last executing test programs:

5.789464896s ago: executing program 4 (id=2195):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x6000000, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

5.374344511s ago: executing program 3 (id=2200):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x74, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_EXPRESSIONS={0x38, 0x12, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x1000}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x1}]}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xbc}}, 0x20050800)

5.36443169s ago: executing program 2 (id=2201):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=@updpolicy={0xc4, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@private0={0xfc, 0x0, '\x00', 0x2}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0xfffffffffffffffc}, {}, 0x400}, [@policy_type={0xa, 0x10, {0x1}}]}, 0xc4}}, 0x4c050)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x14, 0x1, 0x0, 0x0, {{@in=@private=0xa010100, @in=@multicast2, 0xfffd, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x80, 0x40000000000000}}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in=@broadcast, 0x0, 0x3, 0x3, 0x20, 0x0, 0x1}]}]}, 0xfc}}, 0x0)
syz_emit_ethernet(0x46, 0x0, 0x0)

5.309826648s ago: executing program 0 (id=2202):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x4000050)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
socket$kcm(0x10, 0x2, 0x10)
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000040)=0xc, 0x4)
r1 = socket(0x10, 0x3, 0x6)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000840)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x1, 0x9}}}, 0x24}, 0x1, 0x0, 0x0, 0x200040c4}, 0x0)
r2 = socket$kcm(0x29, 0x5, 0x0)
sendmsg$kcm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000004c0)="d80000002f0081024e81f782db44b904111d080005000000e8fe55a1180015000600142603600e120900210000000400090000000000000000000021d67f5194007134cf6ee08000a0e408e8d8ef52298516277ce06bbace8017cbec4c2ee5a7cef4091b148e68d99f70d6ba30dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809f6e1cace2a9ecfee5de6ccd40dd6e4edef3d93452a92954b4337f97d1d713e0500"/209, 0xd1}], 0x1}, 0x20000000)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r3, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x20000003}}}, 0x10)
bind$tipc(r3, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
bind$tipc(r4, &(0x7f0000000440)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x3}}, 0x10)
bind$tipc(r4, &(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42, 0xfffffffe}}}, 0x10)
bind$tipc(r3, 0x0, 0x0)
socket$kcm(0x29, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wlan0\x00'})
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44880}, 0x4000810)

5.259391201s ago: executing program 3 (id=2203):
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000004c0)={'sit0\x00', &(0x7f0000000180)={'ip_vti0\x00', <r2=>0x0, 0x7880, 0x20, 0xfffffff9, 0x5, {{0xe, 0x4, 0x0, 0x2e, 0x38, 0x68, 0x0, 0x4d, 0x2f, 0x0, @local, @broadcast, {[@ssrr={0x89, 0x13, 0xac, [@empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102, @empty]}, @generic={0x88, 0x11, "3448755ace04b297a97e36f2cd3ef8"}]}}}}})
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000680)={&(0x7f0000000500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x6c, 0x6c, 0x6, [@union={0x4, 0x3, 0x0, 0x5, 0x1, 0x3, [{0x8, 0x3, 0x1672}, {0xe, 0x0, 0x3}, {0x8, 0x3, 0xffffffff}]}, @struct={0x8, 0x3, 0x0, 0x4, 0x0, 0x0, [{0xa, 0x4, 0x9}, {0x9, 0x2, 0x10}, {0x7, 0x4, 0x9}]}, @func={0x7, 0x0, 0x0, 0xc, 0x3}]}, {0x0, [0x2e, 0x61, 0x5f, 0x61]}}, &(0x7f00000005c0)=""/157, 0x8a, 0x9d, 0x1, 0x100, 0x10000, @value}, 0x28)
r4 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000740)=@o_path={&(0x7f0000000700)='./file0\x00', 0x0, 0x10, r0}, 0x18)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0x15, 0x9, 0x0, 0x2, 0x42084, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{0x1, <r6=>0xffffffffffffffff}, &(0x7f0000000800), &(0x7f0000000840)}, 0x20)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000008c0)={0x1b, 0x0, 0x0, 0x401, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000940)={0x1, <r8=>0xffffffffffffffff}, 0x4)
r9 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x3a, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_ATTACH(0x1c, &(0x7f00000010c0)={@map=r9, 0xffffffffffffffff, 0x2c, 0x0, 0xffffffffffffffff, @void, @value}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0xe, 0x0, &(0x7f0000000080), &(0x7f0000000140)='GPL\x00', 0x4932, 0xe8, &(0x7f0000000240)=""/232, 0x40f00, 0x3, '\x00', r2, @sk_skb=0x4, r3, 0x8, &(0x7f00000006c0)={0x5, 0x1}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000980)=[r4, r5, r6, r7, r8, 0x1, 0x1, r9], 0x0, 0x10, 0x9, @void, @value}, 0x94)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f00000000c0)=@framed={{0xffffffb4, 0x2, 0x0, 0x0, 0x0, 0x61, 0x11, 0x8d}, [@call={0x85, 0x0, 0x0, 0x5f}]}, &(0x7f0000000380)='GPL\x00', 0x5, 0xc3, &(0x7f00000003c0)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000100), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x8, 0x0, 0x4}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bind$llc(r0, &(0x7f0000000040), 0x10)

5.194330214s ago: executing program 2 (id=2204):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x28, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r0}, 0x18)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="1400000037000b0fd25a806c8c6f94f907000000", 0x14}], 0x1, 0x0, 0x0, 0x20000000}, 0x408e0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x4, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb41a}, [@call={0x85, 0x0, 0x0, 0xbc}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f0000002240)=@get={0x1, &(0x7f0000001880)=""/36, 0x2})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="02000000040000000800"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0x10, &(0x7f0000000000)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

5.186067062s ago: executing program 0 (id=2205):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x6, 0x5, &(0x7f0000000600)=ANY=[@ANYBLOB="b4341a9b8833a6a54b4ae98aae65b153ef3e18693fb9eb5f7f77c48073f121057d4b0a48d443e99f2580a2e746606a2e3a12c204e6ba4ca582d63d486ad4dbd6577327e91a8c7c1f4b620f3b4355a314df8997e6cd5f68125c93115fadc6c7a3d8f022f9dfdd780d6be3fe243d462eba24184edcda94b879c731fbfff49b8b9111924d13fc52a7ab4d18c71e7e825d8101d8cc1bb321bb571ca80d745d14907068757e5d34a32f430c1347d000918e7338f5d6acecd72dc5831aaa71166aa18edbd846f502d5f08c38cc67bdba94ed6ed864192245cb4cfe14f2aa0f250e82c8ac02fa2c"], &(0x7f00000000c0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x8, &(0x7f00000002c0)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0, @exit, @alu={0x6, 0x1, 0xb, 0xa, 0xa, 0xffffffffffffffff}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='blkio.bfq.avg_queue_size\x00', 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000000180)=""/140, 0x8c}], 0x1, 0x1000, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000500)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000000c0000001800038014000380100001800400030008000100020000002000018008000300020000001400020076657468315f766972745f77696669002d98b9143f3de19592f288c620897c84d17fb0d46cb72b17d863a7433b0beb9c4bfb5de3fdc18e8acad5eb2882d4ca6fbc"], 0x4c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x11, 0x4, 0x1, 0xbf22, 0x210, r1, 0x0, '\x00', 0x0, r1, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket(0x2c, 0x3, 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'macvtap0\x00', <r5=>0x0})
setsockopt$inet6_mreq(r4, 0x29, 0x1b, &(0x7f0000000000)={@remote, r5}, 0x14)
close(r4)

5.15703661s ago: executing program 3 (id=2206):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000000), 0x4)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={<r1=>r0, 0x8, 0x5, 0x9})
getpeername$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000180)=0x14)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000001c0)={'vxcan0\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x60, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x240088c0}, 0x44001)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0xc1, 0xe4, &(0x7f0000000300)="0d86de01df1db8c729149cc08617c057feca1573391cb0dbf9820c6ce60ce6146c66692646ce26d19cda043441de79c9fe8531e74b2e63ed9b2ce733742d752bca63ec6d608e84c54ede53b2bb5057f69f50ca8e6ef2e229406e61707fc9a05d33c4c736c94e91831e338a14e216b8d472f26db5c4958ce8e5dddc8e7444b85e91bef0802fa2a48cd7626ac2b6a8f96c42adbaeb10e5f56b5dbcb58993ea263b715ce1d0e822709dd05303543466f7ff1b8d9cd4bb72a2e13f8e0e7f2fcecdd460", &(0x7f0000000400)=""/228, 0xf, 0x0, 0x88, 0x73, &(0x7f0000000500)="9d4d86f13694f2d29061378fcde12e1cfecadc7a9c3f86148db2b96aa6cd3b1005dcc210ecfbed717b1234c0fd339081e897d10ff9da39d6835fa107593c40ee9eb7f67e7232b2c37b4964be80a4dec7205da38039b1482fdd6d08e82aeac6cb8ee14a89856e89e4041630c618e712c9febd2fe600e531f8706ca17dc4ffd3900764ab8d6f735db5", &(0x7f00000005c0)="b99bb4c04a077cc7c02ec8ba8d0a4f97c6d9c1b9baa31c4844ccc63c2d6477ce92edf15296629fa6fbc98ada95836e6ad92d39850b56a0e7d72db9368c4c4c8ce0bd08e447bcb34d3cffd8bb5baf502b8c1eff18fa6dd69476e2663c604b05a11d70a2670c0a418d35fbc32ca2c7ba417b8c6b", 0x0, 0x0, 0x9}, 0x50)
close(r1)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x80, 0x2, 0x6, 0x801, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_NETMASK={0x5, 0x14, 0x2}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x3}]}, @IPSET_ATTR_DATA={0x3c, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x40}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x29}, @IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @mcast1}}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e23}, @IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x7fff}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x80}, 0x1, 0x0, 0x0, 0x4008000}, 0x24000000)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000840), r1)
sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f0000000a40)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000880)={0x178, r5, 0x1, 0x70bd25, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0xfc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x9}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xc2}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @broadcast}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x200, @remote, 0x7}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @local}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x3, @remote, 0x2}}}}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'eth', 0x3a, 'pimreg\x00'}}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6b}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xff}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'syz_tun\x00'}}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xe57}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xef1d}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xcd1}]}]}, 0x178}, 0x1, 0x0, 0x0, 0x40}, 0x4000000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000ac0)={'team0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000bc0)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b00)=@bridge_getlink={0x74, 0x12, 0x400, 0x70bd2d, 0x25dfdbfe, {0x7, 0x0, 0x0, r7, 0x10, 0x2000}, [@IFLA_CARRIER={0x5, 0x21, 0xf8}, @IFLA_NET_NS_FD={0x8, 0x1c, r1}, @IFLA_IFALIASn={0x4}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_PHYS_PORT_ID={0x1a, 0x22, "9709eb76bf5ed5842107df28588f41156c0b653af027"}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x9}, @IFLA_IFNAME={0x14, 0x3, 'bond_slave_1\x00'}]}, 0x74}, 0x1, 0x0, 0x0, 0xc000}, 0x20008018)
setsockopt$MRT_ADD_MFC_PROXY(r1, 0x0, 0xd2, &(0x7f0000000c00)={@dev={0xac, 0x14, 0x14, 0x36}, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffffffffffffff, "7f8b5e7b4a129cbe30bd0c22915acbc62b2cf949236897593846ee72b0026deb", 0x4, 0x8, 0x7, 0x6}, 0x3c)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000d00)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x2c, 0x2, 0x3, 0x5, 0x0, 0x0, {0x3}, [@NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008000}, 0x60000c0)
recvmsg$unix(r1, &(0x7f0000001fc0)={&(0x7f0000000d40)=@abs, 0x6e, &(0x7f0000001f40)=[{&(0x7f0000000dc0)=""/68, 0x44}, {&(0x7f0000000e40)=""/222, 0xde}, {&(0x7f0000000f40)=""/4096, 0x1000}], 0x3, &(0x7f0000001f80)=[@rights={{0x1c, 0x1, 0x1, [<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff]}}], 0x20}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r8, 0x89e2, &(0x7f0000002000)={<r11=>r9})
ioctl$sock_netrom_SIOCADDRT(r11, 0x890b, &(0x7f0000002040)={0x1, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bpq0, 0xfffffff7, 'syz0\x00', @bcast, 0x6, 0x7, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]})
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r11, 0x84, 0x76, &(0x7f00000020c0)={0x0, 0x2}, &(0x7f0000002100)=0x8)
connect$rxrpc(r10, &(0x7f0000002140)=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e21, 0xff, @loopback, 0x7}}, 0x24)
epoll_create1(0x80000)
ioctl$sock_FIOGETOWN(r9, 0x8903, &(0x7f0000002180)=<r12=>0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000002200)={r12, r9, 0x0, 0x7, &(0x7f00000021c0)='TIPCv2\x00'}, 0x30)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002700)={r8, 0xe0, &(0x7f0000002600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000002440)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r13=>0x0, 0x0, 0x0, 0x0, 0x1, 0x8, &(0x7f0000002480)=[0x0], &(0x7f00000024c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xf9, &(0x7f0000002500)=[{}], 0x8, 0x10, &(0x7f0000002540), &(0x7f0000002580), 0x8, 0xed, 0x8, 0x8, &(0x7f00000025c0)}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002780)={0x11, 0x11, &(0x7f0000002240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6e, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r9}}, {}, [@map_fd={0x18, 0xb, 0x1, 0x0, r1}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000002300)='syzkaller\x00', 0x351d, 0xcf, &(0x7f0000002340)=""/207, 0x41000, 0x44, '\x00', r13, 0x0, r8, 0x8, 0x0, 0x0, 0x10, &(0x7f0000002740)={0x0, 0x0, 0x200, 0x8}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff, @void, @value}, 0x94)
ioctl$TUNGETDEVNETNS(r9, 0x54e3, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
socket$inet6_sctp(0xa, 0x1, 0x84)

5.102726959s ago: executing program 2 (id=2207):
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, @local, {[], {{0x0, 0x4e21, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$fou(&(0x7f00000000c0), r0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000100)={'gretap0\x00', &(0x7f00000003c0)={'syztnl1\x00', <r2=>0x0, 0x7, 0x1, 0x8, 0x5, {{0x22, 0x4, 0x1, 0x2c, 0x88, 0x64, 0x0, 0x0, 0x4, 0x0, @rand_addr=0x64010100, @private=0xa010101, {[@cipso={0x86, 0x46, 0xffffffffffffffff, [{0x2, 0xa, "589b370a58ec8ce5"}, {0x1, 0x11, "faae1e3f76c2be07d77af3401f1fda"}, {0x0, 0xd, "93fcb5b0b384ce31fab90d"}, {0x1, 0x6, "ba056533"}, {0x6, 0xf, "55ad2bd03f32a353a0d3940263"}, {0x2, 0x3, 'r'}]}, @timestamp_addr={0x44, 0x2c, 0xff, 0x1, 0x6, [{@loopback, 0xffff}, {@dev={0xac, 0x14, 0x14, 0xf}, 0x80000001}, {@dev={0xac, 0x14, 0x14, 0x18}, 0x9}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0xb4c}, {@private=0xa010102, 0x1}]}]}}}}})
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000540)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000500)={&(0x7f0000000300)={0x80, r1, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@FOU_ATTR_PEER_V4={0x8, 0x8, @loopback}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @mcast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @ipv4={'\x00', '\xff\xff', @local}}, @FOU_ATTR_TYPE={0x5, 0x4, 0x3}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e22}, @FOU_ATTR_TYPE={0x5}, @FOU_ATTR_IFINDEX={0x8, 0xb, r2}, @FOU_ATTR_PEER_V4={0x8, 0x8, @empty}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @dev={0xfe, 0x80, '\x00', 0x2e}}]}, 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x48054)
recvmmsg(r0, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}], 0x1}}], 0x1, 0x0, 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-sse2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000e40)={0x14, 0x0, 0x1, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x200508c0)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x1a, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x2, 0x0, 0x0, @u64}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@local}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd"]}]}, 0x114}], 0x1}, 0x0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000180)={<r6=>0x0, 0x36, "85bcb024f0a68cd476b3d6f44a22cd6b787b7bf8f978fc58ea07f4ade2893cc49cd8bcdc5b61b5c0d0a80d6b7a483318c882cb53d273"}, &(0x7f00000001c0)=0x3e)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000200)={r6, @in6={{0xa, 0x4e24, 0xa642, @mcast2, 0x4}}, [0x8, 0xe, 0x9, 0x6, 0x0, 0x3a1, 0xd9b1, 0x6, 0x8, 0x2, 0xa, 0x6c, 0x7343, 0x400, 0x8c]}, &(0x7f0000000300)=0x100)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x7, &(0x7f0000000140)=0x2, 0x4)
syz_emit_ethernet(0x6a, &(0x7f0000000080)={@random="44262273379a", @multicast, @void, {@llc_tr={0x11, {@llc={0x1, 0xff, 'z', "99ad3057d80cb5d7c78ea969592abd17ced7446d8c949c9d055b2890a97de203357c4fef2a94fc20e682c3a6c401d0656a5edac99097c70f936b6365aa681c2bf10789392a02aef2f75275ab25f1403c5a511e82922cafc35b"}}}}}, &(0x7f0000000100)={0x0, 0x1, [0x526, 0x28a, 0xdd8, 0x8b7]})
socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'veth0_to_bond\x00', <r8=>0x0})
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0xc}, {0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x20040000)
r10 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000000040)={0x0, <r11=>0x0}, &(0x7f0000000280)=0xc)
sendmsg$netlink(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000580)={0x34, 0x2e, 0x1, 0x70bd2a, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid=r11}, @nested={0x1c, 0x0, 0x0, 0x1, [@nested={0x18, 0x131, 0x0, 0x1, [@typed={0x11, 0x11d, 0x0, 0x0, @str='}!#^#\\,/,)\'/\x00'}]}]}]}, 0x34}], 0x1}, 0x0)

5.050448945s ago: executing program 4 (id=2208):
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, 0x0, 0x2000c000)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
writev(r0, 0x0, 0x0)

4.984759446s ago: executing program 3 (id=2209):
bind$alg(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r1 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_TIOCINQ(r1, 0x541b, &(0x7f0000000000))
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @random="e5db029ea53c"})
write$cgroup_devices(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="1e000300008c71ef28ff4b"], 0xffdd)

4.886610596s ago: executing program 0 (id=2210):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x400})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000007940)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20048010}, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xa, 0xfff3}, {0x0, 0xfff1}, {0xffe0, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000094}, 0x4041080)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r4 = socket(0x10, 0x5, 0x9)
sendmsg$nl_route_sched(r4, 0x0, 0x0)
r5 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
connect$bt_rfcomm(r5, &(0x7f0000000040)={0x1f, @any, 0x2}, 0x5e)
recvmmsg(r5, &(0x7f0000007440)=[{{&(0x7f0000000280)=@nl=@proc, 0x80, &(0x7f0000000ac0)=[{&(0x7f000000ab40)=""/4107, 0x100b}, {&(0x7f0000000300)=""/61, 0x3d}, {&(0x7f0000000340)=""/91, 0x5b}, {&(0x7f0000000700)=""/143, 0x8f}, {&(0x7f00000007c0)=""/252, 0xfc}, {&(0x7f00000008c0)=""/255, 0xff}, {&(0x7f00000009c0)=""/234, 0xea}, {&(0x7f0000002300)=""/4096, 0x1000}], 0x8, &(0x7f0000003300)=""/4096, 0x1000}, 0x78}, {{&(0x7f0000000b40)=@vsock, 0x80, &(0x7f0000000dc0)=[{&(0x7f00000003c0)=""/5, 0x5}, {&(0x7f0000000440)=""/2, 0x2}, {&(0x7f0000000bc0)=""/184, 0xb8}, {&(0x7f0000000500)=""/14, 0xe}, {&(0x7f0000000c80)=""/18, 0x12}, {&(0x7f0000000cc0)=""/133, 0x85}, {&(0x7f0000000d80)=""/59, 0x3b}], 0x7, &(0x7f0000001340)=""/157, 0x9d}, 0x6}, {{&(0x7f0000000f00)=@phonet, 0x80, &(0x7f0000001200)=[{&(0x7f0000000f80)=""/37, 0x25}, {&(0x7f0000004300)=""/4096, 0x1000}, {&(0x7f0000006080)=""/4096, 0x1000}, {&(0x7f0000000fc0)=""/186, 0xba}, {&(0x7f0000001080)=""/243, 0xf3}, {&(0x7f0000001180)=""/108, 0x6c}, {&(0x7f0000007980)=""/4096, 0x1000}], 0x7, &(0x7f0000001280)=""/35, 0x23}, 0x8000}, {{&(0x7f0000005300)=@can, 0x80, &(0x7f0000005840)=[{&(0x7f0000005380)}, {&(0x7f0000001400)=""/242, 0xf2}, {&(0x7f0000007680)=""/134, 0x86}, {0x0}, {&(0x7f0000005640)=""/163, 0xa3}, {&(0x7f0000005700)=""/165, 0xa5}, {0x0}, {&(0x7f0000008980)=""/4096, 0x1000}], 0x8, &(0x7f00000058c0)=""/154, 0x9a}, 0x7f}, {{0x0, 0x0, &(0x7f0000005ec0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000005b40)=""/52, 0x34}, {&(0x7f0000005b80)=""/234, 0xea}, {&(0x7f0000005c80)=""/173, 0xad}, {0x0}, {0x0}], 0x8, &(0x7f0000007080)=""/236, 0xec}, 0x8}, {{0x0, 0x0, &(0x7f0000007300)=[{&(0x7f0000005f80)=""/145, 0x91}, {&(0x7f0000007280)=""/101, 0x65}], 0x2, &(0x7f0000007340)=""/234, 0xea}, 0xc0f0}], 0x6, 0x2000, 0x0)
r6 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), r4)
syz_emit_ethernet(0x4a, &(0x7f000000aac0)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd608a96460014060000000000000000000000000000000000fe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="530700c96a47bf00"], 0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(r4, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="fc000000", @ANYRES16=r7, @ANYBLOB="00012bbd7000fddbdf2509000000340003800500080005000000060007004e20000008000300020000000600040003000000060004000500000008000100020000004c00028006000b000a0000000800030006000000080009000400000008000300030000000800080003000000060102004e21000006000f000700000006000b000a00000008000e004e2300002400018007000600666f00000800090064000000060004004e24000008000b00736970003c0001800800050001000000140003000a01010200000000000000000000000008000800898c000000001400030020feffffffffffffff000000000000000800060086eb0000"], 0xfc}, 0x1, 0x0, 0x0, 0x240088d0}, 0x8000)
connect$bt_rfcomm(r6, &(0x7f00000001c0)={0x1f, @none, 0x1}, 0xa)
shutdown(r5, 0x1)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$inet_tcp_int(r8, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r8, &(0x7f0000000140)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r8, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149)

4.808214364s ago: executing program 2 (id=2211):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001300))
socket(0x8000000010, 0x2, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000005500010e0e000000fe0f000007000000", @ANYRES32=r2, @ANYBLOB="200001"], 0x38}}, 0xc000)

3.801865571s ago: executing program 1 (id=2213):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x74, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_EXPRESSIONS={0x38, 0x12, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x1000}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x1}]}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xbc}}, 0x20050800)

