last executing test programs:

4.722961602s ago: executing program 2 (id=4679):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000080)=0x8, 0x4)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x3, @private2, 0x8d4}, 0x1c)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.stat\x00', 0x275a, 0x0)
write$cgroup_pid(r3, 0x0, 0x0)
unshare(0x2000400)
writev(r3, 0x0, 0x0)
write$binfmt_misc(r3, 0x0, 0xc2)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r4, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, r4, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="84000000", @ANYRES16=r6, @ANYBLOB="01000000000000000000420000000e0001006e657464653673696d0000000f0002"], 0x84}}, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="10000000000000000000130000000400a09887500ccb74e6cf5713000a000600ffffffffffff000006001200000000000600b500c90200000400"], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$sock_inet6_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000040))
syz_emit_ethernet(0x88, &(0x7f0000000000)=ANY=[@ANYRESDEC=r4], 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)

3.636886909s ago: executing program 2 (id=4690):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x20, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000001000000000000000000000079120f000000030095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

3.475699747s ago: executing program 2 (id=4693):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x3c1, 0x3, 0x510, 0x0, 0x18c, 0x203, 0x328, 0x19030000, 0x440, 0x2e0, 0x2e0, 0x440, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x328, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{0x0, 0x0, 0x0, 0x16000000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@NFQUEUE3={0x28}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5a5)

3.286444234s ago: executing program 2 (id=4695):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, 0x0, 0x0}, 0x90)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="9402000021000100fcffffff00000000ac1414aae5fffff8b49ed9825133a900fc0100000000000000000000000000000000add500200000000000801aeaaec1", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000070000400706362632874776f666973682900000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000040010000dc06216ef2c68e9f6da05d886dbc3273ef99796b36698e2bd5179c3eea5474fc78c9720bfc4f90a708001f0001000000cc0111"], 0x294}}, 0x0)

3.111286218s ago: executing program 2 (id=4699):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0xffffffff, '\x00', 0x0, 0x0, 0x0, 0x2}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="8b0fab30bffdc0b6000000000008080018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca90000000000003509010000000000950000000000000075090200020000007b9a00fe00000000b509000000010000c39a04fee1000000bf8700000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018290000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9800000000000056080000000000008500000007000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_emit_ethernet(0x5a, &(0x7f0000000340)={@local, @random='\x00 \x00\x00\x00\b', @void, {@ipv4={0x800, @tcp={{0xe, 0x4, 0x0, 0x0, 0x4c, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ssrr={0x89, 0xb, 0x6b, [@multicast1, @local]}, @timestamp={0x44, 0x10, 0x5, 0x3, 0x0, [0x0, 0x0, 0x0]}, @cipso={0x86, 0x6}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff"], 0x0}, 0x90)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="4800000010003b1500000000898dc489e6417c698e556ffd82000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b00010065727370616e0000180002800500160002000000050017000000000004001200"], 0x48}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r4, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000003c0)={0x18, 0x6a, 0x1, 0x0, 0x0, "", [@typed={0x5, 0x0, 0x0, 0x0, @binary="c9"}]}, 0x18}], 0x1}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r5}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='illinois\x00', 0x9)
sendmmsg$inet(r0, &(0x7f0000000500)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000640)="0036d551863e1902129da79f5986e05288f50e5398660c1a29b0f45c0cc36902e0251c8d34197b357b32b161f9ad72d55a0eab976aae24ed805271b43f0ce2fea5e764494873e0d82a172b3bb54f59b458fd35039c7d81e9ab07f2fb4dad61bd500a119b54c74a12e4569e47b69a95f92c6380af2bd003fa56f06a23bbd1c76d7756bf4fcaff0c23374ec7c4aadbb8b985f14893a91d750e168350685e0f4f079d2d8e79be174ef9355b70719c712c5d15d2e7505a8696b50738ec", 0xbb}, {0x0}], 0x2}}], 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$sock_SIOCBRDELBR(r6, 0x89a1, &(0x7f00000003c0)='pim6reg0\x00')
sendmsg$inet(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="14fafa37bf25f04bda99eefbbdd8d76b8136ee6cfdee25bdb2d1873ce347c730020000000000006fa1bf9f1d", 0x2c}, {&(0x7f0000000300)="997a7e88616a566ed2d8da3839e9beaee15eb04f2e14ce0a50b05f956e43a51023566f7ba4383d0cbd427781ebc6bd5aa486dc6e7288fa16e3d341a77372159a37368b", 0x43}], 0x2}, 0x0)
socket(0x0, 0x0, 0x0)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r7}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x11, &(0x7f0000000b80)=ANY=[@ANYBLOB, @ANYRES32=r7, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000080)='GPL\x00'}, 0x90)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000005c0)={r7, 0x0, &(0x7f00000004c0)=""/38}, 0x20)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r5, &(0x7f00000009c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000940)={&(0x7f0000000a00)={0x14, 0x1, 0x4, 0x5, 0x0, 0x0, {0xa, 0x0, 0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x40090)

2.76694964s ago: executing program 2 (id=4703):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_freezer_state(r0, &(0x7f00000000c0), 0x2, 0x0) (async)
r2 = openat$cgroup_procs(r0, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000040), 0x12) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) (async)
write$cgroup_freezer_state(r1, &(0x7f0000000400)='FROZEN\x00', 0x7) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x80) (async)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8922, &(0x7f0000002280)={'veth1_macvtap\x00', @random="2b1c00004ec6"}) (async)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) (async)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f00000004c0), 0xffffffffffffffff) (async)
sendmsg$IPVS_CMD_GET_INFO(r6, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000140)=ANY=[@ANYRES32=r1, @ANYBLOB="80fcf95b39efabeeec341531", @ANYRESDEC=r5], 0x14}}, 0x0) (async)
r7 = accept4(r5, 0x0, 0x0, 0x0)
getsockopt$IPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x43, 0x0, 0x0) (async)
socket$inet_smc(0x2b, 0x1, 0x0) (async)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000300)="ad000200"/16, 0x10) (async)
sendmsg$can_raw(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x40000) (async)
read$alg(r7, &(0x7f0000000080)=""/16, 0x10) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0) (async)
recvmmsg(r7, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x1, 0x8, 0x9e4, 0x4000, r4, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2, 0xd}, 0x48)

2.265907606s ago: executing program 0 (id=4712):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000480), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000500)={'wpan0\x00', <r1=>0x0})
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="010000000000000000000b00000008000300", @ANYRES32=r1, @ANYBLOB], 0x1c}}, 0x0)

2.058840874s ago: executing program 0 (id=4717):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in6=@dev={0xfe, 0x80, '\x00', 0x22}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x0, 0x0, 0x0, 0xee01}, {}, {0x0, 0x0, 0x0, 0x400000000000000}, 0x4}}, 0xb8}}, 0x2000080)

1.918862564s ago: executing program 0 (id=4719):
r0 = socket(0xa, 0x3, 0x3a)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0xbe}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', <r2=>0x0})
setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000000)={0x4, 0x0, 0x0, r2}, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140032581000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001aa53798badab6567867f5e6cb226987f39329b70d21c4e4d15905a67faf5c4f8c98149720760780f6effb62dae2f271e1bafd70886e90e10750b70a3573fcd7d296d557d165c0640276a96bb420621919d1a16d2c09419c5b2674584c5f4beb89d3815ea7fa46693"], 0x7c}, 0x1, 0x0, 0x0, 0x2008000}, 0x44815)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_MASQ_REG_PROTO_MAX={0x8, 0x3, 0x1, 0x0, 0x11}, @NFTA_MASQ_REG_PROTO_MIN={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000640)={'gre0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x40, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GENEVE_LABEL={0x8}, @IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x0)
setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000080)={0x0, 0x1}, 0xc)
r6 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_route(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv4_delrule={0x30, 0x21, 0x501, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x5}, [@FRA_DST={0x8}, @FRA_TUN_ID={0xc}]}, 0x30}}, 0x0)
r7 = socket(0x1, 0x3, 0x9)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r7, &(0x7f0000000600)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000380)={&(0x7f0000000540)={0x98, 0x0, 0x0, 0x70bd2a, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x4}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x2}, @ETHTOOL_A_LINKMODES_HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x2000014}, 0x8881)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r7, 0x89f1, &(0x7f0000000400)={'syztnl0\x00', &(0x7f0000000680)={'syztnl2\x00', r5, 0x5227f9923051aa9b, 0xd1, 0x8, 0xff, 0x60, @rand_addr=' \x01\x00', @rand_addr=' \x01\x00', 0x8000, 0x8000, 0x42b, 0x81}})
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x0, 0x0, @mcast2, 0x5}, {0xa, 0x4e20, 0x0, @mcast1}, 0x0, {[0x691, 0x1f, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x3]}}, 0x5c)

1.686998242s ago: executing program 1 (id=4723):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BATADV_ALGO_NAME={0xc, 0x1, 'BATMAN_V'}]}}}]}, 0x40}}, 0x0)
write$binfmt_aout(r0, &(0x7f0000000000)={{0x107, 0x0, 0x5, 0x293, 0x182, 0x0, 0x12a, 0x3}, "3544c272b945bbecba52b0aaae1170ab9abae08aed5dff0828a20422a125bb0d509276ac2433541d1af88c0c0fd70cda0da4aa7189f4698900c72b97c028fad5b2c9613b3c16ea59b1b43660c9ad4caaad0a193801c4f45f9c091a6015a235f63886cd53bd3407775520212f54cb49fa5aa9dba855761bc54fd4f1dad7da70ae75ea6f43a02372790fac2cde471ae657f2fdb8c8885d", ['\x00', '\x00', '\x00']}, 0x3b6)
r1 = accept4$llc(0xffffffffffffffff, 0x0, &(0x7f00000003c0), 0x0)
sendto$llc(r1, &(0x7f0000000400)="f3e94d918e03cd33aa9666bbccb3b2f017bca0beed9d06710b0968fd3d9dcab0a943fee79a8c4f5d2e87dcc53877c706934a16d10e2144f7df83775a0266ca541f4aa3d62ccebdbe961852d0656d586b9e4c99f052bf83bf1b2564c13110a70656ba02833f918deea753f740f86c7c6be6477934edd6a52555f1733ebea60c172b87d9e327c1ca57c535576be44b30fa05f86f98ea23953c0a2e97ba7b5d0a68fe0834458e2e26e36c18191109c6e84517263593b2f8b4c83cb0461aa8f864df7ce84b5cec941339695b5bd79d583ba71562cb40442be3e33ec5d4", 0xdb, 0x20000811, &(0x7f0000000500)={0x1a, 0x108, 0x1, 0x7, 0xe, 0xf0, @remote}, 0x10)

1.684434852s ago: executing program 0 (id=4724):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000080)=0x8, 0x4)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x3, @private2, 0x8d4}, 0x1c)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.stat\x00', 0x275a, 0x0)
write$cgroup_pid(r3, 0x0, 0x0)
unshare(0x2000400)
writev(r3, 0x0, 0x0)
write$binfmt_misc(r3, 0x0, 0xc2)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r4, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, r4, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="84000000", @ANYRES16=r6, @ANYBLOB="01000000000000000000420000000e0001006e657464653673696d0000000f0002"], 0x84}}, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="10000000000000000000130000000400a09887500ccb74e6cf5713000a000600ffffffffffff000006001200000000000600b500c90200000400"], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$sock_inet6_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000040))
syz_emit_ethernet(0x88, &(0x7f0000000000)=ANY=[@ANYRESDEC=r4], 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)

1.644604343s ago: executing program 4 (id=4726):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0) (async)
socket$packet(0x11, 0x0, 0x300) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003580)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r2}, 0x10) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async)
recvmsg$unix(r3, 0x0, 0x0) (async)
sendmsg$inet(r4, &(0x7f00000009c0)={0x0, 0x0, 0x0}, 0x0) (async)
r5 = socket$nl_route(0x10, 0x3, 0x0) (async)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x38, 0x2, {{}, [@TCA_NETEM_REORDER={0xc}, @TCA_NETEM_CORR={0x10}]}}}]}, 0x68}}, 0x0) (async)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r8, 0x7, 0xe80, 0x0, &(0x7f0000000040)="24c2afc3a2e0527bea33d6541650", 0x0, 0xffb0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$NL80211_CMD_GET_MPP(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)={0x1c, r1, 0x301, 0x0, 0x0, {{0x11}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (async)
syz_genetlink_get_family_id$fou(&(0x7f0000000640), r0)

1.556606093s ago: executing program 1 (id=4727):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000a00)=ANY=[@ANYBLOB="bc0100001900010000000000000000002001000000002000000000000000000000000000000000000000ffffe00000010000000000000000020020"], 0x1bc}}, 0x0)

1.486279965s ago: executing program 4 (id=4729):
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
listen(r0, 0x400000001ffffffd)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000000340)=[{{&(0x7f0000000800)={0xa, 0x0, 0x0, @loopback}, 0x1c, &(0x7f0000000dc0)}}, {{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000e80)="20a5be99e973699bac0e79b3e7f6f9c70665e53a0453f27c363c8c8a8805a6e88c4c71b9cb674c9d21b6c875f715db49f5f833dedb237b92f98d5ed56f854fbf424d42b05f123ebe55c0e69697da14ba90d6a1fc2757303369c023dea94ea06b6beaee45832a1757867ddb0150a5054cda44f41def5b5e32353bd012826f8f697f4c083b03caa19ff6711c1184a4c4f487526bc671d744b843056506014a17d8b1fb3a85ca16e930df3bb7cc1ff5", 0xae}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[@dstopts_2292={{0x18}}], 0x18}}], 0x3, 0xb0ff)

1.386481315s ago: executing program 4 (id=4731):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000240)=[{&(0x7f0000000140)='k', 0x1}], 0x1, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = syz_genetlink_get_family_id$smc(&(0x7f0000000180), r1)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x28, r3, 0x400, 0x70bd2c, 0x25dfdbfc, {}, [@SMC_PNETID_IBPORT={0x44ce8888fd5d6b41, 0x4, 0x2}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c1}, 0x0)
bind$alg(r2, &(0x7f00000000c0)={0x26, 'hash\x00', 0x0, 0x0, 'streebog256-generic\x00'}, 0x58)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
connect$inet6(r4, &(0x7f0000000300)={0xa, 0x0, 0x0, @private1}, 0x1c)
sendto$inet6(r4, &(0x7f0000000080)="ce", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f0000000180), 0xe)
r5 = accept4(r2, 0x0, 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10012, r6, 0x0)
splice(r0, 0x0, r5, 0x0, 0x4000001e8640, 0x0)

1.283049682s ago: executing program 1 (id=4732):
socket(0x0, 0x0, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x2, 0x8001}, 0x48)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f00000002c0)=0x100000001, 0x4)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x101, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss, @window, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendmmsg$inet(r0, &(0x7f0000000500)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001100)="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", 0x7ff8}], 0x1}}], 0x1, 0xe803)

1.094171231s ago: executing program 1 (id=4735):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000180)=0x3, 0x4)
syz_emit_ethernet(0x2a, &(0x7f0000000580)={@local, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x8}}}}}, 0x0)

972.179142ms ago: executing program 1 (id=4737):
r0 = socket(0x2b, 0x1, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x15, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f00000001c0)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x2, 0x8001}, 0x48)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000002c0)=0x100000001, 0x4)
setsockopt$inet_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x101, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss, @window, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendmmsg$inet(r3, &(0x7f0000000500)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001100)="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", 0x7ff8}], 0x1}}], 0x1, 0xe803)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000600)='kvm_mmio\x00', r2}, 0x10)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000100)=[{0x30, 0x0, 0x0, 0xfffff034}, {0x80000006}]}, 0x10)
bpf$ENABLE_STATS(0x20, &(0x7f0000000200), 0x4)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000080)="c58dcabcd580d44ca8cecc38d5565814068dfb1812409f7fc65d3b93d303", 0x1e, 0x40044, &(0x7f0000000180)={0xa, 0x4e23, 0x5, @mcast1, 0xff}, 0x1c)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'erspan0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f00000002c0)="05040500d3fc030000004788031c09102c28", 0x12, 0x805, &(0x7f0000000140)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @broadcast}, 0x14)
socket$inet6(0xa, 0x6, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000300)={@map, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)=@migrate={0x27c, 0x21, 0x1, 0x0, 0x0, {{@in, @in=@remote}}, [@migrate={0x1cc, 0x11, [{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in=@local, @in=@local, @in=@broadcast}, {@in=@empty, @in6=@mcast1, @in=@multicast2, @in6=@empty}, {@in=@empty, @in=@multicast1, @in6=@remote, @in6=@mcast2}, {@in=@local, @in6=@local, @in6=@empty, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {@in=@broadcast, @in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in=@private, @in=@dev}, {@in6=@mcast2, @in=@broadcast, @in6=@private2, @in6=@remote}]}, @policy_type={0xa}, @replay_esn_val={0x40, 0x17, {0x9, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, @proto={0x5}, @mark={0xc}]}, 0x27c}}, 0x0)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000080)={0x0, 0x2, 0x2, 0x1, 0x0, [@mcast2]}, 0x18)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)

868.605267ms ago: executing program 0 (id=4739):
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xbf22}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @notrack={{0xc}, @void}}, {0xc, 0x1, 0x0, 0x1, @log={{0x8}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = socket(0x2c, 0x3, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r1, &(0x7f0000000140), &(0x7f0000000080)=@udp6=r5}, 0x20)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYRESDEC], 0x100000530)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r7 = openat$cgroup_devices(r6, &(0x7f0000000080)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r7, &(0x7f00000000c0)=ANY=[@ANYBLOB='b 0:'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r1, &(0x7f0000000140), &(0x7f0000000080)=@udp=r5}, 0x20)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=@ipv4_deladdr={0x28, 0x15, 0x1, 0x0, 0x0, {0x2, 0x18}, [@IFA_RT_PRIORITY={0x8, 0x9, 0x1000}, @IFA_ADDRESS={0x8, 0x1, @loopback}]}, 0x28}}, 0x0)

718.869425ms ago: executing program 3 (id=4740):
r0 = socket(0x11, 0x3, 0x0)
clock_gettime(0xffffffe4, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r2=>0x0})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000001180)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000040)=ANY=[@ANYBLOB='-', @ANYRESOCT, @ANYRESDEC], 0x27)
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev}, 0x67)
r5 = socket(0x200000100000011, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
syz_emit_ethernet(0x66, &(0x7f00000003c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd60fca33f00306700fe800000000000000000000000000000fe8000000000000000000000000000aa"], 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000003c0)=@getchain={0x2c, 0x66, 0x200, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xfff3, 0x3}, {0x2, 0xa94d2a49543e1efd}, {0xffff, 0xfff1}}, [{0x8, 0xb, 0x7}]}, 0x2c}}, 0x0)
getsockname$packet(r7, &(0x7f0000000140)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000001000390426bd700000e5ffffff000000", @ANYRES32=r8, @ANYBLOB="03000000000000001800128008000100736974000c00028008000300ac1414"], 0x38}}, 0x0)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000100)=0x800b, 0x4)
sendmsg$netlink(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="09040000f63e"], 0x3f00}], 0x1}, 0x0)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0x4, 0x4)
r9 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r9, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r9, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10)
setsockopt$ALG_SET_KEY(r9, 0x117, 0x1, &(0x7f00000001c0)="b08f1689463966a2419b814b45325329", 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000080))
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000080)=ANY=[], 0xdd12}], 0x1}, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)

718.342754ms ago: executing program 0 (id=4741):
r0 = socket$inet(0xa, 0x801, 0x0)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x10, &(0x7f0000000100), 0x4)
r1 = accept4(r0, 0x0, 0x0, 0x1000)
r2 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
r3 = socket$netlink(0x10, 0x3, 0x4)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c)
writev(r3, &(0x7f0000000180)=[{&(0x7f0000000080)="580000001400add427323b472545b4560a117fffffff81000e220e227f000001925aa80013007b00090080007f000001e809000000ff0000f03ac710f2070000ffffffffffffffffffe7ee000000deff0000000200000000", 0x58}], 0x1)
r4 = socket$kcm(0x2, 0xa, 0x2)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000003580)={0x2, 0x0, @dev}, 0x10)
bind$inet(r5, &(0x7f0000000040)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r5, &(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10)
sendto(r5, &(0x7f00000001c0)="25ff8571999e1f778f0350a97e44f1b970763fa07dc8b9fe0b9017ffc8854e8baaf1413c31b7dba484267bac5aae083558afab07716cf0ad72832b1320411e32c81cd67fabb0652f0b850dfaf75004cfc278cdee43f3810d6f2d643c16f679b7697cb0", 0xfffffffffffffee9, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x60, &(0x7f0000000380)={'filter\x00', 0x0, [0x8, 0x40, 0x7ff]}, &(0x7f0000000240)=0x44)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYRES64=r5, @ANYRES16=r3, @ANYBLOB="0100000000000000000007001000140001800500020001000000080006001a00000059846bdac9c6ebfa7ac7cb7e9a7244b1f4ef93ff65219f358862bcc45b3bd757856fe620105e17ce1a41f908000000f66096f7be0452ca1494a16d4009535c3a8b8d9cd5640d2c6b"], 0x28}}, 0x4000811)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x24, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000040)={'team0\x00', <r7=>0x0})
setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0x0, @vifc_lcl_ifindex=r7, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
r8 = socket$inet(0x2, 0x2000000080002, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r8, 0x0, 0x80, 0x0, 0x2b0)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="9800000000000000000000000000000071104300000000009500d745df8a6200000000e22653931e00000000be00"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
connect$inet6(r9, &(0x7f0000000340)={0xa, 0x0, 0x0, @dev, 0x6}, 0x1c)
setsockopt$inet6_tcp_buf(r9, 0x6, 0x1f, &(0x7f0000000540)='[', 0x1)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, 0x0, 0x10)

