last executing test programs:

4.606627192s ago: executing program 1 (id=2654):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)
r1 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0x4)
ioctl$TUNSETSTEERINGEBPF(r0, 0x800454e0, &(0x7f0000000080)=r1)
recvmsg(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000140)=""/95, 0x5f}, {&(0x7f00000001c0)=""/214, 0xd6}, {&(0x7f00000002c0)=""/236, 0xec}, {&(0x7f00000003c0)}, {&(0x7f0000000400)=""/161, 0xa1}, {&(0x7f00000004c0)=""/183, 0xb7}], 0x6, &(0x7f0000000600)=""/249, 0xf9}, 0x10000)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, &(0x7f0000000740)=0x11, 0x4)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x3, &(0x7f0000000780)=0x3, 0x4)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000007c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bind$tipc(r2, &(0x7f0000000800)=@nameseq={0x1e, 0x1, 0x3, {0x40, 0x1, 0x3}}, 0x10)
ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f0000000840)={'netpci0\x00'})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r3, &(0x7f0000001980)={&(0x7f0000000880)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000000940)=[{&(0x7f0000000900)=""/51, 0x33}], 0x1, &(0x7f0000000980)=""/4096, 0x1000}, 0x2000)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$pppoe(0x18, 0x1, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2, 0x810, r4, 0xe4df5000)
getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f00000019c0), &(0x7f0000001a00)=0x8)
openat$tun(0xffffffffffffff9c, &(0x7f0000001a40), 0x343500, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SWAP(r5, &(0x7f0000001c00)={&(0x7f0000001b00)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001bc0)={&(0x7f0000001b40)={0x58, 0x6, 0x6, 0x101, 0x0, 0x0, {0xa, 0x0, 0xa}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz0\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x8011}, 0x800)

3.681548261s ago: executing program 1 (id=2670):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14, 0x10, 0x1, 0x2}, [@NFT_MSG_NEWSET={0xb8, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_DESC={0x80, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x3c, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7fffffff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8000}]}]}, @NFTA_SET_DESC_CONCAT={0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8001}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2d}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}]}]}]}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x5}, @NFTA_SET_DESC={0x4}]}], {0x14, 0x10}}, 0xe0}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x80047210, &(0x7f0000000000))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$SIOCNRDECOBS(r0, 0x89e2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r4}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x8, &(0x7f0000000180)=@framed={{0x18, 0x2, 0x0, 0x0, 0xde}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x44, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100000, @void, @value}, 0x94)

3.488451039s ago: executing program 1 (id=2674):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x200, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0xfffffd66, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101804bc9555e1affd5020000000900010001797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000000009000300737975320000000014000000110001"], 0x7c}}, 0x0)
close(r2)
setsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
sendto$inet6(r1, &(0x7f00000004c0)='W', 0x1, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x8}, 0x1c)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000080)={0xfdc, 0x200, 0x1000, 0xffffffff}, &(0x7f0000000100)=0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$inet(0x2, 0x3, 0x1)
setsockopt$sock_int(r4, 0x1, 0x5, 0x0, 0x0)
sendmsg$inet(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000140)=[@ip_retopts={{0x10}}], 0x10}, 0x2000c054)
setsockopt$X25_QBITINCL(r3, 0x106, 0x1, &(0x7f0000000180), 0x4)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x6}}]}, 0x38}}, 0x0)
setsockopt$TIPC_IMPORTANCE(r3, 0x10f, 0x7f, &(0x7f0000000140)=0x9, 0x4)

2.511320242s ago: executing program 2 (id=2685):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
connect$bt_rfcomm(r0, &(0x7f0000000040)={0x1f, @none, 0x2}, 0xa)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x2, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="891090000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, 0x0)
r1 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{&(0x7f0000000200)=@in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="300000000000000084"], 0x30}], 0x1, 0x0)
connect$bt_rfcomm(r1, &(0x7f00000001c0)={0x1f, @none, 0x1}, 0xa)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0x0, 0x0)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9feb01001800000000000000be000000be00000008000000080000000000000100000000050001060a0000000000000e01000000020000000100000003000085000000000e000000050000007f0600000300000004000000e60e00000c00000000000000030000000d0000000000000204000000050000000500000f0200000001000000ffffff7f040000000100000007000000a20300000200000008000000390700000200e3ff03000000f9ffffff0200000008000055c89ec5c3374c1fc79f2f260007000000d3700b000000000000100c000000050000000000001002000000000000602e005f2e5f00"], &(0x7f00000004c0)=""/71, 0xe0, 0x47, 0xfffffffd, 0x2, 0x10000, @value}, 0x28)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000005000000000000000000000095", @ANYRES16=r1], &(0x7f00000000c0)='syzkaller\x00', 0x20000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r3, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r4, 0x0, 0xffffffffffffdce4}, 0x18)
shutdown(r0, 0x1)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000b000000010001000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\"\x00'/28], 0x48)
mmap(&(0x7f000009f000/0x800000)=nil, 0x800000, 0x0, 0x11, r5, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x15, 0xc3072, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000000100)=ANY=[@ANYRES32=r5], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000080), r7)
sendmsg$NLBL_MGMT_C_LISTALL(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)=ANY=[@ANYBLOB="9468999422d98139cb3857368b4ac97aedbb7062c6ee", @ANYRES16=r8, @ANYBLOB="030b28bd7000ffdbdf2503000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x20040880)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), r7)
r11 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x60, r11, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x4c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @private0}}, {0x14, 0x2, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x35}}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}]}, 0x60}, 0x1, 0x0, 0x0, 0xc040}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r9, &(0x7f0000000580)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000800)=ANY=[@ANYBLOB="9c000000", @ANYRES16=r11, @ANYBLOB="080028bd7000ffdbdf2505000000040004801000068008000100100000000400020076afc58e8b8e42c1dadcff8838cf2800048024000780080002009b100000080001001200000008000300070000ee08000300f2ffffff4c000980080002000600000008000100be0b0000080001007f0000000800020009000000080001008000000008000100fbffffff080002000700000008000200070000000800010062004000"], 0x9c}, 0x1, 0x0, 0x0, 0x20000006}, 0x20008000)
socket$alg(0x26, 0x5, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x80006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

2.358683262s ago: executing program 1 (id=2687):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r2, 0x1, 0x3e, &(0x7f0000000100)=r0, 0x4)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000100)={0x2, 0x0, @empty}, 0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r3, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f00000004c0)=0x27)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000180)={r5}, &(0x7f0000000040)=0x8)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=@newlink={0x48, 0x10, 0x1, 0x70bd2c, 0x3, {0x0, 0x0, 0x0, 0x0, 0x0, 0x120}, [@IFLA_IFNAME={0x14, 0x3, 'ip6_vti0\x00'}, @IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_RSS_QUERY_EN={0xc, 0x7, {0x401, 0x6}}]}]}]}, 0x48}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(r8, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000003c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRESHEX=r7, @ANYBLOB="050427a57000fedbdf250300000008000100", @ANYRES64=r4], 0x60}, 0x1, 0x0, 0x0, 0x4000844}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_DELSETELEM={0x4c, 0xe, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_RULE_EXPRESSIONS={0x10, 0x4, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @cmp={{0x8}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "ef"}]}], {0x14}}, 0xe4}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xe, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="85000000b2000000620a00ff000000007500000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="00000000000000000504000000a48774000000f7"], &(0x7f0000000140)='GPL\x00', 0x2, 0x95, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000580), r11)
sendmsg$IEEE802154_LIST_PHY(r11, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, r12, 0x30b}, 0x14}}, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000240)={'team0\x00', 0x1})
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000140)={'lo\x00', <r13=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x44, 0x24, 0xd0f, 0x0, 0x20, {0x60, 0x0, 0x0, r13, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_INGRESS={0x8}, @TCA_CAKE_ACK_FILTER={0x8, 0x10, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000080}, 0x20000000)

2.256568036s ago: executing program 3 (id=2688):
r0 = socket(0x10, 0x80003, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0xf, "0000000000000000000100000e00"}}}]}, 0x48}}, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="0100fdffffff000000003900000008000300", @ANYRES32=0x0, @ANYBLOB="0839073bb5331eb524316a375685173142ddb735f4379d4ff94d8f73b8bace862ab3d4085b3e5f1f6ac0384701bebff376eaad47"], 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[], 0x78}, 0x1, 0x0, 0x0, 0x40880}, 0x40)

2.202096878s ago: executing program 3 (id=2689):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000001980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=""/26, 0x1a}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000018c0)=""/176, 0xb0}}], 0x2, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x100010, r0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000cc0), 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCGETNODEID(r1, 0x89e1, &(0x7f0000000240)={0x2})
socket$kcm(0x11, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x0)

2.080856323s ago: executing program 3 (id=2691):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, 0x0, 0x0)
unshare(0x2c060000)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x3, 0x1}, 0x6)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00')
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000003c0)=ANY=[], 0x5c}}, 0x0)
r2 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x2, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x8}}}, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000700)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000500)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xe}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000740)=@newtfilter={0x51c, 0x2c, 0xd2f, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {}, {0x2}}, [@filter_kind_options=@f_flow={{0x9}, {0x4ec, 0x2, [@TCA_FLOW_ADDEND={0x8, 0x5, 0x4}, @TCA_FLOW_PERTURB={0x8, 0xc, 0x6}, @TCA_FLOW_EMATCHES={0x4d8, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x4, 0x1, 0xe}, {0xfffffffb, 0x9, 0xfff, 0x0, 0x8}}}]}, @TCA_EMATCH_TREE_LIST={0x178, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x18, 0x3, 0x0, 0x0, {{0x1, 0x2, 0x2}, {0xfffa, 0x6, 0x1, "31ac34db208c"}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x7cc5, 0x3, 0x2}, {0x612321b8, 0x9, 0x5, 0xe}}}, @TCF_EM_IPT={0x20, 0x1, 0x0, 0x0, {{0x7, 0x9, 0x235}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x6}, @TCA_EM_IPT_MATCH_NAME={0xb}]}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x0, 0x7, 0x1}, {{0x4, 0x0, 0x0, 0x1}, {0x3, 0x1, 0x0, 0x1}}}}, @TCF_EM_CONTAINER={0xf4, 0x2, 0x0, 0x0, {{0x9, 0x0, 0x8}, "e0904f399f38eb341a94dff86fe0f7a2559737280ebafe9736c26aafc922e8d8a55a5e7c9a786ad80307a5699e2e29ca78b6040d281cc6d6132d7bcb56b041549347c469b0aac31d024b2457faea002d69838965430dd93f529241f39843cc666223d082099affb0890a6818a288ecf37c10fda13a8ac2903eab5533c06b2cf2b946ab3cef304937150b0412e96fa6603ca1f9e34b50bb014c11837ab4e1b96573fb46e2aedf02ee4f6e9420980d249f57de6dbcf4c4514d29eca0347ee2d1b2e3891ad243d40f73fa20e86520337734e22fbe29ca9d627b817f4dce14c0c0ffa1fd24699be0c9"}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x3, 0x1, 0xe90a}, {0x2, 0x5, 0x54, 0x1, 0x9, 0x1, 0x2}}}]}, @TCA_EMATCH_TREE_LIST={0x244, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x3, 0x0, 0x0, {{0x1, 0x7, 0xfff9}, {{0x4, 0x1}, {0x1, 0x1, 0x1, 0x1}}}}, @TCF_EM_IPT={0x100, 0x1, 0x0, 0x0, {{0xc9, 0x9, 0x5}, [@TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x2}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x2}, @TCA_EM_IPT_MATCH_DATA={0xd0, 0x5, "1f3140a6770bc3e076b4d548b29378a3f609ad5a5407a03920df9f5651eb440f1b8e14699282d16feaff422754e5b3acae8859143695f4a37b665da92923efaf1be800168c20ad2c5387c592dd13db1f8e7496cea642446eb5d305cd1fc122d6719b7b1844f7b77e6b24a5c28384cc0cba9eab736bdcdded09e891bc6302c401e9bd57bf4743065702d617ca10306804bdba31101be6ac3d65d70d1f538eed670aa2735e43c5a451b75684e27e229e0d1dbbc2094ef7f31b61a2c137a81e5d5fb0f08984fbab56c33ef1f0f4"}, @TCA_EM_IPT_HOOK={0x8}]}}, @TCF_EM_CONTAINER={0xf4, 0x1, 0x0, 0x0, {{0xff, 0x0, 0x101}, "c24625438508316cd9b2cc66ee11101699cd02025c9e5b71b5b2a5d89f2be5acb013e39af0503b29c52b9a0bd033b2c0e127806ef0682e47f2cb62d2389a1d52a632ec111d0492325a7a5217e5af40d92fbcac2a949ef925324fd0991d155616a8f6c624f046d657c3385799af01847417c18858e11f6144907f394eb9afd92696d2b77e2af746e507ed00453dcfa82324eb285b9f38bd2906d9a91d0f9e35b5a88a038f9b9456b70077ea3c37fd88654b337ce3fbad7e622dbdb3a522e0138d8e652e0b0f3f0d38509018e944783947a4485763fda9ed7f964b009a112d40d9df0dbd231907"}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x15, 0x3, 0x6da5}, {0x263f, 0x1, 0x6, 0x2}}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0xa, 0x3, 0xc}, {0x6, 0x7aedbc3c, 0x6, 0xf4}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x766}}, @TCA_EMATCH_TREE_LIST={0xc8, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x3, 0x0, 0x0, {{0x7, 0x7, 0xb7f}, {{0x0, 0x1}, {0x4, 0x1, 0x1, 0x1}}}}, @TCF_EM_CONTAINER={0xb0, 0x2, 0x0, 0x0, {{0x3, 0x0, 0x9}, "6c375346338ee5d1908a191cbb41830b883d7d1a4bd9a7f3c0ca4b8a3ef1ec1801c280c5e302eaff2ae1474f06f68ba37535da6dc845460243f3cacfda86db897fddbcfd14f241c39c647d6a5d0e3e96f0a216f37b73660b1672e9960a8afa70acd558bacb01641bb8efeb84ee00ecabc6eb329e1539b76a68cf40b641aff96876b7516df7867cf0fbed92ddfc9966be93c9a5dc5b4e17a199384a3043bceb7727dde790"}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x4}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x5f, 0x1, 0x9}, {0x3, 0xbe, 0x3, 0x2, 0x6, 0x2, 0x1}}}]}]}]}}]}, 0x51c}, 0x1, 0x0, 0x0, 0x20000085}, 0x40)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000740), 0xffffffffffffffff)
r5 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r5, &(0x7f0000000000)=[{&(0x7f0000000400)="580000001400192340834b80040d8c560a067fbc45ff810500000000070058000b480400945f640094272d7061d328b92d0000000000008000f0fffeffe809000000fff5dd00000010000100090808004149004001040800", 0x58}], 0x1)

1.864878138s ago: executing program 0 (id=2695):
unshare(0x22020600)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x8, &(0x7f0000000180)=@framed={{0x18, 0x2, 0x0, 0x0, 0xde}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x44, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100000, @void, @value}, 0x94) (fail_nth: 1)

1.861173609s ago: executing program 3 (id=2696):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000006aa0d103ec8dd61f"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev}, &(0x7f0000000140)=0x1c, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4106(gcm(aes))\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000080)="ad56b6aff71b62bbb0fe006eea66c7000000001800000008", 0x18)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000280)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha256\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
pipe(&(0x7f0000001240)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendfile(r5, r4, 0x0, 0x7ffff000)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000003c0), 0x4)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000400)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{0x1}, &(0x7f0000000480), &(0x7f00000004c0)=r0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{0x1}, &(0x7f0000000540), &(0x7f0000000580)=r0}, 0x20)
ioctl$sock_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e20, @local}}, 0x80000, 0x9, 0x300, 0x0, 0x55}, 0x9c)

1.540546076s ago: executing program 0 (id=2697):
socket$key(0xf, 0x3, 0x2)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet(0x2b, 0x801, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x38, 0x3, 0x8, 0x101, 0x0, 0x0, {}, [@CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_LAST_ACK={0x8}, @CTA_TIMEOUT_TCP_CLOSE={0x8}, @CTA_TIMEOUT_TCP_TIME_WAIT={0x8}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x38}}, 0x0)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x104, @dev={0xac, 0x14, 0x14, 0x32}}, 0x10)
listen(r1, 0x9)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_crypto(0x10, 0x3, 0x15)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
sendmmsg$unix(r6, &(0x7f0000000700)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r7, @ANYBLOB='\x00\x00\x00\x00'], 0x30}}], 0x1, 0x40)
socket$pptp(0x18, 0x1, 0x2)
setsockopt$inet6_int(r1, 0x29, 0xcf, &(0x7f00000000c0)=0xb5c7, 0x4)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r9, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r10=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="4800000010000104000000000101000000000000", @ANYRES32=0x0, @ANYBLOB="0900000000000000200012800e0001006970366772657461700000000c00028008000100", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r10], 0x48}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000340))
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000400)=@generic={&(0x7f00000003c0)='./file0\x00'}, 0x18)
socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x9006}, 0x4)

