last executing test programs:

41.095633168s ago: executing program 3 (id=1332):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="00000000f5687c9e9475419dd36e877def6cd47f10ebc1e7f7ecbc", @ANYRES16=r1, @ANYBLOB="010000000000000000000100000005000500000000000800030000000000"], 0x24}}, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r2, r3, 0x2}, 0x10)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@cgroup=r4, 0x2, 0x0, 0x0, &(0x7f0000001440)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'pimreg1\x00', <r7=>0x0})
bind$packet(r5, &(0x7f00000000c0)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @local}, 0x14)
bind$packet(r6, &(0x7f0000000100)={0x11, 0x0, r7}, 0x14)
syz_emit_ethernet(0x22, &(0x7f00000001c0)=ANY=[], 0x0)

40.816514589s ago: executing program 3 (id=1339):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0xf00, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x4, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140)={0xffffffffffffffff}, 0x4)
pipe(&(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$inet6_udp_encap(r2, 0x11, 0x64, &(0x7f0000000240)=0x3, 0x4)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000700)=0x2)
r4 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000740)='cgroup.threads\x00', 0x2, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r4, 0x80049367, 0x0)
sendmsg$kcm(r1, &(0x7f0000001c00)={0x0, 0x0, &(0x7f0000001a40)=[{&(0x7f0000000900)="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", 0x1000}, {&(0x7f0000001900)="360b99b2975f0e6abdf838522cd6253cba6f9239561d98ebb1fcf38334828c347d251ca15a6a81038a882f10830be8505e4076ed0b622b5d27a78e109eefff06857d7d78d55f539a17de68ec0ea8b4eaf1c34aaf71ed068e96168c434f8dbf7614d4a5ca68cc4088196c9de6a296856be3df0f82c8797ef7eb08352998e19ddacb5fe370f014fc83cbf7f722029267c6e3c81b7d337322", 0x97}, {&(0x7f00000019c0)="ecb1b6d6f50af0e79fdd74af82ee8300214cc0795fcf3ebbbc978152d502e7140604f1b8a6628da30a1d2fe41cba7aeef45c2de4affce71c050d54ede597b61bbf5e6d1832d24f5445f1cdddba", 0x4d}], 0x3, &(0x7f0000001a80)=[{0xf8, 0x6, 0x36020ba2, "a6b0c362ae89ec48e37e73862c5fd6f5771169b8f9dca082bc438be5a8ea8846f334f853aaf1fddb027ae157cfc878f08791de1ab8d4063bac18a35304679cff0b3de0cc756fed2d72758139f377b1e05e49854f78e0fcc2ac521a489ccea08214808ba98469cd043c5fa6802f728ae4ffe60b7e606f6e71e0641d631fcb688acef677251bdaa3379ac846f22b10fb67a63dd0bc2d6020e393303d550defe70fba26c38b1b80459cc720e43a8215e52724dd3be558012da26fe8c36b0cfacf54b0a0377b2d98cd14b322f167bf7b9695f031fb1953a7b6ebc08615a2fddfa5e50ea35ebf9b9ed2"}, {0x68, 0x29, 0x6, "dadf2c09f1f17ea7a304562b1d24ba08bbebae47c58468de14e0579d8ffb2f0b61bd84b7622d0276cd7af30b8cbcd7a09ae6f2797ddfea26577a8f03fd9ae4d4c42c6c722d7b6858ea000adac6087f2ea06072e33547"}], 0x160}, 0x44014)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$nl_route_sched_retired(r1, &(0x7f0000001ec0)={&(0x7f0000001c40)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001e80)={&(0x7f0000001d40)=@deltclass={0x12c, 0x29, 0x300, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x10, 0x2}, {0x5, 0x1}, {0xe, 0x1}}, [@c_dsmark={{0xb}, {0xc, 0x2, @TCA_DSMARK_VALUE={0x5, 0x5, 0x6}}}, @c_atm={{0x8}, {0xe8, 0x2, [@TCA_ATM_EXCESS={0x8, 0x4, {0x9, 0x2}}, @TCA_ATM_HDR={0x35, 0x3, "1298f41f06995bb19b1125c9d69d081036c6867f66ee9ba462828fb236e0b30cb1d536fad8905c1b538744ae1d4507c934"}, @TCA_ATM_HDR={0x44, 0x3, "67b55a85a30234fd1964e74506371fa5b296ae857ab034ce7f95ee6199e5f87b446027b919594342dc5f3fc281c05926c7ba9dc5cbf31e8f9d2b26e7e7822c5b"}, @TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8}, @TCA_ATM_HDR={0x30, 0x3, "01a2e419dada1fea4c07e5d1f610464e216cba1840a3b78ed30603a85fd47b1e78cf63a78c8fa6df1ee90133"}, @TCA_ATM_FD={0x8, 0x1, r5}, @TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8, 0x1, r3}]}}]}, 0x12c}, 0x1, 0x0, 0x0, 0x240480c4}, 0x4)
bind$x25(r2, &(0x7f0000001f00), 0x12)
openat$cgroup_type(0xffffffffffffffff, &(0x7f0000001f40), 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, 0xffffffffffffffff, 0x0)
connect$x25(r2, &(0x7f0000001f80)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}}, 0x12)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f0000002080)={0x0, 0x0, 0x2, 0x1, 0xee0, 0x80000000}, &(0x7f00000020c0)=0x14)

40.319073141s ago: executing program 3 (id=1344):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x3, 0xb0, 0x0, {}, {0x77359400}, {0x0, 0x0, 0x1, 0x1}, 0x1, @canfd={{0x2, 0x1, 0x1, 0x1}, 0x9, 0x2, 0x0, 0x0, "e08046376c9417dc3e24cd6dedbcbf4e4339563c322f823e8d38c235be89eaf2528918627dd4b754fdc1783e02066dacb92405306ffe5925abdf7046c8cef34a"}}, 0x80}, 0x1, 0x0, 0x0, 0x400000c}, 0x20000000)
r0 = socket(0x1e, 0x1, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r0, &(0x7f0000000080)=ANY=[], 0x2000011a)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000680)={0x20, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}]}]}, 0x20}}, 0x0)
setsockopt$inet_int(r0, 0x0, 0x14, &(0x7f0000000040)=0x1, 0x4)

28.701285487s ago: executing program 3 (id=1344):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x3, 0xb0, 0x0, {}, {0x77359400}, {0x0, 0x0, 0x1, 0x1}, 0x1, @canfd={{0x2, 0x1, 0x1, 0x1}, 0x9, 0x2, 0x0, 0x0, "e08046376c9417dc3e24cd6dedbcbf4e4339563c322f823e8d38c235be89eaf2528918627dd4b754fdc1783e02066dacb92405306ffe5925abdf7046c8cef34a"}}, 0x80}, 0x1, 0x0, 0x0, 0x400000c}, 0x20000000)
r0 = socket(0x1e, 0x1, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r0, &(0x7f0000000080)=ANY=[], 0x2000011a)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000680)={0x20, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}]}]}, 0x20}}, 0x0)
setsockopt$inet_int(r0, 0x0, 0x14, &(0x7f0000000040)=0x1, 0x4)

16.677968834s ago: executing program 3 (id=1344):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x3, 0xb0, 0x0, {}, {0x77359400}, {0x0, 0x0, 0x1, 0x1}, 0x1, @canfd={{0x2, 0x1, 0x1, 0x1}, 0x9, 0x2, 0x0, 0x0, "e08046376c9417dc3e24cd6dedbcbf4e4339563c322f823e8d38c235be89eaf2528918627dd4b754fdc1783e02066dacb92405306ffe5925abdf7046c8cef34a"}}, 0x80}, 0x1, 0x0, 0x0, 0x400000c}, 0x20000000)
r0 = socket(0x1e, 0x1, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r0, &(0x7f0000000080)=ANY=[], 0x2000011a)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000680)={0x20, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}]}]}, 0x20}}, 0x0)
setsockopt$inet_int(r0, 0x0, 0x14, &(0x7f0000000040)=0x1, 0x4)

5.738691417s ago: executing program 1 (id=1772):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x800803fc)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
shutdown(r0, 0x0)
ppoll(&(0x7f0000000480)=[{r1}], 0x1, 0x0, 0x0, 0x300)

4.510218852s ago: executing program 1 (id=1787):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x19, 0x3, &(0x7f0000000000)=@framed, &(0x7f00000000c0)='GPL\x00', 0x2, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x16}, 0x90)
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r0, &(0x7f0000007940)={&(0x7f0000000040)={0x2, 0x4e24, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="2400000000000000000000000700000001441009"], 0x28}, 0x0)

4.424739597s ago: executing program 1 (id=1789):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
accept4(r0, 0x0, &(0x7f0000000180), 0x81000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmmsg$alg(r2, &(0x7f0000001440)=[{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000100)="9ddfc5a2c87fe3", 0xfffffdef}], 0x1}], 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0xd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0xf)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r4, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r5 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6(0xa, 0x6, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r7 = accept4(r5, 0x0, 0x0, 0x800)
recvmsg(r6, &(0x7f0000001c00)={0x0, 0x0, 0x0}, 0x0)
sendto$inet6(r7, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x5)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_ro(r8, &(0x7f0000000100)='cgroup.events\x00', 0x275a, 0x0)
preadv(r9, &(0x7f00000013c0)=[{&(0x7f0000000080)=""/20, 0xfdef}], 0x1, 0x0, 0x0)
sendmsg$unix(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)="fd", 0x1}], 0x1}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={0x0}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000040)={'syztnl2\x00', &(0x7f00000002c0)={'ip6gre0\x00', 0x0, 0x0, 0xb, 0x2, 0x2, 0x0, @mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}})
bpf$PROG_LOAD(0x5, 0x0, 0x0)

3.857685941s ago: executing program 3 (id=1344):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x3, 0xb0, 0x0, {}, {0x77359400}, {0x0, 0x0, 0x1, 0x1}, 0x1, @canfd={{0x2, 0x1, 0x1, 0x1}, 0x9, 0x2, 0x0, 0x0, "e08046376c9417dc3e24cd6dedbcbf4e4339563c322f823e8d38c235be89eaf2528918627dd4b754fdc1783e02066dacb92405306ffe5925abdf7046c8cef34a"}}, 0x80}, 0x1, 0x0, 0x0, 0x400000c}, 0x20000000)
r0 = socket(0x1e, 0x1, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r0, &(0x7f0000000080)=ANY=[], 0x2000011a)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000680)={0x20, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}]}]}, 0x20}}, 0x0)
setsockopt$inet_int(r0, 0x0, 0x14, &(0x7f0000000040)=0x1, 0x4)

3.21356809s ago: executing program 1 (id=1797):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{}, {}, {}, {0x85, 0x0, 0x0, 0xe}}}, 0x0, 0x2, 0x1003, &(0x7f0000001e40)=""/4099}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x1)
pipe(&(0x7f0000000040))
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000040), 0xc)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@ipv6_getaddrlabel={0x38, 0x1a, 0x1, 0x0, 0x0, {0xa, 0x0, 0x80}, [@IFAL_LABEL={0x8}, @IFAL_ADDRESS={0x14, 0x1, @private0}]}, 0x38}}, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
connect$qrtr(r2, &(0x7f0000000040)={0x2a, 0x1}, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xc, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x8, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4}]}]}]}]}], {0x14, 0x10}}, 0xc0}}, 0x0)

3.083697317s ago: executing program 1 (id=1802):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xf, &(0x7f0000000380)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0}, 0x90)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(0xffffffffffffffff, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f0000000840)={0x380, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_FEATURES_WANTED={0x1f8, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x8b, 0x5, "41b1328c8ecae55a9dc9407df737ddb8fc027af8a7500e570790e571162dd69c0ea17dd0a790850666e77e8a32bd4b770f54ae5bc1c997503eabe54b96ba1ed75f85833c1c2ab0841860b307c9544180b25b0c7fea9b9121438e7a9572e1f98dc31d9562368f207586beee39a538eb12bb75b7e31a0c3d0f8bc38d48de28424c1f04f38626e95b"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x158, 0x3, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\x02\xef-\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '/\\*\xa4@]\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffffffff}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '-\x00'}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '[\x00'}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffe00}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x800}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffff8ac9}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '[\x93#(_\'/+\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd94}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '&\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffffff7f}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '}\xfa&-\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ']\x00'}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '-(:+,\x00'}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_FEATURES_WANTED={0x174, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0xa4, 0x3, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x4}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffff9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '()+^\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa807}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '},)\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '$.-j-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffffe}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x800}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0xb7, 0x5, "73712ee79e62c871c11631252f2c851c333e2f90f747dd97704f2b2b16e366149fee16d03384bddbd535c51ca4fe82399d07d8ca3d1f3b3b4fbfd20542b720bb90e7f434bf69213ae20bc8b0731415dde8275115e1f07bf3ded8f8732d1fb2914b25e29622285cd208c64236bc54d002e2f8656d39fdd9de7e39bf6aaadf3a9b26d82c21d8ccb5a5695f9b936a914ff0894bf86c0a86fc770e12f32ad33e54af904924c83a4ba91f8eed9a301edfc052edd203"}]}]}, 0x380}, 0x1, 0x0, 0x0, 0x4000}, 0x40484c5)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r0}, 0x69)
socket$inet6_sctp(0xa, 0x1, 0x84)
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))

2.843207687s ago: executing program 1 (id=1805):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f0000000000)=0x101, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x2404c801, &(0x7f0000000040)={0xa, 0x4e22, 0x200003, @loopback, 0xfffffff7}, 0x21)
unshare(0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e21, 0xffff, @dev={0xfe, 0x80, '\x00', 0x35}, 0x7}, 0x1c)
getpeername$inet6(r0, 0x0, &(0x7f0000000080))
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000540)=@filter={'filter\x00', 0x2, 0x4, 0x3b8, 0xffffffff, 0xd0, 0x218, 0x0, 0xfeffffff, 0xffffffff, 0x2e8, 0x2e8, 0x2e8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev, @mcast1, [], [], 'macsec0\x00', 'bond_slave_0\x00'}, 0x2f2, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, [], [], 'sit0\x00', 'vxcan1\x00'}, 0x0, 0xd8, 0x148, 0x0, {}, [@common=@ah={{0x30}, {[0x4d2], 0x7ffffffd, 0x7f}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "ddabf53d9b1435965491f65318776d8001e770b667f173dfa40b58c10327e3121114449fd20ba2be6e45cae72a972f25170163232ed996b4789b9d00"}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE3={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x418)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newsa={0x118, 0x12, 0x713, 0x0, 0x0, {{@in=@multicast1, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in6=@remote}, @in=@multicast1}, [@address_filter={0x28, 0x1a, {@in=@local, @in=@dev, 0x0, 0x0, 0xee}}]}, 0x118}}, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000240)={@private2, 0x4, 0x0, 0x3, 0x9, 0x25, 0x7}, 0x20)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, &(0x7f0000000300)=0x1a, 0x4)
recvmmsg(r2, &(0x7f0000006ec0)=[{{&(0x7f0000000480)=@xdp, 0x80, &(0x7f0000002d80)=[{&(0x7f0000000400)=""/27, 0x1b}, {&(0x7f0000000980)=""/4096, 0x1000}, {&(0x7f0000001980)=""/97, 0x61}, {&(0x7f0000001a00)=""/154, 0x9a}, {&(0x7f0000001ac0)=""/172, 0xac}, {&(0x7f0000001b80)=""/238, 0xee}, {&(0x7f0000002c80)=""/115, 0x73}, {&(0x7f0000002d00)=""/98, 0x62}], 0x8}, 0x4}, {{&(0x7f0000002e40)=@hci, 0x80, &(0x7f0000006100)=[{&(0x7f0000002ec0)=""/88, 0x58}, {&(0x7f0000002f40)=""/4096, 0x1000}, {0x0}, {&(0x7f0000004f40)=""/228, 0xe4}, {&(0x7f0000000500)=""/11, 0xb}, {&(0x7f0000005040)=""/4096, 0x1000}, {&(0x7f0000006040)=""/136, 0x88}], 0x7}, 0x101}, {{&(0x7f0000006180)=@generic, 0xe2, &(0x7f00000065c0)=[{&(0x7f0000006200)=""/252, 0xfc}, {&(0x7f0000006300)=""/232, 0xe8}, {&(0x7f0000006480)=""/251, 0xfb}, {&(0x7f0000006580)=""/47, 0x2f}], 0x4}, 0x800}, {{&(0x7f0000006640)=@pppol2tpin6={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f00000069c0)=[{&(0x7f00000066c0)=""/72, 0x48}, {0x0}, {&(0x7f00000067c0)=""/151, 0x97}, {&(0x7f0000007240)=""/4096, 0x1000}, {&(0x7f0000006880)=""/40, 0x28}, {&(0x7f00000068c0)=""/69, 0x45}, {&(0x7f0000006940)=""/87, 0x57}], 0x7, &(0x7f0000006a40)=""/125, 0x7d}, 0x47}, {{0x0, 0x0, &(0x7f0000006e00)=[{&(0x7f0000006ac0)}, {&(0x7f0000006b00)=""/78, 0x4e}, {&(0x7f0000006b80)=""/96, 0x60}, {&(0x7f0000006c00)=""/173, 0xad}, {&(0x7f0000006cc0)=""/188, 0xbc}, {&(0x7f0000006d80)=""/68, 0x44}], 0x6, &(0x7f0000006e80)=""/53, 0x35}, 0xfff}], 0x5, 0x10000, &(0x7f0000007000))
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCBRDELBR(r2, 0x89a1, &(0x7f0000000200)='hsr0\x00')
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, 0x0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYRES64, @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x400c075}, 0x4004984)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000007200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000007140)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40, 0x4004004}, 0x0)
unshare(0x40000000)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x8000002, 0x0, @empty}, 0x1c)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x2204c001, &(0x7f0000000340)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000440)='9', 0x1, 0x0, 0x0, 0x0)
recvfrom$inet6(0xffffffffffffffff, 0x0, 0x0, 0x40012001, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x200}, 0x1c)
ioctl$F2FS_IOC_RESIZE_FS(r3, 0x4008f510, &(0x7f0000003f40)=0xbb9)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'veth0_macvtap\x00'})

2.755933377s ago: executing program 2 (id=1806):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)={0x38, r2, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14a0}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]]}, 0x38}}, 0x20000004)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2c, &(0x7f0000000040)=0x6, 0x4)
r4 = socket$inet6(0xa, 0x3, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xa, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x4e}, 0x90)
sendmmsg$inet6(r4, &(0x7f0000004580)=[{{&(0x7f0000000080)={0xa, 0x0, 0x1, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x002\x00\x00\x00'], 0x28}}], 0x1, 0x0)
socket(0x1e, 0x1, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_freezer_state(r5, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r6, &(0x7f0000000040)='FROZEN\x00', 0x7)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000000080)={0xa, 0x14e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r7, 0x0)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
sendto$inet(r8, 0x0, 0x0, 0x20000000, 0x0, 0x0)
ioctl$int_in(r8, 0x5452, &(0x7f0000000100)=0x8)
setsockopt$inet_tcp_int(r8, 0x6, 0x19, &(0x7f00000000c0)=0x7, 0x4)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendto$inet(r8, &(0x7f0000000040)='u', 0xa792a, 0x807, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.net/syz1\x00', 0x200002, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x100004, 0x220104, 0x80b, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffd}, 0x48)

2.316750614s ago: executing program 4 (id=1809):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
accept4(r0, 0x0, &(0x7f0000000180), 0x81000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmmsg$alg(r2, &(0x7f0000001440)=[{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000100)="9ddfc5a2c87fe3", 0xfffffdef}], 0x1}], 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0xd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0xf)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r4, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r5 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6(0xa, 0x6, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r7 = accept4(r5, 0x0, 0x0, 0x800)
recvmsg(r6, &(0x7f0000001c00)={0x0, 0x0, 0x0}, 0x0)
sendto$inet6(r7, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x5)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_ro(r8, &(0x7f0000000100)='cgroup.events\x00', 0x275a, 0x0)
preadv(r9, &(0x7f00000013c0)=[{&(0x7f0000000080)=""/20, 0xfdef}], 0x1, 0x0, 0x0)
sendmsg$unix(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)="fd", 0x1}], 0x1}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={0x0}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000040)={'syztnl2\x00', &(0x7f00000002c0)={'ip6gre0\x00', 0x0, 0x0, 0xb, 0x2, 0x2, 0x0, @mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}})
bpf$PROG_LOAD(0x5, 0x0, 0x0)

