f9f4992c18f666359f40295fa73284c4b607669bae75bd68c3e2b770c324a0ab26b6065d7e95a7bd80052db57506ec7cc861bf3998d07484c66630ca8173fea3f06ed1dfc70a8b90418e2dc76137e0f68cb1c8a908aef9f009f85647dba54e05028c33d94d463fb20d2e7547184b8d3611e45dff02144387f342ef9b9bf650e9d049bf65258a7bc094a6965e24611c077e1ca0891362a9d68f3ec7610c0449acf18459110500a09b75885cd79ba32776e4a511c8a4ad922b000000000002ef507ec6fc7f5dc431b9d8cbd9003972bf1dc6a71bedad8e19efc3edd2a7a7e555d5f3176af69920471e6e5bcb8966c813c132d65e2b99d3015e06b372e1aefaae14ee3fbc6349af362c19b59c214de66912d1a9a98d92dc197a51c29443de62caca334c46d110e50896fe50d0477771d387f40c8ef05750ca651e6e69a237dcf78666d6ab2bda1f853525494e4efdd93be38bb5fc671f8794002d7a951fd336aaf4ed1166cb459df70218c571ba1c40b028234505e5477effff26af8812c2fbb8785a223fce0a0601c2a3b58bea8c6216eadabcabe86ab46e4cd3d58ef7ce8d3c4b0bc5952e81dfc0a490d8568db6f9c51fe703c6864fae0053d2f91f49e977cdc1962dbc28c29471a72199862bc8fc6e211d13d8579cab4fba94b2b613c9b8148d05e0690a4c4ab35aabc45801d2b82081e62b23a01b58b1ffb624f63ad2246796796160cd3682374364edac52f1becb7c6eff50823b75fb2ef516ec4ec1cb20a2535b504502d744f2099674e58f2c117c980cf0d041c8e45c4f166bab4aa5ed200ef4dcff96f7c9c1ab8c22db0f439b23b04bcd41ffc3a0e01976ca1cf43e12d7d72f3faa4979faabd62e2dc54a980eae4d5e8c6498de331c3aba1144ef1190ea6cda641d9416c4560cab2d819eac7b04c70f141754c3ffd79da363fe8859afee531710caf1b2bf5a51142f4755cbb700c28083525a9093790096cb93417f1216000000000000000000000000000040ceb244e4cae2b65a76d41793aabccd3d0c50486eae6793e1f54814a8ee2779c14ca94759266200229b58c12279817869e831cadb7b09ddffffff9d93e2ad25eed43c0b9ee4fd209b5b919a42f676b9d7236fc8dd5040899d0676291407ce9ac8101dd3512f5b3ac8cf8179d1749de324000030d0f942ec4604c28d5c287d1435956784003a53eb5f0436ead88d7acf0166dbd9f30a9b259c8a9b9faf1356faf269cded935b07863e4fdad8aab52686c81babd1c08f6700a2fadd413443022ea5c774ffefdd426abed08d437a4db48611fc82a18ab9f54758a1aad86d95cd186ceb55fafa3930090467b8b7bb8ae7e1c8b4b4106a381cb67fdb86def4de2076dc538bb97502b4b4350e633dc0a53c2fc9a01bc5cfae0245f1fab843c633446f5f3a43226109b7dafe7815773bd6969f04cbe15236b90000000000000000000000000000000000000000000000000000ff0779b9c0057addb2efe11b8b3a706569f1522b57d71bb0beccab7c8fe9e1330b2f501b2ac3cfe9e2f505e833217557abb257d61a73a758543651b250f8d8ef9c8481bb28a137d15040b0181c28dfad7c17b30c452a64c43a117cb948247c33abc765a6ba695c3cea5e32a4d11c9b4be91c60932bae2dcbec2ff4268e03aad15efc6004e6b3d7f0edf8b5d4ae7846a6d43c16c90b7c5dc13ac2ff0439ab693498964cad2bb533bcd240778b7e49145c48efde42b44c01517f1a7c7707b4c4fc0900e7086ec40354504590696282286db9030f0320e2fcba8723939005347b3c99e3f1310d41ab328c1f351b3f744ff1973431000000000000000000000000000000000000003495d69aaf9a1d83e83511a3bf44fe753b8ad83bc34ea4d46b397e000fd267c50122aa5aaf8474ec2e57d960d963900bef84a4b3c7dd01ae4d6b5522aa8a35ae7996e298bcfe3f31a34e3e12c58cf172a4d3677a67b52041ec21ae8003aa1c9969178b1b00e4d12ac9741fd788fb6260ec043c013907523c77f8acc20b9e2fd224ca8f21fab2b10991881e0a12f4e1c4f54b9ca7c9a0c8298d60b8b6eaa023418992d6d62b0e9faca4a3b3a845e859137cd933ef5eb8db16f159f32505725da51414562d064b551246dacd586f42d04d3fed3c087bb52ae4bc09f3846c785d1b278e661ed01fbc2415288bc9c808c4aef648d431b3029da0dec8886c3ee9cad996843d00a3b5eb54e270dd2e96c8f2fdb4c27c2d1bd467f2a14867dec67730d8a68329839d9feff688dfbe25c73f936338e7b057980da58a6303d95f17712d667d5a1066ae457ae32925ce658b559c1182a74e267da57fe25b19153f1cdebaddf3f7a3479c09f2303dff449c0513b552a75ed48215cc31264a6ff648a95daa0d599dbce303b3b5307572df30429a3b4b115cab0a018f2501272048dd9e69877535e20078e7c28a98f26ace7a266bdc15ce904f25ec7fb2434ee7b5b69bed702ba1e7ed72942f452f1a98a2d949450091075efa823b11f5f5eccd921c04c7c15a5a05750cd85b1300fc00ce275de7559e117f87cb6c3c9a4b9f96149e3fcffa44d7000000000000000000d43d07d546acb7009c0c4f6e57b8577d2113bfca1939b9bf757265e175c1863a7c8d7640675830dc11d5d59546daf2385a7074f770c8333b21e2fb660141bc4f1ed45f703da6ac2557ab6952bd0c300000000000000000005b44bff4e3966fdfc9b720412bec09936b08e440c774e2224f2d338fab2ae59379378ca34eeedbd9a323a889f295e5d3bae64fc48ba123668e6a0be1e732aa5e2a0d4373a0b76d84f018d45bdf6f12d6d5d23a0331c3ae5e99a2bcdb52386135ea15890007e1cba5e52a04971139272012ae5542ba109a9d2f49798ce2fc6f639735e0222cd08075418239042bfe47c363973d3245ce507e838dfd90ae442a96fa1343029be56de31c2eff226c05f0ae3dbe2281e7bc02db39342d5b54ad3616733a5aa7753613423a0c5e2844a6e08fa5b76e18f7e24e967f6f83c546718d0f20959376427cdd449a4be3d75fd3e51e1b7f8690855af8eddbd3fd556b4460d0091e3623933f1a11db14aea54af6c49725bfa51fed222dc379995f48b1aab94441767c8bccbfd966d814715203bd8f549cd57d6a87295bf16aa25fb4e7fcaa8cec5e5c03b0095861bf2fed70ffb46bbb78ba90ca272ead9b3d2959fd9dbaabd1d51a60b474cef4c700faf718b810e4d3527a4663ee9fbc0000000000000000000000000000000000000000000000000061abf7a66b7b3f57ff83482dbab3f591dded505630dd9dd4828dde3fd9218fb1d041a26c60a724fd8506ba03a370721c281ff6202410dd078fc15f5c4e02b46fba33e0a772130f9a158a2e403ea61919f461358bee016e4c7c114ba7f4486aa7984fffd4555d71e049b2e933ae820bb5990ac3e27e7ebb101ad67ea47ed363de7dab4fb43769f5eca65b5918a76af8860f4d0d79805d9c08d3e27a8f041615ef85b52e521a90e511fcb303dc0ab19abaf0e37e9725bb596de8d8afecf5e15215a83652f3834bf00bf7bbc82b3c45e78a46e70a54a1925b4bf8392070e9cde0634790e444e4e4ee762db725122865a194d7ba289d9aecbba85da0a5c0de6b71a3cc"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(r3, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, 0x0, 0x400, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40000)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r5, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0xce}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r5, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x80020}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x34000811)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r5, 0x84, 0x77, &(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYRES16=r5, @ANYRES16=r4], 0x1000f)

0s ago: executing program 3 (id=1764):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000004c0)=ANY=[@ANYBLOB="d8000000", @ANYRES16=0x0, @ANYBLOB="04002dbd7000f2dbdf254f0000000c00839ced540000680000004c007a8008000400000000181c000200134ecc4d908540c3c8630b918a29360800040004005111335ced5fd94e0800040009000000080004000300000048007a801400010003d869f47d8c428eaa74b31794b4b314b5000400000000000c0003004180081ee4f88f1a080004000c0000000c0003007858754e3c504054080004000800000004007a8020007a8008000400050000001400020029"], 0xd8}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x952f, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x5dc}], 0x1, 0x0, 0x0, 0x2c}, 0x44004) (fail_nth: 5)

kernel console output (not intermixed with test programs):

_unregister_hooks+0xb9/0x120
[  109.475864][ T7430]  ip_vs_unlink_service+0x3c5/0x9e0
[  109.475895][ T7430]  ip_vs_flush+0x15d/0x1b0
[  109.475916][ T7430]  do_ip_vs_set_ctl+0x511/0xe40
[  109.475941][ T7430]  ? __pfx_do_ip_vs_set_ctl+0x10/0x10
[  109.475967][ T7430]  ? __mutex_lock+0x397/0x1010
[  109.475996][ T7430]  ? __mutex_unlock_slowpath+0x227/0x800
[  109.476026][ T7430]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  109.476051][ T7430]  ? __pfx___mutex_lock+0x10/0x10
[  109.476081][ T7430]  nf_setsockopt+0x295/0x2c0
[  109.476102][ T7430]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  109.476136][ T7430]  smc_setsockopt+0x275/0xd10
[  109.476163][ T7430]  ? __pfx_smc_setsockopt+0x10/0x10
[  109.476182][ T7430]  ? aa_sock_opt_perm+0x79/0x120
[  109.476211][ T7430]  ? __pfx_smc_setsockopt+0x10/0x10
[  109.476228][ T7430]  do_sock_setsockopt+0x3af/0x720
[  109.476258][ T7430]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  109.476287][ T7430]  ? __fget_files+0x395/0x410
[  109.476307][ T7430]  ? __fget_files+0x2a/0x410
[  109.476336][ T7430]  __x64_sys_setsockopt+0x1ee/0x280
[  109.476366][ T7430]  do_syscall_64+0xf3/0x230
[  109.476386][ T7430]  ? clear_bhb_loop+0x35/0x90
[  109.476411][ T7430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.476431][ T7430] RIP: 0033:0x7fe7c018d169
[  109.476446][ T7430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.476459][ T7430] RSP: 002b:00007fe7c0f27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  109.476477][ T7430] RAX: ffffffffffffffda RBX: 00007fe7c03a5fa0 RCX: 00007fe7c018d169
[  109.476492][ T7430] RDX: 0000000000000485 RSI: 0000000000000000 RDI: 0000000000000005
[  109.476501][ T7430] RBP: 00007fe7c0f27090 R08: 0000000000000000 R09: 0000000000000000
[  109.476511][ T7430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.476520][ T7430] R13: 0000000000000000 R14: 00007fe7c03a5fa0 R15: 00007ffe5e9b52f8
[  109.476548][ T7430]  </TASK>
[  109.878211][ T7432] IPVS: using max 28 ests per chain, 67200 per kthread
[  109.921178][ T7441] xt_bpf: check failed: parse error
[  109.929021][ T7441] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  109.971096][ T7437] netlink: 'syz.4.484': attribute type 21 has an invalid length.
[  109.979211][ T7437] netlink: 'syz.4.484': attribute type 20 has an invalid length.
[  110.030696][ T7437] IPv6: NLM_F_CREATE should be specified when creating new route
[  110.234018][ T7450] netlink: 12 bytes leftover after parsing attributes in process `syz.0.492'.
[  110.291500][ T7456] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  110.378066][ T7456] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  110.414805][ T7456] gretap1: entered promiscuous mode
[  110.442109][ T7456] gretap1: entered allmulticast mode
[  110.655674][    T9] IPVS: starting estimator thread 0...
[  110.673095][ T7480] FAULT_INJECTION: forcing a failure.
[  110.673095][ T7480] name failslab, interval 1, probability 0, space 0, times 0
[  110.692768][ T7480] CPU: 0 UID: 0 PID: 7480 Comm: syz.4.500 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  110.692793][ T7480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  110.692802][ T7480] Call Trace:
[  110.692807][ T7480]  <TASK>
[  110.692814][ T7480]  dump_stack_lvl+0x241/0x360
[  110.692841][ T7480]  ? __pfx_dump_stack_lvl+0x10/0x10
[  110.692858][ T7480]  ? __pfx__printk+0x10/0x10
[  110.692877][ T7480]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  110.692899][ T7480]  ? __pfx___might_resched+0x10/0x10
[  110.692922][ T7480]  should_fail_ex+0x40a/0x550
[  110.692946][ T7480]  should_failslab+0xac/0x100
[  110.692967][ T7480]  __kmalloc_node_noprof+0xe1/0x4d0
[  110.692986][ T7480]  ? __kvmalloc_node_noprof+0x72/0x190
[  110.693011][ T7480]  __kvmalloc_node_noprof+0x72/0x190
[  110.693031][ T7480]  __nf_hook_entries_try_shrink+0x330/0x730
[  110.693064][ T7480]  __nf_unregister_net_hook+0x5cf/0x800
[  110.693092][ T7480]  nf_unregister_net_hooks+0xd0/0x140
[  110.693109][ T7480]  ip_vs_unregister_hooks+0xb9/0x120
[  110.693133][ T7480]  ip_vs_unlink_service+0x3c5/0x9e0
[  110.693157][ T7480]  ip_vs_flush+0x15d/0x1b0
[  110.693188][ T7480]  do_ip_vs_set_ctl+0x511/0xe40
[  110.693214][ T7480]  ? __pfx_do_ip_vs_set_ctl+0x10/0x10
[  110.693241][ T7480]  ? __mutex_lock+0x397/0x1010
[  110.693269][ T7480]  ? __mutex_unlock_slowpath+0x227/0x800
[  110.693299][ T7480]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  110.693323][ T7480]  ? __pfx___mutex_lock+0x10/0x10
[  110.693354][ T7480]  nf_setsockopt+0x295/0x2c0
[  110.693373][ T7480]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  110.693395][ T7480]  smc_setsockopt+0x275/0xd10
[  110.693420][ T7480]  ? __pfx_smc_setsockopt+0x10/0x10
[  110.693438][ T7480]  ? aa_sock_opt_perm+0x79/0x120
[  110.693465][ T7480]  ? __pfx_smc_setsockopt+0x10/0x10
[  110.693482][ T7480]  do_sock_setsockopt+0x3af/0x720
[  110.693510][ T7480]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  110.693538][ T7480]  ? __fget_files+0x395/0x410
[  110.693558][ T7480]  ? __fget_files+0x2a/0x410
[  110.693588][ T7480]  __x64_sys_setsockopt+0x1ee/0x280
[  110.693618][ T7480]  do_syscall_64+0xf3/0x230
[  110.693640][ T7480]  ? clear_bhb_loop+0x35/0x90
[  110.693665][ T7480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.693684][ T7480] RIP: 0033:0x7f55b2d8d169
[  110.693699][ T7480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.693712][ T7480] RSP: 002b:00007f55b3bf5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  110.693730][ T7480] RAX: ffffffffffffffda RBX: 00007f55b2fa5fa0 RCX: 00007f55b2d8d169
[  110.693750][ T7480] RDX: 0000000000000485 RSI: 0000000000000000 RDI: 0000000000000005
[  110.693760][ T7480] RBP: 00007f55b3bf5090 R08: 0000000000000000 R09: 0000000000000000
[  110.693769][ T7480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.693779][ T7480] R13: 0000000000000000 R14: 00007f55b2fa5fa0 R15: 00007ffeddbe41e8
[  110.693807][ T7480]  </TASK>
[  111.095462][ T7481] IPVS: using max 27 ests per chain, 64800 per kthread
[  111.170682][ T7487] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  111.957413][ T7522] delete_channel: no stack
[  112.630091][ T7558] xt_l2tp: v2 tid > 0xffff: 150994944
[  112.641155][ T7558] __nla_validate_parse: 4 callbacks suppressed
[  112.641173][ T7558] netlink: 8 bytes leftover after parsing attributes in process `syz.3.526'.
[  112.663847][ T7558] netlink: 4 bytes leftover after parsing attributes in process `syz.3.526'.
[  112.688889][ T7558] netlink: 'syz.3.526': attribute type 1 has an invalid length.
[  112.704235][ T7558] netlink: 10 bytes leftover after parsing attributes in process `syz.3.526'.
[  112.728146][ T7558] block nbd0: Unsupported socket: shutdown callout must be supported.
[  112.966142][ T7565] netlink: 'syz.1.529': attribute type 4 has an invalid length.
[  113.004288][ T7565] netlink: 152 bytes leftover after parsing attributes in process `syz.1.529'.
[  113.546615][ T7597] netlink: 8 bytes leftover after parsing attributes in process `syz.1.541'.
[  113.614726][ T7603] netlink: 'syz.4.543': attribute type 1 has an invalid length.
[  113.632845][ T7603] netlink: 224 bytes leftover after parsing attributes in process `syz.4.543'.
[  113.675076][ T7606] netlink: 'syz.3.542': attribute type 26 has an invalid length.
[  113.996426][ T7618] netlink: 24 bytes leftover after parsing attributes in process `syz.3.548'.
[  114.090938][ T7623] netlink: 'syz.0.549': attribute type 4 has an invalid length.
[  114.128959][ T7623] netlink: 152 bytes leftover after parsing attributes in process `syz.0.549'.
[  114.139208][ T7624] netlink: 'syz.4.550': attribute type 4 has an invalid length.
[  114.176371][ T7624] netlink: 152 bytes leftover after parsing attributes in process `syz.4.550'.
[  114.463362][ T7640] xt_CT: You must specify a L4 protocol and not use inversions on it
[  114.695933][ T7648] netlink: 4 bytes leftover after parsing attributes in process `syz.2.558'.
[  114.988390][ T7662] netlink: 'syz.3.564': attribute type 4 has an invalid length.
[  115.411044][ T7686] netlink: 'syz.4.572': attribute type 1 has an invalid length.
[  115.697858][ T7698] netlink: 'syz.1.578': attribute type 1 has an invalid length.
[  115.739886][ T7700] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  116.303170][ T7728] IPVS: Error joining to the multicast group
[  116.372713][ T7734] vlan2: entered allmulticast mode
[  116.553566][ T7743] netlink: 'syz.1.597': attribute type 4 has an invalid length.
[  116.581730][ T7745] netlink: 'syz.4.598': attribute type 10 has an invalid length.
