last executing test programs:

2.840094763s ago: executing program 1 (id=3080):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r1, 0x29, 0x24, &(0x7f0000000000)=0xd, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x1f, 0x1f}}, @IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x58}, 0x1, 0x0, 0x0, 0x600}, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000071120b000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.436005098s ago: executing program 3 (id=3082):
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x8, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0x20000000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x3, 0x4, &(0x7f0000001240)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0xa4, &(0x7f00000001c0)=""/164, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r2, 0x0)
ioctl$SIOCX25CALLACCPTAPPRV(r2, 0x89e8)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0x7)
r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r3, &(0x7f0000000000)={0x24, @long}, 0x8)
r4 = syz_init_net_socket$llc(0x1a, 0x802, 0x0)
bind$llc(r4, 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f00000005c0)={0x26, 'hash\x00', 0x0, 0x0, 'streebog256-generic\x00'}, 0x58)
r5 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000013a40)={0x0, 0x0, &(0x7f0000013a00)={&(0x7f00000158c0), 0x10b8c}}, 0x0)
ioctl$TUNSETVNETBE(0xffffffffffffffff, 0x400454de, &(0x7f0000000040)=0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(0xffffffffffffffff, 0x84, 0x17, 0x0, 0xc4)
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e23, 0xd2, @mcast2, 0x8}, 0x1c)

2.381648659s ago: executing program 3 (id=3083):
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @multicast, @void, {@ipv4={0x88a8, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local, {[@ra={0x94, 0x4, 0x1}]}}, {{0xfffd, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10}}}}}}, 0x0)

2.211046051s ago: executing program 3 (id=3086):
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@remote, 0x0, 0x2}, 0x0)
r0 = socket(0x10, 0x80002, 0x2)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x11, 0x17, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xfffeffff, 0x0, 0x0, 0x0, 0x101}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x7, 0x1, 0xb, 0x9, 0x0, 0x20}}, {{0x5, 0x0, 0x6}, {0x66, 0x0, 0x0, 0x80ffffff}}, [@printk={@p, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x1, 0x5, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x56}}], {{0x4, 0x1, 0x2, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, @void, @value}, 0x94)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$netlink(r2, 0x10e, 0x5, 0x0, &(0x7f00000002c0)=0xfffffffffffffef6)
connect$netlink(r0, &(0x7f0000000000)=@kern={0x10, 0x0, 0x0, 0x2000000}, 0xc)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0500000004000000060000000300000000000000", @ANYRES32, @ANYBLOB="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"/338, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0300"/28], 0x50)
r4 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r4, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001a00)=ANY=[], 0x10b8}, 0x0)
listen(r4, 0x1a9)
ioctl$FS_IOC_GETFSLABEL(r3, 0x400452c8, &(0x7f0000000100))

2.10694547s ago: executing program 0 (id=3087):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x1b, &(0x7f0000000000)=0x9, 0x4)

2.060939093s ago: executing program 1 (id=3089):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xb, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000c80)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x9c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x6c, 0x2, {{}, [@TCA_NETEM_LOSS={0x30}, @TCA_NETEM_RATE={0x14, 0xd}, @TCA_NETEM_CORRUPT={0xfffffeb2, 0x2}]}}}]}, 0x9c}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='mm_page_alloc\x00', r5}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000e27f00000900000081000000", @ANYRES32, @ANYRESDEC=r2, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000013023001bddfb9f10000000000000000000000000800000000"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000380), 0x5, r6}, 0x38)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
syz_genetlink_get_family_id$l2tp(&(0x7f00000006c0), 0xffffffffffffffff)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r10, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c-generic\x00'}, 0x58)
r11 = accept4(r10, 0x0, 0x0, 0x0)
sendmsg$alg(r11, &(0x7f0000008dc0)={0x0, 0x0, &(0x7f0000008cc0)=[{&(0x7f0000008a40)="7c72bf03f7d9c0fd0826786ffcfb99e55c1272594d5be5c7f1de9562bbf652", 0x1f}, {&(0x7f0000008c80)="9d", 0x7fffefe1}], 0x2}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='mm_page_alloc\x00', r9}, 0x18)
sendmsg$nl_route(r2, &(0x7f0000000680)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="58000000690001002dbd7000fbdbdf25000000000000000008000100020000000800010001000000080001000000000008000100010000000800010000000000080001000136ae00b33881acf401000000"], 0x58}, 0x1, 0x0, 0x0, 0x840}, 0x80)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r12=>0xffffffffffffffff})
close(r12)
recvmsg$unix(r12, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r13=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r13, &(0x7f0000000000)=ANY=[], 0xfdef)
r14 = accept$ax25(r8, &(0x7f0000000200)={{0x3, @netrom}, [@netrom, @remote, @remote, @default, @bcast, @bcast, @null, @rose]}, &(0x7f00000002c0)=0x48)
getsockopt$ax25_int(r14, 0x101, 0x9, &(0x7f0000000300), &(0x7f0000000380)=0x4)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r7, @ANYBLOB="f5ff0f00252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x810}, 0xc0b0)

1.946592155s ago: executing program 3 (id=3090):
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r0, &(0x7f00000000c0)={0x1f, 0x6788, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x1000}, 0xe)
listen(r0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
socket$kcm(0xf, 0x3, 0x2)
unshare(0x22020600)
pselect6(0x40, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, 0x0, &(0x7f0000000200)={0x1fc, 0x3, 0x0, 0x9}, 0x0, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x1000, @empty}}, 0x7fff, 0x0, 0xd78e, 0x0, 0x5a1, 0x0, 0x7}, 0x9c)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000002c0)={r5, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0xd, 0x4, 0x12, 0x2}, &(0x7f00000003c0)=0x9c)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000340)={r5, 0x2, 0x7}, &(0x7f0000000500)=0x8)
recvmmsg(r3, &(0x7f0000000ac0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000080)={0x0, 0xd, &(0x7f0000000180)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f848120000005e0c0000000000000e000a001400000002800000121f", 0x82}], 0x1}, 0x0)
r7 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_OFLAGS={0x6, 0x3, 0x4cd}]}}}]}, 0x44}}, 0x0)
recvmmsg$unix(r7, &(0x7f0000006cc0)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000980)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f0000002b00)=[{&(0x7f0000000440)=""/191, 0xbf}], 0x1}}], 0x2, 0x400122a0, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400005b5d8cc20324bd7002fcdbdf2521000000"], 0x14}, 0x1, 0x0, 0x0, 0x401}, 0x0)
sendmmsg(r7, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
pselect6(0x40, &(0x7f0000000000)={0x7, 0x8, 0xffffffffffffffe8, 0x9, 0x20000004, 0x4, 0xfff, 0x64f3}, &(0x7f0000000140)={0x1, 0xa, 0x2, 0x1, 0x5, 0x9, 0x5, 0xffffffffffffff07}, &(0x7f0000000180)={0x5, 0x0, 0x5, 0xd32d, 0x9, 0x0, 0x0, 0x7fffffff}, &(0x7f0000000240)={0x0, 0x3938700}, &(0x7f00000002c0)={&(0x7f0000000280)={[0x8]}, 0x8})
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0x6db}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.892561487s ago: executing program 0 (id=3091):
r0 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000a80)={@mcast2, 0x8000000, 0x0, 0x1, 0x0, 0x4}, 0x20)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={<r1=>0x0, 0x100}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000080)={r1, 0xd}, 0x8)
r2 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r2, &(0x7f0000000140)={'full'}, 0xfffffdef)
setsockopt$sock_timeval(r2, 0x1, 0x3d, &(0x7f0000000300)={0x0, 0xea60}, 0x10)

1.597509831s ago: executing program 2 (id=3093):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x5, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000004830000000000000fa40000007010000080020007500feff0000820095"], &(0x7f0000000100)='GPL\x00', 0x4, 0xfa, &(0x7f00000007c0)=""/250, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000011c0)=@newtaction={0xe98, 0x30, 0x25, 0x0, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x30, 0x5, 0x0, 0x1, [{0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x4}]}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0xfffffffc}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x2}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
pselect6(0x40, &(0x7f0000000140)={0x5, 0x6, 0x8, 0x8, 0x0, 0x2, 0x0, 0x8}, &(0x7f0000000180)={0x9, 0x2, 0x7fff, 0x22c, 0x5, 0x0, 0xa9e, 0x7}, &(0x7f00000001c0)={0x7fffffff, 0x9, 0x81, 0xa1, 0x3, 0xff, 0x1, 0xffff}, &(0x7f0000000200)={0x77359400}, &(0x7f00000004c0)={&(0x7f0000000240)={[0xc6]}, 0x8})
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8000}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x10)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe8000000000"], 0xfdef)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001e80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r3, 0x84, 0x23, &(0x7f00000000c0)={0x0, 0xe1}, 0x8)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r4, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x5, 0x0, 0x0, {}, {0x0, 0x2710}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "5b979e01d2038d84"}}, 0x48}}, 0x0)
sendmsg$can_bcm(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=ANY=[@ANYBLOB="05000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="000000000100000000000000000000009dfc47318ccc3455"], 0x48}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4c00000002060108000034e400000000000000020500010006000000050004000000fe000900020073797a3100000000050005000200000012000300686173683a6e65742c706f7274000000ff5b3b87675a"], 0x4c}}, 0x2)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000000)="6a0e6435f82b96e120e95ef657c67f3804ab3fd20f854380e05a23b6758439b1bcc2af4612a9ffbedef954ca796197b2ad54eb4aa5e40f7e0679b02c55444cd757567b124e1c78808a05eac11e93d4de32", 0x51)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0xf00)

1.263156715s ago: executing program 1 (id=3094):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0xff9f, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)

1.262369935s ago: executing program 0 (id=3095):
unshare(0x22020600)
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f00000005c0)={0x1f, 0x1, 0x3}, 0x6)

1.194659912s ago: executing program 4 (id=3096):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000600)={'team0\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)={0x20, r3, 0x333, 0x0, 0x1, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}}, 0x4014)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e23, 0x2, @loopback}}}, 0x84)

1.133813594s ago: executing program 2 (id=3097):
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x4004010)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000480)='cgroup.procs\x00', 0x2, 0x0)
pread64(r1, &(0x7f0000000040)=""/92, 0x5c, 0x6)

1.052078427s ago: executing program 1 (id=3098):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001200000008000800000000000800090000000000180001801400020076657468305f746f5f626f6e640000000800070000000000080006"], 0x4c}}, 0x0)

1.023405267s ago: executing program 0 (id=3099):
r0 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$IMGETDEVINFO(r0, 0x80044944, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001b40)={0x3, 0xc, &(0x7f0000000240)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x11}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x58}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r3, 0x27, 0xe, 0x0, &(0x7f00000002c0)="f8ad48cc02cb29dcc8007f5b86dd", 0x0, 0x4000, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000800)={'lo\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'veth1_vlan\x00'})
mmap(&(0x7f0000497000/0x2000)=nil, 0x2000, 0x2000003, 0x13, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="e4000000", @ANYRES16=r9, @ANYBLOB="07002abd5248ffdbdf2507ff000008000300", @ANYRES32=r10, @ANYBLOB="0c00990001000c0069000000140004002f6163766c616e3100000000000000000400cc00080005000a"], 0xe4}}, 0x0)
socket$kcm(0x29, 0x5, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000480)=@newqdisc={0x44, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0x4}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_FWMARK={0x8, 0x12, 0x4}, @TCA_CAKE_SPLIT_GSO={0x8}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x15181b09c6bdc4c6}, 0x0)
setsockopt$inet_int(r2, 0x0, 0x23, &(0x7f0000000000)=0x2, 0x4)

940.503693ms ago: executing program 1 (id=3100):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='udp_fail_queue_rcv_skb\x00', r0, 0x0, 0x4391a153}, 0x18)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0xffffe000)
r1 = socket$rds(0x15, 0x5, 0x0)
sendmsg$rds(r1, &(0x7f00000033c0)={&(0x7f0000000280)={0x2, 0x4e20, @empty}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x41044}, 0x20048091)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'syzkaller0\x00', 0x400})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00'})
r2 = socket(0x2c, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="110000000400000004000000ff00000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000031901b650d38bac05865fe25f490bb7efc105d8c7f8ea0e52d56c0a39310912f16f077c1889fae2976993017459df9cf7d8b3d39af21af64f856a8af36c9d9adf6b8eb175c", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r3, &(0x7f0000000140), &(0x7f0000000080)=@udp=r2}, 0x20)
r4 = socket(0x2c, 0x3, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r3, &(0x7f0000000140), &(0x7f0000000080)=@tcp6=r4}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002400004e2400000002000000000000000000000903000000010000000000005618fff13d0195295f08000000000000000000"], 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000004000000dd0000000a00000000000000", @ANYRES32, @ANYBLOB="0000000000521600"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x81002, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_sctp(0xa, 0x801, 0x84)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xf, 0x3, &(0x7f0000000140)=ANY=[], &(0x7f0000281ffc)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r5, 0x2000000, 0x12, 0x0, &(0x7f0000000240)="5cdd3086ddff0066b3c9bbac88a8862c00df", 0x0, 0x14a, 0x0, 0x0, 0x14, 0x0, 0x0}, 0x50)
r6 = socket$pppoe(0x18, 0x1, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)="5c0000002d006bcd9e3fe3dc6e48ab31086b87033c0000001f03000000000000040014000d000aaf0d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
connect$pppoe(r6, &(0x7f0000000100)={0x18, 0x0, {0x11ff, @broadcast, 'bond_slave_1\x00'}}, 0x1e)
r8 = socket$igmp(0x2, 0x3, 0x2)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r9, &(0x7f00000004c0)='W', 0x1, 0x44011, &(0x7f0000000000)={0xa, 0x4e24, 0x0, @remote, 0x8}, 0x1c)
setsockopt$MRT_ADD_MFC(r8, 0x0, 0xcc, &(0x7f0000000200)={@empty, @private, 0x0, "606b177019716ea6ff1f4d7ed79c31e2e0f1da00000000230000002000", 0x3e1f}, 0x3c)

898.893783ms ago: executing program 2 (id=3101):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0xf)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000080)=0x100, 0x4)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
r2 = socket(0x1, 0x80802, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0xb000001d})
close(r3)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="f0220f31433daa6c361cb434e3135f8e067438956f504988ada3e9afc15b11fccebdce9685aba5e62fd8c3a19670ca9ad500a5b59df3c7ccb530a244f214883ba2790e9882203007cd298493f6faca3bb6183d07c4f2486f262d70fde191927851cb6fe0b64ea9229bf4576987e8971a34e7fffaf5f3", @ANYRES64=0x0], 0x20)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0xaa34a4cfdb933291}, 0x10)

897.394948ms ago: executing program 3 (id=3102):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="effdffff", @ANYRES16=r1, @ANYBLOB="01000000000000000000040000001400050003030000000a0000005dc00000000001080002000500000014000600ff01000a00f2f3f31f000a0000000001060001"], 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x4040000)

844.013721ms ago: executing program 4 (id=3103):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r3=>r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f00000001c0)=ANY=[@ANYRES32=r1, @ANYRES64=r3, @ANYRES64=r1, @ANYRES32=r1, @ANYRES32=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
ppoll(&(0x7f00000002c0)=[{r5, 0x8f}, {r0, 0x40}, {r5}, {r2}, {r0, 0x1000}], 0x5, &(0x7f0000000300)={0x0, 0x3938700}, &(0x7f0000000340)={[0x7]}, 0x8)
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000280)={'\x00', 0x400})
r6 = syz_init_net_socket$ax25(0x3, 0x0, 0xcb)
setsockopt$SO_TIMESTAMP(r6, 0x1, 0x3f, &(0x7f0000000200)=0x7fffffff, 0x4)
close(r0)

625.83498ms ago: executing program 3 (id=3104):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_ext={0x1c, 0x13, &(0x7f0000000500)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xfffffffa}, {}, {}, [@jmp={0x5, 0x0, 0xa, 0x1, 0x7, 0x6, 0x1}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0xc0000000}, @alu={0x4, 0x1, 0x1490efc22f7a8ebb, 0x3, 0x0, 0x80, 0xfffffffffffffff0}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000300)='syzkaller\x00', 0x348d03c7, 0xa6, &(0x7f00000005c0)=""/166, 0x41100, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000006c0)={0x5, 0x8, 0x5, 0x4}, 0x10, 0x18392, 0xffffffffffffffff, 0x3, &(0x7f0000000700)=[0xffffffffffffffff], &(0x7f0000000b00)=[{0x4, 0x2, 0x10, 0xa}, {0x3, 0x1, 0x1, 0x6}, {0x3, 0x5, 0xd, 0x4}], 0x10, 0x9, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3c0000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000014002b8008000100", @ANYRES32=r0, @ANYBLOB="082303000200000008001b"], 0x3c}, 0x1, 0x0, 0x0, 0x20048050}, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, &(0x7f0000000440)=<r2=>0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000740)={"8c3ef01be86258108b331b07f91efab2", 0x0, r2, {0x6, 0x40}, {0x3, 0x1}, 0x6, [0x1, 0x5, 0x9, 0x9, 0x7, 0x5, 0x10, 0x953, 0x1, 0x4, 0x8, 0x9000000000000000, 0x2, 0x4, 0x2, 0x5]})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r4, 0x0, 0x60, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
unshare(0x24060180)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000), 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000900)=@newtaction={0x9c, 0x30, 0xb, 0x5, 0x0, {}, [{0x88, 0x1, [@m_ct={0x84, 0x1, 0x0, 0x0, {{0x7}, {0x5c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x14, 0x0, 0x0, 0x0, 0x400}}, @TCA_CT_ZONE={0x6, 0x4, 0x4}, @TCA_CT_LABELS={0x14, 0x7, "e142a1dc6b3a3dd0aaeb9317676b63d2"}, @TCA_CT_MARK={0x8, 0x5, 0x9}, @TCA_CT_NAT_PORT_MIN={0x6, 0xd, 0x4e24}, @TCA_CT_LABELS_MASK={0x14, 0x8, "ea32d9c3eada5bb4feefd4bf8818faba"}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x8890}, 0x8050)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r7}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB="b40000001900010000000000000000001d0109004d0011806f9886ff8308eb1d7c1bbdbe3160578f5aa421ea2a089f6ab00ada4e5605b2e72655b3cc4c48e6405c0cf5329cb7f1821ec7ecca1d3ffb2d7144f29af11fe6557f8a74d923d12c43bc0000004d0012"], 0xb4}}, 0x0)
sendmsg$IPSET_CMD_TEST(r8, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24000014}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0xf, 0x200000005c832, 0xffffffffffffffff, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$can_j1939(0x1d, 0x2, 0x7)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r9, 0x400448ca, 0x0)
bind$bt_hci(r9, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)

591.795426ms ago: executing program 2 (id=3105):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, 0x0) (async)
close(0x4) (async)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={<r2=>0x0}, &(0x7f0000000080)=0xc)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r3, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0x5}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000010}, 0x4000)
syz_open_procfs$namespace(r2, &(0x7f0000000000)='ns/ipc\x00')

590.735871ms ago: executing program 4 (id=3106):
unshare(0x22020600)
socket(0x1e, 0x4, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={<r0=>0xffffffffffffffff})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x2a, &(0x7f0000000100)=r1, 0x4)

543.521825ms ago: executing program 1 (id=3107):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0xfffffffffffffe8b, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r1, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e24, @multicast2}, 0x10)
sendmmsg$inet(r1, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000040)='gLw', 0x3}], 0x1}}], 0x1, 0x2000c000)
setsockopt$inet_tcp_TLS_TX(r1, 0x6, 0xc, &(0x7f0000000180)=@gcm_128={{0x303}, "b1119702dec0b3fc", "ffe70000de00c8d07868000000000014", "70d2e318", "bcba4b0000940c36"}, 0x28)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000980)={{r0}, &(0x7f00000008c0), &(0x7f0000000940)='%pS    \x00'}, 0x20)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r2}, 0xc)

431.941421ms ago: executing program 4 (id=3108):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet(0xa, 0x801, 0x84) (async)
r1 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r1, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_buf(r2, 0x6, 0x1c, 0x0, &(0x7f0000000100))
listen(r1, 0x8) (async)
listen(r1, 0x8)
r3 = accept4(r1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e23, @empty}}, 0x5, 0x1}, 0x90) (async)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e23, @empty}}, 0x5, 0x1}, 0x90)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0x1, 0x2, @private2}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x2, 0x1, 0x8)
close(r0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000002c0)={'wlan1\x00', <r6=>0x0})
setsockopt$sock_timeval(r3, 0x1, 0x43, &(0x7f0000000280)={0x0, 0x2710}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x38, r8, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}, @ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x24044815}, 0x8000) (async)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x38, r8, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}, @ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x24044815}, 0x8000)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001440)={0x1c, r9, 0x1, 0x0, 0x0, {{0x8}, {@val={0x8, 0x3, r6}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001440)={0x1c, r9, 0x1, 0x0, 0x0, {{0x8}, {@val={0x8, 0x3, r6}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r5, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010029bd7000fb00", @ANYRES32=r6, @ANYBLOB="0c0099007f0000005d00000044007000050001000100000004000500040004002e000300f5b3241a9dbfacc469a0b16c41c3c5ead869fb316dd22429178b77592a9a181ad6a7e4c6269add700d3800000400cc00"], 0x70}, 0x1, 0x0, 0x0, 0x20044001}, 0x20008088)
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, r9, 0x1a0, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x1, 0x1a}}}}, [@NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x40000)

363.925416ms ago: executing program 0 (id=3109):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, 0x0, &(0x7f0000000040)=0x84)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$kcm(0x10, 0x2, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000600)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha512\x00'}, 0x58)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)="39000000140081ae10003c000500018311001f9f660fcf066505acb612f691f3bd3508abca1be6eeb89c44ebb37358582bdbb7d553b4e92155", 0x39}], 0x1}, 0x0)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='rpc_buf_alloc\x00', r4, 0x0, 0x1}, 0x18)
r5 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r6=>0x0})
bind$can_j1939(r5, &(0x7f0000000080)={0x1d, r6, 0x2}, 0x18)
socket$nl_rdma(0x10, 0x3, 0x14)
syz_genetlink_get_family_id$tipc(&(0x7f0000000140), r5)
sendmmsg$unix(r5, 0x0, 0x0, 0xc0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(aes)\x00'}, 0x58)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r8, 0x29, 0x1a, &(0x7f0000000100)=0x401, 0x4)
bind$inet6(r8, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}}, 0x1c)
r9 = accept$alg(r7, 0x0, 0x0)
read$alg(r9, &(0x7f0000000280)=""/241, 0xf1)
sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)

