last executing test programs:

6.08808327s ago: executing program 0 (id=1367):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="6c00000010003b1500"/20, @ANYRES32=0x0, @ANYBLOB="00020000008000003c0012800b00010062726964676500072c0002950c002200090001000000000008001d000300000005002900000000000c002e000100000000100000080003"], 0x6c}}, 0x8000)
socket$netlink(0x10, 0x3, 0x1a)

5.78765072s ago: executing program 0 (id=1372):
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r0, &(0x7f0000001f80)=[{{&(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000180)="e1", 0x1}], 0x1}}, {{&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000100)="a7", 0x1}], 0x1}}, {{&(0x7f0000000040)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000280)="886b394579419f", 0x7}, {&(0x7f00000002c0)="86645b62b7254acac249", 0xa}, {&(0x7f0000000300)="a82d76520df6004823222ebe8e51f9bc91f91cae4db6286400e276015b519659c51a10ef29d802", 0x27}, {&(0x7f0000000440)="55812251207920dc1709d8ce1cf7cc2089205eaf62b5dba605372e2891e967c2583590557e93bb02fe78bb01006932825d1adedc6a518a3bb2b6522964fe943f327f85d24b2f5e7380551e8aa0d3a0ff9c506a5e300f776973968eac0175d6e8d5358dfeceda5febf5919ac2fb8cb9e5569b55a1b95f29e643d0a8b581003c4e7075010c9b7deee8d132e06120f204e7832828ead412f2e0ab571f8c18dd9541a617d1edd8f739c6742dff9c8ce6fd134d9d2ca27de7bb39ff466ba94d2ac1b37534b2fa5f506156a0d7029c617d5ee0821f50c9bd99fe5244f3d70aa29a712d8c49dadeaa3a6570f257bfe1eed0452e", 0xf0}, {&(0x7f0000000540)="2133982b6080b19c8664b69f65cfd6cad3fcf59b240eb28309c02aefbbb6a7b30a43aea54aae357d4639fc9f875ca229d30f6b893c46c8a92e43d93f2a8aa6d50f459f8a8322eaeea16df3f375b8ffe0cf22ccb6f88d50f0bdcffab33b8edc62bacdd263a28c0ff87e00257137d39f86d9496f9db2aacaec1709ad00d48053e482310347dbc9da49ea70661fe459d4a1ee8b17cdbf6a8044b4f6acf32115e454f2ea", 0xa2}], 0x5, &(0x7f0000000600)=[@ip_retopts={{0xe8, 0x0, 0x7, {[@lsrr={0x83, 0x13, 0x11, [@broadcast, @broadcast, @private=0xa010102, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @cipso={0x86, 0x1b, 0xffffffffffffffff, [{0x6, 0xc, "e233398b32e7bc9462f0"}, {0x0, 0x9, "a3b3348ea81e09"}]}, @cipso={0x86, 0x66, 0x2, [{0x0, 0xb, "0e9396b8bc7b80a67f"}, {0x2, 0x11, "8d7103e572aff3c9b98a5466a12861"}, {0x2, 0x8, "39cd9b32453c"}, {0x5, 0x6, "d570ffb5"}, {0x7, 0x8, "f4a9c915afd1"}, {0x1, 0xc, "4aa59da0fbb899ff8f54"}, {0x2, 0x12, "19f8cfcbd798a63170a117066dd66a76"}, {0x0, 0x10, "e7b629f3a48eea08bdb02e8334ee"}]}, @timestamp={0x44, 0x20, 0xb0, 0x0, 0x3, [0x8, 0x6, 0x40, 0x8, 0x9, 0x6, 0x8]}, @end, @generic={0x88, 0x5, "8aec25"}, @end, @lsrr={0x83, 0x1b, 0x49, [@loopback, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, @multicast2, @local]}]}}}, @ip_retopts={{0x38, 0x0, 0x7, {[@timestamp_addr={0x44, 0x24, 0x38, 0x1, 0x3, [{@remote}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x1ff}, {@dev={0xac, 0x14, 0x14, 0x21}, 0x4}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}]}, @noop]}}}, @ip_retopts={{0x84, 0x0, 0x7, {[@ssrr={0x89, 0x7, 0x3a, [@loopback]}, @ra={0x94, 0x4, 0x1}, @end, @cipso={0x86, 0x66, 0x0, [{0x5, 0x9, "8f4ea879eeb98c"}, {0x2, 0x3, 'a'}, {0x0, 0x6, "dd8ea81c"}, {0x1, 0xe, "68f7371858cdf605cda6d3a5"}, {0x7, 0x10, "f57a6bc0e91d934aa0af70ba7232"}, {0x7, 0x7, "101455a29d"}, {0x3, 0xd, "9bfaffdf20ee01a0702831"}, {0x7, 0x11, "7cde06d3d8f60ee0d0667a78a365c6"}, {0x7, 0xb, "ebbef176edae5cf0e3"}]}, @generic={0x82, 0x2}]}}}], 0x1a8}}, {{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000007c0)="2c226536b88aa193aa25ad97e230c2d2c4e0c8b80839b5b35f22dcf6fc194090e395f6bd9e7d9a0c13a4e013d20a69ee44c03be4a042f872b630ed5dfb8dc1916bda3bccb76c1b736203ff75a1fd52c66692c260d4c67e317b7e95c62762219bcc63d84c2c2347353c6070a7c97394274a9a04d9d6fd6eeb223ed4171f29c3b42f4e9e1755c745d54d630eff0642ff660510fc0d96ec14cc9b763e591307c4a100eb0f646e0fdde976a3e06579215eb2cfee3f9ccf65643b478a0a6f", 0xbc}, {&(0x7f0000000880)="75577e9f473b220016ee17f1b02a3d7d9e53af8313f7afecc59a47a198d25a2db713b28eb5cd552fbabfbdf697fa591e078d6e832a3187897322019722cf8b627ca2eb3bbf40f46018900f7e2e1d97a6442c852c75e01aa08e99f07932732c8465bb41df00691479cc06df98999fa5cbcb7c093590743fa0e43ef52250c10a8915a89644338cab10d81e155c7b260bb90f754fae423b47ce6457209c45c70da24f354af80d8a6f59e1", 0xa9}], 0x2, &(0x7f0000000980)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x6}}], 0x18}}, {{&(0x7f00000009c0)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000bc0)=[{&(0x7f0000000a00)="06c709d9612bac61b387ff748a458249d06240293294f30e431cc732dd028f513c35aba5ce3bb0431c6c53efa965fe1dfb2d34db215bb971db545b5a04698562adf30c58a22db38c778318002b32c3cb83fe603e7b6e3fe6d8b73933be1d0e4d2317e3fdb29f6f", 0x67}, {&(0x7f0000000a80)="d38ab9f3cf9c1bc1f2c5b5376157e376b1522e1ef4e5a3b964ad7fb3c1cee69c77d14489bdc49e49", 0x28}, {&(0x7f0000000ac0)="7b113554efe6df26840c95cf1c40ffc122bc59bd6acc7d5cbebe063cec70dae6b0ff1417483191f60c39e5fab227cffce6993d706779f936884f047f267c6c753f7620fac8e531db8666ccddda788a04b87f768adf6730fe0200474022b9047fe73313509b362b72624be19787e968a63f6fdb70ea46e111c901ca60797d39c7be273a2245f3d9af56fcef6444c44428a835f160098359f43ed656cf6eb0293b95631265b739b7c7f5912264316a954bc9242c05029ef65edd3f83d198154b2cb94ddc502cb2679f43878b11584bc44d7a7481e53ebd492fcbb4fa62efb35a3b0cb276537928bf9a1d62df79", 0xec}], 0x3, &(0x7f0000000f00)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x3}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @loopback, @remote}}}], 0x38}}, {{&(0x7f0000000f40)={0x2, 0x4e20, @multicast2}, 0x10, &(0x7f0000001200)=[{&(0x7f0000000f80)="0c118b1336f6ac2ed07eaa58321fd69f15213dc06f6ed429671fb524a0ec0a6534f5c8436497b68ceaa45c0dc63ef46a5d5066816c6c736904362bacfbf09aa90ffe6b14c10c29999d1986d9de1c173f6103d78a817bc5df8af60079648693dc264456acda3898939643e532f431bb4287f29244bec99be5e16e704394b0", 0x7e}, {&(0x7f0000001000)="02c846b0b111a16036a56e64fb34de642bf10cf828f796311ccf212e26d98456e645464ada727776d91a00644fa13dac228c58ee52817e594088b79dac709a4cbf1cf12f0d958196eb4fcee3a769d124983b", 0x52}, {&(0x7f0000001080)="df59f25f8b8cd611f04b09182d9b4d5737a41b6b7c6e4e905c1f28345747df25f4b3fdab837e07ec2600b471869fd36592692711e9cd3f5afe3771dbaea7d428bc616632d58ecfe47204bd0907e07ad31b54dc29ed9cc017bd4eeef2ba678cdc11a307fcdab1fdad1e1aef6ae5359ead6b358bc090e916c76df767cd05a70132e610499c2d9e2110ad0e4b9ae8d13da94ac2c5243471e1de7fc9647549d6d256a50dd30c63dffad96396c9eebf", 0xad}, {&(0x7f0000001140)="539f9d60e5fb22fbe03dcf524a086869b590889449f60a9a26a741af0c8894e2909ed6a0f8400c7508ea4e57b0a5bfc8133a359e133d46", 0x37}, {&(0x7f0000001180)="94a911f19db396aa278f31e8c1200565d92215ec5fe037d016fafeb5861c5e31c7b6bba08f77432b22178c918f75084f29499bfe3363a2635d6847cc9a00f7fc62b0c069a02aea412d722c68bdc43656cc", 0x51}], 0x5, &(0x7f0000001280)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x80}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @empty}}}, @ip_retopts={{0x1c, 0x0, 0x7, {[@timestamp_prespec={0x44, 0xc, 0x10, 0x3, 0x4, [{@multicast1, 0xffffffff}]}]}}}, @ip_retopts={{0x10c, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x14, 0xc1, 0x3, 0x6, [{@rand_addr=0x64010102, 0xfffffff9}, {@rand_addr=0x64010101}]}, @rr={0x7, 0x17, 0xb6, [@multicast2, @private=0xa010102, @multicast2, @multicast1, @dev={0xac, 0x14, 0x14, 0x16}]}, @cipso={0x86, 0x49, 0xffffffffffffffff, [{0x1, 0xf, "2bdb92a057d6c90ce0ebbda5f0"}, {0x0, 0x8, "52aa0e6d2812"}, {0x6, 0x5, "035ac1"}, {0x2, 0xe, "512e2fa4048bde585ba97d1a"}, {0x19e40807a0df7d78, 0xc, "4327edd0ba3898771898"}, {0x5, 0x2}, {0x1, 0x2}, {0x6, 0x9, "c25cb8c3b4c887"}]}, @timestamp_prespec={0x44, 0x1c, 0xca, 0x3, 0x5, [{@loopback, 0xff}, {@multicast1, 0x1}, {@dev={0xac, 0x14, 0x14, 0x38}, 0x7}]}, @timestamp={0x44, 0x14, 0x34, 0x0, 0x4, [0x9, 0x9, 0x1, 0xf2]}, @cipso={0x86, 0x4b, 0x3, [{0x2, 0x2}, {0x5, 0x3, "d4"}, {0x2, 0x10, "786928c42d5379cb40f7f2db0bf8"}, {0x2, 0x11, "16715cccb755b79ab6645a10c6ea63"}, {0x5, 0xd, "3769d62b5b66afdbcf1709"}, {0x7, 0x12, "458a7f2cea8c8ce117d73c0a342bcc65"}]}, @generic={0x86, 0xd, "22a859b50dbd40e1693efb"}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xb}}], 0x180}}, {{&(0x7f0000001400)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000001700)=[{&(0x7f0000001440)="e184652fb5e1facbe1d297639f02960b070ed835d7fe93f5c1793cbdaab3aad12f52020a2c50b373fdd6623b71684157965825e51540324530c05247b6e6144faeece00fb750b5af03448cd24d30e0a66151ccd1d3b39eebeb1b9438a52bd5ba7b2ef51e50b87a2f8742e000f3ed31c23f19b688c94e993301a5638ad7b7fc7b134b5a7e46868cdb43ed5037e7229c9bdc9051a5dc552dea17b0210d605ec49a7f8c2c3436a6b4947e8af5218c10e046c324bc8cde9fefa5dbc834cc182e892953ed2eaa81cf340fbefa4915e479f9b00af6fc6d99d8", 0xd6}, {&(0x7f0000001540)="1bbe5e9f503330630e5456adf07d0fb7eed3bf019f7c7f189eb23040e3376b87e88261af7deb2a890a00fe02879da5e67efb28e45d25e860c414175fcf0b18ba26937d930f2e729ea866afffe4de7eb3676978f812bf", 0x56}, {&(0x7f00000015c0)="a5ac199978c695d75d0d54acf744b15873babc309cfae482ef81ecba71f3a70a965e2a885824b19df4cff93a009bdefac9e5", 0x32}, {&(0x7f0000001600)="37ebd972fcd90ef0732bfdc6fbdbb81b2aea81043cb9b6a1f94a4e8dfe7b010a519cfb0499f9679dd521ed6497f7b032a71681916f26f0d157bd86d4d25b071f4219763337f6bafababe87e2e6f9df119843b8c727b2bfd9b6d129d57f94822b8cba3c5750c95fde322074cb6d6ac21229649231ac48df2b9f", 0x79}, {&(0x7f0000001680)="2431c72b93519713b139aa49008d226a72cefa07ee6c83a629779b55e0d928659c93c1a87a9a84554e9919531786f0b9dccd199189c121afa2a278a3af678dafa1a440e6e355c45abf4af81e07ba65d57f16b10786d8687427b9d97cfdba067f", 0x60}], 0x5}}, {{&(0x7f0000001780)={0x2, 0x4e20, @rand_addr=0x64010101}, 0x10, &(0x7f0000001880)=[{&(0x7f00000017c0)="fa679153780c394b3f245339f6480193d2904608aab72fa0e3fc9b3bb028961daf84e020c52d07f34c8e2b18004dbc76a5fa0e38526f33a33eae463b12ef43ba7f0eb64cc202fd1be7ac6036eba353df9f079732a98957a886f9f30b5dadaed862cc7575e9b3a5329f740e98da24b8bb15e38218cf88b29ece2db62d311dc72f08c6daf17d7af211f4f69e5517b4c918cfe47a08", 0x94}], 0x1, &(0x7f00000018c0)}}, {{&(0x7f0000001900)={0x2, 0x4e23, @multicast2}, 0x10, &(0x7f0000001d40)=[{&(0x7f0000001940)="18838e857961a5323a57e2180496b4443c83678343cf506e7c2242a605b59a3bac01294f840a36941c9c28aea563fa487abdc73dff1323fa0f7d2881160ebc826f94c1be75ab2875c63559949c6c36c077ba31af990927adfc8d69ad3994cde13b21aa12553c761df11f4ff1178c24981b4b3d0d608ac694a30103e4b110662e85c27b4ea219a08f306e4344536bd9218cc554c1f05e5b11229d3fc090c629efd3", 0xa1}, {&(0x7f0000001a00)="be01712f74f0025d56586127a33fd011d4e0734d19a0a2762c726fc14dff31dfe4d0a988e6533fa073afaf", 0x2b}, {&(0x7f0000001a40)="9ef919df607171b6ddcc675d862ea0d87e522836b7c196a69bfcdee212e9c2279eb5d6a823ef09a03c388e04e483449aa1cbb976aa9b2f0ab803506ea05080291bd23e408957f2130db442da1548c6670f21c09a201ace5b55621ad02205febe2b8de1b5b67e74473be93106882c0fa55118d512c55ca5597db6a481818b7d76822d411bd49f111b1633bc0109ca812035cc33ef57c0c750a4f09df2709afbccab6b3305df199695cfb77ec62dc9d9022f92d2ba49108dc109bd", 0xba}, {&(0x7f0000001b00)="7ce08c4954b716405a68ac6cfd4ad2ff5de7b576da87efdefc5046ccd28e6f79acf4feb3e979f7966b9705437a6a90a3a04cf779c759d57445dd60a84d2d5c1352bee93ae1077bee590cc67305ce7ba3fc0f16d39f46d655066c7fee303b9b00c5dce71490416bf036cf4df25dffdbfef996225d89582a87c3f7a0d3e5c1e6ac6a7d37a5fe78674f0c67a480a1b7f6a0", 0x90}, {&(0x7f0000001bc0)="c1f6f6f6fc9e3b742cdc3cf579e3767d94413f87c928e0a94cd3dd0de217fc9c134241aacd8563ef4f6bfa5942038bc1e9948b7a87d55aea220970fa229a0e0bfcfc8fe64d0ef6f3341bc97145464de9a4789b845dd4e30af7aaa5382e1d9b241b2f766a9afbb6bf43751a790fa786a0402fa6f5b5598db5431fcc0709ff10a14bbeffdf8c0790c240086a81927617", 0x8f}, {&(0x7f0000001c80)="e3ae9cdb89b9f305675b51b5ce9e1109", 0x10}, {&(0x7f0000001cc0)="878ae6f65b078f28bfec8905d952206a1747e04559", 0x15}, {&(0x7f0000001d00)}], 0x8, &(0x7f0000001dc0)=[@ip_retopts={{0x74, 0x0, 0x7, {[@cipso={0x86, 0x61, 0x2, [{0x0, 0x6, "63d7c4fe"}, {0x7, 0xe, "f6658ad3a18412d292b29b64"}, {0x6, 0x6, "a1396734"}, {0x7, 0xe, "16005831a7fa6aaf1789cf22"}, {0x1, 0x4, 'gw'}, {0x0, 0x3, 'h'}, {0x5, 0x10, "231abcf4d0bd77f64960ce7ca52b"}, {0x2, 0xe, "eaeb659ad726a027de6fdfdd"}, {0x1, 0xa, "15b6df12ee737711"}, {0x6, 0x4, "183e"}]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xc7}}, @ip_retopts={{0xd4, 0x0, 0x7, {[@generic={0x89, 0x9, "6d127ac83d2cdc"}, @timestamp_addr={0x44, 0x4c, 0x1a, 0x1, 0x3, [{@local, 0xcd72}, {@dev={0xac, 0x14, 0x14, 0x37}, 0x6}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0xab40}, {@local, 0xfffeffff}, {@private=0xa010102}, {@rand_addr=0x64010101, 0x4}, {@rand_addr=0x64010101, 0xffffffff}, {@multicast2, 0x8}, {@multicast2, 0x2}]}, @timestamp_addr={0x44, 0x4, 0x78, 0x1, 0x3}, @cipso={0x86, 0x3f, 0xffffffffffffffff, [{0x5, 0xe, "dd1154020be7435d6b8365e3"}, {0x3, 0xe, "6386a1ce02ceb12a5dd5ee44"}, {0x6, 0x6, "07b3e98e"}, {0x0, 0xd, "9177f986e9c41c4a5bbf42"}, {0x6, 0x7, "5fb4a66917"}, {0x1, 0x3, '9'}]}, @noop, @ssrr={0x89, 0x17, 0xf3, [@dev={0xac, 0x14, 0x14, 0x33}, @broadcast, @loopback, @multicast2, @multicast1]}, @timestamp_prespec={0x44, 0x14, 0xa, 0x3, 0x4, [{@loopback, 0x9}, {@multicast1, 0x85}]}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}], 0x180}}], 0x9, 0x0)

5.66394438s ago: executing program 0 (id=1373):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000700)=ANY=[@ANYBLOB="1000000001144101"], 0x10}, 0x1, 0x0, 0x0, 0x8885}, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000b40)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_STATION(r1, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)={0x34, r2, 0x1, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_FLAGS={0xc, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_TDLS_PEER={0x4}, @NL80211_STA_FLAG_AUTHENTICATED={0x4}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x40488d0)
recvfrom(r0, 0x0, 0x0, 0x40000062, 0x0, 0xfffffffffffffdff)

5.468973758s ago: executing program 0 (id=1374):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x2, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1837"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x0, 0xfffffffffffffffc, 0x41100, 0x0, '\x00', 0x0, 0x38}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xe, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35}, 0x94) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xa, 0x4, 0x6, 0xff, 0x42}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000080), 0x619, r0}, 0x38) (async, rerun: 32)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async, rerun: 32)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async, rerun: 32)
r2 = accept$inet6(0xffffffffffffffff, &(0x7f0000000640)={0xa, 0x0, 0x0, @empty}, &(0x7f0000000680)=0x1c) (rerun: 32)
recvfrom$inet6(r2, &(0x7f0000000e40)=""/4096, 0x1000, 0x40, &(0x7f00000006c0)={0xa, 0x4e23, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x2}, 0x1c) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000600)=ANY=[@ANYRES32=r1, @ANYRES32=r3, @ANYBLOB="020000"], 0x10) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="180000000000000000000000000000009500160000000000"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r4}, 0x10)
r6 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8)
close(r6) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock}, 0x70) (async)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@cgroup=r8, r7, 0x2, 0x6, 0x4000}, 0x10) (async, rerun: 64)
r9 = socket$packet(0x11, 0x2, 0x300) (rerun: 64)
setsockopt$packet_tx_ring(r9, 0x107, 0xd, &(0x7f0000000380)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) (async, rerun: 32)
socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
socket$tipc(0x1e, 0x5, 0x0) (async)
socket$tipc(0x1e, 0x5, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) (async)
unshare(0x2c020400)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0x3, 0x0, 0x40000, 0x0, 0x2}, 0x0, &(0x7f00000002c0)={0x3ff, 0x1000000000002, 0x0, 0x0, 0x5, 0x4, 0x80000001, 0x7fffffffffffffff}, 0x0, 0x0) (async)
r10 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000001e40)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xca, 0x117, 0x3, [@func_proto={0x0, 0x6, 0x0, 0xd, 0x0, [{0xb, 0x3}, {0x7}, {0x1, 0x3}, {0x7, 0x5}, {0xc, 0x1}, {0x3, 0x2}]}, @datasec={0x6, 0x1, 0x0, 0xf, 0x1, [{0x5, 0x2, 0x1}], "d0"}, @int={0x2, 0x0, 0x0, 0x1, 0x0, 0xe, 0x0, 0x2, 0x5}, @datasec={0xa, 0x1, 0x0, 0xf, 0x1, [{0x3, 0x1ff, 0xffffff34}], 'd'}, @union={0xf, 0x3, 0x0, 0x5, 0x1, 0x64, [{0x8, 0x4, 0x8}, {0xf, 0x5, 0x7fffffff}, {0xa, 0x4, 0x10000}]}, @enum={0x2, 0x2, 0x0, 0x6, 0x4, [{0x1, 0x6679}, {0x0, 0x2}]}]}, {0x0, [0x2e]}}, &(0x7f0000000040)=""/117, 0xe7, 0x75, 0x1, 0x1}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000780)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, r10, 0x8, &(0x7f0000000000), 0x8}, 0x94)

5.213244357s ago: executing program 0 (id=1380):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0xe4, @fixed, 0x0, 0x1}, 0xe)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0x8, 0x0, 0x1, 0x7ff, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x5}, 0x50)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000340)={0x0, r1}, 0x8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x200}, 0x1c)
listen(r3, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r4 = accept(r3, 0x0, 0x0)
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_lsm={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x42}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r5, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2031}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r5}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x2}]}, @IFLA_GROUP={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20048054}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xd0}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000012c0)={{0x14}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}}, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[], 0xfffffdef}, 0x1, 0x0, 0x0, 0x2400c840}, 0x0)
connect$unix(r4, &(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x8, 0x8, &(0x7f0000000300)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x8, 0x76, 0x0, 0x0, 0xd8d9}, [@call={0x27}, @initr0={0x18, 0x0, 0x0, 0x0, 0x101}, @map_val={0x18, 0x1, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x7}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000001240)=@base={0xf, 0x4, 0x8, 0x1}, 0x37)
close(r7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0xe, &(0x7f0000001440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000004085000000820000001800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x6}, 0x94)

