last executing test programs:

2.11467713s ago: executing program 0 (id=2697):
r0 = openat$tun(0xffffffffffffff9c, 0xfffffffffffffffc, 0x418d03, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
writev(r0, &(0x7f0000000580)=[{&(0x7f0000000600)="2e9b3d0007e03dd65193dfb6c575963f86d4f0", 0x13}, {0x0}], 0x2)

2.046320453s ago: executing program 0 (id=2698):
sendmsg(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)=[{0x0}, {0x0}, {0x0}, {&(0x7f00000005c0)="1dae3b45ef581b8c00d45b477b3116ac9da710b079759183c3ce27965e6ce72d7e84c29ad0e86ba9884efbc7a2bf18e322d7bf8e5151da62fe", 0x39}], 0x4}, 0x20000000)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x3c8, 0x0, 0x43, 0xa0, 0x238, 0x98, 0x330, 0x178, 0x178, 0x330, 0x178, 0x49, 0x0, {[{{@ip={@empty=0x5107, @dev, 0x0, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00'}, 0x12a, 0x1f0, 0x238, 0x0, {0x0, 0x7a010000}, [@common=@inet=@hashlimit3={{0x158}, {'bond_slave_0\x00', {0x9, 0x0, 0x57, 0x0, 0x0, 0x1, 0xe1, 0x3}}}, @inet=@rpfilter={{0x28}, {0xbb}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00'}}}, {{@uncond, 0x0, 0x98, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x428)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f00000000c0)=0x7, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000240)=[@in={0x2, 0x4e24, @private=0xa010101}], 0x10)
setsockopt(r1, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8)
recvmsg(r1, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r2, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r3, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

1.826649207s ago: executing program 3 (id=2703):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@delnexthop={0x20, 0x69, 0x503, 0x0, 0x0, {}, [{0x8, 0x1, 0x2}]}, 0x20}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x0, 0x70bd2a, 0x2001, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x5, 0xd}}}, 0x24}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2f, 0x0, {0x0, 0x0, 0x0, r1, {0xe, 0x1}, {}, {0x8, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_KEY_ID={0x8, 0x1a, 0x9}, @TCA_FLOWER_KEY_ENC_IPV4_SRC={0x8, 0x1b, @multicast1}]}}]}, 0x44}}, 0x4000)
r3 = socket$netlink(0x10, 0x3, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.783813667s ago: executing program 4 (id=2705):
r0 = accept4$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @remote}, &(0x7f0000000100)=0x10, 0x800)
ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000000140)={{0x2, 0x4e23, @broadcast}, {0x6, @remote}, 0x32, {0x2, 0x4e23, @multicast1}, 'veth1_vlan\x00'})
r1 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r2, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r3 = accept4(r1, 0x0, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f00000000c0)={'syztnl0\x00', 0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$inet(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="4fa7395b02cd85cda4827c01cb56ab4a7301e58f185adff6a8601b6f92ea9dccc5a2bb9acf494ac8a1a28ceb4d9dffc857df7248e2038d44b4634b830046fa03a5ecb1d8d5d974f21c5216dd2f5079a819ec5dc18b6c63d3f41506f88869def08244fae21661dc70a2a3b0e68664c0c429422ef5c61ab4d4f7b4778d6e8545318b86b265f21c0588a6e85eb8585fdce09ad53247d060b4528da04a793ccf6b1d243ce342d9a574e5471007d20676ec4784032c506de66cebf206ce8b108af98903bf3976b5c8f2c122c755d4b9eec2811c7bd8d69a4e40b47a", 0xd9}], 0x1}, 0x0)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000980)={0x6}, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x118, 0x52, 0x1, 0x70bd05, 0x4, {0x2}, [@typed={0x102, 0x1, 0x0, 0x0, @binary="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"}]}, 0x118}}, 0x800)
close(r3)

1.776014191s ago: executing program 3 (id=2706):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="d8000000180081064e81f782db4cb904021d080006007c09e8fe55a10a0015000600142603600e1208000f0000000401a80016002000024006000200035c0461c1d60008000000000000fb8000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f0f49e119c849ea6e5a0fc55e4cde205a214d6102d6dcbf33fb5ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6cc", 0xd8}], 0x1}, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000000)={'nr0\x00', &(0x7f00000000c0)=@ethtool_drvinfo={0x3, "2f6d42183f8565c558f2f33f7f8b83cf3c2247e07d53e6e384438a8663d4608e", "b808272ac834c044d3305e5cb93d0045deee138869bbfbe23cf031a7b548c945", "1af9984826dbe8ab2c95debfb6d6c89d3a7883523f1803200be7ed9565249f61", "e4afaebe618b8d3e90977b7032dccbd035d1385812b88b136b10540b365c5e24", "735474620735a91640b250ba84738277a4237b685dac60df77a4967010d85840", "161db3f68384a02be3c0c0f1", 0xffff, 0x4, 0x7, 0x1758a1de, 0x1}})
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r0) (async)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=ANY=[], 0x28}}, 0x4090)

1.613531875s ago: executing program 2 (id=2709):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x38, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x60}, 0x1, 0x0, 0x0, 0x40}, 0x0) (async)
r1 = socket$netlink(0x10, 0x3, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800"], 0x48) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10) (async)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="d8000000180081064e81f782db4cb904021d080006007c09e8fe55a10a0015000600142603600e1208000f0000000401a80016002000024006000200035c0461c1d60008000000000000fb8000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f0f49e119c849ea6e5a0fc55e4cde205a214d6102d6dcbf33fb5ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6cc", 0xd8}], 0x1}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@newlink={0x3c, 0x10, 0x401, 0x70bd2a, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_IFLAGS={0x6, 0x2, 0xc9f2}]}}}]}, 0x3c}}, 0x0) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x1c, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc) (async)
close(r3) (async)
write$tun(r3, &(0x7f0000000500)=ANY=[@ANYBLOB="000088090000f8"], 0x1ef) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x7, 0x11, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x100}, [@alu={0x4, 0x1, 0x0, 0x3, 0xa, 0x80, 0x4}, @alu={0x3, 0x1, 0x7, 0x4, 0x9, 0xc, 0x8}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, @alu={0x4, 0x0, 0x0, 0xa, 0x3, 0x80}, @map_idx={0x18, 0x3, 0x5, 0x0, 0xd}, @jmp={0x5, 0x0, 0x4, 0x9, 0xb, 0x6, 0x8}, @tail_call={{0x18, 0x2, 0x1, 0x0, 0x1}}]}, &(0x7f0000000040)='syzkaller\x00', 0x8, 0x86, &(0x7f00000001c0)=""/134, 0x41000, 0x50, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x3, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000280)=[{0x3, 0x1, 0x5, 0xa}], 0x10, 0x3, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r3}, &(0x7f0000000000), &(0x7f0000000300)=r5}, 0x20)

1.596575285s ago: executing program 3 (id=2710):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
socket$inet6_udplite(0xa, 0x2, 0x88)
r0 = socket$inet(0xa, 0x801, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=r2, @ANYBLOB="01000000000000000000010000000c000500ff000000000000000c0002000000020000000000040007800c000800000000000700000008000a00000000004400078008000100", @ANYRES32, @ANYBLOB="38000100", @ANYRES32=r3, @ANYBLOB="64800400", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r0], 0x90}}, 0x0)

1.486032663s ago: executing program 2 (id=2712):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='veno\x00', 0x5)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)="316f825a3d29f96a392ea917017b4cd300000000bee700d6dd1fb41a20baf7f7343067fd40cdd4f16742e94b000000005d0200b7f3028100ae8180db94b9de7456ae62b0e61861f615947de10ae3c4fa199fb5fe7766a0842912179154a96fa88e161d861e77a486e10d1d1d0b90c8997e6917226fe4bb5d77e85706336ba6369a4c33ac53b45d46a92db9fda99af4429dc23db6a1706328df4e75eb173a81bd4af8b89d186ac9b2382a75ac68920ca3d542aece1ba7", 0xb6}, {&(0x7f0000000f00)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df28a3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0", 0x4a}], 0x2}}], 0x1, 0x0)
sendmmsg(r0, 0x0, 0x0, 0x4000000)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

1.338805387s ago: executing program 3 (id=2714):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1.318472125s ago: executing program 3 (id=2715):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='veno\x00', 0x5)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)="316f825a3d29f96a392ea917017b4cd300000000bee700d6dd1fb41a20baf7f7343067fd40cdd4f16742e94b000000005d0200b7f3028100ae8180db94b9de7456ae62b0e61861f615947de10ae3c4fa199fb5fe7766a0842912179154a96fa88e161d861e77a486e10d1d1d0b90c8997e6917226fe4bb5d77e85706336ba6369a4c33ac53b45d46a92db9fda99af4429dc23db6a1706328df4e75eb173a81bd4af8b89d186ac9b2382a75ac68920ca3d542aece1ba7920a8f39b270458224e74a22fa1db2f647b55a4f113a476c5902", 0xd0}, {&(0x7f0000000f00)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df28a3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030e", 0x60}, {&(0x7f0000000800)="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", 0x1bb}], 0x3}}], 0x1, 0x0)
sendmmsg(r0, &(0x7f00000005c0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000340)="06afe38afc065ffcaa57d7fd5701c2878aa4f276c0b9ecc68e1cc435db526edc4d130a5d4d7ce3ac6464151cb0dd3049b59c7499f60d601b7dfc78a1dea3d91501ae7d7ee3d124d8131ce2f9ff4995f9e4159f8636d58647c745", 0x5a}, {0x0}], 0x2}}], 0x1, 0x4000000)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

