last executing test programs:

2.875868382s ago: executing program 0 (id=1201):
r0 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000100)="2400000002031f001cfffd946fa2830020200a800900010001e700000000a3a20404ff7e", 0x24}], 0x1}, 0x0)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)="2400000001031f001cfffd946fa2830020200a800900010001e700000000a3a20404ff7e", 0x24}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r2, &(0x7f0000007300)=[{{&(0x7f00000003c0)={0xa, 0x0, 0x0, @private0}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000480)="7f", 0x1}], 0x1}}], 0x1, 0x0)
listen(r2, 0xfff)
r3 = accept(r2, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000000080), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0xc, &(0x7f00000004c0)=ANY=[@ANYRESOCT=r3, @ANYBLOB="c59c37407d3f576e00cb2cf68bef962a2926fa0305f0ee70ef1114947c3099adf8547ded4245e5f84f5ad9fc9e33bf476d1053e4487b95c06a4395f238a7207f0ebd8af7fad46f50340bb9eb801647", @ANYRES8=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x400)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r6}, 0x10)
r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r7}, 0x8)
close(r8)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$OBJ_PIN_MAP(0x15, 0x0, 0x0)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000600)={0x20, r9, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x4}]}, 0x20}}, 0x0)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r11, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000003a80)={{0x14}, [@NFT_MSG_NEWTABLE={0x24, 0x0, 0xa, 0x101, 0x0, 0x0, {0x5, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_USERDATA={0x4}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x301, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x1258e0}]}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x109}], {0x14}}, 0xa0}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r4}, 0x10)
r12 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TUNSETIFF(r12, 0x400454ca, &(0x7f0000000280)={'\x00', 0x41})

2.783554069s ago: executing program 3 (id=1204):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)={0x2c, 0x28, 0x107, 0x0, 0x0, {0x2}, [@nested={0x10, 0x1, 0x0, 0x1, [@typed={0x9, 0x0, 0x0, 0x0, @str='!])&\x00'}]}, @typed={0x4, 0x2, 0x0, 0x0, @uid}]}, 0x2c}}, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r3 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_tx_ring(r3, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="01000100f300000000001f00000008000200", @ANYRES32], 0x1c}}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000003c0), 0xffffffffffffffff)
r7 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r7, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, &(0x7f0000000200)=[{&(0x7f00000000c0)="c4", 0x1}], 0x1}, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
sendto$inet6(r1, &(0x7f0000000000)="057a695e23a2594b0212448bfcdf7304", 0x10, 0x20000845, 0x0, 0x0)
close(r0)
r8 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r9 = socket(0x3, 0x1, 0x6)
sendmsg$nl_crypto(r9, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=@delrng={0x10, 0x14, 0x1, 0x70bd29, 0x25dfdbff, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x44052}, 0x20000000)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000040)=ANY=[@ANYRES64=r8], 0x0)
listen(r8, 0xc6ff)
syz_emit_ethernet(0x92, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa8100000086dd60ff00f500580600fe8000000000000000000000000000aafe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="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"], 0x0)

1.933021451s ago: executing program 0 (id=1216):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f00000001c0)={0x0, 0x3})
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, 0x0)
ioctl$SIOCX25SCUDMATCHLEN(0xffffffffffffffff, 0x891a, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x48, 0x10, 0x49920d862a92153b, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_IFLAGS={0x6}, @IFLA_GRE_IKEY={0x8}]}}}]}, 0x48}}, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000980)={0x11, 0x13, &(0x7f0000000a40)=ANY=[@ANYBLOB="183800000004000b0000851000002000000018200000000000000017b9781dc20bc2957d8000", @ANYRES32, @ANYBLOB="8ab753474d2ce4f8f046be64c49840b400000000000000200000000000b43722694f443319dd874edc000000180000b529d0fedd10d58e0a2f7697417c310b000000000500000000800095000000000000ff0f00000000000000180200002020782500000000002020207b1af8ff00000000bfa100000000b60007010000f8ffffffb703000009000000b70300000000000085000000210000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000b40)=""/222}, 0x90)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0xfffffd88)
write$nbd(0xffffffffffffffff, 0x0, 0x10)
r2 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvfrom$llc(r2, 0x0, 0x0, 0x40000002, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000640)={r0, 0x58, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
sendmsg$nl_route_sched_retired(r2, &(0x7f0000000700)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=@delqdisc={0x144, 0x25, 0x400, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x2, 0xe}, {0xb, 0xe}, {0x9}}, [@q_dsmark={{0xb}, {0x28, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x2}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x8000}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x10}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x1}, @TCA_DSMARK_SET_TC_INDEX={0x4}]}}, @q_dsmark={{0xb}, {0x3c, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x9}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x9}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x20}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x2}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x1d}]}}, @q_dsmark={{0xb}, {0x14, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xe4}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_SET_TC_INDEX={0x4}]}}, @q_dsmark={{0xb}, {0x34, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x2}, @TCA_DSMARK_INDICES={0x6}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x9}, @TCA_DSMARK_DEFAULT_INDEX={0x6}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x12}, @TCA_DSMARK_DEFAULT_INDEX={0x6}]}}, @q_dsmark={{0xb}, {0xc, 0x2, [@TCA_DSMARK_INDICES={0x6}]}}, @q_dsmark={{0xb}, {0x20, 0x2, [@TCA_DSMARK_INDICES={0x6}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x9bfc570f395a8c67}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x14}]}}]}, 0x144}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25GCAUSEDIAG(r4, 0x89e6, &(0x7f0000000140)={0x3, 0xe})
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r5, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)

1.756178626s ago: executing program 3 (id=1217):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0xf, &(0x7f0000000900)=@ringbuf={{0x18, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x6b}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

1.679656589s ago: executing program 3 (id=1219):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000200)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000100)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="cf0400000000000000001200000008000300", @ANYRES32=r3, @ANYBLOB="040013000a00060008021100000100000600100080050000060012"], 0x44}, 0x1, 0x58}, 0x0)

1.455936869s ago: executing program 3 (id=1222):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
r0 = socket(0x1, 0x803, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080))
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="4400000010000304002000000000002f00000000", @ANYRES32=0x0, @ANYBLOB="7fff000000000000140012800b0001006d616373656300000400028008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x44}}, 0x0)

1.203966986s ago: executing program 2 (id=1226):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0xd00}, 0x90)

1.064645015s ago: executing program 1 (id=1227):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="640000000206030300000000000000000000000005000100070000000900020073797a3100000c001400078008001340000000000800124000000000050005000a000000050004000000000016000300686173683a6e6574"], 0x64}}, 0x0)

1.03929318s ago: executing program 2 (id=1228):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x0, 0x13, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000000500000000000000852000000000000018600000000000000000000000fb826761cead4bc8a66f071a4e291cec000000bf91000000000000b7020000000000008500000001000000b7000000000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, &(0x7f00000001c0)=0x8, 0x4)
r1 = socket(0x10, 0x803, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x73}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000600)={'team0\x00', <r2=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=@newqdisc={0x88, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}}}}]}, 0x88}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000880))
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000940)={'syztnl2\x00', &(0x7f00000008c0)={'syztnl2\x00', 0x0, 0x10, 0x80, 0x5, 0x4, {{0x9, 0x4, 0x2, 0x3, 0x24, 0x65, 0x0, 0x2, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x40}, @rand_addr=0x64010100, {[@ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @end, @ra={0x94, 0x4}, @noop, @end]}}}}})
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000980))
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f00000009c0)={@loopback}, &(0x7f0000000a00)=0x14)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000b40))
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000b80), &(0x7f0000000bc0)=0x4)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r5, @ANYBLOB="09000016010000001800120008000100736974000c00020008000300bd"], 0x38}}, 0x0)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r6, 0x107, 0xf, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
getpeername$packet(r7, &(0x7f0000000000)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r6, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r8}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r11=>0x0})
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=@newlink={0x34, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r11}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x2}]}, @IFLA_MASTER={0x8}]}, 0x34}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="5c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="e9000080000000003c0012800c0001006d6163766c616e002c0002801c0005800a000400aaaaaaaaaabb000004"], 0x5c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100626f6e640000000018000280140008800800030001"], 0x48}}, 0x0)
sendmmsg$inet(r0, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)

953.775862ms ago: executing program 3 (id=1229):
r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000340)={'batadv0\x00', <r2=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000380)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_SET_HARDIF(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0104000000000e0000001000000008000600", @ANYRES32=r3, @ANYBLOB="08000300", @ANYRES32=r2, @ANYBLOB="050035"], 0x34}}, 0x0)

880.219319ms ago: executing program 1 (id=1230):
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000004c0)) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xa, 0x5, 0x2, 0x9}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f0000000200)}, 0x20) (async, rerun: 64)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff}) (rerun: 64)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000240)={r2, 0x20, &(0x7f00000001c0)={&(0x7f0000000040)=""/73, 0x49, 0x0, &(0x7f00000000c0)=""/130, 0x82}}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000600)={r1, &(0x7f00000004c0), &(0x7f0000000500)=""/198}, 0x20)

861.965667ms ago: executing program 4 (id=1231):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400000010000100000000f5ff0000000000000a7c000000060a0104000000000000000002000000500004804c0001800c00010062697477697365003c000280080003400000000408000140000000161c000480360001003ff7111eba608810e5e6ad9645e5b35aeb0000000800024000000016040005800900010073797a30000000000900020073797a32"], 0xa4}}, 0x0)

829.967657ms ago: executing program 3 (id=1232):
r0 = accept$netrom(0xffffffffffffffff, &(0x7f0000000000)={{0x3, @netrom}, [@null, @null, @default, @bcast, @netrom, @netrom, @netrom]}, &(0x7f0000000080)=0x48)
setsockopt(r0, 0x0, 0xa7e9, &(0x7f00000000c0)="dad1f044c1da18cf85471f2f4e393eb85ea9eb71b04cb39b05dca491f6c21a5368bd", 0x22)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x54, 0x54, 0x5, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x3, 0x3}}, @const={0x1, 0x0, 0x0, 0xa, 0x3}, @struct={0xc, 0x3, 0x0, 0x4, 0x0, 0xfffffffd, [{0x3, 0x5, 0x93}, {0xc, 0x1, 0x8}, {0x3, 0x2, 0x35}]}]}, {0x0, [0x0, 0x0, 0x0]}}, &(0x7f0000000180), 0x71}, 0x20)
clock_gettime(0x0, &(0x7f0000000240)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000200)=[{r1, 0x110}], 0x1, &(0x7f0000000280)={r2, r3+10000000}, &(0x7f00000002c0)={[0x4]}, 0x8)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000300), 0x40, 0x0)
ioctl$PPPIOCSPASS(r4, 0x40107447, &(0x7f0000000380)={0x2, &(0x7f0000000340)=[{0x180, 0xc0, 0xec}, {0x9, 0x3, 0xfd, 0x5}]})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000440)={'ip6gre0\x00', &(0x7f00000003c0)=@ethtool_eeprom={0xb, 0x2, 0x1, 0x4a, "d7ee0008bf02cd1375104aa95520fc1f3fb3b29e715683694c48b87f53ef14295eea86ea24cde0e069e38eb26872dac48c6cbcbe5e78c60c1d9aabe7033854328b42438df9d56afd9e99"}})
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000480)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x5305, '\x00', 0x0, r1, 0x3, 0x5, 0x3}, 0x48)
pipe(&(0x7f0000000500)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000680)=<r8=>0x0, &(0x7f00000006c0)=0x4)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000740)={0x6, <r9=>0x0}, 0x8)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0x1f, 0x3a, 0x9, 0xdaa0, 0x1001, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x2}, 0x48)
r11 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000800)={0xffffffffffffffff, 0x2, 0x18}, 0xc)
r12 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0xfffff800, '\x00', 0x0, r1, 0x5, 0x3, 0x2}, 0x48)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x1, 0xe, &(0x7f0000000540)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1}, [@map_val={0x18, 0xa, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x94}, @initr0={0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfff}, @call, @map_fd={0x18, 0x7, 0x1, 0x0, r0}, @ldst={0x1, 0x3, 0x1, 0xb, 0x4, 0xffffffffffffffce, 0xffffffffffffffff}, @alu={0x4, 0x0, 0x9, 0x8, 0x9, 0x100, 0xffffffffffffffff}, @map_val={0x18, 0x0, 0x2, 0x0, r7, 0x0, 0x0, 0x0, 0x4}]}, &(0x7f00000005c0)='syzkaller\x00', 0x3, 0x76, &(0x7f0000000600)=""/118, 0x41100, 0x1c, '\x00', r8, 0x15, r1, 0x8, &(0x7f0000000700)={0x0, 0x4}, 0x8, 0x10, 0x0, 0x0, r9, 0xffffffffffffffff, 0x6, &(0x7f00000008c0)=[0xffffffffffffffff, r10, 0xffffffffffffffff, r11, r12], &(0x7f0000000900)=[{0x4, 0x1, 0x2, 0x6}, {0x1, 0x4, 0x5, 0xc}, {0x5, 0x5, 0x10, 0x7}, {0x1, 0x5, 0xf, 0xd}, {0x0, 0x4, 0x0, 0x3}, {0x5, 0x2, 0xd}], 0x10, 0xffff}, 0x90)
getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f0000000a40)={{{@in6=@mcast1, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0, <r15=>0x0}}, {{@in6=@loopback}, 0x0, @in6=@remote}}, &(0x7f0000000b40)=0xe8)
setsockopt$inet6_IPV6_IPSEC_POLICY(r7, 0x29, 0x22, &(0x7f0000000b80)={{{@in=@loopback, @in=@empty, 0x4e22, 0xff7f, 0x4e22, 0x0, 0xa, 0x80, 0x0, 0x88, r8, r15}, {0xcd6, 0x8, 0x22, 0x9, 0x9, 0x8, 0x7, 0x5}, {0xd, 0x0, 0x8000, 0x11f}, 0x2, 0x0, 0x0, 0x1, 0x3, 0x2}, {{@in=@loopback, 0x4d5, 0x3c}, 0x9b8e8b1b56bb3243, @in6=@mcast1, 0x0, 0x3, 0x2, 0x5, 0x8, 0x8, 0x5}}, 0xe8)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000d00)={'syztnl0\x00', &(0x7f0000000c80)={'ip6_vti0\x00', r14, 0x2f, 0x9, 0xf9, 0x1f, 0x48, @private2, @mcast2, 0x0, 0x10, 0x2, 0x470}})
r16 = socket$inet(0x2, 0x2, 0x5)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001000)={r13, 0xe0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000d40)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, &(0x7f0000000d80)=[0x0], &(0x7f0000000dc0)=[0x0, 0x0], 0x0, 0x60, &(0x7f0000000e00)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000e40), &(0x7f0000000e80), 0x8, 0xbf, 0x8, 0x8, &(0x7f0000000ec0)}}, 0x10)
ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f0000001040)={@private2, 0x78, r14})
ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0xc0286687, &(0x7f0000001140)={0x2, 0x0, 0xb2, &(0x7f0000001080)=""/178})
setsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f0000001180)={{{@in6=@mcast2, @in=@multicast1, 0x4e21, 0xe, 0x4e23, 0x7ff, 0x8, 0x0, 0x20, 0x0, r14, r15}, {0x7, 0x0, 0x115b, 0x3, 0xa509, 0x3, 0x380000, 0x3fff8000000000}, {0x3, 0x1000, 0x287, 0x1}, 0x6, 0x0, 0x1, 0x0, 0x1, 0x2}, {{@in=@rand_addr=0x64010101, 0x4d5, 0x2b}, 0xa, @in6=@mcast2, 0x3506, 0x4, 0x3, 0x1, 0x772, 0x5, 0x6}}, 0xe8)
mmap(&(0x7f0000fee000/0x11000)=nil, 0x11000, 0x7, 0x110, r4, 0x7df8b000)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r16, 0x84, 0x66, &(0x7f0000001280)={<r17=>0x0}, &(0x7f00000012c0)=0x8)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r6, 0x84, 0x79, &(0x7f0000001300)={r17, 0x6e50, 0x9}, 0x8)
r18 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r18, &(0x7f00000014c0)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001480)={&(0x7f0000001380)={0xcc, 0x0, 0x9, 0x801, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFCTH_TUPLE={0xb0, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @local}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x24}}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x36}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @multicast2}}}]}, @NFCTH_STATUS={0x8}]}, 0xcc}}, 0x10)
ioctl$FS_IOC_GETFSMAP(r18, 0xc0c0583b, &(0x7f0000001500)={0x0, 0x0, 0x1, 0x0, '\x00', [{0x80000000, 0x0, 0xcb7, 0x0, 0x2}, {0x8, 0x80, 0x5, 0xa0, 0x8000, 0xfffffffffffffff8}], ['\x00']})

696.216054ms ago: executing program 1 (id=1233):
r0 = socket$netlink(0x10, 0x3, 0xc)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@bridge_dellink={0x54, 0x11, 0x5, 0x0, 0x0, {0x7, 0x0, 0x0, r2}, [@IFLA_AF_SPEC={0x2c, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x9, 0x0, 0x1, [{0x8}]}}, @AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}}]}]}, @IFLA_PROMISCUITY={0x8, 0x1e, 0xff}]}, 0x54}}, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@bridge_dellink={0x54, 0x11, 0x5, 0x0, 0x0, {0x7, 0x0, 0x0, r2}, [@IFLA_AF_SPEC={0x2c, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x9, 0x0, 0x1, [{0x8}]}}, @AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}}]}]}, @IFLA_PROMISCUITY={0x8, 0x1e, 0xff}]}, 0x54}}, 0x0)

695.748344ms ago: executing program 4 (id=1234):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TDLS_OPER(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000100003600000008000300", @ANYRES32=r2], 0x30}}, 0x0)

677.389413ms ago: executing program 0 (id=1235):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))
socket$packet(0x11, 0x3, 0x300)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x20)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x3, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="540000001400b5950e000000000000000a000000", @ANYRES32=r1, @ANYBLOB="14000200fe80000f0000000000000000000000aa140006"], 0x54}}, 0x0)

456.387486ms ago: executing program 4 (id=1236):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="8500000089000000791000000000001163000000001000009500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x8, 0xc3, &(0x7f0000000400)=""/198, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffff52}, 0x37)

412.165ms ago: executing program 1 (id=1237):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x7, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0xfffffffffffffff8}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x90) (async)
syz_emit_ethernet(0x32, &(0x7f0000000000)={@local, @empty, @void, {@ipv4={0x800, @icmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, {[@rr={0x7, 0x7, 0x4a, [@multicast2]}]}}, @address_reply}}}}, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6) (async, rerun: 32)
r1 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 32)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000880)=@ipv6_newroute={0x44, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP={0x18, 0x16, 0x0, 0x0, @SEG6_IPTUNNEL_SRH={0x14, 0x1, {{0x4, {0x0, 0x0, 0x10}}}}}, @RTA_OIF={0x8, 0x4, r2}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x7}]}, 0x44}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000001500)=@newsa={0x154, 0x10, 0x0, 0x0, 0x0, {{@in=@rand_addr=0x64010102, @in6=@remote, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, r2}, {@in6=@remote, 0x0, 0x32}, @in=@multicast2, {0x0, 0x7, 0x2000000000}, {0x0, 0xff}, {0x0, 0x0, 0x7fffffff}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'cfb(xtea)\x00'}}}, @encap={0x1c, 0x4, {0x0, 0x0, 0x0, @in=@multicast1}}]}, 0x154}, 0x1, 0x0, 0x0, 0x8000}, 0x0) (async, rerun: 64)
r4 = socket(0x0, 0x4, 0x0) (async, rerun: 64)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async)
setsockopt$inet6_IPV6_PKTINFO(r4, 0x29, 0x32, &(0x7f00000002c0)={@empty}, 0x14) (async)
sendmsg$TIPC_NL_NET_SET(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000780)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000fdfffff70f4000003000078008000200060000000c0003"], 0x44}}, 0x0) (async, rerun: 64)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) (async, rerun: 64)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x13, r6, 0x0)
ioctl$FIBMAP(r6, 0x1, &(0x7f0000000080))