360.888246ms ago: executing program 2 (id=3110):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001200000008000800000000000800090000000000180001801400020076657468305f746f5f626f6e640000000800070000000000080006"], 0x4c}}, 0x0)

197.382247ms ago: executing program 4 (id=3111):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x33, 0x0, 0x57)

114.429104ms ago: executing program 2 (id=3112):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x13, 0x10, 0x1, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000009c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x100080d6}, 0x4000084)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0xe, 0x40, 0x3, 0x41, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140), &(0x7f0000000040), 0x1003, r1}, 0x38)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r2, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x8, @multicast2}}, 0x24)
sendmmsg(r2, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)
recvmmsg(r2, &(0x7f0000000d00), 0xf000, 0x10002, 0x0)
r3 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000e15000)={0x2, 0x4e20, @empty}, 0x10)
r4 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)
connect$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x2711}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000380)={r1, &(0x7f0000000300), 0x0}, 0x20)

56.449312ms ago: executing program 0 (id=3113):
r0 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000001ac0)={'vcan0\x00', 0x6})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x9, 0x8, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r4}, &(0x7f0000000180), &(0x7f0000000100)=r3}, 0x20)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
ppoll(&(0x7f0000000500)=[{r5}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0xffffffff, 0x0, 0x0, 0x4, 0x2, 0x1}})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800490400000000000014000a100000000000000100000008001e0001000000"], 0x24}}, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'veth0_to_team\x00', 0x800})
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="b400000000000000791048000000000071006400000000009500000000000000db74589d4b38cc306ac390649f72dea0e50e2317db042855d6c74ff3493c7e31e3f6c643155a8e2e01d50bc3347475750472719cc516fa14b769e7f385ba72c60242263c05ddab05e37efe81b8bffc35cdf2ac0d93263ff755d611c4cca1684b1470af6a83366aa430ad2d700b186da622d6fba70000000000000000000000000200"/173], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x1b)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r8, 0x84, 0x6b, &(0x7f00000000c0)=[@in={0x2, 0x4e20, @local}], 0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r10}, 0x10)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x6, 0x0, 0x8100, 0x0, {0x1, 0x10}, {0xd}, {0xe, 0x10}}, [@TCA_RATE={0x6}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x400c800}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x13, 0x13, &(0x7f0000000680)=ANY=[@ANYRESHEX=r0, @ANYBLOB="00000000000000006608000000000000180000008a4fec1bed8060d654c30000000000000000000000009500000000000000360a020000000000180100002020782500000000202020207b1af8ff00000000bfa100000000000005010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff7ffffd, @void, @value}, 0x94)
r11 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_CONTEXT(r11, 0x84, 0x11, &(0x7f0000000140)={0x0, 0x6}, 0x8)

0s ago: executing program 4 (id=3114):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x48}, {0x6}]}, 0x10)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000003180)={{{@in6=@initdev, @in6=@ipv4={""/10, ""/2, @local}}}, {{@in=@multicast2}, 0x0, @in=@multicast2}}, &(0x7f0000000140)=0xfffffffffffffff7)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @random="0f3030a7d3f4", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x3, 0x3, 0x2, 0x5, 0x0, @dev, @private=0xa010100}, {{0x4e24, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x0, 0x0, 0x0, 0x3}}}}}}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f00000000c0)={0xfffc, 0x4}, 0x8)
sendto$inet6(r2, &(0x7f0000000580)="81", 0x1, 0x40000, &(0x7f0000000280)={0xa, 0x0, 0x0, @loopback, 0x81}, 0x1c)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2f, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x18, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4040}, 0x8080)

kernel console output (not intermixed with test programs):