2.120429903s ago: executing program 0 (id=1810):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x5}]}], {0x14}}, 0x58}}, 0x0)

1.876897356s ago: executing program 0 (id=1811):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = socket$netlink(0x10, 0x3, 0x4)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r3, 0x11b, 0x3, &(0x7f0000000080)=0x100000, 0x4)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80fae0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6811778581acb6c0101ff0000000309", 0x48}], 0x1)
close(r2)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x7, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0xa}, {0x3, 0x3, 0x6, 0x9, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000001800)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

1.759415532s ago: executing program 2 (id=1812):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x13, 0x0, 0x2}, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010700000000000000002000000008000300", @ANYRES32=r2], 0x1c}}, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x40000000000011a, 0x0, 0x0)

1.601640194s ago: executing program 4 (id=1813):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x19, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x179, 0x11, 0x100000}]}, 0x0, 0x2, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x16}, 0x90)
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r0, &(0x7f0000007940)={&(0x7f0000000040)={0x2, 0x4e24, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="2400000000000000000000000700000001441009"], 0x28}, 0x0)

1.535164719s ago: executing program 2 (id=1814):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket(0x200000100000011, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000007c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a0000", @ANYRES32=r2, @ANYBLOB="140001000040000000000000000000000000000014000200fe8000000000000000000000000000aa1400060000000000ffffffff"], 0x54}}, 0x0)

1.460689418s ago: executing program 4 (id=1815):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xa, 0x0, 0x2, 0x9, 0x42}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f0000000200)}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000600)={r1, &(0x7f00000004c0), &(0x7f0000000500)=""/198}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe4, 0x1, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x17, 0xf, &(0x7f0000000240)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0xbb}}, {}, [], {{}, {0x5}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r4, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1.400586181s ago: executing program 4 (id=1816):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=@newqdisc={0x38, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x2, 0x2, [@TCA_HHF_RESET_TIMEOUT={0x8}]}}]}, 0x38}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket(0x10, 0x803, 0x0)
sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0xf0}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000006604000008000300", @ANYRES32=r4, @ANYBLOB="0800b70004000000080026009409"], 0x4c}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000100)={0x6c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME={0x4e, 0x33, @beacon={{{}, {}, @broadcast, @device_a, @random="e576359046a8"}, 0x0, @random, 0x0, @val={0x0, 0x6, @default_ap_ssid}, @void, @val={0x3, 0x1}, @val={0x4, 0x6}, @void, @val={0x5, 0x3}, @void, @void, @val={0x3c, 0x4}, @void, @void, @void, @val={0x76, 0x6}}}]}, 0x6c}}, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x1, &(0x7f0000000040)=0x6, 0x4)
sendmmsg$inet6(r0, &(0x7f0000000740)=[{{&(0x7f0000000100)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x300, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r9 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
r10 = socket$netlink(0x10, 0x3, 0x4)
write(r10, &(0x7f00000002c0)="29000000140005b7ff00000004eabdeb0101b6ff02159f7e5520756b1933b49db96ad24d12595fbea5", 0x29)
r11 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r10, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x44, r11, 0x8, 0x70bd2b, 0x25dfdbfc, {}, [@L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x3}, @L2TP_ATTR_UDP_CSUM={0x5}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x1}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x4}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x9}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x4040040)
r12 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r12, 0x84, 0x9, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x0)
writev(r8, &(0x7f00000002c0)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86ddf06712e9232f118db0049d90491ceaebfd26d4eef23248000000f858dbb8a19052343f", 0x35}, {&(0x7f0000000200)="c67f0d7df974c298a289e47091f8", 0xe}], 0x2)

1.15270858s ago: executing program 2 (id=1817):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=@newqdisc={0x38, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x2, 0x2, [@TCA_HHF_RESET_TIMEOUT={0x8}]}}]}, 0x38}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket(0x10, 0x803, 0x0)
sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0xf0}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000006604000008000300", @ANYRES32=r4, @ANYBLOB="0800b70004000000080026009409"], 0x4c}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000100)={0x6c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME={0x4e, 0x33, @beacon={{{}, {}, @broadcast, @device_a, @random="e576359046a8"}, 0x0, @random, 0x0, @val={0x0, 0x6, @default_ap_ssid}, @void, @val={0x3, 0x1}, @val={0x4, 0x6}, @void, @val={0x5, 0x3}, @void, @void, @val={0x3c, 0x4}, @void, @void, @void, @val={0x76, 0x6}}}]}, 0x6c}}, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x1, &(0x7f0000000040)=0x6, 0x4)
sendmmsg$inet6(r0, &(0x7f0000000740)=[{{&(0x7f0000000100)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x300, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r9 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
r10 = socket$netlink(0x10, 0x3, 0x4)
write(r10, &(0x7f00000002c0)="29000000140005b7ff00000004eabdeb0101b6ff02159f7e5520756b1933b49db96ad24d12595fbea5", 0x29)
r11 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r10, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x44, r11, 0x8, 0x70bd2b, 0x25dfdbfc, {}, [@L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x3}, @L2TP_ATTR_UDP_CSUM={0x5}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x1}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x4}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x9}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x4040040)
r12 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r12, 0x84, 0x9, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, &(0x7f0000000000)=0x9c)
writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86ddf06712e9232f118db0049d90491ceaebfd26d4eef23248000000f858dbb8a19052343f", 0x35}, {&(0x7f0000000200)="c67f0d7df974c298a289e47091f8", 0xe}], 0x2)

1.073025793s ago: executing program 0 (id=1818):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'team_slave_0\x00'})
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000a40), r0)
syz_emit_ethernet(0x166, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x4e21, @loopback}, 0x10)
getpeername(r2, 0x0, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000000b00)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x1c, r1, 0x4, 0x70bd25, 0x25dfdbfc, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40100d5}, 0x20004000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @masq={{0x9}, @void}}, {0x14, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xc4}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001100), 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={r6, 0x58, &(0x7f0000000000)={0x0, <r7=>0x0}}, 0x10)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000180)={r7}, 0xc)
sendmsg$nl_route_sched_retired(r4, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)=@delchain={0x840, 0x65, 0x0, 0x0, 0x0, {}, [@f_rsvp={{0x9}, {0x810, 0x2, [@TCA_RSVP_POLICE={0x80c, 0x5, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf]}]}]}}]}, 0x840}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r8, 0x8933, &(0x7f0000000040))
syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
pipe(&(0x7f0000000580)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0xd0, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c20000008e25900ee8d386dd601646b085a2009a2f00ff020000000000000000000000000001fc010000000000000000000000000000000000000000000005020000000000000420880b00460000670c12d787bc48454ad5ab0dbcd795bf5fb1f628b38949083230f6"], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30000000000800024000000001cc000000030a01020000000000000000020000000900010073797a3000000000aa000300"], 0x1e4}}, 0x0)
write$binfmt_misc(r9, &(0x7f0000000000)=ANY=[], 0xfffffecc)

390.760188ms ago: executing program 4 (id=1819):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_process_wait\x00', r2}, 0x10)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8)
close(r4)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r1, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$LINK_DETACH(0x22, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r6 = socket$alg(0x26, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000180))
bind$alg(r6, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp256-generic\x00'}, 0x58)
r7 = accept4$alg(r6, 0x0, 0x0, 0x0)
sendmmsg$sock(r7, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000340)="8224aca5f41b9e0ec5e7a706c919e7c0e343f0cd0a779c17e7f992396b09252009d2d12e9475a57ec39f71417044cf4151af34ac1dfd5d87cdd80bc4c24478821f64d4d971bbc1fc7bdd181a839344917165bb9cd0fa568aac55d8e38ee30fd3a9bc63e2656b6941c812e6ea0692ec276deb2b7b817906cf8c5429a42164e8bb521e216e554d509a0fd0d86729b5f4b9a01fb336bef1be8a68a628452b83a7404087d4bcb64f6ecad05459d12595d5b8b2657f2f29656a15e5a18e3168946dcb5faa59f7b404bad393ba06734d170b0513aeb0d051", 0xd5}, {&(0x7f00000004c0)="62c99e05d98775ed1beb5d67431ead896f7060f03e5b8671b283168d0df1573bef271f3a22b9cac06e27c7e87b34a19188d3e10e670bc070f0d3eb88d2f891d242747e0deec4a10609b12d4058b0fbff28bb01e6e49b533b03b11288ff4da1ab3226a2e3ba5fc47969142f1a1a0ca9ba4cece2ac9a5fcd89343de7e57dfcbb6216499555bd04f2fcb91c3c6c72868a3797ec63f8138ab74b5034878812df8b0445704cb33f81bffed93c3e645a206db134f626a59f4fac53fbf23489cf2f45d05d735e64033376671da045df97bcb989bda1d17ba14afbfd19e32a8222ebf934c17fed237b86aef2e830", 0xea}, {&(0x7f00000005c0)="f2b314c96d500b66f7fd46493862d9eb11d188464208592330ac482436286448", 0x20}], 0x3}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback, 0xffffffff}}, 0x0, 0x0, 0xffffffff, 0x0, 0x54}, 0x9c)

227.19258ms ago: executing program 2 (id=1820):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xf, &(0x7f0000000380)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0}, 0x90)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(0xffffffffffffffff, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f0000000840)={0x380, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_FEATURES_WANTED={0x1f8, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x8b, 0x5, "41b1328c8ecae55a9dc9407df737ddb8fc027af8a7500e570790e571162dd69c0ea17dd0a790850666e77e8a32bd4b770f54ae5bc1c997503eabe54b96ba1ed75f85833c1c2ab0841860b307c9544180b25b0c7fea9b9121438e7a9572e1f98dc31d9562368f207586beee39a538eb12bb75b7e31a0c3d0f8bc38d48de28424c1f04f38626e95b"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x158, 0x3, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\x02\xef-\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '/\\*\xa4@]\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffffffff}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '-\x00'}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '[\x00'}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffe00}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x800}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffff8ac9}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '[\x93#(_\'/+\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd94}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '&\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffffff7f}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '}\xfa&-\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ']\x00'}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '-(:+,\x00'}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_FEATURES_WANTED={0x174, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0xa4, 0x3, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x4}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffff9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '()+^\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa807}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '},)\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '$.-j-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffffe}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x800}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0xb7, 0x5, "73712ee79e62c871c11631252f2c851c333e2f90f747dd97704f2b2b16e366149fee16d03384bddbd535c51ca4fe82399d07d8ca3d1f3b3b4fbfd20542b720bb90e7f434bf69213ae20bc8b0731415dde8275115e1f07bf3ded8f8732d1fb2914b25e29622285cd208c64236bc54d002e2f8656d39fdd9de7e39bf6aaadf3a9b26d82c21d8ccb5a5695f9b936a914ff0894bf86c0a86fc770e12f32ad33e54af904924c83a4ba91f8eed9a301edfc052edd203"}]}]}, 0x380}, 0x1, 0x0, 0x0, 0x4000}, 0x40484c5)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r0}, 0x69)
socket$inet6_sctp(0xa, 0x1, 0x84)
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))

170.832101ms ago: executing program 0 (id=1821):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x5}]}], {0x14}}, 0x58}}, 0x0)

161.548733ms ago: executing program 2 (id=1822):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f0000000180)={0x0, 0xfff0, &(0x7f0000000140)={&(0x7f0000000080)={0x3c, r1, 0x9, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_KEY={0x14, 0x50, 0x0, 0x1, [@NL80211_KEY_MODE={0x5, 0x9, 0x2}, @NL80211_KEY_IDX={0x5}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x3c}}, 0x0)

47.256084ms ago: executing program 4 (id=1823):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90) (async)
syz_emit_ethernet(0x177, &(0x7f0000000980)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb8100000086dd60f7d8ff013d3c0020010000000000000000000000000000ff020000000000000000000000000001001d0000000000000401070401f9c910"], 0x0) (async)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0xe21, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c) (async)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@link_local, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast=0xe0000001}, {0x0, 0xe21, 0x8}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_queued_recursive\x00', 0x26e1, 0x0)
close(r2) (async)
ioctl$SIOCSIFHWADDR(r2, 0x8b1b, &(0x7f0000000000)={'virt_wifi0\x00'}) (async)
syz_extract_tcp_res$synack(&(0x7f0000000180), 0x1, 0x0) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_ASSOCIATE(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000580)={0x68, 0x0, 0x8, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x5, 0x30}}}}, [@NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0xc, 0x0, 0x5, 0x0, {0x7, 0x9, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1}, 0x400, 0x7, 0x9}}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x1e, {0x7, 0x7, 0x1, 0x76fb}}}, @NL80211_ATTR_IE={0xf, 0x2a, [@mesh_chsw={0x76, 0x6, {0x2, 0x4d, 0x0, 0xe}}, @dsss={0x3, 0x1, 0xb7}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x8000}, 0x4000) (async)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) (async)
r6 = socket$inet(0x2, 0x3, 0x2) (async)
socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3, 0x1c)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f00000013c0)=@raw={'raw\x00', 0x8, 0x3, 0x210, 0x0, 0x11, 0x148, 0x0, 0x10, 0x178, 0x2a8, 0x2a8, 0x178, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0xa8}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0xffffffffffffffff}, {0xffffffffffffffff}, {0xffffffffffffffff, 0x7}}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, 0x0, 0x0, 'vlan0\x00', 'veth1_to_batadv\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x270) (async)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84) (async)
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, 0x0, 0x0)
setsockopt$inet_mreqsrc(r6, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r5, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @local}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0) (async)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r8, &(0x7f0000000040)={0x2, 0x4e23, @loopback}, 0x8) (async)
r9 = socket$inet(0x2, 0x6, 0x0)
setsockopt$inet_opts(r9, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)

45.011169ms ago: executing program 0 (id=1824):
syz_emit_ethernet(0xa4, &(0x7f00000000c0)={@broadcast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00\b\x00', 0x6e, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0xcdf, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af"}, {0x0, 0x1, "ffffffffff60000000000000"}]}}}}}}, 0x0)

0s ago: executing program 0 (id=1825):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x19, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x179, 0x11, 0x100000}]}, 0x0, 0x2, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x16}, 0x90)
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r0, &(0x7f0000007940)={&(0x7f0000000040)={0x2, 0x4e24, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="2400000000000000000000000700000001441009"], 0x28}, 0x0)

kernel console output (not intermixed with test programs):