1.539803845s ago: executing program 2 (id=2698):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r0, &(0x7f0000000480), 0x10)
close(r0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000a40)=@raw={'raw\x00', 0x3c1, 0x3, 0xc10, 0x948, 0x168, 0x10, 0x948, 0xb, 0xb40, 0x250, 0x250, 0xb40, 0x250, 0x3, 0x0, {[{{@uncond, 0x6000000, 0x8e0, 0x948, 0x0, {0x0, 0x28e}, [@common=@unspec=@u32={{0x7e0}, {[{[{0x10000, 0x3}, {0x412, 0x1}, {0xe, 0x3}, {0x7fff}, {0x3, 0x2}, {0x7, 0x2}, {0x9, 0x1}, {0x8, 0x1}, {0x6021, 0x3}, {0x2, 0x464ed55f53542fa}, {0x3, 0x3}], [{0xff, 0x1}, {0x6, 0x6}, {0x41d, 0x4}, {0x758, 0x7fff}, {0x4, 0x5}, {0x6}, {0x4, 0x1}, {0x0, 0x5}, {0x5, 0x8000}, {0xfffffffe, 0x1b}], 0x6, 0x9}, {[{0x7, 0x3}, {0x60923fda, 0x1}, {0x7779}, {0x7fffffff}, {0x8, 0x2}, {0x7, 0x3}, {0x6}, {0x7, 0x3}, {0x0, 0x1}, {0x0, 0x1}, {0xfff, 0x2}], [{0xffffff5e, 0x5}, {0x10, 0xc}, {0x662eafc6, 0xa698}, {0x8c5, 0x4d}, {0xb1, 0x29dd}, {0x1, 0x1}, {0x80, 0xffff74c0}, {0xcbc}, {0x7, 0x9}, {0x7}, {0x1, 0x8}], 0x2, 0x2}, {[{0x10}, {0x3}, {0xf855, 0x1}, {0xdf, 0x2}, {0x9, 0x1}, {0x8, 0x2}, {0x8, 0x2}, {0x3, 0x3}, {0x3, 0x2}, {0x7, 0x2}, {0x9, 0x3}], [{0x670, 0x5}, {0x5, 0x20000001}, {0x5, 0xfffffe8b}, {0xffffffb1, 0xa7c}, {0xfff, 0x400}, {0x2}, {0x401, 0xd}, {0xd, 0x2}, {0x3, 0x6}, {0x4, 0x57b7}, {0x1, 0x1}], 0xb, 0x5}, {[{0x7}, {0x52b, 0x1}, {0x2, 0x2}, {0xffff6f44}, {0x27b42d8d}, {0x6, 0x1}, {0xb6e, 0x1}, {0x0, 0x2}, {0x40000000, 0x1}, {0x1, 0x1}, {0x8, 0x3}], [{0x4, 0x80000000}, {0x0, 0x2e8}, {0xb, 0x101}, {0x8, 0xffffffff}, {0x6, 0xa3ed}, {0x6b, 0x100}, {0x3, 0x3}, {0xfffffffc, 0x401}, {0x7, 0x7}, {0x8}, {0x9, 0x1}], 0x6, 0x5}, {[{0x8, 0x1}, {0xc8, 0x2}, {0x590, 0x2}, {0x7, 0x2}, {0xb04, 0x1}, {0x2, 0x1}, {0x0, 0x3}, {0x1, 0x1}, {0x8, 0x2}, {0x40}, {0x10, 0x3}], [{0x0, 0x3}, {0x9, 0x4}, {0x62, 0x8}, {0x2, 0x401}, {0x3, 0x4}, {0x382}, {0x2, 0x2}, {0x776, 0x4d46}, {0x9, 0xfffff800}, {0xfffffffe, 0x5}, {0x7, 0xbd}], 0x1, 0x2}, {[{0x10, 0x3}, {0x7fffffff, 0x2}, {0x0, 0x3}, {0xd, 0x2}, {0x81}, {0xe39}, {0x5}, {0x8d, 0x1}, {0x1, 0x2}, {0x80000003, 0x1}, {0x4, 0x2}], [{0xffff, 0x7}, {0x3, 0x3}, {0x9, 0x1}, {0x4, 0x3}, {0x5, 0x3}, {0x9, 0x10000}, {0x8, 0x6}, {0x1000, 0x5}, {0x6, 0xff}, {0xffffffff}, {0x6, 0x8}], 0x9, 0x4}, {[{0x3, 0x2}, {0xf58, 0x1}, {0x2, 0x2}, {0x401, 0x3}, {0x8}, {0xfffffff9, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x7, 0x1}, {0x1, 0x2}, {0x4, 0x1}], [{0x7f, 0x80000000}, {0x2, 0xd}, {0xa}, {0x8, 0x4}, {0x2, 0xfffffff7}, {0x2, 0x1}, {0x6, 0x9}, {0x6, 0x1}, {0xfffffffe, 0xd}, {0xf, 0xffffffff}, {0x8, 0x40000}], 0x9, 0x7}, {[{0x101, 0x3}, {0x10, 0x3}, {0x9, 0x1}, {0x7f}, {0x9, 0x1}, {0xffffffff}, {0x6, 0x2}, {0x1, 0x3}, {0xb, 0x2}, {0x8, 0x2}, {0x30000000}], [{0x40, 0xfffffe32}, {0x3, 0x1}, {0x7, 0x805a}, {0x7, 0x8}, {0x9, 0x80000000}, {0x800, 0xfffffffa}, {0xb, 0xc}, {0x9f89, 0x6}, {0x5, 0x8}, {0x80, 0x1}, {0x7, 0x55dd844b}], 0x5, 0x9}, {[{0xa, 0x2}, {0x5, 0x2}, {0x8, 0x2}, {0x8, 0x1}, {0x401}, {0xa5, 0x3}, {0x6}, {0x7}, {0x7, 0x3}, {0x7, 0x1}, {0x2cd1, 0x2}], [{0x3}, {0x9}, {0xfffffff0, 0x7}, {0x0, 0x1}, {0x3, 0x9}, {0x6, 0xd2b}, {0x2, 0x6}, {0xe39, 0x8000}, {0x5b}, {0x800, 0x8}, {0x5, 0x1}], 0x1, 0xa}, {[{0xe, 0x1}, {0xffffff80, 0x3}, {}, {0x4, 0x2}, {0x6, 0x3}, {0x40, 0x1}, {0x6, 0x1}, {0x7fff, 0x1}, {0x16a, 0x1}, {0x5, 0x3}, {0x4}], [{0x3, 0x2}, {0xbc6f3d9b, 0x828}, {0x8000, 0x8}, {0x5, 0x2}, {0x0, 0x45d0}, {0x8, 0x9}, {0x5, 0x31}, {0x1, 0x670f}, {0xdc03, 0x3}, {0x100, 0x9}, {0xfffffffc, 0xff0}], 0x8, 0xfe}, {[{0x7fff}, {0x9}, {0x0, 0x1}, {0x6, 0x3}, {0x4, 0x3}, {0xffff}, {0x9}, {0x1}, {0x367d, 0x3}, {0x3, 0x2}, {0x0, 0x1}], [{0x59000000, 0x8}, {0x1, 0x9}, {0x7fff8, 0x1b0d}, {0xfffff371, 0x4}, {0x8, 0x2}, {0x7ff, 0x2}, {0x8, 0x7}, {0x44, 0xb}, {0x1, 0x6}, {0x400, 0x7}, {0x2, 0x5369}], 0xa, 0xa}], 0xff}}, @common=@inet=@hashlimit1={{0x58}, {'netdevsim0\x00', {0x0, 0x0, 0x9, 0x1, 0x0, 0x10000, 0x80000401, 0x80}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x4, 'pptp\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x1f8, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:usb_device_t:s0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0xc70)
socket$can_raw(0x1d, 0x3, 0x1) (async)
bind$can_raw(r0, &(0x7f0000000480), 0x10) (async)
close(r0) (async)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000a40)=@raw={'raw\x00', 0x3c1, 0x3, 0xc10, 0x948, 0x168, 0x10, 0x948, 0xb, 0xb40, 0x250, 0x250, 0xb40, 0x250, 0x3, 0x0, {[{{@uncond, 0x6000000, 0x8e0, 0x948, 0x0, {0x0, 0x28e}, [@common=@unspec=@u32={{0x7e0}, {[{[{0x10000, 0x3}, {0x412, 0x1}, {0xe, 0x3}, {0x7fff}, {0x3, 0x2}, {0x7, 0x2}, {0x9, 0x1}, {0x8, 0x1}, {0x6021, 0x3}, {0x2, 0x464ed55f53542fa}, {0x3, 0x3}], [{0xff, 0x1}, {0x6, 0x6}, {0x41d, 0x4}, {0x758, 0x7fff}, {0x4, 0x5}, {0x6}, {0x4, 0x1}, {0x0, 0x5}, {0x5, 0x8000}, {0xfffffffe, 0x1b}], 0x6, 0x9}, {[{0x7, 0x3}, {0x60923fda, 0x1}, {0x7779}, {0x7fffffff}, {0x8, 0x2}, {0x7, 0x3}, {0x6}, {0x7, 0x3}, {0x0, 0x1}, {0x0, 0x1}, {0xfff, 0x2}], [{0xffffff5e, 0x5}, {0x10, 0xc}, {0x662eafc6, 0xa698}, {0x8c5, 0x4d}, {0xb1, 0x29dd}, {0x1, 0x1}, {0x80, 0xffff74c0}, {0xcbc}, {0x7, 0x9}, {0x7}, {0x1, 0x8}], 0x2, 0x2}, {[{0x10}, {0x3}, {0xf855, 0x1}, {0xdf, 0x2}, {0x9, 0x1}, {0x8, 0x2}, {0x8, 0x2}, {0x3, 0x3}, {0x3, 0x2}, {0x7, 0x2}, {0x9, 0x3}], [{0x670, 0x5}, {0x5, 0x20000001}, {0x5, 0xfffffe8b}, {0xffffffb1, 0xa7c}, {0xfff, 0x400}, {0x2}, {0x401, 0xd}, {0xd, 0x2}, {0x3, 0x6}, {0x4, 0x57b7}, {0x1, 0x1}], 0xb, 0x5}, {[{0x7}, {0x52b, 0x1}, {0x2, 0x2}, {0xffff6f44}, {0x27b42d8d}, {0x6, 0x1}, {0xb6e, 0x1}, {0x0, 0x2}, {0x40000000, 0x1}, {0x1, 0x1}, {0x8, 0x3}], [{0x4, 0x80000000}, {0x0, 0x2e8}, {0xb, 0x101}, {0x8, 0xffffffff}, {0x6, 0xa3ed}, {0x6b, 0x100}, {0x3, 0x3}, {0xfffffffc, 0x401}, {0x7, 0x7}, {0x8}, {0x9, 0x1}], 0x6, 0x5}, {[{0x8, 0x1}, {0xc8, 0x2}, {0x590, 0x2}, {0x7, 0x2}, {0xb04, 0x1}, {0x2, 0x1}, {0x0, 0x3}, {0x1, 0x1}, {0x8, 0x2}, {0x40}, {0x10, 0x3}], [{0x0, 0x3}, {0x9, 0x4}, {0x62, 0x8}, {0x2, 0x401}, {0x3, 0x4}, {0x382}, {0x2, 0x2}, {0x776, 0x4d46}, {0x9, 0xfffff800}, {0xfffffffe, 0x5}, {0x7, 0xbd}], 0x1, 0x2}, {[{0x10, 0x3}, {0x7fffffff, 0x2}, {0x0, 0x3}, {0xd, 0x2}, {0x81}, {0xe39}, {0x5}, {0x8d, 0x1}, {0x1, 0x2}, {0x80000003, 0x1}, {0x4, 0x2}], [{0xffff, 0x7}, {0x3, 0x3}, {0x9, 0x1}, {0x4, 0x3}, {0x5, 0x3}, {0x9, 0x10000}, {0x8, 0x6}, {0x1000, 0x5}, {0x6, 0xff}, {0xffffffff}, {0x6, 0x8}], 0x9, 0x4}, {[{0x3, 0x2}, {0xf58, 0x1}, {0x2, 0x2}, {0x401, 0x3}, {0x8}, {0xfffffff9, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x7, 0x1}, {0x1, 0x2}, {0x4, 0x1}], [{0x7f, 0x80000000}, {0x2, 0xd}, {0xa}, {0x8, 0x4}, {0x2, 0xfffffff7}, {0x2, 0x1}, {0x6, 0x9}, {0x6, 0x1}, {0xfffffffe, 0xd}, {0xf, 0xffffffff}, {0x8, 0x40000}], 0x9, 0x7}, {[{0x101, 0x3}, {0x10, 0x3}, {0x9, 0x1}, {0x7f}, {0x9, 0x1}, {0xffffffff}, {0x6, 0x2}, {0x1, 0x3}, {0xb, 0x2}, {0x8, 0x2}, {0x30000000}], [{0x40, 0xfffffe32}, {0x3, 0x1}, {0x7, 0x805a}, {0x7, 0x8}, {0x9, 0x80000000}, {0x800, 0xfffffffa}, {0xb, 0xc}, {0x9f89, 0x6}, {0x5, 0x8}, {0x80, 0x1}, {0x7, 0x55dd844b}], 0x5, 0x9}, {[{0xa, 0x2}, {0x5, 0x2}, {0x8, 0x2}, {0x8, 0x1}, {0x401}, {0xa5, 0x3}, {0x6}, {0x7}, {0x7, 0x3}, {0x7, 0x1}, {0x2cd1, 0x2}], [{0x3}, {0x9}, {0xfffffff0, 0x7}, {0x0, 0x1}, {0x3, 0x9}, {0x6, 0xd2b}, {0x2, 0x6}, {0xe39, 0x8000}, {0x5b}, {0x800, 0x8}, {0x5, 0x1}], 0x1, 0xa}, {[{0xe, 0x1}, {0xffffff80, 0x3}, {}, {0x4, 0x2}, {0x6, 0x3}, {0x40, 0x1}, {0x6, 0x1}, {0x7fff, 0x1}, {0x16a, 0x1}, {0x5, 0x3}, {0x4}], [{0x3, 0x2}, {0xbc6f3d9b, 0x828}, {0x8000, 0x8}, {0x5, 0x2}, {0x0, 0x45d0}, {0x8, 0x9}, {0x5, 0x31}, {0x1, 0x670f}, {0xdc03, 0x3}, {0x100, 0x9}, {0xfffffffc, 0xff0}], 0x8, 0xfe}, {[{0x7fff}, {0x9}, {0x0, 0x1}, {0x6, 0x3}, {0x4, 0x3}, {0xffff}, {0x9}, {0x1}, {0x367d, 0x3}, {0x3, 0x2}, {0x0, 0x1}], [{0x59000000, 0x8}, {0x1, 0x9}, {0x7fff8, 0x1b0d}, {0xfffff371, 0x4}, {0x8, 0x2}, {0x7ff, 0x2}, {0x8, 0x7}, {0x44, 0xb}, {0x1, 0x6}, {0x400, 0x7}, {0x2, 0x5369}], 0xa, 0xa}], 0xff}}, @common=@inet=@hashlimit1={{0x58}, {'netdevsim0\x00', {0x0, 0x0, 0x9, 0x1, 0x0, 0x10000, 0x80000401, 0x80}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x4, 'pptp\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x1f8, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:usb_device_t:s0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0xc70) (async)

1.365098337s ago: executing program 1 (id=2700):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000100000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_DELOBJ={0x34, 0x14, 0xa, 0x307, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}}], {0x14}}, 0x70}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x278, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x240, 0x4, 0x0, 0x1, [{0x23c, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x22c, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x215, 0x3, "d67a8527f76ec1d39e537c4c3060c6a405106c72848aa8bcb429b3a20d532452032d5f166334739d1719a5778bd4f724ee4ca57f2527aeeb0c75755d68fc6fa55f4825682ee95e581039823e5963beedcf65b8b005623d90772b8b6ebd2498b0aff725a3eabb6c99cb2edfe10b9c33be8a971e08401bc0807e75a2ff376b7934473bc1f02bb512b77414daf260c9c7d4e1f0758b56ec5823892af310e6252fcfb1d9dbaddefdaa26f43f12f831fd221926d6536eeff641db46920ae0e48f3ff5de599714ba6510ce479d4116a519792281736f39c9fc0e10ef557392c43389271cebcf36543fcf6f83bf74b93ee4eb5e8c82e35bb4784cc1ed0ad291b16e8368487589f7590bf5896f340a36555a1cf69736da230a809176dbdfba3d47efb9a6932e5503d277532b7d4e6f7c7373a298e5843a9f74d5fd07fbc6ad22bc644ba9b3c94ec3c8f0b9321b16e5826b1f058f781760a5d4b6a8880202b41689139c37cd51f65a92d883f8901add03b650c9ec182fb565a4d657ebba9d6a5eb426b22d5933b72362e6ec327fb679aa8034b8b3b6680ad138be47652a3e77981187d2921cebfc1639aa280e3d38dba9b1af49ceded79c78a2d656b3a3e946e17e6257def6679f70f11aa01a2d906aecf4dbc7d1a332a8932ed719ce7eecb5450f494f944b3f6b637502ddba609c6e45dcfad1db7c7dda3e2c755ddcf27132985442e9b8df16f96c82e72e3e2491856d07756b9f87"}, @NFTA_MATCH_NAME={0x8, 0x1, 'bpf\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x9, 0x7, 0x1, 0x0, "030780fd4c"}]}], {0x14}}, 0x2a0}}, 0x4048010)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r3 = socket(0x11, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r5=>0x0})
bind$packet(r3, &(0x7f0000000180)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @remote}, 0x14)
r6 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
bind$llc(r6, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
r8 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r8, &(0x7f0000000300)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
sendto$netrom(r8, 0x0, 0x0, 0x40, &(0x7f0000000000)={{0x6, @null}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, @bcast]}, 0x48)
write$cgroup_int(r7, &(0x7f0000000000), 0xffffff6a)
sendfile(r6, r7, 0x0, 0xffffffff000)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$smc(&(0x7f0000000140), r9)
sendmsg$SMC_PNETID_ADD(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=r10, @ANYBLOB="010000000000000000000200000009000100200b"], 0x34}}, 0x0)
listen(r6, 0x795b2058)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000000)=0xe9, 0x4)
sendmsg$netlink(r3, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="020114008cdc18000e3580009f000114600000060600ac141414e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88942a31f48597e36e039b1c599db6e466749c2d4c8303a0f7fbda34fb8825f80200e3c0ab42e32a097dbd4be5ffca88faca"], 0xdd12}, {&(0x7f0000000440)=ANY=[], 0x10}], 0x2}, 0x20040051)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1900000004000000080000001200000000000000", @ANYRES32, @ANYBLOB="010100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000080000000fad36dc29c26763900000000000600001b00000000000000"], 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r11, r2, 0x26, 0x0, 0x0, @void, @value}, 0x10)

1.282625421s ago: executing program 2 (id=2702):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000700)={0x24, r1, 0x101, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random="c4"}]}, 0x24}, 0x1, 0x0, 0x0, 0x200000d0}, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r3, 0x29, 0x44, 0x0, &(0x7f00000000c0))
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f0000000080)={0x2, 0x7d, 0x4, 0x5, 0x2}, 0x14)

1.281207685s ago: executing program 0 (id=2703):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)
r1 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0x4)
ioctl$TUNSETSTEERINGEBPF(r0, 0x800454e0, &(0x7f0000000080)=r1)
recvmsg(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000140)=""/95, 0x5f}, {&(0x7f00000001c0)=""/214, 0xd6}, {&(0x7f00000002c0)=""/236, 0xec}, {&(0x7f00000003c0)}, {&(0x7f0000000400)=""/161, 0xa1}, {&(0x7f00000004c0)=""/183, 0xb7}], 0x6, &(0x7f0000000600)=""/249, 0xf9}, 0x10000)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, &(0x7f0000000740)=0x11, 0x4)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x3, &(0x7f0000000780)=0x3, 0x4)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000007c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bind$tipc(r2, &(0x7f0000000800)=@nameseq={0x1e, 0x1, 0x3, {0x40, 0x1, 0x3}}, 0x10)
ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f0000000840)={'netpci0\x00'})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r3, &(0x7f0000001980)={&(0x7f0000000880)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000000940)=[{&(0x7f0000000900)=""/51, 0x33}], 0x1, &(0x7f0000000980)=""/4096, 0x1000}, 0x2000)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$pppoe(0x18, 0x1, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2, 0x810, r4, 0xe4df5000)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SWAP(r5, &(0x7f0000001c00)={&(0x7f0000001b00)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001bc0)={&(0x7f0000001b40)={0x58, 0x6, 0x6, 0x101, 0x0, 0x0, {0xa, 0x0, 0xa}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz0\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x8011}, 0x800)

1.172427891s ago: executing program 2 (id=2704):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32, @ANYBLOB="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"], 0x270}}, 0x0)

1.171886276s ago: executing program 4 (id=2705):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x5, 0x4, 0x6, 0x3, 0x0, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000300), &(0x7f00000003c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x14, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x101}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1, 0x4000000}, 0x10)

1.020350996s ago: executing program 4 (id=2706):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket(0x2a, 0x2, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000580), r1)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r2, &(0x7f00000019c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000600)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x40010)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0xffffffffffffffdb, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=@newtfilter={0x44, 0x2a, 0xd27, 0x1004001, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {}, {0x2, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x14, 0x2, [@TCA_CGROUP_POLICE={0x10, 0x2, [@TCA_POLICE_RATE64={0xc, 0x8, 0x4}]}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x810}, 0x48c0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, 0x0)
r5 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
getpeername$packet(0xffffffffffffffff, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r1, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x14, r5, 0x2, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x20004801)
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
writev(r6, &(0x7f0000000200), 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r6, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x0)

986.530206ms ago: executing program 2 (id=2707):
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x118}, 0x1, 0x0, 0x0, 0x20044010}, 0x4000000)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000280)={0xffffffffffffffff, 0x53, 0xd, 0x9})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[], 0x1d4}, 0x1, 0x0, 0x0, 0x4000}, 0x4004090)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a010400000000000000000200000038000480340001800c0001007061796c6f6164002400028008000440000000000800014000000000080003400000000008000240000000000900010073797a30000000000900020073797a320000000005000740df000000140000001100010000000000000000e0"], 0x94}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000680)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xc0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = accept4(r1, 0x0, 0x0, 0x80800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

908.391691ms ago: executing program 3 (id=2708):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x2, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x51, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

904.802312ms ago: executing program 4 (id=2709):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r0=>0x0})
r1 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r0, @ANYBLOB="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"], 0x270}}, 0x0)

736.606911ms ago: executing program 3 (id=2710):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r2, 0x1, 0x3e, &(0x7f0000000100)=r0, 0x4)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000100)={0x2, 0x0, @empty}, 0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r3, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f00000004c0)=0x27)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000180)={r5}, &(0x7f0000000040)=0x8)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=@newlink={0x48, 0x10, 0x1, 0x70bd2c, 0x3, {0x0, 0x0, 0x0, 0x0, 0x0, 0x120}, [@IFLA_IFNAME={0x14, 0x3, 'ip6_vti0\x00'}, @IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_RSS_QUERY_EN={0xc, 0x7, {0x401, 0x6}}]}]}]}, 0x48}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(r8, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000003c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRESHEX=r7, @ANYBLOB="050427a57000fedbdf250300000008000100", @ANYRES64=r4], 0x60}, 0x1, 0x0, 0x0, 0x4000844}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_DELSETELEM={0x4c, 0xe, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_RULE_EXPRESSIONS={0x10, 0x4, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @cmp={{0x8}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "ef"}]}], {0x14}}, 0xe4}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xe, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="85000000b2000000620a00ff000000007500000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="00000000000000000504000000"], &(0x7f0000000140)='GPL\x00', 0x2, 0x95, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000580), r11)
sendmsg$IEEE802154_LIST_PHY(r11, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, r12, 0x30b}, 0x14}}, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000240)={'team0\x00', 0x1})
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000140)={'lo\x00', <r13=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x44, 0x24, 0xd0f, 0x0, 0x20, {0x60, 0x0, 0x0, r13, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_INGRESS={0x8}, @TCA_CAKE_ACK_FILTER={0x8, 0x10, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000080}, 0x20000000)

736.084458ms ago: executing program 2 (id=2711):
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r1, &(0x7f0000000ec0)=[{{&(0x7f0000000300)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000100)='k', 0x1}], 0x1}}], 0x1, 0x0)
sendto$inet6(r1, &(0x7f0000000340)='0', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c)
shutdown(r1, 0x1)
socket$kcm(0xa, 0x3, 0x73)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000180)=[{0x30, 0x0, 0x2, 0x2}, {0x80000006}]}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x14)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008188040f80ec59acbc0413010048100000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000540)={0x38, 0x1403, 0x1, 0xffffffff, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'veth0_vlan\x00'}}]}, 0x38}}, 0x4000000)
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@private1, @private2, [0x0, 0xffffff00], [0xffffffff, 0xff, 0x0, 0xffffff00], 'gre0\x00', 'veth0\x00', {}, {0xff}, 0x87, 0xe, 0x6, 0x9}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x4, 0x0, 0x2001000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x401, 0x0, 0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r5 = socket$inet6(0xa, 0x3, 0x3c)
r6 = socket(0x10, 0x803, 0x0)
sendto(r6, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000002140)={0x26, 'aead\x00', 0x0, 0x0, 'authencesn(michael_mic-generic,xchacha20-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000280)="10750000", 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r6, 0x6, 0xe, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sendmmsg$inet(r5, &(0x7f0000000940)=[{{&(0x7f0000000480)={0x2, 0x4e22, @private=0xa010100}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000a00)="a15c07cc48c417f7c72dafe6fc4eb251b8eb45b8fbb5b821c78e56948a65f44a4af94cefc618008ebe3468b9fb6eb3585bd373b6ac21ef9dcfc03939d990ca501d18d22f3b8d368595ec1e4f367f52b6a7daa89e9c22838f3618b65280daca1f6acb7d19b96d927ad1bffcb9c114e3565df065350a5b8c4d3646fc41f33773efb2db0301ef5dabe6a54b03711293edb462d6d38b59af715aa3702db3b0533b161c97b41d80fd7edeb91646ea7aacde915a3c45164245e4c22a685ec9e83b2c06ba694eafcd935259fe44f1e9377c74aea9bda8cc97ffa73f1324a345a42a1c2e", 0xe0}, {&(0x7f0000000880)="4a205d780a385ced2a4a6aa304850fa47cd5ba3df6d91d63f590c7cc76dd9833837409f0341a8ee414e442e5487f67d33652417389966e73b50fb3230179b1f2c3a9df495e1f2b970a081be25f452191b8a27bcb86fa624e21fb0c739329629dcedf38a5d6c9991d89561a93fda57a715406fc63ff1f7dcd8a7e39d47e029a6ad20e04801cce544efc92", 0x8a}], 0x2, &(0x7f0000000b00)=ANY=[@ANYBLOB="58000000000000000000000007000000861a000000000610628749cb83255fe25c98adb0c36d01046964862c000000010212443a992cd855b6d0a95898fb018bc1b4000a050d087e6fb4f1e1070af83df7d458b88b4b00001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="7f000001e000000200000000110000000000000000000000010000000d000000000000001100000000000000000000000100000001000000000000001400000000000000000000000100000006000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="000000047f00000100000000"], 0xe0}}], 0x1, 0x8080)
r8 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r8, &(0x7f0000000140)=[{&(0x7f00000000c0)="580000001500add427323b472545b4560a117fff0b0082001b59000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000020000", 0x56}, {&(0x7f0000000000)="abd9", 0x2}], 0x2)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000100)=ANY=[], 0x32600)

735.798758ms ago: executing program 4 (id=2712):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000001c0)={0x0, 0x3000000, &(0x7f0000000000)={&(0x7f0000000100)={0x2, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x25dfdbfd, [@sadb_x_filter={0x5, 0x1a, @in6=@empty, @in6=@mcast1, 0x15, 0x14, 0x8f75fea780760fea}]}, 0x38}}, 0x0)

469.339509ms ago: executing program 4 (id=2713):
unshare(0x8000400)
r0 = socket(0x11, 0x2, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0xa0179e08, 0x2000000})

345.58654ms ago: executing program 0 (id=2714):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha512\x00'}, 0x58)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x8)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r1, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e20, @private=0xa010100}}, 0x24)
syz_emit_ethernet(0x86, &(0x7f0000000640)=ANY=[@ANYBLOB="aaaaaaaaaa008000000000000000450000780000000000119078000000000000000000004e20006490780200000002000000020000006dcb9d8bf4dfe3e1032fb13fdee18973d5ea9bdbbc0cea40c89d44000000000000cad42c7eec89007868e702000000000000070000000000400b5c995e48d4587ace94759866d9600000000000000000"], 0x0)