411.664449ms ago: executing program 0 (id=1238):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001840)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b7000000000008009500f10100000000487591731cba12c07d57d995b61e89a4530f92344f242b416ae9eeefc0e9c60ebab1c176bfdbb4ddffffff7f02f732e4c2eab72bf40c0682fd0a0c4ac106b29e220dc28d0072599456d4c4e6f3fe684ab8373bb4df9d72876ef3834293812e927c01c7da1322da44c7f2ed1084a12f56d1cb39df9858037458a4ca037604007600b6be484e4c9517af216bd8ed42f7dd5adb8e49f4a94608c9a20819e02fc22e6be45574d4ed88b37ab8d7674c644dca2f1b4d745fd95c41f9dfc1adafd1e5a3e7f2e898961cb43e438c4e41ae43ea118e14ffffffffe4b8a80366ce5401ec61921a1b529cc8b99bffffb1ac006c67767b03b95151aeb89e6d4a43c625aa228504e4afd8c1cc3eb215ba22f43115f4d39ddbb1edb130d9f2be90133a4500000058b8c9370634060105baa664953514605fba3973aa021945b985a8a66e0200000057033815717b4fdbe55b37cb8d7f41aacfbd4089ea1bd22440f64909a09b5a759a703e71f358e11ac8e13db15d792e604a4f279b3bd6621bdf2c17bc0400001000000000ff8d01006200607a9a76e5d9656a7154c75773902a1bdf399df3925130312d095e9c1f973d091c198c1a11edb6b3cc425fe203d2f2655a76865c2c34e2470fcfb1248c0add5431a7fbcb0ef4f66a634b93a09fab1daae4b518d7a5d95a017864010067d6bab101446ebfe3fdeed7ee7bb0749cacf56cf27409c60fca2e0004000000000000a9cb6f4a78444986f9b1ab61f9dab53038010000004abbfc59d6d1b18fe380df4bf024f120bd755d82033f2fb7d8fc9e0de834f7646c8dd27da1297d0c77b294e097e293db7f002c0024ab2fb4d32972cba6f49051cec1ff6f16231bbb90a2d201a500000000000000007700b06fa191ebd3a0c2ef0058ffebd7cc4cf80f74a7cdac01d998c24f34a5ba9a4a2039d0416e3f8107671141ffffffe0c7d8e94a27a06a4e3d9acee835fd0571e5bbb3e6d2b5eba505000000968983811f832dc5390f83e817c64ac4f1f0d0504255c22ee8674053d0e160e5255366139bbe5863e23c3dd42d21f542816edf56a93d0a7e6f08f9ffffff64875fea6ff57ba6ae25c5e8ca4f78d5a01308243b08f1caa46be5244d64f8e875857f083144c642f71cdc8e5634c1360c056430fe77ee7ed7ac1f9743786b2fb8e0fcfcc3d36c93230b7b059bc295aa0e38ff07edc3492b96e73d2060acfd8145e4a5851bc4d6fdc5ad939db52812e07795f3879baa88bd194d48e50c84892c97c800d156b059a718f6b10274b077a710f27ab8ee953de70ea860b74a0f3c3dc11177b11cc2e62a95f1ecf607a8dc38e525f415a1bd46b38845ebca04061bacbf627f7975fe599678fee48f83b59895e0309130f534741377ea7b7bea3c46c0c4c4b7c27c5d057d95ac85a41cdcee8e6fa31f7d2137ed1fb4b21c13b9a2c5e3f7c9ef9e45a35adbf0b9312be929863f000000000000004a82bc080de1f87808d0711dd76f2977ca7f2684bfa5c14a0cd6f1f561e34e4e8e51e81d4a355a7d00d917c16a2bb0cfb284fcfde9015769b9ee2c8ff10e934847604d930f62924d0562ce17f6dadf5053ed8f33092a41bb46e1878c5295fecc27f9c6d1f62da58c0002ea00000000009aa38a05e70591d5cdab1c488ef3c1984c7c0a566cfc2a080000009ec206a54fb49056a555414178ef00d8b8f3c59f01eb5d83415994efcc6ec4b3c275cd6b1b5ff82ef7d7abb1d218e7a10100000000000000c9ccc89df41c39dd58dd70569dde45f8adeaad7d3328fbb6e279f745d2872f0208635e465ca443a6a64c7803760880af23fb3f430a5d11fffc96dd13b951642f1433f65b4e170a62a5f7b7d0f9d5cef0d17289c43d4aee0001f7a343899434594cc23e1c864164e130754b337e560f285dc670e31241bf657babf0615b85dc200a10294b7d5885b43ac62fc7f97a85586168483427072a535f2c7481ec261c00f725de74e48d9a86f7d4a5d28da3f099ca3e6472b9d7c86d961f525f799b4517141f018af0673b8296f867eca1ec07be11bc497a6f7d2b752bcf77c2908b64630ed5a0c2261bc2d5de6ee174534b8dfc0432ab6bbcf296d36807544aa7c3d3301fe227b713a371414c98695e559f9cbf6b046184064a5f24a4cc6f41f21fc24a3ad7d20a89e00a9dc99a40f890869d35fba3ce6f297661d3f8ba21c65badf55d1859581f9e7ef3e2693b46a8fc85be061ce79aa2832c04dc04de8b6536123b24be2ef80eb06b2db900fb30596c1574bda31f81d61ccfd58080d2330b9c7b87b5d17d48c32daffead3414b91603e250eeedc7d601000000037426f643797be3e93da96b5643d3feed0b7c885d06006b830d7cbf3152f27522f5142dcc84a9e48a07518f0142167a9f5d6685d09945cbc778bcc3e7dcfaee5d9c1689a3bafc0d3b51b5a3bfd6007954c36d532960964183842601e5364ecb6ad9168040388c7640bfa2f88643de7eebf4da8d1c3e76daace5217761d933d06bbe9609fcf5971aa1e77c3123910e63daaadd8878ad468eabaf78a96012a4ada1a9cd217fb2a0da2d521454ea9e8fcd3b5badfd6f00003a73345b841d04a02bf441955b932c59608a555bc44873272812e0fb874618a0b56b4cf44990f60000000000000000000000b20000da0ca67905e877893646d185a75582f866785af6b0149e336c31fb177e3e85f4c60cbbde4ce6ea73a95f434328620fa493937386ad2e2a0d60eb815aa05c33e02c32276dab36d14c63db66a31409ab2a403ec3c7a4e07bd745efa2835a8c932f22aa6da40af9bcdf808b916bc8deb37d5b8c422b65c42d17e61751c561ce985a31b52703d398d52694cfbb7d2b3791b030093b321d9f16b2f06676cf94d75cbba6491ae0b5a16ce92320321314d8d2e88d1cd7e7b1216bdaecba309a38e107103e649d46958cc6ba2d660dd41b78d832beb7206ae01508377273ea96e40760410aeed1866971e04f578e9d856d01000000045aea928f5f669be0636dc3f34f90a6e865225f271527412d1ae755a9243da523d713071f9370b509a34eeb46415b2f0d271a7072cbd17e293f20132e6c15756e92776c6a0d7c3a9f512ce17edf3f1ea190853b8b79d504c057000e7d8f8249a8158e68a90bbea8bfab2bd3045b9c790984c6fb65fd7887bd8bfcbe663df6b7770000f58fbad41e6eee5c9595950c4172b9c925403b2f99bbf3cb1981bb0d14bded8eae35e08278020a1ec7f508628056fd3d408a02a1cf8594bcbb21a88f477673442804f714212dedd245b9f563b5352fe460a30489b1b6a6d37daead86151492f7fd4b5c64007b68a1b04027eac124478a2ef7f59fe472795785de83578cb96334e0f7c1370dc397d3aa42d937b5718b7610cdcdfe104db7801ec74980b8b111a2748321f81512e4204eb2b024b9fc9e0f257f8c6037b93b2caa236d4354b32434d5a6b01e000000000000000000000087b97a200609c77e0000000000000000d3a54ccd0900a966801e9341260d6cbce5fe03999214462cbaa297448677ab659102d0f430fbeae119a7ef2e962d2829d4dd2201c4b30d491269594c88252fbd09ac0090609851bd9e5c307e7e0d39e73579c1f3563eff1a6237d3699f61acdc8e36010d76093ddd227d9ff2f5e8b5e0ba2048d542de40f643fda4036124b8feb2dd45d0fa52300518c8052cc09ad73f89732c651ed2644f34cfbc32e8b29cf29e895e43b473ddb9a43421b4b25f8bbce8e2d7cb8547d156d5972021ae4c9e30f85413276ddebde55999d2ec3c524632b74d703147ba09e0dcb26c4b89636d28428b67e955f53bfd0c9eebf33a260a9b2647726795617a9d1700000000000000f65d0eb4b7b077f1b4d3c5254753ddc9d5861fca4ec4205af1c89fa638b00342ff5f5994fc1f042d1b4a0000000000000070035394b646baa4ba26f70c2c2fe2bc501ecc19f538fdeb7485b73a72a3cba6c50721ce39a0dba3757fcfdb20f40fc9f7fb5d0b6100000000000000005bc7aff2c5b266f8276c6a6eebeae26b7410b7b506f7518ef70721f4315b04f1c35d5c5ab58d6d78682c21821d8e0648feddf5734daba6e219ddc4708f0de8032515fdd2825334e43786d58caeaaee3bdfcfc7e27d90f26de71d00417b23910b4f2c06d21313a73fdb069482241e09d49d37d91a43a08812df97700683e828735af95018960271e49d61fb985e088d079ee30b347952dc5ba725047cef9b0065fed61cf2a4336bd8b3dea27ab071fc2cea404b8d39b798aef5739327b0f02add98cb77ad6c6fc582798a8e5b0e7baf898efaff86d859932b903881253c3457a86fb5ff849bb51959d3d16cba8e59bc854be0509d12d800000000000000000000000000f82401ebba7ada9d9531161825cc"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x222}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r2, 0x8922, &(0x7f0000000440)={'syz_tun\x00', 0x101})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}]}], {0x14}}, 0x54}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000070000000000000000000000000a2c000000050a05000000000000000000020000000900010073797a30000000000900030073797a32"], 0x54}}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
unshare(0x2c060000)
unshare(0x24020400)
r5 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r5, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e)
r6 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r6, &(0x7f00000004c0)=@file={0x1, './file0\x00'}, 0x6e)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xf, 0x4, 0x8, 0x9, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x48)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@map=r8, r9, 0x4}, 0x10)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@map=r8, r10, 0x5, 0x0, 0x0, @prog_id}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r8, &(0x7f0000000100), &(0x7f0000000140)=@udp6=r7}, 0x20)
close(r7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000300)='generic_add_lease\x00', r9}, 0x8)
socket$kcm(0x10, 0x2, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2d, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @private2}}}, 0x108)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000002c0)='neigh_create\x00', r0}, 0x10)

384.084536ms ago: executing program 2 (id=1239):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, 0x28, 0x107, 0x0, 0x0, {0x9, 0x7c}}, 0x14}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000016c0)={0x6, 0x9, &(0x7f00000014c0)=@raw=[@printk={@llu, {}, {}, {0x7, 0x0, 0x5}}, @exit], &(0x7f0000001540)='GPL\x00', 0x8}, 0x90) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000016c0)={0x6, 0x9, &(0x7f00000014c0)=@raw=[@printk={@llu, {}, {}, {0x7, 0x0, 0x5}}, @exit], &(0x7f0000001540)='GPL\x00', 0x8}, 0x90)

311.338104ms ago: executing program 2 (id=1240):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x11}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))

232.083122ms ago: executing program 4 (id=1241):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b05d25a806c8c6394f90224fc60100005000a000248053582c137153e37000c0180fc0b107af80b", 0x33fe0}], 0x1}, 0x0)

231.901406ms ago: executing program 1 (id=1242):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="4c00000010001fff00000000000000000000000d", @ANYRES32=0x0, @ANYBLOB="00000000000000002c00128009000100626f6e64000009001c00028008000d0006"], 0x4c}}, 0x0)

186.502894ms ago: executing program 2 (id=1243):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @local}, 0xc)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0000002ac1414aa0000000003"], 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x26}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty=0x6, @multicast2}, @timestamp_reply={0x11}}}}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syz_tun\x00', <r5=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x6, 0xd, &(0x7f0000000bc0)=@framed={{}, [@exit, @exit, @cb_func={0x18, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0x38}, @map_fd, @map_idx, @cb_func={0x18, 0x0, 0x4, 0x0, 0xfffffffffffffff8}]}, &(0x7f0000000740)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x2}, 0x90)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000700)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000800000014000280040001000800020000000000040004000c00018008000100", @ANYRES32=r5], 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0xffffffff}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)

114.788922ms ago: executing program 0 (id=1244):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3b071, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000ff80000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="0000000000000020660800002ab91a00180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000001000000850000000600000095000000000000009ab30e81bcd85a9a83b805fdeb2147e3f870681826a1a628b6b306424ebb29"], &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222}, 0x78)

108.885164ms ago: executing program 4 (id=1245):
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x3ef, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x3, 0xc, &(0x7f00000007c0)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70800000007ac449f8af8ff00000000bfa20000000000"], 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r0, 0x890b, &(0x7f0000000000)={0xffffc0fe, 'vlan0\x00'}) (async)
getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, &(0x7f0000000480), &(0x7f00000004c0)=0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x0, 0x3, 0x0, &(0x7f0000000180)='GPL\x00'}, 0x90) (async)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) (async)
close(0xffffffffffffffff)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0x40305839, 0x0) (async)
r1 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, &(0x7f0000000080)={0x0, 0x2, 0x2, 0x1, 0x0, [@mcast2]}, 0x18) (async)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c) (async)
mmap(&(0x7f00009a3000/0x2000)=nil, 0x2000, 0x7, 0x13, 0xffffffffffffffff, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f00000002c0)={0x2, 0x4e21}, 0x10) (async)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21}, 0x10)
setsockopt$inet_tcp_int(r2, 0x6, 0xa, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
shutdown(r2, 0x2) (async)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x9, 0x0, &(0x7f00000003c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)='syzkaller\x00', 0x4, 0xff0, &(0x7f000062b000)=""/4080}, 0x90)
setsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000080)=0x4, 0x4)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x3000007, 0x50, 0xffffffffffffffff, 0x0) (async)
socket(0x10, 0x2, 0x0)

36.147496ms ago: executing program 1 (id=1246):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0xe, 0x4, 0x8, 0xb}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_opts(r2, 0x29, 0x40, &(0x7f0000000140)=@dstopts={0x0, 0xa, '\x00', [@calipso={0x7, 0x30, {0x0, 0xa, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0]}}, @calipso={0x7, 0x20, {0x0, 0x6, 0x0, 0xb00, [0x0, 0x0, 0x401]}}]}, 0x60)

35.825783ms ago: executing program 2 (id=1247):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x7, 0x0, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
accept4$nfc_llcp(0xffffffffffffffff, 0x0, 0x0, 0x80000)
socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000280)={0x28, 0x0, 0x0, @local}, 0x10)
getsockopt(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB='\x00'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000057"], 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7d}, @printk={@u, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='timer_start\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
accept4$x25(0xffffffffffffffff, &(0x7f0000000480)={0x9, @remote}, &(0x7f0000000500)=0x12, 0x800)
clock_gettime(0x0, &(0x7f0000000600))
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x3b}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x65)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="b9ff03076844268cb89e14f005dd1be0ffff00fe3a21632f77fbac14141de007031762079f4b4d2f87e5feca6aab845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0x8, 0x60000000}, 0x1e) (fail_nth: 14)

561.728µs ago: executing program 0 (id=1248):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x3c1, 0x3, 0x348, 0x168, 0xc8, 0x8, 0x168, 0x5803, 0x278, 0x2e8, 0x2e8, 0x278, 0x2e8, 0x3, 0x0, {[{{@ipv6={@empty, @mcast2, [], [], 'bond_slave_1\x00', 'veth0_to_batadv\x00'}, 0x0, 0x100, 0x168, 0x0, {0x0, 0x2000000000000}, [@inet=@rpfilter={{0x28}}, @common=@ah={{0x30}, {[], 0x0, 0x0, 0x5}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}, {{@ipv6={@private2, @dev, [], [], 'erspan0\x00', 'veth0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3a8)
socket$pptp(0x18, 0x1, 0x2)