7584][ T8082] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  160.322529][ T8089] netlink: 32 bytes leftover after parsing attributes in process `syz.2.893'.
[  160.356098][ T8091] netlink: 16 bytes leftover after parsing attributes in process `syz.0.894'.
[  160.502752][ T8096] netlink: 12 bytes leftover after parsing attributes in process `syz.0.895'.
[  160.578257][ T8096] netlink: 8 bytes leftover after parsing attributes in process `syz.0.895'.
[  160.645749][ T8099] netlink: 32 bytes leftover after parsing attributes in process `syz.2.897'.
[  160.743376][ T8105] bond0: entered promiscuous mode
[  160.752214][ T8105] bond_slave_0: entered promiscuous mode
[  160.759370][ T8107] netlink: 40 bytes leftover after parsing attributes in process `syz.4.901'.
[  160.772667][ T8105] bond_slave_1: entered promiscuous mode
[  160.797524][ T8105] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  160.828335][ T8105] bond0: left promiscuous mode
[  160.837649][ T8105] bond_slave_0: left promiscuous mode
[  160.848624][ T8105] bond_slave_1: left promiscuous mode
[  161.191603][ T8133] netlink: 134312 bytes leftover after parsing attributes in process `syz.3.908'.
[  161.213418][ T8133] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  161.236201][ T8133] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  161.241434][ T8136] ip6t_srh: unknown srh match flags  4001
[  161.269437][ T8136] netlink: 'syz.4.909': attribute type 11 has an invalid length.
[  161.375353][ T8140] netlink: 32 bytes leftover after parsing attributes in process `syz.2.913'.
[  161.394761][ T8145] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  161.447015][ T8143] netlink: 32 bytes leftover after parsing attributes in process `syz.0.914'.
[  161.480113][ T8145] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  162.177627][ T8179] FAULT_INJECTION: forcing a failure.
[  162.177627][ T8179] name failslab, interval 1, probability 0, space 0, times 0
[  162.191074][ T8179] CPU: 0 PID: 8179 Comm: syz.1.927 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  162.201088][ T8179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  162.211172][ T8179] Call Trace:
[  162.214479][ T8179]  <TASK>
[  162.217442][ T8179]  dump_stack_lvl+0x241/0x360
[  162.222166][ T8179]  ? __pfx_dump_stack_lvl+0x10/0x10
[  162.227405][ T8179]  ? __pfx__printk+0x10/0x10
[  162.232046][ T8179]  ? __pfx___might_resched+0x10/0x10
[  162.237373][ T8179]  should_fail_ex+0x3b0/0x4e0
[  162.242097][ T8179]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  162.248379][ T8179]  should_failslab+0x9/0x20
[  162.252922][ T8179]  __kmalloc_noprof+0xd8/0x400
[  162.257733][ T8179]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  162.263825][ T8179]  genl_rcv_msg+0x802/0xec0
[  162.268340][ T8179]  ? mark_lock+0x9a/0x350
[  162.272684][ T8179]  ? __pfx_genl_rcv_msg+0x10/0x10
[  162.277743][ T8179]  ? __pfx_lock_acquire+0x10/0x10
[  162.282770][ T8179]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  162.288155][ T8179]  ? __pfx_nl80211_start_ap+0x10/0x10
[  162.293534][ T8179]  ? __pfx_nl80211_post_doit+0x10/0x10
[  162.299012][ T8179]  ? __pfx___might_resched+0x10/0x10
[  162.304314][ T8179]  netlink_rcv_skb+0x1e3/0x430
[  162.309087][ T8179]  ? __pfx_genl_rcv_msg+0x10/0x10
[  162.314126][ T8179]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  162.319430][ T8179]  ? __netlink_deliver_tap+0x77e/0x7c0
[  162.324908][ T8179]  genl_rcv+0x28/0x40
[  162.328901][ T8179]  netlink_unicast+0x7f0/0x990
[  162.333678][ T8179]  ? __pfx_netlink_unicast+0x10/0x10
[  162.338967][ T8179]  ? __virt_addr_valid+0x183/0x520
[  162.344103][ T8179]  ? __check_object_size+0x49c/0x900
[  162.349404][ T8179]  ? bpf_lsm_netlink_send+0x9/0x10
[  162.354539][ T8179]  netlink_sendmsg+0x8e4/0xcb0
[  162.359324][ T8179]  ? __pfx_netlink_sendmsg+0x10/0x10
[  162.364618][ T8179]  ? __import_iovec+0x536/0x820
[  162.369474][ T8179]  ? aa_sock_msg_perm+0x91/0x160
[  162.374427][ T8179]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  162.379716][ T8179]  ? security_socket_sendmsg+0x87/0xb0
[  162.385186][ T8179]  ? __pfx_netlink_sendmsg+0x10/0x10
[  162.390476][ T8179]  __sock_sendmsg+0x221/0x270
[  162.395165][ T8179]  ____sys_sendmsg+0x525/0x7d0
[  162.399956][ T8179]  ? __pfx_____sys_sendmsg+0x10/0x10
[  162.405274][ T8179]  __sys_sendmsg+0x2b0/0x3a0
[  162.409879][ T8179]  ? __pfx___sys_sendmsg+0x10/0x10
[  162.415005][ T8179]  ? vfs_write+0x7c4/0xc90
[  162.419469][ T8179]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  162.425805][ T8179]  ? do_syscall_64+0x100/0x230
[  162.430578][ T8179]  ? do_syscall_64+0xb6/0x230
[  162.435264][ T8179]  do_syscall_64+0xf3/0x230
[  162.439775][ T8179]  ? clear_bhb_loop+0x35/0x90
[  162.444463][ T8179]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.450365][ T8179] RIP: 0033:0x7f63cdb75bd9
[  162.454789][ T8179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.474407][ T8179] RSP: 002b:00007f63ce8e1048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  162.482827][ T8179] RAX: ffffffffffffffda RBX: 00007f63cdd03f60 RCX: 00007f63cdb75bd9
[  162.490813][ T8179] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003
[  162.498807][ T8179] RBP: 00007f63ce8e10a0 R08: 0000000000000000 R09: 0000000000000000
[  162.506788][ T8179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.514764][ T8179] R13: 000000000000004d R14: 00007f63cdd03f60 R15: 00007ffdda208568
[  162.522757][ T8179]  </TASK>
[  162.865425][ T8198] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  162.900770][ T8198] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  162.987288][ T8207] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  162.999906][ T8208] ip6t_srh: unknown srh match flags  4001
[  163.014169][ T8208] netlink: 'syz.4.938': attribute type 11 has an invalid length.
[  163.022118][ T8207] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  163.308029][ T8220] Cannot find set identified by id 0 to match
[  163.564737][ T8229] bond0: entered promiscuous mode
[  163.573111][ T8229] bond_slave_0: entered promiscuous mode
[  163.579703][ T8229] bond_slave_1: entered promiscuous mode
[  163.586043][ T8229] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  163.598354][ T8229] bond0: left promiscuous mode
[  163.603146][ T8229] bond_slave_0: left promiscuous mode
[  163.616301][ T8229] bond_slave_1: left promiscuous mode
[  164.122699][ T8249] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  164.241980][ T8249] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  164.438587][ T8265] FAULT_INJECTION: forcing a failure.
[  164.438587][ T8265] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.462477][ T8265] CPU: 0 PID: 8265 Comm: syz.3.960 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  164.472510][ T8265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  164.482574][ T8265] Call Trace:
[  164.485859][ T8265]  <TASK>
[  164.488800][ T8265]  dump_stack_lvl+0x241/0x360
[  164.493493][ T8265]  ? __pfx_dump_stack_lvl+0x10/0x10
[  164.498702][ T8265]  ? __pfx__printk+0x10/0x10
[  164.503310][ T8265]  ? __pfx_lock_release+0x10/0x10
[  164.508380][ T8265]  should_fail_ex+0x3b0/0x4e0
[  164.513077][ T8265]  _copy_from_user+0x2f/0xe0
[  164.517680][ T8265]  rawv6_setsockopt+0x273/0x740
[  164.522543][ T8265]  ? __pfx_rawv6_setsockopt+0x10/0x10
[  164.527926][ T8265]  ? aa_sock_opt_perm+0x79/0x120
[  164.532885][ T8265]  ? sock_common_setsockopt+0x37/0xc0
[  164.538269][ T8265]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  164.544170][ T8265]  do_sock_setsockopt+0x3af/0x720
[  164.549237][ T8265]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  164.554793][ T8265]  ? __fget_files+0x29/0x470
[  164.559395][ T8265]  ? __fget_files+0x3f6/0x470
[  164.564094][ T8265]  __sys_setsockopt+0x1ae/0x250
[  164.568964][ T8265]  __x64_sys_setsockopt+0xb5/0xd0
[  164.574008][ T8265]  do_syscall_64+0xf3/0x230
[  164.578517][ T8265]  ? clear_bhb_loop+0x35/0x90
[  164.583203][ T8265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.589103][ T8265] RIP: 0033:0x7f5ae0575bd9
[  164.593525][ T8265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.613139][ T8265] RSP: 002b:00007f5ae12f0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  164.621565][ T8265] RAX: ffffffffffffffda RBX: 00007f5ae0703f60 RCX: 00007f5ae0575bd9
[  164.629541][ T8265] RDX: 0000000000000007 RSI: 0000000000000029 RDI: 0000000000000003
[  164.637514][ T8265] RBP: 00007f5ae12f00a0 R08: 0000000000000004 R09: 0000000000000000
[  164.645511][ T8265] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  164.653508][ T8265] R13: 000000000000000b R14: 00007f5ae0703f60 R15: 00007fff45c99bf8
[  164.661520][ T8265]  </TASK>
[  164.685490][ T8269] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  164.695679][ T8269] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  164.735827][ T8270] ip6t_srh: unknown srh match flags  4001
[  164.743232][ T8270] netlink: 'syz.4.962': attribute type 11 has an invalid length.
[  165.067485][ T8290] FAULT_INJECTION: forcing a failure.
[  165.067485][ T8290] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  165.104048][ T8290] CPU: 1 PID: 8290 Comm: syz.2.968 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  165.114078][ T8290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  165.124165][ T8290] Call Trace:
[  165.127476][ T8290]  <TASK>
[  165.130432][ T8290]  dump_stack_lvl+0x241/0x360
[  165.135150][ T8290]  ? __pfx_dump_stack_lvl+0x10/0x10
[  165.140383][ T8290]  ? __pfx__printk+0x10/0x10
[  165.145024][ T8290]  ? __pfx_lock_release+0x10/0x10
[  165.150098][ T8290]  should_fail_ex+0x3b0/0x4e0
[  165.154825][ T8290]  _copy_from_iter+0x1f6/0x1960
[  165.159712][ T8290]  ? __virt_addr_valid+0x183/0x520
[  165.164875][ T8290]  ? __pfx_lock_release+0x10/0x10
[  165.169951][ T8290]  ? __pfx__copy_from_iter+0x10/0x10
[  165.175290][ T8290]  ? __virt_addr_valid+0x183/0x520
[  165.180447][ T8290]  ? __virt_addr_valid+0x183/0x520
[  165.185603][ T8290]  ? __virt_addr_valid+0x44e/0x520
[  165.190766][ T8290]  ? __check_object_size+0x49c/0x900
[  165.196106][ T8290]  hci_sock_sendmsg+0x4f1/0x11c0
[  165.201090][ T8290]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  165.206497][ T8290]  ? aa_sock_msg_perm+0x91/0x160
[  165.211490][ T8290]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  165.216810][ T8290]  ? security_socket_sendmsg+0x87/0xb0
[  165.222320][ T8290]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  165.227740][ T8290]  __sock_sendmsg+0x221/0x270
[  165.232461][ T8290]  sock_write_iter+0x2dd/0x400
[  165.237268][ T8290]  ? __pfx_sock_write_iter+0x10/0x10
[  165.242600][ T8290]  ? bpf_lsm_file_permission+0x9/0x10
[  165.248012][ T8290]  ? security_file_permission+0x7f/0xa0
[  165.253736][ T8290]  vfs_write+0xa72/0xc90
[  165.258027][ T8290]  ? __pfx_sock_write_iter+0x10/0x10
[  165.263360][ T8290]  ? __pfx_vfs_write+0x10/0x10
[  165.268189][ T8290]  ksys_write+0x1a0/0x2c0
[  165.272565][ T8290]  ? __pfx_ksys_write+0x10/0x10
[  165.277458][ T8290]  ? do_syscall_64+0x100/0x230
[  165.282258][ T8290]  ? do_syscall_64+0xb6/0x230
[  165.286973][ T8290]  do_syscall_64+0xf3/0x230
[  165.291511][ T8290]  ? clear_bhb_loop+0x35/0x90
[  165.296233][ T8290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.302165][ T8290] RIP: 0033:0x7f5685375bd9
[  165.306611][ T8290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.326249][ T8290] RSP: 002b:00007f5686110048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  165.334703][ T8290] RAX: ffffffffffffffda RBX: 00007f5685503f60 RCX: 00007f5685375bd9
[  165.342723][ T8290] RDX: 000000000000000d RSI: 0000000020000080 RDI: 0000000000000007
[  165.345369][ T8299] __nla_validate_parse: 8 callbacks suppressed
[  165.345386][ T8299] netlink: 32 bytes leftover after parsing attributes in process `syz.1.972'.
[  165.350709][ T8290] RBP: 00007f56861100a0 R08: 0000000000000000 R09: 0000000000000000
[  165.350730][ T8290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.350746][ T8290] R13: 000000000000004d R14: 00007f5685503f60 R15: 00007ffd76bf8b98
[  165.350783][ T8290]  </TASK>
[  165.523533][ T8305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.568132][ T8305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.594156][ T8308] netlink: 32 bytes leftover after parsing attributes in process `syz.0.973'.
[  165.603729][ T8305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.620745][ T8305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.630751][ T8305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.641578][ T8305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.652327][ T8312] Bluetooth: hci3: invalid length 0, exp 2 for type 7
[  165.659262][ T8305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.670062][ T8305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.802979][ T8311] netlink: 20 bytes leftover after parsing attributes in process `syz.4.975'.
[  165.897546][ T8324] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  165.939438][ T8323] trusted_key: syz.1.980 sent an empty control message without MSG_MORE.
[  165.951225][ T8319] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  166.117034][ T8336] netlink: 4 bytes leftover after parsing attributes in process `syz.0.984'.
[  166.146248][ T8337] netlink: 134312 bytes leftover after parsing attributes in process `syz.2.983'.
[  166.157763][ T8337] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  166.182799][ T8337] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  166.664943][ T8366] tipc: Started in network mode
[  166.674114][ T8366] tipc: Node identity aaaaaaaaaa32, cluster identity 4711
[  166.685680][ T8366] tipc: Enabled bearer <eth:vlan0>, priority 10
[  166.703992][ T8366] tipc: Resetting bearer <eth:vlan0>
[  166.800963][ T8366] tipc: Disabling bearer <eth:vlan0>
[  166.933328][ T8377] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1001'.
[  166.978932][ T8377] team_slave_0: entered promiscuous mode
[  166.989247][ T8377] team_slave_0: entered allmulticast mode
[  167.045520][ T8377] team0: Port device team_slave_0 removed
[  167.277739][ T8398] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  167.303962][ T8402] netlink: 'syz.2.1014': attribute type 1 has an invalid length.
[  167.350159][ T8404] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  167.362684][ T8405] netlink: 'syz.3.1013': attribute type 1 has an invalid length.
[  167.382145][ T8398] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  167.529129][ T8417] netlink: 1252 bytes leftover after parsing attributes in process `syz.0.1019'.
[  167.933736][ T8442] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1030'.
[  167.952852][ T8442] team_slave_0: entered allmulticast mode
[  167.980024][ T8442] team0: Port device team_slave_0 removed
[  168.109114][ T8449] netlink: 1252 bytes leftover after parsing attributes in process `syz.0.1033'.
[  168.868391][ T8477] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1045'.
[  169.026077][ T8486] netlink: 'syz.4.1050': attribute type 1 has an invalid length.
[  171.543979][ T8586] __nla_validate_parse: 1 callbacks suppressed
[  171.544000][ T8586] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1095'.
[  171.767460][ T8574] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1090'.
[  171.793005][ T8588] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1096'.
[  171.984363][ T8599] tipc: Started in network mode
[  172.034357][ T8599] tipc: Node identity ac1414aa, cluster identity 4711
[  172.060359][ T8599] tipc: Enabled bearer <udp:syz2>, priority 10
[  172.184043][ T8610] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1105'.
[  172.206299][ T8610] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  172.221887][ T8610] batman_adv: batadv0: Removing interface: batadv_slave_0
[  172.234404][ T8610] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  172.256286][ T8610] batman_adv: batadv0: Removing interface: batadv_slave_1
[  172.555144][ T8632] veth0_vlan: entered allmulticast mode
[  172.674030][ T8637] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1117'.
[  172.758839][ T8644] netlink: 134312 bytes leftover after parsing attributes in process `syz.2.1118'.
[  172.781166][ T8643] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  172.788157][ T8644] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  172.813727][ T8643] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  172.821067][ T8644] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  173.079893][ T5152] tipc: Node number set to 2886997162
[  173.094321][ T8659] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1124'.
[  173.097752][ T8655] FAULT_INJECTION: forcing a failure.
[  173.097752][ T8655] name failslab, interval 1, probability 0, space 0, times 0
[  173.126688][ T8655] CPU: 0 PID: 8655 Comm: syz.0.1125 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  173.136891][ T8655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  173.146997][ T8655] Call Trace:
[  173.150286][ T8655]  <TASK>
[  173.153224][ T8655]  dump_stack_lvl+0x241/0x360
[  173.157930][ T8655]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.163169][ T8655]  ? __pfx__printk+0x10/0x10
[  173.167813][ T8655]  ? lockdep_init_map_type+0xa1/0x910
[  173.173231][ T8655]  ? __asan_memset+0x23/0x50
[  173.177864][ T8655]  should_fail_ex+0x3b0/0x4e0
[  173.182597][ T8655]  ? security_inode_alloc+0x28/0x120
[  173.187923][ T8655]  should_failslab+0x9/0x20
[  173.192462][ T8655]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  173.197860][ T8655]  security_inode_alloc+0x28/0x120
[  173.202983][ T8655]  inode_init_always+0x947/0xc70
[  173.207944][ T8655]  ? __pfx_sock_alloc_inode+0x10/0x10
[  173.213330][ T8655]  new_inode_pseudo+0x9e/0x1e0
[  173.218116][ T8655]  __sock_create+0x123/0x920
[  173.222724][ T8655]  udp_sock_create6+0xe7/0x870
[  173.227509][ T8655]  ? __pfx_udp_sock_create6+0x10/0x10
[  173.232891][ T8655]  ? rcu_read_lock_any_held+0xb7/0x160
[  173.238383][ T8655]  wg_socket_init+0x861/0xea0
[  173.243086][ T8655]  ? __pfx_wg_socket_init+0x10/0x10
[  173.248295][ T8655]  ? __pfx_wg_receive+0x10/0x10
[  173.253173][ T8655]  ? __local_bh_enable_ip+0x168/0x200
[  173.258556][ T8655]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  173.264282][ T8655]  ? dst_cache_reset_now+0x1f0/0x220
[  173.269586][ T8655]  wg_set_device+0x733/0x2160
[  173.274302][ T8655]  ? __pfx_wg_set_device+0x10/0x10
[  173.279451][ T8655]  ? __nla_parse+0x40/0x60
[  173.283879][ T8655]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  173.290231][ T8655]  genl_rcv_msg+0xb14/0xec0
[  173.294749][ T8655]  ? mark_lock+0x9a/0x350
[  173.299099][ T8655]  ? __pfx_genl_rcv_msg+0x10/0x10
[  173.304164][ T8655]  ? __pfx_lock_acquire+0x10/0x10
[  173.309197][ T8655]  ? __pfx_wg_set_device+0x10/0x10
[  173.314324][ T8655]  ? __pfx___might_resched+0x10/0x10
[  173.319647][ T8655]  netlink_rcv_skb+0x1e3/0x430
[  173.324434][ T8655]  ? __pfx_genl_rcv_msg+0x10/0x10
[  173.329478][ T8655]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  173.334785][ T8655]  ? __netlink_deliver_tap+0x77e/0x7c0
[  173.340285][ T8655]  genl_rcv+0x28/0x40
[  173.344290][ T8655]  netlink_unicast+0x7f0/0x990
[  173.349076][ T8655]  ? __pfx_netlink_unicast+0x10/0x10
[  173.354397][ T8655]  ? __virt_addr_valid+0x183/0x520
[  173.359526][ T8655]  ? __check_object_size+0x49c/0x900
[  173.364825][ T8655]  ? bpf_lsm_netlink_send+0x9/0x10
[  173.369956][ T8655]  netlink_sendmsg+0x8e4/0xcb0
[  173.374743][ T8655]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.380040][ T8655]  ? __import_iovec+0x536/0x820
[  173.384924][ T8655]  ? aa_sock_msg_perm+0x91/0x160
[  173.389884][ T8655]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  173.395175][ T8655]  ? security_socket_sendmsg+0x87/0xb0
[  173.400650][ T8655]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.406040][ T8655]  __sock_sendmsg+0x221/0x270
[  173.410757][ T8655]  ____sys_sendmsg+0x525/0x7d0
[  173.415544][ T8655]  ? __pfx_____sys_sendmsg+0x10/0x10
[  173.420864][ T8655]  __sys_sendmsg+0x2b0/0x3a0
[  173.425486][ T8655]  ? __pfx___sys_sendmsg+0x10/0x10
[  173.430619][ T8655]  ? vfs_write+0x7c4/0xc90
[  173.435090][ T8655]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  173.441443][ T8655]  ? do_syscall_64+0x100/0x230
[  173.446231][ T8655]  ? do_syscall_64+0xb6/0x230
[  173.450924][ T8655]  do_syscall_64+0xf3/0x230
[  173.455448][ T8655]  ? clear_bhb_loop+0x35/0x90
[  173.460146][ T8655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.466050][ T8655] RIP: 0033:0x7f9088175bd9
[  173.470489][ T8655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.490102][ T8655] RSP: 002b:00007f9088f5e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  173.498528][ T8655] RAX: ffffffffffffffda RBX: 00007f9088303f60 RCX: 00007f9088175bd9
[  173.506511][ T8655] RDX: 0000000000000000 RSI: 0000000020001040 RDI: 0000000000000005
[  173.514523][ T8655] RBP: 00007f9088f5e0a0 R08: 0000000000000000 R09: 0000000000000000
[  173.522516][ T8655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  173.530505][ T8655] R13: 000000000000004d R14: 00007f9088303f60 R15: 00007ffff58e8438
[  173.538513][ T8655]  </TASK>
[  173.588242][ T8655] socket: no more sockets
[  173.609302][ T8655] wireguard: wg2: Could not create IPv6 socket
[  173.620461][ T8659] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1124'.
[  173.709160][ T8664] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1126'.
[  173.718328][ T8664] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  173.734941][ T8664] batman_adv: batadv0: Removing interface: batadv_slave_0
[  173.756890][ T8664] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  173.764323][ T8664] batman_adv: batadv0: Removing interface: batadv_slave_1