280.387921ms ago: executing program 4 (id=2715):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000140), 0x8)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x1, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
pselect6(0x40, &(0x7f00000001c0)={0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x5f8, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
vmsplice(r3, &(0x7f00000005c0)=[{&(0x7f0000000180)}], 0x1, 0x6)
ioctl$sock_inet_udp_SIOCINQ(r3, 0x541b, 0x0)
write(r1, 0x0, 0x2000)
accept4(0xffffffffffffffff, &(0x7f0000000000)=@ieee802154={0x24, @long}, 0x0, 0x80000)

220.375947ms ago: executing program 1 (id=2716):
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x118}, 0x1, 0x0, 0x0, 0x20044010}, 0x4000000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a2c000000060a01010000000000000000000000090900010073797a31000000000c00034000000000000000050c010000180a01020000000000000000000000000900020073797a300000000014000380080002400000000708"], 0x1d4}, 0x1, 0x0, 0x0, 0x4000}, 0x4004090)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xaf, &(0x7f0000000b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a010400000000000000000200000038000480340001800c0001007061796c6f6164002400028008000440000000000800014000000000080003400000000008000240000000000900010073797a30000000000900020073797a320000000005000740df000000140000001100010000000000000000e00000000a"], 0x94}}, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x80800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r2, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r3, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

209.976253ms ago: executing program 0 (id=2717):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x803, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r4, @ANYBLOB="00000000100000001c001a80", @ANYRES32], 0x44}}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="d8000000", 0x4}], 0x1}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x4044040)
socket(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
r10 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r10, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r10, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r10, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r10, &(0x7f0000000780)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x9, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r10, 0x84, 0x77, &(0x7f0000000540)=ANY=[@ANYRESDEC=r8, @ANYRESHEX=r6, @ANYBLOB="ad3077b29886b019f75ecd8d1ce86e745355d730baca7edb476ed7b9fb2c94155da87498a4dd7b6c25e7ab56ca3cb4583d1e950359b81f6273c7ac726c2620cee16c3d1ac11a783a710f1c560349ebe09900b7878a2e66699550ff7d02a76b965dcd7e128edd4241dd2073da53684badab7696d0853ec674f8ba6c6d9a52aa37cfaf2bfdef9564b868ae28af79980cfc1c9f78497febc8c1ac18cc96786793facb98479d9278cb936a1c009f677119c7113808035cb13a0c1f6554bfdc49597956ffffdd44942b1708130f", @ANYBLOB="15f14f981e6f6987716441019b35ce80b748674f8f12afdd32b6abfc97a676c9f695507b5ba9e2d582d163be8c815269ecbef2a0519ee55c570bd544eccbcada92e64d32db128f05fd1d9605cec869b6f5376c7ab9d938d8d6643cc98ad94b0bd4efdf4da8d18f8499054da91bdd9d2f6adef747c035f82090158d7b7013c53d438a03fad0cf618a85750887f68b3e192afa9cbfa1cbd3419d63c2aff8f78fb1d3bd55d1685f8ca88a78185d", @ANYRESHEX=r8, @ANYRES16=r2, @ANYRES32=r6, @ANYRESHEX=r9, @ANYRES64=r0, @ANYRES8=r7], 0x1000f)

0s ago: executing program 0 (id=2718):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000001000)={'erspan0\x00', 0x0, 0x0, 0xa000, 0x0, 0xfffffffc, {{0x5, 0x4, 0x0, 0x0, 0x14, 0xfffe, 0x0, 0x0, 0x2f, 0x0, @empty, @local}}}})
socket(0x10, 0x3, 0x0) (async)
r1 = socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000ed60e0343c7cbb904c2fede7c7bc66682e416275d6a48a90b708695d75b47ada4597e3224a", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28, @ANYRES16], 0x31) (async)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000ed60e0343c7cbb904c2fede7c7bc66682e416275d6a48a90b708695d75b47ada4597e3224a", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28, @ANYRES16], 0x31)
connect$802154_dgram(0xffffffffffffffff, 0x0, 0x0)
socket$inet(0x2, 0x2, 0x0) (async)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010100000004"], 0x57) (async)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010100000004"], 0x57)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001300a7cc4a372eaf541d002007000000", @ANYRES32, @ANYBLOB="00000000100000001c001a80080002"], 0x44}}, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000071000100000000000000000007000000", @ANYRES32=r4, @ANYBLOB="0c000180080001000300010020"], 0x44}}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000071000100000000000000000007000000", @ANYRES32=r4, @ANYBLOB="0c000180080001000300010020"], 0x44}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x5d, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x20040084}, 0x8802)
socket(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f0000000000), 0x4000000000001f2, 0x0) (async)
sendmmsg(r5, &(0x7f0000000000), 0x4000000000001f2, 0x0)
setsockopt$inet_mreqsrc(r2, 0x0, 0x28, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r6, &(0x7f0000000e80)=[{{&(0x7f0000000080)={0xa, 0x4e22, 0x7, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c, &(0x7f0000000100)=[{&(0x7f00000000c0)="d9", 0x1}], 0x1}}], 0x1, 0x4080040)
shutdown(r6, 0x1) (async)
shutdown(r6, 0x1)
setsockopt$inet_sctp6_SCTP_EVENTS(r6, 0x84, 0xb, &(0x7f0000000480)={0x3, 0x5, 0xe, 0xda, 0x0, 0x18, 0x20, 0x7e, 0x3f, 0x3, 0xff, 0x7, 0xa0, 0x2}, 0xe) (async)
setsockopt$inet_sctp6_SCTP_EVENTS(r6, 0x84, 0xb, &(0x7f0000000480)={0x3, 0x5, 0xe, 0xda, 0x0, 0x18, 0x20, 0x7e, 0x3f, 0x3, 0xff, 0x7, 0xa0, 0x2}, 0xe)
bind$inet(r2, &(0x7f0000000300)={0x2, 0x4e23, @private=0xa010102}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0x17, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000218110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70200001400e0ffb7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000000000000850000008600000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7020000000000008500000017000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0xfca804a0, 0x6f, 0x0, &(0x7f0000000900)="b80022ab98d1db1b883e04000000821c41888a26cbde7103060c317fd064e7be52cc66ba3ee509686a1e2c58344db640e1164430c16ce7d3c52f9285a99cd783b8e609ec782f15a0ab6094d925155d328b7ae35377835f4421eac373164a368940594ebf9f2b89d0b56bee1f4d402a", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x7}, 0x2e) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0xfca804a0, 0x6f, 0x0, &(0x7f0000000900)="b80022ab98d1db1b883e04000000821c41888a26cbde7103060c317fd064e7be52cc66ba3ee509686a1e2c58344db640e1164430c16ce7d3c52f9285a99cd783b8e609ec782f15a0ab6094d925155d328b7ae35377835f4421eac373164a368940594ebf9f2b89d0b56bee1f4d402a", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x7}, 0x2e)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt(r9, 0x1, 0x7, &(0x7f0000000000)=""/179, &(0x7f00000000c0)=0xb3)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000280)=0x8001, 0x4)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, &(0x7f00000001c0), &(0x7f00000002c0)=0xc)
socket$can_j1939(0x1d, 0x2, 0x7)

kernel console output (not intermixed with test programs):

60] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  237.383336][ T9860] R13: 0000000000000000 R14: 00007feaceda5fa0 R15: 00007ffe35163eb8
[  237.383366][ T9860]  </TASK>
[  238.113424][ T9877] netlink: 'syz.0.1220': attribute type 29 has an invalid length.
[  238.143069][ T9877] netlink: 'syz.0.1220': attribute type 29 has an invalid length.
[  238.357181][ T9883] __nla_validate_parse: 7 callbacks suppressed
[  238.357202][ T9883] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1222'.
[  238.575619][ T9895] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  238.856729][ T9909] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1227'.
[  238.962012][ T9917] dvmrp0: entered allmulticast mode
[  239.168441][ T9923] netlink: 'syz.1.1236': attribute type 29 has an invalid length.
[  239.193580][ T9923] netlink: 'syz.1.1236': attribute type 29 has an invalid length.
[  239.299436][ T9927] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1238'.
[  239.456030][ T9934] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1241'.
[  239.475872][ T9934] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1241'.
[  239.821632][ T9949] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  239.992631][ T9958] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1253'.
[  241.219447][ T9968] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1252'.
[  241.259543][ T9964] netlink: 'syz.1.1251': attribute type 29 has an invalid length.
[  241.283686][ T9944] vxcan1 speed is unknown, defaulting to 1000
[  241.488394][ T9976] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1256'.
[  241.519128][ T9976] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1256'.
[  241.917653][ T9987] netlink: 'syz.1.1262': attribute type 10 has an invalid length.
[  241.947196][ T9987] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  242.063193][ T9997] netlink: 'syz.0.1265': attribute type 29 has an invalid length.
[  242.110924][ T9997] netlink: 'syz.0.1265': attribute type 29 has an invalid length.
[  242.196239][T10003] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1267'.
[  242.675506][T10021] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input9
[  243.018400][T10035] netlink: 'syz.3.1279': attribute type 29 has an invalid length.
[  243.039292][T10035] netlink: 'syz.3.1279': attribute type 29 has an invalid length.
[  243.300322][T10048] netlink: 'syz.3.1285': attribute type 10 has an invalid length.
[  243.308854][T10048] syz1: rxe_newlink: already configured on veth0_vlan
[  243.459553][T10058] __nla_validate_parse: 3 callbacks suppressed
[  243.459576][T10058] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1288'.
[  243.814224][T10074] netlink: 'syz.0.1295': attribute type 29 has an invalid length.
[  243.824514][T10074] netlink: 'syz.0.1295': attribute type 29 has an invalid length.
[  243.952276][T10079] netlink: 368 bytes leftover after parsing attributes in process `syz.4.1298'.
[  243.967639][T10079] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1298'.
[  243.991220][T10081] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  244.228112][T10081] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1308'.
[  244.352076][T10087] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1300'.
[  245.099496][T10113] netlink: 312 bytes leftover after parsing attributes in process `syz.4.1309'.
[  245.291161][T10120] netlink: 'syz.1.1311': attribute type 10 has an invalid length.
[  245.325339][T10120] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  245.624469][T10129] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  245.919493][T10129] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1314'.
[  245.987617][T10139] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1317'.
[  246.017577][T10139] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1317'.
[  246.206198][T10141] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1318'.
[  246.470097][T10145] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  246.910180][T10153] syzkaller1: entered promiscuous mode
[  246.927169][T10153] syzkaller1: entered allmulticast mode
[  248.481523][T10191] __nla_validate_parse: 4 callbacks suppressed
[  248.481544][T10191] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1338'.
[  248.508350][T10189] netlink: 148 bytes leftover after parsing attributes in process `syz.3.1337'.
[  248.527587][T10189] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  249.097996][T10209] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1343'.
[  249.168302][T10209] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1343'.
[  249.231233][T10212] netlink: 'syz.2.1342': attribute type 10 has an invalid length.
[  249.268624][T10212] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  249.379754][T10203] Set syz1 is full, maxelem 65536 reached
[  249.810844][T10226] netlink: 'syz.1.1346': attribute type 10 has an invalid length.
[  249.820259][T10226] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  250.461671][T10239] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  250.718294][T10243] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1351'.
[  251.316446][T10261] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1356'.
[  251.398375][T10261] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1356'.
[  251.667725][T10267] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  251.808206][T10273] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1358'.
[  251.851558][T10270] netlink: 'syz.1.1359': attribute type 10 has an invalid length.
[  251.862349][T10270] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  252.204445][T10279] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1362'.
[  252.333972][T10283] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1362'.
[  252.366408][T10283] batadv1: left allmulticast mode
[  252.392567][T10283] batadv1: left promiscuous mode
[  252.437754][T10283] bridge0: port 3(batadv1) entered disabled state
[  252.490485][T10283] bridge_slave_1: left allmulticast mode
[  252.496215][T10283] bridge_slave_1: left promiscuous mode
[  252.567625][T10283] bridge0: port 2(bridge_slave_1) entered disabled state
[  252.629469][T10283] bridge_slave_0: left allmulticast mode
[  252.635193][T10283] bridge_slave_0: left promiscuous mode
[  252.658066][T10283] bridge0: port 1(bridge_slave_0) entered disabled state
[  252.781018][T10290] netlink: 'syz.3.1365': attribute type 29 has an invalid length.
[  252.790181][T10291] netlink: 'syz.3.1365': attribute type 29 has an invalid length.
[  253.612238][T10328] __nla_validate_parse: 3 callbacks suppressed
[  253.612262][T10328] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1373'.
[  253.659653][T10330] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  253.829596][T10335] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1374'.
[  253.894169][T10332] netlink: 'syz.4.1376': attribute type 10 has an invalid length.
[  254.062164][T10300] Set syz1 is full, maxelem 65536 reached
[  254.816380][T10354] netlink: 'syz.2.1381': attribute type 29 has an invalid length.
[  254.857731][T10354] netlink: 'syz.2.1381': attribute type 29 has an invalid length.
[  254.935799][T10358] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1384'.
[  254.971856][T10358] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1384'.
[  255.089830][T10360] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1385'.
[  255.109458][T10360] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1385'.
[  255.214658][T10367] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1387'.
[  255.537882][T10378] netlink: 'syz.1.1388': attribute type 1 has an invalid length.
[  255.545696][T10378] netlink: 244 bytes leftover after parsing attributes in process `syz.1.1388'.
[  256.044752][T10395] netlink: 'syz.2.1393': attribute type 5 has an invalid length.
[  256.117935][T10395] : entered promiscuous mode
[  256.361972][T10399] netlink: 'syz.4.1396': attribute type 29 has an invalid length.
[  256.398668][T10399] netlink: 'syz.4.1396': attribute type 29 has an invalid length.
[  256.466929][T10402] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1397'.
[  256.507053][T10402] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1397'.
[  257.001615][T10414] FAULT_INJECTION: forcing a failure.
[  257.001615][T10414] name failslab, interval 1, probability 0, space 0, times 0
[  257.004139][T10412] netlink: 'syz.4.1399': attribute type 10 has an invalid length.
[  257.081477][T10414] CPU: 0 UID: 0 PID: 10414 Comm: syz.2.1400 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  257.081511][T10414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  257.081524][T10414] Call Trace:
[  257.081532][T10414]  <TASK>
[  257.081541][T10414]  dump_stack_lvl+0x241/0x360
[  257.081573][T10414]  ? __pfx_dump_stack_lvl+0x10/0x10
[  257.081596][T10414]  ? __pfx__printk+0x10/0x10
[  257.081619][T10414]  ? __kmalloc_cache_noprof+0x48/0x390
[  257.081652][T10414]  ? __pfx___might_resched+0x10/0x10
[  257.081685][T10414]  should_fail_ex+0x40a/0x550
[  257.081721][T10414]  should_failslab+0xac/0x100
[  257.081751][T10414]  __kmalloc_cache_noprof+0x70/0x390
[  257.081779][T10414]  ? call_usermodehelper_setup+0x8e/0x270
[  257.081806][T10414]  ? __kmalloc_node_track_caller_noprof+0x2a8/0x4c0
[  257.081854][T10414]  call_usermodehelper_setup+0x8e/0x270
[  257.081881][T10414]  ? __pfx_free_modprobe_argv+0x10/0x10
[  257.081906][T10414]  __request_module+0x3cd/0x640
[  257.081930][T10414]  ? capable+0x79/0xe0
[  257.081956][T10414]  ? __pfx___request_module+0x10/0x10
[  257.081979][T10414]  ? rcu_is_watching+0x15/0xb0
[  257.082011][T10414]  ? bpf_lsm_capable+0x9/0x10
[  257.082042][T10414]  ? security_capable+0x7e/0x2d0
[  257.082079][T10414]  ? dev_load+0x21/0x1f0
[  257.082106][T10414]  dev_load+0x18f/0x1f0
[  257.082135][T10414]  devinet_ioctl+0x114/0x1d80
[  257.082173][T10414]  ? __might_fault+0xaa/0x120
[  257.082195][T10414]  ? __pfx_devinet_ioctl+0x10/0x10
[  257.082229][T10414]  ? get_user_ifreq+0x1bb/0x200
[  257.082258][T10414]  inet_ioctl+0x3d7/0x4f0
[  257.082284][T10414]  ? __pfx_inet_ioctl+0x10/0x10
[  257.082311][T10414]  ? tomoyo_path_number_perm+0x5dd/0x770
[  257.082351][T10414]  ? __lock_acquire+0x1397/0x2100
[  257.082395][T10414]  sock_do_ioctl+0x158/0x460
[  257.082429][T10414]  ? __pfx_sock_do_ioctl+0x10/0x10
[  257.082476][T10414]  sock_ioctl+0x626/0x8e0
[  257.082505][T10414]  ? __pfx_sock_ioctl+0x10/0x10
[  257.082531][T10414]  ? __fget_files+0x2a/0x410
[  257.082563][T10414]  ? __fget_files+0x2a/0x410
[  257.082597][T10414]  ? __pfx_sock_ioctl+0x10/0x10
[  257.082625][T10414]  __se_sys_ioctl+0xf5/0x170
[  257.082651][T10414]  do_syscall_64+0xf3/0x230
[  257.082676][T10414]  ? clear_bhb_loop+0x35/0x90
[  257.082709][T10414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.082737][T10414] RIP: 0033:0x7f965878d169
[  257.082756][T10414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.082775][T10414] RSP: 002b:00007f9659612038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  257.082798][T10414] RAX: ffffffffffffffda RBX: 00007f96589a5fa0 RCX: 00007f965878d169
[  257.082813][T10414] RDX: 0000400000000580 RSI: 000000000000891a RDI: 0000000000000006
[  257.082826][T10414] RBP: 00007f9659612090 R08: 0000000000000000 R09: 0000000000000000
[  257.082838][T10414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  257.082858][T10414] R13: 0000000000000000 R14: 00007f96589a5fa0 R15: 00007ffe20ba2438
[  257.082889][T10414]  </TASK>
[  258.092119][T10437] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input10
[  258.738995][T10456] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1416'.
[  258.762336][T10456] vti0: entered promiscuous mode
[  258.805882][T10456] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  258.816980][T10456] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1416'.
[  258.837112][T10456] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1416'.
[  258.855058][T10456] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1416'.
[  259.296955][T10458] vxcan1 speed is unknown, defaulting to 1000
[  259.371848][T10470] ksmbd: Daemon and kernel module version mismatch. ksmbd: 124, kernel module: 1. User-space ksmbd should terminate.
[  259.629406][T10474] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1423'.
[  259.885810][T10477] netlink: 'syz.4.1424': attribute type 29 has an invalid length.
[  259.895265][T10477] netlink: 'syz.4.1424': attribute type 29 has an invalid length.
[  260.770988][T10494] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  260.877550][ T5848] Bluetooth: hci0: command 0x0406 tx timeout
[  260.902268][T10494] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  260.967643][T10500] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  261.032535][T10494] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.058288][T10504] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1434'.
[  261.119467][T10494] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.257887][T10494] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  261.305890][T10494] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  261.380329][T10510] netlink: 'syz.2.1437': attribute type 29 has an invalid length.
[  261.422972][T10494] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  261.445174][T10515] netlink: 'syz.2.1437': attribute type 29 has an invalid length.
[  261.495550][T10494] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  261.505019][T10516] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1439'.
[  261.505414][T10514] netlink: 'syz.3.1439': attribute type 9 has an invalid length.
[  261.991235][T10544] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  262.082763][T10551] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1449'.
[  262.146417][T10552] netlink: 'syz.4.1450': attribute type 1 has an invalid length.
[  262.175548][T10552] netlink: 244 bytes leftover after parsing attributes in process `syz.4.1450'.
[  262.214598][T10556] netlink: 'syz.3.1454': attribute type 29 has an invalid length.
[  262.234660][T10556] netlink: 'syz.3.1454': attribute type 29 has an invalid length.
[  262.641954][T10574] vlan2: entered promiscuous mode
[  262.660735][T10574] ip6gretap0: entered promiscuous mode
[  262.678447][T10574] ip6gretap0: left promiscuous mode
[  262.791355][T10577] FAULT_INJECTION: forcing a failure.
[  262.791355][T10577] name failslab, interval 1, probability 0, space 0, times 0
[  262.842941][T10577] CPU: 1 UID: 0 PID: 10577 Comm: syz.1.1461 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  262.842979][T10577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  262.842992][T10577] Call Trace:
[  262.843000][T10577]  <TASK>
[  262.843009][T10577]  dump_stack_lvl+0x241/0x360
[  262.843042][T10577]  ? __pfx_dump_stack_lvl+0x10/0x10
[  262.843066][T10577]  ? __pfx__printk+0x10/0x10
[  262.843090][T10577]  ? fs_reclaim_acquire+0x93/0x130
[  262.843114][T10577]  ? __pfx___might_resched+0x10/0x10
[  262.843140][T10577]  ? dynamic_dname+0x144/0x1b0
[  262.843166][T10577]  should_fail_ex+0x40a/0x550
[  262.843209][T10577]  should_failslab+0xac/0x100
[  262.843240][T10577]  __kmalloc_noprof+0xdd/0x4c0
[  262.843269][T10577]  ? tomoyo_encode+0x26f/0x540
[  262.843296][T10577]  tomoyo_encode+0x26f/0x540
[  262.843318][T10577]  ? __pfx_sockfs_dname+0x10/0x10
[  262.843350][T10577]  tomoyo_realpath_from_path+0x59e/0x5e0
[  262.843385][T10577]  tomoyo_path_number_perm+0x239/0x770
[  262.843414][T10577]  ? __lock_acquire+0x1397/0x2100
[  262.843449][T10577]  ? tomoyo_path_number_perm+0x209/0x770
[  262.843481][T10577]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  262.843555][T10577]  ? __fget_files+0x2a/0x410
[  262.843589][T10577]  ? __fget_files+0x2a/0x410
[  262.843624][T10577]  security_file_ioctl+0xc6/0x2a0
[  262.843654][T10577]  __se_sys_ioctl+0x46/0x170
[  262.843680][T10577]  do_syscall_64+0xf3/0x230
[  262.843707][T10577]  ? clear_bhb_loop+0x35/0x90
[  262.843740][T10577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.843768][T10577] RIP: 0033:0x7f981778d169
[  262.843786][T10577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.843804][T10577] RSP: 002b:00007f9818694038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  262.843827][T10577] RAX: ffffffffffffffda RBX: 00007f98179a5fa0 RCX: 00007f981778d169
[  262.843843][T10577] RDX: 0000400000000100 RSI: 0000000000008953 RDI: 0000000000000004
[  262.843857][T10577] RBP: 00007f9818694090 R08: 0000000000000000 R09: 0000000000000000
[  262.843870][T10577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.843882][T10577] R13: 0000000000000000 R14: 00007f98179a5fa0 R15: 00007ffc790db1b8
[  262.843915][T10577]  </TASK>
[  262.846323][T10577] ERROR: Out of memory at tomoyo_realpath_from_path.
[  263.310071][T10586] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1463'.
[  263.492256][T10598] netlink: 'syz.2.1467': attribute type 29 has an invalid length.
[  263.510858][T10593] netlink: 'syz.1.1465': attribute type 10 has an invalid length.
[  263.538079][T10593] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  263.609024][T10604] FAULT_INJECTION: forcing a failure.
[  263.609024][T10604] name failslab, interval 1, probability 0, space 0, times 0
[  263.644757][T10604] CPU: 1 UID: 0 PID: 10604 Comm: syz.3.1469 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  263.644789][T10604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  263.644801][T10604] Call Trace:
[  263.644813][T10604]  <TASK>
[  263.644822][T10604]  dump_stack_lvl+0x241/0x360
[  263.644854][T10604]  ? __pfx_dump_stack_lvl+0x10/0x10
[  263.644879][T10604]  ? __pfx__printk+0x10/0x10
[  263.644903][T10604]  ? kmem_cache_alloc_noprof+0x48/0x380
[  263.644933][T10604]  ? __pfx___might_resched+0x10/0x10
[  263.644966][T10604]  should_fail_ex+0x40a/0x550
[  263.645002][T10604]  should_failslab+0xac/0x100
[  263.645031][T10604]  ? __kernfs_new_node+0xd8/0x870
[  263.645059][T10604]  kmem_cache_alloc_noprof+0x70/0x380
[  263.645094][T10604]  __kernfs_new_node+0xd8/0x870
[  263.645134][T10604]  ? __pfx___kernfs_new_node+0x10/0x10
[  263.645169][T10604]  ? __pfx_lock_acquire+0x10/0x10
[  263.645207][T10604]  ? sysfs_do_create_link_sd+0x77/0x110
[  263.645234][T10604]  ? __pfx_lock_release+0x10/0x10
[  263.645262][T10604]  ? do_raw_spin_lock+0x14f/0x370
[  263.645293][T10604]  kernfs_new_node+0x137/0x240
[  263.645326][T10604]  kernfs_create_link+0xa5/0x1f0
[  263.645352][T10604]  sysfs_do_create_link_sd+0x85/0x110
[  263.645382][T10604]  device_add_class_symlinks+0x1c5/0x250
[  263.645420][T10604]  device_add+0x553/0xbf0
[  263.645451][T10604]  ? device_initialize+0x266/0x460
[  263.645486][T10604]  netdev_register_kobject+0x157/0x2f0
[  263.645514][T10604]  register_netdevice+0x12c3/0x1b70
[  263.645555][T10604]  ? __pfx_register_netdevice+0x10/0x10
[  263.645577][T10604]  ? dev_addr_check+0x20/0x250
[  263.645598][T10604]  ? dev_addr_mod+0xf1/0x430
[  263.645633][T10604]  ipvlan_link_new+0x412/0xa80
[  263.645662][T10604]  ? __pfx_ipvlan_link_new+0x10/0x10
[  263.645688][T10604]  rtnl_newlink_create+0x37b/0xbd0
[  263.645729][T10604]  ? __pfx_aa_get_newest_label+0x10/0x10
[  263.645765][T10604]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  263.645802][T10604]  ? __pfx___mutex_lock+0x10/0x10
[  263.645839][T10604]  ? ns_capable+0x8a/0xf0
[  263.645868][T10604]  rtnl_newlink+0x167a/0x1d90
[  263.645901][T10604]  ? __lock_acquire+0x1397/0x2100
[  263.645948][T10604]  ? __pfx_rtnl_newlink+0x10/0x10
[  263.645979][T10604]  ? __pfx_validate_chain+0x10/0x10
[  263.646023][T10604]  ? validate_chain+0x11e/0x5920
[  263.646047][T10604]  ? __pfx_lock_acquire+0x10/0x10
[  263.646082][T10604]  ? __pfx_lock_release+0x10/0x10
[  263.646118][T10604]  ? __pfx_validate_chain+0x10/0x10
[  263.646143][T10604]  ? mark_lock+0x9a/0x360
[  263.646168][T10604]  ? __lock_acquire+0x1397/0x2100
[  263.646243][T10604]  ? __pfx_lock_release+0x10/0x10
[  263.646290][T10604]  ? __pfx_rtnl_newlink+0x10/0x10
[  263.646322][T10604]  rtnetlink_rcv_msg+0x791/0xcf0
[  263.646349][T10604]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  263.646380][T10604]  ? __lock_acquire+0x1397/0x2100
[  263.646413][T10604]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  263.646463][T10604]  netlink_rcv_skb+0x206/0x480
[  263.646495][T10604]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  263.646527][T10604]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  263.646583][T10604]  ? netlink_deliver_tap+0x2e/0x1b0
[  263.646615][T10604]  netlink_unicast+0x7f6/0x990
[  263.646651][T10604]  ? __pfx_netlink_unicast+0x10/0x10
[  263.646675][T10604]  ? __virt_addr_valid+0x45f/0x530
[  263.646695][T10604]  ? __phys_addr_symbol+0x2f/0x70
[  263.646715][T10604]  ? __check_object_size+0x47a/0x730
[  263.646746][T10604]  netlink_sendmsg+0x8de/0xcb0
[  263.646790][T10604]  ? __pfx_netlink_sendmsg+0x10/0x10
[  263.646823][T10604]  ? aa_sock_msg_perm+0x91/0x160
[  263.646862][T10604]  ? __pfx_netlink_sendmsg+0x10/0x10
[  263.646890][T10604]  __sock_sendmsg+0x221/0x270
[  263.646923][T10604]  ____sys_sendmsg+0x53a/0x860
[  263.646956][T10604]  ? __pfx_____sys_sendmsg+0x10/0x10
[  263.646977][T10604]  ? __fget_files+0x2a/0x410
[  263.647011][T10604]  ? __fget_files+0x2a/0x410
[  263.647052][T10604]  __sys_sendmsg+0x269/0x350
[  263.647081][T10604]  ? __pfx___sys_sendmsg+0x10/0x10
[  263.647120][T10604]  ? do_sys_openat2+0x17a/0x1d0
[  263.647181][T10604]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  263.647223][T10604]  ? do_syscall_64+0x100/0x230
[  263.647252][T10604]  ? do_syscall_64+0xb6/0x230
[  263.647281][T10604]  do_syscall_64+0xf3/0x230
[  263.647306][T10604]  ? clear_bhb_loop+0x35/0x90
[  263.647354][T10604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.647381][T10604] RIP: 0033:0x7f8d6218d169
[  263.647399][T10604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.647416][T10604] RSP: 002b:00007f8d6301a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  263.647439][T10604] RAX: ffffffffffffffda RBX: 00007f8d623a5fa0 RCX: 00007f8d6218d169
[  263.647453][T10604] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000004
[  263.647466][T10604] RBP: 00007f8d6301a090 R08: 0000000000000000 R09: 0000000000000000
[  263.647478][T10604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  263.647489][T10604] R13: 0000000000000000 R14: 00007f8d623a5fa0 R15: 00007ffd82519be8
[  263.647520][T10604]  </TASK>
[  264.333798][T10609] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  265.382651][T10644] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1477'.
[  265.527059][T10639] vxcan1 speed is unknown, defaulting to 1000
[  265.760263][T10653] validate_nla: 2 callbacks suppressed
[  265.760287][T10653] netlink: 'syz.2.1480': attribute type 32 has an invalid length.
[  265.786656][T10621] Set syz1 is full, maxelem 65536 reached
[  265.816010][T10653] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1480'.
[  266.139696][T10661] netlink: 'syz.1.1482': attribute type 10 has an invalid length.
[  266.160495][T10661] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  266.944921][T10678] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1485'.
[  266.967719][T10678] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1485'.
[  267.221195][T10694] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input11
[  267.262197][T10694] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1490'.
[  267.448460][T10705] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1494'.
[  267.858598][T10727] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1501'.
[  267.879208][T10727] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1501'.
[  267.899232][T10730] netlink: 'syz.4.1499': attribute type 10 has an invalid length.
[  268.530454][T10741] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1506'.
[  268.638964][T10743] FAULT_INJECTION: forcing a failure.
[  268.638964][T10743] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  268.687404][T10743] CPU: 1 UID: 0 PID: 10743 Comm: syz.1.1507 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  268.687438][T10743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  268.687452][T10743] Call Trace:
[  268.687460][T10743]  <TASK>
[  268.687469][T10743]  dump_stack_lvl+0x241/0x360
[  268.687501][T10743]  ? __pfx_dump_stack_lvl+0x10/0x10
[  268.687525][T10743]  ? __pfx__printk+0x10/0x10
[  268.687547][T10743]  ? cgroup_rstat_updated+0x13b/0xc30
[  268.687583][T10743]  should_fail_ex+0x40a/0x550
[  268.687621][T10743]  prepare_alloc_pages+0x1da/0x5b0
[  268.687664][T10743]  __alloc_frozen_pages_noprof+0x16f/0x710
[  268.687693][T10743]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  268.687742][T10743]  alloc_pages_mpol+0x311/0x660
[  268.687778][T10743]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  268.687813][T10743]  ? do_raw_spin_unlock+0x13c/0x8b0
[  268.687845][T10743]  alloc_pages_noprof+0x121/0x190
[  268.687878][T10743]  __pmd_alloc+0x91/0x420
