last executing test programs:

2m3.222332232s ago: executing program 0 (id=2126):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f00000002c0), 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8994, &(0x7f0000000200)={'bond0\x00'})
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, 0x90)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c000000020605000000000000000a000000000005000400000000000900020073797a30000000001400078008001340000000040800124080000000050005000000000005000100060000000d000300686173683a6d6163"], 0x5c}}, 0x0)
ioctl$sock_bt_hci(r2, 0x400448e2, &(0x7f0000000300))

2m1.969004601s ago: executing program 1 (id=2171):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)={0x50, 0xa, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x20, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x4}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_LINENO={0x8}]}, 0x50}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="64020000100001000000000000000000fe00000000000000000000000000aad5a69b8a395a327c865546d40b866e9a00000000000000000000ffffe000000100010000000000000000000000000000b672c7298f44dcc65d21d22390ba8c6f08a8075e7d43b225a2456a8aded5df6d49e977eaf332", @ANYRES32=0x0, @ANYRESHEX=r0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000af00000000000000480002006362632861657329"], 0x264}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth0_to_hsr\x00', <r3=>0x0})
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r2, &(0x7f00000000c0)="3f030e000a0012002c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x74cb0000, &(0x7f0000000540)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)
r4 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}, 0x1, 0x0, 0x0, 0x48000}, 0x44040)
socket$igmp6(0xa, 0x3, 0x2)

1m43.551912504s ago: executing program 0 (id=2126):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f00000002c0), 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8994, &(0x7f0000000200)={'bond0\x00'})
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, 0x90)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c000000020605000000000000000a000000000005000400000000000900020073797a30000000001400078008001340000000040800124080000000050005000000000005000100060000000d000300686173683a6d6163"], 0x5c}}, 0x0)
ioctl$sock_bt_hci(r2, 0x400448e2, &(0x7f0000000300))

1m43.001785531s ago: executing program 1 (id=2171):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)={0x50, 0xa, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x20, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x4}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_LINENO={0x8}]}, 0x50}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="64020000100001000000000000000000fe00000000000000000000000000aad5a69b8a395a327c865546d40b866e9a00000000000000000000ffffe000000100010000000000000000000000000000b672c7298f44dcc65d21d22390ba8c6f08a8075e7d43b225a2456a8aded5df6d49e977eaf332", @ANYRES32=0x0, @ANYRESHEX=r0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000af00000000000000480002006362632861657329"], 0x264}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth0_to_hsr\x00', <r3=>0x0})
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r2, &(0x7f00000000c0)="3f030e000a0012002c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x74cb0000, &(0x7f0000000540)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)
r4 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}, 0x1, 0x0, 0x0, 0x48000}, 0x44040)
socket$igmp6(0xa, 0x3, 0x2)

1m20.738021509s ago: executing program 0 (id=2126):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f00000002c0), 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8994, &(0x7f0000000200)={'bond0\x00'})
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, 0x90)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c000000020605000000000000000a000000000005000400000000000900020073797a30000000001400078008001340000000040800124080000000050005000000000005000100060000000d000300686173683a6d6163"], 0x5c}}, 0x0)
ioctl$sock_bt_hci(r2, 0x400448e2, &(0x7f0000000300))

1m16.777171158s ago: executing program 1 (id=2171):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)={0x50, 0xa, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x20, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x4}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_LINENO={0x8}]}, 0x50}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="64020000100001000000000000000000fe00000000000000000000000000aad5a69b8a395a327c865546d40b866e9a00000000000000000000ffffe000000100010000000000000000000000000000b672c7298f44dcc65d21d22390ba8c6f08a8075e7d43b225a2456a8aded5df6d49e977eaf332", @ANYRES32=0x0, @ANYRESHEX=r0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000af00000000000000480002006362632861657329"], 0x264}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth0_to_hsr\x00', <r3=>0x0})
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r2, &(0x7f00000000c0)="3f030e000a0012002c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x74cb0000, &(0x7f0000000540)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)
r4 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}, 0x1, 0x0, 0x0, 0x48000}, 0x44040)
socket$igmp6(0xa, 0x3, 0x2)

1m0.094894223s ago: executing program 0 (id=2126):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f00000002c0), 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8994, &(0x7f0000000200)={'bond0\x00'})
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, 0x90)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c000000020605000000000000000a000000000005000400000000000900020073797a30000000001400078008001340000000040800124080000000050005000000000005000100060000000d000300686173683a6d6163"], 0x5c}}, 0x0)
ioctl$sock_bt_hci(r2, 0x400448e2, &(0x7f0000000300))

57.987209477s ago: executing program 1 (id=2171):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)={0x50, 0xa, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x20, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x4}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_LINENO={0x8}]}, 0x50}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="64020000100001000000000000000000fe00000000000000000000000000aad5a69b8a395a327c865546d40b866e9a00000000000000000000ffffe000000100010000000000000000000000000000b672c7298f44dcc65d21d22390ba8c6f08a8075e7d43b225a2456a8aded5df6d49e977eaf332", @ANYRES32=0x0, @ANYRESHEX=r0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000af00000000000000480002006362632861657329"], 0x264}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth0_to_hsr\x00', <r3=>0x0})
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r2, &(0x7f00000000c0)="3f030e000a0012002c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x74cb0000, &(0x7f0000000540)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)
r4 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}, 0x1, 0x0, 0x0, 0x48000}, 0x44040)
socket$igmp6(0xa, 0x3, 0x2)

38.906075727s ago: executing program 0 (id=2126):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f00000002c0), 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8994, &(0x7f0000000200)={'bond0\x00'})
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, 0x90)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c000000020605000000000000000a000000000005000400000000000900020073797a30000000001400078008001340000000040800124080000000050005000000000005000100060000000d000300686173683a6d6163"], 0x5c}}, 0x0)
ioctl$sock_bt_hci(r2, 0x400448e2, &(0x7f0000000300))

36.22755452s ago: executing program 1 (id=2171):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)={0x50, 0xa, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x20, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x4}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_LINENO={0x8}]}, 0x50}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="64020000100001000000000000000000fe00000000000000000000000000aad5a69b8a395a327c865546d40b866e9a00000000000000000000ffffe000000100010000000000000000000000000000b672c7298f44dcc65d21d22390ba8c6f08a8075e7d43b225a2456a8aded5df6d49e977eaf332", @ANYRES32=0x0, @ANYRESHEX=r0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000af00000000000000480002006362632861657329"], 0x264}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth0_to_hsr\x00', <r3=>0x0})
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r2, &(0x7f00000000c0)="3f030e000a0012002c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x74cb0000, &(0x7f0000000540)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)
r4 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}, 0x1, 0x0, 0x0, 0x48000}, 0x44040)
socket$igmp6(0xa, 0x3, 0x2)

21.189429271s ago: executing program 0 (id=2126):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f00000002c0), 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8994, &(0x7f0000000200)={'bond0\x00'})
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, 0x90)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c000000020605000000000000000a000000000005000400000000000900020073797a30000000001400078008001340000000040800124080000000050005000000000005000100060000000d000300686173683a6d6163"], 0x5c}}, 0x0)
ioctl$sock_bt_hci(r2, 0x400448e2, &(0x7f0000000300))

17.153310991s ago: executing program 1 (id=2171):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)={0x50, 0xa, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x20, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x4}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_LINENO={0x8}]}, 0x50}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="64020000100001000000000000000000fe00000000000000000000000000aad5a69b8a395a327c865546d40b866e9a00000000000000000000ffffe000000100010000000000000000000000000000b672c7298f44dcc65d21d22390ba8c6f08a8075e7d43b225a2456a8aded5df6d49e977eaf332", @ANYRES32=0x0, @ANYRESHEX=r0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000af00000000000000480002006362632861657329"], 0x264}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth0_to_hsr\x00', <r3=>0x0})
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r2, &(0x7f00000000c0)="3f030e000a0012002c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x74cb0000, &(0x7f0000000540)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)
r4 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}, 0x1, 0x0, 0x0, 0x48000}, 0x44040)
socket$igmp6(0xa, 0x3, 0x2)

4.942432974s ago: executing program 4 (id=2848):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x13, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000061108b00000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000140)={'wpan1\x00', <r3=>0x0})
r4 = socket$xdp(0x2c, 0x3, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14)
sendmsg$xdp(r4, &(0x7f0000000600)={&(0x7f0000000100)={0x2c, 0x1, r5, 0x15}, 0x10, &(0x7f0000000580)=[{&(0x7f00000002c0)="3e453eb0c1da7851cfb3c2da6aeef87aeb61d6d18477c5d81dafb93f7783ce5713541afa3582eb49cbf19dbdd2e616e16641f67701ddfc88a8b9964f3cbf17e6eae3ffea96daf56b5d09576d73a0a7a2eb2d", 0x52}, {&(0x7f0000000340)="78fd16c9a95eca9fd1823ed1e5da511bcf25e915649624692d994542a45c8f390dc48cfb0c626a38639015b273f19b7136b29bcab9197c0af53590f2df37c47713af0bf8b0d6815b317e3168112721debccc95d11e6238b74b35e4bf3537a3980a80041ccb06767467ef163fef82a3332bf4b2a565344f16cddd7abbdb07b3a7cf1fd5b7f07eb1e57c6c5759e0030f07503c949b4645d49db2b79ff14ccb21efd61349e85adec258ee4bb2b081f9393e5113d79ecc7c436266c9916142e73b00f6a1951cee2ef147c384f6dc775d08b20128c9", 0xd3}, {&(0x7f0000000200)="459a584eba64806d1f596393b843006256b17fa18ce98481cb3358e1c64a98ec50f32930579946d23865", 0x2a}, {&(0x7f0000000440)="8f931459f58ae0c982fcfa9afd0118db83964f84a49f7bce14afd3ca5a38ff2b9bf828256e343f5705b66b449710cd7df7ea9d83a107c9fbe5ad1f535c2e6c8f34ab084e10ade036d10a404fe96559156c221121cf7205eba238bc8256b09c920c2d7633eb6208d07e845e3579376d7c69ed51e93851cb16d4bf87c0de725ca2dfc3b1cd1e50460717f46d1bc9b65bfa87f5fff19500b34199641349aeaefe14cfaeec74336c0909e0b0f82462d6d2e6062903043cd1d7caf6591ac28c9406646f9b012b9e739f7e6738171ffcd1f24f778e8e8ffabb51", 0xd7}, {&(0x7f0000000540)="5a4f2dc2a6b9a5268dccc946bb99432c1300a7da05", 0x15}], 0x5}, 0x5)
sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r1, 0x16cb6c0230391cdb, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004040}, 0x20004010)

4.563779334s ago: executing program 4 (id=2851):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
syz_80211_inject_frame(&(0x7f00000000c0), &(0x7f0000000440)=ANY=[@ANYRES16=r1, @ANYRES32, @ANYRES32], 0x36)
syz_emit_ethernet(0x46, &(0x7f0000000ac0)={@broadcast, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, '\x00', 0x10, 0x0, 0x0, @local, @local, {[@dstopts={0x0, 0x1, '\x00', [@ra, @ra]}]}}}}}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000480), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000500)={'wpan0\x00', <r4=>0x0})
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r3, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000040)={'wpan1\x00', <r5=>0x0})
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r7)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x88, r8, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_SHORT_ADDR={0x6}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_PAN_ID={0x6}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}]}, 0x88}, 0x4, 0x700000000000000, 0x0, 0x4000050}, 0x0)
sendmsg$NL802154_CMD_GET_SEC_DEV(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r1, 0x200, 0x70bd2d, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000006}, 0x4010)
sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x38, 0x0, 0x16cb6c0230391cdb, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x1}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x1}, @NL802154_ATTR_LBT_MODE={0x5}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040}, 0x20004010)

4.09373838s ago: executing program 2 (id=2852):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000940)={{0x14}, [@NFT_MSG_NEWCHAIN={0x28, 0x3, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_POLICY={0x8, 0x3}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}]}], {0x14}}, 0x50}}, 0x0)

3.988258761s ago: executing program 2 (id=2853):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan1\x00', <r2=>0x0})
openat$cgroup(0xffffffffffffffff, &(0x7f00000000c0)='syz1\x00', 0x200002, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000002c0), 0x69)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x1c, &(0x7f0000000240)=[@in6={0xa, 0x4e23, 0x4, @mcast2}]}, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r5, &(0x7f0000000980)=@pppol2tpin6={0x18, 0x1, {0x0, r6, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32)
connect$pppl2tp(r4, &(0x7f0000000200)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x1, 0x1, 0x4, 0x0, {0xa, 0x4e23, 0xe24, @loopback, 0xe}}}, 0x32)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000))
r7 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f00000001c0)=0x8)
r9 = socket(0x2, 0x80805, 0x0)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r9, 0x84, 0x11, &(0x7f00000077c0)={r8}, 0x8)
getsockopt$bt_BT_SECURITY(r4, 0x111, 0x5, 0x0, 0x20001f00)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
sendto$inet(r3, 0x0, 0x0, 0x20000800, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x42, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaa8aaaaaaaaaaaaaaaabb0800450200340000000000069078ac1414bbb12f000000004e22c34b2f3bcef4dc5c736597d288ffc9717c6635cbaa60fe9b89659b1da7f08bc919e0fd4a90b7cb02781b5210eae13230ae303fd6b08aed93176d5edcc3d5ff58629cbfabcf0d12", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="8c10000090780000080a00"/20], 0x0)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4c00de0033535843fd459553424faa8450ef79dd90f1d64b6595e1aecf00"/40, @ANYRES16=r1, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r2, @ANYBLOB='0\x000', @ANYRES32=r0, @ANYRESDEC=r1], 0x4c}}, 0x0)
bind$inet(r6, &(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10)

3.911621102s ago: executing program 3 (id=2854):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00'], 0x28}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f00000000c0), r2)
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000140), r2)
sendmsg$NLBL_CIPSOV4_C_LIST(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x1c, r3, 0x1, 0x0, 0x0, {0x5}, [@NLBL_CIPSOV4_A_DOI={0x8}]}, 0x1c}}, 0x0)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00', <r5=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r5}, 0x10)

3.588063678s ago: executing program 3 (id=2855):
pselect6(0x40, &(0x7f00000001c0)={0x0, 0xfffffffffffffffe, 0x6, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, &(0x7f00000010c0)={0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x8000000000000}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x4000172, 0xffffffffffffffff, 0x0)

3.556900993s ago: executing program 4 (id=2856):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000940)={{0x14}, [@NFT_MSG_NEWCHAIN={0x28, 0x3, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_POLICY={0x8, 0x3}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x50}}, 0x0)

3.456290825s ago: executing program 2 (id=2857):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f00000007c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x290, 0x180, 0xffffff80, 0x178, 0x0, 0x178, 0x2a0, 0x230, 0x258, 0x2a0, 0x258, 0x2034, 0x0, {[{{@uncond, 0x1d, 0xa8, 0xf0, 0x12, {0x959f1400}}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@mcast1, 'geneve1\x00'}}}, {{@ipv6={@loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'veth0_to_team\x00', 'hsr0\x00'}, 0x0, 0xa8, 0xd0}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00', 0x2}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2f0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000001, 0x12, r1, 0x0)
bpf$PROG_LOAD(0xa, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1000000}, 0x90)

3.343547372s ago: executing program 3 (id=2858):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001ac0)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x40}]}, 0x3c}}, 0x0) (async)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r2)
sendmsg$IEEE802154_LIST_IFACE(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000003c0)={0x14, r3, 0x703, 0x70bd26}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000400), r2) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x10, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x7964}}, {}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x0, 0xffffffffffffffc0}]}, &(0x7f0000000480)='syzkaller\x00', 0x6, 0x10b, &(0x7f0000000140)=""/267, 0x0, 0x8}, 0x90)

3.341559746s ago: executing program 4 (id=2859):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x2, 0x10, &(0x7f0000000040)=ANY=[], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000900)={0x41, 0x4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000005444317361100c000000000095000000000000007859c0dd4b11ca72157debb88e333ade76e267ddf8e7610606cc13c76b24128bcf9bec9fc4d28145c6ff7a817e740a4b93ccee28c7a65297084a9f5f57bf67439a1b63f54100a3d6ca92688fac630881507c00d4b0c716499eb6488762be56f9"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$sock_int(r4, 0x1, 0x3e, &(0x7f00000000c0)=0x4000007, 0x4)
bind$llc(r4, &(0x7f0000000040), 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
sendmsg$tipc(r5, &(0x7f0000000240)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x0, 0x3}}}, 0x10, 0x0}, 0x0)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_inet_SIOCSIFPFLAGS(r6, 0x8934, &(0x7f0000000380)={'team_slave_0\x00', 0x5})
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_mreq(r7, 0x29, 0x1b, &(0x7f0000000200)={@dev={0xfe, 0x80, '\x00', 0x29}}, 0x14)
r8 = socket(0x10, 0x3, 0x0)
write(r8, &(0x7f00000000c0)="240000001e005f0214fffffffffffff8070000001d00000000000000080009000d000000", 0x24)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r9, 0xf, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