1.13002305s ago: executing program 0 (id=2717):
r0 = socket$kcm(0x10, 0x2, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000080)="390000001300090468fe0700000000000000ff3f08000000480100100000000019002b000a0001000500000000000072686208", 0x33}], 0x1)
r1 = socket(0x2a, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f00000003c0)={'syztnl2\x00', &(0x7f0000000440)={'syztnl0\x00', <r2=>0x0, 0x1, 0x8000, 0x9, 0x5, {{0xe, 0x4, 0x0, 0x35, 0x38, 0x68, 0x0, 0x7, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x1a}, @rand_addr=0x64010100, {[@end, @ra={0x94, 0x4, 0x1}, @rr={0x7, 0x7, 0x11, [@multicast1]}, @timestamp_addr={0x44, 0x14, 0x35, 0x1, 0x8, [{@rand_addr=0x64010101, 0x80000001}, {@broadcast, 0x200}]}, @noop, @noop]}}}}})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x200, 0x0, 0x20000, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xb}}}, 0x24}}, 0x0)
socket$kcm(0x29, 0x2, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0xf0b, 0x4, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xd}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000540)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0xb, 0x6}, {}, {0x5}}}, 0x24}}, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000001740)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, <r6=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1c, 0x3, &(0x7f0000000640)=@framed={{0x18, 0x2, 0x0, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x3b}}, &(0x7f00000000c0)='GPL\x00', 0x5, 0x1000, &(0x7f0000001c80)=""/4096, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r6, r5, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x1f, 0x15, &(0x7f00000008c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x200}, [@map_idx_val={0x18, 0xa, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4}, @initr0={0x18, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0xfffffffd}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x5}, @initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, @func, @exit, @generic={0x8e, 0x2, 0x4, 0x5, 0xd0}, @call={0x85, 0x0, 0x0, 0xc0}, @generic={0x8, 0x4, 0x9, 0x3, 0x10}, @tail_call]}, &(0x7f0000000980)='syzkaller\x00', 0x1655f231, 0x0, 0x0, 0x41000, 0x1, '\x00', r2, @fallback=0x2b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000009c0)={0x2, 0x2, 0x0, 0x80000001}, 0x10, 0x0, 0xffffffffffffffff, 0x6, &(0x7f0000000a00)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000a40)=[{0x5, 0x2, 0x7}, {0x2, 0x5, 0xd, 0x1}, {0x4, 0x2, 0x3}, {0x0, 0x5, 0xf, 0xa}, {0x0, 0x4, 0x10, 0xa}, {0x4, 0x2, 0x9}], 0x10, 0x8, @void, @value}, 0x94)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000b80)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000c00)={0xffffffffffffffff, 0x8000, 0x8}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x12, 0xb, &(0x7f0000000680)=@raw=[@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0xfff}], &(0x7f0000000700)='syzkaller\x00', 0x8, 0x4e, &(0x7f0000000740)=""/78, 0x40f00, 0x26, '\x00', 0x0, @cgroup_sock_addr=0x32, 0xffffffffffffffff, 0x8, &(0x7f0000000840)={0x9, 0x2}, 0x8, 0x10, &(0x7f0000000880)={0x2, 0x10, 0x5, 0x2}, 0x10, r6, r7, 0x5, &(0x7f0000000c40)=[r8, r9], &(0x7f0000000c80)=[{0x5, 0x2, 0x0, 0x5}, {0x2, 0x3, 0x0, 0x2}, {0x0, 0x3, 0x4, 0x9}, {0x3, 0x1, 0xd, 0xb}, {0x4, 0x1, 0x9, 0x4b784d441a396932}], 0x10, 0x0, @void, @value}, 0x94)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r10, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90324fc602f00001550000100feff000037153e370248018080351700d1bd", 0x33fe0}], 0x1}, 0x0)
r11 = socket$inet6(0xa, 0x2, 0x3a)
connect$inet6(r11, &(0x7f0000000640)={0xa, 0x0, 0x80, @local, 0x5597bac7}, 0x1c)
r12 = socket(0x10, 0x3, 0x0)
r13 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r13, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="200000006a008313"], 0x20}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r14=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000000)={'lo\x00', <r15=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="2c000600e58313bb5a0127bf4c2b5ae9bb5fc34d649b9c22a7223d912284eae3afd76f9184c4b830051b0705403243d4dbc55ab07c3ae35e25d5a33083d1fb62c3e2345595a597ab936a5b53e4a84a141e3f728dbc106e48ce3e5fbefeab668b644235a0e002a62ffdb8deb98ca3e1c4cf2bece6479d55fcd49831469883b20ddefe4913fe3a3410571946ce8bf6192251921ab01cb2f5e94ea75b1e4d3e047ca5da10757fb433fdc0636fbd9d61df0c4a79fbee313bb5e578b93d73322981557171c16a5a54f65809f300b68b8da94209644f7fba5c81c65a7a587e2c66752e83", @ANYRES16=0x0, @ANYBLOB="020025bd7000fedbdf25660000000800b700950000000800b700530000000400b8000400b800"], 0x2c}, 0x1, 0x0, 0x0, 0x2404881c}, 0x4050)
sendmsg$nl_route_sched(r12, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newqdisc={0x5c, 0x24, 0xd0f, 0x70bd27, 0x0, {0x60, 0x0, 0x0, r15, {}, {0xffff, 0xffff}, {0x0, 0xe}}, [@qdisc_kind_options=@q_red={{0x8}, {0x30, 0x2, [@TCA_RED_MARK_BLOCK={0x5, 0x6, 0x9}, @TCA_RED_MAX_P={0x8, 0x3, 0x398}, @TCA_RED_PARMS={0x14, 0x1, {0x3, 0x1, 0xd, 0x8, 0x18, 0x14, 0x8}}, @TCA_RED_MARK_BLOCK={0x0, 0x6, 0x2}]}}]}, 0x5c}}, 0x0)
ioctl$sock_inet6_SIOCADDRT(r11, 0x890b, &(0x7f00000000c0)={@private2, @empty, @initdev={0xfe, 0x88, '\x00', 0x4, 0x0}, 0x8, 0x7, 0x3, 0x500, 0x5, 0x4400200, r15})

1.007233216s ago: executing program 0 (id=2719):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x8, &(0x7f0000000000)="a8fa46", 0x3)
getsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f0000002540)=""/4086, &(0x7f0000000180)=0xff6)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r1, &(0x7f0000000040)={0xa, 0x0, 0x80000, @empty}, 0x20)
syz_emit_ethernet(0x46, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd60f91e2e00107300fc040000000000000000000000000000ff02000000000000000000000000000100000000ff"], 0x0)
read(r1, &(0x7f0000001240)=""/4096, 0x1000)

953.675917ms ago: executing program 1 (id=2720):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="1502ffffffa100001c00128009000100766c616e000000000c000280060001000000040008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r2], 0x4c}, 0x1, 0xba01}, 0x0)

874.633295ms ago: executing program 1 (id=2721):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000800000085000000060000009500000000000000d93ef440268ab6eac279a944a2240e30cdaa33ae5727e118b0a3cb1fbdd313f48b00f3cb06b22af85311e1f9fa7c0cd19be4300c6bdafaf21b0b1cc59bc57d04151ce05fd307b98fe7edea520cb0dcece5244b55f08841472d0c94e98bc9c0120b55ca0f8450eb5698b8bee2076bcd0f3eba3989fc7d94545a02fb1a08223eb6a2cd46b44cdd1121da98fa1b7b6277e85c824a8951fb01cc8b6fee8893d7f1f8d809a5d50190078a3ba638b110866df8906cc3e974"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
accept4(r0, &(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r4=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, &(0x7f0000000000)=0x80, 0x80000)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4e21, @private=0xa010102}]}, &(0x7f00000000c0)=0x10) (async)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r7 = socket$inet(0x2, 0x80001, 0x84) (async)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r8, 0x0, 0x42, &(0x7f0000000080)={'ipvs\x00'}, &(0x7f00000000c0)=0x1e) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r9=>0x0}, &(0x7f0000000300)=0x8)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000580)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_START_NAN(r4, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x3c, r10, 0x8, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x10}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x8}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x6}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x7}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000091}, 0x40000)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r6, 0x84, 0x85, &(0x7f0000000080)={r9}, &(0x7f00000000c0)=0x3930) (async)
sendmsg$nl_route(r4, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)=@ipmr_getroute={0x1c, 0x1a, 0x4, 0x70bd28, 0x25dfdbfb, {0x80, 0x14, 0x0, 0x9, 0xfc, 0x2, 0xff, 0x2, 0x400}, ["", ""]}, 0x1c}}, 0x11) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r3, 0x27, 0x37, 0x0, &(0x7f0000000300)="f8ad48cc02cb28dcc8007f5b86dd23a8f7be83290000001418db421478eb9f05a7d0cad9efb035a4561982a3644246972bafdbf90ed48d", 0x0, 0x7, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
r12 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, &(0x7f0000000000)=@framed={{0x62, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x36}}, &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
getsockopt$inet6_tcp_int(r12, 0x6, 0x6, 0x0, &(0x7f0000000040))
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000200)={'wlan0\x00', <r13=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="0104c982b276d508a50000e309", @ANYRES16=r1, @ANYBLOB="cf0400000000000000001300000008000300", @ANYRES32=r13, @ANYBLOB="040013000600b500cf0700000a00060008021100000100000500c200550000000800a40002000000"], 0x44}}, 0x0)

874.203861ms ago: executing program 4 (id=2722):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540001c00001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f3000000000080001400000000114000000020a090100000000000000000000000014000000110001"], 0xd4}}, 0x0)