[  173.871774][ T8679] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1128'.
[  173.931358][ T8669] xt_CT: No such helper "snmp"
[  174.355883][ T8692] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  174.377411][ T8692] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  174.550058][ T8709] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  174.580561][ T8709] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  174.850048][ T8713] xt_CT: No such helper "snmp"
[  174.941473][ T8721] warning: `syz.3.1146' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  175.533040][ T8743] xt_CT: No such helper "snmp"
[  175.775790][ T8767] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  175.785135][ T8766] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  175.867828][ T8767] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  175.868604][ T8766] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  176.155115][ T4490] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  176.179102][ T4490] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  176.187685][ T4490] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  176.198151][ T4490] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  176.206667][ T4490] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  176.214515][ T4490] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  176.241319][ T2864] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.335810][ T2864] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.454165][ T2864] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.600443][ T2864] team0: Port device netdevsim0 removed
[  176.638751][ T2864] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.696311][ T8785] __nla_validate_parse: 12 callbacks suppressed
[  176.696331][ T8785] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1168'.
[  176.724110][ T8789] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1169'.
[  176.791839][ T8789] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1169'.
[  176.932149][ T8800] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1171'.
[  177.100603][ T8802] netlink: 134312 bytes leftover after parsing attributes in process `syz.4.1174'.
[  177.163669][ T8802] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  177.183347][ T2864] bridge_slave_1: left allmulticast mode
[  177.196939][ T2864] bridge_slave_1: left promiscuous mode
[  177.204903][ T8802] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  177.209240][ T2864] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.243326][ T8814] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  177.255719][ T2864] bridge_slave_0: left allmulticast mode
[  177.261522][ T2864] bridge_slave_0: left promiscuous mode
[  177.268255][ T2864] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.354258][ T8817] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  177.648390][ T2864] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  177.660314][ T2864] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  177.681837][ T2864] bond0 (unregistering): (slave vlan2): Releasing backup interface
[  177.694364][ T2864] bond0 (unregistering): Released all slaves
[  177.788403][ T2864] tipc: Disabling bearer <udp:syz2>
[  177.800076][ T2864] tipc: Left network mode
[  178.025784][ T8833] FAULT_INJECTION: forcing a failure.
[  178.025784][ T8833] name failslab, interval 1, probability 0, space 0, times 0
[  178.038770][ T8833] CPU: 1 PID: 8833 Comm: syz.4.1182 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  178.048966][ T8833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  178.059072][ T8833] Call Trace:
[  178.062411][ T8833]  <TASK>
[  178.065371][ T8833]  dump_stack_lvl+0x241/0x360
[  178.070106][ T8833]  ? __pfx_dump_stack_lvl+0x10/0x10
[  178.075345][ T8833]  ? __pfx__printk+0x10/0x10
[  178.079996][ T8833]  should_fail_ex+0x3b0/0x4e0
[  178.084723][ T8833]  ? __xdp_reg_mem_model+0x1e3/0x620
[  178.090051][ T8833]  should_failslab+0x9/0x20
[  178.094626][ T8833]  kmalloc_trace_noprof+0x6c/0x2c0
[  178.099760][ T8833]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  178.105848][ T8833]  __xdp_reg_mem_model+0x1e3/0x620
[  178.110977][ T8833]  ? __pfx___xdp_reg_mem_model+0x10/0x10
[  178.116652][ T8833]  ? page_pool_list+0x232/0x280
[  178.121521][ T8833]  xdp_reg_mem_model+0x22/0x40
[  178.126304][ T8833]  bpf_test_run_xdp_live+0x31e/0x2110
[  178.131714][ T8833]  ? arch_stack_walk+0x16d/0x1b0
[  178.136686][ T8833]  ? __lock_acquire+0x1346/0x1fd0
[  178.141730][ T8833]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  178.147546][ T8833]  ? mark_lock+0x9a/0x350
[  178.151926][ T8833]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  178.157839][ T8833]  ? __might_fault+0xaa/0x120
[  178.162533][ T8833]  ? __might_fault+0xc6/0x120
[  178.167665][ T8833]  ? _copy_from_user+0xa6/0xe0
[  178.172440][ T8833]  ? bpf_test_init+0x15a/0x180
[  178.177212][ T8833]  ? xdp_convert_md_to_buff+0x5b/0x330
[  178.182686][ T8833]  bpf_prog_test_run_xdp+0x80e/0x11b0
[  178.188079][ T8833]  ? __pfx_lock_release+0x10/0x10
[  178.193132][ T8833]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  178.198958][ T8833]  ? __fget_files+0x29/0x470
[  178.203572][ T8833]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  178.209391][ T8833]  bpf_prog_test_run+0x33a/0x3b0
[  178.214341][ T8833]  __sys_bpf+0x48d/0x810
[  178.218605][ T8833]  ? __pfx___sys_bpf+0x10/0x10
[  178.223424][ T8833]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  178.229419][ T8833]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  178.235758][ T8833]  ? do_syscall_64+0x100/0x230
[  178.240538][ T8833]  __x64_sys_bpf+0x7c/0x90
[  178.244993][ T8833]  do_syscall_64+0xf3/0x230
[  178.249508][ T8833]  ? clear_bhb_loop+0x35/0x90
[  178.254203][ T8833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.260112][ T8833] RIP: 0033:0x7fdf47175bd9
[  178.264622][ T8833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.284238][ T8833] RSP: 002b:00007fdf47ecd048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  178.292674][ T8833] RAX: ffffffffffffffda RBX: 00007fdf47303f60 RCX: 00007fdf47175bd9
[  178.300656][ T8833] RDX: 0000000000000050 RSI: 0000000020000640 RDI: 000000000000000a
[  178.308633][ T8833] RBP: 00007fdf47ecd0a0 R08: 0000000000000000 R09: 0000000000000000
[  178.316615][ T8833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  178.324619][ T8833] R13: 000000000000000b R14: 00007fdf47303f60 R15: 00007ffd69d34b18
[  178.332614][ T8833]  </TASK>
[  178.351403][ T4490] Bluetooth: hci2: command tx timeout
[  178.444548][ T8836] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1181'.
[  178.770402][ T8771] chnl_net:caif_netlink_parms(): no params data found
[  178.876935][ T8860] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1188'.
[  178.877178][ T8857] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1187'.
[  179.175722][ T8865] netlink: 134312 bytes leftover after parsing attributes in process `syz.3.1189'.
[  179.205830][ T8865] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  179.218376][ T8865] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  179.264034][ T2864] hsr_slave_0: left promiscuous mode
[  179.281477][ T2864] hsr_slave_1: left promiscuous mode
[  179.309200][ T2864] veth0_macvtap: left promiscuous mode
[  179.315000][ T2864] veth1_vlan: left promiscuous mode
[  179.320692][ T2864] veth0_vlan: left promiscuous mode
[  179.925596][ T2864] team0 (unregistering): Port device team_slave_1 removed
[  179.968853][ T2864] team0 (unregistering): Port device team_slave_0 removed
[  180.408470][ T4490] Bluetooth: hci2: command tx timeout
[  180.436711][ T8890] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1193'.
[  180.635759][ T8771] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.645416][ T8905] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  180.663295][ T8771] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.672567][ T8771] bridge_slave_0: entered allmulticast mode
[  180.685099][ T8771] bridge_slave_0: entered promiscuous mode
[  180.729026][ T8898] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  180.767470][ T8771] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.782617][ T8771] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.802037][ T8771] bridge_slave_1: entered allmulticast mode
[  180.810324][ T8771] bridge_slave_1: entered promiscuous mode
[  180.894685][ T8771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  180.932780][ T8771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  181.084077][ T8771] team0: Port device team_slave_0 added
[  181.099450][ T8771] team0: Port device team_slave_1 added
[  181.173451][ T8771] batman_adv: batadv0: Adding interface: batadv_slave_0
[  181.182630][ T8771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  181.226062][ T8771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  181.254816][ T8918] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  181.281579][ T8771] batman_adv: batadv0: Adding interface: batadv_slave_1
[  181.292328][ T8918] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  181.302527][ T8771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  181.341756][ T8771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  181.382857][ T8933] bridge1: the hash_elasticity option has been deprecated and is always 16
[  181.641448][ T8771] hsr_slave_0: entered promiscuous mode
[  181.652467][ T8771] hsr_slave_1: entered promiscuous mode
[  181.672892][ T8771] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  181.692661][ T8771] Cannot create hsr debugfs directory
[  182.025548][ T8960] __nla_validate_parse: 7 callbacks suppressed
[  182.025570][ T8960] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1215'.
[  182.056453][ T8963] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  182.124917][ T8963] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  182.155092][ T8965] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1217'.
[  182.248861][ T8968] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1219'.
[  182.486771][ T4490] Bluetooth: hci2: command tx timeout
[  182.835729][ T8990] netlink: 134312 bytes leftover after parsing attributes in process `syz.4.1223'.
[  182.868743][ T8990] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  182.901903][ T8990] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  183.063942][ T8771] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  183.093550][ T8771] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  183.111506][ T8771] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  183.144901][ T8771] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  183.155520][ T9015] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1229'.
[  183.499440][ T8771] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.577875][ T8771] 8021q: adding VLAN 0 to HW filter on device team0
[  183.624459][ T5221] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.631678][ T5221] bridge0: port 1(bridge_slave_0) entered forwarding state
[  183.674126][ T5221] bridge0: port 2(bridge_slave_1) entered blocking state
[  183.681346][ T5221] bridge0: port 2(bridge_slave_1) entered forwarding state
[  183.814045][ T9032] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  183.916404][ T9032] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  184.272663][ T8771] 8021q: adding VLAN 0 to HW filter on device batadv0
[  184.301061][ T9065] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1241'.
[  184.433075][ T8771] veth0_vlan: entered promiscuous mode
[  184.495307][ T8771] veth1_vlan: entered promiscuous mode
[  184.566630][ T4490] Bluetooth: hci2: command tx timeout
[  184.595800][ T9069] netlink: 134312 bytes leftover after parsing attributes in process `syz.4.1242'.
[  184.618364][ T9069] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  184.637036][ T8771] veth0_macvtap: entered promiscuous mode
[  184.672156][ T8771] veth1_macvtap: entered promiscuous mode
[  184.679635][ T9069] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  184.731049][ T8771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  184.741972][ T8771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.760414][ T8771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  184.781595][ T9083] ip6t_srh: unknown srh match flags  4001
[  184.788112][ T8771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.804566][ T8771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  184.822542][ T8771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.862315][ T8771] batman_adv: batadv0: Interface activated: batadv_slave_0
[  184.896962][ T9083] netlink: 'syz.3.1243': attribute type 11 has an invalid length.
[  184.924678][ T8771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  184.948947][ T8771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.979577][ T8771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.021328][ T8771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.052916][ T8771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.085750][ T8771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.105532][ T8771] batman_adv: batadv0: Interface activated: batadv_slave_1
[  185.190042][ T8771] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  185.230394][ T8771] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  185.267031][ T8771] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  185.277622][ T8771] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  185.463955][ T9109] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1249'.
[  185.562727][ T9116] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  185.594873][ T2850] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  185.633382][ T2850] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  185.714920][ T7139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  185.742758][ T7139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  185.792342][ T9116] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  185.870504][ T9121] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1253'.
[  186.394716][ T9154] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1262'.
[  186.983451][ T9192] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  187.018028][ T9198] netlink: 'syz.4.1275': attribute type 6 has an invalid length.
[  187.044336][ T9198] netlink: 'syz.4.1275': attribute type 5 has an invalid length.
[  187.050448][ T9192] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  187.062835][ T9198] __nla_validate_parse: 2 callbacks suppressed
[  187.062853][ T9198] netlink: 43 bytes leftover after parsing attributes in process `syz.4.1275'.
[  187.133154][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  187.725311][ T9186] delete_channel: no stack
[  187.828457][ T9228] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1282'.
[  187.873183][ T9227] netlink: 'syz.0.1281': attribute type 29 has an invalid length.
[  188.019462][ T9237] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1284'.
[  188.394396][ T9258] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  188.435837][ T9261] xt_CT: You must specify a L4 protocol and not use inversions on it
[  188.444777][ T9258] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  188.566702][ T9266] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1297'.
[  188.779143][ T9277] FAULT_INJECTION: forcing a failure.
[  188.779143][ T9277] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  188.793041][ T9277] CPU: 0 PID: 9277 Comm: syz.3.1300 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  188.803156][ T9277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  188.813247][ T9277] Call Trace:
[  188.816545][ T9277]  <TASK>
[  188.819500][ T9277]  dump_stack_lvl+0x241/0x360
[  188.824217][ T9277]  ? __pfx_dump_stack_lvl+0x10/0x10
[  188.829458][ T9277]  ? __pfx__printk+0x10/0x10
[  188.834100][ T9277]  ? __pfx_lock_release+0x10/0x10
[  188.839161][ T9277]  ? tomoyo_path_number_perm+0x71a/0x880
[  188.844844][ T9277]  should_fail_ex+0x3b0/0x4e0
[  188.849576][ T9277]  _copy_from_user+0x2f/0xe0
[  188.854197][ T9277]  wext_handle_ioctl+0xf2/0x270
[  188.859083][ T9277]  ? __pfx_wext_handle_ioctl+0x10/0x10
[  188.864573][ T9277]  sock_ioctl+0x17f/0x8e0
[  188.868918][ T9277]  ? __pfx_sock_ioctl+0x10/0x10
[  188.873863][ T9277]  ? __fget_files+0x29/0x470
[  188.878467][ T9277]  ? __fget_files+0x3f6/0x470
[  188.883160][ T9277]  ? __fget_files+0x29/0x470
[  188.887784][ T9277]  ? bpf_lsm_file_ioctl+0x9/0x10
[  188.892733][ T9277]  ? security_file_ioctl+0x87/0xb0
[  188.897859][ T9277]  ? __pfx_sock_ioctl+0x10/0x10
[  188.902720][ T9277]  __se_sys_ioctl+0xfc/0x170
[  188.907325][ T9277]  do_syscall_64+0xf3/0x230
[  188.911838][ T9277]  ? clear_bhb_loop+0x35/0x90
[  188.916532][ T9277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.922434][ T9277] RIP: 0033:0x7f5ae0575bd9
[  188.926858][ T9277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.946557][ T9277] RSP: 002b:00007f5ae12f0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  188.954981][ T9277] RAX: ffffffffffffffda RBX: 00007f5ae0703f60 RCX: 00007f5ae0575bd9
[  188.962961][ T9277] RDX: 0000000020000040 RSI: 0000000000008b22 RDI: 0000000000000005
[  188.970943][ T9277] RBP: 00007f5ae12f00a0 R08: 0000000000000000 R09: 0000000000000000
[  188.978922][ T9277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.986898][ T9277] R13: 000000000000000b R14: 00007f5ae0703f60 R15: 00007fff45c99bf8
[  188.994887][ T9277]  </TASK>
[  189.274844][ T9290] A link change request failed with some changes committed already. Interface batadv_slave_1 may have been left with an inconsistent configuration, please check.
[  189.381096][ T9294] FAULT_INJECTION: forcing a failure.
[  189.381096][ T9294] name failslab, interval 1, probability 0, space 0, times 0
[  189.414448][ T9294] CPU: 0 PID: 9294 Comm: syz.3.1308 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  189.424564][ T9294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  189.434653][ T9294] Call Trace:
[  189.437969][ T9294]  <TASK>
[  189.440930][ T9294]  dump_stack_lvl+0x241/0x360
[  189.445662][ T9294]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.450897][ T9294]  ? __pfx__printk+0x10/0x10
[  189.455551][ T9294]  ? netlink_insert+0x10b7/0x14b0
[  189.460612][ T9294]  should_fail_ex+0x3b0/0x4e0
[  189.465421][ T9294]  ? __alloc_skb+0x1c3/0x440
[  189.470056][ T9294]  should_failslab+0x9/0x20
[  189.474605][ T9294]  kmem_cache_alloc_node_noprof+0x71/0x320
[  189.480468][ T9294]  __alloc_skb+0x1c3/0x440
[  189.484952][ T9294]  ? __pfx___alloc_skb+0x10/0x10
[  189.489941][ T9294]  ? netlink_autobind+0xd6/0x2f0
[  189.494918][ T9294]  ? netlink_autobind+0x2b0/0x2f0
[  189.499994][ T9294]  netlink_sendmsg+0x638/0xcb0
[  189.504813][ T9294]  ? __pfx_netlink_sendmsg+0x10/0x10
[  189.510170][ T9294]  ? __import_iovec+0x536/0x820
[  189.515057][ T9294]  ? aa_sock_msg_perm+0x91/0x160
[  189.520043][ T9294]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  189.525361][ T9294]  ? security_socket_sendmsg+0x87/0xb0
[  189.530865][ T9294]  ? __pfx_netlink_sendmsg+0x10/0x10
[  189.536201][ T9294]  __sock_sendmsg+0x221/0x270
[  189.540924][ T9294]  ____sys_sendmsg+0x525/0x7d0
[  189.545757][ T9294]  ? __pfx_____sys_sendmsg+0x10/0x10
[  189.551201][ T9294]  __sys_sendmsg+0x2b0/0x3a0
[  189.555846][ T9294]  ? __pfx___sys_sendmsg+0x10/0x10
[  189.561008][ T9294]  ? vfs_write+0x7c4/0xc90
[  189.565519][ T9294]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  189.571886][ T9294]  ? do_syscall_64+0x100/0x230
[  189.576692][ T9294]  ? do_syscall_64+0xb6/0x230
[  189.581409][ T9294]  do_syscall_64+0xf3/0x230
[  189.585950][ T9294]  ? clear_bhb_loop+0x35/0x90
[  189.590676][ T9294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.596608][ T9294] RIP: 0033:0x7f5ae0575bd9
[  189.601055][ T9294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.620694][ T9294] RSP: 002b:00007f5ae12f0048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  189.629123][ T9294] RAX: ffffffffffffffda RBX: 00007f5ae0703f60 RCX: 00007f5ae0575bd9
[  189.629146][ T9294] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000003
[  189.629163][ T9294] RBP: 00007f5ae12f00a0 R08: 0000000000000000 R09: 0000000000000000
[  189.629185][ T9294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  189.629201][ T9294] R13: 000000000000000b R14: 00007f5ae0703f60 R15: 00007fff45c99bf8
[  189.629235][ T9294]  </TASK>
[  189.655974][ T9310] syz.1.1314[9310] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  189.685759][ T9310] syz.1.1314[9310] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  189.763736][ T9315] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  189.811790][ T9315] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  190.364765][ T9331] netlink: 'syz.2.1321': attribute type 15 has an invalid length.
[  190.374727][ T9331] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1321'.
[  190.575018][ T9338] FAULT_INJECTION: forcing a failure.
[  190.575018][ T9338] name failslab, interval 1, probability 0, space 0, times 0
[  190.589202][ T9338] CPU: 0 PID: 9338 Comm: syz.0.1324 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  190.599313][ T9338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  190.609401][ T9338] Call Trace:
[  190.612709][ T9338]  <TASK>
[  190.615661][ T9338]  dump_stack_lvl+0x241/0x360
[  190.620348][ T9338]  ? __pfx_dump_stack_lvl+0x10/0x10
[  190.625567][ T9338]  ? __pfx__printk+0x10/0x10
[  190.630224][ T9338]  ? netlink_insert+0x10b7/0x14b0
[  190.635287][ T9338]  should_fail_ex+0x3b0/0x4e0
[  190.640018][ T9338]  ? __alloc_skb+0x1c3/0x440
[  190.644654][ T9338]  should_failslab+0x9/0x20