3.678517408s ago: executing program 1 (id=2214):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(r0, 0x0, 0x81, &(0x7f0000000040)={'filter\x00', 0x0, 0x0, 0x0, [0xfffffffffffffffe, 0x100000000000, 0x0, 0x0, 0x3, 0x800], 0x0, 0x0}, 0x78)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='memory.swap.events\x00', 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000280)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x6c, r4, 0x4, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa00000}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x216}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16e9}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x1000}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x36f}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xd}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e20, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r2, 0x0, 0x17, &(0x7f0000000040)=0xe, 0x4)
setsockopt$inet_int(r2, 0x0, 0x14, &(0x7f0000000180)=0x40000000, 0x4)
recvmmsg(r2, &(0x7f0000002a40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002a00)=""/27, 0x1b}, 0xa}], 0x1, 0x45833af92e4b39ff, 0x0)
recvmmsg(r2, &(0x7f0000005200)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x5}], 0x2, 0x12001, 0x0)
sendmsg$can_bcm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="05000000030800"/16, @ANYRES64=0x0, @ANYRES64=0x2710], 0x80}}, 0x0)

3.224525676s ago: executing program 1 (id=2215):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000002c0)="140000001d000b63d25a80648c2594", 0xf}, {&(0x7f0000000580)="3f1c2725e7", 0x5}], 0x2}, 0x4000000)
bind$802154_dgram(r0, &(0x7f0000000040)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r2, &(0x7f0000000240)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000e80)="632a1e", 0x3}], 0x1, 0x0, 0x0, 0x4090}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10012, r3, 0x0)
read$alg(r3, &(0x7f0000003780)=""/4080, 0xff0)
r4 = socket$inet(0x2, 0x6, 0x0)
getsockopt$sock_buf(r4, 0x6, 0x23, 0x0, &(0x7f0000000380)=0xc00)
r5 = socket$nl_crypto(0x10, 0x3, 0x15)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000600)=ANY=[@ANYBLOB="b4050000000000007110350000000000150000000000000095000000000000002afa56e00081b9da2fc97c1ece068340b9c3a6b3d14e134f5ac8e68c93fba2adee1c6dc95ae7ed05c8d3de1001d220bb72c097de24d14c6cd5433fee8389eb52489eecafe9dc58f1fe552fa71e1d31c33b59237585732bd978d20fe9cff042da0e8c651db1ec4298950373084fa4a98460e3e09e587803a6c99f5dcc2f3f63c6de158109ae4a62a207dc6c724b787e8ff0b1f1120af5f83050d9ba2252289fdb9ae6c37306d9baccf307d636ba7a306c34bb0ef30733ed30cee93a58395c00ddb13946f182d95be2ac4232f023349942b5cddb4eb465c8d100"/262], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = socket$packet(0x11, 0x3, 0x300)
setsockopt$sock_attach_bpf(r8, 0x1, 0x32, &(0x7f0000000040)=r7, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r6, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e00000001500000029bd7000000000006469676573745f6e756c6c2d67656e65726963"], 0xe0}, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r10=>0x0})
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="700000001000010000000000fb0c000000000000", @ANYRES32=r10, @ANYBLOB="0006000000000000500012800b00010067656e657665000040000280060005004e23000014000700fe880000000000000000000000000101060005004e2400000500090001000000080002"], 0x70}, 0x1, 0x2}, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r11, 0x10e, 0xc, &(0x7f0000000040)=0xe00000, 0x4)
sendmsg$nl_route(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a0001970000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\b'], 0x24}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r12 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r12, 0x84, 0x6e, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x80000000, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x8}], 0x1c)
sendmsg$nl_crypto(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}, 0x1, 0x4100}, 0x0)

2.429478446s ago: executing program 4 (id=2216):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050017000000000000000600000008000300", @ANYRES32=r2, @ANYBLOB="080005"], 0x24}}, 0x0)

643.325582ms ago: executing program 0 (id=2217):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x28, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r0}, 0x18)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="1400000037000b0fd25a806c8c6f94f907000000", 0x14}], 0x1, 0x0, 0x0, 0x20000000}, 0x408e0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x4, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb41a}, [@call={0x85, 0x0, 0x0, 0xbc}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f0000002240)=@get={0x1, &(0x7f0000001880)=""/36, 0x2})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="02000000040000000800"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0x10, &(0x7f0000000000)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

562.175003ms ago: executing program 2 (id=2218):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000001dc0), r0)
sendmsg$FOU_CMD_GET(r0, &(0x7f0000001ec0)={0x0, 0x0, &(0x7f0000001e80)={&(0x7f0000001e00)={0x40, r1, 0x101, 0x70bd2c, 0x25dfdbfc, {}, [@FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @empty}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e20}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x48020)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0e00000004000000040000000100000001200000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000002856654c706d6d989e31cf8251e998f5d4d0311d96cd75cd6c37018ceae85314b15826f22215cadee90b9b8bfc014a4dc88d1e47ba609ee2127766ad194757f29714c1422ff9806228917f837243"], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000380)={r3, &(0x7f0000000400), &(0x7f0000000c40), 0x1}, 0x20)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000240)={0x0, 0xfffffffffffffe1a, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r5)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x20, r6, 0x607, 0x70bd28, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x8801}, 0x810)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000500)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x38, r6, 0x20, 0x70bd2b, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy2\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x4044)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[], 0x6c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0xd7, 0x5, 0x2, 0x80, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x4, 0x8, @void, @value, @void, @value}, 0x50)
r7 = socket$kcm(0x11, 0x3, 0x0)
vmsplice(r7, 0x0, 0x0, 0x8)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000200)={'batadv0\x00', <r8=>0x0})
sendmsg$kcm(r7, &(0x7f0000000080)={&(0x7f0000001340)=@xdp={0x2c, 0x0, r8, 0x23}, 0x80, &(0x7f0000000480)=[{&(0x7f00000004c0)="b8b28225ea772f0daee8c7c98100", 0xe}], 0x1}, 0x20000000)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
writev(r9, &(0x7f0000000400)=[{&(0x7f00000002c0)="a609a89c9edd34187123b5adceb38c8557f4e107445a53c0815c9636d00f896d1e8cd8de77a79f1e3e2c53ddf1bb9f8ac5cb5257ff4e8b960026bc4244c4b09179a97dffdf02563e23546d3e78f944e7e2fee2a0e354223318badb21d8c086669c5f7772f4a6d90d0997babdf79f7d557e055b3e6f2e4f41ec06a39a57b9ccc00bbca22395e41f9e9652af665f0e1603fb85d4799d54d44c706ff8df9bb805b182a1260b5936ae44f649b5e2fdca240984dcd074ddc28aeaaa686608c5c50538ee", 0xc1}], 0x1)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r9, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000580)={<r10=>0xffffffffffffffff})
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000006c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000840)=ANY=[@ANYBLOB="8ebdbe010eca5bb7213c1b194cdc638754c383f9aa482cd7f537f4c3e5568c65f37f0f3b25f104fe0a26167c324b51bc718deb23aa4a5c4cff9e1f76751bf856163b08a00d3005d702c264665b980cae4061059b70e0c50b70747e9bd9bc0a0000d9b07a45ccf7fd3e48f3497f741ac32099addddd1ac364e29e427b029a5d51cbbc", @ANYRES16=r4, @ANYBLOB="00012cbd7000fcdbdf25020000001400078008000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="0c00060001000000000000001400078008000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="0c00080008000000000000000c0008000a000000000000002c00078008000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r10, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="640e66a4", @ANYRES32=r9, @ANYBLOB], 0x8c}, 0x1, 0x0, 0x0, 0x10}, 0x1)
socket$kcm(0xa, 0x1, 0x106)
r11 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r11, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r11, 0x1, 0x8, &(0x7f0000000200), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r11, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r11)

561.924555ms ago: executing program 1 (id=2219):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000050000000200000000"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000080)={0x42, 0x80000009, 0x2}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r3, &(0x7f0000000140)={&(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x42, 0x80000009}}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4004081}, 0x20000000)

559.153107ms ago: executing program 4 (id=2220):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x70}}, 0x0)
sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB="571210c1f19676d4e7f00bdd0cc72a66c16191cb33448ed8bb38072ea524d45f7e192d"], 0x294}, 0x1, 0x0, 0x0, 0x841}, 0x40)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x2, 0x3, 0x4)
r2 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000040)={'team0\x00', <r3=>0x0})
r4 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r4, 0x65, 0x2, &(0x7f00000003c0)=0x10000, 0x4)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x90, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff2}, {0xffff, 0xffff}, {0x0, 0x1}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1dc], [0x0, 0x4]}}}}, @TCA_RATE={0x6}]}, 0x90}}, 0x20000000)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_TIMEOUT(r5, 0x0, 0x48a, &(0x7f0000000080)={0x1, 0x8}, 0xc)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r8 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r8, 0x0, 0xd2, &(0x7f0000000000)={@remote, @multicast1, 0x4, "d30f388c52647612d91de4353d68b0fa00", 0x0, 0x0, 0x4000000, 0x8}, 0x3c)
setsockopt$MRT_ADD_MFC(r8, 0x0, 0xcc, &(0x7f0000000280)={@broadcast, @multicast1, 0x1, "7ea97ddb2ac127ffa5b7216fe75ebaa2855a422a8bf8ec7caf003751804500", 0x0, 0x0, 0x4, 0xfffffffe}, 0x3c)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0xf3a, 0x3)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000), 0xffffff98)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x4)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x0)
setsockopt$MRT_ADD_MFC(r8, 0x0, 0xcc, &(0x7f0000000200)={@empty, @private, 0x0, "606b177019716ea6ff1f4d7ed79c31e2e0f1da00000000230000002000", 0x3e1f}, 0x3c)
setsockopt$MRT_ADD_MFC(r8, 0x0, 0xcc, &(0x7f0000000180)={@private=0xa010102, @multicast2, 0x0, "941621a61c5815f4678d8fd403f2f30229a88d74d71fd55708016d20fd419884", 0x0, 0x1}, 0x3c)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, 0x0)
sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32, @ANYBLOB="0c00990000000000000000000800a000ea15000008009f0005000000080026000816"], 0x40}}, 0x200040b4)

538.618044ms ago: executing program 3 (id=2221):
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, @local, {[], {{0x0, 0x4e21, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$fou(&(0x7f00000000c0), r0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000100)={'gretap0\x00', &(0x7f00000003c0)={'syztnl1\x00', <r2=>0x0, 0x7, 0x1, 0x8, 0x5, {{0x22, 0x4, 0x1, 0x2c, 0x88, 0x64, 0x0, 0x0, 0x4, 0x0, @rand_addr=0x64010100, @private=0xa010101, {[@cipso={0x86, 0x46, 0xffffffffffffffff, [{0x2, 0xa, "589b370a58ec8ce5"}, {0x1, 0x11, "faae1e3f76c2be07d77af3401f1fda"}, {0x0, 0xd, "93fcb5b0b384ce31fab90d"}, {0x1, 0x6, "ba056533"}, {0x6, 0xf, "55ad2bd03f32a353a0d3940263"}, {0x2, 0x3, 'r'}]}, @timestamp_addr={0x44, 0x2c, 0xff, 0x1, 0x6, [{@loopback, 0xffff}, {@dev={0xac, 0x14, 0x14, 0xf}, 0x80000001}, {@dev={0xac, 0x14, 0x14, 0x18}, 0x9}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0xb4c}, {@private=0xa010102, 0x1}]}]}}}}})
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000540)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000500)={&(0x7f0000000300)={0x80, r1, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@FOU_ATTR_PEER_V4={0x8, 0x8, @loopback}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @mcast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @ipv4={'\x00', '\xff\xff', @local}}, @FOU_ATTR_TYPE={0x5, 0x4, 0x3}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e22}, @FOU_ATTR_TYPE={0x5}, @FOU_ATTR_IFINDEX={0x8, 0xb, r2}, @FOU_ATTR_PEER_V4={0x8, 0x8, @empty}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @dev={0xfe, 0x80, '\x00', 0x2e}}]}, 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x48054)
recvmmsg(r0, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}], 0x1}}], 0x1, 0x0, 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-sse2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000e40)={0x14, 0x0, 0x1, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x200508c0)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x1a, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x2, 0x0, 0x0, @u64}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@local}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd"]}]}, 0x114}], 0x1}, 0x0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000180)={<r6=>0x0, 0x36, "85bcb024f0a68cd476b3d6f44a22cd6b787b7bf8f978fc58ea07f4ade2893cc49cd8bcdc5b61b5c0d0a80d6b7a483318c882cb53d273"}, &(0x7f00000001c0)=0x3e)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000200)={r6, @in6={{0xa, 0x4e24, 0xa642, @mcast2, 0x4}}, [0x8, 0xe, 0x9, 0x6, 0x0, 0x3a1, 0xd9b1, 0x6, 0x8, 0x2, 0xa, 0x6c, 0x7343, 0x400, 0x8c]}, &(0x7f0000000300)=0x100)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x7, &(0x7f0000000140)=0x2, 0x4)
syz_emit_ethernet(0x6b, &(0x7f0000000080)={@random="44262273379a", @multicast, @void, {@llc_tr={0x11, {@llc={0x1, 0xff, 'z', "99ad3057d80cb5d7c78ea969592abd17ced7446d8c949c9d055b2890a97de203357c4fef2a94fc20e682c3a6c401d0656a5edac99097c70f936b6365aa681c2bf10789392a02aef2f75275ab25f1403c5a511e82922cafc35b94"}}}}}, &(0x7f0000000100)={0x0, 0x1, [0x526, 0x28a, 0xdd8, 0x8b7]})
socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'veth0_to_bond\x00', <r8=>0x0})
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0xc}, {0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x20040000)
r10 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000000040)={0x0, <r11=>0x0}, &(0x7f0000000280)=0xc)
sendmsg$netlink(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000580)={0x34, 0x2e, 0x1, 0x70bd2a, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid=r11}, @nested={0x1c, 0x0, 0x0, 0x1, [@nested={0x18, 0x131, 0x0, 0x1, [@typed={0x11, 0x11d, 0x0, 0x0, @str='}!#^#\\,/,)\'/\x00'}]}]}]}, 0x34}], 0x1}, 0x0)

394.168563ms ago: executing program 1 (id=2222):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000001dc0), r0)
sendmsg$FOU_CMD_GET(r0, &(0x7f0000001ec0)={0x0, 0x0, &(0x7f0000001e80)={&(0x7f0000001e00)={0x40, r1, 0x101, 0x70bd2c, 0x25dfdbfc, {}, [@FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @empty}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e20}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x48020)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0e00000004000000040000000100000001200000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000002856654c706d6d989e31cf8251e998f5d4d0311d96cd75cd6c37018ceae85314b15826f22215cadee90b9b8bfc014a4dc88d1e47ba609ee2127766ad194757f29714c1422ff9806228917f837243"], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000380)={r3, &(0x7f0000000400), &(0x7f0000000c40), 0x1}, 0x20)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000240)={0x0, 0xfffffffffffffe1a, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r5)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x20, r6, 0x607, 0x70bd28, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x8801}, 0x810)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000500)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x38, r6, 0x20, 0x70bd2b, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy2\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x4044)
sendmsg$NBD_CMD_CONNECT(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[], 0x6c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0xd7, 0x5, 0x2, 0x80, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x4, 0x8, @void, @value, @void, @value}, 0x50)
r7 = socket$kcm(0x11, 0x3, 0x0)
vmsplice(r7, 0x0, 0x0, 0x8)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000200)={'batadv0\x00', <r8=>0x0})
sendmsg$kcm(r7, &(0x7f0000000080)={&(0x7f0000001340)=@xdp={0x2c, 0x0, r8, 0x23}, 0x80, &(0x7f0000000480)=[{&(0x7f00000004c0)="b8b28225ea772f0daee8c7c98100", 0xe}], 0x1}, 0x20000000)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
writev(r9, &(0x7f0000000400)=[{&(0x7f00000002c0)="a609a89c9edd34187123b5adceb38c8557f4e107445a53c0815c9636d00f896d1e8cd8de77a79f1e3e2c53ddf1bb9f8ac5cb5257ff4e8b960026bc4244c4b09179a97dffdf02563e23546d3e78f944e7e2fee2a0e354223318badb21d8c086669c5f7772f4a6d90d0997babdf79f7d557e055b3e6f2e4f41ec06a39a57b9ccc00bbca22395e41f9e9652af665f0e1603fb85d4799d54d44c706ff8df9bb805b182a1260b5936ae44f649b5e2fdca240984dcd074ddc28aeaaa686608c5c50538ee", 0xc1}], 0x1)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r9, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000580)={<r10=>0xffffffffffffffff})
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000006c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000840)=ANY=[@ANYBLOB="8ebdbe010eca5bb7213c1b194cdc638754c383f9aa482cd7f537f4c3e5568c65f37f0f3b25f104fe0a26167c324b51bc718deb23aa4a5c4cff9e1f76751bf856163b08a00d3005d702c264665b980cae4061059b70e0c50b70747e9bd9bc0a0000d9b07a45ccf7fd3e48f3497f741ac32099addddd1ac364e29e427b029a5d51cbbc", @ANYRES16, @ANYBLOB="00012cbd7000fcdbdf25020000001400078008000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="0c00060001000000000000001400078008000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="0c00080008000000000000000c0008000a000000000000002c00078008000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r10, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="640e66a4", @ANYRES32=r9, @ANYBLOB], 0x8c}, 0x1, 0x0, 0x0, 0x10}, 0x1)
socket$kcm(0xa, 0x1, 0x106)
r11 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r11, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r11, 0x1, 0x8, &(0x7f0000000200), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r11, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r11)

275.692348ms ago: executing program 0 (id=2223):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
socket$inet(0x2, 0x4000000000000001, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
r0 = socket(0x11, 0x800000003, 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800060000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES32=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0) (fail_nth: 3)

206.852832ms ago: executing program 4 (id=2224):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x74, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_EXPRESSIONS={0x38, 0x12, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x1000}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x1}]}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xbc}}, 0x20050800)

111.778515ms ago: executing program 2 (id=2225):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="28f0ffff", @ANYRES16=r1, @ANYBLOB="0d03000000000000000013000000140009"], 0x28}}, 0x0)

64.03377ms ago: executing program 1 (id=2226):
socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x14}, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01d90000000000001c0012000c000100626f6e64000000000c000200080001"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffffffffff130012800b0001006261746164760000", @ANYRES32=r3], 0x3c}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r4}, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-avx2\x00'}, 0x58)
socket$inet(0x2, 0xa, 0x7)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYRES32=r5, @ANYBLOB="0000000000000000300012800b00010065727370616e0000200002800400120005001600020000000500170000000000060018"], 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x4080)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000101401002cdbdf25080003000100000008004a000100000008000100000000000800ff07010000c9a1c14825e37a9e00"], 0x38}, 0x1, 0x0, 0x0, 0x24044836}, 0xc094)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x4000)
sendmsg$NFT_BATCH(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a60000000060a090400000000000000000200fffe1c00058008000140000000000800014000000062080001400000810008000a40000000000000048024000180090001006d6574610000000014000280080001400000000108000240000000001100010000000002000000000000000a"], 0x88}, 0x1, 0x0, 0x0, 0x24044800}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=@newtaction={0x6c, 0x30, 0x1, 0x0, 0x0, {}, [{0x58, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x30000001}, 0x1}}, @TCA_MPLS_PROTO={0x6, 0x4, 0x8847}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)

21.557041ms ago: executing program 4 (id=2227):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000000)={'wlan1\x00', @random="0100c3201000"})

619.485µs ago: executing program 0 (id=2228):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000280)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)={0x44, r1, 0x1, 0x1, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x6a7}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5}]}, 0x44}}, 0x0)

0s ago: executing program 3 (id=2229):
r0 = socket(0x11, 0x3, 0x800000)
setsockopt$packet_int(r0, 0x107, 0x13, 0x0, 0x0)

kernel console output (not intermixed with test programs):