[  268.687902][T10743]  ? __pfx___pmd_alloc+0x10/0x10
[  268.687948][T10743]  __handle_mm_fault+0xd34/0x70f0
[  268.688013][T10743]  ? __pfx___handle_mm_fault+0x10/0x10
[  268.688060][T10743]  ? mt_find+0x2a9/0x920
[  268.688086][T10743]  ? __pfx_lock_release+0x10/0x10
[  268.688137][T10743]  ? mt_find+0x2a9/0x920
[  268.688164][T10743]  ? mt_find+0x6c8/0x920
[  268.688191][T10743]  ? mt_find+0x2a9/0x920
[  268.688222][T10743]  ? __pfx_mt_find+0x10/0x10
[  268.688271][T10743]  ? find_vma+0xf9/0x170
[  268.688290][T10743]  ? __pfx_find_vma+0x10/0x10
[  268.688326][T10743]  handle_mm_fault+0x3e5/0x8d0
[  268.688371][T10743]  exc_page_fault+0x2b9/0x8b0
[  268.688395][T10743]  ? __might_fault+0xaa/0x120
[  268.688419][T10743]  asm_exc_page_fault+0x26/0x30
[  268.688447][T10743] RIP: 0010:rep_movs_alternative+0x33/0x70
[  268.688479][T10743] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[  268.688496][T10743] RSP: 0018:ffffc900037279c8 EFLAGS: 00050212
[  268.688515][T10743] RAX: 000000000000000a RBX: 0000400000000374 RCX: 0000000000000034
[  268.688530][T10743] RDX: 0000000000000000 RSI: ffffc90003727b80 RDI: 0000400000000340
[  268.688543][T10743] RBP: ffffc90003727c70 R08: ffffc90003727bb3 R09: 1ffff920006e4f76
[  268.688557][T10743] R10: dffffc0000000000 R11: fffff520006e4f77 R12: 0000000000000034
[  268.688571][T10743] R13: 00007ffffffff000 R14: ffffc90003727b80 R15: 0000400000000340
[  268.688605][T10743]  _copy_to_user+0x8b/0xb0
[  268.688635][T10743]  ax25_ioctl+0x901/0x1d60
[  268.688679][T10743]  ? mark_lock+0x9a/0x360
[  268.688700][T10743]  ? __pfx_ax25_ioctl+0x10/0x10
[  268.688746][T10743]  ? tomoyo_path_number_perm+0x209/0x770
[  268.688776][T10743]  ? __pfx_lock_release+0x10/0x10
[  268.688813][T10743]  ? tomoyo_path_number_perm+0x5dd/0x770
[  268.688853][T10743]  ? tomoyo_path_number_perm+0x65d/0x770
[  268.688881][T10743]  ? __lock_acquire+0x1397/0x2100
[  268.688925][T10743]  sock_do_ioctl+0x158/0x460
[  268.688960][T10743]  ? __pfx_sock_do_ioctl+0x10/0x10
[  268.689010][T10743]  sock_ioctl+0x626/0x8e0
[  268.689039][T10743]  ? __pfx_sock_ioctl+0x10/0x10
[  268.689065][T10743]  ? __fget_files+0x2a/0x410
[  268.689100][T10743]  ? __fget_files+0x2a/0x410
[  268.689134][T10743]  ? __pfx_sock_ioctl+0x10/0x10
[  268.689162][T10743]  __se_sys_ioctl+0xf5/0x170
[  268.689189][T10743]  do_syscall_64+0xf3/0x230
[  268.689215][T10743]  ? clear_bhb_loop+0x35/0x90
[  268.689247][T10743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.689275][T10743] RIP: 0033:0x7f981778d169
[  268.689297][T10743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.689314][T10743] RSP: 002b:00007f9818694038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  268.689335][T10743] RAX: ffffffffffffffda RBX: 00007f98179a5fa0 RCX: 00007f981778d169
[  268.689350][T10743] RDX: 0000400000000340 RSI: 00000000000089e9 RDI: 0000000000000004
[  268.689363][T10743] RBP: 00007f9818694090 R08: 0000000000000000 R09: 0000000000000000
[  268.689375][T10743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.689387][T10743] R13: 0000000000000000 R14: 00007f98179a5fa0 R15: 00007ffc790db1b8
[  268.689418][T10743]  </TASK>
[  269.161975][T10745] lo speed is unknown, defaulting to 1000
[  269.201366][T10745] lo speed is unknown, defaulting to 1000
[  269.227998][    T8] IPVS: starting estimator thread 0...
[  269.287724][ T5837] Bluetooth: hci4: command 0x0405 tx timeout
[  269.324369][T10746] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  269.337550][T10750] IPVS: using max 19 ests per chain, 45600 per kthread
[  269.365907][T10745] lo speed is unknown, defaulting to 1000
[  269.440189][T10745] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  269.534263][T10745] infiniband s�z0: RDMA CMA: cma_listen_on_dev, error -98
[  269.630761][T10745] lo speed is unknown, defaulting to 1000
[  269.653943][T10745] lo speed is unknown, defaulting to 1000
[  269.665121][T10745] lo speed is unknown, defaulting to 1000
[  269.681748][T10745] lo speed is unknown, defaulting to 1000
[  269.702412][T10745] lo speed is unknown, defaulting to 1000
[  269.752790][T10756] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  269.931426][T10761] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1511'.
[  271.149368][T10779] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1519'.
[  271.349528][T10783] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1520'.
[  271.367682][T10783] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1520'.
[  272.741919][T10802] FAULT_INJECTION: forcing a failure.
[  272.741919][T10802] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  272.758287][T10804] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1527'.
[  272.817540][T10802] CPU: 1 UID: 0 PID: 10802 Comm: syz.3.1526 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  272.817576][T10802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  272.817588][T10802] Call Trace:
[  272.817596][T10802]  <TASK>
[  272.817605][T10802]  dump_stack_lvl+0x241/0x360
[  272.817638][T10802]  ? __pfx_dump_stack_lvl+0x10/0x10
[  272.817663][T10802]  ? __pfx__printk+0x10/0x10
[  272.817697][T10802]  should_fail_ex+0x40a/0x550
[  272.817734][T10802]  _copy_from_user+0x2d/0xb0
[  272.817763][T10802]  alg_setkey+0xc4/0x1b0
[  272.817797][T10802]  alg_setsockopt+0x383/0x450
[  272.817830][T10802]  ? __pfx_alg_setsockopt+0x10/0x10
[  272.817858][T10802]  do_sock_setsockopt+0x3af/0x720
[  272.817887][T10802]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  272.817928][T10802]  ? __fget_files+0x395/0x410
[  272.817967][T10802]  ? __fget_files+0x2a/0x410
[  272.818006][T10802]  __x64_sys_setsockopt+0x1ee/0x280
[  272.818036][T10802]  do_syscall_64+0xf3/0x230
[  272.818063][T10802]  ? clear_bhb_loop+0x35/0x90
[  272.818096][T10802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.818124][T10802] RIP: 0033:0x7f8d6218d169
[  272.818144][T10802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  272.818161][T10802] RSP: 002b:00007f8d6301a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  272.818182][T10802] RAX: ffffffffffffffda RBX: 00007f8d623a5fa0 RCX: 00007f8d6218d169
[  272.818198][T10802] RDX: 0000000000000001 RSI: 0000000000000117 RDI: 0000000000000006
[  272.818211][T10802] RBP: 00007f8d6301a090 R08: 0000000000000000 R09: 0000000000000000
[  272.818224][T10802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  272.818236][T10802] R13: 0000000000000000 R14: 00007f8d623a5fa0 R15: 00007ffd82519be8
[  272.818268][T10802]  </TASK>
[  273.088850][T10808] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1526'.
[  273.518325][T10818] netlink: 'syz.4.1531': attribute type 29 has an invalid length.
[  273.541516][T10819] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1530'.
[  273.548574][T10818] netlink: 'syz.4.1531': attribute type 29 has an invalid length.
[  273.640314][T10821] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1532'.
[  273.750039][T10823] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  273.779101][T10826] FAULT_INJECTION: forcing a failure.
[  273.779101][T10826] name failslab, interval 1, probability 0, space 0, times 0
[  273.800144][T10823] batman_adv: batadv0: Adding interface: ip6gretap1
[  273.815824][T10823] batman_adv: batadv0: Interface activated: ip6gretap1
[  273.823994][T10826] CPU: 1 UID: 0 PID: 10826 Comm: syz.4.1534 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  273.824024][T10826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  273.824037][T10826] Call Trace:
[  273.824044][T10826]  <TASK>
[  273.824053][T10826]  dump_stack_lvl+0x241/0x360
[  273.824085][T10826]  ? __pfx_dump_stack_lvl+0x10/0x10
[  273.824109][T10826]  ? __pfx__printk+0x10/0x10
[  273.824132][T10826]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  273.824163][T10826]  ? __pfx___might_resched+0x10/0x10
[  273.824205][T10826]  should_fail_ex+0x40a/0x550
[  273.824241][T10826]  should_failslab+0xac/0x100
[  273.824270][T10826]  kmem_cache_alloc_node_noprof+0x77/0x380
[  273.824300][T10826]  ? __alloc_skb+0x1c3/0x440
[  273.824325][T10826]  __alloc_skb+0x1c3/0x440
[  273.824350][T10826]  ? __pfx___alloc_skb+0x10/0x10
[  273.824373][T10826]  ? netlink_autobind+0xd6/0x2f0
[  273.824402][T10826]  ? netlink_autobind+0x2b0/0x2f0
[  273.824437][T10826]  netlink_sendmsg+0x634/0xcb0
[  273.824479][T10826]  ? __pfx_netlink_sendmsg+0x10/0x10
[  273.824513][T10826]  ? aa_sock_msg_perm+0x91/0x160
[  273.824551][T10826]  ? __pfx_netlink_sendmsg+0x10/0x10
[  273.824579][T10826]  __sock_sendmsg+0x221/0x270
[  273.824611][T10826]  ____sys_sendmsg+0x53a/0x860
[  273.824642][T10826]  ? __pfx_____sys_sendmsg+0x10/0x10
[  273.824662][T10826]  ? __fget_files+0x2a/0x410
[  273.824695][T10826]  ? __fget_files+0x2a/0x410
[  273.824733][T10826]  __sys_sendmsg+0x269/0x350
[  273.824761][T10826]  ? __pfx___sys_sendmsg+0x10/0x10
[  273.824798][T10826]  ? do_sys_openat2+0x17a/0x1d0
[  273.824854][T10826]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  273.824889][T10826]  ? do_syscall_64+0x100/0x230
[  273.824918][T10826]  ? do_syscall_64+0xb6/0x230
[  273.824945][T10826]  do_syscall_64+0xf3/0x230
[  273.824970][T10826]  ? clear_bhb_loop+0x35/0x90
[  273.825003][T10826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.825031][T10826] RIP: 0033:0x7fa90c18d169
[  273.825049][T10826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.825067][T10826] RSP: 002b:00007fa90d03e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  273.825089][T10826] RAX: ffffffffffffffda RBX: 00007fa90c3a5fa0 RCX: 00007fa90c18d169
[  273.825105][T10826] RDX: 0000000000000000 RSI: 0000400000000080 RDI: 0000000000000005
[  273.825118][T10826] RBP: 00007fa90d03e090 R08: 0000000000000000 R09: 0000000000000000
[  273.825131][T10826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  273.825143][T10826] R13: 0000000000000000 R14: 00007fa90c3a5fa0 R15: 00007ffef3b75ec8
[  273.825174][T10826]  </TASK>
[  274.095347][T10829] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1536'.
[  274.598930][T10847] FAULT_INJECTION: forcing a failure.
[  274.598930][T10847] name failslab, interval 1, probability 0, space 0, times 0
[  274.657628][T10847] CPU: 1 UID: 0 PID: 10847 Comm: syz.4.1540 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  274.657659][T10847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  274.657671][T10847] Call Trace:
[  274.657678][T10847]  <TASK>
[  274.657688][T10847]  dump_stack_lvl+0x241/0x360
[  274.657719][T10847]  ? __pfx_dump_stack_lvl+0x10/0x10
[  274.657741][T10847]  ? __pfx__printk+0x10/0x10
[  274.657765][T10847]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  274.657797][T10847]  ? __pfx___might_resched+0x10/0x10
[  274.657824][T10847]  ? aa_label_sk_perm+0x4f3/0x6c0
[  274.657858][T10847]  should_fail_ex+0x40a/0x550
[  274.657895][T10847]  should_failslab+0xac/0x100
[  274.657925][T10847]  kmem_cache_alloc_node_noprof+0x77/0x380
[  274.657955][T10847]  ? __alloc_skb+0x1c3/0x440
[  274.657980][T10847]  __alloc_skb+0x1c3/0x440
[  274.658005][T10847]  ? __pfx___alloc_skb+0x10/0x10
[  274.658034][T10847]  netlink_sendmsg+0x634/0xcb0
[  274.658085][T10847]  ? __pfx_netlink_sendmsg+0x10/0x10
[  274.658120][T10847]  ? aa_sock_msg_perm+0x91/0x160
[  274.658157][T10847]  ? __pfx_netlink_sendmsg+0x10/0x10
[  274.658186][T10847]  __sock_sendmsg+0x221/0x270
[  274.658218][T10847]  ____sys_sendmsg+0x53a/0x860
[  274.658250][T10847]  ? __pfx_____sys_sendmsg+0x10/0x10
[  274.658271][T10847]  ? __fget_files+0x2a/0x410
[  274.658305][T10847]  ? __fget_files+0x2a/0x410
[  274.658344][T10847]  __sys_sendmsg+0x269/0x350
[  274.658372][T10847]  ? __pfx___sys_sendmsg+0x10/0x10
[  274.658409][T10847]  ? do_sys_openat2+0x17a/0x1d0
[  274.658466][T10847]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  274.658500][T10847]  ? do_syscall_64+0x100/0x230
[  274.658529][T10847]  ? do_syscall_64+0xb6/0x230
[  274.658558][T10847]  do_syscall_64+0xf3/0x230
[  274.658582][T10847]  ? clear_bhb_loop+0x35/0x90
[  274.658615][T10847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.658644][T10847] RIP: 0033:0x7fa90c18d169
[  274.658662][T10847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.658679][T10847] RSP: 002b:00007fa90d01d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  274.658701][T10847] RAX: ffffffffffffffda RBX: 00007fa90c3a6080 RCX: 00007fa90c18d169
[  274.658716][T10847] RDX: 0000000004008810 RSI: 0000400000000a80 RDI: 0000000000000004
[  274.658730][T10847] RBP: 00007fa90d01d090 R08: 0000000000000000 R09: 0000000000000000
[  274.658743][T10847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.658755][T10847] R13: 0000000000000001 R14: 00007fa90c3a6080 R15: 00007ffef3b75ec8
[  274.658786][T10847]  </TASK>
[  274.929200][T10850] netlink: 'syz.3.1542': attribute type 2 has an invalid length.
[  275.022685][T10851] netlink: 'syz.3.1542': attribute type 10 has an invalid length.
[  275.073551][T10851] syz_tun: entered promiscuous mode
[  275.111207][T10851] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  275.332090][T10856] netlink: 'syz.4.1544': attribute type 29 has an invalid length.
[  275.346676][T10856] netlink: 'syz.4.1544': attribute type 29 has an invalid length.
[  275.380193][T10854] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input12
[  275.451784][T10854] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1543'.
[  275.655170][T10864] netlink: 'syz.3.1546': attribute type 1 has an invalid length.
[  275.705921][T10864] netlink: 244 bytes leftover after parsing attributes in process `syz.3.1546'.
[  275.999071][T10871] netlink: 'syz.4.1549': attribute type 2 has an invalid length.
[  278.138340][T10914] __nla_validate_parse: 1 callbacks suppressed
[  278.138363][T10914] netlink: 312 bytes leftover after parsing attributes in process `syz.2.1563'.
[  278.557052][T10919] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  279.157987][T10930] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1569'.
[  279.394410][T10932] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1570'.
[  279.487274][T10936] netlink: 312 bytes leftover after parsing attributes in process `syz.2.1571'.
[  279.600920][T10938] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1573'.
[  279.707028][T10942] netlink: 'syz.2.1575': attribute type 1 has an invalid length.
[  279.808282][T10942] bond3: entered promiscuous mode
[  279.813422][T10942] bond3: entered allmulticast mode
[  279.841861][T10946] batadv3: entered allmulticast mode
[  279.896101][T10942] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1575'.
[  279.988496][T10946] 8021q: adding VLAN 0 to HW filter on device batadv3
[  280.059410][T10946] bond3: (slave batadv3): making interface the new active one
[  280.077609][T10946] batadv3: entered promiscuous mode
[  280.090708][T10946] bond3: (slave batadv3): Enslaving as an active interface with an up link
[  280.145604][T10942] bond3: left promiscuous mode
[  280.157459][T10942] batadv3: left promiscuous mode
[  280.177722][T10942] bond3: left allmulticast mode
[  280.188260][T10954] FAULT_INJECTION: forcing a failure.
[  280.188260][T10954] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  280.202715][T10942] 8021q: adding VLAN 0 to HW filter on device bond3
[  280.220393][T10954] CPU: 0 UID: 0 PID: 10954 Comm: syz.1.1580 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  280.220425][T10954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  280.220438][T10954] Call Trace:
[  280.220445][T10954]  <TASK>
[  280.220454][T10954]  dump_stack_lvl+0x241/0x360
[  280.220485][T10954]  ? __pfx_dump_stack_lvl+0x10/0x10
[  280.220507][T10954]  ? __pfx__printk+0x10/0x10
[  280.220539][T10954]  ? __pfx_lock_release+0x10/0x10
[  280.220578][T10954]  should_fail_ex+0x40a/0x550
[  280.220612][T10954]  _copy_from_user+0x2d/0xb0
[  280.220641][T10954]  copy_msghdr_from_user+0xae/0x680
[  280.220675][T10954]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  280.220701][T10954]  ? __fget_files+0x2a/0x410
[  280.220733][T10954]  ? __fget_files+0x2a/0x410
[  280.220769][T10954]  __sys_sendmsg+0x209/0x350
[  280.220796][T10954]  ? __pfx___sys_sendmsg+0x10/0x10
[  280.220831][T10954]  ? do_sys_openat2+0x17a/0x1d0
[  280.220882][T10954]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  280.220912][T10954]  ? do_syscall_64+0x100/0x230
[  280.220941][T10954]  ? do_syscall_64+0xb6/0x230
[  280.220967][T10954]  do_syscall_64+0xf3/0x230
[  280.220993][T10954]  ? clear_bhb_loop+0x35/0x90
[  280.221021][T10954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.221043][T10954] RIP: 0033:0x7f981778d169
[  280.221060][T10954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.221076][T10954] RSP: 002b:00007f9818694038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  280.221095][T10954] RAX: ffffffffffffffda RBX: 00007f98179a5fa0 RCX: 00007f981778d169
[  280.221109][T10954] RDX: 0000000000008000 RSI: 00004000000001c0 RDI: 0000000000000003
[  280.221120][T10954] RBP: 00007f9818694090 R08: 0000000000000000 R09: 0000000000000000
[  280.221131][T10954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.221141][T10954] R13: 0000000000000000 R14: 00007f98179a5fa0 R15: 00007ffc790db1b8
[  280.221167][T10954]  </TASK>
[  280.732854][T10960] netlink: 'syz.0.1583': attribute type 2 has an invalid length.
[  280.752338][T10960] netlink: 'syz.0.1583': attribute type 9 has an invalid length.
[  280.770902][T10960] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1583'.
[  280.807575][T10956] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  280.902504][T10965] FAULT_INJECTION: forcing a failure.
[  280.902504][T10965] name failslab, interval 1, probability 0, space 0, times 0
[  280.965762][T10965] CPU: 1 UID: 0 PID: 10965 Comm: syz.2.1584 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  280.965799][T10965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  280.965813][T10965] Call Trace:
[  280.965820][T10965]  <TASK>
[  280.965830][T10965]  dump_stack_lvl+0x241/0x360
[  280.965864][T10965]  ? __pfx_dump_stack_lvl+0x10/0x10
[  280.965888][T10965]  ? __pfx__printk+0x10/0x10
[  280.965924][T10965]  should_fail_ex+0x40a/0x550
[  280.965961][T10965]  should_failslab+0xac/0x100
[  280.965992][T10965]  __kmalloc_cache_noprof+0x70/0x390
[  280.966036][T10965]  ? sctp_add_bind_addr+0x89/0x3a0
[  280.966067][T10965]  sctp_add_bind_addr+0x89/0x3a0
[  280.966097][T10965]  sctp_copy_local_addr_list+0x311/0x500
[  280.966125][T10965]  ? sctp_copy_local_addr_list+0xab/0x500
[  280.966149][T10965]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  280.966177][T10965]  ? sctp_v6_is_any+0x60/0x70
[  280.966206][T10965]  ? sctp_copy_one_addr+0x94/0x360
[  280.966243][T10965]  sctp_bind_addr_copy+0xad/0x3b0
[  280.966269][T10965]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  280.966307][T10965]  sctp_connect_new_asoc+0x2f3/0x6c0
[  280.966340][T10965]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  280.966369][T10965]  ? sctp_sendmsg+0xf1a/0x35d0
[  280.966404][T10965]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  280.966434][T10965]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  280.966468][T10965]  sctp_sendmsg+0x1f64/0x35d0
[  280.966516][T10965]  ? __pfx_sctp_sendmsg+0x10/0x10
[  280.966549][T10965]  ? aa_sk_perm+0x96d/0xab0
[  280.966597][T10965]  ? inet_sendmsg+0x330/0x390
[  280.966626][T10965]  __sock_sendmsg+0x1a6/0x270
[  280.966659][T10965]  __sys_sendto+0x363/0x4c0
[  280.966699][T10965]  ? __pfx___sys_sendto+0x10/0x10
[  280.966747][T10965]  ? __fget_files+0x2a/0x410
[  280.966788][T10965]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  280.966824][T10965]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  280.966862][T10965]  __x64_sys_sendto+0xde/0x100
[  280.966887][T10965]  do_syscall_64+0xf3/0x230
[  280.966913][T10965]  ? clear_bhb_loop+0x35/0x90
[  280.966947][T10965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.966976][T10965] RIP: 0033:0x7f965878d169
[  280.966994][T10965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.967012][T10965] RSP: 002b:00007f9659612038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  280.967034][T10965] RAX: ffffffffffffffda RBX: 00007f96589a5fa0 RCX: 00007f965878d169
[  280.967050][T10965] RDX: 0000000000000001 RSI: 00004000000000c0 RDI: 0000000000000003
[  280.967063][T10965] RBP: 00007f9659612090 R08: 0000400000000100 R09: 000000000000001c
[  280.967077][T10965] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000002
[  280.967089][T10965] R13: 0000000000000000 R14: 00007f96589a5fa0 R15: 00007ffe20ba2438
[  280.967123][T10965]  </TASK>
[  281.631501][T10972] FAULT_INJECTION: forcing a failure.
[  281.631501][T10972] name failslab, interval 1, probability 0, space 0, times 0
[  281.646411][T10972] CPU: 0 UID: 0 PID: 10972 Comm: syz.2.1587 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  281.646445][T10972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  281.646459][T10972] Call Trace:
[  281.646466][T10972]  <TASK>
[  281.646475][T10972]  dump_stack_lvl+0x241/0x360
[  281.646509][T10972]  ? __pfx_dump_stack_lvl+0x10/0x10
[  281.646533][T10972]  ? __pfx__printk+0x10/0x10
[  281.646555][T10972]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  281.646587][T10972]  ? __pfx___might_resched+0x10/0x10
[  281.646620][T10972]  should_fail_ex+0x40a/0x550
[  281.646657][T10972]  should_failslab+0xac/0x100
[  281.646688][T10972]  kmem_cache_alloc_node_noprof+0x77/0x380
[  281.646718][T10972]  ? __alloc_skb+0x1c3/0x440
[  281.646743][T10972]  __alloc_skb+0x1c3/0x440
[  281.646763][T10972]  ? ____sys_sendmsg+0x53a/0x860
[  281.646789][T10972]  ? __pfx___alloc_skb+0x10/0x10
[  281.646816][T10972]  ? netlink_ack_tlv_len+0x6e/0x200
[  281.646848][T10972]  netlink_ack+0x145/0xa60
[  281.646874][T10972]  ? __pfx_lock_acquire+0x10/0x10
[  281.646905][T10972]  ? __pfx_nl80211_set_station+0x10/0x10
[  281.646936][T10972]  ? __pfx___might_resched+0x10/0x10
[  281.646976][T10972]  netlink_rcv_skb+0x294/0x480
[  281.647006][T10972]  ? __pfx_genl_rcv_msg+0x10/0x10
[  281.647031][T10972]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  281.647084][T10972]  ? __netlink_deliver_tap+0x7b0/0x7f0
[  281.647134][T10972]  genl_rcv+0x28/0x40
[  281.647154][T10972]  netlink_unicast+0x7f6/0x990
[  281.647190][T10972]  ? __pfx_netlink_unicast+0x10/0x10
[  281.647214][T10972]  ? __virt_addr_valid+0x45f/0x530
[  281.647236][T10972]  ? __phys_addr_symbol+0x2f/0x70
[  281.647255][T10972]  ? __check_object_size+0x47a/0x730
[  281.647288][T10972]  netlink_sendmsg+0x8de/0xcb0
[  281.647330][T10972]  ? __pfx_netlink_sendmsg+0x10/0x10
[  281.647362][T10972]  ? aa_sock_msg_perm+0x91/0x160
[  281.647401][T10972]  ? __pfx_netlink_sendmsg+0x10/0x10
[  281.647429][T10972]  __sock_sendmsg+0x221/0x270
[  281.647462][T10972]  ____sys_sendmsg+0x53a/0x860
[  281.647494][T10972]  ? __pfx_____sys_sendmsg+0x10/0x10
[  281.647515][T10972]  ? __fget_files+0x2a/0x410
[  281.647550][T10972]  ? __fget_files+0x2a/0x410
[  281.647590][T10972]  __sys_sendmsg+0x269/0x350
[  281.647619][T10972]  ? __pfx___sys_sendmsg+0x10/0x10
[  281.647657][T10972]  ? do_sys_openat2+0x17a/0x1d0
[  281.647716][T10972]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  281.647750][T10972]  ? do_syscall_64+0x100/0x230
[  281.647780][T10972]  ? do_syscall_64+0xb6/0x230
[  281.647809][T10972]  do_syscall_64+0xf3/0x230
[  281.647834][T10972]  ? clear_bhb_loop+0x35/0x90
[  281.647868][T10972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.647896][T10972] RIP: 0033:0x7f965878d169
[  281.647915][T10972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.647933][T10972] RSP: 002b:00007f9659612038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  281.647955][T10972] RAX: ffffffffffffffda RBX: 00007f96589a5fa0 RCX: 00007f965878d169
[  281.647971][T10972] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000003
[  281.647984][T10972] RBP: 00007f9659612090 R08: 0000000000000000 R09: 0000000000000000
[  281.647996][T10972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.648009][T10972] R13: 0000000000000000 R14: 00007f96589a5fa0 R15: 00007ffe20ba2438
[  281.648040][T10972]  </TASK>
[  282.186816][T10974] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1588'.
[  282.258412][T10974] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1588'.
[  282.346693][T10974] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1588'.
[  283.114714][T11004] (unnamed net_device) (uninitialized): up delay (5) is not a multiple of miimon (134217729), value rounded to 0 ms
[  283.202279][T11009] netlink: 312 bytes leftover after parsing attributes in process `syz.2.1599'.
[  283.364057][T11015] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  284.644895][T11043] netlink: 'syz.1.1608': attribute type 4 has an invalid length.
[  284.903769][T11056] netlink: 312 bytes leftover after parsing attributes in process `syz.1.1612'.
[  285.778598][T11076] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  286.282699][T11097] netlink: 312 bytes leftover after parsing attributes in process `syz.3.1625'.