682.973623ms ago: executing program 3 (id=4742):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000380)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7d}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x102, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

630.716452ms ago: executing program 3 (id=4743):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000}, 0x48)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r4=>0x0})
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@bridge_delneigh={0x34, 0x1c, 0xc07, 0x0, 0x0, {0x7, 0x0, 0x0, r4, 0x141}, [@NDA_FLAGS_EXT={0x8}, @NDA_FDB_EXT_ATTRS={0x4}, @NDA_LLADDR={0xa, 0x2, @random="000200"}]}, 0x34}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xd, &(0x7f0000000100)=ANY=[@ANYBLOB="1802000063f9fffd0000000000000000850000004100000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_KEY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY={0x8, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}]}]}, 0x24}}, 0x0)
r5 = socket$kcm(0x2, 0x0, 0x106)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000000)='inet_sock_set_state\x00', r6}, 0x10)
sendmsg$inet(r5, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x0, @local}, 0xfc, 0x0}, 0x30004001)
r7 = accept$packet(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x14)
getsockname$packet(r7, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14)

383.062045ms ago: executing program 4 (id=4744):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000480), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000500)={'wpan0\x00', <r1=>0x0})
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="010000000000000000000b00000008000300", @ANYRES32=r1, @ANYBLOB], 0x1c}}, 0x0)

313.082058ms ago: executing program 3 (id=4745):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x20, 0x0, 0x0, 0xfffff00c}, {0x6}]}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000006700)=@newtaction={0x3ec4, 0x30, 0x0, 0x0, 0x0, {}, [{0x2e08, 0x1, [@m_ct={0xfc, 0x1b, 0x0, 0x0, {{0x7}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CT_LABELS_MASK={0x14, 0x8, "91d88068fd3279471c8e1e0d844d5ef0"}, @TCA_CT_ACTION={0x6, 0x3, 0x22}, @TCA_CT_NAT_IPV4_MAX={0x8, 0xa, @remote}, @TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @private2={0xfc, 0x2, '\x00', 0x1}}]}, {0x9a, 0x6, "3a33687bf2acd2a392961a7300b63e0d95b03f5de05eb71e43c7fc8006a8a76b7c4ab2970feea626a691f7ef22dd184546cd31c81f0bc28d3f3c0b5c3474da3038220868f16b6fec3a72efd2e15bf194285aac98b2f06ccdd67583a90e55c003fceb5785a2e7e3f8ebde256b7b6624a0da771e27930464a43dc09ed16a62c72cfcb66288defe2403b83835615e5ad3fb89602fcb0da0"}, {0xc}, {0xc, 0x8, {0x1, 0x6}}}}, @m_pedit={0x2d08, 0x0, 0x0, 0x0, {{0xa}, {0x2cb4, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xec8, 0x2, {{{0x1, 0x7, 0x8, 0x6, 0x62be}, 0x2, 0xd1, [{0x0, 0x100, 0x8000, 0x67f, 0x6, 0x5}, {0x1, 0x9, 0x79, 0x80, 0xc, 0x70000000}, {0x5, 0x1, 0x4, 0x0, 0x40, 0x90}, {0x4, 0x7, 0x3, 0x3, 0x3}, {0x22ba, 0x5, 0x4a, 0xdaa8, 0x0, 0xfffffffb}, {0x800, 0x80000001, 0x5, 0x6, 0x2, 0x9}, {0x1e, 0x1000, 0x7, 0x8, 0x1f8, 0x6}]}, [{0x8, 0x3, 0xff, 0x9, 0x4, 0xfffffffd}, {0x7, 0x10, 0xfb, 0x3ff, 0xfffffff7, 0x10000}, {0xfffff818, 0x77ee8c79, 0xf, 0x1, 0x6b, 0x8}, {0x5, 0x4, 0x9, 0x3, 0x1c000000, 0x8000}, {0x3ff, 0x9fd, 0x1ff, 0x2b800000, 0x1, 0x10000}, {0x16b, 0xe6a, 0x4, 0x9, 0x7fffffff, 0x7}, {0x7, 0x7fff, 0x1, 0x207a2591, 0x7f, 0x27a}, {0xfffffff5, 0x2, 0xf6, 0x8, 0x5, 0xd}, {0x1, 0x5, 0x1, 0x81, 0x9, 0x82a}, {0x8, 0x8, 0x2, 0xe, 0x5, 0x3ff}, {0x8204, 0xef6, 0x855, 0xf4cd, 0x8001, 0xe}, {0x10000, 0x8000, 0x800, 0xe, 0x1, 0x7}, {0xfffffffb, 0xfffffffc, 0x6b7, 0x6, 0x8, 0x800}, {0x4, 0xfff, 0x5, 0xa64, 0x8}, {0x4, 0xbef, 0x3, 0x9, 0x2, 0x1}, {0xfffffffc, 0x1, 0x6, 0x6, 0x6, 0x3}, {0x1, 0x2800, 0x0, 0x8, 0x8000, 0x8000}, {0x4, 0xb, 0x40, 0x8000, 0x56, 0x5}, {0x3, 0x9, 0x34ad, 0x9, 0xfff, 0x7bef}, {0xb, 0x3, 0x0, 0x5, 0x1, 0xfffffbff}, {0x6fb, 0x8, 0x4, 0x4, 0x6, 0x9}, {0x663, 0x0, 0x2, 0x401, 0x8, 0x200}, {0x5, 0x2, 0x8001, 0x4, 0x8, 0x4}, {0xd1, 0x3, 0xfff, 0x6, 0x4, 0x2}, {0x8, 0xfff, 0x7, 0x4, 0x23, 0xb}, {0x8001, 0x65b, 0x2, 0x80000000, 0x1, 0x8}, {0x0, 0x0, 0x0, 0x3, 0x3, 0x1}, {0x1, 0x6, 0x200, 0x9, 0x6, 0x6}, {0x3a7, 0x0, 0xfffffff7, 0x800, 0x9, 0x102}, {0xffffffff, 0x9d17, 0x3ff, 0x6, 0xfffffff9, 0x4}, {0x6, 0x5, 0xffffff81, 0x9, 0x65c3301a, 0x4}, {0x5, 0x1, 0x2, 0x4, 0xda4, 0x4e8}, {0x1ff, 0x2, 0x7, 0x10001, 0x3, 0x1}, {0xd9, 0xff, 0x8, 0xfffffff9, 0x3, 0x80}, {0x0, 0xd, 0x39, 0x40, 0x4, 0x8}, {0x10001, 0x7ff, 0x7, 0xfffff800, 0x8000, 0x80}, {0xfffffffb, 0xe, 0x6, 0xff, 0x7bbe4cc3, 0x3}, {0x1000, 0x3, 0xc, 0x4, 0x2, 0x7}, {0x40, 0x6, 0x2, 0x20, 0x0, 0xd}, {0x9, 0x1, 0x42, 0x80000000, 0x7, 0x9}, {0x1bb5bd6a, 0x1, 0x8f, 0x1, 0x9}, {0x3, 0x5, 0x3, 0x8, 0x100, 0x9}, {0xa, 0x6, 0x1, 0x4, 0x3, 0x10001}, {0x100, 0x6, 0x3, 0xfff, 0x2, 0x401}, {0xb, 0xff, 0x1, 0x5, 0x0, 0x5}, {0x9, 0x4, 0x0, 0x3, 0xb}, {0x0, 0x8, 0x4, 0xe4, 0xe, 0x9}, {0x7fffffff, 0xe, 0x9, 0x4, 0x40, 0x3}, {0x8, 0x0, 0x8, 0x0, 0x7fff, 0xffffff7f}, {0x837, 0x8, 0x1, 0x1, 0xffff, 0xd0}, {0x4, 0xb92, 0x2, 0xe13, 0xebeb, 0xab6}, {0x4, 0xc39, 0x8001, 0x0, 0x44, 0x8001}, {0x4, 0x7, 0x9, 0x7, 0x8000, 0x3ff}, {0x881c, 0x0, 0x1, 0x9, 0x6, 0x3}, {0xfffffff7, 0xe000000, 0x4a7, 0x7f, 0x1ff, 0x80000000}, {0x6, 0xb8f9fdf, 0x412, 0x7fffffff, 0x2, 0x5}, {0xff, 0x7, 0x3eb1, 0x9, 0x4, 0x2}, {0xbab7, 0xb27a, 0x9d, 0xecf9, 0x1, 0x5}, {0x5, 0xd74, 0x8001, 0x81, 0x5, 0x7f1b}, {0x9, 0x200, 0x7fff, 0x2, 0x0, 0xffffffff}, {0x6, 0x8, 0x805, 0x1, 0x10001, 0x6}, {0x7, 0x8, 0x6, 0x0, 0x7, 0x3}, {0x10, 0x7fff, 0x0, 0x616c2a14, 0xfffffffd, 0x7}, {0x9, 0xfffffffe, 0x9a, 0x9, 0x1, 0x6c673e3e}, {0x4, 0x6, 0x8000, 0x4, 0xeab, 0x810}, {0xa, 0xfff, 0x3, 0x3, 0x7}, {0x0, 0x6, 0x100, 0x7, 0x510, 0x2000000}, {0x9, 0xd21, 0xfffffffd, 0x7f, 0x4}, {0x9, 0x7, 0x1, 0x4, 0x7, 0x407}, {0xfffffffe, 0x8719, 0x4, 0x800, 0xf89, 0x28000000}, {0x9, 0xfff, 0x7, 0x1000, 0x7, 0x6}, {0x8, 0x4, 0x1e516486, 0xb, 0x0, 0x76}, {0x4, 0x2, 0x0, 0x6, 0xffffd906}, {0x70, 0x401, 0x4, 0x3, 0x65, 0x7}, {0x781, 0x2, 0x0, 0x200, 0x9, 0xa}, {0x10001, 0x4, 0x4, 0xe1e, 0x2, 0x101}, {0x7ff, 0x866f, 0x4, 0x3a41, 0x2, 0xc}, {0x68, 0x5, 0x2, 0xbe3, 0x4, 0x7}, {0x6, 0x2e62, 0x4, 0xc3ae, 0x2}, {0x1, 0x2d, 0x4, 0x0, 0x0, 0x5}, {0x5, 0x6, 0x4, 0x74, 0x1000, 0x4}, {0x6e34586f, 0xe, 0xfffffff4, 0x10000, 0x5, 0x3}, {0x0, 0x317, 0x40, 0x2, 0xc8c, 0x1ff}, {0x6ba, 0x3, 0x2, 0x8, 0x7, 0x6}, {0x2, 0x80000000, 0x101, 0x7, 0xe757, 0x2}, {0x7, 0x7ff, 0x1, 0xffffffff, 0x4, 0x3}, {0x320, 0xfffffffe, 0x1, 0xfffffbff, 0x5, 0x3}, {0xffffff01, 0x4, 0x5, 0x80, 0x2, 0x3}, {0x2, 0x6, 0x1e21, 0xdc, 0x0, 0x7}, {0xc2, 0x0, 0x4, 0x9, 0x22a, 0x2}, {0x3, 0x0, 0x2, 0x3, 0xe8, 0x2000}, {0x7fffffff, 0xfffffffd, 0x80000000, 0x9, 0x1, 0x101}, {0x52, 0x38, 0xfffffffa, 0x9, 0x401, 0x5}, {0x683ed4f1, 0xffffff80, 0x3, 0x10000, 0x1, 0x5}, {0x80000001, 0x3, 0x1, 0x6, 0x2, 0x8}, {0x4, 0xc4e, 0x10001, 0xffff, 0x0, 0x5}, {0x6c3c, 0xffff5eb0, 0xe8ac, 0x4, 0xffffffff, 0x8}, {0x5, 0x9, 0x4, 0x6, 0x9, 0x2}, {0x4, 0x131, 0xfffffffa, 0x7, 0x0, 0xfa}, {0x7, 0x7f, 0x4, 0x7, 0x5, 0x3}, {0x800, 0x8, 0x9, 0x7, 0x1, 0x90000}, {0xe, 0x8001, 0x872, 0x7fff, 0x1000, 0x9}, {0x0, 0x6, 0x52, 0x2c1c, 0x4, 0x81}, {0xff, 0x6, 0x9, 0x3, 0x0, 0xe0}, {0x7, 0x2, 0xffffffff, 0xd, 0x40, 0x9}, {0xe00, 0x85, 0x7, 0x5, 0x5, 0x800}, {0x0, 0x9, 0x8, 0x6, 0x5, 0x400}, {0x12, 0x8, 0x0, 0x3, 0x5, 0x1000}, {0x80000000, 0xd, 0x15, 0x3, 0x1f, 0x80000001}, {0x7, 0xffff, 0x6, 0x9, 0x1, 0x6}, {0x7, 0x8ad, 0x200, 0x4, 0x2, 0x3}, {0x9, 0x7, 0x18, 0x8abc, 0x7, 0x2}, {0xc, 0x80, 0x1000, 0x1, 0x4, 0x8}, {0x7, 0x6, 0xfffffff8, 0x6, 0x0, 0x6}, {0x7f, 0x3, 0xe000, 0x5, 0x8, 0xb}, {0x800, 0x2, 0x5, 0x81, 0x2, 0x5}, {0x70596a90, 0xd4b, 0x5, 0x7fffffff, 0x2, 0x200}, {0xc047, 0x3f15870f, 0xc1, 0x10000, 0x6, 0x1}, {0x80, 0x400, 0x8, 0x535e, 0x7, 0xd}, {0x3, 0x93, 0x3, 0x7, 0xffff, 0x200}, {0x5, 0xa, 0x3, 0x6, 0x2}, {0xffffffff, 0xd, 0x9, 0x2, 0xffff2b6f, 0x9}, {0xe, 0x0, 0x5, 0x8001, 0x1, 0x2}, {0x4, 0xd, 0x6, 0x0, 0x9093}, {0xaf6a, 0x3, 0x0, 0x3, 0x2, 0xd4d}, {0xa, 0x2, 0xfffffffc, 0x9, 0xffffffff, 0x1}, {0x6, 0x6, 0x3, 0x3, 0x200, 0x9}, {0x400, 0x59, 0x8, 0xfa, 0x2801, 0x28581d20}], [{0x2}, {0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x4}, {0x4}, {0x1}, {0x5}, {0x2, 0x1}, {0x3, 0x1}, {0x6, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x1}, {0x4}, {0x5}, {0x5}, {0x2}, {0x3, 0x1}, {0x2}, {0x1, 0x1}, {0x1}, {0x3}, {0x1}, {0x2}, {0x1}, {0x4}, {0x2}, {0x2}, {0x0, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {0x3}, {0x2}, {0x1, 0x1}, {0x2}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x3, 0x1}, {0x2}, {0x1, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x1}, {0x2, 0x1}, {0x5}, {0x0, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x5}, {0x4}, {0x1, 0x1}, {0x5}, {0x5, 0x1}, {0x5}, {0x0, 0x1}, {0x4}, {0x5, 0x1}, {0x4, 0x1}, {0x2, 0x1}, {}, {0x2, 0x1}, {0x4, 0x1}, {0x2}, {0x5, 0x1}, {0x7, 0x1}, {0x5}, {0x1, 0x1}, {0x2, 0x1}, {0x5}, {0x4, 0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x3, 0x1}, {}, {0x5}, {0x5}, {0x0, 0x1}, {0x5, 0x1}, {}, {0x0, 0x1}, {0x5}, {0x3}, {0x2, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x7, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x2}, {0x3}, {0x0, 0x1}, {}, {0x0, 0x1}, {0x1}, {0x2, 0x1}, {0x5}, {}, {0x0, 0x1}, {0x1, 0x1}, {0x4}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {0x4}, {0x5}, {0xec16fe48e0ba068d, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x3, 0x1}, {0x4}]}}, @TCA_PEDIT_KEYS_EX={0x88, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x3c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}]}, {0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}]}]}, @TCA_PEDIT_PARMS_EX={0xe80, 0x4, {{{}, 0x0, 0x0, [{}, {}, {}, {}]}, [], [{0x3}, {0x2, 0x1}, {0x2}, {0x1}, {0x2}, {0x0, 0x1}, {0x2}, {0x3, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {}, {0x7, 0x1}, {0x4, 0x1}, {0x2}], 0x1}}, @TCA_PEDIT_PARMS_EX={0xee0, 0x4, {{{}, 0x0, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}]}}}]}, {0x2b, 0x6, "7e52fcec2b1923fa2b11ec83c188e5beb8a4decac876135b346d80ac7f8ebd3d4697961d9f8916"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}, {0x10a8, 0x1, [@m_skbmod={0x74, 0x0, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24}]}, {0x21, 0x6, "9adbca81b1780172fdcc5ac2c6ba6ef787b09b927c82e1e0b73d86e1c9"}, {0xc}, {0xc}}}, @m_nat={0x100, 0x0, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{}, @empty, @dev}}]}, {0xad, 0x6, "a9358a96b0364aaba8d109bf63c05d5a8c9b182f011a30683924ab7237f67a8a490b7127adf29bed1470fba50f9610b0832dc8f0f982714936fefe525953ae85b6cf7f22e9fce74aa9e3eadefe0b99cde58331a057400c78cf7bd93fd9ddae93f07f2eeecd19bf421241ade5c3356d2816b10229f17bbf78463ac731dfb23b5c4809988ee82b4e81d42b8188e6e65415aa17626ec5cb26b784ed1b1a47c4a4a1d453084e9c4ff1de5a"}, {0xc}, {0xc}}}, @m_mirred={0x114, 0x0, 0x0, 0x0, {{0xb}, {0x4}, {0xe5, 0x6, "46a960c59d955eaaadec2699dd3902e97d38a971836af5fd0dcaafdfa304f54b07e3d39dbf256f70517021f5556bb108f5a468934f9c83b63af52eeace680636c0c6e1abfd10cebcdcfa7ad85a293161d65fb175f7b8bba7048f740ce875f1bd2b13b65c6b180f684ea1aabed1d0bc3c0607fb1db051980b42debcb04a684ee436d5fc0ed92a1d8551a60b175f0fe5ea4397f1ec9a0e4a2e406f0dec2b13b05560b2cbc4c8eafebf5a92763a23fa52d4f74b459d370f08e3dd705321e660ed212e255d3fc8f105abcd936bf5bbae30155d8f924efd578fa705ac685132b334068a"}, {0xc}, {0xc}}}, @m_ct={0xe1c, 0x0, 0x0, 0x0, {{0x7}, {0x4}, {0xdf1, 0x6, "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"}, {0xc}, {0xc}}}]}]}, 0x3ec4}, 0x1, 0x0, 0x0, 0x2000845}, 0x0)

258.334961ms ago: executing program 4 (id=4746):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'wlan0\x00'})
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bind$802154_dgram(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a14000000020a010800000000000000000000000020000000000a010800000000000000000a0000000900010073797a310000e4ff3c000000000a030000000000000000010a00000008000240000000010900010073797a310000000014000000"], 0x84}}, 0x0)

148.217761ms ago: executing program 3 (id=4747):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="3400000012001fff00"/20, @ANYRES8=r0, @ANYBLOB="0000000000000000b943ca9cf8f55f3f626f6e640000000004000280"], 0x34}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$inet(0x2, 0xa, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000000080)={'wg0\x00', <r5=>0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001e40)={&(0x7f00000007c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYRES8=r2, @ANYRES32=r5, @ANYBLOB="1800038014000380"], 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, &(0x7f0000000380)=ANY=[@ANYRESDEC=r6, @ANYRES16=r7], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r8}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='workqueue_activate_work\x00', r9}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000003c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x8, '\x00', r5, 0xffffffffffffffff, 0x4, 0x4, 0x1}, 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'})
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="7000714e8b6109050000000000000000020100ff", @ANYRESHEX, @ANYBLOB="1400060006000000000000f0000000000000000008000200ac1414aa08000100ac1414aa080004"], 0x70}}, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r11, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r12=>0x0})
sendmsg$nl_route(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="600000021400095c185b7c1588cdefa385860b05000000000000feff020100fe", @ANYRES32=r12, @ANYBLOB="1400060000000000000400f000000000feffffff08000200ac1414aa080001006401010208000900800000001400030076657468315f746f5f626f6e6400000008000100e0000002"], 0x60}}, 0x0)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{0x1}, &(0x7f0000000080), &(0x7f0000000140)='%pK    \x00'}, 0x20)
sendmsg$NFT_BATCH(r13, &(0x7f0000000280)={0x0, 0xfffffffffffffd89, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x84}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'ip6erspan0\x00', 0x20})

1.106375ms ago: executing program 4 (id=4748):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="5800000010000100000000000000000014000000", @ANYRES32=r1, @ANYBLOB="000000000000000034001680300001802c000c80140001"], 0x58}}, 0x0)