4.916134406s ago: executing program 4 (id=1384):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)=ANY=[@ANYBLOB="1800000024000103000000000000000001008c000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r0, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000240)=""/89, 0x59}, {&(0x7f0000003780)=""/4097, 0x1001}], 0x2}, 0x4}], 0x1, 0x40010000, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x9, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x90, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x1c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @CTA_TIMEOUT={0x8}, @CTA_SYNPROXY={0x1c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8}, @CTA_SYNPROXY_ISN={0x8}, @CTA_SYNPROXY_TSOFF={0x8}]}]}, 0x90}}, 0x0)

4.88792192s ago: executing program 0 (id=1385):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0e00200002"], 0x8)

4.625388681s ago: executing program 4 (id=1388):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000070000", @ANYRES32, @ANYBLOB="0c0099000000000000000000050053000100000014000400776c616e310000000000000000000000140006"], 0x60}}, 0x0)

4.535741791s ago: executing program 4 (id=1390):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1d64, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f0000000400)=[{{0x0, 0xf5ffffff, 0x0, 0x0, 0x0, 0x4000000}, 0xf5ff}], 0xf00, 0x0, 0x0)
shutdown(r2, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700000095"], &(0x7f0000000080)='GPL\x00'}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r5, <r7=>0xffffffffffffffff}, &(0x7f0000000800), &(0x7f0000000840)=r6}, 0x17)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000a00)=ANY=[@ANYRES32=r6, @ANYRES64=r4, @ANYBLOB="34810e0517a53638d8a25bc66242bf8580433caaa8d0f6900a4d437f6de3ede889a8bb42f15f33f739", @ANYRES32, @ANYRES64=r7, @ANYRESDEC, @ANYBLOB="5bc8bfa3178ce76b5c2a014efd446afcbf55f8dd679c8c1d79f3dc5d8c3a44ed9b085986ddf6cd9810c6a6a10f3c41e8080a625f484b0abf31192d4a0c50389a1db5483f312d9faa65ee2bbaab29a10c5ec199f2a97634f8ca782d6694e01c6e3429acc79cdccf9b93cad4ca5ba8a016f4aa23dd6caab780d5f130d8db801fad3be3207b954965a69d1499692a47356dc61897f8cc69e350febf9a6d3088c88a3dce5b0485f35c3110a7601d7739aee14c7f7f6cbf1e33cfd64259d1bc691bcffe1d1982a394fb44ed513975fe652678d5ce57f9b54ecd9045c02d86e82d247338"], &(0x7f0000000080)='syzkaller\x00', 0x3ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r8, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r3, 0x0, 0x3c, 0x72, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xd8, 0xa0, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b710e9246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fde4303d5f2b1e63e9e52ae4b197fd72de1f71801e1f9f1369d1f530", &(0x7f0000000280)="bf049fd184f7b03c21d9bcddc4eef9ebb6a0da3eb91c56454e873dd7336ccf21a1eeb8da7adf80d6e06ef46c7f36222fadaed2103c286468b3f44adee51445bd1bedf8fcc1c0b9fdc8b3829b1bf0c9d2d409cdecb12ad033e299c029331993ae9760345bf7feb91ee96b0eee19454ad3dbce5019b68c114ff1921a9b4665744c7784ac6736101a70592d83c448a84c31ec60bb901d96ea99471d823ee5233188", 0x0, 0x8000}, 0x50)
r9 = socket$xdp(0x2c, 0x3, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x2)
sendmsg$NFT_MSG_GETCHAIN(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x488c4)
close(r10)
setsockopt$XDP_TX_RING(r9, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r11, 0x400448cb, 0x0)
r12 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r12, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r12, 0x401054d5, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x60, 0x4, 0xfd}]})
r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r13, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
socket$inet(0x2, 0x2, 0x1000)
write(r13, &(0x7f0000000040)="05000000010000", 0x7)

3.338142416s ago: executing program 1 (id=1393):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="340000003e0007010000000000000000017c00000400fc800c00018006000600060600000800028004007280080007"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r2, &(0x7f0000000600)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000005c0)={&(0x7f0000000480)={0x48, r3, 0x20, 0x70bd29, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_LEVEL={0xc, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x2}]}, @NL802154_ATTR_SEC_LEVEL={0x1c, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x9}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x3}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x44000)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000ac0)={0x48, r5, 0x5eae78d9c54e9d3f, 0x0, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_SEC_KEY={0x2c, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "3e7d9e838196f61c9b54c9c6b8bd5d48"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x3}, @NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8}]}]}]}, 0x48}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'dummy0\x00', <r8=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@mcast2, 0xd, r8})
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40010000}, 0xc, &(0x7f0000000940)={&(0x7f0000000680)={0x4c, 0x12, 0x100, 0x70bd25, 0x25dfdbfc, {0x28, 0xae, 0x7, 0x7, {0x4e22, 0x4e24, [0x7, 0x8, 0x7d5e, 0x9], [0xffffff7f, 0xbc, 0x221, 0xd7], r8, [0xfffffffe, 0x80]}, 0x401, 0x6}}, 0x4c}, 0x1, 0x0, 0x0, 0x4}, 0x806)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan0\x00', <r11=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB='l\x00\x00', @ANYRES16=r10, @ANYBLOB="010025bd7000fbdbdf251e00000008000300", @ANYRES32=r11, @ANYBLOB="50002f800c0002000203aaaaaaaaaaaa0c000380080001000200000034000380080001000000000028000380"], 0x6c}, 0x1, 0x0, 0x0, 0x20000041}, 0x4880)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wpan1\x00', <r12=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00', <r13=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wpan3\x00', <r14=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r2, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x74, r3, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_SEC_DEVKEY={0x18, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x9}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r12}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r13}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r14}]}, 0x74}, 0x1, 0x0, 0x0, 0x4040}, 0x40800)
r15 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_MMAP_OFFSETS(r15, 0x11b, 0x1, 0x0, &(0x7f0000000280)=0x60)
close(r1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct, @union={0x0, 0x2, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x1}, {0x0, 0x1}]}]}}, 0x0, 0x4a}, 0x20)
r16 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r16, &(0x7f00000008c0)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000180)='i', 0xfffffe57}], 0x1}}, {{&(0x7f0000000000)={0xa, 0x4e63, 0x1, @private1, 0x5}, 0x1c, &(0x7f0000000640), 0x1}}], 0x2, 0x20000881)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0x1, 0x4000604, &(0x7f000005ffe4)={0xa, 0x4e23, 0x800, @loopback}, 0x1c)

2.997653583s ago: executing program 1 (id=1395):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000240), 0x4)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000000)={0x8, 0x1, 0x9, 0x10000, @vifc_lcl_addr=@local, @multicast1}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWFLOWTABLE={0x5c, 0x16, 0xa, 0x801, 0x0, 0x0, {}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}]}, @NFT_MSG_DELSET={0x128, 0xb, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x5}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x1}, @NFTA_SET_USERDATA={0x66, 0xd, 0x1, 0x0, "43b39cd6c17515741581041b47b3f7cc045d5d636e3f88a78b875fc3ac5a6a00af02a1485ce83570f4360fb6221b84631b5f5b6f6bcb1183f8832e3b41f80f27d249b61d77d65be89ee2585be193914a88d89bce45022015616df73e2d55fce2af79"}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x6}, @NFTA_SET_EXPR={0x88, 0x11, 0x0, 0x1, @flow_offload={{0x11}, @val={0x70, 0x2, 0x0, 0x1, [@NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}]}}}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x1ac}, 0x1, 0x0, 0x0, 0x40841}, 0x8000)
socket$inet_udplite(0x2, 0x2, 0x88)

2.752346335s ago: executing program 4 (id=1397):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x1004e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
ppoll(&(0x7f0000000000)=[{r2, 0x8104}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000e40)=ANY=[@ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="0200000002"], 0x10)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x15, 0x4, &(0x7f00000008c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x27}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000e40)=ANY=[@ANYRES32=r5, @ANYRES32=r6], 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='contention_end\x00', r8}, 0x18)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r10, 0x84, 0x1, 0x0, 0x0)
r11 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_GET(r9, &(0x7f0000000180)={0x0, 0x40000000, &(0x7f0000000040)={&(0x7f00000002c0)={0x14, r11, 0x701}, 0x14}}, 0x0)
r12 = socket$nl_xfrm(0x10, 0x3, 0x6)
r13 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r13, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="fc00000019000100000000000000000000000000000000000000000000000000fc01000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000b93760000000000000000000000000000000000000000000200000000000000010000000000000044000500ac141400000000000000000000000000000000003c"], 0xfc}, 0x1, 0x0, 0x0, 0x24008040}, 0x20040000)
sendmsg$nl_xfrm(r12, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@updpolicy={0xb8, 0x19, 0x1, 0xfffffffc, 0x0, {{@in=@dev={0xac, 0x14, 0x14, 0x24}, @in6=@local, 0x4e22, 0x0, 0x4e24, 0x0, 0xa, 0x0, 0x60}, {0x0, 0xc8c, 0xfffffffffffffffe, 0x40000000, 0x0, 0x1a, 0x1, 0xfffffffffffffffe}, {0x77, 0x100, 0x0, 0x7fff}, 0x8, 0x0, 0x1, 0x0, 0x3}}, 0xb8}}, 0x0)
sendto$inet6(r7, &(0x7f0000000240)="8a", 0x1, 0x51, &(0x7f0000000080)={0xa, 0x3, 0x1, @local, 0x9}, 0x1c)
setsockopt(r13, 0x3d851b31, 0x5, &(0x7f00000003c0)="98e1bfe8ecffaef87b73509ceac91510c1887a4a1cff6b133a9a62162e031b68b1aec636a43784b29520a44eedbf958fee2692e1b068856fa2de72553501ae4a9b61a185218e62eaba85c67bfb321598208a2827b1cb25854a41f8314a5924f6f14af28ec5afd3fb710d96189b9191239e9dbfc6b93e260e034f4f367fdc62d089c1478ebce4809fd94245c67db7203a63fc8107f941fbf370e8ac036c32b4bf0b0829533199c0f5aa79ba2733939ddab3142cffa8", 0xb5)
socket$inet_udp(0x2, 0x2, 0x0)
close(0x3)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000001b04000080041d0090844102244593216765767475b154d0de68784b3f15a10000000000000081924ef49d0c9ead"], 0x18}], 0x1}, 0x300)

2.565034221s ago: executing program 1 (id=1398):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002000)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYRES16=r1, @ANYBLOB="0100000000000000000007000000080001006e00000008000300", @ANYRES32=r3, @ANYBLOB="0c0099000000000000000000050053000100000014000400776c616e310000000000000000000000140006"], 0x60}}, 0x0)

2.475656827s ago: executing program 4 (id=1400):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, 0x0, 0x0)

2.323514365s ago: executing program 2 (id=1401):
ioctl$AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, &(0x7f0000000000)=0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0xb, &(0x7f00000000c0)=ANY=[@ANYRES16, @ANYRESOCT=0x0], &(0x7f0000000040)='syzkaller\x00', 0x1, 0xffffffffffffff73, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0xc7, '\x00', 0x86dc, 0x3, 0x100, 0xc}}}}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x9}]}, 0x50}}, 0x4000010)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00'}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_int(r4, &(0x7f0000000200)=0x1, 0x12)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r4, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_int(r5, 0x6, 0x1b, &(0x7f0000000040)=0xa5c, 0x4)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000080)={0x1f, 0x3, 0x3}, 0x6)
sendmsg$AUDIT_GET(r0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x10, 0x3e8, 0x100, 0x70bd2d, 0x25dfdbfc, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8040}, 0x40804)
write(r6, &(0x7f0000000340)="41000000010001", 0x7)
getsockname$packet(r3, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000200)=0x14)

2.247322765s ago: executing program 1 (id=1402):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000380)={'syzkaller1\x00', 0xc201})
socket$packet(0x11, 0x2, 0x300)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
recvmmsg(r0, &(0x7f00000014c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=""/32, 0x20}, 0x81}], 0x1, 0x10120, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000500000ab8000000030a010100000000000000000100000098000c00f39b72ed409225bc736423f4734e5024459a5c1e9581dcef9b15aa61919502cf978bea335983ef036433a817109d6ff2f9471810eb69e2b1280b33b97224d5803b84fc776885d27ff6936215c53f9c73db37f1aedb69828f2daec5b2"], 0x124}}, 0x40)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x4, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x19, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r3, &(0x7f00000002c0)={0x1f, 0x0, @any, 0xfffa}, 0xe)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuset.effective_mems\x00', 0x275a, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x6, 0xe, &(0x7f0000002300)=ANY=[@ANYBLOB], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10}, 0x94)
pipe(&(0x7f0000000100))
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={0x1c, 0x0, 0x211, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x48800}, 0x10)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r6, &(0x7f00000005c0)=ANY=[@ANYBLOB="0e00000002"], 0x8)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="23dc1b7e3faae60e6230c24027fd8d40000000100003ffff3f00040000000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYBLOB], 0x40}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x40000)

2.1394341s ago: executing program 2 (id=1404):
socket$alg(0x26, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x10, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$kcm(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000d00)=@nat={'nat\x00', 0x19, 0x1, 0x21e, [0x200000002300, 0x0, 0x0, 0x2000000024be, 0x2000000024ee], 0x0, 0x0, &(0x7f0000002300)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff01000000050000006b2000000016636169663000000000000000e3ff00007665746831000000000000000000000073797a5f74756e0039da0000f8ff0000000076657468310000000000000000001000aaaaaaaaaa3d000000ff00000180c2000003ff00ffffff00ae000000560100008e0100006f776e6572000000000000000000000000000000000000000000000000000000180000000000", @ANYRES32, @ANYRES32, @ANYRES32=0xee00, @ANYRES32, @ANYBLOB="02040000000000004e464c4f4700000000000000000000000000000000000000000000000000000050000000000000000100000007000300000000005cae641872319dfae5a988272763a36abcf1f74cfd4bf988531a30a528c1c044813d8205fd8b1fdf1c2ccd79b5fb7f9e096fbd1c7eeee4b6646c0b2fc39d3fe20000000072656469726563740000000000000000000000000000000000000000000000000800000000000000feffffff00000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000ffffffffffff0000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000001000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000001000000feffffff00000000"]}, 0x296)
r1 = socket(0x10, 0x3, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = socket$nl_route(0x10, 0x3, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r4)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r6=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f0000000440)={r6, 0x5}, &(0x7f0000000180)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000400)={r6, 0x7fff, 0x8, 0xfffffff3, 0x80, 0x1000000}, 0x14)
recvmsg(r2, &(0x7f00000003c0)={&(0x7f0000000080)=@sco={0x1f, @none}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000100)=""/89, 0x59}, {&(0x7f0000000180)=""/134, 0x86}, {&(0x7f0000000240)=""/8, 0x8}], 0x3, &(0x7f0000000300)=""/141, 0x8d}, 0x40002063)
ioctl$BTRFS_IOC_INO_PATHS(r3, 0xc0389423, &(0x7f0000000040)={0xfffb, 0x40, [0x8000000000000000, 0x8000000000000000, 0x6, 0xf31b], &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002211c0000001f000000060001000000000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

2.117453869s ago: executing program 4 (id=1405):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000611224000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_audit(0x10, 0x3, 0x9)
socket$l2tp6(0xa, 0x2, 0x73)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={0xffffffffffffffff, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000300)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x6, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xe9, &(0x7f00000003c0)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000400), &(0x7f0000000440), 0x8, 0x91, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TEST(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000000b0601"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0xc00c0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='freezer.parent_freezing\x00', 0x275a, 0x0)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
mmap(&(0x7f00005d3000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
mmap(&(0x7f00004a3000/0x1000)=nil, 0x1000, 0x0, 0x13, r2, 0x4c84c000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc8, 0xc8, 0x4, [@enum64={0xe, 0x4, 0x0, 0x13, 0x0, 0xe, [{0xfffffffe, 0x1, 0x80000000}, {0x8, 0xfffffffd, 0x1}, {0x10, 0x902, 0x625}, {0xb, 0x7, 0xfffffffd}]}, @float={0xf, 0x0, 0x0, 0x10, 0x2}, @fwd={0xa}, @union={0x5, 0x2, 0x0, 0x5, 0x0, 0x2, [{0xc, 0x0, 0x7fff}, {0x9, 0x4, 0x4}]}, @int={0x9, 0x0, 0x0, 0x1, 0x0, 0xa, 0x0, 0x2b, 0x1}, @volatile={0xe, 0x0, 0x0, 0x9, 0x2}, @fwd={0x3}, @var={0x8, 0x0, 0x0, 0xe, 0x2, 0x2}, @func={0x5, 0x0, 0x0, 0xc, 0x3}, @restrict={0x6, 0x0, 0x0, 0xb, 0x1}]}, {0x0, [0x5f, 0x5f]}}, &(0x7f0000000140)=""/49, 0xe4, 0x31, 0x1, 0x6, 0x10000, @value=r2}, 0x28)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r5, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'wrr\x00', 0x38, 0x84, 0x47}, 0x2c)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=@newqdisc={0x24, 0x25, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0xfff8}}}, 0x24}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x4, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x40000}, [@call={0x85, 0x0, 0x0, 0x7a}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r8, 0x1, 0x32, &(0x7f0000000640)=r7, 0x4)
sendmsg$unix(r9, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0xc000090)
syz_genetlink_get_family_id$tipc(&(0x7f00000004c0), r1)
write$cgroup_netprio_ifpriomap(r2, &(0x7f0000000680)={'ipvlan1', 0x32, 0x39}, 0xa)
sendmsg$AUDIT_TRIM(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x3f6, 0x10, 0x70bd27, 0x25dfdbfc, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x20cd}, 0x2)

1.64293156s ago: executing program 3 (id=1406):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000004700)=""/4097, 0x1001}, {&(0x7f0000000840)=""/4085, 0xff5}, {&(0x7f0000002500)=""/4137, 0x1029}, {&(0x7f0000000200)=""/115, 0x73}, {&(0x7f0000000780)=""/190, 0xbe}], 0x5}, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x99}]}, 0x28}}, 0x0)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r5, 0x84, 0xc, &(0x7f0000000480)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
r7 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r7, &(0x7f0000000cc0)=[{{&(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000180)="e1", 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r7, 0x84, 0xa, &(0x7f0000000340)={0x2, 0xfff, 0x1, 0x2, 0x100, 0x80, 0x8000, 0x7, r6}, 0x20)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r8=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r8, 0x8905, &(0x7f0000000340)={'pim6reg0\x00', @remote})
ioctl$FS_IOC_GETVERSION(r2, 0x80087601, &(0x7f0000000340))
sendmsg$inet(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f0000000d80)="170000007a006bcd9e3fe3dc6e08170007000054250000", 0x17}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x7, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r9}, {}, {0x85, 0x0, 0x0, 0x89}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f0000000080), 0x4)
r10 = socket$nl_route(0x10, 0x3, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r11, 0x8933, &(0x7f00000003c0)={'batadv_slave_1\x00', <r12=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@delchain={0x24, 0x5f, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r12, {}, {0x5, 0x2}, {0x1, 0xe}}}, 0x24}}, 0x0)
sendmsg$nl_route(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@dellink={0x20, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r12, 0x10820, 0x400}}, 0x20}}, 0x4084)

1.279499523s ago: executing program 1 (id=1407):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1d64, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f0000000400)=[{{0x0, 0xf5ffffff, 0x0, 0x0, 0x0, 0x4000000}, 0xf5ff}], 0xf00, 0x0, 0x0)
shutdown(r2, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700000095"], &(0x7f0000000080)='GPL\x00'}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r5, <r7=>0xffffffffffffffff}, &(0x7f0000000800), &(0x7f0000000840)=r6}, 0x17)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000a00)=ANY=[@ANYRES32=r6, @ANYRES64=r4, @ANYBLOB="34810e0517a53638d8a25bc66242bf8580433caaa8d0f6900a4d437f6de3ede889a8bb42f15f33f739", @ANYRES32, @ANYRES64=r7, @ANYRESDEC, @ANYBLOB="5bc8bfa3178ce76b5c2a014efd446afcbf55f8dd679c8c1d79f3dc5d8c3a44ed9b085986ddf6cd9810c6a6a10f3c41e8080a625f484b0abf31192d4a0c50389a1db5483f312d9faa65ee2bbaab29a10c5ec199f2a97634f8ca782d6694e01c6e3429acc79cdccf9b93cad4ca5ba8a016f4aa23dd6caab780d5f130d8db801fad3be3207b954965a69d1499692a47356dc61897f8cc69e350febf9a6d3088c88a3dce5b0485f35c3110a7601d7739aee14c7f7f6cbf1e33cfd64259d1bc691bcffe1d1982a394fb44ed513975fe652678d5ce57f9b54ecd9045c02d86e82d247338"], &(0x7f0000000080)='syzkaller\x00', 0x3ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r8, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r3, 0x0, 0x3c, 0x72, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xd8, 0xa0, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b710e9246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fde4303d5f2b1e63e9e52ae4b197fd72de1f71801e1f9f1369d1f530", &(0x7f0000000280)="bf049fd184f7b03c21d9bcddc4eef9ebb6a0da3eb91c56454e873dd7336ccf21a1eeb8da7adf80d6e06ef46c7f36222fadaed2103c286468b3f44adee51445bd1bedf8fcc1c0b9fdc8b3829b1bf0c9d2d409cdecb12ad033e299c029331993ae9760345bf7feb91ee96b0eee19454ad3dbce5019b68c114ff1921a9b4665744c7784ac6736101a70592d83c448a84c31ec60bb901d96ea99471d823ee5233188", 0x0, 0x8000}, 0x50)
r9 = socket$xdp(0x2c, 0x3, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x2)
sendmsg$NFT_MSG_GETCHAIN(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x488c4)
close(r10)
setsockopt$XDP_TX_RING(r9, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r11, 0x400448cb, 0x0)
r12 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r12, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r12, 0x401054d5, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x60, 0x4, 0xfd}]})
r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r13, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
socket$inet(0x2, 0x2, 0x1000)
write(r13, &(0x7f0000000040)="05000000010000", 0x7)

1.202969173s ago: executing program 3 (id=1408):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$SIOCRSGL2CALL(r0, 0x89e5, &(0x7f0000000140))
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x40201, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000380)={'syzkaller1\x00', 0xc201})
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = socket$unix(0x1, 0x2, 0x0)
sendto$unix(r3, 0x0, 0x803e, 0x0, &(0x7f0000000240)=@file={0x1, './file0\x00'}, 0x6e)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0xfffe, 0x6}, 0x4)
setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x6}]}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000600)={0x0, 0x49, &(0x7f0000000040)=[{&(0x7f0000000340)="2e00000010008188e6b62aa73f72cc9f0ba1f848390000005e120602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x20000840)
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
socket(0x2, 0x80805, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x80000001, '\x00', 0x0, 0x0}, 0x48)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
shutdown(r6, 0x0)
sendmsg$inet(r6, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0xc0)

1.175143656s ago: executing program 2 (id=1409):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000040000000c"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, 0x0, 0x800)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="6c0100001000130700000000fcdbdf25200100000120010000000000000000000000000001000000004e210002020000006c00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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"], 0x16c}, 0x1, 0x0, 0x0, 0x880}, 0x0)

1.013008341s ago: executing program 2 (id=1410):
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x28012, r2, 0x0)
mmap(&(0x7f00009c5000/0x1000)=nil, 0x1000, 0x3, 0x28012, r2, 0x0)
mmap(&(0x7f0000551000/0x2000)=nil, 0x2000, 0x0, 0x12, r1, 0x15015000)
mmap(&(0x7f0000ae0000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r0, 0x0, 0x0, 0x80800)
setsockopt$sock_int(r3, 0x1, 0x20, &(0x7f0000000940)=0x1000008, 0x4)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)

917.095989ms ago: executing program 2 (id=1411):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048011}, 0xc800)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x7, 0x200004, 0x4, 0x2, 0x0, 0x1}, 0x50)
sendmsg$nl_route(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="000000000014c1ce2adf483400001c00128009000100626f6e64000000000c0002800800130002000000"], 0x3c}}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/syz0\x00', 0x1ff)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000800)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r5 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_int(r5, 0x0, 0xf, &(0x7f0000000100)=0xfffffffffffffff9, 0x4)
bind$inet(r5, &(0x7f0000000500)={0x2, 0x4e23, @multicast2}, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan1\x00'})
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r6, 0x29, 0x50, &(0x7f0000002a40)=""/157, &(0x7f0000002b00)=0x9d)
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="84000000", @ANYRES16=r4, @ANYBLOB="010000000000000000008100000008000300", @ANYRESDEC=r0, @ANYRES8=0x0], 0x84}, 0x1, 0x0, 0x0, 0x4000}, 0x22000805)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x3, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xd, 0x9, 0x0, 0x0, 0xffffff13}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x9}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {}, {}, {0x4, 0x0, 0x7}, {0x18, 0x2}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x5, 0x1, 0x7, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