860.21228ms ago: executing program 1 (id=2723):
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(0xffffffffffffffff, 0x800448d2, &(0x7f0000000140)={0x2, &(0x7f0000001980)=[{}, {}]})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
r0 = socket$netlink(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='memory.events.local\x00', 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000380)={0x1b, 0x0, 0x0, 0x81, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x3, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0xffffffffffffffff, 0x2, 0x18}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x5, 0xa, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x10, 0x3, 'bitmap:port\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_DATA={0x4}]}, 0x4c}}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0xffffff51, 0x0, 0x1, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x2, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="b70000008113b0ffbfa30000000000000703000000feffff720af0fff8ffffff71a4f0ff0000000071103600000000001d300500003f00004704000001ed00000f030000000000001d44020000000000620a00fe040400007203000000000000e500f7ff000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a8641aa05a1336b3b4c4becea710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fe51bef7af9aa0d7d600c095199fe3380d28e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51bf900000000000000d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343cccc953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93020000000000000080e69db384ac7eeedcf2ba3a9508f9d6aba582a896a9f1e096df6ecea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00e10000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d490cba8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e1461173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b583cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f006694d461b76a58d88cf0f520310a1e80dc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6032399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c00000000000000f59dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ed1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef67cf0216e2d81e6127bd9d7fab28800eaab2355992f8ce4cd38add4b272c0bee4076ca4847ffa691cf78fb7ec212bad3bef29f577ea7159b7f3025b3d977ff7c9102"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000300)={{}, &(0x7f0000000080), &(0x7f0000000140)='%pS    \x00'}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000540)={'batadv_slave_1\x00'})
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x2, 0xc, &(0x7f0000000140)=ANY=[@ANYRESHEX=0x0], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x64, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r2, &(0x7f0000002fc0)=[{{&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000140)=[{&(0x7f00000011c0)="e6", 0x1}], 0x1, &(0x7f0000000680)=ANY=[@ANYBLOB], 0x10}}], 0x1, 0x0)
bind$llc(0xffffffffffffffff, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r3, 0x0, 0x0)
r4 = socket(0x1, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r5, &(0x7f0000000180), &(0x7f00000000c0)=@tcp6=r4}, 0x20)
bind$unix(r4, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000001680)=[{{&(0x7f0000000380)=@file={0x1, './file0\x00'}, 0x6e, 0x0}}], 0x1, 0x0)
recvmmsg(r4, &(0x7f0000000d40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000500)=""/65, 0x41}], 0x1}}], 0x2, 0x0, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r3, 0x29, 0x3b, &(0x7f0000000300)=ANY=[@ANYBLOB="0017"], 0xc0)

798.158079ms ago: executing program 1 (id=2724):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x9, 0x1}}}}]}, 0x44}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), r5)
getsockname$packet(r4, &(0x7f0000000200)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000080)={@loopback, 0x45, 0x2, 0x0, 0xb, 0xd, 0x4}, 0x20)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f000000a280)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r7, &(0x7f00000002c0), 0x40000000000009f, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newqdisc={0x24, 0x29, 0xa19702d202eff97b, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000840)=ANY=[@ANYBLOB="600000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="c10e040000000000380012800b000100697036677265"], 0x60}}, 0x0)
getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, 0xfffffffffffffffc, &(0x7f0000000140)=0x4)

750.758127ms ago: executing program 4 (id=2725):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
socket$inet6_udplite(0xa, 0x2, 0x88)
r0 = socket$inet(0xa, 0x801, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=r2, @ANYBLOB="01000000000000000000010000000c000500ff000000000000000c0002000000020000000000040007800c000800000000000800000008000a00000000004400078008000100", @ANYRES32, @ANYBLOB="38000100", @ANYRES32=r3, @ANYBLOB="64800400", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r0], 0x90}}, 0x0)

698.476009ms ago: executing program 1 (id=2726):
r0 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r0, &(0x7f0000000340)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24)
bind$rxrpc(r0, &(0x7f0000001280)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24)
listen(r0, 0x1)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000000)={0x400000000000000, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x0, 0xa, 0x0, 0x0, 0x20000, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @loopback}}, @sadb_sa={0x2, 0x1, 0x0, 0xfd, 0x0, 0x5, 0x4, 0x4bfffffe}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e21, @multicast2}}]}, 0x50}}, 0x0)
r2 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000140)={0x0, r0}, 0x8)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1e00000005000000000800000600000010000100", @ANYRES32, @ANYBLOB='\x00\b\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0400000004000000010000000300"/24, @ANYRES32=r2, @ANYBLOB="40e02a8777cfdaa068a0bfab4032c518549e277e5b06b195ffb348"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x75, r3, 0x700}, 0x38)
r4 = socket$inet(0xa, 0x801, 0x84)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000000c0)="5c00000015006b05c84e21000ab16d6e230675f8020002003600020061bc24eeb556b6059367b098fa51f60a64c9f4bcc19ddcdbd0b2409fcd0d33d28a08000000c486a6d0bdd70000b6c0504bb9189d9193e9bd0100000001000000", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
listen(r4, 0x8)
r6 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r4, &(0x7f0000000100)={0x10})
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r8, 0x0)
setsockopt$inet_tcp_int(r8, 0x6, 0x17, &(0x7f0000000180)=0x1000000, 0x4)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r9, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r9, &(0x7f0000000440)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r9, &(0x7f0000007fc0), 0x800001d, 0x0)
recvmmsg(r9, &(0x7f00000002c0)=[{{0x0, 0x0, 0x0}, 0x401}], 0x1, 0x32103, 0x0)
r10 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r10, &(0x7f0000000600)="1b1b95", 0x3, 0x48010, &(0x7f00000006c0)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$netlink(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)=ANY=[@ANYBLOB="2c0000002c0001000000000000000000040000800800188008ac0f"], 0x2c}], 0x1}, 0x0)

595.460275ms ago: executing program 2 (id=2727):
r0 = socket(0xa, 0x40000000002, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x3c0)

494.660043ms ago: executing program 2 (id=2728):
sendmsg(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)=[{0x0}, {0x0}, {0x0}, {&(0x7f00000005c0)="1dae3b45ef581b8c00d45b477b3116ac9da710b079759183c3ce27965e6ce72d7e84c29ad0e86ba9884efbc7a2bf18e322d7bf8e5151da62fe", 0x39}], 0x4}, 0x20000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="2000000043000900fffffffffddbdf25010000000c00028001"], 0x20}}, 0x44850)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x3c8, 0x0, 0x43, 0xa0, 0x238, 0x98, 0x330, 0x178, 0x178, 0x330, 0x178, 0x49, 0x0, {[{{@ip={@empty=0x5107, @dev, 0x0, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00'}, 0x12a, 0x1f0, 0x238, 0x0, {0x0, 0x7a010000}, [@common=@inet=@hashlimit3={{0x158}, {'bond_slave_0\x00', {0x9, 0x0, 0x57, 0x0, 0x0, 0x1, 0xe1, 0x3}}}, @inet=@rpfilter={{0x28}, {0xbb}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00'}}}, {{@uncond, 0x0, 0x98, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x428)
r1 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x4e, &(0x7f0000000000)=0x1, 0x4)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x10, @private1, 0x6}, 0x1c)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000050a03000000000000000000020000000c00024000000000000000010900010073797a30000000002c000000030a05000000000000000000020000000900010073797a30000000000c0002400000000000000001"], 0x80}}, 0x0)
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

493.859632ms ago: executing program 4 (id=2729):
syz_emit_ethernet(0xb2, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd60cbfcff007c3a00fc020000000000000000000000000000fc897210"], 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4620, 0x20, @empty}, 0x1c) (async)
recvmmsg(r0, &(0x7f0000000040), 0x40000000000029d, 0x832b, 0x0) (async)
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4) (async)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x4098884, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x401, 0x70bd2c, 0xfffffffe, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_NF_CALL_IPTABLES={0x5, 0x24, 0x1}]}}}]}, 0x3c}}, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000200000/0x4000)=nil, 0x4000, 0x4, 0x200000006c832, 0xffffffffffffffff, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) (async)
sendmsg$rds(r2, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0) (async)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r6=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000280)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000001c00000014000180080003000100000008000100", @ANYRES32=r6], 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_PEER_REMOVE(r7, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0100000000000000000014000000100007"], 0x70}}, 0x0)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000300)={0x548, r8, 0x10, 0x70bd2c, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8}]}, @TIPC_NLA_BEARER={0x1ac, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x601dae16}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}]}, @TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}]}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'eth', 0x3a, 'veth1_to_bond\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1}, @TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @multicast1}}, {0x14, 0x2, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x100, @empty, 0xffffff00}}, {0x14, 0x2, @in={0x2, 0x4e20, @multicast1}}}}, @TIPC_NLA_BEARER_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x14}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xa}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}]}]}, @TIPC_NLA_SOCK={0x58, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x40}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7145}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x9}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}]}, @TIPC_NLA_LINK={0x40, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe0b}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x526a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x600000}]}]}, @TIPC_NLA_LINK={0xe0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x76c}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x401}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9c1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x4}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xcb}]}]}, @TIPC_NLA_NODE={0x158, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x29, 0x3, "0b751a72d5fbf4f033526400a296214bfd264dd1136faf9f5b3740a1c3049c2388b80d2f86"}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "83c816d9928f076a980e193b3dcef84067f4c1300007255f73c59e99a447bbffcb49"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_ID={0xba, 0x3, "40bbda5cb0531baffa20fbcc1247dcd950d7d12b6dab760eb7cc9ee934e4eafefe0383d21fb7026a217c2355009fef9f52a55c87760fc88cd19bd1fb2a0ad901024efb4aadac833bfe389ace1d466bbf399d926a704e1d587d71877e88da485673d9ee62a33c448e75d251783c4b0568e620c1e188cfb3bb3ee72fd73dfdbc41c204c13f1b5f7ecbc05b5fe8f86a1b14e58be4962430d7c860e2110c7e19f92f35e49516d1989653c81686887d705fdf548c10584f7b"}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x1}]}, @TIPC_NLA_NODE={0xac, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x2}, @TIPC_NLA_NODE_ID={0x8c, 0x3, "545f9388c88f24dc45af3c7712d3ada6c71b95ea1f37de82bc82c0c4e51fc59f95f301cd6d26ab3c900aae7026e7bfb878b01bae860097b1d9d973b3d402d153ba84c8a9c61f051fac505cfbc15da91121f2a10661cb692477da0b6317e885b9448ca7c6506ac18dc17bc83baa7233c3e47e1ffff09b5573bb7a736eed13421b6a34b6e7eaefbde1"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xffffffff}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x15a}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x548}, 0x1, 0x0, 0x0, 0x40040}, 0x4040000)