[  190.649222][ T9338]  kmem_cache_alloc_node_noprof+0x71/0x320
[  190.655090][ T9338]  __alloc_skb+0x1c3/0x440
[  190.659553][ T9338]  ? __pfx___alloc_skb+0x10/0x10
[  190.664511][ T9338]  ? netlink_autobind+0xd6/0x2f0
[  190.669474][ T9338]  ? netlink_autobind+0x2b0/0x2f0
[  190.674526][ T9338]  netlink_sendmsg+0x638/0xcb0
[  190.679319][ T9338]  ? __pfx_netlink_sendmsg+0x10/0x10
[  190.684629][ T9338]  ? __import_iovec+0x536/0x820
[  190.689497][ T9338]  ? aa_sock_msg_perm+0x91/0x160
[  190.694459][ T9338]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  190.699755][ T9338]  ? security_socket_sendmsg+0x87/0xb0
[  190.705231][ T9338]  ? __pfx_netlink_sendmsg+0x10/0x10
[  190.710546][ T9338]  __sock_sendmsg+0x221/0x270
[  190.715241][ T9338]  ____sys_sendmsg+0x525/0x7d0
[  190.720034][ T9338]  ? __pfx_____sys_sendmsg+0x10/0x10
[  190.725351][ T9338]  __sys_sendmsg+0x2b0/0x3a0
[  190.729957][ T9338]  ? __pfx___sys_sendmsg+0x10/0x10
[  190.735111][ T9338]  ? preempt_schedule_notrace+0x100/0x140
[  190.740844][ T9338]  ? __pfx_preempt_schedule_notrace+0x10/0x10
[  190.746941][ T9338]  ? preempt_schedule_notrace_thunk+0x1a/0x30
[  190.753019][ T9338]  ? rcu_is_watching+0x15/0xb0
[  190.757792][ T9338]  ? trace_sys_enter+0x1f/0xd0
[  190.762569][ T9338]  do_syscall_64+0xf3/0x230
[  190.767087][ T9338]  ? clear_bhb_loop+0x35/0x90
[  190.771789][ T9338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.777700][ T9338] RIP: 0033:0x7f9088175bd9
[  190.782125][ T9338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.801836][ T9338] RSP: 002b:00007f9088f5e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  190.810270][ T9338] RAX: ffffffffffffffda RBX: 00007f9088303f60 RCX: 00007f9088175bd9
[  190.818250][ T9338] RDX: 0000000000008014 RSI: 00000000200003c0 RDI: 0000000000000003
[  190.826250][ T9338] RBP: 00007f9088f5e0a0 R08: 0000000000000000 R09: 0000000000000000
[  190.834225][ T9338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.842200][ T9338] R13: 000000000000004d R14: 00007f9088303f60 R15: 00007ffff58e8438
[  190.850197][ T9338]  </TASK>
[  190.867721][ T9324] FAULT_INJECTION: forcing a failure.
[  190.867721][ T9324] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.915087][ T9324] CPU: 0 PID: 9324 Comm: syz.4.1318 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  190.925202][ T9324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  190.935288][ T9324] Call Trace:
[  190.938596][ T9324]  <TASK>
[  190.941559][ T9324]  dump_stack_lvl+0x241/0x360
[  190.946283][ T9324]  ? __pfx_dump_stack_lvl+0x10/0x10
[  190.951523][ T9324]  ? __pfx__printk+0x10/0x10
[  190.956249][ T9324]  ? __pfx_lock_release+0x10/0x10
[  190.961322][ T9324]  should_fail_ex+0x3b0/0x4e0
[  190.966060][ T9324]  set_fd_set+0x3a/0xa0
[  190.970263][ T9324]  core_sys_select+0x72c/0x910
[  190.975098][ T9324]  ? __pfx_core_sys_select+0x10/0x10
[  190.980405][ T9324]  ? __pfx_bstr_printf+0x10/0x10
[  190.985379][ T9324]  ? __pfx_set_user_sigmask+0x10/0x10
[  190.990757][ T9324]  ? read_tsc+0x9/0x20
[  190.994858][ T9324]  ? ktime_get_mono_fast_ns+0x303/0x320
[  191.000428][ T9324]  __se_sys_pselect6+0x319/0x3f0
[  191.005385][ T9324]  ? __pfx___se_sys_pselect6+0x10/0x10
[  191.010863][ T9324]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  191.017211][ T9324]  ? rcu_is_watching+0x15/0xb0
[  191.021983][ T9324]  ? __x64_sys_pselect6+0x21/0xf0
[  191.027027][ T9324]  do_syscall_64+0xf3/0x230
[  191.031572][ T9324]  ? clear_bhb_loop+0x35/0x90
[  191.036262][ T9324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.042165][ T9324] RIP: 0033:0x7fdf47175bd9
[  191.046586][ T9324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.066198][ T9324] RSP: 002b:00007fdf47eac048 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  191.074618][ T9324] RAX: ffffffffffffffda RBX: 00007fdf47304038 RCX: 00007fdf47175bd9
[  191.082593][ T9324] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000040
[  191.090569][ T9324] RBP: 00007fdf47eac0a0 R08: 0000000000000000 R09: 0000000000000000
[  191.098545][ T9324] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000001
[  191.106522][ T9324] R13: 000000000000006e R14: 00007fdf47304038 R15: 00007ffd69d34b18
[  191.114515][ T9324]  </TASK>
[  191.161721][ T9345] FAULT_INJECTION: forcing a failure.
[  191.161721][ T9345] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  191.177736][ T9345] CPU: 0 PID: 9345 Comm: syz.2.1326 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  191.179933][ T9342] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1325'.
[  191.187828][ T9345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  191.187873][ T9345] Call Trace:
[  191.210141][ T9345]  <TASK>
[  191.213079][ T9345]  dump_stack_lvl+0x241/0x360
[  191.217776][ T9345]  ? __pfx_dump_stack_lvl+0x10/0x10
[  191.222985][ T9345]  ? __pfx__printk+0x10/0x10
[  191.227599][ T9345]  ? snprintf+0xda/0x120
[  191.231877][ T9345]  should_fail_ex+0x3b0/0x4e0
[  191.236576][ T9345]  _copy_to_user+0x2f/0xb0
[  191.241002][ T9345]  simple_read_from_buffer+0xca/0x150
[  191.246403][ T9345]  proc_fail_nth_read+0x1e9/0x250
[  191.251438][ T9345]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  191.256994][ T9345]  ? rw_verify_area+0x520/0x6b0
[  191.261856][ T9345]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  191.267409][ T9345]  vfs_read+0x204/0xbc0
[  191.271572][ T9345]  ? __pfx_lock_release+0x10/0x10
[  191.276610][ T9345]  ? __pfx_vfs_read+0x10/0x10
[  191.281301][ T9345]  ? __fget_files+0x29/0x470
[  191.285909][ T9345]  ? __fget_files+0x3f6/0x470
[  191.290623][ T9345]  ksys_read+0x1a0/0x2c0
[  191.294881][ T9345]  ? __pfx_ksys_read+0x10/0x10
[  191.299654][ T9345]  ? do_syscall_64+0x100/0x230
[  191.304430][ T9345]  ? do_syscall_64+0xb6/0x230
[  191.309122][ T9345]  do_syscall_64+0xf3/0x230
[  191.313632][ T9345]  ? clear_bhb_loop+0x35/0x90
[  191.318322][ T9345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.324225][ T9345] RIP: 0033:0x7f94789746bc
[  191.328649][ T9345] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  191.348267][ T9345] RSP: 002b:00007f9479778040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  191.356694][ T9345] RAX: ffffffffffffffda RBX: 00007f9478b03f60 RCX: 00007f94789746bc
[  191.364676][ T9345] RDX: 000000000000000f RSI: 00007f94797780b0 RDI: 0000000000000004
[  191.372653][ T9345] RBP: 00007f94797780a0 R08: 0000000000000000 R09: 0000000000000000
[  191.380630][ T9345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.388609][ T9345] R13: 000000000000004d R14: 00007f9478b03f60 R15: 00007ffd98d132a8
[  191.396602][ T9345]  </TASK>
[  191.542661][ T9350] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1328'.
[  191.696810][ T9365] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  191.727927][ T9365] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  191.870838][ T9372] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1336'.
[  191.927066][ T9376] x_tables: duplicate underflow at hook 1
[  191.954105][ T9376] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1338'.
[  192.055132][ T9382] netlink: 'syz.0.1338': attribute type 3 has an invalid length.
[  192.081275][ T9382] Bluetooth: hci3: invalid len left 7, exp >= 220
[  192.227419][ T9384] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1340'.
[  192.257920][ T9384] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  192.365166][ T9393] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1342'.
[  192.977767][ T9418] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  192.988634][ T9421] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  193.026537][ T9423] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  193.097411][ T9424] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  193.133966][ T9427] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  193.239448][   T53] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  193.251416][   T53] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  193.263086][   T53] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  193.273943][   T53] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  193.289652][ T9432] netlink: 'syz.1.1354': attribute type 5 has an invalid length.
[  193.297841][   T53] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  193.306545][   T53] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  194.493060][ T1246] ieee802154 phy0 wpan0: encryption failed: -22
[  194.499722][ T1246] ieee802154 phy1 wpan1: encryption failed: -22
[  194.724485][ T9429] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1354'.
[  194.759144][ T9432] : entered promiscuous mode
[  194.776666][ T9433] netlink: 116 bytes leftover after parsing attributes in process `syz.1.1354'.
[  194.784788][ T9447] FAULT_INJECTION: forcing a failure.
[  194.784788][ T9447] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.785812][ T9433] bridge_slave_1: left allmulticast mode
[  194.801257][ T9447] CPU: 0 PID: 9447 Comm: syz.2.1357 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  194.815656][ T9447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  194.824867][ T9433] bridge_slave_1: left promiscuous mode
[  194.825720][ T9447] Call Trace:
[  194.825733][ T9447]  <TASK>
[  194.832330][ T9433] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.834530][ T9447]  dump_stack_lvl+0x241/0x360
[  194.834569][ T9447]  ? __pfx_dump_stack_lvl+0x10/0x10
[  194.854575][ T9447]  ? __pfx__printk+0x10/0x10
[  194.859217][ T9447]  ? __pfx_lock_release+0x10/0x10
[  194.864287][ T9447]  should_fail_ex+0x3b0/0x4e0
[  194.869014][ T9447]  _copy_from_user+0x2f/0xe0
[  194.873645][ T9447]  copy_msghdr_from_user+0xae/0x680
[  194.878903][ T9447]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  194.884772][ T9447]  do_recvmmsg+0x40f/0xae0
[  194.889241][ T9447]  ? __pfx_lock_release+0x10/0x10
[  194.894306][ T9447]  ? __pfx_do_recvmmsg+0x10/0x10
[  194.899313][ T9447]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  194.905256][ T9447]  ? ksys_write+0x23e/0x2c0
[  194.909800][ T9447]  ? __pfx_lock_release+0x10/0x10
[  194.914874][ T9447]  ? vfs_write+0x7c4/0xc90
[  194.919336][ T9447]  ? __mutex_unlock_slowpath+0x21d/0x750
[  194.925027][ T9447]  ? __fget_files+0x3f6/0x470
[  194.929803][ T9447]  __x64_sys_recvmmsg+0x199/0x250
[  194.934850][ T9447]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  194.940405][ T9447]  ? do_syscall_64+0x100/0x230
[  194.945182][ T9447]  ? do_syscall_64+0xb6/0x230
[  194.949950][ T9447]  do_syscall_64+0xf3/0x230
[  194.954465][ T9447]  ? clear_bhb_loop+0x35/0x90
[  194.959180][ T9447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.965094][ T9447] RIP: 0033:0x7f9478975bd9
[  194.969508][ T9447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.989121][ T9447] RSP: 002b:00007f9479778048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  194.997554][ T9447] RAX: ffffffffffffffda RBX: 00007f9478b03f60 RCX: 00007f9478975bd9
[  195.005540][ T9447] RDX: 0000000000000002 RSI: 0000000020001840 RDI: 0000000000000003
[  195.013521][ T9447] RBP: 00007f94797780a0 R08: 0000000000000000 R09: 0000000000000000
[  195.021500][ T9447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  195.029475][ T9447] R13: 000000000000004d R14: 00007f9478b03f60 R15: 00007ffd98d132a8
[  195.037467][ T9447]  </TASK>
[  195.047357][ T9433] bridge_slave_0: left allmulticast mode
[  195.053047][ T9433] bridge_slave_0: left promiscuous mode
[  195.077520][ T9433] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.366796][ T5107] Bluetooth: hci1: command tx timeout
[  195.443958][ T9468] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  195.678323][ T9477] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  195.767214][ T9477] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  195.976879][ T9481] netlink: 134312 bytes leftover after parsing attributes in process `syz.2.1367'.
[  196.040841][ T9481] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  196.075104][ T9481] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  196.149610][ T9430] chnl_net:caif_netlink_parms(): no params data found
[  196.450262][ T9430] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.462922][ T9430] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.475124][ T9430] bridge_slave_0: entered allmulticast mode
[  196.485721][ T9430] bridge_slave_0: entered promiscuous mode
[  196.513503][ T9430] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.529602][ T9430] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.540620][ T9430] bridge_slave_1: entered allmulticast mode
[  196.566511][ T5107] Bluetooth: hci3: command 0x0406 tx timeout
[  196.572676][ T5107] Bluetooth: hci4: command 0x0406 tx timeout
[  196.575039][ T9430] bridge_slave_1: entered promiscuous mode
[  196.815069][ T9430] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  196.844534][ T9430] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  197.031025][ T9545] FAULT_INJECTION: forcing a failure.
[  197.031025][ T9545] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  197.113478][ T9545] CPU: 1 PID: 9545 Comm: syz.0.1379 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  197.123608][ T9545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  197.133705][ T9545] Call Trace:
[  197.137029][ T9545]  <TASK>
[  197.139997][ T9545]  dump_stack_lvl+0x241/0x360
[  197.144719][ T9545]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.148902][ T9430] team0: Port device team_slave_0 added
[  197.149933][ T9545]  ? __pfx__printk+0x10/0x10
[  197.149979][ T9545]  ? __pfx_lock_release+0x10/0x10
[  197.150014][ T9545]  should_fail_ex+0x3b0/0x4e0
[  197.169987][ T9545]  _copy_from_user+0x2f/0xe0
[  197.174611][ T9545]  copy_msghdr_from_user+0xae/0x680
[  197.179858][ T9545]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  197.185723][ T9545]  __sys_sendmsg+0x23d/0x3a0
[  197.190360][ T9545]  ? __pfx___sys_sendmsg+0x10/0x10
[  197.191709][ T9430] team0: Port device team_slave_1 added
[  197.195489][ T9545]  ? vfs_write+0x7c4/0xc90
[  197.205525][ T9545]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  197.211881][ T9545]  ? do_syscall_64+0x100/0x230
[  197.216667][ T9545]  ? do_syscall_64+0xb6/0x230
[  197.221354][ T9545]  do_syscall_64+0xf3/0x230
[  197.225875][ T9545]  ? clear_bhb_loop+0x35/0x90
[  197.230569][ T9545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.236475][ T9545] RIP: 0033:0x7f9088175bd9
[  197.240896][ T9545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.260515][ T9545] RSP: 002b:00007f9088f5e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  197.268943][ T9545] RAX: ffffffffffffffda RBX: 00007f9088303f60 RCX: 00007f9088175bd9
[  197.276922][ T9545] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  197.284896][ T9545] RBP: 00007f9088f5e0a0 R08: 0000000000000000 R09: 0000000000000000
[  197.292871][ T9545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  197.300849][ T9545] R13: 000000000000004d R14: 00007f9088303f60 R15: 00007ffff58e8438
[  197.308842][ T9545]  </TASK>
[  197.414128][ T9430] batman_adv: batadv0: Adding interface: batadv_slave_0
[  197.432394][ T9430] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  197.494138][   T53] Bluetooth: hci1: command tx timeout
[  197.496141][ T9430] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  197.557817][ T9559] FAULT_INJECTION: forcing a failure.
[  197.557817][ T9559] name failslab, interval 1, probability 0, space 0, times 0
[  197.588927][ T9430] batman_adv: batadv0: Adding interface: batadv_slave_1
[  197.622657][ T9430] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  197.664269][ T9568] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  197.677278][ T9559] CPU: 1 PID: 9559 Comm: syz.2.1384 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  197.687401][ T9559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  197.697483][ T9559] Call Trace:
[  197.700792][ T9559]  <TASK>
[  197.703752][ T9559]  dump_stack_lvl+0x241/0x360
[  197.708472][ T9559]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.713708][ T9559]  ? __pfx__printk+0x10/0x10
[  197.718352][ T9559]  ? netlink_insert+0x10b7/0x14b0
[  197.721357][ T9430] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  197.723400][ T9559]  should_fail_ex+0x3b0/0x4e0
[  197.738607][ T9559]  ? __alloc_skb+0x1c3/0x440
[  197.743239][ T9559]  should_failslab+0x9/0x20
[  197.747792][ T9559]  kmem_cache_alloc_node_noprof+0x71/0x320
[  197.753682][ T9559]  __alloc_skb+0x1c3/0x440
[  197.758159][ T9559]  ? __pfx___alloc_skb+0x10/0x10
[  197.763144][ T9559]  ? netlink_autobind+0xd6/0x2f0
[  197.768120][ T9559]  ? netlink_autobind+0x2b0/0x2f0
[  197.773188][ T9559]  netlink_sendmsg+0x638/0xcb0
[  197.777987][ T9559]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.783314][ T9559]  ? __import_iovec+0x536/0x820
[  197.788206][ T9559]  ? aa_sock_msg_perm+0x91/0x160
[  197.793193][ T9559]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  197.798549][ T9559]  ? security_socket_sendmsg+0x87/0xb0
[  197.804051][ T9559]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.809375][ T9559]  __sock_sendmsg+0x221/0x270
[  197.814096][ T9559]  ____sys_sendmsg+0x525/0x7d0
[  197.818920][ T9559]  ? __pfx_____sys_sendmsg+0x10/0x10
[  197.824272][ T9559]  __sys_sendmsg+0x2b0/0x3a0
[  197.828931][ T9559]  ? __pfx___sys_sendmsg+0x10/0x10
[  197.834082][ T9559]  ? vfs_write+0x7c4/0xc90
[  197.838586][ T9559]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  197.844961][ T9559]  ? do_syscall_64+0x100/0x230
[  197.849765][ T9559]  ? do_syscall_64+0xb6/0x230
[  197.854489][ T9559]  do_syscall_64+0xf3/0x230
[  197.859035][ T9559]  ? clear_bhb_loop+0x35/0x90
[  197.863757][ T9559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.869692][ T9559] RIP: 0033:0x7f9478975bd9
[  197.874142][ T9559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.893792][ T9559] RSP: 002b:00007f9479778048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  197.902252][ T9559] RAX: ffffffffffffffda RBX: 00007f9478b03f60 RCX: 00007f9478975bd9
[  197.910265][ T9559] RDX: 0000000000000000 RSI: 0000000020000980 RDI: 0000000000000004
[  197.918277][ T9559] RBP: 00007f94797780a0 R08: 0000000000000000 R09: 0000000000000000
[  197.926277][ T9559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  197.934372][ T9559] R13: 000000000000004d R14: 00007f9478b03f60 R15: 00007ffd98d132a8
[  197.942396][ T9559]  </TASK>
[  197.951316][ T9577] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  198.031188][ T9430] hsr_slave_0: entered promiscuous mode
[  198.038718][ T9430] hsr_slave_1: entered promiscuous mode
[  198.045270][ T9430] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  198.063214][ T9430] Cannot create hsr debugfs directory
[  198.144740][ T9564] netlink: 134312 bytes leftover after parsing attributes in process `syz.1.1385'.
[  198.173349][ T9564] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  198.188237][ T9564] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  198.443619][ T9430] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.651659][ T9430] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.757190][ T9603] FAULT_INJECTION: forcing a failure.
[  198.757190][ T9603] name failslab, interval 1, probability 0, space 0, times 0
[  198.793457][ T9603] CPU: 1 PID: 9603 Comm: syz.4.1392 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  198.795044][ T9430] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.803553][ T9603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  198.803571][ T9603] Call Trace:
[  198.803586][ T9603]  <TASK>
[  198.803596][ T9603]  dump_stack_lvl+0x241/0x360
[  198.803631][ T9603]  ? __pfx_dump_stack_lvl+0x10/0x10
[  198.803657][ T9603]  ? __pfx__printk+0x10/0x10
[  198.803696][ T9603]  ? __pfx___might_resched+0x10/0x10
[  198.803735][ T9603]  should_fail_ex+0x3b0/0x4e0
[  198.803774][ T9603]  should_failslab+0x9/0x20
[  198.859295][ T9603]  __kmalloc_node_noprof+0xdf/0x440
[  198.864539][ T9603]  ? vmemdup_user+0x42/0x1c0
[  198.869170][ T9603]  vmemdup_user+0x42/0x1c0
[  198.873597][ T9603]  map_get_next_key+0x224/0x640
[  198.878460][ T9603]  ? __might_fault+0xc6/0x120
[  198.883156][ T9603]  ? bpf_lsm_bpf+0x9/0x10
[  198.887504][ T9603]  __sys_bpf+0x72e/0x810
[  198.891768][ T9603]  ? __pfx___sys_bpf+0x10/0x10
[  198.896681][ T9603]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  198.902690][ T9603]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  198.909037][ T9603]  __x64_sys_bpf+0x7c/0x90
[  198.913472][ T9603]  do_syscall_64+0xf3/0x230
[  198.917985][ T9603]  ? clear_bhb_loop+0x35/0x90
[  198.922676][ T9603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.928586][ T9603] RIP: 0033:0x7fdf47175bd9
[  198.933006][ T9603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.952620][ T9603] RSP: 002b:00007fdf47ecd048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  198.961049][ T9603] RAX: ffffffffffffffda RBX: 00007fdf47303f60 RCX: 00007fdf47175bd9
[  198.969034][ T9603] RDX: 0000000000000020 RSI: 0000000020000080 RDI: 0000000000000004
[  198.977015][ T9603] RBP: 00007fdf47ecd0a0 R08: 0000000000000000 R09: 0000000000000000
[  198.984993][ T9603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.992968][ T9603] R13: 000000000000000b R14: 00007fdf47303f60 R15: 00007ffd69d34b18
[  199.000963][ T9603]  </TASK>
[  199.032718][ T9608] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  199.160954][ T9430] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.197202][ T9608] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  199.468726][ T9631] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  199.503350][ T9430] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  199.513833][ T9631] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  199.526803][   T53] Bluetooth: hci1: command tx timeout