ll_64+0x100/0x230
[  231.576916][T10323]  ? do_syscall_64+0xb6/0x230
[  231.576948][T10323]  do_syscall_64+0xf3/0x230
[  231.576976][T10323]  ? clear_bhb_loop+0x35/0x90
[  231.577008][T10323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.577036][T10323] RIP: 0033:0x7f4a5ef8bc1f
[  231.577054][T10323] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  231.577071][T10323] RSP: 002b:00007f4a5fdc9030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  231.577092][T10323] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4a5ef8bc1f
[  231.577106][T10323] RDX: 0000000000000001 RSI: 00007f4a5fdc90a0 RDI: 0000000000000003
[  231.577123][T10323] RBP: 00007f4a5fdc9090 R08: 0000000000000000 R09: 0000000000000000
[  231.577136][T10323] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  231.577147][T10323] R13: 0000000000000000 R14: 00007f4a5f1a6080 R15: 00007fffeb5d7358
[  231.577179][T10323]  </TASK>
[  231.891264][T10327] netlink: 'syz.2.1403': attribute type 58 has an invalid length.
[  231.920728][T10327] __nla_validate_parse: 8 callbacks suppressed
[  231.920748][T10327] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1403'.
[  231.977190][T10332] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1405'.
[  231.989415][T10325] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1404'.
[  232.239993][T10342] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1408'.
[  232.300578][T10345] netlink: 'syz.4.1410': attribute type 2 has an invalid length.
[  232.324410][T10345] netlink: 'syz.4.1410': attribute type 1 has an invalid length.
[  232.345468][T10345] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1410'.
[  232.427564][T10353] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1413'.
[  232.447068][T10348] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1410'.
[  232.457458][T10348] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1410'.
[  232.671222][T10359] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1415'.
[  232.880058][T10367] vlan0: left promiscuous mode
[  232.911551][T10367] bond12: left promiscuous mode
[  232.927342][T10367] batadv8: left promiscuous mode
[  232.933542][T10367] batadv8: left allmulticast mode
[  232.973158][T10367] bond13: left promiscuous mode
[  232.990545][T10367] batadv9: left promiscuous mode
[  233.006584][T10367] batadv9: left allmulticast mode
[  233.028201][T10367] bond14: left promiscuous mode
[  233.230033][T10388] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1427'.
[  233.284262][T10390] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  233.293611][T10390] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  233.329247][T10390] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  233.352621][T10390] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  233.534580][T10401] FAULT_INJECTION: forcing a failure.
[  233.534580][T10401] name failslab, interval 1, probability 0, space 0, times 0
[  233.598464][T10401] CPU: 0 UID: 0 PID: 10401 Comm: syz.0.1430 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  233.598494][T10401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  233.598506][T10401] Call Trace:
[  233.598514][T10401]  <TASK>
[  233.598523][T10401]  dump_stack_lvl+0x241/0x360
[  233.598557][T10401]  ? __pfx_dump_stack_lvl+0x10/0x10
[  233.598582][T10401]  ? __pfx__printk+0x10/0x10
[  233.598606][T10401]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  233.598639][T10401]  ? __pfx___might_resched+0x10/0x10
[  233.598672][T10401]  should_fail_ex+0x40a/0x550
[  233.598711][T10401]  should_failslab+0xac/0x100
[  233.598742][T10401]  __kmalloc_node_noprof+0xe1/0x4d0
[  233.598772][T10401]  ? __kvmalloc_node_noprof+0x72/0x190
[  233.598800][T10401]  __kvmalloc_node_noprof+0x72/0x190
[  233.598823][T10401]  __nf_hook_entries_try_shrink+0x330/0x730
[  233.598868][T10401]  __nf_unregister_net_hook+0x5cf/0x800
[  233.598909][T10401]  nf_unregister_net_hooks+0xd0/0x140
[  233.598944][T10401]  ip_vs_unregister_hooks+0xb9/0x120
[  233.598977][T10401]  ip_vs_unlink_service+0x3c5/0x9e0
[  233.599025][T10401]  ip_vs_genl_set_cmd+0x24f/0x1cd0
[  233.599058][T10401]  ? __pfx_ip_vs_genl_set_cmd+0x10/0x10
[  233.599137][T10401]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  233.599174][T10401]  genl_rcv_msg+0xb1f/0xec0
[  233.599210][T10401]  ? __pfx_genl_rcv_msg+0x10/0x10
[  233.599269][T10401]  ? __pfx_lock_acquire+0x10/0x10
[  233.599301][T10401]  ? __pfx_ip_vs_genl_set_cmd+0x10/0x10
[  233.599327][T10401]  ? __pfx___might_resched+0x10/0x10
[  233.599368][T10401]  netlink_rcv_skb+0x206/0x480
[  233.599402][T10401]  ? __pfx_genl_rcv_msg+0x10/0x10
[  233.599429][T10401]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  233.599512][T10401]  genl_rcv+0x28/0x40
[  233.599533][T10401]  netlink_unicast+0x7f6/0x990
[  233.599581][T10401]  ? __pfx_netlink_unicast+0x10/0x10
[  233.599605][T10401]  ? __virt_addr_valid+0x45f/0x530
[  233.599643][T10401]  ? __phys_addr_symbol+0x2f/0x70
[  233.599662][T10401]  ? __check_object_size+0x47a/0x730
[  233.599696][T10401]  netlink_sendmsg+0x8de/0xcb0
[  233.599750][T10401]  ? __pfx_netlink_sendmsg+0x10/0x10
[  233.599787][T10401]  ? aa_sock_msg_perm+0x91/0x160
[  233.599826][T10401]  ? __pfx_netlink_sendmsg+0x10/0x10
[  233.599856][T10401]  __sock_sendmsg+0x221/0x270
[  233.599890][T10401]  ____sys_sendmsg+0x53a/0x860
[  233.599926][T10401]  ? __pfx_____sys_sendmsg+0x10/0x10
[  233.599949][T10401]  ? __fget_files+0x2a/0x410
[  233.599983][T10401]  ? __fget_files+0x2a/0x410
[  233.600025][T10401]  __sys_sendmsg+0x269/0x350
[  233.600056][T10401]  ? __pfx___sys_sendmsg+0x10/0x10
[  233.600102][T10401]  ? do_sys_openat2+0x17a/0x1d0
[  233.600164][T10401]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  233.600198][T10401]  ? do_syscall_64+0x100/0x230
[  233.600231][T10401]  ? do_syscall_64+0xb6/0x230
[  233.600262][T10401]  do_syscall_64+0xf3/0x230
[  233.600290][T10401]  ? clear_bhb_loop+0x35/0x90
[  233.600322][T10401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.600350][T10401] RIP: 0033:0x7fd3ba38d169
[  233.600367][T10401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.600384][T10401] RSP: 002b:00007fd3bb29f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  233.600406][T10401] RAX: ffffffffffffffda RBX: 00007fd3ba5a5fa0 RCX: 00007fd3ba38d169
[  233.600421][T10401] RDX: 0000000020000000 RSI: 0000400000000180 RDI: 0000000000000003
[  233.600435][T10401] RBP: 00007fd3bb29f090 R08: 0000000000000000 R09: 0000000000000000
[  233.600447][T10401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.600460][T10401] R13: 0000000000000000 R14: 00007fd3ba5a5fa0 R15: 00007ffe3bdd5fd8
[  233.600515][T10401]  </TASK>
[  234.285023][T10413] netlink: 'syz.0.1434': attribute type 2 has an invalid length.
[  234.293126][T10413] netlink: 'syz.0.1434': attribute type 1 has an invalid length.
[  234.835607][T10443] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !åÀØ¢
…D£øUDŒw˜}�zR3âëp(@Oš>Æ
[  234.957804][T10450] netlink: 'syz.4.1445': attribute type 2 has an invalid length.
[  235.025350][T10450] netlink: 'syz.4.1445': attribute type 1 has an invalid length.
[  235.189228][T10461] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  235.196560][T10461] IPv6: NLM_F_CREATE should be set when creating new route
[  235.203865][T10461] IPv6: NLM_F_CREATE should be set when creating new route
[  235.290711][T10467] netlink: 'syz.1.1451': attribute type 2 has an invalid length.
[  235.299146][T10467] netlink: 'syz.1.1451': attribute type 1 has an invalid length.
[  235.429918][T10472] netlink: 'syz.4.1453': attribute type 11 has an invalid length.
[  235.701276][T10492] netlink: 'syz.0.1457': attribute type 3 has an invalid length.
[  236.107647][T10510] netlink: 'syz.3.1466': attribute type 2 has an invalid length.
[  236.115656][T10510] netlink: 'syz.3.1466': attribute type 1 has an invalid length.
[  236.431525][T10528] FAULT_INJECTION: forcing a failure.
[  236.431525][T10528] name failslab, interval 1, probability 0, space 0, times 0
[  236.452252][T10528] CPU: 1 UID: 0 PID: 10528 Comm: syz.3.1473 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  236.452282][T10528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  236.452295][T10528] Call Trace:
[  236.452303][T10528]  <TASK>
[  236.452312][T10528]  dump_stack_lvl+0x241/0x360
[  236.452345][T10528]  ? __pfx_dump_stack_lvl+0x10/0x10
[  236.452369][T10528]  ? __pfx__printk+0x10/0x10
[  236.452393][T10528]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  236.452426][T10528]  ? __pfx___might_resched+0x10/0x10
[  236.452454][T10528]  ? bpf_trace_run2+0x1fc/0x540
[  236.452485][T10528]  should_fail_ex+0x40a/0x550
[  236.452523][T10528]  should_failslab+0xac/0x100
[  236.452553][T10528]  kmem_cache_alloc_node_noprof+0x77/0x380
[  236.452584][T10528]  ? __alloc_skb+0x1c3/0x440
[  236.452611][T10528]  __alloc_skb+0x1c3/0x440
[  236.452640][T10528]  ? __pfx___alloc_skb+0x10/0x10
[  236.452673][T10528]  netlink_dump+0x239/0xe10
[  236.452709][T10528]  ? __mutex_lock+0x397/0x1010
[  236.452744][T10528]  ? __pfx_netlink_dump+0x10/0x10
[  236.452792][T10528]  ? __pfx_lock_acquire+0x10/0x10
[  236.452835][T10528]  __netlink_dump_start+0x5a2/0x790
[  236.452874][T10528]  ? __pfx_vxlan_vnifilter_dump+0x10/0x10
[  236.452899][T10528]  rtnetlink_rcv_msg+0xb3d/0xcf0
[  236.452949][T10528]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  236.452981][T10528]  ? __pfx_rtnl_dumpit+0x10/0x10
[  236.453013][T10528]  ? __pfx_vxlan_vnifilter_dump+0x10/0x10
[  236.453051][T10528]  netlink_rcv_skb+0x206/0x480
[  236.453084][T10528]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  236.453120][T10528]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  236.453176][T10528]  ? netlink_deliver_tap+0x2e/0x1b0
[  236.453212][T10528]  netlink_unicast+0x7f6/0x990
[  236.453254][T10528]  ? __pfx_netlink_unicast+0x10/0x10
[  236.453280][T10528]  ? __virt_addr_valid+0x45f/0x530
[  236.453302][T10528]  ? __phys_addr_symbol+0x2f/0x70
[  236.453322][T10528]  ? __check_object_size+0x47a/0x730
[  236.453356][T10528]  netlink_sendmsg+0x8de/0xcb0
[  236.453403][T10528]  ? __pfx_netlink_sendmsg+0x10/0x10
[  236.453451][T10528]  ? aa_sock_msg_perm+0x91/0x160
[  236.453490][T10528]  ? __pfx_netlink_sendmsg+0x10/0x10
[  236.453519][T10528]  __sock_sendmsg+0x221/0x270
[  236.453553][T10528]  ____sys_sendmsg+0x53a/0x860
[  236.453587][T10528]  ? __pfx_____sys_sendmsg+0x10/0x10
[  236.453609][T10528]  ? __fget_files+0x2a/0x410
[  236.453643][T10528]  ? __fget_files+0x2a/0x410
[  236.453682][T10528]  __sys_sendmsg+0x269/0x350
[  236.453712][T10528]  ? __pfx___sys_sendmsg+0x10/0x10
[  236.453751][T10528]  ? do_sys_openat2+0x17a/0x1d0
[  236.453810][T10528]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  236.453843][T10528]  ? do_syscall_64+0x100/0x230
[  236.453873][T10528]  ? do_syscall_64+0xb6/0x230
[  236.453904][T10528]  do_syscall_64+0xf3/0x230
[  236.453939][T10528]  ? clear_bhb_loop+0x35/0x90
[  236.453971][T10528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.453998][T10528] RIP: 0033:0x7f4eb918d169
[  236.454016][T10528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.454034][T10528] RSP: 002b:00007f4eb6ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  236.454057][T10528] RAX: ffffffffffffffda RBX: 00007f4eb93a5fa0 RCX: 00007f4eb918d169
[  236.454072][T10528] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000005
[  236.454085][T10528] RBP: 00007f4eb6ff6090 R08: 0000000000000000 R09: 0000000000000000
[  236.454098][T10528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  236.454110][T10528] R13: 0000000000000000 R14: 00007f4eb93a5fa0 R15: 00007ffd82db0398
[  236.454141][T10528]  </TASK>
[  237.543632][T10555] __nla_validate_parse: 20 callbacks suppressed
[  237.543654][T10555] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1483'.
[  237.839277][T10570] netlink: 'syz.2.1488': attribute type 10 has an invalid length.
[  237.906574][T10570] 8021q: adding VLAN 0 to HW filter on device team0
[  237.942522][T10570] 
: (slave team0): Enslaving as an active interface with an up link
[  238.056647][T10579] bridge_slave_0: left allmulticast mode
[  238.070383][T10579] bridge_slave_0: left promiscuous mode
[  238.087892][T10579] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.117630][T10579] bridge_slave_1: left allmulticast mode
[  238.159889][T10579] bridge_slave_1: left promiscuous mode
[  238.178252][T10579] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.216510][T10579] bond0: (slave bond_slave_1): Releasing backup interface
[  238.243943][T10579] team0: Port device team_slave_0 removed
[  238.254791][T10579] team0: Port device team_slave_1 removed
[  238.265409][T10579] batman_adv: batadv0: Removing interface: batadv_slave_0
[  238.278470][T10579] batman_adv: batadv0: Removing interface: batadv_slave_1
[  238.294811][T10579] bond0: (slave netdevsim0): Releasing backup interface
[  238.320514][T10579] bond5: (slave veth3): Releasing backup interface
[  238.331563][T10579] bond8: (slave ip6gretap2): Releasing backup interface
[  238.341697][T10579] bond10: (slave batadv5): Releasing backup interface
[  238.352964][T10579] bond12: (slave veth11): Releasing backup interface
[  238.371087][T10587] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1490'.
[  238.510714][T10598] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1497'.
[  238.531177][T10600] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1496'.
[  238.822351][T10608] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1498'.
[  239.048481][T10617] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1501'.
[  239.145688][T10625] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1503'.
[  239.311381][T10628] bridge0: port 3(macsec1) entered blocking state
[  239.329958][T10628] bridge0: port 3(macsec1) entered disabled state
[  239.344657][T10628] macsec1: entered allmulticast mode
[  239.351523][T10628] bridge0: entered allmulticast mode
[  239.359885][T10628] macsec1: left allmulticast mode
[  239.365125][T10628] bridge0: left allmulticast mode
[  239.557716][T10641] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1510'.
[  239.688817][T10650] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1513'.
[  239.739642][T10646] FAULT_INJECTION: forcing a failure.
[  239.739642][T10646] name failslab, interval 1, probability 0, space 0, times 0
[  239.766991][T10646] CPU: 0 UID: 0 PID: 10646 Comm: syz.4.1512 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  239.767020][T10646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  239.767033][T10646] Call Trace:
[  239.767041][T10646]  <TASK>
[  239.767050][T10646]  dump_stack_lvl+0x241/0x360
[  239.767083][T10646]  ? __pfx_dump_stack_lvl+0x10/0x10
[  239.767107][T10646]  ? __pfx__printk+0x10/0x10
[  239.767131][T10646]  ? __kmalloc_node_track_caller_noprof+0xb4/0x4c0
[  239.767166][T10646]  ? __pfx___might_resched+0x10/0x10
[  239.767199][T10646]  should_fail_ex+0x40a/0x550
[  239.767237][T10646]  should_failslab+0xac/0x100
[  239.767268][T10646]  __kmalloc_node_track_caller_noprof+0xdc/0x4c0
[  239.767299][T10646]  ? kobject_set_name_vargs+0x61/0x120
[  239.767335][T10646]  kstrdup+0x42/0x100
[  239.767369][T10646]  kobject_set_name_vargs+0x61/0x120
[  239.767401][T10646]  dev_set_name+0xd5/0x120
[  239.767437][T10646]  ? __pfx_dev_set_name+0x10/0x10
[  239.767474][T10646]  ? device_initialize+0x266/0x460
[  239.767498][T10646]  netdev_register_kobject+0xb7/0x2f0
[  239.767529][T10646]  register_netdevice+0x12c3/0x1b70
[  239.767573][T10646]  ? __pfx_register_netdevice+0x10/0x10
[  239.767618][T10646]  macsec_newlink+0x6a9/0x1140
[  239.767665][T10646]  ? __pfx_macsec_newlink+0x10/0x10
[  239.767690][T10646]  ? rcu_is_watching+0x15/0xb0
[  239.767722][T10646]  ? trace_kmalloc+0x1f/0xd0
[  239.767750][T10646]  ? validate_linkmsg+0x828/0xa40
[  239.767778][T10646]  ? read_word_at_a_time+0xe/0x20
[  239.767807][T10646]  ? sized_strscpy+0x9a/0x2b0
[  239.767839][T10646]  ? __pfx_validate_linkmsg+0x10/0x10
[  239.767868][T10646]  ? alloc_netdev_mqs+0xe8e/0x1210
[  239.767904][T10646]  ? rtnl_create_link+0x95b/0xc90
[  239.767934][T10646]  ? __pfx_macsec_newlink+0x10/0x10
[  239.767962][T10646]  rtnl_newlink_create+0x37b/0xbd0
[  239.767991][T10646]  ? __mutex_lock+0x602/0x1010
[  239.768029][T10646]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  239.768056][T10646]  ? __pfx___mutex_lock+0x10/0x10
[  239.768096][T10646]  ? ns_capable+0x8a/0xf0
[  239.768124][T10646]  rtnl_newlink+0x167a/0x1d90
[  239.768166][T10646]  ? __lock_acquire+0x1397/0x2100
[  239.768212][T10646]  ? __pfx_rtnl_newlink+0x10/0x10
[  239.768245][T10646]  ? __pfx_validate_chain+0x10/0x10
[  239.768289][T10646]  ? validate_chain+0x11e/0x5920
[  239.768312][T10646]  ? __pfx_lock_acquire+0x10/0x10
[  239.768347][T10646]  ? __pfx_lock_release+0x10/0x10
[  239.768383][T10646]  ? __pfx_validate_chain+0x10/0x10
[  239.768408][T10646]  ? mark_lock+0x9a/0x360
[  239.768433][T10646]  ? __lock_acquire+0x1397/0x2100
[  239.768500][T10646]  ? __pfx_lock_release+0x10/0x10
[  239.768547][T10646]  ? __pfx_rtnl_newlink+0x10/0x10
[  239.768581][T10646]  rtnetlink_rcv_msg+0x791/0xcf0
[  239.768612][T10646]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  239.768645][T10646]  ? __lock_acquire+0x1397/0x2100
[  239.768678][T10646]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  239.768736][T10646]  netlink_rcv_skb+0x206/0x480
[  239.768769][T10646]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  239.768804][T10646]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  239.768861][T10646]  ? netlink_deliver_tap+0x2e/0x1b0
[  239.768895][T10646]  netlink_unicast+0x7f6/0x990
[  239.768934][T10646]  ? __pfx_netlink_unicast+0x10/0x10
[  239.768959][T10646]  ? __virt_addr_valid+0x45f/0x530
[  239.768981][T10646]  ? __phys_addr_symbol+0x2f/0x70
[  239.769001][T10646]  ? __check_object_size+0x47a/0x730
[  239.769043][T10646]  netlink_sendmsg+0x8de/0xcb0
[  239.769089][T10646]  ? __pfx_netlink_sendmsg+0x10/0x10
[  239.769127][T10646]  ? aa_sock_msg_perm+0x91/0x160
[  239.769167][T10646]  ? __pfx_netlink_sendmsg+0x10/0x10
[  239.769197][T10646]  __sock_sendmsg+0x221/0x270
[  239.769232][T10646]  ____sys_sendmsg+0x53a/0x860
[  239.769267][T10646]  ? __pfx_____sys_sendmsg+0x10/0x10
[  239.769291][T10646]  ? __fget_files+0x2a/0x410
[  239.769325][T10646]  ? __fget_files+0x2a/0x410
[  239.769366][T10646]  __sys_sendmsg+0x269/0x350
[  239.769397][T10646]  ? __pfx___sys_sendmsg+0x10/0x10
[  239.769438][T10646]  ? do_sys_openat2+0x17a/0x1d0
[  239.769498][T10646]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  239.769532][T10646]  ? do_syscall_64+0x100/0x230
[  239.769564][T10646]  ? do_syscall_64+0xb6/0x230
[  239.769595][T10646]  do_syscall_64+0xf3/0x230
[  239.769622][T10646]  ? clear_bhb_loop+0x35/0x90
[  239.769656][T10646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.769684][T10646] RIP: 0033:0x7f44e118d169
[  239.769702][T10646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.769726][T10646] RSP: 002b:00007f44deff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  239.769748][T10646] RAX: ffffffffffffffda RBX: 00007f44e13a5fa0 RCX: 00007f44e118d169
[  239.769764][T10646] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000004
[  239.769777][T10646] RBP: 00007f44deff6090 R08: 0000000000000000 R09: 0000000000000000
[  239.769790][T10646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  239.769803][T10646] R13: 0000000000000000 R14: 00007f44e13a5fa0 R15: 00007ffcbe9b0218
[  239.769835][T10646]  </TASK>
[  240.444664][T10660] lo speed is unknown, defaulting to 1000
[  240.499496][T10670] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1519'.
[  240.556768][T10670] FAULT_INJECTION: forcing a failure.
[  240.556768][T10670] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  240.622762][T10670] CPU: 1 UID: 0 PID: 10670 Comm: syz.3.1519 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  240.622793][T10670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  240.622807][T10670] Call Trace:
[  240.622815][T10670]  <TASK>
[  240.622824][T10670]  dump_stack_lvl+0x241/0x360
[  240.622855][T10670]  ? __pfx_dump_stack_lvl+0x10/0x10
[  240.622880][T10670]  ? __pfx__printk+0x10/0x10
[  240.622904][T10670]  ? __pfx_lock_release+0x10/0x10
[  240.622945][T10670]  should_fail_ex+0x40a/0x550
[  240.622983][T10670]  _copy_from_iter+0x1df/0x1c40
[  240.623010][T10670]  ? __virt_addr_valid+0x183/0x530
[  240.623031][T10670]  ? __pfx_lock_release+0x10/0x10
[  240.623071][T10670]  ? __alloc_skb+0x28f/0x440
[  240.623093][T10670]  ? __pfx__copy_from_iter+0x10/0x10
[  240.623121][T10670]  ? __virt_addr_valid+0x183/0x530
[  240.623141][T10670]  ? __virt_addr_valid+0x183/0x530
[  240.623160][T10670]  ? __virt_addr_valid+0x45f/0x530
[  240.623181][T10670]  ? __phys_addr_symbol+0x2f/0x70
[  240.623201][T10670]  ? __check_object_size+0x47a/0x730
[  240.623235][T10670]  netlink_sendmsg+0x742/0xcb0
[  240.623280][T10670]  ? __pfx_netlink_sendmsg+0x10/0x10
[  240.623318][T10670]  ? aa_sock_msg_perm+0x91/0x160
[  240.623357][T10670]  ? __pfx_netlink_sendmsg+0x10/0x10
[  240.623388][T10670]  __sock_sendmsg+0x221/0x270
[  240.623423][T10670]  ____sys_sendmsg+0x53a/0x860
[  240.623457][T10670]  ? __pfx_____sys_sendmsg+0x10/0x10
[  240.623481][T10670]  ? __fget_files+0x2a/0x410
[  240.623516][T10670]  ? __fget_files+0x2a/0x410
[  240.623555][T10670]  __sys_sendmsg+0x269/0x350
[  240.623585][T10670]  ? __pfx___sys_sendmsg+0x10/0x10
[  240.623623][T10670]  ? do_sys_openat2+0x17a/0x1d0
[  240.623682][T10670]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  240.623716][T10670]  ? do_syscall_64+0x100/0x230
[  240.623758][T10670]  ? do_syscall_64+0xb6/0x230
[  240.623793][T10670]  do_syscall_64+0xf3/0x230
[  240.623821][T10670]  ? clear_bhb_loop+0x35/0x90