[  116.621880][ T7745] dummy0: entered promiscuous mode
[  116.649220][ T7745] bridge0: port 3(dummy0) entered blocking state
[  116.683536][ T7745] bridge0: port 3(dummy0) entered disabled state
[  116.714673][ T7745] dummy0: entered allmulticast mode
[  116.744452][ T7752] gretap1: entered promiscuous mode
[  116.776179][ T7752] gretap1: entered allmulticast mode
[  117.115886][    T9] hid (null): unknown global tag 0xd
[  117.134230][    T9] hid (null): unknown global tag 0xe
[  117.156175][ T7779] openvswitch: netlink: Flow actions attr not present in new flow.
[  117.173127][    T9] hid (null): invalid report_size 55466
[  117.185171][    T9] hid (null): unknown global tag 0x27
[  117.205431][    T9] hid (null): unknown global tag 0xc
[  117.221300][    T9] hid (null): unknown global tag 0xe
[  117.246825][    T9] hid (null): invalid report_count 1842164424
[  117.252937][    T9] hid (null): unknown global tag 0xe
[  117.276451][    T9] hid (null): invalid report_count 1470208504
[  117.282670][    T9] hid (null): unknown global tag 0xe
[  117.313036][    T9] hid (null): unknown global tag 0xc
[  117.325452][    T9] hid (null): report_id 0 is invalid
[  117.337026][    T9] hid (null): global environment stack underflow
[  117.357431][    T9] hid (null): unknown global tag 0x66
[  117.365679][    T9] hid (null): unknown global tag 0xd
[  117.371117][    T9] hid (null): unknown global tag 0xd
[  117.400448][    T9] hid (null): global environment stack underflow
[  117.422610][    T9] hid (null): unknown global tag 0xd
[  117.436787][    T9] hid (null): unknown global tag 0xc
[  117.465594][    T9] hid (null): unknown global tag 0xc
[  117.477666][    T9] hid (null): unknown global tag 0xd
[  117.495784][    T9] hid (null): global environment stack underflow
[  117.515409][    T9] hid (null): unknown global tag 0xc
[  117.534275][    T9] hid (null): global environment stack underflow
[  117.562926][    T9] hid (null): report_id 0 is invalid
[  117.577757][    T9] hid (null): global environment stack underflow
[  117.599119][    T9] hid (null): global environment stack underflow
[  117.621160][    T9] hid (null): report_id 0 is invalid
[  117.628605][    T9] hid (null): unknown global tag 0x51
[  117.642024][    T9] hid (null): unknown global tag 0xe
[  117.670909][    T9] hid (null): global environment stack underflow
[  117.684692][    T9] hid (null): invalid report_size -311660997
[  117.702298][    T9] hid (null): unknown global tag 0xd
[  117.713650][    T9] hid (null): unknown global tag 0xe
[  117.727349][    T9] hid (null): invalid report_size -1186639453
[  117.766289][    T9] hid (null): unknown global tag 0xd
[  117.805408][    T9] hid (null): report_id 28081 is invalid
[  117.832207][    T9] hid-generic 0005:0004:0006.0001: unknown global tag 0xd
[  117.853968][ T7802] __nla_validate_parse: 15 callbacks suppressed
[  117.853988][ T7802] netlink: 56 bytes leftover after parsing attributes in process `syz.0.619'.
[  117.875934][    T9] hid-generic 0005:0004:0006.0001: item 0 1 1 13 parsing failed
[  117.899977][    T9] hid-generic 0005:0004:0006.0001: probe with driver hid-generic failed with error -22
[  117.922161][ T7806] netlink: 28 bytes leftover after parsing attributes in process `syz.2.621'.
[  117.954691][ T7806] netlink: 28 bytes leftover after parsing attributes in process `syz.2.621'.
[  118.304163][ T7827] x_tables: duplicate underflow at hook 3
[  118.624315][ T7845] netlink: 16 bytes leftover after parsing attributes in process `syz.4.634'.
[  118.876973][ T7857] netlink: 'syz.1.638': attribute type 4 has an invalid length.
[  118.901523][ T7857] netlink: 4 bytes leftover after parsing attributes in process `syz.1.638'.
[  119.005675][ T7863] netlink: 8 bytes leftover after parsing attributes in process `syz.1.638'.
[  119.240780][ T7876] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  119.465184][ T7890] netlink: 16 bytes leftover after parsing attributes in process `syz.0.649'.
[  119.762761][ T7907] netlink: 12 bytes leftover after parsing attributes in process `syz.2.655'.
[  120.009432][ T7923] netlink: 8 bytes leftover after parsing attributes in process `syz.3.660'.
[  120.035522][ T7923] netlink: 'syz.3.660': attribute type 30 has an invalid length.
[  120.073233][ T7923] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  120.082204][ T7923] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  120.091028][ T7923] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  120.099843][ T7923] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  120.612940][ T7957] netlink: 'syz.3.672': attribute type 4 has an invalid length.
[  120.652981][ T7957] netlink: 152 bytes leftover after parsing attributes in process `syz.3.672'.
[  121.248896][ T7988] veth0: entered promiscuous mode
[  121.271224][ T7987] veth0: left promiscuous mode
[  121.634952][ T8011] gretap0: entered promiscuous mode
[  121.658801][ T8011] macvtap1: entered promiscuous mode
[  121.664283][ T8011] macvtap1: entered allmulticast mode
[  121.671254][ T8011] gretap0: entered allmulticast mode
[  121.716814][ T8013] wg2: entered promiscuous mode
[  121.721932][ T8013] wg2: entered allmulticast mode
[  122.492991][ T8064] sctp: [Deprecated]: syz.2.706 (pid 8064) Use of struct sctp_assoc_value in delayed_ack socket option.
[  122.492991][ T8064] Use struct sctp_sack_info instead
[  123.106005][ T8098] tipc: Enabling <eth:lo> not permitted
[  123.122060][ T8098] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  123.218878][ T8107] netlink: 'syz.0.722': attribute type 1 has an invalid length.
[  123.257692][ T8107] __nla_validate_parse: 11 callbacks suppressed
[  123.257712][ T8107] netlink: 248 bytes leftover after parsing attributes in process `syz.0.722'.
[  123.286626][ T8107] netlink: 52 bytes leftover after parsing attributes in process `syz.0.722'.
[  123.376383][ T8111] netlink: 4 bytes leftover after parsing attributes in process `syz.4.723'.
[  123.573451][ T8125] netlink: 4 bytes leftover after parsing attributes in process `syz.0.726'.
[  123.621253][ T8125] netlink: 'syz.0.726': attribute type 3 has an invalid length.
[  123.852413][ T8135] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.859973][ T8135] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.933744][ T8137] bond0: option mode: unable to set because the bond device has slaves
[  124.628630][ T8177] netlink: 'syz.2.747': attribute type 12 has an invalid length.
[  124.666650][ T8177] netlink: 132 bytes leftover after parsing attributes in process `syz.2.747'.
[  124.994637][ T8197] xt_hashlimit: size too large, truncated to 1048576
[  125.012593][ T8197] xt_hashlimit: overflow, rate too high: 0
[  125.077519][ T8191] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  125.094314][ T8193] netlink: 16 bytes leftover after parsing attributes in process `syz.3.754'.
[  125.170228][ T8205] netlink: 4 bytes leftover after parsing attributes in process `syz.2.756'.
[  125.685188][ T8231] netlink: 'syz.1.765': attribute type 7 has an invalid length.
[  125.968174][ T8238] netlink: 'syz.1.768': attribute type 4 has an invalid length.
[  126.274396][ T8253] netlink: 'syz.0.775': attribute type 1 has an invalid length.
[  126.324137][ T8253] 8021q: adding VLAN 0 to HW filter on device bond1
[  126.352230][ T8253] bond1: (slave ip6gretap1): making interface the new active one
[  126.361418][ T8253] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  126.381945][ T8253] netlink: 8 bytes leftover after parsing attributes in process `syz.0.775'.
[  126.401451][ T8253] vlan2: entered promiscuous mode
[  126.455502][ T8253] bond1: entered promiscuous mode
[  126.460659][ T8253] ip6gretap1: entered promiscuous mode
[  126.486222][ T8253] vlan2: entered allmulticast mode
[  126.491391][ T8253] bond1: entered allmulticast mode
[  126.499891][ T8253] ip6gretap1: entered allmulticast mode
[  126.640490][ T8266] can: request_module (can-proto-0) failed.
[  126.682320][ T8269] netlink: 24 bytes leftover after parsing attributes in process `syz.2.779'.
[  126.851415][ T8279] netlink: 8 bytes leftover after parsing attributes in process `syz.1.782'.
[  127.366595][ T8304] syz_tun: entered allmulticast mode
[  127.395211][ T8302] syz_tun: left allmulticast mode
[  127.481065][ T8307] 8021q: adding VLAN 0 to HW filter on device bond2
[  127.614369][ T8319] netlink: 'syz.2.802': attribute type 9 has an invalid length.
[  127.773377][ T8328] FAULT_INJECTION: forcing a failure.
[  127.773377][ T8328] name failslab, interval 1, probability 0, space 0, times 0
[  127.807676][ T8326] tipc: Started in network mode
[  127.816249][ T8326] tipc: Node identity ac1414aa, cluster identity 4711
[  127.823398][ T8328] CPU: 0 UID: 0 PID: 8328 Comm: syz.4.803 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  127.823439][ T8328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  127.823463][ T8328] Call Trace:
[  127.823469][ T8328]  <TASK>
[  127.823476][ T8328]  dump_stack_lvl+0x241/0x360
[  127.823502][ T8328]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.823528][ T8328]  ? __pfx__printk+0x10/0x10
[  127.823546][ T8328]  ? fs_reclaim_acquire+0x93/0x130
[  127.823564][ T8328]  ? __pfx___might_resched+0x10/0x10
[  127.823588][ T8328]  should_fail_ex+0x40a/0x550
[  127.823615][ T8328]  should_failslab+0xac/0x100
[  127.823638][ T8328]  __kmalloc_noprof+0xdd/0x4c0
[  127.823659][ T8328]  ? kstrtouint_from_user+0x128/0x190
[  127.823674][ T8328]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  127.823696][ T8328]  tomoyo_realpath_from_path+0xcf/0x5e0
[  127.823724][ T8328]  tomoyo_path_number_perm+0x239/0x770
[  127.823744][ T8328]  ? __lock_acquire+0x1397/0x2100
[  127.823770][ T8328]  ? tomoyo_path_number_perm+0x209/0x770
[  127.823793][ T8328]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  127.823850][ T8328]  ? __fget_files+0x2a/0x410
[  127.823876][ T8328]  ? __fget_files+0x2a/0x410
[  127.823902][ T8328]  security_file_ioctl+0xc6/0x2a0
[  127.823924][ T8328]  __se_sys_ioctl+0x46/0x170
[  127.823944][ T8328]  do_syscall_64+0xf3/0x230
[  127.823967][ T8328]  ? clear_bhb_loop+0x35/0x90
[  127.823992][ T8328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.824013][ T8328] RIP: 0033:0x7f55b2d8d169
[  127.824029][ T8328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.824042][ T8328] RSP: 002b:00007f55b3bf5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  127.824059][ T8328] RAX: ffffffffffffffda RBX: 00007f55b2fa5fa0 RCX: 00007f55b2d8d169
[  127.824071][ T8328] RDX: 0000400000000040 RSI: 0000000000008b1b RDI: 0000000000000003
[  127.824081][ T8328] RBP: 00007f55b3bf5090 R08: 0000000000000000 R09: 0000000000000000
[  127.824091][ T8328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.824101][ T8328] R13: 0000000000000000 R14: 00007f55b2fa5fa0 R15: 00007ffeddbe41e8
[  127.824126][ T8328]  </TASK>
[  127.824251][ T8328] ERROR: Out of memory at tomoyo_realpath_from_path.
[  127.851504][ T8326] tipc: Enabled bearer <udp:s>, priority 10
[  128.037061][ T8336] xt_CT: No such helper "snmp"
[  128.171234][ T8342] 8021q: VLANs not supported on ip6_vti0
[  128.491319][ T8362] __nla_validate_parse: 5 callbacks suppressed
[  128.491335][ T8362] netlink: 4 bytes leftover after parsing attributes in process `syz.2.816'.
[  128.635543][ T8362] netlink: 4 bytes leftover after parsing attributes in process `syz.2.816'.
[  128.651414][ T8369] openvswitch: netlink: VXLAN extension message has 2 unknown bytes.
[  128.869118][ T8362] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.878913][ T8362] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.966902][ T5928] tipc: Node number set to 2886997162
[  129.500263][ T8413] vlan2: entered allmulticast mode
[  129.534696][ T8413] bond0: entered allmulticast mode
[  129.558917][ T8413] bond_slave_0: entered allmulticast mode
[  129.564705][ T8413] bond_slave_1: entered allmulticast mode
[  129.603934][ T8413] bond0: left allmulticast mode
[  129.610517][ T8413] bond_slave_0: left allmulticast mode
[  129.619813][ T8413] bond_slave_1: left allmulticast mode
[  129.639210][ T8424] netlink: 'syz.1.835': attribute type 1 has an invalid length.
[  129.702746][ T8424] 8021q: adding VLAN 0 to HW filter on device bond3
[  129.728437][ T8427] sch_fq: defrate 0 ignored.
[  129.834198][ T8418] 8021q: adding VLAN 0 to HW filter on device bond3
[  129.885918][ T8418] bond3: (slave ipip0): The slave device specified does not support setting the MAC address
[  129.923549][ T8436] FAULT_INJECTION: forcing a failure.
[  129.923549][ T8436] name failslab, interval 1, probability 0, space 0, times 0
[  129.967170][ T8436] CPU: 1 UID: 0 PID: 8436 Comm: syz.2.839 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  129.967194][ T8436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  129.967203][ T8436] Call Trace:
[  129.967199][ T8418] bond3: (slave ipip0): Error -95 calling set_mac_address
[  129.967210][ T8436]  <TASK>
[  129.967219][ T8436]  dump_stack_lvl+0x241/0x360
[  129.967243][ T8436]  ? __pfx_dump_stack_lvl+0x10/0x10
[  129.967257][ T8436]  ? __pfx__printk+0x10/0x10
[  129.967273][ T8436]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  129.967295][ T8436]  ? __pfx___might_resched+0x10/0x10
[  129.967320][ T8436]  should_fail_ex+0x40a/0x550
[  129.967346][ T8436]  should_failslab+0xac/0x100
[  129.967368][ T8436]  kmem_cache_alloc_node_noprof+0x77/0x380
[  129.967388][ T8436]  ? __alloc_skb+0x1c3/0x440
[  129.967413][ T8436]  __alloc_skb+0x1c3/0x440
[  129.967438][ T8436]  ? __pfx___alloc_skb+0x10/0x10
[  129.967465][ T8436]  ? netlink_ack_tlv_len+0x6e/0x200
[  129.967484][ T8436]  netlink_ack+0x145/0xa60
[  129.967499][ T8436]  ? __up_read+0x2c2/0x6b0
[  129.967518][ T8436]  ? __pfx___up_read+0x10/0x10
[  129.967544][ T8436]  ? __lock_acquire+0x1397/0x2100
[  129.967570][ T8436]  rdma_nl_rcv+0x3f6/0x9e0
[  129.967599][ T8436]  ? __pfx_rdma_nl_rcv+0x10/0x10
[  129.967642][ T8436]  ? netlink_deliver_tap+0x2e/0x1b0
[  129.967661][ T8436]  netlink_unicast+0x7f6/0x990
[  129.967691][ T8436]  ? __pfx_netlink_unicast+0x10/0x10
[  129.967711][ T8436]  ? __virt_addr_valid+0x45f/0x530
[  129.967727][ T8436]  ? __phys_addr_symbol+0x2f/0x70
[  129.967741][ T8436]  ? __check_object_size+0x47a/0x730
[  129.967765][ T8436]  netlink_sendmsg+0x8de/0xcb0
[  129.967793][ T8436]  ? __pfx_netlink_sendmsg+0x10/0x10
[  129.967813][ T8436]  ? aa_sock_msg_perm+0x91/0x160
[  129.967840][ T8436]  ? __pfx_netlink_sendmsg+0x10/0x10
[  129.967855][ T8436]  __sock_sendmsg+0x221/0x270
[  129.967877][ T8436]  ____sys_sendmsg+0x53a/0x860
[  129.967899][ T8436]  ? __pfx_____sys_sendmsg+0x10/0x10
[  129.967913][ T8436]  ? __fget_files+0x2a/0x410
[  129.967936][ T8436]  ? __fget_files+0x2a/0x410
[  129.967965][ T8436]  __sys_sendmsg+0x269/0x350
[  129.967984][ T8436]  ? __pfx___sys_sendmsg+0x10/0x10
[  129.968010][ T8436]  ? do_sys_openat2+0x17a/0x1d0
[  129.968053][ T8436]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  129.968077][ T8436]  ? do_syscall_64+0x100/0x230
[  129.968100][ T8436]  ? do_syscall_64+0xb6/0x230
[  129.968123][ T8436]  do_syscall_64+0xf3/0x230
[  129.968143][ T8436]  ? clear_bhb_loop+0x35/0x90
[  129.968166][ T8436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.968186][ T8436] RIP: 0033:0x7fb22898d169
[  129.968201][ T8436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.968213][ T8436] RSP: 002b:00007fb229777038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  129.968231][ T8436] RAX: ffffffffffffffda RBX: 00007fb228ba5fa0 RCX: 00007fb22898d169
[  129.968243][ T8436] RDX: 0000000000000410 RSI: 0000400000000000 RDI: 0000000000000003
[  129.968253][ T8436] RBP: 00007fb229777090 R08: 0000000000000000 R09: 0000000000000000
[  129.968262][ T8436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.968272][ T8436] R13: 0000000000000000 R14: 00007fb228ba5fa0 R15: 00007ffcfbba5c28
[  129.968295][ T8436]  </TASK>
[  130.352006][ T8424] bond3: (slave ip6erspan0): making interface the new active one
[  130.376127][ T8424] bond3: (slave ip6erspan0): Enslaving as an active interface with an up link
[  130.756910][ T5898] IPVS: starting estimator thread 0...
[  130.855678][ T8470] IPVS: using max 25 ests per chain, 60000 per kthread
[  131.249282][ T8492] netlink: 16 bytes leftover after parsing attributes in process `syz.2.864'.
[  131.282530][ T8492] netlink: 92 bytes leftover after parsing attributes in process `syz.2.864'.
[  131.307726][ T8500] netlink: 24 bytes leftover after parsing attributes in process `syz.2.864'.
[  131.502964][ T8510] netlink: 8 bytes leftover after parsing attributes in process `syz.3.869'.
[  131.512032][ T8510] netlink: 12 bytes leftover after parsing attributes in process `syz.3.869'.
[  131.961489][ T1977] IPVS: starting estimator thread 0...
[  132.066745][ T8539] IPVS: using max 24 ests per chain, 57600 per kthread
[  132.334572][ T8555] netlink: 244 bytes leftover after parsing attributes in process `syz.0.887'.
[  132.390351][ T8558] C speed is unknown, defaulting to 1000
[  132.394646][ T8560] FAULT_INJECTION: forcing a failure.