697.524µs ago: executing program 3 (id=4749):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000ecff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb00df18"], &(0x7f0000000540)=""/7, 0x38, 0x7, 0x1}, 0x20)
sendmsg$nl_route_sched(r4, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={0x0, 0x68}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x49920d862a92153b, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_LP_INTERVAL={0x8, 0x13, 0x1}]}}}]}, 0x3c}}, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="240000003b0007010000000000000000027c0000040000000c000180060006000b"], 0x24}}, 0x0)

0s ago: executing program 1 (id=4750):
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0x4, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001340)=ANY=[@ANYBLOB="03011400ff1e880000000800ad0001140000002f2500ac14141fe000e502808a8972bd0f72e401010c520f068c3f1fe4fdfe4b449430ebb52997e36e039b1c598825f80100a3c06376c3304176a167d50261a67a34a09e5fe2bb07b6f158f918a54bf8"], 0xdd12}], 0x1}, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)

kernel console output (not intermixed with test programs):

+0x6c/0x2a0
[  319.532619][T15320]  skb_clone+0x20c/0x390
[  319.536856][T15320]  __netlink_deliver_tap+0x3cc/0x7c0
[  319.542142][T15320]  ? netlink_deliver_tap+0x2e/0x1b0
[  319.547336][T15320]  netlink_deliver_tap+0x19d/0x1b0
[  319.552440][T15320]  netlink_sendskb+0x68/0x140
[  319.557113][T15320]  netlink_unicast+0x39d/0x990
[  319.561867][T15320]  ? __asan_memcpy+0x40/0x70
[  319.566458][T15320]  ? __pfx_netlink_unicast+0x10/0x10
[  319.571741][T15320]  netlink_rcv_skb+0x262/0x430
[  319.576498][T15320]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  319.581953][T15320]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  319.587259][T15320]  xfrm_netlink_rcv+0x79/0x90
[  319.591927][T15320]  netlink_unicast+0x7f0/0x990
[  319.596690][T15320]  ? __pfx_netlink_unicast+0x10/0x10
[  319.601976][T15320]  ? __virt_addr_valid+0x183/0x530
[  319.607095][T15320]  ? __check_object_size+0x49c/0x900
[  319.612386][T15320]  ? bpf_lsm_netlink_send+0x9/0x10
[  319.617499][T15320]  netlink_sendmsg+0x8e4/0xcb0
[  319.622267][T15320]  ? __pfx_netlink_sendmsg+0x10/0x10
[  319.627547][T15320]  ? __import_iovec+0x536/0x820
[  319.632389][T15320]  ? aa_sock_msg_perm+0x91/0x160
[  319.637324][T15320]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  319.642601][T15320]  ? security_socket_sendmsg+0x87/0xb0
[  319.648064][T15320]  ? __pfx_netlink_sendmsg+0x10/0x10
[  319.653345][T15320]  __sock_sendmsg+0x221/0x270
[  319.658031][T15320]  ____sys_sendmsg+0x525/0x7d0
[  319.662795][T15320]  ? __pfx_____sys_sendmsg+0x10/0x10
[  319.668090][T15320]  __sys_sendmsg+0x2b0/0x3a0
[  319.672671][T15320]  ? __pfx___sys_sendmsg+0x10/0x10
[  319.677773][T15320]  ? vfs_write+0x7c4/0xc90
[  319.682209][T15320]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  319.688533][T15320]  ? do_syscall_64+0x100/0x230
[  319.693289][T15320]  ? do_syscall_64+0xb6/0x230
[  319.697962][T15320]  do_syscall_64+0xf3/0x230
[  319.702460][T15320]  ? clear_bhb_loop+0x35/0x90
[  319.707133][T15320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.713018][T15320] RIP: 0033:0x7f2e6b375f19
[  319.717424][T15320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.737025][T15320] RSP: 002b:00007f2e6adff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  319.745435][T15320] RAX: ffffffffffffffda RBX: 00007f2e6b505f60 RCX: 00007f2e6b375f19
[  319.753396][T15320] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  319.761358][T15320] RBP: 00007f2e6adff0a0 R08: 0000000000000000 R09: 0000000000000000
[  319.769326][T15320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.777287][T15320] R13: 000000000000000b R14: 00007f2e6b505f60 R15: 00007ffc811571f8
[  319.785263][T15320]  </TASK>
[  319.855346][T15316] bond5 (unregistering): (slave batadv19): Releasing backup interface
[  319.917479][T15316] bond5 (unregistering): Released all slaves
[  320.166632][T15332] xt_hashlimit: overflow, try lower: 0/0
[  320.385940][T15337] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3416'.
[  320.400407][T15337] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3416'.
[  320.478746][T15343] FAULT_INJECTION: forcing a failure.
[  320.478746][T15343] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  320.497423][T15343] CPU: 1 PID: 15343 Comm: syz.1.3418 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  320.507252][T15343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  320.517317][T15343] Call Trace:
[  320.520605][T15343]  <TASK>
[  320.523542][T15343]  dump_stack_lvl+0x241/0x360
[  320.528233][T15343]  ? __pfx_dump_stack_lvl+0x10/0x10
[  320.533423][T15343]  ? __pfx__printk+0x10/0x10
[  320.538008][T15343]  ? __pfx_lock_release+0x10/0x10
[  320.543030][T15343]  should_fail_ex+0x3b0/0x4e0
[  320.547702][T15343]  _copy_from_user+0x2f/0xe0
[  320.552285][T15343]  copy_msghdr_from_user+0xae/0x680
[  320.557479][T15343]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  320.563287][T15343]  __sys_sendmsg+0x23d/0x3a0
[  320.567868][T15343]  ? __pfx___sys_sendmsg+0x10/0x10
[  320.572972][T15343]  ? vfs_write+0x7c4/0xc90
[  320.577409][T15343]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  320.583727][T15343]  ? do_syscall_64+0x100/0x230
[  320.588485][T15343]  ? do_syscall_64+0xb6/0x230
[  320.593155][T15343]  do_syscall_64+0xf3/0x230
[  320.597652][T15343]  ? clear_bhb_loop+0x35/0x90
[  320.602329][T15343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.608217][T15343] RIP: 0033:0x7f37b1175f19
[  320.612621][T15343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.632216][T15343] RSP: 002b:00007f37b1f62048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  320.640621][T15343] RAX: ffffffffffffffda RBX: 00007f37b1305f60 RCX: 00007f37b1175f19
[  320.648583][T15343] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[  320.656543][T15343] RBP: 00007f37b1f620a0 R08: 0000000000000000 R09: 0000000000000000
[  320.664501][T15343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.672459][T15343] R13: 000000000000000b R14: 00007f37b1305f60 R15: 00007ffee29d6f68
[  320.680432][T15343]  </TASK>
[  320.685500][T15346] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3416'.
[  320.720549][ T5102] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  320.729627][ T5102] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  320.737579][ T5102] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  320.756019][T15346] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3416'.
[  320.774579][ T5102] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  320.792497][ T5102] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  320.800282][ T5102] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  321.031224][T15327] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3413'.
[  321.044598][T15327] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3413'.
[  321.060770][T15327] geneve0: entered promiscuous mode
[  321.066585][T15327] geneve0: entered allmulticast mode
[  321.179726][T15342] chnl_net:caif_netlink_parms(): no params data found
[  321.347674][T15342] bridge0: port 1(bridge_slave_0) entered blocking state
[  321.364619][T15342] bridge0: port 1(bridge_slave_0) entered disabled state
[  321.381991][T15342] bridge_slave_0: entered allmulticast mode
[  321.393357][T15342] bridge_slave_0: entered promiscuous mode
[  321.412228][T15342] bridge0: port 2(bridge_slave_1) entered blocking state
[  321.419491][T15342] bridge0: port 2(bridge_slave_1) entered disabled state
[  321.427448][T15342] bridge_slave_1: entered allmulticast mode
[  321.434744][T15342] bridge_slave_1: entered promiscuous mode
[  321.552288][T15342] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  321.566260][T15342] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  321.621544][T15342] team0: Port device team_slave_0 added
[  321.631574][T15342] team0: Port device team_slave_1 added
[  321.662911][T15342] batman_adv: batadv0: Adding interface: batadv_slave_0
[  321.671007][T15342] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  321.697502][T15342] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  321.717995][T15342] batman_adv: batadv0: Adding interface: batadv_slave_1
[  321.725041][T15342] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  321.751261][T15342] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  321.799244][T15342] hsr_slave_0: entered promiscuous mode
[  321.814690][T15342] hsr_slave_1: entered promiscuous mode
[  321.821181][T15342] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  321.829460][T15342] Cannot create hsr debugfs directory
[  321.988013][T15342] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.100542][T15342] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.182221][T15342] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.261507][T15342] netdevsim netdevsim2 netdevsim0 (unregistering): left promiscuous mode
[  322.277216][T15342] team0: Port device netdevsim0 removed
[  322.286533][T15342] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.413959][T15342] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  322.435712][T15342] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  322.446486][T15342] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  322.457283][T15342] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  322.558622][T15342] 8021q: adding VLAN 0 to HW filter on device bond0
[  322.582530][T15342] 8021q: adding VLAN 0 to HW filter on device team0
[  322.599868][ T5105] bridge0: port 1(bridge_slave_0) entered blocking state
[  322.607047][ T5105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  322.629778][ T5105] bridge0: port 2(bridge_slave_1) entered blocking state
[  322.636940][ T5105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  322.827073][T15342] 8021q: adding VLAN 0 to HW filter on device batadv0
[  322.834666][ T5112] Bluetooth: hci4: command tx timeout
[  322.881623][T15342] veth0_vlan: entered promiscuous mode
[  322.895100][T15342] veth1_vlan: entered promiscuous mode
[  322.933256][T15342] veth0_macvtap: entered promiscuous mode
[  322.943662][T15342] veth1_macvtap: entered promiscuous mode
[  322.967006][T15342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  322.977950][T15342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.987841][T15342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  322.999141][T15342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.009419][T15342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  323.020032][T15342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.030183][T15342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  323.042707][T15342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.055416][T15342] batman_adv: batadv0: Interface activated: batadv_slave_0
[  323.071854][T15342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.091030][T15342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.103209][T15342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.115139][T15342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.125471][T15342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.136210][T15342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.146713][T15342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.159190][T15342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.173069][T15342] batman_adv: batadv0: Interface activated: batadv_slave_1
[  323.188833][T15342] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  323.198280][T15342] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  323.207792][T15342] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  323.217571][T15342] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  323.288968][ T6639] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  323.303003][ T6639] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  323.332310][ T6639] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  323.341145][ T6639] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  324.915639][ T5112] Bluetooth: hci4: command tx timeout
[  324.984946][T15379] netlink: 'syz.3.3423': attribute type 4 has an invalid length.
[  325.004945][T15379] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.3423'.
[  325.090547][T15384] netlink: 'syz.4.3426': attribute type 1 has an invalid length.
[  325.210052][T15384] 8021q: adding VLAN 0 to HW filter on device batadv6
[  325.221491][T15384] bond2: (slave batadv6): Enslaving as a backup interface with an up link
[  325.256570][T15384] bond2 (unregistering): (slave batadv6): Releasing backup interface
[  325.302294][T15384] bond2 (unregistering): Released all slaves
[  325.496477][T15400] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3431'.
[  325.508030][T15400] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3431'.
[  325.840143][T15413] team0: entered promiscuous mode
[  325.872645][T15413] team_slave_0: entered promiscuous mode
[  325.896041][T15413] team_slave_1: entered promiscuous mode
[  325.919956][T15413] batadv3: entered promiscuous mode
[  325.955000][T15412] team0: left promiscuous mode
[  325.973450][T15412] team_slave_0: left promiscuous mode
[  325.998382][T15412] team_slave_1: left promiscuous mode
[  326.020249][T15412] batadv3: left promiscuous mode
[  326.026458][T15425] netlink: 96 bytes leftover after parsing attributes in process `syz.3.3440'.
[  326.250876][T15431] xt_TPROXY: Can be used only with -p tcp or -p udp
[  326.315478][T15438] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3442'.
[  326.501932][T15442] netlink: 'syz.3.3446': attribute type 12 has an invalid length.
[  326.533339][T15442] netlink: 197276 bytes leftover after parsing attributes in process `syz.3.3446'.
[  326.855607][T15452] bond_slave_0: entered promiscuous mode
[  326.861609][T15452] bond_slave_1: entered promiscuous mode
[  326.878173][T15457] FAULT_INJECTION: forcing a failure.
[  326.878173][T15457] name failslab, interval 1, probability 0, space 0, times 0
[  326.880124][T15452] bond0: entered promiscuous mode
[  326.936566][T15457] CPU: 0 PID: 15457 Comm: syz.2.3453 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  326.946459][T15457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  326.956532][T15457] Call Trace:
[  326.959822][T15457]  <TASK>
[  326.962767][T15457]  dump_stack_lvl+0x241/0x360
[  326.967474][T15457]  ? __pfx_dump_stack_lvl+0x10/0x10
[  326.972695][T15457]  ? __pfx__printk+0x10/0x10
[  326.977321][T15457]  should_fail_ex+0x3b0/0x4e0
[  326.982021][T15457]  ? nf_tables_newrule+0x15e2/0x2960
[  326.987319][T15457]  should_failslab+0x9/0x20
[  326.991831][T15457]  __kmalloc_noprof+0xd8/0x400
[  326.996615][T15457]  nf_tables_newrule+0x15e2/0x2960
[  327.001769][T15457]  ? __pfx_nf_tables_newrule+0x10/0x10
[  327.004197][ T5112] Bluetooth: hci4: command tx timeout
[  327.007238][T15457]  ? __nla_parse+0x40/0x60
[  327.007270][T15457]  nfnetlink_rcv+0x1427/0x2a90
[  327.021832][T15457]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  327.027009][T15457]  ? netlink_deliver_tap+0x2e/0x1b0
[  327.032232][T15457]  ? skb_clone+0x240/0x390
[  327.036664][T15457]  ? __pfx_lock_release+0x10/0x10
[  327.041720][T15457]  ? netlink_deliver_tap+0x2e/0x1b0
[  327.046940][T15457]  netlink_unicast+0x7f0/0x990
[  327.051727][T15457]  ? __pfx_netlink_unicast+0x10/0x10
[  327.057023][T15457]  ? __virt_addr_valid+0x183/0x530
[  327.062155][T15457]  ? __check_object_size+0x49c/0x900
[  327.067458][T15457]  ? bpf_lsm_netlink_send+0x9/0x10
[  327.072588][T15457]  netlink_sendmsg+0x8e4/0xcb0
[  327.077383][T15457]  ? __pfx_netlink_sendmsg+0x10/0x10
[  327.082684][T15457]  ? __import_iovec+0x536/0x820
[  327.087542][T15457]  ? aa_sock_msg_perm+0x91/0x160
[  327.092498][T15457]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  327.097799][T15457]  ? security_socket_sendmsg+0x87/0xb0
[  327.103276][T15457]  ? __pfx_netlink_sendmsg+0x10/0x10
[  327.108573][T15457]  __sock_sendmsg+0x221/0x270
[  327.113268][T15457]  ____sys_sendmsg+0x525/0x7d0
[  327.118054][T15457]  ? __pfx_____sys_sendmsg+0x10/0x10
[  327.123369][T15457]  __sys_sendmsg+0x2b0/0x3a0
[  327.127970][T15457]  ? __pfx___sys_sendmsg+0x10/0x10
[  327.133094][T15457]  ? vfs_write+0x7c4/0xc90
[  327.137564][T15457]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  327.143912][T15457]  ? do_syscall_64+0x100/0x230
[  327.148694][T15457]  ? do_syscall_64+0xb6/0x230
[  327.153386][T15457]  do_syscall_64+0xf3/0x230
[  327.157904][T15457]  ? clear_bhb_loop+0x35/0x90
[  327.162603][T15457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.168521][T15457] RIP: 0033:0x7fa1b4b75f19
[  327.172949][T15457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.192567][T15457] RSP: 002b:00007fa1b593e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  327.201003][T15457] RAX: ffffffffffffffda RBX: 00007fa1b4d05f60 RCX: 00007fa1b4b75f19
[  327.208988][T15457] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  327.216973][T15457] RBP: 00007fa1b593e0a0 R08: 0000000000000000 R09: 0000000000000000
[  327.224957][T15457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  327.232940][T15457] R13: 000000000000000b R14: 00007fa1b4d05f60 R15: 00007fff30984508
[  327.238878][T15468] netlink: 'syz.4.3456': attribute type 1 has an invalid length.
[  327.240920][T15457]  </TASK>
[  327.367889][T15449] bond0: left promiscuous mode
[  327.373436][T15449] bond_slave_0: left promiscuous mode
[  327.379333][T15449] bond_slave_1: left promiscuous mode
[  327.394736][    C1] eth0: bad gso: type: 1, size: 1408
[  327.417660][    C1] eth0: bad gso: type: 1, size: 1408
[  327.433552][T15473] 8021q: adding VLAN 0 to HW filter on device batadv7
[  327.528251][T15473] bond2: (slave batadv7): Enslaving as a backup interface with an up link
[  327.642546][T15468] bond2 (unregistering): (slave batadv7): Releasing backup interface
[  327.663779][T15488] FAULT_INJECTION: forcing a failure.
[  327.663779][T15488] name failslab, interval 1, probability 0, space 0, times 0
[  327.726100][T15488] CPU: 0 PID: 15488 Comm: syz.3.3461 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  327.735935][T15488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  327.746002][T15488] Call Trace:
[  327.749289][T15488]  <TASK>
[  327.752232][T15488]  dump_stack_lvl+0x241/0x360
[  327.756933][T15488]  ? __pfx_dump_stack_lvl+0x10/0x10
[  327.762145][T15488]  ? __pfx__printk+0x10/0x10
[  327.766751][T15488]  ? ref_tracker_alloc+0x332/0x490
[  327.771883][T15488]  should_fail_ex+0x3b0/0x4e0
[  327.776587][T15488]  ? skb_clone+0x20c/0x390
[  327.781019][T15488]  should_failslab+0x9/0x20
[  327.785541][T15488]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  327.790939][T15488]  skb_clone+0x20c/0x390
[  327.795207][T15488]  __netlink_deliver_tap+0x3cc/0x7c0
[  327.800529][T15488]  ? netlink_deliver_tap+0x2e/0x1b0
[  327.805744][T15488]  netlink_deliver_tap+0x19d/0x1b0
[  327.810873][T15488]  netlink_unicast+0x7be/0x990
[  327.815662][T15488]  ? __pfx_netlink_unicast+0x10/0x10
[  327.820964][T15488]  ? __virt_addr_valid+0x183/0x530
[  327.826100][T15488]  ? __check_object_size+0x49c/0x900
[  327.831404][T15488]  ? bpf_lsm_netlink_send+0x9/0x10
[  327.836538][T15488]  netlink_sendmsg+0x8e4/0xcb0
[  327.841323][T15488]  ? __pfx_netlink_sendmsg+0x10/0x10
[  327.846602][T15488]  ? __import_iovec+0x536/0x820
[  327.851444][T15488]  ? aa_sock_msg_perm+0x91/0x160
[  327.856378][T15488]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  327.861652][T15488]  ? security_socket_sendmsg+0x87/0xb0
[  327.867108][T15488]  ? __pfx_netlink_sendmsg+0x10/0x10
[  327.872381][T15488]  __sock_sendmsg+0x221/0x270
[  327.877052][T15488]  ____sys_sendmsg+0x525/0x7d0
[  327.881816][T15488]  ? __pfx_____sys_sendmsg+0x10/0x10
[  327.887114][T15488]  __sys_sendmsg+0x2b0/0x3a0
[  327.891697][T15488]  ? __pfx___sys_sendmsg+0x10/0x10
[  327.896802][T15488]  ? vfs_write+0x7c4/0xc90
[  327.901242][T15488]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  327.907562][T15488]  ? do_syscall_64+0x100/0x230
[  327.912319][T15488]  ? do_syscall_64+0xb6/0x230
[  327.916992][T15488]  do_syscall_64+0xf3/0x230
[  327.921492][T15488]  ? clear_bhb_loop+0x35/0x90
[  327.926166][T15488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.932052][T15488] RIP: 0033:0x7f2346b75f19
[  327.936461][T15488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.956056][T15488] RSP: 002b:00007f234799e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  327.964471][T15488] RAX: ffffffffffffffda RBX: 00007f2346d05f60 RCX: 00007f2346b75f19
[  327.972544][T15488] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  327.980510][T15488] RBP: 00007f234799e0a0 R08: 0000000000000000 R09: 0000000000000000
[  327.988474][T15488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  327.996435][T15488] R13: 000000000000000b R14: 00007f2346d05f60 R15: 00007fff8ba79438
[  328.004426][T15488]  </TASK>
[  328.072816][T15468] bond2 (unregistering): Released all slaves
[  328.572820][T15512] xt_hashlimit: size too large, truncated to 1048576
[  328.761384][T15512] Cannot find set identified by id 0 to match
[  329.058520][T15528] netlink: 'syz.0.3476': attribute type 1 has an invalid length.
[  329.075566][ T5112] Bluetooth: hci4: command tx timeout