[  240.623853][T10670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.623882][T10670] RIP: 0033:0x7f4eb918d169
[  240.623901][T10670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.623918][T10670] RSP: 002b:00007f4eb6ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  240.623942][T10670] RAX: ffffffffffffffda RBX: 00007f4eb93a5fa0 RCX: 00007f4eb918d169
[  240.623958][T10670] RDX: 0000000000000000 RSI: 0000400000000540 RDI: 0000000000000010
[  240.623971][T10670] RBP: 00007f4eb6ff6090 R08: 0000000000000000 R09: 0000000000000000
[  240.623984][T10670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  240.623997][T10670] R13: 0000000000000000 R14: 00007f4eb93a5fa0 R15: 00007ffd82db0398
[  240.624028][T10670]  </TASK>
[  241.327514][T10680] batadv_slave_1: entered promiscuous mode
[  241.356433][T10679] batadv_slave_1: left promiscuous mode
[  241.790349][T10704] bond15: entered promiscuous mode
[  241.846401][T10704] 8021q: adding VLAN 0 to HW filter on device bond15
[  241.913113][T10709] batadv9: entered promiscuous mode
[  241.918910][T10709] batadv9: entered allmulticast mode
[  241.926546][T10709] 8021q: adding VLAN 0 to HW filter on device batadv9
[  241.933713][T10719] netlink: 'syz.3.1533': attribute type 1 has an invalid length.
[  241.944452][T10709] bond15: (slave batadv9): Enslaving as an active interface with an up link
[  242.048993][T10719] bond8: entered promiscuous mode
[  242.057797][T10719] 8021q: adding VLAN 0 to HW filter on device bond8
[  242.077101][T10723] batadv6: entered promiscuous mode
[  242.082595][T10723] batadv6: entered allmulticast mode
[  243.061425][T10761] __nla_validate_parse: 10 callbacks suppressed
[  243.061447][T10761] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1548'.
[  243.207761][T10763] netlink: 'syz.2.1549': attribute type 1 has an invalid length.
[  243.285781][T10771] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1549'.
[  243.287688][T10763] bond14: entered promiscuous mode
[  243.316081][T10771] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1549'.
[  243.337526][T10763] 8021q: adding VLAN 0 to HW filter on device bond14
[  243.351530][T10771] batadv7: entered promiscuous mode
[  243.357037][T10771] batadv7: entered allmulticast mode
[  243.496186][T10763] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1549'.
[  243.505403][T10768] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1551'.
[  243.531557][T10763] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1549'.
[  243.548603][T10775] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1551'.
[  243.590367][T10775] bond16: entered promiscuous mode
[  243.595941][T10775] 8021q: adding VLAN 0 to HW filter on device bond16
[  243.603059][T10768] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1551'.
[  243.616877][T10768] batadv10: entered promiscuous mode
[  243.622235][T10768] batadv10: entered allmulticast mode
[  243.629592][T10768] 8021q: adding VLAN 0 to HW filter on device batadv10
[  243.638411][T10768] bond16: (slave batadv10): Enslaving as an active interface with an up link
[  243.878670][T10791] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1559'.
[  243.994552][T10797] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1559'.
[  244.006601][T10797] nbd: device at index 64 is going down
[  244.320776][T10807] netlink: 'syz.0.1563': attribute type 2 has an invalid length.
[  244.348238][T10807] netlink: 'syz.0.1563': attribute type 1 has an invalid length.
[  245.030238][T10836] netlink: 'syz.2.1572': attribute type 3 has an invalid length.
[  245.245238][T10845] FAULT_INJECTION: forcing a failure.
[  245.245238][T10845] name failslab, interval 1, probability 0, space 0, times 0
[  245.273229][T10844] lo speed is unknown, defaulting to 1000
[  245.281001][T10845] CPU: 0 UID: 0 PID: 10845 Comm: syz.1.1575 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  245.281030][T10845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  245.281043][T10845] Call Trace:
[  245.281051][T10845]  <TASK>
[  245.281059][T10845]  dump_stack_lvl+0x241/0x360
[  245.281100][T10845]  ? __pfx_dump_stack_lvl+0x10/0x10
[  245.281124][T10845]  ? __pfx__printk+0x10/0x10
[  245.281147][T10845]  ? __kmalloc_cache_noprof+0x48/0x390
[  245.281179][T10845]  ? __pfx___might_resched+0x10/0x10
[  245.281213][T10845]  should_fail_ex+0x40a/0x550
[  245.281249][T10845]  should_failslab+0xac/0x100
[  245.281279][T10845]  __kmalloc_cache_noprof+0x70/0x390
[  245.281307][T10845]  ? netlbl_cipsov4_add+0x604/0x25e0
[  245.281343][T10845]  netlbl_cipsov4_add+0x604/0x25e0
[  245.281409][T10845]  ? __pfx_netlbl_cipsov4_add+0x10/0x10
[  245.281446][T10845]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  245.281482][T10845]  genl_rcv_msg+0xb1f/0xec0
[  245.281517][T10845]  ? __pfx_genl_rcv_msg+0x10/0x10
[  245.281574][T10845]  ? __pfx_lock_acquire+0x10/0x10
[  245.281605][T10845]  ? __pfx_netlbl_cipsov4_add+0x10/0x10
[  245.281639][T10845]  ? __pfx___might_resched+0x10/0x10
[  245.281684][T10845]  netlink_rcv_skb+0x206/0x480
[  245.281717][T10845]  ? __pfx_genl_rcv_msg+0x10/0x10
[  245.281744][T10845]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  245.281809][T10845]  genl_rcv+0x28/0x40
[  245.281831][T10845]  netlink_unicast+0x7f6/0x990
[  245.281869][T10845]  ? __pfx_netlink_unicast+0x10/0x10
[  245.281895][T10845]  ? __virt_addr_valid+0x45f/0x530
[  245.281917][T10845]  ? __phys_addr_symbol+0x2f/0x70
[  245.281937][T10845]  ? __check_object_size+0x47a/0x730
[  245.281972][T10845]  netlink_sendmsg+0x8de/0xcb0
[  245.282018][T10845]  ? __pfx_netlink_sendmsg+0x10/0x10
[  245.282056][T10845]  ? aa_sock_msg_perm+0x91/0x160
[  245.282096][T10845]  ? __pfx_netlink_sendmsg+0x10/0x10
[  245.282127][T10845]  __sock_sendmsg+0x221/0x270
[  245.282162][T10845]  ____sys_sendmsg+0x53a/0x860
[  245.282197][T10845]  ? __pfx_____sys_sendmsg+0x10/0x10
[  245.282220][T10845]  ? __fget_files+0x2a/0x410
[  245.282255][T10845]  ? __fget_files+0x2a/0x410
[  245.282297][T10845]  __sys_sendmsg+0x269/0x350
[  245.282328][T10845]  ? __pfx___sys_sendmsg+0x10/0x10
[  245.282369][T10845]  ? do_sys_openat2+0x17a/0x1d0
[  245.282439][T10845]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  245.282474][T10845]  ? do_syscall_64+0x100/0x230
[  245.282508][T10845]  ? do_syscall_64+0xb6/0x230
[  245.282540][T10845]  do_syscall_64+0xf3/0x230
[  245.282568][T10845]  ? clear_bhb_loop+0x35/0x90
[  245.282601][T10845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.282630][T10845] RIP: 0033:0x7f4a5ef8d169
[  245.282654][T10845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.282672][T10845] RSP: 002b:00007f4a5fdea038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  245.282701][T10845] RAX: ffffffffffffffda RBX: 00007f4a5f1a5fa0 RCX: 00007f4a5ef8d169
[  245.282717][T10845] RDX: 0000000000000000 RSI: 0000400000000580 RDI: 0000000000000004
[  245.282730][T10845] RBP: 00007f4a5fdea090 R08: 0000000000000000 R09: 0000000000000000
[  245.282744][T10845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.282756][T10845] R13: 0000000000000000 R14: 00007f4a5f1a5fa0 R15: 00007fffeb5d7358
[  245.282789][T10845]  </TASK>
[  245.760135][T10852] netlink: 'syz.1.1578': attribute type 2 has an invalid length.
[  245.809531][T10852] netlink: 'syz.1.1578': attribute type 1 has an invalid length.
[  246.316513][T10858] x_tables: ip6_tables: mh match: only valid for protocol 135
[  246.370124][T10863] lo speed is unknown, defaulting to 1000
[  246.466613][T10862] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  247.140868][T10889] sctp: [Deprecated]: syz.3.1587 (pid 10889) Use of int in max_burst socket option.
[  247.140868][T10889] Use struct sctp_assoc_value instead
[  247.435111][T10898] netlink: 'syz.4.1590': attribute type 2 has an invalid length.
[  247.484668][T10898] netlink: 'syz.4.1590': attribute type 1 has an invalid length.
[  247.618254][T10906] pim6reg: entered allmulticast mode
[  247.628678][T10907] team0: Mode changed to "broadcast"
[  247.651410][T10906] netlink: 'syz.0.1593': attribute type 4 has an invalid length.
[  247.740015][T10909] pim6reg: left allmulticast mode
[  247.809928][T10912] FAULT_INJECTION: forcing a failure.
[  247.809928][T10912] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  247.824810][T10912] CPU: 1 UID: 0 PID: 10912 Comm: syz.2.1596 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  247.824842][T10912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  247.824855][T10912] Call Trace:
[  247.824862][T10912]  <TASK>
[  247.824871][T10912]  dump_stack_lvl+0x241/0x360
[  247.824904][T10912]  ? __pfx_dump_stack_lvl+0x10/0x10
[  247.824927][T10912]  ? __pfx__printk+0x10/0x10
[  247.824953][T10912]  ? snprintf+0xda/0x120
[  247.824978][T10912]  should_fail_ex+0x40a/0x550
[  247.825016][T10912]  _copy_to_user+0x31/0xb0
[  247.825048][T10912]  simple_read_from_buffer+0xca/0x150
[  247.825081][T10912]  proc_fail_nth_read+0x1e9/0x250
[  247.825115][T10912]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  247.825149][T10912]  ? rw_verify_area+0x243/0x630
[  247.825172][T10912]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  247.825204][T10912]  vfs_read+0x1f8/0xb40
[  247.825227][T10912]  ? fdget_pos+0x254/0x320
[  247.825260][T10912]  ? __pfx___mutex_lock+0x10/0x10
[  247.825289][T10912]  ? __pfx_vfs_read+0x10/0x10
[  247.825309][T10912]  ? do_sys_openat2+0x17a/0x1d0
[  247.825342][T10912]  ? __fget_files+0x2a/0x410
[  247.825375][T10912]  ? __fget_files+0x395/0x410
[  247.825404][T10912]  ? __fget_files+0x2a/0x410
[  247.825444][T10912]  ksys_read+0x18f/0x2b0
[  247.825478][T10912]  ? __pfx_ksys_read+0x10/0x10
[  247.825501][T10912]  ? do_syscall_64+0x100/0x230
[  247.825533][T10912]  ? do_syscall_64+0xb6/0x230
[  247.825564][T10912]  do_syscall_64+0xf3/0x230
[  247.825592][T10912]  ? clear_bhb_loop+0x35/0x90
[  247.825626][T10912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.825654][T10912] RIP: 0033:0x7fa1acb8bb7c
[  247.825673][T10912] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  247.825691][T10912] RSP: 002b:00007fa1ada38030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  247.825713][T10912] RAX: ffffffffffffffda RBX: 00007fa1acda5fa0 RCX: 00007fa1acb8bb7c
[  247.825729][T10912] RDX: 000000000000000f RSI: 00007fa1ada380a0 RDI: 0000000000000004
[  247.825742][T10912] RBP: 00007fa1ada38090 R08: 0000000000000000 R09: 0000000000000000
[  247.825755][T10912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  247.825767][T10912] R13: 0000000000000000 R14: 00007fa1acda5fa0 R15: 00007ffc6a258968
[  247.825798][T10912]  </TASK>
[  248.703748][T10927] __nla_validate_parse: 18 callbacks suppressed
[  248.703769][T10927] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1600'.
[  249.202969][T10957] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1613'.
[  249.341447][T10964] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1615'.
[  249.470801][T10964] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1615'.
[  249.617818][T10974] syzkaller0: entered promiscuous mode
[  249.638174][T10985] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1622'.
[  249.657778][T10974] syzkaller0: entered allmulticast mode
[  250.001631][T10998] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1626'.
[  250.422570][T11005] netlink: 'syz.1.1628': attribute type 10 has an invalid length.
[  251.745752][T10998] bridge_slave_1: left allmulticast mode
[  251.755426][T10998] bridge_slave_1: left promiscuous mode
[  251.790279][T10998] bridge0: port 2(bridge_slave_1) entered disabled state
[  251.794934][T11007] netlink: 'syz.3.1629': attribute type 10 has an invalid length.
[  251.819550][T10998] bridge_slave_0: left allmulticast mode
[  251.825251][T10998] bridge_slave_0: left promiscuous mode
[  251.864165][T10998] bridge0: port 1(bridge_slave_0) entered disabled state
[  251.983687][T11015] netlink: 80 bytes leftover after parsing attributes in process `syz.4.1632'.
[  251.999654][T11015] FAULT_INJECTION: forcing a failure.
[  251.999654][T11015] name failslab, interval 1, probability 0, space 0, times 0
[  252.012659][T11015] CPU: 0 UID: 0 PID: 11015 Comm: syz.4.1632 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  252.012687][T11015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  252.012700][T11015] Call Trace:
[  252.012708][T11015]  <TASK>
[  252.012717][T11015]  dump_stack_lvl+0x241/0x360
[  252.012748][T11015]  ? __pfx_dump_stack_lvl+0x10/0x10
[  252.012772][T11015]  ? __pfx__printk+0x10/0x10
[  252.012795][T11015]  ? __kmalloc_noprof+0xb5/0x4c0
[  252.012825][T11015]  ? __pfx___might_resched+0x10/0x10
[  252.012852][T11015]  ? aa_get_newest_label+0xff/0x6f0
[  252.012895][T11015]  ? genl_get_cmd+0x19e/0xce0
[  252.012921][T11015]  should_fail_ex+0x40a/0x550
[  252.012967][T11015]  should_failslab+0xac/0x100
[  252.012996][T11015]  __kmalloc_noprof+0xdd/0x4c0
[  252.013024][T11015]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  252.013048][T11015]  ? apparmor_capable+0x13b/0x1b0
[  252.013076][T11015]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  252.013109][T11015]  genl_rcv_msg+0x80b/0xec0
[  252.013143][T11015]  ? __pfx_genl_rcv_msg+0x10/0x10
[  252.013196][T11015]  ? __pfx_lock_acquire+0x10/0x10
[  252.013226][T11015]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  252.013250][T11015]  ? __pfx___might_resched+0x10/0x10
[  252.013288][T11015]  netlink_rcv_skb+0x206/0x480
[  252.013319][T11015]  ? __pfx_genl_rcv_msg+0x10/0x10
[  252.013345][T11015]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  252.013407][T11015]  genl_rcv+0x28/0x40
[  252.013428][T11015]  netlink_unicast+0x7f6/0x990
[  252.013464][T11015]  ? __pfx_netlink_unicast+0x10/0x10
[  252.013490][T11015]  ? __virt_addr_valid+0x45f/0x530
[  252.013511][T11015]  ? __phys_addr_symbol+0x2f/0x70
[  252.013529][T11015]  ? __check_object_size+0x47a/0x730
[  252.013568][T11015]  netlink_sendmsg+0x8de/0xcb0
[  252.013612][T11015]  ? __pfx_netlink_sendmsg+0x10/0x10
[  252.013648][T11015]  ? aa_sock_msg_perm+0x91/0x160
[  252.013685][T11015]  ? __pfx_netlink_sendmsg+0x10/0x10
[  252.013715][T11015]  __sock_sendmsg+0x221/0x270
[  252.013749][T11015]  ____sys_sendmsg+0x53a/0x860
[  252.013783][T11015]  ? __pfx_____sys_sendmsg+0x10/0x10
[  252.013805][T11015]  ? __fget_files+0x2a/0x410
[  252.013839][T11015]  ? __fget_files+0x2a/0x410
[  252.013879][T11015]  __sys_sendmsg+0x269/0x350
[  252.013908][T11015]  ? __pfx___sys_sendmsg+0x10/0x10
[  252.013952][T11015]  ? do_sys_openat2+0x17a/0x1d0
[  252.014010][T11015]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  252.014044][T11015]  ? do_syscall_64+0x100/0x230
[  252.014075][T11015]  ? do_syscall_64+0xb6/0x230
[  252.014105][T11015]  do_syscall_64+0xf3/0x230
[  252.014133][T11015]  ? clear_bhb_loop+0x35/0x90
[  252.014165][T11015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.014192][T11015] RIP: 0033:0x7f44e118d169
[  252.014210][T11015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  252.014227][T11015] RSP: 002b:00007f44deff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  252.014248][T11015] RAX: ffffffffffffffda RBX: 00007f44e13a5fa0 RCX: 00007f44e118d169
[  252.014263][T11015] RDX: 0000000000000000 RSI: 0000400000000540 RDI: 0000000000000010
[  252.014275][T11015] RBP: 00007f44deff6090 R08: 0000000000000000 R09: 0000000000000000
[  252.014288][T11015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  252.014300][T11015] R13: 0000000000000000 R14: 00007f44e13a5fa0 R15: 00007ffcbe9b0218
[  252.014331][T11015]  </TASK>
[  252.815134][T11025] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1635'.
[  252.836906][T11025] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  252.866137][T11025] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  252.911274][T11025] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  252.937019][T11025] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  252.970652][T11028] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  252.979926][T11028] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  252.988862][T11028] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  252.997839][T11028] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  253.439981][T11062] lo speed is unknown, defaulting to 1000
[  253.446311][T11062] lo speed is unknown, defaulting to 1000
[  253.454461][T11062] lo speed is unknown, defaulting to 1000
[  253.479923][T11062] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  253.494694][T11062] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  253.550538][T11062] lo speed is unknown, defaulting to 1000
[  253.571756][T11062] lo speed is unknown, defaulting to 1000
[  253.588878][T11062] lo speed is unknown, defaulting to 1000
[  253.596896][T11062] lo speed is unknown, defaulting to 1000
[  253.604502][T11062] lo speed is unknown, defaulting to 1000
[  254.306676][T11086] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1652'.
[  254.370563][T11091] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1652'.
[  254.420598][T11086] bond15: entered promiscuous mode
[  254.433823][T11086] 8021q: adding VLAN 0 to HW filter on device bond15
[  254.554608][T11091] batadv8: entered promiscuous mode
[  254.586247][T11091] batadv8: entered allmulticast mode
[  254.594653][T11091] 8021q: adding VLAN 0 to HW filter on device batadv8
[  254.623335][T11091] bond15: (slave batadv8): Enslaving as an active interface with an up link
[  254.925336][T11114] bridge0: port 1(macsec2) entered blocking state
[  254.950671][T11114] bridge0: port 1(macsec2) entered disabled state
[  254.959511][T11114] macsec2: entered allmulticast mode
[  254.965041][T11114] bridge0: entered allmulticast mode
[  254.976872][T11114] macsec2: left allmulticast mode
[  254.984395][T11119] FAULT_INJECTION: forcing a failure.
[  254.984395][T11119] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  254.991931][T11114] bridge0: left allmulticast mode
[  255.009776][T11119] CPU: 1 UID: 0 PID: 11119 Comm: syz.4.1662 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  255.009806][T11119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  255.009819][T11119] Call Trace:
[  255.009827][T11119]  <TASK>
[  255.009836][T11119]  dump_stack_lvl+0x241/0x360
[  255.009868][T11119]  ? __pfx_dump_stack_lvl+0x10/0x10
[  255.009893][T11119]  ? __pfx__printk+0x10/0x10
[  255.009916][T11119]  ? __pfx_lock_release+0x10/0x10
[  255.009957][T11119]  should_fail_ex+0x40a/0x550
[  255.009996][T11119]  _copy_from_user+0x2d/0xb0
[  255.010025][T11119]  vmemdup_user+0x149/0x1c0
[  255.010047][T11119]  map_get_next_key+0x1c4/0x5e0
[  255.010077][T11119]  ? __might_fault+0xc6/0x120
[  255.010104][T11119]  __sys_bpf+0x732/0x820
[  255.010136][T11119]  ? __pfx___sys_bpf+0x10/0x10
[  255.010178][T11119]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  255.010210][T11119]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  255.010242][T11119]  ? do_syscall_64+0x100/0x230
[  255.010276][T11119]  __x64_sys_bpf+0x7c/0x90
[  255.010304][T11119]  do_syscall_64+0xf3/0x230
[  255.010331][T11119]  ? clear_bhb_loop+0x35/0x90
[  255.010364][T11119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  255.010393][T11119] RIP: 0033:0x7f44e118d169
[  255.010411][T11119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  255.010429][T11119] RSP: 002b:00007f44deff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  255.010451][T11119] RAX: ffffffffffffffda RBX: 00007f44e13a5fa0 RCX: 00007f44e118d169
[  255.010467][T11119] RDX: 0000000000000020 RSI: 0000400000000800 RDI: 0000000000000004
[  255.010481][T11119] RBP: 00007f44deff6090 R08: 0000000000000000 R09: 0000000000000000
[  255.010494][T11119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  255.010506][T11119] R13: 0000000000000000 R14: 00007f44e13a5fa0 R15: 00007ffcbe9b0218
[  255.010536][T11119]  </TASK>
[  255.087274][ T5841] Bluetooth: hci4: command 0x0405 tx timeout
[  255.113673][T11124] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1661'.
[  255.251154][T11121] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1663'.
[  255.510391][T11134] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1667'.
[  255.550578][T11136] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1668'.
[  255.931256][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  255.939171][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  256.002832][T11153] FAULT_INJECTION: forcing a failure.
[  256.002832][T11153] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  256.033220][T11154] netlink: 'syz.2.1675': attribute type 29 has an invalid length.
[  256.046208][T11153] CPU: 0 UID: 0 PID: 11153 Comm: syz.1.1676 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  256.046233][T11153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  256.046244][T11153] Call Trace:
[  256.046251][T11153]  <TASK>
[  256.046258][T11153]  dump_stack_lvl+0x241/0x360
[  256.046287][T11153]  ? __pfx_dump_stack_lvl+0x10/0x10
[  256.046307][T11153]  ? __pfx__printk+0x10/0x10
[  256.046330][T11153]  ? snprintf+0xda/0x120
[  256.046351][T11153]  should_fail_ex+0x40a/0x550
[  256.046382][T11153]  _copy_to_user+0x31/0xb0
[  256.046409][T11153]  simple_read_from_buffer+0xca/0x150
[  256.046438][T11153]  proc_fail_nth_read+0x1e9/0x250
[  256.046467][T11153]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  256.046496][T11153]  ? rw_verify_area+0x243/0x630
[  256.046514][T11153]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  256.046540][T11153]  vfs_read+0x1f8/0xb40
[  256.046560][T11153]  ? fdget_pos+0x254/0x320
[  256.046588][T11153]  ? __pfx___mutex_lock+0x10/0x10
[  256.046613][T11153]  ? __pfx_vfs_read+0x10/0x10
[  256.046630][T11153]  ? do_sys_openat2+0x17a/0x1d0
[  256.046660][T11153]  ? __fget_files+0x2a/0x410
[  256.046688][T11153]  ? __fget_files+0x395/0x410