[  199.537959][ T9430] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  199.544742][ T9629] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1400'.
[  199.561865][ T9430] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  199.572162][ T9430] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  199.754337][ T9430] 8021q: adding VLAN 0 to HW filter on device bond0
[  199.787848][ T9430] 8021q: adding VLAN 0 to HW filter on device team0
[  199.810978][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  199.818174][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  199.848059][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  199.855328][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  200.301737][ T9430] 8021q: adding VLAN 0 to HW filter on device batadv0
[  200.410961][ T9658] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1411'.
[  200.458186][ T9430] veth0_vlan: entered promiscuous mode
[  200.482211][ T9430] veth1_vlan: entered promiscuous mode
[  200.583350][ T9430] veth0_macvtap: entered promiscuous mode
[  200.614706][ T9665] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1412'.
[  200.627669][ T9430] veth1_macvtap: entered promiscuous mode
[  200.688227][ T9430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  200.713180][ T9430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.742592][ T9430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  200.760889][ T9430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.761376][ T9674] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  200.771982][ T9430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  200.797962][ T9430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.813372][ T9430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  200.833748][ T9430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.862499][ T9430] batman_adv: batadv0: Interface activated: batadv_slave_0
[  200.911381][ T9430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.922888][ T9668] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  200.933113][ T9430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.945714][ T9430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.957462][ T9430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.969701][ T9430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.980289][ T9430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.990180][ T9430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  201.001377][ T9430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  201.013169][ T9430] batman_adv: batadv0: Interface activated: batadv_slave_1
[  201.082098][ T9430] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  201.091794][ T9430] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  201.103930][ T9430] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  201.113142][ T9430] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  201.253996][ T5557] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  201.278512][ T5557] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  201.333506][ T5549] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  201.342809][ T5549] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  201.782044][ T9709] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1430'.
[  202.002896][ T9716] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  202.073946][ T9720] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  202.147071][ T9720] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  202.563428][ T9741] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1445'.
[  203.118249][ T9773] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1459'.
[  203.266670][ T9777] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1461'.
[  203.781855][ T9801] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1473'.
[  203.884316][ T9806] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1472'.
[  203.908682][ T9808] team0: entered promiscuous mode
[  204.099329][ T5557] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.485658][ T9807] team0: left promiscuous mode
[  204.878704][ T4490] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  204.897082][ T4490] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  204.909797][ T4490] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  204.925389][ T4490] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  204.934051][ T4490] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  204.942605][ T4490] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  205.435208][ T9858] team0: entered promiscuous mode
[  205.466228][ T9856] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1494'.
[  205.466409][ T9858] team_slave_1: entered promiscuous mode
[  206.032841][ T5557] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.069875][ T9869] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1500'.
[  206.276441][ T5557] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.303108][ T9857] team0: left promiscuous mode
[  206.309695][ T9857] team_slave_1: left promiscuous mode
[  206.404311][ T5557] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.550545][ T9834] chnl_net:caif_netlink_parms(): no params data found
[  206.595816][ T9899] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1510'.
[  206.747280][ T9906] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1514'.
[  206.751394][ T9909] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1513'.
[  206.865061][ T9834] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.886082][ T9834] bridge0: port 1(bridge_slave_0) entered disabled state
[  206.903507][ T9834] bridge_slave_0: entered allmulticast mode
[  206.914186][ T9834] bridge_slave_0: entered promiscuous mode
[  206.933052][ T5557] bridge_slave_1: left allmulticast mode
[  206.942643][ T5557] bridge_slave_1: left promiscuous mode
[  206.966444][ T5557] bridge0: port 2(bridge_slave_1) entered disabled state
[  206.966781][   T53] Bluetooth: hci1: command tx timeout
[  207.004189][ T5557] bridge_slave_0: left allmulticast mode
[  207.014862][ T5557] bridge_slave_0: left promiscuous mode
[  207.034875][ T5557] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.545640][ T5557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  207.563056][ T5557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  207.575044][ T5557] bond0 (unregistering): Released all slaves
[  207.632982][ T9834] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.643176][ T9834] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.650772][ T9834] bridge_slave_1: entered allmulticast mode
[  207.663434][ T9834] bridge_slave_1: entered promiscuous mode
[  207.934733][ T9834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  207.958717][ T9939] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1525'.
[  208.004749][ T9834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  208.186916][ T9956] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1531'.
[  208.238410][ T9834] team0: Port device team_slave_0 added
[  208.256527][ T9834] team0: Port device team_slave_1 added
[  208.284623][ T9962] ip6t_srh: unknown srh match flags  4001
[  208.473003][ T9966] netlink: 'syz.1.1534': attribute type 11 has an invalid length.
[  208.491358][ T9965] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1535'.
[  208.524148][ T9834] batman_adv: batadv0: Adding interface: batadv_slave_0
[  208.531374][ T9834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  208.631301][ T9834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  208.660211][ T9834] batman_adv: batadv0: Adding interface: batadv_slave_1
[  208.667547][ T9834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  208.709848][ T9834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  208.769111][ T5557] hsr_slave_0: left promiscuous mode
[  208.781206][ T5557] hsr_slave_1: left promiscuous mode
[  208.791539][ T5557] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  208.824841][ T5557] batman_adv: batadv0: Removing interface: batadv_slave_0
[  208.867334][ T5557] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  208.905486][ T5557] batman_adv: batadv0: Removing interface: batadv_slave_1
[  208.965879][ T5557] veth1_macvtap: left promiscuous mode
[  208.972284][ T5557] veth0_macvtap: left promiscuous mode
[  208.978141][ T5557] veth1_vlan: left promiscuous mode
[  208.983605][ T5557] veth0_vlan: left promiscuous mode
[  209.046509][   T53] Bluetooth: hci1: command tx timeout
[  209.648861][ T5557] team0 (unregistering): Port device team_slave_1 removed
[  209.685492][ T5557] team0 (unregistering): Port device team_slave_0 removed
[  210.382726][ T9834] hsr_slave_0: entered promiscuous mode
[  210.398460][ T9834] hsr_slave_1: entered promiscuous mode
[  210.414617][ T9834] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  210.433160][ T9834] Cannot create hsr debugfs directory
[  210.558425][T10014] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1548'.
[  210.768152][T10020] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  210.826903][T10020] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  211.127360][   T53] Bluetooth: hci1: command tx timeout
[  211.312438][ T9834] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  211.326781][ T9834] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  211.347672][ T9834] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  211.372171][ T9834] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  211.550578][T10051] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  211.600177][ T9834] 8021q: adding VLAN 0 to HW filter on device bond0
[  211.644038][ T9834] 8021q: adding VLAN 0 to HW filter on device team0
[  211.676430][ T1148] bridge0: port 1(bridge_slave_0) entered blocking state
[  211.683636][ T1148] bridge0: port 1(bridge_slave_0) entered forwarding state
[  211.712845][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state
[  211.720129][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state
[  212.017166][T10065] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1571'.
[  212.036955][T10071] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  212.071719][T10071] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  212.293463][ T9834] 8021q: adding VLAN 0 to HW filter on device batadv0
[  212.402614][ T9834] veth0_vlan: entered promiscuous mode
[  212.445296][ T9834] veth1_vlan: entered promiscuous mode
[  212.520147][ T9834] veth0_macvtap: entered promiscuous mode
[  212.548645][ T9834] veth1_macvtap: entered promiscuous mode
[  212.577088][T10090] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  212.598453][ T9834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  212.621277][ T9834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.637311][ T9834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  212.650241][ T9834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.671285][ T9834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  212.713484][ T9834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.738591][ T9834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  212.759182][ T9834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.780316][ T9834] batman_adv: batadv0: Interface activated: batadv_slave_0
[  212.805565][ T9834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.838998][ T9834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.864087][ T9834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.885496][ T9834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.913941][ T9834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.944219][ T9834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.954313][ T9834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.978702][ T9834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.012592][ T9834] batman_adv: batadv0: Interface activated: batadv_slave_1
[  213.087233][T10112] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  213.100320][T10097] netlink: 134312 bytes leftover after parsing attributes in process `syz.1.1581'.
[  213.115235][ T9834] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  213.128848][ T9834] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  213.138373][ T9834] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  213.147385][ T9834] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  213.167140][T10097] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  213.189090][T10097] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  213.206498][   T53] Bluetooth: hci1: command tx timeout
[  213.365534][ T5557] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  213.384983][ T5557] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.449355][ T5557] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  213.468643][ T5557] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.502831][T10131] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  213.726592][T10140] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1596'.
[  213.883085][T10148] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1600'.
[  214.002197][T10151] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  214.156864][T10158] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  214.322815][T10167] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1608'.
[  214.459438][T10175] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1612'.
[  214.768447][T10192] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  214.913066][T10202] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1622'.
[  215.182144][T10215] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1626'.
[  215.401196][T10228] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  215.559775][T10237] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1637'.
[  215.724653][T10245] netlink: 'syz.2.1642': attribute type 1 has an invalid length.
[  215.739234][T10245] netlink: 9348 bytes leftover after parsing attributes in process `syz.2.1642'.
[  215.975067][T10260] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  215.997436][T10264] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1648'.
[  216.147133][ T7139] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.469371][T10281] netlink: 'syz.4.1655': attribute type 1 has an invalid length.
[  216.485750][T10281] netlink: 9348 bytes leftover after parsing attributes in process `syz.4.1655'.
[  216.715256][T10291] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  216.795056][ T4490] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  216.804655][ T4490] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  216.820661][ T4490] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  216.830918][ T4490] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  216.847403][ T4490] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  216.858141][ T4490] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  217.433110][ T7139] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.641422][ T7139] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.656816][T10321] FAULT_INJECTION: forcing a failure.
[  217.656816][T10321] name failslab, interval 1, probability 0, space 0, times 0
[  217.690343][T10321] CPU: 1 PID: 10321 Comm: syz.1.1669 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  217.700552][T10321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  217.710631][T10321] Call Trace:
[  217.713940][T10321]  <TASK>
[  217.716903][T10321]  dump_stack_lvl+0x241/0x360
[  217.721622][T10321]  ? __pfx_dump_stack_lvl+0x10/0x10
[  217.726859][T10321]  ? __pfx__printk+0x10/0x10
[  217.731492][T10321]  ? __pfx___might_resched+0x10/0x10
[  217.736815][T10321]  ? validate_chain+0x11e/0x5900
[  217.741796][T10321]  should_fail_ex+0x3b0/0x4e0
[  217.746525][T10321]  should_failslab+0x9/0x20
[  217.751073][T10321]  kmalloc_node_trace_noprof+0x74/0x300
[  217.756655][T10321]  ? __get_vm_area_node+0x113/0x270
[  217.761890][T10321]  __get_vm_area_node+0x113/0x270
[  217.766954][T10321]  __vmalloc_node_range_noprof+0x3bc/0x1460
[  217.772889][T10321]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  217.778466][T10321]  ? mark_lock+0x9a/0x350
[  217.782850][T10321]  ? aa_get_newest_label+0xff/0x6f0
[  217.788123][T10321]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  217.794497][T10321]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  217.800073][T10321]  __vmalloc_noprof+0x79/0x90
[  217.804786][T10321]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  217.810369][T10321]  bpf_prog_alloc_no_stats+0x4d/0x4b0
[  217.815772][T10321]  ? bpf_prog_alloc+0x28/0x1b0
[  217.820576][T10321]  bpf_prog_alloc+0x3a/0x1b0
[  217.825204][T10321]  bpf_prog_load+0x7f7/0x20f0
[  217.829938][T10321]  ? __pfx_bpf_prog_load+0x10/0x10
[  217.835086][T10321]  ? __pfx___might_resched+0x10/0x10
[  217.840431][T10321]  ? __might_fault+0xc6/0x120
[  217.845156][T10321]  ? bpf_lsm_bpf+0x9/0x10
[  217.849523][T10321]  ? security_bpf+0x87/0xb0
[  217.854074][T10321]  __sys_bpf+0x4ee/0x810
[  217.858362][T10321]  ? __pfx___sys_bpf+0x10/0x10
[  217.863271][T10321]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  217.869289][T10321]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  217.875653][T10321]  ? do_syscall_64+0x100/0x230
[  217.880453][T10321]  __x64_sys_bpf+0x7c/0x90
[  217.884908][T10321]  do_syscall_64+0xf3/0x230
[  217.889452][T10321]  ? clear_bhb_loop+0x35/0x90
[  217.894176][T10321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.900104][T10321] RIP: 0033:0x7f63cdb75bd9
[  217.904547][T10321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.924267][T10321] RSP: 002b:00007f63ce8e1048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  217.925695][T10324] netlink: 'syz.4.1670': attribute type 1 has an invalid length.
[  217.932697][T10321] RAX: ffffffffffffffda RBX: 00007f63cdd03f60 RCX: 00007f63cdb75bd9
[  217.932721][T10321] RDX: 0000000000000090 RSI: 0000000020000040 RDI: 0000000000000005
[  217.932737][T10321] RBP: 00007f63ce8e10a0 R08: 0000000000000000 R09: 0000000000000000
[  217.932753][T10321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  217.932769][T10321] R13: 000000000000004d R14: 00007f63cdd03f60 R15: 00007ffdda208568
[  217.932805][T10321]  </TASK>
[  217.988343][T10321] syz.1.1669: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  218.040656][T10321] CPU: 1 PID: 10321 Comm: syz.1.1669 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  218.050858][T10321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  218.060945][T10321] Call Trace:
[  218.064264][T10321]  <TASK>
[  218.067227][T10321]  dump_stack_lvl+0x241/0x360
[  218.071955][T10321]  ? __pfx_dump_stack_lvl+0x10/0x10
[  218.077192][T10321]  ? __pfx__printk+0x10/0x10
[  218.081833][T10321]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  218.088289][T10321]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  218.094840][T10321]  warn_alloc+0x278/0x410
[  218.099223][T10321]  ? __pfx_warn_alloc+0x10/0x10
[  218.104127][T10321]  ? __get_vm_area_node+0x113/0x270
[  218.109364][T10321]  ? __get_vm_area_node+0x261/0x270
[  218.114607][T10321]  __vmalloc_node_range_noprof+0x3e0/0x1460
[  218.120537][T10321]  ? mark_lock+0x9a/0x350
[  218.124927][T10321]  ? aa_get_newest_label+0xff/0x6f0
[  218.130185][T10321]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  218.136657][T10321]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  218.142233][T10321]  __vmalloc_noprof+0x79/0x90
[  218.146951][T10321]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  218.152529][T10321]  bpf_prog_alloc_no_stats+0x4d/0x4b0
[  218.157931][T10321]  ? bpf_prog_alloc+0x28/0x1b0
[  218.162740][T10321]  bpf_prog_alloc+0x3a/0x1b0
[  218.167374][T10321]  bpf_prog_load+0x7f7/0x20f0
[  218.172101][T10321]  ? __pfx_bpf_prog_load+0x10/0x10
[  218.177248][T10321]  ? __pfx___might_resched+0x10/0x10
[  218.182594][T10321]  ? __might_fault+0xc6/0x120
[  218.187317][T10321]  ? bpf_lsm_bpf+0x9/0x10
[  218.191682][T10321]  ? security_bpf+0x87/0xb0
[  218.196228][T10321]  __sys_bpf+0x4ee/0x810
[  218.200518][T10321]  ? __pfx___sys_bpf+0x10/0x10
[  218.205343][T10321]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  218.211359][T10321]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  218.217718][T10321]  ? do_syscall_64+0x100/0x230
[  218.222526][T10321]  __x64_sys_bpf+0x7c/0x90
[  218.226987][T10321]  do_syscall_64+0xf3/0x230
[  218.231528][T10321]  ? clear_bhb_loop+0x35/0x90
[  218.236248][T10321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.242170][T10321] RIP: 0033:0x7f63cdb75bd9
[  218.246615][T10321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.266251][T10321] RSP: 002b:00007f63ce8e1048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  218.274703][T10321] RAX: ffffffffffffffda RBX: 00007f63cdd03f60 RCX: 00007f63cdb75bd9
[  218.282706][T10321] RDX: 0000000000000090 RSI: 0000000020000040 RDI: 0000000000000005
[  218.290709][T10321] RBP: 00007f63ce8e10a0 R08: 0000000000000000 R09: 0000000000000000
[  218.298709][T10321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  218.306712][T10321] R13: 000000000000004d R14: 00007f63cdd03f60 R15: 00007ffdda208568
[  218.314734][T10321]  </TASK>
[  218.359444][T10337] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  218.363771][T10321] Mem-Info:
[  218.376444][ T7139] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.383106][T10321] active_anon:3032 inactive_anon:0 isolated_anon:0
[  218.383106][T10321]  active_file:1806 inactive_file:38201 isolated_file:0
[  218.383106][T10321]  unevictable:768 dirty:281 writeback:0
[  218.383106][T10321]  slab_reclaimable:9416 slab_unreclaimable:100336
[  218.383106][T10321]  mapped:13450 shmem:1257 pagetables:625