5fa0 RCX: 00007fbe6b98d169
[  681.942134][T17075] RDX: 0000000004000914 RSI: 000020000000c2c0 RDI: 0000000000000003
[  681.942147][T17075] RBP: 00007fbe6c792090 R08: 0000000000000000 R09: 0000000000000000
[  681.942159][T17075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  681.942181][T17075] R13: 0000000000000000 R14: 00007fbe6bba5fa0 R15: 00007ffed114aaa8
[  681.942212][T17075]  </TASK>
[  682.358065][T17077] validate_nla: 1 callbacks suppressed
[  682.358085][T17077] netlink: 'syz.4.2609': attribute type 10 has an invalid length.
[  682.371775][T17077] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2609'.
[  682.467982][T17083] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  682.626264][T17091] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2614'.
[  683.164543][T17079] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[  683.202335][T17079] bond26: left promiscuous mode
[  683.218987][T17079] bond27: left promiscuous mode
[  683.236018][T17079] bond28: left promiscuous mode
[  683.500029][T17109] openvswitch: netlink: Message has 8 unknown bytes.
[  683.517390][T17112] FAULT_INJECTION: forcing a failure.
[  683.517390][T17112] name failslab, interval 1, probability 0, space 0, times 0
[  683.537683][T17112] CPU: 1 UID: 0 PID: 17112 Comm: syz.4.2619 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  683.537712][T17112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  683.537725][T17112] Call Trace:
[  683.537733][T17112]  <TASK>
[  683.537742][T17112]  dump_stack_lvl+0x241/0x360
[  683.537774][T17112]  ? __pfx_dump_stack_lvl+0x10/0x10
[  683.537799][T17112]  ? __pfx__printk+0x10/0x10
[  683.537821][T17112]  ? __kmalloc_noprof+0xb5/0x4c0
[  683.537851][T17112]  ? __pfx___might_resched+0x10/0x10
[  683.537882][T17112]  should_fail_ex+0x40a/0x550
[  683.537915][T17112]  should_failslab+0xac/0x100
[  683.537940][T17112]  __kmalloc_noprof+0xdd/0x4c0
[  683.537963][T17112]  ? __kmalloc_cache_noprof+0x243/0x390
[  683.537987][T17112]  ? netlbl_mgmt_add_common+0x142/0x12e0
[  683.538042][T17112]  netlbl_mgmt_add_common+0x142/0x12e0
[  683.538074][T17112]  ? apparmor_current_getlsmprop_subj+0xde/0x160
[  683.538115][T17112]  netlbl_mgmt_adddef+0x2fa/0x380
[  683.538143][T17112]  ? __pfx_netlbl_mgmt_adddef+0x10/0x10
[  683.538172][T17112]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  683.538207][T17112]  genl_rcv_msg+0xb1f/0xec0
[  683.538242][T17112]  ? __pfx_genl_rcv_msg+0x10/0x10
[  683.538294][T17112]  ? __pfx_lock_acquire+0x10/0x10
[  683.538320][T17112]  ? __pfx_netlbl_mgmt_adddef+0x10/0x10
[  683.538345][T17112]  ? __pfx___might_resched+0x10/0x10
[  683.538379][T17112]  netlink_rcv_skb+0x206/0x480
[  683.538407][T17112]  ? __pfx_genl_rcv_msg+0x10/0x10
[  683.538429][T17112]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  683.538483][T17112]  genl_rcv+0x28/0x40
[  683.538504][T17112]  netlink_unicast+0x7f6/0x990
[  683.538537][T17112]  ? __pfx_netlink_unicast+0x10/0x10
[  683.538565][T17112]  ? __virt_addr_valid+0x45f/0x530
[  683.538586][T17112]  ? __phys_addr_symbol+0x2f/0x70
[  683.538606][T17112]  ? __check_object_size+0x47a/0x730
[  683.538639][T17112]  netlink_sendmsg+0x8de/0xcb0
[  683.538672][T17112]  ? __pfx_netlink_sendmsg+0x10/0x10
[  683.538696][T17112]  ? aa_sock_msg_perm+0x91/0x160
[  683.538728][T17112]  ? __pfx_netlink_sendmsg+0x10/0x10
[  683.538743][T17112]  __sock_sendmsg+0x221/0x270
[  683.538772][T17112]  ____sys_sendmsg+0x53a/0x860
[  683.538801][T17112]  ? __pfx_____sys_sendmsg+0x10/0x10
[  683.538820][T17112]  ? __fget_files+0x2a/0x410
[  683.538849][T17112]  ? __fget_files+0x2a/0x410
[  683.538882][T17112]  __sys_sendmsg+0x269/0x350
[  683.538910][T17112]  ? __pfx___sys_sendmsg+0x10/0x10
[  683.538943][T17112]  ? do_sys_openat2+0x17a/0x1d0
[  683.538991][T17112]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  683.539020][T17112]  ? do_syscall_64+0x100/0x230
[  683.539049][T17112]  ? do_syscall_64+0xb6/0x230
[  683.539079][T17112]  do_syscall_64+0xf3/0x230
[  683.539104][T17112]  ? clear_bhb_loop+0x35/0x90
[  683.539143][T17112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  683.539168][T17112] RIP: 0033:0x7f0de958d169
[  683.539184][T17112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  683.539198][T17112] RSP: 002b:00007f0dea451038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  683.539216][T17112] RAX: ffffffffffffffda RBX: 00007f0de97a5fa0 RCX: 00007f0de958d169
[  683.539229][T17112] RDX: 0000000004040000 RSI: 0000200000000100 RDI: 0000000000000004
[  683.539240][T17112] RBP: 00007f0dea451090 R08: 0000000000000000 R09: 0000000000000000
[  683.539250][T17112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  683.539260][T17112] R13: 0000000000000000 R14: 00007f0de97a5fa0 R15: 00007ffd763c8868
[  683.539287][T17112]  </TASK>
[  683.942449][T17109] netlink: 'syz.3.2618': attribute type 12 has an invalid length.
[  684.284414][T17126] netlink: 'syz.0.2621': attribute type 10 has an invalid length.
[  684.399803][T17130] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2623'.
[  684.489139][T17131] netlink: 'syz.1.2624': attribute type 7 has an invalid length.
[  684.516450][T17131] netlink: 'syz.1.2624': attribute type 8 has an invalid length.
[  684.553235][T17131] netlink: 236 bytes leftover after parsing attributes in process `syz.1.2624'.
[  685.371861][T17162] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  685.636179][T17167] FAULT_INJECTION: forcing a failure.
[  685.636179][T17167] name failslab, interval 1, probability 0, space 0, times 0
[  685.657581][T17167] CPU: 1 UID: 0 PID: 17167 Comm: syz.2.2637 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  685.657612][T17167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  685.657625][T17167] Call Trace:
[  685.657633][T17167]  <TASK>
[  685.657641][T17167]  dump_stack_lvl+0x241/0x360
[  685.657674][T17167]  ? __pfx_dump_stack_lvl+0x10/0x10
[  685.657698][T17167]  ? __pfx__printk+0x10/0x10
[  685.657722][T17167]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  685.657755][T17167]  ? __pfx___might_resched+0x10/0x10
[  685.657789][T17167]  should_fail_ex+0x40a/0x550
[  685.657827][T17167]  should_failslab+0xac/0x100
[  685.657884][T17167]  kmem_cache_alloc_node_noprof+0x77/0x380
[  685.657914][T17167]  ? __alloc_skb+0x1c3/0x440
[  685.657942][T17167]  __alloc_skb+0x1c3/0x440
[  685.657972][T17167]  ? __pfx___alloc_skb+0x10/0x10
[  685.658003][T17167]  ? netlink_ack_tlv_len+0x6e/0x200
[  685.658039][T17167]  netlink_ack+0x145/0xa60
[  685.658069][T17167]  ? __pfx_lock_acquire+0x10/0x10
[  685.658101][T17167]  ? __pfx_smc_pnet_add+0x10/0x10
[  685.658135][T17167]  ? __pfx___might_resched+0x10/0x10
[  685.658174][T17167]  netlink_rcv_skb+0x294/0x480
[  685.658215][T17167]  ? __pfx_genl_rcv_msg+0x10/0x10
[  685.658243][T17167]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  685.658308][T17167]  genl_rcv+0x28/0x40
[  685.658332][T17167]  netlink_unicast+0x7f6/0x990
[  685.658371][T17167]  ? __pfx_netlink_unicast+0x10/0x10
[  685.658400][T17167]  ? __virt_addr_valid+0x45f/0x530
[  685.658422][T17167]  ? __phys_addr_symbol+0x2f/0x70
[  685.658441][T17167]  ? __check_object_size+0x47a/0x730
[  685.658475][T17167]  netlink_sendmsg+0x8de/0xcb0
[  685.658509][T17167]  ? __pfx_netlink_sendmsg+0x10/0x10
[  685.658535][T17167]  ? aa_sock_msg_perm+0x91/0x160
[  685.658576][T17167]  ? __pfx_netlink_sendmsg+0x10/0x10
[  685.658594][T17167]  __sock_sendmsg+0x221/0x270
[  685.658636][T17167]  ____sys_sendmsg+0x53a/0x860
[  685.658671][T17167]  ? __pfx_____sys_sendmsg+0x10/0x10
[  685.658696][T17167]  ? __fget_files+0x2a/0x410
[  685.658731][T17167]  ? __fget_files+0x2a/0x410
[  685.658772][T17167]  __sys_sendmsg+0x269/0x350
[  685.658804][T17167]  ? __pfx___sys_sendmsg+0x10/0x10
[  685.658844][T17167]  ? do_sys_openat2+0x17a/0x1d0
[  685.658905][T17167]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  685.658939][T17167]  ? do_syscall_64+0x100/0x230
[  685.658974][T17167]  ? do_syscall_64+0xb6/0x230
[  685.659009][T17167]  do_syscall_64+0xf3/0x230
[  685.659040][T17167]  ? clear_bhb_loop+0x35/0x90
[  685.659074][T17167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  685.659103][T17167] RIP: 0033:0x7f7aec18d169
[  685.659121][T17167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  685.659139][T17167] RSP: 002b:00007f7aecf5e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  685.659161][T17167] RAX: ffffffffffffffda RBX: 00007f7aec3a5fa0 RCX: 00007f7aec18d169
[  685.659176][T17167] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[  685.659189][T17167] RBP: 00007f7aecf5e090 R08: 0000000000000000 R09: 0000000000000000
[  685.659207][T17167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  685.659220][T17167] R13: 0000000000000000 R14: 00007f7aec3a5fa0 R15: 00007ffc0c6b8588
[  685.659251][T17167]  </TASK>
[  686.192083][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  686.198696][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  686.241494][T17180] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2641'.
[  686.728611][T17184] FAULT_INJECTION: forcing a failure.
[  686.728611][T17184] name failslab, interval 1, probability 0, space 0, times 0
[  686.752039][T17184] CPU: 0 UID: 0 PID: 17184 Comm: syz.0.2642 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  686.752070][T17184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  686.752083][T17184] Call Trace:
[  686.752090][T17184]  <TASK>
[  686.752098][T17184]  dump_stack_lvl+0x241/0x360
[  686.752129][T17184]  ? __pfx_dump_stack_lvl+0x10/0x10
[  686.752152][T17184]  ? __pfx__printk+0x10/0x10
[  686.752176][T17184]  ? __kmalloc_cache_noprof+0x48/0x390
[  686.752209][T17184]  ? __pfx___might_resched+0x10/0x10
[  686.752244][T17184]  should_fail_ex+0x40a/0x550
[  686.752282][T17184]  should_failslab+0xac/0x100
[  686.752312][T17184]  __kmalloc_cache_noprof+0x70/0x390
[  686.752340][T17184]  ? nh_notifier_info_init+0x2e5/0xd00
[  686.752368][T17184]  nh_notifier_info_init+0x2e5/0xd00
[  686.752396][T17184]  call_nexthop_notifiers+0x140/0x280
[  686.752423][T17184]  ? __pfx_call_nexthop_notifiers+0x10/0x10
[  686.752460][T17184]  rtm_new_nexthop+0x5eda/0xa490
[  686.752506][T17184]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  686.752562][T17184]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  686.752601][T17184]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  686.752628][T17184]  ? lockdep_hardirqs_on+0x99/0x150
[  686.752658][T17184]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  686.752690][T17184]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  686.752723][T17184]  ? rcu_is_watching+0x15/0xb0
[  686.752763][T17184]  ? rtnetlink_rcv_msg+0x6e6/0xcf0
[  686.752817][T17184]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  686.752842][T17184]  rtnetlink_rcv_msg+0x73f/0xcf0
[  686.752874][T17184]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  686.752908][T17184]  ? __lock_acquire+0x1397/0x2100
[  686.752941][T17184]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  686.752992][T17184]  netlink_rcv_skb+0x206/0x480
[  686.753033][T17184]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  686.753069][T17184]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  686.753126][T17184]  ? netlink_deliver_tap+0x2e/0x1b0
[  686.753163][T17184]  netlink_unicast+0x7f6/0x990
[  686.753202][T17184]  ? __pfx_netlink_unicast+0x10/0x10
[  686.753230][T17184]  ? __virt_addr_valid+0x45f/0x530
[  686.753252][T17184]  ? __phys_addr_symbol+0x2f/0x70
[  686.753271][T17184]  ? __check_object_size+0x47a/0x730
[  686.753306][T17184]  netlink_sendmsg+0x8de/0xcb0
[  686.753340][T17184]  ? __pfx_netlink_sendmsg+0x10/0x10
[  686.753365][T17184]  ? aa_sock_msg_perm+0x91/0x160
[  686.753405][T17184]  ? __pfx_netlink_sendmsg+0x10/0x10
[  686.753423][T17184]  __sock_sendmsg+0x221/0x270
[  686.753459][T17184]  ____sys_sendmsg+0x53a/0x860
[  686.753495][T17184]  ? __pfx_____sys_sendmsg+0x10/0x10
[  686.753519][T17184]  ? __fget_files+0x2a/0x410
[  686.753554][T17184]  ? __fget_files+0x2a/0x410
[  686.753592][T17184]  __sys_sendmsg+0x269/0x350
[  686.753623][T17184]  ? __pfx___sys_sendmsg+0x10/0x10
[  686.753664][T17184]  ? do_sys_openat2+0x17a/0x1d0
[  686.753722][T17184]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  686.753757][T17184]  ? do_syscall_64+0x100/0x230
[  686.753791][T17184]  ? do_syscall_64+0xb6/0x230
[  686.753825][T17184]  do_syscall_64+0xf3/0x230
[  686.753856][T17184]  ? clear_bhb_loop+0x35/0x90
[  686.753889][T17184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  686.753917][T17184] RIP: 0033:0x7fbe6b98d169
[  686.753936][T17184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  686.753953][T17184] RSP: 002b:00007fbe6c792038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  686.753975][T17184] RAX: ffffffffffffffda RBX: 00007fbe6bba5fa0 RCX: 00007fbe6b98d169
[  686.753990][T17184] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  686.754010][T17184] RBP: 00007fbe6c792090 R08: 0000000000000000 R09: 0000000000000000
[  686.754022][T17184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  686.754034][T17184] R13: 0000000000000000 R14: 00007fbe6bba5fa0 R15: 00007ffed114aaa8
[  686.754066][T17184]  </TASK>
[  687.225929][T17192] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2644'.
[  687.242304][T17192] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2644'.
[  687.251225][T17192] netlink: 'syz.3.2644': attribute type 14 has an invalid length.
[  687.296195][T17192] netlink: 'syz.3.2644': attribute type 13 has an invalid length.
[  687.326908][T17189] netlink: 'syz.1.2643': attribute type 16 has an invalid length.
[  687.335268][T17189] netlink: 'syz.1.2643': attribute type 17 has an invalid length.
[  687.388618][T17189] 8021q: adding VLAN 0 to HW filter on device bond0
[  687.397270][T17189] 8021q: adding VLAN 0 to HW filter on device team0
[  687.429658][T17189] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  687.457609][T17196] bond19: left promiscuous mode
[  687.463210][T17196] bridge1: left promiscuous mode
[  687.772958][T17210] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2649'.
[  688.707736][T17237] FAULT_INJECTION: forcing a failure.
[  688.707736][T17237] name failslab, interval 1, probability 0, space 0, times 0
[  688.769850][T17237] CPU: 1 UID: 0 PID: 17237 Comm: syz.0.2655 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  688.769882][T17237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  688.769896][T17237] Call Trace:
[  688.769903][T17237]  <TASK>
[  688.769911][T17237]  dump_stack_lvl+0x241/0x360
[  688.769943][T17237]  ? __pfx_dump_stack_lvl+0x10/0x10
[  688.769967][T17237]  ? __pfx__printk+0x10/0x10
[  688.769991][T17237]  ? __kmalloc_node_track_caller_noprof+0xb4/0x4c0
[  688.770025][T17237]  ? __pfx___might_resched+0x10/0x10
[  688.770051][T17237]  ? sock_do_ioctl+0x158/0x460
[  688.770085][T17237]  should_fail_ex+0x40a/0x550
[  688.770123][T17237]  should_failslab+0xac/0x100
[  688.770153][T17237]  __kmalloc_node_track_caller_noprof+0xdc/0x4c0
[  688.770185][T17237]  ? kobject_set_name_vargs+0x61/0x120
[  688.770223][T17237]  kstrdup+0x42/0x100
[  688.770257][T17237]  kobject_set_name_vargs+0x61/0x120
[  688.770293][T17237]  dev_set_name+0xd5/0x120
[  688.770328][T17237]  ? __pfx_dev_set_name+0x10/0x10
[  688.770359][T17237]  ? __kasan_kmalloc+0x98/0xb0
[  688.770385][T17237]  ? __kmalloc_cache_noprof+0x243/0x390
[  688.770414][T17237]  ? tty_register_device_attr+0x311/0x960
[  688.770446][T17237]  tty_register_device_attr+0x3cc/0x960
[  688.770480][T17237]  ? __pfx_tty_register_device_attr+0x10/0x10
[  688.770521][T17237]  ? tty_port_register_device+0x5b/0x100
[  688.770552][T17237]  rfcomm_dev_ioctl+0x1ad3/0x22f0
[  688.770590][T17237]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  688.770619][T17237]  ? tomoyo_path_number_perm+0x5dd/0x770
[  688.770746][T17237]  ? tomoyo_path_number_perm+0x5dd/0x770
[  688.770784][T17237]  ? __lock_acquire+0x1397/0x2100
[  688.770820][T17237]  ? bt_sock_ioctl+0xe9/0x2c0
[  688.770860][T17237]  sock_do_ioctl+0x158/0x460
[  688.770903][T17237]  ? __pfx_sock_do_ioctl+0x10/0x10
[  688.770954][T17237]  sock_ioctl+0x626/0x8e0
[  688.770986][T17237]  ? __pfx_sock_ioctl+0x10/0x10
[  688.771016][T17237]  ? __fget_files+0x2a/0x410
[  688.771051][T17237]  ? __fget_files+0x2a/0x410
[  688.771086][T17237]  ? __pfx_sock_ioctl+0x10/0x10
[  688.771118][T17237]  __se_sys_ioctl+0xf5/0x170
[  688.771144][T17237]  do_syscall_64+0xf3/0x230
[  688.771176][T17237]  ? clear_bhb_loop+0x35/0x90
[  688.771210][T17237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  688.771238][T17237] RIP: 0033:0x7fbe6b98d169
[  688.771256][T17237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  688.771274][T17237] RSP: 002b:00007fbe6c792038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  688.771296][T17237] RAX: ffffffffffffffda RBX: 00007fbe6bba5fa0 RCX: 00007fbe6b98d169
[  688.771311][T17237] RDX: 0000200000000100 RSI: 00000000400452c8 RDI: 0000000000000004
[  688.771325][T17237] RBP: 00007fbe6c792090 R08: 0000000000000000 R09: 0000000000000000
[  688.771337][T17237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  688.771350][T17237] R13: 0000000000000000 R14: 00007fbe6bba5fa0 R15: 00007ffed114aaa8
[  688.771381][T17237]  </TASK>
[  689.265839][T17250] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2659'.
[  689.286357][T17249] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  689.317074][T17249] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  689.328357][T17249] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  689.341235][T17250] bond19: entered promiscuous mode
[  689.347142][T17250] 8021q: adding VLAN 0 to HW filter on device bond19
[  689.503521][T17261] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2661'.
[  689.568033][T17253] bond0 (unregistering): Released all slaves
[  689.951851][T17283] netlink: 'syz.2.2663': attribute type 35 has an invalid length.
[  690.481602][T17295] FAULT_INJECTION: forcing a failure.
[  690.481602][T17295] name failslab, interval 1, probability 0, space 0, times 0
[  690.513812][T17295] CPU: 1 UID: 0 PID: 17295 Comm: syz.4.2665 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  690.513844][T17295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  690.513857][T17295] Call Trace:
[  690.513864][T17295]  <TASK>
[  690.513873][T17295]  dump_stack_lvl+0x241/0x360
[  690.513905][T17295]  ? __pfx_dump_stack_lvl+0x10/0x10
[  690.513930][T17295]  ? __pfx__printk+0x10/0x10
[  690.513953][T17295]  ? __kmalloc_cache_noprof+0x48/0x390
[  690.513986][T17295]  ? __pfx___might_resched+0x10/0x10
[  690.514022][T17295]  should_fail_ex+0x40a/0x550
[  690.514061][T17295]  should_failslab+0xac/0x100
[  690.514092][T17295]  __kmalloc_cache_noprof+0x70/0x390
[  690.514121][T17295]  ? subflow_ulp_init+0xcb/0x560
[  690.514158][T17295]  subflow_ulp_init+0xcb/0x560
[  690.514195][T17295]  tcp_set_ulp+0x537/0x5f0
[  690.514232][T17295]  mptcp_subflow_create_socket+0x6f1/0xcb0
[  690.514265][T17295]  ? register_lock_class+0x102/0x980
[  690.514301][T17295]  ? tomoyo_check_acl+0x37e/0x3f0
[  690.514330][T17295]  ? __pfx_mptcp_subflow_create_socket+0x10/0x10
[  690.514362][T17295]  ? __pfx_register_lock_class+0x10/0x10
[  690.514397][T17295]  ? mark_lock+0x9a/0x360
[  690.514421][T17295]  __mptcp_nmpc_sk+0x178/0x800
[  690.514451][T17295]  ? __lock_acquire+0x1397/0x2100
[  690.514488][T17295]  ? __pfx___mptcp_nmpc_sk+0x10/0x10
[  690.514532][T17295]  mptcp_connect+0x71/0xc30
[  690.514562][T17295]  ? mark_lock+0x9a/0x360
[  690.514588][T17295]  __inet_stream_connect+0x262/0xf30
[  690.514619][T17295]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  690.514658][T17295]  ? __local_bh_enable_ip+0x168/0x200
[  690.514684][T17295]  ? lockdep_hardirqs_on+0x99/0x150
[  690.514714][T17295]  ? __pfx___inet_stream_connect+0x10/0x10
[  690.514740][T17295]  ? __local_bh_enable_ip+0x168/0x200
[  690.514767][T17295]  ? inet_stream_connect+0x50/0xa0
[  690.514798][T17295]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  690.514836][T17295]  inet_stream_connect+0x65/0xa0
[  690.514867][T17295]  __sys_connect+0x288/0x2d0
[  690.514891][T17295]  ? __fget_files+0x2a/0x410
[  690.514922][T17295]  ? __pfx___sys_connect+0x10/0x10
[  690.514959][T17295]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  690.514994][T17295]  ? do_syscall_64+0x100/0x230
[  690.515030][T17295]  __x64_sys_connect+0x7a/0x90
[  690.515055][T17295]  do_syscall_64+0xf3/0x230
[  690.515086][T17295]  ? clear_bhb_loop+0x35/0x90
[  690.515120][T17295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  690.515148][T17295] RIP: 0033:0x7f0de958d169
[  690.515167][T17295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  690.515185][T17295] RSP: 002b:00007f0dea430038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  690.515207][T17295] RAX: ffffffffffffffda RBX: 00007f0de97a6080 RCX: 00007f0de958d169
[  690.515222][T17295] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000007
[  690.515235][T17295] RBP: 00007f0dea430090 R08: 0000000000000000 R09: 0000000000000000
[  690.515248][T17295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  690.515260][T17295] R13: 0000000000000000 R14: 00007f0de97a6080 R15: 00007ffd763c8868
[  690.515292][T17295]  </TASK>
[  690.840692][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  690.848800][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  691.506518][T17312] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2672'.
[  691.748345][T17318] netlink: 'syz.4.2674': attribute type 6 has an invalid length.
[  692.086875][T17296] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2666'.
[  692.114442][T17296] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  692.195087][T17299] netlink: 428 bytes leftover after parsing attributes in process `syz.1.2666'.
[  692.479255][T17346] netlink: 'syz.2.2683': attribute type 2 has an invalid length.
[  692.569646][T17353] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2686'.
[  692.640081][T17357] FAULT_INJECTION: forcing a failure.
[  692.640081][T17357] name failslab, interval 1, probability 0, space 0, times 0
[  692.656323][T17357] CPU: 0 UID: 0 PID: 17357 Comm: syz.2.2687 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  692.656353][T17357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  692.656366][T17357] Call Trace:
[  692.656374][T17357]  <TASK>
[  692.656383][T17357]  dump_stack_lvl+0x241/0x360
[  692.656414][T17357]  ? __pfx_dump_stack_lvl+0x10/0x10
[  692.656439][T17357]  ? __pfx__printk+0x10/0x10
[  692.656464][T17357]  ? __kmalloc_cache_noprof+0x48/0x390