[  256.046714][T11153]  ? __fget_files+0x2a/0x410
[  256.046750][T11153]  ksys_read+0x18f/0x2b0
[  256.046772][T11153]  ? __pfx_ksys_read+0x10/0x10
[  256.046792][T11153]  ? do_syscall_64+0x100/0x230
[  256.046820][T11153]  ? do_syscall_64+0xb6/0x230
[  256.046847][T11153]  do_syscall_64+0xf3/0x230
[  256.046872][T11153]  ? clear_bhb_loop+0x35/0x90
[  256.046901][T11153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.046933][T11153] RIP: 0033:0x7f4a5ef8bb7c
[  256.046949][T11153] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  256.046964][T11153] RSP: 002b:00007f4a5fdea030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  256.046984][T11153] RAX: ffffffffffffffda RBX: 00007f4a5f1a5fa0 RCX: 00007f4a5ef8bb7c
[  256.046998][T11153] RDX: 000000000000000f RSI: 00007f4a5fdea0a0 RDI: 0000000000000006
[  256.047026][T11153] RBP: 00007f4a5fdea090 R08: 0000000000000000 R09: 0000000000000000
[  256.047038][T11153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  256.047050][T11153] R13: 0000000000000000 R14: 00007f4a5f1a5fa0 R15: 00007fffeb5d7358
[  256.047080][T11153]  </TASK>
[  256.396715][T11157] netlink: 'syz.2.1675': attribute type 29 has an invalid length.
[  256.410655][T11156] macvlan4: entered promiscuous mode
[  256.417058][T11156] bridge0: entered promiscuous mode
[  256.435360][T11157] netlink: 'syz.2.1675': attribute type 29 has an invalid length.
[  256.485128][T11157] netlink: 'syz.2.1675': attribute type 29 has an invalid length.
[  256.580695][T11160] macvlan5: entered promiscuous mode
[  256.623628][T11157] netlink: 'syz.2.1675': attribute type 29 has an invalid length.
[  256.637469][T11157] netlink: 'syz.2.1675': attribute type 29 has an invalid length.
[  256.645815][T11157] netlink: 'syz.2.1675': attribute type 29 has an invalid length.
[  256.687391][T11157] netlink: 'syz.2.1675': attribute type 29 has an invalid length.
[  256.695460][T11157] netlink: 'syz.2.1675': attribute type 29 has an invalid length.
[  256.756557][T11157] netlink: 'syz.2.1675': attribute type 29 has an invalid length.
[  256.861981][T11181] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1684'.
[  256.882723][T11181] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1684'.
[  257.106507][T11189] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1688'.
[  257.168377][T11195] netlink: 136 bytes leftover after parsing attributes in process `syz.1.1689'.
[  258.117570][T11230] FAULT_INJECTION: forcing a failure.
[  258.117570][T11230] name failslab, interval 1, probability 0, space 0, times 0
[  258.153001][T11230] CPU: 0 UID: 0 PID: 11230 Comm: syz.0.1704 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  258.153031][T11230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  258.153043][T11230] Call Trace:
[  258.153049][T11230]  <TASK>
[  258.153056][T11230]  dump_stack_lvl+0x241/0x360
[  258.153080][T11230]  ? __pfx_dump_stack_lvl+0x10/0x10
[  258.153098][T11230]  ? __pfx__printk+0x10/0x10
[  258.153115][T11230]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  258.153140][T11230]  ? __pfx___might_resched+0x10/0x10
[  258.153165][T11230]  should_fail_ex+0x40a/0x550
[  258.153193][T11230]  should_failslab+0xac/0x100
[  258.153216][T11230]  kmem_cache_alloc_node_noprof+0x77/0x380
[  258.153239][T11230]  ? __alloc_skb+0x1c3/0x440
[  258.153259][T11230]  __alloc_skb+0x1c3/0x440
[  258.153280][T11230]  ? __pfx___alloc_skb+0x10/0x10
[  258.153299][T11230]  ? netlink_autobind+0xd6/0x2f0
[  258.153314][T11230]  ? netlink_autobind+0x2b0/0x2f0
[  258.153335][T11230]  netlink_sendmsg+0x634/0xcb0
[  258.153371][T11230]  ? __pfx_netlink_sendmsg+0x10/0x10
[  258.153402][T11230]  ? aa_sock_msg_perm+0x91/0x160
[  258.153433][T11230]  ? __pfx_netlink_sendmsg+0x10/0x10
[  258.153457][T11230]  __sock_sendmsg+0x221/0x270
[  258.153484][T11230]  ____sys_sendmsg+0x53a/0x860
[  258.153510][T11230]  ? __pfx_____sys_sendmsg+0x10/0x10
[  258.153528][T11230]  ? __fget_files+0x2a/0x410
[  258.153568][T11230]  ? __fget_files+0x2a/0x410
[  258.153600][T11230]  __sys_sendmsg+0x269/0x350
[  258.153628][T11230]  ? __pfx___sys_sendmsg+0x10/0x10
[  258.153664][T11230]  ? do_sys_openat2+0x17a/0x1d0
[  258.153717][T11230]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  258.153751][T11230]  ? do_syscall_64+0x100/0x230
[  258.153781][T11230]  ? do_syscall_64+0xb6/0x230
[  258.153809][T11230]  do_syscall_64+0xf3/0x230
[  258.153835][T11230]  ? clear_bhb_loop+0x35/0x90
[  258.153864][T11230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.153891][T11230] RIP: 0033:0x7fd3ba38d169
[  258.153909][T11230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.153926][T11230] RSP: 002b:00007fd3bb29f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  258.153948][T11230] RAX: ffffffffffffffda RBX: 00007fd3ba5a5fa0 RCX: 00007fd3ba38d169
[  258.153963][T11230] RDX: 0000000000000000 RSI: 0000400000000240 RDI: 0000000000000003
[  258.153976][T11230] RBP: 00007fd3bb29f090 R08: 0000000000000000 R09: 0000000000000000
[  258.153989][T11230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  258.154000][T11230] R13: 0000000000000000 R14: 00007fd3ba5a5fa0 R15: 00007ffe3bdd5fd8
[  258.154028][T11230]  </TASK>
[  259.025469][T11252] bridge3: entered allmulticast mode
[  259.332573][T11269] lo speed is unknown, defaulting to 1000
[  259.471937][T11277] bridge0: port 3(macsec1) entered blocking state
[  259.486377][T11277] bridge0: port 3(macsec1) entered disabled state
[  259.503364][T11277] macsec1: entered allmulticast mode
[  259.514583][T11277] bridge0: entered allmulticast mode
[  259.541132][T11277] macsec1: left allmulticast mode
[  259.546661][T11277] bridge0: left allmulticast mode
[  259.668747][T11269] lo speed is unknown, defaulting to 1000
[  259.752475][T11283] tipc: Started in network mode
[  259.770216][T11283] tipc: Node identity 40000001, cluster identity 4711
[  259.777384][T11283] tipc: Node number set to 1073741825
[  259.925957][ T5841] Bluetooth: hci4: command 0x0405 tx timeout
[  260.084047][T11302] FAULT_INJECTION: forcing a failure.
[  260.084047][T11302] name failslab, interval 1, probability 0, space 0, times 0
[  260.120863][T11298] team0: Mode changed to "broadcast"
[  260.170295][T11302] CPU: 1 UID: 0 PID: 11302 Comm: syz.4.1729 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  260.170329][T11302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  260.170343][T11302] Call Trace:
[  260.170350][T11302]  <TASK>
[  260.170359][T11302]  dump_stack_lvl+0x241/0x360
[  260.170392][T11302]  ? __pfx_dump_stack_lvl+0x10/0x10
[  260.170416][T11302]  ? __pfx__printk+0x10/0x10
[  260.170451][T11302]  should_fail_ex+0x40a/0x550
[  260.170499][T11302]  should_failslab+0xac/0x100
[  260.170530][T11302]  kmem_cache_alloc_node_noprof+0x77/0x380
[  260.170562][T11302]  ? __alloc_skb+0x1c3/0x440
[  260.170589][T11302]  __alloc_skb+0x1c3/0x440
[  260.170610][T11302]  ? __local_bh_enable_ip+0x168/0x200
[  260.170635][T11302]  ? lockdep_hardirqs_on+0x99/0x150
[  260.170666][T11302]  ? __pfx___alloc_skb+0x10/0x10
[  260.170687][T11302]  ? xfrm_alloc_spi+0x939/0xd00
[  260.170715][T11302]  ? _local_bh_enable+0x70/0xb0
[  260.170748][T11302]  __pfkey_xfrm_state2msg+0x464/0x3d10
[  260.170791][T11302]  pfkey_getspi+0x7bd/0xec0
[  260.170818][T11302]  ? pfkey_broadcast+0x45/0x400
[  260.170849][T11302]  pfkey_sendmsg+0xbe3/0x1070
[  260.170890][T11302]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  260.170936][T11302]  ? __pfx_aa_sk_perm+0x10/0x10
[  260.170967][T11302]  ? __import_iovec+0x582/0x830
[  260.170998][T11302]  ? aa_sock_msg_perm+0x91/0x160
[  260.171037][T11302]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  260.171060][T11302]  __sock_sendmsg+0x221/0x270
[  260.171095][T11302]  ____sys_sendmsg+0x53a/0x860
[  260.171130][T11302]  ? __pfx_____sys_sendmsg+0x10/0x10
[  260.171154][T11302]  ? __fget_files+0x2a/0x410
[  260.171190][T11302]  ? __sys_sendmmsg+0x392/0x720
[  260.171220][T11302]  ? __might_fault+0xaa/0x120
[  260.171246][T11302]  __sys_sendmmsg+0x36a/0x720
[  260.171285][T11302]  ? __pfx___sys_sendmmsg+0x10/0x10
[  260.171325][T11302]  ? __pfx_lock_release+0x10/0x10
[  260.171355][T11302]  ? kstrtouint_from_user+0x128/0x190
[  260.171406][T11302]  ? ksys_write+0x22a/0x2b0
[  260.171429][T11302]  ? __pfx_lock_release+0x10/0x10
[  260.171475][T11302]  ? sb_end_write+0xe9/0x1c0
[  260.171506][T11302]  ? vfs_write+0x7fa/0xd10
[  260.171532][T11302]  ? __mutex_unlock_slowpath+0x227/0x800
[  260.171591][T11302]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  260.171626][T11302]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  260.171661][T11302]  ? do_syscall_64+0x100/0x230
[  260.171699][T11302]  __x64_sys_sendmmsg+0xa0/0xb0
[  260.171727][T11302]  do_syscall_64+0xf3/0x230
[  260.171756][T11302]  ? clear_bhb_loop+0x35/0x90
[  260.171788][T11302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.171817][T11302] RIP: 0033:0x7f44e118d169
[  260.171835][T11302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.171853][T11302] RSP: 002b:00007f44deff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  260.171876][T11302] RAX: ffffffffffffffda RBX: 00007f44e13a5fa0 RCX: 00007f44e118d169
[  260.171892][T11302] RDX: 0400000000000002 RSI: 0000400000000180 RDI: 0000000000000003
[  260.171906][T11302] RBP: 00007f44deff6090 R08: 0000000000000000 R09: 0000000000000000
[  260.171920][T11302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  260.171932][T11302] R13: 0000000000000000 R14: 00007f44e13a5fa0 R15: 00007ffcbe9b0218
[  260.171964][T11302]  </TASK>
[  260.593918][T11305] __nla_validate_parse: 5 callbacks suppressed
[  260.593940][T11305] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1730'.
[  260.749165][T11309] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  261.077528][T11325] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1740'.
[  261.082237][T11327] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1739'.
[  261.904923][T11338] validate_nla: 31 callbacks suppressed
[  261.904946][T11338] netlink: 'syz.2.1743': attribute type 2 has an invalid length.
[  261.938205][T11338] netlink: 'syz.2.1743': attribute type 1 has an invalid length.
[  261.946157][T11338] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1743'.
[  262.024035][T11338] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1743'.
[  262.084933][T11339] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1743'.
[  263.198793][T11332] bridge3: entered allmulticast mode
[  263.423006][T11352] netlink: 212 bytes leftover after parsing attributes in process `syz.2.1747'.
[  263.728685][T11370] FAULT_INJECTION: forcing a failure.
[  263.728685][T11370] name failslab, interval 1, probability 0, space 0, times 0
[  263.766485][T11370] CPU: 1 UID: 0 PID: 11370 Comm: syz.4.1753 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  263.766515][T11370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  263.766528][T11370] Call Trace:
[  263.766535][T11370]  <TASK>
[  263.766543][T11370]  dump_stack_lvl+0x241/0x360
[  263.766576][T11370]  ? __pfx_dump_stack_lvl+0x10/0x10
[  263.766600][T11370]  ? __pfx__printk+0x10/0x10
[  263.766635][T11370]  should_fail_ex+0x40a/0x550
[  263.766673][T11370]  should_failslab+0xac/0x100
[  263.766702][T11370]  __kmalloc_cache_noprof+0x70/0x390
[  263.766732][T11370]  ? sctp_add_bind_addr+0x89/0x3a0
[  263.766765][T11370]  sctp_add_bind_addr+0x89/0x3a0
[  263.766797][T11370]  sctp_copy_local_addr_list+0x311/0x500
[  263.766828][T11370]  ? sctp_copy_local_addr_list+0xab/0x500
[  263.766857][T11370]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  263.766889][T11370]  ? sctp_v6_is_any+0x60/0x70
[  263.766920][T11370]  ? sctp_copy_one_addr+0x94/0x360
[  263.766953][T11370]  sctp_bind_addr_copy+0xad/0x3b0
[  263.766981][T11370]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  263.767010][T11370]  sctp_connect_new_asoc+0x2f3/0x6c0
[  263.767034][T11370]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  263.767066][T11370]  ? sctp_sendmsg+0xf1a/0x35d0
[  263.767105][T11370]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  263.767136][T11370]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  263.767170][T11370]  sctp_sendmsg+0x1f64/0x35d0
[  263.767222][T11370]  ? __pfx_sctp_sendmsg+0x10/0x10
[  263.767269][T11370]  ? aa_sk_perm+0x96d/0xab0
[  263.767317][T11370]  ? inet_sendmsg+0x330/0x390
[  263.767347][T11370]  __sock_sendmsg+0x1a6/0x270
[  263.767380][T11370]  __sys_sendto+0x363/0x4c0
[  263.767407][T11370]  ? __pfx___sys_sendto+0x10/0x10
[  263.767443][T11370]  ? __fget_files+0x2a/0x410
[  263.767489][T11370]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  263.767524][T11370]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  263.767561][T11370]  __x64_sys_sendto+0xde/0x100
[  263.767606][T11370]  do_syscall_64+0xf3/0x230
[  263.767635][T11370]  ? clear_bhb_loop+0x35/0x90
[  263.767668][T11370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.767708][T11370] RIP: 0033:0x7f44e118d169
[  263.767726][T11370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.767745][T11370] RSP: 002b:00007f44deff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  263.767767][T11370] RAX: ffffffffffffffda RBX: 00007f44e13a5fa0 RCX: 00007f44e118d169
[  263.767782][T11370] RDX: 0000000000000001 RSI: 0000400000000040 RDI: 0000000000000006
[  263.767795][T11370] RBP: 00007f44deff6090 R08: 0000400000000100 R09: 000000000000001c
[  263.767809][T11370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  263.767822][T11370] R13: 0000000000000000 R14: 00007f44e13a5fa0 R15: 00007ffcbe9b0218
[  263.767853][T11370]  </TASK>
[  264.065393][T11374] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1754'.
[  264.246972][T11379] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1755'.
[  264.270127][T11378] bridge4: entered allmulticast mode
[  264.496929][T11386] vxcan1: entered allmulticast mode
[  264.664949][T11399] FAULT_INJECTION: forcing a failure.
[  264.664949][T11399] name failslab, interval 1, probability 0, space 0, times 0
[  264.689724][T11399] CPU: 0 UID: 0 PID: 11399 Comm: syz.0.1764 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  264.689756][T11399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  264.689770][T11399] Call Trace:
[  264.689778][T11399]  <TASK>
[  264.689786][T11399]  dump_stack_lvl+0x241/0x360
[  264.689818][T11399]  ? __pfx_dump_stack_lvl+0x10/0x10
[  264.689841][T11399]  ? __pfx__printk+0x10/0x10
[  264.689864][T11399]  ? kmem_cache_alloc_noprof+0x48/0x380
[  264.689895][T11399]  ? __pfx___might_resched+0x10/0x10
[  264.689920][T11399]  ? alloc_pages_mpol+0x4bd/0x660
[  264.689953][T11399]  should_fail_ex+0x40a/0x550
[  264.689990][T11399]  should_failslab+0xac/0x100
[  264.690020][T11399]  ? __pmd_alloc+0x111/0x420
[  264.690038][T11399]  kmem_cache_alloc_noprof+0x70/0x380
[  264.690073][T11399]  __pmd_alloc+0x111/0x420
[  264.690090][T11399]  ? mark_lock+0x9a/0x360
[  264.690112][T11399]  ? __pfx___pmd_alloc+0x10/0x10
[  264.690132][T11399]  ? validate_chain+0x11e/0x5920
[  264.690162][T11399]  __handle_mm_fault+0xd34/0x70f0
[  264.690223][T11399]  ? __pfx___handle_mm_fault+0x10/0x10
[  264.690269][T11399]  ? mt_find+0x2a9/0x920
[  264.690298][T11399]  ? __pfx_lock_release+0x10/0x10
[  264.690342][T11399]  ? mt_find+0x2a9/0x920
[  264.690371][T11399]  ? mt_find+0x6c8/0x920
[  264.690408][T11399]  ? mt_find+0x2a9/0x920
[  264.690440][T11399]  ? __pfx_mt_find+0x10/0x10
[  264.690487][T11399]  ? find_vma+0xf9/0x170
[  264.690506][T11399]  ? __pfx_find_vma+0x10/0x10
[  264.690529][T11399]  handle_mm_fault+0x3e5/0x8d0
[  264.690573][T11399]  exc_page_fault+0x2b9/0x8b0
[  264.690600][T11399]  ? __might_fault+0xaa/0x120
[  264.690626][T11399]  asm_exc_page_fault+0x26/0x30
[  264.690655][T11399] RIP: 0010:rep_movs_alternative+0x30/0x70
[  264.690678][T11399] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08
[  264.690696][T11399] RSP: 0018:ffffc90019867a80 EFLAGS: 00050202
[  264.690716][T11399] RAX: 00007ffffffff001 RBX: 0000400000000140 RCX: 0000000000000028
[  264.690731][T11399] RDX: 0000000000000001 RSI: 0000400000000140 RDI: ffffc90019867b20
[  264.690746][T11399] RBP: 0000000000000000 R08: ffffc90019867b47 R09: 1ffff9200330cf68
[  264.690760][T11399] R10: dffffc0000000000 R11: fffff5200330cf69 R12: ffffc90019867b20
[  264.690776][T11399] R13: dffffc0000000000 R14: ffffc90019867b20 R15: 0000000000000028
[  264.690809][T11399]  _copy_from_user+0x7b/0xb0
[  264.690839][T11399]  get_user_ifreq+0xc3/0x200
[  264.690871][T11399]  inet_ioctl+0x33b/0x4f0
[  264.690901][T11399]  ? __pfx_inet_ioctl+0x10/0x10
[  264.690930][T11399]  ? tomoyo_path_number_perm+0x5dd/0x770
[  264.690973][T11399]  ? __lock_acquire+0x1397/0x2100
[  264.691017][T11399]  sock_do_ioctl+0x158/0x460
[  264.691053][T11399]  ? __pfx_sock_do_ioctl+0x10/0x10
[  264.691104][T11399]  sock_ioctl+0x626/0x8e0
[  264.691136][T11399]  ? __pfx_sock_ioctl+0x10/0x10
[  264.691165][T11399]  ? __fget_files+0x2a/0x410
[  264.691201][T11399]  ? __fget_files+0x2a/0x410
[  264.691237][T11399]  ? __pfx_sock_ioctl+0x10/0x10
[  264.691267][T11399]  __se_sys_ioctl+0xf5/0x170
[  264.691293][T11399]  do_syscall_64+0xf3/0x230
[  264.691322][T11399]  ? clear_bhb_loop+0x35/0x90
[  264.691354][T11399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.691383][T11399] RIP: 0033:0x7fd3ba38d169
[  264.691407][T11399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.691425][T11399] RSP: 002b:00007fd3bb29f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  264.691446][T11399] RAX: ffffffffffffffda RBX: 00007fd3ba5a5fa0 RCX: 00007fd3ba38d169
[  264.691460][T11399] RDX: 0000400000000140 RSI: 000000000000891b RDI: 0000000000000003
[  264.691474][T11399] RBP: 00007fd3bb29f090 R08: 0000000000000000 R09: 0000000000000000
[  264.691487][T11399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  264.691499][T11399] R13: 0000000000000000 R14: 00007fd3ba5a5fa0 R15: 00007ffe3bdd5fd8
[  264.691531][T11399]  </TASK>
[  265.196630][T11407] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1766'.
[  265.382167][T11409] FAULT_INJECTION: forcing a failure.
[  265.382167][T11409] name failslab, interval 1, probability 0, space 0, times 0
[  265.396268][T11409] CPU: 1 UID: 0 PID: 11409 Comm: syz.4.1767 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  265.396298][T11409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  265.396311][T11409] Call Trace:
[  265.396319][T11409]  <TASK>
[  265.396327][T11409]  dump_stack_lvl+0x241/0x360
[  265.396360][T11409]  ? __pfx_dump_stack_lvl+0x10/0x10
[  265.396385][T11409]  ? __pfx__printk+0x10/0x10
[  265.396408][T11409]  ? netlink_broadcast_filtered+0x1260/0x12a0
[  265.396450][T11409]  should_fail_ex+0x40a/0x550
[  265.396487][T11409]  should_failslab+0xac/0x100
[  265.396518][T11409]  kmem_cache_alloc_node_noprof+0x77/0x380
[  265.396549][T11409]  ? __alloc_skb+0x1c3/0x440
[  265.396577][T11409]  __alloc_skb+0x1c3/0x440
[  265.396609][T11409]  ? __pfx___alloc_skb+0x10/0x10
[  265.396629][T11409]  ? xfrm_policy_insert+0x665/0x940
[  265.396656][T11409]  ? _local_bh_enable+0x70/0xb0
[  265.396681][T11409]  ? pfkey_xfrm_policy2msg_size+0x5c5/0x7e0
[  265.396714][T11409]  pfkey_send_policy_notify+0x14c/0x920
[  265.396739][T11409]  ? __pfx_pfkey_send_policy_notify+0x10/0x10
[  265.396766][T11409]  km_policy_notify+0x126/0x210
[  265.396792][T11409]  ? km_policy_notify+0x2e/0x210
[  265.396824][T11409]  xfrm_add_policy+0x54c/0x980
[  265.396861][T11409]  ? __pfx_xfrm_add_policy+0x10/0x10
[  265.396893][T11409]  ? apparmor_capable+0x13b/0x1b0
[  265.396923][T11409]  ? __nla_parse+0x40/0x60
[  265.396952][T11409]  xfrm_user_rcv_msg+0x975/0xc20
[  265.396988][T11409]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  265.397056][T11409]  ? __mutex_trylock_common+0x183/0x2e0
[  265.397082][T11409]  ? __pfx___might_resched+0x10/0x10
[  265.397121][T11409]  ? __pfx___mutex_trylock_common+0x10/0x10
[  265.397158][T11409]  netlink_rcv_skb+0x206/0x480
[  265.397190][T11409]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  265.397221][T11409]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  265.397285][T11409]  xfrm_netlink_rcv+0x79/0x90
[  265.397314][T11409]  netlink_unicast+0x7f6/0x990
[  265.397353][T11409]  ? __pfx_netlink_unicast+0x10/0x10
[  265.397380][T11409]  ? __virt_addr_valid+0x45f/0x530
[  265.397402][T11409]  ? __phys_addr_symbol+0x2f/0x70
[  265.397422][T11409]  ? __check_object_size+0x47a/0x730
[  265.397457][T11409]  netlink_sendmsg+0x8de/0xcb0
[  265.397504][T11409]  ? __pfx_netlink_sendmsg+0x10/0x10
[  265.397541][T11409]  ? aa_sock_msg_perm+0x91/0x160
[  265.397580][T11409]  ? __pfx_netlink_sendmsg+0x10/0x10
[  265.397611][T11409]  __sock_sendmsg+0x221/0x270
[  265.397645][T11409]  ____sys_sendmsg+0x53a/0x860
[  265.397681][T11409]  ? __pfx_____sys_sendmsg+0x10/0x10
[  265.397704][T11409]  ? __fget_files+0x2a/0x410
[  265.397739][T11409]  ? __fget_files+0x2a/0x410
[  265.397780][T11409]  __sys_sendmsg+0x269/0x350
[  265.397812][T11409]  ? __pfx___sys_sendmsg+0x10/0x10
[  265.397852][T11409]  ? do_sys_openat2+0x17a/0x1d0
[  265.397913][T11409]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  265.397947][T11409]  ? do_syscall_64+0x100/0x230
[  265.397979][T11409]  ? do_syscall_64+0xb6/0x230
[  265.398011][T11409]  do_syscall_64+0xf3/0x230
[  265.398039][T11409]  ? clear_bhb_loop+0x35/0x90
[  265.398071][T11409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.398099][T11409] RIP: 0033:0x7f44e118d169
[  265.398124][T11409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  265.398143][T11409] RSP: 002b:00007f44deff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  265.398165][T11409] RAX: ffffffffffffffda RBX: 00007f44e13a5fa0 RCX: 00007f44e118d169
[  265.398181][T11409] RDX: 0000000000000000 RSI: 0000400000000480 RDI: 0000000000000005