[  218.383106][T10321]  sec_pagetables:0 bounce:0
[  218.383106][T10321]  kernel_misc_reclaimable:0
[  218.383106][T10321]  free:1405186 free_pcp:354 free_cma:0
[  218.435831][T10321] Node 0 active_anon:12228kB inactive_anon:0kB active_file:7224kB inactive_file:152728kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:53800kB dirty:1120kB writeback:0kB shmem:3492kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10428kB pagetables:2500kB sec_pagetables:0kB all_unreclaimable? no
[  218.517337][T10321] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  218.570606][T10321] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  218.614471][T10321] lowmem_reserve[]: 0 2571 2571 0 0
[  218.620260][T10321] Node 0 DMA32 free:1652792kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:12084kB inactive_anon:0kB active_file:7224kB inactive_file:152424kB unevictable:1536kB writepending:1116kB present:3129332kB managed:2659868kB mlocked:0kB bounce:0kB free_pcp:1936kB local_pcp:976kB free_cma:0kB
[  218.693202][T10293] chnl_net:caif_netlink_parms(): no params data found
[  218.716639][ T7139] bridge_slave_1: left allmulticast mode
[  218.722503][ T7139] bridge_slave_1: left promiscuous mode
[  218.736242][T10321] lowmem_reserve[]: 0 0 0 0 0
[  218.738462][ T7139] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.741007][T10321] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:304kB unevictable:0kB writepending:4kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[  218.786174][ T7139] bridge_slave_0: left allmulticast mode
[  218.795576][ T7139] bridge_slave_0: left promiscuous mode
[  218.805753][ T7139] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.835969][T10321] lowmem_reserve[]: 0 0 0 0 0
[  218.840753][T10321] Node 1 Normal free:3951776kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:4kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  218.876245][T10321] lowmem_reserve[]: 0 0 0 0 0
[  218.889376][T10321] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  218.890249][ T4490] Bluetooth: hci1: command tx timeout
[  218.908603][T10321] Node 0 DMA32: 128*4kB (UM) 265*8kB (UME) 81*16kB (M) 91*32kB (UME) 79*64kB (UME) 37*128kB (UME) 22*256kB (UM) 9*512kB (UME) 11*1024kB (UM) 4*2048kB (ME) 392*4096kB (M) = 1651960kB
[  218.928821][T10321] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  218.940769][T10321] Node 1 Normal: 4*4kB (UM) 6*8kB (UM) 12*16kB (UM) 13*32kB (UM) 6*64kB (UM) 5*128kB (UM) 4*256kB (U) 3*512kB (UM) 1*1024kB (U) 3*2048kB (U) 962*4096kB (M) = 3951776kB
[  218.958091][T10321] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  218.969105][T10321] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  218.978558][T10321] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  218.988343][T10321] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  219.000655][T10321] 41264 total pagecache pages
[  219.005377][T10321] 0 pages in swap cache
[  219.009654][T10321] Free swap  = 124996kB
[  219.013987][T10321] Total swap = 124996kB
[  219.018246][T10321] 2097051 pages RAM
[  219.022069][T10321] 0 pages HighMem/MovableOnly
[  219.026829][T10321] 400874 pages reserved
[  219.031005][T10321] 0 pages cma reserved
[  219.126590][T10357] __nla_validate_parse: 3 callbacks suppressed
[  219.126611][T10357] netlink: 134312 bytes leftover after parsing attributes in process `syz.2.1680'.
[  219.273605][T10362] FAULT_INJECTION: forcing a failure.
[  219.273605][T10362] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  219.297844][T10362] CPU: 1 PID: 10362 Comm: syz.4.1684 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  219.308044][T10362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  219.318136][T10362] Call Trace:
[  219.321447][T10362]  <TASK>
[  219.324406][T10362]  dump_stack_lvl+0x241/0x360
[  219.329092][T10362]  ? __pfx_dump_stack_lvl+0x10/0x10
[  219.334309][T10362]  ? __pfx__printk+0x10/0x10
[  219.338939][T10362]  ? __pfx_lock_release+0x10/0x10
[  219.343977][T10362]  should_fail_ex+0x3b0/0x4e0
[  219.348682][T10362]  _copy_to_user+0x2f/0xb0
[  219.353136][T10362]  bpf_prog_test_run_syscall+0x34b/0x4e0
[  219.358790][T10362]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[  219.364958][T10362]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[  219.371140][T10362]  bpf_prog_test_run+0x33a/0x3b0
[  219.376106][T10362]  __sys_bpf+0x48d/0x810
[  219.380366][T10362]  ? __pfx___sys_bpf+0x10/0x10
[  219.385152][T10362]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  219.391139][T10362]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  219.397471][T10362]  ? do_syscall_64+0x100/0x230
[  219.402240][T10362]  __x64_sys_bpf+0x7c/0x90
[  219.406687][T10362]  do_syscall_64+0xf3/0x230
[  219.411279][T10362]  ? clear_bhb_loop+0x35/0x90
[  219.415976][T10362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.421900][T10362] RIP: 0033:0x7fdf47175bd9
[  219.426329][T10362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.445981][T10362] RSP: 002b:00007fdf47ecd048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  219.454451][T10362] RAX: ffffffffffffffda RBX: 00007fdf47303f60 RCX: 00007fdf47175bd9
[  219.462447][T10362] RDX: 000000000000000c RSI: 0000000020000000 RDI: 000000000000000a
[  219.470424][T10362] RBP: 00007fdf47ecd0a0 R08: 0000000000000000 R09: 0000000000000000
[  219.478406][T10362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.486475][T10362] R13: 000000000000000b R14: 00007fdf47303f60 R15: 00007ffd69d34b18
[  219.494479][T10362]  </TASK>
[  219.559871][T10366] netlink: 'syz.4.1685': attribute type 1 has an invalid length.
[  219.568140][T10366] netlink: 9348 bytes leftover after parsing attributes in process `syz.4.1685'.
[  219.690608][T10369] ip6t_srh: unknown srh match flags  4001
[  219.743081][ T7139] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  219.762460][ T7139] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  219.778127][ T7139] bond0 (unregistering): Released all slaves
[  219.808070][T10357] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  219.821921][T10357] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  219.822459][T10369] netlink: 'syz.4.1686': attribute type 11 has an invalid length.
[  219.974926][T10375] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  220.051213][T10378] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1688'.
[  220.293027][T10293] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.312493][T10293] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.324195][T10293] bridge_slave_0: entered allmulticast mode
[  220.335616][T10293] bridge_slave_0: entered promiscuous mode
[  220.360363][T10293] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.376257][T10293] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.412583][T10293] bridge_slave_1: entered allmulticast mode
[  220.437853][T10293] bridge_slave_1: entered promiscuous mode
[  220.582216][T10401] netlink: 'syz.2.1696': attribute type 1 has an invalid length.
[  220.622213][T10401] netlink: 9348 bytes leftover after parsing attributes in process `syz.2.1696'.
[  220.666030][T10293] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  220.685397][T10406] netlink: 134312 bytes leftover after parsing attributes in process `syz.0.1697'.
[  220.749269][ T7139] hsr_slave_0: left promiscuous mode
[  220.767666][ T7139] hsr_slave_1: left promiscuous mode
[  220.775107][ T7139] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  220.777047][T10410] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  220.802615][ T7139] batman_adv: batadv0: Removing interface: batadv_slave_0
[  220.812831][ T7139] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  220.821306][ T7139] batman_adv: batadv0: Removing interface: batadv_slave_1
[  220.859576][ T7139] veth1_macvtap: left promiscuous mode
[  220.865440][ T7139] veth0_macvtap: left promiscuous mode
[  220.871434][ T7139] veth1_vlan: left promiscuous mode
[  220.877156][ T7139] veth0_vlan: left promiscuous mode
[  220.966900][ T4490] Bluetooth: hci1: command tx timeout
[  221.572721][ T7139] team0 (unregistering): Port device team_slave_1 removed
[  221.623006][ T7139] team0 (unregistering): Port device team_slave_0 removed
[  222.029850][T10293] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  222.043384][T10406] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  222.056981][T10406] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  222.071128][T10416] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1701'.
[  222.234048][T10436] netlink: 'syz.1.1709': attribute type 1 has an invalid length.
[  222.243716][T10433] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  222.245748][T10293] team0: Port device team_slave_0 added
[  222.260616][T10438] ip6t_srh: unknown srh match flags  4001
[  222.262955][T10436] netlink: 9348 bytes leftover after parsing attributes in process `syz.1.1709'.
[  222.282512][T10438] netlink: 'syz.0.1708': attribute type 11 has an invalid length.
[  222.297853][T10293] team0: Port device team_slave_1 added
[  222.432771][T10293] batman_adv: batadv0: Adding interface: batadv_slave_0
[  222.459946][T10293] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.521184][T10293] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.544912][T10293] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.574332][T10293] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.634484][T10293] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.774847][T10293] hsr_slave_0: entered promiscuous mode
[  222.800918][T10293] hsr_slave_1: entered promiscuous mode
[  222.811317][T10293] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  222.825782][T10293] Cannot create hsr debugfs directory
[  222.837518][T10459] FAULT_INJECTION: forcing a failure.
[  222.837518][T10459] name failslab, interval 1, probability 0, space 0, times 0
[  222.896434][T10459] CPU: 1 PID: 10459 Comm: syz.4.1718 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  222.906673][T10459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  222.916755][T10459] Call Trace:
[  222.920059][T10459]  <TASK>
[  222.923020][T10459]  dump_stack_lvl+0x241/0x360
[  222.927735][T10459]  ? __pfx_dump_stack_lvl+0x10/0x10
[  222.932987][T10459]  ? __pfx__printk+0x10/0x10
[  222.937604][T10459]  ? __pfx___might_resched+0x10/0x10
[  222.942922][T10459]  should_fail_ex+0x3b0/0x4e0
[  222.947621][T10459]  should_failslab+0x9/0x20
[  222.952145][T10459]  __kmalloc_node_noprof+0xdf/0x440
[  222.957385][T10459]  ? vmemdup_user+0x42/0x1c0
[  222.962014][T10459]  vmemdup_user+0x42/0x1c0
[  222.966466][T10459]  map_get_next_key+0x224/0x640
[  222.971443][T10459]  ? __might_fault+0xc6/0x120
[  222.976177][T10459]  ? bpf_lsm_bpf+0x9/0x10
[  222.980552][T10459]  __sys_bpf+0x72e/0x810
[  222.984834][T10459]  ? __pfx___sys_bpf+0x10/0x10
[  222.989721][T10459]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  222.995738][T10459]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  223.002101][T10459]  __x64_sys_bpf+0x7c/0x90
[  223.006560][T10459]  do_syscall_64+0xf3/0x230
[  223.011089][T10459]  ? clear_bhb_loop+0x35/0x90
[  223.015792][T10459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.021799][T10459] RIP: 0033:0x7fdf47175bd9
[  223.026227][T10459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.045855][T10459] RSP: 002b:00007fdf47ecd048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  223.054294][T10459] RAX: ffffffffffffffda RBX: 00007fdf47303f60 RCX: 00007fdf47175bd9
[  223.062374][T10459] RDX: 0000000000000020 RSI: 0000000020000080 RDI: 0000000000000004
[  223.070362][T10459] RBP: 00007fdf47ecd0a0 R08: 0000000000000000 R09: 0000000000000000
[  223.078375][T10459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.086379][T10459] R13: 000000000000000b R14: 00007fdf47303f60 R15: 00007ffd69d34b18
[  223.094400][T10459]  </TASK>
[  223.099716][ T4490] Bluetooth: hci1: command tx timeout
[  223.277106][T10466] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1720'.
[  223.335761][T10473] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  223.714848][T10493] ip6t_srh: unknown srh match flags  4001
[  223.734332][T10493] netlink: 'syz.2.1731': attribute type 11 has an invalid length.
[  223.780797][T10496] ip6t_srh: unknown srh match flags  4001
[  223.807223][T10496] netlink: 'syz.1.1732': attribute type 11 has an invalid length.
[  223.836943][T10293] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  223.848383][T10293] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  223.859821][T10293] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  223.878886][T10293] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  224.121750][T10293] 8021q: adding VLAN 0 to HW filter on device bond0
[  224.150111][T10293] 8021q: adding VLAN 0 to HW filter on device team0
[  224.163008][ T5152] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.170204][ T5152] bridge0: port 1(bridge_slave_0) entered forwarding state
[  224.189603][ T5101] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.196787][ T5101] bridge0: port 2(bridge_slave_1) entered forwarding state
[  224.412134][T10513] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1734'.
[  224.520890][T10293] 8021q: adding VLAN 0 to HW filter on device batadv0
[  224.675292][T10519] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  224.679432][T10293] veth0_vlan: entered promiscuous mode
[  224.716818][T10293] veth1_vlan: entered promiscuous mode
[  224.745761][T10521] FAULT_INJECTION: forcing a failure.
[  224.745761][T10521] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  224.774747][T10521] CPU: 1 PID: 10521 Comm: syz.0.1738 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  224.785036][T10521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  224.795120][T10521] Call Trace:
[  224.798433][T10521]  <TASK>
[  224.801390][T10521]  dump_stack_lvl+0x241/0x360
[  224.806109][T10521]  ? __pfx_dump_stack_lvl+0x10/0x10
[  224.811338][T10521]  ? __pfx__printk+0x10/0x10
[  224.815969][T10521]  ? snprintf+0xda/0x120
[  224.820235][T10521]  should_fail_ex+0x3b0/0x4e0
[  224.825017][T10521]  _copy_to_user+0x2f/0xb0
[  224.829445][T10521]  simple_read_from_buffer+0xca/0x150
[  224.834830][T10521]  proc_fail_nth_read+0x1e9/0x250
[  224.839869][T10521]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  224.845428][T10521]  ? rw_verify_area+0x520/0x6b0
[  224.850291][T10521]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  224.855845][T10521]  vfs_read+0x204/0xbc0
[  224.860013][T10521]  ? __pfx_lock_release+0x10/0x10
[  224.865056][T10521]  ? __pfx_vfs_read+0x10/0x10
[  224.869749][T10521]  ? __fget_files+0x29/0x470
[  224.874354][T10521]  ? __fget_files+0x3f6/0x470
[  224.879059][T10521]  ksys_read+0x1a0/0x2c0
[  224.883319][T10521]  ? __pfx_ksys_read+0x10/0x10
[  224.888101][T10521]  ? do_syscall_64+0x100/0x230
[  224.892876][T10521]  ? do_syscall_64+0xb6/0x230
[  224.897565][T10521]  do_syscall_64+0xf3/0x230
[  224.902081][T10521]  ? clear_bhb_loop+0x35/0x90
[  224.906775][T10521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.912683][T10521] RIP: 0033:0x7f90881746bc
[  224.917106][T10521] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  224.936725][T10521] RSP: 002b:00007f9088f5e040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  224.945148][T10521] RAX: ffffffffffffffda RBX: 00007f9088303f60 RCX: 00007f90881746bc
[  224.953129][T10521] RDX: 000000000000000f RSI: 00007f9088f5e0b0 RDI: 0000000000000004
[  224.961111][T10521] RBP: 00007f9088f5e0a0 R08: 0000000000000000 R09: 0000000000000000
[  224.969089][T10521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  224.977096][T10521] R13: 000000000000004d R14: 00007f9088303f60 R15: 00007ffff58e8438
[  224.985096][T10521]  </TASK>
[  224.998696][T10293] veth0_macvtap: entered promiscuous mode
[  225.022363][T10293] veth1_macvtap: entered promiscuous mode
[  225.062966][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  225.076675][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.115973][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  225.137625][ T4490] Bluetooth: hci1: command tx timeout
[  225.145386][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.165811][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  225.179063][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.198755][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  225.224381][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.253767][T10293] batman_adv: batadv0: Interface activated: batadv_slave_0
[  225.287220][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  225.324036][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.364932][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  225.382905][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.392898][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  225.403861][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.413910][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  225.427459][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.456147][T10293] batman_adv: batadv0: Interface activated: batadv_slave_1
[  225.464413][T10540] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1745'.
[  225.483038][T10293] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  225.514609][T10293] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  225.537042][T10293] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  225.545814][T10293] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  225.721889][ T2864] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  225.734596][ T2864] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  225.765325][ T2817] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  225.775855][ T2817] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  225.793246][T10555] ip6t_srh: unknown srh match flags  4001
[  225.811938][T10555] netlink: 'syz.1.1750': attribute type 11 has an invalid length.
[  226.094368][T10563] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  226.262772][T10573] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1756'.
[  226.332909][T10577] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1758'.
[  226.577073][T10583] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[  226.749526][T10606] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1768'.
[  226.894118][T10608] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1769'.
[  227.247183][T10632] ip6t_srh: unknown srh match flags  4001
[  227.264127][T10632] netlink: 'syz.2.1776': attribute type 11 has an invalid length.
[  227.325219][T10635] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1778'.
[  227.796465][T10662] FAULT_INJECTION: forcing a failure.
[  227.796465][T10662] name failslab, interval 1, probability 0, space 0, times 0
[  227.809306][T10662] CPU: 0 PID: 10662 Comm: syz.0.1786 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  227.819483][T10662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  227.829582][T10662] Call Trace:
[  227.832866][T10662]  <TASK>
[  227.835803][T10662]  dump_stack_lvl+0x241/0x360
[  227.840497][T10662]  ? __pfx_dump_stack_lvl+0x10/0x10
[  227.845708][T10662]  ? __pfx__printk+0x10/0x10
[  227.850318][T10662]  ? __pfx___might_resched+0x10/0x10
[  227.855616][T10662]  ? preempt_schedule+0xe1/0xf0
[  227.860479][T10662]  should_fail_ex+0x3b0/0x4e0
[  227.865182][T10662]  ? skb_clone+0x20c/0x390
[  227.869633][T10662]  should_failslab+0x9/0x20
[  227.874160][T10662]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  227.879559][T10662]  skb_clone+0x20c/0x390
[  227.883828][T10662]  nfnetlink_rcv+0x575/0x2a90
[  227.888534][T10662]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  227.894549][T10662]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  227.900899][T10662]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  227.906803][T10662]  ? lockdep_hardirqs_on+0x99/0x150
[  227.912017][T10662]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  227.917140][T10662]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  227.923061][T10662]  ? rcu_preempt_deferred_qs_irqrestore+0x87b/0xc70
[  227.929686][T10662]  ? __pfx_rcu_preempt_deferred_qs_irqrestore+0x10/0x10
[  227.936650][T10662]  ? rcu_is_watching+0x15/0xb0
[  227.941428][T10662]  ? rcu_read_unlock_special+0x470/0x550
[  227.947079][T10662]  ? skb_clone+0x240/0x390
[  227.951510][T10662]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  227.957509][T10662]  ? __netlink_deliver_tap+0x77e/0x7c0
[  227.962986][T10662]  ? __rcu_read_unlock+0xa1/0x110
[  227.968120][T10662]  netlink_unicast+0x7f0/0x990
[  227.972904][T10662]  ? __pfx_netlink_unicast+0x10/0x10
[  227.978197][T10662]  ? __virt_addr_valid+0x183/0x520
[  227.983334][T10662]  ? __check_object_size+0x49c/0x900
[  227.988640][T10662]  ? bpf_lsm_netlink_send+0x9/0x10
[  227.993771][T10662]  netlink_sendmsg+0x8e4/0xcb0
[  227.998560][T10662]  ? __pfx_netlink_sendmsg+0x10/0x10
[  228.003856][T10662]  ? __import_iovec+0x536/0x820
[  228.008719][T10662]  ? aa_sock_msg_perm+0x91/0x160
[  228.013767][T10662]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  228.019057][T10662]  ? security_socket_sendmsg+0x87/0xb0
[  228.024551][T10662]  ? __pfx_netlink_sendmsg+0x10/0x10
[  228.029844][T10662]  __sock_sendmsg+0x221/0x270
[  228.034535][T10662]  ____sys_sendmsg+0x525/0x7d0
[  228.039322][T10662]  ? __pfx_____sys_sendmsg+0x10/0x10
[  228.044635][T10662]  __sys_sendmsg+0x2b0/0x3a0
[  228.049266][T10662]  ? __pfx___sys_sendmsg+0x10/0x10
[  228.054392][T10662]  ? vfs_write+0x7c4/0xc90
[  228.058859][T10662]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  228.065199][T10662]  ? do_syscall_64+0x100/0x230
[  228.069973][T10662]  ? do_syscall_64+0xb6/0x230