436.726041ms ago: executing program 2 (id=2730):
sendmsg(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)=[{0x0}, {0x0}, {0x0}, {&(0x7f00000005c0)="1dae3b45ef581b8c00d45b477b3116ac9da710b079759183c3ce27965e6ce72d7e84c29ad0e86ba9884efbc7a2bf18e322d7bf8e5151da62fe", 0x39}], 0x4}, 0x20000000)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x3c8, 0x0, 0x43, 0xa0, 0x238, 0x98, 0x330, 0x178, 0x178, 0x330, 0x178, 0x49, 0x0, {[{{@ip={@empty=0x5107, @dev, 0x0, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00'}, 0x12a, 0x1f0, 0x238, 0x0, {0x0, 0x7a010000}, [@common=@inet=@hashlimit3={{0x158}, {'bond_slave_0\x00', {0x9, 0x0, 0x57, 0x0, 0x0, 0x1, 0xe1, 0x3}}}, @inet=@rpfilter={{0x28}, {0xbb}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00'}}}, {{@uncond, 0x0, 0x98, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x428)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000000061114c000000000085000000540000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x2, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x2}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
recvfrom(r0, &(0x7f0000000440)=""/67, 0x43, 0x2, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

411.1319ms ago: executing program 3 (id=2731):
socket$kcm(0x10, 0x2, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.idle_time\x00', 0x0, 0x0)
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000040), &(0x7f00000001c0)=0x4)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x24, r3, 0x1, 0x0, 0x0, {}, [@GTPA_LINK={0x8}, @GTPA_VERSION={0x8, 0x2, 0x2}]}, 0x24}}, 0x0)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000240), r2)
sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x60, r4, 0x8, 0x70bd2d, 0x25dfdbff, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @remote}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5}, @L2TP_ATTR_UDP_ZERO_CSUM6_TX={0x5}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @mcast1}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'lo\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x1}, 0x48000)
bind$inet(r1, &(0x7f0000000380)={0x2, 0x4e22, @multicast2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x16, 0xe, &(0x7f0000001480)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000001e6400000000000045040400010000001704000001000a00b7040000000100006a0af2fe0000000085000000b2000000b70000000000000095000000000000009e17f199a68b06d83298a8cdc21ce784909b849d5550ad857d0454d8877a6db61d69f2ffcaa10350e11cb97c8adf1bc9a0c4eeceb9971e43405d621ffbc9ce000000d8ca56b50d0c010d631f6dde53a9a53608c10556e5734eb84049761451ce540c772e2d9f8004e26f7fcc059c062234d55906000000000f0000fd9ac3d09e29a9d542ca9d85a5c9c88474895d679838def0a83a733dc6a39b63a5ed69d32394c53361d7e43c5cbd8000000000000080231c61ccd106cb937b450f859ce8122a79c3e40000b59b0fc46d6cec3c0802882add4e1179bd4a44f231b6d753a7be428ba953df4aece69311687f4122073a236c3a32efa04137d4524847d2638da3261c8162bb7c7824be6195a66d2e17e122040e1100000000928612a29fc691e4f1f7bd053abb885f39381f1759410b1059f05684261f332d606834669b49ec99320ca7712d7e79bd5bf5ed818ecc7640917f6a559a47db608fcf9f6c131b84e41c354c66838f72b9e12d36e996f316f0812ca83efb30c7f6c6d57c4a64590401eec22523dd712c680013e87f649a1ede7142ca9d5d8a8c9f9b440fe4331ad5532c74d9a31a5d737537f7a2caa30581253d14dd3e92af7dc836686365ae01bdec561c0402b67801267a8df97d2f85426a5963d4fa3e26cc05972c162f223f000000d999e80de00fcbcc02d0aed7bb8f7ba337d59c14f39dcd4aad4139ef6425a9367f1bd1467fc6b95a4df7669839771ce9ccd5788029901e5a79d8b9990ace8f74087f25ad50c4608800"/686], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x29, 0x10, &(0x7f0000000340), 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
setsockopt$sock_int(r1, 0x1, 0x800000000f, &(0x7f0000000080)=0x7, 0x4)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r5, 0x1, 0xf, &(0x7f0000000000)=0x2, 0x4)
setsockopt(r5, 0x8, 0x1000, &(0x7f0000000100)="14522699efa160317bf8f49221a9600fc01ef1903c325533", 0x18)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYRESHEX=r6], 0xac}}, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'blake2b-384-generic\x00'}, 0x59)
r8 = accept4(r7, 0x0, 0x0, 0x0)
recvmmsg(r8, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)

355.92347ms ago: executing program 4 (id=2732):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000100)={&(0x7f0000000300)={0x2, 0x4e21, @dev}, 0x10, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000000000001100000007000000440c"], 0x20}, 0x4000000)

354.972844ms ago: executing program 1 (id=2733):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x400000000000000, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={0x2, 0xc, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYRESDEC=r0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000200", @ANYRES8=0x0], 0x48)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$can_bcm(0x1d, 0x2, 0x2)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
ppoll(&(0x7f0000000500)=[{r3}], 0x1, 0x0, 0x0, 0x0)
write$cgroup_subtree(r1, &(0x7f00000000c0)={[{0x2d, 'net'}]}, 0x5)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r1, 0x0)
ioctl$sock_rose_SIOCDELRT(r1, 0x890c, &(0x7f0000000040)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x10, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={'nr', 0x0}, 0x1, [@bcast, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @null, @default, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]})
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r5, &(0x7f0000001140)=[{{&(0x7f0000000300)={0xa, 0x4e21, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x6}, 0x1c, &(0x7f0000000cc0)=[{&(0x7f0000000540)="4f86e98b66", 0x5}], 0x1}}, {{&(0x7f0000000880)={0xa, 0x4e24, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}, 0x80000000}, 0x1c, &(0x7f0000001000)=[{&(0x7f0000000d40)="06579fcb", 0x4}], 0x1, &(0x7f00000018c0)=ANY=[@ANYBLOB="1400000000000000290000003e000000390d000000000000480000000000000029000000390000003a0601010000000020010000000000000000000000000000fe8000000000000000000000000000aafc0200000000000000000000000000018010"], 0x10e0}}], 0x2, 0x0)
shutdown(r5, 0x1)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r5, 0x84, 0x84, &(0x7f0000000240)={0x0, @in6={{0x2, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, &(0x7f0000000040)=0x90)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000020000000100000000000001e5ff0000400700000000000001000084060000000000000001"], 0x0, 0x42, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bind$rose(r6, &(0x7f0000000140)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x2, 0x0}, @default, 0x0, [@bcast, @bcast, @null={0x40, 0x40, 0x1c}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x40)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3, 0x8032, 0xffffffffffffffff, 0x0)