0s ago: executing program 4 (id=1249):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'veth0_to_team\x00', <r1=>0x0})
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
socket(0x2, 0x3, 0x9)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.current\x00', 0x275a, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x802, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x9, 0x4, 0x4, 0x8}, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001400)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x44}}, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-blowfish-asm\x00'}, 0x58)
accept4(r6, 0x0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.11' (ED25519) to the list of known hosts.
[   70.633307][ T5089] cgroup: Unknown subsys name 'net'
[   70.832977][ T5089] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   71.767642][ T1251] ieee802154 phy0 wpan0: encryption failed: -22
[   71.774360][ T1251] ieee802154 phy1 wpan1: encryption failed: -22
[   72.558883][ T5089] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   74.941485][ T5103] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   74.950531][ T5103] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   74.970478][ T5106] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   74.978273][ T5106] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   74.989884][ T5106] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   75.000791][ T5109] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   75.014049][ T5110] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   75.027677][ T5109] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   75.036319][ T5109] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   75.036820][ T5115] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   75.044009][ T5109] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   75.054062][ T5115] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   75.066602][ T5109] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   75.067181][ T5115] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   75.081233][ T5115] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   75.083522][ T5109] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   75.089588][ T5115] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   75.103802][ T5109] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   75.105126][ T5115] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   75.111833][ T5109] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   75.118432][ T5115] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   75.132785][ T5118] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   75.134054][ T5115] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   75.154057][ T5119] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   75.163291][ T5120] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   75.165923][ T5115] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   75.198809][ T5106] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   75.215750][ T5106] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   75.233353][ T5106] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   75.241140][ T5106] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   75.832866][ T5100] chnl_net:caif_netlink_parms(): no params data found
[   75.885936][ T5099] chnl_net:caif_netlink_parms(): no params data found
[   75.928802][ T5098] chnl_net:caif_netlink_parms(): no params data found
[   75.969800][ T5104] chnl_net:caif_netlink_parms(): no params data found
[   76.092442][ T5113] chnl_net:caif_netlink_parms(): no params data found
[   76.174771][ T5100] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.182369][ T5100] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.191378][ T5100] bridge_slave_0: entered allmulticast mode
[   76.199010][ T5100] bridge_slave_0: entered promiscuous mode
[   76.265161][ T5100] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.272386][ T5100] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.280162][ T5100] bridge_slave_1: entered allmulticast mode
[   76.287988][ T5100] bridge_slave_1: entered promiscuous mode
[   76.320511][ T5104] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.327928][ T5104] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.336441][ T5104] bridge_slave_0: entered allmulticast mode
[   76.343853][ T5104] bridge_slave_0: entered promiscuous mode
[   76.351859][ T5099] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.359626][ T5099] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.367031][ T5099] bridge_slave_0: entered allmulticast mode
[   76.374606][ T5099] bridge_slave_0: entered promiscuous mode
[   76.383291][ T5099] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.390425][ T5099] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.397724][ T5099] bridge_slave_1: entered allmulticast mode
[   76.405587][ T5099] bridge_slave_1: entered promiscuous mode
[   76.444573][ T5104] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.451726][ T5104] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.459671][ T5104] bridge_slave_1: entered allmulticast mode
[   76.467378][ T5104] bridge_slave_1: entered promiscuous mode
[   76.526899][ T5098] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.534220][ T5098] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.541439][ T5098] bridge_slave_0: entered allmulticast mode
[   76.548979][ T5098] bridge_slave_0: entered promiscuous mode
[   76.580168][ T5104] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.605371][ T5100] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.620438][ T5100] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.629862][ T5098] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.637107][ T5098] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.644770][ T5098] bridge_slave_1: entered allmulticast mode
[   76.651844][ T5098] bridge_slave_1: entered promiscuous mode
[   76.674344][ T5104] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.698813][ T5099] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.711060][ T5099] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.818467][ T5100] team0: Port device team_slave_0 added
[   76.838316][ T5113] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.845760][ T5113] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.853823][ T5113] bridge_slave_0: entered allmulticast mode
[   76.860897][ T5113] bridge_slave_0: entered promiscuous mode
[   76.871449][ T5104] team0: Port device team_slave_0 added
[   76.880927][ T5099] team0: Port device team_slave_0 added
[   76.891052][ T5099] team0: Port device team_slave_1 added
[   76.900195][ T5100] team0: Port device team_slave_1 added
[   76.908858][ T5098] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.918512][ T5113] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.929600][ T5113] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.936858][ T5113] bridge_slave_1: entered allmulticast mode
[   76.945977][ T5113] bridge_slave_1: entered promiscuous mode
[   76.968195][ T5104] team0: Port device team_slave_1 added
[   77.014182][ T5098] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.068860][ T5104] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.075940][ T5104] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.102123][ T5104] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.154835][ T5113] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.168068][ T5113] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.178153][ T5104] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.186280][ T5104] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.204870][ T5106] Bluetooth: hci1: command tx timeout
[   77.212439][ T5110] Bluetooth: hci3: command tx timeout
[   77.218025][ T5106] Bluetooth: hci0: command tx timeout
[   77.223580][ T5119] Bluetooth: hci2: command tx timeout
[   77.229230][ T5104] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.246687][ T5099] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.254451][ T5099] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.281144][ T5099] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.293076][ T5110] Bluetooth: hci4: command tx timeout
[   77.301115][ T5100] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.308164][ T5100] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.334135][ T5100] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.348798][ T5098] team0: Port device team_slave_0 added
[   77.358529][ T5098] team0: Port device team_slave_1 added
[   77.388460][ T5099] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.395992][ T5099] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.422073][ T5099] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.442013][ T5100] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.449127][ T5100] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.476865][ T5100] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.562377][ T5113] team0: Port device team_slave_0 added
[   77.598121][ T5098] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.605361][ T5098] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.631829][ T5098] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.645559][ T5098] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.652547][ T5098] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.678821][ T5098] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.694487][ T5113] team0: Port device team_slave_1 added
[   77.706657][ T5104] hsr_slave_0: entered promiscuous mode
[   77.713939][ T5104] hsr_slave_1: entered promiscuous mode
[   77.739809][ T5099] hsr_slave_0: entered promiscuous mode
[   77.746755][ T5099] hsr_slave_1: entered promiscuous mode
[   77.753477][ T5099] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.761491][ T5099] Cannot create hsr debugfs directory
[   77.861689][ T5113] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.868981][ T5113] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.895781][ T5113] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.912579][ T5100] hsr_slave_0: entered promiscuous mode
[   77.920199][ T5100] hsr_slave_1: entered promiscuous mode
[   77.926698][ T5100] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.934496][ T5100] Cannot create hsr debugfs directory
[   77.960089][ T5098] hsr_slave_0: entered promiscuous mode
[   77.967301][ T5098] hsr_slave_1: entered promiscuous mode
[   77.974208][ T5098] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.981794][ T5098] Cannot create hsr debugfs directory
[   78.011095][ T5113] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.018213][ T5113] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.044749][ T5113] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.254768][ T5113] hsr_slave_0: entered promiscuous mode
[   78.261244][ T5113] hsr_slave_1: entered promiscuous mode
[   78.268292][ T5113] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   78.276954][ T5113] Cannot create hsr debugfs directory
[   78.689858][ T5100] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   78.721293][ T5100] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   78.743096][ T5100] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   78.755095][ T5100] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   78.782031][ T5104] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   78.804379][ T5104] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   78.818101][ T5104] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   78.834330][ T5104] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   78.926566][ T5099] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   78.958684][ T5099] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   78.971249][ T5099] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   79.005194][ T5099] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   79.121800][ T5113] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   79.138257][ T5113] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   79.150894][ T5113] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   79.180201][ T5113] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   79.220197][ T5100] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.270704][ T5098] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   79.282335][ T5098] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   79.289860][ T5110] Bluetooth: hci0: command tx timeout
[   79.295591][ T5110] Bluetooth: hci1: command tx timeout
[   79.301076][ T5110] Bluetooth: hci3: command tx timeout
[   79.306608][ T5119] Bluetooth: hci2: command tx timeout
[   79.319704][ T5098] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   79.332396][ T5098] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   79.365033][ T5110] Bluetooth: hci4: command tx timeout
[   79.381285][ T5100] 8021q: adding VLAN 0 to HW filter on device team0
[   79.469470][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.476939][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.522222][ T5156] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.529400][ T5156] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.559846][ T5104] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.658284][ T5104] 8021q: adding VLAN 0 to HW filter on device team0
[   79.689244][ T5099] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.753111][ T5158] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.760281][ T5158] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.798905][ T5098] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.813911][ T5156] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.821067][ T5156] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.855514][ T5099] 8021q: adding VLAN 0 to HW filter on device team0
[   79.899862][ T5098] 8021q: adding VLAN 0 to HW filter on device team0
[   79.916948][ T5113] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.972543][ T5156] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.979753][ T5156] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.005072][ T5156] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.012237][ T5156] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.029782][ T5156] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.036958][ T5156] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.070888][ T5156] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.078171][ T5156] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.098910][ T5113] 8021q: adding VLAN 0 to HW filter on device team0
[   80.117776][ T5104] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   80.186319][ T5156] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.193625][ T5156] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.206168][ T5156] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.213508][ T5156] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.264105][ T5099] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   80.274569][ T5099] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   80.477459][ T5100] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.607655][ T5100] veth0_vlan: entered promiscuous mode
[   80.641603][ T5100] veth1_vlan: entered promiscuous mode
[   80.787547][ T5100] veth0_macvtap: entered promiscuous mode
[   80.828234][ T5100] veth1_macvtap: entered promiscuous mode
[   80.895957][ T5104] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.965237][ T5100] batman_adv: batadv0: Interface activated: batadv_slave_0
[   80.991574][ T5100] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.005787][ T5099] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.041856][ T5113] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.071408][ T5100] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.081351][ T5100] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.090261][ T5100] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.099159][ T5100] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.139388][ T5104] veth0_vlan: entered promiscuous mode
[   81.182442][ T5098] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.248199][ T5104] veth1_vlan: entered promiscuous mode
[   81.363810][ T5120] Bluetooth: hci2: command tx timeout
[   81.369288][ T5120] Bluetooth: hci1: command tx timeout
[   81.376138][ T5099] veth0_vlan: entered promiscuous mode
[   81.380953][ T5120] Bluetooth: hci0: command tx timeout
[   81.383395][ T5110] Bluetooth: hci3: command tx timeout
[   81.393236][   T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.401326][   T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.445266][ T5110] Bluetooth: hci4: command tx timeout
[   81.450278][ T5113] veth0_vlan: entered promiscuous mode
[   81.470816][ T5099] veth1_vlan: entered promiscuous mode
[   81.520965][ T5113] veth1_vlan: entered promiscuous mode
[   81.597073][   T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.616681][ T5104] veth0_macvtap: entered promiscuous mode
[   81.622925][   T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.688389][ T5099] veth0_macvtap: entered promiscuous mode
[   81.704466][ T5104] veth1_macvtap: entered promiscuous mode
[   81.734579][ T5099] veth1_macvtap: entered promiscuous mode
[   81.791636][ T5099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.807102][ T5099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.835255][ T5099] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.856240][ T5104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.872092][ T5104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.882586][ T5104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.894405][ T5104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.906985][ T5104] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.935048][ T5187] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2'.
[   81.948473][ T5099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.960641][ T5099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.986207][ T5099] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.010368][ T5104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.030749][ T5104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.043231][ T5104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.054190][ T5104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.066301][ T5104] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.105451][ T5113] veth0_macvtap: entered promiscuous mode
[   82.125990][ T5099] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.136490][ T5099] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.146187][ T5099] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.157453][ T5099] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.188069][ T5113] veth1_macvtap: entered promiscuous mode
[   82.207845][ T5104] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.220071][ T5104] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.230256][ T5104] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.239400][ T5104] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.299490][ T5098] veth0_vlan: entered promiscuous mode
[   82.337978][ T5113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.348710][ T5113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.359357][ T5113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.370345][ T5113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.381100][ T5113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.394656][ T5113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.407232][ T5113] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.457536][ T5098] veth1_vlan: entered promiscuous mode