3.191959904s ago: executing program 2 (id=2860):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x5c, r2, 0x101, 0xcac0f00, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_KEYS={0x28, 0x51, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_IDX={0x5}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "0151239c1415140ec9985480f3"}]}]}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x5c}}, 0x0)

2.516091827s ago: executing program 3 (id=2861):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @loopback}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x46, 0x407006}, 0x104)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0x6)

2.504322281s ago: executing program 2 (id=2862):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=ANY=[@ANYRES32=0x0], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000011000100000000000000000007000000", @ANYRES32=r1, @ANYBLOB="000000000000000014001a80100004800c00088008"], 0x34}}, 0x0) (async)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000011000100000000000000000007000000", @ANYRES32=r1, @ANYBLOB="000000000000000014001a80100004800c00088008"], 0x34}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000280)={'syztnl0\x00', &(0x7f0000000140)={'syztnl1\x00', <r3=>0x0, 0x29, 0x5, 0xe, 0x8, 0x8, @private1, @ipv4={'\x00', '\xff\xff', @local}, 0x7800, 0x8000, 0x0, 0x7f}})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'pimreg0\x00', <r4=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'team0\x00', <r5=>0x0})
socket$nl_route(0x10, 0x3, 0x0) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'bridge0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=r8, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800800040000000000080013"], 0x44}}, 0x0) (async)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=r8, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800800040000000000080013"], 0x44}}, 0x0)
r9 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000080)={'xfrm0\x00', <r10=>0x0})
setsockopt$packet_int(r9, 0x107, 0xf, &(0x7f0000000140)=0x3, 0x4) (async)
setsockopt$packet_int(r9, 0x107, 0xf, &(0x7f0000000140)=0x3, 0x4)
sendto$packet(r9, &(0x7f00000000c0)="3f05fe7f7028120006001e0089e9aaa921d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @multicast}, 0x14)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wg2\x00', <r11=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000380)) (async)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'team0\x00', <r12=>0x0})
socket$can_bcm(0x1d, 0x2, 0x2) (async)
r13 = socket$can_bcm(0x1d, 0x2, 0x2)
r14 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r14, 0x8933, &(0x7f0000000600)={'vxcan1\x00'}) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(r14, 0x8933, &(0x7f0000000600)={'vxcan1\x00', <r15=>0x0})
sendmsg$can_bcm(r13, &(0x7f00000005c0)={&(0x7f0000000380)={0x1d, r15}, 0x10, &(0x7f0000000580)={&(0x7f0000000500)=ANY=[@ANYBLOB="01000000100a00"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYBLOB="0000000001000000000000000000000029b1a75f821099416695e75539a63527426803f72bfe9d1840a8cf7f67ee2f1550714845d5a174e753dc80af2adb53b1cf8c619b8569fd295538b5cd54c9a3fc"], 0x80}}, 0x0)
sendmsg$can_bcm(r13, &(0x7f00000004c0)={&(0x7f00000003c0)={0x1d, r15}, 0x10, &(0x7f0000000480)={&(0x7f0000000940)=ANY=[@ANYBLOB="0100"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000001000800000000002ac569ca9220262ea445a6363ea7a0791ed8ed964e7da6077594288bab1b7fa2a55d67eaf6c6f7bebfd709ec918d8a4a7d86da95fae418c8d630baa5450baa4e4023d359f447ea8e66dacbe61d8ac576f079d1c225697c7e449a7fc8b4e49d053292429c774c627583286607eea67c08b9f27d60d7b2571c083bf85f98b37fe0200960e17a75b293b24a1a1d4b9f1de8a5cf1e"], 0x48}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', <r16=>0x0})
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000400)={@empty, @loopback}, &(0x7f0000000440)=0xc) (async)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000400)={@empty, @loopback, <r17=>0x0}, &(0x7f0000000440)=0xc)
sendmsg$TEAM_CMD_PORT_LIST_GET(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc030000", @ANYRES16=0x0, @ANYBLOB="000127bd710042a174a51089f772c1000100", @ANYRES32=0x0, @ANYBLOB="6c01028040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000002000008000600", @ANYRES32=r1, @ANYBLOB="40000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000010000008000600", @ANYRES32=r3, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000500030003000000080004000100000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b000000080004000d000000080007000000000038000100240001006d636173745f72656a6f696e5f636f756e740000000000000000000000000000050003000300000008000400010000003800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=r5, @ANYBLOB="300102803c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=r8, @ANYBLOB="3c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000900000008000600", @ANYRES32=r10, @ANYBLOB="38000100240001006c625f73746174735f726566726573685f696e74657276616c00000000000000050003000300000008000400070000003c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r11, @ANYBLOB="08000100", @ANYRES32=r12, @ANYBLOB="3401028038000100240001006e6f746966795f70656572735f696e74657276616c0000000000000000000000050003000300000008000400040000003c000100240001006c625f74785f6d6574686f64000000000000000000000000000000000000000005000300050000000900040068617368000000003c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r15, @ANYBLOB="40000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r16, @ANYBLOB="080007000000000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r17, @ANYBLOB='\b\x00\a\x00\x00\x00\x00\x00'], 0x3fc}, 0x1, 0x0, 0x0, 0x8000}, 0x40004)
r18 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r18, 0x8915, &(0x7f0000000000)={'wg2\x00', {0x2, 0x0, @broadcast}})
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r7, 0x84, 0x72, &(0x7f0000000900)={0x0, 0xe, 0x20}, 0xc) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r7, 0x84, 0x72, &(0x7f0000000900)={0x0, 0xe, 0x20}, 0xc)
syz_init_net_socket$ax25(0x27, 0x0, 0xc3)

1.544112072s ago: executing program 3 (id=2863):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000940)={{0x14}, [@NFT_MSG_NEWCHAIN={0x28, 0x3, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_POLICY={0x8, 0x3}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}]}], {0x14}}, 0x50}}, 0x0)

216.019672ms ago: executing program 4 (id=2864):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)=[{0x0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vxcan0\x00', <r2=>0x0})
bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r2, 0x1, {}, 0xff}, 0x18)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$can_j1939(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x4}, 0x604000000000000)

201.298145ms ago: executing program 3 (id=2865):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x60, 0x2, 0x6, 0x1, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0xec}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0x80ffffaf}}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x60}}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cgroup.controllers\x00', 0x275a, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001740)='memory.events\x00', 0x275a, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000040)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r7, @ANYBLOB="5100330080000000080211000000080211000000a5fcc8639e9800000000000000000000640000000006020500000000000000060000000000000602000025030000003c0400000000720603030303030300"], 0x70}}, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x208e24b)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000140)={0x40000001})
syz_emit_ethernet(0x46, &(0x7f00000001c0)={@dev, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb653e", 0x10, 0x3a, 0x0, @dev, @mcast2, {[], @ndisc_ra}}}}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r9, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r10, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffffff000}], 0x5, 0x0, 0x0)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r12, &(0x7f0000000240), 0x3af4701e)
sendfile(r11, r3, 0x0, 0x10000a007)
ioctl$BTRFS_IOC_SNAP_CREATE(r2, 0x50009401, &(0x7f0000000340)={{r2}, "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"})
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000000206050000000000000000feff00000014000300686173683a69702c706f72742c6970000900020073797a32000000000500040000000000050005000a000000050001000600000014000780080006400000000008000840"], 0x60}}, 0x0)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
syz_emit_ethernet(0x3e, &(0x7f0000000640)={@local, @broadcast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "1111ce", 0x8, 0x0, 0x0, @local, @private2, {[@srh]}}}}}, 0x0)

142.070661ms ago: executing program 2 (id=2866):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
r3 = socket$igmp6(0xa, 0x3, 0x2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000040)=@ipv6_getaddrlabel={0x30, 0x4a, 0x1, 0x0, 0x0, {0xa, 0x0, 0x80}, [@IFAL_ADDRESS={0x14, 0x1, @mcast1}]}, 0x30}}, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(r3, 0x8982, &(0x7f0000000080)={0x7, 'vlan1\x00', {0x1f}, 0x8e00})
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000000)={0x1, 'vlan1\x00'})
setsockopt$MRT6_FLUSH(r3, 0x29, 0xd4, &(0x7f00000000c0)=0x9, 0x4)
r5 = socket(0x200000100000011, 0x803, 0x0)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r7, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x40}, {0x6}]}, 0x10)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'xfrm0\x00', <r8=>0x0})
sendto$packet(r5, &(0x7f0000000100)="4dcdc7d96a760000000600050000000000060000", 0x34, 0x0, &(0x7f0000000000)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @link_local}, 0x14)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'ipvlan1\x00', <r10=>0x0})
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="6800000010000100"/20, @ANYRES32=r10, @ANYBLOB="0015000000000000480012800e00010069703667726574617000f3ff34001580080001c0", @ANYRES32=r10, @ANYBLOB="14000600fe800000000000000000000000000015140007"], 0x68}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000100)=@newqdisc={0x60, 0x24, 0x400, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x34, 0x2, [@TCA_HHF_HH_FLOWS_LIMIT={0x8, 0x3, 0x980d}, @TCA_HHF_NON_HH_WEIGHT={0x8, 0x7, 0x800}, @TCA_HHF_BACKLOG_LIMIT={0x8, 0x1, 0x3}, @TCA_HHF_NON_HH_WEIGHT={0x8, 0x7, 0xff}, @TCA_HHF_QUANTUM={0x8, 0x2, 0xffffea26}, @TCA_HHF_ADMIT_BYTES={0x8, 0x5, 0x1}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x20048000}, 0x0)

0s ago: executing program 4 (id=2867):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x0, 0x11, r0, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x30000, 0x0, 0x11, r0, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd30", 0x10)
accept4(r2, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x8031, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