[  132.394646][ T8560] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.435463][ T8560] CPU: 1 UID: 0 PID: 8560 Comm: syz.4.889 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  132.435487][ T8560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  132.435497][ T8560] Call Trace:
[  132.435503][ T8560]  <TASK>
[  132.435510][ T8560]  dump_stack_lvl+0x241/0x360
[  132.435537][ T8560]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.435555][ T8560]  ? __pfx__printk+0x10/0x10
[  132.435578][ T8560]  ? snprintf+0xda/0x120
[  132.435598][ T8560]  should_fail_ex+0x40a/0x550
[  132.435627][ T8560]  _copy_to_user+0x31/0xb0
[  132.435649][ T8560]  simple_read_from_buffer+0xca/0x150
[  132.435674][ T8560]  proc_fail_nth_read+0x1e9/0x250
[  132.435698][ T8560]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  132.435722][ T8560]  ? rw_verify_area+0x243/0x630
[  132.435738][ T8560]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  132.435761][ T8560]  vfs_read+0x1f8/0xb40
[  132.435779][ T8560]  ? fdget_pos+0x254/0x320
[  132.435801][ T8560]  ? __pfx___mutex_lock+0x10/0x10
[  132.435823][ T8560]  ? __pfx_vfs_read+0x10/0x10
[  132.435837][ T8560]  ? do_sys_openat2+0x17a/0x1d0
[  132.435861][ T8560]  ? __fget_files+0x2a/0x410
[  132.435884][ T8560]  ? __fget_files+0x395/0x410
[  132.435903][ T8560]  ? __fget_files+0x2a/0x410
[  132.435933][ T8560]  ksys_read+0x18f/0x2b0
[  132.435953][ T8560]  ? __pfx_ksys_read+0x10/0x10
[  132.435970][ T8560]  ? do_syscall_64+0x100/0x230
[  132.435993][ T8560]  ? do_syscall_64+0xb6/0x230
[  132.436014][ T8560]  do_syscall_64+0xf3/0x230
[  132.436035][ T8560]  ? clear_bhb_loop+0x35/0x90
[  132.436061][ T8560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.436081][ T8560] RIP: 0033:0x7f55b2d8bb7c
[  132.436096][ T8560] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  132.436109][ T8560] RSP: 002b:00007f55b3bf5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  132.436128][ T8560] RAX: ffffffffffffffda RBX: 00007f55b2fa5fa0 RCX: 00007f55b2d8bb7c
[  132.436139][ T8560] RDX: 000000000000000f RSI: 00007f55b3bf50a0 RDI: 0000000000000004
[  132.436149][ T8560] RBP: 00007f55b3bf5090 R08: 0000000000000000 R09: 0000000000000000
[  132.436159][ T8560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.436169][ T8560] R13: 0000000000000000 R14: 00007f55b2fa5fa0 R15: 00007ffeddbe41e8
[  132.436195][ T8560]  </TASK>
[  132.719535][ T8563] netlink: 8 bytes leftover after parsing attributes in process `syz.1.892'.
[  132.730828][ T8565] FAULT_INJECTION: forcing a failure.
[  132.730828][ T8565] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.787083][ T8565] CPU: 0 UID: 0 PID: 8565 Comm: syz.3.890 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  132.787108][ T8565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  132.787118][ T8565] Call Trace:
[  132.787124][ T8565]  <TASK>
[  132.787131][ T8565]  dump_stack_lvl+0x241/0x360
[  132.787157][ T8565]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.787174][ T8565]  ? __pfx__printk+0x10/0x10
[  132.787200][ T8565]  should_fail_ex+0x40a/0x550
[  132.787225][ T8565]  _copy_to_user+0x31/0xb0
[  132.787246][ T8565]  ioctl_standard_iw_point+0x8f3/0xcb0
[  132.787283][ T8565]  ? __pfx_cfg80211_wext_giwessid+0x10/0x10
[  132.787305][ T8565]  ? __pfx_ioctl_standard_iw_point+0x10/0x10
[  132.787321][ T8565]  ? __pfx___mutex_lock+0x10/0x10
[  132.787348][ T8565]  ? __pfx_lock_release+0x10/0x10
[  132.787368][ T8565]  ? full_name_hash+0x93/0xe0
[  132.787391][ T8565]  ioctl_standard_call+0xbd/0x190
[  132.787412][ T8565]  ? __pfx_cfg80211_wext_giwessid+0x10/0x10
[  132.787431][ T8565]  ? __pfx_cfg80211_wext_giwessid+0x10/0x10
[  132.787453][ T8565]  wext_ioctl_dispatch+0xe4/0x410
[  132.787475][ T8565]  ? __pfx_ioctl_standard_call+0x10/0x10
[  132.787499][ T8565]  wext_handle_ioctl+0x166/0x280
[  132.787524][ T8565]  ? __pfx_wext_handle_ioctl+0x10/0x10
[  132.787555][ T8565]  sock_ioctl+0x17c/0x8e0
[  132.787574][ T8565]  ? __pfx_sock_ioctl+0x10/0x10
[  132.787591][ T8565]  ? __fget_files+0x2a/0x410
[  132.787615][ T8565]  ? __fget_files+0x2a/0x410
[  132.787640][ T8565]  ? __pfx_sock_ioctl+0x10/0x10
[  132.787660][ T8565]  __se_sys_ioctl+0xf5/0x170
[  132.787678][ T8565]  do_syscall_64+0xf3/0x230
[  132.787699][ T8565]  ? clear_bhb_loop+0x35/0x90
[  132.787721][ T8565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.787742][ T8565] RIP: 0033:0x7fe7c018d169
[  132.787757][ T8565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.787769][ T8565] RSP: 002b:00007fe7c0f27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  132.787787][ T8565] RAX: ffffffffffffffda RBX: 00007fe7c03a5fa0 RCX: 00007fe7c018d169
[  132.787799][ T8565] RDX: 0000400000000040 RSI: 0000000000008b1b RDI: 0000000000000003
[  132.787809][ T8565] RBP: 00007fe7c0f27090 R08: 0000000000000000 R09: 0000000000000000
[  132.787819][ T8565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.787829][ T8565] R13: 0000000000000000 R14: 00007fe7c03a5fa0 R15: 00007ffe5e9b52f8
[  132.787851][ T8565]  </TASK>
[  132.826875][ T8563] netlink: 4 bytes leftover after parsing attributes in process `syz.1.892'.
[  133.041150][ T8574] netdevsim netdevsim0: Direct firmware load for  failed with error -2
[  133.213266][ T8582] Bluetooth: MGMT ver 1.23
[  133.232885][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  133.247082][ T8574] netdevsim netdevsim0: Falling back to sysfs fallback for: 
[  133.426240][ T8594] FAULT_INJECTION: forcing a failure.
[  133.426240][ T8594] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  133.479368][ T8594] CPU: 1 UID: 0 PID: 8594 Comm: syz.2.901 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  133.479392][ T8594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  133.479402][ T8594] Call Trace:
[  133.479408][ T8594]  <TASK>
[  133.479415][ T8594]  dump_stack_lvl+0x241/0x360
[  133.479441][ T8594]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.479458][ T8594]  ? __pfx__printk+0x10/0x10
[  133.479477][ T8594]  ? __pfx_lock_release+0x10/0x10
[  133.479507][ T8594]  should_fail_ex+0x40a/0x550
[  133.479533][ T8594]  _copy_from_iter+0x1df/0x1c40
[  133.479552][ T8594]  ? __virt_addr_valid+0x183/0x530
[  133.479568][ T8594]  ? __pfx_lock_release+0x10/0x10
[  133.479596][ T8594]  ? __alloc_skb+0x28f/0x440
[  133.479617][ T8594]  ? __pfx__copy_from_iter+0x10/0x10
[  133.479637][ T8594]  ? __virt_addr_valid+0x183/0x530
[  133.479651][ T8594]  ? __virt_addr_valid+0x183/0x530
[  133.479664][ T8594]  ? __virt_addr_valid+0x45f/0x530
[  133.479680][ T8594]  ? __phys_addr_symbol+0x2f/0x70
[  133.479695][ T8594]  ? __check_object_size+0x47a/0x730
[  133.479720][ T8594]  netlink_sendmsg+0x742/0xcb0
[  133.479749][ T8594]  ? __pfx_netlink_sendmsg+0x10/0x10
[  133.479770][ T8594]  ? aa_sock_msg_perm+0x91/0x160
[  133.479798][ T8594]  ? __pfx_netlink_sendmsg+0x10/0x10
[  133.479813][ T8594]  __sock_sendmsg+0x221/0x270
[  133.479835][ T8594]  ____sys_sendmsg+0x53a/0x860
[  133.479859][ T8594]  ? __pfx_____sys_sendmsg+0x10/0x10
[  133.479873][ T8594]  ? __fget_files+0x2a/0x410
[  133.479897][ T8594]  ? __fget_files+0x2a/0x410
[  133.479933][ T8594]  __sys_sendmsg+0x269/0x350
[  133.479953][ T8594]  ? __pfx___sys_sendmsg+0x10/0x10
[  133.479981][ T8594]  ? do_sys_openat2+0x17a/0x1d0
[  133.480026][ T8594]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  133.480049][ T8594]  ? do_syscall_64+0x100/0x230
[  133.480073][ T8594]  ? do_syscall_64+0xb6/0x230
[  133.480096][ T8594]  do_syscall_64+0xf3/0x230
[  133.480117][ T8594]  ? clear_bhb_loop+0x35/0x90
[  133.480141][ T8594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.480161][ T8594] RIP: 0033:0x7fb22898d169
[  133.480176][ T8594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.480188][ T8594] RSP: 002b:00007fb229756038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  133.480206][ T8594] RAX: ffffffffffffffda RBX: 00007fb228ba6080 RCX: 00007fb22898d169
[  133.480218][ T8594] RDX: 0000000000008000 RSI: 0000400000000280 RDI: 0000000000000006
[  133.480228][ T8594] RBP: 00007fb229756090 R08: 0000000000000000 R09: 0000000000000000
[  133.480242][ T8594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.480251][ T8594] R13: 0000000000000000 R14: 00007fb228ba6080 R15: 00007ffcfbba5c28
[  133.480276][ T8594]  </TASK>
[  133.523071][ T8592] 8021q: adding VLAN 0 to HW filter on device bond1
[  133.784988][ T8604] FAULT_INJECTION: forcing a failure.
[  133.784988][ T8604] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  133.801456][ T8604] CPU: 0 UID: 0 PID: 8604 Comm: syz.4.906 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  133.801482][ T8604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  133.801492][ T8604] Call Trace:
[  133.801498][ T8604]  <TASK>
[  133.801505][ T8604]  dump_stack_lvl+0x241/0x360
[  133.801531][ T8604]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.801550][ T8604]  ? __pfx__printk+0x10/0x10
[  133.801568][ T8604]  ? __pfx_lock_release+0x10/0x10
[  133.801630][ T8604]  ? __lock_acquire+0x1397/0x2100
[  133.801660][ T8604]  should_fail_ex+0x40a/0x550
[  133.801688][ T8604]  _copy_from_user+0x2d/0xb0
[  133.801709][ T8604]  kstrtouint_from_user+0xc6/0x190
[  133.801729][ T8604]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  133.801750][ T8604]  ? __pfx_lock_acquire+0x10/0x10
[  133.801782][ T8604]  proc_fail_nth_write+0xaa/0x2d0
[  133.801804][ T8604]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  133.801824][ T8604]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  133.801851][ T8604]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  133.801874][ T8604]  vfs_write+0x29f/0xd10
[  133.801899][ T8604]  ? fdget_pos+0x254/0x320
[  133.801920][ T8604]  ? __mutex_unlock_slowpath+0x227/0x800
[  133.801939][ T8604]  ? __pfx_vfs_write+0x10/0x10
[  133.801956][ T8604]  ? __fget_files+0x2a/0x410
[  133.801978][ T8604]  ? __fget_files+0x395/0x410
[  133.801997][ T8604]  ? __fget_files+0x2a/0x410
[  133.802025][ T8604]  ksys_write+0x18f/0x2b0
[  133.802045][ T8604]  ? __pfx_ksys_write+0x10/0x10
[  133.802062][ T8604]  ? do_syscall_64+0x100/0x230
[  133.802085][ T8604]  ? do_syscall_64+0xb6/0x230
[  133.802109][ T8604]  do_syscall_64+0xf3/0x230
[  133.802129][ T8604]  ? clear_bhb_loop+0x35/0x90
[  133.802153][ T8604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.802173][ T8604] RIP: 0033:0x7f55b2d8bc1f
[  133.802188][ T8604] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  133.802201][ T8604] RSP: 002b:00007f55b3bf5030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  133.802218][ T8604] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f55b2d8bc1f
[  133.802230][ T8604] RDX: 0000000000000001 RSI: 00007f55b3bf50a0 RDI: 0000000000000004
[  133.802240][ T8604] RBP: 00007f55b3bf5090 R08: 0000000000000000 R09: 0000000000000000
[  133.802249][ T8604] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  133.802259][ T8604] R13: 0000000000000000 R14: 00007f55b2fa5fa0 R15: 00007ffeddbe41e8
[  133.802289][ T8604]  </TASK>
[  133.837965][ T8607] FAULT_INJECTION: forcing a failure.
[  133.837965][ T8607] name failslab, interval 1, probability 0, space 0, times 0
[  134.078013][ T8607] CPU: 0 UID: 0 PID: 8607 Comm: syz.2.907 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  134.078041][ T8607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  134.078051][ T8607] Call Trace:
[  134.078057][ T8607]  <TASK>
[  134.078065][ T8607]  dump_stack_lvl+0x241/0x360
[  134.078092][ T8607]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.078110][ T8607]  ? __pfx__printk+0x10/0x10
[  134.078128][ T8607]  ? __kmalloc_noprof+0xb5/0x4c0
[  134.078151][ T8607]  ? __pfx___might_resched+0x10/0x10
[  134.078170][ T8607]  ? aa_get_newest_label+0xff/0x6f0
[  134.078192][ T8607]  ? genl_get_cmd+0x19e/0xce0
[  134.078216][ T8607]  should_fail_ex+0x40a/0x550
[  134.078244][ T8607]  should_failslab+0xac/0x100
[  134.078266][ T8607]  __kmalloc_noprof+0xdd/0x4c0
[  134.078286][ T8607]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  134.078307][ T8607]  ? apparmor_capable+0x13b/0x1b0
[  134.078328][ T8607]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  134.078357][ T8607]  genl_rcv_msg+0x80b/0xec0
[  134.078387][ T8607]  ? __pfx_genl_rcv_msg+0x10/0x10
[  134.078436][ T8607]  ? __pfx_lock_acquire+0x10/0x10
[  134.078457][ T8607]  ? __pfx_nl802154_pre_doit+0x10/0x10
[  134.078474][ T8607]  ? __pfx_nl802154_new_interface+0x10/0x10
[  134.078491][ T8607]  ? __pfx_nl802154_post_doit+0x10/0x10
[  134.078511][ T8607]  ? __pfx___might_resched+0x10/0x10
[  134.078541][ T8607]  netlink_rcv_skb+0x206/0x480
[  134.078560][ T8607]  ? __pfx_genl_rcv_msg+0x10/0x10
[  134.078582][ T8607]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  134.078630][ T8607]  genl_rcv+0x28/0x40
[  134.078648][ T8607]  netlink_unicast+0x7f6/0x990
[  134.078681][ T8607]  ? __pfx_netlink_unicast+0x10/0x10
[  134.078703][ T8607]  ? __virt_addr_valid+0x45f/0x530
[  134.078720][ T8607]  ? __phys_addr_symbol+0x2f/0x70
[  134.078735][ T8607]  ? __check_object_size+0x47a/0x730
[  134.078761][ T8607]  netlink_sendmsg+0x8de/0xcb0
[  134.078791][ T8607]  ? __pfx_netlink_sendmsg+0x10/0x10
[  134.078814][ T8607]  ? aa_sock_msg_perm+0x91/0x160
[  134.078842][ T8607]  ? __pfx_netlink_sendmsg+0x10/0x10
[  134.078858][ T8607]  __sock_sendmsg+0x221/0x270
[  134.078890][ T8607]  ____sys_sendmsg+0x53a/0x860
[  134.078916][ T8607]  ? __pfx_____sys_sendmsg+0x10/0x10
[  134.078930][ T8607]  ? __fget_files+0x2a/0x410
[  134.078955][ T8607]  ? __fget_files+0x2a/0x410
[  134.078986][ T8607]  __sys_sendmsg+0x269/0x350
[  134.079008][ T8607]  ? __pfx___sys_sendmsg+0x10/0x10
[  134.079040][ T8607]  ? do_sys_openat2+0x17a/0x1d0
[  134.079089][ T8607]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  134.079111][ T8607]  ? do_syscall_64+0x100/0x230
[  134.079135][ T8607]  ? do_syscall_64+0xb6/0x230
[  134.079159][ T8607]  do_syscall_64+0xf3/0x230
[  134.079180][ T8607]  ? clear_bhb_loop+0x35/0x90
[  134.079205][ T8607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.079226][ T8607] RIP: 0033:0x7fb22898d169
[  134.079242][ T8607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.079256][ T8607] RSP: 002b:00007fb229777038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  134.079274][ T8607] RAX: ffffffffffffffda RBX: 00007fb228ba5fa0 RCX: 00007fb22898d169
[  134.079286][ T8607] RDX: 00000000300048c0 RSI: 0000400000000700 RDI: 0000000000000004
[  134.079297][ T8607] RBP: 00007fb229777090 R08: 0000000000000000 R09: 0000000000000000
[  134.079307][ T8607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.079317][ T8607] R13: 0000000000000000 R14: 00007fb228ba5fa0 R15: 00007ffcfbba5c28
[  134.079345][ T8607]  </TASK>
[  134.871588][ T8630] __nla_validate_parse: 3 callbacks suppressed
[  134.871607][ T8630] netlink: 12 bytes leftover after parsing attributes in process `syz.0.917'.
[  135.183611][ T8646] netlink: 'syz.0.921': attribute type 1 has an invalid length.
[  135.192025][ T8646] netlink: 224 bytes leftover after parsing attributes in process `syz.0.921'.
[  135.602916][ T8665] netlink: 4 bytes leftover after parsing attributes in process `syz.1.928'.
[  135.631745][ T8665] xt_hashlimit: size too large, truncated to 1048576
[  135.777126][ T8677] netlink: 'syz.1.928': attribute type 1 has an invalid length.
[  136.035649][ T8700] netlink: 16 bytes leftover after parsing attributes in process `syz.3.934'.
[  136.136133][ T8698] netlink: 4 bytes leftover after parsing attributes in process `syz.2.933'.
[  136.146286][ T8698] netlink: 4 bytes leftover after parsing attributes in process `syz.2.933'.
[  136.147309][ T8704] xt_cluster: you have exceeded the maximum number of cluster nodes (768 > 32)
[  136.437518][ T8702] mac80211_hwsim hwsim10 wlan1: entered allmulticast mode
[  136.825579][ T8715] syz.4.939 (8715) used greatest stack depth: 15664 bytes left
[  137.092706][ T8736] netlink: 16 bytes leftover after parsing attributes in process `syz.3.946'.
[  137.108614][ T8738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.947'.