[  692.656497][T17357]  ? __pfx___might_resched+0x10/0x10
[  692.656523][T17357]  ? lockdep_init_map_type+0xa1/0x910
[  692.656558][T17357]  should_fail_ex+0x40a/0x550
[  692.656603][T17357]  should_failslab+0xac/0x100
[  692.656633][T17357]  __kmalloc_cache_noprof+0x70/0x390
[  692.656663][T17357]  ? nft_trans_table_add+0x57/0x400
[  692.656692][T17357]  nft_trans_table_add+0x57/0x400
[  692.656722][T17357]  nf_tables_newtable+0x1143/0x1e10
[  692.656750][T17357]  ? __skb_clone+0x5c/0x6c0
[  692.656781][T17357]  ? __pfx_nf_tables_newtable+0x10/0x10
[  692.656812][T17357]  ? __nla_parse+0x40/0x60
[  692.656839][T17357]  nfnetlink_rcv+0x14e3/0x2ab0
[  692.656866][T17357]  ? __pfx_validate_chain+0x10/0x10
[  692.656920][T17357]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  692.656958][T17357]  ? __lock_acquire+0x1397/0x2100
[  692.657026][T17357]  ? netlink_deliver_tap+0x2e/0x1b0
[  692.657060][T17357]  ? __pfx_lock_release+0x10/0x10
[  692.657101][T17357]  ? netlink_deliver_tap+0x2e/0x1b0
[  692.657132][T17357]  netlink_unicast+0x7f6/0x990
[  692.657167][T17357]  ? __pfx_netlink_unicast+0x10/0x10
[  692.657192][T17357]  ? __virt_addr_valid+0x45f/0x530
[  692.657213][T17357]  ? __phys_addr_symbol+0x2f/0x70
[  692.657233][T17357]  ? __check_object_size+0x47a/0x730
[  692.657289][T17357]  netlink_sendmsg+0x8de/0xcb0
[  692.657322][T17357]  ? __pfx_netlink_sendmsg+0x10/0x10
[  692.657348][T17357]  ? aa_sock_msg_perm+0x91/0x160
[  692.657389][T17357]  ? __pfx_netlink_sendmsg+0x10/0x10
[  692.657408][T17357]  __sock_sendmsg+0x221/0x270
[  692.657443][T17357]  ____sys_sendmsg+0x53a/0x860
[  692.657478][T17357]  ? __pfx_____sys_sendmsg+0x10/0x10
[  692.657503][T17357]  ? __fget_files+0x2a/0x410
[  692.657537][T17357]  ? __fget_files+0x2a/0x410
[  692.657577][T17357]  __sys_sendmsg+0x269/0x350
[  692.657616][T17357]  ? __pfx___sys_sendmsg+0x10/0x10
[  692.657656][T17357]  ? do_sys_openat2+0x17a/0x1d0
[  692.657716][T17357]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  692.657750][T17357]  ? do_syscall_64+0x100/0x230
[  692.657786][T17357]  ? do_syscall_64+0xb6/0x230
[  692.657817][T17357]  do_syscall_64+0xf3/0x230
[  692.657846][T17357]  ? clear_bhb_loop+0x35/0x90
[  692.657879][T17357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  692.657908][T17357] RIP: 0033:0x7f7aec18d169
[  692.657928][T17357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  692.657947][T17357] RSP: 002b:00007f7aecf5e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  692.657970][T17357] RAX: ffffffffffffffda RBX: 00007f7aec3a5fa0 RCX: 00007f7aec18d169
[  692.657986][T17357] RDX: 0000000004000914 RSI: 000020000000c2c0 RDI: 0000000000000003
[  692.658001][T17357] RBP: 00007f7aecf5e090 R08: 0000000000000000 R09: 0000000000000000
[  692.658014][T17357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  692.658027][T17357] R13: 0000000000000000 R14: 00007f7aec3a5fa0 R15: 00007ffc0c6b8588
[  692.658058][T17357]  </TASK>
[  693.637832][T17379] xt_CT: You must specify a L4 protocol and not use inversions on it
[  693.824526][T17387] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2697'.
[  693.983145][T17395] netlink: 100 bytes leftover after parsing attributes in process `syz.1.2698'.
[  694.024492][T17395] netlink: 100 bytes leftover after parsing attributes in process `syz.1.2698'.
[  694.701349][T17392] sit1: left allmulticast mode
[  694.737218][T17392] bond18: left promiscuous mode
[  694.752463][T17392] bond19: left promiscuous mode
[  694.969645][T17417] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2705'.
[  695.311863][T17417] bond20: entered promiscuous mode
[  695.365267][T17417] 8021q: adding VLAN 0 to HW filter on device bond20
[  695.459038][T17418] veth21: entered promiscuous mode
[  695.468612][T17418] bond20: (slave veth21): Enslaving as an active interface with an up link
[  695.497188][T17425] tc_dump_action: action bad kind
[  696.000704][T17443] FAULT_INJECTION: forcing a failure.
[  696.000704][T17443] name failslab, interval 1, probability 0, space 0, times 0
[  696.045327][T17443] CPU: 0 UID: 0 PID: 17443 Comm: syz.1.2713 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  696.045355][T17443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  696.045367][T17443] Call Trace:
[  696.045374][T17443]  <TASK>
[  696.045381][T17443]  dump_stack_lvl+0x241/0x360
[  696.045410][T17443]  ? __pfx_dump_stack_lvl+0x10/0x10
[  696.045430][T17443]  ? __pfx__printk+0x10/0x10
[  696.045450][T17443]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  696.045477][T17443]  ? __pfx___might_resched+0x10/0x10
[  696.045510][T17443]  should_fail_ex+0x40a/0x550
[  696.045545][T17443]  should_failslab+0xac/0x100
[  696.045576][T17443]  __kmalloc_node_noprof+0xe1/0x4d0
[  696.045605][T17443]  ? __kvmalloc_node_noprof+0x72/0x190
[  696.045642][T17443]  __kvmalloc_node_noprof+0x72/0x190
[  696.045675][T17443]  alloc_netdev_mqs+0xac6/0x1210
[  696.045713][T17443]  rtnl_create_link+0x2f9/0xc90
[  696.045749][T17443]  rtnl_newlink_create+0x2e1/0xbd0
[  696.045778][T17443]  ? __mutex_lock+0x602/0x1010
[  696.045813][T17443]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  696.045841][T17443]  ? __pfx___mutex_lock+0x10/0x10
[  696.045882][T17443]  ? ns_capable+0x8a/0xf0
[  696.045911][T17443]  rtnl_newlink+0x167a/0x1d90
[  696.045933][T17443]  ? __lock_acquire+0x1397/0x2100
[  696.045980][T17443]  ? __pfx_rtnl_newlink+0x10/0x10
[  696.046001][T17443]  ? __pfx_validate_chain+0x10/0x10
[  696.046046][T17443]  ? validate_chain+0x11e/0x5920
[  696.046070][T17443]  ? __pfx_lock_acquire+0x10/0x10
[  696.046105][T17443]  ? __pfx_lock_release+0x10/0x10
[  696.046142][T17443]  ? __pfx_validate_chain+0x10/0x10
[  696.046167][T17443]  ? mark_lock+0x9a/0x360
[  696.046192][T17443]  ? __lock_acquire+0x1397/0x2100
[  696.046269][T17443]  ? __pfx_lock_release+0x10/0x10
[  696.046318][T17443]  ? __pfx_rtnl_newlink+0x10/0x10
[  696.046341][T17443]  rtnetlink_rcv_msg+0x791/0xcf0
[  696.046372][T17443]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  696.046407][T17443]  ? __lock_acquire+0x1397/0x2100
[  696.046439][T17443]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  696.046493][T17443]  netlink_rcv_skb+0x206/0x480
[  696.046527][T17443]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  696.046563][T17443]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  696.046623][T17443]  ? netlink_deliver_tap+0x2e/0x1b0
[  696.046659][T17443]  netlink_unicast+0x7f6/0x990
[  696.046699][T17443]  ? __pfx_netlink_unicast+0x10/0x10
[  696.046727][T17443]  ? __virt_addr_valid+0x45f/0x530
[  696.046749][T17443]  ? __phys_addr_symbol+0x2f/0x70
[  696.046768][T17443]  ? __check_object_size+0x47a/0x730
[  696.046802][T17443]  netlink_sendmsg+0x8de/0xcb0
[  696.046837][T17443]  ? __pfx_netlink_sendmsg+0x10/0x10
[  696.046862][T17443]  ? aa_sock_msg_perm+0x91/0x160
[  696.046903][T17443]  ? __pfx_netlink_sendmsg+0x10/0x10
[  696.046921][T17443]  __sock_sendmsg+0x221/0x270
[  696.046957][T17443]  ____sys_sendmsg+0x53a/0x860
[  696.046994][T17443]  ? __pfx_____sys_sendmsg+0x10/0x10
[  696.047018][T17443]  ? __fget_files+0x2a/0x410
[  696.047052][T17443]  ? __fget_files+0x2a/0x410
[  696.047094][T17443]  __sys_sendmsg+0x269/0x350
[  696.047127][T17443]  ? __pfx___sys_sendmsg+0x10/0x10
[  696.047170][T17443]  ? do_sys_openat2+0x17a/0x1d0
[  696.047237][T17443]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  696.047272][T17443]  ? do_syscall_64+0x100/0x230
[  696.047307][T17443]  ? do_syscall_64+0xb6/0x230
[  696.047342][T17443]  do_syscall_64+0xf3/0x230
[  696.047372][T17443]  ? clear_bhb_loop+0x35/0x90
[  696.047405][T17443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  696.047434][T17443] RIP: 0033:0x7f992dd8d169
[  696.047452][T17443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  696.047469][T17443] RSP: 002b:00007f992eb59038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  696.047491][T17443] RAX: ffffffffffffffda RBX: 00007f992dfa5fa0 RCX: 00007f992dd8d169
[  696.047506][T17443] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  696.047519][T17443] RBP: 00007f992eb59090 R08: 0000000000000000 R09: 0000000000000000
[  696.047532][T17443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  696.047543][T17443] R13: 0000000000000000 R14: 00007f992dfa5fa0 R15: 00007ffe7461ace8
[  696.047576][T17443]  </TASK>
[  696.488075][T17449] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2715'.
[  696.589739][T17451] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2716'.
[  696.590033][T17452] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2716'.
[  696.671782][T17457] netlink: zone id is out of range
[  696.677134][T17457] netlink: zone id is out of range
[  696.683038][T17457] netlink: zone id is out of range
[  696.688201][T17457] netlink: zone id is out of range
[  696.693623][T17457] netlink: zone id is out of range
[  696.698775][T17457] netlink: zone id is out of range
[  696.706378][T17457] netlink: zone id is out of range
[  696.712074][T17457] netlink: zone id is out of range
[  696.717302][T17457] netlink: zone id is out of range
[  696.722517][T17457] netlink: zone id is out of range
[  696.944482][T17463] raw_sendmsg: syz.3.2719 forgot to set AF_INET. Fix it!
[  697.442494][T17484] bond20: (slave veth21): Releasing backup interface
[  697.455100][T17484] veth21: left promiscuous mode
[  697.567192][T17487] FAULT_INJECTION: forcing a failure.
[  697.567192][T17487] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  697.619594][T17487] CPU: 0 UID: 0 PID: 17487 Comm: syz.4.2725 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  697.619625][T17487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  697.619638][T17487] Call Trace:
[  697.619646][T17487]  <TASK>
[  697.619654][T17487]  dump_stack_lvl+0x241/0x360
[  697.619687][T17487]  ? __pfx_dump_stack_lvl+0x10/0x10
[  697.619711][T17487]  ? __pfx__printk+0x10/0x10
[  697.619733][T17487]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  697.619776][T17487]  should_fail_ex+0x40a/0x550
[  697.619814][T17487]  prepare_alloc_pages+0x1da/0x5b0
[  697.619854][T17487]  __alloc_frozen_pages_noprof+0x16f/0x710
[  697.619883][T17487]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  697.619930][T17487]  alloc_pages_mpol+0x311/0x660
[  697.619965][T17487]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  697.620005][T17487]  vma_alloc_folio_noprof+0x12b/0x260
[  697.620037][T17487]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  697.620070][T17487]  ? do_raw_spin_unlock+0x13c/0x8b0
[  697.620103][T17487]  folio_prealloc+0x2e/0x170
[  697.620127][T17487]  do_wp_page+0x1253/0x49b0
[  697.620175][T17487]  ? __pfx_do_wp_page+0x10/0x10
[  697.620207][T17487]  ? __pfx_validate_chain+0x10/0x10
[  697.620234][T17487]  ? __pfx_lock_acquire+0x10/0x10
[  697.620264][T17487]  ? rcu_is_watching+0x15/0xb0
[  697.620291][T17487]  ? do_raw_spin_lock+0x14f/0x370
[  697.620318][T17487]  ? __pfx____pte_offset_map+0x10/0x10
[  697.620369][T17487]  __handle_mm_fault+0x2303/0x6ef0
[  697.620401][T17487]  ? mark_lock+0x9a/0x360
[  697.620450][T17487]  ? __pfx___handle_mm_fault+0x10/0x10
[  697.620494][T17487]  ? mt_find+0x2a9/0x920
[  697.620526][T17487]  ? __pfx_lock_release+0x10/0x10
[  697.620572][T17487]  ? mt_find+0x2a9/0x920
[  697.620604][T17487]  ? mt_find+0x6c8/0x920
[  697.620635][T17487]  ? mt_find+0x2a9/0x920
[  697.620670][T17487]  ? __pfx_mt_find+0x10/0x10
[  697.620721][T17487]  ? find_vma+0xf9/0x170
[  697.620740][T17487]  ? __pfx_find_vma+0x10/0x10
[  697.620757][T17487]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  697.620794][T17487]  handle_mm_fault+0x3e5/0x8d0
[  697.620838][T17487]  exc_page_fault+0x2b9/0x8b0
[  697.620879][T17487]  asm_exc_page_fault+0x26/0x30
[  697.620907][T17487] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  697.620932][T17487] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  697.620950][T17487] RSP: 0018:ffffc9000be37738 EFLAGS: 00050206
[  697.620968][T17487] RAX: ffffffff84f33801 RBX: 00000000000101d0 RCX: 00000000000095d0
[  697.620983][T17487] RDX: 0000000000000000 RSI: ffff888052a46ce8 RDI: 0000200000007000
[  697.620997][T17487] RBP: ffffc9000be378b8 R08: ffff888052a502b7 R09: 1ffff1100a54a056
[  697.621012][T17487] R10: dffffc0000000000 R11: ffffed100a54a057 R12: ffffc9000be37e18
[  697.621028][T17487] R13: 1ffff920017c6fc3 R14: ffff888052a400e8 R15: 00000000000101d0
[  697.621051][T17487]  ? _copy_to_iter+0x231/0x1c40
[  697.621084][T17487]  _copy_to_iter+0x260/0x1c40
[  697.621109][T17487]  ? __virt_addr_valid+0x183/0x530
[  697.621131][T17487]  ? __pfx_lock_release+0x10/0x10
[  697.621173][T17487]  ? __pfx__copy_to_iter+0x10/0x10
[  697.621202][T17487]  ? __virt_addr_valid+0x183/0x530
[  697.621221][T17487]  ? __virt_addr_valid+0x183/0x530
[  697.621239][T17487]  ? __virt_addr_valid+0x45f/0x530
[  697.621262][T17487]  ? __check_object_size+0x47a/0x730
[  697.621296][T17487]  __skb_datagram_iter+0x107/0x900
[  697.621326][T17487]  ? __local_bh_enable_ip+0x168/0x200
[  697.621350][T17487]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  697.621381][T17487]  ? __pfx_tipc_sk_anc_data_recv+0x10/0x10
[  697.621413][T17487]  skb_copy_datagram_iter+0xd1/0x250
[  697.621446][T17487]  tipc_recvstream+0x7a8/0xf80
[  697.621490][T17487]  ? __pfx_tipc_recvstream+0x10/0x10
[  697.621513][T17487]  ? aa_sock_msg_perm+0x91/0x160
[  697.621549][T17487]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  697.621574][T17487]  ? __pfx_tipc_recvstream+0x10/0x10
[  697.621600][T17487]  sock_recvmsg+0x22f/0x280
[  697.621637][T17487]  ____sys_recvmsg+0x1c6/0x480
[  697.621674][T17487]  ? __pfx_____sys_recvmsg+0x10/0x10
[  697.621725][T17487]  __sys_recvmsg+0x291/0x390
[  697.621758][T17487]  ? __pfx___sys_recvmsg+0x10/0x10
[  697.621800][T17487]  ? __fget_files+0x2a/0x410
[  697.621852][T17487]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  697.621887][T17487]  ? do_syscall_64+0x100/0x230
[  697.621926][T17487]  ? do_syscall_64+0xb6/0x230
[  697.621958][T17487]  do_syscall_64+0xf3/0x230
[  697.621988][T17487]  ? clear_bhb_loop+0x35/0x90
[  697.622019][T17487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  697.622047][T17487] RIP: 0033:0x7f0de958d169
[  697.622063][T17487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  697.622081][T17487] RSP: 002b:00007f0dea451038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  697.622101][T17487] RAX: ffffffffffffffda RBX: 00007f0de97a5fa0 RCX: 00007f0de958d169
[  697.622116][T17487] RDX: 0000000000001f00 RSI: 0000200000000500 RDI: 0000000000000004
[  697.622129][T17487] RBP: 00007f0dea451090 R08: 0000000000000000 R09: 0000000000000000
[  697.622141][T17487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  697.622152][T17487] R13: 0000000000000000 R14: 00007f0de97a5fa0 R15: 00007ffd763c8868
[  697.622182][T17487]  </TASK>
[  698.434538][T17511] netlink: 'syz.2.2731': attribute type 1 has an invalid length.
[  698.460549][T17511] bond25: entered promiscuous mode
[  698.468075][T17511] 8021q: adding VLAN 0 to HW filter on device bond25
[  698.528062][T17517] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2733'.
[  698.530280][T17511] bond25: (slave veth11): making interface the new active one
[  698.545709][T17511] veth11: entered promiscuous mode
[  698.552926][T17511] bond25: (slave veth11): Enslaving as an active interface with an up link
[  698.901873][T17532] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2738'.
[  699.136537][T17544] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2743'.
[  699.167689][T17544] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2743'.
[  699.611131][T17563] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2747'.
[  700.057970][T17576] netlink: 'syz.2.2753': attribute type 10 has an invalid length.
[  700.192151][T17584] netlink: 'syz.3.2757': attribute type 1 has an invalid length.
[  700.255017][T17584] bond20: entered promiscuous mode
[  700.260788][T17584] 8021q: adding VLAN 0 to HW filter on device bond20
[  700.349811][T17587] FAULT_INJECTION: forcing a failure.
[  700.349811][T17587] name failslab, interval 1, probability 0, space 0, times 0
[  700.366809][T17587] CPU: 1 UID: 0 PID: 17587 Comm: syz.3.2757 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  700.366839][T17587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  700.366852][T17587] Call Trace:
[  700.366859][T17587]  <TASK>
[  700.366867][T17587]  dump_stack_lvl+0x241/0x360
[  700.366899][T17587]  ? __pfx_dump_stack_lvl+0x10/0x10
[  700.366923][T17587]  ? __pfx__printk+0x10/0x10
[  700.366946][T17587]  ? __kmalloc_cache_noprof+0x48/0x390
[  700.366979][T17587]  ? __pfx___might_resched+0x10/0x10
[  700.367014][T17587]  should_fail_ex+0x40a/0x550
[  700.367051][T17587]  should_failslab+0xac/0x100
[  700.367082][T17587]  __kmalloc_cache_noprof+0x70/0x390
[  700.367111][T17587]  ? alloc_netdev_mqs+0xc1a/0x1210
[  700.367139][T17587]  ? __xdp_rxq_info_reg+0x186/0x290
[  700.367166][T17587]  alloc_netdev_mqs+0xc1a/0x1210
[  700.367203][T17587]  rtnl_create_link+0x2f9/0xc90
[  700.367238][T17587]  rtnl_newlink_create+0x2e1/0xbd0
[  700.367268][T17587]  ? __mutex_lock+0x602/0x1010
[  700.367304][T17587]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  700.367333][T17587]  ? __pfx___mutex_lock+0x10/0x10
[  700.367374][T17587]  ? ns_capable+0x8a/0xf0
[  700.367404][T17587]  rtnl_newlink+0x167a/0x1d90
[  700.367445][T17587]  ? __pfx_rtnl_newlink+0x10/0x10
[  700.367467][T17587]  ? __pfx_validate_chain+0x10/0x10
[  700.367577][T17587]  ? __pfx_lock_release+0x10/0x10
[  700.367625][T17587]  ? __pfx_rtnl_newlink+0x10/0x10
[  700.367656][T17587]  rtnetlink_rcv_msg+0x791/0xcf0
[  700.367686][T17587]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  700.367721][T17587]  ? __lock_acquire+0x1397/0x2100
[  700.367754][T17587]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  700.367806][T17587]  netlink_rcv_skb+0x206/0x480
[  700.367841][T17587]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  700.367874][T17587]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  700.367932][T17587]  ? netlink_deliver_tap+0x2e/0x1b0
[  700.367968][T17587]  netlink_unicast+0x7f6/0x990
[  700.368007][T17587]  ? __pfx_netlink_unicast+0x10/0x10
[  700.368034][T17587]  ? __virt_addr_valid+0x45f/0x530
[  700.368056][T17587]  ? __phys_addr_symbol+0x2f/0x70
[  700.368075][T17587]  ? __check_object_size+0x47a/0x730
[  700.368109][T17587]  netlink_sendmsg+0x8de/0xcb0
[  700.368142][T17587]  ? __pfx_netlink_sendmsg+0x10/0x10
[  700.368168][T17587]  ? aa_sock_msg_perm+0x91/0x160
[  700.368207][T17587]  ? __pfx_netlink_sendmsg+0x10/0x10
[  700.368226][T17587]  __sock_sendmsg+0x221/0x270
[  700.368262][T17587]  ____sys_sendmsg+0x53a/0x860
[  700.368300][T17587]  ? __pfx_____sys_sendmsg+0x10/0x10
[  700.368325][T17587]  ? __fget_files+0x2a/0x410
[  700.368360][T17587]  ? __fget_files+0x2a/0x410
[  700.368401][T17587]  __sys_sendmsg+0x269/0x350
[  700.368434][T17587]  ? __pfx___sys_sendmsg+0x10/0x10
[  700.368486][T17587]  ? do_sys_openat2+0x17a/0x1d0
[  700.368547][T17587]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  700.368582][T17587]  ? do_syscall_64+0x100/0x230
[  700.368617][T17587]  ? do_syscall_64+0xb6/0x230
[  700.368658][T17587]  do_syscall_64+0xf3/0x230
[  700.368689][T17587]  ? clear_bhb_loop+0x35/0x90
[  700.368723][T17587]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.368752][T17587] RIP: 0033:0x7f9bc9f8d169
[  700.368770][T17587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  700.368788][T17587] RSP: 002b:00007f9bcae7d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  700.368809][T17587] RAX: ffffffffffffffda RBX: 00007f9bca1a6080 RCX: 00007f9bc9f8d169
[  700.368823][T17587] RDX: 000000000000c0b0 RSI: 0000200000000280 RDI: 0000000000000004
[  700.368836][T17587] RBP: 00007f9bcae7d090 R08: 0000000000000000 R09: 0000000000000000
[  700.368849][T17587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  700.368860][T17587] R13: 0000000000000001 R14: 00007f9bca1a6080 R15: 00007ffe06d6ea28
[  700.368893][T17587]  </TASK>
[  700.381179][T17589] netlink: 'syz.1.2756': attribute type 16 has an invalid length.
[  700.480093][T17593] netlink: 'syz.4.2758': attribute type 10 has an invalid length.
[  700.511863][T17589] netlink: 'syz.1.2756': attribute type 17 has an invalid length.
[  700.544919][T17592] bond20: left promiscuous mode
[  700.887654][T17601] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2760'.
[  700.899343][T17601] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2760'.
[  700.950204][T17589] 8021q: adding VLAN 0 to HW filter on device bond0
[  700.958237][T17589] 8021q: adding VLAN 0 to HW filter on device team0
[  701.099167][T17599] netlink: 324 bytes leftover after parsing attributes in process `syz.3.2760'.
[  701.760293][T17626] bond25: left promiscuous mode
[  701.767412][T17626] veth11: left promiscuous mode
[  702.466312][T17647] FAULT_INJECTION: forcing a failure.
[  702.466312][T17647] name failslab, interval 1, probability 0, space 0, times 0
[  702.504819][T17645] bridge0: port 1(gretap0) entered blocking state
[  702.512573][T17645] bridge0: port 1(gretap0) entered disabled state
[  702.528660][T17645] gretap0: entered allmulticast mode
[  702.545512][T17645] gretap0: entered promiscuous mode
[  702.553239][T17647] CPU: 0 UID: 0 PID: 17647 Comm: syz.1.2777 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  702.553268][T17647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  702.553280][T17647] Call Trace:
[  702.553287][T17647]  <TASK>
[  702.553296][T17647]  dump_stack_lvl+0x241/0x360
[  702.553327][T17647]  ? __pfx_dump_stack_lvl+0x10/0x10
[  702.553350][T17647]  ? __pfx__printk+0x10/0x10
[  702.553370][T17647]  ? kmem_cache_alloc_noprof+0x48/0x380
[  702.553397][T17647]  ? __pfx___might_resched+0x10/0x10
[  702.553427][T17647]  should_fail_ex+0x40a/0x550
[  702.553468][T17647]  should_failslab+0xac/0x100
[  702.553494][T17647]  ? __kernfs_new_node+0xd8/0x870
[  702.553519][T17647]  kmem_cache_alloc_noprof+0x70/0x380
[  702.553549][T17647]  __kernfs_new_node+0xd8/0x870
[  702.553573][T17647]  ? mark_lock+0x9a/0x360
[  702.553594][T17647]  ? __lock_acquire+0x1397/0x2100
[  702.553622][T17647]  ? __pfx___kernfs_new_node+0x10/0x10
[  702.553670][T17647]  kernfs_new_node+0x137/0x240
[  702.553705][T17647]  kernfs_create_dir_ns+0x43/0x120
[  702.553738][T17647]  sysfs_create_dir_ns+0x189/0x3a0
[  702.553768][T17647]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  702.553803][T17647]  kobject_add_internal+0x435/0x8d0
[  702.553831][T17647]  kobject_add+0x152/0x220
[  702.553866][T17647]  ? kobject_put+0x43d/0x480
[  702.553897][T17647]  ? __pfx_kobject_add+0x10/0x10