[   82.497069][ T5113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.508218][ T5113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.529788][ T5113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.540769][ T5113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.550995][ T5113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.562458][ T5113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.574878][ T5113] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.609765][ T5113] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.630604][ T5113] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.644214][ T5113] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.653753][ T5113] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.785999][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.810435][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.875446][ T5098] veth0_macvtap: entered promiscuous mode
[   82.946926][ T5098] veth1_macvtap: entered promiscuous mode
[   83.010037][ T2834] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.019315][ T2834] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.049410][ T5195] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   83.196544][ T5098] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.214418][ T5098] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.228489][ T5098] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.242208][ T5098] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.258900][ T5098] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.269822][ T5098] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.280464][ T5098] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.299983][ T5098] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.313795][ T5098] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.336631][ T2834] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.354178][ T5098] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.358644][ T2834] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.365985][ T5098] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.383912][ T5098] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.394524][ T5098] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.405087][ T5098] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.424345][ T5098] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.434374][ T5098] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.443399][ T5106] Bluetooth: hci1: command tx timeout
[   83.445399][ T5120] Bluetooth: hci2: command tx timeout
[   83.450200][ T5106] Bluetooth: hci0: command tx timeout
[   83.456831][ T5098] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.461162][ T5110] Bluetooth: hci3: command tx timeout
[   83.481142][ T5098] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.498038][ T5098] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.509808][ T5098] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.519497][ T5098] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.528279][ T5110] Bluetooth: hci4: command tx timeout
[   83.541468][ T5098] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.567230][ T1053] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.577998][ T1053] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.641138][ T2834] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.671314][ T2834] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.919389][ T2834] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.959062][ T2834] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.001656][ T5207] netlink: 12 bytes leftover after parsing attributes in process `syz.1.11'.
[   84.027741][ T5207] tipc: Started in network mode
[   84.043257][ T5207] tipc: Node identity bridge_sn, cluster identity 8
[   84.061334][ T5210] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10'.
[   84.105787][   T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.142997][   T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.242569][ T5217] netlink: 'syz.0.1': attribute type 1 has an invalid length.
[   84.265350][ T5217] netlink: 236 bytes leftover after parsing attributes in process `syz.0.1'.
[   84.286997][ T5217] NCSI netlink: No device for ifindex 458760
[   84.311510][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.350081][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.011080][ T5230] syzkaller0: entered promiscuous mode
[   85.052946][ T5230] syzkaller0: entered allmulticast mode
[   85.625536][ T5235] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   87.122557][ T5253] netlink: 'syz.1.25': attribute type 10 has an invalid length.
[   87.125296][   T58] cfg80211: failed to load regulatory.db
[   87.137396][ T5253] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.145905][ T5253] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.190497][ T5253] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.198044][ T5253] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.206772][ T5253] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.214047][ T5253] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.252643][ T5253] team0: Port device bridge0 added
[   87.560186][ T5298] netlink: 4 bytes leftover after parsing attributes in process `syz.0.41'.
[   87.668005][ T5302] netlink: 'syz.3.45': attribute type 1 has an invalid length.
[   88.170894][ T5328] netlink: 12 bytes leftover after parsing attributes in process `syz.1.51'.
[   88.272527][ T5330] netlink: 40 bytes leftover after parsing attributes in process `syz.4.54'.
[   88.440212][ T5340] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   88.507446][ T5340] netlink: 8 bytes leftover after parsing attributes in process `syz.0.58'.
[   88.541993][ T5342] netlink: 3 bytes leftover after parsing attributes in process `syz.4.59'.
[   88.706677][ T5344] netlink: 32 bytes leftover after parsing attributes in process `syz.3.60'.
[   88.758470][ T5349] syz.4.62[5349] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.848746][ T5352] tap0: tun_chr_ioctl cmd 1074025677
[   88.885301][ T5352] tap0: linktype set to 769
[   89.017256][ T5362] Cannot find add_set index 0 as target
[   89.202060][ T5356] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   89.461356][ T5376] netlink: 'syz.1.72': attribute type 63 has an invalid length.
[   89.726030][ T5384] A link change request failed with some changes committed already. Interface wlan1 may have been left with an inconsistent configuration, please check.
[   89.915221][ T5394] netlink: 'syz.1.81': attribute type 10 has an invalid length.
[   90.065413][ T5394] team0: Failed to send options change via netlink (err -105)
[   90.091529][ T5403] netlink: 224 bytes leftover after parsing attributes in process `syz.4.83'.
[   90.103532][ T5394] team0: Port device netdevsim0 added
[   90.109711][ T5403] netlink: 16 bytes leftover after parsing attributes in process `syz.4.83'.
[   90.119612][ T5396] netlink: 'syz.1.81': attribute type 10 has an invalid length.
[   90.145702][ T5396] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[   90.429332][ T5405] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   90.431285][ T5415] Bluetooth: MGMT ver 1.22
[   90.509701][ T5407] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   90.689342][ T5422] netlink: 'syz.3.90': attribute type 1 has an invalid length.
[   90.728771][ T5422] netlink: 'syz.3.90': attribute type 3 has an invalid length.
[   90.779325][ T5422] netlink: 224 bytes leftover after parsing attributes in process `syz.3.90'.
[   90.997129][ T5437] netlink: 132 bytes leftover after parsing attributes in process `syz.0.96'.
[   91.439062][ T5452] xt_AUDIT: Audit type out of range (valid range: 0..2)
[   91.462466][ T5451] syz.0.100 uses obsolete (PF_INET,SOCK_PACKET)
[   91.864450][ T5477] FAULT_INJECTION: forcing a failure.
[   91.864450][ T5477] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   91.902601][ T5477] CPU: 1 PID: 5477 Comm: syz.4.108 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[   91.912662][ T5477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   91.922852][ T5477] Call Trace:
[   91.926164][ T5477]  <TASK>
[   91.929140][ T5477]  dump_stack_lvl+0x241/0x360
[   91.933876][ T5477]  ? __pfx_dump_stack_lvl+0x10/0x10
[   91.939111][ T5477]  ? __pfx__printk+0x10/0x10
[   91.943790][ T5477]  should_fail_ex+0x3b0/0x4e0
[   91.948526][ T5477]  _copy_from_user+0x2f/0xe0
[   91.953159][ T5477]  move_addr_to_kernel+0x82/0x150
[   91.958228][ T5477]  copy_msghdr_from_user+0x43e/0x680
[   91.963548][ T5477]  ? __pfx___might_resched+0x10/0x10
[   91.968856][ T5477]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   91.974680][ T5477]  ? __might_fault+0xaa/0x120
[   91.979378][ T5477]  __sys_sendmmsg+0x374/0x740
[   91.984096][ T5477]  ? __pfx___sys_sendmmsg+0x10/0x10
[   91.989347][ T5477]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   91.995276][ T5477]  ? ksys_write+0x23e/0x2c0
[   91.999800][ T5477]  ? __pfx_lock_release+0x10/0x10
[   92.004864][ T5477]  ? vfs_write+0x7c4/0xc90
[   92.009319][ T5477]  ? __mutex_unlock_slowpath+0x21d/0x750
[   92.014975][ T5477]  ? __pfx_vfs_write+0x10/0x10
[   92.019776][ T5477]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   92.025771][ T5477]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   92.032232][ T5477]  ? do_syscall_64+0x100/0x230
[   92.037010][ T5477]  __x64_sys_sendmmsg+0xa0/0xb0
[   92.041885][ T5477]  do_syscall_64+0xf3/0x230
[   92.046405][ T5477]  ? clear_bhb_loop+0x35/0x90
[   92.051100][ T5477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.057016][ T5477] RIP: 0033:0x7f07cbf75bd9
[   92.061447][ T5477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.081066][ T5477] RSP: 002b:00007f07ccc6b048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   92.089492][ T5477] RAX: ffffffffffffffda RBX: 00007f07cc103f60 RCX: 00007f07cbf75bd9
[   92.097485][ T5477] RDX: 0000000000000002 RSI: 00000000200009c0 RDI: 0000000000000003
[   92.105484][ T5477] RBP: 00007f07ccc6b0a0 R08: 0000000000000000 R09: 0000000000000000
[   92.113558][ T5477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.121536][ T5477] R13: 000000000000000b R14: 00007f07cc103f60 R15: 00007ffed16edcc8
[   92.129531][ T5477]  </TASK>
[   92.472371][ T5487] block nbd0: not configured, cannot reconfigure
[   92.495208][ T5488] nr0: tun_chr_ioctl cmd 2148033281
[   92.654247][ T5493] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[   92.753189][ T5495] __nla_validate_parse: 5 callbacks suppressed
[   92.753211][ T5495] netlink: 4 bytes leftover after parsing attributes in process `syz.2.115'.
[   92.792169][ T5495] netlink: 'syz.2.115': attribute type 1 has an invalid length.
[   92.826300][ T5500] netlink: 8 bytes leftover after parsing attributes in process `syz.1.114'.
[   92.980690][ T5503] netlink: 24 bytes leftover after parsing attributes in process `syz.0.118'.
[   93.187296][ T5516] netlink: 'syz.0.123': attribute type 15 has an invalid length.
[   93.313299][ T5522] netlink: 16 bytes leftover after parsing attributes in process `syz.2.124'.
[   93.511093][ T5533] netlink: 20 bytes leftover after parsing attributes in process `syz.2.128'.
[   93.638345][ T5537] netlink: 40 bytes leftover after parsing attributes in process `syz.3.131'.
[   93.673072][ T5536] netlink: 'syz.0.130': attribute type 8 has an invalid length.
[   93.690418][ T5537] netlink: 40 bytes leftover after parsing attributes in process `syz.3.131'.
[   93.718609][ T5546] netlink: 'syz.2.134': attribute type 15 has an invalid length.
[   93.763345][ T5546] netlink: 24 bytes leftover after parsing attributes in process `syz.2.134'.
[   93.937429][ T5558] netlink: 8 bytes leftover after parsing attributes in process `syz.4.138'.
[   94.063201][ T5560] IPVS: set_ctl: invalid protocol: 60 224.0.0.1:20001
[   94.143099][ T5563] IPVS: set_ctl: invalid protocol: 60 224.0.0.1:20001
[   94.175742][ T5571] netlink: 4 bytes leftover after parsing attributes in process `syz.1.143'.
[   94.258950][ T5571] veth0_macvtap: left promiscuous mode
[   94.446869][ T5568] tipc: Started in network mode
[   94.451818][ T5568] tipc: Node identity 125e4c9ccd6a, cluster identity 4711
[   94.467150][ T5568] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   94.585943][ T5576] tipc: Resetting bearer <eth:syzkaller0>
[   94.762572][ T5158] tipc: Resetting bearer <eth:syzkaller0>
[   94.776236][ T5566] tipc: Resetting bearer <eth:syzkaller0>
[   95.485123][  T785] tipc: Node number set to 3744746652
[   95.976124][ T5566] tipc: Disabling bearer <eth:syzkaller0>
[   96.241558][ T5618] Illegal XDP return value 4294967294 on prog  (id 43) dev N/A, expect packet loss!
[   96.736147][ T5645] netlink: 'syz.1.167': attribute type 5 has an invalid length.
[   96.867863][ T5650] team0: entered promiscuous mode
[   96.882887][ T5650] team_slave_0: entered promiscuous mode
[   96.888892][ T5650] team_slave_1: entered promiscuous mode
[   96.903032][ T5650] bridge0: entered promiscuous mode
[   96.908501][ T5650] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[   97.201906][ T5665] netlink: 'syz.2.176': attribute type 2 has an invalid length.
[   97.906380][ T5649] team0: left promiscuous mode
[   97.998040][ T5649] team_slave_0: left promiscuous mode
[   98.035208][ T5649] team_slave_1: left promiscuous mode
[   98.072587][ T5649] bridge0: left promiscuous mode
[   98.100963][ T5649] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[   98.131836][ T5700] netlink: 'syz.4.189': attribute type 21 has an invalid length.
[   98.148205][ T5700] __nla_validate_parse: 8 callbacks suppressed
[   98.148224][ T5700] netlink: 128 bytes leftover after parsing attributes in process `syz.4.189'.
[   98.169047][ T5700] netlink: 'syz.4.189': attribute type 5 has an invalid length.
[   98.182266][ T5700] netlink: 3 bytes leftover after parsing attributes in process `syz.4.189'.
[   98.328700][ T5709] netlink: 20 bytes leftover after parsing attributes in process `syz.4.191'.
[   98.725953][ T5730] smc: net device lo applied user defined pnetid SYZ2
[   98.757243][ T5731] netlink: 4 bytes leftover after parsing attributes in process `syz.4.197'.
[   98.813616][ T5731] netlink: 'syz.4.197': attribute type 15 has an invalid length.
[   98.879806][ T5731] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 256 - 0
[   98.889645][ T5731] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 256 - 0
[   98.898739][ T5731] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 256 - 0
[   98.907453][ T5731] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 256 - 0
[   98.933819][ T5731] vxlan0: entered promiscuous mode
[   98.962912][ T5738] netlink: 'syz.3.204': attribute type 11 has an invalid length.
[   98.970711][ T5738] netlink: 224 bytes leftover after parsing attributes in process `syz.3.204'.
[   99.041026][ T5736] netlink: 8 bytes leftover after parsing attributes in process `syz.3.204'.
[   99.442393][ T5759] No such timeout policy "syz0"
[   99.544509][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   99.602019][ T5764] IPVS: set_ctl: invalid protocol: 0 172.20.20.187:20000
[   99.758617][ T5771] netlink: 666 bytes leftover after parsing attributes in process `syz.0.214'.
[   99.777932][ T5771] netlink: 'syz.0.214': attribute type 4 has an invalid length.
[   99.863199][ T5771] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  100.226722][ T5791] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  100.252924][ T5791] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:1)
[  100.467100][ T5805] netlink: 4 bytes leftover after parsing attributes in process `syz.3.227'.
[  100.608069][ T5811] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  100.672349][ T5816] netlink: 'syz.4.231': attribute type 1 has an invalid length.
[  100.682045][ T5819] netlink: 8 bytes leftover after parsing attributes in process `syz.3.233'.
[  100.690457][ T5816] netlink: 148 bytes leftover after parsing attributes in process `syz.4.231'.
[  100.717295][ T5816] netlink: 'syz.4.231': attribute type 2 has an invalid length.
[  101.254397][ T5852] Cannot find set identified by id 0 to match
[  101.347189][ T5857] sit1: entered promiscuous mode
[  101.437606][ T5861] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  101.991323][ T5888] Êü: entered promiscuous mode
[  102.064196][ T5896] Cannot find set identified by id 0 to match
[  102.354193][ T5913] unsupported nlmsg_type 40
[  103.013918][ T5955] Cannot find set identified by id 0 to match
[  103.397042][ T5982] __nla_validate_parse: 9 callbacks suppressed
[  103.397065][ T5982] netlink: 24 bytes leftover after parsing attributes in process `syz.2.288'.
[  103.479318][ T5986] netlink: 56 bytes leftover after parsing attributes in process `syz.0.285'.
[  103.505770][ T5986] netlink: 12 bytes leftover after parsing attributes in process `syz.0.285'.
[  103.527199][ T5986] netlink: 31 bytes leftover after parsing attributes in process `syz.0.285'.
[  103.549347][ T5986] netlink: 'syz.0.285': attribute type 3 has an invalid length.
[  103.583251][ T5986] netlink: 'syz.0.285': attribute type 2 has an invalid length.
[  103.599709][ T5986] netlink: 31 bytes leftover after parsing attributes in process `syz.0.285'.
[  103.666140][ T5997] FAULT_INJECTION: forcing a failure.
[  103.666140][ T5997] name failslab, interval 1, probability 0, space 0, times 1
[  103.686938][ T5997] CPU: 0 PID: 5997 Comm: syz.1.293 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  103.696987][ T5997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  103.707075][ T5997] Call Trace:
[  103.710392][ T5997]  <TASK>
[  103.713355][ T5997]  dump_stack_lvl+0x241/0x360
[  103.718083][ T5997]  ? __pfx_dump_stack_lvl+0x10/0x10
[  103.723322][ T5997]  ? __pfx__printk+0x10/0x10
[  103.727965][ T5997]  ? netlink_insert+0x10b7/0x14b0
[  103.733014][ T5997]  should_fail_ex+0x3b0/0x4e0
[  103.737714][ T5997]  ? __alloc_skb+0x1c3/0x440
[  103.742501][ T5997]  should_failslab+0x9/0x20
[  103.747021][ T5997]  kmem_cache_alloc_node_noprof+0x71/0x320
[  103.752851][ T5997]  __alloc_skb+0x1c3/0x440
[  103.757288][ T5997]  ? __pfx___alloc_skb+0x10/0x10
[  103.762240][ T5997]  ? netlink_autobind+0xd6/0x2f0
[  103.767223][ T5997]  ? netlink_autobind+0x2b0/0x2f0
[  103.772274][ T5997]  netlink_sendmsg+0x638/0xcb0
[  103.777077][ T5997]  ? __pfx_netlink_sendmsg+0x10/0x10
[  103.782379][ T5997]  ? __import_iovec+0x536/0x820
[  103.787237][ T5997]  ? aa_sock_msg_perm+0x91/0x160
[  103.792195][ T5997]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  103.797494][ T5997]  ? security_socket_sendmsg+0x87/0xb0
[  103.802967][ T5997]  ? __pfx_netlink_sendmsg+0x10/0x10
[  103.808261][ T5997]  __sock_sendmsg+0x221/0x270
[  103.812953][ T5997]  ____sys_sendmsg+0x525/0x7d0
[  103.817740][ T5997]  ? __pfx_____sys_sendmsg+0x10/0x10
[  103.823052][ T5997]  __sys_sendmsg+0x2b0/0x3a0
[  103.827679][ T5997]  ? __pfx___sys_sendmsg+0x10/0x10
[  103.832806][ T5997]  ? vfs_write+0x7c4/0xc90
[  103.837268][ T5997]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  103.843605][ T5997]  ? do_syscall_64+0x100/0x230
[  103.848379][ T5997]  ? do_syscall_64+0xb6/0x230
[  103.853065][ T5997]  do_syscall_64+0xf3/0x230
[  103.857576][ T5997]  ? clear_bhb_loop+0x35/0x90
[  103.862268][ T5997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.868171][ T5997] RIP: 0033:0x7f128d775bd9