198.4568ms ago: executing program 4 (id=2734):
r0 = accept4$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @remote}, &(0x7f0000000100)=0x10, 0x800)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1f, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000020b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a40)={r2, 0x206f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000000140)={{0x2, 0x4e23, @broadcast}, {0x6, @remote}, 0x32, {0x2, 0x4e23, @multicast1}, 'veth1_vlan\x00'})
r4 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r4, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000000), r5)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_GET(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={0x14, r7, 0x32b, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x8000)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r8, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r9 = syz_genetlink_get_family_id$fou(&(0x7f0000000240), r5)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'batadv_slave_0\x00', <r10=>0x0})
sendmsg$FOU_CMD_ADD(r3, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000300)={&(0x7f0000000800)=ANY=[@ANYBLOB="90000000", @ANYRES16=r9, @ANYBLOB="000129bd7000fddbdf2501000000140009000000000000000000000000000000000006000a004e24000004000500140009000000000000000000000000000000000114000700fc00000000000000000000000000000006000a004e24000008000b00", @ANYRES32=r10, @ANYBLOB="050004000000000014000900ff02000000000000000000009b8b85b9cd72000000010500017bf4c35fa34f9b9eaefa29f5db38d249361c28d32e0171b8e1079cc3664d533194f8bb3b96b2747939a4230512d0061265fd8b7afdcc07e8a1f4a177f71c7382fd686bd5e781c6fe4f852d433585b8c1c13c4e9a3be4ac0c7cb8656107d3ef05876f06aa6af2bdfb05f111044c6bd85f09659eece28fbee4a271"], 0x90}, 0x1, 0x0, 0x0, 0x800}, 0x2000c054)
r11 = accept4(r4, 0x0, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r11, 0x89f3, &(0x7f00000000c0)={'syztnl0\x00', 0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000ac0)=@mangle={'mangle\x00', 0x1f, 0x6, 0x548, 0x1e8, 0x478, 0xf0, 0xf0, 0x1e8, 0x478, 0x478, 0x478, 0x478, 0x478, 0x6, &(0x7f0000000640), {[{{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@mcast1, @ipv6=@empty, 0x2, 0x3b, 0x8}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x7}}]}, @HL={0x28, 'HL\x00', 0x0, {0x0, 0x9}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @HL={0x28, 'HL\x00', 0x0, {0x1}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@loopback, @ipv6=@remote, 0x3d, 0x34, 0x4}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @inet=@TOS={0x28, 'TOS\x00', 0x0, {0x1, 0x8}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5a8)
socket$nl_route(0x10, 0x3, 0x0)
r12 = socket$inet_dccp(0x2, 0x6, 0x0)
ioctl$sock_inet_SIOCSARP(r12, 0x8955, &(0x7f0000000280)={{0x2, 0x4e22, @multicast1}, {0x300, @broadcast}, 0x76, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2c}}, 'veth1_to_team\x00'})
sendmsg$inet(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="4fa7395b02cd85cda4827c01cb56ab4a7301e58f185adff6a8601b6f92ea9dccc5a2bb9acf494ac8a1a28ceb4d9dffc857df7248e2038d44b4634b830046fa03a5ecb1d8d5d974f21c5216dd2f5079a819ec5dc18b6c63d3f41506f88869def08244fae21661dc70a2a3b0e68664c0c429422ef5c61ab4d4f7b4778d6e8545318b86b265f21c0588a6e85eb8585fdce09ad53247d060b4528da04a793ccf6b1d243ce342d9a574e5471007d20676ec4784032c506de66cebf206ce8b108af98903bf3976b5c8f2c122c755d4b9eec2811c7bd8d69a4e40b47a", 0xd9}], 0x1}, 0x0)
close(r11)

198.059849ms ago: executing program 2 (id=2735):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket(0x80000000000000a, 0x2, 0x0)
mmap(&(0x7f0000abb000/0x1000)=nil, 0x1000, 0x0, 0x102000200032, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x9}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
setsockopt$sock_timeval(r3, 0x1, 0xd, &(0x7f0000abaff9)={0x0, 0xea60}, 0x10)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2c, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0xfffffffd, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2c, &(0x7f0000000480)={0x0, {{0xa, 0x4e21, 0x0, @mcast1={0xff, 0x7}, 0x80000080}}, {{0xa, 0x0, 0xffffffff, @mcast1, 0x8}}}, 0x108)
recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r5=>0x0})
bind$packet(r4, &(0x7f0000000300)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @remote}, 0x14)
r6 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r6, &(0x7f0000000000)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14)
syz_emit_ethernet(0x22, &(0x7f0000000340)=ANY=[@ANYBLOB="bbbbbbbbbbbb0180c200000008004505001400640000000c900000ffffffff0000001a69f5ec8ab946aecb6bc6661b9e8547bd5d0e95d3965d7f2530b72fe405b34c9529ea829f753bc21eed444352ed9c11f1c7cd95f312a2a43d7791414b016a02"], 0x0)
ppoll(&(0x7f0000000100)=[{r1, 0x275}], 0x1, 0x0, 0x0, 0x0)

99.687109ms ago: executing program 0 (id=2736):
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(0xffffffffffffffff, 0x800448d2, &(0x7f0000000140)={0x2, &(0x7f0000001980)=[{}, {}]})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
r0 = socket$netlink(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='memory.events.local\x00', 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000380)={0x1b, 0x0, 0x0, 0x81, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x3, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0xffffffffffffffff, 0x2, 0x18}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x5, 0xa, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x10, 0x3, 'bitmap:port\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_DATA={0x4}]}, 0x4c}}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0xffffff51, 0x0, 0x1, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x2, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000300)={{}, &(0x7f0000000080), &(0x7f0000000140)='%pS    \x00'}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000540)={'batadv_slave_1\x00'})
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x2, 0xc, &(0x7f0000000140)=ANY=[@ANYRESHEX=0x0], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x64, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r2, &(0x7f0000002fc0)=[{{&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000140)=[{&(0x7f00000011c0)="e6", 0x1}], 0x1, &(0x7f0000000680)=ANY=[@ANYBLOB], 0x10}}], 0x1, 0x0)
bind$llc(0xffffffffffffffff, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r3, 0x0, 0x0)
r4 = socket(0x1, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r5, &(0x7f0000000180), &(0x7f00000000c0)=@tcp6=r4}, 0x20)
bind$unix(r4, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000001680)=[{{&(0x7f0000000380)=@file={0x1, './file0\x00'}, 0x6e, 0x0}}], 0x1, 0x0)
recvmmsg(r4, &(0x7f0000000d40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000500)=""/65, 0x41}], 0x1}}], 0x2, 0x0, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r3, 0x29, 0x3b, &(0x7f0000000300)=ANY=[@ANYBLOB="0017"], 0xc0)

0s ago: executing program 0 (id=2737):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='veno\x00', 0x5)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)="316f825a3d29f96a392ea917017b4cd300000000bee700d6dd1fb41a20baf7f7343067fd40cdd4f16742e94b000000005d0200b7f3028100ae8180db94b9de7456ae62b0e61861f615947de10ae3c4fa199fb5fe7766a0842912179154a96fa88e161d861e77a486e10d1d1d0b90c8997e6917226fe4bb5d77e85706336ba6369a4c33ac53b45d46a92db9fda99af4429dc23db6a1706328df4e75eb173a81bd4af8b89d186ac9b2382a75ac68920ca3d542aece1ba7", 0xb6}, {&(0x7f0000000f00)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df28a3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0", 0x4a}], 0x2}}], 0x1, 0x0)
sendmmsg(r0, &(0x7f00000005c0), 0x0, 0x4000000)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

kernel console output (not intermixed with test programs):