 VQ 0x0 after dequeue, screwing up backlog
[  781.344015][T14899] chnl_net:caif_netlink_parms(): no params data found
[  781.487429][T14838] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  781.660832][T14838] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  781.803953][T14838] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  781.944128][T14838] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  782.037141][T14984] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2512'.
[  782.065467][T14980] dvmrp0: entered allmulticast mode
[  782.206982][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  782.256425][T14899] bridge0: port 1(bridge_slave_0) entered blocking state
[  782.263702][T14899] bridge0: port 1(bridge_slave_0) entered disabled state
[  782.276153][T14899] bridge_slave_0: entered allmulticast mode
[  782.299345][T14899] bridge_slave_0: entered promiscuous mode
[  782.372597][T12075] hsr_slave_0: left promiscuous mode
[  782.406498][T12075] hsr_slave_1: left promiscuous mode
[  782.416844][T12075] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  782.431146][T12075] batman_adv: batadv0: Removing interface: batadv_slave_0
[  782.448061][T12075] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  782.460115][T12075] batman_adv: batadv0: Removing interface: batadv_slave_1
[  782.488456][T12075] hsr_slave_0: left promiscuous mode
[  782.509001][T12075] hsr_slave_1: left promiscuous mode
[  782.525454][T12075] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  782.545925][T12075] batman_adv: batadv0: Removing interface: batadv_slave_0
[  782.561368][T12075] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  782.574688][T12075] batman_adv: batadv0: Removing interface: batadv_slave_1
[  782.687444][T12075] veth1_macvtap: left promiscuous mode
[  782.693026][T12075] veth0_macvtap: left promiscuous mode
[  782.701539][T12075] veth1_vlan: left promiscuous mode
[  782.707342][T12075] veth0_vlan: left promiscuous mode
[  782.713987][T12075] veth1_macvtap: left promiscuous mode
[  782.719961][T12075] veth0_macvtap: left promiscuous mode
[  782.730704][T12075] veth1_vlan: left promiscuous mode
[  782.738129][T12075] veth0_vlan: left promiscuous mode
[  783.168171][ T5241] Bluetooth: hci3: command tx timeout
[  783.173627][ T5241] Bluetooth: hci2: command tx timeout
[  783.251284][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  783.458549][T12075] team0 (unregistering): Port device team_slave_1 removed
[  783.509296][T12075] team0 (unregistering): Port device team_slave_0 removed
[  783.972907][ T5274] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  784.246987][T12075] team0 (unregistering): Port device team_slave_1 removed
[  784.287229][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  784.295763][T12075] team0 (unregistering): Port device team_slave_0 removed
[  784.610988][ T5274] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  784.706153][T14899] bridge0: port 2(bridge_slave_1) entered blocking state
[  784.713374][T14899] bridge0: port 2(bridge_slave_1) entered disabled state
[  784.721112][T14899] bridge_slave_1: entered allmulticast mode
[  784.729533][T14899] bridge_slave_1: entered promiscuous mode
[  784.784251][T15002] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2514'.
[  784.960925][T14899] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  785.029339][T14899] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  785.073077][T15017] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2518'.
[  785.173058][T14899] team0: Port device team_slave_0 added
[  785.227358][T14899] team0: Port device team_slave_1 added
[  785.247122][ T5329] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  785.256320][ T5241] Bluetooth: hci3: command tx timeout
[  785.326601][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  785.381539][T15030] FAULT_INJECTION: forcing a failure.
[  785.381539][T15030] name failslab, interval 1, probability 0, space 0, times 0
[  785.411500][T15030] CPU: 1 UID: 0 PID: 15030 Comm: syz.4.2521 Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  785.422317][T15030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  785.432415][T15030] Call Trace:
[  785.435716][T15030]  <TASK>
[  785.438697][T15030]  dump_stack_lvl+0x241/0x360
[  785.443827][T15030]  ? __pfx_dump_stack_lvl+0x10/0x10
[  785.449042][T15030]  ? __pfx__printk+0x10/0x10
[  785.453678][T15030]  should_fail_ex+0x3b0/0x4e0
[  785.458387][T15030]  should_failslab+0xac/0x100
[  785.463102][T15030]  ? sctp_add_bind_addr+0x89/0x3a0
[  785.468236][T15030]  __kmalloc_cache_noprof+0x6c/0x2c0
[  785.473552][T15030]  sctp_add_bind_addr+0x89/0x3a0
[  785.478520][T15030]  sctp_copy_local_addr_list+0x311/0x500
[  785.484175][T15030]  ? sctp_copy_local_addr_list+0xab/0x500
[  785.489916][T15030]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  785.496089][T15030]  ? sctp_v6_is_any+0x60/0x70
[  785.500794][T15030]  sctp_bind_addr_copy+0xad/0x3b0
[  785.505838][T15030]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  785.512186][T15030]  sctp_connect_new_asoc+0x2f3/0x6c0
[  785.517503][T15030]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  785.523334][T15030]  ? sctp_sendmsg+0xbb9/0x3520
[  785.528133][T15030]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  785.533698][T15030]  ? security_sctp_bind_connect+0x90/0xb0
[  785.539440][T15030]  sctp_sendmsg+0x219a/0x3520
[  785.544160][T15030]  ? __pfx_sctp_sendmsg+0x10/0x10
[  785.549212][T15030]  ? __pfx_aa_sk_perm+0x10/0x10
[  785.554097][T15030]  ? inet_sendmsg+0x330/0x390
[  785.558804][T15030]  __sock_sendmsg+0x1a6/0x270
[  785.563543][T15030]  __sys_sendto+0x3a4/0x4f0
[  785.568076][T15030]  ? __pfx___sys_sendto+0x10/0x10
[  785.573136][T15030]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  785.579115][T15030]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  785.585445][T15030]  __x64_sys_sendto+0xde/0x100
[  785.590208][T15030]  do_syscall_64+0xf3/0x230
[  785.594703][T15030]  ? clear_bhb_loop+0x35/0x90
[  785.599382][T15030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  785.605268][T15030] RIP: 0033:0x7f242ad79ef9
[  785.609674][T15030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  785.629281][T15030] RSP: 002b:00007f242bb3d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  785.637690][T15030] RAX: ffffffffffffffda RBX: 00007f242af15f80 RCX: 00007f242ad79ef9
[  785.645651][T15030] RDX: 000000000000fee4 RSI: 0000000020847fff RDI: 0000000000000003
[  785.653618][T15030] RBP: 00007f242bb3d090 R08: 000000002005ffe4 R09: 000000000000001c
[  785.661598][T15030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  785.669572][T15030] R13: 0000000000000000 R14: 00007f242af15f80 R15: 00007ffc425eb6d8
[  785.677568][T15030]  </TASK>
[  785.782981][T14899] batman_adv: batadv0: Adding interface: batadv_slave_0
[  785.808893][T14899] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  785.863765][T14899] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  785.910395][T14899] batman_adv: batadv0: Adding interface: batadv_slave_1
[  785.924967][T14899] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  785.977080][T14899] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  786.360140][T14899] hsr_slave_0: entered promiscuous mode
[  786.367912][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  786.403006][T14899] hsr_slave_1: entered promiscuous mode
[  786.419222][T14899] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  786.426876][T14899] Cannot create hsr debugfs directory
[  786.756149][T15051] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2524'.
[  786.787962][T14838] 8021q: adding VLAN 0 to HW filter on device bond0
[  786.912459][T12075] batadv0: left allmulticast mode
[  786.921128][T12075] batadv0: left promiscuous mode
[  786.943284][T12075] bridge0: port 3(batadv0) entered disabled state
[  786.962995][T12075] bridge_slave_1: left allmulticast mode
[  786.973807][T12075] bridge_slave_1: left promiscuous mode
[  786.985022][T12075] bridge0: port 2(bridge_slave_1) entered disabled state
[  787.016281][T12075] bridge_slave_0: left allmulticast mode
[  787.021957][T12075] bridge_slave_0: left promiscuous mode
[  787.028208][ T5275] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  787.058069][T12075] bridge0: port 1(bridge_slave_0) entered disabled state
[  787.163941][T15066] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  787.179815][T15066] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  787.194322][T15066] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  787.326728][ T5241] Bluetooth: hci3: command tx timeout
[  787.694762][T12075] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  787.713139][T12075] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  787.732928][T12075] bond0 (unregistering): Released all slaves
[  787.745662][T12075] bond1 (unregistering): Released all slaves
[  787.892482][T15071] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2527'.
[  788.070830][T14838] 8021q: adding VLAN 0 to HW filter on device team0
[  788.114708][T12073] bridge0: port 1(bridge_slave_0) entered blocking state
[  788.121911][T12073] bridge0: port 1(bridge_slave_0) entered forwarding state
[  788.373861][T12076] bridge0: port 2(bridge_slave_1) entered blocking state
[  788.381137][T12076] bridge0: port 2(bridge_slave_1) entered forwarding state
[  788.414981][T15090] nbd: nbd0 already in use
[  788.736189][T12075] hsr_slave_0: left promiscuous mode
[  788.773084][T12075] hsr_slave_1: left promiscuous mode
[  788.788350][T12075] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  788.803131][T12075] batman_adv: batadv0: Removing interface: batadv_slave_0
[  788.821368][T12075] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  788.829040][T12075] batman_adv: batadv0: Removing interface: batadv_slave_1
[  788.883883][T12075] veth1_macvtap: left promiscuous mode
[  788.896581][T12075] veth0_macvtap: left promiscuous mode
[  788.907921][T12075] veth1_vlan: left promiscuous mode
[  788.920319][T12075] veth0_vlan: left promiscuous mode
[  789.571596][   T25] net_ratelimit: 7 callbacks suppressed
[  789.571618][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  789.589526][T15123] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  789.726707][T12075] team0 (unregistering): Port device team_slave_1 removed
[  789.768468][T12075] team0 (unregistering): Port device team_slave_0 removed
[  790.050977][ T5329] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  790.187441][T15108] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2535'.
[  790.220696][T15124] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2538'.
[  790.512065][T14899] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  790.570843][T14899] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  790.588728][T15137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  790.608094][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  790.622095][T15137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  790.634281][T15137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  790.645233][T14899] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  790.657218][T15137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  790.676648][T15137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  790.696483][T15137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  790.719178][T14899] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  790.840324][T15143] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2542'.
[  790.913237][T14838] 8021q: adding VLAN 0 to HW filter on device batadv0
[  791.088955][T14838] veth0_vlan: entered promiscuous mode
[  791.127553][T15154] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2545'.
[  791.145679][T14838] veth1_vlan: entered promiscuous mode
[  791.181550][T14899] 8021q: adding VLAN 0 to HW filter on device bond0
[  791.276732][T14838] veth0_macvtap: entered promiscuous mode
[  791.303565][T14899] 8021q: adding VLAN 0 to HW filter on device team0
[  791.336621][T14838] veth1_macvtap: entered promiscuous mode
[  791.361380][T12075] bridge0: port 1(bridge_slave_0) entered blocking state
[  791.368562][T12075] bridge0: port 1(bridge_slave_0) entered forwarding state
[  791.404016][T15163] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2548'.
[  791.420104][T12077] bridge0: port 2(bridge_slave_1) entered blocking state
[  791.427287][T12077] bridge0: port 2(bridge_slave_1) entered forwarding state
[  791.484277][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  791.528221][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  791.552969][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  791.563897][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  791.578960][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  791.588249][T15174] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2551'.
[  791.591838][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  791.621326][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  791.632616][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  791.644189][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  791.668403][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  791.688232][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  791.703728][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  791.722618][T14838] batman_adv: batadv0: Interface activated: batadv_slave_0
[  791.803990][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  791.828135][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  791.846587][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  791.866124][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  791.885505][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  791.905937][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  791.918961][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  791.933161][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  791.944439][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  791.961511][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  791.977276][T14838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  791.989437][T14838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  792.007449][T14838] batman_adv: batadv0: Interface activated: batadv_slave_1
[  792.080938][T15190] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2552'.
[  792.122475][T14838] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  792.132854][T14838] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  792.142539][T14838] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  792.151606][T14838] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  792.423907][T12075] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  792.454087][T12075] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  792.515602][T12071] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  792.544050][T12071] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  792.683957][T14899] 8021q: adding VLAN 0 to HW filter on device batadv0
[  793.001584][T14899] veth0_vlan: entered promiscuous mode
[  793.073236][T14899] veth1_vlan: entered promiscuous mode
[  793.188853][T14899] veth0_macvtap: entered promiscuous mode
[  793.198679][T15234] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2562'.
[  793.220008][T14899] veth1_macvtap: entered promiscuous mode
[  793.308831][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  793.346695][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.376128][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  793.393832][T15241] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2564'.
[  793.416034][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.436022][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  793.456486][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.478132][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  793.509741][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.514701][T15242] netlink: 84 bytes leftover after parsing attributes in process `syz.3.2561'.
[  793.536053][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  793.547679][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.571043][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  793.599396][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.616280][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  793.635457][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.649171][T14899] batman_adv: batadv0: Interface activated: batadv_slave_0
[  793.696377][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  793.720066][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.750078][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  793.768599][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.780143][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  793.791240][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.801648][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  793.813813][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.825282][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  793.841019][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.864666][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  793.887098][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.897408][T14899] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  793.908765][T14899] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  793.921476][T14899] batman_adv: batadv0: Interface activated: batadv_slave_1
[  794.020675][T12072] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  794.099275][T14899] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  794.119976][T14899] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  794.140239][T14899] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  794.176074][T14899] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  794.283323][T12072] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  794.414641][T12072] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  794.487652][T12071] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  794.495515][T12071] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  794.554284][T12072] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  794.595311][T12077] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  794.612789][T12077] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  794.796401][ T5224] net_ratelimit: 13 callbacks suppressed
[  794.796423][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  794.847054][ T5274] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  794.938164][T15285] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  794.946756][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  795.018068][T12072] bridge_slave_1: left allmulticast mode
[  795.044931][T12072] bridge_slave_1: left promiscuous mode
[  795.057935][T12072] bridge0: port 2(bridge_slave_1) entered disabled state
[  795.121184][T12072] bridge_slave_0: left allmulticast mode
[  795.148685][T12072] bridge_slave_0: left promiscuous mode
[  795.183028][T12072] bridge0: port 1(bridge_slave_0) entered disabled state
[  795.297271][T15293] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  795.445749][ T5226] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  795.463757][ T5226] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  795.473134][T15304] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  795.474574][ T5226] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  795.481959][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  795.513763][ T5226] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  795.526192][ T5226] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  795.545685][ T5226] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  795.816497][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  796.134573][   T58] block nbd0: Possible stuck request ffff8880209f0000: control (read@0,4096B). Runtime 480 seconds
[  796.145946][ T5273] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  796.297891][T12072] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  796.318085][T12072] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  796.342631][T12072] bond0 (unregistering): Released all slaves
[  796.760427][T15301] chnl_net:caif_netlink_parms(): no params data found
[  796.852609][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  796.866252][T12072] hsr_slave_0: left promiscuous mode
[  796.872231][T12072] hsr_slave_1: left promiscuous mode
[  796.878885][T12072] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  796.886439][T12072] batman_adv: batadv0: Removing interface: batadv_slave_0