761.676284ms ago: executing program 3 (id=1412):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002000)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYRES16=r1, @ANYBLOB="0100000000000000000007000000080001006e00000008000300", @ANYRES32=r3, @ANYBLOB="0c0099000000000000000000050053000100000014000400776c616e310000000000000000000000140006"], 0x60}}, 0x0)

636.568102ms ago: executing program 2 (id=1413):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}, {0x0}, {&(0x7f0000001480)}], 0x3)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00')
unshare(0x6a040000)
r1 = socket(0x8, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r2}, 0x18)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f0000000040)={0x0, 0x0})
ioctl$sock_netrom_SIOCADDRT(r1, 0x6180, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x8, &(0x7f0000000380)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @call={0x85, 0x0, 0x0, 0x7}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0x40305839, &(0x7f00000003c0)=ANY=[@ANYRES16=r3])
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$sock_timeval(r4, 0x1, 0x2, 0x0, 0x48)
getsockopt$inet6_mptcp_buf(r4, 0x11c, 0x4, &(0x7f0000000000)=""/152, &(0x7f00000000c0)=0x98)
r5 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$sock_inet_SIOCGIFPFLAGS(r5, 0x8935, &(0x7f0000000080)={'vxcan1\x00'})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040), 0xffffffff)
r6 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e24, 0x0, @loopback={0xff00000000000000}, 0x10000}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000240)='>', 0x1}], 0x1}}], 0x1, 0x40815)

483.538291ms ago: executing program 3 (id=1414):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="44000000090601020000f0ffffffffffffff00000900020073797a310000000005000100070000001c0007801800018014"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)

381.235653ms ago: executing program 3 (id=1415):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) (async)
r1 = socket$netlink(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14, 0x3ec}, [], {0x14, 0x3f8}}, 0x28}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) (async)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)

362.849323ms ago: executing program 3 (id=1416):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000440)='veno\x00', 0x5)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, 0x0, 0x0, 0x400c824, &(0x7f00000003c0)={0x2, 0x4e21, @loopback}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)

0s ago: executing program 1 (id=1417):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000380)={'syzkaller1\x00', 0xc201})
socket$packet(0x11, 0x2, 0x300)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
recvmmsg(r0, &(0x7f00000014c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=""/32, 0x20}, 0x81}], 0x1, 0x10120, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000500000ab8000000030a010100000000000000000100000098000c00f39b72ed409225bc736423f4734e5024459a5c1e9581dcef9b15aa61919502cf978bea335983ef036433a817109d6ff2f9471810eb69e2b1280b33b97224d5803b84fc776885d27ff6936215c53f9c73db37f1aedb69828f2daec5b2"], 0x124}}, 0x40)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x4, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x19, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r3, &(0x7f00000002c0)={0x1f, 0x0, @any, 0xfffa}, 0xe)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuset.effective_mems\x00', 0x275a, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x6, 0xe, &(0x7f0000002300)=ANY=[@ANYBLOB], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10}, 0x94)
pipe(&(0x7f0000000100))
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={0x1c, 0x0, 0x211, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x48800}, 0x10)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r6, &(0x7f00000005c0)=ANY=[@ANYBLOB="0e00000002"], 0x8)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="23dc1b7e3faae60e6230c24027fd8d40000000100003ffff3f00040000000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYBLOB], 0x40}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x40000)

kernel console output (not intermixed with test programs):

0kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  154.242783][ T8352] netlink: 8 bytes leftover after parsing attributes in process `syz.0.769'.
[  154.256096][ T8333] lowmem_reserve[]: 0 2500 2502 2502 2502
[  154.262333][ T8333] Node 0 DMA32 free:1401720kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:22484kB inactive_anon:0kB active_file:6760kB inactive_file:157380kB unevictable:1536kB writepending:1400kB present:3129332kB managed:2560932kB mlocked:0kB bounce:0kB free_pcp:42608kB local_pcp:24692kB free_cma:0kB
[  154.308298][ T8333] lowmem_reserve[]: 0 0 1 1 1
[  154.318735][ T8333] Node 0 Normal free:4kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1840kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  154.356080][ T8333] lowmem_reserve[]: 0 0 0 0 0
[  154.361490][ T8333] Node 1 Normal free:3897068kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:21936kB local_pcp:15088kB free_cma:0kB
[  154.405551][ T8333] lowmem_reserve[]: 0 0 0 0 0
[  154.410992][ T8333] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  154.425361][ T8333] Node 0 DMA32: 838*4kB (UM) 454*8kB (UME) 557*16kB (UME) 311*32kB (UME) 139*64kB (UME) 89*128kB (UME) 65*256kB (UM) 25*512kB (UME) 17*1024kB (UME) 9*2048kB (UM) 315*4096kB (UM) = 1401656kB
[  154.445264][ T8333] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  154.458011][ T8333] Node 1 Normal: 197*4kB (UM) 55*8kB (UME) 40*16kB (UME) 75*32kB (UME) 25*64kB (UM) 8*128kB (UME) 4*256kB (UME) 4*512kB (UME) 2*1024kB (UM) 1*2048kB (E) 948*4096kB (M) = 3897068kB
[  154.477247][ T8333] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  154.487915][ T8333] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  154.498355][ T8333] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  154.508675][ T8333] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  154.518928][ T8333] 42903 total pagecache pages
[  154.524077][ T8333] 0 pages in swap cache
[  154.528435][ T8333] Free swap  = 124996kB
[  154.533627][ T8333] Total swap = 124996kB
[  154.538022][ T8333] 2097051 pages RAM
[  154.542069][ T8333] 0 pages HighMem/MovableOnly
[  154.547480][ T8333] 424712 pages reserved
[  154.551720][ T8333] 0 pages cma reserved
[  154.817325][ T8367] netlink: 24 bytes leftover after parsing attributes in process `syz.0.774'.
[  154.912134][ T8372] netlink: 20 bytes leftover after parsing attributes in process `syz.2.776'.
[  155.162631][ T8384] netlink: 8 bytes leftover after parsing attributes in process `syz.1.782'.
[  155.183536][ T8384] netlink: 'syz.1.782': attribute type 30 has an invalid length.
[  155.205278][ T8384] netlink: 12 bytes leftover after parsing attributes in process `syz.1.782'.
[  155.237170][ T8382] netlink: 'syz.4.781': attribute type 1 has an invalid length.
[  155.263536][ T8382] netlink: 'syz.4.781': attribute type 1 has an invalid length.
[  155.287315][ T8388] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.783'.
[  155.359636][ T8387] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  155.375013][ T8392] FAULT_INJECTION: forcing a failure.
[  155.375013][ T8392] name failslab, interval 1, probability 0, space 0, times 0
[  155.398543][ T8392] CPU: 1 UID: 0 PID: 8392 Comm: syz.3.784 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  155.398580][ T8392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.398591][ T8392] Call Trace:
[  155.398599][ T8392]  <TASK>
[  155.398608][ T8392]  dump_stack_lvl+0x189/0x250
[  155.398638][ T8392]  ? __pfx____ratelimit+0x10/0x10
[  155.398659][ T8392]  ? __pfx_dump_stack_lvl+0x10/0x10
[  155.398683][ T8392]  ? __pfx__printk+0x10/0x10
[  155.398719][ T8392]  should_fail_ex+0x414/0x560
[  155.398747][ T8392]  should_failslab+0xa8/0x100
[  155.398768][ T8392]  __kmalloc_cache_noprof+0x70/0x3d0
[  155.398786][ T8392]  ? sctp_add_bind_addr+0x8c/0x370
[  155.398810][ T8392]  sctp_add_bind_addr+0x8c/0x370
[  155.398838][ T8392]  sctp_copy_local_addr_list+0x30b/0x4e0
[  155.398862][ T8392]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  155.398881][ T8392]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  155.398906][ T8392]  ? sctp_v4_is_any+0x35/0x60
[  155.398924][ T8392]  ? sctp_copy_one_addr+0x93/0x360
[  155.398947][ T8392]  sctp_bind_addr_copy+0xb3/0x3c0
[  155.398968][ T8392]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  155.398998][ T8392]  sctp_connect_new_asoc+0x2e0/0x690
[  155.399026][ T8392]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  155.399050][ T8392]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  155.399073][ T8392]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  155.399093][ T8392]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  155.399116][ T8392]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  155.399139][ T8392]  ? security_sctp_bind_connect+0x7e/0x2e0
[  155.399161][ T8392]  sctp_sendmsg+0x155c/0x2810
[  155.399197][ T8392]  ? __pfx_sctp_sendmsg+0x10/0x10
[  155.399223][ T8392]  ? aa_sk_perm+0x81e/0x950
[  155.399249][ T8392]  ? __pfx_aa_sk_perm+0x10/0x10
[  155.399273][ T8392]  ? sock_rps_record_flow+0x19/0x410
[  155.399294][ T8392]  ? inet_sendmsg+0x2f4/0x370
[  155.399311][ T8392]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  155.399336][ T8392]  __sock_sendmsg+0x19c/0x270
[  155.399360][ T8392]  __sys_sendto+0x3bd/0x520
[  155.399385][ T8392]  ? __pfx___sys_sendto+0x10/0x10
[  155.399404][ T8392]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  155.399440][ T8392]  ? __fget_files+0x3a0/0x420
[  155.399472][ T8392]  ? ksys_write+0x22a/0x250
[  155.399500][ T8392]  ? __pfx_ksys_write+0x10/0x10
[  155.399521][ T8392]  ? rcu_is_watching+0x15/0xb0
[  155.399556][ T8392]  __x64_sys_sendto+0xde/0x100
[  155.399582][ T8392]  do_syscall_64+0xfa/0x3b0
[  155.399601][ T8392]  ? lockdep_hardirqs_on+0x9c/0x150
[  155.399620][ T8392]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.399638][ T8392]  ? clear_bhb_loop+0x60/0xb0
[  155.399659][ T8392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.399676][ T8392] RIP: 0033:0x7f038778e929
[  155.399692][ T8392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.399708][ T8392] RSP: 002b:00007f03885d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  155.399728][ T8392] RAX: ffffffffffffffda RBX: 00007f03879b5fa0 RCX: 00007f038778e929
[  155.399741][ T8392] RDX: 0000000000000001 RSI: 00002000000004c0 RDI: 0000000000000003
[  155.399752][ T8392] RBP: 00007f03885d0090 R08: 00002000000001c0 R09: 0000000000000010
[  155.399764][ T8392] R10: 00000000000020c0 R11: 0000000000000246 R12: 0000000000000002
[  155.399775][ T8392] R13: 0000000000000000 R14: 00007f03879b5fa0 R15: 00007ffe636ef988
[  155.399805][ T8392]  </TASK>
[  155.840199][ T8397] FAULT_INJECTION: forcing a failure.
[  155.840199][ T8397] name failslab, interval 1, probability 0, space 0, times 0
[  155.853841][ T8397] CPU: 1 UID: 0 PID: 8397 Comm: syz.2.787 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  155.853867][ T8397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.853878][ T8397] Call Trace:
[  155.853885][ T8397]  <TASK>
[  155.853893][ T8397]  dump_stack_lvl+0x189/0x250
[  155.853922][ T8397]  ? __pfx____ratelimit+0x10/0x10
[  155.853941][ T8397]  ? __pfx_dump_stack_lvl+0x10/0x10
[  155.853964][ T8397]  ? __pfx__printk+0x10/0x10
[  155.853986][ T8397]  ? __pfx___might_resched+0x10/0x10
[  155.854011][ T8397]  ? fs_reclaim_acquire+0x7d/0x100
[  155.854036][ T8397]  should_fail_ex+0x414/0x560
[  155.854063][ T8397]  should_failslab+0xa8/0x100
[  155.854082][ T8397]  __kmalloc_noprof+0xcb/0x4f0
[  155.854098][ T8397]  ? tomoyo_encode+0x28b/0x550
[  155.854125][ T8397]  tomoyo_encode+0x28b/0x550
[  155.854153][ T8397]  tomoyo_realpath_from_path+0x58d/0x5d0
[  155.854177][ T8397]  ? tomoyo_domain+0xd9/0x130
[  155.854206][ T8397]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  155.854226][ T8397]  tomoyo_path_number_perm+0x1e8/0x5a0
[  155.854249][ T8397]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  155.854288][ T8397]  ? __lock_acquire+0xab9/0xd20
[  155.854332][ T8397]  ? __fget_files+0x2a/0x420
[  155.854355][ T8397]  ? __fget_files+0x2a/0x420
[  155.854372][ T8397]  ? __fget_files+0x3a0/0x420
[  155.854390][ T8397]  ? __fget_files+0x2a/0x420
[  155.854412][ T8397]  security_file_ioctl+0xcb/0x2d0
[  155.854434][ T8397]  __se_sys_ioctl+0x47/0x170
[  155.854461][ T8397]  do_syscall_64+0xfa/0x3b0
[  155.854480][ T8397]  ? lockdep_hardirqs_on+0x9c/0x150
[  155.854498][ T8397]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.854516][ T8397]  ? clear_bhb_loop+0x60/0xb0
[  155.854545][ T8397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.854562][ T8397] RIP: 0033:0x7f318338e929
[  155.854578][ T8397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.854593][ T8397] RSP: 002b:00007f3184130038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  155.854612][ T8397] RAX: ffffffffffffffda RBX: 00007f31835b5fa0 RCX: 00007f318338e929
[  155.854626][ T8397] RDX: 0000200000000a40 RSI: 0000000000008922 RDI: 0000000000000003
[  155.854638][ T8397] RBP: 00007f3184130090 R08: 0000000000000000 R09: 0000000000000000
[  155.854649][ T8397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.854659][ T8397] R13: 0000000000000000 R14: 00007f31835b5fa0 R15: 00007ffcdbd12c68
[  155.854690][ T8397]  </TASK>
[  155.854710][ T8397] ERROR: Out of memory at tomoyo_realpath_from_path.
[  156.262303][ T8408] __nla_validate_parse: 1 callbacks suppressed
[  156.262322][ T8408] netlink: 20 bytes leftover after parsing attributes in process `syz.2.790'.
[  156.273133][ T8410] FAULT_INJECTION: forcing a failure.
[  156.273133][ T8410] name failslab, interval 1, probability 0, space 0, times 0
[  156.335900][ T8410] CPU: 1 UID: 0 PID: 8410 Comm: syz.3.789 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  156.335926][ T8410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.335937][ T8410] Call Trace:
[  156.335946][ T8410]  <TASK>
[  156.335954][ T8410]  dump_stack_lvl+0x189/0x250
[  156.335983][ T8410]  ? __pfx____ratelimit+0x10/0x10
[  156.336004][ T8410]  ? __pfx_dump_stack_lvl+0x10/0x10
[  156.336029][ T8410]  ? __pfx__printk+0x10/0x10
[  156.336064][ T8410]  should_fail_ex+0x414/0x560
[  156.336092][ T8410]  should_failslab+0xa8/0x100
[  156.336113][ T8410]  __kmalloc_cache_noprof+0x70/0x3d0
[  156.336130][ T8410]  ? sctp_add_bind_addr+0x8c/0x370
[  156.336155][ T8410]  sctp_add_bind_addr+0x8c/0x370
[  156.336180][ T8410]  sctp_copy_local_addr_list+0x30b/0x4e0
[  156.336204][ T8410]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  156.336223][ T8410]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  156.336245][ T8410]  ? sctp_v6_is_any+0x64/0x80
[  156.336265][ T8410]  ? sctp_copy_one_addr+0x93/0x360
[  156.336287][ T8410]  sctp_bind_addr_copy+0xb3/0x3c0
[  156.336306][ T8410]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  156.336334][ T8410]  sctp_connect_new_asoc+0x2e0/0x690
[  156.336359][ T8410]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  156.336378][ T8410]  ? __local_bh_enable_ip+0x12d/0x1c0
[  156.336411][ T8410]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  156.336434][ T8410]  ? security_sctp_bind_connect+0x7e/0x2e0
[  156.336457][ T8410]  sctp_sendmsg+0x155c/0x2810
[  156.336493][ T8410]  ? __pfx_sctp_sendmsg+0x10/0x10
[  156.336520][ T8410]  ? aa_sk_perm+0x81e/0x950
[  156.336546][ T8410]  ? __pfx_aa_sk_perm+0x10/0x10
[  156.336569][ T8410]  ? sock_rps_record_flow+0x19/0x410
[  156.336592][ T8410]  ? inet_sendmsg+0x2f4/0x370
[  156.336615][ T8410]  __sock_sendmsg+0x19c/0x270
[  156.336638][ T8410]  ____sys_sendmsg+0x52d/0x830
[  156.336668][ T8410]  ? __pfx_____sys_sendmsg+0x10/0x10
[  156.336704][ T8410]  ? import_iovec+0x74/0xa0
[  156.336725][ T8410]  ___sys_sendmsg+0x21f/0x2a0
[  156.336752][ T8410]  ? __pfx____sys_sendmsg+0x10/0x10
[  156.336825][ T8410]  ? __fget_files+0x2a/0x420
[  156.336843][ T8410]  ? __fget_files+0x3a0/0x420
[  156.336875][ T8410]  __sys_sendmmsg+0x227/0x430
[  156.336906][ T8410]  ? __pfx___sys_sendmmsg+0x10/0x10
[  156.336927][ T8410]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  156.336979][ T8410]  ? ksys_write+0x22a/0x250
[  156.337007][ T8410]  ? __pfx_ksys_write+0x10/0x10
[  156.337029][ T8410]  ? rcu_is_watching+0x15/0xb0
[  156.337062][ T8410]  __x64_sys_sendmmsg+0xa0/0xc0
[  156.337089][ T8410]  do_syscall_64+0xfa/0x3b0
[  156.337108][ T8410]  ? lockdep_hardirqs_on+0x9c/0x150
[  156.337127][ T8410]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.337145][ T8410]  ? clear_bhb_loop+0x60/0xb0
[  156.337167][ T8410]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.337184][ T8410] RIP: 0033:0x7f038778e929
[  156.337201][ T8410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.337216][ T8410] RSP: 002b:00007f03885d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  156.337236][ T8410] RAX: ffffffffffffffda RBX: 00007f03879b5fa0 RCX: 00007f038778e929
[  156.337250][ T8410] RDX: 0000000000000002 RSI: 00002000000008c0 RDI: 0000000000000004
[  156.337261][ T8410] RBP: 00007f03885d0090 R08: 0000000000000000 R09: 0000000000000000
[  156.337273][ T8410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  156.337283][ T8410] R13: 0000000000000000 R14: 00007f03879b5fa0 R15: 00007ffe636ef988
[  156.337316][ T8410]  </TASK>
[  156.947385][ T8423] netlink: 'syz.0.794': attribute type 10 has an invalid length.
[  157.145136][ T8438] openvswitch: netlink: Key type 1692 is out of range max 32
[  157.193818][ T8436] netlink: 4 bytes leftover after parsing attributes in process `syz.4.798'.
[  157.204680][ T8439] FAULT_INJECTION: forcing a failure.
[  157.204680][ T8439] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.250666][ T8439] CPU: 1 UID: 0 PID: 8439 Comm: syz.2.801 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  157.250692][ T8439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  157.250703][ T8439] Call Trace:
[  157.250709][ T8439]  <TASK>
[  157.250718][ T8439]  dump_stack_lvl+0x189/0x250
[  157.250749][ T8439]  ? __pfx____ratelimit+0x10/0x10
[  157.250770][ T8439]  ? __pfx_dump_stack_lvl+0x10/0x10
[  157.250794][ T8439]  ? __pfx__printk+0x10/0x10
[  157.250826][ T8439]  should_fail_ex+0x414/0x560
[  157.250852][ T8439]  _copy_to_user+0x31/0xb0
[  157.250872][ T8439]  simple_read_from_buffer+0xe1/0x170
[  157.250895][ T8439]  proc_fail_nth_read+0x1df/0x250
[  157.250919][ T8439]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  157.250943][ T8439]  ? rw_verify_area+0x258/0x650
[  157.250967][ T8439]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  157.250989][ T8439]  vfs_read+0x1fd/0x980
[  157.251018][ T8439]  ? __pfx___mutex_lock+0x10/0x10
[  157.251039][ T8439]  ? __pfx_vfs_read+0x10/0x10
[  157.251064][ T8439]  ? __fget_files+0x2a/0x420
[  157.251088][ T8439]  ? __fget_files+0x3a0/0x420
[  157.251106][ T8439]  ? __fget_files+0x2a/0x420
[  157.251133][ T8439]  ksys_read+0x145/0x250
[  157.251160][ T8439]  ? __pfx_ksys_read+0x10/0x10
[  157.251181][ T8439]  ? rcu_is_watching+0x15/0xb0
[  157.251211][ T8439]  ? do_syscall_64+0xbe/0x3b0
[  157.251234][ T8439]  do_syscall_64+0xfa/0x3b0
[  157.251250][ T8439]  ? lockdep_hardirqs_on+0x9c/0x150
[  157.251268][ T8439]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.251283][ T8439]  ? clear_bhb_loop+0x60/0xb0
[  157.251304][ T8439]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.251320][ T8439] RIP: 0033:0x7f318338d33c
[  157.251336][ T8439] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  157.251350][ T8439] RSP: 002b:00007f3184130030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  157.251376][ T8439] RAX: ffffffffffffffda RBX: 00007f31835b5fa0 RCX: 00007f318338d33c
[  157.251389][ T8439] RDX: 000000000000000f RSI: 00007f31841300a0 RDI: 0000000000000004
[  157.251400][ T8439] RBP: 00007f3184130090 R08: 0000000000000000 R09: fffffffffffffdff
[  157.251413][ T8439] R10: 0000000040000062 R11: 0000000000000246 R12: 0000000000000001
[  157.251423][ T8439] R13: 0000000000000000 R14: 00007f31835b5fa0 R15: 00007ffcdbd12c68
[  157.251451][ T8439]  </TASK>
[  157.727469][ T8449] netlink: 28 bytes leftover after parsing attributes in process `syz.2.804'.
[  157.743378][ T8452] RDS: rds_bind could not find a transport for ::ffff:172.30.0.4, load rds_tcp or rds_rdma?
[  157.980051][ T8461] netlink: 20 bytes leftover after parsing attributes in process `syz.1.806'.
[  158.255297][ T8471] netlink: 12 bytes leftover after parsing attributes in process `syz.1.810'.
[  158.385835][ T8475] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  158.517577][ T8475] batman_adv: batadv0: Removing interface: batadv_slave_1
[  158.527906][ T8481] Cannot find del_set index 286 as target
[  158.563610][ T8477] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  158.649849][ T8477] batman_adv: batadv0: Removing interface: batadv_slave_1
[  158.900521][ T8495] netlink: 'syz.2.822': attribute type 1 has an invalid length.
[  158.923415][ T8495] netlink: 'syz.2.822': attribute type 1 has an invalid length.
[  159.668304][ T8525] netlink: 8 bytes leftover after parsing attributes in process `syz.2.827'.
[  159.817097][ T8527] netlink: 'syz.3.828': attribute type 17 has an invalid length.
[  159.826482][ T8527] netlink: 8 bytes leftover after parsing attributes in process `syz.3.828'.
[  160.020197][ T8530] netlink: 12 bytes leftover after parsing attributes in process `syz.0.829'.
[  160.126585][ T8535] netlink: 8 bytes leftover after parsing attributes in process `syz.3.832'.
[  160.278470][ T8542] netlink: 8 bytes leftover after parsing attributes in process `syz.4.833'.
[  160.293814][ T8543] netlink: 'syz.0.834': attribute type 1 has an invalid length.
[  160.312832][ T8544] Cannot find add_set index 0 as target
[  160.322137][ T8543] netlink: 'syz.0.834': attribute type 1 has an invalid length.
[  160.613470][ T8556] 8021q: adding VLAN 0 to HW filter on device bond0
[  160.621725][ T8556] 8021q: adding VLAN 0 to HW filter on device team0
[  160.637851][ T8556] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  161.292941][ T8576] Cannot find add_set index 0 as target
[  161.415323][ T8580] __nla_validate_parse: 1 callbacks suppressed
[  161.415340][ T8580] netlink: 8 bytes leftover after parsing attributes in process `syz.3.844'.
[  161.452360][ T8580] netlink: 24 bytes leftover after parsing attributes in process `syz.3.844'.
[  161.452369][ T8581] batadv_slave_1: entered promiscuous mode
[  161.468306][ T8581] batadv_slave_1: left promiscuous mode
[  161.488044][ T8584] netlink: 8 bytes leftover after parsing attributes in process `syz.0.846'.
[  161.503599][ T8578] IPVS: length: 24 != 16106127384
[  161.682243][ T8589] netlink: 'syz.1.849': attribute type 1 has an invalid length.
[  161.703781][ T8589] netlink: 'syz.1.849': attribute type 1 has an invalid length.
[  161.719458][ T8591] netlink: 'syz.4.852': attribute type 10 has an invalid length.
[  161.730434][ T8592] netlink: 8 bytes leftover after parsing attributes in process `syz.2.851'.
[  162.028260][ T8611] Cannot find del_set index 286 as target
[  163.023794][ T8637] netlink: 'syz.4.865': attribute type 3 has an invalid length.
[  163.027870][ T8634] policy can only be matched on NF_INET_PRE_ROUTING
[  163.054314][ T8634] unable to load match
[  163.079705][ T8638] netlink: 8 bytes leftover after parsing attributes in process `syz.0.864'.
[  163.259376][ T8647] netlink: 'syz.4.867': attribute type 10 has an invalid length.
[  163.592722][ T8656] netlink: 'syz.3.871': attribute type 12 has an invalid length.
[  163.745164][ T8663] Cannot find add_set index 0 as target
[  164.146907][ T8674] netlink: 4 bytes leftover after parsing attributes in process `syz.2.878'.
[  164.487292][ T8659] netlink: 8 bytes leftover after parsing attributes in process `syz.0.870'.
[  164.706680][ T8691] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  165.169314][ T8704] netlink: 4 bytes leftover after parsing attributes in process `syz.0.889'.
[  165.318209][ T8706] netlink: 104 bytes leftover after parsing attributes in process `syz.4.890'.
[  165.357123][ T8712] FAULT_INJECTION: forcing a failure.
[  165.357123][ T8712] name failslab, interval 1, probability 0, space 0, times 0
[  165.377871][ T8712] CPU: 0 UID: 0 PID: 8712 Comm: syz.0.891 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  165.377905][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  165.377916][ T8712] Call Trace:
[  165.377924][ T8712]  <TASK>
[  165.377932][ T8712]  dump_stack_lvl+0x189/0x250
[  165.377962][ T8712]  ? __pfx____ratelimit+0x10/0x10
[  165.377982][ T8712]  ? __pfx_dump_stack_lvl+0x10/0x10
[  165.378006][ T8712]  ? __pfx__printk+0x10/0x10
[  165.378037][ T8712]  should_fail_ex+0x414/0x560
[  165.378062][ T8712]  should_failslab+0xa8/0x100
[  165.378082][ T8712]  __kmalloc_cache_noprof+0x70/0x3d0
[  165.378099][ T8712]  ? sctp_add_bind_addr+0x8c/0x370
[  165.378123][ T8712]  sctp_add_bind_addr+0x8c/0x370
[  165.378148][ T8712]  sctp_copy_local_addr_list+0x30b/0x4e0
[  165.378172][ T8712]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  165.378192][ T8712]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  165.378213][ T8712]  ? sctp_v6_is_any+0x64/0x80
[  165.378235][ T8712]  ? sctp_copy_one_addr+0x93/0x360
[  165.378258][ T8712]  sctp_bind_addr_copy+0xb3/0x3c0
[  165.378280][ T8712]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  165.378310][ T8712]  sctp_connect_new_asoc+0x2e0/0x690
[  165.378336][ T8712]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  165.378362][ T8712]  ? __ipv6_addr_type+0x14d/0x2f0
[  165.378391][ T8712]  ? sctp_inet6_send_verify+0x6e/0x300
[  165.378409][ T8712]  ? sctp_endpoint_lookup_assoc+0xd1/0x260
[  165.378434][ T8712]  __sctp_connect+0x5ba/0xd50
[  165.378471][ T8712]  ? __pfx___sctp_connect+0x10/0x10
[  165.378506][ T8712]  sctp_inet_connect+0x12e/0x1e0
[  165.378531][ T8712]  __sys_connect+0x313/0x440
[  165.378552][ T8712]  ? __fget_files+0x3a0/0x420
[  165.378572][ T8712]  ? __pfx___sys_connect+0x10/0x10
[  165.378608][ T8712]  ? __pfx_ksys_write+0x10/0x10
[  165.378630][ T8712]  ? rcu_is_watching+0x15/0xb0
[  165.378664][ T8712]  __x64_sys_connect+0x7a/0x90
[  165.378687][ T8712]  do_syscall_64+0xfa/0x3b0
[  165.378707][ T8712]  ? lockdep_hardirqs_on+0x9c/0x150
[  165.378725][ T8712]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.378743][ T8712]  ? clear_bhb_loop+0x60/0xb0
[  165.378765][ T8712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.378783][ T8712] RIP: 0033:0x7fde9a58e929
[  165.378798][ T8712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.378813][ T8712] RSP: 002b:00007fde9b4c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  165.378833][ T8712] RAX: ffffffffffffffda RBX: 00007fde9a7b5fa0 RCX: 00007fde9a58e929
[  165.378847][ T8712] RDX: 000000000000001c RSI: 0000200000000100 RDI: 0000000000000003
[  165.378859][ T8712] RBP: 00007fde9b4c3090 R08: 0000000000000000 R09: 0000000000000000
[  165.378870][ T8712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  165.378886][ T8712] R13: 0000000000000000 R14: 00007fde9a7b5fa0 R15: 00007ffce1d45ee8
[  165.378917][ T8712]  </TASK>
[  165.746226][ T8710] netlink: 136 bytes leftover after parsing attributes in process `syz.2.892'.
[  165.860016][ T8714] netlink: 'syz.2.892': attribute type 3 has an invalid length.
[  165.912533][ T8720] Cannot find del_set index 286 as target
[  166.455010][ T8742] netlink: 'syz.1.902': attribute type 10 has an invalid length.
[  166.462752][ T8742] macvlan0: entered allmulticast mode
[  166.580946][ T8746] netlink: zone id is out of range
[  166.586406][ T8746] netlink: zone id is out of range
[  166.591973][ T8746] netlink: zone id is out of range
[  166.598740][ T8746] netlink: zone id is out of range
[  166.605093][ T8746] netlink: del zone limit has 4 unknown bytes
[  167.006681][ T8762] __nla_validate_parse: 1 callbacks suppressed
[  167.006699][ T8762] netlink: 12 bytes leftover after parsing attributes in process `syz.2.909'.
[  167.395613][ T8775] netlink: 'syz.3.914': attribute type 10 has an invalid length.
[  167.403664][ T8775] veth1_vlan: left allmulticast mode
[  167.436809][ T8777] FAULT_INJECTION: forcing a failure.
[  167.436809][ T8777] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.470650][ T8781] netlink: 'syz.0.917': attribute type 1 has an invalid length.
[  167.473568][ T8777] CPU: 0 UID: 0 PID: 8777 Comm: syz.1.916 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  167.473594][ T8777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  167.473605][ T8777] Call Trace:
[  167.473613][ T8777]  <TASK>
[  167.473620][ T8777]  dump_stack_lvl+0x189/0x250
[  167.473650][ T8777]  ? __pfx____ratelimit+0x10/0x10
[  167.473670][ T8777]  ? __pfx_dump_stack_lvl+0x10/0x10
[  167.473704][ T8777]  ? __pfx__printk+0x10/0x10
[  167.473723][ T8777]  ? __might_fault+0xb0/0x130
[  167.473759][ T8777]  should_fail_ex+0x414/0x560
[  167.473785][ T8777]  _copy_from_user+0x2d/0xb0
[  167.473804][ T8777]  ___sys_sendmsg+0x158/0x2a0
[  167.473830][ T8777]  ? __pfx____sys_sendmsg+0x10/0x10
[  167.473890][ T8777]  ? __fget_files+0x2a/0x420
[  167.473907][ T8777]  ? __fget_files+0x3a0/0x420
[  167.473936][ T8777]  __x64_sys_sendmsg+0x19b/0x260
[  167.473962][ T8777]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  167.473995][ T8777]  ? __pfx_ksys_write+0x10/0x10