[  287.008134][T11109] netlink: 'syz.4.1629': attribute type 1 has an invalid length.
[  287.224718][T11111] syz1: rxe_newlink: already configured on veth0_vlan
[  287.629519][T11132] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input13
[  287.702989][T11132] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1637'.
[  288.118418][T11152] FAULT_INJECTION: forcing a failure.
[  288.118418][T11152] name failslab, interval 1, probability 0, space 0, times 0
[  288.136145][T11150] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  288.158097][T11155] netlink: 'syz.1.1645': attribute type 1 has an invalid length.
[  288.169136][T11152] CPU: 0 UID: 0 PID: 11152 Comm: syz.2.1643 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  288.169169][T11152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  288.169182][T11152] Call Trace:
[  288.169190][T11152]  <TASK>
[  288.169199][T11152]  dump_stack_lvl+0x241/0x360
[  288.169232][T11152]  ? __pfx_dump_stack_lvl+0x10/0x10
[  288.169257][T11152]  ? __pfx__printk+0x10/0x10
[  288.169292][T11152]  should_fail_ex+0x40a/0x550
[  288.169329][T11152]  should_failslab+0xac/0x100
[  288.169359][T11152]  ? skb_clone+0x20c/0x390
[  288.169382][T11152]  kmem_cache_alloc_noprof+0x70/0x380
[  288.169417][T11152]  skb_clone+0x20c/0x390
[  288.169446][T11152]  __netlink_deliver_tap+0x3c4/0x7f0
[  288.169489][T11152]  ? netlink_deliver_tap+0x2e/0x1b0
[  288.169517][T11152]  netlink_deliver_tap+0x19d/0x1b0
[  288.169548][T11152]  netlink_unicast+0x7c4/0x990
[  288.169585][T11152]  ? __pfx_netlink_unicast+0x10/0x10
[  288.169610][T11152]  ? __virt_addr_valid+0x45f/0x530
[  288.169632][T11152]  ? __phys_addr_symbol+0x2f/0x70
[  288.169651][T11152]  ? __check_object_size+0x47a/0x730
[  288.169685][T11152]  netlink_sendmsg+0x8de/0xcb0
[  288.169736][T11152]  ? __pfx_netlink_sendmsg+0x10/0x10
[  288.169772][T11152]  ? aa_sock_msg_perm+0x91/0x160
[  288.169811][T11152]  ? __pfx_netlink_sendmsg+0x10/0x10
[  288.169839][T11152]  __sock_sendmsg+0x221/0x270
[  288.169870][T11152]  ____sys_sendmsg+0x53a/0x860
[  288.169903][T11152]  ? __pfx_____sys_sendmsg+0x10/0x10
[  288.169923][T11152]  ? __fget_files+0x2a/0x410
[  288.169957][T11152]  ? __fget_files+0x2a/0x410
[  288.169997][T11152]  __sys_sendmsg+0x269/0x350
[  288.170026][T11152]  ? __pfx___sys_sendmsg+0x10/0x10
[  288.170063][T11152]  ? do_sys_openat2+0x17a/0x1d0
[  288.170123][T11152]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  288.170157][T11152]  ? do_syscall_64+0x100/0x230
[  288.170186][T11152]  ? do_syscall_64+0xb6/0x230
[  288.170215][T11152]  do_syscall_64+0xf3/0x230
[  288.170240][T11152]  ? clear_bhb_loop+0x35/0x90
[  288.170273][T11152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.170302][T11152] RIP: 0033:0x7f965878d169
[  288.170321][T11152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.170339][T11152] RSP: 002b:00007f9659612038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  288.170361][T11152] RAX: ffffffffffffffda RBX: 00007f96589a5fa0 RCX: 00007f965878d169
[  288.170377][T11152] RDX: 0000000004040084 RSI: 0000400000000000 RDI: 0000000000000003
[  288.170391][T11152] RBP: 00007f9659612090 R08: 0000000000000000 R09: 0000000000000000
[  288.170404][T11152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  288.170417][T11152] R13: 0000000000000000 R14: 00007f96589a5fa0 R15: 00007ffe20ba2438
[  288.170449][T11152]  </TASK>
[  288.170510][T11152] netlink: 276 bytes leftover after parsing attributes in process `syz.2.1643'.
[  288.731283][T11165] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1647'.
[  288.764358][T11165] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1647'.
[  289.365926][T11182] syz1: rxe_newlink: already configured on veth0_vlan
[  289.693852][T11201] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1657'.
[  289.959174][T11214] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1662'.
[  289.983569][T11214] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1662'.
[  290.436225][T11229] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1666'.
[  290.466970][T11229] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1666'.
[  290.482961][T11229] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1666'.
[  290.537141][T11232] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1667'.
[  290.708127][T11237] netlink: 'syz.2.1667': attribute type 39 has an invalid length.
[  290.727961][T11232] netlink: 292 bytes leftover after parsing attributes in process `syz.2.1667'.
[  290.896586][T11246] netlink: 'syz.0.1670': attribute type 3 has an invalid length.
[  291.870138][T11282] FAULT_INJECTION: forcing a failure.
[  291.870138][T11282] name failslab, interval 1, probability 0, space 0, times 0
[  291.917653][T11282] CPU: 0 UID: 0 PID: 11282 Comm: syz.2.1684 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  291.917689][T11282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  291.917702][T11282] Call Trace:
[  291.917710][T11282]  <TASK>
[  291.917718][T11282]  dump_stack_lvl+0x241/0x360
[  291.917752][T11282]  ? __pfx_dump_stack_lvl+0x10/0x10
[  291.917776][T11282]  ? __pfx__printk+0x10/0x10
[  291.917800][T11282]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  291.917832][T11282]  ? __pfx___might_resched+0x10/0x10
[  291.917866][T11282]  should_fail_ex+0x40a/0x550
[  291.917903][T11282]  should_failslab+0xac/0x100
[  291.917934][T11282]  kmem_cache_alloc_node_noprof+0x77/0x380
[  291.917964][T11282]  ? __alloc_skb+0x1c3/0x440
[  291.917990][T11282]  __alloc_skb+0x1c3/0x440
[  291.918017][T11282]  ? __pfx___alloc_skb+0x10/0x10
[  291.918048][T11282]  netlink_dump+0x239/0xe10
[  291.918082][T11282]  ? __mutex_lock+0x397/0x1010
[  291.918115][T11282]  ? __pfx_netlink_dump+0x10/0x10
[  291.918160][T11282]  ? __pfx_lock_acquire+0x10/0x10
[  291.918205][T11282]  __netlink_dump_start+0x5a2/0x790
[  291.918245][T11282]  rtnetlink_rcv_msg+0xb3d/0xcf0
[  291.918282][T11282]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  291.918313][T11282]  ? __pfx_neigh_dump_info+0x10/0x10
[  291.918352][T11282]  netlink_rcv_skb+0x206/0x480
[  291.918382][T11282]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  291.918422][T11282]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  291.918478][T11282]  ? __rcu_read_unlock+0xa1/0x110
[  291.918513][T11282]  netlink_unicast+0x7f6/0x990
[  291.918550][T11282]  ? __pfx_netlink_unicast+0x10/0x10
[  291.918574][T11282]  ? __virt_addr_valid+0x45f/0x530
[  291.918596][T11282]  ? __phys_addr_symbol+0x2f/0x70
[  291.918615][T11282]  ? __check_object_size+0x47a/0x730
[  291.918653][T11282]  netlink_sendmsg+0x8de/0xcb0
[  291.918696][T11282]  ? __pfx_netlink_sendmsg+0x10/0x10
[  291.918732][T11282]  ? aa_sock_msg_perm+0x91/0x160
[  291.918771][T11282]  ? __pfx_netlink_sendmsg+0x10/0x10
[  291.918799][T11282]  __sock_sendmsg+0x221/0x270
[  291.918832][T11282]  ____sys_sendmsg+0x53a/0x860
[  291.918865][T11282]  ? __pfx_____sys_sendmsg+0x10/0x10
[  291.918886][T11282]  ? __fget_files+0x2a/0x410
[  291.918921][T11282]  ? __fget_files+0x2a/0x410
[  291.918961][T11282]  __sys_sendmsg+0x269/0x350
[  291.918991][T11282]  ? __pfx___sys_sendmsg+0x10/0x10
[  291.919029][T11282]  ? do_sys_openat2+0x17a/0x1d0
[  291.919090][T11282]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  291.919124][T11282]  ? do_syscall_64+0x100/0x230
[  291.919153][T11282]  ? do_syscall_64+0xb6/0x230
[  291.919182][T11282]  do_syscall_64+0xf3/0x230
[  291.919207][T11282]  ? clear_bhb_loop+0x35/0x90
[  291.919240][T11282]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.919269][T11282] RIP: 0033:0x7f965878d169
[  291.919287][T11282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.919311][T11282] RSP: 002b:00007f9659612038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  291.919333][T11282] RAX: ffffffffffffffda RBX: 00007f96589a5fa0 RCX: 00007f965878d169
[  291.919348][T11282] RDX: 0000000024040010 RSI: 00004000000009c0 RDI: 0000000000000003
[  291.919362][T11282] RBP: 00007f9659612090 R08: 0000000000000000 R09: 0000000000000000
[  291.919375][T11282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  291.919387][T11282] R13: 0000000000000000 R14: 00007f96589a5fa0 R15: 00007ffe20ba2438
[  291.919425][T11282]  </TASK>
[  292.837660][T11292] netlink: 'syz.0.1690': attribute type 6 has an invalid length.
[  292.858203][T11292] netlink: 'syz.0.1690': attribute type 7 has an invalid length.
[  292.866002][T11292] netlink: 'syz.0.1690': attribute type 8 has an invalid length.
[  293.135524][T11310] tls_set_device_offload_rx: netdev not found
[  293.195052][T11314] FAULT_INJECTION: forcing a failure.
[  293.195052][T11314] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.211252][T11314] CPU: 1 UID: 0 PID: 11314 Comm: syz.3.1694 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  293.211284][T11314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  293.211298][T11314] Call Trace:
[  293.211305][T11314]  <TASK>
[  293.211315][T11314]  dump_stack_lvl+0x241/0x360
[  293.211349][T11314]  ? __pfx_dump_stack_lvl+0x10/0x10
[  293.211373][T11314]  ? __pfx__printk+0x10/0x10
[  293.211401][T11314]  ? snprintf+0xda/0x120
[  293.211437][T11314]  should_fail_ex+0x40a/0x550
[  293.211474][T11314]  _copy_to_user+0x31/0xb0
[  293.211505][T11314]  simple_read_from_buffer+0xca/0x150
[  293.211537][T11314]  proc_fail_nth_read+0x1e9/0x250
[  293.211571][T11314]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  293.211604][T11314]  ? rw_verify_area+0x243/0x630
[  293.211625][T11314]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  293.211657][T11314]  vfs_read+0x1f8/0xb40
[  293.211680][T11314]  ? fdget_pos+0x254/0x320
[  293.211712][T11314]  ? __pfx___mutex_lock+0x10/0x10
[  293.211738][T11314]  ? __pfx_vfs_read+0x10/0x10
[  293.211756][T11314]  ? ipv6_setsockopt+0xd6/0x170
[  293.211789][T11314]  ? __fget_files+0x2a/0x410
[  293.211819][T11314]  ? __fget_files+0x395/0x410
[  293.211846][T11314]  ? __fget_files+0x2a/0x410
[  293.211885][T11314]  ksys_read+0x18f/0x2b0
[  293.211910][T11314]  ? __pfx_ksys_read+0x10/0x10
[  293.211934][T11314]  ? do_syscall_64+0x100/0x230
[  293.211962][T11314]  ? do_syscall_64+0xb6/0x230
[  293.211991][T11314]  do_syscall_64+0xf3/0x230
[  293.212017][T11314]  ? clear_bhb_loop+0x35/0x90
[  293.212049][T11314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.212077][T11314] RIP: 0033:0x7f8d6218bb7c
[  293.212097][T11314] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  293.212115][T11314] RSP: 002b:00007f8d62ff9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  293.212138][T11314] RAX: ffffffffffffffda RBX: 00007f8d623a6080 RCX: 00007f8d6218bb7c
[  293.212153][T11314] RDX: 000000000000000f RSI: 00007f8d62ff90a0 RDI: 000000000000000c
[  293.212166][T11314] RBP: 00007f8d62ff9090 R08: 0000000000000000 R09: 0000000000000000
[  293.212178][T11314] R10: 0000400000000140 R11: 0000000000000246 R12: 0000000000000001
[  293.212191][T11314] R13: 0000000000000000 R14: 00007f8d623a6080 R15: 00007ffd82519be8
[  293.212230][T11314]  </TASK>
[  293.810459][T11322] __nla_validate_parse: 4 callbacks suppressed
[  293.810479][T11322] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1696'.
[  294.075174][T11331] openvswitch: netlink: Message has 4 unknown bytes.
[  294.093111][T11332] openvswitch: netlink: Message has 4 unknown bytes.
[  294.758024][T11353] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1708'.
[  295.465395][T11369] syz1: rxe_newlink: already configured on veth0_vlan
[  295.896616][T11385] netlink: 'syz.2.1720': attribute type 1 has an invalid length.
[  295.906640][T11385] FAULT_INJECTION: forcing a failure.
[  295.906640][T11385] name failslab, interval 1, probability 0, space 0, times 0
[  295.919809][T11385] CPU: 1 UID: 0 PID: 11385 Comm: syz.2.1720 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  295.919838][T11385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  295.919851][T11385] Call Trace:
[  295.919858][T11385]  <TASK>
[  295.919867][T11385]  dump_stack_lvl+0x241/0x360
[  295.919899][T11385]  ? __pfx_dump_stack_lvl+0x10/0x10
[  295.919923][T11385]  ? __pfx__printk+0x10/0x10
[  295.919946][T11385]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  295.919985][T11385]  ? __pfx___might_resched+0x10/0x10
[  295.920019][T11385]  should_fail_ex+0x40a/0x550
[  295.920055][T11385]  should_failslab+0xac/0x100
[  295.920084][T11385]  kmem_cache_alloc_node_noprof+0x77/0x380
[  295.920113][T11385]  ? __alloc_skb+0x1c3/0x440
[  295.920138][T11385]  __alloc_skb+0x1c3/0x440
[  295.920164][T11385]  ? __pfx___alloc_skb+0x10/0x10
[  295.920191][T11385]  ? netlink_ack_tlv_len+0x6e/0x200
[  295.920223][T11385]  netlink_ack+0x145/0xa60
[  295.920248][T11385]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  295.920286][T11385]  ? ref_tracker_free+0x643/0x7e0
[  295.920313][T11385]  netlink_rcv_skb+0x294/0x480
[  295.920341][T11385]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  295.920377][T11385]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  295.920426][T11385]  ? netlink_deliver_tap+0x2e/0x1b0
[  295.920456][T11385]  netlink_unicast+0x7f6/0x990
[  295.920489][T11385]  ? __pfx_netlink_unicast+0x10/0x10
[  295.920511][T11385]  ? __virt_addr_valid+0x45f/0x530
[  295.920532][T11385]  ? __phys_addr_symbol+0x2f/0x70
[  295.920552][T11385]  ? __check_object_size+0x47a/0x730
[  295.920584][T11385]  netlink_sendmsg+0x8de/0xcb0
[  295.920623][T11385]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.920655][T11385]  ? aa_sock_msg_perm+0x91/0x160
[  295.920691][T11385]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.920719][T11385]  __sock_sendmsg+0x221/0x270
[  295.920749][T11385]  ____sys_sendmsg+0x53a/0x860
[  295.920780][T11385]  ? __pfx_____sys_sendmsg+0x10/0x10
[  295.920801][T11385]  ? __fget_files+0x2a/0x410
[  295.920834][T11385]  ? __fget_files+0x2a/0x410
[  295.920871][T11385]  __sys_sendmsg+0x269/0x350
[  295.920899][T11385]  ? __pfx___sys_sendmsg+0x10/0x10
[  295.920935][T11385]  ? do_sys_openat2+0x17a/0x1d0
[  295.920999][T11385]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  295.921040][T11385]  ? do_syscall_64+0x100/0x230
[  295.921070][T11385]  ? do_syscall_64+0xb6/0x230
[  295.921096][T11385]  do_syscall_64+0xf3/0x230
[  295.921121][T11385]  ? clear_bhb_loop+0x35/0x90
[  295.921154][T11385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.921183][T11385] RIP: 0033:0x7f965878d169
[  295.921201][T11385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.921219][T11385] RSP: 002b:00007f9659612038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  295.921241][T11385] RAX: ffffffffffffffda RBX: 00007f96589a5fa0 RCX: 00007f965878d169
[  295.921257][T11385] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000003
[  295.921269][T11385] RBP: 00007f9659612090 R08: 0000000000000000 R09: 0000000000000000
[  295.921282][T11385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  295.921294][T11385] R13: 0000000000000000 R14: 00007f96589a5fa0 R15: 00007ffe20ba2438
[  295.921324][T11385]  </TASK>
[  296.904046][T11399] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1726'.
[  297.102505][T11407] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  299.285278][T11454] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input14
[  299.611248][T11463] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1748'.
[  301.188314][T11505] netlink: 'syz.4.1759': attribute type 7 has an invalid length.
[  301.227486][T11505] netlink: 'syz.4.1759': attribute type 1 has an invalid length.
[  301.235293][T11505] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1759'.
[  301.456093][T11515] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1762'.
[  301.486098][T11515] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1762'.
[  301.529639][T11515] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1762'.
[  303.093021][T11552] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1778'.
[  303.131058][T11556] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1779'.
[  303.140852][T11552] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1778'.
[  303.176488][T11552] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1778'.
[  303.310582][T11558] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1781'.
[  303.489043][T11564] netlink: 'syz.1.1782': attribute type 10 has an invalid length.
[  303.510221][T11564] team0: Port device wlan1 added
[  303.753899][T11559] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  304.453192][T11571] vxcan1 speed is unknown, defaulting to 1000
[  304.637831][T11588] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1793'.
[  305.281598][T11571] lo speed is unknown, defaulting to 1000
[  305.635310][T11605] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1799'.
[  306.253483][T11618] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1805'.
[  306.796044][T11632] netlink: 'syz.1.1809': attribute type 1 has an invalid length.
[  306.804187][T11632] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1809'.
[  307.117630][T11644] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1812'.
[  307.598057][T11654] netlink: 'syz.3.1816': attribute type 10 has an invalid length.
[  307.626628][T11654] 8021q: adding VLAN 0 to HW filter on device batadv0
[  307.680027][T11654] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  307.777608][T11659] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1817'.
[  308.031277][T11668] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1820'.
[  309.011053][T11697] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input15
[  309.080293][T11697] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1831'.
[  309.087068][T11700] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1833'.
[  309.120233][T11700] 8021q: adding VLAN 0 to HW filter on device bond2
[  310.640580][ T8079] IPVS: starting estimator thread 0...
[  310.684684][T11742] IPVS: set_ctl: invalid protocol: 8 172.20.20.33:20002
[  310.727908][T11749] IPVS: using max 18 ests per chain, 43200 per kthread
[  311.049750][T11758] netlink: 1280 bytes leftover after parsing attributes in process `syz.3.1855'.
[  311.059513][T11758] openvswitch: netlink: Flow actions attr not present in new flow.
[  312.390792][T11796] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1868'.
[  313.300673][T11821] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  313.341092][T11823] netlink: 276 bytes leftover after parsing attributes in process `syz.4.1879'.
[  313.545558][T11831] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1882'.
[  313.890292][T11835] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1884'.
[  314.385542][T11840] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1886'.
[  314.397495][T11840] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1886'.
[  314.432469][T11840] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1886'.
[  314.894634][T11858] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1894'.
[  315.108608][T11868] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  315.138625][T11869] netlink: 'syz.2.1899': attribute type 1 has an invalid length.
[  315.839218][T11880] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1903'.
[  316.169718][T11888] syz1: rxe_newlink: already configured on veth0_vlan
[  316.205709][T11890] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1908'.
[  316.575359][T11902] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  316.597618][T11902] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.628056][T11902] batadv_slave_0: entered promiscuous mode
[  316.655823][T11902] batadv_slave_0: left promiscuous mode
[  316.944468][T11912] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1916'.
[  317.027263][T11915] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  317.076559][T11919] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1920'.
[  317.104484][T11919] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1920'.
[  317.572935][T11935] sctp: [Deprecated]: syz.0.1926 (pid 11935) Use of int in max_burst socket option.
[  317.572935][T11935] Use struct sctp_assoc_value instead
[  318.076879][T11948] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1931'.
[  318.121318][T11950] vlan2: entered allmulticast mode
[  318.152908][T11950] bridge_slave_0: entered allmulticast mode
[  318.170179][T11950] bridge_slave_0: left allmulticast mode
[  318.226263][T11953] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input16
[  318.263549][T11953] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1930'.
[  318.646324][T11973] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1939'.
[  318.689776][T11973] batadv0: entered promiscuous mode
[  318.709914][T11973] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  318.719293][T11973] batadv0: left promiscuous mode
[  318.738592][T11975] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  318.780815][T11977] netlink: 'syz.3.1941': attribute type 32 has an invalid length.
[  319.139497][T11991] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1945'.
[  319.468444][T11993] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1946'.
[  319.668453][T11995] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1947'.
[  320.276252][T12025] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  320.347527][T12027] netlink: 'syz.1.1960': attribute type 1 has an invalid length.
[  321.278846][T12068] netlink: 'syz.1.1971': attribute type 1 has an invalid length.
[  321.286654][T12068] __nla_validate_parse: 11 callbacks suppressed
[  321.286671][T12068] netlink: 244 bytes leftover after parsing attributes in process `syz.1.1971'.
[  321.555778][T12075] FAULT_INJECTION: forcing a failure.
[  321.555778][T12075] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  321.571030][T12075] CPU: 1 UID: 0 PID: 12075 Comm: syz.3.1975 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  321.571060][T12075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  321.571073][T12075] Call Trace:
[  321.571081][T12075]  <TASK>
[  321.571090][T12075]  dump_stack_lvl+0x241/0x360
[  321.571123][T12075]  ? __pfx_dump_stack_lvl+0x10/0x10
[  321.571147][T12075]  ? __pfx__printk+0x10/0x10
[  321.571170][T12075]  ? __pfx_lock_release+0x10/0x10
[  321.571212][T12075]  should_fail_ex+0x40a/0x550
[  321.571248][T12075]  _copy_from_user+0x2d/0xb0
[  321.571277][T12075]  copy_msghdr_from_user+0xae/0x680
[  321.571306][T12075]  ? __pfx___might_resched+0x10/0x10
[  321.571338][T12075]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  321.571364][T12075]  ? set_normalized_timespec64+0x160/0x1e0
[  321.571403][T12075]  ? do_recvmmsg+0x44e/0xab0
[  321.571426][T12075]  ? __might_fault+0xaa/0x120
[  321.571453][T12075]  do_recvmmsg+0x3bd/0xab0
[  321.571489][T12075]  ? __pfx_do_recvmmsg+0x10/0x10
[  321.571553][T12075]  ? __pfx___might_resched+0x10/0x10
[  321.571581][T12075]  ? __might_fault+0xaa/0x120
[  321.571602][T12075]  ? __pfx_lock_release+0x10/0x10
[  321.571635][T12075]  ? vfs_write+0x7fa/0xd10
[  321.571671][T12075]  ? get_timespec64+0x19c/0x280
[  321.571720][T12075]  __x64_sys_recvmmsg+0x1b8/0x250
[  321.571748][T12075]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  321.571774][T12075]  ? do_syscall_64+0x100/0x230
[  321.571804][T12075]  ? do_syscall_64+0xb6/0x230
[  321.571832][T12075]  do_syscall_64+0xf3/0x230
[  321.571858][T12075]  ? clear_bhb_loop+0x35/0x90
[  321.571891][T12075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.571920][T12075] RIP: 0033:0x7f8d6218d169
[  321.571939][T12075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.571956][T12075] RSP: 002b:00007f8d6301a038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  321.571983][T12075] RAX: ffffffffffffffda RBX: 00007f8d623a5fa0 RCX: 00007f8d6218d169
[  321.571999][T12075] RDX: 0400000000000ec0 RSI: 0000400000002ec0 RDI: 0000000000000003
[  321.572013][T12075] RBP: 00007f8d6301a090 R08: 00004000000001c0 R09: 0000000000000000
[  321.572026][T12075] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  321.572038][T12075] R13: 0000000000000000 R14: 00007f8d623a5fa0 R15: 00007ffd82519be8
[  321.572069][T12075]  </TASK>
[  322.138771][T12082] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1978'.
[  322.158217][T12080] netlink: 'syz.3.1977': attribute type 25 has an invalid length.
[  322.181300][T12080] netlink: 'syz.3.1977': attribute type 7 has an invalid length.
[  322.197488][T12080] netlink: 164 bytes leftover after parsing attributes in process `syz.3.1977'.
[  322.492426][T12094] FAULT_INJECTION: forcing a failure.
[  322.492426][T12094] name failslab, interval 1, probability 0, space 0, times 0
[  322.515450][T12094] CPU: 1 UID: 0 PID: 12094 Comm: syz.3.1982 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  322.515484][T12094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  322.515497][T12094] Call Trace:
[  322.515504][T12094]  <TASK>
[  322.515513][T12094]  dump_stack_lvl+0x241/0x360