[  329.275101][T15533] 8021q: adding VLAN 0 to HW filter on device batadv20
[  329.296265][T15533] bond5: (slave batadv20): Enslaving as a backup interface with an up link
[  329.344546][T15528] bond5 (unregistering): (slave batadv20): Releasing backup interface
[  329.397877][T15528] bond5 (unregistering): Released all slaves
[  330.070799][T15554] xt_hashlimit: overflow, try lower: 0/0
[  330.295206][T15562] netlink: 'syz.4.3489': attribute type 5 has an invalid length.
[  330.452168][T15564] netlink: 'syz.0.3490': attribute type 5 has an invalid length.
[  330.679072][T15574] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3494'.
[  331.452764][T15616] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3505'.
[  331.468351][T15616] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3505'.
[  331.539071][T15617] netlink: 'syz.1.3502': attribute type 10 has an invalid length.
[  331.625426][T15617] 8021q: adding VLAN 0 to HW filter on device team0
[  331.633792][T15617] bond0: (slave team0): Enslaving as an active interface with an up link
[  331.672082][T15619] netlink: 'syz.1.3502': attribute type 10 has an invalid length.
[  331.757253][T15619] bond0: (slave team0): Releasing backup interface
[  331.793273][T15619] bridge0: port 1(team0) entered blocking state
[  331.811492][T15619] bridge0: port 1(team0) entered disabled state
[  331.825376][T15619] team0: entered allmulticast mode
[  331.840818][T15619] team_slave_0: entered allmulticast mode
[  331.850936][T15619] team_slave_1: entered allmulticast mode
[  331.871881][T15619] team0: entered promiscuous mode
[  331.884545][T15619] team_slave_0: entered promiscuous mode
[  331.902568][T15619] team_slave_1: entered promiscuous mode
[  331.985933][T15633] netlink: 260 bytes leftover after parsing attributes in process `syz.3.3511'.
[  332.148608][T15639] netlink: 173 bytes leftover after parsing attributes in process `syz.3.3514'.
[  332.924567][T15641] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3515'.
[  332.952318][T15641] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3515'.
[  333.004668][T15641] geneve0: entered promiscuous mode
[  333.020140][T15641] geneve0: entered allmulticast mode
[  333.043860][T15660] 
€Â: renamed from bridge_slave_0 (while UP)
[  333.895744][T15705] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3539'.
[  333.932204][T15709] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3540'.
[  333.977550][T15709] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3540'.
[  334.217921][T15722] netlink: 'syz.4.3541': attribute type 5 has an invalid length.
[  334.238611][T15721] netlink: 'syz.3.3544': attribute type 10 has an invalid length.
[  334.262175][T15721] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3544'.
[  334.309201][T15721] team0: entered promiscuous mode
[  334.334314][T15721] team_slave_0: entered promiscuous mode
[  334.344760][T15721] team_slave_1: entered promiscuous mode
[  334.364773][T15721] team0: entered allmulticast mode
[  334.370235][T15721] team_slave_0: entered allmulticast mode
[  334.384844][T15721] team_slave_1: entered allmulticast mode
[  334.405265][T15721] bridge0: port 3(team0) entered blocking state
[  334.411783][T15721] bridge0: port 3(team0) entered disabled state
[  334.427514][T15721] bridge0: port 3(team0) entered blocking state
[  334.433911][T15721] bridge0: port 3(team0) entered forwarding state
[  334.867536][T15755] netlink: 'syz.2.3558': attribute type 1 has an invalid length.
[  335.857882][T15804] pimreg: left allmulticast mode
[  336.071674][T15815] x_tables: duplicate underflow at hook 3
[  336.789206][T15856] x_tables: duplicate underflow at hook 2
[  336.796022][T15852] netlink: 'syz.3.3593': attribute type 1 has an invalid length.
[  336.839026][T15852] __nla_validate_parse: 2 callbacks suppressed
[  336.839042][T15852] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.3593'.
[  336.873212][T15856] netlink: 'syz.2.3592': attribute type 1 has an invalid length.
[  336.882329][T15856] netlink: 9348 bytes leftover after parsing attributes in process `syz.2.3592'.
[  337.030092][T15866] xt_hashlimit: size too large, truncated to 1048576
[  337.257228][T15877] netlink: 173 bytes leftover after parsing attributes in process `syz.0.3601'.
[  337.925186][T15904] netlink: 173 bytes leftover after parsing attributes in process `syz.2.3614'.
[  337.970970][T15907] netlink: 96 bytes leftover after parsing attributes in process `syz.3.3615'.
[  338.025245][T15909] netlink: 'syz.0.3617': attribute type 1 has an invalid length.
[  338.146608][T15914] 8021q: adding VLAN 0 to HW filter on device batadv21
[  338.206992][T15914] bond5: (slave batadv21): Enslaving as a backup interface with an up link
[  338.266770][T15916] sit0: entered allmulticast mode
[  338.275150][T15917] sit0: entered promiscuous mode
[  338.305249][T15919] FAULT_INJECTION: forcing a failure.
[  338.305249][T15919] name failslab, interval 1, probability 0, space 0, times 0
[  338.343626][T15919] CPU: 1 PID: 15919 Comm: syz.3.3620 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  338.353455][T15919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  338.363521][T15919] Call Trace:
[  338.366811][T15919]  <TASK>
[  338.369754][T15919]  dump_stack_lvl+0x241/0x360
[  338.374454][T15919]  ? __pfx_dump_stack_lvl+0x10/0x10
[  338.379670][T15919]  ? __pfx__printk+0x10/0x10
[  338.384266][T15919]  ? _copy_from_iter+0x26b/0x1960
[  338.389315][T15919]  should_fail_ex+0x3b0/0x4e0
[  338.394011][T15919]  ? build_skb+0x52/0x2a0
[  338.398355][T15919]  should_failslab+0x9/0x20
[  338.402880][T15919]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  338.408269][T15919]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  338.414266][T15919]  build_skb+0x52/0x2a0
[  338.418437][T15919]  ? __tun_build_skb+0x25/0x2f0
[  338.423307][T15919]  __tun_build_skb+0x33/0x2f0
[  338.428007][T15919]  tun_get_user+0x20bb/0x4720
[  338.432704][T15919]  ? tun_get_user+0x871/0x4720
[  338.437492][T15919]  ? __lock_acquire+0x137a/0x2040
[  338.442540][T15919]  ? __pfx_tun_get_user+0x10/0x10
[  338.447600][T15919]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  338.453082][T15919]  ? tun_get+0x1e/0x2f0
[  338.457258][T15919]  ? __pfx_lock_release+0x10/0x10
[  338.462311][T15919]  ? tun_get+0x1e/0x2f0
[  338.466487][T15919]  ? tun_get+0x27d/0x2f0
[  338.470747][T15919]  tun_chr_write_iter+0x113/0x1f0
[  338.475792][T15919]  vfs_write+0xa72/0xc90
[  338.480049][T15919]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  338.485617][T15919]  ? __pfx_vfs_write+0x10/0x10
[  338.490421][T15919]  ksys_write+0x1a0/0x2c0
[  338.494773][T15919]  ? __pfx_ksys_write+0x10/0x10
[  338.499638][T15919]  ? do_syscall_64+0x100/0x230
[  338.504415][T15919]  ? do_syscall_64+0xb6/0x230
[  338.509110][T15919]  do_syscall_64+0xf3/0x230
[  338.513626][T15919]  ? clear_bhb_loop+0x35/0x90
[  338.518321][T15919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.524233][T15919] RIP: 0033:0x7f2346b74a9f
[  338.528657][T15919] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  338.548269][T15919] RSP: 002b:00007f234799e010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  338.556698][T15919] RAX: ffffffffffffffda RBX: 00007f2346d05f60 RCX: 00007f2346b74a9f
[  338.564678][T15919] RDX: 0000000000000076 RSI: 0000000020000600 RDI: 00000000000000c8
[  338.572654][T15919] RBP: 00007f234799e0a0 R08: 0000000000000000 R09: 0000000000000000
[  338.580636][T15919] R10: 0000000000000076 R11: 0000000000000293 R12: 0000000000000001
[  338.588621][T15919] R13: 000000000000000b R14: 00007f2346d05f60 R15: 00007fff8ba79438
[  338.596620][T15919]  </TASK>
[  338.614600][T15909] bond5 (unregistering): (slave batadv21): Releasing backup interface
[  338.661517][T15909] bond5 (unregistering): Released all slaves
[  339.231214][T15942] netlink: 173 bytes leftover after parsing attributes in process `syz.3.3629'.
[  339.430252][T15950] sctp: [Deprecated]: syz.0.3631 (pid 15950) Use of int in max_burst socket option.
[  339.430252][T15950] Use struct sctp_assoc_value instead
[  340.197793][T15976] xt_hashlimit: overflow, try lower: 0/0
[  340.278871][T15979] xt_NFQUEUE: number of total queues is 0
[  340.475745][T15987] veth1: entered promiscuous mode
[  340.497958][T15987] veth1: left promiscuous mode
[  340.867178][T16005] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3654'.
[  341.010099][T16011] FAULT_INJECTION: forcing a failure.
[  341.010099][T16011] name failslab, interval 1, probability 0, space 0, times 0
[  341.077220][T16011] CPU: 0 PID: 16011 Comm: syz.2.3657 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  341.087063][T16011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  341.097130][T16011] Call Trace:
[  341.100424][T16011]  <TASK>
[  341.103368][T16011]  dump_stack_lvl+0x241/0x360
[  341.108073][T16011]  ? __pfx_dump_stack_lvl+0x10/0x10
[  341.113293][T16011]  ? __pfx__printk+0x10/0x10
[  341.117903][T16011]  ? __pfx___might_resched+0x10/0x10
[  341.123209][T16011]  ? rcu_is_watching+0x15/0xb0
[  341.128001][T16011]  should_fail_ex+0x3b0/0x4e0
[  341.132713][T16011]  should_failslab+0x9/0x20
[  341.137236][T16011]  __kmalloc_node_noprof+0xdf/0x440
[  341.142455][T16011]  ? __kvmalloc_node_noprof+0x72/0x190
[  341.147932][T16011]  ? __nf_register_net_hook+0x1ef/0x8d0
[  341.153500][T16011]  __kvmalloc_node_noprof+0x72/0x190
[  341.158807][T16011]  nf_hook_entries_grow+0x288/0x720
[  341.164027][T16011]  ? trace_contention_end+0x3c/0x120
[  341.169348][T16011]  __nf_register_net_hook+0x278/0x8d0
[  341.174739][T16011]  ? __pfx___mutex_lock+0x10/0x10
[  341.179791][T16011]  nf_register_net_hook+0xb0/0x190
[  341.184925][T16011]  nf_register_net_hooks+0x41/0x1a0
[  341.190141][T16011]  nf_defrag_ipv6_enable+0x85/0x110
[  341.195362][T16011]  nft_tproxy_init+0x3f9/0x480
[  341.200149][T16011]  nf_tables_newrule+0x1837/0x2960
[  341.205296][T16011]  ? __pfx_nf_tables_newrule+0x10/0x10
[  341.210789][T16011]  ? __nla_parse+0x40/0x60
[  341.215236][T16011]  nfnetlink_rcv+0x1427/0x2a90
[  341.220054][T16011]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  341.225243][T16011]  ? netlink_deliver_tap+0x2e/0x1b0
[  341.230459][T16011]  ? skb_clone+0x240/0x390
[  341.234892][T16011]  ? __pfx_lock_release+0x10/0x10
[  341.239949][T16011]  ? netlink_deliver_tap+0x2e/0x1b0
[  341.245167][T16011]  netlink_unicast+0x7f0/0x990
[  341.249958][T16011]  ? __pfx_netlink_unicast+0x10/0x10
[  341.255260][T16011]  ? __virt_addr_valid+0x183/0x530
[  341.260397][T16011]  ? __check_object_size+0x49c/0x900
[  341.265701][T16011]  ? bpf_lsm_netlink_send+0x9/0x10
[  341.270842][T16011]  netlink_sendmsg+0x8e4/0xcb0
[  341.275640][T16011]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.280946][T16011]  ? __import_iovec+0x536/0x820
[  341.285807][T16011]  ? aa_sock_msg_perm+0x91/0x160
[  341.290748][T16011]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  341.296026][T16011]  ? security_socket_sendmsg+0x87/0xb0
[  341.301481][T16011]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.306753][T16011]  __sock_sendmsg+0x221/0x270
[  341.311426][T16011]  ____sys_sendmsg+0x525/0x7d0
[  341.316192][T16011]  ? __pfx_____sys_sendmsg+0x10/0x10
[  341.321482][T16011]  __sys_sendmsg+0x2b0/0x3a0
[  341.326064][T16011]  ? __pfx___sys_sendmsg+0x10/0x10
[  341.331171][T16011]  ? vfs_write+0x7c4/0xc90
[  341.335615][T16011]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  341.341938][T16011]  ? do_syscall_64+0x100/0x230
[  341.346695][T16011]  ? do_syscall_64+0xb6/0x230
[  341.351365][T16011]  do_syscall_64+0xf3/0x230
[  341.355859][T16011]  ? clear_bhb_loop+0x35/0x90
[  341.360531][T16011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.366414][T16011] RIP: 0033:0x7fa1b4b75f19
[  341.370821][T16011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.390413][T16011] RSP: 002b:00007fa1b593e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  341.398822][T16011] RAX: ffffffffffffffda RBX: 00007fa1b4d05f60 RCX: 00007fa1b4b75f19
[  341.406784][T16011] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  341.414750][T16011] RBP: 00007fa1b593e0a0 R08: 0000000000000000 R09: 0000000000000000
[  341.422710][T16011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  341.430674][T16011] R13: 000000000000000b R14: 00007fa1b4d05f60 R15: 00007fff30984508
[  341.438659][T16011]  </TASK>
[  341.799678][T16035] netlink: 'syz.4.3666': attribute type 1 has an invalid length.
[  341.818504][T16037] netlink: 96 bytes leftover after parsing attributes in process `syz.2.3668'.
[  342.056354][T16040] 8021q: adding VLAN 0 to HW filter on device batadv8
[  342.106750][T16040] bond2: (slave batadv8): Enslaving as a backup interface with an up link
[  342.309837][T16062] netlink: 'syz.3.3675': attribute type 5 has an invalid length.
[  342.490901][    C1] eth0: bad gso: type: 1, size: 1408
[  342.537558][T16078] sctp: [Deprecated]: syz.2.3682 (pid 16078) Use of struct sctp_assoc_value in delayed_ack socket option.
[  342.537558][T16078] Use struct sctp_sack_info instead
[  342.660370][T16085] netlink: 165 bytes leftover after parsing attributes in process `syz.1.3685'.
[  342.674283][T16083] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3684'.
[  343.026227][T16096] xt_CT: You must specify a L4 protocol and not use inversions on it
[  343.778750][T16129] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3703'.
[  343.826242][T16127] xt_hashlimit: overflow, try lower: 0/0
[  344.359169][T16156] veth1: entered promiscuous mode
[  344.385295][T16156] veth1: left promiscuous mode
[  344.473459][T16162] xt_hashlimit: size too large, truncated to 1048576
[  344.679126][T16172] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3721'.
[  344.740576][T16172] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3721'.
[  345.562838][T16189] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3728'.
[  346.689285][T16221] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3738'.
[  346.702864][T16225] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.3739'.
[  346.726062][T16221] ip6gretap0: entered promiscuous mode
[  346.745292][T16221] ip6gretap0: left promiscuous mode
[  346.816273][T16230] netlink: 'syz.1.3739': attribute type 7 has an invalid length.
[  346.860037][T16230] netlink: 'syz.1.3739': attribute type 39 has an invalid length.
[  346.984046][T16235] bridge3: port 1(gretap3) entered blocking state
[  347.021388][T16225] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3739'.
[  347.059307][T16235] bridge3: port 1(gretap3) entered disabled state
[  347.092987][T16225] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3739'.
[  347.106704][T16235] gretap3: entered allmulticast mode
[  347.116682][T16235] gretap3: entered promiscuous mode
[  347.124144][T16239] netlink: 'syz.1.3739': attribute type 7 has an invalid length.
[  347.135650][T16239] netlink: 'syz.1.3739': attribute type 39 has an invalid length.
[  347.446939][T16253] netlink: 'syz.4.3745': attribute type 1 has an invalid length.
[  347.582420][T16257] 8021q: adding VLAN 0 to HW filter on device batadv9
[  347.611062][T16257] bond3: (slave batadv9): Enslaving as a backup interface with an up link
[  347.727192][T16253] bond3 (unregistering): (slave batadv9): Releasing backup interface
[  347.843007][T16253] bond3 (unregistering): Released all slaves
[  347.936318][T16273] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  347.958557][T16273] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  348.887036][T16330] __nla_validate_parse: 2 callbacks suppressed
[  348.887055][T16330] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3768'.
[  349.091135][T16342] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3770'.
[  350.121367][T16393] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3785'.
[  350.163743][T16393] 8021q: adding VLAN 0 to HW filter on device bond3
[  350.406402][T16402] netlink: 'syz.1.3788': attribute type 33 has an invalid length.
[  350.895742][T16432] netlink: 'syz.3.3798': attribute type 1 has an invalid length.
[  351.052945][T16438] netlink: 96 bytes leftover after parsing attributes in process `syz.0.3799'.
[  351.072034][T16432] 8021q: adding VLAN 0 to HW filter on device batadv1
[  351.110902][T16432] bond1: (slave batadv1): Enslaving as a backup interface with an up link
[  351.150917][T16432] bond1 (unregistering): (slave batadv1): Releasing backup interface
[  351.210481][T16432] bond1 (unregistering): Released all slaves
[  351.801466][T16475] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3813'.
[  352.121836][T16478] syzkaller0: entered allmulticast mode
[  352.146952][T16484] netlink: 'syz.2.3816': attribute type 1 has an invalid length.
[  352.193752][T16488] 8021q: adding VLAN 0 to HW filter on device batadv1
[  352.203784][T16488] bond1: (slave batadv1): Enslaving as a backup interface with an up link
[  352.233725][T16493] team0: entered promiscuous mode
[  352.241296][T16493] team_slave_0: entered promiscuous mode
[  352.253647][T16493] team_slave_1: entered promiscuous mode
[  352.286256][T16493] batadv3: entered promiscuous mode
[  352.299084][T16495] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3817'.
[  352.309570][T16495] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3817'.
[  352.331451][T16494] bond1 (unregistering): (slave batadv1): Releasing backup interface
[  352.358018][T16494] bond1 (unregistering): Released all slaves
[  352.383510][T16478] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3814'.
[  352.400046][T16502] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3818'.
[  352.410539][T16502] netlink: 'syz.4.3818': attribute type 25 has an invalid length.
[  352.431196][T16502] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  352.440219][T16502] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  352.449032][T16502] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  352.457813][T16502] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  354.304577][T16492] team0: left promiscuous mode
[  354.318630][T16492] team_slave_0: left promiscuous mode
[  354.339369][T16492] team_slave_1: left promiscuous mode
[  354.359576][T16492] batadv3: left promiscuous mode
[  354.380306][T16529] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3827'.
[  354.410445][T16529] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  354.541147][T16537] FAULT_INJECTION: forcing a failure.
[  354.541147][T16537] name failslab, interval 1, probability 0, space 0, times 0
[  354.554263][T16537] CPU: 1 PID: 16537 Comm: syz.0.3829 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  354.564084][T16537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  354.574153][T16537] Call Trace:
[  354.577448][T16537]  <TASK>
[  354.579639][T16543] netlink: 'syz.4.3832': attribute type 1 has an invalid length.
[  354.580374][T16537]  dump_stack_lvl+0x241/0x360
[  354.592769][T16537]  ? __pfx_dump_stack_lvl+0x10/0x10
[  354.597989][T16537]  ? __pfx__printk+0x10/0x10
[  354.602608][T16537]  ? do_raw_spin_lock+0x14f/0x370
[  354.607658][T16537]  should_fail_ex+0x3b0/0x4e0
[  354.612362][T16537]  ? __inet_hash_connect+0xa2e/0x2170
[  354.617755][T16537]  should_failslab+0x9/0x20
[  354.622272][T16537]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  354.627667][T16537]  __inet_hash_connect+0xa2e/0x2170
[  354.632898][T16537]  ? __pfx___inet6_check_established+0x10/0x10
[  354.639093][T16537]  ? __pfx___inet_hash_connect+0x10/0x10
[  354.644753][T16537]  ? inet6_hash_connect+0x7d/0xd0
[  354.649803][T16537]  tcp_v6_connect+0x1158/0x1e40
[  354.654689][T16537]  ? mark_lock+0x71/0x350
[  354.659043][T16537]  ? __pfx_tcp_v6_connect+0x10/0x10
[  354.664284][T16537]  ? mark_lock+0x9a/0x350
[  354.668636][T16537]  __inet_stream_connect+0x262/0xf30
[  354.673945][T16537]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  354.680295][T16537]  ? __local_bh_enable_ip+0x168/0x200
[  354.685686][T16537]  ? lockdep_hardirqs_on+0x99/0x150
[  354.690901][T16537]  ? __pfx___inet_stream_connect+0x10/0x10
[  354.696722][T16537]  ? __local_bh_enable_ip+0x168/0x200
[  354.702113][T16537]  ? inet_stream_connect+0x50/0xa0
[  354.707245][T16537]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  354.712994][T16537]  inet_stream_connect+0x65/0xa0
[  354.717957][T16537]  kernel_connect+0x10b/0x160
[  354.722657][T16537]  ? __pfx_kernel_connect+0x10/0x10
[  354.727894][T16537]  ? do_raw_spin_unlock+0x13c/0x8b0
[  354.731958][T16543] 8021q: adding VLAN 0 to HW filter on device batadv10
[  354.733100][T16537]  smc_connect+0x72c/0xde0
[  354.744359][T16537]  __sys_connect+0x2df/0x310
[  354.748873][T16543] bond4: (slave batadv10): Enslaving as a backup interface with an up link
[  354.748955][T16537]  ? __pfx___sys_connect+0x10/0x10
[  354.762662][T16537]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  354.769013][T16537]  ? do_syscall_64+0x100/0x230
[  354.773802][T16537]  __x64_sys_connect+0x7a/0x90
[  354.778596][T16537]  do_syscall_64+0xf3/0x230
[  354.783124][T16537]  ? clear_bhb_loop+0x35/0x90
[  354.787829][T16537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  354.793749][T16537] RIP: 0033:0x7fb617575f19
[  354.798177][T16537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  354.817796][T16537] RSP: 002b:00007fb6183fc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  354.826224][T16537] RAX: ffffffffffffffda RBX: 00007fb617705f60 RCX: 00007fb617575f19