[  702.553936][T17647]  ? get_device_parent+0x25d/0x410
[  702.553957][T17647]  ? device_add+0x318/0xbf0
[  702.553979][T17647]  device_add+0x4e5/0xbf0
[  702.554006][T17647]  tty_register_device_attr+0x437/0x960
[  702.554040][T17647]  ? __pfx_tty_register_device_attr+0x10/0x10
[  702.554081][T17647]  ? tty_port_register_device+0x5b/0x100
[  702.554112][T17647]  rfcomm_dev_ioctl+0x1ad3/0x22f0
[  702.554151][T17647]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  702.554181][T17647]  ? tomoyo_path_number_perm+0x5dd/0x770
[  702.554217][T17647]  ? tomoyo_path_number_perm+0x5dd/0x770
[  702.554254][T17647]  ? __lock_acquire+0x1397/0x2100
[  702.554289][T17647]  ? bt_sock_ioctl+0xe9/0x2c0
[  702.554322][T17647]  sock_do_ioctl+0x158/0x460
[  702.554360][T17647]  ? __pfx_sock_do_ioctl+0x10/0x10
[  702.554412][T17647]  sock_ioctl+0x626/0x8e0
[  702.554445][T17647]  ? __pfx_sock_ioctl+0x10/0x10
[  702.554485][T17647]  ? __fget_files+0x2a/0x410
[  702.554520][T17647]  ? __fget_files+0x2a/0x410
[  702.554557][T17647]  ? __pfx_sock_ioctl+0x10/0x10
[  702.554589][T17647]  __se_sys_ioctl+0xf5/0x170
[  702.554616][T17647]  do_syscall_64+0xf3/0x230
[  702.554648][T17647]  ? clear_bhb_loop+0x35/0x90
[  702.554682][T17647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  702.554712][T17647] RIP: 0033:0x7f992dd8d169
[  702.554731][T17647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  702.554750][T17647] RSP: 002b:00007f992eb59038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  702.554773][T17647] RAX: ffffffffffffffda RBX: 00007f992dfa5fa0 RCX: 00007f992dd8d169
[  702.554789][T17647] RDX: 0000200000000100 RSI: 00000000400452c8 RDI: 0000000000000004
[  702.554803][T17647] RBP: 00007f992eb59090 R08: 0000000000000000 R09: 0000000000000000
[  702.554817][T17647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  702.554830][T17647] R13: 0000000000000000 R14: 00007f992dfa5fa0 R15: 00007ffe7461ace8
[  702.554861][T17647]  </TASK>
[  702.554911][T17647] kobject: kobject_add_internal failed for rfcomm0 (error: -12 parent: tty)
[  702.652988][T17653] FAULT_INJECTION: forcing a failure.
[  702.652988][T17653] name failslab, interval 1, probability 0, space 0, times 0
[  702.922069][T17653] CPU: 1 UID: 0 PID: 17653 Comm: syz.2.2778 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  702.922101][T17653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  702.922115][T17653] Call Trace:
[  702.922123][T17653]  <TASK>
[  702.922132][T17653]  dump_stack_lvl+0x241/0x360
[  702.922165][T17653]  ? __pfx_dump_stack_lvl+0x10/0x10
[  702.922188][T17653]  ? __pfx__printk+0x10/0x10
[  702.922223][T17653]  should_fail_ex+0x40a/0x550
[  702.922260][T17653]  should_failslab+0xac/0x100
[  702.922290][T17653]  __kmalloc_cache_noprof+0x70/0x390
[  702.922320][T17653]  ? sctp_add_bind_addr+0x89/0x3a0
[  702.922353][T17653]  sctp_add_bind_addr+0x89/0x3a0
[  702.922386][T17653]  sctp_copy_local_addr_list+0x311/0x500
[  702.922418][T17653]  ? sctp_copy_local_addr_list+0xab/0x500
[  702.922448][T17653]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  702.922480][T17653]  ? sctp_v6_is_any+0x60/0x70
[  702.922512][T17653]  ? sctp_copy_one_addr+0x94/0x360
[  702.922545][T17653]  sctp_bind_addr_copy+0xad/0x3b0
[  702.922574][T17653]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  702.922604][T17653]  sctp_connect_new_asoc+0x2f3/0x6c0
[  702.922629][T17653]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  702.922650][T17653]  ? sctp_sendmsg+0xf1a/0x35d0
[  702.922689][T17653]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  702.922715][T17653]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  702.922747][T17653]  sctp_sendmsg+0x1f64/0x35d0
[  702.922800][T17653]  ? __pfx_sctp_sendmsg+0x10/0x10
[  702.922836][T17653]  ? aa_sk_perm+0x96d/0xab0
[  702.922885][T17653]  ? inet_sendmsg+0x330/0x390
[  702.922917][T17653]  __sock_sendmsg+0x1a6/0x270
[  702.922952][T17653]  __sys_sendto+0x363/0x4c0
[  702.922981][T17653]  ? __pfx___sys_sendto+0x10/0x10
[  702.923019][T17653]  ? __fget_files+0x2a/0x410
[  702.923060][T17653]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  702.923096][T17653]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  702.923134][T17653]  __x64_sys_sendto+0xde/0x100
[  702.923162][T17653]  do_syscall_64+0xf3/0x230
[  702.923192][T17653]  ? clear_bhb_loop+0x35/0x90
[  702.923226][T17653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  702.923254][T17653] RIP: 0033:0x7f7aec18d169
[  702.923272][T17653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  702.923290][T17653] RSP: 002b:00007f7aecf3d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  702.923313][T17653] RAX: ffffffffffffffda RBX: 00007f7aec3a6080 RCX: 00007f7aec18d169
[  702.923328][T17653] RDX: 0000000000034000 RSI: 0000200000847fff RDI: 0000000000000006
[  702.923342][T17653] RBP: 00007f7aecf3d090 R08: 000020000005ffe4 R09: 000000000000001c
[  702.923356][T17653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  702.923369][T17653] R13: 0000000000000000 R14: 00007f7aec3a6080 R15: 00007ffc0c6b8588
[  702.923399][T17653]  </TASK>
[  703.277730][T17660] netlink: 1057 bytes leftover after parsing attributes in process `syz.4.2782'.
[  703.415004][T17662] FAULT_INJECTION: forcing a failure.
[  703.415004][T17662] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  703.430736][T17662] CPU: 1 UID: 0 PID: 17662 Comm: syz.3.2783 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  703.430772][T17662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  703.430785][T17662] Call Trace:
[  703.430793][T17662]  <TASK>
[  703.430803][T17662]  dump_stack_lvl+0x241/0x360
[  703.430836][T17662]  ? __pfx_dump_stack_lvl+0x10/0x10
[  703.430861][T17662]  ? __pfx__printk+0x10/0x10
[  703.430886][T17662]  ? __lock_acquire+0x1397/0x2100
[  703.430927][T17662]  should_fail_ex+0x40a/0x550
[  703.430966][T17662]  prepare_alloc_pages+0x1da/0x5b0
[  703.431000][T17662]  __alloc_frozen_pages_noprof+0x16f/0x710
[  703.431030][T17662]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  703.431078][T17662]  alloc_pages_mpol+0x311/0x660
[  703.431114][T17662]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  703.431155][T17662]  vma_alloc_folio_noprof+0x12b/0x260
[  703.431189][T17662]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  703.431222][T17662]  ? do_raw_spin_unlock+0x13c/0x8b0
[  703.431256][T17662]  folio_prealloc+0x2e/0x170
[  703.431281][T17662]  do_wp_page+0x1253/0x49b0
[  703.431328][T17662]  ? __pfx_do_wp_page+0x10/0x10
[  703.431360][T17662]  ? __pfx_validate_chain+0x10/0x10
[  703.431387][T17662]  ? __pfx_lock_acquire+0x10/0x10
[  703.431421][T17662]  ? rcu_is_watching+0x15/0xb0
[  703.431449][T17662]  ? do_raw_spin_lock+0x14f/0x370
[  703.431475][T17662]  ? __pfx____pte_offset_map+0x10/0x10
[  703.431528][T17662]  __handle_mm_fault+0x2303/0x6ef0
[  703.431570][T17662]  ? mark_lock+0x9a/0x360
[  703.431629][T17662]  ? __pfx___handle_mm_fault+0x10/0x10
[  703.431681][T17662]  ? mt_find+0x2a9/0x920
[  703.431713][T17662]  ? __pfx_lock_release+0x10/0x10
[  703.431758][T17662]  ? mt_find+0x2a9/0x920
[  703.431790][T17662]  ? mt_find+0x6c8/0x920
[  703.431820][T17662]  ? mt_find+0x2a9/0x920
[  703.431854][T17662]  ? __pfx_mt_find+0x10/0x10
[  703.431907][T17662]  ? find_vma+0xf9/0x170
[  703.431930][T17662]  ? __pfx_find_vma+0x10/0x10
[  703.431947][T17662]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  703.431983][T17662]  handle_mm_fault+0x3e5/0x8d0
[  703.432026][T17662]  exc_page_fault+0x2b9/0x8b0
[  703.432061][T17662]  asm_exc_page_fault+0x26/0x30
[  703.432089][T17662] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  703.432115][T17662] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  703.432133][T17662] RSP: 0018:ffffc9000453f738 EFLAGS: 00050206
[  703.432153][T17662] RAX: ffffffff84f33801 RBX: 00000000000101d0 RCX: 00000000000085d0
[  703.432168][T17662] RDX: 0000000000000000 RSI: ffff888052847ce8 RDI: 0000200000008000
[  703.432183][T17662] RBP: ffffc9000453f8b8 R08: ffff8880528502b7 R09: 1ffff1100a50a056
[  703.432199][T17662] R10: dffffc0000000000 R11: ffffed100a50a057 R12: ffffc9000453fe18
[  703.432214][T17662] R13: 1ffff920008a7fc3 R14: ffff8880528400e8 R15: 00000000000101d0
[  703.432238][T17662]  ? _copy_to_iter+0x231/0x1c40
[  703.432272][T17662]  _copy_to_iter+0x260/0x1c40
[  703.432297][T17662]  ? __virt_addr_valid+0x183/0x530
[  703.432320][T17662]  ? __pfx_lock_release+0x10/0x10
[  703.432362][T17662]  ? __pfx__copy_to_iter+0x10/0x10
[  703.432391][T17662]  ? __virt_addr_valid+0x183/0x530
[  703.432411][T17662]  ? __virt_addr_valid+0x183/0x530
[  703.432430][T17662]  ? __virt_addr_valid+0x45f/0x530
[  703.432454][T17662]  ? __check_object_size+0x47a/0x730
[  703.432489][T17662]  __skb_datagram_iter+0x107/0x900
[  703.432518][T17662]  ? __local_bh_enable_ip+0x168/0x200
[  703.432544][T17662]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  703.432574][T17662]  ? __pfx_tipc_sk_anc_data_recv+0x10/0x10
[  703.432608][T17662]  skb_copy_datagram_iter+0xd1/0x250
[  703.432642][T17662]  tipc_recvstream+0x7a8/0xf80
[  703.432693][T17662]  ? __pfx_tipc_recvstream+0x10/0x10
[  703.432717][T17662]  ? aa_sock_msg_perm+0x91/0x160
[  703.432752][T17662]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  703.432778][T17662]  ? __pfx_tipc_recvstream+0x10/0x10
[  703.432804][T17662]  sock_recvmsg+0x22f/0x280
[  703.432842][T17662]  ____sys_recvmsg+0x1c6/0x480
[  703.432879][T17662]  ? __pfx_____sys_recvmsg+0x10/0x10
[  703.432932][T17662]  __sys_recvmsg+0x291/0x390
[  703.432965][T17662]  ? __pfx___sys_recvmsg+0x10/0x10
[  703.433007][T17662]  ? __fget_files+0x2a/0x410
[  703.433055][T17662]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  703.433090][T17662]  ? do_syscall_64+0x100/0x230
[  703.433124][T17662]  ? do_syscall_64+0xb6/0x230
[  703.433159][T17662]  do_syscall_64+0xf3/0x230
[  703.433190][T17662]  ? clear_bhb_loop+0x35/0x90
[  703.433224][T17662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.433252][T17662] RIP: 0033:0x7f9bc9f8d169
[  703.433270][T17662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  703.433286][T17662] RSP: 002b:00007f9bcae9e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  703.433305][T17662] RAX: ffffffffffffffda RBX: 00007f9bca1a5fa0 RCX: 00007f9bc9f8d169
[  703.433320][T17662] RDX: 0000000000001f00 RSI: 0000200000000500 RDI: 0000000000000004
[  703.433333][T17662] RBP: 00007f9bcae9e090 R08: 0000000000000000 R09: 0000000000000000
[  703.433346][T17662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  703.433358][T17662] R13: 0000000000000000 R14: 00007f9bca1a5fa0 R15: 00007ffe06d6ea28
[  703.433388][T17662]  </TASK>
[  704.001814][T17668] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2784'.
[  704.287498][T17681] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2791'.
[  704.303668][T17683] IPVS: sync thread started: state = BACKUP, mcast_ifn = wg0, syncid = 4, id = 0
[  704.372554][T17680] netlink: 100 bytes leftover after parsing attributes in process `syz.2.2790'.
[  704.433328][T17684] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2789'.
[  704.444156][T17691] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2792'.
[  704.537739][T17693] netlink: 'syz.1.2794': attribute type 10 has an invalid length.
[  704.956398][T17702] bond20: left promiscuous mode
[  705.381278][T17709] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2800'.
[  705.403307][T17709] netlink: 'syz.2.2800': attribute type 1 has an invalid length.
[  706.195278][T17735] netlink: 'syz.2.2806': attribute type 16 has an invalid length.
[  706.252383][T17735] netlink: 'syz.2.2806': attribute type 17 has an invalid length.
[  706.351665][T17735] 8021q: adding VLAN 0 to HW filter on device bond0
[  706.362563][T17735] 8021q: adding VLAN 0 to HW filter on device team0
[  706.400173][T17735] net_ratelimit: 336 callbacks suppressed
[  706.400187][T17735] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  706.403135][T17744] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2811'.
[  706.502375][T17744] bond21: entered promiscuous mode
[  706.508371][T17744] 8021q: adding VLAN 0 to HW filter on device bond21
[  706.555219][T17748] veth23: entered promiscuous mode
[  706.615634][T17748] bond21: (slave veth23): Enslaving as an active interface with an up link
[  706.698457][T17751] netlink: 'syz.4.2809': attribute type 16 has an invalid length.
[  706.706846][T17751] netlink: 'syz.4.2809': attribute type 17 has an invalid length.
[  706.868902][T17751] bridge0: port 1(gretap0) entered blocking state
[  706.875524][T17751] bridge0: port 1(gretap0) entered forwarding state
[  706.904649][T17751] 8021q: adding VLAN 0 to HW filter on device team0
[  706.917719][T17751] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  707.086861][T17759] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2813'.
[  707.107706][T17759] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2813'.
[  707.236126][T17763] netlink: 'syz.0.2814': attribute type 4 has an invalid length.
[  707.374444][T17766] netlink: zone id is out of range
[  707.436898][T17767] xt_hashlimit: invalid rate
[  707.505382][T17766] netlink: set zone limit has 4 unknown bytes
[  707.611212][T17767] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2815'.
[  708.003667][T17778] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  708.414531][T17789] netlink: 'syz.3.2823': attribute type 1 has an invalid length.
[  708.513555][T17785] netlink: 'syz.3.2823': attribute type 1 has an invalid length.
[  708.668870][T17797] FAULT_INJECTION: forcing a failure.
[  708.668870][T17797] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  708.692092][T17797] CPU: 0 UID: 0 PID: 17797 Comm: syz.4.2828 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  708.692124][T17797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  708.692137][T17797] Call Trace:
[  708.692145][T17797]  <TASK>
[  708.692162][T17797]  dump_stack_lvl+0x241/0x360
[  708.692195][T17797]  ? __pfx_dump_stack_lvl+0x10/0x10
[  708.692221][T17797]  ? __pfx__printk+0x10/0x10
[  708.692244][T17797]  ? __lock_acquire+0x1397/0x2100
[  708.692285][T17797]  should_fail_ex+0x40a/0x550
[  708.692324][T17797]  prepare_alloc_pages+0x1da/0x5b0
[  708.692358][T17797]  __alloc_frozen_pages_noprof+0x16f/0x710
[  708.692387][T17797]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  708.692435][T17797]  alloc_pages_mpol+0x311/0x660
[  708.692470][T17797]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  708.692512][T17797]  vma_alloc_folio_noprof+0x12b/0x260
[  708.692545][T17797]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  708.692579][T17797]  ? do_raw_spin_unlock+0x13c/0x8b0
[  708.692612][T17797]  folio_prealloc+0x2e/0x170
[  708.692638][T17797]  do_wp_page+0x1253/0x49b0
[  708.692687][T17797]  ? __pfx_do_wp_page+0x10/0x10
[  708.692719][T17797]  ? __pfx_validate_chain+0x10/0x10
[  708.692747][T17797]  ? __pfx_lock_acquire+0x10/0x10
[  708.692777][T17797]  ? rcu_is_watching+0x15/0xb0
[  708.692806][T17797]  ? do_raw_spin_lock+0x14f/0x370
[  708.692834][T17797]  ? __pfx____pte_offset_map+0x10/0x10
[  708.692885][T17797]  __handle_mm_fault+0x2303/0x6ef0
[  708.692918][T17797]  ? mark_lock+0x9a/0x360
[  708.692967][T17797]  ? __pfx___handle_mm_fault+0x10/0x10
[  708.693012][T17797]  ? mt_find+0x2a9/0x920
[  708.693044][T17797]  ? __pfx_lock_release+0x10/0x10
[  708.693090][T17797]  ? mt_find+0x2a9/0x920
[  708.693123][T17797]  ? mt_find+0x6c8/0x920
[  708.693160][T17797]  ? mt_find+0x2a9/0x920
[  708.693197][T17797]  ? __pfx_mt_find+0x10/0x10
[  708.693249][T17797]  ? find_vma+0xf9/0x170
[  708.693269][T17797]  ? __pfx_find_vma+0x10/0x10
[  708.693287][T17797]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  708.693324][T17797]  handle_mm_fault+0x3e5/0x8d0
[  708.693370][T17797]  exc_page_fault+0x2b9/0x8b0
[  708.693407][T17797]  asm_exc_page_fault+0x26/0x30
[  708.693436][T17797] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  708.693462][T17797] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  708.693480][T17797] RSP: 0018:ffffc90003d9f738 EFLAGS: 00050206
[  708.693500][T17797] RAX: ffffffff84f33801 RBX: 00000000000101d0 RCX: 00000000000075d0
[  708.693515][T17797] RDX: 0000000000000000 RSI: ffff888053d88ce8 RDI: 0000200000009000
[  708.693530][T17797] RBP: ffffc90003d9f8b8 R08: ffff888053d902b7 R09: 1ffff1100a7b2056
[  708.693546][T17797] R10: dffffc0000000000 R11: ffffed100a7b2057 R12: ffffc90003d9fe18
[  708.693562][T17797] R13: 1ffff920007b3fc3 R14: ffff888053d800e8 R15: 00000000000101d0
[  708.693586][T17797]  ? _copy_to_iter+0x231/0x1c40
[  708.693620][T17797]  _copy_to_iter+0x260/0x1c40
[  708.693646][T17797]  ? __virt_addr_valid+0x183/0x530
[  708.693668][T17797]  ? __pfx_lock_release+0x10/0x10
[  708.693711][T17797]  ? __pfx__copy_to_iter+0x10/0x10
[  708.693740][T17797]  ? __virt_addr_valid+0x183/0x530
[  708.693760][T17797]  ? __virt_addr_valid+0x183/0x530
[  708.693779][T17797]  ? __virt_addr_valid+0x45f/0x530
[  708.693802][T17797]  ? __check_object_size+0x47a/0x730
[  708.693838][T17797]  __skb_datagram_iter+0x107/0x900
[  708.693868][T17797]  ? __local_bh_enable_ip+0x168/0x200
[  708.693893][T17797]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  708.693926][T17797]  ? __pfx_tipc_sk_anc_data_recv+0x10/0x10
[  708.693959][T17797]  skb_copy_datagram_iter+0xd1/0x250
[  708.693993][T17797]  tipc_recvstream+0x7a8/0xf80
[  708.694038][T17797]  ? __pfx_tipc_recvstream+0x10/0x10
[  708.694063][T17797]  ? aa_sock_msg_perm+0x91/0x160
[  708.694098][T17797]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  708.694124][T17797]  ? __pfx_tipc_recvstream+0x10/0x10
[  708.694151][T17797]  sock_recvmsg+0x22f/0x280
[  708.694196][T17797]  ____sys_recvmsg+0x1c6/0x480
[  708.694234][T17797]  ? __pfx_____sys_recvmsg+0x10/0x10
[  708.694286][T17797]  __sys_recvmsg+0x291/0x390
[  708.694320][T17797]  ? __pfx___sys_recvmsg+0x10/0x10
[  708.694362][T17797]  ? __fget_files+0x2a/0x410
[  708.694410][T17797]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  708.694445][T17797]  ? do_syscall_64+0x100/0x230
[  708.694480][T17797]  ? do_syscall_64+0xb6/0x230
[  708.694515][T17797]  do_syscall_64+0xf3/0x230
[  708.694546][T17797]  ? clear_bhb_loop+0x35/0x90
[  708.694580][T17797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.694608][T17797] RIP: 0033:0x7f0de958d169
[  708.694627][T17797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  708.694644][T17797] RSP: 002b:00007f0dea451038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  708.694665][T17797] RAX: ffffffffffffffda RBX: 00007f0de97a5fa0 RCX: 00007f0de958d169
[  708.694681][T17797] RDX: 0000000000001f00 RSI: 0000200000000500 RDI: 0000000000000004
[  708.694695][T17797] RBP: 00007f0dea451090 R08: 0000000000000000 R09: 0000000000000000
[  708.694708][T17797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  708.694721][T17797] R13: 0000000000000000 R14: 00007f0de97a5fa0 R15: 00007ffd763c8868
[  708.694753][T17797]  </TASK>
[  709.330006][T17799] bond21: left promiscuous mode
[  709.335504][T17799] veth23: left promiscuous mode
[  709.426102][T17815] FAULT_INJECTION: forcing a failure.
[  709.426102][T17815] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  709.522186][T17815] CPU: 1 UID: 0 PID: 17815 Comm: syz.2.2833 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  709.522220][T17815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  709.522235][T17815] Call Trace:
[  709.522242][T17815]  <TASK>
[  709.522252][T17815]  dump_stack_lvl+0x241/0x360
[  709.522286][T17815]  ? __pfx_dump_stack_lvl+0x10/0x10
[  709.522311][T17815]  ? __pfx__printk+0x10/0x10
[  709.522339][T17815]  ? snprintf+0xda/0x120
[  709.522368][T17815]  should_fail_ex+0x40a/0x550
[  709.522406][T17815]  _copy_to_user+0x31/0xb0
[  709.522439][T17815]  simple_read_from_buffer+0xca/0x150
[  709.522472][T17815]  proc_fail_nth_read+0x1e9/0x250
[  709.522506][T17815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  709.522540][T17815]  ? rw_verify_area+0x243/0x630
[  709.522562][T17815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  709.522595][T17815]  vfs_read+0x1f8/0xb40
[  709.522619][T17815]  ? fdget_pos+0x254/0x320
[  709.522652][T17815]  ? __pfx___mutex_lock+0x10/0x10
[  709.522685][T17815]  ? __pfx_vfs_read+0x10/0x10
[  709.522705][T17815]  ? do_sys_openat2+0x17a/0x1d0
[  709.522740][T17815]  ? __fget_files+0x2a/0x410
[  709.522774][T17815]  ? __fget_files+0x395/0x410
[  709.522804][T17815]  ? __fget_files+0x2a/0x410
[  709.522846][T17815]  ksys_read+0x18f/0x2b0
[  709.522872][T17815]  ? __pfx_ksys_read+0x10/0x10
[  709.522896][T17815]  ? do_syscall_64+0x100/0x230
[  709.522938][T17815]  ? do_syscall_64+0xb6/0x230
[  709.522973][T17815]  do_syscall_64+0xf3/0x230
[  709.523005][T17815]  ? clear_bhb_loop+0x35/0x90
[  709.523039][T17815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  709.523068][T17815] RIP: 0033:0x7f7aec18bb7c
[  709.523087][T17815] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  709.523105][T17815] RSP: 002b:00007f7aecf5e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  709.523128][T17815] RAX: ffffffffffffffda RBX: 00007f7aec3a5fa0 RCX: 00007f7aec18bb7c
[  709.523144][T17815] RDX: 000000000000000f RSI: 00007f7aecf5e0a0 RDI: 0000000000000003
[  709.523157][T17815] RBP: 00007f7aecf5e090 R08: 0000000000000000 R09: 0000000000000000
[  709.523172][T17815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  709.523185][T17815] R13: 0000000000000000 R14: 00007f7aec3a5fa0 R15: 00007ffc0c6b8588
[  709.523222][T17815]  </TASK>
[  709.932669][T17832] netlink: 'syz.0.2839': attribute type 1 has an invalid length.
[  709.998807][T17819] bridge0: port 1(gretap0) entered disabled state
[  710.332913][T17830] __nla_validate_parse: 2 callbacks suppressed
[  710.332937][T17830] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2838'.
[  710.400655][T17832] bond22: entered promiscuous mode
[  710.416845][T17832] 8021q: adding VLAN 0 to HW filter on device bond22
[  710.424918][T17835] FAULT_INJECTION: forcing a failure.
[  710.424918][T17835] name failslab, interval 1, probability 0, space 0, times 0
[  710.449704][T17835] CPU: 0 UID: 0 PID: 17835 Comm: syz.0.2839 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  710.449736][T17835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  710.449748][T17835] Call Trace:
[  710.449755][T17835]  <TASK>
[  710.449763][T17835]  dump_stack_lvl+0x241/0x360
[  710.449798][T17835]  ? __pfx_dump_stack_lvl+0x10/0x10
[  710.449817][T17835]  ? __pfx__printk+0x10/0x10
[  710.449837][T17835]  ? __kmalloc_cache_noprof+0x48/0x390