[  796.894044][T12072] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  796.902069][T12072] batman_adv: batadv0: Removing interface: batadv_slave_1
[  796.923179][T12072] veth1_macvtap: left promiscuous mode
[  796.929345][T12072] veth0_macvtap: left promiscuous mode
[  796.936786][T12072] veth1_vlan: left promiscuous mode
[  796.942144][T12072] veth0_vlan: left promiscuous mode
[  797.187995][T15353] FAULT_INJECTION: forcing a failure.
[  797.187995][T15353] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  797.221424][T15353] CPU: 0 UID: 0 PID: 15353 Comm: syz.4.2574 Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  797.232373][T15353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  797.242452][T15353] Call Trace:
[  797.245740][T15353]  <TASK>
[  797.248682][T15353]  dump_stack_lvl+0x241/0x360
[  797.253385][T15353]  ? __pfx_dump_stack_lvl+0x10/0x10
[  797.258601][T15353]  ? __pfx__printk+0x10/0x10
[  797.263221][T15353]  ? __pfx_lock_release+0x10/0x10
[  797.268267][T15353]  should_fail_ex+0x3b0/0x4e0
[  797.272945][T15353]  _copy_to_user+0x2f/0xb0
[  797.277359][T15353]  finalize_log+0xed/0x250
[  797.281772][T15353]  ? __pfx_finalize_log+0x10/0x10
[  797.286875][T15353]  ? btf_check_type_tags+0x6aa/0x6b0
[  797.292162][T15353]  btf_new_fd+0x9cd/0xd30
[  797.296495][T15353]  ? __pfx_btf_new_fd+0x10/0x10
[  797.301342][T15353]  ? bpf_btf_load+0xcf/0x1a0
[  797.305929][T15353]  __sys_bpf+0x6ef/0x810
[  797.310167][T15353]  ? __pfx___sys_bpf+0x10/0x10
[  797.314934][T15353]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  797.320913][T15353]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  797.327238][T15353]  ? do_syscall_64+0x100/0x230
[  797.331995][T15353]  __x64_sys_bpf+0x7c/0x90
[  797.336406][T15353]  do_syscall_64+0xf3/0x230
[  797.340901][T15353]  ? clear_bhb_loop+0x35/0x90
[  797.345575][T15353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  797.351463][T15353] RIP: 0033:0x7f242ad79ef9
[  797.355877][T15353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  797.375481][T15353] RSP: 002b:00007f242bb1c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  797.383889][T15353] RAX: ffffffffffffffda RBX: 00007f242af16058 RCX: 00007f242ad79ef9
[  797.391852][T15353] RDX: 0000000000000020 RSI: 00000000200003c0 RDI: 0000000000000012
[  797.399815][T15353] RBP: 00007f242bb1c090 R08: 0000000000000000 R09: 0000000000000000
[  797.407777][T15353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  797.415738][T15353] R13: 0000000000000000 R14: 00007f242af16058 R15: 00007ffc425eb6d8
[  797.423715][T15353]  </TASK>
[  797.591418][ T5241] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  797.603869][ T5241] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  797.614263][ T5241] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  797.636703][ T5241] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  797.645090][ T5241] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  797.655003][ T5240] Bluetooth: hci2: command tx timeout
[  797.662784][ T5241] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  797.887159][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  798.170013][T12072] team0 (unregistering): Port device team_slave_1 removed
[  798.212009][T12072] team0 (unregistering): Port device team_slave_0 removed
[  798.639383][T15354] __nla_validate_parse: 11 callbacks suppressed
[  798.639402][T15354] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2572'.
[  798.673205][T15301] bridge0: port 1(bridge_slave_0) entered blocking state
[  798.694414][T15301] bridge0: port 1(bridge_slave_0) entered disabled state
[  798.703067][T15301] bridge_slave_0: entered allmulticast mode
[  798.712259][T15301] bridge_slave_0: entered promiscuous mode
[  798.754539][T15301] bridge0: port 2(bridge_slave_1) entered blocking state
[  798.778684][T15301] bridge0: port 2(bridge_slave_1) entered disabled state
[  798.804320][T15301] bridge_slave_1: entered allmulticast mode
[  798.819562][T15301] bridge_slave_1: entered promiscuous mode
[  799.039204][T15301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  799.079528][T15301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  799.225485][T15301] team0: Port device team_slave_0 added
[  799.256734][T15301] team0: Port device team_slave_1 added
[  799.334573][T15301] batman_adv: batadv0: Adding interface: batadv_slave_0
[  799.351716][T15301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  799.380078][T15301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  799.437219][T15301] batman_adv: batadv0: Adding interface: batadv_slave_1
[  799.444207][T15301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  799.510848][T15301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  799.652697][T15398] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2586'.
[  799.680647][T15301] hsr_slave_0: entered promiscuous mode
[  799.695178][T15301] hsr_slave_1: entered promiscuous mode
[  799.726579][ T5226] Bluetooth: hci3: command tx timeout
[  799.735946][ T5226] Bluetooth: hci2: command tx timeout
[  799.783273][T15398] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2586'.
[  799.815923][T15408] net_ratelimit: 4 callbacks suppressed
[  799.815941][T15408] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  799.967984][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  800.078156][T12072] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  800.125643][T15412] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2589'.
[  800.246657][T12072] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  800.387991][T12072] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  800.561236][T12072] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  800.615058][T15359] chnl_net:caif_netlink_parms(): no params data found
[  800.845546][T15433] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  800.879958][T15433] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  801.006769][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  801.423127][T12072] bridge_slave_1: left allmulticast mode
[  801.449469][T12072] bridge_slave_1: left promiscuous mode
[  801.455402][T12072] bridge0: port 2(bridge_slave_1) entered disabled state
[  801.509293][T12072] bridge_slave_0: left allmulticast mode
[  801.521118][T12072] bridge_slave_0: left promiscuous mode
[  801.528498][T12072] bridge0: port 1(bridge_slave_0) entered disabled state
[  801.806610][ T5226] Bluetooth: hci2: command tx timeout
[  801.812074][ T5226] Bluetooth: hci3: command tx timeout
[  801.839994][T15478] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  801.848831][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  802.046298][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  802.206491][ T5274] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  802.447841][T12072] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  802.484815][T12072] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  802.507045][T12072] bond0 (unregistering): Released all slaves
[  802.540174][T15485] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  802.709150][T15359] bridge0: port 1(bridge_slave_0) entered blocking state
[  802.724408][T15359] bridge0: port 1(bridge_slave_0) entered disabled state
[  802.732019][T15359] bridge_slave_0: entered allmulticast mode
[  802.744367][T15359] bridge_slave_0: entered promiscuous mode
[  802.809057][T15359] bridge0: port 2(bridge_slave_1) entered blocking state
[  802.826929][T15359] bridge0: port 2(bridge_slave_1) entered disabled state
[  802.834192][T15359] bridge_slave_1: entered allmulticast mode
[  802.844850][T15359] bridge_slave_1: entered promiscuous mode
[  802.919008][T15489] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2609'.
[  802.928406][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  802.960570][T15359] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  803.014979][T15359] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  803.091387][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  803.114367][T15301] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  803.128863][T15301] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  803.151224][T15359] team0: Port device team_slave_0 added
[  803.209140][T12072] hsr_slave_0: left promiscuous mode
[  803.215343][T12072] hsr_slave_1: left promiscuous mode
[  803.223571][T12072] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  803.232064][T12072] batman_adv: batadv0: Removing interface: batadv_slave_0
[  803.240535][T12072] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  803.248780][T12072] batman_adv: batadv0: Removing interface: batadv_slave_1
[  803.274015][T12072] veth1_macvtap: left promiscuous mode
[  803.279759][T12072] veth0_macvtap: left promiscuous mode
[  803.291765][T12072] veth1_vlan: left promiscuous mode
[  803.297217][T12072] veth0_vlan: left promiscuous mode
[  803.888171][T11727] Bluetooth: hci2: command tx timeout
[  803.893656][ T5238] Bluetooth: hci3: command tx timeout
[  803.933838][T12072] team0 (unregistering): Port device team_slave_1 removed
[  804.019674][T12072] team0 (unregistering): Port device team_slave_0 removed
[  804.405603][T15301] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  804.420446][T15359] team0: Port device team_slave_1 added
[  804.466732][T15511] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2616'.
[  804.476325][T15511] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2616'.
[  804.485428][T15512] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2616'.
[  804.495080][T15512] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2616'.
[  804.542436][T15301] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  804.659798][T15359] batman_adv: batadv0: Adding interface: batadv_slave_0
[  804.684262][T15359] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  804.737980][T15359] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  804.774812][T15359] batman_adv: batadv0: Adding interface: batadv_slave_1
[  804.790297][T15359] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  804.818907][T15359] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  805.073369][T15359] hsr_slave_0: entered promiscuous mode
[  805.101933][T15359] hsr_slave_1: entered promiscuous mode
[  805.126263][T15359] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  805.134202][T15359] Cannot create hsr debugfs directory
[  805.171077][ T5224] net_ratelimit: 2 callbacks suppressed
[  805.171095][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  805.251578][ T5273] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  805.328538][T15541] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2623'.
[  805.625508][T15301] 8021q: adding VLAN 0 to HW filter on device bond0
[  805.801809][T15301] 8021q: adding VLAN 0 to HW filter on device team0
[  805.839953][T15524] dvmrp0: entered allmulticast mode
[  805.884656][T12076] bridge0: port 1(bridge_slave_0) entered blocking state
[  805.891873][T12076] bridge0: port 1(bridge_slave_0) entered forwarding state
[  805.900188][ T5238] Bluetooth: hci4: command 0x0406 tx timeout
[  805.901204][T11727] Bluetooth: hci1: command 0x0406 tx timeout
[  805.906624][ T5238] Bluetooth: hci0: command 0x0406 tx timeout
[  805.934526][T12077] bridge0: port 2(bridge_slave_1) entered blocking state
[  805.941712][T12077] bridge0: port 2(bridge_slave_1) entered forwarding state
[  805.966429][ T5241] Bluetooth: hci3: command tx timeout
[  806.207815][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  806.302306][T15561] FAULT_INJECTION: forcing a failure.
[  806.302306][T15561] name failslab, interval 1, probability 0, space 0, times 0
[  806.315689][T12069] dvmrp0 (unregistering): left allmulticast mode
[  806.316231][T15561] CPU: 0 UID: 0 PID: 15561 Comm: syz.3.2628 Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  806.332826][T15561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  806.342886][T15561] Call Trace:
[  806.346166][T15561]  <TASK>
[  806.349106][T15561]  dump_stack_lvl+0x241/0x360
[  806.353804][T15561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  806.359009][T15561]  ? __pfx__printk+0x10/0x10
[  806.363596][T15561]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  806.369576][T15561]  ? __pfx___might_resched+0x10/0x10
[  806.374875][T15561]  should_fail_ex+0x3b0/0x4e0
[  806.379548][T15561]  should_failslab+0xac/0x100
[  806.384219][T15561]  ? __alloc_skb+0x1c3/0x440
[  806.388811][T15561]  kmem_cache_alloc_node_noprof+0x71/0x320
[  806.394628][T15561]  __alloc_skb+0x1c3/0x440
[  806.399046][T15561]  ? __pfx___alloc_skb+0x10/0x10
[  806.403977][T15561]  ? netlink_autobind+0xd6/0x2f0
[  806.408907][T15561]  ? netlink_autobind+0x2b0/0x2f0
[  806.413929][T15561]  netlink_sendmsg+0x638/0xcb0
[  806.418694][T15561]  ? __pfx_netlink_sendmsg+0x10/0x10
[  806.423971][T15561]  ? __import_iovec+0x536/0x820
[  806.428816][T15561]  ? aa_sock_msg_perm+0x91/0x160
[  806.433747][T15561]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  806.439025][T15561]  ? security_socket_sendmsg+0x87/0xb0
[  806.444480][T15561]  ? __pfx_netlink_sendmsg+0x10/0x10
[  806.449758][T15561]  __sock_sendmsg+0x221/0x270
[  806.454440][T15561]  ____sys_sendmsg+0x525/0x7d0
[  806.459206][T15561]  ? __pfx_____sys_sendmsg+0x10/0x10
[  806.464495][T15561]  __sys_sendmsg+0x2b0/0x3a0
[  806.469084][T15561]  ? __pfx___sys_sendmsg+0x10/0x10
[  806.474187][T15561]  ? vfs_write+0x7c4/0xc90
[  806.478630][T15561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  806.484955][T15561]  ? do_syscall_64+0x100/0x230
[  806.489715][T15561]  ? do_syscall_64+0xb6/0x230
[  806.494471][T15561]  do_syscall_64+0xf3/0x230
[  806.498965][T15561]  ? clear_bhb_loop+0x35/0x90
[  806.503723][T15561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  806.509609][T15561] RIP: 0033:0x7f61b9b79ef9
[  806.514014][T15561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  806.533700][T15561] RSP: 002b:00007f61ba98d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  806.542108][T15561] RAX: ffffffffffffffda RBX: 00007f61b9d15f80 RCX: 00007f61b9b79ef9
[  806.550073][T15561] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000003
[  806.558040][T15561] RBP: 00007f61ba98d090 R08: 0000000000000000 R09: 0000000000000000
[  806.566004][T15561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  806.573973][T15561] R13: 0000000000000000 R14: 00007f61b9d15f80 R15: 00007ffce41baf98
[  806.581951][T15561]  </TASK>
[  806.633922][T15557] pimreg: entered allmulticast mode
[  806.959118][T15574] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2633'.
[  807.081407][T15577] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  807.249335][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  807.508215][T15601] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2637'.
[  807.629361][T15599] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  807.636239][T15359] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  807.681349][T15359] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  807.713068][T15301] 8021q: adding VLAN 0 to HW filter on device batadv0
[  807.746785][T15359] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  807.786834][T15359] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  807.962084][T15301] veth0_vlan: entered promiscuous mode
[  808.033830][T15301] veth1_vlan: entered promiscuous mode
[  808.107097][T15359] 8021q: adding VLAN 0 to HW filter on device bond0
[  808.153723][T15359] 8021q: adding VLAN 0 to HW filter on device team0
[  808.169339][T15301] veth0_macvtap: entered promiscuous mode
[  808.230408][T12073] bridge0: port 1(bridge_slave_0) entered blocking state
[  808.237646][T12073] bridge0: port 1(bridge_slave_0) entered forwarding state
[  808.265051][T12073] bridge0: port 2(bridge_slave_1) entered blocking state
[  808.272276][T12073] bridge0: port 2(bridge_slave_1) entered forwarding state
[  808.286942][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  808.294397][T15301] veth1_macvtap: entered promiscuous mode
[  808.315350][ T5275] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  808.385387][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  808.396358][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  808.407023][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  808.418155][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  808.431183][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  808.466961][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  808.496047][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  808.526322][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  808.546216][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  808.565961][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  808.589013][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  808.630107][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  808.649599][T15301] batman_adv: batadv0: Interface activated: batadv_slave_0
[  808.680371][T15635] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2645'.
[  808.747128][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  808.761019][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  808.786110][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  808.820558][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  808.855999][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  808.887336][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  808.916679][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  808.941935][ T1261] ieee802154 phy0 wpan0: encryption failed: -22
[  808.948441][ T1261] ieee802154 phy1 wpan1: encryption failed: -22
[  808.951829][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  809.015936][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  809.044610][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  809.072128][T15301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  809.090029][T15301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  809.110648][T15301] batman_adv: batadv0: Interface activated: batadv_slave_1
[  809.199119][T15665] netlink: 'syz.3.2651': attribute type 1 has an invalid length.
[  809.244915][T15301] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  809.265409][T15301] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  809.274853][T15301] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  809.284304][T15301] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  809.326271][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  810.376667][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  811.326581][ T5273] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  811.406107][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  812.450685][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  812.503912][T15691] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2655'.
[  812.668213][T12072] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  812.694332][T12072] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  812.823665][T12072] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  812.841023][T12072] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  812.868746][T15705] netlink: 'syz.3.2658': attribute type 3 has an invalid length.
[  812.885537][T15359] 8021q: adding VLAN 0 to HW filter on device batadv0
[  813.091891][T15359] veth0_vlan: entered promiscuous mode
[  813.129788][T15359] veth1_vlan: entered promiscuous mode
[  813.138990][T15719] FAULT_INJECTION: forcing a failure.
[  813.138990][T15719] name failslab, interval 1, probability 0, space 0, times 0
[  813.196665][T15719] CPU: 1 UID: 0 PID: 15719 Comm: syz.3.2661 Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  813.199589][T15359] veth0_macvtap: entered promiscuous mode
[  813.207455][T15719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  813.207469][T15719] Call Trace:
[  813.207478][T15719]  <TASK>
[  813.207488][T15719]  dump_stack_lvl+0x241/0x360
[  813.207516][T15719]  ? __pfx_dump_stack_lvl+0x10/0x10
[  813.239344][T15719]  ? __pfx__printk+0x10/0x10
[  813.239807][T15359] veth1_macvtap: entered promiscuous mode
[  813.243948][T15719]  ? ref_tracker_alloc+0x332/0x490
[  813.254766][T15719]  should_fail_ex+0x3b0/0x4e0
[  813.259467][T15719]  ? skb_clone+0x20c/0x390
[  813.263911][T15719]  should_failslab+0xac/0x100
[  813.268619][T15719]  ? skb_clone+0x20c/0x390
[  813.273053][T15719]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  813.278444][T15719]  skb_clone+0x20c/0x390
[  813.282714][T15719]  __netlink_deliver_tap+0x3cc/0x7c0
[  813.288038][T15719]  ? netlink_deliver_tap+0x2e/0x1b0
[  813.293255][T15719]  netlink_deliver_tap+0x19d/0x1b0
[  813.298389][T15719]  netlink_sendskb+0x68/0x140
[  813.303101][T15719]  netlink_unicast+0x39d/0x990