[  103.872594][ T5997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.892219][ T5997] RSP: 002b:00007f128e5c3048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  103.900652][ T5997] RAX: ffffffffffffffda RBX: 00007f128d903f60 RCX: 00007f128d775bd9
[  103.908631][ T5997] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  103.916611][ T5997] RBP: 00007f128e5c30a0 R08: 0000000000000000 R09: 0000000000000000
[  103.924592][ T5997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.932569][ T5997] R13: 000000000000000b R14: 00007f128d903f60 R15: 00007fffc2e9a168
[  103.940560][ T5997]  </TASK>
[  104.017467][ T5998] Cannot find set identified by id 0 to match
[  104.452426][ T6027] netlink: 'syz.0.304': attribute type 1 has an invalid length.
[  104.471755][ T6027] netlink: 148 bytes leftover after parsing attributes in process `syz.0.304'.
[  104.496217][ T6027] netlink: 'syz.0.304': attribute type 2 has an invalid length.
[  104.508851][ T6027] netlink: 60 bytes leftover after parsing attributes in process `syz.0.304'.
[  104.545194][ T6019] netlink: 44 bytes leftover after parsing attributes in process `syz.4.296'.
[  104.898416][ T6051] netlink: 8 bytes leftover after parsing attributes in process `syz.4.312'.
[  104.922427][ T6051] netlink: 4 bytes leftover after parsing attributes in process `syz.4.312'.
[  105.280097][ T6073] team0: Port device bridge2 added
[  105.288310][ T6072] bridge_slave_0: default FDB implementation only supports local addresses
[  105.668871][ T6092] tipc: Enabled bearer <udp:syz2>, priority 10
[  105.770528][ T6095] netlink: 'syz.4.333': attribute type 2 has an invalid length.
[  105.792861][ T6095] ipvlan0: entered allmulticast mode
[  105.798226][ T6095] veth0_vlan: entered allmulticast mode
[  105.809023][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888024e0f000: rx timeout, send abort
[  105.896382][ T6101] xfrm1: entered promiscuous mode
[  106.139534][ T6113] veth0_vlan: left promiscuous mode
[  106.161216][ T6110] netlink: 'syz.4.338': attribute type 1 has an invalid length.
[  106.318459][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888024e0f000: abort rx timeout. Force session deactivation
[  106.355068][ T6108] delete_channel: no stack
[  106.530492][ T6135] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  106.717830][ T6149] openvswitch: netlink: Key 9 has unexpected len 3064 expected 4
[  106.739844][ T6145] pim6reg1: entered promiscuous mode
[  106.747361][ T6145] pim6reg1: entered allmulticast mode
[  106.793233][    T9] tipc: Node number set to 1796683287
[  107.109386][ T6168] caif0: entered allmulticast mode
[  107.126081][ T6168] FAULT_INJECTION: forcing a failure.
[  107.126081][ T6168] name failslab, interval 1, probability 0, space 0, times 0
[  107.159706][ T6168] CPU: 0 PID: 6168 Comm: syz.4.357 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  107.169840][ T6168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  107.179934][ T6168] Call Trace:
[  107.183250][ T6168]  <TASK>
[  107.186208][ T6168]  dump_stack_lvl+0x241/0x360
[  107.190924][ T6168]  ? __pfx_dump_stack_lvl+0x10/0x10
[  107.196157][ T6168]  ? __pfx__printk+0x10/0x10
[  107.200795][ T6168]  ? __local_bh_enable_ip+0x168/0x200
[  107.206206][ T6168]  ? dev_hard_start_xmit+0x773/0x7e0
[  107.211538][ T6168]  ? __dev_queue_xmit+0x2da/0x3e90
[  107.216703][ T6168]  should_fail_ex+0x3b0/0x4e0
[  107.221438][ T6168]  ? __alloc_skb+0x1c3/0x440
[  107.226079][ T6168]  should_failslab+0x9/0x20
[  107.230635][ T6168]  kmem_cache_alloc_node_noprof+0x71/0x320
[  107.236507][ T6168]  __alloc_skb+0x1c3/0x440
[  107.240974][ T6168]  ? vfs_writev+0x37c/0xbb0
[  107.245537][ T6168]  ? __pfx___alloc_skb+0x10/0x10
[  107.250528][ T6168]  ? netlink_ack_tlv_len+0x6e/0x200
[  107.255762][ T6168]  netlink_ack+0x13f/0xa30
[  107.260213][ T6168]  netlink_rcv_skb+0x262/0x430
[  107.265001][ T6168]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  107.270481][ T6168]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  107.275801][ T6168]  ? netlink_deliver_tap+0x2e/0x1b0
[  107.281042][ T6168]  netlink_unicast+0x7f0/0x990
[  107.285841][ T6168]  ? __pfx_netlink_unicast+0x10/0x10
[  107.291293][ T6168]  ? __virt_addr_valid+0x183/0x520
[  107.296453][ T6168]  ? __check_object_size+0x49c/0x900
[  107.301771][ T6168]  ? bpf_lsm_netlink_send+0x9/0x10
[  107.306930][ T6168]  netlink_sendmsg+0x8e4/0xcb0
[  107.311742][ T6168]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.317063][ T6168]  ? aa_sock_msg_perm+0x91/0x160
[  107.322029][ T6168]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  107.327325][ T6168]  ? security_socket_sendmsg+0x87/0xb0
[  107.332802][ T6168]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.338111][ T6168]  __sock_sendmsg+0x221/0x270
[  107.342833][ T6168]  sock_write_iter+0x2dd/0x400
[  107.347612][ T6168]  ? __pfx_sock_write_iter+0x10/0x10
[  107.352927][ T6168]  do_iter_readv_writev+0x5a4/0x800
[  107.358193][ T6168]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  107.364110][ T6168]  ? bpf_lsm_file_permission+0x9/0x10
[  107.369497][ T6168]  ? security_file_permission+0x7f/0xa0
[  107.375060][ T6168]  ? rw_verify_area+0x1d2/0x6b0
[  107.379976][ T6168]  vfs_writev+0x37c/0xbb0
[  107.384339][ T6168]  ? __pfx_lock_acquire+0x10/0x10
[  107.389374][ T6168]  ? __pfx_vfs_writev+0x10/0x10
[  107.394239][ T6168]  ? vfs_write+0x7c4/0xc90
[  107.398679][ T6168]  ? __fget_files+0x29/0x470
[  107.403298][ T6168]  do_writev+0x1b1/0x350
[  107.407566][ T6168]  ? __pfx_do_writev+0x10/0x10
[  107.412370][ T6168]  ? do_syscall_64+0x100/0x230
[  107.417172][ T6168]  ? do_syscall_64+0xb6/0x230
[  107.421872][ T6168]  do_syscall_64+0xf3/0x230
[  107.426394][ T6168]  ? clear_bhb_loop+0x35/0x90
[  107.431094][ T6168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.437009][ T6168] RIP: 0033:0x7f07cbf75bd9
[  107.441445][ T6168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.461062][ T6168] RSP: 002b:00007f07ccc6b048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  107.469494][ T6168] RAX: ffffffffffffffda RBX: 00007f07cc103f60 RCX: 00007f07cbf75bd9
[  107.477610][ T6168] RDX: 0000000000000001 RSI: 00000000200000c0 RDI: 0000000000000003
[  107.485605][ T6168] RBP: 00007f07ccc6b0a0 R08: 0000000000000000 R09: 0000000000000000
[  107.493592][ T6168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.501572][ T6168] R13: 000000000000000b R14: 00007f07cc103f60 R15: 00007ffed16edcc8
[  107.509594][ T6168]  </TASK>
[  107.897494][ T6190] Zero length message leads to an empty skb
[  107.987785][ T6194] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.995366][ T6194] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.084521][ T6199] caif0: entered allmulticast mode
[  108.884012][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  108.939017][ T6244] __nla_validate_parse: 17 callbacks suppressed
[  108.939041][ T6244] netlink: 60 bytes leftover after parsing attributes in process `syz.3.387'.
[  108.994127][ T6244] openvswitch: Êü: Dropping previously announced user features
[  109.076444][ T6254] netlink: 8 bytes leftover after parsing attributes in process `syz.0.390'.
[  109.121101][ T6254] netlink: 40 bytes leftover after parsing attributes in process `syz.0.390'.
[  109.173397][ T6259] trusted_key: syz.3.392 sent an empty control message without MSG_MORE.
[  109.220296][ T6256] netlink: 'syz.4.391': attribute type 1 has an invalid length.
[  109.231389][ T6263] openvswitch: netlink: Port -2 exceeds max allowable 65535
[  109.240961][ T6256] netlink: 'syz.4.391': attribute type 2 has an invalid length.
[  109.259746][ T6256] netlink: 16074 bytes leftover after parsing attributes in process `syz.4.391'.
[  109.277710][ T6269] netlink: 28 bytes leftover after parsing attributes in process `syz.4.391'.
[  109.314033][ T6269] bond0: entered allmulticast mode
[  109.337888][ T6269] bond_slave_0: entered allmulticast mode
[  109.358337][ T6269] bond_slave_1: entered allmulticast mode
[  109.558408][ T6285] netlink: 12 bytes leftover after parsing attributes in process `syz.0.400'.
[  109.703391][ T6289] netlink: 40 bytes leftover after parsing attributes in process `syz.0.401'.
[  109.769424][ T6296] netlink: 8 bytes leftover after parsing attributes in process `syz.2.402'.
[  109.830975][ T6291] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.403'.
[  109.856469][ T6291] openvswitch: netlink: Geneve option length err (len 3060, max 255).
[  110.373367][ T6331] netlink: 8 bytes leftover after parsing attributes in process `syz.1.412'.
[  110.433641][ T6335] ipt_REJECT: ECHOREPLY no longer supported.
[  111.583213][ T6391] netlink: 'syz.4.432': attribute type 2 has an invalid length.
[  111.623581][ T6391] netlink: 'syz.4.432': attribute type 1 has an invalid length.
[  111.914654][ T6406] hsr0: entered promiscuous mode
[  111.920355][ T6406] macsec1: entered promiscuous mode
[  111.933545][ T6406] macsec1: entered allmulticast mode
[  111.938903][ T6406] hsr0: entered allmulticast mode
[  111.956519][ T6406] hsr_slave_0: entered allmulticast mode
[  111.962323][ T6406] hsr_slave_1: entered allmulticast mode
[  111.994511][ T6406] hsr0: left allmulticast mode
[  111.999361][ T6406] hsr_slave_0: left allmulticast mode
[  112.020626][ T6406] hsr_slave_1: left allmulticast mode
[  112.095105][ T6412] veth2: entered promiscuous mode
[  112.100569][ T6412] veth2: entered allmulticast mode
[  112.660707][ T6433] netlink: 'syz.0.449': attribute type 10 has an invalid length.
[  112.773096][ T6433] team0: Failed to send options change via netlink (err -105)
[  112.787596][ T6433] team0: Port device netdevsim0 added
[  112.812832][ T6438] netlink: 'syz.0.449': attribute type 10 has an invalid length.
[  112.868677][ T6443] netlink: 'syz.3.452': attribute type 2 has an invalid length.
[  112.972474][ T6458] netlink: 'syz.4.454': attribute type 10 has an invalid length.
[  113.044647][ T6458] team0: Failed to send options change via netlink (err -105)
[  113.052199][ T6458] team0: Port device netdevsim0 added
[  113.112808][ T6462] netlink: 'syz.4.454': attribute type 10 has an invalid length.
[  113.179429][ T6462] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  113.572314][ T6491] netlink: 'syz.2.467': attribute type 10 has an invalid length.
[  113.631059][ T6491] team0: Failed to send options change via netlink (err -105)
[  113.648173][ T6493] openvswitch: netlink: nsh attr 2048 is out of range max 3
[  113.656149][ T6491] team0: Port device netdevsim0 added
[  113.687282][    T9] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  113.758575][ T6499] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  113.792837][ T6499] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  113.872592][ T6504] xt_l2tp: missing protocol rule (udp|l2tpip)
[  114.107364][ T6522] __nla_validate_parse: 11 callbacks suppressed
[  114.107387][ T6522] netlink: 24 bytes leftover after parsing attributes in process `syz.4.477'.
[  114.225889][ T6526] netlink: 20 bytes leftover after parsing attributes in process `syz.3.478'.
[  114.236313][ T6533] netlink: 8 bytes leftover after parsing attributes in process `syz.4.481'.
[  114.370490][ T6540] netlink: 8 bytes leftover after parsing attributes in process `syz.4.483'.
[  114.404934][ T6540] netlink: 4 bytes leftover after parsing attributes in process `syz.4.483'.
[  114.441088][ T6540] netlink: 32 bytes leftover after parsing attributes in process `syz.4.483'.
[  114.449283][ T6542] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  114.742136][ T6566] validate_nla: 1 callbacks suppressed
[  114.742160][ T6566] netlink: 'syz.3.491': attribute type 28 has an invalid length.
[  114.793338][ T6564] netlink: 'syz.2.489': attribute type 10 has an invalid length.
[  114.861937][ T6564] team0: Port device netdevsim0 removed
[  115.012471][ T6581] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  115.501944][ T6603] netlink: 'syz.4.501': attribute type 8 has an invalid length.
[  115.503827][ T6590] syz.2.496 uses old SIOCAX25GETINFO
[  115.848029][ T6619] netlink: 28 bytes leftover after parsing attributes in process `syz.0.507'.
[  115.875818][ T6621] netlink: 'syz.3.508': attribute type 1 has an invalid length.
[  115.885026][ T6621] netlink: 616 bytes leftover after parsing attributes in process `syz.3.508'.
[  115.899884][ T6621] ieee802154 phy0 wpan0: encryption failed: -22
[  116.027053][ T6626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.076363][ T6626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.099366][ T6626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.111063][ T6626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.127489][ T6626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.140456][ T6626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.156854][ T6626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.176433][ T6626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.205718][ T6636] netlink: 4 bytes leftover after parsing attributes in process `syz.0.514'.
[  116.302381][ T6639] netlink: 8 bytes leftover after parsing attributes in process `syz.3.516'.
[  116.345446][ T6643] netlink: 'syz.0.517': attribute type 1 has an invalid length.
[  116.417259][ T6643] veth0_to_team: entered promiscuous mode
[  116.427477][ T6643] bond1: (slave macvlan2): Enslaving as a backup interface with an up link
[  116.500345][ T6652] sctp: failed to load transform for md5: -4
[  116.508364][ T6648] sctp: failed to load transform for md5: -4
[  116.931166][ T6667] geneve2: entered promiscuous mode
[  116.943004][ T6667] geneve2: entered allmulticast mode
[  117.000391][ T6681] netlink: 'syz.0.527': attribute type 63 has an invalid length.
[  117.516964][ T6711] netlink: 'syz.0.537': attribute type 309 has an invalid length.
[  117.542381][ T6711] macsec0: entered promiscuous mode
[  117.549744][ T6711] macsec1: entered promiscuous mode
[  117.677720][ T6713] openvswitch: netlink: Geneve option length err (len 3060, max 255).
[  117.775443][ T6716] warning: `syz.0.539' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  117.786876][ T6720] netlink: 'syz.2.541': attribute type 153 has an invalid length.
[  117.888114][ T6716] Cannot find add_set index 0 as target
[  117.978336][ T6723] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  117.999573][ T6723] bridge0: port 3(bond1) entered blocking state
[  118.018328][ T6723] bridge0: port 3(bond1) entered disabled state
[  118.026671][ T6723] bond1: entered allmulticast mode
[  118.031854][ T6723] bridge1: entered allmulticast mode
[  118.039717][ T6723] bond1: entered promiscuous mode
[  118.045099][ T6723] bridge1: entered promiscuous mode
[  118.145769][ T6739] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  118.318574][ T6750] openvswitch: netlink: ERSPAN option length err (len 3060, max 255).
[  118.549963][ T6767] FAULT_INJECTION: forcing a failure.
[  118.549963][ T6767] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.564931][ T6767] CPU: 1 PID: 6767 Comm: syz.3.559 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  118.574968][ T6767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  118.585060][ T6767] Call Trace:
[  118.588390][ T6767]  <TASK>
[  118.591373][ T6767]  dump_stack_lvl+0x241/0x360
[  118.596093][ T6767]  ? __pfx_dump_stack_lvl+0x10/0x10
[  118.601331][ T6767]  ? __pfx__printk+0x10/0x10
[  118.605981][ T6767]  ? iovec_from_user+0x61/0x240
[  118.610863][ T6767]  ? __pfx_lock_release+0x10/0x10
[  118.615934][ T6767]  should_fail_ex+0x3b0/0x4e0
[  118.620661][ T6767]  _copy_from_user+0x2f/0xe0
[  118.625305][ T6767]  ____sys_sendmsg+0x2e4/0x7d0
[  118.630140][ T6767]  ? __pfx_____sys_sendmsg+0x10/0x10
[  118.635482][ T6767]  ? __might_fault+0xaa/0x120
[  118.640215][ T6767]  __sys_sendmmsg+0x3b2/0x740
[  118.644950][ T6767]  ? __pfx___sys_sendmmsg+0x10/0x10
[  118.650237][ T6767]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  118.656170][ T6767]  ? ksys_write+0x23e/0x2c0
[  118.660715][ T6767]  ? __pfx_lock_release+0x10/0x10
[  118.665782][ T6767]  ? vfs_write+0x7c4/0xc90
[  118.670239][ T6767]  ? __mutex_unlock_slowpath+0x21d/0x750
[  118.675970][ T6767]  ? __pfx_vfs_write+0x10/0x10
[  118.680809][ T6767]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  118.686827][ T6767]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  118.693192][ T6767]  ? do_syscall_64+0x100/0x230
[  118.697994][ T6767]  __x64_sys_sendmmsg+0xa0/0xb0
[  118.702913][ T6767]  do_syscall_64+0xf3/0x230
[  118.707452][ T6767]  ? clear_bhb_loop+0x35/0x90
[  118.712171][ T6767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.718100][ T6767] RIP: 0033:0x7f11e7975bd9
[  118.722544][ T6767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.742188][ T6767] RSP: 002b:00007f11e86e8048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  118.750646][ T6767] RAX: ffffffffffffffda RBX: 00007f11e7b03f60 RCX: 00007f11e7975bd9
[  118.758652][ T6767] RDX: 0000000000000002 RSI: 00000000200009c0 RDI: 0000000000000003
[  118.766654][ T6767] RBP: 00007f11e86e80a0 R08: 0000000000000000 R09: 0000000000000000
[  118.774664][ T6767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  118.782673][ T6767] R13: 000000000000000b R14: 00007f11e7b03f60 R15: 00007ffd5133b708
[  118.790704][ T6767]  </TASK>
[  118.884072][ T6775] nr0: tun_chr_ioctl cmd 2148034049
[  119.042903][ T5106] Bluetooth: hci4: command 0x0405 tx timeout
[  119.120161][ T6794] __nla_validate_parse: 14 callbacks suppressed
[  119.120184][ T6794] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.568'.
[  119.144121][ T6794] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  119.153581][ T6794] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  119.204863][ T6798] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[  119.274152][ T6800] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  119.430374][ T6807] netlink: 12 bytes leftover after parsing attributes in process `syz.0.574'.
[  119.588582][ T6816] netlink: 'syz.0.577': attribute type 15 has an invalid length.
[  119.765183][ T6833] netlink: 8 bytes leftover after parsing attributes in process `syz.2.582'.
[  119.993977][ T6844] netlink: 12 bytes leftover after parsing attributes in process `syz.4.588'.
[  120.191324][ T6857] netlink: 8 bytes leftover after parsing attributes in process `syz.0.593'.
[  120.220248][ T6855] netlink: 'syz.4.592': attribute type 49 has an invalid length.
[  120.469065][ T6877] netlink: 5 bytes leftover after parsing attributes in process `syz.0.603'.
[  120.495660][ T6877] 0ªX¹¦D: renamed from gretap0 (while UP)
[  120.521094][ T6877] 0ªX¹¦D: entered allmulticast mode
[  120.534465][ T6877] A link change request failed with some changes committed already. Interface 
10ªX¹¦D may have been left with an inconsistent configuration, please check.
[  120.875332][ T6902] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode
[  120.912854][ T6902] macvlan2: entered promiscuous mode
[  120.927603][ T6902] macvlan2: entered allmulticast mode
[  120.942916][ T6902] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode
[  120.964391][ T6902] mac80211_hwsim hwsim5 wlan0: left allmulticast mode
[  120.971617][ T6902] mac80211_hwsim hwsim5 wlan0: left promiscuous mode
[  121.099307][ T6917] netlink: 164 bytes leftover after parsing attributes in process `syz.3.617'.
[  121.100853][ T6918] netlink: 'syz.4.618': attribute type 21 has an invalid length.
[  121.109998][ T6917] netlink: 'syz.3.617': attribute type 1 has an invalid length.