860383][T10000]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  164.866710][T10000]  __x64_sys_sendto+0xde/0x100
[  164.871491][T10000]  do_syscall_64+0xf3/0x230
[  164.876019][T10000]  ? clear_bhb_loop+0x35/0x90
[  164.880709][T10000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.886630][T10000] RIP: 0033:0x7f7008585d29
[  164.891048][T10000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.910660][T10000] RSP: 002b:00007f7009412038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  164.919082][T10000] RAX: ffffffffffffffda RBX: 00007f7008775fa0 RCX: 00007f7008585d29
[  164.927050][T10000] RDX: 0000000000000001 RSI: 0000000020000180 RDI: 0000000000000006
[  164.935026][T10000] RBP: 00007f7009412090 R08: 0000000020000200 R09: 000000000000001c
[  164.942997][T10000] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000001
[  164.950968][T10000] R13: 0000000000000000 R14: 00007f7008775fa0 R15: 00007ffc37bad348
[  164.958952][T10000]  </TASK>
[  165.095239][T10005] pimreg: entered allmulticast mode
[  165.378165][T10031] FAULT_INJECTION: forcing a failure.
[  165.378165][T10031] name failslab, interval 1, probability 0, space 0, times 0
[  165.428655][T10031] CPU: 0 UID: 0 PID: 10031 Comm: syz.0.1487 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  165.439492][T10031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  165.450096][T10031] Call Trace:
[  165.453393][T10031]  <TASK>
[  165.456342][T10031]  dump_stack_lvl+0x241/0x360
[  165.461055][T10031]  ? __pfx_dump_stack_lvl+0x10/0x10
[  165.466287][T10031]  ? __pfx__printk+0x10/0x10
[  165.470902][T10031]  ? kmem_cache_alloc_noprof+0x48/0x380
[  165.476470][T10031]  ? __pfx___might_resched+0x10/0x10
[  165.481782][T10031]  should_fail_ex+0x3b0/0x4e0
[  165.486574][T10031]  should_failslab+0xac/0x100
[  165.491280][T10031]  ? skb_clone+0x20c/0x390
[  165.495734][T10031]  kmem_cache_alloc_noprof+0x70/0x380
[  165.501136][T10031]  skb_clone+0x20c/0x390
[  165.505408][T10031]  nfnetlink_rcv+0x575/0x2ab0
[  165.510123][T10031]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  165.515879][T10031]  ? __dev_queue_xmit+0x1775/0x3f50
[  165.521106][T10031]  ? kasan_save_track+0x51/0x80
[  165.526074][T10031]  ? ____sys_sendmsg+0x52a/0x7e0
[  165.531041][T10031]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  165.536205][T10031]  ? ref_tracker_free+0x643/0x7e0
[  165.541246][T10031]  ? __asan_memcpy+0x40/0x70
[  165.545856][T10031]  ? __pfx_ref_tracker_free+0x10/0x10
[  165.551260][T10031]  ? netlink_deliver_tap+0x2e/0x1b0
[  165.556480][T10031]  ? skb_clone+0x240/0x390
[  165.560926][T10031]  ? __pfx_lock_release+0x10/0x10
[  165.565979][T10031]  ? __netlink_deliver_tap+0x7aa/0x7f0
[  165.571481][T10031]  ? netlink_deliver_tap+0x2e/0x1b0
[  165.576717][T10031]  netlink_unicast+0x7f6/0x990
[  165.581511][T10031]  ? __pfx_netlink_unicast+0x10/0x10
[  165.586819][T10031]  ? __virt_addr_valid+0x45f/0x530
[  165.591956][T10031]  ? __phys_addr_symbol+0x2f/0x70
[  165.597013][T10031]  ? __check_object_size+0x47a/0x730
[  165.602329][T10031]  netlink_sendmsg+0x8e4/0xcb0
[  165.607132][T10031]  ? __pfx_netlink_sendmsg+0x10/0x10
[  165.612448][T10031]  ? aa_sock_msg_perm+0x91/0x160
[  165.617415][T10031]  ? __pfx_netlink_sendmsg+0x10/0x10
[  165.622732][T10031]  __sock_sendmsg+0x221/0x270
[  165.627443][T10031]  ____sys_sendmsg+0x52a/0x7e0
[  165.632253][T10031]  ? __pfx_____sys_sendmsg+0x10/0x10
[  165.637569][T10031]  ? __fget_files+0x2a/0x410
[  165.642184][T10031]  ? __fget_files+0x2a/0x410
[  165.646980][T10031]  __sys_sendmsg+0x269/0x350
[  165.651598][T10031]  ? __pfx_lock_release+0x10/0x10
[  165.656655][T10031]  ? __pfx___sys_sendmsg+0x10/0x10
[  165.661822][T10031]  ? __pfx_vfs_write+0x10/0x10
[  165.666632][T10031]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  165.672990][T10031]  ? do_syscall_64+0x100/0x230
[  165.677781][T10031]  ? do_syscall_64+0xb6/0x230
[  165.682484][T10031]  do_syscall_64+0xf3/0x230
[  165.687018][T10031]  ? clear_bhb_loop+0x35/0x90
[  165.691732][T10031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.697658][T10031] RIP: 0033:0x7f7a9d185d29
[  165.702105][T10031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.721798][T10031] RSP: 002b:00007f7a9e078038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  165.730254][T10031] RAX: ffffffffffffffda RBX: 00007f7a9d375fa0 RCX: 00007f7a9d185d29
[  165.738255][T10031] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  165.746262][T10031] RBP: 00007f7a9e078090 R08: 0000000000000000 R09: 0000000000000000
[  165.754263][T10031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.762265][T10031] R13: 0000000000000000 R14: 00007f7a9d375fa0 R15: 00007ffc522294b8
[  165.770289][T10031]  </TASK>
[  166.541299][T10101] __nla_validate_parse: 3 callbacks suppressed
[  166.541321][T10101] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1511'.
[  166.619334][T10106] netlink: 1752 bytes leftover after parsing attributes in process `syz.4.1512'.
[  167.137552][T10140] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.1525'.
[  167.386728][T10153] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  167.534570][T10159] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1534'.
[  167.587407][T10159] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1534'.
[  167.609241][T10159] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1534'.
[  167.668254][ T5837] block nbd20: Receive control failed (result -107)
[  167.683417][T10159] nbd20: detected capacity change from 0 to 256
[  167.695808][T10170] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.1537'.
[  167.873906][T10172] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1538'.
[  168.005199][T10185] netlink: 'syz.3.1542': attribute type 1 has an invalid length.
[  168.025558][T10185] netlink: 228 bytes leftover after parsing attributes in process `syz.3.1542'.
[  168.061582][T10189] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1544'.
[  168.213372][T10199] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  168.546020][T10221] gretap0: entered allmulticast mode
[  169.002478][T10249] netlink: 'syz.3.1570': attribute type 32 has an invalid length.
[  169.037699][T10255] FAULT_INJECTION: forcing a failure.
[  169.037699][T10255] name failslab, interval 1, probability 0, space 0, times 0
[  169.074232][T10255] CPU: 0 UID: 0 PID: 10255 Comm: syz.2.1571 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  169.085063][T10255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  169.095136][T10255] Call Trace:
[  169.098411][T10255]  <TASK>
[  169.101348][T10255]  dump_stack_lvl+0x241/0x360
[  169.106059][T10255]  ? __pfx_dump_stack_lvl+0x10/0x10
[  169.111287][T10255]  ? __pfx__printk+0x10/0x10
[  169.115900][T10255]  ? __kmalloc_cache_noprof+0x48/0x390
[  169.121384][T10255]  ? __pfx___might_resched+0x10/0x10
[  169.126702][T10255]  should_fail_ex+0x3b0/0x4e0
[  169.131409][T10255]  should_failslab+0xac/0x100
[  169.136115][T10255]  __kmalloc_cache_noprof+0x70/0x390
[  169.141427][T10255]  ? nfnetlink_rcv+0x1265/0x2ab0
[  169.146400][T10255]  nfnetlink_rcv+0x1265/0x2ab0
[  169.151234][T10255]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  169.156389][T10255]  ? netlink_deliver_tap+0x2e/0x1b0
[  169.161605][T10255]  ? skb_clone+0x240/0x390
[  169.166056][T10255]  ? __pfx_lock_release+0x10/0x10
[  169.171114][T10255]  ? netlink_deliver_tap+0x2e/0x1b0
[  169.176340][T10255]  netlink_unicast+0x7f6/0x990
[  169.181118][T10255]  ? __pfx_netlink_unicast+0x10/0x10
[  169.186424][T10255]  ? __virt_addr_valid+0x45f/0x530
[  169.191545][T10255]  ? __phys_addr_symbol+0x2f/0x70
[  169.196566][T10255]  ? __check_object_size+0x47a/0x730
[  169.201850][T10255]  netlink_sendmsg+0x8e4/0xcb0
[  169.206623][T10255]  ? __pfx_netlink_sendmsg+0x10/0x10
[  169.211919][T10255]  ? aa_sock_msg_perm+0x91/0x160
[  169.216857][T10255]  ? __pfx_netlink_sendmsg+0x10/0x10
[  169.222145][T10255]  __sock_sendmsg+0x221/0x270
[  169.226912][T10255]  ____sys_sendmsg+0x52a/0x7e0
[  169.231687][T10255]  ? __pfx_____sys_sendmsg+0x10/0x10
[  169.236993][T10255]  ? __fget_files+0x2a/0x410
[  169.241582][T10255]  ? __fget_files+0x2a/0x410
[  169.246177][T10255]  __sys_sendmsg+0x269/0x350
[  169.250768][T10255]  ? __pfx_lock_release+0x10/0x10
[  169.255792][T10255]  ? __pfx___sys_sendmsg+0x10/0x10
[  169.260911][T10255]  ? __pfx_vfs_write+0x10/0x10
[  169.265695][T10255]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  169.272021][T10255]  ? do_syscall_64+0x100/0x230
[  169.276787][T10255]  ? do_syscall_64+0xb6/0x230
[  169.281461][T10255]  do_syscall_64+0xf3/0x230
[  169.285963][T10255]  ? clear_bhb_loop+0x35/0x90
[  169.290642][T10255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.296533][T10255] RIP: 0033:0x7f7008585d29
[  169.300950][T10255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.320651][T10255] RSP: 002b:00007f7009412038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  169.329066][T10255] RAX: ffffffffffffffda RBX: 00007f7008775fa0 RCX: 00007f7008585d29
[  169.337033][T10255] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  169.344997][T10255] RBP: 00007f7009412090 R08: 0000000000000000 R09: 0000000000000000
[  169.352960][T10255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.360929][T10255] R13: 0000000000000000 R14: 00007f7008775fa0 R15: 00007ffc37bad348
[  169.368909][T10255]  </TASK>
[  169.523695][    C1] vcan0: j1939_session_tx_dat: 0xffff88807d30e800: queue data error: -100