[  265.398195][T11409] RBP: 00007f44deff6090 R08: 0000000000000000 R09: 0000000000000000
[  265.398207][T11409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  265.398219][T11409] R13: 0000000000000000 R14: 00007f44e13a5fa0 R15: 00007ffcbe9b0218
[  265.398253][T11409]  </TASK>
[  266.213515][T11419] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1770'.
[  267.788474][T11427] netlink: 'syz.3.1773': attribute type 1 has an invalid length.
[  267.810387][T11427] bond9: entered promiscuous mode
[  267.817030][T11427] 8021q: adding VLAN 0 to HW filter on device bond9
[  267.833004][T11427] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1773'.
[  267.842224][T11427] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1773'.
[  267.856818][T11427] batadv7: entered promiscuous mode
[  267.862079][T11427] batadv7: entered allmulticast mode
[  267.875371][T11427] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1773'.
[  267.886701][T11427] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1773'.
[  267.960557][T11434] sctp: [Deprecated]: syz.4.1775 (pid 11434) Use of struct sctp_assoc_value in delayed_ack socket option.
[  267.960557][T11434] Use struct sctp_sack_info instead
[  268.026963][   T30] audit: type=1800 audit(1742374833.622:2): pid=11436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1776" name="blkio.bfq.time_recursive" dev="tmpfs" ino=1844 res=0 errno=0
[  268.096926][   T30] audit: type=1800 audit(1742374833.622:3): pid=11436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1776" name="blkio.bfq.time_recursive" dev="tmpfs" ino=1844 res=0 errno=0
[  268.141243][T11438] FAULT_INJECTION: forcing a failure.
[  268.141243][T11438] name failslab, interval 1, probability 0, space 0, times 0
[  268.181109][T11438] CPU: 0 UID: 0 PID: 11438 Comm: syz.3.1777 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  268.181139][T11438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  268.181151][T11438] Call Trace:
[  268.181158][T11438]  <TASK>
[  268.181175][T11438]  dump_stack_lvl+0x241/0x360
[  268.181207][T11438]  ? __pfx_dump_stack_lvl+0x10/0x10
[  268.181231][T11438]  ? __pfx__printk+0x10/0x10
[  268.181259][T11438]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  268.181290][T11438]  ? __pfx___might_resched+0x10/0x10
[  268.181323][T11438]  should_fail_ex+0x40a/0x550
[  268.181359][T11438]  should_failslab+0xac/0x100
[  268.181388][T11438]  __kmalloc_node_noprof+0xe1/0x4d0
[  268.181417][T11438]  ? __kvmalloc_node_noprof+0x72/0x190
[  268.181443][T11438]  __kvmalloc_node_noprof+0x72/0x190
[  268.181464][T11438]  __nf_hook_entries_try_shrink+0x330/0x730
[  268.181509][T11438]  __nf_unregister_net_hook+0x5cf/0x800
[  268.181548][T11438]  nf_unregister_net_hooks+0xd0/0x140
[  268.181581][T11438]  ip_vs_unregister_hooks+0xb9/0x120
[  268.181613][T11438]  ip_vs_unlink_service+0x3c5/0x9e0
[  268.181659][T11438]  ip_vs_genl_set_cmd+0x24f/0x1cd0
[  268.181689][T11438]  ? __pfx_ip_vs_genl_set_cmd+0x10/0x10
[  268.181775][T11438]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  268.181811][T11438]  genl_rcv_msg+0xb1f/0xec0
[  268.181846][T11438]  ? __pfx_genl_rcv_msg+0x10/0x10
[  268.181905][T11438]  ? __pfx_lock_acquire+0x10/0x10
[  268.181938][T11438]  ? __pfx_ip_vs_genl_set_cmd+0x10/0x10
[  268.181963][T11438]  ? __pfx___might_resched+0x10/0x10
[  268.182004][T11438]  netlink_rcv_skb+0x206/0x480
[  268.182037][T11438]  ? __pfx_genl_rcv_msg+0x10/0x10
[  268.182064][T11438]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  268.182132][T11438]  genl_rcv+0x28/0x40
[  268.182153][T11438]  netlink_unicast+0x7f6/0x990
[  268.182199][T11438]  ? __pfx_netlink_unicast+0x10/0x10
[  268.182225][T11438]  ? __virt_addr_valid+0x45f/0x530
[  268.182247][T11438]  ? __phys_addr_symbol+0x2f/0x70
[  268.182267][T11438]  ? __check_object_size+0x47a/0x730
[  268.182301][T11438]  netlink_sendmsg+0x8de/0xcb0
[  268.182349][T11438]  ? __pfx_netlink_sendmsg+0x10/0x10
[  268.182388][T11438]  ? aa_sock_msg_perm+0x91/0x160
[  268.182427][T11438]  ? __pfx_netlink_sendmsg+0x10/0x10
[  268.182457][T11438]  __sock_sendmsg+0x221/0x270
[  268.182492][T11438]  ____sys_sendmsg+0x53a/0x860
[  268.182529][T11438]  ? __pfx_____sys_sendmsg+0x10/0x10
[  268.182553][T11438]  ? __fget_files+0x2a/0x410
[  268.182589][T11438]  ? __fget_files+0x2a/0x410
[  268.182631][T11438]  __sys_sendmsg+0x269/0x350
[  268.182663][T11438]  ? __pfx___sys_sendmsg+0x10/0x10
[  268.182705][T11438]  ? do_sys_openat2+0x17a/0x1d0
[  268.182769][T11438]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  268.182802][T11438]  ? do_syscall_64+0x100/0x230
[  268.182835][T11438]  ? do_syscall_64+0xb6/0x230
[  268.182866][T11438]  do_syscall_64+0xf3/0x230
[  268.182895][T11438]  ? clear_bhb_loop+0x35/0x90
[  268.182939][T11438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.182965][T11438] RIP: 0033:0x7f4eb918d169
[  268.182981][T11438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.182997][T11438] RSP: 002b:00007f4eb6ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  268.183018][T11438] RAX: ffffffffffffffda RBX: 00007f4eb93a5fa0 RCX: 00007f4eb918d169
[  268.183032][T11438] RDX: 0000000020000000 RSI: 0000400000000180 RDI: 0000000000000003
[  268.183044][T11438] RBP: 00007f4eb6ff6090 R08: 0000000000000000 R09: 0000000000000000
[  268.183057][T11438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  268.183068][T11438] R13: 0000000000000000 R14: 00007f4eb93a5fa0 R15: 00007ffd82db0398
[  268.183098][T11438]  </TASK>
[  268.188460][T11440] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1778'.
[  268.653442][T11447] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1778'.
[  268.669845][T11447] nbd: device at index 64 is going down
[  268.687616][T11453] netlink: 'syz.3.1781': attribute type 2 has an invalid length.
[  268.695492][T11453] netlink: 'syz.3.1781': attribute type 1 has an invalid length.
[  268.726067][T11453] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1781'.
[  268.735345][T11458] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1781'.
[  268.784867][T11453] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1781'.
[  270.124075][T11497] netlink: 'syz.0.1792': attribute type 1 has an invalid length.
[  270.261344][ T5841] Bluetooth: hci4: command 0x0405 tx timeout
[  271.481271][T11497] bond15: entered promiscuous mode
[  271.516372][T11497] 8021q: adding VLAN 0 to HW filter on device bond15
[  271.568181][T11499] batadv10: entered promiscuous mode
[  271.573298][T11504] __nla_validate_parse: 8 callbacks suppressed
[  271.573319][T11504] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1793'.
[  271.573514][T11499] batadv10: entered allmulticast mode
[  271.887517][T11511] bond13: left promiscuous mode
[  271.893382][T11511] batadv6: left promiscuous mode
[  271.919427][T11511] batadv6: left allmulticast mode
[  271.968515][T11511] bond14: left promiscuous mode
[  272.001318][T11511] batadv7: left promiscuous mode
[  272.015983][T11511] batadv7: left allmulticast mode
[  272.050059][T11511] bond15: left promiscuous mode
[  272.081522][T11511] batadv8: left promiscuous mode
[  272.088739][T11511] batadv8: left allmulticast mode
[  272.126768][T11524] netlink: 308 bytes leftover after parsing attributes in process `syz.4.1801'.
[  272.201274][T11524] lo speed is unknown, defaulting to 1000
[  272.297917][T11530] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1801'.
[  272.337069][T11530] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1801'.
[  272.374505][T11530] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1801'.
[  272.397296][T11530] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1801'.
[  272.502953][T11524] lo speed is unknown, defaulting to 1000
[  272.765193][T11547] rdma_rxe: rxe_newlink: failed to add lo
[  273.317086][T11567] pim6reg1: entered promiscuous mode
[  273.322608][T11567] pim6reg1: entered allmulticast mode
[  273.341770][T11569] FAULT_INJECTION: forcing a failure.
[  273.341770][T11569] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  273.375964][T11569] CPU: 0 UID: 0 PID: 11569 Comm: syz.0.1815 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  273.375997][T11569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  273.376010][T11569] Call Trace:
[  273.376020][T11569]  <TASK>
[  273.376030][T11569]  dump_stack_lvl+0x241/0x360
[  273.376062][T11569]  ? __pfx_dump_stack_lvl+0x10/0x10
[  273.376086][T11569]  ? __pfx__printk+0x10/0x10
[  273.376114][T11569]  ? snprintf+0xda/0x120
[  273.376139][T11569]  should_fail_ex+0x40a/0x550
[  273.376177][T11569]  _copy_to_user+0x31/0xb0
[  273.376209][T11569]  simple_read_from_buffer+0xca/0x150
[  273.376242][T11569]  proc_fail_nth_read+0x1e9/0x250
[  273.376276][T11569]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  273.376310][T11569]  ? rw_verify_area+0x243/0x630
[  273.376332][T11569]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  273.376364][T11569]  vfs_read+0x1f8/0xb40
[  273.376388][T11569]  ? fdget_pos+0x254/0x320
[  273.376420][T11569]  ? __pfx___mutex_lock+0x10/0x10
[  273.376448][T11569]  ? __pfx_vfs_read+0x10/0x10
[  273.376474][T11569]  ? __fget_files+0x2a/0x410
[  273.376508][T11569]  ? __fget_files+0x395/0x410
[  273.376538][T11569]  ? __fget_files+0x2a/0x410
[  273.376578][T11569]  ksys_read+0x18f/0x2b0
[  273.376603][T11569]  ? __pfx_ksys_read+0x10/0x10
[  273.376626][T11569]  ? do_syscall_64+0x100/0x230
[  273.376658][T11569]  ? do_syscall_64+0xb6/0x230
[  273.376690][T11569]  do_syscall_64+0xf3/0x230
[  273.376719][T11569]  ? clear_bhb_loop+0x35/0x90
[  273.376752][T11569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.376781][T11569] RIP: 0033:0x7fd3ba38bb7c
[  273.376799][T11569] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  273.376817][T11569] RSP: 002b:00007fd3bb29f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  273.376847][T11569] RAX: ffffffffffffffda RBX: 00007fd3ba5a5fa0 RCX: 00007fd3ba38bb7c
[  273.376863][T11569] RDX: 000000000000000f RSI: 00007fd3bb29f0a0 RDI: 0000000000000004
[  273.376876][T11569] RBP: 00007fd3bb29f090 R08: 0000000000000000 R09: 0000000000000000
[  273.376890][T11569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  273.376902][T11569] R13: 0000000000000000 R14: 00007fd3ba5a5fa0 R15: 00007ffe3bdd5fd8
[  273.376935][T11569]  </TASK>
[  273.610051][T11563] netlink: 'syz.3.1813': attribute type 10 has an invalid length.
[  273.941974][ T5841] Bluetooth: hci4: command 0x0405 tx timeout
[  274.277734][T11589] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1821'.
[  274.322805][T11589] bridge_slave_1: left allmulticast mode
[  274.336867][T11589] bridge_slave_1: left promiscuous mode
[  274.347432][T11589] bridge0: port 2(bridge_slave_1) entered disabled state
[  274.376029][T11575] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1817'.
[  274.387240][T11589] bridge_slave_0: left allmulticast mode
[  274.400832][T11589] bridge_slave_0: left promiscuous mode
[  274.424420][T11589] bridge0: port 1(bridge_slave_0) entered disabled state
[  274.499225][T11589] bridge0 (unregistering): left promiscuous mode
[  274.770321][T11600] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1824'.
[  274.914302][T11604] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1825'.
[  275.696215][T11632] netlink: 'syz.2.1835': attribute type 29 has an invalid length.
[  275.728291][T11632] netlink: 'syz.2.1835': attribute type 29 has an invalid length.
[  275.767378][T11632] netlink: 'syz.2.1835': attribute type 29 has an invalid length.
[  275.776588][T11632] netlink: 'syz.2.1835': attribute type 29 has an invalid length.
[  275.796607][T11632] netlink: 'syz.2.1835': attribute type 29 has an invalid length.
[  275.815147][T11632] netlink: 'syz.2.1835': attribute type 29 has an invalid length.
[  275.837421][T11632] netlink: 'syz.2.1835': attribute type 29 has an invalid length.
[  275.855707][T11632] netlink: 'syz.2.1835': attribute type 29 has an invalid length.
[  275.881768][T11632] netlink: 'syz.2.1835': attribute type 29 has an invalid length.
[  275.930252][T11634] FAULT_INJECTION: forcing a failure.
[  275.930252][T11634] name failslab, interval 1, probability 0, space 0, times 0
[  275.952771][T11634] CPU: 0 UID: 0 PID: 11634 Comm: syz.3.1836 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  275.952803][T11634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  275.952816][T11634] Call Trace:
[  275.952824][T11634]  <TASK>
[  275.952833][T11634]  dump_stack_lvl+0x241/0x360
[  275.952865][T11634]  ? __pfx_dump_stack_lvl+0x10/0x10
[  275.952889][T11634]  ? __pfx__printk+0x10/0x10
[  275.952912][T11634]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  275.952955][T11634]  ? __pfx___might_resched+0x10/0x10
[  275.953003][T11634]  should_fail_ex+0x40a/0x550
[  275.953040][T11634]  should_failslab+0xac/0x100
[  275.953068][T11634]  kmem_cache_alloc_node_noprof+0x77/0x380
[  275.953098][T11634]  ? __alloc_skb+0x1c3/0x440
[  275.953125][T11634]  __alloc_skb+0x1c3/0x440
[  275.953151][T11634]  ? __pfx___alloc_skb+0x10/0x10
[  275.953171][T11634]  ? __rcu_read_unlock+0xa1/0x110
[  275.953202][T11634]  ? netlink_autobind+0xd6/0x2f0
[  275.953220][T11634]  ? netlink_autobind+0x2b0/0x2f0
[  275.953244][T11634]  netlink_sendmsg+0x634/0xcb0
[  275.953287][T11634]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.953326][T11634]  ? aa_sock_msg_perm+0x91/0x160
[  275.953363][T11634]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.953392][T11634]  __sock_sendmsg+0x221/0x270
[  275.953425][T11634]  sock_write_iter+0x2d7/0x3f0
[  275.953455][T11634]  ? __pfx_sock_write_iter+0x10/0x10
[  275.953505][T11634]  do_iter_readv_writev+0x71a/0x9d0
[  275.953535][T11634]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  275.953564][T11634]  ? bpf_lsm_file_permission+0x9/0x10
[  275.953594][T11634]  ? rw_verify_area+0x243/0x630
[  275.953618][T11634]  vfs_writev+0x38b/0xbc0
[  275.953662][T11634]  ? __pfx_vfs_writev+0x10/0x10
[  275.953710][T11634]  ? do_sys_openat2+0x17a/0x1d0
[  275.953741][T11634]  ? __fget_files+0x2a/0x410
[  275.953793][T11634]  ? __fget_files+0x395/0x410
[  275.953822][T11634]  ? __fget_files+0x2a/0x410
[  275.953861][T11634]  do_writev+0x1b6/0x360
[  275.953897][T11634]  ? __pfx_do_writev+0x10/0x10
[  275.953928][T11634]  ? do_syscall_64+0x100/0x230
[  275.953961][T11634]  ? do_syscall_64+0xb6/0x230
[  275.953991][T11634]  do_syscall_64+0xf3/0x230
[  275.954019][T11634]  ? clear_bhb_loop+0x35/0x90
[  275.954052][T11634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.954079][T11634] RIP: 0033:0x7f4eb918d169
[  275.954097][T11634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.954115][T11634] RSP: 002b:00007f4eb6ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  275.954137][T11634] RAX: ffffffffffffffda RBX: 00007f4eb93a5fa0 RCX: 00007f4eb918d169
[  275.954153][T11634] RDX: 0000000000000001 RSI: 0000400000000000 RDI: 0000000000000004
[  275.954165][T11634] RBP: 00007f4eb6ff6090 R08: 0000000000000000 R09: 0000000000000000
[  275.954178][T11634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.954191][T11634] R13: 0000000000000000 R14: 00007f4eb93a5fa0 R15: 00007ffd82db0398
[  275.954221][T11634]  </TASK>
[  276.266440][ T5841] Bluetooth: hci4: command 0x0405 tx timeout
[  276.660436][T11646] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1841'.
[  276.669632][T11646] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1841'.
[  276.914581][T11662] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1846'.
[  276.941824][T11663] bridge5: entered allmulticast mode
[  277.411169][T11685] bond16: entered promiscuous mode
[  277.417088][T11685] 8021q: adding VLAN 0 to HW filter on device bond16
[  277.445193][T11685] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1855'.
[  277.454564][T11685] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1855'.
[  277.469273][T11685] batadv9: entered promiscuous mode
[  277.474544][T11685] batadv9: entered allmulticast mode
[  277.483321][T11685] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1855'.
[  277.493090][T11685] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1855'.
[  277.504227][T11685] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1855'.
[  277.674684][T11695] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1858'.
[  277.910761][T11704] bridge0: entered allmulticast mode
[  277.954634][T11709] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1864'.
[  278.209767][T11719] bond10: entered promiscuous mode
[  278.220288][T11719] 8021q: adding VLAN 0 to HW filter on device bond10
[  278.261193][T11724] batadv8: entered promiscuous mode
[  278.293864][T11724] batadv8: entered allmulticast mode
[  279.062301][T11759] validate_nla: 78 callbacks suppressed
[  279.062323][T11759] netlink: 'syz.0.1882': attribute type 1 has an invalid length.
[  279.087747][T11758] netlink: 'syz.1.1881': attribute type 4 has an invalid length.
[  279.110270][T11759] bond16: entered promiscuous mode
[  279.117748][T11759] 8021q: adding VLAN 0 to HW filter on device bond16
[  279.130015][T11758] netlink: 'syz.1.1881': attribute type 4 has an invalid length.
[  279.147645][T11759] batadv11: entered promiscuous mode
[  279.153236][T11759] batadv11: entered allmulticast mode
[  280.649600][T11827] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  280.659048][T11827] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  280.668065][T11827] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  280.677084][T11827] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  280.723000][T11827] bond15: left promiscuous mode
[  280.738799][T11827] batadv10: left promiscuous mode
[  280.747688][T11827] batadv10: left allmulticast mode
[  280.757144][T11827] bond16: left promiscuous mode
[  280.763572][T11827] batadv11: left promiscuous mode
[  280.769308][T11827] batadv11: left allmulticast mode
[  280.990790][T11842] bond17: entered promiscuous mode
[  281.038407][T11842] 8021q: adding VLAN 0 to HW filter on device bond17
[  281.145007][T11848] batadv10: entered promiscuous mode
[  281.151370][T11851] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  281.166173][T11848] batadv10: entered allmulticast mode
[  281.188448][T11848] 8021q: adding VLAN 0 to HW filter on device batadv10
[  281.210207][T11848] bond17: (slave batadv10): Enslaving as an active interface with an up link
[  281.293995][T11860] batadv_slave_1: entered promiscuous mode
[  281.444991][T11853] batadv_slave_1: left promiscuous mode
[  281.518671][T11868] netlink: 'syz.2.1915': attribute type 1 has an invalid length.
[  281.609370][T11868] bond18: entered promiscuous mode
[  281.614866][T11868] 8021q: adding VLAN 0 to HW filter on device bond18
[  281.737384][T11872] batadv11: entered promiscuous mode
[  281.742759][T11872] batadv11: entered allmulticast mode
[  281.846988][T11868] __nla_validate_parse: 23 callbacks suppressed
[  281.847010][T11868] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1915'.
[  281.943377][T11868] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1915'.
[  281.975022][T11868] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1915'.
[  282.107125][T11890] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1921'.
[  282.190571][T11890] bridge_slave_1: left allmulticast mode
[  282.214413][T11890] bridge_slave_1: left promiscuous mode
[  282.256102][T11890] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.294828][T11897] FAULT_INJECTION: forcing a failure.
[  282.294828][T11897] name failslab, interval 1, probability 0, space 0, times 0
[  282.341374][T11897] CPU: 1 UID: 0 PID: 11897 Comm: syz.0.1926 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  282.341404][T11897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  282.341417][T11897] Call Trace:
[  282.341424][T11897]  <TASK>
[  282.341433][T11897]  dump_stack_lvl+0x241/0x360
[  282.341466][T11897]  ? __pfx_dump_stack_lvl+0x10/0x10
[  282.341490][T11897]  ? __pfx__printk+0x10/0x10
[  282.341527][T11897]  should_fail_ex+0x40a/0x550
[  282.341565][T11897]  should_failslab+0xac/0x100
[  282.341597][T11897]  __kmalloc_cache_noprof+0x70/0x390
[  282.341626][T11897]  ? sctp_add_bind_addr+0x89/0x3a0
[  282.341659][T11897]  sctp_add_bind_addr+0x89/0x3a0
[  282.341693][T11897]  sctp_copy_local_addr_list+0x311/0x500
[  282.341724][T11897]  ? sctp_copy_local_addr_list+0xab/0x500
[  282.341753][T11897]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  282.341785][T11897]  ? sctp_v6_is_any+0x60/0x70
[  282.341817][T11897]  ? sctp_copy_one_addr+0x94/0x360
[  282.341849][T11897]  sctp_bind_addr_copy+0xad/0x3b0
[  282.341877][T11897]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  282.341906][T11897]  sctp_connect_new_asoc+0x2f3/0x6c0
[  282.341932][T11897]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  282.341964][T11897]  ? sctp_sendmsg+0xf1a/0x35d0
[  282.342002][T11897]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  282.342044][T11897]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  282.342078][T11897]  sctp_sendmsg+0x1f64/0x35d0
[  282.342127][T11897]  ? __pfx_sctp_sendmsg+0x10/0x10
[  282.342163][T11897]  ? aa_sk_perm+0x96d/0xab0
[  282.342213][T11897]  ? inet_sendmsg+0x330/0x390
[  282.342244][T11897]  __sock_sendmsg+0x1a6/0x270
[  282.342280][T11897]  ____sys_sendmsg+0x53a/0x860
[  282.342316][T11897]  ? __pfx_____sys_sendmsg+0x10/0x10
[  282.342339][T11897]  ? __fget_files+0x2a/0x410
[  282.342375][T11897]  ? __fget_files+0x2a/0x410
[  282.342415][T11897]  __sys_sendmmsg+0x36a/0x720
[  282.342454][T11897]  ? __pfx___sys_sendmmsg+0x10/0x10
[  282.342495][T11897]  ? __pfx_lock_release+0x10/0x10
[  282.342524][T11897]  ? kstrtouint_from_user+0x128/0x190
[  282.342575][T11897]  ? ksys_write+0x22a/0x2b0
[  282.342600][T11897]  ? __pfx_lock_release+0x10/0x10
[  282.342639][T11897]  ? sb_end_write+0xe9/0x1c0