[  167.474017][ T8777]  ? rcu_is_watching+0x15/0xb0
[  167.474046][ T8777]  ? do_syscall_64+0xbe/0x3b0
[  167.474070][ T8777]  do_syscall_64+0xfa/0x3b0
[  167.474087][ T8777]  ? lockdep_hardirqs_on+0x9c/0x150
[  167.474106][ T8777]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.474122][ T8777]  ? clear_bhb_loop+0x60/0xb0
[  167.474142][ T8777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.474159][ T8777] RIP: 0033:0x7fcc3d98e929
[  167.474176][ T8777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.474190][ T8777] RSP: 002b:00007fcc3e816038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  167.474209][ T8777] RAX: ffffffffffffffda RBX: 00007fcc3dbb5fa0 RCX: 00007fcc3d98e929
[  167.474222][ T8777] RDX: 0000000000000080 RSI: 0000200000000980 RDI: 0000000000000003
[  167.474233][ T8777] RBP: 00007fcc3e816090 R08: 0000000000000000 R09: 0000000000000000
[  167.474243][ T8777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  167.474254][ T8777] R13: 0000000000000000 R14: 00007fcc3dbb5fa0 R15: 00007ffcb6697108
[  167.474282][ T8777]  </TASK>
[  167.478883][ T8784] Cannot find add_set index 0 as target
[  167.527208][ T8781] netlink: 'syz.0.917': attribute type 1 has an invalid length.
[  167.577782][ T8785] RDS: rds_bind could not find a transport for ::ffff:172.30.0.3, load rds_tcp or rds_rdma?
[  167.751937][ T8789] smc: net device bond0 applied user defined pnetid SYZ2
[  167.843835][ T8793] netlink: 12 bytes leftover after parsing attributes in process `syz.3.920'.
[  167.881355][ T8793] FAULT_INJECTION: forcing a failure.
[  167.881355][ T8793] name failslab, interval 1, probability 0, space 0, times 0
[  167.934815][ T8793] CPU: 0 UID: 0 PID: 8793 Comm: syz.3.920 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  167.934842][ T8793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  167.934853][ T8793] Call Trace:
[  167.934861][ T8793]  <TASK>
[  167.934869][ T8793]  dump_stack_lvl+0x189/0x250
[  167.934900][ T8793]  ? __pfx____ratelimit+0x10/0x10
[  167.934920][ T8793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  167.934945][ T8793]  ? __pfx__printk+0x10/0x10
[  167.934968][ T8793]  ? __pfx___might_resched+0x10/0x10
[  167.934992][ T8793]  ? fs_reclaim_acquire+0x7d/0x100
[  167.935017][ T8793]  should_fail_ex+0x414/0x560
[  167.935043][ T8793]  ? nf_hook_entries_grow+0x27c/0x710
[  167.935062][ T8793]  should_failslab+0xa8/0x100
[  167.935083][ T8793]  __kvmalloc_node_noprof+0x161/0x5f0
[  167.935101][ T8793]  ? nf_hook_entries_grow+0x27c/0x710
[  167.935120][ T8793]  ? __pfx___mutex_lock+0x10/0x10
[  167.935145][ T8793]  nf_hook_entries_grow+0x27c/0x710
[  167.935181][ T8793]  __nf_register_net_hook+0x2c9/0x930
[  167.935213][ T8793]  nf_register_net_hook+0x8a/0x190
[  167.935235][ T8793]  nf_tables_register_hook+0x216/0x440
[  167.935268][ T8793]  nf_tables_newchain+0x2469/0x2900
[  167.935310][ T8793]  ? __pfx_nf_tables_newchain+0x10/0x10
[  167.935373][ T8793]  ? nfnl_pernet+0x23/0x240
[  167.935408][ T8793]  ? __nla_parse+0x40/0x60
[  167.935437][ T8793]  nfnetlink_rcv+0x1132/0x2520
[  167.935498][ T8793]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  167.935543][ T8793]  ? ref_tracker_free+0x63a/0x7d0
[  167.935599][ T8793]  ? __netlink_deliver_tap+0x807/0x850
[  167.935630][ T8793]  ? netlink_deliver_tap+0x2e/0x1b0
[  167.935656][ T8793]  ? netlink_deliver_tap+0x2e/0x1b0
[  167.935683][ T8793]  netlink_unicast+0x75b/0x8d0
[  167.935716][ T8793]  netlink_sendmsg+0x805/0xb30
[  167.935747][ T8793]  ? __pfx_netlink_sendmsg+0x10/0x10
[  167.935772][ T8793]  ? aa_sock_msg_perm+0x94/0x160
[  167.935796][ T8793]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  167.935818][ T8793]  ? __pfx_netlink_sendmsg+0x10/0x10
[  167.935840][ T8793]  __sock_sendmsg+0x219/0x270
[  167.935863][ T8793]  ____sys_sendmsg+0x505/0x830
[  167.935894][ T8793]  ? __pfx_____sys_sendmsg+0x10/0x10
[  167.935929][ T8793]  ? import_iovec+0x74/0xa0
[  167.935951][ T8793]  ___sys_sendmsg+0x21f/0x2a0
[  167.935978][ T8793]  ? __pfx____sys_sendmsg+0x10/0x10
[  167.936040][ T8793]  ? __fget_files+0x2a/0x420
[  167.936059][ T8793]  ? __fget_files+0x3a0/0x420
[  167.936087][ T8793]  __x64_sys_sendmsg+0x19b/0x260
[  167.936114][ T8793]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  167.936147][ T8793]  ? __pfx_ksys_write+0x10/0x10
[  167.936169][ T8793]  ? rcu_is_watching+0x15/0xb0
[  167.936200][ T8793]  ? do_syscall_64+0xbe/0x3b0
[  167.936225][ T8793]  do_syscall_64+0xfa/0x3b0
[  167.936243][ T8793]  ? lockdep_hardirqs_on+0x9c/0x150
[  167.936261][ T8793]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.936278][ T8793]  ? clear_bhb_loop+0x60/0xb0
[  167.936300][ T8793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.936317][ T8793] RIP: 0033:0x7f038778e929
[  167.936333][ T8793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.936349][ T8793] RSP: 002b:00007f03885d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  167.936368][ T8793] RAX: ffffffffffffffda RBX: 00007f03879b5fa0 RCX: 00007f038778e929
[  167.936381][ T8793] RDX: 0000000024000010 RSI: 0000200000000080 RDI: 0000000000000003
[  167.936392][ T8793] RBP: 00007f03885d0090 R08: 0000000000000000 R09: 0000000000000000
[  167.936402][ T8793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  167.936412][ T8793] R13: 0000000000000000 R14: 00007f03879b5fa0 R15: 00007ffe636ef988
[  167.936444][ T8793]  </TASK>
[  168.598106][ T8801] netlink: 8 bytes leftover after parsing attributes in process `syz.1.923'.
[  168.729072][ T8815] netlink: 60 bytes leftover after parsing attributes in process `syz.1.923'.
[  169.156224][ T8833] Cannot find del_set index 286 as target
[  169.753606][ T8871] netlink: 'syz.4.942': attribute type 1 has an invalid length.
[  169.787835][ T8871] netlink: 'syz.4.942': attribute type 1 has an invalid length.
[  170.067622][ T8885] FAULT_INJECTION: forcing a failure.
[  170.067622][ T8885] name failslab, interval 1, probability 0, space 0, times 0
[  170.084606][ T8885] CPU: 0 UID: 0 PID: 8885 Comm: syz.3.945 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  170.084631][ T8885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  170.084643][ T8885] Call Trace:
[  170.084650][ T8885]  <TASK>
[  170.084657][ T8885]  dump_stack_lvl+0x189/0x250
[  170.084689][ T8885]  ? __pfx____ratelimit+0x10/0x10
[  170.084709][ T8885]  ? __pfx_dump_stack_lvl+0x10/0x10
[  170.084732][ T8885]  ? __pfx__printk+0x10/0x10
[  170.084767][ T8885]  should_fail_ex+0x414/0x560
[  170.084794][ T8885]  should_failslab+0xa8/0x100
[  170.084815][ T8885]  __kmalloc_cache_noprof+0x70/0x3d0
[  170.084831][ T8885]  ? sctp_add_bind_addr+0x8c/0x370
[  170.084856][ T8885]  sctp_add_bind_addr+0x8c/0x370
[  170.084880][ T8885]  sctp_copy_local_addr_list+0x30b/0x4e0
[  170.084902][ T8885]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  170.084922][ T8885]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  170.084942][ T8885]  ? sctp_v6_is_any+0x64/0x80
[  170.084964][ T8885]  ? sctp_copy_one_addr+0x93/0x360
[  170.084986][ T8885]  sctp_bind_addr_copy+0xb3/0x3c0
[  170.085006][ T8885]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  170.085036][ T8885]  sctp_connect_new_asoc+0x2e0/0x690
[  170.085062][ T8885]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  170.085086][ T8885]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  170.085108][ T8885]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  170.085129][ T8885]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  170.085152][ T8885]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  170.085181][ T8885]  ? security_sctp_bind_connect+0x7e/0x2e0
[  170.085203][ T8885]  sctp_sendmsg+0x155c/0x2810
[  170.085238][ T8885]  ? __pfx_sctp_sendmsg+0x10/0x10
[  170.085264][ T8885]  ? aa_sk_perm+0x81e/0x950
[  170.085290][ T8885]  ? __pfx_aa_sk_perm+0x10/0x10
[  170.085314][ T8885]  ? sock_rps_record_flow+0x19/0x410
[  170.085335][ T8885]  ? inet_sendmsg+0x2f4/0x370
[  170.085352][ T8885]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  170.085377][ T8885]  __sock_sendmsg+0x19c/0x270
[  170.085400][ T8885]  __sys_sendto+0x3bd/0x520
[  170.085424][ T8885]  ? __pfx___sys_sendto+0x10/0x10
[  170.085443][ T8885]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  170.085479][ T8885]  ? __fget_files+0x3a0/0x420
[  170.085511][ T8885]  ? ksys_write+0x22a/0x250
[  170.085544][ T8885]  ? __pfx_ksys_write+0x10/0x10
[  170.085570][ T8885]  ? rcu_is_watching+0x15/0xb0
[  170.085600][ T8885]  __x64_sys_sendto+0xde/0x100
[  170.085626][ T8885]  do_syscall_64+0xfa/0x3b0
[  170.085645][ T8885]  ? lockdep_hardirqs_on+0x9c/0x150
[  170.085664][ T8885]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.085682][ T8885]  ? clear_bhb_loop+0x60/0xb0
[  170.085705][ T8885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.085722][ T8885] RIP: 0033:0x7f038778e929
[  170.085738][ T8885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.085753][ T8885] RSP: 002b:00007f03885d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  170.085773][ T8885] RAX: ffffffffffffffda RBX: 00007f03879b5fa0 RCX: 00007f038778e929
[  170.085786][ T8885] RDX: 0000000000000001 RSI: 0000200000847fff RDI: 0000000000000003
[  170.085798][ T8885] RBP: 00007f03885d0090 R08: 000020000005ffe4 R09: 000000000000001c
[  170.085810][ T8885] R10: 00000000000400c1 R11: 0000000000000246 R12: 0000000000000002
[  170.085821][ T8885] R13: 0000000000000000 R14: 00007f03879b5fa0 R15: 00007ffe636ef988
[  170.085853][ T8885]  </TASK>
[  170.830995][ T8906] netlink: 76 bytes leftover after parsing attributes in process `syz.3.953'.
[  170.868851][ T8906] netlink: 76 bytes leftover after parsing attributes in process `syz.3.953'.
[  171.019987][ T8919] netlink: 8 bytes leftover after parsing attributes in process `syz.2.957'.
[  171.110764][ T8922] Cannot find del_set index 286 as target
[  171.197683][ T8926] FAULT_INJECTION: forcing a failure.
[  171.197683][ T8926] name failslab, interval 1, probability 0, space 0, times 0
[  171.210736][ T8926] CPU: 1 UID: 0 PID: 8926 Comm: syz.1.959 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  171.210763][ T8926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  171.210774][ T8926] Call Trace:
[  171.210782][ T8926]  <TASK>
[  171.210790][ T8926]  dump_stack_lvl+0x189/0x250
[  171.210819][ T8926]  ? __pfx____ratelimit+0x10/0x10
[  171.210841][ T8926]  ? __pfx_dump_stack_lvl+0x10/0x10
[  171.210865][ T8926]  ? __pfx__printk+0x10/0x10
[  171.210889][ T8926]  ? __pfx___might_resched+0x10/0x10
[  171.210913][ T8926]  ? fs_reclaim_acquire+0x7d/0x100
[  171.210939][ T8926]  should_fail_ex+0x414/0x560
[  171.210966][ T8926]  should_failslab+0xa8/0x100
[  171.210987][ T8926]  __kmalloc_cache_noprof+0x70/0x3d0
[  171.211004][ T8926]  ? hash_ip_create+0x6d5/0x1410
[  171.211038][ T8926]  hash_ip_create+0x6d5/0x1410
[  171.211059][ T8926]  ? __lock_acquire+0xab9/0xd20
[  171.211097][ T8926]  ? __pfx_hash_ip_create+0x10/0x10
[  171.211122][ T8926]  ? __nla_parse+0x40/0x60
[  171.211144][ T8926]  ? __pfx_hash_ip_create+0x10/0x10
[  171.211167][ T8926]  ip_set_create+0xa94/0x1940
[  171.211186][ T8926]  ? ip_set_create+0x4a2/0x1940
[  171.211215][ T8926]  ? __pfx_ip_set_create+0x10/0x10
[  171.211271][ T8926]  nfnetlink_rcv_msg+0xb4d/0x1130
[  171.211290][ T8926]  ? nfnetlink_rcv_msg+0x20d/0x1130
[  171.211327][ T8926]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  171.211342][ T8926]  ? kasan_save_free_info+0x46/0x50
[  171.211420][ T8926]  netlink_rcv_skb+0x208/0x470
[  171.211443][ T8926]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  171.211463][ T8926]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  171.211496][ T8926]  ? bpf_lsm_capable+0x9/0x20
[  171.211512][ T8926]  ? security_capable+0x7e/0x2e0
[  171.211541][ T8926]  nfnetlink_rcv+0x26a/0x2520
[  171.211571][ T8926]  ? __dev_queue_xmit+0x1cd7/0x3a70
[  171.211601][ T8926]  ? kmem_cache_alloc_noprof+0x1c1/0x3c0
[  171.211630][ T8926]  ? __dev_queue_xmit+0x27e/0x3a70
[  171.211655][ T8926]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.211684][ T8926]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  171.211709][ T8926]  ? __pfx___dev_queue_xmit+0x10/0x10
[  171.211747][ T8926]  ? ref_tracker_free+0x63a/0x7d0
[  171.211767][ T8926]  ? __copy_skb_header+0xa7/0x550
[  171.211793][ T8926]  ? __pfx_ref_tracker_free+0x10/0x10
[  171.211814][ T8926]  ? __skb_clone+0x63/0x7a0
[  171.211842][ T8926]  ? __skb_clone+0x483/0x7a0
[  171.211873][ T8926]  ? skb_clone+0x246/0x3a0
[  171.211901][ T8926]  ? __netlink_deliver_tap+0x807/0x850
[  171.211921][ T8926]  ? netlink_deliver_tap+0x2e/0x1b0
[  171.211947][ T8926]  ? netlink_deliver_tap+0x2e/0x1b0
[  171.211966][ T8926]  ? netlink_deliver_tap+0x2e/0x1b0
[  171.211991][ T8926]  netlink_unicast+0x75b/0x8d0
[  171.212026][ T8926]  netlink_sendmsg+0x805/0xb30
[  171.212063][ T8926]  ? __pfx_netlink_sendmsg+0x10/0x10
[  171.212088][ T8926]  ? aa_sock_msg_perm+0x94/0x160
[  171.212112][ T8926]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  171.212132][ T8926]  ? __pfx_netlink_sendmsg+0x10/0x10
[  171.212154][ T8926]  __sock_sendmsg+0x219/0x270
[  171.212178][ T8926]  ____sys_sendmsg+0x505/0x830
[  171.212208][ T8926]  ? __pfx_____sys_sendmsg+0x10/0x10
[  171.212241][ T8926]  ? import_iovec+0x74/0xa0
[  171.212263][ T8926]  ___sys_sendmsg+0x21f/0x2a0
[  171.212289][ T8926]  ? __pfx____sys_sendmsg+0x10/0x10
[  171.212352][ T8926]  ? __fget_files+0x2a/0x420
[  171.212369][ T8926]  ? __fget_files+0x3a0/0x420
[  171.212399][ T8926]  __x64_sys_sendmsg+0x19b/0x260
[  171.212426][ T8926]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  171.212460][ T8926]  ? __pfx_ksys_write+0x10/0x10
[  171.212483][ T8926]  ? rcu_is_watching+0x15/0xb0
[  171.212513][ T8926]  ? do_syscall_64+0xbe/0x3b0
[  171.212538][ T8926]  do_syscall_64+0xfa/0x3b0
[  171.212556][ T8926]  ? lockdep_hardirqs_on+0x9c/0x150
[  171.212574][ T8926]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.212591][ T8926]  ? clear_bhb_loop+0x60/0xb0
[  171.212613][ T8926]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.212630][ T8926] RIP: 0033:0x7fcc3d98e929
[  171.212647][ T8926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.212662][ T8926] RSP: 002b:00007fcc3e816038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  171.212681][ T8926] RAX: ffffffffffffffda RBX: 00007fcc3dbb5fa0 RCX: 00007fcc3d98e929
[  171.212693][ T8926] RDX: 0000000004004044 RSI: 0000200000000100 RDI: 0000000000000007
[  171.212705][ T8926] RBP: 00007fcc3e816090 R08: 0000000000000000 R09: 0000000000000000
[  171.212716][ T8926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.212727][ T8926] R13: 0000000000000000 R14: 00007fcc3dbb5fa0 R15: 00007ffcb6697108
[  171.212757][ T8926]  </TASK>
[  172.223577][ T8953] netlink: 4 bytes leftover after parsing attributes in process `syz.2.965'.
[  172.471147][ T8960] netlink: 8 bytes leftover after parsing attributes in process `syz.0.968'.
[  172.932859][ T8976] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  173.097722][ T8984] Bluetooth: hci3: Opcode 0x0401 failed: -4
[  173.169621][ T8984] netlink: 176 bytes leftover after parsing attributes in process `syz.3.975'.
[  173.236679][ T8984] openvswitch: netlink: Flow key attr not present in new flow.
[  173.372535][ T8995] netlink: 8 bytes leftover after parsing attributes in process `syz.0.979'.
[  173.486440][ T9003] netlink: 8 bytes leftover after parsing attributes in process `syz.1.982'.
[  173.592388][ T9009] FAULT_INJECTION: forcing a failure.
[  173.592388][ T9009] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.627522][ T9009] CPU: 1 UID: 0 PID: 9009 Comm: syz.1.984 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  173.627551][ T9009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  173.627562][ T9009] Call Trace:
[  173.627569][ T9009]  <TASK>
[  173.627577][ T9009]  dump_stack_lvl+0x189/0x250
[  173.627604][ T9009]  ? __pfx____ratelimit+0x10/0x10
[  173.627622][ T9009]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.627645][ T9009]  ? __pfx__printk+0x10/0x10
[  173.627666][ T9009]  ? __might_fault+0xb0/0x130
[  173.627701][ T9009]  should_fail_ex+0x414/0x560
[  173.627725][ T9009]  _copy_from_iter+0x1db/0x16f0
[  173.627757][ T9009]  ? __pfx__copy_from_iter+0x10/0x10
[  173.627789][ T9009]  ? skb_put+0x11b/0x210
[  173.627858][ T9009]  hci_sock_sendmsg+0x422/0xef0
[  173.627889][ T9009]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  173.627912][ T9009]  ? aa_sock_msg_perm+0x94/0x160
[  173.627934][ T9009]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  173.627956][ T9009]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  173.627978][ T9009]  __sock_sendmsg+0x219/0x270
[  173.627999][ T9009]  sock_write_iter+0x258/0x330
[  173.628020][ T9009]  ? __pfx_sock_write_iter+0x10/0x10
[  173.628048][ T9009]  ? bpf_lsm_file_permission+0x9/0x20
[  173.628070][ T9009]  ? security_file_permission+0x75/0x290
[  173.628097][ T9009]  vfs_write+0x548/0xa90
[  173.628128][ T9009]  ? __pfx_sock_write_iter+0x10/0x10
[  173.628146][ T9009]  ? __pfx_vfs_write+0x10/0x10
[  173.628181][ T9009]  ? __fget_files+0x2a/0x420
[  173.628209][ T9009]  ksys_write+0x145/0x250
[  173.628236][ T9009]  ? __pfx_ksys_write+0x10/0x10
[  173.628257][ T9009]  ? rcu_is_watching+0x15/0xb0
[  173.628287][ T9009]  ? do_syscall_64+0xbe/0x3b0
[  173.628311][ T9009]  do_syscall_64+0xfa/0x3b0
[  173.628329][ T9009]  ? lockdep_hardirqs_on+0x9c/0x150
[  173.628348][ T9009]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.628365][ T9009]  ? clear_bhb_loop+0x60/0xb0
[  173.628387][ T9009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.628403][ T9009] RIP: 0033:0x7fcc3d98e929
[  173.628420][ T9009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.628434][ T9009] RSP: 002b:00007fcc3e816038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  173.628452][ T9009] RAX: ffffffffffffffda RBX: 00007fcc3dbb5fa0 RCX: 00007fcc3d98e929
[  173.628465][ T9009] RDX: 0000000000000007 RSI: 0000200000000340 RDI: 0000000000000004
[  173.628476][ T9009] RBP: 00007fcc3e816090 R08: 0000000000000000 R09: 0000000000000000
[  173.628487][ T9009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.628497][ T9009] R13: 0000000000000000 R14: 00007fcc3dbb5fa0 R15: 00007ffcb6697108
[  173.628526][ T9009]  </TASK>
[  174.197237][ T9026] netlink: 36 bytes leftover after parsing attributes in process `syz.4.991'.
[  174.259534][ T9031] netlink: 8 bytes leftover after parsing attributes in process `syz.1.993'.
[  175.014065][ T9061] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1004'.
[  175.127819][   T51] Bluetooth: hci3: command 0x0401 tx timeout
[  175.178788][ T9063] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1006'.
[  175.200871][ T9066] netlink: 'syz.4.1007': attribute type 1 has an invalid length.
[  175.293490][ T9071] FAULT_INJECTION: forcing a failure.
[  175.293490][ T9071] name failslab, interval 1, probability 0, space 0, times 0
[  175.330830][ T9071] CPU: 1 UID: 0 PID: 9071 Comm: syz.3.1008 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  175.330859][ T9071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  175.330871][ T9071] Call Trace:
[  175.330878][ T9071]  <TASK>
[  175.330886][ T9071]  dump_stack_lvl+0x189/0x250
[  175.330917][ T9071]  ? __pfx____ratelimit+0x10/0x10
[  175.330938][ T9071]  ? __pfx_dump_stack_lvl+0x10/0x10
[  175.330963][ T9071]  ? __pfx__printk+0x10/0x10
[  175.330998][ T9071]  should_fail_ex+0x414/0x560
[  175.331025][ T9071]  should_failslab+0xa8/0x100
[  175.331047][ T9071]  __kmalloc_cache_noprof+0x70/0x3d0
[  175.331064][ T9071]  ? sctp_add_bind_addr+0x8c/0x370
[  175.331087][ T9071]  sctp_add_bind_addr+0x8c/0x370
[  175.331111][ T9071]  sctp_copy_local_addr_list+0x30b/0x4e0
[  175.331134][ T9071]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  175.331153][ T9071]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  175.331174][ T9071]  ? sctp_v6_is_any+0x64/0x80
[  175.331196][ T9071]  ? sctp_copy_one_addr+0x93/0x360
[  175.331218][ T9071]  sctp_bind_addr_copy+0xb3/0x3c0
[  175.331239][ T9071]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  175.331269][ T9071]  sctp_connect_new_asoc+0x2e0/0x690
[  175.331295][ T9071]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  175.331321][ T9071]  ? __ipv6_addr_type+0x14d/0x2f0
[  175.331350][ T9071]  ? sctp_inet6_send_verify+0x6e/0x300
[  175.331368][ T9071]  ? sctp_endpoint_lookup_assoc+0xd1/0x260
[  175.331394][ T9071]  __sctp_connect+0x5ba/0xd50
[  175.331430][ T9071]  ? __pfx___sctp_connect+0x10/0x10
[  175.331465][ T9071]  sctp_inet_connect+0x12e/0x1e0
[  175.331489][ T9071]  __sys_connect+0x313/0x440
[  175.331510][ T9071]  ? __fget_files+0x3a0/0x420
[  175.331530][ T9071]  ? __pfx___sys_connect+0x10/0x10
[  175.331566][ T9071]  ? __pfx_ksys_write+0x10/0x10
[  175.331587][ T9071]  ? rcu_is_watching+0x15/0xb0
[  175.331621][ T9071]  __x64_sys_connect+0x7a/0x90
[  175.331644][ T9071]  do_syscall_64+0xfa/0x3b0
[  175.331663][ T9071]  ? lockdep_hardirqs_on+0x9c/0x150
[  175.331688][ T9071]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.331706][ T9071]  ? clear_bhb_loop+0x60/0xb0
[  175.331728][ T9071]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.331746][ T9071] RIP: 0033:0x7f038778e929
[  175.331762][ T9071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.331777][ T9071] RSP: 002b:00007f03885d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  175.331796][ T9071] RAX: ffffffffffffffda RBX: 00007f03879b5fa0 RCX: 00007f038778e929
[  175.331810][ T9071] RDX: 000000000000001c RSI: 0000200000000100 RDI: 0000000000000003
[  175.331821][ T9071] RBP: 00007f03885d0090 R08: 0000000000000000 R09: 0000000000000000
[  175.331833][ T9071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  175.331843][ T9071] R13: 0000000000000000 R14: 00007f03879b5fa0 R15: 00007ffe636ef988
[  175.331875][ T9071]  </TASK>
[  175.748148][ T9076] warn_alloc: 1 callbacks suppressed
[  175.748166][ T9076] syz.4.1012: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  175.768588][ T9076] CPU: 1 UID: 0 PID: 9076 Comm: syz.4.1012 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  175.768613][ T9076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  175.768633][ T9076] Call Trace:
[  175.768640][ T9076]  <TASK>
[  175.768649][ T9076]  dump_stack_lvl+0x189/0x250
[  175.768685][ T9076]  ? __pfx_dump_stack_lvl+0x10/0x10
[  175.768712][ T9076]  ? __pfx__printk+0x10/0x10
[  175.768732][ T9076]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  175.768752][ T9076]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  175.768774][ T9076]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  175.768797][ T9076]  warn_alloc+0x214/0x310
[  175.768817][ T9076]  ? stack_depot_save_flags+0x40/0x900
[  175.768844][ T9076]  ? __pfx_warn_alloc+0x10/0x10
[  175.768866][ T9076]  ? kasan_save_track+0x4f/0x80
[  175.768892][ T9076]  ? xskq_create+0x56/0x170
[  175.768909][ T9076]  ? xsk_init_queue+0xb0/0x110
[  175.768925][ T9076]  ? xsk_setsockopt+0x43f/0x710
[  175.768940][ T9076]  ? do_sock_setsockopt+0x25a/0x3e0
[  175.768961][ T9076]  ? __x64_sys_setsockopt+0x18b/0x220
[  175.768982][ T9076]  ? do_syscall_64+0xfa/0x3b0
[  175.769000][ T9076]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.769027][ T9076]  __vmalloc_node_range_noprof+0x125/0x12f0
[  175.769077][ T9076]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  175.769100][ T9076]  ? xskq_create+0x56/0x170
[  175.769119][ T9076]  ? __kasan_kmalloc+0x93/0xb0
[  175.769136][ T9076]  vmalloc_user_noprof+0xad/0xf0
[  175.769151][ T9076]  ? xskq_create+0xbf/0x170
[  175.769169][ T9076]  xskq_create+0xbf/0x170
[  175.769186][ T9076]  xsk_init_queue+0xb0/0x110
[  175.769208][ T9076]  xsk_setsockopt+0x43f/0x710
[  175.769229][ T9076]  ? __pfx_xsk_setsockopt+0x10/0x10
[  175.769244][ T9076]  ? __lock_acquire+0xab9/0xd20
[  175.769274][ T9076]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  175.769295][ T9076]  ? __pfx_xsk_setsockopt+0x10/0x10
[  175.769314][ T9076]  do_sock_setsockopt+0x25a/0x3e0
[  175.769339][ T9076]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  175.769367][ T9076]  ? __fget_files+0x2a/0x420
[  175.769397][ T9076]  __x64_sys_setsockopt+0x18b/0x220
[  175.769425][ T9076]  do_syscall_64+0xfa/0x3b0
[  175.769444][ T9076]  ? lockdep_hardirqs_on+0x9c/0x150
[  175.769464][ T9076]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.769481][ T9076]  ? clear_bhb_loop+0x60/0xb0
[  175.769502][ T9076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.769519][ T9076] RIP: 0033:0x7f5ff1f8e929
[  175.769535][ T9076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.769551][ T9076] RSP: 002b:00007f5ff2d8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  175.769571][ T9076] RAX: ffffffffffffffda RBX: 00007f5ff21b5fa0 RCX: 00007f5ff1f8e929
[  175.769582][ T9076] RDX: 0000000000000006 RSI: 000000000000011b RDI: 000000000000000a
[  175.769598][ T9076] RBP: 00007f5ff2010b39 R08: 0000000000000004 R09: 0000000000000000
[  175.769609][ T9076] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  175.769620][ T9076] R13: 0000000000000000 R14: 00007f5ff21b5fa0 R15: 00007ffc0aa13218
[  175.769659][ T9076]  </TASK>
[  175.769667][ T9076] Mem-Info:
[  176.118023][ T9076] active_anon:3696 inactive_anon:0 isolated_anon:0
[  176.118023][ T9076]  active_file:1706 inactive_file:39867 isolated_file:0
[  176.118023][ T9076]  unevictable:768 dirty:263 writeback:0
[  176.118023][ T9076]  slab_reclaimable:10648 slab_unreclaimable:96536
[  176.118023][ T9076]  mapped:29168 shmem:1366 pagetables:954
[  176.118023][ T9076]  sec_pagetables:0 bounce:0
[  176.118023][ T9076]  kernel_misc_reclaimable:0
[  176.118023][ T9076]  free:1328410 free_pcp:18467 free_cma:0
[  176.196199][ T9076] Node 0 active_anon:14884kB inactive_anon:0kB active_file:6824kB inactive_file:159268kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:116672kB dirty:1048kB writeback:0kB shmem:3928kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11648kB pagetables:3652kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  176.270301][ T9076] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:164kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  176.302679][ T9076] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  176.337982][ T9092] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1015'.
[  176.383172][ T9076] lowmem_reserve[]: 0 2500 2502 2502 2502
[  176.388978][ T9076] Node 0 DMA32 free:1401852kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:14736kB inactive_anon:0kB active_file:6824kB inactive_file:157428kB unevictable:1536kB writepending:1048kB present:3129332kB managed:2560932kB mlocked:0kB bounce:0kB free_pcp:58272kB local_pcp:25376kB free_cma:0kB
[  176.461908][ T9103] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  176.477450][ T9076] lowmem_reserve[]: 0 0 1 1 1
[  176.513465][ T9076] Node 0 Normal free:4kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1840kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  176.543533][ T9076] lowmem_reserve[]: 0 0 0 0 0
[  176.548565][ T9076] Node 1 Normal free:3897324kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:21680kB local_pcp:15088kB free_cma:0kB
[  176.621391][ T9076] lowmem_reserve[]: 0 0 0 0 0
[  176.626589][ T9076] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  176.670467][ T9076] Node 0 DMA32: 796*4kB (UME) 1032*8kB (UME) 564*16kB (UME) 507*32kB (UME) 93*64kB (UME) 80*128kB (UME) 60*256kB (UME) 21*512kB (UM) 14*1024kB (UME) 9*2048kB (UM) 315*4096kB (UM) = 1402000kB
[  176.731863][ T9076] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  176.759472][ T9076] Node 1 Normal: 197*4kB (UM) 55*8kB (UME) 40*16kB (UME) 77*32kB (UME) 28*64kB (UM) 8*128kB (UME) 4*256kB (UME) 4*512kB (UME) 2*1024kB (UM) 1*2048kB (E) 948*4096kB (M) = 3897324kB
[  176.782951][ T9076] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  176.796085][ T9076] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  176.827385][ T9076] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  176.853757][ T9076] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  176.879675][ T9076] 42936 total pagecache pages
[  176.886126][ T9076] 0 pages in swap cache
[  176.890296][ T9076] Free swap  = 124996kB
[  176.895366][ T9076] Total swap = 124996kB
[  176.899707][ T9076] 2097051 pages RAM
[  176.906765][ T9076] 0 pages HighMem/MovableOnly
[  176.911642][ T9076] 424712 pages reserved
[  176.917645][ T9076] 0 pages cma reserved
[  177.363858][ T9134] netlink: 'syz.3.1026': attribute type 1 has an invalid length.
[  177.432237][ T9138] RDS: rds_bind could not find a transport for ::ffff:172.30.0.3, load rds_tcp or rds_rdma?
[  177.451392][ T9134] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  177.469302][ T3461] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  177.469703][ T9134] 8021q: adding VLAN 0 to HW filter on device bond1
[  177.656234][   T36] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  178.113999][ T9155] __nla_validate_parse: 3 callbacks suppressed
[  178.114018][ T9155] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1031'.
[  178.156508][ T9158] netlink: 'syz.4.1030': attribute type 1 has an invalid length.
[  178.177892][ T9158] netlink: 120 bytes leftover after parsing attributes in process `syz.4.1030'.
[  178.226215][ T9158] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  178.551257][ T9174] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  178.677885][ T9174] batman_adv: batadv0: Removing interface: batadv_slave_1
[  179.151076][ T9204] RDS: rds_bind could not find a transport for ::ffff:172.30.0.5, load rds_tcp or rds_rdma?
[  179.215082][ T9208] Cannot find add_set index 0 as target
[  179.900782][ T9234] FAULT_INJECTION: forcing a failure.
[  179.900782][ T9234] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.920163][ T9234] CPU: 0 UID: 0 PID: 9234 Comm: syz.1.1056 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  179.920194][ T9234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  179.920204][ T9234] Call Trace:
[  179.920218][ T9234]  <TASK>
[  179.920226][ T9234]  dump_stack_lvl+0x189/0x250
[  179.920266][ T9234]  ? __pfx____ratelimit+0x10/0x10
[  179.920286][ T9234]  ? __pfx_dump_stack_lvl+0x10/0x10
[  179.920310][ T9234]  ? __pfx__printk+0x10/0x10
[  179.920329][ T9234]  ? __might_fault+0xb0/0x130
[  179.920364][ T9234]  should_fail_ex+0x414/0x560
[  179.920389][ T9234]  _copy_from_iter+0x1db/0x16f0
[  179.920415][ T9234]  ? rcu_is_watching+0x15/0xb0
[  179.920441][ T9234]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  179.920467][ T9234]  ? __pfx__copy_from_iter+0x10/0x10
[  179.920491][ T9234]  ? __build_skb_around+0x257/0x3e0
[  179.920516][ T9234]  ? netlink_sendmsg+0x642/0xb30
[  179.920533][ T9234]  ? skb_put+0x11b/0x210
[  179.920557][ T9234]  netlink_sendmsg+0x6b2/0xb30
[  179.920586][ T9234]  ? __pfx_netlink_sendmsg+0x10/0x10
[  179.920608][ T9234]  ? aa_sock_msg_perm+0x94/0x160
[  179.920631][ T9234]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  179.920651][ T9234]  ? __pfx_netlink_sendmsg+0x10/0x10
[  179.920672][ T9234]  __sock_sendmsg+0x219/0x270
[  179.920693][ T9234]  ____sys_sendmsg+0x505/0x830
[  179.920721][ T9234]  ? __pfx_____sys_sendmsg+0x10/0x10
[  179.920752][ T9234]  ? import_iovec+0x74/0xa0
[  179.920772][ T9234]  ___sys_sendmsg+0x21f/0x2a0
[  179.920797][ T9234]  ? __pfx____sys_sendmsg+0x10/0x10
[  179.920855][ T9234]  ? __fget_files+0x2a/0x420
[  179.920871][ T9234]  ? __fget_files+0x3a0/0x420
[  179.920898][ T9234]  __x64_sys_sendmsg+0x19b/0x260
[  179.920924][ T9234]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  179.920955][ T9234]  ? __pfx_ksys_write+0x10/0x10
[  179.920978][ T9234]  ? rcu_is_watching+0x15/0xb0
[  179.921006][ T9234]  ? do_syscall_64+0xbe/0x3b0
[  179.921030][ T9234]  do_syscall_64+0xfa/0x3b0
[  179.921047][ T9234]  ? lockdep_hardirqs_on+0x9c/0x150
[  179.921065][ T9234]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.921082][ T9234]  ? clear_bhb_loop+0x60/0xb0
[  179.921103][ T9234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.921119][ T9234] RIP: 0033:0x7fcc3d98e929
[  179.921143][ T9234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.921159][ T9234] RSP: 002b:00007fcc3e816038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  179.921183][ T9234] RAX: ffffffffffffffda RBX: 00007fcc3dbb5fa0 RCX: 00007fcc3d98e929
[  179.921196][ T9234] RDX: 0000000000000000 RSI: 0000200000000c40 RDI: 0000000000000004
[  179.921207][ T9234] RBP: 00007fcc3e816090 R08: 0000000000000000 R09: 0000000000000000
[  179.921224][ T9234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.921235][ T9234] R13: 0000000000000000 R14: 00007fcc3dbb5fa0 R15: 00007ffcb6697108
[  179.921264][ T9234]  </TASK>
[  180.606756][ T9255] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  180.817660][ T9270] Cannot find add_set index 0 as target
[  181.740560][ T9305] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1079'.
[  181.774882][ T9310] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1080'.
[  181.799628][ T9305] IPVS: set_ctl: invalid protocol: 47 224.0.0.1:20004
[  182.535836][ T9351] Cannot find add_set index 0 as target
[  182.705423][ T9357] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1094'.
[  182.720106][ T9357] IPv6: NLM_F_REPLACE set, but no existing node found!
[  182.799332][ T9362] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1096'.
[  182.815895][ T9362] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1096'.
[  182.837593][ T9362] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1096'.
[  183.005656][ T9371] netlink: 'syz.4.1098': attribute type 12 has an invalid length.
[  183.254073][ T9379] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  183.585089][ T9394] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1107'.
[  183.631385][ T9394] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1107'.
[  183.682392][ T9394] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1107'.
[  183.839773][ T9410] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1110'.
[  183.869225][ T9410] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1110'.
[  183.885536][ T9410] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1110'.
[  183.888584][ T9413] FAULT_INJECTION: forcing a failure.
[  183.888584][ T9413] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  183.911749][ T9413] CPU: 0 UID: 0 PID: 9413 Comm: syz.2.1112 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  183.911777][ T9413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  183.911788][ T9413] Call Trace:
[  183.911795][ T9413]  <TASK>
[  183.911803][ T9413]  dump_stack_lvl+0x189/0x250
[  183.911841][ T9413]  ? __pfx____ratelimit+0x10/0x10
[  183.911861][ T9413]  ? __pfx_dump_stack_lvl+0x10/0x10
[  183.911886][ T9413]  ? __pfx__printk+0x10/0x10
[  183.911904][ T9413]  ? __might_fault+0xb0/0x130
[  183.911939][ T9413]  should_fail_ex+0x414/0x560
[  183.911965][ T9413]  _copy_from_user+0x2d/0xb0
[  183.911982][ T9413]  __sys_connect+0x123/0x440
[  183.912002][ T9413]  ? __fget_files+0x3a0/0x420
[  183.912020][ T9413]  ? __pfx___sys_connect+0x10/0x10
[  183.912051][ T9413]  ? __pfx_ksys_write+0x10/0x10
[  183.912072][ T9413]  ? rcu_is_watching+0x15/0xb0
[  183.912102][ T9413]  __x64_sys_connect+0x7a/0x90
[  183.912123][ T9413]  do_syscall_64+0xfa/0x3b0
[  183.912141][ T9413]  ? lockdep_hardirqs_on+0x9c/0x150
[  183.912157][ T9413]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.912173][ T9413]  ? clear_bhb_loop+0x60/0xb0
[  183.912193][ T9413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.912208][ T9413] RIP: 0033:0x7f318338e929
[  183.912222][ T9413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.912236][ T9413] RSP: 002b:00007f3184130038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  183.912254][ T9413] RAX: ffffffffffffffda RBX: 00007f31835b5fa0 RCX: 00007f318338e929
[  183.912265][ T9413] RDX: 000000000000001c RSI: 0000200000000000 RDI: 0000000000000003
[  183.912277][ T9413] RBP: 00007f3184130090 R08: 0000000000000000 R09: 0000000000000000
[  183.912287][ T9413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.912297][ T9413] R13: 0000000000000000 R14: 00007f31835b5fa0 R15: 00007ffcdbd12c68
[  183.912326][ T9413]  </TASK>
[  184.218503][ T9422] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1113'.
[  184.313354][ T9428] Cannot find del_set index 286 as target
[  184.397457][ T9429] wireguard0: entered promiscuous mode
[  184.410733][ T9429] wireguard0: entered allmulticast mode
[  184.427205][ T9433] FAULT_INJECTION: forcing a failure.
[  184.427205][ T9433] name failslab, interval 1, probability 0, space 0, times 0
[  184.440565][ T9433] CPU: 1 UID: 0 PID: 9433 Comm: syz.0.1116 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  184.440592][ T9433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  184.440603][ T9433] Call Trace:
[  184.440610][ T9433]  <TASK>
[  184.440618][ T9433]  dump_stack_lvl+0x189/0x250
[  184.440648][ T9433]  ? __pfx____ratelimit+0x10/0x10
[  184.440668][ T9433]  ? __pfx_dump_stack_lvl+0x10/0x10
[  184.440692][ T9433]  ? __pfx__printk+0x10/0x10
[  184.440727][ T9433]  should_fail_ex+0x414/0x560
[  184.440755][ T9433]  should_failslab+0xa8/0x100
[  184.440775][ T9433]  __kmalloc_cache_noprof+0x70/0x3d0
[  184.440792][ T9433]  ? sctp_add_bind_addr+0x8c/0x370
[  184.440817][ T9433]  sctp_add_bind_addr+0x8c/0x370
[  184.440840][ T9433]  sctp_copy_local_addr_list+0x30b/0x4e0
[  184.440864][ T9433]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  184.440883][ T9433]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  184.440904][ T9433]  ? sctp_v6_is_any+0x64/0x80
[  184.440926][ T9433]  ? sctp_copy_one_addr+0x93/0x360
[  184.440949][ T9433]  sctp_bind_addr_copy+0xb3/0x3c0
[  184.440970][ T9433]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  184.440999][ T9433]  sctp_connect_new_asoc+0x2e0/0x690
[  184.441026][ T9433]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  184.441046][ T9433]  ? __local_bh_enable_ip+0x12d/0x1c0
[  184.441086][ T9433]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  184.441108][ T9433]  ? security_sctp_bind_connect+0x7e/0x2e0
[  184.441131][ T9433]  sctp_sendmsg+0x155c/0x2810
[  184.441166][ T9433]  ? __pfx_sctp_sendmsg+0x10/0x10
[  184.441191][ T9433]  ? aa_sk_perm+0x81e/0x950
[  184.441216][ T9433]  ? __pfx_aa_sk_perm+0x10/0x10
[  184.441239][ T9433]  ? sock_rps_record_flow+0x19/0x410
[  184.441261][ T9433]  ? inet_sendmsg+0x2f4/0x370
[  184.441283][ T9433]  __sock_sendmsg+0x19c/0x270
[  184.441307][ T9433]  ____sys_sendmsg+0x52d/0x830
[  184.441336][ T9433]  ? __pfx_____sys_sendmsg+0x10/0x10
[  184.441370][ T9433]  ? import_iovec+0x74/0xa0
[  184.441391][ T9433]  ___sys_sendmsg+0x21f/0x2a0
[  184.441421][ T9433]  ? __pfx____sys_sendmsg+0x10/0x10
[  184.441485][ T9433]  ? __fget_files+0x2a/0x420
[  184.441503][ T9433]  ? __fget_files+0x3a0/0x420
[  184.441533][ T9433]  __sys_sendmmsg+0x227/0x430
[  184.441563][ T9433]  ? __pfx___sys_sendmmsg+0x10/0x10
[  184.441584][ T9433]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  184.441633][ T9433]  ? ksys_write+0x22a/0x250
[  184.441660][ T9433]  ? __pfx_ksys_write+0x10/0x10
[  184.441681][ T9433]  ? rcu_is_watching+0x15/0xb0
[  184.441714][ T9433]  __x64_sys_sendmmsg+0xa0/0xc0
[  184.441741][ T9433]  do_syscall_64+0xfa/0x3b0
[  184.441760][ T9433]  ? lockdep_hardirqs_on+0x9c/0x150
[  184.441779][ T9433]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.441796][ T9433]  ? clear_bhb_loop+0x60/0xb0
[  184.441818][ T9433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.441835][ T9433] RIP: 0033:0x7fde9a58e929
[  184.441851][ T9433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.441865][ T9433] RSP: 002b:00007fde9b4c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  184.441884][ T9433] RAX: ffffffffffffffda RBX: 00007fde9a7b5fa0 RCX: 00007fde9a58e929
[  184.441896][ T9433] RDX: 0000000000000002 RSI: 00002000000008c0 RDI: 0000000000000004
[  184.441908][ T9433] RBP: 00007fde9b4c3090 R08: 0000000000000000 R09: 0000000000000000
[  184.441919][ T9433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  184.441929][ T9433] R13: 0000000000000000 R14: 00007fde9a7b5fa0 R15: 00007ffce1d45ee8
[  184.441961][ T9433]  </TASK>
[  185.090257][ T9444] netlink: 'syz.2.1120': attribute type 1 has an invalid length.
[  185.101105][ T9444] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1120'.
[  185.178159][ T9452] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1119'.
[  185.575009][ T9463] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1124'.
[  185.971599][ T9482] Cannot find del_set index 286 as target
[  186.578294][ T9516] vlan0: entered promiscuous mode
[  186.871916][ T9532] FAULT_INJECTION: forcing a failure.
[  186.871916][ T9532] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  186.938451][ T9532] CPU: 0 UID: 0 PID: 9532 Comm: syz.4.1144 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  186.938480][ T9532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  186.938491][ T9532] Call Trace:
[  186.938498][ T9532]  <TASK>
[  186.938506][ T9532]  dump_stack_lvl+0x189/0x250
[  186.938554][ T9532]  ? __pfx____ratelimit+0x10/0x10
[  186.938573][ T9532]  ? __pfx_dump_stack_lvl+0x10/0x10
[  186.938597][ T9532]  ? __pfx__printk+0x10/0x10
[  186.938623][ T9532]  ? __might_fault+0xb0/0x130
[  186.938657][ T9532]  should_fail_ex+0x414/0x560
[  186.938683][ T9532]  _copy_from_iter+0x1db/0x16f0
[  186.938711][ T9532]  ? rcu_is_watching+0x15/0xb0
[  186.938735][ T9532]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  186.938765][ T9532]  ? __pfx__copy_from_iter+0x10/0x10
[  186.938789][ T9532]  ? __build_skb_around+0x257/0x3e0
[  186.938856][ T9532]  ? netlink_sendmsg+0x642/0xb30
[  186.938876][ T9532]  ? skb_put+0x11b/0x210
[  186.938899][ T9532]  netlink_sendmsg+0x6b2/0xb30
[  186.938927][ T9532]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.938951][ T9532]  ? aa_sock_msg_perm+0x94/0x160
[  186.938974][ T9532]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  186.938995][ T9532]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.939016][ T9532]  __sock_sendmsg+0x219/0x270
[  186.939038][ T9532]  ____sys_sendmsg+0x505/0x830
[  186.939067][ T9532]  ? __pfx_____sys_sendmsg+0x10/0x10
[  186.939098][ T9532]  ? import_iovec+0x74/0xa0
[  186.939119][ T9532]  ___sys_sendmsg+0x21f/0x2a0
[  186.939145][ T9532]  ? __pfx____sys_sendmsg+0x10/0x10
[  186.939200][ T9532]  ? __fget_files+0x2a/0x420
[  186.939217][ T9532]  ? __fget_files+0x3a0/0x420
[  186.939246][ T9532]  __x64_sys_sendmsg+0x19b/0x260
[  186.939272][ T9532]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  186.939304][ T9532]  ? __pfx_ksys_write+0x10/0x10
[  186.939327][ T9532]  ? rcu_is_watching+0x15/0xb0
[  186.939356][ T9532]  ? do_syscall_64+0xbe/0x3b0
[  186.939380][ T9532]  do_syscall_64+0xfa/0x3b0
[  186.939398][ T9532]  ? lockdep_hardirqs_on+0x9c/0x150
[  186.939421][ T9532]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.939439][ T9532]  ? clear_bhb_loop+0x60/0xb0
[  186.939460][ T9532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.939477][ T9532] RIP: 0033:0x7f5ff1f8e929
[  186.939493][ T9532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.939508][ T9532] RSP: 002b:00007f5ff2d6c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  186.939527][ T9532] RAX: ffffffffffffffda RBX: 00007f5ff21b6080 RCX: 00007f5ff1f8e929
[  186.939540][ T9532] RDX: 0000000000000080 RSI: 0000200000000a00 RDI: 0000000000000004
[  186.939551][ T9532] RBP: 00007f5ff2d6c090 R08: 0000000000000000 R09: 0000000000000000
[  186.939562][ T9532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.939572][ T9532] R13: 0000000000000000 R14: 00007f5ff21b6080 R15: 00007ffc0aa13218
[  186.939600][ T9532]  </TASK>
[  187.245261][ T9535] batman_adv: batadv0: Removing interface: batadv_slave_1
[  187.287788][ T9539] netlink: 'syz.0.1149': attribute type 1 has an invalid length.
[  187.295837][ T9539] netlink: 'syz.0.1149': attribute type 1 has an invalid length.
[  187.719806][ T9560] Cannot find add_set index 0 as target
[  187.727557][ T9558] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  188.014922][ T9573] bridge0: port 3(erspan0) entered blocking state
[  188.022876][ T9573] bridge0: port 3(erspan0) entered disabled state
[  188.034651][ T9573] erspan0: entered allmulticast mode
[  188.046723][ T9573] erspan0: entered promiscuous mode
[  188.052518][ T9573] bridge0: port 3(erspan0) entered blocking state
[  188.060067][ T9573] bridge0: port 3(erspan0) entered forwarding state
[  188.076382][ T9576] erspan0: left allmulticast mode
[  188.081566][ T9576] erspan0: left promiscuous mode
[  188.087731][ T9576] bridge0: port 3(erspan0) entered disabled state
[  188.657268][ T9598] netlink: 'syz.4.1170': attribute type 1 has an invalid length.
[  188.665318][ T9598] netlink: 'syz.4.1170': attribute type 1 has an invalid length.
[  188.759466][ T9603] __nla_validate_parse: 14 callbacks suppressed
[  188.759479][ T9603] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1171'.
[  189.100154][ T9611] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  189.513558][ T9618] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  189.560772][ T9620] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1177'.
[  189.581119][ T9620] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1177'.
[  189.591253][ T9620] netlink: 'syz.4.1177': attribute type 13 has an invalid length.
[  189.646797][ T9620] netlink: 208 bytes leftover after parsing attributes in process `syz.4.1177'.
[  189.658220][ T9620] netlink: 208 bytes leftover after parsing attributes in process `syz.4.1177'.
[  189.695371][ T9622] netlink: 'syz.3.1178': attribute type 10 has an invalid length.
[  189.712798][ T9624] Cannot find del_set index 286 as target
[  190.347246][ T9644] hsr0: entered allmulticast mode
[  190.377068][ T9644] hsr_slave_0: entered allmulticast mode
[  190.382744][ T9644] hsr_slave_1: entered allmulticast mode
[  190.570002][ T9653] netlink: 'syz.4.1187': attribute type 1 has an invalid length.
[  190.586586][ T9653] netlink: 'syz.4.1187': attribute type 1 has an invalid length.
[  190.934742][ T9661] team_slave_0: left promiscuous mode
[  190.941888][ T9661] team0 (unregistering): Port device team_slave_0 removed
[  190.950264][ T9661] team_slave_1: left promiscuous mode
[  190.965974][ T9661] team0 (unregistering): Port device team_slave_1 removed
[  190.975215][ T9661] macvlan0: left promiscuous mode
[  190.981982][ T9661] team0 (unregistering): Port device macvlan0 removed
[  191.019454][ T9682] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1193'.
[  191.101507][ T9684] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1194'.
[  191.503763][ T9703] xt_hashlimit: size too large, truncated to 1048576
[  191.522310][ T9703] xt_hashlimit: max too large, truncated to 1048576
[  191.526071][ T9705] Cannot find del_set index 286 as target
[  191.830269][ T9718] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  191.939072][ T9722] !
: renamed from dummy0 (while UP)
[  192.017410][ T9726] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  192.041907][ T9727] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1207'.
[  192.096261][ T9729] netlink: get zone limit has 4 unknown bytes
[  192.252374][ T9737] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1209'.
[  192.326373][ T9740] FAULT_INJECTION: forcing a failure.
[  192.326373][ T9740] name failslab, interval 1, probability 0, space 0, times 0
[  192.361468][ T9740] CPU: 1 UID: 0 PID: 9740 Comm: syz.2.1210 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  192.361497][ T9740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  192.361508][ T9740] Call Trace:
[  192.361515][ T9740]  <TASK>
[  192.361523][ T9740]  dump_stack_lvl+0x189/0x250
[  192.361554][ T9740]  ? __pfx____ratelimit+0x10/0x10
[  192.361576][ T9740]  ? __pfx_dump_stack_lvl+0x10/0x10
[  192.361600][ T9740]  ? __pfx__printk+0x10/0x10
[  192.361633][ T9740]  should_fail_ex+0x414/0x560
[  192.361661][ T9740]  should_failslab+0xa8/0x100
[  192.361683][ T9740]  __kmalloc_cache_noprof+0x70/0x3d0
[  192.361699][ T9740]  ? sctp_add_bind_addr+0x8c/0x370
[  192.361721][ T9740]  sctp_add_bind_addr+0x8c/0x370
[  192.361744][ T9740]  sctp_copy_local_addr_list+0x30b/0x4e0
[  192.361766][ T9740]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  192.361784][ T9740]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  192.361811][ T9740]  ? sctp_v4_is_any+0x35/0x60
[  192.361830][ T9740]  ? sctp_copy_one_addr+0x93/0x360
[  192.361852][ T9740]  sctp_bind_addr_copy+0xb3/0x3c0
[  192.361872][ T9740]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  192.361902][ T9740]  sctp_connect_new_asoc+0x2e0/0x690
[  192.361929][ T9740]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  192.361953][ T9740]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  192.361976][ T9740]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  192.361996][ T9740]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  192.362027][ T9740]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  192.362049][ T9740]  ? security_sctp_bind_connect+0x7e/0x2e0
[  192.362070][ T9740]  sctp_sendmsg+0x155c/0x2810
[  192.362106][ T9740]  ? __pfx_sctp_sendmsg+0x10/0x10
[  192.362131][ T9740]  ? aa_sk_perm+0x81e/0x950
[  192.362156][ T9740]  ? __pfx_aa_sk_perm+0x10/0x10
[  192.362178][ T9740]  ? sock_rps_record_flow+0x19/0x410
[  192.362199][ T9740]  ? inet_sendmsg+0x2f4/0x370
[  192.362216][ T9740]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  192.362240][ T9740]  __sock_sendmsg+0x19c/0x270
[  192.362263][ T9740]  __sys_sendto+0x3bd/0x520
[  192.362287][ T9740]  ? __pfx___sys_sendto+0x10/0x10
[  192.362305][ T9740]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  192.362341][ T9740]  ? __fget_files+0x3a0/0x420
[  192.362371][ T9740]  ? ksys_write+0x22a/0x250
[  192.362394][ T9740]  ? __pfx_ksys_write+0x10/0x10
[  192.362414][ T9740]  ? rcu_is_watching+0x15/0xb0
[  192.362446][ T9740]  __x64_sys_sendto+0xde/0x100
[  192.362473][ T9740]  do_syscall_64+0xfa/0x3b0
[  192.362492][ T9740]  ? lockdep_hardirqs_on+0x9c/0x150
[  192.362510][ T9740]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.362527][ T9740]  ? clear_bhb_loop+0x60/0xb0
[  192.362550][ T9740]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.362567][ T9740] RIP: 0033:0x7f318338e929