[  169.558234][T10264] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  170.450042][T10300] ebtables: ebtables: counters copy to user failed while replacing table
[  170.823086][ T5837] block nbd21: Receive control failed (result -107)
[  170.861296][T10317] nbd21: detected capacity change from 0 to 256
[  171.034191][T10330] ebtables: ebtables: counters copy to user failed while replacing table
[  171.133133][T10342] FAULT_INJECTION: forcing a failure.
[  171.133133][T10342] name failslab, interval 1, probability 0, space 0, times 0
[  171.150586][T10342] CPU: 0 UID: 0 PID: 10342 Comm: syz.2.1606 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  171.161404][T10342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  171.171497][T10342] Call Trace:
[  171.174799][T10342]  <TASK>
[  171.177760][T10342]  dump_stack_lvl+0x241/0x360
[  171.182478][T10342]  ? __pfx_dump_stack_lvl+0x10/0x10
[  171.187685][T10342]  ? __pfx__printk+0x10/0x10
[  171.192277][T10342]  ? __kmalloc_cache_noprof+0x48/0x390
[  171.197740][T10342]  ? __pfx___might_resched+0x10/0x10
[  171.203028][T10342]  should_fail_ex+0x3b0/0x4e0
[  171.207706][T10342]  should_failslab+0xac/0x100
[  171.212477][T10342]  __kmalloc_cache_noprof+0x70/0x390
[  171.217759][T10342]  ? sctp_auth_asoc_copy_shkeys+0x13b/0x580
[  171.223657][T10342]  sctp_auth_asoc_copy_shkeys+0x13b/0x580
[  171.229385][T10342]  sctp_association_new+0x15ad/0x2400
[  171.234760][T10342]  sctp_connect_new_asoc+0x2d8/0x6c0
[  171.240042][T10342]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  171.245841][T10342]  ? sctp_sendmsg+0xbb9/0x3520
[  171.250611][T10342]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  171.256423][T10342]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  171.261981][T10342]  sctp_sendmsg+0x219a/0x3520
[  171.266669][T10342]  ? __pfx_sctp_sendmsg+0x10/0x10
[  171.271694][T10342]  ? __pfx_aa_sk_perm+0x10/0x10
[  171.276547][T10342]  ? inet_sendmsg+0x330/0x390
[  171.281228][T10342]  __sock_sendmsg+0x1a6/0x270
[  171.285903][T10342]  __sys_sendto+0x363/0x4c0
[  171.290405][T10342]  ? __pfx___sys_sendto+0x10/0x10
[  171.295427][T10342]  ? __mutex_unlock_slowpath+0x21e/0x790
[  171.301070][T10342]  ? __fget_files+0x2a/0x410
[  171.305667][T10342]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  171.311644][T10342]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  171.317968][T10342]  __x64_sys_sendto+0xde/0x100
[  171.322731][T10342]  do_syscall_64+0xf3/0x230
[  171.327230][T10342]  ? clear_bhb_loop+0x35/0x90
[  171.331908][T10342]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.337796][T10342] RIP: 0033:0x7f7008585d29
[  171.342206][T10342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.361901][T10342] RSP: 002b:00007f7009412038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  171.370333][T10342] RAX: ffffffffffffffda RBX: 00007f7008775fa0 RCX: 00007f7008585d29
[  171.378303][T10342] RDX: 0000000000000001 RSI: 0000000020000180 RDI: 0000000000000006
[  171.386271][T10342] RBP: 00007f7009412090 R08: 0000000020000200 R09: 000000000000001c
[  171.394238][T10342] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000001
[  171.402223][T10342] R13: 0000000000000000 R14: 00007f7008775fa0 R15: 00007ffc37bad348
[  171.410204][T10342]  </TASK>
[  171.785812][T10367] __nla_validate_parse: 10 callbacks suppressed
[  171.785834][T10367] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1616'.
[  171.810418][T10367] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1616'.
[  171.872917][T10371] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6erspan0
[  172.066114][T10382] FAULT_INJECTION: forcing a failure.
[  172.066114][T10382] name failslab, interval 1, probability 0, space 0, times 0
[  172.091209][T10382] CPU: 0 UID: 0 PID: 10382 Comm: syz.4.1622 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  172.102041][T10382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  172.112140][T10382] Call Trace:
[  172.115441][T10382]  <TASK>
[  172.118399][T10382]  dump_stack_lvl+0x241/0x360
[  172.123128][T10382]  ? __pfx_dump_stack_lvl+0x10/0x10
[  172.128341][T10382]  ? __pfx__printk+0x10/0x10
[  172.132944][T10382]  ? __kmalloc_noprof+0xb5/0x4c0
[  172.137898][T10382]  ? __pfx___might_resched+0x10/0x10
[  172.143194][T10382]  should_fail_ex+0x3b0/0x4e0
[  172.147871][T10382]  should_failslab+0xac/0x100
[  172.152553][T10382]  __kmalloc_noprof+0xdd/0x4c0
[  172.157329][T10382]  ? nla_strdup+0x9c/0x140
[  172.161746][T10382]  ? __kasan_kmalloc+0x98/0xb0
[  172.166529][T10382]  nla_strdup+0x9c/0x140
[  172.170779][T10382]  nf_tables_newtable+0x59b/0x1e10
[  172.175904][T10382]  ? nfnl_pernet+0x23/0x240
[  172.180421][T10382]  ? __pfx_nf_tables_newtable+0x10/0x10
[  172.185968][T10382]  ? __nla_parse+0x40/0x60
[  172.190436][T10382]  nfnetlink_rcv+0x14e3/0x2ab0
[  172.195214][T10382]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  172.200353][T10382]  ? netlink_deliver_tap+0x2e/0x1b0
[  172.205550][T10382]  ? skb_clone+0x240/0x390
[  172.209994][T10382]  ? __pfx_lock_release+0x10/0x10
[  172.215052][T10382]  ? netlink_deliver_tap+0x2e/0x1b0
[  172.220267][T10382]  netlink_unicast+0x7f6/0x990
[  172.225031][T10382]  ? __pfx_netlink_unicast+0x10/0x10
[  172.230315][T10382]  ? __virt_addr_valid+0x45f/0x530
[  172.235430][T10382]  ? __phys_addr_symbol+0x2f/0x70
[  172.240450][T10382]  ? __check_object_size+0x47a/0x730
[  172.245735][T10382]  netlink_sendmsg+0x8e4/0xcb0
[  172.250518][T10382]  ? __pfx_netlink_sendmsg+0x10/0x10
[  172.255807][T10382]  ? aa_sock_msg_perm+0x91/0x160
[  172.260739][T10382]  ? __pfx_netlink_sendmsg+0x10/0x10
[  172.266017][T10382]  __sock_sendmsg+0x221/0x270
[  172.270711][T10382]  ____sys_sendmsg+0x52a/0x7e0
[  172.275603][T10382]  ? __pfx_____sys_sendmsg+0x10/0x10
[  172.280912][T10382]  ? __fget_files+0x2a/0x410
[  172.285529][T10382]  ? __fget_files+0x2a/0x410
[  172.290160][T10382]  __sys_sendmsg+0x269/0x350
[  172.294786][T10382]  ? __pfx_lock_release+0x10/0x10
[  172.299880][T10382]  ? __pfx___sys_sendmsg+0x10/0x10
[  172.305024][T10382]  ? __pfx_vfs_write+0x10/0x10
[  172.309817][T10382]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  172.316243][T10382]  ? do_syscall_64+0x100/0x230
[  172.321018][T10382]  ? do_syscall_64+0xb6/0x230
[  172.325693][T10382]  do_syscall_64+0xf3/0x230
[  172.330192][T10382]  ? clear_bhb_loop+0x35/0x90
[  172.334874][T10382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.340763][T10382] RIP: 0033:0x7f26f7185d29
[  172.345174][T10382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.364785][T10382] RSP: 002b:00007f26f7f47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  172.373199][T10382] RAX: ffffffffffffffda RBX: 00007f26f7375fa0 RCX: 00007f26f7185d29
[  172.381171][T10382] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  172.389139][T10382] RBP: 00007f26f7f47090 R08: 0000000000000000 R09: 0000000000000000
[  172.397108][T10382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.405079][T10382] R13: 0000000000000000 R14: 00007f26f7375fa0 R15: 00007fff766a8a28
[  172.413060][T10382]  </TASK>
[  172.654163][T10394] lo speed is unknown, defaulting to 1000
[  172.704473][T10400] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1624'.
[  172.750740][T10408] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1628'.
[  172.874839][T10412] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1629'.
[  173.237308][T10426] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1636'.
[  173.384497][T10436] FAULT_INJECTION: forcing a failure.
[  173.384497][T10436] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.436143][T10436] CPU: 0 UID: 0 PID: 10436 Comm: syz.4.1640 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  173.446979][T10436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  173.457049][T10436] Call Trace:
[  173.460325][T10436]  <TASK>
[  173.463259][T10436]  dump_stack_lvl+0x241/0x360
[  173.467943][T10436]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.473145][T10436]  ? __pfx__printk+0x10/0x10
[  173.477761][T10436]  ? __pfx_lock_release+0x10/0x10
[  173.482800][T10436]  should_fail_ex+0x3b0/0x4e0
[  173.487475][T10436]  _copy_from_user+0x2f/0xc0
[  173.492066][T10436]  copy_msghdr_from_user+0xae/0x680
[  173.497261][T10436]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  173.503076][T10436]  ? __fget_files+0x2a/0x410
[  173.507672][T10436]  ? __fget_files+0x2a/0x410
[  173.512284][T10436]  __sys_sendmsg+0x209/0x350
[  173.516878][T10436]  ? __pfx_lock_release+0x10/0x10
[  173.521922][T10436]  ? __pfx___sys_sendmsg+0x10/0x10
[  173.527050][T10436]  ? __pfx_vfs_write+0x10/0x10
[  173.531827][T10436]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  173.538153][T10436]  ? do_syscall_64+0x100/0x230
[  173.542917][T10436]  ? do_syscall_64+0xb6/0x230
[  173.547617][T10436]  do_syscall_64+0xf3/0x230
[  173.552117][T10436]  ? clear_bhb_loop+0x35/0x90
[  173.556793][T10436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.562685][T10436] RIP: 0033:0x7f26f7185d29
[  173.567095][T10436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.586716][T10436] RSP: 002b:00007f26f7f47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  173.595134][T10436] RAX: ffffffffffffffda RBX: 00007f26f7375fa0 RCX: 00007f26f7185d29
[  173.603106][T10436] RDX: 0000000004004000 RSI: 00000000200002c0 RDI: 0000000000000003
[  173.611077][T10436] RBP: 00007f26f7f47090 R08: 0000000000000000 R09: 0000000000000000
[  173.619069][T10436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.627037][T10436] R13: 0000000000000000 R14: 00007f26f7375fa0 R15: 00007fff766a8a28