[  710.449864][T17835]  ? __pfx___might_resched+0x10/0x10
[  710.449892][T17835]  should_fail_ex+0x40a/0x550
[  710.449924][T17835]  should_failslab+0xac/0x100
[  710.449949][T17835]  __kmalloc_cache_noprof+0x70/0x390
[  710.449973][T17835]  ? alloc_netdev_mqs+0xc7c/0x1210
[  710.450001][T17835]  alloc_netdev_mqs+0xc7c/0x1210
[  710.450033][T17835]  rtnl_create_link+0x2f9/0xc90
[  710.450063][T17835]  rtnl_newlink_create+0x2e1/0xbd0
[  710.450087][T17835]  ? __mutex_lock+0x602/0x1010
[  710.450116][T17835]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  710.450139][T17835]  ? __pfx___mutex_lock+0x10/0x10
[  710.450172][T17835]  ? ns_capable+0x8a/0xf0
[  710.450196][T17835]  rtnl_newlink+0x167a/0x1d90
[  710.450228][T17835]  ? __pfx_rtnl_newlink+0x10/0x10
[  710.450246][T17835]  ? __pfx_validate_chain+0x10/0x10
[  710.450332][T17835]  ? __pfx_lock_release+0x10/0x10
[  710.450371][T17835]  ? __pfx_rtnl_newlink+0x10/0x10
[  710.450389][T17835]  rtnetlink_rcv_msg+0x791/0xcf0
[  710.450416][T17835]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  710.450444][T17835]  ? __lock_acquire+0x1397/0x2100
[  710.450472][T17835]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  710.450518][T17835]  netlink_rcv_skb+0x206/0x480
[  710.450546][T17835]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  710.450576][T17835]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  710.450623][T17835]  ? netlink_deliver_tap+0x2e/0x1b0
[  710.450652][T17835]  netlink_unicast+0x7f6/0x990
[  710.450684][T17835]  ? __pfx_netlink_unicast+0x10/0x10
[  710.450707][T17835]  ? __virt_addr_valid+0x45f/0x530
[  710.450725][T17835]  ? __phys_addr_symbol+0x2f/0x70
[  710.450741][T17835]  ? __check_object_size+0x47a/0x730
[  710.450773][T17835]  netlink_sendmsg+0x8de/0xcb0
[  710.450800][T17835]  ? __pfx_netlink_sendmsg+0x10/0x10
[  710.450821][T17835]  ? aa_sock_msg_perm+0x91/0x160
[  710.450853][T17835]  ? __pfx_netlink_sendmsg+0x10/0x10
[  710.450868][T17835]  __sock_sendmsg+0x221/0x270
[  710.450898][T17835]  ____sys_sendmsg+0x53a/0x860
[  710.450927][T17835]  ? __pfx_____sys_sendmsg+0x10/0x10
[  710.450947][T17835]  ? __fget_files+0x2a/0x410
[  710.450976][T17835]  ? __fget_files+0x2a/0x410
[  710.451008][T17835]  __sys_sendmsg+0x269/0x350
[  710.451036][T17835]  ? __pfx___sys_sendmsg+0x10/0x10
[  710.451069][T17835]  ? do_sys_openat2+0x17a/0x1d0
[  710.451117][T17835]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  710.451144][T17835]  ? do_syscall_64+0x100/0x230
[  710.451173][T17835]  ? do_syscall_64+0xb6/0x230
[  710.451201][T17835]  do_syscall_64+0xf3/0x230
[  710.451226][T17835]  ? clear_bhb_loop+0x35/0x90
[  710.451254][T17835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  710.451278][T17835] RIP: 0033:0x7fbe6b98d169
[  710.451293][T17835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  710.451309][T17835] RSP: 002b:00007fbe6c771038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  710.451328][T17835] RAX: ffffffffffffffda RBX: 00007fbe6bba6080 RCX: 00007fbe6b98d169
[  710.451341][T17835] RDX: 000000000000c0b0 RSI: 0000200000000280 RDI: 0000000000000004
[  710.451352][T17835] RBP: 00007fbe6c771090 R08: 0000000000000000 R09: 0000000000000000
[  710.451363][T17835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  710.451374][T17835] R13: 0000000000000001 R14: 00007fbe6bba6080 R15: 00007ffed114aaa8
[  710.451399][T17835]  </TASK>
[  710.523597][T17848] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2844'.
[  710.782400][T17856] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2845'.
[  710.785640][T17848] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2844'.
[  710.847297][T17848] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2844'.
[  710.856438][T17848] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2844'.
[  710.865531][T17848] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2844'.
[  710.884523][T17848] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2844'.
[  710.899692][T17848] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2844'.
[  710.911716][T17848] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2844'.
[  711.091688][T17865] netlink: 'syz.4.2848': attribute type 61 has an invalid length.
[  711.100533][T17864] netlink: 'syz.3.2847': attribute type 11 has an invalid length.
[  711.250059][T17868] netlink: 'syz.3.2851': attribute type 4 has an invalid length.
[  711.744030][T17890] netlink: 'syz.1.2855': attribute type 10 has an invalid length.
[  711.933090][T17898] bond22: left promiscuous mode
[  713.739334][T17951] Illegal XDP return value 4294967274 on prog  (id 897) dev N/A, expect packet loss!
[  714.229815][T17963] netlink: 'syz.2.2883': attribute type 1 has an invalid length.
[  714.290511][T17963] bond26: entered promiscuous mode
[  714.296290][T17963] 8021q: adding VLAN 0 to HW filter on device bond26
[  714.326589][T17969] FAULT_INJECTION: forcing a failure.
[  714.326589][T17969] name failslab, interval 1, probability 0, space 0, times 0
[  714.339581][T17969] CPU: 1 UID: 0 PID: 17969 Comm: syz.4.2884 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  714.339609][T17969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  714.339623][T17969] Call Trace:
[  714.339631][T17969]  <TASK>
[  714.339640][T17969]  dump_stack_lvl+0x241/0x360
[  714.339673][T17969]  ? __pfx_dump_stack_lvl+0x10/0x10
[  714.339697][T17969]  ? __pfx__printk+0x10/0x10
[  714.339721][T17969]  ? kmem_cache_alloc_lru_noprof+0x4d/0x390
[  714.339760][T17969]  ? __pfx___might_resched+0x10/0x10
[  714.339796][T17969]  should_fail_ex+0x40a/0x550
[  714.339834][T17969]  should_failslab+0xac/0x100
[  714.339863][T17969]  ? alloc_inode+0x87/0x1a0
[  714.339892][T17969]  kmem_cache_alloc_lru_noprof+0x75/0x390
[  714.339928][T17969]  alloc_inode+0x87/0x1a0
[  714.339960][T17969]  path_from_stashed+0x463/0xb80
[  714.339997][T17969]  ? path_from_stashed+0xe2/0xb80
[  714.340028][T17969]  ? __pfx_path_from_stashed+0x10/0x10
[  714.340059][T17969]  ? _raw_spin_unlock+0x28/0x50
[  714.340084][T17969]  ? netns_get+0xcc/0x110
[  714.340111][T17969]  proc_ns_get_link+0xf9/0x240
[  714.340141][T17969]  ? __pfx_proc_ns_get_link+0x10/0x10
[  714.340175][T17969]  ? bpf_lsm_inode_follow_link+0x9/0x10
[  714.340201][T17969]  ? security_inode_follow_link+0xbe/0x340
[  714.340226][T17969]  ? __pfx_proc_ns_get_link+0x10/0x10
[  714.340258][T17969]  pick_link+0x631/0xd50
[  714.340297][T17969]  step_into+0xcd2/0x10b0
[  714.340341][T17969]  ? __pfx_step_into+0x10/0x10
[  714.340376][T17969]  ? proc_ns_dir_lookup+0x352/0x3a0
[  714.340414][T17969]  path_openat+0x1d6f/0x3590
[  714.340465][T17969]  ? __pfx_path_openat+0x10/0x10
[  714.340507][T17969]  do_filp_open+0x27f/0x4e0
[  714.340533][T17969]  ? __pfx_do_filp_open+0x10/0x10
[  714.340554][T17969]  ? do_raw_spin_lock+0x14f/0x370
[  714.340617][T17969]  do_sys_openat2+0x13e/0x1d0
[  714.340651][T17969]  ? __pfx_do_sys_openat2+0x10/0x10
[  714.340680][T17969]  ? __fget_files+0x2a/0x410
[  714.340714][T17969]  ? __fget_files+0x2a/0x410
[  714.340758][T17969]  __x64_sys_openat+0x247/0x2a0
[  714.340791][T17969]  ? __pfx___x64_sys_openat+0x10/0x10
[  714.340827][T17969]  ? do_syscall_64+0x100/0x230
[  714.340861][T17969]  ? do_syscall_64+0xb6/0x230
[  714.340895][T17969]  do_syscall_64+0xf3/0x230
[  714.340926][T17969]  ? clear_bhb_loop+0x35/0x90
[  714.340959][T17969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  714.340988][T17969] RIP: 0033:0x7f0de958bad0
[  714.341006][T17969] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  714.341024][T17969] RSP: 002b:00007f0dea450f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  714.341047][T17969] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0de958bad0
[  714.341062][T17969] RDX: 0000000000000000 RSI: 00007f0de960e3b8 RDI: 00000000ffffff9c
[  714.341076][T17969] RBP: 00007f0de960e3b8 R08: 0000000000000000 R09: 0000000000000000
[  714.341089][T17969] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  714.341102][T17969] R13: 0000000000000001 R14: 00007f0de97a5fa0 R15: 00007ffd763c8868
[  714.341132][T17969]  </TASK>
[  714.446993][T17969] netlink: 'syz.4.2884': attribute type 10 has an invalid length.
[  714.672830][T17965] bond26: (slave veth13): making interface the new active one
[  714.680427][T17965] veth13: entered promiscuous mode
[  714.687863][T17965] bond26: (slave veth13): Enslaving as an active interface with an up link
[  715.011333][T17991] netlink: 'syz.4.2891': attribute type 30 has an invalid length.
[  715.064001][T17991] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  715.073141][T17991] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  715.081875][T17991] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  715.090848][T17991] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  715.388946][T18009] netlink: 'syz.3.2895': attribute type 1 has an invalid length.
[  715.644790][T18009] bond22: entered promiscuous mode
[  715.650241][T18009] 8021q: adding VLAN 0 to HW filter on device bond22
[  715.766639][T18012] bond26: left promiscuous mode
[  715.771572][T18012] veth13: left promiscuous mode
[  715.858839][T18013] FAULT_INJECTION: forcing a failure.
[  715.858839][T18013] name failslab, interval 1, probability 0, space 0, times 0
[  715.922142][T18013] CPU: 1 UID: 0 PID: 18013 Comm: syz.3.2895 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  715.922175][T18013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  715.922188][T18013] Call Trace:
[  715.922196][T18013]  <TASK>
[  715.922205][T18013]  dump_stack_lvl+0x241/0x360
[  715.922239][T18013]  ? __pfx_dump_stack_lvl+0x10/0x10
[  715.922263][T18013]  ? __pfx__printk+0x10/0x10
[  715.922287][T18013]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  715.922318][T18013]  ? __pfx___might_resched+0x10/0x10
[  715.922361][T18013]  ? vsnprintf+0x1152/0x1220
[  715.922391][T18013]  should_fail_ex+0x40a/0x550
[  715.922429][T18013]  should_failslab+0xac/0x100
[  715.922460][T18013]  __kmalloc_node_noprof+0xe1/0x4d0
[  715.922489][T18013]  ? __kvmalloc_node_noprof+0x72/0x190
[  715.922523][T18013]  ? __pfx_veth_setup+0x10/0x10
[  715.922547][T18013]  __kvmalloc_node_noprof+0x72/0x190
[  715.922582][T18013]  alloc_netdev_mqs+0xa4/0x1210
[  715.922611][T18013]  ? __pfx_veth_setup+0x10/0x10
[  715.922640][T18013]  rtnl_create_link+0x2f9/0xc90
[  715.922696][T18013]  veth_newlink+0x2e9/0xb70
[  715.922717][T18013]  ? kasan_save_track+0x51/0x80
[  715.922747][T18013]  ? __pfx_veth_newlink+0x10/0x10
[  715.922767][T18013]  ? netlink_rcv_skb+0x206/0x480
[  715.922798][T18013]  ? netlink_unicast+0x7f6/0x990
[  715.922825][T18013]  ? netlink_sendmsg+0x8de/0xcb0
[  715.922843][T18013]  ? __sock_sendmsg+0x221/0x270
[  715.922873][T18013]  ? ____sys_sendmsg+0x53a/0x860
[  715.922896][T18013]  ? __sys_sendmsg+0x269/0x350
[  715.922920][T18013]  ? do_syscall_64+0xf3/0x230
[  715.922949][T18013]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  715.923042][T18013]  ? alloc_netdev_mqs+0xe01/0x1210
[  715.923080][T18013]  ? rtnl_create_link+0x95b/0xc90
[  715.923112][T18013]  ? __pfx_veth_newlink+0x10/0x10
[  715.923136][T18013]  rtnl_newlink_create+0x37b/0xbd0
[  715.923167][T18013]  ? __mutex_lock+0x602/0x1010
[  715.923203][T18013]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  715.923232][T18013]  ? __pfx___mutex_lock+0x10/0x10
[  715.923274][T18013]  ? ns_capable+0x8a/0xf0
[  715.923304][T18013]  rtnl_newlink+0x167a/0x1d90
[  715.923327][T18013]  ? __lock_acquire+0x1397/0x2100
[  715.923383][T18013]  ? __pfx_rtnl_newlink+0x10/0x10
[  715.923405][T18013]  ? __pfx_validate_chain+0x10/0x10
[  715.923520][T18013]  ? __pfx_lock_release+0x10/0x10
[  715.923570][T18013]  ? __pfx_rtnl_newlink+0x10/0x10
[  715.923594][T18013]  rtnetlink_rcv_msg+0x791/0xcf0
[  715.923627][T18013]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  715.923662][T18013]  ? __lock_acquire+0x1397/0x2100
[  715.923696][T18013]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  715.923750][T18013]  netlink_rcv_skb+0x206/0x480
[  715.923786][T18013]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  715.923823][T18013]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  715.923883][T18013]  ? netlink_deliver_tap+0x2e/0x1b0
[  715.923920][T18013]  netlink_unicast+0x7f6/0x990
[  715.923961][T18013]  ? __pfx_netlink_unicast+0x10/0x10
[  715.923989][T18013]  ? __virt_addr_valid+0x45f/0x530
[  715.924012][T18013]  ? __phys_addr_symbol+0x2f/0x70
[  715.924031][T18013]  ? __check_object_size+0x47a/0x730
[  715.924067][T18013]  netlink_sendmsg+0x8de/0xcb0
[  715.924103][T18013]  ? __pfx_netlink_sendmsg+0x10/0x10
[  715.924129][T18013]  ? aa_sock_msg_perm+0x91/0x160
[  715.924170][T18013]  ? __pfx_netlink_sendmsg+0x10/0x10
[  715.924189][T18013]  __sock_sendmsg+0x221/0x270
[  715.924225][T18013]  ____sys_sendmsg+0x53a/0x860
[  715.924263][T18013]  ? __pfx_____sys_sendmsg+0x10/0x10
[  715.924287][T18013]  ? __fget_files+0x2a/0x410
[  715.924322][T18013]  ? __fget_files+0x2a/0x410
[  715.924371][T18013]  __sys_sendmsg+0x269/0x350
[  715.924404][T18013]  ? __pfx___sys_sendmsg+0x10/0x10
[  715.924446][T18013]  ? do_sys_openat2+0x17a/0x1d0
[  715.924508][T18013]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  715.924544][T18013]  ? do_syscall_64+0x100/0x230
[  715.924579][T18013]  ? do_syscall_64+0xb6/0x230
[  715.924615][T18013]  do_syscall_64+0xf3/0x230
[  715.924646][T18013]  ? clear_bhb_loop+0x35/0x90
[  715.924680][T18013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  715.924709][T18013] RIP: 0033:0x7f9bc9f8d169
[  715.924728][T18013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  715.924747][T18013] RSP: 002b:00007f9bcae7d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  715.924770][T18013] RAX: ffffffffffffffda RBX: 00007f9bca1a6080 RCX: 00007f9bc9f8d169
[  715.924786][T18013] RDX: 000000000000c0b0 RSI: 0000200000000280 RDI: 0000000000000004
[  715.924800][T18013] RBP: 00007f9bcae7d090 R08: 0000000000000000 R09: 0000000000000000
[  715.924813][T18013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  715.924825][T18013] R13: 0000000000000001 R14: 00007f9bca1a6080 R15: 00007ffe06d6ea28
[  715.924859][T18013]  </TASK>
[  716.534095][T18025] __nla_validate_parse: 121 callbacks suppressed
[  716.534117][T18025] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2898'.
[  716.559328][T18026] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2896'.
[  716.968931][T18033] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2900'.
[  717.158285][T18047] FAULT_INJECTION: forcing a failure.
[  717.158285][T18047] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  717.195266][T18047] CPU: 0 UID: 0 PID: 18047 Comm: syz.4.2901 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  717.195299][T18047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  717.195313][T18047] Call Trace:
[  717.195321][T18047]  <TASK>
[  717.195330][T18047]  dump_stack_lvl+0x241/0x360
[  717.195363][T18047]  ? __pfx_dump_stack_lvl+0x10/0x10
[  717.195387][T18047]  ? __pfx__printk+0x10/0x10
[  717.195412][T18047]  ? __pfx_lock_release+0x10/0x10
[  717.195454][T18047]  should_fail_ex+0x40a/0x550
[  717.195491][T18047]  _copy_from_user+0x2d/0xb0
[  717.195523][T18047]  copy_msghdr_from_user+0xae/0x680
[  717.195569][T18047]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  717.195600][T18047]  ? __fget_files+0x2a/0x410
[  717.195636][T18047]  ? __fget_files+0x2a/0x410
[  717.195675][T18047]  __sys_sendmsg+0x209/0x350
[  717.195707][T18047]  ? __pfx___sys_sendmsg+0x10/0x10
[  717.195746][T18047]  ? do_sys_openat2+0x17a/0x1d0
[  717.195804][T18047]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  717.195838][T18047]  ? do_syscall_64+0x100/0x230
[  717.195873][T18047]  ? do_syscall_64+0xb6/0x230
[  717.195907][T18047]  do_syscall_64+0xf3/0x230
[  717.195937][T18047]  ? clear_bhb_loop+0x35/0x90
[  717.195971][T18047]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.196000][T18047] RIP: 0033:0x7f0de958d169
[  717.196018][T18047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  717.196036][T18047] RSP: 002b:00007f0dea451038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  717.196059][T18047] RAX: ffffffffffffffda RBX: 00007f0de97a5fa0 RCX: 00007f0de958d169
[  717.196075][T18047] RDX: 0000000004000040 RSI: 00002000000003c0 RDI: 0000000000000004
[  717.196088][T18047] RBP: 00007f0dea451090 R08: 0000000000000000 R09: 0000000000000000
[  717.196102][T18047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  717.196115][T18047] R13: 0000000000000000 R14: 00007f0de97a5fa0 R15: 00007ffd763c8868
[  717.196144][T18047]  </TASK>
[  717.492722][T18055] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2904'.
[  717.514659][T18049] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2903'.
[  717.523801][T18049] netlink: 'syz.0.2903': attribute type 4 has an invalid length.
[  717.684640][T18060] FAULT_INJECTION: forcing a failure.
[  717.684640][T18060] name failslab, interval 1, probability 0, space 0, times 0
[  717.762232][T18060] CPU: 0 UID: 0 PID: 18060 Comm: syz.4.2905 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  717.762265][T18060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  717.762278][T18060] Call Trace:
[  717.762286][T18060]  <TASK>
[  717.762295][T18060]  dump_stack_lvl+0x241/0x360
[  717.762328][T18060]  ? __pfx_dump_stack_lvl+0x10/0x10
[  717.762353][T18060]  ? __pfx__printk+0x10/0x10
[  717.762376][T18060]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  717.762408][T18060]  ? __pfx___might_resched+0x10/0x10
[  717.762442][T18060]  should_fail_ex+0x40a/0x550
[  717.762481][T18060]  should_failslab+0xac/0x100
[  717.762511][T18060]  kmem_cache_alloc_node_noprof+0x77/0x380
[  717.762542][T18060]  ? __alloc_skb+0x1c3/0x440
[  717.762571][T18060]  __alloc_skb+0x1c3/0x440
[  717.762601][T18060]  ? __pfx___alloc_skb+0x10/0x10
[  717.762624][T18060]  ? __pfx_rtnl_newlink+0x10/0x10
[  717.762650][T18060]  ? netlink_ack_tlv_len+0x6e/0x200
[  717.762687][T18060]  netlink_ack+0x145/0xa60
[  717.762718][T18060]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  717.762768][T18060]  netlink_rcv_skb+0x294/0x480
[  717.762803][T18060]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  717.762840][T18060]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  717.762896][T18060]  ? netlink_deliver_tap+0x2e/0x1b0
[  717.762933][T18060]  netlink_unicast+0x7f6/0x990
[  717.762972][T18060]  ? __pfx_netlink_unicast+0x10/0x10
[  717.763001][T18060]  ? __virt_addr_valid+0x45f/0x530
[  717.763023][T18060]  ? __phys_addr_symbol+0x2f/0x70
[  717.763043][T18060]  ? __check_object_size+0x47a/0x730
[  717.763077][T18060]  netlink_sendmsg+0x8de/0xcb0
[  717.763110][T18060]  ? __pfx_netlink_sendmsg+0x10/0x10
[  717.763137][T18060]  ? aa_sock_msg_perm+0x91/0x160
[  717.763187][T18060]  ? __pfx_netlink_sendmsg+0x10/0x10
[  717.763207][T18060]  __sock_sendmsg+0x221/0x270
[  717.763244][T18060]  ____sys_sendmsg+0x53a/0x860
[  717.763279][T18060]  ? __pfx_____sys_sendmsg+0x10/0x10
[  717.763305][T18060]  ? __fget_files+0x2a/0x410
[  717.763339][T18060]  ? __fget_files+0x2a/0x410
[  717.763380][T18060]  __sys_sendmsg+0x269/0x350
[  717.763412][T18060]  ? __pfx___sys_sendmsg+0x10/0x10
[  717.763452][T18060]  ? do_sys_openat2+0x17a/0x1d0
[  717.763509][T18060]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  717.763544][T18060]  ? do_syscall_64+0x100/0x230
[  717.763579][T18060]  ? do_syscall_64+0xb6/0x230
[  717.763613][T18060]  do_syscall_64+0xf3/0x230
[  717.763644][T18060]  ? clear_bhb_loop+0x35/0x90
[  717.763677][T18060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.763707][T18060] RIP: 0033:0x7f0de958d169
[  717.763726][T18060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  717.763745][T18060] RSP: 002b:00007f0dea451038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  717.763768][T18060] RAX: ffffffffffffffda RBX: 00007f0de97a5fa0 RCX: 00007f0de958d169
[  717.763784][T18060] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  717.763797][T18060] RBP: 00007f0dea451090 R08: 0000000000000000 R09: 0000000000000000
[  717.763811][T18060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  717.763823][T18060] R13: 0000000000000000 R14: 00007f0de97a5fa0 R15: 00007ffd763c8868
[  717.763852][T18060]  </TASK>
[  718.313231][T18072] netlink: 'syz.1.2909': attribute type 10 has an invalid length.
[  718.393771][T18074] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2910'.
[  718.405828][T18071] dccp_invalid_packet: P.type (RESET) not Data || [Data]Ack, while P.X == 0
[  718.428330][T18074] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2910'.
[  718.456168][T18074] macsec0: entered promiscuous mode
[  718.474421][T18071] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2906'.
[  718.528319][T18079] macsec0: left promiscuous mode
[  719.184338][T18096] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  719.706902][T18116] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2918'.
[  719.916275][   T30] audit: type=1800 audit(1742891479.651:37): pid=18105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2918" name="cgroup.controllers" dev="tmpfs" ino=3076 res=0 errno=0
[  719.976879][T18121] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  720.103713][T18123] netlink: 'syz.0.2922': attribute type 1 has an invalid length.
[  720.205861][T18123] bond23: entered promiscuous mode
[  720.236610][T18123] 8021q: adding VLAN 0 to HW filter on device bond23
[  720.285549][T18125] FAULT_INJECTION: forcing a failure.
[  720.285549][T18125] name failslab, interval 1, probability 0, space 0, times 0
[  720.352291][T18125] CPU: 0 UID: 0 PID: 18125 Comm: syz.0.2922 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  720.352323][T18125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  720.352337][T18125] Call Trace:
[  720.352345][T18125]  <TASK>
[  720.352355][T18125]  dump_stack_lvl+0x241/0x360
[  720.352388][T18125]  ? __pfx_dump_stack_lvl+0x10/0x10
[  720.352413][T18125]  ? __pfx__printk+0x10/0x10
[  720.352438][T18125]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  720.352470][T18125]  ? __pfx___might_resched+0x10/0x10
[  720.352506][T18125]  should_fail_ex+0x40a/0x550
[  720.352545][T18125]  should_failslab+0xac/0x100
[  720.352577][T18125]  __kmalloc_node_noprof+0xe1/0x4d0
[  720.352607][T18125]  ? __kvmalloc_node_noprof+0x72/0x190
[  720.352648][T18125]  __kvmalloc_node_noprof+0x72/0x190
[  720.352685][T18125]  alloc_netdev_mqs+0xce7/0x1210
[  720.352722][T18125]  rtnl_create_link+0x2f9/0xc90
[  720.352760][T18125]  rtnl_newlink_create+0x2e1/0xbd0
[  720.352791][T18125]  ? __mutex_lock+0x602/0x1010