[  282.342671][T11897]  ? vfs_write+0x7fa/0xd10
[  282.342697][T11897]  ? __mutex_unlock_slowpath+0x227/0x800
[  282.342758][T11897]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  282.342795][T11897]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  282.342828][T11897]  ? do_syscall_64+0x100/0x230
[  282.342862][T11897]  __x64_sys_sendmmsg+0xa0/0xb0
[  282.342891][T11897]  do_syscall_64+0xf3/0x230
[  282.342920][T11897]  ? clear_bhb_loop+0x35/0x90
[  282.342953][T11897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.342982][T11897] RIP: 0033:0x7fd3ba38d169
[  282.343000][T11897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.343019][T11897] RSP: 002b:00007fd3bb29f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  282.343067][T11897] RAX: ffffffffffffffda RBX: 00007fd3ba5a5fa0 RCX: 00007fd3ba38d169
[  282.343082][T11897] RDX: 0000000000000002 RSI: 0000400000000880 RDI: 0000000000000003
[  282.343095][T11897] RBP: 00007fd3bb29f090 R08: 0000000000000000 R09: 0000000000000000
[  282.343108][T11897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  282.343121][T11897] R13: 0000000000000000 R14: 00007fd3ba5a5fa0 R15: 00007ffe3bdd5fd8
[  282.343154][T11897]  </TASK>
[  282.721309][T11890] bridge_slave_0: left allmulticast mode
[  282.727362][T11890] bridge_slave_0: left promiscuous mode
[  282.737077][T11890] bridge0: port 1(bridge_slave_0) entered disabled state
[  282.993637][T11903] netlink: 'syz.2.1927': attribute type 29 has an invalid length.
[  283.002389][T11905] netlink: 'syz.2.1927': attribute type 29 has an invalid length.
[  283.055215][T11905] netlink: 'syz.2.1927': attribute type 29 has an invalid length.
[  283.094461][T11905] netlink: 'syz.2.1927': attribute type 29 has an invalid length.
[  283.094659][T11917] netlink: 'syz.0.1930': attribute type 10 has an invalid length.
[  283.110813][T11905] netlink: 'syz.2.1927': attribute type 29 has an invalid length.
[  283.453951][T11936] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1937'.
[  283.491915][T11936] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1937'.
[  283.505405][T11937] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1937'.
[  283.550082][T11932] bond17: entered promiscuous mode
[  283.557550][T11932] 8021q: adding VLAN 0 to HW filter on device bond17
[  283.576172][T11936] batadv11: entered promiscuous mode
[  283.576660][T11943] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1937'.
[  283.609864][T11944] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1939'.
[  283.619113][T11936] batadv11: entered allmulticast mode
[  283.640128][T11932] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1937'.
[  283.641178][T11944] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.665471][T11944] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.674897][T11944] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.685927][T11944] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  284.027331][T11958] openvswitch: netlink: Message has 1 unknown bytes.
[  284.050358][T11958] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  284.082506][T11958] validate_nla: 41 callbacks suppressed
[  284.082526][T11958] netlink: 'syz.0.1944': attribute type 11 has an invalid length.
[  284.232159][T11971] netlink: 'syz.3.1948': attribute type 2 has an invalid length.
[  284.254786][T11971] netlink: 'syz.3.1948': attribute type 1 has an invalid length.
[  284.537772][T11983] netlink: 'syz.2.1952': attribute type 4 has an invalid length.
[  284.561575][T11988] netlink: 'syz.0.1954': attribute type 1 has an invalid length.
[  284.648678][T11988] bond17: entered promiscuous mode
[  284.776857][T11988] 8021q: adding VLAN 0 to HW filter on device bond17
[  284.818001][T11993] batadv12: entered promiscuous mode
[  284.848610][T11993] batadv12: entered allmulticast mode
[  284.952909][T12004] x_tables: duplicate underflow at hook 1
[  285.251475][T12020] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  285.382573][T12026] netlink: 'syz.2.1963': attribute type 2 has an invalid length.
[  285.408736][T12026] netlink: 'syz.2.1963': attribute type 1 has an invalid length.
[  285.425771][T12010] lo speed is unknown, defaulting to 1000
[  285.665752][T12037] FAULT_INJECTION: forcing a failure.
[  285.665752][T12037] name failslab, interval 1, probability 0, space 0, times 0
[  285.678962][T12037] CPU: 0 UID: 0 PID: 12037 Comm: syz.1.1967 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  285.678992][T12037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  285.679005][T12037] Call Trace:
[  285.679013][T12037]  <TASK>
[  285.679022][T12037]  dump_stack_lvl+0x241/0x360
[  285.679054][T12037]  ? __pfx_dump_stack_lvl+0x10/0x10
[  285.679086][T12037]  ? __pfx__printk+0x10/0x10
[  285.679111][T12037]  ? fs_reclaim_acquire+0x93/0x130
[  285.679134][T12037]  ? __pfx___might_resched+0x10/0x10
[  285.679167][T12037]  should_fail_ex+0x40a/0x550
[  285.679205][T12037]  should_failslab+0xac/0x100
[  285.679236][T12037]  __kmalloc_noprof+0xdd/0x4c0
[  285.679264][T12037]  ? kstrtouint_from_user+0x128/0x190
[  285.679287][T12037]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  285.679316][T12037]  tomoyo_realpath_from_path+0xcf/0x5e0
[  285.679353][T12037]  tomoyo_path_number_perm+0x239/0x770
[  285.679383][T12037]  ? __lock_acquire+0x1397/0x2100
[  285.679418][T12037]  ? tomoyo_path_number_perm+0x209/0x770
[  285.679451][T12037]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  285.679527][T12037]  ? __fget_files+0x2a/0x410
[  285.679562][T12037]  ? __fget_files+0x2a/0x410
[  285.679599][T12037]  security_file_ioctl+0xc6/0x2a0
[  285.679631][T12037]  __se_sys_ioctl+0x46/0x170
[  285.679658][T12037]  do_syscall_64+0xf3/0x230
[  285.679688][T12037]  ? clear_bhb_loop+0x35/0x90
[  285.679721][T12037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.679762][T12037] RIP: 0033:0x7f4a5ef8d169
[  285.679780][T12037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  285.679797][T12037] RSP: 002b:00007f4a5fdea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  285.679818][T12037] RAX: ffffffffffffffda RBX: 00007f4a5f1a5fa0 RCX: 00007f4a5ef8d169
[  285.679834][T12037] RDX: 0000400000000080 RSI: 000000000000891c RDI: 0000000000000003
[  285.679847][T12037] RBP: 00007f4a5fdea090 R08: 0000000000000000 R09: 0000000000000000
[  285.679860][T12037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  285.679872][T12037] R13: 0000000000000000 R14: 00007f4a5f1a5fa0 R15: 00007fffeb5d7358
[  285.679903][T12037]  </TASK>
[  285.679912][T12037] ERROR: Out of memory at tomoyo_realpath_from_path.
[  285.689766][T12010] lo speed is unknown, defaulting to 1000
[  286.006623][ T5841] Bluetooth: hci4: command 0x0405 tx timeout
[  286.109492][T12042] lo speed is unknown, defaulting to 1000
[  286.395785][T12059] vlan3: entered allmulticast mode
[  286.593731][T12042] lo speed is unknown, defaulting to 1000
[  287.030215][T12086] sctp: [Deprecated]: syz.4.1978 (pid 12086) Use of int in max_burst socket option.
[  287.030215][T12086] Use struct sctp_assoc_value instead
[  287.203932][T12091] rdma_rxe: rxe_newlink: failed to add lo
[  287.252166][T12093] __nla_validate_parse: 22 callbacks suppressed
[  287.252264][T12093] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1980'.
[  287.558576][T12102] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1984'.
[  287.661384][T12108] netlink: 'syz.1.1986': attribute type 8 has an invalid length.
[  287.676845][T12102] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1984'.
[  287.686134][T12102] nbd: device at index 64 is going down
[  287.897965][T12116] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1988'.
[  287.934768][T12118] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1989'.
[  288.028627][T12121] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1990'.
[  288.087406][T12121] vxcan1 (unregistering): left allmulticast mode
[  288.279721][T12136] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1995'.
[  288.366255][T12136] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1995'.
[  288.371306][T12131] lo speed is unknown, defaulting to 1000
[  288.375245][T12136] nbd: device at index 64 is going down
[  288.703534][T12154] netlink: 'syz.2.1999': attribute type 1 has an invalid length.
[  288.751921][T12154] bond19: entered promiscuous mode
[  288.766311][T12154] 8021q: adding VLAN 0 to HW filter on device bond19
[  288.778012][T12158] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1999'.
[  288.821029][T12131] lo speed is unknown, defaulting to 1000
[  288.845243][T12158] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1999'.
[  288.978093][T12158] batadv12: entered promiscuous mode
[  288.983461][T12158] batadv12: entered allmulticast mode
[  289.567946][T12191] netlink: 'syz.0.2010': attribute type 10 has an invalid length.
[  290.038227][T12211] netlink: 'syz.2.2015': attribute type 1 has an invalid length.
[  290.085752][T12211] bond20: entered promiscuous mode
[  290.190280][T12211] 8021q: adding VLAN 0 to HW filter on device bond20
[  290.213006][T12215] batadv13: entered promiscuous mode
[  290.225995][T12215] batadv13: entered allmulticast mode
[  290.682610][T12235] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  290.926434][T12251] FAULT_INJECTION: forcing a failure.
[  290.926434][T12251] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  290.996823][T12251] CPU: 1 UID: 0 PID: 12251 Comm: syz.3.2024 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  290.996869][T12251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  290.996881][T12251] Call Trace:
[  290.996888][T12251]  <TASK>
[  290.996896][T12251]  dump_stack_lvl+0x241/0x360
[  290.996926][T12251]  ? __pfx_dump_stack_lvl+0x10/0x10
[  290.996947][T12251]  ? __pfx__printk+0x10/0x10
[  290.996969][T12251]  ? __pfx_lock_release+0x10/0x10
[  290.997006][T12251]  should_fail_ex+0x40a/0x550
[  290.997041][T12251]  _copy_from_user+0x2d/0xb0
[  290.997069][T12251]  copy_msghdr_from_user+0xae/0x680
[  290.997104][T12251]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  290.997131][T12251]  ? __fget_files+0x2a/0x410
[  290.997164][T12251]  ? __fget_files+0x2a/0x410
[  290.997199][T12251]  __sys_sendmsg+0x209/0x350
[  290.997227][T12251]  ? __pfx___sys_sendmsg+0x10/0x10
[  290.997263][T12251]  ? do_sys_openat2+0x17a/0x1d0
[  290.997316][T12251]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  290.997347][T12251]  ? do_syscall_64+0x100/0x230
[  290.997377][T12251]  ? do_syscall_64+0xb6/0x230
[  290.997405][T12251]  do_syscall_64+0xf3/0x230
[  290.997431][T12251]  ? clear_bhb_loop+0x35/0x90
[  290.997468][T12251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.997494][T12251] RIP: 0033:0x7f4eb918d169
[  290.997509][T12251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.997526][T12251] RSP: 002b:00007f4eb6ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  290.997546][T12251] RAX: ffffffffffffffda RBX: 00007f4eb93a5fa0 RCX: 00007f4eb918d169
[  290.997561][T12251] RDX: 0000000020008800 RSI: 00004000000001c0 RDI: 0000000000000004
[  290.997574][T12251] RBP: 00007f4eb6ff6090 R08: 0000000000000000 R09: 0000000000000000
[  290.997586][T12251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  290.997597][T12251] R13: 0000000000000000 R14: 00007f4eb93a5fa0 R15: 00007ffd82db0398
[  290.997625][T12251]  </TASK>
[  291.364184][T12257] nbd: device at index 64 is going down
[  291.931630][T12281] lo speed is unknown, defaulting to 1000
[  292.634976][T12281] lo speed is unknown, defaulting to 1000
[  292.826094][T12322] __nla_validate_parse: 14 callbacks suppressed
[  292.826113][T12322] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2044'.
[  292.877498][T12329] netlink: 'syz.4.2046': attribute type 1 has an invalid length.
[  292.886694][T12331] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2044'.
[  292.909613][T12322] bond18: entered promiscuous mode
[  292.915044][T12322] 8021q: adding VLAN 0 to HW filter on device bond18
[  292.957993][T12332] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2046'.
[  292.996534][T12332] netlink: 3 bytes leftover after parsing attributes in process `syz.4.2046'.
[  293.047697][T12334] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2046'.
[  293.058330][T12329] bond18: entered promiscuous mode
[  293.063832][T12329] 8021q: adding VLAN 0 to HW filter on device bond18
[  293.080782][T12329] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2046'.
[  293.117294][T12329] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2046'.
[  293.619741][T12331] FAULT_INJECTION: forcing a failure.
[  293.619741][T12331] name failslab, interval 1, probability 0, space 0, times 0
[  293.636130][T12331] CPU: 0 UID: 0 PID: 12331 Comm: syz.0.2044 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  293.636160][T12331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  293.636174][T12331] Call Trace:
[  293.636181][T12331]  <TASK>
[  293.636190][T12331]  dump_stack_lvl+0x241/0x360
[  293.636222][T12331]  ? __pfx_dump_stack_lvl+0x10/0x10
[  293.636247][T12331]  ? __pfx__printk+0x10/0x10
[  293.636271][T12331]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  293.636302][T12331]  ? __pfx___might_resched+0x10/0x10
[  293.636336][T12331]  should_fail_ex+0x40a/0x550
[  293.636373][T12331]  should_failslab+0xac/0x100
[  293.636402][T12331]  __kmalloc_node_noprof+0xe1/0x4d0
[  293.636430][T12331]  ? __pfx_batadv_meshif_init_early+0x10/0x10
[  293.636458][T12331]  ? __kvmalloc_node_noprof+0x72/0x190
[  293.636478][T12331]  ? __raw_spin_lock_init+0x45/0x100
[  293.636509][T12331]  __kvmalloc_node_noprof+0x72/0x190
[  293.636531][T12331]  alloc_netdev_mqs+0x92c/0x1210
[  293.636572][T12331]  rtnl_create_link+0x2f9/0xc90
[  293.636607][T12331]  rtnl_newlink_create+0x2e1/0xbd0
[  293.636631][T12331]  ? __mutex_lock+0x602/0x1010
[  293.636658][T12331]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  293.636679][T12331]  ? __pfx___mutex_lock+0x10/0x10
[  293.636709][T12331]  ? ns_capable+0x8a/0xf0
[  293.636732][T12331]  rtnl_newlink+0x167a/0x1d90
[  293.636764][T12331]  ? __lock_acquire+0x1397/0x2100
[  293.636804][T12331]  ? __pfx_rtnl_newlink+0x10/0x10
[  293.636830][T12331]  ? __pfx_validate_chain+0x10/0x10
[  293.636865][T12331]  ? validate_chain+0x11e/0x5920
[  293.636883][T12331]  ? __pfx_lock_acquire+0x10/0x10
[  293.636911][T12331]  ? __pfx_lock_release+0x10/0x10
[  293.636939][T12331]  ? __pfx_validate_chain+0x10/0x10
[  293.636958][T12331]  ? mark_lock+0x9a/0x360
[  293.636978][T12331]  ? __lock_acquire+0x1397/0x2100
[  293.637029][T12331]  ? __pfx_lock_release+0x10/0x10
[  293.637066][T12331]  ? __pfx_rtnl_newlink+0x10/0x10
[  293.637094][T12331]  rtnetlink_rcv_msg+0x791/0xcf0
[  293.637118][T12331]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  293.637145][T12331]  ? __lock_acquire+0x1397/0x2100
[  293.637171][T12331]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  293.637210][T12331]  netlink_rcv_skb+0x206/0x480
[  293.637237][T12331]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  293.637277][T12331]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  293.637321][T12331]  ? netlink_deliver_tap+0x2e/0x1b0
[  293.637366][T12331]  netlink_unicast+0x7f6/0x990
[  293.637397][T12331]  ? __pfx_netlink_unicast+0x10/0x10
[  293.637418][T12331]  ? __virt_addr_valid+0x45f/0x530
[  293.637435][T12331]  ? __phys_addr_symbol+0x2f/0x70
[  293.637451][T12331]  ? __check_object_size+0x47a/0x730
[  293.637478][T12331]  netlink_sendmsg+0x8de/0xcb0
[  293.637514][T12331]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.637543][T12331]  ? aa_sock_msg_perm+0x91/0x160
[  293.637582][T12331]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.637606][T12331]  __sock_sendmsg+0x221/0x270
[  293.637634][T12331]  ____sys_sendmsg+0x53a/0x860
[  293.637662][T12331]  ? __pfx_____sys_sendmsg+0x10/0x10
[  293.637680][T12331]  ? __fget_files+0x2a/0x410
[  293.637708][T12331]  ? __fget_files+0x2a/0x410
[  293.637740][T12331]  __sys_sendmsg+0x269/0x350
[  293.637764][T12331]  ? __pfx___sys_sendmsg+0x10/0x10
[  293.637796][T12331]  ? do_sys_openat2+0x17a/0x1d0
[  293.637843][T12331]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  293.637870][T12331]  ? do_syscall_64+0x100/0x230
[  293.637895][T12331]  ? do_syscall_64+0xb6/0x230
[  293.637920][T12331]  do_syscall_64+0xf3/0x230
[  293.637942][T12331]  ? clear_bhb_loop+0x35/0x90
[  293.637969][T12331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.637991][T12331] RIP: 0033:0x7fd3ba38d169
[  293.638007][T12331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.638021][T12331] RSP: 002b:00007fd3bb27e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  293.638040][T12331] RAX: ffffffffffffffda RBX: 00007fd3ba5a6080 RCX: 00007fd3ba38d169
[  293.638052][T12331] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000003
[  293.638063][T12331] RBP: 00007fd3bb27e090 R08: 0000000000000000 R09: 0000000000000000
[  293.638073][T12331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  293.638083][T12331] R13: 0000000000000001 R14: 00007fd3ba5a6080 R15: 00007ffe3bdd5fd8
[  293.638108][T12331]  </TASK>
[  293.645429][T12332] batadv12: entered promiscuous mode
[  294.076197][T12332] batadv12: entered allmulticast mode
[  294.817473][T12372] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2056'.
[  295.041503][T12378] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2058'.
[  295.178752][T12383] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20001 - 0
[  295.213881][T12383] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20001 - 0
[  295.275295][T12383] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20001 - 0
[  295.326060][T12383] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20001 - 0
[  295.463894][T12388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2062'.
[  295.504750][T12390] netlink: 'syz.1.2063': attribute type 1 has an invalid length.
[  295.591087][T12390] bond14: entered promiscuous mode
[  295.634391][T12390] 8021q: adding VLAN 0 to HW filter on device bond14
[  295.676418][T12395] batadv6: entered promiscuous mode
[  295.681702][T12395] batadv6: entered allmulticast mode
[  295.733716][T12397] netlink: 'syz.2.2064': attribute type 29 has an invalid length.
[  295.767524][T12400] netlink: 'syz.2.2064': attribute type 29 has an invalid length.
[  295.775575][T12400] netlink: 'syz.2.2064': attribute type 29 has an invalid length.
[  295.804033][T12400] netlink: 'syz.2.2064': attribute type 29 has an invalid length.
[  295.851163][T12400] netlink: 'syz.2.2064': attribute type 29 has an invalid length.
[  295.867468][T12410] netlink: 'syz.3.2069': attribute type 10 has an invalid length.
[  295.920855][T12400] netlink: 'syz.2.2064': attribute type 29 has an invalid length.
[  295.976835][T12400] netlink: 'syz.2.2064': attribute type 29 has an invalid length.
[  295.984916][T12400] netlink: 'syz.2.2064': attribute type 29 has an invalid length.
[  296.365569][T12430] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 20001 - 0
[  296.386843][T12430] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 20001 - 0
[  296.407293][T12430] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 20001 - 0
[  296.436064][T12430] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 20001 - 0
[  296.728034][T12445] bond11: entered promiscuous mode
[  296.749805][T12445] 8021q: adding VLAN 0 to HW filter on device bond11
[  296.769387][T12444] lo speed is unknown, defaulting to 1000
[  296.799819][T12451] nbd: device at index 64 is going down
[  296.965564][T12455] batadv9: entered promiscuous mode
[  296.971658][T12455] batadv9: entered allmulticast mode
[  297.180889][T12467] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  297.205660][T12470] bond0: option arp_interval: invalid value (18446744072034198015)
[  297.222463][T12470] bond0: option arp_interval: allowed values 0 - 2147483647
[  297.241692][T12444] lo speed is unknown, defaulting to 1000
[  300.426160][T12525] 8021q: VLANs not supported on syzkaller1
[  300.558052][T12528] __nla_validate_parse: 17 callbacks suppressed
[  300.558073][T12528] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2103'.
[  300.741334][T12532] lo speed is unknown, defaulting to 1000
[  300.837510][T12536] vxcan1: entered allmulticast mode
[  300.893813][T12532] lo speed is unknown, defaulting to 1000
[  301.243244][T12540] netlink: 228 bytes leftover after parsing attributes in process `syz.1.2107'.
[  301.404201][T12543] lo speed is unknown, defaulting to 1000
[  301.448954][T12546] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2108'.
[  301.541495][T12549] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2110'.
[  301.555994][T12549] tipc: Invalid UDP bearer configuration
[  301.556040][T12549] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  301.748921][T12543] lo speed is unknown, defaulting to 1000
[  302.157895][T12564] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2116'.
[  302.452444][T12578] netlink: 172 bytes leftover after parsing attributes in process `syz.3.2117'.
[  302.667706][T12584] validate_nla: 39 callbacks suppressed
[  302.667729][T12584] netlink: 'syz.3.2120': attribute type 10 has an invalid length.
[  302.831708][T12591] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2123'.
[  302.897842][T12594] bond16: left promiscuous mode
[  302.906866][T12594] batadv9: left promiscuous mode
[  302.935032][T12594] batadv9: left allmulticast mode
[  302.956543][T12598] FAULT_INJECTION: forcing a failure.
[  302.956543][T12598] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  302.990253][T12594] bond17: left promiscuous mode
[  303.002394][T12602] netlink: 'syz.0.2126': attribute type 10 has an invalid length.
[  303.011319][T12603] netlink: 'syz.4.2127': attribute type 1 has an invalid length.