[  121.122418][ T6918] netlink: 128 bytes leftover after parsing attributes in process `syz.4.618'.
[  121.141504][ T6918] netlink: 'syz.4.618': attribute type 4 has an invalid length.
[  121.150846][ T6918] netlink: 'syz.4.618': attribute type 5 has an invalid length.
[  121.159485][ T6918] netlink: 3 bytes leftover after parsing attributes in process `syz.4.618'.
[  121.227038][ T6923] netlink: 76 bytes leftover after parsing attributes in process `syz.3.619'.
[  121.704750][ T6954] netlink: 'syz.0.632': attribute type 4 has an invalid length.
[  121.735021][ T6955] netlink: 'syz.0.632': attribute type 4 has an invalid length.
[  121.773043][ T6955] syz.0.632 (6955) used greatest stack depth: 18640 bytes left
[  121.818648][ T6957] netlink: 'syz.2.633': attribute type 8 has an invalid length.
[  121.853709][ T6963] netlink: 'syz.0.636': attribute type 2 has an invalid length.
[  122.070987][ T6977] tc_dump_action: action bad kind
[  122.343528][ T6993] ipt_ECN: cannot use operation on non-tcp rule
[  122.450143][ T7002] syz.4.656[7002] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  122.450315][ T7002] syz.4.656[7002] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  122.619691][ T7013] netlink: 'syz.3.660': attribute type 1 has an invalid length.
[  123.441540][ T7069] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  123.477209][ T7069] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:1)
[  123.507174][ T7069] bridge_slave_0: default FDB implementation only supports local addresses
[  123.735586][ T5119] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  123.746279][ T5119] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  123.755059][ T5119] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  123.764973][ T5119] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  123.783470][ T5119] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  123.791152][ T5119] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  123.810630][ T7080] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  124.299568][ T7110] __nla_validate_parse: 12 callbacks suppressed
[  124.299599][ T7110] netlink: 132 bytes leftover after parsing attributes in process `syz.3.694'.
[  124.575757][ T7125] netlink: 8 bytes leftover after parsing attributes in process `syz.4.700'.
[  124.747835][ T7140] netlink: 36 bytes leftover after parsing attributes in process `syz.2.703'.
[  124.758626][ T7141] netlink: 12 bytes leftover after parsing attributes in process `syz.0.701'.
[  124.800684][ T7079] chnl_net:caif_netlink_parms(): no params data found
[  124.870871][ T7147] netlink: 8 bytes leftover after parsing attributes in process `syz.4.705'.
[  124.878908][ T7141] netlink: 4 bytes leftover after parsing attributes in process `syz.0.701'.
[  124.954749][ T7150] netlink: 56 bytes leftover after parsing attributes in process `syz.0.701'.
[  125.152127][ T7131] netlink: 80 bytes leftover after parsing attributes in process `syz.0.701'.
[  125.191875][ T7167] netlink: 16 bytes leftover after parsing attributes in process `syz.2.708'.
[  125.219912][ T7167] netlink: 4 bytes leftover after parsing attributes in process `syz.2.708'.
[  125.407487][ T7079] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.418583][ T7079] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.429579][ T7079] bridge_slave_0: entered allmulticast mode
[  125.437394][ T7079] bridge_slave_0: entered promiscuous mode
[  125.459394][ T7079] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.480840][ T7079] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.490889][ T7079] bridge_slave_1: entered allmulticast mode
[  125.506183][ T7079] bridge_slave_1: entered promiscuous mode
[  125.636929][ T7188] FAULT_INJECTION: forcing a failure.
[  125.636929][ T7188] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.665283][ T7188] CPU: 0 PID: 7188 Comm: syz.2.717 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  125.675348][ T7188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  125.685442][ T7188] Call Trace:
[  125.688759][ T7188]  <TASK>
[  125.691729][ T7188]  dump_stack_lvl+0x241/0x360
[  125.696462][ T7188]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.701711][ T7188]  ? __pfx__printk+0x10/0x10
[  125.706382][ T7188]  ? snprintf+0xda/0x120
[  125.710686][ T7188]  should_fail_ex+0x3b0/0x4e0
[  125.715429][ T7188]  _copy_to_user+0x2f/0xb0
[  125.719869][ T7188]  simple_read_from_buffer+0xca/0x150
[  125.725266][ T7188]  proc_fail_nth_read+0x1e9/0x250
[  125.730316][ T7188]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  125.735886][ T7188]  ? rw_verify_area+0x520/0x6b0
[  125.740758][ T7188]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  125.746407][ T7188]  vfs_read+0x204/0xbc0
[  125.750580][ T7188]  ? __pfx_lock_release+0x10/0x10
[  125.755622][ T7188]  ? __pfx_vfs_read+0x10/0x10
[  125.760322][ T7188]  ? __fget_files+0x29/0x470
[  125.764970][ T7188]  ? __fget_files+0x3f6/0x470
[  125.769673][ T7188]  ksys_read+0x1a0/0x2c0
[  125.773935][ T7188]  ? __pfx_ksys_read+0x10/0x10
[  125.778714][ T7188]  ? do_syscall_64+0x100/0x230
[  125.783499][ T7188]  ? do_syscall_64+0xb6/0x230
[  125.788198][ T7188]  do_syscall_64+0xf3/0x230
[  125.792729][ T7188]  ? clear_bhb_loop+0x35/0x90
[  125.797439][ T7188]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.803361][ T7188] RIP: 0033:0x7f84905746bc
[  125.807787][ T7188] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  125.827401][ T7188] RSP: 002b:00007f84912d2040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  125.835841][ T7188] RAX: ffffffffffffffda RBX: 00007f8490703f60 RCX: 00007f84905746bc
[  125.843825][ T7188] RDX: 000000000000000f RSI: 00007f84912d20b0 RDI: 0000000000000004
[  125.851805][ T7188] RBP: 00007f84912d20a0 R08: 0000000000000000 R09: 0000000000000000
[  125.859785][ T7188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.867764][ T7188] R13: 000000000000000b R14: 00007f8490703f60 R15: 00007ffdea835938
[  125.875766][ T7188]  </TASK>
[  125.918123][ T7079] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  125.928073][ T5106] Bluetooth: hci5: command tx timeout
[  125.967083][ T7079] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  126.051771][ T7202] validate_nla: 3 callbacks suppressed
[  126.051794][ T7202] netlink: 'syz.2.722': attribute type 1 has an invalid length.
[  126.101913][ T7079] team0: Port device team_slave_0 added
[  126.119966][ T7079] team0: Port device team_slave_1 added
[  126.191418][ T7079] batman_adv: batadv0: Adding interface: batadv_slave_0
[  126.210334][ T7079] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  126.266029][ T7079] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  126.284384][ T7079] batman_adv: batadv0: Adding interface: batadv_slave_1
[  126.302569][ T7079] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  126.352298][ T7079] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  126.524392][ T7079] hsr_slave_0: entered promiscuous mode
[  126.540386][ T7079] hsr_slave_1: entered promiscuous mode
[  126.557555][ T7079] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  126.577791][ T7079] Cannot create hsr debugfs directory
[  127.067568][ T7079] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.268487][ T7261] nbd: nbd0 already in use
[  127.311732][ T7079] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.499483][ T7079] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.641199][ T7079] team0: Port device netdevsim0 removed
[  127.682196][ T7079] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.003089][ T5106] Bluetooth: hci5: command tx timeout
[  128.024943][ T7079] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  128.161283][ T7079] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  128.273465][ T7079] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  128.303620][ T7079] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  128.529754][ T7313] netlink: 'syz.3.765': attribute type 2 has an invalid length.
[  128.552525][ T7313] ipvlan0: entered allmulticast mode
[  128.572053][ T7313] veth0_vlan: entered allmulticast mode
[  128.621332][ T7079] 8021q: adding VLAN 0 to HW filter on device bond0
[  128.740446][ T7079] 8021q: adding VLAN 0 to HW filter on device team0
[  128.770478][ T7320] netlink: 'syz.0.766': attribute type 10 has an invalid length.
[  128.824277][ T7320] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.832193][ T7320] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.937359][ T7320] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.944698][ T7320] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.953392][ T7320] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.960628][ T7320] bridge0: port 1(bridge_slave_0) entered forwarding state
[  129.012478][ T7320] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.019963][ T7320] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.147862][ T5114] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.155919][ T5114] bridge0: port 1(bridge_slave_0) entered forwarding state
[  129.231006][ T5114] bridge0: port 2(bridge_slave_1) entered blocking state
[  129.238296][ T5114] bridge0: port 2(bridge_slave_1) entered forwarding state
[  129.268538][ T7342] syz.2.777[7342] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.268714][ T7342] syz.2.777[7342] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.548598][ T7349] __nla_validate_parse: 11 callbacks suppressed
[  129.548624][ T7349] netlink: 40 bytes leftover after parsing attributes in process `syz.4.779'.
[  129.611772][ T7349] netlink: 'syz.4.779': attribute type 8 has an invalid length.
[  129.944178][ T7079] 8021q: adding VLAN 0 to HW filter on device batadv0
[  130.085785][ T5106] Bluetooth: hci5: command tx timeout
[  130.110044][ T7375] netlink: 12 bytes leftover after parsing attributes in process `syz.4.786'.
[  130.148770][ T7079] veth0_vlan: entered promiscuous mode
[  130.188310][ T7079] veth1_vlan: entered promiscuous mode
[  130.314886][ T7079] veth0_macvtap: entered promiscuous mode
[  130.372157][ T7079] veth1_macvtap: entered promiscuous mode
[  130.447998][ T7079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.479987][ T7079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.504520][ T7079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.515651][ T7079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.526102][ T7079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.561641][ T7079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.579407][ T7079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.591621][ T7079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.610822][ T7079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.644049][ T7079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.658066][ T7079] batman_adv: batadv0: Interface activated: batadv_slave_0
[  130.668903][ T7397] netlink: 12 bytes leftover after parsing attributes in process `syz.2.791'.
[  130.760897][ T7079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.771469][ T7401] netlink: 'syz.4.793': attribute type 1 has an invalid length.
[  130.771808][ T7400] netlink: 'syz.4.793': attribute type 1 has an invalid length.
[  130.789204][ T7079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.799822][ T7079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.819983][ T7079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.830150][ T7079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.841752][ T7079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.851882][ T7079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.862498][ T7079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.872429][ T7079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.883181][ T7079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.896277][ T7079] batman_adv: batadv0: Interface activated: batadv_slave_1
[  130.922492][ T7392] team0: Port device bridge2 added
[  130.940472][ T7400] bond0: entered promiscuous mode
[  130.949882][ T7400] bond_slave_0: entered promiscuous mode
[  130.956519][ T7400] bond_slave_1: entered promiscuous mode
[  130.964091][ T7397] netlink: 8 bytes leftover after parsing attributes in process `syz.2.791'.
[  131.005185][ T7398] bond0: left promiscuous mode
[  131.010304][ T7398] bond_slave_0: left promiscuous mode
[  131.019935][ T7398] bond_slave_1: left promiscuous mode
[  131.030956][ T7079] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  131.041666][ T7079] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  131.068826][ T7079] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  131.097281][ T7079] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  131.188043][ T7411] netlink: 'syz.4.798': attribute type 3 has an invalid length.
[  131.228218][ T7411] netlink: 130984 bytes leftover after parsing attributes in process `syz.4.798'.
[  131.321920][ T2834] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.334406][ T7411] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  131.349409][ T2834] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  131.436690][ T7413] netlink: 19 bytes leftover after parsing attributes in process `syz.4.798'.
[  131.482226][ T1108] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.501055][ T1108] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  131.640932][ T7429] netlink: 40 bytes leftover after parsing attributes in process `syz.2.804'.
[  131.674989][ T7429] netlink: 116 bytes leftover after parsing attributes in process `syz.2.804'.
[  131.698552][ T7429] bond1: left allmulticast mode
[  131.707570][ T7429] bridge1: left allmulticast mode
[  131.713182][ T7429] bond1: left promiscuous mode
[  131.718218][ T7429] bridge1: left promiscuous mode
[  131.726989][ T7429] bridge0: port 3(bond1) entered disabled state
[  131.741234][ T7429] bridge_slave_1: left allmulticast mode
[  131.755100][ T7429] bridge_slave_1: left promiscuous mode
[  131.768635][ T7429] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.796261][ T7429] bridge_slave_0: left allmulticast mode
[  131.805734][ T7429] bridge_slave_0: left promiscuous mode
[  131.815309][ T7429] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.990093][ T7444] netlink: 'syz.1.810': attribute type 4 has an invalid length.
[  132.033460][ T7444] netlink: 'syz.1.810': attribute type 4 has an invalid length.
[  132.080589][ T7444] netlink: 'syz.1.810': attribute type 4 has an invalid length.
[  132.173174][ T5119] Bluetooth: hci5: command tx timeout
[  132.346789][ T7460] netlink: 'syz.0.814': attribute type 10 has an invalid length.
[  132.430468][ T7462] A link change request failed with some changes committed already. Interface batadv_slave_1 may have been left with an inconsistent configuration, please check.
[  132.578125][ T7473] netlink: 'syz.1.822': attribute type 49 has an invalid length.
[  132.730242][ T7478] netlink: 8 bytes leftover after parsing attributes in process `syz.1.824'.
[  132.776048][ T7478] vlan2: entered promiscuous mode
[  132.804890][ T7478] bridge0: entered promiscuous mode
[  132.823933][ T7478] vlan2: entered allmulticast mode
[  132.829402][ T7478] bridge0: entered allmulticast mode
[  132.838523][ T7482] netlink: 8 bytes leftover after parsing attributes in process `syz.4.825'.
[  133.017144][ T7493] xt_TCPMSS: Only works on TCP SYN packets
[  133.062951][ T7493] rdma_op ffff88801eae09f0 conn xmit_rdma 0000000000000000
[  133.206450][ T1251] ieee802154 phy1 wpan1: encryption failed: -22
[  133.278807][ T7501] bond2: (slave bridge0): Enslaving as an active interface with an up link
[  133.341575][ T7509] netlink: 'syz.4.836': attribute type 1 has an invalid length.
[  133.535578][ T7513] netlink: 'syz.3.838': attribute type 63 has an invalid length.
[  133.621983][ T7517] veth0: entered promiscuous mode
[  133.635265][ T7517] veth0: left promiscuous mode
[  134.243136][ T5119] Bluetooth: hci5: command 0x0405 tx timeout
[  135.068800][ T7587] __nla_validate_parse: 9 callbacks suppressed
[  135.068823][ T7587] netlink: 40 bytes leftover after parsing attributes in process `syz.0.863'.
[  135.294579][ T7601] netlink: 4 bytes leftover after parsing attributes in process `syz.4.868'.
[  135.421333][ T7606] tipc: Started in network mode
[  135.442161][ T7606] tipc: Node identity fffffffffff0402e000000000000405f, cluster identity 4711
[  135.456750][ T7610] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.872'.
[  135.471321][ T7606] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  135.485761][ T7610] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  135.515095][ T7610] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  135.806041][ T7624] netlink: 20 bytes leftover after parsing attributes in process `syz.2.873'.
[  135.834515][ T7624] netlink: 'syz.2.873': attribute type 2 has an invalid length.
[  136.012534][ T7635] Bluetooth: MGMT ver 1.22
[  136.013957][ T7637] netlink: 8 bytes leftover after parsing attributes in process `syz.0.880'.
[  136.022870][ T7635] Bluetooth: hci3: unsupported parameter 64512
[  136.050268][ T7635] Bluetooth: hci3: invalid length 0, exp 2 for type 0
[  136.274436][ T7652] netlink: 20 bytes leftover after parsing attributes in process `syz.1.882'.
[  136.657071][ T7674] netlink: 56 bytes leftover after parsing attributes in process `syz.2.893'.
[  136.694355][ T7673] netlink: 'syz.4.891': attribute type 11 has an invalid length.
[  136.736007][ T7673] netlink: 60 bytes leftover after parsing attributes in process `syz.4.891'.
[  136.768523][ T7673] netlink: 'syz.4.891': attribute type 11 has an invalid length.
[  136.786338][ T7673] debugfs: Directory 'netdev:' with parent 'phy11' already present!
[  137.405259][ T7714] netlink: 8 bytes leftover after parsing attributes in process `syz.1.906'.
[  137.451589][ T7716] netlink: 3 bytes leftover after parsing attributes in process `syz.4.907'.
[  137.471655][ T7668] syz.3.889 (7668) used greatest stack depth: 18544 bytes left
[  137.493662][ T7718] Cannot find add_set index 0 as target
[  138.238855][ T7760] netlink: 'syz.4.925': attribute type 11 has an invalid length.
[  138.283908][ T7760] netlink: 'syz.4.925': attribute type 11 has an invalid length.
[  138.302282][ T7766] xt_TCPMSS: Only works on TCP SYN packets
[  138.307464][ T7760] debugfs: Directory 'netdev:' with parent 'phy11' already present!
[  138.499487][ T7777] netlink: 'syz.1.930': attribute type 10 has an invalid length.
[  138.574872][ T7777] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  138.650444][ T7785] netlink: 'syz.2.935': attribute type 8 has an invalid length.
[  138.860873][ T7803] atomic_op ffff888065168998 conn xmit_atomic 0000000000000000
[  138.977446][ T7809] FAULT_INJECTION: forcing a failure.
[  138.977446][ T7809] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  139.006595][ T7809] CPU: 1 PID: 7809 Comm: syz.4.946 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  139.016674][ T7809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  139.026769][ T7809] Call Trace:
[  139.030101][ T7809]  <TASK>
[  139.033073][ T7809]  dump_stack_lvl+0x241/0x360
[  139.037818][ T7809]  ? __pfx_dump_stack_lvl+0x10/0x10
[  139.043065][ T7809]  ? __pfx__printk+0x10/0x10
[  139.047723][ T7809]  ? snprintf+0xda/0x120
[  139.052022][ T7809]  should_fail_ex+0x3b0/0x4e0
[  139.056758][ T7809]  _copy_to_user+0x2f/0xb0
[  139.061217][ T7809]  simple_read_from_buffer+0xca/0x150
[  139.066643][ T7809]  proc_fail_nth_read+0x1e9/0x250
[  139.071719][ T7809]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  139.077397][ T7809]  ? rw_verify_area+0x520/0x6b0