[  354.834205][T16537] RDX: 000000000000001c RSI: 0000000020000040 RDI: 0000000000000003
[  354.842187][T16537] RBP: 00007fb6183fc0a0 R08: 0000000000000000 R09: 0000000000000000
[  354.850175][T16537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  354.858160][T16537] R13: 000000000000000b R14: 00007fb617705f60 R15: 00007ffe28a7f868
[  354.866160][T16537]  </TASK>
[  354.880192][T16543] bond4 (unregistering): (slave batadv10): Releasing backup interface
[  354.907210][T16543] bond4 (unregistering): Released all slaves
[  355.198834][T16563] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.3837'.
[  355.235825][T16563] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes.
[  355.357447][T16577] FAULT_INJECTION: forcing a failure.
[  355.357447][T16577] name failslab, interval 1, probability 0, space 0, times 0
[  355.402255][T16577] CPU: 0 PID: 16577 Comm: syz.4.3841 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  355.412097][T16577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  355.422166][T16577] Call Trace:
[  355.425459][T16577]  <TASK>
[  355.428403][T16577]  dump_stack_lvl+0x241/0x360
[  355.430232][T16580] IPVS: Error connecting to the multicast addr
[  355.433087][T16577]  ? __pfx_dump_stack_lvl+0x10/0x10
[  355.433118][T16577]  ? __pfx__printk+0x10/0x10
[  355.433142][T16577]  ? is_bpf_text_address+0x285/0x2a0
[  355.433166][T16577]  should_fail_ex+0x3b0/0x4e0
[  355.459225][T16577]  ? __alloc_skb+0x1c3/0x440
[  355.463837][T16577]  should_failslab+0x9/0x20
[  355.468364][T16577]  kmem_cache_alloc_node_noprof+0x71/0x320
[  355.474198][T16577]  __alloc_skb+0x1c3/0x440
[  355.478642][T16577]  ? __pfx___alloc_skb+0x10/0x10
[  355.483604][T16577]  ? __pfx_stack_trace_save+0x10/0x10
[  355.488995][T16577]  ? __pfx_validate_chain+0x10/0x10
[  355.494219][T16577]  alloc_skb_with_frags+0xc3/0x770
[  355.496936][T16580] macsec2: entered promiscuous mode
[  355.499336][T16577]  ? __pfx_dst_destroy_rcu+0x10/0x10
[  355.509811][T16577]  ? kasan_save_stack+0x4f/0x60
[  355.514682][T16577]  ? kasan_save_stack+0x3f/0x60
[  355.518693][T16580] bridge0: entered promiscuous mode
[  355.519532][T16577]  ? __kasan_record_aux_stack+0xac/0xc0
[  355.530263][T16577]  ? call_rcu+0x167/0xa70
[  355.534615][T16577]  ? xfrm_lookup_with_ifid+0x1138/0x1ed0
[  355.540264][T16577]  ? xfrm_lookup_route+0x3c/0x1c0
[  355.544783][T16580] macsec2: entered allmulticast mode
[  355.545293][T16577]  sock_alloc_send_pskb+0x91a/0xa60
[  355.555807][T16577]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  355.561545][T16577]  ? __lock_acquire+0x137a/0x2040
[  355.566599][T16577]  __ip6_append_data+0x2ad8/0x4070
[  355.571754][T16577]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  355.574223][T16580] bridge0: entered allmulticast mode
[  355.577310][T16577]  ? __pfx___ip6_append_data+0x10/0x10
[  355.577344][T16577]  ? ip6_setup_cork+0x9fd/0xfb0
[  355.592917][T16577]  ip6_make_skb+0x43b/0x530
[  355.597448][T16577]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  355.603013][T16577]  ? __pfx_ip6_make_skb+0x10/0x10
[  355.608054][T16577]  ? ip6_sk_dst_lookup_flow+0x87c/0xa30
[  355.613623][T16577]  ? __pfx_ip6_sk_dst_lookup_flow+0x10/0x10
[  355.619531][T16577]  ? tomoyo_check_inet_address+0x8c8/0xbb0
[  355.625355][T16577]  ? udpv6_sendmsg+0x1be1/0x3270
[  355.630315][T16577]  udpv6_sendmsg+0x237f/0x3270
[  355.635120][T16577]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  355.640691][T16577]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  355.645850][T16577]  ? inet_send_prepare+0x21/0x260
[  355.650890][T16577]  ? inet_send_prepare+0x5a/0x260
[  355.655933][T16577]  __sock_sendmsg+0xef/0x270
[  355.660539][T16577]  __sys_sendto+0x3a4/0x4f0
[  355.665065][T16577]  ? __pfx___sys_sendto+0x10/0x10
[  355.670133][T16577]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  355.676134][T16577]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  355.682481][T16577]  __x64_sys_sendto+0xde/0x100
[  355.687268][T16577]  do_syscall_64+0xf3/0x230
[  355.691795][T16577]  ? clear_bhb_loop+0x35/0x90
[  355.696494][T16577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.702407][T16577] RIP: 0033:0x7f2e6b375f19
[  355.706831][T16577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.726444][T16577] RSP: 002b:00007f2e6adff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  355.734869][T16577] RAX: ffffffffffffffda RBX: 00007f2e6b505f60 RCX: 00007f2e6b375f19
[  355.742851][T16577] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  355.750829][T16577] RBP: 00007f2e6adff0a0 R08: 0000000020000300 R09: 000000000000001c
[  355.758811][T16577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  355.766795][T16577] R13: 000000000000000b R14: 00007f2e6b505f60 R15: 00007ffc811571f8
[  355.774796][T16577]  </TASK>
[  355.782369][T16580] bridge0: left allmulticast mode
[  355.788031][T16580] bridge0: left promiscuous mode
[  355.939491][T16592] netlink: 'syz.0.3843': attribute type 5 has an invalid length.
[  356.406183][T16620] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3854'.
[  356.895893][T16649] netlink: 'syz.4.3863': attribute type 4 has an invalid length.
[  356.935592][T16649] netlink: 'syz.4.3863': attribute type 4 has an invalid length.
[  357.073765][T16661] netlink: 'syz.1.3861': attribute type 5 has an invalid length.
[  357.154933][ T5105] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  357.562471][T16681] xt_hashlimit: overflow, try lower: 0/0
[  357.880398][T16688] syzkaller0: entered allmulticast mode
[  358.029025][T16708] netlink: 165 bytes leftover after parsing attributes in process `syz.3.3877'.
[  358.195116][T16712] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3880'.
[  358.205602][T13726] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  358.237055][   T52] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  358.257410][T16688] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3874'.
[  359.320997][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  360.278807][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  360.333203][T16721] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3884'.
[  360.360371][ T5105] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  360.574830][T16761] ebt_among: src integrity fail: 300
[  360.827463][T16775] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  360.846438][T16772] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.3897'.
[  360.892480][T16772] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes.
[  361.019606][T16783] netlink: 'syz.4.3902': attribute type 1 has an invalid length.
[  361.161662][T16791] 8021q: adding VLAN 0 to HW filter on device batadv11
[  361.170706][T16791] bond4: (slave batadv11): Enslaving as a backup interface with an up link
[  361.234188][T16783] bond4 (unregistering): (slave batadv11): Releasing backup interface
[  361.325904][T16783] bond4 (unregistering): Released all slaves
[  361.393753][T16794] netlink: 208 bytes leftover after parsing attributes in process `syz.0.3905'.
[  361.424094][ T5105] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  361.425270][T16808] netlink: 'syz.2.3907': attribute type 1 has an invalid length.
[  361.502954][T16805] netlink: 80 bytes leftover after parsing attributes in process `syz.3.3906'.
[  361.554078][T16816] bond1 (unregistering): Released all slaves
[  361.896124][T16822] syz.1.3911: vmalloc error: size 17179873280, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  361.919606][T16822] CPU: 1 PID: 16822 Comm: syz.1.3911 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  361.929445][T16822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  361.939512][T16822] Call Trace:
[  361.942802][T16822]  <TASK>
[  361.945752][T16822]  dump_stack_lvl+0x241/0x360
[  361.950458][T16822]  ? __pfx_dump_stack_lvl+0x10/0x10
[  361.955680][T16822]  ? __pfx__printk+0x10/0x10
[  361.960304][T16822]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  361.966744][T16822]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  361.973264][T16822]  warn_alloc+0x278/0x410
[  361.977615][T16822]  ? stack_depot_save_flags+0x29/0x830
[  361.983096][T16822]  ? __vmalloc_node_range_noprof+0x10b/0x1460
[  361.989194][T16822]  ? __pfx_warn_alloc+0x10/0x10
[  361.994064][T16822]  ? kasan_save_track+0x3f/0x80
[  361.998939][T16822]  ? __kasan_kmalloc+0x98/0xb0
[  362.003722][T16822]  ? xsk_setsockopt+0x598/0x950
[  362.008593][T16822]  ? do_sock_setsockopt+0x3af/0x720
[  362.013807][T16822]  ? __sys_setsockopt+0x1ae/0x250
[  362.018852][T16822]  ? __x64_sys_setsockopt+0xb5/0xd0
[  362.024073][T16822]  ? do_syscall_64+0xf3/0x230
[  362.028774][T16822]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.034869][T16822]  __vmalloc_node_range_noprof+0x130/0x1460
[  362.040824][T16822]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  362.047182][T16822]  ? __kasan_kmalloc+0x98/0xb0
[  362.051962][T16822]  ? xskq_create+0x54/0x170
[  362.056488][T16822]  vmalloc_user_noprof+0x74/0x80
[  362.061441][T16822]  ? xskq_create+0xb6/0x170
[  362.065958][T16822]  xskq_create+0xb6/0x170
[  362.070307][T16822]  xsk_init_queue+0xa1/0x100
[  362.074917][T16822]  xsk_setsockopt+0x598/0x950
[  362.079616][T16822]  ? __pfx_xsk_setsockopt+0x10/0x10
[  362.084833][T16822]  ? __pfx_lock_acquire+0x10/0x10
[  362.089874][T16822]  ? aa_sock_opt_perm+0x79/0x120
[  362.094831][T16822]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  362.100394][T16822]  ? security_socket_setsockopt+0x87/0xb0
[  362.106132][T16822]  ? __pfx_xsk_setsockopt+0x10/0x10
[  362.111351][T16822]  do_sock_setsockopt+0x3af/0x720
[  362.116404][T16822]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  362.121968][T16822]  ? __fget_files+0x29/0x470
[  362.126574][T16822]  ? __fget_files+0x3f6/0x470
[  362.131278][T16822]  __sys_setsockopt+0x1ae/0x250
[  362.136155][T16822]  __x64_sys_setsockopt+0xb5/0xd0
[  362.141203][T16822]  do_syscall_64+0xf3/0x230
[  362.145729][T16822]  ? clear_bhb_loop+0x35/0x90
[  362.150428][T16822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.156338][T16822] RIP: 0033:0x7f37b1175f19
[  362.160765][T16822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.180382][T16822] RSP: 002b:00007f37b1f62048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  362.188813][T16822] RAX: ffffffffffffffda RBX: 00007f37b1305f60 RCX: 00007f37b1175f19
[  362.196799][T16822] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000005
[  362.204783][T16822] RBP: 00007f37b11e4e68 R08: 0000000000000004 R09: 0000000000000000
[  362.212767][T16822] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[  362.220751][T16822] R13: 000000000000000b R14: 00007f37b1305f60 R15: 00007ffee29d6f68
[  362.228754][T16822]  </TASK>
[  362.254744][T16822] Mem-Info:
[  362.258170][T16822] active_anon:8497 inactive_anon:0 isolated_anon:0
[  362.258170][T16822]  active_file:1720 inactive_file:38259 isolated_file:0
[  362.258170][T16822]  unevictable:768 dirty:235 writeback:0
[  362.258170][T16822]  slab_reclaimable:8969 slab_unreclaimable:110874
[  362.258170][T16822]  mapped:21227 shmem:1673 pagetables:789
[  362.258170][T16822]  sec_pagetables:0 bounce:0
[  362.258170][T16822]  kernel_misc_reclaimable:0
[  362.258170][T16822]  free:1368616 free_pcp:3465 free_cma:0
[  362.339339][T16822] Node 0 active_anon:32388kB inactive_anon:0kB active_file:6880kB inactive_file:152964kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:84908kB dirty:940kB writeback:0kB shmem:3556kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11980kB pagetables:3256kB sec_pagetables:0kB all_unreclaimable? no
[  362.372236][T16794] Bluetooth: hci0: Opcode 0x080f failed: -4
[  362.383521][T16834] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3913'.
[  362.422007][T16827] IPVS: lc: SCTP 172.20.20.187:0 - no destination available
[  362.430570][ T5208] IPVS: starting estimator thread 0...
[  362.444483][T16822] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  362.484606][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  362.567155][T16844] netlink: 96 bytes leftover after parsing attributes in process `syz.3.3915'.
[  362.571095][T16822] Node 0 
[  362.594607][T16840] IPVS: using max 18 ests per chain, 43200 per kthread
[  362.610748][T16822] DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  362.647824][T16822] lowmem_reserve[]: 0 2571 2571 0 0
[  362.653229][T16822] Node 0 DMA32 free:1526400kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:32352kB inactive_anon:0kB active_file:6880kB inactive_file:152640kB unevictable:1536kB writepending:940kB present:3129332kB managed:2659808kB mlocked:0kB bounce:0kB free_pcp:1484kB local_pcp:732kB free_cma:0kB
[  362.721011][T16822] lowmem_reserve[]: 0 0 0 0 0
[  362.732459][T16846] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.3916'.
[  362.758051][T16822] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:324kB unevictable:0kB writepending:0kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  362.795403][T16822] lowmem_reserve[]: 0 0 0 0 0
[  362.796466][T16846] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes.
[  362.826447][T16822] Node 1 Normal free:3947248kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  362.926505][T16822] lowmem_reserve[]: 0 0 0 0 0
[  362.931299][T16822] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  362.976712][T16822] Node 0 DMA32: 5*4kB (UME) 7*8kB (ME) 94*16kB (UME) 321*32kB (UME) 70*64kB (UME) 36*128kB (UM) 16*256kB (UME) 7*512kB (UM) 6*1024kB (UM) 4*2048kB (UM) 362*4096kB (UME) = 1525708kB
[  363.008896][T16860] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3919'.
[  363.009999][T16822] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  363.031154][T16822] Node 1 Normal: 2*4kB (U) 7*8kB (U) 9*16kB (U) 9*32kB (U) 6*64kB (UM) 3*128kB (U) 4*256kB (UM) 5*512kB (UM) 6*1024kB (U) 2*2048kB (U) 960*4096kB (M) = 3947248kB
[  363.058839][T16860] gretap2: entered promiscuous mode
[  363.064080][T16860] gretap2: entered allmulticast mode
[  363.088686][T16822] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  363.100945][T16822] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  363.111525][T16822] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  363.131391][T16822] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  363.148584][T16822] 41231 total pagecache pages
[  363.179842][T16822] 0 pages in swap cache
[  363.184062][T16822] Free swap  = 124996kB
[  363.200639][T16822] Total swap = 124996kB
[  363.216477][T16822] 2097051 pages RAM
[  363.231338][T16822] 0 pages HighMem/MovableOnly
[  363.248806][T16822] 400889 pages reserved
[  363.263141][T16822] 0 pages cma reserved
[  363.279530][T16870] bridge0: port 3(netdevsim1) entered blocking state
[  363.325219][T16870] bridge0: port 3(netdevsim1) entered disabled state
[  363.374730][T16870] netdevsim netdevsim2 netdevsim1: entered allmulticast mode
[  363.433916][T16870] netdevsim netdevsim2 netdevsim1: entered promiscuous mode
[  363.445244][T16870] bridge0: port 3(netdevsim1) entered blocking state
[  363.452077][T16870] bridge0: port 3(netdevsim1) entered forwarding state
[  363.554768][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  363.572333][   T52] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  363.646624][ T5112] Bluetooth: hci0: command 0x080f tx timeout
[  363.797940][T16881] xt_CT: No such helper "snmp"
[  363.910904][T16897] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3930'.
[  364.192005][T16909] xt_hashlimit: overflow, try lower: 0/0
[  364.343510][T16914] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3936'.
[  364.390676][T16916] netlink: 'syz.1.3937': attribute type 1 has an invalid length.
[  364.399605][T16916] netlink: 'syz.1.3937': attribute type 1 has an invalid length.
[  364.596459][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  365.239534][T16945] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[  365.281445][T16950] IPVS: sync thread started: state = BACKUP, mcast_ifn = batadv0, syncid = 0, id = 0
[  365.302764][T16949] IPVS: stopping backup sync thread 16950 ...
[  365.622649][T16966] __nla_validate_parse: 5 callbacks suppressed
[  365.622668][T16966] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3957'.
[  365.640256][ T5105] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  365.844064][T16977] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3960'.
[  365.889009][T16977] netlink: 'syz.4.3960': attribute type 25 has an invalid length.
[  365.920783][T16983] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3963'.
[  366.041761][ T5151] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  366.100292][T16980] netlink: 76 bytes leftover after parsing attributes in process `syz.2.3962'.
[  366.123731][T16990] netlink: 'syz.1.3964': attribute type 1 has an invalid length.
[  366.259379][T16990] 8021q: adding VLAN 0 to HW filter on device batadv12
[  366.284564][T16990] bond4: (slave batadv12): Enslaving as a backup interface with an up link
[  366.320209][T16990] bond4 (unregistering): (slave batadv12): Releasing backup interface
[  366.359082][T16990] bond4 (unregistering): Released all slaves
[  366.522860][T17032] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3970'.
[  366.675191][ T5105] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  367.113046][T17065] netlink: 'syz.0.3981': attribute type 1 has an invalid length.
[  367.298095][T17078] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3984'.
[  367.315143][ T5105] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  367.375120][T17065] 8021q: adding VLAN 0 to HW filter on device batadv22
[  367.396869][T17065] bond5: (slave batadv22): Enslaving as a backup interface with an up link
[  367.507789][T17071] bond5 (unregistering): (slave batadv22): Releasing backup interface
[  367.572408][T17071] bond5 (unregistering): Released all slaves
[  367.718306][ T5105] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  368.615456][T17131] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4002'.
[  368.755955][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  368.781481][T17024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  368.796897][T17145] sch_tbf: burst 5 is lower than device team0 mtu (1514) !
[  369.212730][T17158] netlink: 108 bytes leftover after parsing attributes in process `syz.3.4009'.
[  369.343910][T17167] xt_hashlimit: size too large, truncated to 1048576
[  369.624519][T17173] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4019'.
[  369.785173][T17184] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4021'.
[  369.796962][ T5105] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  370.834562][T13726] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  371.884411][T13726] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  372.914683][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  373.954784][T13726] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  373.966583][T17016] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  374.367385][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  374.996470][T13726] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  375.646437][ T1060] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  376.054659][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  377.085441][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  378.124718][T13726] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  378.839358][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  378.846107][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  379.164518][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  379.184756][T17016] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  380.194650][ T5208] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  381.234855][T13726] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  381.398943][T13726] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  384.274945][ T6639] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  385.235128][ T6639] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  387.948102][T17200] __nla_validate_parse: 1 callbacks suppressed
[  387.948121][T17200] netlink: 108 bytes leftover after parsing attributes in process `syz.2.4026'.
[  388.436290][T17018] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  388.532431][T17235] netlink: 108 bytes leftover after parsing attributes in process `syz.3.4039'.
[  388.707440][T17241] FAULT_INJECTION: forcing a failure.
[  388.707440][T17241] name failslab, interval 1, probability 0, space 0, times 0
[  388.737480][T17241] CPU: 1 PID: 17241 Comm: syz.0.4042 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  388.747320][T17241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  388.757387][T17241] Call Trace:
[  388.760672][T17241]  <TASK>
[  388.763606][T17241]  dump_stack_lvl+0x241/0x360
[  388.768297][T17241]  ? __pfx_dump_stack_lvl+0x10/0x10
[  388.773508][T17241]  ? __pfx__printk+0x10/0x10
[  388.778116][T17241]  ? __pfx___might_resched+0x10/0x10
[  388.783415][T17241]  ? __asan_memset+0x23/0x50
[  388.788027][T17241]  should_fail_ex+0x3b0/0x4e0
[  388.792719][T17241]  ? security_inode_alloc+0x28/0x120
[  388.798003][T17241]  should_failslab+0x9/0x20
[  388.802496][T17241]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  388.807864][T17241]  security_inode_alloc+0x28/0x120