[  322.515547][T12094]  ? __pfx_dump_stack_lvl+0x10/0x10
[  322.515570][T12094]  ? __pfx__printk+0x10/0x10
[  322.515594][T12094]  ? __kmalloc_node_track_caller_noprof+0xb4/0x4c0
[  322.515627][T12094]  ? __pfx___might_resched+0x10/0x10
[  322.515654][T12094]  ? vsnprintf+0x1181/0x1220
[  322.515689][T12094]  should_fail_ex+0x40a/0x550
[  322.515726][T12094]  should_failslab+0xac/0x100
[  322.515756][T12094]  __kmalloc_node_track_caller_noprof+0xdc/0x4c0
[  322.515787][T12094]  ? kasprintf+0xd5/0x120
[  322.515821][T12094]  kvasprintf+0xdf/0x190
[  322.515847][T12094]  ? __kmalloc_noprof+0x285/0x4c0
[  322.515875][T12094]  ? nla_strdup+0x9c/0x140
[  322.515894][T12094]  ? nf_tables_newset+0x192e/0x3170
[  322.515928][T12094]  ? __pfx_kvasprintf+0x10/0x10
[  322.515955][T12094]  ? ____sys_sendmsg+0x53a/0x860
[  322.515992][T12094]  kasprintf+0xd5/0x120
[  322.516027][T12094]  ? __pfx_kasprintf+0x10/0x10
[  322.516068][T12094]  nf_tables_set_alloc_name+0x111/0x770
[  322.516102][T12094]  ? __pfx_nf_tables_set_alloc_name+0x10/0x10
[  322.516129][T12094]  ? __asan_memcpy+0x40/0x70
[  322.516150][T12094]  ? nla_strdup+0xb7/0x140
[  322.516173][T12094]  nf_tables_newset+0x194e/0x3170
[  322.516232][T12094]  ? __pfx_nf_tables_newset+0x10/0x10
[  322.516271][T12094]  ? __pfx_lock_release+0x10/0x10
[  322.516301][T12094]  ? __skb_clone+0x5c/0x6c0
[  322.516337][T12094]  ? __nla_parse+0x40/0x60
[  322.516364][T12094]  nfnetlink_rcv+0x14e3/0x2ab0
[  322.516385][T12094]  ? __pfx_validate_chain+0x10/0x10
[  322.516440][T12094]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  322.516474][T12094]  ? __lock_acquire+0x1397/0x2100
[  322.516539][T12094]  ? netlink_deliver_tap+0x2e/0x1b0
[  322.516568][T12094]  ? __pfx_lock_release+0x10/0x10
[  322.516614][T12094]  ? netlink_deliver_tap+0x2e/0x1b0
[  322.516646][T12094]  netlink_unicast+0x7f6/0x990
[  322.516681][T12094]  ? __pfx_netlink_unicast+0x10/0x10
[  322.516705][T12094]  ? __virt_addr_valid+0x45f/0x530
[  322.516726][T12094]  ? __phys_addr_symbol+0x2f/0x70
[  322.516745][T12094]  ? __check_object_size+0x47a/0x730
[  322.516778][T12094]  netlink_sendmsg+0x8de/0xcb0
[  322.516821][T12094]  ? __pfx_netlink_sendmsg+0x10/0x10
[  322.516856][T12094]  ? aa_sock_msg_perm+0x91/0x160
[  322.516893][T12094]  ? __pfx_netlink_sendmsg+0x10/0x10
[  322.516919][T12094]  __sock_sendmsg+0x221/0x270
[  322.516952][T12094]  ____sys_sendmsg+0x53a/0x860
[  322.516984][T12094]  ? __pfx_____sys_sendmsg+0x10/0x10
[  322.517004][T12094]  ? __fget_files+0x2a/0x410
[  322.517038][T12094]  ? __fget_files+0x2a/0x410
[  322.517078][T12094]  __sys_sendmsg+0x269/0x350
[  322.517106][T12094]  ? __pfx___sys_sendmsg+0x10/0x10
[  322.517144][T12094]  ? do_sys_openat2+0x17a/0x1d0
[  322.517212][T12094]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  322.517247][T12094]  ? do_syscall_64+0x100/0x230
[  322.517275][T12094]  ? do_syscall_64+0xb6/0x230
[  322.517308][T12094]  do_syscall_64+0xf3/0x230
[  322.517332][T12094]  ? clear_bhb_loop+0x35/0x90
[  322.517363][T12094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.517390][T12094] RIP: 0033:0x7f8d6218d169
[  322.517409][T12094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.517426][T12094] RSP: 002b:00007f8d6301a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  322.517448][T12094] RAX: ffffffffffffffda RBX: 00007f8d623a5fa0 RCX: 00007f8d6218d169
[  322.517463][T12094] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000005
[  322.517476][T12094] RBP: 00007f8d6301a090 R08: 0000000000000000 R09: 0000000000000000
[  322.517489][T12094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  322.517500][T12094] R13: 0000000000000000 R14: 00007f8d623a5fa0 R15: 00007ffd82519be8
[  322.517530][T12094]  </TASK>
[  323.416400][T12111] netlink: 'syz.2.1987': attribute type 1 has an invalid length.
[  323.465016][T12111] netlink: 236 bytes leftover after parsing attributes in process `syz.2.1987'.
[  323.484042][T12111] NCSI netlink: No device for ifindex 813332851
[  323.721381][T12115] netlink: 'syz.3.1988': attribute type 5 has an invalid length.
[  323.947004][T12129] netlink: 188 bytes leftover after parsing attributes in process `syz.2.1995'.
[  323.951294][T12130] netlink: 'syz.0.1996': attribute type 9 has an invalid length.
[  323.972790][T12129] netlink: 'syz.2.1995': attribute type 1 has an invalid length.
[  323.984738][T12132] set match dimension is over the limit!
[  323.994933][T12130] netlink: 'syz.0.1996': attribute type 6 has an invalid length.
[  324.008218][T12129] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  324.025467][T12130] netlink: 'syz.0.1996': attribute type 7 has an invalid length.
[  324.780971][T12151] netlink: 312 bytes leftover after parsing attributes in process `syz.2.2003'.
[  325.108830][T12160] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2005'.
[  325.161320][T12160] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2005'.
[  325.170535][T12160] netlink: 88 bytes leftover after parsing attributes in process `syz.2.2005'.
[  327.347603][T12158] tipc: Started in network mode
[  327.352648][T12158] tipc: Node identity 0000000000005f000000000000000001, cluster identity 4711
[  327.371637][T12158] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  327.622445][T12178] validate_nla: 1 callbacks suppressed
[  327.622468][T12178] netlink: 'syz.3.2012': attribute type 3 has an invalid length.
[  327.687171][T12180] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2013'.
[  327.716373][T12180] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2013'.
[  328.056471][T12197] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2020'.
[  328.138698][T12195] syz1: rxe_newlink: already configured on veth0_vlan
[  328.400072][T12218] netlink: 'syz.1.2026': attribute type 7 has an invalid length.
[  328.472753][T12221] netlink: 312 bytes leftover after parsing attributes in process `syz.2.2027'.
[  328.652174][T12229] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2031'.
[  328.661680][T12229] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2031'.
[  328.661715][T12227] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2030'.
[  328.779420][T12227] syzkaller0: tun_chr_ioctl cmd 1074025677
[  328.788972][T12227] syzkaller0: linktype set to 825
[  329.425358][T12262] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2042'.
[  329.470325][T12264] netlink: 312 bytes leftover after parsing attributes in process `syz.4.2041'.
[  329.887771][T12272] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2044'.
[  330.049309][T12247] vxcan1 speed is unknown, defaulting to 1000
[  330.246676][T12247] lo speed is unknown, defaulting to 1000
[  330.253833][T12266] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  331.451489][T12319] can: request_module (can-proto-3) failed.
[  331.847739][T12345] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input17
[  332.722813][T12380] __nla_validate_parse: 12 callbacks suppressed
[  332.722834][T12380] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2088'.
[  332.741344][T12381] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  332.750186][T12382] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2086'.
[  333.639753][T12401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  333.677915][T12401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  333.699091][T12401] batadv_slave_0: entered promiscuous mode
[  333.732763][T12401] batadv_slave_0: left promiscuous mode
[  333.978665][T12409] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2100'.
[  334.085738][T12411] netlink: 'syz.4.2099': attribute type 1 has an invalid length.
[  334.093749][T12411] netlink: 244 bytes leftover after parsing attributes in process `syz.4.2099'.
[  334.441312][T12419] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2104'.
[  334.496443][T12419] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2104'.
[  334.707151][T12430] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2107'.
[  334.729634][T12430] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2107'.
[  335.090619][T12436] netlink: 'syz.2.2111': attribute type 9 has an invalid length.
[  335.109381][T12436] netlink: 'syz.2.2111': attribute type 7 has an invalid length.
[  335.127873][T12436] netlink: 'syz.2.2111': attribute type 8 has an invalid length.
[  335.375198][T12445] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2113'.
[  335.710732][T12442] Set syz1 is full, maxelem 65536 reached
[  335.745459][T12450] netlink: 312 bytes leftover after parsing attributes in process `syz.2.2115'.
[  336.736151][T12472] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  337.599846][T12491] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  337.840450][T12499] FAULT_INJECTION: forcing a failure.
[  337.840450][T12499] name failslab, interval 1, probability 0, space 0, times 0
[  337.887504][T12499] CPU: 1 UID: 0 PID: 12499 Comm: syz.0.2134 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  337.887536][T12499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  337.887550][T12499] Call Trace:
[  337.887557][T12499]  <TASK>
[  337.887566][T12499]  dump_stack_lvl+0x241/0x360
[  337.887599][T12499]  ? __pfx_dump_stack_lvl+0x10/0x10
[  337.887623][T12499]  ? __pfx__printk+0x10/0x10
[  337.887646][T12499]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  337.887679][T12499]  ? __pfx___might_resched+0x10/0x10
[  337.887705][T12499]  ? aa_label_sk_perm+0x4f3/0x6c0
[  337.887739][T12499]  should_fail_ex+0x40a/0x550
[  337.887776][T12499]  should_failslab+0xac/0x100
[  337.887805][T12499]  kmem_cache_alloc_node_noprof+0x77/0x380
[  337.887835][T12499]  ? __alloc_skb+0x1c3/0x440
[  337.887866][T12499]  __alloc_skb+0x1c3/0x440
[  337.887891][T12499]  ? __pfx___alloc_skb+0x10/0x10
[  337.887922][T12499]  netlink_sendmsg+0x634/0xcb0
[  337.887965][T12499]  ? __pfx_netlink_sendmsg+0x10/0x10
[  337.887999][T12499]  ? aa_sock_msg_perm+0x91/0x160
[  337.888037][T12499]  ? __pfx_netlink_sendmsg+0x10/0x10
[  337.888065][T12499]  __sock_sendmsg+0x221/0x270
[  337.888097][T12499]  __sys_sendto+0x363/0x4c0
[  337.888135][T12499]  ? __pfx___sys_sendto+0x10/0x10
[  337.888181][T12499]  ? __fget_files+0x2a/0x410
[  337.888221][T12499]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  337.888257][T12499]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  337.888296][T12499]  __x64_sys_sendto+0xde/0x100
[  337.888319][T12499]  do_syscall_64+0xf3/0x230
[  337.888345][T12499]  ? clear_bhb_loop+0x35/0x90
[  337.888378][T12499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.888407][T12499] RIP: 0033:0x7feaceb8effc
[  337.888425][T12499] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  337.888442][T12499] RSP: 002b:00007feacfa35ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  337.888463][T12499] RAX: ffffffffffffffda RBX: 00007feacfa35fc0 RCX: 00007feaceb8effc
[  337.888478][T12499] RDX: 0000000000000020 RSI: 00007feacfa36010 RDI: 0000000000000003
[  337.888497][T12499] RBP: 0000000000000000 R08: 00007feacfa35f14 R09: 000000000000000c
[  337.888509][T12499] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  337.888522][T12499] R13: 00007feacfa35f68 R14: 00007feacfa36010 R15: 0000000000000000
[  337.888553][T12499]  </TASK>
[  339.625772][T12538] __nla_validate_parse: 4 callbacks suppressed
[  339.625795][T12538] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2148'.
[  339.674267][T12538] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2148'.
[  340.151279][T12550] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  340.352077][T12554] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input18
[  341.621718][T12580] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2161'.
[  341.647564][T12580] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2161'.
[  342.083553][T12594] netlink: 'syz.0.2166': attribute type 1 has an invalid length.
[  342.108715][T12594] netlink: 244 bytes leftover after parsing attributes in process `syz.0.2166'.
[  342.286162][T12600] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2169'.
[  342.427678][T12605] syzkaller1: entered promiscuous mode
[  342.433411][T12605] syzkaller1: entered allmulticast mode
[  342.736654][T12610] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2174'.
[  342.803276][T12610] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2174'.
[  342.843638][T12617] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2175'.
[  342.864551][T12610] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2174'.
[  343.592740][T12640] xt_NFQUEUE: number of queues (65532) out of range (got 66665)
[  344.758171][T12674] __nla_validate_parse: 4 callbacks suppressed
[  344.758191][T12674] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2195'.
[  345.235638][T12696] IPVS: set_ctl: invalid protocol: 135 10.1.1.1:20002
[  345.467615][T12700] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2204'.
[  345.507227][T12700] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2204'.
[  345.541543][T12700] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2204'.
[  345.716976][T12703] !��: renamed from bond_slave_0
[  345.878625][T12709] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  345.893506][T12709] batman_adv: batadv0: Adding interface: ip6gretap1
[  345.948140][T12709] batman_adv: batadv0: Interface activated: ip6gretap1
[  346.492003][T12724] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2214'.
[  346.522181][T12724] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2214'.
[  346.574290][T12724] bond0: entered promiscuous mode
[  346.592568][T12724] bond_slave_0: entered promiscuous mode
[  346.604971][T12724] bond_slave_1: entered promiscuous mode
[  346.621511][T12724] team0: entered promiscuous mode
[  346.631498][T12724] team_slave_0: entered promiscuous mode
[  346.642457][T12724] team_slave_1: entered promiscuous mode
[  346.653750][T12724] batadv0: entered promiscuous mode
[  346.690594][T12724] bond0: left promiscuous mode
[  346.700767][T12724] bond_slave_0: left promiscuous mode
[  346.710108][T12724] bond_slave_1: left promiscuous mode
[  346.725079][T12724] team0: left promiscuous mode
[  346.734873][T12724] team_slave_0: left promiscuous mode
[  346.746238][T12724] team_slave_1: left promiscuous mode
[  346.757768][T12724] batadv0: left promiscuous mode
[  346.797429][T12713] vxcan1 speed is unknown, defaulting to 1000
[  347.041252][T12733] netlink: 252 bytes leftover after parsing attributes in process `syz.2.2217'.
[  347.463958][T12713] lo speed is unknown, defaulting to 1000
[  348.484135][T12774] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2235'.
[  348.668122][T12783] syzkaller1: entered promiscuous mode
[  348.683997][T12783] syzkaller1: entered allmulticast mode
[  348.708656][T12786] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2239'.
[  349.029056][T12796] FAULT_INJECTION: forcing a failure.
[  349.029056][T12796] name failslab, interval 1, probability 0, space 0, times 0
[  349.090922][T12796] CPU: 0 UID: 0 PID: 12796 Comm: syz.4.2243 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  349.090956][T12796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  349.090970][T12796] Call Trace:
[  349.090977][T12796]  <TASK>
[  349.090986][T12796]  dump_stack_lvl+0x241/0x360
[  349.091019][T12796]  ? __pfx_dump_stack_lvl+0x10/0x10
[  349.091044][T12796]  ? __pfx__printk+0x10/0x10
[  349.091068][T12796]  ? __kmalloc_noprof+0xb5/0x4c0
[  349.091099][T12796]  ? __pfx___might_resched+0x10/0x10
[  349.091124][T12796]  ? rcu_is_watching+0x15/0xb0
[  349.091152][T12796]  should_fail_ex+0x40a/0x550
[  349.091189][T12796]  should_failslab+0xac/0x100
[  349.091219][T12796]  __kmalloc_noprof+0xdd/0x4c0
[  349.091248][T12796]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  349.091272][T12796]  ? __netlink_dump_start+0x119/0x790
[  349.091305][T12796]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  349.091338][T12796]  genl_start+0x182/0x6d0
[  349.091370][T12796]  __netlink_dump_start+0x45c/0x790
[  349.091409][T12796]  genl_rcv_msg+0x894/0xec0
[  349.091441][T12796]  ? __pfx_genl_rcv_msg+0x10/0x10
[  349.091471][T12796]  ? __pfx_genl_start+0x10/0x10
[  349.091490][T12796]  ? __pfx_genl_dumpit+0x10/0x10
[  349.091510][T12796]  ? __pfx_genl_done+0x10/0x10
[  349.091552][T12796]  ? __pfx_lock_acquire+0x10/0x10
[  349.091583][T12796]  ? __pfx_ieee802154_dump_phy+0x10/0x10
[  349.091614][T12796]  ? __pfx___might_resched+0x10/0x10
[  349.091653][T12796]  netlink_rcv_skb+0x206/0x480
[  349.091683][T12796]  ? __pfx_genl_rcv_msg+0x10/0x10
[  349.091707][T12796]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  349.091771][T12796]  genl_rcv+0x28/0x40
[  349.091790][T12796]  netlink_unicast+0x7f6/0x990
[  349.091843][T12796]  ? __pfx_netlink_unicast+0x10/0x10
[  349.091867][T12796]  ? __virt_addr_valid+0x45f/0x530
[  349.091889][T12796]  ? __phys_addr_symbol+0x2f/0x70
[  349.091908][T12796]  ? __check_object_size+0x47a/0x730
[  349.091942][T12796]  netlink_sendmsg+0x8de/0xcb0
[  349.091986][T12796]  ? __pfx_netlink_sendmsg+0x10/0x10
[  349.092021][T12796]  ? aa_sock_msg_perm+0x91/0x160
[  349.092059][T12796]  ? __pfx_netlink_sendmsg+0x10/0x10
[  349.092087][T12796]  __sock_sendmsg+0x221/0x270
[  349.092120][T12796]  ____sys_sendmsg+0x53a/0x860
[  349.092153][T12796]  ? __pfx_____sys_sendmsg+0x10/0x10
[  349.092173][T12796]  ? __fget_files+0x2a/0x410
[  349.092206][T12796]  ? __fget_files+0x2a/0x410
[  349.092247][T12796]  __sys_sendmsg+0x269/0x350
[  349.092276][T12796]  ? __pfx___sys_sendmsg+0x10/0x10
[  349.092314][T12796]  ? do_sys_openat2+0x17a/0x1d0
[  349.092375][T12796]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  349.092410][T12796]  ? do_syscall_64+0x100/0x230
[  349.092439][T12796]  ? do_syscall_64+0xb6/0x230
[  349.092468][T12796]  do_syscall_64+0xf3/0x230
[  349.092493][T12796]  ? clear_bhb_loop+0x35/0x90
[  349.092527][T12796]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.092554][T12796] RIP: 0033:0x7fa90c18d169
[  349.092573][T12796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  349.092591][T12796] RSP: 002b:00007fa90d03e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  349.092613][T12796] RAX: ffffffffffffffda RBX: 00007fa90c3a5fa0 RCX: 00007fa90c18d169
[  349.092628][T12796] RDX: 0000000000000000 RSI: 0000400000000640 RDI: 000000000000000a
[  349.092641][T12796] RBP: 00007fa90d03e090 R08: 0000000000000000 R09: 0000000000000000
[  349.092654][T12796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  349.092666][T12796] R13: 0000000000000000 R14: 00007fa90c3a5fa0 R15: 00007ffef3b75ec8
[  349.092699][T12796]  </TASK>
[  349.466098][T12799] netlink: 'syz.0.2242': attribute type 1 has an invalid length.
[  349.480077][T12799] netlink: 244 bytes leftover after parsing attributes in process `syz.0.2242'.
[  350.859903][T12832] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2259'.
[  350.896991][T12832] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2259'.
[  353.049469][T12859] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  353.058047][T12859] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2269'.
[  353.135466][T12859] netlink: 'syz.3.2269': attribute type 39 has an invalid length.
[  353.162973][T12778] Set syz1 is full, maxelem 65536 reached
[  353.253730][T12859] bond0: (slave syz_tun): Releasing backup interface
[  353.954749][T12908] bond4 (unregistering): Released all slaves
[  353.998690][T12914] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  354.132829][T12914] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  354.234188][T12914] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  354.318448][T12918] netlink: 'syz.2.2293': attribute type 10 has an invalid length.
[  354.339256][T12914] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  354.501174][T12914] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  354.526416][T12914] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  354.559725][T12914] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  354.585930][T12914] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  354.681092][T12926] netlink: 'syz.3.2295': attribute type 10 has an invalid length.
[  355.891557][T12980] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2317'.
[  355.901972][T12982] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  356.146413][T12991] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2318'.
[  357.212868][T13012] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2332'.
[  357.234523][T13012] netlink: 100 bytes leftover after parsing attributes in process `syz.1.2332'.
[  358.692326][T13069] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2352'.
[  358.920467][T13083] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2356'.
[  359.290600][T13109] FAULT_INJECTION: forcing a failure.
[  359.290600][T13109] name failslab, interval 1, probability 0, space 0, times 0
[  359.330760][T13109] CPU: 0 UID: 0 PID: 13109 Comm: syz.4.2360 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  359.330793][T13109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  359.330807][T13109] Call Trace:
[  359.330814][T13109]  <TASK>
[  359.330823][T13109]  dump_stack_lvl+0x241/0x360
[  359.330857][T13109]  ? __pfx_dump_stack_lvl+0x10/0x10
[  359.330882][T13109]  ? __pfx__printk+0x10/0x10
[  359.330906][T13109]  ? __kmalloc_noprof+0xb5/0x4c0
[  359.330937][T13109]  ? __pfx___might_resched+0x10/0x10
[  359.330964][T13109]  ? aa_get_newest_label+0xff/0x6f0
[  359.330995][T13109]  ? genl_get_cmd+0x19e/0xce0
[  359.331020][T13109]  should_fail_ex+0x40a/0x550
[  359.331056][T13109]  should_failslab+0xac/0x100
[  359.331087][T13109]  __kmalloc_noprof+0xdd/0x4c0
[  359.331114][T13109]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  359.331136][T13109]  ? apparmor_capable+0x13b/0x1b0
[  359.331165][T13109]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  359.331197][T13109]  genl_rcv_msg+0x80b/0xec0
[  359.331230][T13109]  ? __pfx_genl_rcv_msg+0x10/0x10
[  359.331284][T13109]  ? __pfx_lock_acquire+0x10/0x10
[  359.331314][T13109]  ? __pfx_nl802154_pre_doit+0x10/0x10
[  359.331345][T13109]  ? __pfx_nl802154_del_llsec_key+0x10/0x10
[  359.331368][T13109]  ? __pfx_nl802154_post_doit+0x10/0x10
[  359.331401][T13109]  ? __pfx___might_resched+0x10/0x10
[  359.331441][T13109]  netlink_rcv_skb+0x206/0x480
[  359.331472][T13109]  ? __pfx_genl_rcv_msg+0x10/0x10
[  359.331496][T13109]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  359.331559][T13109]  genl_rcv+0x28/0x40
[  359.331579][T13109]  netlink_unicast+0x7f6/0x990
[  359.331620][T13109]  ? __pfx_netlink_unicast+0x10/0x10
[  359.331645][T13109]  ? __virt_addr_valid+0x45f/0x530
[  359.331667][T13109]  ? __phys_addr_symbol+0x2f/0x70
[  359.331686][T13109]  ? __check_object_size+0x47a/0x730
[  359.331720][T13109]  netlink_sendmsg+0x8de/0xcb0
[  359.331764][T13109]  ? __pfx_netlink_sendmsg+0x10/0x10
[  359.331799][T13109]  ? aa_sock_msg_perm+0x91/0x160
[  359.331836][T13109]  ? __pfx_netlink_sendmsg+0x10/0x10
[  359.331865][T13109]  __sock_sendmsg+0x221/0x270
[  359.331898][T13109]  ____sys_sendmsg+0x53a/0x860
[  359.331930][T13109]  ? __pfx_____sys_sendmsg+0x10/0x10
[  359.331951][T13109]  ? __fget_files+0x2a/0x410
[  359.331986][T13109]  ? __fget_files+0x2a/0x410
[  359.332026][T13109]  __sys_sendmsg+0x269/0x350
[  359.332055][T13109]  ? __pfx___sys_sendmsg+0x10/0x10
[  359.332093][T13109]  ? do_sys_openat2+0x17a/0x1d0
[  359.332154][T13109]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  359.332188][T13109]  ? do_syscall_64+0x100/0x230
[  359.332218][T13109]  ? do_syscall_64+0xb6/0x230
[  359.332246][T13109]  do_syscall_64+0xf3/0x230
[  359.332271][T13109]  ? clear_bhb_loop+0x35/0x90
[  359.332305][T13109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.332334][T13109] RIP: 0033:0x7fa90c18d169
[  359.332353][T13109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.332371][T13109] RSP: 002b:00007fa90d01d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  359.332394][T13109] RAX: ffffffffffffffda RBX: 00007fa90c3a6080 RCX: 00007fa90c18d169
[  359.332409][T13109] RDX: 0000000000000810 RSI: 0000400000000040 RDI: 0000000000000004
[  359.332422][T13109] RBP: 00007fa90d01d090 R08: 0000000000000000 R09: 0000000000000000
[  359.332436][T13109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.332448][T13109] R13: 0000000000000001 R14: 00007fa90c3a6080 R15: 00007ffef3b75ec8
[  359.332481][T13109]  </TASK>
[  359.769060][T13106] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2358'.
[  359.834450][T13106] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2358'.
[  359.938430][T13106] dummy0: entered promiscuous mode
[  360.032725][T13106] dummy0: left promiscuous mode
[  360.123402][T13131] vlan2: entered promiscuous mode
[  360.150428][T13131] syz_tun: entered promiscuous mode
[  360.171140][T13131] syz_tun: left promiscuous mode
[  360.430854][T13140] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  360.613088][T13152] netlink: 'syz.2.2374': attribute type 1 has an invalid length.