[  720.352828][T18125]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  720.352856][T18125]  ? __pfx___mutex_lock+0x10/0x10
[  720.352899][T18125]  ? ns_capable+0x8a/0xf0
[  720.352930][T18125]  rtnl_newlink+0x167a/0x1d90
[  720.352972][T18125]  ? __pfx_rtnl_newlink+0x10/0x10
[  720.352994][T18125]  ? __pfx_validate_chain+0x10/0x10
[  720.353118][T18125]  ? __pfx_lock_release+0x10/0x10
[  720.353168][T18125]  ? __pfx_rtnl_newlink+0x10/0x10
[  720.353192][T18125]  rtnetlink_rcv_msg+0x791/0xcf0
[  720.353224][T18125]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  720.353260][T18125]  ? __lock_acquire+0x1397/0x2100
[  720.353298][T18125]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  720.353352][T18125]  netlink_rcv_skb+0x206/0x480
[  720.353388][T18125]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  720.353425][T18125]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  720.353485][T18125]  ? netlink_deliver_tap+0x2e/0x1b0
[  720.353523][T18125]  netlink_unicast+0x7f6/0x990
[  720.353564][T18125]  ? __pfx_netlink_unicast+0x10/0x10
[  720.353592][T18125]  ? __virt_addr_valid+0x45f/0x530
[  720.353614][T18125]  ? __phys_addr_symbol+0x2f/0x70
[  720.353635][T18125]  ? __check_object_size+0x47a/0x730
[  720.353669][T18125]  netlink_sendmsg+0x8de/0xcb0
[  720.353702][T18125]  ? __pfx_netlink_sendmsg+0x10/0x10
[  720.353729][T18125]  ? aa_sock_msg_perm+0x91/0x160
[  720.353767][T18125]  ? __pfx_netlink_sendmsg+0x10/0x10
[  720.353786][T18125]  __sock_sendmsg+0x221/0x270
[  720.353822][T18125]  ____sys_sendmsg+0x53a/0x860
[  720.353857][T18125]  ? __pfx_____sys_sendmsg+0x10/0x10
[  720.353883][T18125]  ? __fget_files+0x2a/0x410
[  720.353918][T18125]  ? __fget_files+0x2a/0x410
[  720.353961][T18125]  __sys_sendmsg+0x269/0x350
[  720.353994][T18125]  ? __pfx___sys_sendmsg+0x10/0x10
[  720.354043][T18125]  ? do_sys_openat2+0x17a/0x1d0
[  720.354104][T18125]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  720.354140][T18125]  ? do_syscall_64+0x100/0x230
[  720.354177][T18125]  ? do_syscall_64+0xb6/0x230
[  720.354212][T18125]  do_syscall_64+0xf3/0x230
[  720.354244][T18125]  ? clear_bhb_loop+0x35/0x90
[  720.354280][T18125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  720.354310][T18125] RIP: 0033:0x7fbe6b98d169
[  720.354330][T18125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  720.354348][T18125] RSP: 002b:00007fbe6c771038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  720.354371][T18125] RAX: ffffffffffffffda RBX: 00007fbe6bba6080 RCX: 00007fbe6b98d169
[  720.354387][T18125] RDX: 000000000000c0b0 RSI: 0000200000000280 RDI: 0000000000000004
[  720.354401][T18125] RBP: 00007fbe6c771090 R08: 0000000000000000 R09: 0000000000000000
[  720.354414][T18125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  720.354427][T18125] R13: 0000000000000001 R14: 00007fbe6bba6080 R15: 00007ffed114aaa8
[  720.354459][T18125]  </TASK>
[  720.458205][T18139] xt_socket: unknown flags 0x8
[  721.034616][T18148] FAULT_INJECTION: forcing a failure.
[  721.034616][T18148] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  721.058657][T18148] CPU: 1 UID: 0 PID: 18148 Comm: syz.4.2930 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  721.058689][T18148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  721.058703][T18148] Call Trace:
[  721.058711][T18148]  <TASK>
[  721.058721][T18148]  dump_stack_lvl+0x241/0x360
[  721.058754][T18148]  ? __pfx_dump_stack_lvl+0x10/0x10
[  721.058779][T18148]  ? __pfx__printk+0x10/0x10
[  721.058803][T18148]  ? __lock_acquire+0x1397/0x2100
[  721.058846][T18148]  should_fail_ex+0x40a/0x550
[  721.058885][T18148]  prepare_alloc_pages+0x1da/0x5b0
[  721.058919][T18148]  __alloc_frozen_pages_noprof+0x16f/0x710
[  721.058949][T18148]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  721.058997][T18148]  alloc_pages_mpol+0x311/0x660
[  721.059034][T18148]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  721.059076][T18148]  vma_alloc_folio_noprof+0x12b/0x260
[  721.059109][T18148]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  721.059143][T18148]  ? do_raw_spin_unlock+0x13c/0x8b0
[  721.059183][T18148]  folio_prealloc+0x2e/0x170
[  721.059209][T18148]  do_wp_page+0x1253/0x49b0
[  721.059259][T18148]  ? __pfx_do_wp_page+0x10/0x10
[  721.059292][T18148]  ? __pfx_validate_chain+0x10/0x10
[  721.059321][T18148]  ? __pfx_lock_acquire+0x10/0x10
[  721.059351][T18148]  ? rcu_is_watching+0x15/0xb0
[  721.059380][T18148]  ? do_raw_spin_lock+0x14f/0x370
[  721.059408][T18148]  ? __pfx____pte_offset_map+0x10/0x10
[  721.059461][T18148]  __handle_mm_fault+0x2303/0x6ef0
[  721.059493][T18148]  ? mark_lock+0x9a/0x360
[  721.059544][T18148]  ? __pfx___handle_mm_fault+0x10/0x10
[  721.059590][T18148]  ? mt_find+0x2a9/0x920
[  721.059623][T18148]  ? __pfx_lock_release+0x10/0x10
[  721.059669][T18148]  ? mt_find+0x2a9/0x920
[  721.059703][T18148]  ? mt_find+0x6c8/0x920
[  721.059735][T18148]  ? mt_find+0x2a9/0x920
[  721.059771][T18148]  ? __pfx_mt_find+0x10/0x10
[  721.059826][T18148]  ? find_vma+0xf9/0x170
[  721.059846][T18148]  ? __pfx_find_vma+0x10/0x10
[  721.059863][T18148]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  721.059901][T18148]  handle_mm_fault+0x3e5/0x8d0
[  721.059947][T18148]  exc_page_fault+0x2b9/0x8b0
[  721.059985][T18148]  asm_exc_page_fault+0x26/0x30
[  721.060014][T18148] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  721.060039][T18148] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  721.060058][T18148] RSP: 0018:ffffc9000bfb7738 EFLAGS: 00050206
[  721.060078][T18148] RAX: ffffffff84f33801 RBX: 00000000000101d0 RCX: 00000000000055d0
[  721.060093][T18148] RDX: 0000000000000000 RSI: ffff888053e0ace8 RDI: 000020000000b000
[  721.060108][T18148] RBP: ffffc9000bfb78b8 R08: ffff888053e102b7 R09: 1ffff1100a7c2056
[  721.060124][T18148] R10: dffffc0000000000 R11: ffffed100a7c2057 R12: ffffc9000bfb7e18
[  721.060140][T18148] R13: 1ffff920017f6fc3 R14: ffff888053e000e8 R15: 00000000000101d0
[  721.060165][T18148]  ? _copy_to_iter+0x231/0x1c40
[  721.060206][T18148]  _copy_to_iter+0x260/0x1c40
[  721.060233][T18148]  ? __virt_addr_valid+0x183/0x530
[  721.060256][T18148]  ? __pfx_lock_release+0x10/0x10
[  721.060299][T18148]  ? __pfx__copy_to_iter+0x10/0x10
[  721.060329][T18148]  ? __virt_addr_valid+0x183/0x530
[  721.060349][T18148]  ? __virt_addr_valid+0x183/0x530
[  721.060369][T18148]  ? __virt_addr_valid+0x45f/0x530
[  721.060392][T18148]  ? __check_object_size+0x47a/0x730
[  721.060428][T18148]  __skb_datagram_iter+0x107/0x900
[  721.060459][T18148]  ? __local_bh_enable_ip+0x168/0x200
[  721.060485][T18148]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  721.060516][T18148]  ? __pfx_tipc_sk_anc_data_recv+0x10/0x10
[  721.060550][T18148]  skb_copy_datagram_iter+0xd1/0x250
[  721.060584][T18148]  tipc_recvstream+0x7a8/0xf80
[  721.060631][T18148]  ? __pfx_tipc_recvstream+0x10/0x10
[  721.060655][T18148]  ? aa_sock_msg_perm+0x91/0x160
[  721.060692][T18148]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  721.060718][T18148]  ? __pfx_tipc_recvstream+0x10/0x10
[  721.060745][T18148]  sock_recvmsg+0x22f/0x280
[  721.060804][T18148]  ____sys_recvmsg+0x1c6/0x480
[  721.060843][T18148]  ? __pfx_____sys_recvmsg+0x10/0x10
[  721.060897][T18148]  __sys_recvmsg+0x291/0x390
[  721.060932][T18148]  ? __pfx___sys_recvmsg+0x10/0x10
[  721.060975][T18148]  ? __fget_files+0x2a/0x410
[  721.061024][T18148]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  721.061060][T18148]  ? do_syscall_64+0x100/0x230
[  721.061096][T18148]  ? do_syscall_64+0xb6/0x230
[  721.061131][T18148]  do_syscall_64+0xf3/0x230
[  721.061163][T18148]  ? clear_bhb_loop+0x35/0x90
[  721.061206][T18148]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  721.061235][T18148] RIP: 0033:0x7f0de958d169
[  721.061254][T18148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  721.061272][T18148] RSP: 002b:00007f0dea451038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  721.061294][T18148] RAX: ffffffffffffffda RBX: 00007f0de97a5fa0 RCX: 00007f0de958d169
[  721.061310][T18148] RDX: 0000000000001f00 RSI: 0000200000000500 RDI: 0000000000000004
[  721.061324][T18148] RBP: 00007f0dea451090 R08: 0000000000000000 R09: 0000000000000000
[  721.061337][T18148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  721.061350][T18148] R13: 0000000000000000 R14: 00007f0de97a5fa0 R15: 00007ffd763c8868
[  721.061383][T18148]  </TASK>
[  721.662823][T18152] netlink: 'syz.0.2932': attribute type 21 has an invalid length.
[  721.692361][T18093] Bluetooth: hci4: command 0x0405 tx timeout
[  721.712237][T18152] netlink: 128 bytes leftover after parsing attributes in process `syz.0.2932'.
[  721.754425][T18152] netlink: 'syz.0.2932': attribute type 5 has an invalid length.
[  721.757608][T18156] netlink: 'syz.1.2931': attribute type 9 has an invalid length.
[  721.762398][T18152] netlink: 'syz.0.2932': attribute type 6 has an invalid length.
[  721.762420][T18152] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2932'.
[  721.791783][T18152] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2932'.
[  721.806102][T18152] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  721.814633][T18152] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  721.823223][T18152] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  721.831447][T18152] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  721.831573][T18156] netlink: 'syz.1.2931': attribute type 6 has an invalid length.
[  721.942545][T18156] netlink: 'syz.1.2931': attribute type 7 has an invalid length.
[  721.955694][T18156] netlink: 'syz.1.2931': attribute type 8 has an invalid length.
[  721.993381][T18152] hsr0: entered promiscuous mode
[  721.999373][T18152] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2932'.
[  722.037306][T18152] hsr_slave_0: left promiscuous mode
[  722.089166][T18152] hsr_slave_1: left promiscuous mode
[  722.130115][T18168] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2932'.
[  722.174609][T18152] hsr0 (unregistering): left promiscuous mode
[  722.577147][T18172] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2935'.
[  722.598702][T18183] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2938'.
[  722.630427][T18185] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2939'.
[  722.675770][T18185] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2939'.
[  722.719771][   T30] audit: type=1800 audit(1742891482.451:38): pid=18172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2935" name="cgroup.controllers" dev="tmpfs" ino=3092 res=0 errno=0
[  723.023658][T18194] bond23: left promiscuous mode
[  723.062274][T18194] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  723.082883][T18194] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  723.091358][T18194] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  723.123495][T18194] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  723.428255][T18209] netlink: 'syz.3.2948': attribute type 10 has an invalid length.
[  723.777994][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  723.795202][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  723.804690][T18225] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  723.804723][T18228] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  723.977710][T18232] netlink: 'syz.2.2956': attribute type 4 has an invalid length.
[  723.990542][T18232] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2956'.
[  724.528913][T18246] bond22: left promiscuous mode
[  725.041262][T18260] ipvlan2: entered promiscuous mode
[  725.056819][T18260] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  725.366021][T18271] netlink: 'syz.0.2969': attribute type 16 has an invalid length.
[  725.374229][T18271] netlink: 'syz.0.2969': attribute type 17 has an invalid length.
[  725.422612][T18271] 8021q: adding VLAN 0 to HW filter on device bond0
[  725.444674][T18271] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  727.304113][T18304] vlan2: entered allmulticast mode
[  727.313688][T18304] bond0: entered allmulticast mode
[  727.920297][T18333] siw: device registration error -23
[  727.945883][T18334] siw: device registration error -23
[  727.992834][T18336] __nla_validate_parse: 1 callbacks suppressed
[  727.992857][T18336] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2992'.
[  728.047786][T18336] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2992'.
[  728.123456][T18340] FAULT_INJECTION: forcing a failure.
[  728.123456][T18340] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  728.152929][T18342] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2995'.
[  728.164509][T18340] CPU: 0 UID: 0 PID: 18340 Comm: syz.2.2994 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  728.164538][T18340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  728.164552][T18340] Call Trace:
[  728.164559][T18340]  <TASK>
[  728.164569][T18340]  dump_stack_lvl+0x241/0x360
[  728.164609][T18340]  ? __pfx_dump_stack_lvl+0x10/0x10
[  728.164635][T18340]  ? __pfx__printk+0x10/0x10
[  728.164664][T18340]  ? snprintf+0xda/0x120
[  728.164693][T18340]  should_fail_ex+0x40a/0x550
[  728.164733][T18340]  _copy_to_user+0x31/0xb0
[  728.164767][T18340]  simple_read_from_buffer+0xca/0x150
[  728.164802][T18340]  proc_fail_nth_read+0x1e9/0x250
[  728.164837][T18340]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  728.164872][T18340]  ? rw_verify_area+0x243/0x630
[  728.164895][T18340]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  728.164928][T18340]  vfs_read+0x1f8/0xb40
[  728.164953][T18340]  ? fdget_pos+0x254/0x320
[  728.164987][T18340]  ? __pfx___mutex_lock+0x10/0x10
[  728.165020][T18340]  ? __pfx_vfs_read+0x10/0x10
[  728.165047][T18340]  ? __fget_files+0x2a/0x410
[  728.165081][T18340]  ? __fget_files+0x395/0x410
[  728.165111][T18340]  ? __fget_files+0x2a/0x410
[  728.165153][T18340]  ksys_read+0x18f/0x2b0
[  728.165179][T18340]  ? __pfx_ksys_read+0x10/0x10
[  728.165200][T18340]  ? trace_sys_enter+0x74/0x120
[  728.165221][T18340]  ? rcu_is_watching+0x15/0xb0
[  728.165245][T18340]  ? trace_sys_enter+0x25/0x120
[  728.165273][T18340]  do_syscall_64+0xf3/0x230
[  728.165305][T18340]  ? clear_bhb_loop+0x35/0x90
[  728.165340][T18340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.165370][T18340] RIP: 0033:0x7f7aec18bb7c
[  728.165389][T18340] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  728.165408][T18340] RSP: 002b:00007f7aecf5e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  728.165431][T18340] RAX: ffffffffffffffda RBX: 00007f7aec3a5fa0 RCX: 00007f7aec18bb7c
[  728.165447][T18340] RDX: 000000000000000f RSI: 00007f7aecf5e0a0 RDI: 0000000000000004
[  728.165461][T18340] RBP: 00007f7aecf5e090 R08: 0000000000000000 R09: 0000000000000000
[  728.165475][T18340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  728.165488][T18340] R13: 0000000000000000 R14: 00007f7aec3a5fa0 R15: 00007ffc0c6b8588
[  728.165521][T18340]  </TASK>
[  728.464436][T18345] FAULT_INJECTION: forcing a failure.
[  728.464436][T18345] name failslab, interval 1, probability 0, space 0, times 0
[  728.492436][T18345] CPU: 1 UID: 0 PID: 18345 Comm: syz.1.2996 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  728.492469][T18345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  728.492482][T18345] Call Trace:
[  728.492490][T18345]  <TASK>
[  728.492499][T18345]  dump_stack_lvl+0x241/0x360
[  728.492531][T18345]  ? __pfx_dump_stack_lvl+0x10/0x10
[  728.492556][T18345]  ? __pfx__printk+0x10/0x10
[  728.492580][T18345]  ? kmem_cache_alloc_noprof+0x48/0x380
[  728.492611][T18345]  ? __pfx___might_resched+0x10/0x10
[  728.492646][T18345]  should_fail_ex+0x40a/0x550
[  728.492686][T18345]  should_failslab+0xac/0x100
[  728.492716][T18345]  ? __kernfs_new_node+0xd8/0x870
[  728.492745][T18345]  kmem_cache_alloc_noprof+0x70/0x380
[  728.492780][T18345]  __kernfs_new_node+0xd8/0x870
[  728.492820][T18345]  ? __pfx___kernfs_new_node+0x10/0x10
[  728.492856][T18345]  ? kernfs_add_one+0x157/0x700
[  728.492887][T18345]  ? __pfx_lock_release+0x10/0x10
[  728.492933][T18345]  kernfs_new_node+0x137/0x240
[  728.492969][T18345]  kernfs_create_dir_ns+0x43/0x120
[  728.493006][T18345]  internal_create_group+0x4d7/0x12d0
[  728.493049][T18345]  ? kernfs_add_one+0x157/0x700
[  728.493081][T18345]  ? __pfx_internal_create_group+0x10/0x10
[  728.493108][T18345]  ? device_add_attrs+0x48c/0x600
[  728.493134][T18345]  ? __pfx_device_add_attrs+0x10/0x10
[  728.493155][T18345]  ? bus_add_device+0xde/0x460
[  728.493188][T18345]  dpm_sysfs_add+0x69/0x280
[  728.493215][T18345]  device_add+0x5bc/0xbf0
[  728.493243][T18345]  tty_register_device_attr+0x437/0x960
[  728.493278][T18345]  ? __pfx_tty_register_device_attr+0x10/0x10
[  728.493325][T18345]  ? tty_port_register_device+0x5b/0x100
[  728.493356][T18345]  rfcomm_dev_ioctl+0x1ad3/0x22f0
[  728.493395][T18345]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  728.493425][T18345]  ? tomoyo_path_number_perm+0x5dd/0x770
[  728.493460][T18345]  ? tomoyo_path_number_perm+0x5dd/0x770
[  728.493497][T18345]  ? __lock_acquire+0x1397/0x2100
[  728.493532][T18345]  ? bt_sock_ioctl+0xe9/0x2c0
[  728.493565][T18345]  sock_do_ioctl+0x158/0x460
[  728.493607][T18345]  ? __pfx_sock_do_ioctl+0x10/0x10
[  728.493660][T18345]  sock_ioctl+0x626/0x8e0
[  728.493692][T18345]  ? __pfx_sock_ioctl+0x10/0x10
[  728.493723][T18345]  ? __fget_files+0x2a/0x410
[  728.493758][T18345]  ? __fget_files+0x2a/0x410
[  728.493795][T18345]  ? __pfx_sock_ioctl+0x10/0x10
[  728.493826][T18345]  __se_sys_ioctl+0xf5/0x170
[  728.493854][T18345]  do_syscall_64+0xf3/0x230
[  728.493886][T18345]  ? clear_bhb_loop+0x35/0x90
[  728.493920][T18345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.493948][T18345] RIP: 0033:0x7f992dd8d169
[  728.493967][T18345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  728.493985][T18345] RSP: 002b:00007f992eb59038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  728.494008][T18345] RAX: ffffffffffffffda RBX: 00007f992dfa5fa0 RCX: 00007f992dd8d169
[  728.494024][T18345] RDX: 0000200000000100 RSI: 00000000400452c8 RDI: 0000000000000004
[  728.494038][T18345] RBP: 00007f992eb59090 R08: 0000000000000000 R09: 0000000000000000
[  728.494051][T18345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  728.494064][T18345] R13: 0000000000000000 R14: 00007f992dfa5fa0 R15: 00007ffe7461ace8
[  728.494097][T18345]  </TASK>
[  729.765144][T18366] netlink: 'syz.1.3003': attribute type 10 has an invalid length.
[  729.830557][T18366] team0: Device ipvlan1 failed to register rx_handler
[  730.355745][T18389] xt_hashlimit: size too large, truncated to 1048576
[  730.412613][T18393] netlink: 'syz.3.3009': attribute type 21 has an invalid length.
[  730.420537][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  730.423000][T18393] netlink: 128 bytes leftover after parsing attributes in process `syz.3.3009'.
[  730.437728][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  730.455157][T18394] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  730.496150][T18398] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3009'.
[  730.534748][T18396] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  730.553652][T18393] netlink: 'syz.3.3009': attribute type 5 has an invalid length.
[  730.601273][T18393] netlink: 'syz.3.3009': attribute type 6 has an invalid length.
[  730.632218][T18393] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3009'.
[  730.688541][T18398] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  730.718436][T18398] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  730.744418][T18398] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  730.762212][T18398] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  730.857653][T18402] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3014'.
[  731.105513][T18410] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3015'.
[  731.810897][T18429] FAULT_INJECTION: forcing a failure.
[  731.810897][T18429] name failslab, interval 1, probability 0, space 0, times 0
[  731.826434][T18429] CPU: 0 UID: 0 PID: 18429 Comm: syz.0.3023 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  731.826465][T18429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  731.826479][T18429] Call Trace:
[  731.826487][T18429]  <TASK>
[  731.826496][T18429]  dump_stack_lvl+0x241/0x360
[  731.826529][T18429]  ? __pfx_dump_stack_lvl+0x10/0x10
[  731.826553][T18429]  ? __pfx__printk+0x10/0x10
[  731.826577][T18429]  ? kmem_cache_alloc_noprof+0x48/0x380
[  731.826610][T18429]  ? __pfx___might_resched+0x10/0x10
[  731.826645][T18429]  should_fail_ex+0x40a/0x550
[  731.826684][T18429]  should_failslab+0xac/0x100
[  731.826714][T18429]  ? __kernfs_new_node+0xd8/0x870
[  731.826743][T18429]  kmem_cache_alloc_noprof+0x70/0x380
[  731.826780][T18429]  __kernfs_new_node+0xd8/0x870
[  731.826812][T18429]  ? up_write+0x1a9/0x590
[  731.826844][T18429]  ? __pfx___kernfs_new_node+0x10/0x10
[  731.826874][T18429]  ? up_write+0x1a9/0x590
[  731.826920][T18429]  kernfs_new_node+0x137/0x240
[  731.826957][T18429]  __kernfs_create_file+0x49/0x2e0
[  731.826984][T18429]  sysfs_add_file_mode_ns+0x24a/0x310
[  731.827017][T18429]  sysfs_merge_group+0x1fd/0x450
[  731.827063][T18429]  ? __pfx_sysfs_merge_group+0x10/0x10
[  731.827091][T18429]  ? device_add_attrs+0x48c/0x600
[  731.827117][T18429]  ? __pfx_device_add_attrs+0x10/0x10
[  731.827139][T18429]  ? bus_add_device+0xde/0x460
[  731.827173][T18429]  dpm_sysfs_add+0xd3/0x280
[  731.827199][T18429]  device_add+0x5bc/0xbf0
[  731.827228][T18429]  tty_register_device_attr+0x437/0x960
[  731.827263][T18429]  ? __pfx_tty_register_device_attr+0x10/0x10
[  731.827305][T18429]  ? tty_port_register_device+0x5b/0x100
[  731.827335][T18429]  rfcomm_dev_ioctl+0x1ad3/0x22f0
[  731.827375][T18429]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  731.827408][T18429]  ? tomoyo_path_number_perm+0x5dd/0x770
[  731.827443][T18429]  ? tomoyo_path_number_perm+0x5dd/0x770
[  731.827481][T18429]  ? __lock_acquire+0x1397/0x2100
[  731.827516][T18429]  ? bt_sock_ioctl+0xe9/0x2c0
[  731.827548][T18429]  sock_do_ioctl+0x158/0x460
[  731.827584][T18429]  ? __pfx_sock_do_ioctl+0x10/0x10
[  731.827636][T18429]  sock_ioctl+0x626/0x8e0
[  731.827667][T18429]  ? __pfx_sock_ioctl+0x10/0x10
[  731.827697][T18429]  ? __fget_files+0x2a/0x410
[  731.827732][T18429]  ? __fget_files+0x2a/0x410
[  731.827768][T18429]  ? __pfx_sock_ioctl+0x10/0x10
[  731.827798][T18429]  __se_sys_ioctl+0xf5/0x170
[  731.827826][T18429]  do_syscall_64+0xf3/0x230
[  731.827856][T18429]  ? clear_bhb_loop+0x35/0x90
[  731.827890][T18429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.827919][T18429] RIP: 0033:0x7fbe6b98d169