[  303.037092][T12598] CPU: 1 UID: 0 PID: 12598 Comm: syz.2.2124 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  303.037118][T12598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  303.037130][T12598] Call Trace:
[  303.037136][T12598]  <TASK>
[  303.037143][T12598]  dump_stack_lvl+0x241/0x360
[  303.037173][T12598]  ? __pfx_dump_stack_lvl+0x10/0x10
[  303.037207][T12598]  ? __pfx__printk+0x10/0x10
[  303.037227][T12598]  ? __pfx_lock_release+0x10/0x10
[  303.037265][T12598]  should_fail_ex+0x40a/0x550
[  303.037278][T12594] batadv10: left promiscuous mode
[  303.037301][T12598]  _copy_from_user+0x2d/0xb0
[  303.037326][T12598]  do_ip_vs_set_ctl+0x2e3/0xe40
[  303.037356][T12598]  ? __pfx_do_ip_vs_set_ctl+0x10/0x10
[  303.037388][T12598]  ? __mutex_lock+0x397/0x1010
[  303.037426][T12598]  ? __mutex_unlock_slowpath+0x227/0x800
[  303.037465][T12598]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  303.037499][T12598]  ? __pfx___mutex_lock+0x10/0x10
[  303.037538][T12598]  nf_setsockopt+0x295/0x2c0
[  303.037563][T12598]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  303.037600][T12598]  smc_setsockopt+0x275/0xd10
[  303.037632][T12598]  ? __pfx_smc_setsockopt+0x10/0x10
[  303.037658][T12598]  ? aa_sock_opt_perm+0x79/0x120
[  303.037703][T12598]  ? __pfx_smc_setsockopt+0x10/0x10
[  303.037725][T12598]  do_sock_setsockopt+0x3af/0x720
[  303.037768][T12598]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  303.037798][T12598]  ? __fget_files+0x395/0x410
[  303.037829][T12598]  ? __fget_files+0x2a/0x410
[  303.037869][T12598]  __x64_sys_setsockopt+0x1ee/0x280
[  303.037901][T12598]  do_syscall_64+0xf3/0x230
[  303.037930][T12598]  ? clear_bhb_loop+0x35/0x90
[  303.037964][T12598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.037992][T12598] RIP: 0033:0x7fa1acb8d169
[  303.038011][T12598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  303.038029][T12598] RSP: 002b:00007fa1ada17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  303.038051][T12598] RAX: ffffffffffffffda RBX: 00007fa1acda6080 RCX: 00007fa1acb8d169
[  303.038067][T12598] RDX: 0000000000000483 RSI: 0000000000000000 RDI: 000000000000000b
[  303.038080][T12598] RBP: 00007fa1ada17090 R08: 000000000000002c R09: 0000000000000000
[  303.038094][T12598] R10: 0000400000000000 R11: 0000000000000246 R12: 0000000000000001
[  303.038107][T12598] R13: 0000000000000000 R14: 00007fa1acda6080 R15: 00007ffc6a258968
[  303.038139][T12598]  </TASK>
[  303.129521][T12606] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2127'.
[  303.217011][T12605] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2127'.
[  303.236367][T12594] batadv10: left allmulticast mode
[  303.305410][T12594] bond18: left promiscuous mode
[  303.326472][T12594] batadv11: left promiscuous mode
[  303.335772][T12594] batadv11: left allmulticast mode
[  303.344025][T12594] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  303.353850][T12605] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2127'.
[  303.363455][T12594] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  303.373132][T12594] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  303.382666][T12594] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  303.405460][T12594] bond19: left promiscuous mode
[  303.426907][T12594] batadv12: left promiscuous mode
[  303.434487][T12594] batadv12: left allmulticast mode
[  303.442562][T12594] bond20: left promiscuous mode
[  303.456843][T12594] batadv13: left promiscuous mode
[  303.464350][T12594] batadv13: left allmulticast mode
[  303.487591][T12594] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 20001 - 0
[  303.499492][T12594] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 20001 - 0
[  303.509276][T12594] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 20001 - 0
[  303.519644][T12594] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 20001 - 0
[  303.564000][T12596] bridge4: entered allmulticast mode
[  303.667464][T12603] bond19: entered promiscuous mode
[  303.673399][T12603] 8021q: adding VLAN 0 to HW filter on device bond19
[  304.088960][T12624] netlink: 'syz.3.2135': attribute type 10 has an invalid length.
[  304.182922][T12628] FAULT_INJECTION: forcing a failure.
[  304.182922][T12628] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  304.223371][T12628] CPU: 1 UID: 0 PID: 12628 Comm: syz.2.2136 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  304.223403][T12628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  304.223417][T12628] Call Trace:
[  304.223425][T12628]  <TASK>
[  304.223435][T12628]  dump_stack_lvl+0x241/0x360
[  304.223468][T12628]  ? __pfx_dump_stack_lvl+0x10/0x10
[  304.223494][T12628]  ? __pfx__printk+0x10/0x10
[  304.223530][T12628]  ? __pfx_lock_release+0x10/0x10
[  304.223586][T12628]  should_fail_ex+0x40a/0x550
[  304.223623][T12628]  _copy_from_iter+0x1df/0x1c40
[  304.223657][T12628]  ? __virt_addr_valid+0x183/0x530
[  304.223679][T12628]  ? __pfx_lock_release+0x10/0x10
[  304.223718][T12628]  ? __alloc_skb+0x28f/0x440
[  304.223740][T12628]  ? __pfx__copy_from_iter+0x10/0x10
[  304.223767][T12628]  ? __virt_addr_valid+0x183/0x530
[  304.223787][T12628]  ? __virt_addr_valid+0x183/0x530
[  304.223805][T12628]  ? __virt_addr_valid+0x45f/0x530
[  304.223825][T12628]  ? __phys_addr_symbol+0x2f/0x70
[  304.223844][T12628]  ? __check_object_size+0x47a/0x730
[  304.223877][T12628]  netlink_sendmsg+0x742/0xcb0
[  304.223920][T12628]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.223956][T12628]  ? aa_sock_msg_perm+0x91/0x160
[  304.224013][T12628]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.224043][T12628]  __sock_sendmsg+0x221/0x270
[  304.224077][T12628]  sock_write_iter+0x2d7/0x3f0
[  304.224110][T12628]  ? __pfx_sock_write_iter+0x10/0x10
[  304.224161][T12628]  do_iter_readv_writev+0x71a/0x9d0
[  304.224192][T12628]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  304.224223][T12628]  ? bpf_lsm_file_permission+0x9/0x10
[  304.224254][T12628]  ? rw_verify_area+0x243/0x630
[  304.224280][T12628]  vfs_writev+0x38b/0xbc0
[  304.224325][T12628]  ? __pfx_vfs_writev+0x10/0x10
[  304.224369][T12628]  ? do_sys_openat2+0x17a/0x1d0
[  304.224400][T12628]  ? __fget_files+0x2a/0x410
[  304.224434][T12628]  ? __fget_files+0x395/0x410
[  304.224462][T12628]  ? __fget_files+0x2a/0x410
[  304.224501][T12628]  do_writev+0x1b6/0x360
[  304.224537][T12628]  ? __pfx_do_writev+0x10/0x10
[  304.224568][T12628]  ? do_syscall_64+0x100/0x230
[  304.224600][T12628]  ? do_syscall_64+0xb6/0x230
[  304.224641][T12628]  do_syscall_64+0xf3/0x230
[  304.224668][T12628]  ? clear_bhb_loop+0x35/0x90
[  304.224701][T12628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.224729][T12628] RIP: 0033:0x7fa1acb8d169
[  304.224747][T12628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.224767][T12628] RSP: 002b:00007fa1ada38038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  304.224790][T12628] RAX: ffffffffffffffda RBX: 00007fa1acda5fa0 RCX: 00007fa1acb8d169
[  304.224807][T12628] RDX: 0000000000000001 RSI: 0000400000000000 RDI: 0000000000000004
[  304.224820][T12628] RBP: 00007fa1ada38090 R08: 0000000000000000 R09: 0000000000000000
[  304.224834][T12628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.224846][T12628] R13: 0000000000000000 R14: 00007fa1acda5fa0 R15: 00007ffc6a258968
[  304.224877][T12628]  </TASK>
[  304.591597][T12634] bridge5: entered allmulticast mode
[  305.237922][T12665] netlink: 'syz.4.2149': attribute type 10 has an invalid length.
[  305.560775][T12677] bridge0: port 1(macsec2) entered blocking state
[  305.576060][T12677] bridge0: port 1(macsec2) entered disabled state
[  305.589560][T12677] macsec2: entered allmulticast mode
[  305.603390][T12677] bridge0: entered allmulticast mode
[  305.619499][T12677] macsec2: left allmulticast mode
[  305.631266][T12677] bridge0: left allmulticast mode
[  305.638068][T12683] __nla_validate_parse: 8 callbacks suppressed
[  305.638086][T12683] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2152'.
[  305.816630][T12687] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2158'.
[  305.887503][T12689] netlink: 80 bytes leftover after parsing attributes in process `syz.4.2159'.
[  305.902111][T12691] netlink: 300 bytes leftover after parsing attributes in process `syz.1.2160'.
[  305.926370][T12691] netlink: 'syz.1.2160': attribute type 10 has an invalid length.
[  305.941088][T12691] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2160'.
[  305.959403][T12691] team0: entered promiscuous mode
[  305.973973][T12691] 8021q: adding VLAN 0 to HW filter on device team0
[  306.260483][T12701] netlink: 172 bytes leftover after parsing attributes in process `syz.0.2164'.
[  306.279665][T12703] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2163'.
[  306.330095][T12699] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2162'.
[  306.516976][T12705] FAULT_INJECTION: forcing a failure.
[  306.516976][T12705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  306.564527][T12707] netlink: 'syz.2.2168': attribute type 4 has an invalid length.
[  306.601338][T12705] CPU: 0 UID: 0 PID: 12705 Comm: syz.4.2167 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  306.601367][T12705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  306.601380][T12705] Call Trace:
[  306.601387][T12705]  <TASK>
[  306.601396][T12705]  dump_stack_lvl+0x241/0x360
[  306.601428][T12705]  ? __pfx_dump_stack_lvl+0x10/0x10
[  306.601452][T12705]  ? __pfx__printk+0x10/0x10
[  306.601479][T12705]  ? snprintf+0xda/0x120
[  306.601503][T12705]  should_fail_ex+0x40a/0x550
[  306.601540][T12705]  _copy_to_user+0x31/0xb0
[  306.601571][T12705]  simple_read_from_buffer+0xca/0x150
[  306.601603][T12705]  proc_fail_nth_read+0x1e9/0x250
[  306.601636][T12705]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  306.601669][T12705]  ? rw_verify_area+0x243/0x630
[  306.601697][T12705]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  306.601747][T12705]  vfs_read+0x1f8/0xb40
[  306.601778][T12705]  ? fdget_pos+0x254/0x320
[  306.601812][T12705]  ? __pfx___mutex_lock+0x10/0x10
[  306.601841][T12705]  ? __pfx_vfs_read+0x10/0x10
[  306.601861][T12705]  ? do_sys_openat2+0x17a/0x1d0
[  306.601895][T12705]  ? __fget_files+0x2a/0x410
[  306.601928][T12705]  ? __fget_files+0x395/0x410
[  306.601958][T12705]  ? __fget_files+0x2a/0x410
[  306.601999][T12705]  ksys_read+0x18f/0x2b0
[  306.602025][T12705]  ? __pfx_ksys_read+0x10/0x10
[  306.602049][T12705]  ? do_syscall_64+0x100/0x230
[  306.602081][T12705]  ? do_syscall_64+0xb6/0x230
[  306.602113][T12705]  do_syscall_64+0xf3/0x230
[  306.602142][T12705]  ? clear_bhb_loop+0x35/0x90
[  306.602176][T12705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.602204][T12705] RIP: 0033:0x7f44e118bb7c
[  306.602222][T12705] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  306.602240][T12705] RSP: 002b:00007f44deff6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  306.602262][T12705] RAX: ffffffffffffffda RBX: 00007f44e13a5fa0 RCX: 00007f44e118bb7c
[  306.602278][T12705] RDX: 000000000000000f RSI: 00007f44deff60a0 RDI: 0000000000000004
[  306.602291][T12705] RBP: 00007f44deff6090 R08: 0000000000000000 R09: 0000000000000000
[  306.602304][T12705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  306.602317][T12705] R13: 0000000000000000 R14: 00007f44e13a5fa0 R15: 00007ffcbe9b0218
[  306.602350][T12705]  </TASK>
[  306.605118][T12707] netlink: 'syz.2.2168': attribute type 4 has an invalid length.
[  306.863493][T12713] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2170'.
[  307.583427][T12738] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2177'.
[  308.169987][T12763] openvswitch: netlink: ERSPAN option length err (len 4096, max 255).
[  308.500039][T12778] netlink: 'syz.3.2193': attribute type 2 has an invalid length.
[  308.508377][T12778] netlink: 'syz.3.2193': attribute type 1 has an invalid length.
[  308.660577][T12790] rdma_rxe: rxe_newlink: failed to add lo
[  308.805100][T12798] tipc: Started in network mode
[  308.810208][T12798] tipc: Node identity ff010000000000000000000000000001, cluster identity 4711
[  308.819372][T12798] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  308.852500][T12798] openvswitch: netlink: nsh attribute has 1 unknown bytes.
[  308.860261][T12798] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  309.232093][T12814] netlink: 'syz.2.2207': attribute type 2 has an invalid length.
[  309.246282][T12814] netlink: 'syz.2.2207': attribute type 1 has an invalid length.
[  309.484126][T12825] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  309.554727][T12824] syzkaller0: entered promiscuous mode
[  309.561618][T12824] syzkaller0: entered allmulticast mode
[  309.570051][T12818] tipc: Resetting bearer <eth:syzkaller0>
[  311.729362][T12818] tipc: Disabling bearer <eth:syzkaller0>
[  313.757480][T12853] __nla_validate_parse: 11 callbacks suppressed
[  313.757501][T12853] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2218'.
[  313.794741][T12857] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2220'.
[  313.879627][T12859] netlink: 'syz.3.2221': attribute type 2 has an invalid length.
[  313.940485][T12859] netlink: 'syz.3.2221': attribute type 1 has an invalid length.
[  313.975535][T12859] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2221'.
[  314.044757][T12859] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2221'.
[  314.062280][T12859] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2221'.
[  314.322796][T12881] netlink: 'syz.1.2226': attribute type 1 has an invalid length.
[  314.337373][T12885] 
[  314.339733][T12885] ======================================================
[  314.346753][T12885] WARNING: possible circular locking dependency detected
[  314.353863][T12885] 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0 Not tainted
[  314.360965][T12885] ------------------------------------------------------
[  314.367982][T12885] syz.4.2227/12885 is trying to acquire lock:
[  314.374042][T12885] ffff88807d208768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_change_mac+0xc6/0x1160
[  314.383815][T12885] 
[  314.383815][T12885] but task is already holding lock:
[  314.391181][T12885] ffff88807f7e4d28 (&dev->lock){+.+.}-{4:4}, at: dev_set_mac_address+0x2a/0x50
[  314.400165][T12885] 
[  314.400165][T12885] which lock already depends on the new lock.
[  314.400165][T12885] 
[  314.410572][T12885] 
[  314.410572][T12885] the existing dependency chain (in reverse order) is:
[  314.419585][T12885] 
[  314.419585][T12885] -> #1 (&dev->lock){+.+.}-{4:4}:
[  314.426811][T12885]        lock_acquire+0x1ed/0x550
[  314.431851][T12885]        __mutex_lock+0x19c/0x1010
[  314.436970][T12885]        register_netdevice+0x12d8/0x1b70
[  314.442700][T12885]        cfg80211_register_netdevice+0x149/0x2f0
[  314.449038][T12885]        ieee80211_if_add+0x119d/0x1780
[  314.454591][T12885]        ieee80211_register_hw+0x3708/0x42e0
[  314.460571][T12885]        mac80211_hwsim_new_radio+0x2a89/0x49f0
[  314.466824][T12885]        init_mac80211_hwsim+0x87a/0xb00
[  314.472466][T12885]        do_one_initcall+0x248/0x930
[  314.477756][T12885]        do_initcall_level+0x157/0x210
[  314.483218][T12885]        do_initcalls+0x71/0xd0
[  314.488072][T12885]        kernel_init_freeable+0x435/0x5d0
[  314.493801][T12885]        kernel_init+0x1d/0x2b0
[  314.498653][T12885]        ret_from_fork+0x4b/0x80
[  314.503600][T12885]        ret_from_fork_asm+0x1a/0x30
[  314.508893][T12885] 
[  314.508893][T12885] -> #0 (&rdev->wiphy.mtx){+.+.}-{4:4}:
[  314.516638][T12885]        validate_chain+0x18ef/0x5920
[  314.522016][T12885]        __lock_acquire+0x1397/0x2100
[  314.527397][T12885]        lock_acquire+0x1ed/0x550
[  314.532431][T12885]        __mutex_lock+0x19c/0x1010
[  314.537557][T12885]        ieee80211_change_mac+0xc6/0x1160
[  314.543280][T12885]        netif_set_mac_address+0x327/0x510
[  314.549102][T12885]        dev_set_mac_address+0x38/0x50
[  314.554562][T12885]        dev_ifsioc+0xdf4/0x1130
[  314.559507][T12885]        dev_ioctl+0x719/0x1340
[  314.564371][T12885]        sock_do_ioctl+0x240/0x460
[  314.569529][T12885]        sock_ioctl+0x626/0x8e0
[  314.574389][T12885]        __se_sys_ioctl+0xf5/0x170
[  314.579503][T12885]        do_syscall_64+0xf3/0x230
[  314.584535][T12885]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.590957][T12885] 
[  314.590957][T12885] other info that might help us debug this:
[  314.590957][T12885] 
[  314.601207][T12885]  Possible unsafe locking scenario:
[  314.601207][T12885] 
[  314.608667][T12885]        CPU0                    CPU1
[  314.614037][T12885]        ----                    ----
[  314.619402][T12885]   lock(&dev->lock);
[  314.623396][T12885]                                lock(&rdev->wiphy.mtx);
[  314.630428][T12885]                                lock(&dev->lock);
[  314.636938][T12885]   lock(&rdev->wiphy.mtx);
[  314.641537][T12885] 
[  314.641537][T12885]  *** DEADLOCK ***
[  314.641537][T12885] 
[  314.649678][T12885] 2 locks held by syz.4.2227/12885:
[  314.654872][T12885]  #0: ffffffff8fed6e08 (rtnl_mutex){+.+.}-{4:4}, at: dev_ioctl+0x706/0x1340
[  314.663688][T12885]  #1: ffff88807f7e4d28 (&dev->lock){+.+.}-{4:4}, at: dev_set_mac_address+0x2a/0x50
[  314.673134][T12885] 
[  314.673134][T12885] stack backtrace:
[  314.679023][T12885] CPU: 1 UID: 0 PID: 12885 Comm: syz.4.2227 Not tainted 6.14.0-rc6-syzkaller-01313-g23c9ff659140 #0
[  314.679045][T12885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  314.679056][T12885] Call Trace:
[  314.679065][T12885]  <TASK>
[  314.679074][T12885]  dump_stack_lvl+0x241/0x360
[  314.679097][T12885]  ? __pfx_dump_stack_lvl+0x10/0x10
[  314.679116][T12885]  ? __pfx__printk+0x10/0x10
[  314.679135][T12885]  print_circular_bug+0x13a/0x1b0
[  314.679156][T12885]  check_noncircular+0x36a/0x4a0
[  314.679177][T12885]  ? __pfx_check_noncircular+0x10/0x10
[  314.679195][T12885]  ? lockdep_lock+0x123/0x2b0
[  314.679220][T12885]  ? __pfx_validate_chain+0x10/0x10
[  314.679239][T12885]  validate_chain+0x18ef/0x5920
[  314.679266][T12885]  ? __pfx_validate_chain+0x10/0x10
[  314.679294][T12885]  ? __pfx_validate_chain+0x10/0x10
[  314.679312][T12885]  ? __pfx_validate_chain+0x10/0x10
[  314.679348][T12885]  ? __pfx_validate_chain+0x10/0x10
[  314.679366][T12885]  ? __pfx_validate_chain+0x10/0x10
[  314.679387][T12885]  ? __pfx_validate_chain+0x10/0x10
[  314.679405][T12885]  ? mark_lock+0x9a/0x360
[  314.679422][T12885]  __lock_acquire+0x1397/0x2100
[  314.679453][T12885]  lock_acquire+0x1ed/0x550
[  314.679477][T12885]  ? ieee80211_change_mac+0xc6/0x1160
[  314.679504][T12885]  ? __pfx_lock_acquire+0x10/0x10
[  314.679530][T12885]  ? __pfx___might_resched+0x10/0x10
[  314.679558][T12885]  __mutex_lock+0x19c/0x1010
[  314.679580][T12885]  ? ieee80211_change_mac+0xc6/0x1160
[  314.679604][T12885]  ? __pfx_lock_release+0x10/0x10
[  314.679631][T12885]  ? ieee80211_change_mac+0xc6/0x1160
[  314.679654][T12885]  ? __pfx___mutex_lock+0x10/0x10
[  314.679678][T12885]  ? __pfx_vxlan_netdevice_event+0x10/0x10
[  314.679696][T12885]  ? ib_device_get_by_netdev+0x85/0x5e0
[  314.679723][T12885]  ? __pfx_ib_device_get_by_netdev+0x10/0x10
[  314.679749][T12885]  ? hsr_netdev_notify+0x295/0xb50
[  314.679774][T12885]  ieee80211_change_mac+0xc6/0x1160
[  314.679798][T12885]  ? ip6_route_dev_notify+0x99/0x600
[  314.679819][T12885]  ? notifier_call_chain+0x15a/0x3f0
[  314.679843][T12885]  ? notifier_call_chain+0x3cc/0x3f0
[  314.679868][T12885]  netif_set_mac_address+0x327/0x510
[  314.679890][T12885]  ? __pfx_netif_set_mac_address+0x10/0x10
[  314.679909][T12885]  ? rcu_is_watching+0x15/0xb0
[  314.679931][T12885]  ? __mutex_lock+0x397/0x1010
[  314.679955][T12885]  ? full_name_hash+0x93/0xe0
[  314.679983][T12885]  dev_set_mac_address+0x38/0x50
[  314.680001][T12885]  dev_ifsioc+0xdf4/0x1130
[  314.680027][T12885]  ? __pfx___mutex_lock+0x10/0x10
[  314.680054][T12885]  ? __pfx_dev_ifsioc+0x10/0x10
[  314.680080][T12885]  ? dev_load+0x21/0x1f0
[  314.680104][T12885]  dev_ioctl+0x719/0x1340
[  314.680130][T12885]  sock_do_ioctl+0x240/0x460
[  314.680156][T12885]  ? __pfx_sock_do_ioctl+0x10/0x10
[  314.680188][T12885]  sock_ioctl+0x626/0x8e0
[  314.680211][T12885]  ? __pfx_sock_ioctl+0x10/0x10
[  314.680235][T12885]  ? __fget_files+0x2a/0x410
[  314.680261][T12885]  ? __fget_files+0x2a/0x410
[  314.680292][T12885]  ? __pfx_sock_ioctl+0x10/0x10
[  314.680315][T12885]  __se_sys_ioctl+0xf5/0x170
[  314.680335][T12885]  do_syscall_64+0xf3/0x230
[  314.680359][T12885]  ? clear_bhb_loop+0x35/0x90
[  314.680384][T12885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.680409][T12885] RIP: 0033:0x7f44e118d169
[  314.680425][T12885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  314.680440][T12885] RSP: 002b:00007f44deff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  314.680459][T12885] RAX: ffffffffffffffda RBX: 00007f44e13a5fa0 RCX: 00007f44e118d169
[  314.680472][T12885] RDX: 0000400000000000 RSI: 0000000000008924 RDI: 0000000000000004
[  314.680483][T12885] RBP: 00007f44e120e2a0 R08: 0000000000000000 R09: 0000000000000000
[  314.680494][T12885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  314.680504][T12885] R13: 0000000000000000 R14: 00007f44e13a5fa0 R15: 00007ffcbe9b0218
[  314.680534][T12885]  </TASK>
[  315.064266][T12887] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2226'.
[  315.074583][T12887] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2226'.
[  315.123514][T12881] bond15: entered promiscuous mode
[  315.158076][T12881] 8021q: adding VLAN 0 to HW filter on device bond15
[  317.367587][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  317.374069][ T1297] ieee802154 phy1 wpan1: encryption failed: -22