[  388.812970][T17241]  inode_init_always+0x966/0xc90
[  388.817898][T17241]  ? __pfx_sock_alloc_inode+0x10/0x10
[  388.823266][T17241]  new_inode_pseudo+0x9e/0x1a0
[  388.828020][T17241]  do_accept+0x16e/0x6c0
[  388.832258][T17241]  ? __pfx_do_accept+0x10/0x10
[  388.837028][T17241]  __sys_accept4+0x11e/0x1c0
[  388.841612][T17241]  ? __pfx___sys_accept4+0x10/0x10
[  388.846724][T17241]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  388.853042][T17241]  ? do_syscall_64+0x100/0x230
[  388.857799][T17241]  __x64_sys_accept+0x7d/0x90
[  388.862467][T17241]  do_syscall_64+0xf3/0x230
[  388.866963][T17241]  ? clear_bhb_loop+0x35/0x90
[  388.871636][T17241]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.877521][T17241] RIP: 0033:0x7fb617575f19
[  388.881924][T17241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.901532][T17241] RSP: 002b:00007fb6183fc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  388.909943][T17241] RAX: ffffffffffffffda RBX: 00007fb617705f60 RCX: 00007fb617575f19
[  388.917905][T17241] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  388.925864][T17241] RBP: 00007fb6183fc0a0 R08: 0000000000000000 R09: 0000000000000000
[  388.933826][T17241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  388.941787][T17241] R13: 000000000000000b R14: 00007fb617705f60 R15: 00007ffe28a7f868
[  388.949770][T17241]  </TASK>
[  389.004097][T17245] netlink: 'syz.2.4044': attribute type 1 has an invalid length.
[  389.069627][T17249] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4046'.
[  389.163149][T17258] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4049'.
[  389.172348][T17246] 8021q: adding VLAN 0 to HW filter on device batadv2
[  389.183537][T17246] bond1: (slave batadv2): Enslaving as a backup interface with an up link
[  389.206558][T17249] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4046'.
[  389.248892][T17252] bond1 (unregistering): (slave batadv2): Releasing backup interface
[  389.279361][T17252] bond1 (unregistering): Released all slaves
[  389.467880][T17272] netlink: 108 bytes leftover after parsing attributes in process `syz.4.4053'.
[  389.701608][T17280] ipvlan2: entered promiscuous mode
[  389.716287][T17018] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  389.733454][T17280] ipvlan2: entered allmulticast mode
[  389.749499][T17280] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  390.199791][T17306] netlink: 'syz.1.4066': attribute type 1 has an invalid length.
[  390.267246][T17307] netlink: 120 bytes leftover after parsing attributes in process `syz.4.4067'.
[  390.278355][ T5112] Bluetooth: hci4: command tx timeout
[  390.373788][T17311] 8021q: adding VLAN 0 to HW filter on device batadv13
[  390.407368][T17311] bond4: (slave batadv13): Enslaving as a backup interface with an up link
[  390.485632][T17306] bond4 (unregistering): (slave batadv13): Releasing backup interface
[  390.511881][T17306] bond4 (unregistering): Released all slaves
[  390.540155][T17324] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  390.630063][T17314] veth1: entered promiscuous mode
[  390.691943][T17314] veth1: left promiscuous mode
[  390.918141][T17338] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4079'.
[  390.995044][T17018] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  391.016379][T17346] netlink: 'syz.2.4082': attribute type 1 has an invalid length.
[  391.085670][T17348] netlink: 260 bytes leftover after parsing attributes in process `syz.0.4083'.
[  391.251855][T17359] xt_NFQUEUE: number of total queues is 0
[  391.320388][T17346] 8021q: adding VLAN 0 to HW filter on device batadv3
[  391.366688][T17346] bond1: (slave batadv3): Enslaving as a backup interface with an up link
[  391.443870][T17352] bond1 (unregistering): (slave batadv3): Releasing backup interface
[  391.470435][T17352] bond1 (unregistering): Released all slaves
[  391.484248][T17364] netlink: 80 bytes leftover after parsing attributes in process `syz.0.4088'.
[  391.686638][T17376] netlink: 'syz.4.4091': attribute type 5 has an invalid length.
[  392.064579][T17388] netlink: 'syz.4.4098': attribute type 3 has an invalid length.
[  392.894750][T17422] tipc: Started in network mode
[  392.904518][T17422] tipc: Node identity 1, cluster identity 4711
[  392.920940][T17422] tipc: Node number set to 1
[  392.934702][T17422] tipc: Cannot configure node identity twice
[  392.996504][T17432] netlink: 'syz.1.4116': attribute type 10 has an invalid length.
[  393.087789][T17441] sctp: [Deprecated]: syz.0.4115 (pid 17441) Use of int in max_burst socket option deprecated.
[  393.087789][T17441] Use struct sctp_assoc_value instead
[  393.135092][T17437] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  393.478044][T17462] xt_hashlimit: overflow, try lower: 0/0
[  393.795124][T17475] __nla_validate_parse: 2 callbacks suppressed
[  393.795142][T17475] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4130'.
[  394.196688][T17012] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  394.508613][T17507] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4142'.
[  394.560515][T17511] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4144'.
[  394.680365][T17515] tipc: Trying to set illegal importance in message
[  394.822286][T17523] syzkaller0: entered promiscuous mode
[  394.896848][T17523] syzkaller0 (unregistering): left promiscuous mode
[  395.267987][T17545] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4153'.
[  395.307057][T17545] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4153'.
[  395.330793][T17545] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4153'.
[  395.409193][T17553] xt_NFQUEUE: number of total queues is 0
[  395.475613][T17018] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  395.935459][T17584] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4170'.
[  396.159508][T17597] sctp: [Deprecated]: syz.4.4172 (pid 17597) Use of int in max_burst socket option deprecated.
[  396.159508][T17597] Use struct sctp_assoc_value instead
[  396.430855][T17610] xt_CT: You must specify a L4 protocol and not use inversions on it
[  396.755031][ T6639] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  396.802944][T17622] veth1_vlan: left promiscuous mode
[  396.897607][T17622] veth1_vlan: entered promiscuous mode
[  396.923426][T17622] macvlan1: entered promiscuous mode
[  396.955590][T17622] macvlan1: entered allmulticast mode
[  396.983617][T17622] veth1_vlan: entered allmulticast mode
[  397.003202][T17622] team0: Port device macvlan1 added
[  397.131283][T17633] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4187'.
[  397.358614][T17643] netlink: 'syz.2.4191': attribute type 10 has an invalid length.
[  397.432385][T17643] team0: Device ipvlan1 failed to register rx_handler
[  397.442659][T17646] netlink: 165 bytes leftover after parsing attributes in process `syz.3.4192'.
[  397.491364][T17644] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4191'.
[  398.939815][T17715] __nla_validate_parse: 4 callbacks suppressed
[  398.939834][T17715] netlink: 3 bytes leftover after parsing attributes in process `syz.3.4214'.
[  399.112376][T17720] FAULT_INJECTION: forcing a failure.
[  399.112376][T17720] name failslab, interval 1, probability 0, space 0, times 0
[  399.161156][T17720] CPU: 0 PID: 17720 Comm: syz.4.4215 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  399.170996][T17720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  399.181062][T17720] Call Trace:
[  399.184350][T17720]  <TASK>
[  399.187294][T17720]  dump_stack_lvl+0x241/0x360
[  399.191995][T17720]  ? __pfx_dump_stack_lvl+0x10/0x10
[  399.197213][T17720]  ? __pfx__printk+0x10/0x10
[  399.201832][T17720]  ? netlink_insert+0x10b7/0x14b0
[  399.206881][T17720]  should_fail_ex+0x3b0/0x4e0
[  399.211573][T17720]  ? __alloc_skb+0x1c3/0x440
[  399.216186][T17720]  should_failslab+0x9/0x20
[  399.220709][T17720]  kmem_cache_alloc_node_noprof+0x71/0x320
[  399.226541][T17720]  __alloc_skb+0x1c3/0x440
[  399.230983][T17720]  ? __pfx___alloc_skb+0x10/0x10
[  399.235942][T17720]  ? netlink_autobind+0xd6/0x2f0
[  399.240904][T17720]  ? netlink_autobind+0x2b0/0x2f0
[  399.245950][T17720]  netlink_sendmsg+0x638/0xcb0
[  399.250740][T17720]  ? __pfx_netlink_sendmsg+0x10/0x10
[  399.256057][T17720]  ? __import_iovec+0x536/0x820
[  399.260925][T17720]  ? aa_sock_msg_perm+0x91/0x160
[  399.265882][T17720]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  399.271192][T17720]  ? security_socket_sendmsg+0x87/0xb0
[  399.276678][T17720]  ? __pfx_netlink_sendmsg+0x10/0x10
[  399.281976][T17720]  __sock_sendmsg+0x221/0x270
[  399.286675][T17720]  ____sys_sendmsg+0x525/0x7d0
[  399.291466][T17720]  ? __pfx_____sys_sendmsg+0x10/0x10
[  399.296056][T17725] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4217'.
[  399.296771][T17720]  __sys_sendmsg+0x2b0/0x3a0
[  399.310295][T17720]  ? __pfx___sys_sendmsg+0x10/0x10
[  399.315424][T17720]  ? vfs_write+0x7c4/0xc90
[  399.319670][T17725] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4217'.
[  399.319870][T17720]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  399.334999][T17720]  ? do_syscall_64+0x100/0x230
[  399.339788][T17720]  ? do_syscall_64+0xb6/0x230
[  399.344483][T17720]  do_syscall_64+0xf3/0x230
[  399.349004][T17720]  ? clear_bhb_loop+0x35/0x90
[  399.353702][T17720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.359614][T17720] RIP: 0033:0x7f2e6b375f19
[  399.364046][T17720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  399.383661][T17720] RSP: 002b:00007f2e6adff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  399.392089][T17720] RAX: ffffffffffffffda RBX: 00007f2e6b505f60 RCX: 00007f2e6b375f19
[  399.400072][T17720] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000003
[  399.408053][T17720] RBP: 00007f2e6adff0a0 R08: 0000000000000000 R09: 0000000000000000
[  399.416037][T17720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  399.424020][T17720] R13: 000000000000000b R14: 00007f2e6b505f60 R15: 00007ffc811571f8
[  399.432020][T17720]  </TASK>
[  399.583113][T17737] xt_hashlimit: size too large, truncated to 1048576
[  399.959697][ T6639] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  400.596172][T17021] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  401.055267][T17796] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4242'.
[  401.123661][T17801] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4244'.
[  401.325366][T17811] netlink: 'syz.3.4248': attribute type 1 has an invalid length.
[  401.615136][T17823] netlink: 96 bytes leftover after parsing attributes in process `syz.3.4252'.
[  402.497601][T17852] netlink: 'syz.4.4264': attribute type 10 has an invalid length.
[  402.516286][T17018] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  402.575245][T17856] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4266'.
[  402.790856][T17865] netlink: 100 bytes leftover after parsing attributes in process `syz.4.4269'.
[  403.125866][T17881] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4274'.
[  403.144639][T17881] netlink: 80 bytes leftover after parsing attributes in process `syz.4.4274'.
[  403.597577][T17893] netlink: 'syz.3.4279': attribute type 10 has an invalid length.
[  403.786446][T17893] 8021q: adding VLAN 0 to HW filter on device batadv0
[  403.822033][T17893] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  404.084163][T17915] netlink: 260 bytes leftover after parsing attributes in process `syz.3.4286'.
[  404.151513][T17917] ebt_among: src integrity fail: 300
[  404.214621][T17919] netlink: 'syz.2.4289': attribute type 4 has an invalid length.
[  404.501955][T17937] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4295'.
[  404.715190][T17948] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  404.916071][T17952] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4300'.
[  404.932541][T17957] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4301'.
[  404.959147][T17952] openvswitch: netlink: Multiple metadata blocks provided
[  405.600447][T17969] netlink: 80 bytes leftover after parsing attributes in process `syz.0.4304'.
[  405.715619][T17018] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  406.068084][T18004] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4318'.
[  406.356753][T17012] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  406.440359][T18018] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  406.477429][T18012] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4322'.
[  406.762612][T18030] netlink: 'syz.2.4327': attribute type 1 has an invalid length.
[  406.933369][T18030] 8021q: adding VLAN 0 to HW filter on device bond1
[  407.076310][T18047] netlink: 165 bytes leftover after parsing attributes in process `syz.1.4332'.
[  407.630116][T18074] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4342'.
[  407.659855][T18074] gretap1: entered promiscuous mode
[  407.680127][T18074] gretap1: entered allmulticast mode
[  408.275941][T17016] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  408.329447][T18106] xt_hashlimit: size too large, truncated to 1048576
[  409.050227][T18122] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4362'.
[  409.070318][    C1] eth0: bad gso: type: 1, size: 1408
[  409.300575][T18133] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4365'.
[  409.323169][T18133] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4365'.
[  409.364527][T18133] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4365'.
[  409.412400][T18133] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4365'.
[  409.452120][T18134] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4365'.
[  409.767658][T18152] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  410.019091][T18157] smc: net device ip6_vti0 applied user defined pnetid SYZ0
[  410.050023][T18159] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4375'.
[  410.778232][T18186] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4387'.
[  411.364185][T18207] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4394'.
[  411.476112][T17018] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  411.488155][ T6639] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  411.912133][    C1] eth0: bad gso: type: 1, size: 1408
[  412.228959][T18251] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4411'.
[  412.268701][T18249] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4410'.
[  413.342167][ T5102] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  413.352306][ T5102] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  413.361015][ T5102] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  413.369342][ T5102] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  413.377507][ T5102] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  413.385553][ T5102] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  413.771808][ T6639] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.951260][ T6639] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  414.024308][ T6639] bridge0: port 3(netdevsim1) entered disabled state
[  414.036034][T17022] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  414.084261][ T6639] netdevsim netdevsim2 netdevsim1 (unregistering): left allmulticast mode
[  414.104547][ T6639] netdevsim netdevsim2 netdevsim1 (unregistering): left promiscuous mode
[  414.132193][ T6639] bridge0: port 3(netdevsim1) entered disabled state
[  414.176245][ T6639] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  414.306895][ T6639] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  414.660398][T18341] openvswitch: netlink: Key type 135 is out of range max 32
[  414.735732][T18343] veth1: entered promiscuous mode
[  414.799060][T18343] veth1: left promiscuous mode
[  414.883949][T18296] chnl_net:caif_netlink_parms(): no params data found
[  415.152177][ T6639] bridge_slave_1: left allmulticast mode
[  415.160976][ T6639] bridge_slave_1: left promiscuous mode
[  415.194606][ T6639] bridge0: port 2(bridge_slave_1) entered disabled state
[  415.238923][ T6639] bridge_slave_0: left allmulticast mode
[  415.254789][ T6639] bridge_slave_0: left promiscuous mode
[  415.269184][ T6639] bridge0: port 1(bridge_slave_0) entered disabled state
[  415.477366][ T5112] Bluetooth: hci4: command tx timeout
[  415.868949][ T6639] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  415.883842][ T6639] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  415.899136][ T6639] bond0 (unregistering): Released all slaves
[  416.018503][ T6639] bond1 (unregistering): Released all slaves
[  416.034012][ T6639] bond2 (unregistering): Released all slaves
[  416.278630][T18296] bridge0: port 1(bridge_slave_0) entered blocking state
[  416.297758][T18385] __nla_validate_parse: 5 callbacks suppressed
[  416.297774][T18385] netlink: 165 bytes leftover after parsing attributes in process `syz.1.4456'.
[  416.302257][T18296] bridge0: port 1(bridge_slave_0) entered disabled state
[  416.352260][T18296] bridge_slave_0: entered allmulticast mode
[  416.378653][T18296] bridge_slave_0: entered promiscuous mode
[  416.445073][T18394] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4459'.
[  416.528242][T18296] bridge0: port 2(bridge_slave_1) entered blocking state
[  416.552457][T18296] bridge0: port 2(bridge_slave_1) entered disabled state
[  416.578258][T18296] bridge_slave_1: entered allmulticast mode
[  416.595234][T17016] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  416.597286][T18296] bridge_slave_1: entered promiscuous mode
[  416.842712][T18296] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  416.998654][T18296] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  417.226512][ T6639] hsr_slave_0: left promiscuous mode
[  417.242291][T17021] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  417.300867][ T6639] hsr_slave_1: left promiscuous mode
[  417.324522][ T6639] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  417.344087][ T6639] batman_adv: batadv0: Removing interface: batadv_slave_0
[  417.365229][ T6639] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  417.378256][ T6639] batman_adv: batadv0: Removing interface: batadv_slave_1
[  417.521064][ T6639] veth1_macvtap: left promiscuous mode
[  417.531813][ T6639] veth0_macvtap: left promiscuous mode
[  417.537563][ T6639] veth1_vlan: left promiscuous mode
[  417.543040][ T6639] veth0_vlan: left promiscuous mode
[  417.555501][ T5112] Bluetooth: hci4: command tx timeout
[  418.109043][ T6639] team0 (unregistering): Port device team_slave_1 removed
[  418.209997][ T6639] team0 (unregistering): Port device team_slave_0 removed
[  418.682552][T18448] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4471'.
[  418.736734][T18296] team0: Port device team_slave_0 added
[  418.784055][T18296] team0: Port device team_slave_1 added
[  418.927806][T18296] batman_adv: batadv0: Adding interface: batadv_slave_0
[  418.949496][T18296] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  419.055780][T18296] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  419.092794][T18296] batman_adv: batadv0: Adding interface: batadv_slave_1
[  419.131836][T18296] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  419.156342][T17021] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  419.215946][T18296] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  419.435734][T18296] hsr_slave_0: entered promiscuous mode
[  419.445784][T18296] hsr_slave_1: entered promiscuous mode
[  419.461693][T18296] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  419.476587][T18296] Cannot create hsr debugfs directory
[  419.495041][T18474] netlink: 88 bytes leftover after parsing attributes in process `syz.0.4483'.
[  419.512881][T18474] netlink: 192 bytes leftover after parsing attributes in process `syz.0.4483'.
[  419.634760][ T5112] Bluetooth: hci4: command tx timeout
[  420.039162][ T6639] IPVS: stop unused estimator thread 0...
[  420.543530][T18533] xt_NFQUEUE: number of total queues is 0
[  420.693600][T18527] sit0: left promiscuous mode
[  420.813074][T18532] sit0: entered promiscuous mode
[  420.855509][T18546] FAULT_INJECTION: forcing a failure.
[  420.855509][T18546] name failslab, interval 1, probability 0, space 0, times 0
[  420.909250][T18546] CPU: 1 PID: 18546 Comm: syz.3.4508 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  420.919087][T18546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  420.929157][T18546] Call Trace:
[  420.932447][T18546]  <TASK>
[  420.935392][T18546]  dump_stack_lvl+0x241/0x360
[  420.940102][T18546]  ? __pfx_dump_stack_lvl+0x10/0x10
[  420.945317][T18546]  ? __pfx__printk+0x10/0x10
[  420.949924][T18546]  ? __pfx___might_resched+0x10/0x10
[  420.955228][T18546]  ? __asan_memset+0x23/0x50
[  420.959841][T18546]  should_fail_ex+0x3b0/0x4e0
[  420.964538][T18546]  ? sock_kmalloc+0xd7/0x160
[  420.969130][T18546]  should_failslab+0x9/0x20
[  420.973624][T18546]  __kmalloc_noprof+0xd8/0x400
[  420.978383][T18546]  sock_kmalloc+0xd7/0x160
[  420.982790][T18546]  aead_accept_parent_nokey+0x83/0x250
[  420.988241][T18546]  ? __pfx_aead_accept_parent_nokey+0x10/0x10
[  420.994298][T18546]  af_alg_accept+0x204/0x510
[  420.998891][T18546]  do_accept+0x4bf/0x6c0
[  421.003128][T18546]  ? __pfx_do_accept+0x10/0x10