[  192.362583][ T9740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.362599][ T9740] RSP: 002b:00007f3184130038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  192.362618][ T9740] RAX: ffffffffffffffda RBX: 00007f31835b5fa0 RCX: 00007f318338e929
[  192.362631][ T9740] RDX: 0000000000000001 RSI: 00002000000004c0 RDI: 0000000000000003
[  192.362643][ T9740] RBP: 00007f3184130090 R08: 00002000000001c0 R09: 0000000000000010
[  192.362655][ T9740] R10: 00000000000020c0 R11: 0000000000000246 R12: 0000000000000002
[  192.362666][ T9740] R13: 0000000000000000 R14: 00007f31835b5fa0 R15: 00007ffcdbd12c68
[  192.362694][ T9740]  </TASK>
[  192.848562][ T9746] netlink: 'syz.1.1211': attribute type 1 has an invalid length.
[  192.864313][ T9746] netlink: 'syz.1.1211': attribute type 1 has an invalid length.
[  193.917487][ T9787] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1222'.
[  193.949805][ T9787] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1222'.
[  193.966601][ T9789] Cannot find del_set index 286 as target
[  194.172338][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  194.243541][ T5151] Bluetooth: hci4: command 0x0406 tx timeout
[  194.741758][ T9814] netlink: 'syz.2.1231': attribute type 1 has an invalid length.
[  194.751677][ T9814] netlink: 'syz.2.1231': attribute type 1 has an invalid length.
[  195.611503][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802913a800: rx timeout, send abort
[  195.698068][ T9848] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1238'.
[  195.886379][ T9858] Cannot find del_set index 286 as target
[  196.119794][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802913a800: abort rx timeout. Force session deactivation
[  196.237080][ T9875] netlink: 'syz.0.1248': attribute type 1 has an invalid length.
[  196.245263][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[  196.248298][   T51] Bluetooth: hci3: command 0x0401 tx timeout
[  196.263350][ T5151] Bluetooth: hci1: command 0x0406 tx timeout
[  196.321586][ T9875] netlink: 'syz.0.1248': attribute type 1 has an invalid length.
[  196.712158][ T9893] FAULT_INJECTION: forcing a failure.
[  196.712158][ T9893] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  196.726584][ T9893] CPU: 0 UID: 0 PID: 9893 Comm: syz.4.1253 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  196.726617][ T9893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  196.726627][ T9893] Call Trace:
[  196.726634][ T9893]  <TASK>
[  196.726641][ T9893]  dump_stack_lvl+0x189/0x250
[  196.726669][ T9893]  ? __pfx____ratelimit+0x10/0x10
[  196.726688][ T9893]  ? __pfx_dump_stack_lvl+0x10/0x10
[  196.726712][ T9893]  ? __pfx__printk+0x10/0x10
[  196.726730][ T9893]  ? __might_fault+0xb0/0x130
[  196.726765][ T9893]  should_fail_ex+0x414/0x560
[  196.726789][ T9893]  _copy_from_user+0x2d/0xb0
[  196.726804][ T9893]  ___sys_sendmsg+0x158/0x2a0
[  196.726828][ T9893]  ? __pfx____sys_sendmsg+0x10/0x10
[  196.726883][ T9893]  ? __fget_files+0x2a/0x420
[  196.726900][ T9893]  ? __fget_files+0x3a0/0x420
[  196.726928][ T9893]  __x64_sys_sendmsg+0x19b/0x260
[  196.726953][ T9893]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  196.726985][ T9893]  ? __pfx_ksys_write+0x10/0x10
[  196.727005][ T9893]  ? rcu_is_watching+0x15/0xb0
[  196.727035][ T9893]  ? do_syscall_64+0xbe/0x3b0
[  196.727058][ T9893]  do_syscall_64+0xfa/0x3b0
[  196.727074][ T9893]  ? lockdep_hardirqs_on+0x9c/0x150
[  196.727092][ T9893]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.727109][ T9893]  ? clear_bhb_loop+0x60/0xb0
[  196.727130][ T9893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.727152][ T9893] RIP: 0033:0x7f5ff1f8e929
[  196.727167][ T9893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.727183][ T9893] RSP: 002b:00007f5ff2d8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  196.727202][ T9893] RAX: ffffffffffffffda RBX: 00007f5ff21b5fa0 RCX: 00007f5ff1f8e929
[  196.727215][ T9893] RDX: 0000000000000000 RSI: 0000200000000900 RDI: 0000000000000012
[  196.727226][ T9893] RBP: 00007f5ff2d8d090 R08: 0000000000000000 R09: 0000000000000000
[  196.727236][ T9893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.727245][ T9893] R13: 0000000000000000 R14: 00007f5ff21b5fa0 R15: 00007ffc0aa13218
[  196.727274][ T9893]  </TASK>
[  197.065585][ T9900] netlink: 79 bytes leftover after parsing attributes in process `syz.4.1256'.
[  197.305355][ T9913] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1259'.
[  197.318315][ T9910] vlan2: entered promiscuous mode
[  197.336981][ T9915] warn_alloc: 3 callbacks suppressed
[  197.336999][ T9915] syz.3.1258: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  197.399133][ T9915] CPU: 1 UID: 0 PID: 9915 Comm: syz.3.1258 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  197.399161][ T9915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  197.399172][ T9915] Call Trace:
[  197.399180][ T9915]  <TASK>
[  197.399189][ T9915]  dump_stack_lvl+0x189/0x250
[  197.399224][ T9915]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.399252][ T9915]  ? __pfx__printk+0x10/0x10
[  197.399272][ T9915]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  197.399297][ T9915]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  197.399320][ T9915]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  197.399343][ T9915]  warn_alloc+0x214/0x310
[  197.399364][ T9915]  ? stack_depot_save_flags+0x40/0x900
[  197.399391][ T9915]  ? __pfx_warn_alloc+0x10/0x10
[  197.399413][ T9915]  ? kasan_save_track+0x4f/0x80
[  197.399438][ T9915]  ? xskq_create+0x56/0x170
[  197.399455][ T9915]  ? xsk_init_queue+0xb0/0x110
[  197.399471][ T9915]  ? xsk_setsockopt+0x43f/0x710
[  197.399486][ T9915]  ? do_sock_setsockopt+0x25a/0x3e0
[  197.399508][ T9915]  ? __x64_sys_setsockopt+0x18b/0x220
[  197.399531][ T9915]  ? do_syscall_64+0xfa/0x3b0
[  197.399551][ T9915]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.399578][ T9915]  __vmalloc_node_range_noprof+0x125/0x12f0
[  197.399639][ T9915]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  197.399661][ T9915]  ? xskq_create+0x56/0x170
[  197.399683][ T9915]  ? __kasan_kmalloc+0x93/0xb0
[  197.399704][ T9915]  vmalloc_user_noprof+0xad/0xf0
[  197.399725][ T9915]  ? xskq_create+0xbf/0x170
[  197.399746][ T9915]  xskq_create+0xbf/0x170
[  197.399769][ T9915]  xsk_init_queue+0xb0/0x110
[  197.399790][ T9915]  xsk_setsockopt+0x43f/0x710
[  197.399811][ T9915]  ? __pfx_xsk_setsockopt+0x10/0x10
[  197.399828][ T9915]  ? __lock_acquire+0xab9/0xd20
[  197.399862][ T9915]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  197.399884][ T9915]  ? __pfx_xsk_setsockopt+0x10/0x10
[  197.399904][ T9915]  do_sock_setsockopt+0x25a/0x3e0
[  197.399931][ T9915]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  197.399960][ T9915]  ? __fget_files+0x2a/0x420
[  197.399990][ T9915]  __x64_sys_setsockopt+0x18b/0x220
[  197.400021][ T9915]  do_syscall_64+0xfa/0x3b0
[  197.400040][ T9915]  ? lockdep_hardirqs_on+0x9c/0x150
[  197.400059][ T9915]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.400076][ T9915]  ? clear_bhb_loop+0x60/0xb0
[  197.400098][ T9915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.400116][ T9915] RIP: 0033:0x7f038778e929
[  197.400133][ T9915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.400149][ T9915] RSP: 002b:00007f03885af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  197.400169][ T9915] RAX: ffffffffffffffda RBX: 00007f03879b6080 RCX: 00007f038778e929
[  197.400183][ T9915] RDX: 0000000000000006 RSI: 000000000000011b RDI: 000000000000000a
[  197.400194][ T9915] RBP: 00007f0387810b39 R08: 0000000000000004 R09: 0000000000000000
[  197.400206][ T9915] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  197.400217][ T9915] R13: 0000000000000000 R14: 00007f03879b6080 R15: 00007ffe636ef988
[  197.400249][ T9915]  </TASK>
[  197.400611][ T9915] Mem-Info:
[  197.714777][ T9915] active_anon:3784 inactive_anon:0 isolated_anon:0
[  197.714777][ T9915]  active_file:1806 inactive_file:39875 isolated_file:0
[  197.714777][ T9915]  unevictable:768 dirty:228 writeback:0
[  197.714777][ T9915]  slab_reclaimable:10804 slab_unreclaimable:96676
[  197.714777][ T9915]  mapped:30107 shmem:1366 pagetables:964
[  197.714777][ T9915]  sec_pagetables:0 bounce:0
[  197.714777][ T9915]  kernel_misc_reclaimable:0
[  197.714777][ T9915]  free:1324849 free_pcp:22507 free_cma:0
[  197.770081][ T9915] Node 0 active_anon:15216kB inactive_anon:0kB active_file:7224kB inactive_file:159300kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:120964kB dirty:932kB writeback:0kB shmem:3928kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11800kB pagetables:3780kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  197.843496][ T9915] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:164kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  197.903241][ T9915] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  197.987302][ T9915] lowmem_reserve[]: 0 2500 2502 2502 2502
[  198.000736][ T9931] Cannot find del_set index 286 as target
[  198.023397][ T9915] Node 0 DMA32 free:1392432kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:17868kB inactive_anon:0kB active_file:7224kB inactive_file:157460kB unevictable:1536kB writepending:932kB present:3129332kB managed:2560932kB mlocked:0kB bounce:0kB free_pcp:59352kB local_pcp:30800kB free_cma:0kB
[  198.065010][ T9915] lowmem_reserve[]: 0 0 1 1 1
[  198.099348][ T9915] Node 0 Normal free:4kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1840kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  198.179302][ T9915] lowmem_reserve[]: 0 0 0 0 0
[  198.213228][ T9915] Node 1 Normal free:3897864kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:21136kB local_pcp:15088kB free_cma:0kB
[  198.267364][ T9915] lowmem_reserve[]: 0 0 0 0 0
[  198.301015][ T9915] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  198.360967][ T9915] Node 0 DMA32: 2644*4kB (UME) 904*8kB (UME) 170*16kB (UM) 159*32kB (UME) 92*64kB (UME) 81*128kB (UM) 63*256kB (UME) 21*512kB (UME) 14*1024kB (UM) 1*2048kB (M) 312*4096kB (UM) = 1363088kB
[  198.423152][ T9915] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  198.503478][ T9915] Node 1 Normal: 196*4kB (UM) 55*8kB (UME) 40*16kB (UME) 88*32kB (UME) 29*64kB (UM) 9*128kB (UME) 4*256kB (UME) 4*512kB (UME) 2*1024kB (UM) 1*2048kB (E) 948*4096kB (M) = 3897864kB
[  198.556954][ T9915] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  198.630060][ T9915] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  198.643861][ T9915] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  198.673299][ T9915] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  198.687334][ T9915] 43044 total pagecache pages
[  198.692326][ T9915] 0 pages in swap cache
[  198.698269][ T9915] Free swap  = 124996kB
[  198.709454][ T9915] Total swap = 124996kB
[  198.717372][ T9915] 2097051 pages RAM
[  198.726400][ T9915] 0 pages HighMem/MovableOnly
[  198.746063][ T9915] 424712 pages reserved
[  198.750239][ T9915] 0 pages cma reserved
[  198.821467][ T9948] netlink: 'syz.2.1267': attribute type 1 has an invalid length.
[  198.863815][ T9948] netlink: 'syz.2.1267': attribute type 1 has an invalid length.
[  198.997662][ T9958] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1269'.
[  199.054048][ T9958] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1269'.
[  199.178660][ T9968] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  199.327941][ T9973] TCP: TCP_TX_DELAY enabled
[  199.370217][ T9973] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1275'.
[  199.776816][ T9988] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1278'.
[  200.115909][ T9997] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  200.220436][T10002] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1284'.
[  200.289146][T10007] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1286'.
[  200.334101][T10007] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1286'.
[  200.384394][T10007] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1286'.
[  200.470543][T10020] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1290'.
[  200.795941][T10036] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1294'.
[  200.840348][T10038] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  201.047403][ T5940] IPVS: starting estimator thread 0...
[  201.143437][T10046] IPVS: using max 32 ests per chain, 76800 per kthread
[  201.205590][T10049] FAULT_INJECTION: forcing a failure.
[  201.205590][T10049] name failslab, interval 1, probability 0, space 0, times 0
[  201.219021][T10049] CPU: 1 UID: 0 PID: 10049 Comm: syz.2.1298 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  201.219048][T10049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  201.219058][T10049] Call Trace:
[  201.219064][T10049]  <TASK>
[  201.219072][T10049]  dump_stack_lvl+0x189/0x250
[  201.219101][T10049]  ? __pfx____ratelimit+0x10/0x10
[  201.219122][T10049]  ? __pfx_dump_stack_lvl+0x10/0x10
[  201.219146][T10049]  ? __pfx__printk+0x10/0x10
[  201.219187][T10049]  should_fail_ex+0x414/0x560
[  201.219213][T10049]  should_failslab+0xa8/0x100
[  201.219233][T10049]  __kmalloc_cache_noprof+0x70/0x3d0
[  201.219250][T10049]  ? sctp_add_bind_addr+0x8c/0x370
[  201.219272][T10049]  sctp_add_bind_addr+0x8c/0x370
[  201.219293][T10049]  sctp_copy_local_addr_list+0x30b/0x4e0
[  201.219313][T10049]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  201.219331][T10049]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  201.219351][T10049]  ? sctp_v6_is_any+0x64/0x80
[  201.219370][T10049]  ? sctp_copy_one_addr+0x93/0x360
[  201.219389][T10049]  sctp_bind_addr_copy+0xb3/0x3c0
[  201.219408][T10049]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  201.219440][T10049]  sctp_connect_new_asoc+0x2e0/0x690
[  201.219464][T10049]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  201.219482][T10049]  ? __local_bh_enable_ip+0x12d/0x1c0
[  201.219512][T10049]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  201.219532][T10049]  ? security_sctp_bind_connect+0x7e/0x2e0
[  201.219552][T10049]  sctp_sendmsg+0x155c/0x2810
[  201.219586][T10049]  ? __pfx_sctp_sendmsg+0x10/0x10
[  201.219616][T10049]  ? aa_sk_perm+0x81e/0x950
[  201.219639][T10049]  ? __pfx_aa_sk_perm+0x10/0x10
[  201.219661][T10049]  ? sock_rps_record_flow+0x19/0x410
[  201.219682][T10049]  ? inet_sendmsg+0x2f4/0x370
[  201.219703][T10049]  __sock_sendmsg+0x19c/0x270
[  201.219725][T10049]  ____sys_sendmsg+0x52d/0x830
[  201.219754][T10049]  ? __pfx_____sys_sendmsg+0x10/0x10
[  201.219787][T10049]  ? import_iovec+0x74/0xa0
[  201.219812][T10049]  ___sys_sendmsg+0x21f/0x2a0
[  201.219838][T10049]  ? __pfx____sys_sendmsg+0x10/0x10
[  201.219900][T10049]  ? __fget_files+0x2a/0x420
[  201.219915][T10049]  ? __fget_files+0x3a0/0x420
[  201.219942][T10049]  __sys_sendmmsg+0x227/0x430
[  201.219971][T10049]  ? __pfx___sys_sendmmsg+0x10/0x10
[  201.219990][T10049]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  201.220037][T10049]  ? ksys_write+0x22a/0x250
[  201.220063][T10049]  ? __pfx_ksys_write+0x10/0x10
[  201.220083][T10049]  ? rcu_is_watching+0x15/0xb0
[  201.220115][T10049]  __x64_sys_sendmmsg+0xa0/0xc0
[  201.220141][T10049]  do_syscall_64+0xfa/0x3b0
[  201.220161][T10049]  ? lockdep_hardirqs_on+0x9c/0x150
[  201.220187][T10049]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.220203][T10049]  ? clear_bhb_loop+0x60/0xb0
[  201.220224][T10049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.220247][T10049] RIP: 0033:0x7f318338e929
[  201.220263][T10049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.220277][T10049] RSP: 002b:00007f3184130038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  201.220296][T10049] RAX: ffffffffffffffda RBX: 00007f31835b5fa0 RCX: 00007f318338e929
[  201.220308][T10049] RDX: 0000000000000003 RSI: 0000200000000e00 RDI: 0000000000000003
[  201.220318][T10049] RBP: 00007f3184130090 R08: 0000000000000000 R09: 0000000000000000
[  201.220328][T10049] R10: 0000000024000045 R11: 0000000000000246 R12: 0000000000000002
[  201.220337][T10049] R13: 0000000000000000 R14: 00007f31835b5fa0 R15: 00007ffcdbd12c68
[  201.220367][T10049]  </TASK>
[  201.911399][T10074] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  202.050847][T10080] netlink: 'syz.4.1308': attribute type 10 has an invalid length.
[  202.219863][T10086] Bluetooth: MGMT ver 1.23
[  202.627646][T10094] ip6gretap0: entered promiscuous mode
[  202.657766][T10094] ip6gretap0: left promiscuous mode
[  203.193679][T10119] RDS: rds_bind could not find a transport for ::ffff:172.30.0.2, load rds_tcp or rds_rdma?
[  203.851522][T10148] netlink: 'syz.2.1327': attribute type 10 has an invalid length.
[  203.860942][T10148] veth1_vlan: left allmulticast mode
[  204.081831][T10162] netlink: 'syz.0.1330': attribute type 1 has an invalid length.
[  204.133771][T10162] __nla_validate_parse: 11 callbacks suppressed
[  204.133790][T10162] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1330'.
[  204.165159][T10162] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1330'.
[  204.350178][T10168] dvmrp8: entered allmulticast mode
[  204.370554][T10174] FAULT_INJECTION: forcing a failure.
[  204.370554][T10174] name failslab, interval 1, probability 0, space 0, times 0
[  204.371136][T10167] dvmrp8: left allmulticast mode
[  204.443314][T10174] CPU: 1 UID: 0 PID: 10174 Comm: syz.1.1333 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  204.443342][T10174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  204.443353][T10174] Call Trace:
[  204.443361][T10174]  <TASK>
[  204.443369][T10174]  dump_stack_lvl+0x189/0x250
[  204.443400][T10174]  ? __pfx____ratelimit+0x10/0x10
[  204.443421][T10174]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.443446][T10174]  ? __pfx__printk+0x10/0x10
[  204.443474][T10174]  ? ref_tracker_alloc+0x318/0x460
[  204.443499][T10174]  should_fail_ex+0x414/0x560
[  204.443527][T10174]  should_failslab+0xa8/0x100
[  204.443548][T10174]  kmem_cache_alloc_noprof+0x73/0x3c0
[  204.443572][T10174]  ? skb_clone+0x212/0x3a0
[  204.443601][T10174]  skb_clone+0x212/0x3a0
[  204.443629][T10174]  __netlink_deliver_tap+0x404/0x850
[  204.443663][T10174]  ? netlink_deliver_tap+0x2e/0x1b0
[  204.443685][T10174]  netlink_deliver_tap+0x19c/0x1b0
[  204.443707][T10174]  netlink_unicast+0x72f/0x8d0
[  204.443738][T10174]  netlink_sendmsg+0x805/0xb30
[  204.443769][T10174]  ? __pfx_netlink_sendmsg+0x10/0x10
[  204.443794][T10174]  ? aa_sock_msg_perm+0x94/0x160
[  204.443817][T10174]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  204.443838][T10174]  ? __pfx_netlink_sendmsg+0x10/0x10
[  204.443860][T10174]  __sock_sendmsg+0x219/0x270
[  204.443884][T10174]  ____sys_sendmsg+0x505/0x830
[  204.443913][T10174]  ? __pfx_____sys_sendmsg+0x10/0x10
[  204.443948][T10174]  ? import_iovec+0x74/0xa0
[  204.443969][T10174]  ___sys_sendmsg+0x21f/0x2a0
[  204.443995][T10174]  ? __pfx____sys_sendmsg+0x10/0x10
[  204.444059][T10174]  ? __fget_files+0x2a/0x420
[  204.444077][T10174]  ? __fget_files+0x3a0/0x420
[  204.444107][T10174]  __x64_sys_sendmsg+0x19b/0x260
[  204.444134][T10174]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  204.444174][T10174]  ? __pfx_ksys_write+0x10/0x10
[  204.444196][T10174]  ? rcu_is_watching+0x15/0xb0
[  204.444227][T10174]  ? do_syscall_64+0xbe/0x3b0
[  204.444251][T10174]  do_syscall_64+0xfa/0x3b0
[  204.444269][T10174]  ? lockdep_hardirqs_on+0x9c/0x150
[  204.444288][T10174]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.444305][T10174]  ? clear_bhb_loop+0x60/0xb0
[  204.444327][T10174]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.444344][T10174] RIP: 0033:0x7fcc3d98e929
[  204.444360][T10174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.444375][T10174] RSP: 002b:00007fcc3e816038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  204.444394][T10174] RAX: ffffffffffffffda RBX: 00007fcc3dbb5fa0 RCX: 00007fcc3d98e929
[  204.444408][T10174] RDX: 0000000000000080 RSI: 0000200000000980 RDI: 0000000000000003
[  204.444419][T10174] RBP: 00007fcc3e816090 R08: 0000000000000000 R09: 0000000000000000
[  204.444431][T10174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.444441][T10174] R13: 0000000000000000 R14: 00007fcc3dbb5fa0 R15: 00007ffcb6697108
[  204.444472][T10174]  </TASK>
[  204.450933][T10177] RDS: rds_bind could not find a transport for ::ffff:172.30.0.4, load rds_tcp or rds_rdma?
[  205.375012][T10204] erspan0: entered promiscuous mode
[  205.418379][T10204] batman_adv: batadv0: Adding interface: macvlan2
[  205.433608][T10204] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1450) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  205.511303][T10204] batman_adv: batadv0: Interface activated: macvlan2
[  205.617838][T10208] syzkaller1: entered promiscuous mode
[  205.623503][T10208] syzkaller1: entered allmulticast mode
[  205.639430][T10219] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1342'.
[  205.789311][T10223] xt_bpf: check failed: parse error
[  206.039272][T10234] netlink: zone id is out of range
[  206.069934][T10234] netlink: zone id is out of range
[  206.098517][T10234] netlink: zone id is out of range
[  206.130747][T10234] netlink: zone id is out of range
[  206.153945][T10234] netlink: del zone limit has 4 unknown bytes
[  206.234198][T10244] FAULT_INJECTION: forcing a failure.
[  206.234198][T10244] name failslab, interval 1, probability 0, space 0, times 0
[  206.265896][T10244] CPU: 1 UID: 0 PID: 10244 Comm: syz.2.1352 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  206.265922][T10244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  206.265931][T10244] Call Trace:
[  206.265937][T10244]  <TASK>
[  206.265943][T10244]  dump_stack_lvl+0x189/0x250
[  206.265974][T10244]  ? __pfx____ratelimit+0x10/0x10
[  206.265991][T10244]  ? __pfx_dump_stack_lvl+0x10/0x10
[  206.266014][T10244]  ? __pfx__printk+0x10/0x10
[  206.266038][T10244]  ? __pfx___might_resched+0x10/0x10
[  206.266059][T10244]  ? fs_reclaim_acquire+0x7d/0x100
[  206.266078][T10244]  should_fail_ex+0x414/0x560
[  206.266098][T10244]  should_failslab+0xa8/0x100
[  206.266115][T10244]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  206.266139][T10244]  ? __alloc_skb+0x112/0x2d0
[  206.266165][T10244]  __alloc_skb+0x112/0x2d0
[  206.266190][T10244]  netlink_ack+0x146/0xa50
[  206.266206][T10244]  ? __pfx_genl_rcv_msg+0x10/0x10
[  206.266228][T10244]  ? __pfx_nl802154_pre_doit+0x10/0x10
[  206.266245][T10244]  ? __pfx_nl802154_post_doit+0x10/0x10
[  206.266277][T10244]  netlink_rcv_skb+0x28c/0x470
[  206.266298][T10244]  ? __pfx_genl_rcv_msg+0x10/0x10
[  206.266323][T10244]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  206.266358][T10244]  ? down_read+0x1ad/0x2e0
[  206.266382][T10244]  genl_rcv+0x28/0x40
[  206.266401][T10244]  netlink_unicast+0x75b/0x8d0
[  206.266429][T10244]  netlink_sendmsg+0x805/0xb30
[  206.266458][T10244]  ? __pfx_netlink_sendmsg+0x10/0x10
[  206.266481][T10244]  ? aa_sock_msg_perm+0x94/0x160
[  206.266504][T10244]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  206.266523][T10244]  ? __pfx_netlink_sendmsg+0x10/0x10
[  206.266544][T10244]  __sock_sendmsg+0x219/0x270
[  206.266565][T10244]  ____sys_sendmsg+0x505/0x830
[  206.266593][T10244]  ? __pfx_____sys_sendmsg+0x10/0x10
[  206.266626][T10244]  ? import_iovec+0x74/0xa0
[  206.266645][T10244]  ___sys_sendmsg+0x21f/0x2a0
[  206.266669][T10244]  ? __pfx____sys_sendmsg+0x10/0x10
[  206.266741][T10244]  ? __fget_files+0x2a/0x420
[  206.266760][T10244]  ? __fget_files+0x3a0/0x420
[  206.266789][T10244]  __x64_sys_sendmsg+0x19b/0x260
[  206.266819][T10244]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  206.266853][T10244]  ? __pfx_ksys_write+0x10/0x10
[  206.266876][T10244]  ? rcu_is_watching+0x15/0xb0
[  206.266906][T10244]  ? do_syscall_64+0xbe/0x3b0
[  206.266930][T10244]  do_syscall_64+0xfa/0x3b0
[  206.266948][T10244]  ? lockdep_hardirqs_on+0x9c/0x150
[  206.266966][T10244]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.266983][T10244]  ? clear_bhb_loop+0x60/0xb0
[  206.267005][T10244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.267021][T10244] RIP: 0033:0x7f318338e929
[  206.267038][T10244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.267054][T10244] RSP: 002b:00007f318410f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  206.267072][T10244] RAX: ffffffffffffffda RBX: 00007f31835b6080 RCX: 00007f318338e929
[  206.267085][T10244] RDX: 0000000000000080 RSI: 0000200000000a00 RDI: 0000000000000004
[  206.267097][T10244] RBP: 00007f318410f090 R08: 0000000000000000 R09: 0000000000000000
[  206.267107][T10244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.267118][T10244] R13: 0000000000000000 R14: 00007f31835b6080 R15: 00007ffcdbd12c68
[  206.267148][T10244]  </TASK>
[  206.724337][T10251] netlink: 'syz.1.1355': attribute type 10 has an invalid length.
[  206.972917][T10260] FAULT_INJECTION: forcing a failure.
[  206.972917][T10260] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.018578][T10260] CPU: 1 UID: 0 PID: 10260 Comm: syz.3.1358 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  207.018605][T10260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  207.018616][T10260] Call Trace:
[  207.018622][T10260]  <TASK>