[  813.307889][T15719]  ? __asan_memcpy+0x40/0x70
[  813.312496][T15719]  ? __pfx_netlink_unicast+0x10/0x10
[  813.317790][T15719]  nfnetlink_rcv+0x26c4/0x2ad0
[  813.322578][T15719]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  813.327726][T15719]  ? netlink_deliver_tap+0x2e/0x1b0
[  813.332915][T15719]  ? skb_clone+0x240/0x390
[  813.337327][T15719]  ? __pfx_lock_release+0x10/0x10
[  813.342359][T15719]  ? netlink_deliver_tap+0x2e/0x1b0
[  813.347549][T15719]  netlink_unicast+0x7f6/0x990
[  813.352317][T15719]  ? __pfx_netlink_unicast+0x10/0x10
[  813.357599][T15719]  ? __virt_addr_valid+0x183/0x530
[  813.362708][T15719]  ? __check_object_size+0x49c/0x900
[  813.367982][T15719]  ? bpf_lsm_netlink_send+0x9/0x10
[  813.373086][T15719]  netlink_sendmsg+0x8e4/0xcb0
[  813.377849][T15719]  ? __pfx_netlink_sendmsg+0x10/0x10
[  813.383127][T15719]  ? __import_iovec+0x536/0x820
[  813.387973][T15719]  ? aa_sock_msg_perm+0x91/0x160
[  813.392903][T15719]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  813.398181][T15719]  ? security_socket_sendmsg+0x87/0xb0
[  813.403637][T15719]  ? __pfx_netlink_sendmsg+0x10/0x10
[  813.408916][T15719]  __sock_sendmsg+0x221/0x270
[  813.414207][T15719]  ____sys_sendmsg+0x525/0x7d0
[  813.418974][T15719]  ? __pfx_____sys_sendmsg+0x10/0x10
[  813.424269][T15719]  __sys_sendmsg+0x2b0/0x3a0
[  813.428859][T15719]  ? __pfx___sys_sendmsg+0x10/0x10
[  813.433963][T15719]  ? vfs_write+0x7c4/0xc90
[  813.438406][T15719]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  813.444728][T15719]  ? do_syscall_64+0x100/0x230
[  813.449488][T15719]  ? do_syscall_64+0xb6/0x230
[  813.454158][T15719]  do_syscall_64+0xf3/0x230
[  813.458655][T15719]  ? clear_bhb_loop+0x35/0x90
[  813.463365][T15719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  813.469249][T15719] RIP: 0033:0x7f61b9b79ef9
[  813.473658][T15719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  813.493255][T15719] RSP: 002b:00007f61ba98d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  813.501662][T15719] RAX: ffffffffffffffda RBX: 00007f61b9d15f80 RCX: 00007f61b9b79ef9
[  813.509625][T15719] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  813.517586][T15719] RBP: 00007f61ba98d090 R08: 0000000000000000 R09: 0000000000000000
[  813.525550][T15719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  813.533516][T15719] R13: 0000000000000000 R14: 00007f61b9d15f80 R15: 00007ffce41baf98
[  813.541490][T15719]  </TASK>
[  813.549303][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  813.571560][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  813.575416][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  813.640126][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  813.663841][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  813.685992][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  813.708807][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  813.728562][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  813.754323][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  813.773619][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  813.793589][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  813.807001][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  813.825939][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  813.855085][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  813.885145][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  813.936263][T15359] batman_adv: batadv0: Interface activated: batadv_slave_0
[  814.127030][ T5274] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  814.214001][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.283680][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.316372][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.346287][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.376222][ T5274] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  814.384584][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.406312][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.442156][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.475900][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.485754][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.544344][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.585977][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.606604][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  814.626115][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.649159][T15359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.670011][T15359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.707540][T15359] batman_adv: batadv0: Interface activated: batadv_slave_1
[  814.803251][T15359] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  814.835903][T15359] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  814.878534][T15359] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  814.911314][T15359] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  815.131247][T12072] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  815.316955][T15747] dvmrp0: entered allmulticast mode
[  815.380589][T12072] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  815.503735][T12072] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  815.584281][T12072] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  815.635442][T12077] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  815.653450][T12077] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  815.663223][ T1852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  815.721665][T12077] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  815.737236][T12077] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  815.898878][T12072] bridge_slave_1: left allmulticast mode
[  815.904573][T12072] bridge_slave_1: left promiscuous mode
[  815.930887][T12072] bridge0: port 2(bridge_slave_1) entered disabled state
[  815.987512][T12072] bridge_slave_0: left allmulticast mode
[  815.993229][T12072] bridge_slave_0: left promiscuous mode
[  816.015527][T12072] bridge0: port 1(bridge_slave_0) entered disabled state
[  816.368134][T15782] FAULT_INJECTION: forcing a failure.
[  816.368134][T15782] name failslab, interval 1, probability 0, space 0, times 0
[  816.410858][T15782] CPU: 0 UID: 0 PID: 15782 Comm: syz.4.2671 Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  816.421671][T15782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  816.431744][T15782] Call Trace:
[  816.435035][T15782]  <TASK>
[  816.437978][T15782]  dump_stack_lvl+0x241/0x360
[  816.442677][T15782]  ? __pfx_dump_stack_lvl+0x10/0x10
[  816.447897][T15782]  ? __pfx__printk+0x10/0x10
[  816.452518][T15782]  ? ref_tracker_alloc+0x332/0x490
[  816.457655][T15782]  should_fail_ex+0x3b0/0x4e0
[  816.462356][T15782]  ? skb_clone+0x20c/0x390
[  816.466798][T15782]  should_failslab+0xac/0x100
[  816.471497][T15782]  ? skb_clone+0x20c/0x390
[  816.475929][T15782]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  816.481760][T15782]  skb_clone+0x20c/0x390
[  816.486026][T15782]  __netlink_deliver_tap+0x3cc/0x7c0
[  816.491337][T15782]  ? netlink_deliver_tap+0x2e/0x1b0
[  816.496552][T15782]  netlink_deliver_tap+0x19d/0x1b0
[  816.501685][T15782]  netlink_unicast+0x7c4/0x990
[  816.506480][T15782]  ? __pfx_netlink_unicast+0x10/0x10
[  816.511785][T15782]  ? __virt_addr_valid+0x183/0x530
[  816.516909][T15782]  ? __check_object_size+0x49c/0x900
[  816.522196][T15782]  ? bpf_lsm_netlink_send+0x9/0x10
[  816.527312][T15782]  netlink_sendmsg+0x8e4/0xcb0
[  816.532081][T15782]  ? __pfx_netlink_sendmsg+0x10/0x10
[  816.537368][T15782]  ? __import_iovec+0x536/0x820
[  816.542216][T15782]  ? aa_sock_msg_perm+0x91/0x160
[  816.547152][T15782]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  816.552442][T15782]  ? security_socket_sendmsg+0x87/0xb0
[  816.557901][T15782]  ? __pfx_netlink_sendmsg+0x10/0x10
[  816.563177][T15782]  __sock_sendmsg+0x221/0x270
[  816.567855][T15782]  ____sys_sendmsg+0x525/0x7d0
[  816.572620][T15782]  ? __pfx_____sys_sendmsg+0x10/0x10
[  816.577915][T15782]  __sys_sendmsg+0x2b0/0x3a0
[  816.582503][T15782]  ? __pfx___sys_sendmsg+0x10/0x10
[  816.587606][T15782]  ? vfs_write+0x7c4/0xc90
[  816.592052][T15782]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  816.598381][T15782]  ? do_syscall_64+0x100/0x230
[  816.603144][T15782]  ? do_syscall_64+0xb6/0x230
[  816.607833][T15782]  do_syscall_64+0xf3/0x230
[  816.612341][T15782]  ? clear_bhb_loop+0x35/0x90
[  816.617021][T15782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  816.622924][T15782] RIP: 0033:0x7f242ad79ef9
[  816.627353][T15782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  816.646955][T15782] RSP: 002b:00007f242bb3d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  816.655364][T15782] RAX: ffffffffffffffda RBX: 00007f242af15f80 RCX: 00007f242ad79ef9
[  816.663328][T15782] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[  816.671290][T15782] RBP: 00007f242bb3d090 R08: 0000000000000000 R09: 0000000000000000
[  816.679256][T15782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  816.687227][T15782] R13: 0000000000000000 R14: 00007f242af15f80 R15: 00007ffc425eb6d8
[  816.695216][T15782]  </TASK>
[  816.705424][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  816.900051][ T5240] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  816.912150][ T5240] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  816.921088][ T5240] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  816.930535][ T5240] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  816.939718][ T5240] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  816.949028][ T5240] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  817.125352][T12072] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  817.138708][T12072] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  817.152311][T12072] bond0 (unregistering): Released all slaves
[  817.195328][T15780] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2668'.
[  817.223224][T15782] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2671'.
[  817.406281][ T5274] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  817.727723][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  818.243670][T12072] hsr_slave_0: left promiscuous mode
[  818.254914][T12072] hsr_slave_1: left promiscuous mode
[  818.267613][T12072] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  818.275046][T12072] batman_adv: batadv0: Removing interface: batadv_slave_0
[  818.346990][T12072] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  818.354448][T12072] batman_adv: batadv0: Removing interface: batadv_slave_1
[  818.425047][T12072] veth1_macvtap: left promiscuous mode
[  818.441802][T12072] veth0_macvtap: left promiscuous mode
[  818.453373][T12072] veth1_vlan: left promiscuous mode
[  818.463409][T12072] veth0_vlan: left promiscuous mode
[  818.767589][ T1852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  819.006248][ T5226] Bluetooth: hci2: command tx timeout
[  819.260516][ T5240] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  819.281895][ T5240] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  819.290776][ T5240] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  819.308572][ T5240] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  819.327762][ T5240] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  819.335716][ T5240] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  819.384354][T12072] team0 (unregistering): Port device team_slave_1 removed
[  819.427505][T12072] team0 (unregistering): Port device team_slave_0 removed
[  819.807795][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  820.061227][T15792] chnl_net:caif_netlink_parms(): no params data found
[  820.446669][ T5273] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  820.590336][T15861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  820.619993][T15792] bridge0: port 1(bridge_slave_0) entered blocking state
[  820.637132][T15792] bridge0: port 1(bridge_slave_0) entered disabled state
[  820.659750][T15792] bridge_slave_0: entered allmulticast mode
[  820.674856][T15792] bridge_slave_0: entered promiscuous mode
[  820.722272][T15862] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2685'.
[  820.766953][T15792] bridge0: port 2(bridge_slave_1) entered blocking state
[  820.774133][T15792] bridge0: port 2(bridge_slave_1) entered disabled state
[  820.787965][T15868] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2686'.
[  820.805503][T15792] bridge_slave_1: entered allmulticast mode
[  820.813494][T15792] bridge_slave_1: entered promiscuous mode
[  820.818260][T15868] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2686'.
[  820.846412][T15868] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2686'.
[  820.858074][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  820.950091][T15792] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  821.043795][T15792] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  821.089733][ T5226] Bluetooth: hci2: command tx timeout
[  821.160871][T15792] team0: Port device team_slave_0 added
[  821.258895][T15792] team0: Port device team_slave_1 added
[  821.370360][T15832] chnl_net:caif_netlink_parms(): no params data found
[  821.406052][ T5226] Bluetooth: hci3: command tx timeout
[  821.501163][T15792] batman_adv: batadv0: Adding interface: batadv_slave_0
[  821.523942][T15792] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  821.528545][T15889] tipc: Can't bind to reserved service type 0
[  821.585923][T15792] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  821.694009][T15890] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  821.756854][T12072] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  821.842898][T15792] batman_adv: batadv0: Adding interface: batadv_slave_1
[  821.860409][T15792] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  821.887972][ T5303] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  821.899419][T15792] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  822.018438][T12072] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  822.163754][T15900] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  822.218749][T12072] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  822.300169][T15792] hsr_slave_0: entered promiscuous mode
[  822.325407][T15792] hsr_slave_1: entered promiscuous mode
[  822.378715][T15903] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2693'.
[  822.439855][T12072] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  822.719611][T15832] bridge0: port 1(bridge_slave_0) entered blocking state
[  822.738522][T15832] bridge0: port 1(bridge_slave_0) entered disabled state
[  822.744061][T15929] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2696'.
[  822.768607][T15832] bridge_slave_0: entered allmulticast mode
[  822.775450][T15832] bridge_slave_0: entered promiscuous mode
[  822.816896][T15832] bridge0: port 2(bridge_slave_1) entered blocking state
[  822.824048][T15832] bridge0: port 2(bridge_slave_1) entered disabled state
[  822.846475][T15832] bridge_slave_1: entered allmulticast mode
[  822.866103][T15832] bridge_slave_1: entered promiscuous mode
[  822.927459][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  822.997652][T15832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  823.072900][T15832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  823.166210][ T5226] Bluetooth: hci2: command tx timeout
[  823.302805][T15832] team0: Port device team_slave_0 added
[  823.318886][T15832] team0: Port device team_slave_1 added
[  823.342440][T12072] bridge_slave_1: left allmulticast mode
[  823.355980][T12072] bridge_slave_1: left promiscuous mode
[  823.381672][T12072] bridge0: port 2(bridge_slave_1) entered disabled state
[  823.414597][T12072] bridge_slave_0: left allmulticast mode
[  823.424663][T12072] bridge_slave_0: left promiscuous mode
[  823.430550][T12072] bridge0: port 1(bridge_slave_0) entered disabled state
[  823.486298][ T5226] Bluetooth: hci3: command tx timeout
[  823.492913][ T5329] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  823.598772][T15960] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2704'.
[  823.663311][ T5329] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  823.905525][T12072] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  823.920252][T12072] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  823.931093][T12072] bond0 (unregistering): Released all slaves
[  823.968669][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  824.118955][T15968] netlink: 816 bytes leftover after parsing attributes in process `syz.2.2706'.
[  824.305994][ T5329] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  824.309253][T15974] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2709'.
[  824.330973][T15832] batman_adv: batadv0: Adding interface: batadv_slave_0
[  824.339588][T15832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  824.381306][T15832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  824.395144][T15832] batman_adv: batadv0: Adding interface: batadv_slave_1
[  824.404031][T15832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  824.435993][T15832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  824.587229][T15981] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2708'.
[  824.741950][T15832] hsr_slave_0: entered promiscuous mode
[  824.755571][T15832] hsr_slave_1: entered promiscuous mode
[  824.764193][T15832] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  824.775173][T15832] Cannot create hsr debugfs directory
[  824.846013][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  824.907397][T12072] hsr_slave_0: left promiscuous mode
[  824.913372][T12072] hsr_slave_1: left promiscuous mode
[  824.920627][T12072] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  824.929635][T12072] batman_adv: batadv0: Removing interface: batadv_slave_0
[  824.938278][T12072] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  824.946163][T12072] batman_adv: batadv0: Removing interface: batadv_slave_1
[  824.971333][T12072] veth1_macvtap: left promiscuous mode
[  824.977309][T12072] veth0_macvtap: left promiscuous mode
[  824.983057][T12072] veth1_vlan: left promiscuous mode
[  824.988880][T12072] veth0_vlan: left promiscuous mode
[  825.246037][ T5226] Bluetooth: hci2: command tx timeout
[  825.587820][ T5226] Bluetooth: hci3: command tx timeout
[  825.802884][T12072] team0 (unregistering): Port device team_slave_1 removed
[  825.869585][T12072] team0 (unregistering): Port device team_slave_0 removed
[  826.049600][ T5224] net_ratelimit: 2 callbacks suppressed
[  826.049616][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  826.217906][   T58] block nbd0: Possible stuck request ffff8880209f0000: control (read@0,4096B). Runtime 510 seconds
[  826.324160][T16003] dvmrp0: left allmulticast mode
[  826.809403][T15792] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  826.857834][T15792] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  827.012682][T15792] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  827.031609][T15792] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  827.089448][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  827.133342][T16021] __nla_validate_parse: 1 callbacks suppressed
[  827.133363][T16021] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2725'.
[  827.134609][T16026] xt_hashlimit: invalid rate
[  827.326956][ T5329] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  827.646773][ T5226] Bluetooth: hci3: command tx timeout
[  827.669116][T15792] 8021q: adding VLAN 0 to HW filter on device bond0
[  827.786920][T16040] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  827.795853][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  827.931744][T15832] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  828.014996][T15792] 8021q: adding VLAN 0 to HW filter on device team0
[  828.035406][T16049] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2731'.
[  828.130848][T16063] FAULT_INJECTION: forcing a failure.
[  828.130848][T16063] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  828.136619][ T5303] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  828.167028][T16063] CPU: 0 UID: 0 PID: 16063 Comm: syz.2.2733 Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  828.177835][T16063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  828.188030][T16063] Call Trace:
[  828.191322][T16063]  <TASK>
[  828.194261][T16063]  dump_stack_lvl+0x241/0x360
[  828.198960][T16063]  ? __pfx_dump_stack_lvl+0x10/0x10
[  828.204187][T16063]  ? __pfx__printk+0x10/0x10
[  828.208810][T16063]  ? __lock_acquire+0x137a/0x2040
[  828.213873][T16063]  should_fail_ex+0x3b0/0x4e0