[  137.139543][ T8736] tipc: Started in network mode
[  137.144661][ T8736] tipc: Node identity ffffffff, cluster identity 4711
[  137.151848][ T8736] tipc: Node number set to 4294967295
[  137.163918][ T8738] xt_hashlimit: size too large, truncated to 1048576
[  137.165889][ T8740] netlink: 4 bytes leftover after parsing attributes in process `syz.4.948'.
[  137.312375][ T8743] tc_dump_action: action bad kind
[  137.375512][ T8746] netlink: 'syz.0.947': attribute type 1 has an invalid length.
[  137.393290][ T8747] netlink: 4 bytes leftover after parsing attributes in process `syz.4.950'.
[  138.088600][ T8779] FAULT_INJECTION: forcing a failure.
[  138.088600][ T8779] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.118790][ T8779] CPU: 0 UID: 0 PID: 8779 Comm: syz.0.960 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  138.118815][ T8779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  138.118826][ T8779] Call Trace:
[  138.118832][ T8779]  <TASK>
[  138.118840][ T8779]  dump_stack_lvl+0x241/0x360
[  138.118865][ T8779]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.118883][ T8779]  ? __pfx__printk+0x10/0x10
[  138.118901][ T8779]  ? __pfx_lock_release+0x10/0x10
[  138.118932][ T8779]  should_fail_ex+0x40a/0x550
[  138.118959][ T8779]  _copy_from_user+0x2d/0xb0
[  138.118980][ T8779]  copy_msghdr_from_user+0xae/0x680
[  138.119006][ T8779]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  138.119024][ T8779]  ? __fget_files+0x2a/0x410
[  138.119049][ T8779]  ? __fget_files+0x2a/0x410
[  138.119078][ T8779]  __sys_sendmsg+0x209/0x350
[  138.119099][ T8779]  ? __pfx___sys_sendmsg+0x10/0x10
[  138.119126][ T8779]  ? do_sys_openat2+0x17a/0x1d0
[  138.119171][ T8779]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  138.119195][ T8779]  ? do_syscall_64+0x100/0x230
[  138.119219][ T8779]  ? do_syscall_64+0xb6/0x230
[  138.119242][ T8779]  do_syscall_64+0xf3/0x230
[  138.119263][ T8779]  ? clear_bhb_loop+0x35/0x90
[  138.119287][ T8779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.119308][ T8779] RIP: 0033:0x7f927658d169
[  138.119323][ T8779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.119336][ T8779] RSP: 002b:00007f9277457038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  138.119355][ T8779] RAX: ffffffffffffffda RBX: 00007f92767a5fa0 RCX: 00007f927658d169
[  138.119367][ T8779] RDX: 0000000000008040 RSI: 0000400000000940 RDI: 0000000000000003
[  138.119378][ T8779] RBP: 00007f9277457090 R08: 0000000000000000 R09: 0000000000000000
[  138.119388][ T8779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.119398][ T8779] R13: 0000000000000000 R14: 00007f92767a5fa0 R15: 00007ffee9f78198
[  138.119424][ T8779]  </TASK>
[  138.165817][ T8769] xt_CT: No such helper "syz1"
[  138.866138][ T8804] xt_hashlimit: size too large, truncated to 1048576
[  138.928145][ T8807] sctp: [Deprecated]: syz.2.969 (pid 8807) Use of int in maxseg socket option.
[  138.928145][ T8807] Use struct sctp_assoc_value instead
[  139.022474][ T8813] netlink: 'syz.1.968': attribute type 1 has an invalid length.
[  139.033756][ T8812] xt_TPROXY: Can be used only with -p tcp or -p udp
[  139.716932][ T8826] ieee802154 phy1 wpan1: encryption failed: -22
[  139.805054][ T8835] TCP: TCP_TX_DELAY enabled
[  139.852388][ T8836] netlink: 'syz.2.977': attribute type 9 has an invalid length.
[  139.914427][ T8840] __nla_validate_parse: 5 callbacks suppressed
[  139.914447][ T8840] netlink: 4 bytes leftover after parsing attributes in process `syz.4.980'.
[  140.082500][ T8846] netlink: 4 bytes leftover after parsing attributes in process `syz.4.983'.
[  140.110502][ T8847] netlink: 36 bytes leftover after parsing attributes in process `syz.0.984'.
[  140.138453][ T8847] netlink: 140 bytes leftover after parsing attributes in process `syz.0.984'.
[  140.161107][ T8851] netlink: 4 bytes leftover after parsing attributes in process `syz.2.985'.
[  140.181334][ T8847] netlink: 36 bytes leftover after parsing attributes in process `syz.0.984'.
[  140.230736][ T8855] netlink: 204 bytes leftover after parsing attributes in process `syz.4.986'.
[  140.357422][ T8860] netlink: 4 bytes leftover after parsing attributes in process `syz.3.987'.
[  140.378885][ T8860] xt_hashlimit: size too large, truncated to 1048576
[  140.403954][ T8862] netlink: 12 bytes leftover after parsing attributes in process `syz.0.989'.
[  140.462564][ T8862] 8021q: adding VLAN 0 to HW filter on device bond3
[  140.513008][ T8865] ax25_connect(): syz.4.990 uses autobind, please contact jreuter@yaina.de
[  140.524307][ T8870] netlink: 'syz.3.987': attribute type 1 has an invalid length.
[  141.060078][ T8878] netlink: 'syz.2.992': attribute type 2 has an invalid length.
[  141.268510][ T8895] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (32767)
[  141.292398][ T8895] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255
[  141.297884][ T8897] FAULT_INJECTION: forcing a failure.
[  141.297884][ T8897] name failslab, interval 1, probability 0, space 0, times 0
[  141.347544][ T8897] CPU: 0 UID: 0 PID: 8897 Comm: syz.4.999 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  141.347570][ T8897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  141.347580][ T8897] Call Trace:
[  141.347586][ T8897]  <TASK>
[  141.347593][ T8897]  dump_stack_lvl+0x241/0x360
[  141.347617][ T8897]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.347635][ T8897]  ? __pfx__printk+0x10/0x10
[  141.347654][ T8897]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  141.347676][ T8897]  ? __pfx___might_resched+0x10/0x10
[  141.347694][ T8897]  ? aa_label_sk_perm+0x4f3/0x6c0
[  141.347719][ T8897]  should_fail_ex+0x40a/0x550
[  141.347746][ T8897]  should_failslab+0xac/0x100
[  141.347768][ T8897]  kmem_cache_alloc_node_noprof+0x77/0x380
[  141.347789][ T8897]  ? __alloc_skb+0x1c3/0x440
[  141.347814][ T8897]  __alloc_skb+0x1c3/0x440
[  141.347840][ T8897]  ? __pfx___alloc_skb+0x10/0x10
[  141.347871][ T8897]  netlink_sendmsg+0x634/0xcb0
[  141.347900][ T8897]  ? __pfx_netlink_sendmsg+0x10/0x10
[  141.347921][ T8897]  ? aa_sock_msg_perm+0x91/0x160
[  141.347948][ T8897]  ? __pfx_netlink_sendmsg+0x10/0x10
[  141.347964][ T8897]  __sock_sendmsg+0x221/0x270
[  141.347986][ T8897]  ____sys_sendmsg+0x53a/0x860
[  141.348009][ T8897]  ? __pfx_____sys_sendmsg+0x10/0x10
[  141.348022][ T8897]  ? __fget_files+0x2a/0x410
[  141.348045][ T8897]  ? __fget_files+0x2a/0x410
[  141.348072][ T8897]  __sys_sendmsg+0x269/0x350
[  141.348092][ T8897]  ? __pfx___sys_sendmsg+0x10/0x10
[  141.348119][ T8897]  ? do_sys_openat2+0x17a/0x1d0
[  141.348163][ T8897]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  141.348187][ T8897]  ? do_syscall_64+0x100/0x230
[  141.348211][ T8897]  ? do_syscall_64+0xb6/0x230
[  141.348233][ T8897]  do_syscall_64+0xf3/0x230
[  141.348253][ T8897]  ? clear_bhb_loop+0x35/0x90
[  141.348277][ T8897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.348296][ T8897] RIP: 0033:0x7f55b2d8d169
[  141.348311][ T8897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.348323][ T8897] RSP: 002b:00007f55b3bf5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  141.348341][ T8897] RAX: ffffffffffffffda RBX: 00007f55b2fa5fa0 RCX: 00007f55b2d8d169
[  141.348353][ T8897] RDX: 0000000000014880 RSI: 00004000000001c0 RDI: 0000000000000003
[  141.348363][ T8897] RBP: 00007f55b3bf5090 R08: 0000000000000000 R09: 0000000000000000
[  141.348374][ T8897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.348383][ T8897] R13: 0000000000000000 R14: 00007f55b2fa5fa0 R15: 00007ffeddbe41e8
[  141.348406][ T8897]  </TASK>
[  141.662412][ T8901] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1001'.
[  141.779354][ T8914] FAULT_INJECTION: forcing a failure.
[  141.779354][ T8914] name failslab, interval 1, probability 0, space 0, times 0
[  141.808600][ T8914] CPU: 0 UID: 0 PID: 8914 Comm: syz.0.1006 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  141.808624][ T8914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  141.808634][ T8914] Call Trace:
[  141.808640][ T8914]  <TASK>
[  141.808647][ T8914]  dump_stack_lvl+0x241/0x360
[  141.808672][ T8914]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.808689][ T8914]  ? __pfx__printk+0x10/0x10
[  141.808703][ T8914]  ? kasan_save_track+0x51/0x80
[  141.808721][ T8914]  ? kmem_cache_free+0x195/0x410
[  141.808740][ T8914]  ? pfkey_sendmsg+0x492/0x1070
[  141.808758][ T8914]  ? __sock_sendmsg+0x221/0x270
[  141.808775][ T8914]  ? ____sys_sendmsg+0x53a/0x860
[  141.808788][ T8914]  ? do_syscall_64+0xf3/0x230
[  141.808808][ T8914]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.808832][ T8914]  should_fail_ex+0x40a/0x550
[  141.808857][ T8914]  should_failslab+0xac/0x100
[  141.808877][ T8914]  ? xfrm_state_alloc+0x26/0x320
[  141.808894][ T8914]  kmem_cache_alloc_noprof+0x70/0x380
[  141.808919][ T8914]  xfrm_state_alloc+0x26/0x320
[  141.808939][ T8914]  pfkey_add+0x6de/0x2e20
[  141.808966][ T8914]  ? kasan_quarantine_put+0x11c/0x230
[  141.808996][ T8914]  ? __pfx_pfkey_add+0x10/0x10
[  141.809019][ T8914]  ? pfkey_broadcast+0x45/0x400
[  141.809035][ T8914]  ? pfkey_broadcast+0x3e3/0x400
[  141.809061][ T8914]  pfkey_sendmsg+0xbe3/0x1070
[  141.809096][ T8914]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  141.809136][ T8914]  ? __pfx_aa_sk_perm+0x10/0x10
[  141.809157][ T8914]  ? __import_iovec+0x582/0x830
[  141.809179][ T8914]  ? aa_sock_msg_perm+0x91/0x160
[  141.809208][ T8914]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  141.809226][ T8914]  __sock_sendmsg+0x221/0x270
[  141.809248][ T8914]  ____sys_sendmsg+0x53a/0x860
[  141.809273][ T8914]  ? __pfx_____sys_sendmsg+0x10/0x10
[  141.809288][ T8914]  ? __fget_files+0x2a/0x410
[  141.809313][ T8914]  ? __fget_files+0x2a/0x410
[  141.809343][ T8914]  __sys_sendmsg+0x269/0x350
[  141.809364][ T8914]  ? __pfx___sys_sendmsg+0x10/0x10
[  141.809394][ T8914]  ? do_sys_openat2+0x17a/0x1d0
[  141.809455][ T8914]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  141.809480][ T8914]  ? do_syscall_64+0x100/0x230
[  141.809505][ T8914]  ? do_syscall_64+0xb6/0x230
[  141.809523][ T8914]  do_syscall_64+0xf3/0x230
[  141.809540][ T8914]  ? clear_bhb_loop+0x35/0x90
[  141.809563][ T8914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.809584][ T8914] RIP: 0033:0x7f927658d169
[  141.809600][ T8914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.809614][ T8914] RSP: 002b:00007f9277457038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  141.809633][ T8914] RAX: ffffffffffffffda RBX: 00007f92767a5fa0 RCX: 00007f927658d169
[  141.809646][ T8914] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000003
[  141.809657][ T8914] RBP: 00007f9277457090 R08: 0000000000000000 R09: 0000000000000000
[  141.809667][ T8914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.809677][ T8914] R13: 0000000000000000 R14: 00007f92767a5fa0 R15: 00007ffee9f78198
[  141.809708][ T8914]  </TASK>
[  141.927163][ T8920] xt_hashlimit: size too large, truncated to 1048576
[  142.140114][ T8917] netlink: 'syz.2.1005': attribute type 1 has an invalid length.
[  142.807924][ T8951] netlink: 'syz.1.1013': attribute type 1 has an invalid length.
[  142.920511][ T8951] 8021q: adding VLAN 0 to HW filter on device bond4
[  142.975763][ T8955] 8021q: adding VLAN 0 to HW filter on device bond4
[  143.010608][ T8955] bond4: (slave ipip0): The slave device specified does not support setting the MAC address
[  143.037127][ T8955] bond4: (slave ipip0): Error -95 calling set_mac_address
[  143.273065][ T8974] vlan2: entered promiscuous mode
[  143.305947][ T8974] bond0: (slave vlan2): Opening slave failed
[  143.378876][ T8978] netlink: 'syz.1.1024': attribute type 1 has an invalid length.
[  143.572052][ T8984] FAULT_INJECTION: forcing a failure.
[  143.572052][ T8984] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.605814][ T8982] xt_hashlimit: size too large, truncated to 1048576
[  143.655755][ T8984] CPU: 0 UID: 0 PID: 8984 Comm: syz.3.1028 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  143.655782][ T8984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  143.655797][ T8984] Call Trace:
[  143.655804][ T8984]  <TASK>
[  143.655812][ T8984]  dump_stack_lvl+0x241/0x360
[  143.655837][ T8984]  ? __pfx_dump_stack_lvl+0x10/0x10
[  143.655855][ T8984]  ? __pfx__printk+0x10/0x10
[  143.655871][ T8984]  ? __pfx_lock_release+0x10/0x10
[  143.655899][ T8984]  should_fail_ex+0x40a/0x550
[  143.655925][ T8984]  _copy_from_iter+0x1df/0x1c40
[  143.655943][ T8984]  ? __virt_addr_valid+0x183/0x530
[  143.655959][ T8984]  ? __pfx_lock_release+0x10/0x10
[  143.655985][ T8984]  ? __alloc_skb+0x28f/0x440
[  143.656005][ T8984]  ? __pfx__copy_from_iter+0x10/0x10
[  143.656023][ T8984]  ? __virt_addr_valid+0x183/0x530
[  143.656037][ T8984]  ? __virt_addr_valid+0x183/0x530
[  143.656059][ T8984]  ? __virt_addr_valid+0x45f/0x530
[  143.656074][ T8984]  ? __phys_addr_symbol+0x2f/0x70
[  143.656088][ T8984]  ? __check_object_size+0x47a/0x730
[  143.656112][ T8984]  netlink_sendmsg+0x742/0xcb0
[  143.656139][ T8984]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.656160][ T8984]  ? aa_sock_msg_perm+0x91/0x160
[  143.656186][ T8984]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.656200][ T8984]  __sock_sendmsg+0x221/0x270
[  143.656221][ T8984]  ____sys_sendmsg+0x53a/0x860
[  143.656243][ T8984]  ? __pfx_____sys_sendmsg+0x10/0x10
[  143.656257][ T8984]  ? __fget_files+0x2a/0x410
[  143.656281][ T8984]  ? __fget_files+0x2a/0x410
[  143.656308][ T8984]  __sys_sendmsg+0x269/0x350
[  143.656328][ T8984]  ? __pfx___sys_sendmsg+0x10/0x10
[  143.656353][ T8984]  ? do_sys_openat2+0x17a/0x1d0
[  143.656397][ T8984]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  143.656421][ T8984]  ? do_syscall_64+0x100/0x230
[  143.656445][ T8984]  ? do_syscall_64+0xb6/0x230
[  143.656467][ T8984]  do_syscall_64+0xf3/0x230
[  143.656487][ T8984]  ? clear_bhb_loop+0x35/0x90
[  143.656509][ T8984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.656528][ T8984] RIP: 0033:0x7fe7c018d169
[  143.656543][ T8984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.656556][ T8984] RSP: 002b:00007fe7c0f27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  143.656573][ T8984] RAX: ffffffffffffffda RBX: 00007fe7c03a5fa0 RCX: 00007fe7c018d169
[  143.656585][ T8984] RDX: 0000000000014880 RSI: 00004000000001c0 RDI: 0000000000000003
[  143.656595][ T8984] RBP: 00007fe7c0f27090 R08: 0000000000000000 R09: 0000000000000000
[  143.656605][ T8984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.656614][ T8984] R13: 0000000000000000 R14: 00007fe7c03a5fa0 R15: 00007ffe5e9b52f8
[  143.656637][ T8984]  </TASK>
[  143.957346][ T8989] netlink: 'syz.2.1027': attribute type 1 has an invalid length.
[  146.124791][ T9007] __nla_validate_parse: 8 callbacks suppressed
[  146.124812][ T9007] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1035'.
[  146.185451][ T9013] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1037'.
[  146.371907][ T9015] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1038'.
[  146.384819][ T9018] Cannot find del_set index 4 as target
[  146.473004][ T9023] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1042'.
[  146.507794][ T9023] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1042'.
[  146.539236][ T9029] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1045'.
[  146.658735][ T9028] netlink: 1256 bytes leftover after parsing attributes in process `syz.2.1044'.
[  146.685174][ T9028] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  146.733710][ T9028] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1044'.
[  146.752424][ T9033] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1046'.
[  146.836661][ T9038] xt_hashlimit: size too large, truncated to 1048576
[  146.845934][ T9037] Bluetooth: MGMT ver 1.23
[  146.860277][ T9037] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1049'.
[  146.887253][ T9037] block nbd0: not configured, cannot reconfigure
[  146.894631][ T9042] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[  146.946349][ T9043] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[  146.976776][ T9047] netlink: 'syz.0.1046': attribute type 1 has an invalid length.
[  147.383289][ T9060] netlink: 'syz.2.1057': attribute type 1 has an invalid length.
[  147.715529][ T9070] 8021q: adding VLAN 0 to HW filter on device bond1
[  149.980893][ T9183] IPVS: Error connecting to the multicast addr
[  150.029819][ T9179] bridge0: port 1(bridge_slave_0) entered listening state
[  151.008453][ T9221] debugfs: Directory '¯HcUØîÑË•‚Ž¹+ÕuµJÙÊVú?zlI胆Gx!§X˜çÚ|D#åk!' with parent 'ieee80211' already present!
[  151.083994][ T9225] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  151.107995][ T9224] dummy0: entered allmulticast mode
[  151.133583][ T9224] batman_adv: batadv0: Adding interface: dummy0
[  151.142045][ T9224] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.170744][ T9224] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  151.322566][ T9225] bond1: entered promiscuous mode
[  151.340596][ T9240] __nla_validate_parse: 10 callbacks suppressed
[  151.340614][ T9240] netlink: 828 bytes leftover after parsing attributes in process `syz.2.1125'.