[  207.018630][T10260]  dump_stack_lvl+0x189/0x250
[  207.018670][T10260]  ? __pfx____ratelimit+0x10/0x10
[  207.018690][T10260]  ? __pfx_dump_stack_lvl+0x10/0x10
[  207.018715][T10260]  ? __pfx__printk+0x10/0x10
[  207.018736][T10260]  ? __might_fault+0xb0/0x130
[  207.018773][T10260]  should_fail_ex+0x414/0x560
[  207.018801][T10260]  _copy_from_user+0x2d/0xb0
[  207.018819][T10260]  ___sys_sendmsg+0x158/0x2a0
[  207.018846][T10260]  ? __pfx____sys_sendmsg+0x10/0x10
[  207.018905][T10260]  ? __fget_files+0x2a/0x420
[  207.018923][T10260]  ? __fget_files+0x3a0/0x420
[  207.018952][T10260]  __x64_sys_sendmsg+0x19b/0x260
[  207.018979][T10260]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  207.019011][T10260]  ? __pfx_ksys_write+0x10/0x10
[  207.019032][T10260]  ? rcu_is_watching+0x15/0xb0
[  207.019060][T10260]  ? do_syscall_64+0xbe/0x3b0
[  207.019085][T10260]  do_syscall_64+0xfa/0x3b0
[  207.019103][T10260]  ? lockdep_hardirqs_on+0x9c/0x150
[  207.019120][T10260]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.019136][T10260]  ? clear_bhb_loop+0x60/0xb0
[  207.019156][T10260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.019172][T10260] RIP: 0033:0x7f038778e929
[  207.019189][T10260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.019204][T10260] RSP: 002b:00007f03885d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  207.019223][T10260] RAX: ffffffffffffffda RBX: 00007f03879b5fa0 RCX: 00007f038778e929
[  207.019236][T10260] RDX: 0000000000000000 RSI: 0000200000000600 RDI: 0000000000000003
[  207.019246][T10260] RBP: 00007f03885d0090 R08: 0000000000000000 R09: 0000000000000000
[  207.019257][T10260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.019268][T10260] R13: 0000000000000000 R14: 00007f03879b5fa0 R15: 00007ffe636ef988
[  207.019297][T10260]  </TASK>
[  207.657549][T10294] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1367'.
[  207.713098][ T5835] Bluetooth: hci4: link tx timeout
[  207.718726][ T5835] Bluetooth: hci4: killing stalled connection 10:aa:aa:aa:aa:aa
[  208.530272][T10327] netlink: 'syz.4.1381': attribute type 1 has an invalid length.
[  208.554357][T10327] netlink: 'syz.4.1381': attribute type 1 has an invalid length.
[  208.670849][T10333] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1383'.
[  208.682703][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1383'.
[  208.692198][T10333] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1383'.
[  209.098128][T10346] FAULT_INJECTION: forcing a failure.
[  209.098128][T10346] name failslab, interval 1, probability 0, space 0, times 0
[  209.147998][T10346] CPU: 1 UID: 0 PID: 10346 Comm: syz.2.1387 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  209.148027][T10346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  209.148038][T10346] Call Trace:
[  209.148046][T10346]  <TASK>
[  209.148054][T10346]  dump_stack_lvl+0x189/0x250
[  209.148089][T10346]  ? __pfx____ratelimit+0x10/0x10
[  209.148110][T10346]  ? __pfx_dump_stack_lvl+0x10/0x10
[  209.148135][T10346]  ? __pfx__printk+0x10/0x10
[  209.148170][T10346]  should_fail_ex+0x414/0x560
[  209.148199][T10346]  should_failslab+0xa8/0x100
[  209.148220][T10346]  __kmalloc_cache_noprof+0x70/0x3d0
[  209.148238][T10346]  ? sctp_add_bind_addr+0x8c/0x370
[  209.148262][T10346]  sctp_add_bind_addr+0x8c/0x370
[  209.148287][T10346]  sctp_copy_local_addr_list+0x30b/0x4e0
[  209.148310][T10346]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  209.148330][T10346]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  209.148352][T10346]  ? sctp_v6_is_any+0x64/0x80
[  209.148373][T10346]  ? sctp_copy_one_addr+0x93/0x360
[  209.148397][T10346]  sctp_bind_addr_copy+0xb3/0x3c0
[  209.148418][T10346]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  209.148447][T10346]  sctp_connect_new_asoc+0x2e0/0x690
[  209.148473][T10346]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  209.148496][T10346]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  209.148517][T10346]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  209.148537][T10346]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  209.148559][T10346]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  209.148580][T10346]  ? security_sctp_bind_connect+0x7e/0x2e0
[  209.148600][T10346]  sctp_sendmsg+0x155c/0x2810
[  209.148633][T10346]  ? __pfx_sctp_sendmsg+0x10/0x10
[  209.148656][T10346]  ? aa_sk_perm+0x81e/0x950
[  209.148689][T10346]  ? __pfx_aa_sk_perm+0x10/0x10
[  209.148712][T10346]  ? sock_rps_record_flow+0x19/0x410
[  209.148733][T10346]  ? inet_sendmsg+0x2f4/0x370
[  209.148750][T10346]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  209.148774][T10346]  __sock_sendmsg+0x19c/0x270
[  209.148798][T10346]  __sys_sendto+0x3bd/0x520
[  209.148821][T10346]  ? __pfx___sys_sendto+0x10/0x10
[  209.148839][T10346]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  209.148875][T10346]  ? __fget_files+0x3a0/0x420
[  209.148906][T10346]  ? ksys_write+0x22a/0x250
[  209.148934][T10346]  ? __pfx_ksys_write+0x10/0x10
[  209.148955][T10346]  ? rcu_is_watching+0x15/0xb0
[  209.148985][T10346]  __x64_sys_sendto+0xde/0x100
[  209.149011][T10346]  do_syscall_64+0xfa/0x3b0
[  209.149030][T10346]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.149047][T10346]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.149063][T10346]  ? clear_bhb_loop+0x60/0xb0
[  209.149082][T10346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.149099][T10346] RIP: 0033:0x7f318338e929
[  209.149116][T10346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.149130][T10346] RSP: 002b:00007f3184130038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  209.149149][T10346] RAX: ffffffffffffffda RBX: 00007f31835b5fa0 RCX: 00007f318338e929
[  209.149161][T10346] RDX: 0000000000000001 RSI: 0000200000847fff RDI: 0000000000000003
[  209.149172][T10346] RBP: 00007f3184130090 R08: 000020000005ffe4 R09: 000000000000001c
[  209.149184][T10346] R10: 00000000000400c1 R11: 0000000000000246 R12: 0000000000000002
[  209.149195][T10346] R13: 0000000000000000 R14: 00007f31835b5fa0 R15: 00007ffcdbd12c68
[  209.149227][T10346]  </TASK>
[  209.659589][ T5837] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  209.669295][ T5837] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  209.678738][T10356] warn_alloc: 6 callbacks suppressed
[  209.678755][T10356] syz.4.1390: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  209.685175][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  209.710412][ T5837] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  209.723787][ T5837] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  209.775174][ T5837] Bluetooth: hci4: command 0x0406 tx timeout
[  209.799144][T10356] ,cpuset=/,mems_allowed=0-1
[  209.803927][T10356] CPU: 1 UID: 0 PID: 10356 Comm: syz.4.1390 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  209.803954][T10356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  209.803966][T10356] Call Trace:
[  209.803973][T10356]  <TASK>
[  209.803981][T10356]  dump_stack_lvl+0x189/0x250
[  209.804018][T10356]  ? __pfx_dump_stack_lvl+0x10/0x10
[  209.804043][T10356]  ? __pfx__printk+0x10/0x10
[  209.804062][T10356]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  209.804080][T10356]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  209.804097][T10356]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  209.804116][T10356]  warn_alloc+0x214/0x310
[  209.804133][T10356]  ? stack_depot_save_flags+0x40/0x900
[  209.804156][T10356]  ? __pfx_warn_alloc+0x10/0x10
[  209.804178][T10356]  ? kasan_save_track+0x4f/0x80
[  209.804204][T10356]  ? xskq_create+0x56/0x170
[  209.804219][T10356]  ? xsk_init_queue+0xb0/0x110
[  209.804234][T10356]  ? xsk_setsockopt+0x43f/0x710
[  209.804249][T10356]  ? do_sock_setsockopt+0x25a/0x3e0
[  209.804271][T10356]  ? __x64_sys_setsockopt+0x18b/0x220
[  209.804292][T10356]  ? do_syscall_64+0xfa/0x3b0
[  209.804309][T10356]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.804336][T10356]  __vmalloc_node_range_noprof+0x125/0x12f0
[  209.804389][T10356]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  209.804411][T10356]  ? xskq_create+0x56/0x170
[  209.804432][T10356]  ? __kasan_kmalloc+0x93/0xb0
[  209.804452][T10356]  vmalloc_user_noprof+0xad/0xf0
[  209.804468][T10356]  ? xskq_create+0xbf/0x170
[  209.804487][T10356]  xskq_create+0xbf/0x170
[  209.804509][T10356]  xsk_init_queue+0xb0/0x110
[  209.804531][T10356]  xsk_setsockopt+0x43f/0x710
[  209.804552][T10356]  ? __pfx_xsk_setsockopt+0x10/0x10
[  209.804568][T10356]  ? __lock_acquire+0xab9/0xd20
[  209.804609][T10356]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  209.804630][T10356]  ? __pfx_xsk_setsockopt+0x10/0x10
[  209.804650][T10356]  do_sock_setsockopt+0x25a/0x3e0
[  209.804676][T10356]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  209.804702][T10356]  ? __fget_files+0x2a/0x420
[  209.804731][T10356]  __x64_sys_setsockopt+0x18b/0x220
[  209.804760][T10356]  do_syscall_64+0xfa/0x3b0
[  209.804780][T10356]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.804798][T10356]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.804816][T10356]  ? clear_bhb_loop+0x60/0xb0
[  209.804839][T10356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.804856][T10356] RIP: 0033:0x7f5ff1f8e929
[  209.804872][T10356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.804887][T10356] RSP: 002b:00007f5ff2d6c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  209.804906][T10356] RAX: ffffffffffffffda RBX: 00007f5ff21b6080 RCX: 00007f5ff1f8e929
[  209.804920][T10356] RDX: 0000000000000006 RSI: 000000000000011b RDI: 000000000000000a
[  209.804931][T10356] RBP: 00007f5ff2010b39 R08: 0000000000000004 R09: 0000000000000000
[  209.804943][T10356] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  209.804955][T10356] R13: 0000000000000000 R14: 00007f5ff21b6080 R15: 00007ffc0aa13218
[  209.804986][T10356]  </TASK>
[  209.804993][T10356] Mem-Info:
[  210.006901][T10360] Bluetooth: MGMT ver 1.23
[  210.027043][T10356] active_anon:3697 inactive_anon:0 isolated_anon:0
[  210.027043][T10356]  active_file:1893 inactive_file:39881 isolated_file:0
[  210.027043][T10356]  unevictable:768 dirty:347 writeback:0
[  210.027043][T10356]  slab_reclaimable:10913 slab_unreclaimable:97330
[  210.027043][T10356]  mapped:30343 shmem:1366 pagetables:916
[  210.027043][T10356]  sec_pagetables:0 bounce:0
[  210.027043][T10356]  kernel_misc_reclaimable:0
[  210.027043][T10356]  free:1329387 free_pcp:16788 free_cma:0
[  210.172638][T10356] Node 0 active_anon:14788kB inactive_anon:0kB active_file:7572kB inactive_file:159324kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:121372kB dirty:1388kB writeback:0kB shmem:3928kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11816kB pagetables:3500kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  210.216453][T10356] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:164kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  210.334070][T10356] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  210.375907][T10368] openvswitch: netlink: Message has 4 unknown bytes.
[  210.387503][T10356] lowmem_reserve[]: 0 2500 2502 2502 2502
[  210.393576][T10356] Node 0 DMA32 free:1402912kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:14840kB inactive_anon:0kB active_file:7572kB inactive_file:157484kB unevictable:1536kB writepending:1488kB present:3129332kB managed:2560932kB mlocked:0kB bounce:0kB free_pcp:46672kB local_pcp:16004kB free_cma:0kB
[  210.428228][T10356] lowmem_reserve[]: 0 0 1 1 1
[  210.439117][T10356] Node 0 Normal free:4kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1840kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  210.470154][T10356] lowmem_reserve[]: 0 0 0 0 0
[  210.475244][T10356] Node 1 Normal free:3898120kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:20880kB local_pcp:15088kB free_cma:0kB
[  210.509943][T10357] chnl_net:caif_netlink_parms(): no params data found
[  210.551913][T10356] lowmem_reserve[]: 0 0 0 0 0
[  210.584256][T10356] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  210.616764][T10356] Node 0 DMA32: 181*4kB (ME) 472*8kB (M) 297*16kB (UME) 123*32kB (UM) 201*64kB (UME) 142*128kB (UM) 114*256kB (UM) 50*512kB (UME) 29*1024kB (UM) 2*2048kB (UM) 310*4096kB (UM) = 1402564kB
[  210.642460][T10356] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  210.658428][T10356] Node 1 Normal: 196*4kB (UM) 55*8kB (UME) 40*16kB (UME) 94*32kB (UME) 30*64kB (UM) 9*128kB (UME) 4*256kB (UME) 4*512kB (UME) 2*1024kB (UM) 1*2048kB (E) 948*4096kB (M) = 3898120kB
[  210.688661][T10376] netlink: 'syz.3.1394': attribute type 10 has an invalid length.
[  210.691842][T10356] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  210.707286][T10356] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  210.717193][T10356] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  210.727399][T10356] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  210.736907][T10356] 43137 total pagecache pages
[  210.741844][T10356] 0 pages in swap cache
[  210.747825][T10356] Free swap  = 124996kB
[  210.752319][T10356] Total swap = 124996kB
[  210.756799][T10356] 2097051 pages RAM
[  210.760853][T10356] 0 pages HighMem/MovableOnly
[  210.768757][T10356] 424712 pages reserved
[  210.773377][T10356] 0 pages cma reserved
[  210.826085][T10363] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  210.848186][T10355] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  210.859213][T10380] dvmrp8: entered allmulticast mode
[  210.955171][T10375] dvmrp8: left allmulticast mode
[  210.960938][T10389] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1396'.
[  211.009482][T10389] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1396'.
[  211.027137][T10389] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1396'.
[  211.076697][T10357] bridge0: port 1(bridge_slave_0) entered blocking state
[  211.100069][T10357] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.120370][T10357] bridge_slave_0: entered allmulticast mode
[  211.132112][T10357] bridge_slave_0: entered promiscuous mode
[  211.164017][T10357] bridge0: port 2(bridge_slave_1) entered blocking state
[  211.179736][T10357] bridge0: port 2(bridge_slave_1) entered disabled state
[  211.188729][T10357] bridge_slave_1: entered allmulticast mode
[  211.196698][T10357] bridge_slave_1: entered promiscuous mode
[  211.390062][T10403] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1399'.
[  211.409164][T10357] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  211.432652][T10357] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  211.596698][T10357] team0: Port device team_slave_0 added
[  211.641484][T10357] team0: Port device team_slave_1 added
[  211.741679][T10417] dummy0: entered promiscuous mode
[  211.753312][T10417] vlan2: entered promiscuous mode
[  211.855174][ T1090] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  211.929129][T10357] batman_adv: batadv0: Adding interface: batadv_slave_0
[  211.957434][T10357] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  212.013495][T10357] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  212.047901][T10357] batman_adv: batadv0: Adding interface: batadv_slave_1
[  212.055899][T10357] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  212.093806][T10357] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  212.121162][ T1090] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.229699][ T1090] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.235999][ T5845] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  212.254197][ T5845] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  212.263801][ T5845] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  212.272086][ T5845] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  212.275838][T10357] hsr_slave_0: entered promiscuous mode
[  212.280230][ T5845] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  212.306129][T10357] hsr_slave_1: entered promiscuous mode
[  212.312463][T10357] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  212.320936][T10357] Cannot create hsr debugfs directory
[  212.352025][ T1090] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.610370][T10430] netlink: 'syz.3.1408': attribute type 10 has an invalid length.
[  212.770697][T10439] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1411'.
[  212.817223][T10439] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1411'.
[  212.826685][T10439] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1411'.
[  212.893966][ T5837] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  213.238311][ T1090] batman_adv: batadv0: Interface deactivated: macvlan2
[  213.266474][ T1090] batman_adv: batadv0: Removing interface: macvlan2
[  213.457840][ T1090] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  213.470217][ T1090] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  213.481071][ T1090] bond0 (unregistering): Released all slaves
[  213.498301][ T1090] bond1 (unregistering): Released all slaves
[  213.511621][ T1090] bond2 (unregistering): Released all slaves
[  213.529689][ T1090] bond3 (unregistering): Released all slaves
[  213.587150][T10357] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.618456][T10431] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  213.714444][T10357] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.811047][T10357] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.880507][ T1090] ------------[ cut here ]------------
[  213.886498][ T1090] Have pending ack frames!
[  213.906023][ T1090] WARNING: CPU: 0 PID: 1090 at net/mac80211/main.c:1716 ieee80211_free_ack_frame+0x4d/0x60
[  213.916613][ T1090] Modules linked in:
[  213.920950][ T1090] CPU: 0 UID: 0 PID: 1090 Comm: kworker/u8:5 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  213.933624][ T1090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  213.933988][T10357] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.944184][ T1090] Workqueue: netns cleanup_net
[  213.958527][ T1090] RIP: 0010:ieee80211_free_ack_frame+0x4d/0x60
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  213.965159][ T1090] Code: 00 00 e8 e6 04 71 fe 31 c0 5b e9 be 20 95 00 cc e8 88 bc ea f6 c6 05 b4 ab b5 04 01 90 48 c7 c7 40 40 ae 8c e8 04 65 ae f6 90 <0f> 0b 90 90 eb c8 cc cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90
[  213.985102][ T1090] RSP: 0018:ffffc90003c3f610 EFLAGS: 00010246
[  213.991184][ T1090] RAX: 4a840cb3c997d400 RBX: ffff88807d44cb40 RCX: ffff888026cdbc00
[  213.999619][ T1090] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  214.008752][ T1090] RBP: ffffc90003c3f718 R08: 0000000000000003 R09: 0000000000000004
[  214.016865][ T1090] R10: dffffc0000000000 R11: fffffbfff1bfaa04 R12: ffffc90003c3f680
[  214.024942][ T1090] R13: ffff88806fc09e70 R14: ffff88805a8b2fa8 R15: 0000000000000001
[  214.032923][ T1090] FS:  0000000000000000(0000) GS:ffff888125c48000(0000) knlGS:0000000000000000
[  214.041892][ T1090] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  214.048514][ T1090] CR2: 00007fef9303ede3 CR3: 000000006ce22000 CR4: 00000000003526f0
[  214.056574][ T1090] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  214.064592][ T1090] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  214.072976][ T1090] Call Trace:
[  214.076311][ T1090]  <TASK>
[  214.079246][ T1090]  idr_for_each+0x1b5/0x290
[  214.083798][ T1090]  ? __pfx_ieee80211_free_ack_frame+0x10/0x10
[  214.089884][ T1090]  ? __pfx_idr_for_each+0x10/0x10
[  214.094971][ T1090]  ? kobject_put+0x270/0x480
[  214.099575][ T1090]  ? kfree+0x18e/0x440
[  214.103690][ T1090]  ieee80211_free_hw+0xc6/0x480
[  214.108556][ T1090]  mac80211_hwsim_del_radio+0x2de/0x460
[  214.114206][ T1090]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[  214.120296][ T1090]  hwsim_exit_net+0x584/0x640
[  214.125023][ T1090]  ? __pfx_hwsim_exit_net+0x10/0x10
[  214.130234][ T1090]  ? __ip_vs_dev_cleanup_batch+0x238/0x260
[  214.136085][ T1090]  ops_undo_list+0x497/0x990
[  214.140691][ T1090]  ? __pfx_ops_undo_list+0x10/0x10
[  214.145854][ T1090]  cleanup_net+0x4c5/0x800
[  214.150275][ T1090]  ? __pfx_cleanup_net+0x10/0x10
[  214.155248][ T1090]  ? _raw_spin_unlock_irq+0x23/0x50
[  214.160448][ T1090]  ? process_scheduled_works+0x9ef/0x17b0
[  214.166299][ T1090]  ? process_scheduled_works+0x9ef/0x17b0
[  214.172460][ T1090]  process_scheduled_works+0xae1/0x17b0
[  214.178082][ T1090]  ? __pfx_process_scheduled_works+0x10/0x10
[  214.184120][ T1090]  worker_thread+0x8a0/0xda0
[  214.188757][ T1090]  kthread+0x70e/0x8a0
[  214.192829][ T1090]  ? __pfx_worker_thread+0x10/0x10
[  214.198006][ T1090]  ? __pfx_kthread+0x10/0x10
[  214.202613][ T1090]  ? _raw_spin_unlock_irq+0x23/0x50
[  214.207893][ T1090]  ? lockdep_hardirqs_on+0x9c/0x150
[  214.213130][ T1090]  ? __pfx_kthread+0x10/0x10
[  214.217733][ T1090]  ret_from_fork+0x3fc/0x770
[  214.222333][ T1090]  ? __pfx_ret_from_fork+0x10/0x10
[  214.227493][ T1090]  ? __switch_to_asm+0x39/0x70
[  214.232263][ T1090]  ? __switch_to_asm+0x33/0x70
[  214.237071][ T1090]  ? __pfx_kthread+0x10/0x10
[  214.241669][ T1090]  ret_from_fork_asm+0x1a/0x30
[  214.246513][ T1090]  </TASK>
[  214.249547][ T1090] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  214.256825][ T1090] CPU: 0 UID: 0 PID: 1090 Comm: kworker/u8:5 Not tainted 6.16.0-rc3-syzkaller-00903-g20a0c20f82ac #0 PREEMPT(full) 
[  214.268971][ T1090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  214.279032][ T1090] Workqueue: netns cleanup_net
[  214.283812][ T1090] Call Trace:
[  214.287093][ T1090]  <TASK>
[  214.290018][ T1090]  dump_stack_lvl+0x99/0x250
[  214.294600][ T1090]  ? __asan_memcpy+0x40/0x70
[  214.299184][ T1090]  ? __pfx_dump_stack_lvl+0x10/0x10
[  214.304381][ T1090]  ? __pfx__printk+0x10/0x10
[  214.308970][ T1090]  panic+0x2db/0x790
[  214.312860][ T1090]  ? __pfx_panic+0x10/0x10
[  214.317363][ T1090]  ? ret_from_fork_asm+0x1a/0x30
[  214.322291][ T1090]  __warn+0x31b/0x4b0
[  214.326263][ T1090]  ? ieee80211_free_ack_frame+0x4d/0x60
[  214.331815][ T1090]  ? ieee80211_free_ack_frame+0x4d/0x60
[  214.337353][ T1090]  report_bug+0x2be/0x4f0
[  214.341668][ T1090]  ? ieee80211_free_ack_frame+0x4d/0x60
[  214.347207][ T1090]  ? ieee80211_free_ack_frame+0x4d/0x60
[  214.352744][ T1090]  ? ieee80211_free_ack_frame+0x4f/0x60
[  214.358283][ T1090]  handle_bug+0x84/0x160
[  214.362516][ T1090]  exc_invalid_op+0x1a/0x50
[  214.367008][ T1090]  asm_exc_invalid_op+0x1a/0x20
[  214.371843][ T1090] RIP: 0010:ieee80211_free_ack_frame+0x4d/0x60
[  214.377988][ T1090] Code: 00 00 e8 e6 04 71 fe 31 c0 5b e9 be 20 95 00 cc e8 88 bc ea f6 c6 05 b4 ab b5 04 01 90 48 c7 c7 40 40 ae 8c e8 04 65 ae f6 90 <0f> 0b 90 90 eb c8 cc cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90
[  214.397576][ T1090] RSP: 0018:ffffc90003c3f610 EFLAGS: 00010246
[  214.403630][ T1090] RAX: 4a840cb3c997d400 RBX: ffff88807d44cb40 RCX: ffff888026cdbc00
[  214.411583][ T1090] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  214.419537][ T1090] RBP: ffffc90003c3f718 R08: 0000000000000003 R09: 0000000000000004
[  214.427494][ T1090] R10: dffffc0000000000 R11: fffffbfff1bfaa04 R12: ffffc90003c3f680
[  214.435451][ T1090] R13: ffff88806fc09e70 R14: ffff88805a8b2fa8 R15: 0000000000000001
[  214.443425][ T1090]  idr_for_each+0x1b5/0x290
[  214.447918][ T1090]  ? __pfx_ieee80211_free_ack_frame+0x10/0x10
[  214.453994][ T1090]  ? __pfx_idr_for_each+0x10/0x10
[  214.459014][ T1090]  ? kobject_put+0x270/0x480
[  214.463602][ T1090]  ? kfree+0x18e/0x440
[  214.467678][ T1090]  ieee80211_free_hw+0xc6/0x480
[  214.472532][ T1090]  mac80211_hwsim_del_radio+0x2de/0x460
[  214.478077][ T1090]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[  214.484151][ T1090]  hwsim_exit_net+0x584/0x640
[  214.488830][ T1090]  ? __pfx_hwsim_exit_net+0x10/0x10
[  214.494022][ T1090]  ? __ip_vs_dev_cleanup_batch+0x238/0x260
[  214.499824][ T1090]  ops_undo_list+0x497/0x990
[  214.504420][ T1090]  ? __pfx_ops_undo_list+0x10/0x10
[  214.509547][ T1090]  cleanup_net+0x4c5/0x800
[  214.513960][ T1090]  ? __pfx_cleanup_net+0x10/0x10
[  214.518896][ T1090]  ? _raw_spin_unlock_irq+0x23/0x50
[  214.524085][ T1090]  ? process_scheduled_works+0x9ef/0x17b0
[  214.529812][ T1090]  ? process_scheduled_works+0x9ef/0x17b0
[  214.535525][ T1090]  process_scheduled_works+0xae1/0x17b0
[  214.541088][ T1090]  ? __pfx_process_scheduled_works+0x10/0x10
[  214.547073][ T1090]  worker_thread+0x8a0/0xda0
[  214.551675][ T1090]  kthread+0x70e/0x8a0
[  214.555734][ T1090]  ? __pfx_worker_thread+0x10/0x10
[  214.560834][ T1090]  ? __pfx_kthread+0x10/0x10
[  214.565410][ T1090]  ? _raw_spin_unlock_irq+0x23/0x50
[  214.570590][ T1090]  ? lockdep_hardirqs_on+0x9c/0x150
[  214.575769][ T1090]  ? __pfx_kthread+0x10/0x10
[  214.580345][ T1090]  ret_from_fork+0x3fc/0x770
[  214.584926][ T1090]  ? __pfx_ret_from_fork+0x10/0x10
[  214.590031][ T1090]  ? __switch_to_asm+0x39/0x70
[  214.594777][ T1090]  ? __switch_to_asm+0x33/0x70
[  214.599523][ T1090]  ? __pfx_kthread+0x10/0x10
[  214.604100][ T1090]  ret_from_fork_asm+0x1a/0x30
[  214.608862][ T1090]  </TASK>
[  214.612112][ T1090] Kernel Offset: disabled
[  214.616426][ T1090] Rebooting in 86400 seconds..