[  421.007899][T18546]  __sys_accept4+0x11e/0x1c0
[  421.012479][T18546]  ? __pfx___sys_accept4+0x10/0x10
[  421.017589][T18546]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  421.023907][T18546]  ? do_syscall_64+0x100/0x230
[  421.028666][T18546]  __x64_sys_accept+0x7d/0x90
[  421.033421][T18546]  do_syscall_64+0xf3/0x230
[  421.037915][T18546]  ? clear_bhb_loop+0x35/0x90
[  421.042588][T18546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.048472][T18546] RIP: 0033:0x7f2346b75f19
[  421.052877][T18546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.072471][T18546] RSP: 002b:00007f234799e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  421.080880][T18546] RAX: ffffffffffffffda RBX: 00007f2346d05f60 RCX: 00007f2346b75f19
[  421.088838][T18546] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  421.096799][T18546] RBP: 00007f234799e0a0 R08: 0000000000000000 R09: 0000000000000000
[  421.104758][T18546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  421.112717][T18546] R13: 000000000000000b R14: 00007f2346d05f60 R15: 00007fff8ba79438
[  421.120691][T18546]  </TASK>
[  421.441753][T18559] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4513'.
[  421.473559][T18296] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  421.526260][T18296] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  421.569853][T18296] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  421.649817][T18296] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  421.714642][ T5112] Bluetooth: hci4: command tx timeout
[  421.749021][T18574] netlink: 165 bytes leftover after parsing attributes in process `syz.1.4516'.
[  422.139139][T18296] 8021q: adding VLAN 0 to HW filter on device bond0
[  422.275543][T18296] 8021q: adding VLAN 0 to HW filter on device team0
[  422.326249][ T5105] bridge0: port 1(bridge_slave_0) entered blocking state
[  422.333408][ T5105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  422.356476][T17018] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  422.375777][ T5105] bridge0: port 2(bridge_slave_1) entered blocking state
[  422.382972][ T5105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  422.483324][T18296] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  422.536475][T18296] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  422.822424][T18621] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4531'.
[  422.997343][T17016] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  423.088092][T18296] 8021q: adding VLAN 0 to HW filter on device batadv0
[  423.327910][T18296] veth0_vlan: entered promiscuous mode
[  423.352544][T18296] veth1_vlan: entered promiscuous mode
[  423.416643][T18646] pim6reg1: entered promiscuous mode
[  423.423208][T18646] pim6reg1: entered allmulticast mode
[  423.594553][T18642] netlink: 80 bytes leftover after parsing attributes in process `syz.4.4536'.
[  423.761348][T18296] veth0_macvtap: entered promiscuous mode
[  423.826528][T18296] veth1_macvtap: entered promiscuous mode
[  423.895704][T18296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  423.965678][T18296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  424.004850][T18296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  424.043086][T18296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  424.084882][T18296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  424.115118][T18296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  424.140066][T18296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  424.169040][ T5102] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  424.179617][ T5102] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  424.188211][ T5102] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  424.197641][ T5102] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  424.206583][ T5102] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  424.213901][ T5102] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  424.267671][T18296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  424.301449][T18296] batman_adv: batadv0: Interface activated: batadv_slave_0
[  424.508184][T18296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  424.533646][T18680] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4544'.
[  424.544905][T18296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  424.562411][T18296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  424.586299][T18296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  424.612528][T18296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  424.660622][T18296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  424.685783][T18296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  424.710989][T18296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  424.733828][T18296] batman_adv: batadv0: Interface activated: batadv_slave_1
[  424.774612][T18679] unknown channel width for channel at 909000KHz?
[  424.787768][T18296] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  424.830987][T18296] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  424.871912][T18296] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  424.904240][T18296] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  424.928751][T17016] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  425.076189][T18702] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4551'.
[  425.115918][T18702] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4551'.
[  425.347197][T17018] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  425.371302][T17018] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  425.483733][T18717] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4554'.
[  425.511383][ T6639] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  425.548912][ T6639] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  425.582322][T18669] chnl_net:caif_netlink_parms(): no params data found
[  425.639989][T18722] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4556'.
[  425.838826][T18669] bridge0: port 1(bridge_slave_0) entered blocking state
[  425.865722][T18669] bridge0: port 1(bridge_slave_0) entered disabled state
[  425.884628][T18669] bridge_slave_0: entered allmulticast mode
[  425.901373][T18669] bridge_slave_0: entered promiscuous mode
[  425.926974][T18669] bridge0: port 2(bridge_slave_1) entered blocking state
[  425.950026][T18669] bridge0: port 2(bridge_slave_1) entered disabled state
[  425.962172][T18669] bridge_slave_1: entered allmulticast mode
[  425.981440][T18669] bridge_slave_1: entered promiscuous mode
[  426.074323][T18669] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  426.101739][T18669] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  426.222550][T18747] FAULT_INJECTION: forcing a failure.
[  426.222550][T18747] name failslab, interval 1, probability 0, space 0, times 0
[  426.226751][T18669] team0: Port device team_slave_0 added
[  426.236475][T18747] CPU: 0 PID: 18747 Comm: syz.0.4563 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  426.250778][T18747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  426.258265][T18669] team0: Port device team_slave_1 added
[  426.260818][T18747] Call Trace:
[  426.260829][T18747]  <TASK>
[  426.272548][T18747]  dump_stack_lvl+0x241/0x360
[  426.275838][ T5112] Bluetooth: hci2: command tx timeout
[  426.277224][T18747]  ? __pfx_dump_stack_lvl+0x10/0x10
[  426.287913][T18747]  ? __pfx__printk+0x10/0x10
[  426.292518][T18747]  ? __pfx___might_resched+0x10/0x10
[  426.297823][T18747]  should_fail_ex+0x3b0/0x4e0
[  426.302519][T18747]  ? sock_kmalloc+0xd7/0x160
[  426.307120][T18747]  should_failslab+0x9/0x20
[  426.311631][T18747]  __kmalloc_noprof+0xd8/0x400
[  426.316412][T18747]  sock_kmalloc+0xd7/0x160
[  426.320842][T18747]  aead_accept_parent_nokey+0xae/0x250
[  426.326310][T18747]  ? __pfx_aead_accept_parent_nokey+0x10/0x10
[  426.332386][T18747]  af_alg_accept+0x204/0x510
[  426.336994][T18747]  do_accept+0x4bf/0x6c0
[  426.341254][T18747]  ? __pfx_do_accept+0x10/0x10
[  426.346051][T18747]  __sys_accept4+0x11e/0x1c0
[  426.350655][T18747]  ? __pfx___sys_accept4+0x10/0x10
[  426.355776][T18747]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  426.362112][T18747]  ? do_syscall_64+0x100/0x230
[  426.366890][T18747]  __x64_sys_accept+0x7d/0x90
[  426.371574][T18747]  do_syscall_64+0xf3/0x230
[  426.376090][T18747]  ? clear_bhb_loop+0x35/0x90
[  426.380780][T18747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.386686][T18747] RIP: 0033:0x7fb617575f19
[  426.391107][T18747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.410717][T18747] RSP: 002b:00007fb6183fc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  426.419143][T18747] RAX: ffffffffffffffda RBX: 00007fb617705f60 RCX: 00007fb617575f19
[  426.427127][T18747] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  426.435102][T18747] RBP: 00007fb6183fc0a0 R08: 0000000000000000 R09: 0000000000000000
[  426.443079][T18747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  426.451061][T18747] R13: 000000000000000b R14: 00007fb617705f60 R15: 00007ffe28a7f868
[  426.459056][T18747]  </TASK>
[  426.469988][T18719] dccp_close: ABORT with 92 bytes unread
[  426.503606][T18669] batman_adv: batadv0: Adding interface: batadv_slave_0
[  426.519215][T18669] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  426.534584][T18749] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4564'.
[  426.584679][T18669] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  426.717784][T18758] xt_hashlimit: overflow, try lower: 0/0
[  426.726470][T18669] batman_adv: batadv0: Adding interface: batadv_slave_1
[  426.739067][T18756] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4566'.
[  426.748293][T18669] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  426.816177][T18669] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  426.849258][T18762] netlink: 124 bytes leftover after parsing attributes in process `syz.2.4568'.
[  427.020984][T18669] hsr_slave_0: entered promiscuous mode
[  427.049745][T18669] hsr_slave_1: entered promiscuous mode
[  427.085197][T18669] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  427.109139][T18669] Cannot create hsr debugfs directory
[  427.226818][T18777] netlink: 'syz.4.4574': attribute type 10 has an invalid length.
[  427.291610][T18777] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  427.297822][T18783] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4577'.
[  427.607002][T18791] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4580'.
[  427.620900][T18790] netlink: 124 bytes leftover after parsing attributes in process `syz.0.4581'.
[  427.680242][T18793] FAULT_INJECTION: forcing a failure.
[  427.680242][T18793] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  427.735969][T18793] CPU: 1 PID: 18793 Comm: syz.2.4582 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  427.745800][T18793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  427.755868][T18793] Call Trace:
[  427.759151][T18793]  <TASK>
[  427.762085][T18793]  dump_stack_lvl+0x241/0x360
[  427.766782][T18793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  427.771991][T18793]  ? __pfx__printk+0x10/0x10
[  427.776598][T18793]  ? __pfx_lock_release+0x10/0x10
[  427.781634][T18793]  ? vfs_write+0x7c4/0xc90
[  427.786067][T18793]  should_fail_ex+0x3b0/0x4e0
[  427.790757][T18793]  _copy_from_user+0x2f/0xe0
[  427.795361][T18793]  __sys_bpf+0x1a4/0x810
[  427.799622][T18793]  ? __pfx___sys_bpf+0x10/0x10
[  427.804416][T18793]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  427.810420][T18793]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  427.816773][T18793]  ? do_syscall_64+0x100/0x230
[  427.821554][T18793]  __x64_sys_bpf+0x7c/0x90
[  427.825986][T18793]  do_syscall_64+0xf3/0x230
[  427.830509][T18793]  ? clear_bhb_loop+0x35/0x90
[  427.835210][T18793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.841120][T18793] RIP: 0033:0x7f2835575f19
[  427.845547][T18793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  427.865168][T18793] RSP: 002b:00007f2836335048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  427.873593][T18793] RAX: ffffffffffffffda RBX: 00007f2835705f60 RCX: 00007f2835575f19
[  427.881576][T18793] RDX: 0000000000000090 RSI: 0000000020000480 RDI: 0000000000000005
[  427.889562][T18793] RBP: 00007f28363350a0 R08: 0000000000000000 R09: 0000000000000000
[  427.897544][T18793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  427.905525][T18793] R13: 000000000000000b R14: 00007f2835705f60 R15: 00007fffa5b1faa8
[  427.913526][T18793]  </TASK>
[  428.039312][T17018] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  428.084116][T18806] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4587'.
[  428.131141][T17018] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  428.355134][ T5112] Bluetooth: hci2: command tx timeout
[  428.363728][T18817] netlink: 'syz.2.4590': attribute type 10 has an invalid length.
[  428.445600][T18817] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  428.468693][T18822] netlink: 124 bytes leftover after parsing attributes in process `syz.4.4592'.
[  428.686237][T18828] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4595'.
[  428.737897][T18669] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  428.770789][T18831] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4596'.
[  428.793757][T18831] 8021q: VLANs not supported on ipvlan0
[  428.827081][T18669] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  428.849921][T18669] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  428.886201][T18669] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  429.142153][T18669] 8021q: adding VLAN 0 to HW filter on device bond0
[  429.199604][T18669] 8021q: adding VLAN 0 to HW filter on device team0
[  429.240235][ T5105] bridge0: port 1(bridge_slave_0) entered blocking state
[  429.247425][ T5105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  429.301114][T18846] bridge_slave_1: left allmulticast mode
[  429.320471][T18846] bridge_slave_1: left promiscuous mode
[  429.337237][T18846] bridge0: port 2(bridge_slave_1) entered disabled state
[  429.384305][ T5105] bridge0: port 2(bridge_slave_1) entered blocking state
[  429.391480][ T5105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  429.540716][T18669] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  429.570863][T18669] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  429.624847][T18866] 8021q: VLANs not supported on ipvlan0
[  429.888706][T18877] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  429.898115][T18877] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  429.907549][T18877] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  429.916836][T18877] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  429.991588][T18669] 8021q: adding VLAN 0 to HW filter on device batadv0
[  430.173466][T18669] veth0_vlan: entered promiscuous mode
[  430.207846][T18669] veth1_vlan: entered promiscuous mode
[  430.286477][T18669] veth0_macvtap: entered promiscuous mode
[  430.309198][T18669] veth1_macvtap: entered promiscuous mode
[  430.349296][T18669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  430.370631][T18669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  430.390043][T18669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  430.428168][T18669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  430.435325][ T5102] Bluetooth: hci2: command tx timeout
[  430.482894][T18669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  430.501327][T18669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  430.521288][T18669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  430.547354][T18669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  430.568625][T18669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  430.599532][T18669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  430.632716][T18669] batman_adv: batadv0: Interface activated: batadv_slave_0
[  430.677757][ T6639] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  430.749250][T18897] 8021q: adding VLAN 0 to HW filter on device batadv13
[  430.767035][T18897] bond4: (slave batadv13): Enslaving as an active interface with an up link
[  430.784627][T18898] bond4 (unregistering): (slave batadv13): Releasing backup interface
[  430.803797][T18898] bond4 (unregistering): Released all slaves
[  430.839109][T18905] FAULT_INJECTION: forcing a failure.
[  430.839109][T18905] name failslab, interval 1, probability 0, space 0, times 0
[  430.879813][T18905] CPU: 1 PID: 18905 Comm: syz.2.4623 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  430.889642][T18905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  430.899710][T18905] Call Trace:
[  430.902997][T18905]  <TASK>
[  430.905937][T18905]  dump_stack_lvl+0x241/0x360
[  430.910636][T18905]  ? __pfx_dump_stack_lvl+0x10/0x10
[  430.915853][T18905]  ? __pfx__printk+0x10/0x10
[  430.920456][T18905]  ? __pfx___might_resched+0x10/0x10
[  430.925765][T18905]  should_fail_ex+0x3b0/0x4e0
[  430.930461][T18905]  should_failslab+0x9/0x20
[  430.934975][T18905]  __kmalloc_node_noprof+0xdf/0x440
[  430.940187][T18905]  ? qdisc_alloc+0x97/0xa80
[  430.944714][T18905]  qdisc_alloc+0x97/0xa80
[  430.949070][T18905]  qdisc_create+0x182/0x11a0
[  430.953689][T18905]  ? __pfx_qdisc_create+0x10/0x10
[  430.958743][T18905]  tc_modify_qdisc+0xa26/0x1e40
[  430.963621][T18905]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  430.968944][T18905]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  430.974241][T18905]  rtnetlink_rcv_msg+0x73f/0xcf0
[  430.979190][T18905]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  430.984315][T18905]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  430.989799][T18905]  ? ref_tracker_free+0x643/0x7e0
[  430.994851][T18905]  netlink_rcv_skb+0x1e3/0x430
[  430.999636][T18905]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  431.005120][T18905]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  431.010445][T18905]  ? netlink_deliver_tap+0x2e/0x1b0
[  431.015656][T18905]  netlink_unicast+0x7f0/0x990
[  431.020441][T18905]  ? __pfx_netlink_unicast+0x10/0x10
[  431.025736][T18905]  ? __virt_addr_valid+0x183/0x530
[  431.030865][T18905]  ? __check_object_size+0x49c/0x900
[  431.036168][T18905]  ? bpf_lsm_netlink_send+0x9/0x10
[  431.041302][T18905]  netlink_sendmsg+0x8e4/0xcb0
[  431.046093][T18905]  ? __pfx_netlink_sendmsg+0x10/0x10
[  431.051402][T18905]  ? __import_iovec+0x536/0x820
[  431.056265][T18905]  ? aa_sock_msg_perm+0x91/0x160
[  431.061221][T18905]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  431.066523][T18905]  ? security_socket_sendmsg+0x87/0xb0
[  431.072005][T18905]  ? __pfx_netlink_sendmsg+0x10/0x10
[  431.077308][T18905]  __sock_sendmsg+0x221/0x270
[  431.082007][T18905]  ____sys_sendmsg+0x525/0x7d0
[  431.086804][T18905]  ? __pfx_____sys_sendmsg+0x10/0x10
[  431.092131][T18905]  __sys_sendmsg+0x2b0/0x3a0
[  431.096745][T18905]  ? __pfx___sys_sendmsg+0x10/0x10
[  431.101874][T18905]  ? vfs_write+0x7c4/0xc90
[  431.106341][T18905]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  431.112701][T18905]  ? do_syscall_64+0x100/0x230
[  431.117482][T18905]  ? do_syscall_64+0xb6/0x230
[  431.122175][T18905]  do_syscall_64+0xf3/0x230
[  431.126694][T18905]  ? clear_bhb_loop+0x35/0x90
[  431.131393][T18905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.137305][T18905] RIP: 0033:0x7f2835575f19
[  431.141732][T18905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  431.161349][T18905] RSP: 002b:00007f2836335048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  431.169782][T18905] RAX: ffffffffffffffda RBX: 00007f2835705f60 RCX: 00007f2835575f19
[  431.177765][T18905] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000003
[  431.185747][T18905] RBP: 00007f28363350a0 R08: 0000000000000000 R09: 0000000000000000
[  431.193730][T18905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  431.201714][T18905] R13: 000000000000000b R14: 00007f2835705f60 R15: 00007fffa5b1faa8
[  431.209720][T18905]  </TASK>
[  431.233304][T18669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  431.246903][T18669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  431.277900][T18669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  431.314614][T18669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  431.336231][T18669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  431.355082][T18669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  431.365137][T18669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  431.376588][T18669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  431.386642][T18669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  431.397940][T18669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  431.425611][T18669] batman_adv: batadv0: Interface activated: batadv_slave_1
[  431.455906][T18669] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  431.474984][T18669] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  431.484289][T18669] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  431.504446][T18669] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  431.540909][T18921] __nla_validate_parse: 5 callbacks suppressed
[  431.540925][T18921] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4629'.