[  360.631101][T13152] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2374'.
[  360.689452][T13156] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2369'.
[  361.420658][T13175] __nla_validate_parse: 1 callbacks suppressed
[  361.420682][T13175] netlink: 188 bytes leftover after parsing attributes in process `syz.3.2383'.
[  361.531815][T13177] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2382'.
[  361.638594][T13181] netlink: 'syz.0.2385': attribute type 4 has an invalid length.
[  361.833413][T13192] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2388'.
[  362.156757][T13202] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  362.465489][T13211] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2393'.
[  362.576174][T13229] netlink: 'syz.3.2402': attribute type 1 has an invalid length.
[  362.617606][T13229] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2402'.
[  362.663470][T13236] netlink: 'syz.3.2402': attribute type 1 has an invalid length.
[  362.676753][T13236] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  362.692845][T13225] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2402'.
[  362.712281][T13225] netlink: 'syz.3.2402': attribute type 3 has an invalid length.
[  363.020840][T13246] lo: entered allmulticast mode
[  363.032589][T13246] lo: left allmulticast mode
[  363.513983][T13264] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2413'.
[  363.728566][T13265] netlink: 'syz.3.2415': attribute type 1 has an invalid length.
[  363.747458][T13265] netlink: 244 bytes leftover after parsing attributes in process `syz.3.2415'.
[  364.385408][T13257] vxcan1 speed is unknown, defaulting to 1000
[  364.510831][T13286] netlink: 'syz.0.2422': attribute type 10 has an invalid length.
[  364.669418][T13295] netlink: 312 bytes leftover after parsing attributes in process `syz.4.2425'.
[  364.861374][T13301] netlink: 'syz.4.2427': attribute type 6 has an invalid length.
[  364.909569][T13301] netlink: 'syz.4.2427': attribute type 3 has an invalid length.
[  364.971991][T13257] lo speed is unknown, defaulting to 1000
[  365.460382][T13314] FAULT_INJECTION: forcing a failure.
[  365.460382][T13314] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  365.507457][T13314] CPU: 1 UID: 0 PID: 13314 Comm: syz.0.2432 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  365.507489][T13314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  365.507503][T13314] Call Trace:
[  365.507510][T13314]  <TASK>
[  365.507519][T13314]  dump_stack_lvl+0x241/0x360
[  365.507552][T13314]  ? __pfx_dump_stack_lvl+0x10/0x10
[  365.507576][T13314]  ? __pfx__printk+0x10/0x10
[  365.507604][T13314]  ? snprintf+0xda/0x120
[  365.507639][T13314]  should_fail_ex+0x40a/0x550
[  365.507676][T13314]  _copy_to_user+0x31/0xb0
[  365.507706][T13314]  simple_read_from_buffer+0xca/0x150
[  365.507739][T13314]  proc_fail_nth_read+0x1e9/0x250
[  365.507772][T13314]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  365.507805][T13314]  ? rw_verify_area+0x243/0x630
[  365.507826][T13314]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  365.507857][T13314]  vfs_read+0x1f8/0xb40
[  365.507879][T13314]  ? do_sock_setsockopt+0x3e2/0x720
[  365.507901][T13314]  ? do_sock_setsockopt+0x3e2/0x720
[  365.507923][T13314]  ? __pfx_vfs_read+0x10/0x10
[  365.507941][T13314]  ? udp_setsockopt+0x73/0xb0
[  365.507970][T13314]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  365.508009][T13314]  ? do_sock_setsockopt+0x3e2/0x720
[  365.508037][T13314]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  365.508066][T13314]  ksys_read+0x18f/0x2b0
[  365.508090][T13314]  ? __pfx_ksys_read+0x10/0x10
[  365.508113][T13314]  ? do_syscall_64+0x100/0x230
[  365.508141][T13314]  ? do_syscall_64+0xb6/0x230
[  365.508169][T13314]  do_syscall_64+0xf3/0x230
[  365.508193][T13314]  ? clear_bhb_loop+0x35/0x90
[  365.508225][T13314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.508254][T13314] RIP: 0033:0x7feaceb8bb7c
[  365.508273][T13314] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  365.508291][T13314] RSP: 002b:00007feacfa37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  365.508314][T13314] RAX: ffffffffffffffda RBX: 00007feaceda5fa0 RCX: 00007feaceb8bb7c
[  365.508329][T13314] RDX: 000000000000000f RSI: 00007feacfa370a0 RDI: 0000000000000004
[  365.508342][T13314] RBP: 00007feacfa37090 R08: 0000000000000000 R09: 0000000000000000
[  365.508355][T13314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  365.508367][T13314] R13: 0000000000000000 R14: 00007feaceda5fa0 R15: 00007ffe35163eb8
[  365.508398][T13314]  </TASK>
[  365.887996][T13325] FAULT_INJECTION: forcing a failure.
[  365.887996][T13325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  365.978739][T13325] CPU: 0 UID: 0 PID: 13325 Comm: syz.0.2436 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  365.978774][T13325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  365.978792][T13325] Call Trace:
[  365.978799][T13325]  <TASK>
[  365.978808][T13325]  dump_stack_lvl+0x241/0x360
[  365.978841][T13325]  ? __pfx_dump_stack_lvl+0x10/0x10
[  365.978864][T13325]  ? __pfx__printk+0x10/0x10
[  365.978889][T13325]  ? __pfx_lock_release+0x10/0x10
[  365.978930][T13325]  should_fail_ex+0x40a/0x550
[  365.978978][T13325]  _copy_from_user+0x2d/0xb0
[  365.979007][T13325]  copy_msghdr_from_user+0xae/0x680
[  365.979043][T13325]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  365.979069][T13325]  ? __fget_files+0x2a/0x410
[  365.979103][T13325]  ? __fget_files+0x2a/0x410
[  365.979150][T13325]  __sys_sendmsg+0x209/0x350
[  365.979178][T13325]  ? __pfx___sys_sendmsg+0x10/0x10
[  365.979215][T13325]  ? do_sys_openat2+0x17a/0x1d0
[  365.979271][T13325]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  365.979305][T13325]  ? do_syscall_64+0x100/0x230
[  365.979334][T13325]  ? do_syscall_64+0xb6/0x230
[  365.979363][T13325]  do_syscall_64+0xf3/0x230
[  365.979388][T13325]  ? clear_bhb_loop+0x35/0x90
[  365.979421][T13325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.979454][T13325] RIP: 0033:0x7feaceb8d169
[  365.979472][T13325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.979491][T13325] RSP: 002b:00007feacfa37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  365.979514][T13325] RAX: ffffffffffffffda RBX: 00007feaceda5fa0 RCX: 00007feaceb8d169
[  365.979530][T13325] RDX: 0000000000000050 RSI: 0000400000000040 RDI: 0000000000000004
[  365.979544][T13325] RBP: 00007feacfa37090 R08: 0000000000000000 R09: 0000000000000000
[  365.979557][T13325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  365.979569][T13325] R13: 0000000000000000 R14: 00007feaceda5fa0 R15: 00007ffe35163eb8
[  365.979601][T13325]  </TASK>
[  366.469987][T13330] netlink: 312 bytes leftover after parsing attributes in process `syz.0.2437'.
[  366.984657][T13347] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2444'.
[  367.018869][T13347] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2444'.
[  367.705055][T13351] vxcan1 speed is unknown, defaulting to 1000
[  368.072502][T13377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2454'.
[  368.125238][T13377] bridge0: entered promiscuous mode
[  368.134519][T13377] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2454'.
[  368.231383][T13351] lo speed is unknown, defaulting to 1000
[  368.899939][T13409] netlink: 'syz.1.2464': attribute type 1 has an invalid length.
[  368.947662][T13409] netlink: 244 bytes leftover after parsing attributes in process `syz.1.2464'.
[  369.514237][T13426] netlink: 'syz.0.2471': attribute type 10 has an invalid length.
[  369.597542][ T5145] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  369.601923][ T5848] Bluetooth: hci0: command 0x0406 tx timeout
[  369.836098][T13435] netlink: 'syz.2.2472': attribute type 10 has an invalid length.
[  369.872406][T13429] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  370.946413][T13466] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  371.753348][T13488] netlink: 'syz.3.2492': attribute type 10 has an invalid length.
[  371.797970][T13488] syz1: rxe_newlink: already configured on veth0_vlan
[  372.501979][T13505] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2499'.
[  372.829125][T13517] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  372.929433][T13519] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2505'.
[  372.983775][T13523] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[  373.117788][T13531] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2503'.
[  373.409034][T13537] netlink: 'syz.4.2510': attribute type 10 has an invalid length.
[  373.434057][T13544] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2512'.
[  373.460070][T13545] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2513'.
[  373.517826][T13545] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2513'.
[  373.545334][T13545] gtp0: entered promiscuous mode
[  373.567488][T13545] gtp0: entered allmulticast mode
[  374.122847][T13557] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2516'.
[  374.486982][T13557] bond0: (slave macvlan0): Releasing backup interface
[  374.525573][T13557] bond0: (slave macvlan0): the permanent HWaddr of slave - aa:aa:aa:aa:aa:34 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  374.642483][T13562] netlink: 6 bytes leftover after parsing attributes in process `syz.0.2516'.
[  374.665364][T13562] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  374.878543][T13580] netlink: 312 bytes leftover after parsing attributes in process `syz.4.2522'.
[  374.918784][T13581] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2524'.
[  374.979294][T13584] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  375.480002][T13605] netlink: 'syz.3.2528': attribute type 10 has an invalid length.
[  375.495204][T13594] syz1: rxe_newlink: already configured on veth0_vlan
[  376.002582][T13619] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  376.848783][T13633] syz_tun: entered allmulticast mode
[  376.890228][T13633] syz_tun: left allmulticast mode
[  376.925563][T13634] netlink: 'syz.4.2541': attribute type 2 has an invalid length.
[  376.947409][T13634] netlink: 'syz.4.2541': attribute type 1 has an invalid length.
[  376.969028][T13634] netlink: 'syz.4.2541': attribute type 3 has an invalid length.
[  377.198053][T13643] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  378.108904][T13677] __nla_validate_parse: 4 callbacks suppressed
[  378.108927][T13677] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2561'.
[  378.167667][T13677] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2561'.
[  380.539041][T13786] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2606'.
[  380.968491][T13803] nbd: couldn't find device at index 1255035857
[  380.970568][T13805] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  381.080505][T13807] netlink: 'syz.3.2616': attribute type 10 has an invalid length.
[  381.087755][T13811] netlink: 320 bytes leftover after parsing attributes in process `syz.4.2614'.
[  381.131605][T13810] syz1: rxe_newlink: already configured on veth0_vlan
[  381.203994][T13814] netlink: 312 bytes leftover after parsing attributes in process `syz.0.2617'.
[  381.360676][T13819] FAULT_INJECTION: forcing a failure.
[  381.360676][T13819] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  381.375612][T13819] CPU: 0 UID: 0 PID: 13819 Comm: syz.0.2619 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  381.375643][T13819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  381.375665][T13819] Call Trace:
[  381.375672][T13819]  <TASK>
[  381.375682][T13819]  dump_stack_lvl+0x241/0x360
[  381.375716][T13819]  ? __pfx_dump_stack_lvl+0x10/0x10
[  381.375741][T13819]  ? __pfx__printk+0x10/0x10
[  381.375762][T13819]  ? _copy_from_user+0x95/0xb0
[  381.375790][T13819]  ? br_dev_read_uargs+0x321/0x400
[  381.375817][T13819]  should_fail_ex+0x40a/0x550
[  381.375847][T13819]  ? br_dev_siocdevprivate+0x3ce/0x1ba0
[  381.375874][T13819]  _copy_to_user+0x31/0xb0
[  381.375900][T13819]  ? br_dev_siocdevprivate+0x3ce/0x1ba0
[  381.375926][T13819]  br_dev_siocdevprivate+0x176f/0x1ba0
[  381.375954][T13819]  ? br_dev_siocdevprivate+0x3ce/0x1ba0
[  381.375980][T13819]  ? __pfx_br_dev_siocdevprivate+0x10/0x10
[  381.376004][T13819]  ? __mutex_trylock_common+0x183/0x2e0
[  381.376035][T13819]  ? __pfx___mutex_trylock_common+0x10/0x10
[  381.376068][T13819]  ? trace_contention_end+0x3c/0x120
[  381.376094][T13819]  ? __mutex_lock+0x397/0x1010
[  381.376123][T13819]  ? full_name_hash+0x93/0xe0
[  381.376163][T13819]  dev_ifsioc+0xcac/0x1130
[  381.376192][T13819]  ? __pfx___mutex_lock+0x10/0x10
[  381.376245][T13819]  ? __pfx_dev_ifsioc+0x10/0x10
[  381.376277][T13819]  ? dev_load+0x21/0x1f0
[  381.376306][T13819]  dev_ioctl+0x881/0x1340
[  381.376337][T13819]  sock_ioctl+0x7ef/0x8e0
[  381.376365][T13819]  ? __pfx_sock_ioctl+0x10/0x10
[  381.376405][T13819]  ? __pfx_sock_ioctl+0x10/0x10
[  381.376433][T13819]  __se_sys_ioctl+0xf5/0x170
[  381.376458][T13819]  do_syscall_64+0xf3/0x230
[  381.376484][T13819]  ? clear_bhb_loop+0x35/0x90
[  381.376517][T13819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.376546][T13819] RIP: 0033:0x7feaceb8d169
[  381.376566][T13819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.376587][T13819] RSP: 002b:00007feacfa37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  381.376610][T13819] RAX: ffffffffffffffda RBX: 00007feaceda5fa0 RCX: 00007feaceb8d169
[  381.376626][T13819] RDX: 0000400000001440 RSI: 00000000000089ff RDI: 0000000000000003
[  381.376639][T13819] RBP: 00007feacfa37090 R08: 0000000000000000 R09: 0000000000000000
[  381.376661][T13819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  381.376673][T13819] R13: 0000000000000000 R14: 00007feaceda5fa0 R15: 00007ffe35163eb8
[  381.376704][T13819]  </TASK>
[  381.399743][T13821] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2620'.
[  381.998726][T13836] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2627'.
[  382.018487][T13839] netlink: 312 bytes leftover after parsing attributes in process `syz.2.2629'.
[  382.190748][T13846] FAULT_INJECTION: forcing a failure.
[  382.190748][T13846] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  382.215027][T13846] CPU: 1 UID: 0 PID: 13846 Comm: syz.4.2631 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  382.215059][T13846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  382.215072][T13846] Call Trace:
[  382.215080][T13846]  <TASK>
[  382.215089][T13846]  dump_stack_lvl+0x241/0x360
[  382.215121][T13846]  ? __pfx_dump_stack_lvl+0x10/0x10
[  382.215145][T13846]  ? __pfx__printk+0x10/0x10
[  382.215168][T13846]  ? __pfx_lock_release+0x10/0x10
[  382.215201][T13846]  ? validate_chain+0x11e/0x5920
[  382.215229][T13846]  should_fail_ex+0x40a/0x550
[  382.215264][T13846]  _copy_from_user+0x2d/0xb0
[  382.215300][T13846]  do_sys_poll+0x248/0x15d0
[  382.215331][T13846]  ? mark_lock+0x9a/0x360
[  382.215355][T13846]  ? __lock_acquire+0x1397/0x2100
[  382.215399][T13846]  ? __pfx_do_sys_poll+0x10/0x10
[  382.215430][T13846]  ? mark_lock+0x9a/0x360
[  382.215516][T13846]  ? rcu_read_lock_any_held+0xb7/0x160
[  382.215541][T13846]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  382.215568][T13846]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  382.215626][T13846]  ? __pfx_set_user_sigmask+0x10/0x10
[  382.215663][T13846]  __se_sys_ppoll+0x2a0/0x330
[  382.215696][T13846]  ? __pfx___se_sys_ppoll+0x10/0x10
[  382.215725][T13846]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  382.215759][T13846]  ? do_syscall_64+0x100/0x230
[  382.215787][T13846]  ? __x64_sys_ppoll+0x20/0xc0
[  382.215817][T13846]  do_syscall_64+0xf3/0x230
[  382.215849][T13846]  ? clear_bhb_loop+0x35/0x90
[  382.215882][T13846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.215910][T13846] RIP: 0033:0x7fa90c18d169
[  382.215929][T13846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.215946][T13846] RSP: 002b:00007fa90d03e038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  382.215968][T13846] RAX: ffffffffffffffda RBX: 00007fa90c3a5fa0 RCX: 00007fa90c18d169
[  382.215983][T13846] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000400000000540
[  382.215995][T13846] RBP: 00007fa90d03e090 R08: 0000000000000000 R09: 0000000000000000
[  382.216008][T13846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.216020][T13846] R13: 0000000000000000 R14: 00007fa90c3a5fa0 R15: 00007ffef3b75ec8
[  382.216054][T13846]  </TASK>
[  382.736283][T13860] netlink: 'syz.1.2638': attribute type 10 has an invalid length.
[  382.863798][T13858] vxcan1 speed is unknown, defaulting to 1000
[  382.904164][T13868] openvswitch: netlink: ufid size 20 bytes exceeds the range (1, 16)
[  382.912458][T13868] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  383.231075][T13858] lo speed is unknown, defaulting to 1000
[  383.257241][T13860] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  384.156691][T13911] ipvlan0: entered promiscuous mode
[  384.710862][T13932] IPVS: sed: TCP [::]:0 - no destination available
[  385.214364][T13961] netlink: 312 bytes leftover after parsing attributes in process `syz.2.2677'.
[  385.838200][T13981] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  385.851281][T13981] batman_adv: batadv0: Adding interface: ip6gretap1
[  385.858339][T13981] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  385.885159][T13981] batman_adv: batadv0: Interface activated: ip6gretap1
[  386.629476][T14011] FAULT_INJECTION: forcing a failure.
[  386.629476][T14011] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  386.648193][T14011] CPU: 1 UID: 0 PID: 14011 Comm: syz.0.2695 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  386.648226][T14011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  386.648239][T14011] Call Trace:
[  386.648246][T14011]  <TASK>
[  386.648255][T14011]  dump_stack_lvl+0x241/0x360
[  386.648287][T14011]  ? __pfx_dump_stack_lvl+0x10/0x10
[  386.648310][T14011]  ? __pfx__printk+0x10/0x10
[  386.648334][T14011]  ? __pfx_lock_release+0x10/0x10
[  386.648375][T14011]  should_fail_ex+0x40a/0x550
[  386.648411][T14011]  _copy_from_user+0x2d/0xb0
[  386.648440][T14011]  __sys_bpf+0x1be/0x820
[  386.648472][T14011]  ? __pfx___sys_bpf+0x10/0x10
[  386.648514][T14011]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  386.648548][T14011]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  386.648581][T14011]  ? do_syscall_64+0x100/0x230
[  386.648611][T14011]  __x64_sys_bpf+0x7c/0x90
[  386.648638][T14011]  do_syscall_64+0xf3/0x230
[  386.648663][T14011]  ? clear_bhb_loop+0x35/0x90
[  386.648696][T14011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.648723][T14011] RIP: 0033:0x7feaceb8d169
[  386.648741][T14011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  386.648758][T14011] RSP: 002b:00007feacfa37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  386.648780][T14011] RAX: ffffffffffffffda RBX: 00007feaceda5fa0 RCX: 00007feaceb8d169
[  386.648794][T14011] RDX: 0000000000000094 RSI: 0000400000000040 RDI: 0000000000000005
[  386.648807][T14011] RBP: 00007feacfa37090 R08: 0000000000000000 R09: 0000000000000000
[  386.648820][T14011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  386.648832][T14011] R13: 0000000000000000 R14: 00007feaceda5fa0 R15: 00007ffe35163eb8
[  386.648863][T14011]  </TASK>
[  386.934650][T14017] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  386.978301][T14017] batman_adv: batadv0: Adding interface: ip6gretap1
[  386.997633][T14017] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  387.035164][T14017] batman_adv: batadv0: Interface activated: ip6gretap1
[  387.167789][T14026] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  387.961027][T14052] netlink: 'syz.2.2711': attribute type 10 has an invalid length.
[  387.970322][T14052] rdma_rxe: rxe_newlink: failed to add veth0_vlan
[  387.977598][ T5145] Bluetooth: hci4: command 0x0405 tx timeout
[  388.453936][T14075] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000197: 0000 [#1] PREEMPT SMP KASAN PTI
[  388.466588][T14075] KASAN: null-ptr-deref in range [0x0000000000000cb8-0x0000000000000cbf]
[  388.475034][T14075] CPU: 1 UID: 0 PID: 14075 Comm: syz.0.2718 Not tainted 6.14.0-rc5-syzkaller-01096-g865eddcf0afb #0
[  388.485802][T14075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  388.495874][T14075] RIP: 0010:bpf_map_offload_map_alloc+0x19a/0x910
[  388.502324][T14075] Code: 48 89 44 24 30 42 80 3c 20 00 74 08 48 89 df e8 ac e6 3b 00 48 89 5c 24 18 4c 89 2b 49 8d 9d bd 0c 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 df 06 00 00 0f b6 1b 31 ff 89 de e8 dd
[  388.521968][T14075] RSP: 0018:ffffc90004dcfbc0 EFLAGS: 00010203
[  388.528311][T14075] RAX: 0000000000000197 RBX: 0000000000000cbd RCX: ffff888030d51e00
[  388.536306][T14075] RDX: 0000000000000000 RSI: 0000000034e060ed RDI: ffff88807b671e40
[  388.544332][T14075] RBP: ffffc90004dcfcd8 R08: ffffffff903d0b77 R09: 1ffffffff207a16e
[  388.552314][T14075] R10: dffffc0000000000 R11: fffffbfff207a16f R12: dffffc0000000000
[  388.560295][T14075] R13: 0000000000000000 R14: ffff88807b671e40 R15: 1ffff920009b9f80
[  388.568709][T14075] FS:  00007feacfa166c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  388.577645][T14075] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  388.584228][T14075] CR2: 0000400000000340 CR3: 0000000029cae000 CR4: 00000000003526f0
[  388.592217][T14075] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  388.600288][T14075] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  388.608358][T14075] Call Trace:
[  388.611641][T14075]  <TASK>
[  388.614664][T14075]  ? __die_body+0x5f/0xb0
[  388.619014][T14075]  ? die_addr+0xb0/0xe0
[  388.623183][T14075]  ? exc_general_protection+0x3dd/0x5d0
[  388.628752][T14075]  ? asm_exc_general_protection+0x26/0x30
[  388.634489][T14075]  ? bpf_map_offload_map_alloc+0x19a/0x910
[  388.640403][T14075]  ? __pfx_bpf_map_offload_map_alloc+0x10/0x10
[  388.646563][T14075]  ? __pfx___might_resched+0x10/0x10
[  388.651871][T14075]  ? __might_fault+0xaa/0x120
[  388.656555][T14075]  ? __pfx_lock_release+0x10/0x10
[  388.661623][T14075]  ? array_map_alloc_check+0x287/0x350
[  388.667095][T14075]  map_create+0x946/0x11c0
[  388.671527][T14075]  __sys_bpf+0x6d3/0x820
[  388.675801][T14075]  ? __pfx___sys_bpf+0x10/0x10
[  388.680613][T14075]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  388.686627][T14075]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  388.692994][T14075]  ? do_syscall_64+0x100/0x230
[  388.697794][T14075]  __x64_sys_bpf+0x7c/0x90
[  388.702237][T14075]  do_syscall_64+0xf3/0x230
[  388.706766][T14075]  ? clear_bhb_loop+0x35/0x90
[  388.711466][T14075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.717399][T14075] RIP: 0033:0x7feaceb8d169
[  388.721825][T14075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.741437][T14075] RSP: 002b:00007feacfa16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  388.749879][T14075] RAX: ffffffffffffffda RBX: 00007feaceda6080 RCX: 00007feaceb8d169
[  388.757856][T14075] RDX: 0000000000000031 RSI: 0000400000000340 RDI: 0000000000000000
[  388.765915][T14075] RBP: 00007feacec0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  388.773893][T14075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  388.781869][T14075] R13: 0000000000000000 R14: 00007feaceda6080 R15: 00007ffe35163eb8
[  388.789954][T14075]  </TASK>
[  388.792973][T14075] Modules linked in:
[  388.797722][T14075] ---[ end trace 0000000000000000 ]---
[  388.815530][T14075] RIP: 0010:bpf_map_offload_map_alloc+0x19a/0x910
[  388.825649][T14075] Code: 48 89 44 24 30 42 80 3c 20 00 74 08 48 89 df e8 ac e6 3b 00 48 89 5c 24 18 4c 89 2b 49 8d 9d bd 0c 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 df 06 00 00 0f b6 1b 31 ff 89 de e8 dd
[  388.850367][T14075] RSP: 0018:ffffc90004dcfbc0 EFLAGS: 00010203
[  388.856623][T14075] RAX: 0000000000000197 RBX: 0000000000000cbd RCX: ffff888030d51e00
[  388.870177][T14075] RDX: 0000000000000000 RSI: 0000000034e060ed RDI: ffff88807b671e40
[  388.880252][T14075] RBP: ffffc90004dcfcd8 R08: ffffffff903d0b77 R09: 1ffffffff207a16e
[  388.888496][T14075] R10: dffffc0000000000 R11: fffffbfff207a16f R12: dffffc0000000000
[  388.896606][T14075] R13: 0000000000000000 R14: ffff88807b671e40 R15: 1ffff920009b9f80
[  388.905389][T14075] FS:  00007feacfa166c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  388.914798][T14075] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  388.923165][T14075] CR2: 00007f9658979178 CR3: 0000000029cae000 CR4: 00000000003526f0
[  388.931379][T14075] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  388.939745][T14075] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  388.947917][T14075] Kernel panic - not syncing: Fatal exception
[  388.954362][T14075] Kernel Offset: disabled
[  388.958724][T14075] Rebooting in 86400 seconds..