[  828.218577][T16063]  prepare_alloc_pages+0x1da/0x5d0
[  828.223726][T16063]  __alloc_pages_noprof+0x166/0x6c0
[  828.228953][T16063]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  828.234716][T16063]  alloc_pages_mpol_noprof+0x3e8/0x680
[  828.240213][T16063]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  828.246235][T16063]  vma_alloc_folio_noprof+0x12e/0x230
[  828.251637][T16063]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  828.257569][T16063]  ? do_raw_spin_unlock+0x13c/0x8b0
[  828.262796][T16063]  folio_prealloc+0x31/0x170
[  828.267416][T16063]  do_wp_page+0x11cc/0x52f0
[  828.271979][T16063]  ? __pfx_do_wp_page+0x10/0x10
[  828.276860][T16063]  ? __pfx_lock_acquire+0x10/0x10
[  828.281910][T16063]  ? do_raw_spin_lock+0x14f/0x370
[  828.286963][T16063]  ? __lock_acquire+0x137a/0x2040
[  828.292018][T16063]  handle_pte_fault+0x115a/0x6fc0
[  828.297085][T16063]  ? __pfx_cgroup_rstat_updated+0x10/0x10
[  828.302824][T16063]  ? __pfx_lock_acquire+0x10/0x10
[  828.307868][T16063]  ? __pfx_handle_pte_fault+0x10/0x10
[  828.313255][T16063]  ? do_raw_spin_lock+0x14f/0x370
[  828.318307][T16063]  ? follow_page_pte+0xeb2/0x1ee0
[  828.323350][T16063]  ? follow_page_pte+0xf33/0x1ee0
[  828.328395][T16063]  ? __pfx_lock_release+0x10/0x10
[  828.333436][T16063]  ? do_raw_spin_unlock+0x13c/0x8b0
[  828.338649][T16063]  handle_mm_fault+0x1029/0x1980
[  828.343615][T16063]  ? __pfx_handle_mm_fault+0x10/0x10
[  828.348923][T16063]  ? __pfx_find_vma+0x10/0x10
[  828.353613][T16063]  ? vma_is_secretmem+0xd/0x50
[  828.358376][T16063]  ? check_vma_flags+0x531/0x5a0
[  828.363337][T16063]  __get_user_pages+0x6ec/0x16a0
[  828.368333][T16063]  ? __pfx___get_user_pages+0x10/0x10
[  828.373729][T16063]  __gup_longterm_locked+0xed7/0x17d0
[  828.379118][T16063]  ? sanity_check_pinned_pages+0x12bb/0x13c0
[  828.385132][T16063]  gup_fast_fallback+0x2742/0x2b50
[  828.390267][T16063]  ? __pfx_gup_fast_fallback+0x10/0x10
[  828.395719][T16063]  ? 0xffffffffa0001fcc
[  828.399873][T16063]  ? is_bpf_text_address+0x285/0x2a0
[  828.405172][T16063]  ? unwind_get_return_address+0x91/0xc0
[  828.410797][T16063]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.416865][T16063]  ? arch_stack_walk+0x16d/0x1b0
[  828.421828][T16063]  ? is_valid_gup_args+0x124/0x200
[  828.426966][T16063]  pin_user_pages_fast+0xcc/0x160
[  828.432003][T16063]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  828.437637][T16063]  ? stack_depot_save_flags+0x29/0x830
[  828.443107][T16063]  iov_iter_extract_pages+0x3db/0x720
[  828.448491][T16063]  ? ____sys_recvmsg+0x1db/0x470
[  828.453438][T16063]  extract_iter_to_sg+0x890/0x22b0
[  828.458567][T16063]  ? __pfx_extract_iter_to_sg+0x10/0x10
[  828.464129][T16063]  ? __asan_memset+0x23/0x50
[  828.468723][T16063]  af_alg_get_rsgl+0x41e/0x850
[  828.473510][T16063]  skcipher_recvmsg+0x3f8/0x1230
[  828.478469][T16063]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  828.483844][T16063]  ? aa_sock_msg_perm+0x91/0x160
[  828.488783][T16063]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  828.494082][T16063]  ? security_socket_recvmsg+0x90/0xb0
[  828.499566][T16063]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  828.504955][T16063]  sock_recvmsg+0x22f/0x280
[  828.509489][T16063]  ____sys_recvmsg+0x1db/0x470
[  828.514268][T16063]  ? __pfx_____sys_recvmsg+0x10/0x10
[  828.519586][T16063]  do_recvmmsg+0x474/0xae0
[  828.524014][T16063]  ? __pfx_lock_release+0x10/0x10
[  828.529053][T16063]  ? __pfx_do_recvmmsg+0x10/0x10
[  828.534025][T16063]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  828.539942][T16063]  ? ksys_write+0x23e/0x2c0
[  828.544454][T16063]  ? __pfx_lock_release+0x10/0x10
[  828.549475][T16063]  ? vfs_write+0x7c4/0xc90
[  828.554234][T16063]  ? __mutex_unlock_slowpath+0x21d/0x750
[  828.559886][T16063]  ? __fget_files+0x3f6/0x470
[  828.564586][T16063]  __x64_sys_recvmmsg+0x199/0x250
[  828.569605][T16063]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  828.575143][T16063]  ? do_syscall_64+0x100/0x230
[  828.579908][T16063]  ? do_syscall_64+0xb6/0x230
[  828.584600][T16063]  do_syscall_64+0xf3/0x230
[  828.589116][T16063]  ? clear_bhb_loop+0x35/0x90
[  828.593813][T16063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.599722][T16063] RIP: 0033:0x7f7ea5179ef9
[  828.604150][T16063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  828.623850][T16063] RSP: 002b:00007f7ea4bde038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  828.632258][T16063] RAX: ffffffffffffffda RBX: 00007f7ea5316058 RCX: 00007f7ea5179ef9
[  828.640236][T16063] RDX: 0000000000000001 RSI: 0000000020005d80 RDI: 000000000000000a
[  828.648223][T16063] RBP: 00007f7ea4bde090 R08: 0000000000000000 R09: 0000000000000000
[  828.656208][T16063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  828.664265][T16063] R13: 0000000000000001 R14: 00007f7ea5316058 R15: 00007fff9dc32238
[  828.672324][T16063]  </TASK>
[  828.720394][T15832] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  828.741781][T15832] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  828.771936][T12074] bridge0: port 1(bridge_slave_0) entered blocking state
[  828.779144][T12074] bridge0: port 1(bridge_slave_0) entered forwarding state
[  828.863941][T15832] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  828.929165][T12074] bridge0: port 2(bridge_slave_1) entered blocking state
[  828.936343][T12074] bridge0: port 2(bridge_slave_1) entered forwarding state
[  829.170129][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  829.515434][T15832] 8021q: adding VLAN 0 to HW filter on device bond0
[  829.539609][T16085] bridge0: entered promiscuous mode
[  829.570788][T16096] FAULT_INJECTION: forcing a failure.
[  829.570788][T16096] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  829.589992][T16083] bridge0: left promiscuous mode
[  829.596788][T16083] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  829.618296][T16096] CPU: 1 UID: 0 PID: 16096 Comm: syz.4.2742 Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  829.629094][T16096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  829.641006][T16096] Call Trace:
[  829.644305][T16096]  <TASK>
[  829.647251][T16096]  dump_stack_lvl+0x241/0x360
[  829.651950][T16096]  ? __pfx_dump_stack_lvl+0x10/0x10
[  829.657176][T16096]  ? __pfx__printk+0x10/0x10
[  829.659415][T15792] 8021q: adding VLAN 0 to HW filter on device batadv0
[  829.661773][T16096]  ? __pfx_lock_release+0x10/0x10
[  829.661802][T16096]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  829.679527][T16096]  ? hci_sock_ioctl+0x405/0xa40
[  829.684407][T16096]  should_fail_ex+0x3b0/0x4e0
[  829.689106][T16096]  _copy_from_user+0x2f/0xe0
[  829.693716][T16096]  hci_get_conn_list+0xa9/0x7e0
[  829.698666][T16096]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  829.704407][T16096]  ? hci_sock_ioctl+0x405/0xa40
[  829.709278][T16096]  ? do_raw_spin_unlock+0x13c/0x8b0
[  829.714498][T16096]  ? __pfx_hci_get_conn_list+0x10/0x10
[  829.719985][T16096]  ? hci_sock_ioctl+0x663/0xa40
[  829.724861][T16096]  sock_do_ioctl+0x158/0x460
[  829.729572][T16096]  ? __pfx_sock_do_ioctl+0x10/0x10
[  829.734727][T16096]  sock_ioctl+0x629/0x8e0
[  829.739079][T16096]  ? __pfx_sock_ioctl+0x10/0x10
[  829.743955][T16096]  ? __fget_files+0x29/0x470
[  829.748572][T16096]  ? __fget_files+0x3f6/0x470
[  829.753267][T16096]  ? __fget_files+0x29/0x470
[  829.757882][T16096]  ? bpf_lsm_file_ioctl+0x9/0x10
[  829.760519][T15792] veth0_vlan: entered promiscuous mode
[  829.762831][T16096]  ? security_file_ioctl+0x87/0xb0
[  829.762857][T16096]  ? __pfx_sock_ioctl+0x10/0x10
[  829.762886][T16096]  __se_sys_ioctl+0xfc/0x170
[  829.782853][T16096]  do_syscall_64+0xf3/0x230
[  829.782931][T15792] veth1_vlan: entered promiscuous mode
[  829.787353][T16096]  ? clear_bhb_loop+0x35/0x90
[  829.787381][T16096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  829.787402][T16096] RIP: 0033:0x7f242ad79ef9
[  829.807819][T16096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  829.818073][T15792] veth0_macvtap: entered promiscuous mode
[  829.827424][T16096] RSP: 002b:00007f242bb3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  829.827452][T16096] RAX: ffffffffffffffda RBX: 00007f242af15f80 RCX: 00007f242ad79ef9
[  829.827467][T16096] RDX: 0000000020000000 RSI: 00000000800448d4 RDI: 0000000000000004
[  829.827480][T16096] RBP: 00007f242bb3d090 R08: 0000000000000000 R09: 0000000000000000
[  829.827492][T16096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  829.827505][T16096] R13: 0000000000000000 R14: 00007f242af15f80 R15: 00007ffc425eb6d8
[  829.827534][T16096]  </TASK>
[  829.845228][T15792] veth1_macvtap: entered promiscuous mode
[  829.897595][T15832] 8021q: adding VLAN 0 to HW filter on device team0
[  829.940298][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  829.999565][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.020666][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  830.031808][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.041851][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  830.074006][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.093454][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  830.105344][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.116679][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  830.128690][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.138852][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  830.149713][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.161513][T15792] batman_adv: batadv0: Interface activated: batadv_slave_0
[  830.201877][T12075] bridge0: port 1(bridge_slave_0) entered blocking state
[  830.207359][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  830.209054][T12075] bridge0: port 1(bridge_slave_0) entered forwarding state
[  830.272984][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  830.321051][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.354135][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  830.366485][ T5273] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  830.382837][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.413964][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  830.430334][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.441161][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  830.453054][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.463420][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  830.481983][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.492360][T15792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  830.504423][T15792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.523823][T15792] batman_adv: batadv0: Interface activated: batadv_slave_1
[  830.545694][T15792] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  830.568662][T15792] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  830.622939][T15792] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  830.651015][T15792] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  830.669598][T16125] FAULT_INJECTION: forcing a failure.
[  830.669598][T16125] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  830.687847][T16125] CPU: 0 UID: 0 PID: 16125 Comm: syz.4.2751 Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  830.698644][T16125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  830.708704][T16125] Call Trace:
[  830.712008][T16125]  <TASK>
[  830.714933][T16125]  dump_stack_lvl+0x241/0x360
[  830.719609][T16125]  ? __pfx_dump_stack_lvl+0x10/0x10
[  830.724804][T16125]  ? __pfx__printk+0x10/0x10
[  830.729407][T16125]  ? snprintf+0xda/0x120
[  830.733646][T16125]  should_fail_ex+0x3b0/0x4e0
[  830.738322][T16125]  _copy_to_user+0x2f/0xb0
[  830.742735][T16125]  simple_read_from_buffer+0xca/0x150
[  830.748553][T16125]  proc_fail_nth_read+0x1ec/0x260
[  830.753586][T16125]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  830.759220][T16125]  ? rw_verify_area+0x520/0x6b0
[  830.764157][T16125]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  830.771110][T16125]  vfs_read+0x204/0xbc0
[  830.775277][T16125]  ? __pfx_lock_release+0x10/0x10
[  830.780312][T16125]  ? __pfx_vfs_read+0x10/0x10
[  830.784981][T16125]  ? __fget_files+0x29/0x470
[  830.789567][T16125]  ? __fget_files+0x3f6/0x470
[  830.794252][T16125]  ksys_read+0x1a0/0x2c0
[  830.798495][T16125]  ? __pfx_ksys_read+0x10/0x10
[  830.803249][T16125]  ? do_syscall_64+0x100/0x230
[  830.808006][T16125]  ? do_syscall_64+0xb6/0x230
[  830.812679][T16125]  do_syscall_64+0xf3/0x230
[  830.817175][T16125]  ? clear_bhb_loop+0x35/0x90
[  830.821845][T16125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  830.827740][T16125] RIP: 0033:0x7f242ad7893c
[  830.832146][T16125] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  830.851750][T16125] RSP: 002b:00007f242bb3d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  830.860163][T16125] RAX: ffffffffffffffda RBX: 00007f242af15f80 RCX: 00007f242ad7893c
[  830.868124][T16125] RDX: 000000000000000f RSI: 00007f242bb3d0a0 RDI: 0000000000000005
[  830.876086][T16125] RBP: 00007f242bb3d090 R08: 0000000000000000 R09: 0000000000000000
[  830.884044][T16125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  830.892002][T16125] R13: 0000000000000000 R14: 00007f242af15f80 R15: 00007ffc425eb6d8
[  830.899980][T16125]  </TASK>
[  830.934931][T15832] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  830.945394][T15832] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  830.975646][T12075] bridge0: port 2(bridge_slave_1) entered blocking state
[  830.982893][T12075] bridge0: port 2(bridge_slave_1) entered forwarding state
[  831.258376][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  831.446223][T15832] 8021q: adding VLAN 0 to HW filter on device batadv0
[  831.468617][T12066] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  831.492895][T12066] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  831.638924][T16160] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2758'.
[  831.682212][T12074] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  831.709673][T12074] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  831.822250][T16166] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  831.832100][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  831.877451][T15832] veth0_vlan: entered promiscuous mode
[  831.925753][T15832] veth1_vlan: entered promiscuous mode
[  832.143852][T15832] veth0_macvtap: entered promiscuous mode
[  832.203603][T15832] veth1_macvtap: entered promiscuous mode
[  832.258138][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  832.288752][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  832.294798][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  832.310626][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  832.325986][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  832.355883][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  832.396307][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  832.404818][T16188] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2764'.
[  832.409653][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  832.450087][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  832.472386][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  832.483547][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  832.494573][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  832.506413][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  832.517188][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  832.530685][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  832.551070][T15832] batman_adv: batadv0: Interface activated: batadv_slave_0
[  832.571781][T16188] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2764'.
[  832.592680][T16187] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2765'.
[  832.647008][ T5226] block nbd5: Receive control failed (result -107)
[  832.686332][T16188] nbd5: detected capacity change from 0 to 256
[  832.720720][T12074] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  832.747250][T16200] FAULT_INJECTION: forcing a failure.
[  832.747250][T16200] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  832.781432][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  832.793052][ T7887] block nbd5: Dead connection, failed to find a fallback
[  832.813045][T16200] CPU: 0 UID: 0 PID: 16200 Comm: syz.4.2766 Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  832.823851][T16200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  832.833927][T16200] Call Trace:
[  832.837221][T16200]  <TASK>
[  832.840162][T16200]  dump_stack_lvl+0x241/0x360
[  832.844855][T16200]  ? __pfx_dump_stack_lvl+0x10/0x10
[  832.850066][T16200]  ? __pfx__printk+0x10/0x10
[  832.854663][T16200]  ? __pfx_lock_release+0x10/0x10
[  832.859708][T16200]  should_fail_ex+0x3b0/0x4e0
[  832.864381][T16200]  _copy_to_user+0x2f/0xb0
[  832.868794][T16200]  bpf_verifier_vlog+0x31e/0x860
[  832.873736][T16200]  btf_verifier_log+0x110/0x190
[  832.878583][T16200]  ? btf_parse_hdr+0x63/0x710
[  832.883254][T16200]  ? __pfx_btf_verifier_log+0x10/0x10
[  832.888627][T16200]  btf_parse_hdr+0x4a4/0x710
[  832.893214][T16200]  btf_new_fd+0x391/0xd30
[  832.897545][T16200]  ? __pfx_btf_new_fd+0x10/0x10
[  832.902389][T16200]  ? bpf_btf_load+0xcf/0x1a0
[  832.906975][T16200]  __sys_bpf+0x6ef/0x810
[  832.911211][T16200]  ? __pfx___sys_bpf+0x10/0x10
[  832.915983][T16200]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  832.921969][T16200]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  832.928288][T16200]  ? do_syscall_64+0x100/0x230
[  832.933043][T16200]  __x64_sys_bpf+0x7c/0x90
[  832.937453][T16200]  do_syscall_64+0xf3/0x230
[  832.941964][T16200]  ? clear_bhb_loop+0x35/0x90
[  832.946657][T16200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  832.952559][T16200] RIP: 0033:0x7f242ad79ef9
[  832.956969][T16200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  832.976588][T16200] RSP: 002b:00007f242bb3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  832.985007][T16200] RAX: ffffffffffffffda RBX: 00007f242af15f80 RCX: 00007f242ad79ef9
[  832.992984][T16200] RDX: 0000000000000020 RSI: 00000000200007c0 RDI: 0000000000000012
[  833.001034][T16200] RBP: 00007f242bb3d090 R08: 0000000000000000 R09: 0000000000000000
[  833.008997][T16200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  833.016960][T16200] R13: 0000000000000001 R14: 00007f242af15f80 R15: 00007ffc425eb6d8
[  833.024935][T16200]  </TASK>
[  833.031204][ T7887] block nbd5: shutting down sockets
[  833.043495][ T7887] blk_print_req_error: 27 callbacks suppressed
[  833.043514][ T7887] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  833.058879][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  833.069079][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  833.079652][ T7887] buffer_io_error: 27 callbacks suppressed
[  833.079667][ T7887] Buffer I/O error on dev nbd5, logical block 0, async page read
[  833.094118][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  833.116039][ T7887] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  833.125105][ T7887] Buffer I/O error on dev nbd5, logical block 0, async page read
[  833.132970][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  833.153215][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  833.163998][ T7887] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  833.195853][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  833.206915][ T7887] Buffer I/O error on dev nbd5, logical block 0, async page read
[  833.214888][ T7887] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  833.235665][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  833.256871][ T5275] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  833.278415][ T7887] Buffer I/O error on dev nbd5, logical block 0, async page read
[  833.287692][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  833.298955][ T7887] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  833.308123][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  833.318655][ T7887] Buffer I/O error on dev nbd5, logical block 0, async page read
[  833.327035][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  833.337524][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  833.348403][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  833.358837][ T7887] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  833.368206][T15832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  833.379183][ T7887] Buffer I/O error on dev nbd5, logical block 0, async page read