[  151.364400][ T9225] bond1: entered allmulticast mode
[  151.372582][ T9225] 8021q: adding VLAN 0 to HW filter on device bond1
[  151.780856][ T9259] xt_cgroup: xt_cgroup: no path or classid specified
[  152.121581][ T9279] netlink: 'syz.0.1140': attribute type 72 has an invalid length.
[  152.131819][ T9279] netlink: 'syz.0.1140': attribute type 8 has an invalid length.
[  152.553966][ T9285] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  152.892074][ T9315] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  153.179601][ T9332] netlink: 164 bytes leftover after parsing attributes in process `syz.0.1159'.
[  153.404689][ T9341] netlink: 'syz.1.1163': attribute type 10 has an invalid length.
[  153.466397][ T9347] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1163'.
[  153.501319][ T9347] xt_hashlimit: size too large, truncated to 1048576
[  153.514459][ T9341] wlan1: mtu less than device minimum
[  153.523477][ T9341] bond0: (slave wlan1): Error -22 calling dev_set_mtu
[  153.539971][ T9346] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1165'.
[  153.554905][ T9350] C: renamed from lo (while UP)
[  153.631532][ T9356] netlink: 'syz.1.1163': attribute type 1 has an invalid length.
[  153.890206][ T9350] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  154.064767][ T9366] ieee802154 phy1 wpan1: encryption failed: -22
[  154.231459][ T9380] netlink: 'syz.0.1176': attribute type 10 has an invalid length.
[  154.280694][ T9380] macvlan0: entered promiscuous mode
[  154.296435][ T9380] macvlan0: entered allmulticast mode
[  154.347619][ T9380] veth1_vlan: entered allmulticast mode
[  154.407926][ T9380] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  154.600344][ T9397] team0: Device vti0 is of different type
[  154.767446][ T9403] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1186'.
[  155.168175][ T9424] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1194'.
[  155.390471][ T9433] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1197'.
[  155.390896][ T9436] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1201'.
[  155.438271][ T9437] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1200'.
[  155.505473][ T9436] 8021q: adding VLAN 0 to HW filter on device bond2
[  155.537775][ T9442] tipc: Failed to remove unknown binding: 66,1,1/0:1201406169/1201406171
[  155.548128][ T9442] tipc: Failed to remove unknown binding: 66,1,1/0:1201406169/1201406171
[  155.607785][ T9439] 8021q: adding VLAN 0 to HW filter on device bond2
[  155.631628][ T9439] bond2: (slave vcan1): The slave device specified does not support setting the MAC address
[  155.653156][ T9439] bond2: (slave vcan1): Error -95 calling set_mac_address
[  156.095947][ T9466] xt_hashlimit: size too large, truncated to 1048576
[  156.144109][ T9470] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  156.710111][ T9496] openvswitch: netlink: nsh attribute has 65524 unknown bytes.
[  156.725480][ T9496] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  156.827320][ T9500] 8021q: adding VLAN 0 to HW filter on device bond3
[  156.868230][ T9504] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  157.206697][ T9527] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1232'.
[  159.275880][ T9544] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  159.471136][ T9558] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1244'.
[  159.566637][ T9561] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1246'.
[  159.616991][ T9561] 8021q: adding VLAN 0 to HW filter on device bond2
[  159.817877][ T9573] netlink: 'syz.4.1249': attribute type 4 has an invalid length.
[  160.175718][ T9593] 8021q: adding VLAN 0 to HW filter on device bond2
[  160.481101][ T9609] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1258'.
[  161.009466][ T9634] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1264'.
[  161.108137][ T9642] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1268'.
[  161.364862][ T9660] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1272'.
[  161.804745][ T9683] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1278'.
[  161.882625][ T9686] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  162.022452][ T9691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1280'.
[  162.306380][ T9708] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1284'.
[  162.341934][ T9710] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1286'.
[  162.485355][ T9710] 8021q: adding VLAN 0 to HW filter on device bond5
[  162.964567][ T9744] vlan3: entered allmulticast mode
[  163.123510][ T9753] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1299'.
[  163.477509][ T9769] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  163.557903][ T9775] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1303'.
[  163.593906][ T9775] 8021q: adding VLAN 0 to HW filter on device bond4
[  163.680390][ T9775] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1303'.
[  163.970096][ T9783] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1307'.
[  164.316277][ T9794] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1311'.
[  164.369231][ T9795] 8021q: VLANs not supported on tunl0
[  164.497703][ T9800] xt_CT: No such helper "pptp"
[  164.730764][ T9816] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.1317'.
[  164.734222][ T9819] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1318'.
[  164.786897][ T9820] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1318'.
[  164.914907][ T9819] 8021q: adding VLAN 0 to HW filter on device bond3
[  164.951190][ T9830] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  165.272318][ T9840] xt_CT: No such helper "pptp"
[  165.805920][ T9872] xt_NFQUEUE: number of total queues is 0
[  165.841417][ T9872] x_tables: duplicate underflow at hook 2
[  165.918895][ T9880] netlink: 'syz.1.1336': attribute type 1 has an invalid length.
[  166.280625][ T9899] openvswitch: netlink: VXLAN extension 0 has unexpected len 3 expected 0
[  166.294967][ T9889] xt_CT: No such helper "pptp"
[  166.752448][ T9922] 8021q: adding VLAN 0 to HW filter on device bond3
[  166.766381][ T9928] netlink: 'syz.0.1349': attribute type 1 has an invalid length.
[  166.960793][ T9942] 8021q: adding VLAN 0 to HW filter on device bond5
[  167.054694][ T9942] bond4: (slave bond5): making interface the new active one
[  167.080127][ T9942] bond4: (slave bond5): Enslaving as an active interface with an up link
[  167.112106][ T9953] tc_dump_action: action bad kind
[  167.624187][ T9990] __nla_validate_parse: 9 callbacks suppressed
[  167.624207][ T9990] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1360'.
[  167.687447][ T9990] netlink: 'syz.1.1360': attribute type 7 has an invalid length.
[  167.691260][ T9992] 8021q: adding VLAN 0 to HW filter on device bond4
[  167.727301][ T9990] netlink: 'syz.1.1360': attribute type 8 has an invalid length.
[  167.746236][ T9998] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1362'.
[  167.762196][ T9990] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1360'.
[  167.827017][ T9990] erspan0: entered promiscuous mode
[  167.868640][ T9990] gretap0: entered promiscuous mode
[  167.977084][T10008] C speed is unknown, defaulting to 1000
[  168.045931][T10017] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  168.198150][T10024] netlink: 1280 bytes leftover after parsing attributes in process `syz.1.1368'.
[  168.280545][T10024] openvswitch: netlink: Flow actions attr not present in new flow.
[  168.699551][T10048] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1376'.
[  168.861138][T10049] 8021q: adding VLAN 0 to HW filter on device bond4
[  169.211532][T10078] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1381'.
[  169.220956][T10079] can: request_module (can-proto-4) failed.
[  169.231231][T10073] netlink: 188 bytes leftover after parsing attributes in process `syz.0.1379'.
[  169.245615][T10073] netlink: 'syz.0.1379': attribute type 1 has an invalid length.
[  169.329359][T10078] netlink: 'syz.2.1381': attribute type 1 has an invalid length.
[  169.369048][T10078] netlink: 'syz.2.1381': attribute type 1 has an invalid length.
[  169.441451][T10090] Bluetooth: MGMT ver 1.23
[  169.741818][T10107] 8021q: adding VLAN 0 to HW filter on device bond5
[  169.980008][T10121] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1395'.
[  169.981491][T10120] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1396'.
[  170.019211][T10121] netlink: 'syz.4.1395': attribute type 21 has an invalid length.
[  170.613798][T10160] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1409'.
[  170.616984][T10161] FAULT_INJECTION: forcing a failure.
[  170.616984][T10161] name failslab, interval 1, probability 0, space 0, times 0
[  170.675025][T10161] CPU: 1 UID: 0 PID: 10161 Comm: syz.2.1411 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  170.675050][T10161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  170.675060][T10161] Call Trace:
[  170.675067][T10161]  <TASK>
[  170.675075][T10161]  dump_stack_lvl+0x241/0x360
[  170.675102][T10161]  ? __pfx_dump_stack_lvl+0x10/0x10
[  170.675121][T10161]  ? __pfx__printk+0x10/0x10
[  170.675140][T10161]  ? fs_reclaim_acquire+0x93/0x130
[  170.675158][T10161]  ? __pfx___might_resched+0x10/0x10
[  170.675182][T10161]  should_fail_ex+0x40a/0x550
[  170.675210][T10161]  should_failslab+0xac/0x100
[  170.675234][T10161]  __kmalloc_noprof+0xdd/0x4c0
[  170.675258][T10161]  ? kstrtouint_from_user+0x128/0x190
[  170.675271][T10161]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  170.675291][T10161]  tomoyo_realpath_from_path+0xcf/0x5e0
[  170.675316][T10161]  tomoyo_path_number_perm+0x239/0x770
[  170.675336][T10161]  ? __lock_acquire+0x1397/0x2100
[  170.675360][T10161]  ? tomoyo_path_number_perm+0x209/0x770
[  170.675380][T10161]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  170.675440][T10161]  ? __fget_files+0x2a/0x410
[  170.675465][T10161]  ? __fget_files+0x2a/0x410
[  170.675489][T10161]  security_file_ioctl+0xc6/0x2a0
[  170.675511][T10161]  __se_sys_ioctl+0x46/0x170
[  170.675531][T10161]  do_syscall_64+0xf3/0x230
[  170.675554][T10161]  ? clear_bhb_loop+0x35/0x90
[  170.675579][T10161]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.675599][T10161] RIP: 0033:0x7fb22898d169
[  170.675614][T10161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.675628][T10161] RSP: 002b:00007fb229777038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  170.675647][T10161] RAX: ffffffffffffffda RBX: 00007fb228ba5fa0 RCX: 00007fb22898d169
[  170.675659][T10161] RDX: 0000400000000040 RSI: 0000000000008b2b RDI: 0000000000000003
[  170.675670][T10161] RBP: 00007fb229777090 R08: 0000000000000000 R09: 0000000000000000
[  170.675680][T10161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.675689][T10161] R13: 0000000000000000 R14: 00007fb228ba5fa0 R15: 00007ffcfbba5c28
[  170.675716][T10161]  </TASK>
[  170.927656][T10161] ERROR: Out of memory at tomoyo_realpath_from_path.
[  170.999411][T10166] sctp: [Deprecated]: syz.0.1414 (pid 10166) Use of int in maxseg socket option.
[  170.999411][T10166] Use struct sctp_assoc_value instead
[  171.343205][T10188] netlink: 'syz.0.1422': attribute type 1 has an invalid length.
[  171.522185][T10197] FAULT_INJECTION: forcing a failure.
[  171.522185][T10197] name failslab, interval 1, probability 0, space 0, times 0
[  171.546958][T10197] CPU: 1 UID: 0 PID: 10197 Comm: syz.0.1427 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  171.546982][T10197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  171.546993][T10197] Call Trace:
[  171.546999][T10197]  <TASK>
[  171.547006][T10197]  dump_stack_lvl+0x241/0x360
[  171.547032][T10197]  ? __pfx_dump_stack_lvl+0x10/0x10
[  171.547049][T10197]  ? __pfx__printk+0x10/0x10
[  171.547066][T10197]  ? fs_reclaim_acquire+0x93/0x130
[  171.547082][T10197]  ? __pfx___might_resched+0x10/0x10
[  171.547099][T10197]  ? dynamic_dname+0x144/0x1b0
[  171.547118][T10197]  should_fail_ex+0x40a/0x550
[  171.547144][T10197]  should_failslab+0xac/0x100
[  171.547166][T10197]  __kmalloc_noprof+0xdd/0x4c0
[  171.547186][T10197]  ? tomoyo_encode+0x26f/0x540
[  171.547206][T10197]  tomoyo_encode+0x26f/0x540
[  171.547223][T10197]  ? __pfx_sockfs_dname+0x10/0x10
[  171.547244][T10197]  tomoyo_realpath_from_path+0x59e/0x5e0
[  171.547270][T10197]  tomoyo_path_number_perm+0x239/0x770
[  171.547290][T10197]  ? __lock_acquire+0x1397/0x2100
[  171.547315][T10197]  ? tomoyo_path_number_perm+0x209/0x770
[  171.547336][T10197]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  171.547391][T10197]  ? __fget_files+0x2a/0x410
[  171.547419][T10197]  ? __fget_files+0x2a/0x410
[  171.547444][T10197]  security_file_ioctl+0xc6/0x2a0
[  171.547465][T10197]  __se_sys_ioctl+0x46/0x170
[  171.547484][T10197]  do_syscall_64+0xf3/0x230
[  171.547506][T10197]  ? clear_bhb_loop+0x35/0x90
[  171.547530][T10197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.547550][T10197] RIP: 0033:0x7f927658d169
[  171.547565][T10197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.547580][T10197] RSP: 002b:00007f9277457038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  171.547599][T10197] RAX: ffffffffffffffda RBX: 00007f92767a5fa0 RCX: 00007f927658d169
[  171.547611][T10197] RDX: 0000400000000040 RSI: 0000000000008b2b RDI: 0000000000000003
[  171.547631][T10197] RBP: 00007f9277457090 R08: 0000000000000000 R09: 0000000000000000
[  171.547641][T10197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.547651][T10197] R13: 0000000000000000 R14: 00007f92767a5fa0 R15: 00007ffee9f78198
[  171.547678][T10197]  </TASK>
[  171.549132][T10197] ERROR: Out of memory at tomoyo_realpath_from_path.
[  171.698067][T10203] netlink: 'syz.1.1429': attribute type 29 has an invalid length.
[  171.853244][T10207] FAULT_INJECTION: forcing a failure.
[  171.853244][T10207] name failslab, interval 1, probability 0, space 0, times 0
[  171.876983][T10207] CPU: 1 UID: 0 PID: 10207 Comm: syz.3.1430 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  171.877010][T10207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  171.877019][T10207] Call Trace:
[  171.877025][T10207]  <TASK>
[  171.877032][T10207]  dump_stack_lvl+0x241/0x360
[  171.877058][T10207]  ? __pfx_dump_stack_lvl+0x10/0x10
[  171.877076][T10207]  ? __pfx__printk+0x10/0x10
[  171.877093][T10207]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  171.877116][T10207]  ? __pfx___might_resched+0x10/0x10
[  171.877134][T10207]  ? aa_label_sk_perm+0x4f3/0x6c0
[  171.877159][T10207]  should_fail_ex+0x40a/0x550
[  171.877187][T10207]  should_failslab+0xac/0x100
[  171.877209][T10207]  kmem_cache_alloc_node_noprof+0x77/0x380
[  171.877230][T10207]  ? __alloc_skb+0x1c3/0x440
[  171.877256][T10207]  __alloc_skb+0x1c3/0x440
[  171.877283][T10207]  ? __pfx___alloc_skb+0x10/0x10
[  171.877313][T10207]  netlink_sendmsg+0x634/0xcb0
[  171.877343][T10207]  ? __pfx_netlink_sendmsg+0x10/0x10
[  171.877365][T10207]  ? aa_sock_msg_perm+0x91/0x160
[  171.877392][T10207]  ? __pfx_netlink_sendmsg+0x10/0x10
[  171.877407][T10207]  __sock_sendmsg+0x221/0x270
[  171.877450][T10207]  ____sys_sendmsg+0x53a/0x860
[  171.877473][T10207]  ? __pfx_____sys_sendmsg+0x10/0x10
[  171.877488][T10207]  ? __fget_files+0x2a/0x410
[  171.877512][T10207]  ? __fget_files+0x2a/0x410
[  171.877541][T10207]  __sys_sendmsg+0x269/0x350
[  171.877562][T10207]  ? __pfx___sys_sendmsg+0x10/0x10
[  171.877589][T10207]  ? do_sys_openat2+0x17a/0x1d0
[  171.877628][T10207]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  171.877659][T10207]  ? do_syscall_64+0x100/0x230
[  171.877682][T10207]  ? do_syscall_64+0xb6/0x230
[  171.877704][T10207]  do_syscall_64+0xf3/0x230
[  171.877725][T10207]  ? clear_bhb_loop+0x35/0x90
[  171.877748][T10207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.877768][T10207] RIP: 0033:0x7fe7c018d169
[  171.877782][T10207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.877796][T10207] RSP: 002b:00007fe7c0f27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  171.877814][T10207] RAX: ffffffffffffffda RBX: 00007fe7c03a5fa0 RCX: 00007fe7c018d169
[  171.877824][T10207] RDX: 0000000004000000 RSI: 0000400000000180 RDI: 0000000000000003
[  171.877835][T10207] RBP: 00007fe7c0f27090 R08: 0000000000000000 R09: 0000000000000000
[  171.877845][T10207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.877855][T10207] R13: 0000000000000000 R14: 00007fe7c03a5fa0 R15: 00007ffe5e9b52f8
[  171.877877][T10207]  </TASK>
[  172.249229][T10218] netlink: 'syz.0.1432': attribute type 29 has an invalid length.
[  172.377740][T10219] netlink: 'syz.0.1432': attribute type 29 has an invalid length.
[  172.427183][T10219] netlink: 'syz.0.1432': attribute type 29 has an invalid length.
[  172.493770][T10219] netlink: 'syz.0.1432': attribute type 29 has an invalid length.
[  172.505874][T10219] netlink: 'syz.0.1432': attribute type 29 has an invalid length.
[  172.536445][T10219] netlink: 'syz.0.1432': attribute type 29 has an invalid length.
[  172.544798][T10219] netlink: 'syz.0.1432': attribute type 29 has an invalid length.
[  172.553410][T10219] netlink: 'syz.0.1432': attribute type 29 has an invalid length.
[  172.569649][T10232] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  172.754772][T10240] ax25_connect(): syz.0.1443 uses autobind, please contact jreuter@yaina.de
[  172.775037][T10243] FAULT_INJECTION: forcing a failure.