[  731.827937][T18429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  731.827956][T18429] RSP: 002b:00007fbe6c771038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  731.827978][T18429] RAX: ffffffffffffffda RBX: 00007fbe6bba6080 RCX: 00007fbe6b98d169
[  731.827993][T18429] RDX: 0000200000000100 RSI: 00000000400452c8 RDI: 0000000000000009
[  731.828007][T18429] RBP: 00007fbe6c771090 R08: 0000000000000000 R09: 0000000000000000
[  731.828027][T18429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  731.828040][T18429] R13: 0000000000000000 R14: 00007fbe6bba6080 R15: 00007ffed114aaa8
[  731.828073][T18429]  </TASK>
[  732.268138][T18439] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  732.282361][T18439] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  732.291476][T18439] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  732.301448][T18439] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  732.839162][T18452] FAULT_INJECTION: forcing a failure.
[  732.839162][T18452] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  732.852874][T18452] CPU: 0 UID: 0 PID: 18452 Comm: syz.1.3030 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  732.852912][T18452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  732.852926][T18452] Call Trace:
[  732.852934][T18452]  <TASK>
[  732.852943][T18452]  dump_stack_lvl+0x241/0x360
[  732.852975][T18452]  ? __pfx_dump_stack_lvl+0x10/0x10
[  732.852999][T18452]  ? __pfx__printk+0x10/0x10
[  732.853022][T18452]  ? __pfx_lock_release+0x10/0x10
[  732.853064][T18452]  should_fail_ex+0x40a/0x550
[  732.853102][T18452]  _copy_from_user+0x2d/0xb0
[  732.853131][T18452]  __sys_bpf+0x1be/0x820
[  732.853164][T18452]  ? __pfx___sys_bpf+0x10/0x10
[  732.853207][T18452]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  732.853242][T18452]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  732.853277][T18452]  ? do_syscall_64+0x100/0x230
[  732.853314][T18452]  __x64_sys_bpf+0x7c/0x90
[  732.853343][T18452]  do_syscall_64+0xf3/0x230
[  732.853374][T18452]  ? clear_bhb_loop+0x35/0x90
[  732.853408][T18452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  732.853436][T18452] RIP: 0033:0x7f992dd8d169
[  732.853455][T18452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  732.853474][T18452] RSP: 002b:00007f992eb59038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  732.853497][T18452] RAX: ffffffffffffffda RBX: 00007f992dfa5fa0 RCX: 00007f992dd8d169
[  732.853512][T18452] RDX: 0000000000000020 RSI: 0000200000000740 RDI: 0000000000000008
[  732.853525][T18452] RBP: 00007f992eb59090 R08: 0000000000000000 R09: 0000000000000000
[  732.853538][T18452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  732.853550][T18452] R13: 0000000000000000 R14: 00007f992dfa5fa0 R15: 00007ffe7461ace8
[  732.853580][T18452]  </TASK>
[  732.864635][T18450] syzkaller1: entered promiscuous mode
[  733.102060][T18450] syzkaller1: entered allmulticast mode
[  733.142891][T18458] 8021q: VLANs not supported on caif0
[  733.373863][T18467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3035'.
[  733.384860][T18467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3035'.
[  733.399174][T18467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3035'.
[  733.410611][T18467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3035'.
[  733.429649][T18467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3035'.
[  733.482985][T18467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3035'.
[  733.531504][T18467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3035'.
[  733.572108][T18467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3035'.
[  733.581052][T18467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3035'.
[  733.649735][T18476] netlink: 'syz.4.3037': attribute type 10 has an invalid length.
[  733.672041][T18467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3035'.
[  734.262605][T18496] netlink: 'syz.1.3046': attribute type 1 has an invalid length.
[  734.285631][T18498] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -107 0
[  734.431346][T18501] batadv_slave_1: entered promiscuous mode
[  734.559921][T18507] ipvlan2: left promiscuous mode
[  734.628514][T18503] ipvlan0: entered promiscuous mode
[  734.635488][T18503] ipvlan0: entered allmulticast mode
[  734.665437][T18503] veth0_vlan: entered allmulticast mode
[  735.129625][T18531] bond23: entered promiscuous mode
[  735.189047][T18531] 8021q: adding VLAN 0 to HW filter on device bond23
[  735.302391][T18534] veth7: entered promiscuous mode
[  735.312993][T18534] bond23: (slave veth7): Enslaving as an active interface with an up link
[  735.455084][T18541] bond27: entered promiscuous mode
[  735.461229][T18541] 8021q: adding VLAN 0 to HW filter on device bond27
[  736.422927][T18585] FAULT_INJECTION: forcing a failure.
[  736.422927][T18585] name failslab, interval 1, probability 0, space 0, times 0
[  736.472471][T18587] vlan2: entered allmulticast mode
[  736.477815][T18587] bond0: entered allmulticast mode
[  736.481175][T18585] CPU: 1 UID: 0 PID: 18585 Comm: syz.2.3077 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  736.481206][T18585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  736.481221][T18585] Call Trace:
[  736.481231][T18585]  <TASK>
[  736.481241][T18585]  dump_stack_lvl+0x241/0x360
[  736.481277][T18585]  ? __pfx_dump_stack_lvl+0x10/0x10
[  736.481304][T18585]  ? __pfx__printk+0x10/0x10
[  736.481330][T18585]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  736.481366][T18585]  ? __pfx___might_resched+0x10/0x10
[  736.481403][T18585]  should_fail_ex+0x40a/0x550
[  736.481445][T18585]  should_failslab+0xac/0x100
[  736.481478][T18585]  kmem_cache_alloc_node_noprof+0x77/0x380
[  736.481511][T18585]  ? __alloc_skb+0x1c3/0x440
[  736.481542][T18585]  __alloc_skb+0x1c3/0x440
[  736.481574][T18585]  ? __pfx___alloc_skb+0x10/0x10
[  736.481616][T18585]  ? netlink_ack_tlv_len+0x6e/0x200
[  736.481655][T18585]  netlink_ack+0x145/0xa60
[  736.481688][T18585]  ? __pfx_lock_acquire+0x10/0x10
[  736.481723][T18585]  ? __pfx_ctrl_getfamily+0x10/0x10
[  736.481752][T18585]  ? __pfx___might_resched+0x10/0x10
[  736.481795][T18585]  netlink_rcv_skb+0x294/0x480
[  736.481831][T18585]  ? __pfx_genl_rcv_msg+0x10/0x10
[  736.481862][T18585]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  736.481935][T18585]  genl_rcv+0x28/0x40
[  736.481961][T18585]  netlink_unicast+0x7f6/0x990
[  736.482003][T18585]  ? __pfx_netlink_unicast+0x10/0x10
[  736.482034][T18585]  ? __virt_addr_valid+0x45f/0x530
[  736.482059][T18585]  ? __phys_addr_symbol+0x2f/0x70
[  736.482081][T18585]  ? __check_object_size+0x47a/0x730
[  736.482119][T18585]  netlink_sendmsg+0x8de/0xcb0
[  736.482156][T18585]  ? __pfx_netlink_sendmsg+0x10/0x10
[  736.482185][T18585]  ? aa_sock_msg_perm+0x91/0x160
[  736.482228][T18585]  ? __pfx_netlink_sendmsg+0x10/0x10
[  736.482249][T18585]  __sock_sendmsg+0x221/0x270
[  736.482287][T18585]  __sys_sendto+0x363/0x4c0
[  736.482319][T18585]  ? __pfx___sys_sendto+0x10/0x10
[  736.482375][T18585]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  736.482413][T18585]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  736.482467][T18585]  __x64_sys_sendto+0xde/0x100
[  736.482495][T18585]  do_syscall_64+0xf3/0x230
[  736.482529][T18585]  ? clear_bhb_loop+0x35/0x90
[  736.482565][T18585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.482595][T18585] RIP: 0033:0x7f7aec18effc
[  736.482622][T18585] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  736.482640][T18585] RSP: 002b:00007f7aecf5ce90 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  736.482665][T18585] RAX: ffffffffffffffda RBX: 00007f7aecf5cfa0 RCX: 00007f7aec18effc
[  736.482682][T18585] RDX: 0000000000000028 RSI: 00007f7aecf5cff0 RDI: 0000000000000004
[  736.482696][T18585] RBP: 0000000000000000 R08: 00007f7aecf5cee4 R09: 000000000000000c
[  736.482711][T18585] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004
[  736.482724][T18585] R13: 00007f7aecf5cf38 R14: 00007f7aecf5cff0 R15: 0000000000000000
[  736.482756][T18585]  </TASK>
[  736.876874][T18591] vlan2: entered allmulticast mode
[  736.888483][T18591] bond0: entered allmulticast mode
[  737.205899][T18607] bond27: left promiscuous mode
[  737.337497][T18614] netem: unknown loss type 13
[  737.356684][T18614] netem: change failed
[  737.463650][T18621] netlink: 'syz.1.3089': attribute type 1 has an invalid length.
[  737.529833][T18624] netlink: 'syz.3.3090': attribute type 10 has an invalid length.
[  737.591815][T18621] bond29: entered promiscuous mode
[  737.597700][T18621] 8021q: adding VLAN 0 to HW filter on device bond29
[  738.383170][T18645] netlink: 'syz.0.3099': attribute type 10 has an invalid length.
[  738.453450][T18645] dummy0: entered allmulticast mode
[  738.477250][T18645] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  738.631651][T18645] __nla_validate_parse: 103 callbacks suppressed
[  738.631673][T18645] netlink: 156 bytes leftover after parsing attributes in process `syz.0.3099'.
[  738.825989][T18663] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3104'.
[  738.852981][T18663] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3104'.
[  738.893961][T18663] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3104'.
[  738.920966][T18663] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3104'.
[  738.958105][T18663] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3104'.
[  739.054519][T18663] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3104'.
[  739.139365][T18663] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3104'.
[  739.208270][T18663] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3104'.
[  739.266980][T18663] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3104'.
[  739.296950][T18695] ==================================================================
[  739.305117][T18695] BUG: KASAN: slab-use-after-free in udp_tunnel_update_gro_lookup+0xfe/0x2c0
[  739.313925][T18695] Write of size 8 at addr ffff888021337b70 by task syz.2.3112/18695
[  739.321923][T18695] 
[  739.324292][T18695] CPU: 1 UID: 0 PID: 18695 Comm: syz.2.3112 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  739.324319][T18695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  739.324334][T18695] Call Trace:
[  739.324343][T18695]  <TASK>
[  739.324352][T18695]  dump_stack_lvl+0x241/0x360
[  739.324382][T18695]  ? __pfx_dump_stack_lvl+0x10/0x10
[  739.324406][T18695]  ? __pfx__printk+0x10/0x10
[  739.324428][T18695]  ? _printk+0xd5/0x120
[  739.324447][T18695]  ? __virt_addr_valid+0x183/0x530
[  739.324469][T18695]  ? __virt_addr_valid+0x183/0x530
[  739.324490][T18695]  print_report+0x16e/0x5b0
[  739.324519][T18695]  ? __virt_addr_valid+0x183/0x530
[  739.324539][T18695]  ? __virt_addr_valid+0x183/0x530
[  739.324559][T18695]  ? __virt_addr_valid+0x45f/0x530
[  739.324578][T18695]  ? __phys_addr+0xba/0x170
[  739.324599][T18695]  ? udp_tunnel_update_gro_lookup+0xfe/0x2c0
[  739.324624][T18695]  kasan_report+0x143/0x180
[  739.324658][T18695]  ? udp_tunnel_update_gro_lookup+0xfe/0x2c0
[  739.324688][T18695]  udp_tunnel_update_gro_lookup+0xfe/0x2c0
[  739.324715][T18695]  rxrpc_lookup_local+0xea5/0x1890
[  739.324749][T18695]  ? __pfx_rxrpc_lookup_local+0x10/0x10
[  739.324775][T18695]  ? __pfx_rxrpc_encap_rcv+0x10/0x10
[  739.324797][T18695]  ? __pfx_rxrpc_encap_err_rcv+0x10/0x10
[  739.324825][T18695]  ? __local_bh_enable_ip+0x168/0x200
[  739.324853][T18695]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  739.324884][T18695]  rxrpc_sendmsg+0x323/0x5f0
[  739.324909][T18695]  ? __pfx_rxrpc_sendmsg+0x10/0x10
[  739.324930][T18695]  __sock_sendmsg+0x221/0x270
[  739.324964][T18695]  ____sys_sendmsg+0x53a/0x860
[  739.324994][T18695]  ? __pfx_____sys_sendmsg+0x10/0x10
[  739.325020][T18695]  ? __fget_files+0x2a/0x410
[  739.325052][T18695]  ? __fget_files+0x2a/0x410
[  739.325108][T18695]  __sys_sendmmsg+0x36a/0x720
[  739.325141][T18695]  ? __pfx___sys_sendmmsg+0x10/0x10
[  739.325184][T18695]  ? futex_hash+0x1e/0x1f0
[  739.325211][T18695]  ? futex_wait+0x285/0x360
[  739.325245][T18695]  ? __pfx_futex_wait+0x10/0x10
[  739.325283][T18695]  ? __local_bh_enable_ip+0x168/0x200
[  739.325309][T18695]  ? rxrpc_connect+0x167/0x1b0
[  739.325329][T18695]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  739.325364][T18695]  ? do_futex+0x33b/0x560
[  739.325397][T18695]  ? __sys_connect+0x119/0x2d0
[  739.325432][T18695]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  739.325468][T18695]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  739.325512][T18695]  ? do_syscall_64+0x100/0x230
[  739.325558][T18695]  __x64_sys_sendmmsg+0xa0/0xb0
[  739.325597][T18695]  do_syscall_64+0xf3/0x230
[  739.325634][T18695]  ? clear_bhb_loop+0x35/0x90
[  739.325679][T18695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.325710][T18695] RIP: 0033:0x7f7aec18d169
[  739.325729][T18695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  739.325748][T18695] RSP: 002b:00007f7aecf5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  739.325771][T18695] RAX: ffffffffffffffda RBX: 00007f7aec3a5fa0 RCX: 00007f7aec18d169
[  739.325787][T18695] RDX: 0000000000000001 RSI: 0000200000000180 RDI: 0000000000000007
[  739.325802][T18695] RBP: 00007f7aec20e2a0 R08: 0000000000000000 R09: 0000000000000000
[  739.325816][T18695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  739.325829][T18695] R13: 0000000000000000 R14: 00007f7aec3a5fa0 R15: 00007ffc0c6b8588
[  739.325853][T18695]  </TASK>
[  739.325862][T18695] 
[  739.657837][T18695] Allocated by task 18361:
[  739.662286][T18695]  kasan_save_track+0x3f/0x80
[  739.666979][T18695]  __kasan_slab_alloc+0x66/0x80
[  739.671834][T18695]  kmem_cache_alloc_noprof+0x1d9/0x380
[  739.677324][T18695]  sk_prot_alloc+0x58/0x210
[  739.681836][T18695]  sk_alloc+0x3e/0x370
[  739.685917][T18695]  inet_create+0x648/0xea0
[  739.690348][T18695]  __sock_create+0x4c0/0xa30
[  739.694953][T18695]  __sys_socket+0x150/0x3c0
[  739.699561][T18695]  __x64_sys_socket+0x7a/0x90
[  739.704248][T18695]  do_syscall_64+0xf3/0x230
[  739.708765][T18695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.714687][T18695] 
[  739.717018][T18695] Freed by task 18360:
[  739.721090][T18695]  kasan_save_track+0x3f/0x80
[  739.725786][T18695]  kasan_save_free_info+0x40/0x50
[  739.730832][T18695]  __kasan_slab_free+0x59/0x70
[  739.735618][T18695]  kmem_cache_free+0x195/0x410
[  739.740401][T18695]  __sk_destruct+0x4fd/0x690
[  739.745002][T18695]  inet_release+0x17d/0x200
[  739.749514][T18695]  sock_close+0xbc/0x240
[  739.753770][T18695]  __fput+0x3e9/0x9f0
[  739.757766][T18695]  task_work_run+0x24f/0x310
[  739.762621][T18695]  syscall_exit_to_user_mode+0x13f/0x340
[  739.768268][T18695]  do_syscall_64+0x100/0x230
[  739.772876][T18695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.778901][T18695] 
[  739.781241][T18695] The buggy address belongs to the object at ffff888021337440
[  739.781241][T18695]  which belongs to the cache UDP of size 1856
[  739.794705][T18695] The buggy address is located 1840 bytes inside of
[  739.794705][T18695]  freed 1856-byte region [ffff888021337440, ffff888021337b80)
[  739.808687][T18695] 
[  739.811014][T18695] The buggy address belongs to the physical page:
[  739.817436][T18695] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888021330000 pfn:0x21330
[  739.827505][T18695] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  739.836007][T18695] memcg:ffff888030282601
[  739.840246][T18695] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  739.848230][T18695] page_type: f5(slab)
[  739.852217][T18695] raw: 00fff00000000040 ffff888140ebeb40 0000000000000000 dead000000000001
[  739.860805][T18695] raw: ffff888021330000 000000008010000f 00000000f5000000 ffff888030282601
[  739.869394][T18695] head: 00fff00000000040 ffff888140ebeb40 0000000000000000 dead000000000001
[  739.878071][T18695] head: ffff888021330000 000000008010000f 00000000f5000000 ffff888030282601
[  739.886835][T18695] head: 00fff00000000003 ffffea000084cc01 ffffffffffffffff 0000000000000000
[  739.895511][T18695] head: ffff888000000008 0000000000000000 00000000ffffffff 0000000000000000
[  739.904284][T18695] page dumped because: kasan: bad access detected
[  739.910732][T18695] page_owner tracks the page as allocated
[  739.916462][T18695] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7316, tgid 7315 (syz.2.298), ts 165685043106, free_ts 165636923043
[  739.937763][T18695]  post_alloc_hook+0x1f4/0x240
[  739.942556][T18695]  get_page_from_freelist+0x365c/0x37a0
[  739.948112][T18695]  __alloc_frozen_pages_noprof+0x292/0x710
[  739.953930][T18695]  alloc_pages_mpol+0x311/0x660
[  739.958804][T18695]  allocate_slab+0x8f/0x3a0
[  739.963315][T18695]  ___slab_alloc+0xc27/0x14a0
[  739.968022][T18695]  __slab_alloc+0x58/0xa0
[  739.972387][T18695]  kmem_cache_alloc_noprof+0x268/0x380
[  739.977873][T18695]  sk_prot_alloc+0x58/0x210
[  739.982395][T18695]  sk_alloc+0x3e/0x370
[  739.986473][T18695]  inet_create+0x648/0xea0
[  739.990900][T18695]  __sock_create+0x4c0/0xa30
[  739.995512][T18695]  inet_ctl_sock_create+0xc2/0x250
[  740.000648][T18695]  igmp_net_init+0xbb/0x150
[  740.005154][T18695]  ops_init+0x349/0x5b0
[  740.009313][T18695]  setup_net+0x287/0x9e0
[  740.013560][T18695] page last free pid 7315 tgid 7315 stack trace:
[  740.019884][T18695]  free_frozen_pages+0xe0d/0x10e0
[  740.024915][T18695]  __put_partials+0x160/0x1c0
[  740.029598][T18695]  put_cpu_partial+0x17c/0x250
[  740.034402][T18695]  __slab_free+0x290/0x380
[  740.038821][T18695]  qlist_free_all+0x9a/0x140
[  740.043414][T18695]  kasan_quarantine_reduce+0x14f/0x170
[  740.048899][T18695]  __kasan_slab_alloc+0x23/0x80
[  740.053757][T18695]  kmem_cache_alloc_noprof+0x1d9/0x380
[  740.059224][T18695]  ptlock_alloc+0x20/0x70
[  740.063563][T18695]  pte_alloc_one+0x73/0x160
[  740.068088][T18695]  __handle_mm_fault+0x2f53/0x6ef0
[  740.073212][T18695]  handle_mm_fault+0x3e5/0x8d0
[  740.077999][T18695]  exc_page_fault+0x459/0x8b0
[  740.082685][T18695]  asm_exc_page_fault+0x26/0x30
[  740.087549][T18695] 
[  740.089872][T18695] Memory state around the buggy address:
[  740.095505][T18695]  ffff888021337a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  740.103571][T18695]  ffff888021337a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  740.111680][T18695] >ffff888021337b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  740.119766][T18695]                                                              ^
[  740.127507][T18695]  ffff888021337b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  740.135587][T18695]  ffff888021337c00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  740.143656][T18695] ==================================================================
[  740.152440][T18695] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  740.159678][T18695] CPU: 1 UID: 0 PID: 18695 Comm: syz.2.3112 Not tainted 6.14.0-rc7-syzkaller-01465-g98b2c048e2e2 #0
[  740.170481][T18695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  740.180569][T18695] Call Trace:
[  740.183872][T18695]  <TASK>
[  740.186831][T18695]  dump_stack_lvl+0x241/0x360
[  740.191542][T18695]  ? __pfx_dump_stack_lvl+0x10/0x10
[  740.196768][T18695]  ? __pfx__printk+0x10/0x10
[  740.201388][T18695]  ? vscnprintf+0x5d/0x90
[  740.205754][T18695]  panic+0x349/0x880
[  740.209674][T18695]  ? check_panic_on_warn+0x21/0xb0
[  740.214822][T18695]  ? __pfx_panic+0x10/0x10
[  740.219282][T18695]  ? mark_lock+0x9a/0x360
[  740.223640][T18695]  ? _raw_spin_unlock_irqrestore+0xd8/0x140
[  740.229554][T18695]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  740.235462][T18695]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  740.241802][T18695]  ? print_report+0x519/0x5b0
[  740.246491][T18695]  check_panic_on_warn+0x86/0xb0
[  740.251449][T18695]  ? udp_tunnel_update_gro_lookup+0xfe/0x2c0
[  740.257445][T18695]  end_report+0x77/0x160
[  740.261697][T18695]  kasan_report+0x154/0x180
[  740.266215][T18695]  ? udp_tunnel_update_gro_lookup+0xfe/0x2c0
[  740.272214][T18695]  udp_tunnel_update_gro_lookup+0xfe/0x2c0
[  740.278037][T18695]  rxrpc_lookup_local+0xea5/0x1890
[  740.283168][T18695]  ? __pfx_rxrpc_lookup_local+0x10/0x10
[  740.288726][T18695]  ? __pfx_rxrpc_encap_rcv+0x10/0x10
[  740.294026][T18695]  ? __pfx_rxrpc_encap_err_rcv+0x10/0x10
[  740.299672][T18695]  ? __local_bh_enable_ip+0x168/0x200
[  740.305143][T18695]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  740.310879][T18695]  rxrpc_sendmsg+0x323/0x5f0
[  740.315483][T18695]  ? __pfx_rxrpc_sendmsg+0x10/0x10
[  740.320602][T18695]  __sock_sendmsg+0x221/0x270
[  740.325303][T18695]  ____sys_sendmsg+0x53a/0x860
[  740.330080][T18695]  ? __pfx_____sys_sendmsg+0x10/0x10
[  740.335394][T18695]  ? __fget_files+0x2a/0x410
[  740.340003][T18695]  ? __fget_files+0x2a/0x410
[  740.344610][T18695]  __sys_sendmmsg+0x36a/0x720
[  740.349305][T18695]  ? __pfx___sys_sendmmsg+0x10/0x10
[  740.354527][T18695]  ? futex_hash+0x1e/0x1f0
[  740.358955][T18695]  ? futex_wait+0x285/0x360
[  740.363481][T18695]  ? __pfx_futex_wait+0x10/0x10
[  740.368352][T18695]  ? __local_bh_enable_ip+0x168/0x200
[  740.373733][T18695]  ? rxrpc_connect+0x167/0x1b0
[  740.378506][T18695]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  740.384238][T18695]  ? do_futex+0x33b/0x560
[  740.388615][T18695]  ? __sys_connect+0x119/0x2d0
[  740.393394][T18695]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  740.399399][T18695]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  740.405741][T18695]  ? do_syscall_64+0x100/0x230
[  740.410521][T18695]  __x64_sys_sendmmsg+0xa0/0xb0
[  740.415389][T18695]  do_syscall_64+0xf3/0x230
[  740.419912][T18695]  ? clear_bhb_loop+0x35/0x90
[  740.424605][T18695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  740.430520][T18695] RIP: 0033:0x7f7aec18d169
[  740.434946][T18695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  740.454562][T18695] RSP: 002b:00007f7aecf5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  740.462990][T18695] RAX: ffffffffffffffda RBX: 00007f7aec3a5fa0 RCX: 00007f7aec18d169
[  740.470971][T18695] RDX: 0000000000000001 RSI: 0000200000000180 RDI: 0000000000000007
[  740.478949][T18695] RBP: 00007f7aec20e2a0 R08: 0000000000000000 R09: 0000000000000000
[  740.486927][T18695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  740.494908][T18695] R13: 0000000000000000 R14: 00007f7aec3a5fa0 R15: 00007ffc0c6b8588
[  740.502894][T18695]  </TASK>
[  740.506274][T18695] Kernel Offset: disabled
[  740.510598][T18695] Rebooting in 86400 seconds..