[  833.388202][ T7887] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  833.397515][T15832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  833.407913][ T5275] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  833.425874][ T7887] Buffer I/O error on dev nbd5, logical block 0, async page read
[  833.435336][T15832] batman_adv: batadv0: Interface activated: batadv_slave_1
[  833.450654][ T7887] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  833.475518][T15832] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  833.493553][ T7887] Buffer I/O error on dev nbd5, logical block 0, async page read
[  833.501846][T15832] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  833.510846][ T7887] ldm_validate_partition_table(): Disk read failed.
[  833.518070][ T7887] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  833.527381][T15832] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  833.536584][T15832] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  833.545731][ T7887] Buffer I/O error on dev nbd5, logical block 0, async page read
[  833.557858][ T7887] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  833.585612][ T7887] Buffer I/O error on dev nbd5, logical block 0, async page read
[  833.610555][T12074] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  833.621402][ T7887] Dev nbd5: unable to read RDB block 0
[  833.628057][ T7887]  nbd5: unable to read partition table
[  833.641183][ T7887] ldm_validate_partition_table(): Disk read failed.
[  833.664577][ T7887] Dev nbd5: unable to read RDB block 0
[  833.726634][ T7887]  nbd5: unable to read partition table
[  833.752754][T12074] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  833.837359][T12075] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  833.845217][T12075] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  833.914007][T12077] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  833.931628][T12077] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  834.128626][T16223] xt_CT: You must specify a L4 protocol and not use inversions on it
[  834.306757][T16231] netlink: 'syz.2.2770': attribute type 3 has an invalid length.
[  834.369552][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  834.530204][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  834.538805][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  834.611029][T12074] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  834.666565][T16242] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2772'.
[  834.842346][ T5240] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  834.859904][ T5240] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  834.870588][ T5240] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  834.889052][ T5240] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  834.898453][ T5240] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  834.907033][ T5240] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  834.994044][T12074] bridge_slave_1: left allmulticast mode
[  835.016791][T12074] bridge_slave_1: left promiscuous mode
[  835.023506][T12074] bridge0: port 2(bridge_slave_1) entered disabled state
[  835.039515][T12074] bridge_slave_0: left allmulticast mode
[  835.050551][T12074] bridge_slave_0: left promiscuous mode
[  835.061386][T12074] bridge0: port 1(bridge_slave_0) entered disabled state
[  835.867230][T12074] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  835.892118][T12074] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  835.913437][T12074] bond0 (unregistering): Released all slaves
[  835.950667][T16264] netlink: 5 bytes leftover after parsing attributes in process `syz.4.2774'.
[  835.968210][T16269] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2775'.
[  836.447180][ T5224] net_ratelimit: 8 callbacks suppressed
[  836.447200][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  836.652804][T16301] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2779'.
[  837.003022][T12074] hsr_slave_0: left promiscuous mode
[  837.008610][ T5240] Bluetooth: hci2: command tx timeout
[  837.026902][T12074] hsr_slave_1: left promiscuous mode
[  837.033673][T12074] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  837.052279][T12074] batman_adv: batadv0: Removing interface: batadv_slave_0
[  837.061029][T12074] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  837.074931][T12074] batman_adv: batadv0: Removing interface: batadv_slave_1
[  837.118892][T12074] veth1_macvtap: left promiscuous mode
[  837.132596][T12074] veth0_macvtap: left promiscuous mode
[  837.140789][T12074] veth1_vlan: left promiscuous mode
[  837.150884][T12074] veth0_vlan: left promiscuous mode
[  837.487125][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  837.571668][ T5273] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  837.635146][T12074] team0 (unregistering): Port device team_slave_1 removed
[  837.674654][T12074] team0 (unregistering): Port device team_slave_0 removed
[  838.342883][ T5226] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  838.363375][ T5226] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  838.377143][ T5226] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  838.386724][ T5226] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  838.395492][ T5226] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  838.403291][ T5226] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  838.517229][T16245] chnl_net:caif_netlink_parms(): no params data found
[  838.528140][ T5224] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  838.559903][T16336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  838.785660][T16348] ieee802154 phy0 wpan0: encryption failed: -22
[  839.086015][ T5226] Bluetooth: hci2: command tx timeout
[  839.102559][T16245] bridge0: port 1(bridge_slave_0) entered blocking state
[  839.116666][T16245] bridge0: port 1(bridge_slave_0) entered disabled state
[  839.124920][T16245] bridge_slave_0: entered allmulticast mode
[  839.131697][T16366] FAULT_INJECTION: forcing a failure.
[  839.131697][T16366] name failslab, interval 1, probability 0, space 0, times 0
[  839.167669][T16245] bridge_slave_0: entered promiscuous mode
[  839.181520][T16366] CPU: 1 UID: 0 PID: 16366 Comm: syz.3.2792 Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  839.192503][T16366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  839.202585][T16366] Call Trace:
[  839.205885][T16366]  <TASK>
[  839.208841][T16366]  dump_stack_lvl+0x241/0x360
[  839.213555][T16366]  ? __pfx_dump_stack_lvl+0x10/0x10
[  839.218786][T16366]  ? __pfx__printk+0x10/0x10
[  839.223420][T16366]  should_fail_ex+0x3b0/0x4e0
[  839.228123][T16366]  should_failslab+0xac/0x100
[  839.232830][T16366]  ? sctp_add_bind_addr+0x89/0x3a0
[  839.237964][T16366]  __kmalloc_cache_noprof+0x6c/0x2c0
[  839.243285][T16366]  sctp_add_bind_addr+0x89/0x3a0
[  839.246384][T16371] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2793'.
[  839.248234][T16366]  sctp_copy_local_addr_list+0x311/0x500
[  839.262743][T16366]  ? sctp_copy_local_addr_list+0xab/0x500
[  839.268495][T16366]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  839.274678][T16366]  ? sctp_v6_is_any+0x60/0x70
[  839.279390][T16366]  sctp_bind_addr_copy+0xad/0x3b0
[  839.284440][T16366]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  839.290790][T16366]  sctp_connect_new_asoc+0x2f3/0x6c0
[  839.296124][T16366]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  839.301954][T16366]  ? sctp_sendmsg+0xbb9/0x3520
[  839.306748][T16366]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  839.312314][T16366]  ? security_sctp_bind_connect+0x90/0xb0
[  839.318059][T16366]  sctp_sendmsg+0x219a/0x3520
[  839.322783][T16366]  ? __pfx_sctp_sendmsg+0x10/0x10
[  839.327835][T16366]  ? __pfx_aa_sk_perm+0x10/0x10
[  839.332891][T16366]  ? inet_sendmsg+0x330/0x390
[  839.337615][T16366]  __sock_sendmsg+0x1a6/0x270
[  839.342322][T16366]  __sys_sendto+0x3a4/0x4f0
[  839.346852][T16366]  ? __pfx___sys_sendto+0x10/0x10
[  839.351922][T16366]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  839.357928][T16366]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  839.364285][T16366]  __x64_sys_sendto+0xde/0x100
[  839.364758][T16245] bridge0: port 2(bridge_slave_1) entered blocking state
[  839.369050][T16366]  do_syscall_64+0xf3/0x230
[  839.369073][T16366]  ? clear_bhb_loop+0x35/0x90
[  839.369100][T16366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  839.376296][T16245] bridge0: port 2(bridge_slave_1) entered disabled state
[  839.380576][T16366] RIP: 0033:0x7f61b9b79ef9
[  839.388271][T16245] bridge_slave_1: entered allmulticast mode
[  839.391099][T16366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  839.399863][T16245] bridge_slave_1: entered promiscuous mode
[  839.402486][T16366] RSP: 002b:00007f61ba98d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  839.442202][T16366] RAX: ffffffffffffffda RBX: 00007f61b9d15f80 RCX: 00007f61b9b79ef9
[  839.450168][T16366] RDX: 000000000000fee4 RSI: 0000000020847fff RDI: 0000000000000003
[  839.458133][T16366] RBP: 00007f61ba98d090 R08: 000000002005ffe4 R09: 000000000000001c
[  839.466181][T16366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  839.474144][T16366] R13: 0000000000000000 R14: 00007f61b9d15f80 R15: 00007ffce41baf98
[  839.482126][T16366]  </TASK>
[  839.566751][ T1852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  839.614252][T16245] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  839.646641][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  839.713490][T16245] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  839.952902][T16245] team0: Port device team_slave_0 added
[  840.008053][T16245] team0: Port device team_slave_1 added
[  840.167480][T16245] batman_adv: batadv0: Adding interface: batadv_slave_0
[  840.181171][T16245] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  840.219441][T16245] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  840.253647][T16337] chnl_net:caif_netlink_parms(): no params data found
[  840.375372][T12075] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  840.381869][T16411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  840.395215][T16411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  840.415654][T16411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  840.433929][T16245] batman_adv: batadv0: Adding interface: batadv_slave_1
[  840.442149][T16245] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  840.469048][T16245] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  840.488186][ T5226] Bluetooth: hci3: command tx timeout
[  840.587322][T12075] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  840.871569][T16245] hsr_slave_0: entered promiscuous mode
[  840.897589][T16245] hsr_slave_1: entered promiscuous mode
[  840.970891][T12075] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.102103][T12075] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.170448][ T5226] Bluetooth: hci2: command tx timeout
[  841.319253][T16337] bridge0: port 1(bridge_slave_0) entered blocking state
[  841.333575][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[  841.351278][T16337] bridge_slave_0: entered allmulticast mode
[  841.362691][T16337] bridge_slave_0: entered promiscuous mode
[  841.430934][T16437] netlink: 'syz.4.2804': attribute type 1 has an invalid length.
[  841.456410][T16337] bridge0: port 2(bridge_slave_1) entered blocking state
[  841.459703][T16437] netlink: 240 bytes leftover after parsing attributes in process `syz.4.2804'.
[  841.463630][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[  841.511584][T16337] bridge_slave_1: entered allmulticast mode
[  841.537472][T16337] bridge_slave_1: entered promiscuous mode
[  841.629924][T16337] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  841.649814][ T7118] net_ratelimit: 87 callbacks suppressed
[  841.649833][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  841.703102][T16337] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  841.800365][T16444] x_tables: duplicate underflow at hook 1
[  841.833858][T16337] team0: Port device team_slave_0 added
[  841.945621][T16337] team0: Port device team_slave_1 added
[  842.108357][T16337] batman_adv: batadv0: Adding interface: batadv_slave_0
[  842.115343][T16337] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  842.146988][T16337] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  842.241511][T16337] batman_adv: batadv0: Adding interface: batadv_slave_1
[  842.254352][T16337] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  842.316321][T16337] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  842.336962][T12075] bridge_slave_1: left allmulticast mode
[  842.353957][T12075] bridge_slave_1: left promiscuous mode
[  842.375073][T12075] bridge0: port 2(bridge_slave_1) entered disabled state
[  842.494614][T12075] bridge_slave_0: left allmulticast mode
[  842.515970][T12075] bridge_slave_0: left promiscuous mode
[  842.523731][T12075] bridge0: port 1(bridge_slave_0) entered disabled state
[  842.533041][ T5226] Bluetooth: hci3: command tx timeout
[  842.687210][ T5303] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  843.179555][T12075] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  843.205297][T12075] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  843.220429][T12075] bond0 (unregistering): Released all slaves
[  843.246372][ T5226] Bluetooth: hci2: command tx timeout
[  843.331466][T16480] netlink: 13 bytes leftover after parsing attributes in process `syz.4.2815'.
[  843.593722][T16337] hsr_slave_0: entered promiscuous mode
[  843.617267][T16337] hsr_slave_1: entered promiscuous mode
[  843.631839][T16337] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  843.652897][T16337] Cannot create hsr debugfs directory
[  843.677537][ T5329] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  843.727078][ T5303] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  844.128661][ T5329] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  844.475240][T12075] hsr_slave_0: left promiscuous mode
[  844.537255][T12075] hsr_slave_1: left promiscuous mode
[  844.566412][T12075] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  844.573898][T12075] batman_adv: batadv0: Removing interface: batadv_slave_0
[  844.606635][ T5226] Bluetooth: hci3: command tx timeout
[  844.613147][T12075] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  844.645371][T12075] batman_adv: batadv0: Removing interface: batadv_slave_1
[  844.720600][T12075] veth1_macvtap: left promiscuous mode
[  844.726756][T12075] veth0_macvtap: left promiscuous mode
[  844.732531][T12075] veth1_vlan: left promiscuous mode
[  844.738099][T12075] veth0_vlan: left promiscuous mode
[  844.771480][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  845.513895][T12075] team0 (unregistering): Port device team_slave_1 removed
[  845.556525][T12075] team0 (unregistering): Port device team_slave_0 removed
[  845.566001][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  845.806577][ T7118] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  845.995593][T16515] netlink: 'syz.4.2822': attribute type 1 has an invalid length.
[  846.003919][T16515] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  846.011187][T16515] IPv6: NLM_F_CREATE should be set when creating new route
[  846.018460][T16515] IPv6: NLM_F_CREATE should be set when creating new route
[  846.152365][T16524] netlink: 'syz.4.2823': attribute type 5 has an invalid length.
[  846.170431][T16524] netlink: 'syz.4.2823': attribute type 11 has an invalid length.
[  846.324564][T16529] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2826'.
[  846.568143][T16245] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  846.587081][T16541] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.607337][T16245] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  846.614263][T16541] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.675936][    C0] net_ratelimit: 6 callbacks suppressed
[  846.675958][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.690811][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.700671][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.709425][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.717730][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.726055][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.734200][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.742347][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.750480][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.758670][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.777056][ T5226] Bluetooth: hci3: command tx timeout
[  846.783568][T16545] netlink: 'syz.3.2830': attribute type 1 has an invalid length.
[  846.807460][T16245] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  846.849681][T16245] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  846.975214][T16555] netlink: 3084 bytes leftover after parsing attributes in process `syz.2.2834'.
[  846.985736][T16555] netlink: 'syz.2.2834': attribute type 1 has an invalid length.
[  846.994203][T16555] netlink: 193500 bytes leftover after parsing attributes in process `syz.2.2834'.
[  847.212672][T16245] 8021q: adding VLAN 0 to HW filter on device bond0
[  847.311910][T16567] pimreg: entered allmulticast mode
[  847.370603][T16245] 8021q: adding VLAN 0 to HW filter on device team0
[  847.464428][T16562] sit0: entered promiscuous mode
[  847.507346][T16562] netlink: 'syz.3.2835': attribute type 1 has an invalid length.
[  847.554808][T16562] netlink: 1 bytes leftover after parsing attributes in process `syz.3.2835'.
[  847.613939][T16337] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  847.670841][T12077] bridge0: port 1(bridge_slave_0) entered blocking state
[  847.678071][T12077] bridge0: port 1(bridge_slave_0) entered forwarding state
[  847.730578][T16337] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  847.760666][T16337] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  847.812863][T12077] bridge0: port 2(bridge_slave_1) entered blocking state
[  847.820071][T12077] bridge0: port 2(bridge_slave_1) entered forwarding state
[  847.846877][T16337] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  847.897261][T16587] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2839'.
[  848.115401][T16337] 8021q: adding VLAN 0 to HW filter on device bond0
[  848.197013][T16337] 8021q: adding VLAN 0 to HW filter on device team0
[  848.250026][T12077] bridge0: port 1(bridge_slave_0) entered blocking state
[  848.257262][T12077] bridge0: port 1(bridge_slave_0) entered forwarding state
[  848.316675][T12074] bridge0: port 2(bridge_slave_1) entered blocking state
[  848.323831][T12074] bridge0: port 2(bridge_slave_1) entered forwarding state
[  848.393465][T16602] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2843'.
[  848.603531][T16245] 8021q: adding VLAN 0 to HW filter on device batadv0
[  848.797397][T16245] veth0_vlan: entered promiscuous mode
[  848.889202][T16245] veth1_vlan: entered promiscuous mode
[  849.015079][T16245] veth0_macvtap: entered promiscuous mode
[  849.067915][T16245] veth1_macvtap: entered promiscuous mode
[  849.102207][T16637] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2849'.
[  849.128424][T16638] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2850'.
[  849.150545][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  849.172382][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.206978][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  849.232620][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.252032][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  849.263270][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.280477][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  849.291853][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.296107][T16643] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  849.304464][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  849.323642][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.336892][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  849.351916][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.366724][T16245] batman_adv: batadv0: Interface activated: batadv_slave_0
[  849.420180][T16337] 8021q: adding VLAN 0 to HW filter on device batadv0
[  849.434070][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  849.463322][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.485258][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  849.509019][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.520802][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  849.531732][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.542414][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  849.553188][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.565534][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  849.580297][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.590823][T16245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  849.601645][T16245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  849.615139][T16245] batman_adv: batadv0: Interface activated: batadv_slave_1