[  172.775037][T10243] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.799817][T10243] CPU: 0 UID: 0 PID: 10243 Comm: syz.1.1442 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  172.799844][T10243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  172.799854][T10243] Call Trace:
[  172.799860][T10243]  <TASK>
[  172.799868][T10243]  dump_stack_lvl+0x241/0x360
[  172.799894][T10243]  ? __pfx_dump_stack_lvl+0x10/0x10
[  172.799912][T10243]  ? __pfx__printk+0x10/0x10
[  172.799931][T10243]  ? __pfx_lock_release+0x10/0x10
[  172.799952][T10243]  ? tomoyo_path_number_perm+0x65d/0x770
[  172.799974][T10243]  ? __lock_acquire+0x1397/0x2100
[  172.800002][T10243]  should_fail_ex+0x40a/0x550
[  172.800029][T10243]  _copy_from_user+0x2d/0xb0
[  172.800050][T10243]  wext_handle_ioctl+0xef/0x280
[  172.800078][T10243]  ? __pfx_wext_handle_ioctl+0x10/0x10
[  172.800116][T10243]  sock_ioctl+0x17c/0x8e0
[  172.800138][T10243]  ? __pfx_sock_ioctl+0x10/0x10
[  172.800156][T10243]  ? __fget_files+0x2a/0x410
[  172.800181][T10243]  ? __fget_files+0x2a/0x410
[  172.800206][T10243]  ? __pfx_sock_ioctl+0x10/0x10
[  172.800225][T10243]  __se_sys_ioctl+0xf5/0x170
[  172.800245][T10243]  do_syscall_64+0xf3/0x230
[  172.800267][T10243]  ? clear_bhb_loop+0x35/0x90
[  172.800292][T10243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.800313][T10243] RIP: 0033:0x7f5a9bf8d169
[  172.800328][T10243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.800342][T10243] RSP: 002b:00007f5a9cdb7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  172.800360][T10243] RAX: ffffffffffffffda RBX: 00007f5a9c1a5fa0 RCX: 00007f5a9bf8d169
[  172.800372][T10243] RDX: 0000400000000040 RSI: 0000000000008b2b RDI: 0000000000000003
[  172.800383][T10243] RBP: 00007f5a9cdb7090 R08: 0000000000000000 R09: 0000000000000000
[  172.800394][T10243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.800404][T10243] R13: 0000000000000000 R14: 00007f5a9c1a5fa0 R15: 00007ffd9d542738
[  172.800430][T10243]  </TASK>
[  172.809671][T10240] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  173.641514][T10283] FAULT_INJECTION: forcing a failure.
[  173.641514][T10283] name failslab, interval 1, probability 0, space 0, times 0
[  173.676946][T10283] CPU: 0 UID: 0 PID: 10283 Comm: syz.3.1455 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  173.676971][T10283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  173.676981][T10283] Call Trace:
[  173.676988][T10283]  <TASK>
[  173.676995][T10283]  dump_stack_lvl+0x241/0x360
[  173.677021][T10283]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.677039][T10283]  ? __pfx__printk+0x10/0x10
[  173.677070][T10283]  should_fail_ex+0x40a/0x550
[  173.677098][T10283]  should_failslab+0xac/0x100
[  173.677120][T10283]  ? dst_alloc+0x12b/0x190
[  173.677141][T10283]  kmem_cache_alloc_noprof+0x70/0x380
[  173.677169][T10283]  dst_alloc+0x12b/0x190
[  173.677196][T10283]  ip_route_output_key_hash_rcu+0x1378/0x2290
[  173.677231][T10283]  ip_route_output_key_hash+0x193/0x2b0
[  173.677252][T10283]  ? ip_route_output_key_hash+0xdf/0x2b0
[  173.677296][T10283]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  173.677316][T10283]  ? tomoyo_profile+0x11/0x50
[  173.677349][T10283]  tcp_v4_connect+0x6df/0x1ba0
[  173.677392][T10283]  ? __pfx_tcp_v4_connect+0x10/0x10
[  173.677421][T10283]  ? __pfx_lock_release+0x10/0x10
[  173.677442][T10283]  ? ip4_string+0xd5/0xb90
[  173.677461][T10283]  ? tcp_v6_connect+0x6b1/0x1e50
[  173.677487][T10283]  tcp_v6_connect+0xe93/0x1e50
[  173.677519][T10283]  ? __pfx_tcp_v6_connect+0x10/0x10
[  173.677562][T10283]  ? mark_lock+0x9a/0x360
[  173.677582][T10283]  __inet_stream_connect+0x262/0xf30
[  173.677608][T10283]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  173.677637][T10283]  ? __local_bh_enable_ip+0x168/0x200
[  173.677654][T10283]  ? lockdep_hardirqs_on+0x99/0x150
[  173.677675][T10283]  ? __pfx___inet_stream_connect+0x10/0x10
[  173.677694][T10283]  ? __local_bh_enable_ip+0x168/0x200
[  173.677712][T10283]  ? inet_stream_connect+0x50/0xa0
[  173.677733][T10283]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  173.677762][T10283]  inet_stream_connect+0x65/0xa0
[  173.677787][T10283]  __sys_connect+0x288/0x2d0
[  173.677810][T10283]  ? __fget_files+0x2a/0x410
[  173.677830][T10283]  ? __pfx___sys_connect+0x10/0x10
[  173.677868][T10283]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  173.677892][T10283]  ? do_syscall_64+0x100/0x230
[  173.677918][T10283]  __x64_sys_connect+0x7a/0x90
[  173.677941][T10283]  do_syscall_64+0xf3/0x230
[  173.677962][T10283]  ? clear_bhb_loop+0x35/0x90
[  173.677986][T10283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.678007][T10283] RIP: 0033:0x7fe7c018d169
[  173.678022][T10283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.678035][T10283] RSP: 002b:00007fe7c0f27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  173.678054][T10283] RAX: ffffffffffffffda RBX: 00007fe7c03a5fa0 RCX: 00007fe7c018d169
[  173.678066][T10283] RDX: 000000000000001c RSI: 0000400000000000 RDI: 0000000000000003
[  173.678077][T10283] RBP: 00007fe7c0f27090 R08: 0000000000000000 R09: 0000000000000000
[  173.678087][T10283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.678097][T10283] R13: 0000000000000000 R14: 00007fe7c03a5fa0 R15: 00007ffe5e9b52f8
[  173.678125][T10283]  </TASK>
[  174.411569][T10307] __nla_validate_parse: 5 callbacks suppressed
[  174.411588][T10307] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1464'.
[  174.499953][T10312] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (8)
[  174.534774][T10312] netlink: 'syz.2.1465': attribute type 11 has an invalid length.
[  174.673493][T10319] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1468'.
[  174.795294][T10325] FAULT_INJECTION: forcing a failure.
[  174.795294][T10325] name failslab, interval 1, probability 0, space 0, times 0
[  174.808465][T10325] CPU: 0 UID: 0 PID: 10325 Comm: syz.4.1470 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  174.808485][T10325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  174.808494][T10325] Call Trace:
[  174.808500][T10325]  <TASK>
[  174.808507][T10325]  dump_stack_lvl+0x241/0x360
[  174.808530][T10325]  ? __pfx_dump_stack_lvl+0x10/0x10
[  174.808547][T10325]  ? __pfx__printk+0x10/0x10
[  174.808567][T10325]  ? __pfx_lock_acquire+0x10/0x10
[  174.808593][T10325]  should_fail_ex+0x40a/0x550
[  174.808617][T10325]  should_failslab+0xac/0x100
[  174.808637][T10325]  ? __inet_hash_connect+0x11cc/0x2170
[  174.808653][T10325]  kmem_cache_alloc_noprof+0x70/0x380
[  174.808678][T10325]  __inet_hash_connect+0x11cc/0x2170
[  174.808718][T10325]  ? __pfx___inet_hash_connect+0x10/0x10
[  174.808745][T10325]  ? inet_hash_connect+0xac/0x140
[  174.808765][T10325]  tcp_v4_connect+0xd04/0x1ba0
[  174.808808][T10325]  ? __pfx_tcp_v4_connect+0x10/0x10
[  174.808831][T10325]  ? __pfx_lock_release+0x10/0x10
[  174.808851][T10325]  ? ip4_string+0xd5/0xb90
[  174.808871][T10325]  ? tcp_v6_connect+0x6b1/0x1e50
[  174.808896][T10325]  tcp_v6_connect+0xe93/0x1e50
[  174.808929][T10325]  ? __pfx_tcp_v6_connect+0x10/0x10
[  174.808972][T10325]  ? mark_lock+0x9a/0x360
[  174.808992][T10325]  __inet_stream_connect+0x262/0xf30
[  174.809017][T10325]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  174.809045][T10325]  ? __local_bh_enable_ip+0x168/0x200
[  174.809064][T10325]  ? lockdep_hardirqs_on+0x99/0x150
[  174.809084][T10325]  ? __pfx___inet_stream_connect+0x10/0x10
[  174.809104][T10325]  ? __local_bh_enable_ip+0x168/0x200
[  174.809123][T10325]  ? inet_stream_connect+0x50/0xa0
[  174.809143][T10325]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  174.809173][T10325]  inet_stream_connect+0x65/0xa0
[  174.809198][T10325]  __sys_connect+0x288/0x2d0
[  174.809220][T10325]  ? __fget_files+0x2a/0x410
[  174.809242][T10325]  ? __pfx___sys_connect+0x10/0x10
[  174.809277][T10325]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  174.809301][T10325]  ? do_syscall_64+0x100/0x230
[  174.809327][T10325]  __x64_sys_connect+0x7a/0x90
[  174.809358][T10325]  do_syscall_64+0xf3/0x230
[  174.809379][T10325]  ? clear_bhb_loop+0x35/0x90
[  174.809404][T10325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.809425][T10325] RIP: 0033:0x7f55b2d8d169
[  174.809440][T10325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.809453][T10325] RSP: 002b:00007f55b3bf5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  174.809471][T10325] RAX: ffffffffffffffda RBX: 00007f55b2fa5fa0 RCX: 00007f55b2d8d169
[  174.809482][T10325] RDX: 000000000000001c RSI: 0000400000000000 RDI: 0000000000000003
[  174.809492][T10325] RBP: 00007f55b3bf5090 R08: 0000000000000000 R09: 0000000000000000
[  174.809501][T10325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  174.809511][T10325] R13: 0000000000000000 R14: 00007f55b2fa5fa0 R15: 00007ffeddbe41e8
[  174.809539][T10325]  </TASK>
[  175.127489][T10327] FAULT_INJECTION: forcing a failure.
[  175.127489][T10327] name failslab, interval 1, probability 0, space 0, times 0
[  175.166150][T10327] CPU: 0 UID: 0 PID: 10327 Comm: syz.0.1471 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  175.166175][T10327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  175.166186][T10327] Call Trace:
[  175.166192][T10327]  <TASK>
[  175.166200][T10327]  dump_stack_lvl+0x241/0x360
[  175.166227][T10327]  ? __pfx_dump_stack_lvl+0x10/0x10
[  175.166245][T10327]  ? __pfx__printk+0x10/0x10
[  175.166264][T10327]  ? fs_reclaim_acquire+0x93/0x130
[  175.166295][T10327]  ? __pfx___might_resched+0x10/0x10
[  175.166319][T10327]  should_fail_ex+0x40a/0x550
[  175.166347][T10327]  should_failslab+0xac/0x100
[  175.166370][T10327]  __kmalloc_noprof+0xdd/0x4c0
[  175.166391][T10327]  ? kstrtouint_from_user+0x128/0x190
[  175.166407][T10327]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  175.166429][T10327]  tomoyo_realpath_from_path+0xcf/0x5e0
[  175.166457][T10327]  tomoyo_path_number_perm+0x239/0x770
[  175.166478][T10327]  ? __lock_acquire+0x1397/0x2100
[  175.166504][T10327]  ? tomoyo_path_number_perm+0x209/0x770
[  175.166527][T10327]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  175.166586][T10327]  ? __fget_files+0x2a/0x410
[  175.166611][T10327]  ? __fget_files+0x2a/0x410
[  175.166633][T10327]  security_file_ioctl+0xc6/0x2a0
[  175.166652][T10327]  __se_sys_ioctl+0x46/0x170
[  175.166670][T10327]  do_syscall_64+0xf3/0x230
[  175.166692][T10327]  ? clear_bhb_loop+0x35/0x90
[  175.166714][T10327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.166733][T10327] RIP: 0033:0x7f927658d169
[  175.166748][T10327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.166761][T10327] RSP: 002b:00007f9277457038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  175.166777][T10327] RAX: ffffffffffffffda RBX: 00007f92767a5fa0 RCX: 00007f927658d169
[  175.166789][T10327] RDX: 0000400000000a80 RSI: 0000000000008954 RDI: 0000000000000003
[  175.166798][T10327] RBP: 00007f9277457090 R08: 0000000000000000 R09: 0000000000000000
[  175.166809][T10327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.166818][T10327] R13: 0000000000000000 R14: 00007f92767a5fa0 R15: 00007ffee9f78198
[  175.166844][T10327]  </TASK>
[  175.166851][T10327] ERROR: Out of memory at tomoyo_realpath_from_path.
[  175.175197][T10328] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1472'.
[  175.476485][T10328] 8021q: adding VLAN 0 to HW filter on device bond6
[  175.516769][T10339] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1476'.
[  175.764468][T10355] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1480'.
[  175.800287][T10360] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1480'.
[  175.835143][T10366] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1484'.
[  175.995877][T10376] FAULT_INJECTION: forcing a failure.
[  175.995877][T10376] name failslab, interval 1, probability 0, space 0, times 0
[  176.008907][T10376] CPU: 0 UID: 0 PID: 10376 Comm: syz.0.1488 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  176.008930][T10376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  176.008941][T10376] Call Trace:
[  176.008948][T10376]  <TASK>
[  176.008956][T10376]  dump_stack_lvl+0x241/0x360
[  176.008983][T10376]  ? __pfx_dump_stack_lvl+0x10/0x10
[  176.009001][T10376]  ? __pfx__printk+0x10/0x10
[  176.009032][T10376]  should_fail_ex+0x40a/0x550
[  176.009060][T10376]  should_failslab+0xac/0x100
[  176.009082][T10376]  ? skb_clone+0x20c/0x390
[  176.009098][T10376]  kmem_cache_alloc_noprof+0x70/0x380
[  176.009125][T10376]  skb_clone+0x20c/0x390
[  176.009145][T10376]  __netlink_deliver_tap+0x3c4/0x7f0
[  176.009176][T10376]  ? netlink_deliver_tap+0x2e/0x1b0
[  176.009192][T10376]  netlink_deliver_tap+0x19d/0x1b0
[  176.009211][T10376]  netlink_unicast+0x7c4/0x990
[  176.009243][T10376]  ? __pfx_netlink_unicast+0x10/0x10
[  176.009264][T10376]  ? __virt_addr_valid+0x45f/0x530
[  176.009282][T10376]  ? __phys_addr_symbol+0x2f/0x70
[  176.009296][T10376]  ? __check_object_size+0x47a/0x730
[  176.009316][T10376]  netlink_sendmsg+0x8de/0xcb0
[  176.009339][T10376]  ? __pfx_netlink_sendmsg+0x10/0x10
[  176.009360][T10376]  ? aa_sock_msg_perm+0x91/0x160
[  176.009388][T10376]  ? __pfx_netlink_sendmsg+0x10/0x10
[  176.009404][T10376]  __sock_sendmsg+0x221/0x270
[  176.009427][T10376]  ____sys_sendmsg+0x53a/0x860
[  176.009452][T10376]  ? __pfx_____sys_sendmsg+0x10/0x10
[  176.009466][T10376]  ? __fget_files+0x2a/0x410
[  176.009492][T10376]  ? __fget_files+0x2a/0x410
[  176.009522][T10376]  __sys_sendmsg+0x269/0x350
[  176.009551][T10376]  ? __pfx___sys_sendmsg+0x10/0x10
[  176.009580][T10376]  ? do_sys_openat2+0x17a/0x1d0
[  176.009628][T10376]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  176.009653][T10376]  ? do_syscall_64+0x100/0x230
[  176.009678][T10376]  ? do_syscall_64+0xb6/0x230
[  176.009702][T10376]  do_syscall_64+0xf3/0x230
[  176.009724][T10376]  ? clear_bhb_loop+0x35/0x90
[  176.009748][T10376]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.009769][T10376] RIP: 0033:0x7f927658d169
[  176.009785][T10376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.009799][T10376] RSP: 002b:00007f9277457038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  176.009817][T10376] RAX: ffffffffffffffda RBX: 00007f92767a5fa0 RCX: 00007f927658d169
[  176.009829][T10376] RDX: 0000000004000000 RSI: 0000400000000180 RDI: 0000000000000003
[  176.009840][T10376] RBP: 00007f9277457090 R08: 0000000000000000 R09: 0000000000000000
[  176.009851][T10376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.009861][T10376] R13: 0000000000000000 R14: 00007f92767a5fa0 R15: 00007ffee9f78198
[  176.009888][T10376]  </TASK>
[  176.454019][T10381] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1490'.
[  176.503177][T10389] netlink: 9 bytes leftover after parsing attributes in process `syz.2.1491'.
[  176.578588][T10389] 0·: renamed from hsr_slave_1 (while UP)
[  176.629178][T10389] 0·: entered allmulticast mode
[  176.634501][T10389] A link change request failed with some changes committed already. Interface 
c0· may have been left with an inconsistent configuration, please check.
[  176.750198][T10403] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1493'.
[  176.787483][T10403] 8021q: adding VLAN 0 to HW filter on device bond5
[  176.903958][T10411] validate_nla: 4 callbacks suppressed
[  176.903978][T10411] netlink: 'syz.0.1495': attribute type 1 has an invalid length.
[  176.974781][T10411] bond6: entered promiscuous mode
[  176.980179][T10411] bond6: entered allmulticast mode
[  177.010268][T10411] bond7: entered allmulticast mode
[  177.022500][T10411] 8021q: adding VLAN 0 to HW filter on device bond7
[  177.032905][T10411] bond6: (slave bond7): Enslaving as an active interface with a down link
[  177.046294][T10411] 8021q: adding VLAN 0 to HW filter on device bond6
[  177.672591][T10453] 8021q: adding VLAN 0 to HW filter on device bond7
[  177.799056][T10460] FAULT_INJECTION: forcing a failure.