[  228.074680][T10662]  do_syscall_64+0xf3/0x230
[  228.079193][T10662]  ? clear_bhb_loop+0x35/0x90
[  228.083908][T10662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.089812][T10662] RIP: 0033:0x7f9088175bd9
[  228.094234][T10662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.113848][T10662] RSP: 002b:00007f9088f5e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  228.122272][T10662] RAX: ffffffffffffffda RBX: 00007f9088303f60 RCX: 00007f9088175bd9
[  228.130277][T10662] RDX: 0000000000000000 RSI: 0000000020000380 RDI: 0000000000000004
[  228.138267][T10662] RBP: 00007f9088f5e0a0 R08: 0000000000000000 R09: 0000000000000000
[  228.146242][T10662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  228.154305][T10662] R13: 000000000000004d R14: 00007f9088303f60 R15: 00007ffff58e8438
[  228.162318][T10662]  </TASK>
[  228.311446][T10666] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1788'.
[  228.351038][T10670] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1790'.
[  229.017912][ T5549] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.665700][T10707] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1801'.
[  229.721439][T10713] ip6t_srh: unknown srh match flags  4001
[  229.757260][T10713] netlink: 'syz.0.1800': attribute type 11 has an invalid length.
[  229.776619][T10712] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1803'.
[  229.957515][T10722] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  229.964384][   T53] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  229.975215][   T53] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  229.986520][   T53] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  229.998237][   T53] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  230.010544][   T53] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  230.018239][   T53] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  230.130191][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[  230.529781][ T5549] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.669777][ T5549] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.820565][ T5549] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.871962][T10721] chnl_net:caif_netlink_parms(): no params data found
[  231.393060][T10768] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1816'.
[  231.436107][T10763] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1814'.
[  231.478292][T10721] bridge0: port 1(bridge_slave_0) entered blocking state
[  231.520599][T10721] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.545101][T10721] bridge_slave_0: entered allmulticast mode
[  231.565541][T10721] bridge_slave_0: entered promiscuous mode
[  231.604820][T10721] bridge0: port 2(bridge_slave_1) entered blocking state
[  231.615100][T10721] bridge0: port 2(bridge_slave_1) entered disabled state
[  231.632985][T10721] bridge_slave_1: entered allmulticast mode
[  231.640607][T10721] bridge_slave_1: entered promiscuous mode
[  231.673745][T10774] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1817'.
[  231.695309][ T5549] bridge_slave_1: left allmulticast mode
[  231.701323][ T5549] bridge_slave_1: left promiscuous mode
[  231.707631][ T5549] bridge0: port 2(bridge_slave_1) entered disabled state
[  231.718488][ T5549] bridge_slave_0: left allmulticast mode
[  231.724182][ T5549] bridge_slave_0: left promiscuous mode
[  231.730814][ T5549] bridge0: port 1(bridge_slave_0) entered disabled state
[  232.098114][ T4490] Bluetooth: hci1: command tx timeout
[  232.160334][ T5549] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  232.175128][ T5549] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  232.189211][ T5549] bond0 (unregistering): Released all slaves
[  232.291085][T10721] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  232.388967][T10721] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  232.481669][T10721] team0: Port device team_slave_0 added
[  232.519090][T10721] team0: Port device team_slave_1 added
[  232.660532][T10789] 
[  232.662913][T10789] ======================================================
[  232.669949][T10789] WARNING: possible circular locking dependency detected
[  232.676990][T10789] 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0 Not tainted
[  232.684111][T10789] ------------------------------------------------------
[  232.691144][T10789] syz.4.1823/10789 is trying to acquire lock:
[  232.697225][T10789] ffff88801cb4c0d8 (&sighand->siglock){..-.}-{2:2}, at: __lock_task_sighand+0x149/0x2d0
[  232.707017][T10789] 
[  232.707017][T10789] but task is already holding lock:
[  232.714384][T10789] ffff8880b95387b8 (lock#10){+.+.}-{2:2}, at: __mmap_lock_do_trace_acquire_returned+0x8f/0x630
[  232.724757][T10789] 
[  232.724757][T10789] which lock already depends on the new lock.
[  232.724757][T10789] 
[  232.735154][T10789] 
[  232.735154][T10789] the existing dependency chain (in reverse order) is:
[  232.744163][T10789] 
[  232.744163][T10789] -> #2 (lock#10){+.+.}-{2:2}:
[  232.751131][T10789]        lock_acquire+0x1ed/0x550
[  232.756163][T10789]        __mmap_lock_do_trace_acquire_returned+0xa8/0x630
[  232.763276][T10789]        stack_map_get_build_id_offset+0x9af/0x9d0
[  232.769785][T10789]        __bpf_get_stack+0x4ad/0x5a0
[  232.775071][T10789]        bpf_get_stack_raw_tp+0x1a3/0x240
[  232.780795][T10789]        0xffffffffa0002152
[  232.785311][T10789]        bpf_trace_run2+0x2ec/0x540
[  232.790520][T10789]        trace_tlb_flush+0x118/0x140
[  232.795812][T10789]        switch_mm_irqs_off+0x7cb/0xae0
[  232.801370][T10789]        __schedule+0x1066/0x4a20
[  232.806398][T10789]        preempt_schedule_common+0x84/0xd0
[  232.812208][T10789]        preempt_schedule+0xe1/0xf0
[  232.817409][T10789]        preempt_schedule_thunk+0x1a/0x30
[  232.823127][T10789]        try_to_wake_up+0x9a1/0x1470
[  232.828415][T10789]        wake_up_q+0xc8/0x120
[  232.833090][T10789]        futex_wake+0x523/0x5c0
[  232.837941][T10789]        do_futex+0x392/0x560
[  232.842629][T10789]        __se_sys_futex+0x3f9/0x480
[  232.847828][T10789]        do_syscall_64+0xf3/0x230
[  232.852853][T10789]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.859270][T10789] 
[  232.859270][T10789] -> #1 (&rq->__lock){-.-.}-{2:2}:
[  232.866572][T10789]        lock_acquire+0x1ed/0x550
[  232.871598][T10789]        _raw_spin_lock_nested+0x31/0x40
[  232.877239][T10789]        raw_spin_rq_lock_nested+0x2a/0x140
[  232.883143][T10789]        sched_mm_cid_exit_signals+0x17b/0x4b0
[  232.889307][T10789]        exit_signals+0x2a1/0x5c0
[  232.894344][T10789]        do_exit+0x6b4/0x27e0
[  232.899031][T10789]        __pfx___ia32_sys_exit+0x0/0x10
[  232.904584][T10789]        do_syscall_64+0xf3/0x230
[  232.909610][T10789]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.916029][T10789] 
[  232.916029][T10789] -> #0 (&sighand->siglock){..-.}-{2:2}:
[  232.923851][T10789]        validate_chain+0x18e0/0x5900
[  232.929228][T10789]        __lock_acquire+0x1346/0x1fd0
[  232.934598][T10789]        lock_acquire+0x1ed/0x550
[  232.939619][T10789]        _raw_spin_lock_irqsave+0xd5/0x120
[  232.945445][T10789]        __lock_task_sighand+0x149/0x2d0
[  232.951081][T10789]        group_send_sig_info+0x274/0x310
[  232.956740][T10789]        bpf_send_signal_common+0x2dd/0x430
[  232.962634][T10789]        bpf_send_signal_thread+0x16/0x20
[  232.968360][T10789]        bpf_prog_7bb747c56a8bcba8+0x1d/0x25
[  232.974337][T10789]        bpf_trace_run4+0x334/0x590
[  232.979566][T10789]        __mmap_lock_do_trace_acquire_returned+0x5c8/0x630
[  232.986767][T10789]        vm_mmap_pgoff+0x3a7/0x3d0
[  232.991878][T10789]        do_syscall_64+0xf3/0x230
[  232.996908][T10789]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.003324][T10789] 
[  233.003324][T10789] other info that might help us debug this:
[  233.003324][T10789] 
[  233.013546][T10789] Chain exists of:
[  233.013546][T10789]   &sighand->siglock --> &rq->__lock --> lock#10
[  233.013546][T10789] 
[  233.025727][T10789]  Possible unsafe locking scenario:
[  233.025727][T10789] 
[  233.033171][T10789]        CPU0                    CPU1
[  233.038534][T10789]        ----                    ----
[  233.043892][T10789]   lock(lock#10);
[  233.047623][T10789]                                lock(&rq->__lock);
[  233.054231][T10789]                                lock(lock#10);
[  233.060495][T10789]   lock(&sighand->siglock);
[  233.065090][T10789] 
[  233.065090][T10789]  *** DEADLOCK ***
[  233.065090][T10789] 
[  233.073236][T10789] 5 locks held by syz.4.1823/10789:
[  233.078435][T10789]  #0: ffff88802c3b6098 (&mm->mmap_lock){++++}-{3:3}, at: vm_mmap_pgoff+0x17c/0x3d0
[  233.087847][T10789]  #1: ffff8880b95387b8 (lock#10){+.+.}-{2:2}, at: __mmap_lock_do_trace_acquire_returned+0x8f/0x630
[  233.098656][T10789]  #2: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: get_mm_memcg_path+0xb1/0x600
[  233.108332][T10789]  #3: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0x244/0x590
[  233.117748][T10789]  #4: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: __lock_task_sighand+0x29/0x2d0
[  233.127507][T10789] 
[  233.127507][T10789] stack backtrace:
[  233.133483][T10789] CPU: 1 PID: 10789 Comm: syz.4.1823 Not tainted 6.10.0-rc6-syzkaller-01258-g2f5e6395714d #0
[  233.143641][T10789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  233.153791][T10789] Call Trace:
[  233.157083][T10789]  <TASK>
[  233.160015][T10789]  dump_stack_lvl+0x241/0x360
[  233.164700][T10789]  ? __pfx_dump_stack_lvl+0x10/0x10
[  233.169906][T10789]  ? print_circular_bug+0x130/0x1a0
[  233.175113][T10789]  check_noncircular+0x36a/0x4a0
[  233.180061][T10789]  ? __pfx_check_noncircular+0x10/0x10
[  233.185525][T10789]  ? lockdep_lock+0x123/0x2b0
[  233.190203][T10789]  ? __bfs+0x368/0x6f0
[  233.194290][T10789]  ? __pfx_hlock_conflict+0x10/0x10
[  233.199501][T10789]  validate_chain+0x18e0/0x5900
[  233.204370][T10789]  ? __pfx_validate_chain+0x10/0x10
[  233.209612][T10789]  ? lockdep_unlock+0x16a/0x300
[  233.214476][T10789]  ? __pfx_validate_chain+0x10/0x10
[  233.219681][T10789]  ? validate_chain+0x15b1/0x5900
[  233.224716][T10789]  ? __pfx_validate_chain+0x10/0x10
[  233.229928][T10789]  ? mark_lock+0x9a/0x350
[  233.234259][T10789]  ? __pfx_validate_chain+0x10/0x10
[  233.239465][T10789]  __lock_acquire+0x1346/0x1fd0
[  233.244330][T10789]  lock_acquire+0x1ed/0x550
[  233.248834][T10789]  ? __lock_task_sighand+0x149/0x2d0
[  233.254131][T10789]  ? __pfx_lock_acquire+0x10/0x10
[  233.259248][T10789]  ? __pfx_lock_acquire+0x10/0x10
[  233.264289][T10789]  _raw_spin_lock_irqsave+0xd5/0x120
[  233.269588][T10789]  ? __lock_task_sighand+0x149/0x2d0
[  233.274878][T10789]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  233.280809][T10789]  __lock_task_sighand+0x149/0x2d0
[  233.285932][T10789]  ? __lock_task_sighand+0x29/0x2d0
[  233.291151][T10789]  group_send_sig_info+0x274/0x310
[  233.296273][T10789]  ? __pfx_group_send_sig_info+0x10/0x10
[  233.301923][T10789]  bpf_send_signal_common+0x2dd/0x430
[  233.307302][T10789]  ? __pfx_bpf_send_signal_common+0x10/0x10
[  233.313201][T10789]  ? bpf_trace_run4+0x244/0x590
[  233.318081][T10789]  bpf_send_signal_thread+0x16/0x20
[  233.323287][T10789]  bpf_prog_7bb747c56a8bcba8+0x1d/0x25
[  233.328763][T10789]  bpf_trace_run4+0x334/0x590
[  233.333480][T10789]  ? __pfx_bpf_trace_run4+0x10/0x10
[  233.338732][T10789]  ? get_mm_memcg_path+0x36c/0x600
[  233.343850][T10789]  ? get_mm_memcg_path+0x4e6/0x600
[  233.348968][T10789]  __mmap_lock_do_trace_acquire_returned+0x5c8/0x630
[  233.355657][T10789]  ? __mmap_lock_do_trace_acquire_returned+0x8f/0x630
[  233.362437][T10789]  vm_mmap_pgoff+0x3a7/0x3d0
[  233.367122][T10789]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  233.372235][T10789]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  233.378565][T10789]  ? do_syscall_64+0x100/0x230
[  233.383333][T10789]  ? ksys_mmap_pgoff+0xdf/0x720
[  233.388195][T10789]  ? __x64_sys_mmap+0x7f/0x140
[  233.392972][T10789]  do_syscall_64+0xf3/0x230
[  233.397478][T10789]  ? clear_bhb_loop+0x35/0x90
[  233.402161][T10789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.408068][T10789] RIP: 0033:0x7fdf47175c13
[  233.412483][T10789] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  233.432092][T10789] RSP: 002b:00007ffd69d34ab8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  233.440514][T10789] RAX: ffffffffffffffda RBX: 00007fdf45a006c0 RCX: 00007fdf47175c13
[  233.448488][T10789] RDX: 0000000000000000 RSI: 0000000000021000 RDI: 0000000000000000
[  233.456475][T10789] RBP: 0000000000000000 R08: 00000000ffffffff R09: 0000000000000000
SYZFAIL: failed to recv rpc
fd=3 want=4 sent=0 n=0 (errno 9: Bad file descriptor)
[  233.464464][T10789] R10: 0000000000020022 R11: 0000000000000246 R12: 00007ffd69d34d10
[  233.472441][T10789] R13: ffffffffffffffc0 R14: 0000000000001000 R15: 0000000000000000
[  233.480430][T10789]  </TASK>
[  233.502236][T10790] SET target dimension over the limit!
[  233.533534][ T5085] syz-executor (5085) used greatest stack depth: 18736 bytes left
[  234.062436][ T5549] hsr_slave_0: left promiscuous mode
[  234.081485][ T5549] hsr_slave_1: left promiscuous mode
[  234.093296][ T5549] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  234.101075][ T5549] batman_adv: batadv0: Removing interface: batadv_slave_0
[  234.110673][ T5549] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  234.118249][ T5549] batman_adv: batadv0: Removing interface: batadv_slave_1
[  234.132810][ T5549] veth1_macvtap: left promiscuous mode
[  234.139487][ T5549] veth0_macvtap: left promiscuous mode
[  234.145055][ T5549] veth1_vlan: left promiscuous mode
[  234.150660][ T5549] veth0_vlan: left promiscuous mode
[  234.364653][ T5549] team0 (unregistering): Port device team_slave_1 removed
[  234.386477][ T5549] team0 (unregistering): Port device team_slave_0 removed
[  234.648796][ T5098] syz-executor (5098) used greatest stack depth: 18256 bytes left
[  234.961700][ T5549] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.012840][ T5549] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.061958][ T5549] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.116586][ T5549] team0: Port device netdevsim0 removed
[  235.123310][ T5549] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.185140][ T5549] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.252426][ T5549] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.302450][ T5549] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.342128][ T5549] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.416413][ T5549] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.471636][ T5549] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.513470][ T5549] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.554626][ T5549] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.646244][ T5549] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.701943][ T5549] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.751198][ T5549] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.817351][ T5549] team0: Port device netdevsim0 removed
[  235.824004][ T5549] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.892434][ T5549] bridge_slave_1: left allmulticast mode
[  235.898568][ T5549] bridge_slave_1: left promiscuous mode
[  235.904265][ T5549] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.912959][ T5549] bridge_slave_0: left allmulticast mode
[  235.918978][ T5549] bridge_slave_0: left promiscuous mode
[  235.924661][ T5549] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.934188][ T5549] bridge_slave_1: left allmulticast mode
[  235.941766][ T5549] bridge_slave_1: left promiscuous mode
[  235.947628][ T5549] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.955855][ T5549] bridge_slave_0: left allmulticast mode
[  235.962940][ T5549] bridge_slave_0: left promiscuous mode
[  235.968676][ T5549] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.979411][ T5549] bridge_slave_1: left allmulticast mode
[  235.985046][ T5549] bridge_slave_1: left promiscuous mode
[  235.991058][ T5549] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.999748][ T5549] bridge_slave_0: left allmulticast mode
[  236.005385][ T5549] bridge_slave_0: left promiscuous mode
[  236.011538][ T5549] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.021583][ T5549] bridge_slave_1: left allmulticast mode
[  236.027326][ T5549] bridge_slave_1: left promiscuous mode
[  236.032975][ T5549] bridge0: port 2(bridge_slave_1) entered disabled state
[  236.041985][ T5549] bridge_slave_0: left allmulticast mode
[  236.047745][ T5549] bridge_slave_0: left promiscuous mode
[  236.053389][ T5549] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.407350][ T5549] dvmrp5 (unregistering): left allmulticast mode
[  236.788195][ T5549] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  236.797094][ T5549] bond_slave_0: left promiscuous mode
[  236.804209][ T5549] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  236.812972][ T5549] bond_slave_1: left promiscuous mode
[  236.820176][ T5549] bond0 (unregistering): (slave vlan2): Releasing backup interface
[  236.828591][ T5549] vlan2: left promiscuous mode
[  236.834655][ T5549] bond0 (unregistering): Released all slaves
[  236.847956][ T5549] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  236.858600][ T5549] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  236.870627][ T5549] bond0 (unregistering): Released all slaves
[  236.886081][ T5549] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  236.897844][ T5549] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  236.907831][ T5549] bond0 (unregistering): Released all slaves
[  236.928524][ T5549] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  236.940904][ T5549] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  236.950967][ T5549] bond0 (unregistering): Released all slaves
[  236.961742][ T5549] bond1 (unregistering): Released all slaves
[  236.978986][ T5549] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  236.989869][ T5549] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  237.000153][ T5549] bond0 (unregistering): (slave vlan3): Releasing backup interface
[  237.017680][ T5549] team_slave_1: left promiscuous mode
[  237.023911][ T5549] bond0 (unregistering): Released all slaves
[  237.034770][ T5549] bond1 (unregistering): Released all slaves
[  237.045599][ T5549] bond2 (unregistering): Released all slaves
[  237.134799][ T5549] : left promiscuous mode
[  237.194602][ T5549] tipc: Left network mode
[  238.285340][ T5549] hsr_slave_0: left promiscuous mode
[  238.292352][ T5549] hsr_slave_1: left promiscuous mode
[  238.305306][ T5549] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  238.313080][ T5549] batman_adv: batadv0: Removing interface: batadv_slave_0
[  238.321133][ T5549] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  238.328623][ T5549] batman_adv: batadv0: Removing interface: batadv_slave_1
[  238.339589][ T5549] hsr_slave_0: left promiscuous mode
[  238.345399][ T5549] hsr_slave_1: left promiscuous mode
[  238.351304][ T5549] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  238.358840][ T5549] batman_adv: batadv0: Removing interface: batadv_slave_0
[  238.366798][ T5549] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  238.374210][ T5549] batman_adv: batadv0: Removing interface: batadv_slave_1
[  238.384961][ T5549] hsr_slave_0: left promiscuous mode
[  238.390923][ T5549] hsr_slave_1: left promiscuous mode
[  238.400154][ T5549] hsr_slave_0: left promiscuous mode
[  238.410589][ T5549] hsr_slave_1: left promiscuous mode
[  238.417487][ T5549] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  238.425086][ T5549] batman_adv: batadv0: Removing interface: batadv_slave_0
[  238.434116][ T5549] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  238.442380][ T5549] batman_adv: batadv0: Removing interface: batadv_slave_1
[  238.456701][ T5549] team0: left promiscuous mode
[  238.461490][ T5549] team_slave_0: left promiscuous mode
[  238.467058][ T5549] team_slave_1: left promiscuous mode
[  238.472816][ T5549] veth0_macvtap: left promiscuous mode
[  238.478640][ T5549] veth1_vlan: left promiscuous mode
[  238.484749][ T5549] veth1_macvtap: left promiscuous mode
[  238.490322][ T5549] veth0_macvtap: left promiscuous mode
[  238.496105][ T5549] veth1_vlan: left promiscuous mode
[  238.501518][ T5549] veth0_vlan: left promiscuous mode
[  238.507934][ T5549] veth0_macvtap: left promiscuous mode
[  238.513498][ T5549] veth1_vlan: left promiscuous mode
[  238.519040][ T5549] veth0_vlan: left promiscuous mode
[  238.525655][ T5549] veth1_macvtap: left promiscuous mode
[  238.531305][ T5549] veth0_macvtap: left promiscuous mode
[  238.537241][ T5549] veth1_vlan: left promiscuous mode
[  238.542514][ T5549] veth0_vlan: left promiscuous mode
[  238.804392][ T5549] infiniband syz2: set down
[  238.845093][ T5549] pimreg (unregistering): left allmulticast mode
[  239.000685][ T5549] team0 (unregistering): Port device team_slave_1 removed
[  239.021028][ T5549] team0 (unregistering): Port device team_slave_0 removed
[  239.161762][ T5549] team0 (unregistering): Port device team_slave_1 removed
[  239.174709][ T5549] team0 (unregistering): Port device team_slave_0 removed
[  239.373103][ T5549] team0 (unregistering): Port device team_slave_1 removed
[  239.405310][ T5549] team0 (unregistering): Port device team_slave_0 removed
[  239.661875][ T5549] team0 (unregistering): Port device team_slave_1 removed
[  239.925509][ T5549] team0 (unregistering): Port device team_slave_1 removed
[  240.019555][ T2864] smc: removing ib device syz2
[  240.103957][  T785] infiniband syz2: ib_query_port failed (-19)