[  849.663234][T16245] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  849.692288][T16245] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  849.711589][T16245] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  849.731704][T16245] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  850.064302][T12071] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  850.076176][T16337] veth0_vlan: entered promiscuous mode
[  850.093746][T12071] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  850.188470][T12066] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  850.195607][T16337] veth1_vlan: entered promiscuous mode
[  850.208298][T12066] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  850.347922][T16337] veth0_macvtap: entered promiscuous mode
[  850.377932][T16337] veth1_macvtap: entered promiscuous mode
[  850.461311][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  850.496909][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  850.521937][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  850.540696][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  850.551048][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  850.574067][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  850.586566][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  850.605519][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  850.616215][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  850.632441][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  850.645689][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  850.658045][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  850.672495][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  850.685422][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  850.709393][T16337] batman_adv: batadv0: Interface activated: batadv_slave_0
[  850.840578][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  850.863003][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  850.882442][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  850.908173][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  850.924826][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  850.954225][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  850.964746][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  850.985400][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  850.995583][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  851.017219][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  851.027859][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  851.038768][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  851.056002][T16337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  851.086628][T16337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  851.114323][T16337] batman_adv: batadv0: Interface activated: batadv_slave_1
[  851.134669][T16337] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  851.144221][T16337] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  851.162773][T16337] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  851.183419][T16337] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  851.695991][    C0] net_ratelimit: 60 callbacks suppressed
[  851.696013][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  851.711043][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  851.719980][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  851.728371][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  851.736688][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  851.745008][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  851.753500][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  851.761930][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  851.770420][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  851.778802][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  853.726644][   T30] INFO: task udevd:7730 blocked for more than 143 seconds.
[  853.740031][   T30]       Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  853.781566][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  853.802867][   T30] task:udevd           state:D stack:20400 pid:7730  tgid:7730  ppid:4678   flags:0x00004006
[  853.821897][   T30] Call Trace:
[  853.825381][   T30]  <TASK>
[  853.832630][   T30]  __schedule+0x1800/0x4a60
[  853.843447][   T30]  ? __pfx___schedule+0x10/0x10
[  853.852275][   T30]  ? __pfx_lock_release+0x10/0x10
[  853.860201][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  853.873730][   T30]  ? schedule+0x90/0x320
[  853.881338][   T30]  schedule+0x14b/0x320
[  853.895069][   T30]  io_schedule+0x8d/0x110
[  853.904229][   T30]  folio_wait_bit_common+0x882/0x12b0
[  853.915571][   T30]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  853.925046][   T30]  ? __pfx_wake_page_function+0x10/0x10
[  853.940093][   T30]  ? __filemap_get_folio+0x769/0xc10
[  853.945516][   T30]  do_read_cache_folio+0xb9/0x820
[  853.956049][   T30]  ? __pfx_blkdev_read_folio+0x10/0x10
[  853.961687][   T30]  read_part_sector+0xb3/0x330
[  853.972587][   T30]  adfspart_check_POWERTEC+0xc8/0x8f0
[  853.983746][   T30]  ? __pfx_adfspart_check_ICS+0x10/0x10
[  853.993181][   T30]  ? snprintf+0xda/0x120
[  854.003302][   T30]  ? __pfx_adfspart_check_POWERTEC+0x10/0x10
[  854.013495][   T30]  ? alloc_pages_mpol_noprof+0x417/0x680
[  854.024631][   T30]  ? vsnprintf+0x1cc3/0x1da0
[  854.034098][   T30]  ? vsnprintf+0x184/0x1da0
[  854.042417][   T30]  ? __pfx_snprintf+0x10/0x10
[  854.057397][   T30]  ? __kasan_kmalloc+0x98/0xb0
[  854.062306][   T30]  bdev_disk_changed+0x72c/0x13d0
[  854.068340][   T30]  ? __pfx_bdev_disk_changed+0x10/0x10
[  854.074696][   T30]  blkdev_get_whole+0x2d2/0x450
[  854.080161][   T30]  bdev_open+0x2d4/0xc60
[  854.084565][   T30]  blkdev_open+0x3e8/0x570
[  854.089791][   T30]  ? __pfx_blkdev_open+0x10/0x10
[  854.094921][   T30]  do_dentry_open+0x970/0x1440
[  854.100409][   T30]  vfs_open+0x3e/0x330
[  854.104618][   T30]  path_openat+0x2b3e/0x3470
[  854.109966][   T30]  ? __pfx_stack_trace_save+0x10/0x10
[  854.115535][   T30]  ? __lock_acquire+0x137a/0x2040
[  854.121155][   T30]  ? __pfx_path_openat+0x10/0x10
[  854.128758][   T30]  do_filp_open+0x235/0x490
[  854.133541][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  854.139256][   T30]  ? _raw_spin_unlock+0x28/0x50
[  854.145589][   T30]  ? alloc_fd+0x5a1/0x640
[  854.150706][   T30]  do_sys_openat2+0x13e/0x1d0
[  854.155671][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  854.161548][   T30]  __x64_sys_openat+0x247/0x2a0
[  854.167147][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  854.172745][   T30]  ? do_syscall_64+0x100/0x230
[  854.178920][   T30]  ? do_syscall_64+0xb6/0x230
[  854.183846][   T30]  do_syscall_64+0xf3/0x230
[  854.189223][   T30]  ? clear_bhb_loop+0x35/0x90
[  854.194130][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  854.200771][   T30] RIP: 0033:0x7f59451169a4
[  854.205397][   T30] RSP: 002b:00007ffc67e317d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  854.217739][   T30] RAX: ffffffffffffffda RBX: 00005583993e7e10 RCX: 00007f59451169a4
[  854.231995][   T30] RDX: 00000000000a0800 RSI: 00005583993e1e80 RDI: 00000000ffffff9c
[  854.244755][   T30] RBP: 00005583993e1e80 R08: 0000000000000001 R09: 0000000000000000
[  854.258912][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000a0800
[  854.267783][   T30] R13: 00005583993d7a70 R14: 0000000000000001 R15: 00005583993c6910
[  854.276272][   T30]  </TASK>
[  854.285180][   T30] 
[  854.285180][   T30] Showing all locks held in the system:
[  854.297772][   T30] 2 locks held by ksoftirqd/0/16:
[  854.302911][   T30]  #0: ffff8880b923e9d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  854.317763][   T30]  #1: ffff8880b9228948 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x441/0x770
[  854.331244][   T30] 1 lock held by khungtaskd/30:
[  854.336279][   T30]  #0: ffffffff8e938320 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  854.347721][   T30] 2 locks held by getty/4978:
[  854.352420][   T30]  #0: ffff88802af4e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  854.363511][   T30]  #1: ffffc9000312b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6ac/0x1e00
[  854.378135][   T30] 2 locks held by kworker/u9:5/5235:
[  854.384342][   T30]  #0: ffff88802093c948 ((wq_completion)nbd0-recv){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  854.395969][   T30]  #1: ffffc90003677d00 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  854.408282][   T30] 1 lock held by udevd/7730:
[  854.413119][   T30]  #0: ffff88802092a4c8 (&disk->open_mutex){+.+.}-{3:3}, at: bdev_open+0xf0/0xc60
[  854.423223][   T30] 3 locks held by kworker/u8:26/12071:
[  854.428774][   T30]  #0: ffff88802a402948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  854.443134][   T30]  #1: ffffc90003357d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  854.457702][   T30]  #2: ffffffff8fc84708 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0
[  854.469617][   T30] 2 locks held by kworker/u8:30/12075:
[  854.475113][   T30] 3 locks held by kworker/u8:32/12077:
[  854.480803][   T30]  #0: ffff888015889148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  854.493165][   T30]  #1: ffffc90003187d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  854.506321][   T30]  #2: ffff888078ab8768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: cfg80211_wiphy_work+0xd9/0x490
[  854.516445][   T30] 1 lock held by syz-executor/16245:
[  854.521717][   T30]  #0: ffffffff8e93d5c0 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x4c/0x530
[  854.531928][   T30] 3 locks held by syz-executor/16337:
[  854.537900][   T30]  #0: ffffffff8fce9e70 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  854.547738][   T30]  #1: ffffffff8fce9d28 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x121/0xec0
[  854.556850][   T30]  #2: ffffffff8fc84708 (rtnl_mutex){+.+.}-{3:3}, at: ieee80211_register_hw+0x2c4e/0x3e10
[  854.568484][   T30] 1 lock held by syz.3.2865/16749:
[  854.573615][   T30]  #0: ffff888020cda608 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240
[  854.586688][   T30] 2 locks held by syz.3.2865/16755:
[  854.591907][   T30]  #0: ffffffff8fce9e70 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  854.600435][   T30]  #1: ffffffff8fce9d28 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x121/0xec0
[  854.609778][   T30] 2 locks held by syz.3.2865/16759:
[  854.614982][   T30]  #0: ffffffff8fce9e70 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  854.623367][   T30]  #1: ffffffff8fc84708 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_pre_doit+0x5f/0x8b0
[  854.633132][   T30] 1 lock held by syz.2.2866/16753:
[  854.638326][   T30]  #0: ffff88805e237a08 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240
[  854.648660][   T30] 3 locks held by syz.2.2866/16754:
[  854.653844][   T30]  #0: ffffffff8fc69308 (vlan_ioctl_mutex){+.+.}-{3:3}, at: sock_ioctl+0x664/0x8e0
[  854.664787][   T30]  #1: ffffffff8fc84708 (rtnl_mutex){+.+.}-{3:3}, at: vlan_ioctl_handler+0x112/0x9d0
[  854.674484][   T30]  #2: ffffffff8e93d6f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  854.689477][   T30] 1 lock held by syz.2.2866/16756:
[  854.694610][   T30]  #0: ffffffff8fc84708 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  854.704592][   T30] 3 locks held by syz.4.2867/16757:
[  854.712439][   T30]  #0: ffff88807cfc1a08 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240
[  854.723225][   T30]  #1: ffff888029f60258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_release+0x790/0xcd0
[  854.733130][   T30]  #2: ffffffff8e93d6f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830
[  854.744197][   T30] 
[  854.746968][   T30] =============================================
[  854.746968][   T30] 
[  854.756016][   T30] NMI backtrace for cpu 1
[  854.760360][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  854.770443][T16337] ieee80211 phy112: Selected rate control algorithm 'minstrel_ht'
[  854.770850][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  854.788697][   T30] Call Trace:
[  854.791973][   T30]  <TASK>
[  854.794895][   T30]  dump_stack_lvl+0x241/0x360
[  854.799571][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  854.804758][   T30]  ? __pfx__printk+0x10/0x10
[  854.809343][   T30]  ? vprintk_emit+0x667/0x7c0
[  854.814012][   T30]  ? __pfx_vprintk_emit+0x10/0x10
[  854.819032][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  854.823967][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  854.829414][   T30]  ? _printk+0xd5/0x120
[  854.833563][   T30]  ? __pfx__printk+0x10/0x10
[  854.838144][   T30]  ? __wake_up_klogd+0xcc/0x110
[  854.842982][   T30]  ? __pfx__printk+0x10/0x10
[  854.847563][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  854.852579][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  854.858551][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  854.864523][   T30]  watchdog+0xff4/0x1040
[  854.868762][   T30]  ? watchdog+0x1ea/0x1040
[  854.873178][   T30]  ? __pfx_watchdog+0x10/0x10
[  854.877847][   T30]  kthread+0x2f0/0x390
[  854.881909][   T30]  ? __pfx_watchdog+0x10/0x10
[  854.886576][   T30]  ? __pfx_kthread+0x10/0x10
[  854.891159][   T30]  ret_from_fork+0x4b/0x80
[  854.895592][   T30]  ? __pfx_kthread+0x10/0x10
[  854.900191][   T30]  ret_from_fork_asm+0x1a/0x30
[  854.904975][   T30]  </TASK>
[  854.910033][   T30] Sending NMI from CPU 1 to CPUs 0:
[  854.915528][    C0] NMI backtrace for cpu 0
[  854.915543][    C0] CPU: 0 UID: 0 PID: 5274 Comm: kworker/0:5 Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  854.915563][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  854.915574][    C0] Workqueue: wg-crypt-wg0 wg_packet_encrypt_worker
[  854.915601][    C0] RIP: 0010:validate_chain+0x1fb3/0x5900
[  854.915620][    C0] Code: 80 3c 20 00 74 08 4c 89 f7 e8 c9 2c 8a 00 48 09 9c 24 98 00 00 00 4d 8b 3e 4d 39 f7 0f 84 6e fc ff ff 41 b4 01 eb 0c 4d 8b 3f <4d> 39 f7 0f 84 5d fc ff ff 49 8d 5f 30 48 89 d8 48 c1 e8 03 48 b9
[  854.915634][    C0] RSP: 0018:ffffc90003f6ed20 EFLAGS: 00000046
[  854.915648][    C0] RAX: 1ffffffff290cac9 RBX: ffffffff94865678 RCX: dffffc0000000000
[  854.915660][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff93433868
[  854.915672][    C0] RBP: ffffc90003f6f020 R08: ffffffff93734857 R09: 1ffffffff26e690a
[  854.915684][    C0] R10: dffffc0000000000 R11: fffffbfff26e690b R12: 0000000000000000
[  854.915696][    C0] R13: ffffffff94874598 R14: ffffffff93433838 R15: ffffffff94865d48
[  854.915709][    C0] FS:  0000000000000000(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000
[  854.915722][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  854.915734][    C0] CR2: 000000110c35e38d CR3: 000000006d69c000 CR4: 00000000003506f0
[  854.915749][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  854.915759][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  854.915772][    C0] Call Trace:
[  854.915779][    C0]  <NMI>
[  854.915785][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  854.915804][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  854.915826][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  854.915854][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  854.915873][    C0]  ? nmi_handle+0x14f/0x5a0
[  854.915888][    C0]  ? nmi_handle+0x2a/0x5a0
[  854.915904][    C0]  ? validate_chain+0x1fb3/0x5900
[  854.915919][    C0]  ? default_do_nmi+0x63/0x160
[  854.915939][    C0]  ? exc_nmi+0x123/0x1f0
[  854.915957][    C0]  ? end_repeat_nmi+0xf/0x53
[  854.915982][    C0]  ? validate_chain+0x1fb3/0x5900
[  854.915997][    C0]  ? validate_chain+0x1fb3/0x5900
[  854.916014][    C0]  ? validate_chain+0x1fb3/0x5900
[  854.916029][    C0]  </NMI>
[  854.916035][    C0]  <TASK>
[  854.916052][    C0]  ? __pfx_validate_chain+0x10/0x10
[  854.916071][    C0]  ? __read_once_word_nocheck+0x9/0x20
[  854.916094][    C0]  ? deref_stack_reg+0x1c7/0x260
[  854.916120][    C0]  ? deref_stack_reg+0x1c7/0x260
[  854.916149][    C0]  ? mark_lock+0x9a/0x350
[  854.916172][    C0]  __lock_acquire+0x137a/0x2040
[  854.916201][    C0]  lock_acquire+0x1ed/0x550
[  854.916221][    C0]  ? raw_spin_rq_lock_nested+0x2a/0x140
[  854.916244][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  854.916266][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  854.916284][    C0]  ? kasan_save_stack+0x4f/0x60
[  854.916304][    C0]  ? __kasan_record_aux_stack+0xac/0xc0
[  854.916322][    C0]  ? insert_work+0x3e/0x330
[  854.916339][    C0]  ? __queue_work+0xc8b/0xf50
[  854.916361][    C0]  ? _raw_spin_lock_irqsave+0xe1/0x120
[  854.916385][    C0]  _raw_spin_lock_nested+0x31/0x40
[  854.916413][    C0]  ? raw_spin_rq_lock_nested+0x2a/0x140
[  854.916432][    C0]  raw_spin_rq_lock_nested+0x2a/0x140
[  854.916453][    C0]  try_to_wake_up+0x7cc/0x1470
[  854.916480][    C0]  ? __pfx_try_to_wake_up+0x10/0x10
[  854.916510][    C0]  kick_pool+0x45c/0x620
[  854.916531][    C0]  ? insert_work+0x275/0x330
[  854.916550][    C0]  __queue_work+0xc97/0xf50
[  854.916572][    C0]  ? __queue_work+0x199/0xf50
[  854.916596][    C0]  queue_work_on+0x1c2/0x380
[  854.916618][    C0]  ? __pfx_queue_work_on+0x10/0x10
[  854.916638][    C0]  ? __virt_addr_valid+0x45f/0x530
[  854.916660][    C0]  wg_queue_enqueue_per_peer_tx+0x21f/0x4a0
[  854.916685][    C0]  wg_packet_encrypt_worker+0x1242/0x1610
[  854.916718][    C0]  ? __pfx_wg_packet_encrypt_worker+0x10/0x10
[  854.916739][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  854.916797][    C0]  ? __pfx_preempt_schedule+0x10/0x10
[  854.916818][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  854.916840][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  854.916863][    C0]  ? preempt_schedule_thunk+0x1a/0x30
[  854.916883][    C0]  ? process_scheduled_works+0x945/0x1830
[  854.916902][    C0]  process_scheduled_works+0xa2c/0x1830
[  854.916935][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  854.916959][    C0]  ? assign_work+0x364/0x3d0
[  854.916980][    C0]  worker_thread+0x86d/0xd40
[  854.917004][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  854.917027][    C0]  ? __kthread_parkme+0x169/0x1d0
[  854.917050][    C0]  ? __pfx_worker_thread+0x10/0x10
[  854.917070][    C0]  kthread+0x2f0/0x390
[  854.917092][    C0]  ? __pfx_worker_thread+0x10/0x10
[  854.917112][    C0]  ? __pfx_kthread+0x10/0x10
[  854.917134][    C0]  ret_from_fork+0x4b/0x80
[  854.917155][    C0]  ? __pfx_kthread+0x10/0x10
[  854.917177][    C0]  ret_from_fork_asm+0x1a/0x30
[  854.917205][    C0]  </TASK>
[  855.424991][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  855.431880][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc4-syzkaller-00161-g3a0504d54b3b #0
[  855.442396][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  855.452468][   T30] Call Trace:
[  855.455766][   T30]  <TASK>
[  855.458707][   T30]  dump_stack_lvl+0x241/0x360
[  855.463401][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  855.468616][   T30]  ? __pfx__printk+0x10/0x10
[  855.473223][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  855.479234][   T30]  ? vscnprintf+0x5d/0x90
[  855.483577][   T30]  panic+0x349/0x860
[  855.487496][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  855.493667][   T30]  ? __pfx_panic+0x10/0x10
[  855.498099][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  855.503486][   T30]  ? __irq_work_queue_local+0x137/0x410
[  855.509055][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  855.514444][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  855.520696][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  855.526866][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  855.533034][   T30]  watchdog+0x1033/0x1040
[  855.537388][   T30]  ? watchdog+0x1ea/0x1040
[  855.541825][   T30]  ? __pfx_watchdog+0x10/0x10
[  855.546532][   T30]  kthread+0x2f0/0x390
[  855.550623][   T30]  ? __pfx_watchdog+0x10/0x10
[  855.555315][   T30]  ? __pfx_kthread+0x10/0x10
[  855.559923][   T30]  ret_from_fork+0x4b/0x80
[  855.564352][   T30]  ? __pfx_kthread+0x10/0x10
[  855.568960][   T30]  ret_from_fork_asm+0x1a/0x30
[  855.573756][   T30]  </TASK>
[  855.576999][   T30] Kernel Offset: disabled
[  855.581315][   T30] Rebooting in 86400 seconds..