[  177.799056][T10460] name failslab, interval 1, probability 0, space 0, times 0
[  177.811770][T10460] CPU: 0 UID: 0 PID: 10460 Comm: syz.3.1512 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  177.811792][T10460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  177.811802][T10460] Call Trace:
[  177.811809][T10460]  <TASK>
[  177.811816][T10460]  dump_stack_lvl+0x241/0x360
[  177.811842][T10460]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.811860][T10460]  ? __pfx__printk+0x10/0x10
[  177.811882][T10460]  ? __pfx_lock_acquire+0x10/0x10
[  177.811910][T10460]  should_fail_ex+0x40a/0x550
[  177.811937][T10460]  should_failslab+0xac/0x100
[  177.811960][T10460]  ? __inet_hash_connect+0x11cc/0x2170
[  177.811977][T10460]  kmem_cache_alloc_noprof+0x70/0x380
[  177.812004][T10460]  __inet_hash_connect+0x11cc/0x2170
[  177.812043][T10460]  ? __pfx___inet_hash_connect+0x10/0x10
[  177.812070][T10460]  ? inet_hash_connect+0xac/0x140
[  177.812090][T10460]  tcp_v4_connect+0xd04/0x1ba0
[  177.812132][T10460]  ? __pfx_tcp_v4_connect+0x10/0x10
[  177.812156][T10460]  ? __pfx_lock_release+0x10/0x10
[  177.812176][T10460]  ? ip4_string+0xd5/0xb90
[  177.812195][T10460]  ? tcp_v6_connect+0x6b1/0x1e50
[  177.812221][T10460]  tcp_v6_connect+0xe93/0x1e50
[  177.812255][T10460]  ? __pfx_tcp_v6_connect+0x10/0x10
[  177.812303][T10460]  ? mark_lock+0x9a/0x360
[  177.812321][T10460]  __inet_stream_connect+0x262/0xf30
[  177.812347][T10460]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  177.812372][T10460]  ? __local_bh_enable_ip+0x168/0x200
[  177.812390][T10460]  ? lockdep_hardirqs_on+0x99/0x150
[  177.812410][T10460]  ? __pfx___inet_stream_connect+0x10/0x10
[  177.812429][T10460]  ? __local_bh_enable_ip+0x168/0x200
[  177.812447][T10460]  ? inet_stream_connect+0x50/0xa0
[  177.812468][T10460]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  177.812496][T10460]  inet_stream_connect+0x65/0xa0
[  177.812521][T10460]  __sys_connect+0x288/0x2d0
[  177.812543][T10460]  ? __fget_files+0x2a/0x410
[  177.812562][T10460]  ? __pfx___sys_connect+0x10/0x10
[  177.812596][T10460]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  177.812620][T10460]  ? do_syscall_64+0x100/0x230
[  177.812646][T10460]  __x64_sys_connect+0x7a/0x90
[  177.812668][T10460]  do_syscall_64+0xf3/0x230
[  177.812688][T10460]  ? clear_bhb_loop+0x35/0x90
[  177.812712][T10460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.812732][T10460] RIP: 0033:0x7fe7c018d169
[  177.812748][T10460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.812761][T10460] RSP: 002b:00007fe7c0f27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  177.812779][T10460] RAX: ffffffffffffffda RBX: 00007fe7c03a5fa0 RCX: 00007fe7c018d169
[  177.812790][T10460] RDX: 000000000000001c RSI: 0000400000000000 RDI: 0000000000000003
[  177.812801][T10460] RBP: 00007fe7c0f27090 R08: 0000000000000000 R09: 0000000000000000
[  177.812810][T10460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  177.812819][T10460] R13: 0000000000000000 R14: 00007fe7c03a5fa0 R15: 00007ffe5e9b52f8
[  177.812845][T10460]  </TASK>
[  178.232877][T10464] netlink: 'syz.2.1514': attribute type 1 has an invalid length.
[  178.373013][T10473] netlink: 'syz.1.1518': attribute type 8 has an invalid length.
[  179.066712][T10500] 8021q: adding VLAN 0 to HW filter on device bond6
[  179.194927][T10522] C speed is unknown, defaulting to 1000
[  179.506700][T10536] FAULT_INJECTION: forcing a failure.
[  179.506700][T10536] name failslab, interval 1, probability 0, space 0, times 0
[  179.520839][T10536] CPU: 1 UID: 0 PID: 10536 Comm: syz.1.1536 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  179.520865][T10536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  179.520879][T10536] Call Trace:
[  179.520886][T10536]  <TASK>
[  179.520893][T10536]  dump_stack_lvl+0x241/0x360
[  179.520929][T10536]  ? __pfx_dump_stack_lvl+0x10/0x10
[  179.520948][T10536]  ? __pfx__printk+0x10/0x10
[  179.520975][T10536]  ? fs_reclaim_acquire+0x93/0x130
[  179.520994][T10536]  ? __pfx___might_resched+0x10/0x10
[  179.521013][T10536]  ? dynamic_dname+0x144/0x1b0
[  179.521033][T10536]  should_fail_ex+0x40a/0x550
[  179.521061][T10536]  should_failslab+0xac/0x100
[  179.521084][T10536]  __kmalloc_noprof+0xdd/0x4c0
[  179.521105][T10536]  ? tomoyo_encode+0x26f/0x540
[  179.521126][T10536]  tomoyo_encode+0x26f/0x540
[  179.521143][T10536]  ? __pfx_sockfs_dname+0x10/0x10
[  179.521166][T10536]  tomoyo_realpath_from_path+0x59e/0x5e0
[  179.521195][T10536]  tomoyo_path_number_perm+0x239/0x770
[  179.521215][T10536]  ? __lock_acquire+0x1397/0x2100
[  179.521241][T10536]  ? tomoyo_path_number_perm+0x209/0x770
[  179.521264][T10536]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  179.521325][T10536]  ? __fget_files+0x2a/0x410
[  179.521350][T10536]  ? __fget_files+0x2a/0x410
[  179.521377][T10536]  security_file_ioctl+0xc6/0x2a0
[  179.521400][T10536]  __se_sys_ioctl+0x46/0x170
[  179.521420][T10536]  do_syscall_64+0xf3/0x230
[  179.521442][T10536]  ? clear_bhb_loop+0x35/0x90
[  179.521467][T10536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.521489][T10536] RIP: 0033:0x7f5a9bf8d169
[  179.521510][T10536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.521523][T10536] RSP: 002b:00007f5a9cdb7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  179.521548][T10536] RAX: ffffffffffffffda RBX: 00007f5a9c1a5fa0 RCX: 00007f5a9bf8d169
[  179.521561][T10536] RDX: 0000400000000a80 RSI: 0000000000008954 RDI: 0000000000000003
[  179.521571][T10536] RBP: 00007f5a9cdb7090 R08: 0000000000000000 R09: 0000000000000000
[  179.521582][T10536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.521592][T10536] R13: 0000000000000000 R14: 00007f5a9c1a5fa0 R15: 00007ffd9d542738
[  179.521618][T10536]  </TASK>
[  179.521635][T10536] ERROR: Out of memory at tomoyo_realpath_from_path.
[  179.766130][T10538] __nla_validate_parse: 3 callbacks suppressed
[  179.766161][T10538] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1538'.
[  180.188831][T10553] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1544'.
[  180.237895][T10553] 8021q: adding VLAN 0 to HW filter on device bond5
[  180.644738][T10578] FAULT_INJECTION: forcing a failure.
[  180.644738][T10578] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.670548][T10578] CPU: 0 UID: 0 PID: 10578 Comm: syz.2.1552 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  180.670576][T10578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  180.670586][T10578] Call Trace:
[  180.670593][T10578]  <TASK>
[  180.670600][T10578]  dump_stack_lvl+0x241/0x360
[  180.670626][T10578]  ? __pfx_dump_stack_lvl+0x10/0x10
[  180.670644][T10578]  ? __pfx__printk+0x10/0x10
[  180.670667][T10578]  ? snprintf+0xda/0x120
[  180.670687][T10578]  should_fail_ex+0x40a/0x550
[  180.670715][T10578]  _copy_to_user+0x31/0xb0
[  180.670738][T10578]  simple_read_from_buffer+0xca/0x150
[  180.670763][T10578]  proc_fail_nth_read+0x1e9/0x250
[  180.670787][T10578]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  180.670819][T10578]  ? rw_verify_area+0x243/0x630
[  180.670836][T10578]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  180.670859][T10578]  vfs_read+0x1f8/0xb40
[  180.670877][T10578]  ? fdget_pos+0x254/0x320
[  180.670900][T10578]  ? __pfx___mutex_lock+0x10/0x10
[  180.670921][T10578]  ? __pfx_vfs_read+0x10/0x10
[  180.670942][T10578]  ? __fget_files+0x2a/0x410
[  180.670964][T10578]  ? __fget_files+0x395/0x410
[  180.670984][T10578]  ? __fget_files+0x2a/0x410
[  180.671014][T10578]  ksys_read+0x18f/0x2b0
[  180.671033][T10578]  ? __pfx_ksys_read+0x10/0x10
[  180.671050][T10578]  ? do_syscall_64+0x100/0x230
[  180.671074][T10578]  ? do_syscall_64+0xb6/0x230
[  180.671097][T10578]  do_syscall_64+0xf3/0x230
[  180.671119][T10578]  ? clear_bhb_loop+0x35/0x90
[  180.671143][T10578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.671164][T10578] RIP: 0033:0x7fb22898bb7c
[  180.671180][T10578] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  180.671194][T10578] RSP: 002b:00007fb229777030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  180.671213][T10578] RAX: ffffffffffffffda RBX: 00007fb228ba5fa0 RCX: 00007fb22898bb7c
[  180.671225][T10578] RDX: 000000000000000f RSI: 00007fb2297770a0 RDI: 0000000000000004
[  180.671235][T10578] RBP: 00007fb229777090 R08: 0000000000000000 R09: 0000000000000000
[  180.671246][T10578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.671255][T10578] R13: 0000000000000000 R14: 00007fb228ba5fa0 R15: 00007ffcfbba5c28
[  180.671282][T10578]  </TASK>
[  181.300251][T10610] syz.4.1560 (10610) used obsolete PPPIOCDETACH ioctl
[  181.310843][T10599] xt_l2tp: missing protocol rule (udp|l2tpip)
[  181.349041][T10605] xt_CT: No such helper "pptp"
[  181.484853][T10620] netlink: 'syz.3.1564': attribute type 10 has an invalid length.
[  181.513558][T10621] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1563'.
[  181.533564][T10620] wlan1: mtu less than device minimum
[  181.545691][T10620] bond0: (slave wlan1): Error -22 calling dev_set_mtu
[  181.608504][T10624] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1564'.
[  181.628576][T10620] xt_hashlimit: size too large, truncated to 1048576
[  181.653729][T10621] 8021q: adding VLAN 0 to HW filter on device bond8
[  181.750519][T10634] netlink: 'syz.3.1564': attribute type 1 has an invalid length.
[  182.201842][T10656] netlink: 'syz.4.1571': attribute type 1 has an invalid length.
[  182.597108][T10685] ip6tnl1: entered allmulticast mode
[  182.842471][T10695] netlink: 'syz.4.1581': attribute type 33 has an invalid length.
[  183.170191][T10713] netlink: 'syz.0.1586': attribute type 1 has an invalid length.
[  183.205212][T10713] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1586'.
[  183.571165][T10740] Timeout policy `syz0' can only be used by L3 protocol number 0
[  183.645212][T10747] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  184.442621][T10789] sch_tbf: burst 0 is lower than device team_slave_0 mtu (1514) !
[  184.452752][T10791] x_tables: duplicate underflow at hook 3
[  184.459786][T10789] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  184.580240][T10794] netlink: 'syz.3.1608': attribute type 1 has an invalid length.
[  184.618970][T10794] netlink: 'syz.3.1608': attribute type 1 has an invalid length.
[  184.843204][T10807] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1615'.
[  184.917637][T10812] sctp: [Deprecated]: syz.0.1617 (pid 10812) Use of struct sctp_assoc_value in delayed_ack socket option.
[  184.917637][T10812] Use struct sctp_sack_info instead
[  185.028688][T10816] C: renamed from lo
[  185.035165][T10816] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  185.456687][T10839] netlink: 'syz.2.1629': attribute type 39 has an invalid length.
[  185.469634][T10839] veth0_macvtap: left promiscuous mode
[  185.507985][T10841] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1630'.
[  185.519196][T10841] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1630'.
[  185.528996][T10841] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1630'.
[  185.539134][T10841] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1630'.
[  185.549679][T10841] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1630'.
[  185.559142][T10841] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1630'.
[  185.568642][T10841] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1630'.
[  185.578121][T10841] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1630'.
[  185.587692][T10841] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1630'.
[  186.311429][T10872] 8021q: adding VLAN 0 to HW filter on device bond9
[  186.476522][T10882] C speed is unknown, defaulting to 1000
[  186.811330][T10898] vlan3: entered promiscuous mode
[  187.094593][T10908] xt_CT: No such helper "pptp"
[  187.528112][T10938] netlink: 'syz.4.1666': attribute type 2 has an invalid length.
[  187.539240][T10938] netlink: 'syz.4.1666': attribute type 6 has an invalid length.
[  187.592004][T10938] bridge0: port 4(syz_tun) entered blocking state
[  187.614532][T10938] bridge0: port 4(syz_tun) entered disabled state
[  187.634107][T10938] syz_tun: entered allmulticast mode
[  187.648547][T10938] syz_tun: entered promiscuous mode
[  188.179848][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  188.205301][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  188.227647][T10973] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  188.234937][T10971] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  188.602559][T10987] xt_CT: No such helper "pptp"
[  188.784888][T10995] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input5
[  189.272381][T11011] xt_CT: No such helper "pptp"
[  189.579813][ T5862] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  189.596921][ T5862] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  189.605186][ T5862] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  189.613250][ T5862] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  189.621034][ T5862] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  189.641554][ T5862] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  189.751704][T11027] C speed is unknown, defaulting to 1000
[  189.846830][T11045] __nla_validate_parse: 66 callbacks suppressed
[  189.846849][T11045] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1705'.
[  189.932985][T11027] chnl_net:caif_netlink_parms(): no params data found
[  189.991935][T11053] netlink: 'syz.4.1707': attribute type 10 has an invalid length.
[  190.023279][T11053] wlan1: mtu less than device minimum
[  190.032473][T11053] bond0: (slave wlan1): Error -22 calling dev_set_mtu
[  190.045775][T11053] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1707'.
[  190.059695][T11053] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1707'.
[  190.071655][T11053] xt_hashlimit: size too large, truncated to 1048576
[  190.083123][T11027] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.090719][T11027] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.098293][T11027] bridge_slave_0: entered allmulticast mode
[  190.105746][T11027] bridge_slave_0: entered promiscuous mode
[  190.114080][T11027] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.122025][T11027] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.132484][T11027] bridge_slave_1: entered allmulticast mode
[  190.140082][T11027] bridge_slave_1: entered promiscuous mode
[  190.187704][T11057] netlink: 'syz.4.1707': attribute type 1 has an invalid length.
[  190.361098][T11027] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  190.377782][T11027] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  190.429452][T11027] team0: Port device team_slave_0 added
[  190.450900][T11027] team0: Port device team_slave_1 added
[  190.554721][T11062] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1709'.
[  190.628531][T11070] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1711'.
[  190.644810][T11027] batman_adv: batadv0: Adding interface: batadv_slave_0
[  190.652516][T11070] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  190.665668][T11027] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  190.699058][T11027] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  190.794919][T11062] 8021q: adding VLAN 0 to HW filter on device bond7
[  190.828365][T11027] batman_adv: batadv0: Adding interface: batadv_slave_1
[  190.851378][T11027] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  190.878168][T11027] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  190.944211][T11027] hsr_slave_0: entered promiscuous mode
[  190.961023][T11027] hsr_slave_1: entered promiscuous mode
[  190.968352][T11027] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  190.976599][T11027] Cannot create hsr debugfs directory
[  190.982187][T11086] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1716'.
[  191.304977][T11088] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.343627][T11088] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.629001][   T54] Bluetooth: hci2: command 0x0406 tx timeout
[  191.629610][ T5863] Bluetooth: hci1: command 0x0406 tx timeout
[  191.642225][ T5862] Bluetooth: hci3: command 0x0406 tx timeout
[  191.685356][T11088] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.694271][T11088] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.715461][ T5864] Bluetooth: hci0: command tx timeout
[  191.722399][T11088] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.734746][T11088] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.815797][T11088] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  191.825127][T11088] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  191.834412][T11088] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  191.843510][T11088] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  191.873983][T11088] gretap0: left allmulticast mode
[  192.196410][T11107] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1723'.
[  192.357465][T11115] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1726'.
[  192.358828][T11027] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.449340][T11115] 8021q: adding VLAN 0 to HW filter on device bond6
[  192.471184][T11118] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  192.527973][T11027] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.631315][T11027] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.717484][T11027] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.860900][T11134] FAULT_INJECTION: forcing a failure.
[  192.860900][T11134] name failslab, interval 1, probability 0, space 0, times 0
[  192.873935][T11134] CPU: 1 UID: 0 PID: 11134 Comm: syz.3.1733 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  192.873958][T11134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  192.873969][T11134] Call Trace:
[  192.873975][T11134]  <TASK>
[  192.873982][T11134]  dump_stack_lvl+0x241/0x360
[  192.874008][T11134]  ? __pfx_dump_stack_lvl+0x10/0x10
[  192.874026][T11134]  ? __pfx__printk+0x10/0x10
[  192.874045][T11134]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  192.874069][T11134]  ? __pfx___might_resched+0x10/0x10
[  192.874094][T11134]  should_fail_ex+0x40a/0x550
[  192.874120][T11134]  should_failslab+0xac/0x100
[  192.874142][T11134]  kmem_cache_alloc_node_noprof+0x77/0x380
[  192.874163][T11134]  ? __alloc_skb+0x1c3/0x440
[  192.874189][T11134]  __alloc_skb+0x1c3/0x440
[  192.874209][T11134]  ? mark_lock+0x9a/0x360
[  192.874229][T11134]  ? __pfx___alloc_skb+0x10/0x10
[  192.874262][T11134]  __ip6_append_data+0x2e37/0x44a0
[  192.874295][T11134]  ? __pfx_lock_acquire+0x10/0x10
[  192.874318][T11134]  ? __pfx_raw6_getfrag+0x10/0x10
[  192.874358][T11134]  ? __pfx___ip6_append_data+0x10/0x10
[  192.874376][T11134]  ? ip6_setup_cork+0xa6c/0x1140
[  192.874399][T11134]  ip6_append_data+0x264/0x3a0
[  192.874420][T11134]  ? __pfx_raw6_getfrag+0x10/0x10
[  192.874441][T11134]  rawv6_sendmsg+0x18bb/0x2460
[  192.874482][T11134]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  192.874533][T11134]  ? sock_rps_record_flow+0x1a/0x400
[  192.874559][T11134]  ? inet_sendmsg+0x330/0x390
[  192.874584][T11134]  __sock_sendmsg+0x1a6/0x270
[  192.874607][T11134]  ____sys_sendmsg+0x53a/0x860
[  192.874632][T11134]  ? __pfx_____sys_sendmsg+0x10/0x10
[  192.874646][T11134]  ? __fget_files+0x2a/0x410
[  192.874672][T11134]  ? __fget_files+0x2a/0x410
[  192.874702][T11134]  __sys_sendmsg+0x269/0x350
[  192.874723][T11134]  ? __pfx___sys_sendmsg+0x10/0x10
[  192.874759][T11134]  ? do_sys_openat2+0x17a/0x1d0
[  192.874803][T11134]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  192.874827][T11134]  ? do_syscall_64+0x100/0x230
[  192.874851][T11134]  ? do_syscall_64+0xb6/0x230
[  192.874872][T11134]  do_syscall_64+0xf3/0x230
[  192.874889][T11134]  ? clear_bhb_loop+0x35/0x90
[  192.874909][T11134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.874926][T11134] RIP: 0033:0x7fe7c018d169
[  192.874939][T11134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.874950][T11134] RSP: 002b:00007fe7c0f27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  192.874966][T11134] RAX: ffffffffffffffda RBX: 00007fe7c03a5fa0 RCX: 00007fe7c018d169
[  192.874975][T11134] RDX: 0000000000044004 RSI: 00004000000000c0 RDI: 0000000000000004
[  192.874984][T11134] RBP: 00007fe7c0f27090 R08: 0000000000000000 R09: 0000000000000000
[  192.874992][T11134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.875001][T11134] R13: 0000000000000000 R14: 00007fe7c03a5fa0 R15: 00007ffe5e9b52f8
[  192.875021][T11134]  </TASK>
[  193.226224][T11027] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  193.304581][T11027] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  193.317276][T11027] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  193.327292][T11027] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  193.386210][T11027] 8021q: adding VLAN 0 to HW filter on device bond0
[  193.403053][T11027] 8021q: adding VLAN 0 to HW filter on device team0
[  193.437036][ T3427] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.444228][ T3427] bridge0: port 1(bridge_slave_0) entered forwarding state
[  193.492858][ T3427] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.500121][ T3427] bridge0: port 2(bridge_slave_1) entered forwarding state
[  193.701457][T11027] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  193.742907][T11027] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  193.788274][ T5864] Bluetooth: hci0: command tx timeout
[  194.075112][T11027] 8021q: adding VLAN 0 to HW filter on device batadv0
[  194.177161][T11175] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1741'.