[  139.082291][ T7809]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  139.087876][ T7809]  vfs_read+0x204/0xbc0
[  139.092060][ T7809]  ? __pfx_lock_release+0x10/0x10
[  139.097096][ T7809]  ? __pfx_vfs_read+0x10/0x10
[  139.101811][ T7809]  ? __fget_files+0x29/0x470
[  139.106441][ T7809]  ? __fget_files+0x3f6/0x470
[  139.111138][ T7809]  ksys_read+0x1a0/0x2c0
[  139.115410][ T7809]  ? __pfx_ksys_read+0x10/0x10
[  139.120214][ T7809]  ? do_syscall_64+0x100/0x230
[  139.124991][ T7809]  ? do_syscall_64+0xb6/0x230
[  139.129677][ T7809]  do_syscall_64+0xf3/0x230
[  139.134188][ T7809]  ? clear_bhb_loop+0x35/0x90
[  139.138877][ T7809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.144866][ T7809] RIP: 0033:0x7f07cbf746bc
[  139.149461][ T7809] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  139.169075][ T7809] RSP: 002b:00007f07ccc6b040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  139.177501][ T7809] RAX: ffffffffffffffda RBX: 00007f07cc103f60 RCX: 00007f07cbf746bc
[  139.185479][ T7809] RDX: 000000000000000f RSI: 00007f07ccc6b0b0 RDI: 0000000000000004
[  139.193457][ T7809] RBP: 00007f07ccc6b0a0 R08: 0000000000000000 R09: 0000000000000000
[  139.201455][ T7809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  139.209432][ T7809] R13: 000000000000000b R14: 00007f07cc103f60 R15: 00007ffed16edcc8
[  139.217431][ T7809]  </TASK>
[  139.338431][ T7821] sctp: [Deprecated]: syz.1.950 (pid 7821) Use of int in max_burst socket option deprecated.
[  139.338431][ T7821] Use struct sctp_assoc_value instead
[  139.377023][ T7822] nbd: socks must be embedded in a SOCK_ITEM attr
[  139.433229][ T7826] netlink: 'syz.4.951': attribute type 1 has an invalid length.
[  139.565652][ T7829] netlink: 'syz.3.952': attribute type 62 has an invalid length.
[  139.891173][ T7851] netlink: 'syz.1.958': attribute type 2 has an invalid length.
[  140.081046][ T7858] syzkaller1: entered promiscuous mode
[  140.100539][ T7858] syzkaller1: entered allmulticast mode
[  140.128029][ T7858] dccp_invalid_packet: P.type (SYNC) not Data || [Data]Ack, while P.X == 0
[  140.278883][ T7864] __nla_validate_parse: 9 callbacks suppressed
[  140.278905][ T7864] netlink: 8 bytes leftover after parsing attributes in process `syz.0.966'.
[  140.295119][ T7863] netlink: 8 bytes leftover after parsing attributes in process `syz.4.967'.
[  140.437805][ T7868] netlink: 4 bytes leftover after parsing attributes in process `syz.2.969'.
[  140.463214][ T7870] netlink: 8 bytes leftover after parsing attributes in process `syz.0.971'.
[  140.510983][ T7874] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  140.559736][ T7875] netlink: 24 bytes leftover after parsing attributes in process `syz.2.969'.
[  140.774847][ T7885] netlink: 4 bytes leftover after parsing attributes in process `syz.0.978'.
[  140.857138][ T7894] netlink: 8 bytes leftover after parsing attributes in process `syz.0.978'.
[  141.476842][ T7920] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode
[  141.488135][ T7920] macvlan3: entered promiscuous mode
[  141.503359][ T7920] macvlan3: entered allmulticast mode
[  141.526123][ T7920] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode
[  141.547666][ T7920] mac80211_hwsim hwsim5 wlan0: left allmulticast mode
[  141.583456][ T7920] mac80211_hwsim hwsim5 wlan0: left promiscuous mode
[  141.596068][ T7917] netlink: 'syz.1.986': attribute type 29 has an invalid length.
[  141.664880][ T7917] netlink: 'syz.1.986': attribute type 29 has an invalid length.
[  141.678955][ T7922] netlink: 'syz.1.986': attribute type 29 has an invalid length.
[  141.687290][ T5106] Bluetooth: hci0: command tx timeout
[  141.693562][ T7926] netlink: 88 bytes leftover after parsing attributes in process `syz.4.990'.
[  141.698747][ T7917] netlink: 'syz.1.986': attribute type 29 has an invalid length.
[  141.732837][ T7926] netlink: 8 bytes leftover after parsing attributes in process `syz.4.990'.
[  142.022542][ T7945] raw_sendmsg: syz.3.996 forgot to set AF_INET. Fix it!
[  142.063236][ T7944] netlink: 12 bytes leftover after parsing attributes in process `syz.2.997'.
[  142.122217][ T7949] Unknown options in mask 1f4
[  142.246039][ T7955] netlink: 'syz.3.999': attribute type 8 has an invalid length.
[  142.288845][ T7957] openvswitch: netlink: Missing key (keys=44, expected=10000000)
[  142.756187][ T7988] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-xor(2)
[  144.194540][ T8070] ip6tnl2: entered promiscuous mode
[  144.199857][ T8070] ip6tnl2: entered allmulticast mode
[  144.597907][ T8095] validate_nla: 6 callbacks suppressed
[  144.597949][ T8095] netlink: 'syz.3.1055': attribute type 30 has an invalid length.
[  145.231264][ T8122] x_tables: ip_tables: string.1 match: invalid size 160 (kernel) != (user) 200
[  145.592059][ T8149] __nla_validate_parse: 12 callbacks suppressed
[  145.592080][ T8149] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1069'.
[  145.618885][ T8140] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1066'.
[  145.706046][ T8152] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1066'.
[  145.969852][ T8163] tunl0: entered promiscuous mode
[  145.995966][ T8163] netlink: 'syz.0.1073': attribute type 4 has an invalid length.
[  146.049623][ T8163] netlink: 9 bytes leftover after parsing attributes in process `syz.0.1073'.
[  146.449533][ T8189] Bluetooth: MGMT ver 1.22
[  146.494358][ T8187] netlink: 'syz.3.1080': attribute type 9 has an invalid length.
[  146.542795][ T8187] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1080'.
[  146.747175][ T8203] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1085'.
[  146.759867][ T8209] netlink: 'syz.4.1088': attribute type 2 has an invalid length.
[  146.905048][ T8213] Bluetooth: MGMT ver 1.22
[  146.990692][ T8217] netlink: 'syz.3.1090': attribute type 1 has an invalid length.
[  147.022589][ T8217] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1090'.
[  147.090772][ T8224] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1092'.
[  147.126057][ T8224] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1092'.
[  147.617047][ T8251] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1097'.
[  147.651957][ T8251] nbd: nbd0 already in use
[  148.095846][ T8281] 8021q: VLANs not supported on hsr0
[  148.616797][ T8316] netlink: 'syz.3.1122': attribute type 1 has an invalid length.
[  148.900585][ T8331] tipc: Started in network mode
[  148.925098][ T8331] tipc: Node identity ac14140d, cluster identity 4711
[  148.952897][ T8331] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  148.983210][ T8333] openvswitch: netlink: Key 9 has unexpected len 3064 expected 4
[  149.253060][ T8353] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  149.473758][ T8366] ebt_among: dst integrity fail: 100
[  149.876443][ T8385] caif0: entered allmulticast mode
[  150.345817][ T8407] FAULT_INJECTION: forcing a failure.
[  150.345817][ T8407] name failslab, interval 1, probability 0, space 0, times 0
[  150.442077][ T8407] CPU: 0 PID: 8407 Comm: syz.0.1152 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  150.452219][ T8407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  150.462399][ T8407] Call Trace:
[  150.465717][ T8407]  <TASK>
[  150.468679][ T8407]  dump_stack_lvl+0x241/0x360
[  150.473408][ T8407]  ? __pfx_dump_stack_lvl+0x10/0x10
[  150.478658][ T8407]  ? __pfx__printk+0x10/0x10
[  150.483303][ T8407]  ? ref_tracker_alloc+0x332/0x490
[  150.488448][ T8407]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  150.493932][ T8407]  should_fail_ex+0x3b0/0x4e0
[  150.498625][ T8407]  ? skb_clone+0x20c/0x390
[  150.503069][ T8407]  should_failslab+0x9/0x20
[  150.507589][ T8407]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  150.512981][ T8407]  skb_clone+0x20c/0x390
[  150.517242][ T8407]  __netlink_deliver_tap+0x3cc/0x7c0
[  150.522641][ T8407]  ? netlink_deliver_tap+0x2e/0x1b0
[  150.527862][ T8407]  netlink_deliver_tap+0x19d/0x1b0
[  150.533075][ T8407]  netlink_sendskb+0x68/0x140
[  150.537763][ T8407]  netlink_unicast+0x39d/0x990
[  150.542534][ T8407]  ? __asan_memcpy+0x40/0x70
[  150.547162][ T8407]  ? __pfx_netlink_unicast+0x10/0x10
[  150.552465][ T8407]  netlink_rcv_skb+0x262/0x430
[  150.557256][ T8407]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  150.562731][ T8407]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  150.568059][ T8407]  ? netlink_deliver_tap+0x2e/0x1b0
[  150.573278][ T8407]  netlink_unicast+0x7f0/0x990
[  150.578061][ T8407]  ? __pfx_netlink_unicast+0x10/0x10
[  150.583354][ T8407]  ? __virt_addr_valid+0x183/0x520
[  150.588485][ T8407]  ? __check_object_size+0x49c/0x900
[  150.593791][ T8407]  ? bpf_lsm_netlink_send+0x9/0x10
[  150.598946][ T8407]  netlink_sendmsg+0x8e4/0xcb0
[  150.603735][ T8407]  ? __pfx_netlink_sendmsg+0x10/0x10
[  150.609035][ T8407]  ? aa_sock_msg_perm+0x91/0x160
[  150.613987][ T8407]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  150.619301][ T8407]  ? security_socket_sendmsg+0x87/0xb0
[  150.624775][ T8407]  ? __pfx_netlink_sendmsg+0x10/0x10
[  150.630070][ T8407]  __sock_sendmsg+0x221/0x270
[  150.634764][ T8407]  sock_write_iter+0x2dd/0x400
[  150.639546][ T8407]  ? __pfx_sock_write_iter+0x10/0x10
[  150.644861][ T8407]  do_iter_readv_writev+0x5a4/0x800
[  150.650077][ T8407]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  150.655811][ T8407]  ? bpf_lsm_file_permission+0x9/0x10
[  150.661190][ T8407]  ? security_file_permission+0x7f/0xa0
[  150.666751][ T8407]  ? rw_verify_area+0x1d2/0x6b0
[  150.671626][ T8407]  vfs_writev+0x37c/0xbb0
[  150.676002][ T8407]  ? __pfx_lock_acquire+0x10/0x10
[  150.681039][ T8407]  ? __pfx_vfs_writev+0x10/0x10
[  150.685909][ T8407]  ? vfs_write+0x7c4/0xc90
[  150.690352][ T8407]  ? __fget_files+0x29/0x470
[  150.696448][ T8407]  do_writev+0x1b1/0x350
[  150.700713][ T8407]  ? __pfx_do_writev+0x10/0x10
[  150.705492][ T8407]  ? do_syscall_64+0x100/0x230
[  150.710268][ T8407]  ? do_syscall_64+0xb6/0x230
[  150.714956][ T8407]  do_syscall_64+0xf3/0x230
[  150.719472][ T8407]  ? clear_bhb_loop+0x35/0x90
[  150.724178][ T8407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.730085][ T8407] RIP: 0033:0x7f7b6f375bd9
[  150.734509][ T8407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.754140][ T8407] RSP: 002b:00007f7b701e9048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  150.762574][ T8407] RAX: ffffffffffffffda RBX: 00007f7b6f503f60 RCX: 00007f7b6f375bd9
[  150.770555][ T8407] RDX: 0000000000000001 RSI: 00000000200000c0 RDI: 0000000000000003
[  150.778559][ T8407] RBP: 00007f7b701e90a0 R08: 0000000000000000 R09: 0000000000000000
[  150.786544][ T8407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.794533][ T8407] R13: 000000000000000b R14: 00007f7b6f503f60 R15: 00007fffa7e3a6f8
[  150.802537][ T8407]  </TASK>
[  151.306040][ T8451] __nla_validate_parse: 11 callbacks suppressed
[  151.306060][ T8451] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1168'.
[  151.369158][ T8454] netlink: 'syz.2.1169': attribute type 11 has an invalid length.
[  151.377720][ T8454] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1169'.
[  151.402292][ T8454] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1169'.
[  151.425213][ T8454] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1169'.
[  151.467628][ T8454] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1169'.
[  151.487451][ T8454] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.506404][ T8454] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.514866][ T8460] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1171'.
[  151.530869][ T8454] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.539619][ T8460] nbd: nbd0 already in use
[  151.544580][ T8454] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.603309][ T5119] Bluetooth: hci0: command 0x0401 tx timeout
[  151.609570][ T5106] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  151.667033][ T2834] bond0: (slave wlan1): link status definitely down, disabling slave
[  151.885724][ T8480] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1178'.
[  151.963467][ T8482] xt_cluster: you have exceeded the maximum number of cluster nodes (4294967295 > 32)
[  152.100352][ T8495] netlink: 'syz.0.1183': attribute type 29 has an invalid length.
[  152.122861][ T8495] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1183'.
[  152.143200][ T8495] netlink: 'syz.0.1183': attribute type 29 has an invalid length.
[  152.160765][ T8499] netlink: 184 bytes leftover after parsing attributes in process `syz.3.1185'.
[  152.166194][ T8495] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1183'.
[  152.181795][ T8499] netlink: 'syz.3.1185': attribute type 1 has an invalid length.
[  152.546145][ T8520] xt_TCPMSS: Only works on TCP SYN packets
[  152.574345][ T8520] rdma_op ffff8880442879f0 conn xmit_rdma 0000000000000000
[  152.821639][ T8537] syz_tun: entered allmulticast mode
[  152.853824][ T8539] netlink: 'syz.3.1204': attribute type 1 has an invalid length.
[  152.884760][ T8537] syz_tun (unregistering): left allmulticast mode
[  153.025890][ T8546] netlink: 'syz.1.1206': attribute type 40 has an invalid length.
[  153.085319][ T8549] macsec1: entered promiscuous mode
[  153.091506][ T8549] macsec1: entered allmulticast mode
[  153.097130][ T8549] hsr0: entered allmulticast mode
[  153.102469][ T8549] hsr_slave_0: entered allmulticast mode
[  153.110673][ T8549] hsr_slave_1: entered allmulticast mode
[  153.166197][ T8549] hsr0: left allmulticast mode
[  153.171042][ T8549] hsr_slave_0: left allmulticast mode
[  153.183894][ T8549] hsr_slave_1: left allmulticast mode
[  153.504692][ T8560] bridge_slave_1: left allmulticast mode
[  153.510660][ T8560] bridge_slave_1: left promiscuous mode
[  153.517047][ T8560] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.534302][ T8560] netlink: 'syz.4.1213': attribute type 2 has an invalid length.
[  153.544682][ T8560] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  153.702065][ T8567] netlink: 'syz.1.1215': attribute type 2 has an invalid length.
[  153.752255][ T8567] netlink: 'syz.1.1215': attribute type 1 has an invalid length.
[  154.207712][ T8592] hsr0: entered promiscuous mode
[  154.227700][ T8592] macsec1: entered promiscuous mode
[  154.240295][ T8592] macsec1: entered allmulticast mode
[  154.257311][ T8592] hsr0: entered allmulticast mode
[  154.276809][ T8592] hsr_slave_0: entered allmulticast mode
[  154.282535][ T8592] hsr_slave_1: entered allmulticast mode
[  154.328195][ T8592] hsr0: left allmulticast mode
[  154.344128][ T8592] hsr_slave_0: left allmulticast mode
[  154.349594][ T8592] hsr_slave_1: left allmulticast mode
[  154.433882][ T8601] IPVS: set_ctl: invalid protocol: 12 172.30.0.2:20004
[  154.852875][ T8616] netlink: 'syz.2.1228': attribute type 2 has an invalid length.
[  154.861400][ T8616] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  155.404643][ T8656] openvswitch: netlink: Key type 14864 is out of range max 32
[  155.420705][ T8657] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (6)
[  155.636735][ T8669] FAULT_INJECTION: forcing a failure.
[  155.636735][ T8669] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  155.637996][ T8669] 
[  155.638004][ T8669] ======================================================
[  155.638011][ T8669] WARNING: possible circular locking dependency detected
[  155.638019][ T8669] 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0 Not tainted
[  155.638032][ T8669] ------------------------------------------------------
[  155.638039][ T8669] syz.2.1247/8669 is trying to acquire lock:
[  155.638050][ T8669] ffffffff8e328140 (console_owner){..-.}-{0:0}, at: console_flush_all+0x152/0xfd0
[  155.638113][ T8669] 
[  155.638113][ T8669] but task is already holding lock:
[  155.638119][ T8669] ffff8880b942a718 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240
[  155.638163][ T8669] 
[  155.638163][ T8669] which lock already depends on the new lock.
[  155.638163][ T8669] 
[  155.638170][ T8669] 
[  155.638170][ T8669] the existing dependency chain (in reverse order) is:
[  155.638176][ T8669] 
[  155.638176][ T8669] -> #4 (&base->lock){-.-.}-{2:2}:
[  155.638203][ T8669]        lock_acquire+0x1ed/0x550
[  155.638224][ T8669]        _raw_spin_lock_irqsave+0xd5/0x120
[  155.638247][ T8669]        lock_timer_base+0x112/0x240
[  155.638266][ T8669]        __mod_timer+0x1ca/0xeb0
[  155.638283][ T8669]        worker_enter_idle+0x31d/0x4d0
[  155.638313][ T8669]        create_worker+0x4d8/0x720
[  155.638347][ T8669]        worker_thread+0x317/0xd50
[  155.638367][ T8669]        kthread+0x2f0/0x390
[  155.638390][ T8669]        ret_from_fork+0x4b/0x80
[  155.638416][ T8669]        ret_from_fork_asm+0x1a/0x30
[  155.638444][ T8669] 
[  155.638444][ T8669] -> #3 (&pool->lock){-.-.}-{2:2}:
[  155.638471][ T8669]        lock_acquire+0x1ed/0x550
[  155.638489][ T8669]        _raw_spin_lock+0x2e/0x40
[  155.638509][ T8669]        __queue_work+0x6e5/0xee0
[  155.638529][ T8669]        queue_work_on+0x1c2/0x380
[  155.638549][ T8669]        rpm_suspend+0xe70/0x1730
[  155.638575][ T8669]        __pm_runtime_idle+0x131/0x1a0
[  155.638601][ T8669]        __device_attach+0x3e5/0x520
[  155.638618][ T8669]        bus_probe_device+0x189/0x260
[  155.638643][ T8669]        device_add+0x856/0xbf0
[  155.638670][ T8669]        serial_base_port_add+0x2b6/0x3f0
[  155.638701][ T8669]        serial_core_register_port+0x381/0x23a0
[  155.638724][ T8669]        serial8250_register_8250_port+0x1433/0x1cd0
[  155.638745][ T8669]        serial_pnp_probe+0x4f9/0x9d0
[  155.638766][ T8669]        pnp_device_probe+0x2ba/0x460
[  155.638785][ T8669]        really_probe+0x2b8/0xad0
[  155.638802][ T8669]        __driver_probe_device+0x1a2/0x390
[  155.638819][ T8669]        driver_probe_device+0x50/0x430
[  155.638839][ T8669]        __driver_attach+0x45f/0x710
[  155.638856][ T8669]        bus_for_each_dev+0x239/0x2b0
[  155.638880][ T8669]        bus_add_driver+0x346/0x670
[  155.638904][ T8669]        driver_register+0x23a/0x320
[  155.638924][ T8669]        serial8250_init+0x9e/0x170
[  155.638948][ T8669]        do_one_initcall+0x248/0x880
[  155.638973][ T8669]        do_initcall_level+0x157/0x210
[  155.638999][ T8669]        do_initcalls+0x3f/0x80
[  155.639025][ T8669]        kernel_init_freeable+0x435/0x5d0
[  155.639051][ T8669]        kernel_init+0x1d/0x2b0
[  155.639073][ T8669]        ret_from_fork+0x4b/0x80
[  155.639095][ T8669]        ret_from_fork_asm+0x1a/0x30
[  155.639123][ T8669] 
[  155.639123][ T8669] -> #2 (&dev->power.lock){-.-.}-{2:2}:
[  155.639151][ T8669]        lock_acquire+0x1ed/0x550
[  155.639170][ T8669]        _raw_spin_lock_irqsave+0xd5/0x120
[  155.639192][ T8669]        __pm_runtime_resume+0x112/0x180
[  155.639218][ T8669]        __uart_start+0x17c/0x450
[  155.639241][ T8669]        uart_write+0x152/0x380
[  155.639262][ T8669]        n_tty_write+0xd6a/0x1230
[  155.639279][ T8669]        file_tty_write+0x54f/0x9b0
[  155.639301][ T8669]        vfs_write+0xa72/0xc90
[  155.639322][ T8669]        ksys_write+0x1a0/0x2c0
[  155.639350][ T8669]        do_syscall_64+0xf3/0x230
[  155.639368][ T8669]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.639390][ T8669] 
[  155.639390][ T8669] -> #1 (&port_lock_key){-.-.}-{2:2}:
[  155.639417][ T8669]        lock_acquire+0x1ed/0x550
[  155.639435][ T8669]        _raw_spin_lock_irqsave+0xd5/0x120
[  155.639456][ T8669]        serial8250_console_write+0x1a8/0x1770
[  155.639482][ T8669]        console_flush_all+0x867/0xfd0