[  431.726581][T18931] xt_NFQUEUE: number of total queues is 0
[  431.782960][T18933] netlink: 124 bytes leftover after parsing attributes in process `syz.3.4633'.
[  431.808778][T17024] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  431.837125][T17024] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  431.893831][T18934] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4632'.
[  431.939393][T18934] 8021q: VLANs not supported on ipvlan0
[  431.975073][T18926] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4631'.
[  431.975899][T17012] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  431.993893][T18926] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4631'.
[  432.007265][T17012] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  432.052750][T18926] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4631'.
[  432.125375][ T5102] Bluetooth: hci0: command 0x080f tx timeout
[  432.225355][T18955] netlink: 'syz.1.4538': attribute type 2 has an invalid length.
[  432.302759][T18962] xt_hashlimit: size too large, truncated to 1048576
[  432.501564][T18967] lo speed is unknown, defaulting to 1000
[  432.523109][ T5112] Bluetooth: hci2: command tx timeout
[  432.549350][T18967] lo speed is unknown, defaulting to 1000
[  432.616570][T18967] lo speed is unknown, defaulting to 1000
[  432.664816][T18975] netlink: 124 bytes leftover after parsing attributes in process `syz.1.4645'.
[  432.985944][T18985] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4647'.
[  433.252436][T18967] infiniband syz0: set active
[  433.274396][ T1060] lo speed is unknown, defaulting to 1000
[  433.286265][T19001] netlink: 165 bytes leftover after parsing attributes in process `syz.3.4652'.
[  433.291833][T18967] infiniband syz0: added lo
[  433.303862][T18967] syz0: rxe_create_cq: returned err = -12
[  433.310606][T18967] infiniband syz0: Couldn't create ib_mad CQ
[  433.324717][T18967] infiniband syz0: Couldn't open port 1
[  433.426541][T18967] RDS/IB: syz0: added
[  433.431061][T18967] smc: adding ib device syz0 with port count 1
[  433.459679][T18967] smc:    ib device syz0 port 1 has pnetid 
[  433.480645][T19008] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4655'.
[  433.523031][T19008] gretap1: entered promiscuous mode
[  433.534517][T19008] gretap1: entered allmulticast mode
[  433.553538][ T1060] lo speed is unknown, defaulting to 1000
[  433.571604][T18967] lo speed is unknown, defaulting to 1000
[  433.876172][T17021] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  433.876726][ T6639] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  433.932690][T19023] FAULT_INJECTION: forcing a failure.
[  433.932690][T19023] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  433.979231][T19023] CPU: 0 PID: 19023 Comm: syz.3.4660 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  433.989158][T19023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  433.999225][T19023] Call Trace:
[  434.002517][T19023]  <TASK>
[  434.005460][T19023]  dump_stack_lvl+0x241/0x360
[  434.010165][T19023]  ? __pfx_dump_stack_lvl+0x10/0x10
[  434.015379][T19023]  ? __pfx__printk+0x10/0x10
[  434.019988][T19023]  ? snprintf+0xda/0x120
[  434.024248][T19023]  should_fail_ex+0x3b0/0x4e0
[  434.028944][T19023]  _copy_to_user+0x2f/0xb0
[  434.033383][T19023]  simple_read_from_buffer+0xca/0x150
[  434.038788][T19023]  proc_fail_nth_read+0x1e9/0x250
[  434.043830][T19023]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  434.049397][T19023]  ? rw_verify_area+0x520/0x6b0
[  434.054262][T19023]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  434.059825][T19023]  vfs_read+0x204/0xbc0
[  434.063999][T19023]  ? __pfx_lock_release+0x10/0x10
[  434.069040][T19023]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  434.074952][T19023]  ? __pfx_vfs_read+0x10/0x10
[  434.079652][T19023]  ? __fget_files+0x29/0x470
[  434.084263][T19023]  ? __fget_files+0x3f6/0x470
[  434.088965][T19023]  ksys_read+0x1a0/0x2c0
[  434.093232][T19023]  ? __pfx_ksys_read+0x10/0x10
[  434.098011][T19023]  ? do_syscall_64+0x100/0x230
[  434.102794][T19023]  ? do_syscall_64+0xb6/0x230
[  434.107493][T19023]  do_syscall_64+0xf3/0x230
[  434.112013][T19023]  ? clear_bhb_loop+0x35/0x90
[  434.116717][T19023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  434.120333][T18967] lo speed is unknown, defaulting to 1000
[  434.122611][T19023] RIP: 0033:0x7f2346b749fc
[  434.122634][T19023] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  434.122650][T19023] RSP: 002b:00007f234799e040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  434.160775][T19023] RAX: ffffffffffffffda RBX: 00007f2346d05f60 RCX: 00007f2346b749fc
[  434.168769][T19023] RDX: 000000000000000f RSI: 00007f234799e0b0 RDI: 0000000000000004
[  434.176751][T19023] RBP: 00007f234799e0a0 R08: 0000000000000000 R09: 0000000000000000
[  434.184736][T19023] R10: 0000000020000300 R11: 0000000000000246 R12: 0000000000000001
[  434.192715][T19023] R13: 000000000000000b R14: 00007f2346d05f60 R15: 00007fff8ba79438
[  434.200717][T19023]  </TASK>
[  434.619191][T19037] ICMPv6: Received fragmented ndisc packet. Carefully consider disabling suppress_frag_ndisc.
[  434.635521][T18967] lo speed is unknown, defaulting to 1000
[  434.806303][T19041] 8021q: adding VLAN 0 to HW filter on device batadv2
[  434.876828][T19041] bond1: (slave batadv2): Enslaving as an active interface with an up link
[  434.959002][T19045] bond1 (unregistering): (slave batadv2): Releasing backup interface
[  434.985826][T19045] bond1 (unregistering): Released all slaves
[  435.041125][T18967] lo speed is unknown, defaulting to 1000
[  435.276082][T19051] ebt_among: src integrity fail: 300
[  435.562035][T18967] lo speed is unknown, defaulting to 1000
[  435.798811][T17012] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  436.078870][T19044] lo speed is unknown, defaulting to 1000
[  436.135071][T19072] syz.3.4677 uses old SIOCAX25GETINFO
[  436.414313][T18967] lo speed is unknown, defaulting to 1000
[  436.887763][T19088] __nla_validate_parse: 2 callbacks suppressed
[  436.887780][T19088] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4684'.
[  436.898343][T18967] lo speed is unknown, defaulting to 1000
[  436.910596][T19088] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4684'.
[  436.938360][T19076] netlink: 80 bytes leftover after parsing attributes in process `syz.2.4679'.
[  437.270839][T19101] ipip1: entered promiscuous mode
[  437.493516][T19109] xt_NFQUEUE: number of total queues is 0
[  437.673840][T19114] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  437.793286][T19114] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  437.853809][T19121] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4699'.
[  438.265018][T19140] IPVS: set_ctl: invalid protocol: 94 0.0.0.0:20003
[  438.430816][T19146] netlink: 68 bytes leftover after parsing attributes in process `syz.1.4708'.
[  438.512772][T19124] netlink: 80 bytes leftover after parsing attributes in process `syz.4.4700'.
[  438.705425][T19154] netlink: 96 bytes leftover after parsing attributes in process `syz.3.4711'.
[  438.990912][T19173] netlink: 36 bytes leftover after parsing attributes in process `syz.1.4718'.
[  439.000743][T17016] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  439.052485][T19176] vxcan1: entered allmulticast mode
[  439.084134][T19176] pim6reg: entered allmulticast mode
[  439.142411][T19177] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4720'.
[  439.468309][T19200] netlink: 260 bytes leftover after parsing attributes in process `syz.1.4727'.
[  439.635430][ T6639] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  440.279918][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  440.286612][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  440.475783][T19241] dvmrp0: entered allmulticast mode
[  440.997215][T19263] skb len=8071 headroom=168 headlen=136 tailroom=0
[  440.997215][T19263] mac=(168,0) mac_len=0 net=(168,20) trans=188
[  440.997215][T19263] shinfo(txflags=0 nr_frags=1 gso(size=0 type=0 segs=0))
[  440.997215][T19263] csum(0x130 start=304 offset=0 ip_summed=3 complete_sw=0 valid=0 level=0)
[  440.997215][T19263] hash(0x0 sw=0 l4=0) proto=0x0800 pkttype=0 iif=0
[  440.997215][T19263] priority=0x0 mark=0x0 alloc_cpu=1 vlan_all=0x0
[  440.997215][T19263] encapsulation=1 inner(proto=0x0008, mac=192, net=192, trans=244)
[  441.045827][T19263] dev name=veth0_to_team feat=0x000061164fdd19e9
[  441.052187][T19263] skb linear:   00000000: 45 02 1f 87 6d 19 00 00 0f 2f 99 f6 ac 14 14 1f
[  441.060767][T19263] skb linear:   00000010: e0 00 e5 02 00 00 08 00 bd 0f 1f 6f 01 02 0c 52
[  441.069324][T19263] skb linear:   00000020: 0f 06 4c f9 1f e4 fd fe 4b 44 94 30 eb b5 29 97
[  441.077907][T19263] skb linear:   00000030: e3 6e 03 9b 1c 59 88 25 f8 01 00 a3 c0 63 76 c3
[  441.086456][T19263] skb linear:   00000040: 30 41 76 a1 67 d5 02 61 a6 7a 34 a0 9e 5f e2 bb
[  441.095015][T19263] skb linear:   00000050: 07 b7 10 57 f9 18 a5 4b f8 00 00 00 42 7e 00 00
[  441.103526][T19263] skb linear:   00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.112076][T19263] skb linear:   00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.120620][T19263] skb linear:   00000080: 00 00 00 00 00 00 00 00
[  441.127076][T19263] skb frag:     00000000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.135622][T19263] skb frag:     00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.144130][T19263] skb frag:     00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.152675][T19263] skb frag:     00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.161216][T19263] skb frag:     00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.169763][T19263] skb frag:     00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.178327][T19263] skb frag:     00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.186866][T19263] skb frag:     00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.195413][T19263] skb frag:     00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.203929][T19263] skb frag:     00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.212475][T19263] skb frag:     000000a0: 00 00 00 00 00 00 00 00
[  441.218938][T19263] ------------[ cut here ]------------
[  441.224430][T19263] offset (136) >= skb_headlen() (136)
[  441.230300][T19263] WARNING: CPU: 1 PID: 19263 at net/core/dev.c:3327 skb_checksum_help+0x5f9/0x730
[  441.239564][T19263] Modules linked in:
[  441.243476][T19263] CPU: 1 PID: 19263 Comm: syz.1.4750 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  441.253338][T19263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  441.263447][T19263] RIP: 0010:skb_checksum_help+0x5f9/0x730
[  441.269225][T19263] Code: 48 8b 4c 24 10 0f b6 04 01 84 c0 0f 85 dd 00 00 00 48 8b 44 24 08 2b 18 48 c7 c7 e0 97 c6 8c 44 89 f6 89 da e8 48 3f f9 f7 90 <0f> 0b 90 90 bb ea ff ff ff e9 65 fd ff ff e8 24 26 37 f8 c6 05 a7
[  441.288881][T19263] RSP: 0018:ffffc90009726d28 EFLAGS: 00010246
[  441.294995][T19263] RAX: 99cfd6203f615f00 RBX: 0000000000000088 RCX: 0000000000040000
[  441.302980][T19263] RDX: ffffc90009ae9000 RSI: 000000000003ffff RDI: 0000000000040000
[  441.310999][T19263] RBP: 0000000000001f87 R08: ffffffff815565a2 R09: fffffbfff1c39f60
[  441.319021][T19263] R10: dffffc0000000000 R11: fffffbfff1c39f60 R12: 1ffff1100a86779e
[  441.327037][T19263] R13: dffffc0000000000 R14: 0000000000000088 R15: ffff88805433bc80
[  441.335060][T19263] FS:  00007fa30a8a96c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[  441.343999][T19263] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  441.350631][T19263] CR2: 000000002000f000 CR3: 0000000021d50000 CR4: 00000000003506f0
[  441.358652][T19263] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  441.366671][T19263] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  441.374692][T19263] Call Trace:
[  441.377985][T19263]  <TASK>
[  441.380929][T19263]  ? __warn+0x163/0x4e0
[  441.385139][T19263]  ? skb_checksum_help+0x5f9/0x730
[  441.390275][T19263]  ? report_bug+0x2b3/0x500
[  441.394827][T19263]  ? skb_checksum_help+0x5f9/0x730
[  441.399965][T19263]  ? handle_bug+0x3e/0x70
[  441.404311][T19263]  ? exc_invalid_op+0x1a/0x50
[  441.409051][T19263]  ? asm_exc_invalid_op+0x1a/0x20
[  441.414102][T19263]  ? __warn_printk+0x292/0x360
[  441.418922][T19263]  ? skb_checksum_help+0x5f9/0x730
[  441.424056][T19263]  ? skb_checksum_help+0x5f8/0x730
[  441.429241][T19263]  ip_do_fragment+0x20d/0x1b30
[  441.434038][T19263]  ? __pfx_ip_finish_output2+0x10/0x10
[  441.439555][T19263]  ? __pfx_ip_do_fragment+0x10/0x10
[  441.444814][T19263]  ? kasan_quarantine_put+0xdc/0x230
[  441.450126][T19263]  ? lockdep_hardirqs_on+0x99/0x150
[  441.455397][T19263]  ? __ip_finish_output+0x247/0x400
[  441.460628][T19263]  ? kmem_cache_free+0x145/0x350
[  441.465625][T19263]  ? ip_fragment+0x9a/0x220
[  441.470149][T19263]  __ip_finish_output+0x290/0x400
[  441.475236][T19263]  iptunnel_xmit+0x540/0x9b0
[  441.479865][T19263]  ip_tunnel_xmit+0x2119/0x2950
[  441.484808][T19263]  ? __pfx_ip_tunnel_xmit+0x10/0x10
[  441.490021][T19263]  ? gre_build_header+0x341/0xb30
[  441.495115][T19263]  ? __pfx_gre_build_header+0x10/0x10
[  441.500507][T19263]  ? iptunnel_handle_offloads+0x25f/0x650
[  441.506298][T19263]  ipgre_xmit+0x958/0xd40
[  441.510668][T19263]  ? __pfx_ipgre_xmit+0x10/0x10
[  441.515585][T19263]  ? validate_xmit_skb+0x9f9/0x1120
[  441.520812][T19263]  dev_hard_start_xmit+0x27a/0x7e0
[  441.526002][T19263]  __dev_queue_xmit+0x1b63/0x3e90
[  441.531062][T19263]  ? __dev_queue_xmit+0x2da/0x3e90
[  441.536228][T19263]  ? __pskb_pull_tail+0xaee/0x14c0
[  441.541367][T19263]  ? __pfx___dev_queue_xmit+0x10/0x10
[  441.546800][T19263]  ? __pskb_pull_tail+0xf61/0x14c0
[  441.551934][T19263]  ? skb_partial_csum_set+0x105/0x350
[  441.557385][T19263]  ? virtio_net_hdr_to_skb+0xb52/0x1460
[  441.562953][T19263]  ? packet_parse_headers+0x7e3/0xaf0
[  441.568231][T17016] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  441.568388][T19263]  ? packet_xmit+0x68/0x330
[  441.583366][T19263]  packet_sendmsg+0x4bc0/0x6710
[  441.588304][T19263]  ? __pfx___might_resched+0x10/0x10
[  441.593626][T19263]  ? aa_sk_perm+0x967/0xab0
[  441.598195][T19263]  ? __pfx_packet_sendmsg+0x10/0x10
[  441.603478][T19263]  ? __pfx_lock_release+0x10/0x10
[  441.608562][T19263]  ? __import_iovec+0x536/0x820
[  441.613432][T19263]  ? aa_sock_msg_perm+0x91/0x160
[  441.618431][T19263]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  441.623735][T19263]  ? security_socket_sendmsg+0x87/0xb0
[  441.629262][T19263]  ? __pfx_packet_sendmsg+0x10/0x10
[  441.634515][T19263]  __sock_sendmsg+0x221/0x270
[  441.639221][T19263]  ____sys_sendmsg+0x525/0x7d0
[  441.644022][T19263]  ? __pfx_____sys_sendmsg+0x10/0x10
[  441.649394][T19263]  __sys_sendmsg+0x2b0/0x3a0
[  441.654011][T19263]  ? __pfx___sys_sendmsg+0x10/0x10
[  441.659250][T19263]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  441.665651][T19263]  ? do_syscall_64+0x100/0x230
[  441.670449][T19263]  ? do_syscall_64+0xb6/0x230
[  441.675206][T19263]  do_syscall_64+0xf3/0x230
[  441.679732][T19263]  ? clear_bhb_loop+0x35/0x90
[  441.684488][T19263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.690408][T19263] RIP: 0033:0x7fa309b75f19
[  441.694892][T19263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.714554][T19263] RSP: 002b:00007fa30a8a9048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  441.722985][T19263] RAX: ffffffffffffffda RBX: 00007fa309d05f60 RCX: 00007fa309b75f19
[  441.731026][T19263] RDX: 0000000000000000 RSI: 0000000020002ac0 RDI: 0000000000000003
[  441.739058][T19263] RBP: 00007fa309be4e68 R08: 0000000000000000 R09: 0000000000000000
[  441.747097][T19263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  441.755126][T19263] R13: 000000000000000b R14: 00007fa309d05f60 R15: 00007ffe2be0bcd8
[  441.763131][T19263]  </TASK>
[  441.766214][T19263] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  441.773498][T19263] CPU: 1 PID: 19263 Comm: syz.1.4750 Not tainted 6.10.0-syzkaller-09707-g3ba359c0cd6e #0
[  441.783309][T19263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  441.793377][T19263] Call Trace:
[  441.796660][T19263]  <TASK>
[  441.799595][T19263]  dump_stack_lvl+0x241/0x360
[  441.804289][T19263]  ? __pfx_dump_stack_lvl+0x10/0x10
[  441.809506][T19263]  ? __pfx__printk+0x10/0x10
[  441.814112][T19263]  ? vscnprintf+0x5d/0x90
[  441.818457][T19263]  panic+0x349/0x860
[  441.822367][T19263]  ? __warn+0x172/0x4e0
[  441.826532][T19263]  ? __pfx_panic+0x10/0x10
[  441.830986][T19263]  __warn+0x346/0x4e0
[  441.834981][T19263]  ? skb_checksum_help+0x5f9/0x730
[  441.840110][T19263]  report_bug+0x2b3/0x500
[  441.844446][T19263]  ? skb_checksum_help+0x5f9/0x730
[  441.849572][T19263]  handle_bug+0x3e/0x70
[  441.853739][T19263]  exc_invalid_op+0x1a/0x50
[  441.858253][T19263]  asm_exc_invalid_op+0x1a/0x20
[  441.863113][T19263] RIP: 0010:skb_checksum_help+0x5f9/0x730
[  441.868848][T19263] Code: 48 8b 4c 24 10 0f b6 04 01 84 c0 0f 85 dd 00 00 00 48 8b 44 24 08 2b 18 48 c7 c7 e0 97 c6 8c 44 89 f6 89 da e8 48 3f f9 f7 90 <0f> 0b 90 90 bb ea ff ff ff e9 65 fd ff ff e8 24 26 37 f8 c6 05 a7
[  441.888463][T19263] RSP: 0018:ffffc90009726d28 EFLAGS: 00010246
[  441.894551][T19263] RAX: 99cfd6203f615f00 RBX: 0000000000000088 RCX: 0000000000040000
[  441.902536][T19263] RDX: ffffc90009ae9000 RSI: 000000000003ffff RDI: 0000000000040000
[  441.910518][T19263] RBP: 0000000000001f87 R08: ffffffff815565a2 R09: fffffbfff1c39f60
[  441.918497][T19263] R10: dffffc0000000000 R11: fffffbfff1c39f60 R12: 1ffff1100a86779e
[  441.926477][T19263] R13: dffffc0000000000 R14: 0000000000000088 R15: ffff88805433bc80
[  441.934466][T19263]  ? __warn_printk+0x292/0x360
[  441.939248][T19263]  ? skb_checksum_help+0x5f8/0x730
[  441.944386][T19263]  ip_do_fragment+0x20d/0x1b30
[  441.949173][T19263]  ? __pfx_ip_finish_output2+0x10/0x10
[  441.954647][T19263]  ? __pfx_ip_do_fragment+0x10/0x10
[  441.959866][T19263]  ? kasan_quarantine_put+0xdc/0x230
[  441.965170][T19263]  ? lockdep_hardirqs_on+0x99/0x150
[  441.970392][T19263]  ? __ip_finish_output+0x247/0x400
[  441.975605][T19263]  ? kmem_cache_free+0x145/0x350
[  441.980551][T19263]  ? ip_fragment+0x9a/0x220
[  441.985070][T19263]  __ip_finish_output+0x290/0x400
[  441.990116][T19263]  iptunnel_xmit+0x540/0x9b0
[  441.994733][T19263]  ip_tunnel_xmit+0x2119/0x2950
[  441.999623][T19263]  ? __pfx_ip_tunnel_xmit+0x10/0x10
[  442.004829][T19263]  ? gre_build_header+0x341/0xb30
[  442.009884][T19263]  ? __pfx_gre_build_header+0x10/0x10
[  442.015278][T19263]  ? iptunnel_handle_offloads+0x25f/0x650
[  442.021022][T19263]  ipgre_xmit+0x958/0xd40
[  442.025380][T19263]  ? __pfx_ipgre_xmit+0x10/0x10
[  442.030257][T19263]  ? validate_xmit_skb+0x9f9/0x1120
[  442.035489][T19263]  dev_hard_start_xmit+0x27a/0x7e0
[  442.040630][T19263]  __dev_queue_xmit+0x1b63/0x3e90
[  442.045677][T19263]  ? __dev_queue_xmit+0x2da/0x3e90
[  442.050794][T19263]  ? __pskb_pull_tail+0xaee/0x14c0
[  442.055919][T19263]  ? __pfx___dev_queue_xmit+0x10/0x10
[  442.061308][T19263]  ? __pskb_pull_tail+0xf61/0x14c0
[  442.066439][T19263]  ? skb_partial_csum_set+0x105/0x350
[  442.071835][T19263]  ? virtio_net_hdr_to_skb+0xb52/0x1460
[  442.077394][T19263]  ? packet_parse_headers+0x7e3/0xaf0
[  442.082799][T19263]  ? packet_xmit+0x68/0x330
[  442.087321][T19263]  packet_sendmsg+0x4bc0/0x6710
[  442.092212][T19263]  ? __pfx___might_resched+0x10/0x10
[  442.097531][T19263]  ? aa_sk_perm+0x967/0xab0
[  442.102052][T19263]  ? __pfx_packet_sendmsg+0x10/0x10
[  442.107267][T19263]  ? __pfx_lock_release+0x10/0x10
[  442.112308][T19263]  ? __import_iovec+0x536/0x820
[  442.117168][T19263]  ? aa_sock_msg_perm+0x91/0x160
[  442.122119][T19263]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  442.127427][T19263]  ? security_socket_sendmsg+0x87/0xb0
[  442.132907][T19263]  ? __pfx_packet_sendmsg+0x10/0x10
[  442.138108][T19263]  __sock_sendmsg+0x221/0x270
[  442.142803][T19263]  ____sys_sendmsg+0x525/0x7d0
[  442.147590][T19263]  ? __pfx_____sys_sendmsg+0x10/0x10
[  442.152903][T19263]  __sys_sendmsg+0x2b0/0x3a0
[  442.157506][T19263]  ? __pfx___sys_sendmsg+0x10/0x10
[  442.162677][T19263]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  442.169028][T19263]  ? do_syscall_64+0x100/0x230
[  442.173804][T19263]  ? do_syscall_64+0xb6/0x230
[  442.178498][T19263]  do_syscall_64+0xf3/0x230
[  442.183016][T19263]  ? clear_bhb_loop+0x35/0x90
[  442.187707][T19263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.193614][T19263] RIP: 0033:0x7fa309b75f19
[  442.198042][T19263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.217656][T19263] RSP: 002b:00007fa30a8a9048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  442.226087][T19263] RAX: ffffffffffffffda RBX: 00007fa309d05f60 RCX: 00007fa309b75f19
[  442.234072][T19263] RDX: 0000000000000000 RSI: 0000000020002ac0 RDI: 0000000000000003
[  442.242051][T19263] RBP: 00007fa309be4e68 R08: 0000000000000000 R09: 0000000000000000
[  442.250030][T19263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  442.258005][T19263] R13: 000000000000000b R14: 00007fa309d05f60 R15: 00007ffe2be0bcd8
[  442.266002][T19263]  </TASK>
[  442.269244][T19263] Kernel Offset: disabled
[  442.273563][T19263] Rebooting in 86400 seconds..