[  194.186244][T11027] veth0_vlan: entered promiscuous mode
[  194.211370][T11027] veth1_vlan: entered promiscuous mode
[  194.259713][T11175] 8021q: adding VLAN 0 to HW filter on device bond10
[  194.307412][T11182] Bluetooth: MGMT ver 1.23
[  194.327048][T11177] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  194.338219][T11027] veth0_macvtap: entered promiscuous mode
[  194.373621][T11027] veth1_macvtap: entered promiscuous mode
[  194.441614][T11027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.472831][T11027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.499136][T11027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.528769][T11027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.546674][T11027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.564415][T11027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.586134][T11027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.614669][T11027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.640655][T11027] batman_adv: batadv0: Interface activated: batadv_slave_0
[  194.661654][T11189] C: renamed from lo (while UP)
[  194.672476][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  194.694029][T11189] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  194.733719][T11027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  194.761194][T11027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.782612][T11027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  194.806681][T11027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.816934][T11027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  194.828436][T11027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.840154][T11027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  194.851069][T11027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.862654][T11209] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1750'.
[  194.863368][T11027] batman_adv: batadv0: Interface activated: batadv_slave_1
[  194.906322][T11027] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  194.928060][T11027] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  194.948798][T11027] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  194.973626][T11027] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  195.001615][T11212] vlan4: entered promiscuous mode
[  195.147278][ T3577] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  195.172665][ T3577] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  195.212991][ T3427] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  195.222401][T11218] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1755'.
[  195.252310][ T3427] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  195.289022][T11218] 8021q: adding VLAN 0 to HW filter on device bond6
[  195.454391][T11230] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1758'.
[  195.729151][T11243] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1762'.
[  196.352244][T11251] FAULT_INJECTION: forcing a failure.
[  196.352244][T11251] name failslab, interval 1, probability 0, space 0, times 0
[  196.365448][T11251] CPU: 1 UID: 0 PID: 11251 Comm: syz.3.1764 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  196.365463][T11251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  196.365470][T11251] Call Trace:
[  196.365473][T11251]  <TASK>
[  196.365478][T11251]  dump_stack_lvl+0x241/0x360
[  196.365494][T11251]  ? __pfx_dump_stack_lvl+0x10/0x10
[  196.365505][T11251]  ? __pfx__printk+0x10/0x10
[  196.365515][T11251]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  196.365532][T11251]  ? __pfx___might_resched+0x10/0x10
[  196.365547][T11251]  should_fail_ex+0x40a/0x550
[  196.365563][T11251]  should_failslab+0xac/0x100
[  196.365576][T11251]  kmem_cache_alloc_node_noprof+0x77/0x380
[  196.365589][T11251]  ? __alloc_skb+0x1c3/0x440
[  196.365604][T11251]  __alloc_skb+0x1c3/0x440
[  196.365617][T11251]  ? ip_generic_getfrag+0x1d5/0x310
[  196.365632][T11251]  ? __pfx___alloc_skb+0x10/0x10
[  196.365662][T11251]  __ip6_append_data+0x2e37/0x44a0
[  196.365696][T11251]  ? __pfx_raw6_getfrag+0x10/0x10
[  196.365734][T11251]  ? __pfx___ip6_append_data+0x10/0x10
[  196.365752][T11251]  ? ip6_setup_cork+0xa6c/0x1140
[  196.365790][T11251]  ip6_append_data+0x264/0x3a0
[  196.365803][T11251]  ? __pfx_raw6_getfrag+0x10/0x10
[  196.365815][T11251]  rawv6_sendmsg+0x18bb/0x2460
[  196.365836][T11251]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  196.365863][T11251]  ? sock_rps_record_flow+0x1a/0x400
[  196.365877][T11251]  ? inet_sendmsg+0x330/0x390
[  196.365891][T11251]  __sock_sendmsg+0x1a6/0x270
[  196.365905][T11251]  ____sys_sendmsg+0x53a/0x860
[  196.365918][T11251]  ? __pfx_____sys_sendmsg+0x10/0x10
[  196.365926][T11251]  ? __fget_files+0x2a/0x410
[  196.365941][T11251]  ? __fget_files+0x2a/0x410
[  196.365957][T11251]  __sys_sendmsg+0x269/0x350
[  196.365969][T11251]  ? __pfx___sys_sendmsg+0x10/0x10
[  196.365984][T11251]  ? do_sys_openat2+0x17a/0x1d0
[  196.366010][T11251]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  196.366026][T11251]  ? do_syscall_64+0x100/0x230
[  196.366040][T11251]  ? do_syscall_64+0xb6/0x230
[  196.366054][T11251]  do_syscall_64+0xf3/0x230
[  196.366066][T11251]  ? clear_bhb_loop+0x35/0x90
[  196.366081][T11251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.366093][T11251] RIP: 0033:0x7fe7c018d169
[  196.366103][T11251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.366111][T11251] RSP: 002b:00007fe7c0f27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  196.366122][T11251] RAX: ffffffffffffffda RBX: 00007fe7c03a5fa0 RCX: 00007fe7c018d169
[  196.366130][T11251] RDX: 0000000000044004 RSI: 00004000000000c0 RDI: 0000000000000004
[  196.366136][T11251] RBP: 00007fe7c0f27090 R08: 0000000000000000 R09: 0000000000000000
[  196.366142][T11251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.366147][T11251] R13: 0000000000000000 R14: 00007fe7c03a5fa0 R15: 00007ffe5e9b52f8
[  196.366162][T11251]  </TASK>
[  196.676224][ T5864] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  196.705474][T11223] ==================================================================
[  196.713591][T11223] BUG: KASAN: slab-use-after-free in skb_queue_purge_reason+0xb9/0x500
[  196.721858][T11223] Read of size 8 at addr ffff88805d31d058 by task syz.4.1756/11223
[  196.729757][T11223] 
[  196.732076][T11223] CPU: 0 UID: 0 PID: 11223 Comm: syz.4.1756 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  196.732094][T11223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  196.732104][T11223] Call Trace:
[  196.732111][T11223]  <TASK>
[  196.732119][T11223]  dump_stack_lvl+0x241/0x360
[  196.732140][T11223]  ? __pfx_dump_stack_lvl+0x10/0x10
[  196.732155][T11223]  ? __pfx__printk+0x10/0x10
[  196.732169][T11223]  ? _printk+0xd5/0x120
[  196.732182][T11223]  ? __virt_addr_valid+0x183/0x530
[  196.732195][T11223]  ? __virt_addr_valid+0x183/0x530
[  196.732209][T11223]  print_report+0x16e/0x5b0
[  196.732226][T11223]  ? __virt_addr_valid+0x183/0x530
[  196.732238][T11223]  ? __virt_addr_valid+0x183/0x530
[  196.732249][T11223]  ? __virt_addr_valid+0x45f/0x530
[  196.732261][T11223]  ? __phys_addr+0xba/0x170
[  196.732273][T11223]  ? skb_queue_purge_reason+0xb9/0x500
[  196.732290][T11223]  kasan_report+0x143/0x180
[  196.732306][T11223]  ? skb_queue_purge_reason+0xb9/0x500
[  196.732325][T11223]  skb_queue_purge_reason+0xb9/0x500
[  196.732343][T11223]  ? __mutex_unlock_slowpath+0x227/0x800
[  196.732363][T11223]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[  196.732383][T11223]  ? drain_workqueue+0x2d3/0x3a0
[  196.732401][T11223]  ? hci_conn_hash_flush+0x1da/0x240
[  196.732421][T11223]  vhci_flush+0x44/0x50
[  196.732437][T11223]  ? __pfx_vhci_flush+0x10/0x10
[  196.732453][T11223]  hci_dev_reset+0x42a/0x5d0
[  196.732473][T11223]  sock_do_ioctl+0x158/0x460
[  196.732497][T11223]  ? __pfx_sock_do_ioctl+0x10/0x10
[  196.732518][T11223]  sock_ioctl+0x626/0x8e0
[  196.732534][T11223]  ? __pfx_sock_ioctl+0x10/0x10
[  196.732549][T11223]  ? __fget_files+0x2a/0x410
[  196.732568][T11223]  ? __fget_files+0x2a/0x410
[  196.732587][T11223]  ? __pfx_sock_ioctl+0x10/0x10
[  196.732602][T11223]  __se_sys_ioctl+0xf5/0x170
[  196.732617][T11223]  do_syscall_64+0xf3/0x230
[  196.732635][T11223]  ? clear_bhb_loop+0x35/0x90
[  196.732654][T11223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.732672][T11223] RIP: 0033:0x7f55b2d8d169
[  196.732684][T11223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.732696][T11223] RSP: 002b:00007f55b3bf5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  196.732711][T11223] RAX: ffffffffffffffda RBX: 00007f55b2fa5fa0 RCX: 00007f55b2d8d169
[  196.732722][T11223] RDX: 0000000000000000 RSI: 00000000400448cb RDI: 0000000000000005
[  196.732730][T11223] RBP: 00007f55b2e0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  196.732739][T11223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  196.732748][T11223] R13: 0000000000000000 R14: 00007f55b2fa5fa0 R15: 00007ffeddbe41e8
[  196.732763][T11223]  </TASK>
[  196.732768][T11223] 
[  196.998342][T11223] Allocated by task 11027:
[  197.002745][T11223]  kasan_save_track+0x3f/0x80
[  197.007424][T11223]  __kasan_kmalloc+0x98/0xb0
[  197.012007][T11223]  __kmalloc_cache_noprof+0x243/0x390
[  197.017371][T11223]  vhci_open+0x57/0x360
[  197.021520][T11223]  misc_open+0x2cc/0x340
[  197.025754][T11223]  chrdev_open+0x521/0x600
[  197.030170][T11223]  do_dentry_open+0xdec/0x1960
[  197.034923][T11223]  vfs_open+0x3b/0x370
[  197.038985][T11223]  path_openat+0x2c81/0x3590
[  197.043566][T11223]  do_filp_open+0x27f/0x4e0
[  197.048060][T11223]  do_sys_openat2+0x13e/0x1d0
[  197.052750][T11223]  __x64_sys_openat+0x247/0x2a0
[  197.057592][T11223]  do_syscall_64+0xf3/0x230
[  197.062086][T11223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.067975][T11223] 
[  197.070287][T11223] Freed by task 11027:
[  197.074342][T11223]  kasan_save_track+0x3f/0x80
[  197.079013][T11223]  kasan_save_free_info+0x40/0x50
[  197.084032][T11223]  __kasan_slab_free+0x59/0x70
[  197.088785][T11223]  kfree+0x196/0x430
[  197.092669][T11223]  vhci_release+0xbc/0xd0
[  197.096991][T11223]  __fput+0x3e9/0x9f0
[  197.100968][T11223]  task_work_run+0x24f/0x310
[  197.105548][T11223]  do_exit+0xa2a/0x28e0
[  197.109697][T11223]  do_group_exit+0x207/0x2c0
[  197.114280][T11223]  __x64_sys_exit_group+0x3f/0x40
[  197.119301][T11223]  x64_sys_call+0x26a8/0x26b0
[  197.123972][T11223]  do_syscall_64+0xf3/0x230
[  197.128475][T11223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.134363][T11223] 
[  197.136676][T11223] The buggy address belongs to the object at ffff88805d31d000
[  197.136676][T11223]  which belongs to the cache kmalloc-1k of size 1024
[  197.150723][T11223] The buggy address is located 88 bytes inside of
[  197.150723][T11223]  freed 1024-byte region [ffff88805d31d000, ffff88805d31d400)
[  197.164510][T11223] 
[  197.166821][T11223] The buggy address belongs to the physical page:
[  197.173219][T11223] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5d318
[  197.181979][T11223] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  197.190556][T11223] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  197.198119][T11223] page_type: f5(slab)
[  197.202109][T11223] raw: 00fff00000000040 ffff88801b041dc0 dead000000000100 dead000000000122
[  197.210691][T11223] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  197.219290][T11223] head: 00fff00000000040 ffff88801b041dc0 dead000000000100 dead000000000122
[  197.227952][T11223] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  197.236611][T11223] head: 00fff00000000003 ffffea000174c601 ffffffffffffffff 0000000000000000
[  197.245272][T11223] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  197.253929][T11223] page dumped because: kasan: bad access detected
[  197.260337][T11223] page_owner tracks the page as allocated
[  197.266040][T11223] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6031, tgid 6031 (kworker/u8:11), ts 85082591496, free_ts 85029846344
[  197.285400][T11223]  post_alloc_hook+0x1f4/0x240
[  197.290162][T11223]  get_page_from_freelist+0x365c/0x37a0
[  197.295696][T11223]  __alloc_frozen_pages_noprof+0x292/0x710
[  197.301490][T11223]  alloc_pages_mpol+0x311/0x660
[  197.306331][T11223]  allocate_slab+0x8f/0x3a0
[  197.310826][T11223]  ___slab_alloc+0xc27/0x14a0
[  197.315509][T11223]  __slab_alloc+0x58/0xa0
[  197.319842][T11223]  __kmalloc_noprof+0x2e6/0x4c0
[  197.324686][T11223]  ieee802_11_parse_elems_full+0x166/0x2ef0
[  197.330574][T11223]  ieee80211_inform_bss+0x15f/0x10d0
[  197.335848][T11223]  cfg80211_inform_single_bss_data+0xf63/0x1ee0
[  197.342077][T11223]  cfg80211_inform_bss_data+0x3c3/0x5820
[  197.347700][T11223]  cfg80211_inform_bss_frame_data+0x3bb/0x720
[  197.353755][T11223]  ieee80211_bss_info_update+0x8a7/0xbc0
[  197.359382][T11223]  ieee80211_ibss_rx_queued_mgmt+0x1993/0x2e00
[  197.365528][T11223]  ieee80211_iface_work+0x8dc/0xf90
[  197.370718][T11223] page last free pid 5210 tgid 5210 stack trace:
[  197.377056][T11223]  free_frozen_pages+0xe0d/0x10e0
[  197.382076][T11223]  __put_partials+0x160/0x1c0
[  197.386745][T11223]  put_cpu_partial+0x17c/0x250
[  197.391494][T11223]  __slab_free+0x290/0x380
[  197.395900][T11223]  qlist_free_all+0x9a/0x140
[  197.400482][T11223]  kasan_quarantine_reduce+0x14f/0x170
[  197.405929][T11223]  __kasan_slab_alloc+0x23/0x80
[  197.410768][T11223]  kmem_cache_alloc_noprof+0x1d9/0x380
[  197.416222][T11223]  getname_flags+0xb7/0x540
[  197.420720][T11223]  do_readlinkat+0xd8/0x3a0
[  197.425214][T11223]  __x64_sys_readlink+0x7f/0x90
[  197.430061][T11223]  do_syscall_64+0xf3/0x230
[  197.434556][T11223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.440476][T11223] 
[  197.442788][T11223] Memory state around the buggy address:
[  197.448400][T11223]  ffff88805d31cf00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  197.456449][T11223]  ffff88805d31cf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  197.464501][T11223] >ffff88805d31d000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  197.472639][T11223]                                                     ^
[  197.479560][T11223]  ffff88805d31d080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  197.487611][T11223]  ffff88805d31d100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  197.495669][T11223] ==================================================================
[  197.519199][T11223] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  197.526454][T11223] CPU: 1 UID: 0 PID: 11223 Comm: syz.4.1756 Not tainted 6.14.0-rc5-syzkaller-00129-g505ead7ab77f #0
[  197.537233][T11223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  197.547315][T11223] Call Trace:
[  197.550590][T11223]  <TASK>
[  197.553536][T11223]  dump_stack_lvl+0x241/0x360
[  197.558230][T11223]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.563444][T11223]  ? __pfx__printk+0x10/0x10
[  197.568118][T11223]  ? preempt_schedule+0xe1/0xf0
[  197.572990][T11223]  ? vscnprintf+0x5d/0x90
[  197.577340][T11223]  panic+0x349/0x880
[  197.581235][T11223]  ? check_panic_on_warn+0x21/0xb0
[  197.586361][T11223]  ? __pfx_panic+0x10/0x10
[  197.590772][T11223]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[  197.596756][T11223]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  197.603075][T11223]  ? print_report+0x519/0x5b0
[  197.607750][T11223]  check_panic_on_warn+0x86/0xb0
[  197.612683][T11223]  ? skb_queue_purge_reason+0xb9/0x500
[  197.618142][T11223]  end_report+0x77/0x160
[  197.622416][T11223]  kasan_report+0x154/0x180
[  197.626935][T11223]  ? skb_queue_purge_reason+0xb9/0x500
[  197.632401][T11223]  skb_queue_purge_reason+0xb9/0x500
[  197.637683][T11223]  ? __mutex_unlock_slowpath+0x227/0x800
[  197.643311][T11223]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[  197.649206][T11223]  ? drain_workqueue+0x2d3/0x3a0
[  197.654141][T11223]  ? hci_conn_hash_flush+0x1da/0x240
[  197.659431][T11223]  vhci_flush+0x44/0x50
[  197.663673][T11223]  ? __pfx_vhci_flush+0x10/0x10
[  197.668521][T11223]  hci_dev_reset+0x42a/0x5d0
[  197.673111][T11223]  sock_do_ioctl+0x158/0x460
[  197.677698][T11223]  ? __pfx_sock_do_ioctl+0x10/0x10
[  197.682930][T11223]  sock_ioctl+0x626/0x8e0
[  197.687307][T11223]  ? __pfx_sock_ioctl+0x10/0x10
[  197.692169][T11223]  ? __fget_files+0x2a/0x410
[  197.696772][T11223]  ? __fget_files+0x2a/0x410
[  197.701365][T11223]  ? __pfx_sock_ioctl+0x10/0x10
[  197.706211][T11223]  __se_sys_ioctl+0xf5/0x170
[  197.710816][T11223]  do_syscall_64+0xf3/0x230
[  197.715340][T11223]  ? clear_bhb_loop+0x35/0x90
[  197.720033][T11223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.725946][T11223] RIP: 0033:0x7f55b2d8d169
[  197.730374][T11223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.750092][T11223] RSP: 002b:00007f55b3bf5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  197.758525][T11223] RAX: ffffffffffffffda RBX: 00007f55b2fa5fa0 RCX: 00007f55b2d8d169
[  197.766492][T11223] RDX: 0000000000000000 RSI: 00000000400448cb RDI: 0000000000000005
[  197.774453][T11223] RBP: 00007f55b2e0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  197.782415][T11223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  197.790384][T11223] R13: 0000000000000000 R14: 00007f55b2fa5fa0 R15: 00007ffeddbe41e8
[  197.798446][T11223]  </TASK>
[  197.801707][T11223] Kernel Offset: disabled
[  197.806036][T11223] Rebooting in 86400 seconds..