[  155.639508][ T8669]        console_unlock+0x13b/0x4d0
[  155.639532][ T8669]        vprintk_emit+0x5a6/0x770
[  155.639556][ T8669]        _printk+0xd5/0x120
[  155.639584][ T8669]        register_console+0x727/0xcf0
[  155.639611][ T8669]        univ8250_console_init+0x49/0x50
[  155.639634][ T8669]        console_init+0x1b8/0x6f0
[  155.639659][ T8669]        start_kernel+0x2d3/0x500
[  155.639681][ T8669]        x86_64_start_reservations+0x2a/0x30
[  155.639699][ T8669]        x86_64_start_kernel+0x99/0xa0
[  155.639715][ T8669]        common_startup_64+0x13e/0x147
[  155.639733][ T8669] 
[  155.639733][ T8669] -> #0 (console_owner){..-.}-{0:0}:
[  155.639759][ T8669]        validate_chain+0x18e0/0x5900
[  155.639782][ T8669]        __lock_acquire+0x1346/0x1fd0
[  155.639800][ T8669]        lock_acquire+0x1ed/0x550
[  155.639818][ T8669]        console_flush_all+0x810/0xfd0
[  155.639843][ T8669]        console_unlock+0x13b/0x4d0
[  155.639867][ T8669]        vprintk_emit+0x5a6/0x770
[  155.639889][ T8669]        _printk+0xd5/0x120
[  155.639917][ T8669]        should_fail_ex+0x391/0x4e0
[  155.639943][ T8669]        strncpy_from_user+0x36/0x2f0
[  155.639968][ T8669]        strncpy_from_user_nofault+0x71/0x140
[  155.639989][ T8669]        bpf_probe_read_compat_str+0xe9/0x180
[  155.640012][ T8669]        bpf_prog_9566271a57db93cf+0x42/0x44
[  155.640027][ T8669]        bpf_trace_run2+0x2ec/0x540
[  155.640053][ T8669]        enqueue_timer+0x3ce/0x570
[  155.640076][ T8669]        __mod_timer+0xa0e/0xeb0
[  155.640093][ T8669]        inet_frag_find+0xaf2/0x2230
[  155.640121][ T8669]        ip_defrag+0x3b5/0x2900
[  155.640145][ T8669]        ipv4_conntrack_defrag+0x3de/0x5a0
[  155.640170][ T8669]        nf_hook_slow+0xc3/0x220
[  155.640197][ T8669]        nf_hook+0x2c4/0x450
[  155.640222][ T8669]        __ip_local_out+0x3d9/0x4e0
[  155.640248][ T8669]        ip_local_out+0x26/0x70
[  155.640274][ T8669]        iptunnel_xmit+0x540/0x9b0
[  155.640293][ T8669]        ip_tunnel_xmit+0x2119/0x2950
[  155.640321][ T8669]        ipgre_xmit+0x958/0xd40
[  155.640352][ T8669]        dev_hard_start_xmit+0x27a/0x7e0
[  155.640379][ T8669]        __dev_queue_xmit+0x1b63/0x3e90
[  155.640405][ T8669]        __bpf_tx_skb+0x18e/0x260
[  155.640424][ T8669]        bpf_clone_redirect+0x26f/0x3d0
[  155.640451][ T8669]        bpf_prog_208b094576c80b22+0x5e/0x63
[  155.640465][ T8669]        bpf_test_run+0x4f0/0xa90
[  155.640485][ T8669]        bpf_prog_test_run_skb+0xafa/0x13b0
[  155.640503][ T8669]        bpf_prog_test_run+0x33a/0x3b0
[  155.640519][ T8669]        __sys_bpf+0x48d/0x810
[  155.640546][ T8669]        __x64_sys_bpf+0x7c/0x90
[  155.640571][ T8669]        do_syscall_64+0xf3/0x230
[  155.640589][ T8669]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.640610][ T8669] 
[  155.640610][ T8669] other info that might help us debug this:
[  155.640610][ T8669] 
[  155.640617][ T8669] Chain exists of:
[  155.640617][ T8669]   console_owner --> &pool->lock --> &base->lock
[  155.640617][ T8669] 
[  155.640647][ T8669]  Possible unsafe locking scenario:
[  155.640647][ T8669] 
[  155.640652][ T8669]        CPU0                    CPU1
[  155.640658][ T8669]        ----                    ----
[  155.640663][ T8669]   lock(&base->lock);
[  155.640674][ T8669]                                lock(&pool->lock);
[  155.640686][ T8669]                                lock(&base->lock);
[  155.640700][ T8669]   lock(console_owner);
[  155.640712][ T8669] 
[  155.640712][ T8669]  *** DEADLOCK ***
[  155.640712][ T8669] 
[  155.640717][ T8669] 8 locks held by syz.2.1247/8669:
[  155.640729][ T8669]  #0: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: bpf_test_timer_enter+0x19/0x140
[  155.640778][ T8669]  #1: ffffffff8e333f80 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x2da/0x3e90
[  155.640833][ T8669]  #2: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: nf_hook+0x9e/0x450
[  155.640886][ T8669]  #3: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: inet_frag_find+0x13c/0x2230
[  155.640938][ T8669]  #4: ffff8880b942a718 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240
[  155.640983][ T8669]  #5: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x1fc/0x540
[  155.641036][ T8669]  #6: ffffffff8e20fa60 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120
[  155.641091][ T8669]  #7: ffffffff8e20f690 (console_srcu){....}-{0:0}, at: console_flush_all+0x152/0xfd0
[  155.641145][ T8669] 
[  155.641145][ T8669] stack backtrace:
[  155.641151][ T8669] CPU: 0 PID: 8669 Comm: syz.2.1247 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  155.641172][ T8669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  155.641184][ T8669] Call Trace:
[  155.641192][ T8669]  <TASK>
[  155.641200][ T8669]  dump_stack_lvl+0x241/0x360
[  155.641225][ T8669]  ? __pfx_dump_stack_lvl+0x10/0x10
[  155.641252][ T8669]  ? print_circular_bug+0x130/0x1a0
[  155.641282][ T8669]  check_noncircular+0x36a/0x4a0
[  155.641313][ T8669]  ? __pfx_check_noncircular+0x10/0x10
[  155.641349][ T8669]  ? lockdep_lock+0x123/0x2b0
[  155.641371][ T8669]  ? add_lock_to_list+0x1de/0x2e0
[  155.641403][ T8669]  validate_chain+0x18e0/0x5900
[  155.641446][ T8669]  ? __pfx_validate_chain+0x10/0x10
[  155.641474][ T8669]  ? sprintf+0xda/0x120
[  155.641501][ T8669]  ? vsnprintf+0x1cc3/0x1da0
[  155.641534][ T8669]  ? info_print_prefix+0x204/0x310
[  155.641558][ T8669]  ? mark_lock+0x9a/0x350
[  155.641584][ T8669]  __lock_acquire+0x1346/0x1fd0
[  155.641616][ T8669]  lock_acquire+0x1ed/0x550
[  155.641636][ T8669]  ? console_flush_all+0x152/0xfd0
[  155.641669][ T8669]  ? __pfx_lock_acquire+0x10/0x10
[  155.641690][ T8669]  ? __pfx_lock_release+0x10/0x10
[  155.641709][ T8669]  ? do_raw_spin_lock+0x14f/0x370
[  155.641743][ T8669]  ? do_raw_spin_unlock+0x13c/0x8b0
[  155.641773][ T8669]  ? console_flush_all+0x3a8/0xfd0
[  155.641804][ T8669]  console_flush_all+0x810/0xfd0
[  155.641832][ T8669]  ? console_flush_all+0x152/0xfd0
[  155.641864][ T8669]  ? console_flush_all+0x152/0xfd0
[  155.641899][ T8669]  ? __pfx_console_flush_all+0x10/0x10
[  155.641931][ T8669]  ? __pfx_lock_acquire+0x10/0x10
[  155.641955][ T8669]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  155.641980][ T8669]  ? validate_chain+0x11e/0x5900
[  155.642010][ T8669]  console_unlock+0x13b/0x4d0
[  155.642041][ T8669]  ? __pfx_console_unlock+0x10/0x10
[  155.642067][ T8669]  ? _printk+0xd5/0x120
[  155.642096][ T8669]  ? mark_lock+0x9a/0x350
[  155.642118][ T8669]  ? _printk+0xd5/0x120
[  155.642148][ T8669]  ? __pfx___down_trylock_console_sem+0x10/0x10
[  155.642177][ T8669]  ? __lock_acquire+0x1346/0x1fd0
[  155.642206][ T8669]  vprintk_emit+0x5a6/0x770
[  155.642234][ T8669]  ? __pfx_vprintk_emit+0x10/0x10
[  155.642260][ T8669]  ? mark_lock+0x9a/0x350
[  155.642293][ T8669]  _printk+0xd5/0x120
[  155.642326][ T8669]  ? __pfx__printk+0x10/0x10
[  155.642373][ T8669]  should_fail_ex+0x391/0x4e0
[  155.642406][ T8669]  strncpy_from_user+0x36/0x2f0
[  155.642437][ T8669]  strncpy_from_user_nofault+0x71/0x140
[  155.642464][ T8669]  bpf_probe_read_compat_str+0xe9/0x180
[  155.642491][ T8669]  ? bpf_trace_run2+0x1fc/0x540
[  155.642520][ T8669]  bpf_prog_9566271a57db93cf+0x42/0x44
[  155.642538][ T8669]  bpf_trace_run2+0x2ec/0x540
[  155.642572][ T8669]  ? __pfx_bpf_trace_run2+0x10/0x10
[  155.642604][ T8669]  ? __pfx_debug_object_activate+0x10/0x10
[  155.642635][ T8669]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  155.642661][ T8669]  enqueue_timer+0x3ce/0x570
[  155.642689][ T8669]  __mod_timer+0xa0e/0xeb0
[  155.642715][ T8669]  ? __pfx___mod_timer+0x10/0x10
[  155.642735][ T8669]  ? __pfx_ip4_frag_init+0x10/0x10
[  155.642769][ T8669]  ? __raw_spin_lock_init+0x45/0x100
[  155.642800][ T8669]  inet_frag_find+0xaf2/0x2230
[  155.642831][ T8669]  ? __pfx_ip4_obj_cmpfn+0x10/0x10
[  155.642865][ T8669]  ? inet_frag_find+0x13c/0x2230
[  155.642898][ T8669]  ? __pfx_inet_frag_find+0x10/0x10
[  155.642928][ T8669]  ? mark_lock+0x9a/0x350
[  155.642953][ T8669]  ? __lock_acquire+0x1346/0x1fd0
[  155.642978][ T8669]  ? mark_lock+0x9a/0x350
[  155.643003][ T8669]  ip_defrag+0x3b5/0x2900
[  155.643029][ T8669]  ? __lock_acquire+0x1346/0x1fd0
[  155.643065][ T8669]  ? __pfx_ip_defrag+0x10/0x10
[  155.643094][ T8669]  ? __pfx_lock_acquire+0x10/0x10
[  155.643117][ T8669]  ? lockdep_hardirqs_on+0x99/0x150
[  155.643150][ T8669]  ? ipv4_conntrack_defrag+0x3c4/0x5a0
[  155.643177][ T8669]  ipv4_conntrack_defrag+0x3de/0x5a0
[  155.643210][ T8669]  ? __pfx_ipv4_conntrack_defrag+0x10/0x10
[  155.643238][ T8669]  nf_hook_slow+0xc3/0x220
[  155.643268][ T8669]  ? __pfx_dst_output+0x10/0x10
[  155.643299][ T8669]  nf_hook+0x2c4/0x450
[  155.643335][ T8669]  ? nf_hook+0x9e/0x450
[  155.643364][ T8669]  ? __pfx_nf_hook+0x10/0x10
[  155.643395][ T8669]  ? __pfx_dst_output+0x10/0x10
[  155.643426][ T8669]  ? __asan_memset+0x23/0x50
[  155.643447][ T8669]  ? xfrm_lookup_with_ifid+0x198e/0x1ed0
[  155.643468][ T8669]  ? ip_fast_csum+0x1f0/0x2b0
[  155.643493][ T8669]  __ip_local_out+0x3d9/0x4e0
[  155.643522][ T8669]  ? __pfx_dst_output+0x10/0x10
[  155.643555][ T8669]  ip_local_out+0x26/0x70
[  155.643586][ T8669]  iptunnel_xmit+0x540/0x9b0
[  155.643617][ T8669]  ip_tunnel_xmit+0x2119/0x2950
[  155.643665][ T8669]  ? __pfx_ip_tunnel_xmit+0x10/0x10
[  155.643694][ T8669]  ? gre_build_header+0x341/0xb30
[  155.643726][ T8669]  ? __pfx_gre_build_header+0x10/0x10
[  155.643752][ T8669]  ? iptunnel_handle_offloads+0x31b/0x650
[  155.643780][ T8669]  ipgre_xmit+0x958/0xd40
[  155.643814][ T8669]  ? __pfx_ipgre_xmit+0x10/0x10
[  155.643840][ T8669]  ? dev_queue_xmit_nit+0x2b/0xc10
[  155.643873][ T8669]  dev_hard_start_xmit+0x27a/0x7e0
[  155.643911][ T8669]  __dev_queue_xmit+0x1b63/0x3e90
[  155.643950][ T8669]  ? __dev_queue_xmit+0x2da/0x3e90
[  155.643982][ T8669]  ? __pfx___dev_queue_xmit+0x10/0x10
[  155.644017][ T8669]  ? rcu_is_watching+0x15/0xb0
[  155.644041][ T8669]  ? skb_release_data+0x2b5/0x880
[  155.644077][ T8669]  ? pskb_expand_head+0xc89/0x1390
[  155.644116][ T8669]  ? __bpf_redirect+0x51c/0xe40
[  155.644149][ T8669]  __bpf_tx_skb+0x18e/0x260
[  155.644175][ T8669]  bpf_clone_redirect+0x26f/0x3d0
[  155.644210][ T8669]  bpf_prog_208b094576c80b22+0x5e/0x63
[  155.644228][ T8669]  ? debug_mutex_wake_waiter+0xb0/0x320
[  155.644262][ T8669]  ? timekeeping_get_ns+0x5c/0x420
[  155.644292][ T8669]  ? seqcount_lockdep_reader_access+0x157/0x220
[  155.644324][ T8669]  ? lockdep_hardirqs_on+0x99/0x150
[  155.644362][ T8669]  ? bpf_test_run+0x370/0xa90
[  155.644383][ T8669]  ? __pfx_lockdep_softirqs_off+0x10/0x10
[  155.644405][ T8669]  ? ktime_get+0x3c/0xb0
[  155.644435][ T8669]  ? lockdep_hardirqs_on+0x99/0x150
[  155.644470][ T8669]  ? bpf_test_run+0x370/0xa90
[  155.644491][ T8669]  ? __pfx___cant_migrate+0x10/0x10
[  155.644522][ T8669]  ? ktime_get+0x9b/0xb0
[  155.644554][ T8669]  bpf_test_run+0x4f0/0xa90
[  155.644575][ T8669]  ? do_syscall_64+0xf3/0x230
[  155.644595][ T8669]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.644621][ T8669]  ? bpf_test_run+0x370/0xa90
[  155.644651][ T8669]  ? __pfx_bpf_test_run+0x10/0x10
[  155.644679][ T8669]  ? eth_type_trans+0x4c4/0x7a0
[  155.644716][ T8669]  ? __pfx_eth_type_trans+0x10/0x10
[  155.644746][ T8669]  ? convert___skb_to_skb+0x41/0x620
[  155.644771][ T8669]  bpf_prog_test_run_skb+0xafa/0x13b0
[  155.644793][ T8669]  ? __pfx_lock_release+0x10/0x10
[  155.644827][ T8669]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  155.644853][ T8669]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  155.644876][ T8669]  bpf_prog_test_run+0x33a/0x3b0
[  155.644920][ T8669]  __sys_bpf+0x48d/0x810
[  155.644954][ T8669]  ? __pfx___sys_bpf+0x10/0x10
[  155.644994][ T8669]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  155.645019][ T8669]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  155.645043][ T8669]  ? do_syscall_64+0x100/0x230
[  155.645068][ T8669]  __x64_sys_bpf+0x7c/0x90
[  155.645098][ T8669]  do_syscall_64+0xf3/0x230
[  155.645120][ T8669]  ? clear_bhb_loop+0x35/0x90
[  155.645166][ T8669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.645189][ T8669] RIP: 0033:0x7f8490575bd9
[  155.645208][ T8669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.645225][ T8669] RSP: 002b:00007f84912d2048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  155.645248][ T8669] RAX: ffffffffffffffda RBX: 00007f8490703f60 RCX: 00007f8490575bd9
[  155.645265][ T8669] RDX: 000000000000001e RSI: 0000000020000080 RDI: 000000000000000a
[  155.645279][ T8669] RBP: 00007f84912d20a0 R08: 0000000000000000 R09: 0000000000000000
[  155.645292][ T8669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  155.645305][ T8669] R13: 000000000000000b R14: 00007f8490703f60 R15: 00007ffdea835938
[  155.645336][ T8669]  </TASK>
[  157.241061][ T8669] CPU: 0 PID: 8669 Comm: syz.2.1247 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  157.251131][ T8669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  157.261189][ T8669] Call Trace:
[  157.264472][ T8669]  <TASK>
[  157.267404][ T8669]  dump_stack_lvl+0x241/0x360
[  157.272092][ T8669]  ? __pfx_dump_stack_lvl+0x10/0x10
[  157.277294][ T8669]  ? __pfx__printk+0x10/0x10
[  157.281922][ T8669]  should_fail_ex+0x3b0/0x4e0
[  157.286660][ T8669]  strncpy_from_user+0x36/0x2f0
[  157.291523][ T8669]  strncpy_from_user_nofault+0x71/0x140
[  157.297079][ T8669]  bpf_probe_read_compat_str+0xe9/0x180
[  157.302644][ T8669]  ? bpf_trace_run2+0x1fc/0x540
[  157.307507][ T8669]  bpf_prog_9566271a57db93cf+0x42/0x44
[  157.312971][ T8669]  bpf_trace_run2+0x2ec/0x540
[  157.317666][ T8669]  ? __pfx_bpf_trace_run2+0x10/0x10
[  157.322878][ T8669]  ? __pfx_debug_object_activate+0x10/0x10
[  157.328705][ T8669]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  157.335218][ T8669]  enqueue_timer+0x3ce/0x570
[  157.339832][ T8669]  __mod_timer+0xa0e/0xeb0
[  157.344276][ T8669]  ? __pfx___mod_timer+0x10/0x10
[  157.349215][ T8669]  ? __pfx_ip4_frag_init+0x10/0x10
[  157.354355][ T8669]  ? __raw_spin_lock_init+0x45/0x100
[  157.359654][ T8669]  inet_frag_find+0xaf2/0x2230
[  157.364430][ T8669]  ? __pfx_ip4_obj_cmpfn+0x10/0x10
[  157.369553][ T8669]  ? inet_frag_find+0x13c/0x2230
[  157.374609][ T8669]  ? __pfx_inet_frag_find+0x10/0x10
[  157.379816][ T8669]  ? mark_lock+0x9a/0x350
[  157.384152][ T8669]  ? __lock_acquire+0x1346/0x1fd0
[  157.389184][ T8669]  ? mark_lock+0x9a/0x350
[  157.393552][ T8669]  ip_defrag+0x3b5/0x2900
[  157.397915][ T8669]  ? __lock_acquire+0x1346/0x1fd0
[  157.402982][ T8669]  ? __pfx_ip_defrag+0x10/0x10
[  157.407760][ T8669]  ? __pfx_lock_acquire+0x10/0x10
[  157.412793][ T8669]  ? lockdep_hardirqs_on+0x99/0x150
[  157.418010][ T8669]  ? ipv4_conntrack_defrag+0x3c4/0x5a0
[  157.423481][ T8669]  ipv4_conntrack_defrag+0x3de/0x5a0
[  157.428779][ T8669]  ? __pfx_ipv4_conntrack_defrag+0x10/0x10
[  157.434599][ T8669]  nf_hook_slow+0xc3/0x220
[  157.439032][ T8669]  ? __pfx_dst_output+0x10/0x10
[  157.443893][ T8669]  nf_hook+0x2c4/0x450
[  157.447981][ T8669]  ? nf_hook+0x9e/0x450
[  157.452144][ T8669]  ? __pfx_nf_hook+0x10/0x10
[  157.456760][ T8669]  ? __pfx_dst_output+0x10/0x10
[  157.461632][ T8669]  ? __asan_memset+0x23/0x50
[  157.466233][ T8669]  ? xfrm_lookup_with_ifid+0x198e/0x1ed0
[  157.471880][ T8669]  ? ip_fast_csum+0x1f0/0x2b0
[  157.476590][ T8669]  __ip_local_out+0x3d9/0x4e0
[  157.481302][ T8669]  ? __pfx_dst_output+0x10/0x10
[  157.486177][ T8669]  ip_local_out+0x26/0x70
[  157.490528][ T8669]  iptunnel_xmit+0x540/0x9b0
[  157.495170][ T8669]  ip_tunnel_xmit+0x2119/0x2950
[  157.500047][ T8669]  ? __pfx_ip_tunnel_xmit+0x10/0x10
[  157.505275][ T8669]  ? gre_build_header+0x341/0xb30
[  157.510309][ T8669]  ? __pfx_gre_build_header+0x10/0x10
[  157.515686][ T8669]  ? iptunnel_handle_offloads+0x31b/0x650
[  157.521412][ T8669]  ipgre_xmit+0x958/0xd40
[  157.525760][ T8669]  ? __pfx_ipgre_xmit+0x10/0x10
[  157.530619][ T8669]  ? dev_queue_xmit_nit+0x2b/0xc10
[  157.535746][ T8669]  dev_hard_start_xmit+0x27a/0x7e0
[  157.540876][ T8669]  __dev_queue_xmit+0x1b63/0x3e90
[  157.545935][ T8669]  ? __dev_queue_xmit+0x2da/0x3e90
[  157.551060][ T8669]  ? __pfx___dev_queue_xmit+0x10/0x10
[  157.556443][ T8669]  ? rcu_is_watching+0x15/0xb0
[  157.561212][ T8669]  ? skb_release_data+0x2b5/0x880
[  157.566251][ T8669]  ? pskb_expand_head+0xc89/0x1390
[  157.571378][ T8669]  ? __bpf_redirect+0x51c/0xe40
[  157.576240][ T8669]  __bpf_tx_skb+0x18e/0x260
[  157.580751][ T8669]  bpf_clone_redirect+0x26f/0x3d0
[  157.585791][ T8669]  bpf_prog_208b094576c80b22+0x5e/0x63
[  157.591247][ T8669]  ? debug_mutex_wake_waiter+0xb0/0x320
[  157.596805][ T8669]  ? timekeeping_get_ns+0x5c/0x420
[  157.601925][ T8669]  ? seqcount_lockdep_reader_access+0x157/0x220
[  157.608173][ T8669]  ? lockdep_hardirqs_on+0x99/0x150
[  157.613409][ T8669]  ? bpf_test_run+0x370/0xa90
[  157.618092][ T8669]  ? __pfx_lockdep_softirqs_off+0x10/0x10
[  157.623813][ T8669]  ? ktime_get+0x3c/0xb0
[  157.628063][ T8669]  ? lockdep_hardirqs_on+0x99/0x150
[  157.633275][ T8669]  ? bpf_test_run+0x370/0xa90
[  157.637957][ T8669]  ? __pfx___cant_migrate+0x10/0x10
[  157.643176][ T8669]  ? ktime_get+0x9b/0xb0
[  157.647434][ T8669]  bpf_test_run+0x4f0/0xa90
[  157.651942][ T8669]  ? do_syscall_64+0xf3/0x230
[  157.656630][ T8669]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.662705][ T8669]  ? bpf_test_run+0x370/0xa90
[  157.667397][ T8669]  ? __pfx_bpf_test_run+0x10/0x10
[  157.672429][ T8669]  ? eth_type_trans+0x4c4/0x7a0
[  157.677308][ T8669]  ? __pfx_eth_type_trans+0x10/0x10
[  157.682516][ T8669]  ? convert___skb_to_skb+0x41/0x620
[  157.687809][ T8669]  bpf_prog_test_run_skb+0xafa/0x13b0
[  157.693188][ T8669]  ? __pfx_lock_release+0x10/0x10
[  157.698228][ T8669]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  157.704042][ T8669]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  157.709851][ T8669]  bpf_prog_test_run+0x33a/0x3b0
[  157.714793][ T8669]  __sys_bpf+0x48d/0x810
[  157.719051][ T8669]  ? __pfx___sys_bpf+0x10/0x10
[  157.723832][ T8669]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  157.729815][ T8669]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  157.736150][ T8669]  ? do_syscall_64+0x100/0x230
[  157.740922][ T8669]  __x64_sys_bpf+0x7c/0x90
[  157.745359][ T8669]  do_syscall_64+0xf3/0x230
[  157.749868][ T8669]  ? clear_bhb_loop+0x35/0x90
[  157.754554][ T8669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.760451][ T8669] RIP: 0033:0x7f8490575bd9
[  157.764867][ T8669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.784475][ T8669] RSP: 002b:00007f84912d2048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  157.792893][ T8669] RAX: ffffffffffffffda RBX: 00007f8490703f60 RCX: 00007f8490575bd9
[  157.800865][ T8669] RDX: 000000000000001e RSI: 0000000020000080 RDI: 000000000000000a
[  157.808837][ T8669] RBP: 00007f84912d20a0 R08: 0000000000000000 R09: 0000000000000000
[  157.816812][ T8669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  157.824783][ T8669] R13: 000000000000000b R14: 00007f8490703f60 R15: 00007ffdea835938
[  157.832763][ T8669]  </TASK>
[  157.859395][ T8677] batman_adv: batadv0: Adding interface: macvlan3
[  157.866047][ T8677] batman_adv: batadv0: The MTU of interface macvlan3 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  157.892312][ T8677] batman_adv: batadv0: Not using interface macvlan3 (retrying later): interface not active
[  157.966255][ T8669] syz.2.1247 (8669) used greatest stack depth: 18160 bytes left