[  173.635018][T10436]  </TASK>
[  173.811840][T10443] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1643'.
[  174.113768][T10457] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1646'.
[  174.454122][T10478] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1652'.
[  174.581816][T10478] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1652'.
[  174.654382][ T5837] block nbd22: Receive control failed (result -107)
[  174.711666][T10478] nbd22: detected capacity change from 0 to 256
[  174.828172][T10483] lo speed is unknown, defaulting to 1000
[  174.896279][T10486] SET target dimension over the limit!
[  175.030631][T10492] netlink: 'syz.4.1656': attribute type 2 has an invalid length.
[  175.380447][T10515] ebtables: ebtables: counters copy to user failed while replacing table
[  176.168111][T10545] netlink: 'syz.1.1675': attribute type 12 has an invalid length.
[  176.179022][T10550] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  176.189164][T10550] FAULT_INJECTION: forcing a failure.
[  176.189164][T10550] name failslab, interval 1, probability 0, space 0, times 0
[  176.219817][T10550] CPU: 0 UID: 0 PID: 10550 Comm: syz.4.1678 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  176.230650][T10550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  176.240735][T10550] Call Trace:
[  176.244035][T10550]  <TASK>
[  176.246961][T10550]  dump_stack_lvl+0x241/0x360
[  176.251653][T10550]  ? __pfx_dump_stack_lvl+0x10/0x10
[  176.256881][T10550]  ? __pfx__printk+0x10/0x10
[  176.261519][T10550]  should_fail_ex+0x3b0/0x4e0
[  176.266232][T10550]  should_failslab+0xac/0x100
[  176.270942][T10550]  __kmalloc_cache_noprof+0x70/0x390
[  176.276255][T10550]  ? sctp_add_bind_addr+0x89/0x3a0
[  176.281394][T10550]  ? __pfx__get_random_bytes+0x10/0x10
[  176.286878][T10550]  sctp_add_bind_addr+0x89/0x3a0
[  176.291829][T10550]  sctp_copy_local_addr_list+0x311/0x500
[  176.297507][T10550]  ? sctp_copy_local_addr_list+0xab/0x500
[  176.303239][T10550]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  176.309399][T10550]  ? sctp_v6_is_any+0x60/0x70
[  176.314077][T10550]  sctp_bind_addr_copy+0xad/0x3b0
[  176.319101][T10550]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  176.325451][T10550]  sctp_connect_new_asoc+0x2f3/0x6c0
[  176.330762][T10550]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  176.336563][T10550]  ? sctp_sendmsg+0xbb9/0x3520
[  176.341331][T10550]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  176.347131][T10550]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  176.352678][T10550]  sctp_sendmsg+0x219a/0x3520
[  176.357368][T10550]  ? __pfx_sctp_sendmsg+0x10/0x10
[  176.362412][T10550]  ? __pfx_aa_sk_perm+0x10/0x10
[  176.367267][T10550]  ? inet_sendmsg+0x330/0x390
[  176.371949][T10550]  __sock_sendmsg+0x1a6/0x270
[  176.376626][T10550]  __sys_sendto+0x363/0x4c0
[  176.381130][T10550]  ? __pfx___sys_sendto+0x10/0x10
[  176.386149][T10550]  ? __mutex_unlock_slowpath+0x21e/0x790
[  176.391797][T10550]  ? __fget_files+0x2a/0x410
[  176.396395][T10550]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  176.402373][T10550]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  176.408700][T10550]  __x64_sys_sendto+0xde/0x100
[  176.413469][T10550]  do_syscall_64+0xf3/0x230
[  176.417988][T10550]  ? clear_bhb_loop+0x35/0x90
[  176.422669][T10550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.428581][T10550] RIP: 0033:0x7f26f7185d29
[  176.432994][T10550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.452601][T10550] RSP: 002b:00007f26f7f47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  176.461046][T10550] RAX: ffffffffffffffda RBX: 00007f26f7375fa0 RCX: 00007f26f7185d29
[  176.469015][T10550] RDX: 0000000000000001 RSI: 0000000020000180 RDI: 0000000000000006
[  176.476986][T10550] RBP: 00007f26f7f47090 R08: 0000000020000200 R09: 000000000000001c
[  176.484957][T10550] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000001
[  176.492925][T10550] R13: 0000000000000000 R14: 00007f26f7375fa0 R15: 00007fff766a8a28
[  176.500910][T10550]  </TASK>
[  176.651532][T10545] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  176.677365][T10545] netlink: zone id is out of range
[  176.736084][T10563] netlink: 'syz.1.1675': attribute type 2 has an invalid length.
[  176.801438][T10563] Tq€!7: entered promiscuous mode
[  176.919866][T10545] netlink: set zone limit has 4 unknown bytes
[  177.140514][T10582] netlink: 'syz.0.1689': attribute type 2 has an invalid length.
[  177.158079][T10582] fþ: entered promiscuous mode
[  177.177005][T10582] netlink: 'syz.0.1689': attribute type 1 has an invalid length.
[  177.188150][T10582] __nla_validate_parse: 5 callbacks suppressed
[  177.188167][T10582] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1689'.
[  177.532080][T10585] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1690'.
[  177.843983][T10602] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1695'.
[  178.147972][T10612] netlink: 'syz.4.1700': attribute type 4 has an invalid length.
[  178.226155][T10612] netlink: 'syz.4.1700': attribute type 4 has an invalid length.
[  179.136717][T10647] FAULT_INJECTION: forcing a failure.
[  179.136717][T10647] name failslab, interval 1, probability 0, space 0, times 0
[  179.181201][T10647] CPU: 0 UID: 0 PID: 10647 Comm: syz.0.1714 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  179.192022][T10647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  179.202115][T10647] Call Trace:
[  179.205406][T10647]  <TASK>
[  179.208351][T10647]  dump_stack_lvl+0x241/0x360
[  179.213064][T10647]  ? __pfx_dump_stack_lvl+0x10/0x10
[  179.218270][T10647]  ? __pfx__printk+0x10/0x10
[  179.222863][T10647]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  179.228842][T10647]  ? __pfx___might_resched+0x10/0x10
[  179.234212][T10647]  should_fail_ex+0x3b0/0x4e0
[  179.238888][T10647]  should_failslab+0xac/0x100
[  179.243571][T10647]  kmem_cache_alloc_node_noprof+0x77/0x380
[  179.249382][T10647]  ? __alloc_skb+0x1c3/0x440
[  179.253972][T10647]  __alloc_skb+0x1c3/0x440
[  179.258389][T10647]  ? __pfx___alloc_skb+0x10/0x10
[  179.263324][T10647]  ? netlink_autobind+0xd6/0x2f0
[  179.268260][T10647]  ? netlink_autobind+0x2b0/0x2f0
[  179.273283][T10647]  netlink_sendmsg+0x638/0xcb0
[  179.278054][T10647]  ? __pfx_netlink_sendmsg+0x10/0x10
[  179.283341][T10647]  ? aa_sock_msg_perm+0x91/0x160
[  179.288275][T10647]  ? __pfx_netlink_sendmsg+0x10/0x10
[  179.293558][T10647]  __sock_sendmsg+0x221/0x270
[  179.298232][T10647]  ____sys_sendmsg+0x52a/0x7e0
[  179.303000][T10647]  ? __pfx_____sys_sendmsg+0x10/0x10
[  179.308284][T10647]  ? __fget_files+0x2a/0x410
[  179.312891][T10647]  ? __fget_files+0x2a/0x410
[  179.317485][T10647]  __sys_sendmsg+0x269/0x350
[  179.322077][T10647]  ? __pfx_lock_release+0x10/0x10
[  179.327110][T10647]  ? __pfx___sys_sendmsg+0x10/0x10
[  179.332229][T10647]  ? __pfx_vfs_write+0x10/0x10
[  179.337011][T10647]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  179.343339][T10647]  ? do_syscall_64+0x100/0x230
[  179.348103][T10647]  ? do_syscall_64+0xb6/0x230
[  179.352777][T10647]  do_syscall_64+0xf3/0x230
[  179.357276][T10647]  ? clear_bhb_loop+0x35/0x90
[  179.361953][T10647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.367840][T10647] RIP: 0033:0x7f7a9d185d29
[  179.372261][T10647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.391869][T10647] RSP: 002b:00007f7a9e078038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  179.400302][T10647] RAX: ffffffffffffffda RBX: 00007f7a9d375fa0 RCX: 00007f7a9d185d29
[  179.408269][T10647] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  179.416235][T10647] RBP: 00007f7a9e078090 R08: 0000000000000000 R09: 0000000000000000
[  179.424201][T10647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.432173][T10647] R13: 0000000000000000 R14: 00007f7a9d375fa0 R15: 00007ffc522294b8
[  179.440156][T10647]  </TASK>
[  179.616672][T10654] x_tables: unsorted underflow at hook 2
[  179.815090][T10661] ebtables: ebtables: counters copy to user failed while replacing table
[  180.462363][T10689] FAULT_INJECTION: forcing a failure.
[  180.462363][T10689] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.500596][T10689] CPU: 1 UID: 0 PID: 10689 Comm: syz.2.1730 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  180.511434][T10689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  180.521495][T10689] Call Trace:
[  180.524793][T10689]  <TASK>
[  180.527724][T10689]  dump_stack_lvl+0x241/0x360
[  180.532427][T10689]  ? __pfx_dump_stack_lvl+0x10/0x10
[  180.537648][T10689]  ? __pfx__printk+0x10/0x10
[  180.542253][T10689]  ? __pfx_lock_release+0x10/0x10
[  180.547291][T10689]  should_fail_ex+0x3b0/0x4e0
[  180.551971][T10689]  _copy_from_user+0x2f/0xc0
[  180.556652][T10689]  copy_msghdr_from_user+0xae/0x680
[  180.561852][T10689]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  180.567650][T10689]  ? __fget_files+0x2a/0x410
[  180.572270][T10689]  ? __fget_files+0x2a/0x410
[  180.576867][T10689]  __sys_sendmsg+0x209/0x350
[  180.581459][T10689]  ? __pfx_lock_release+0x10/0x10
[  180.586492][T10689]  ? __pfx___sys_sendmsg+0x10/0x10
[  180.591610][T10689]  ? __pfx_vfs_write+0x10/0x10
[  180.596382][T10689]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  180.602731][T10689]  ? do_syscall_64+0x100/0x230
[  180.607515][T10689]  ? do_syscall_64+0xb6/0x230
[  180.612191][T10689]  do_syscall_64+0xf3/0x230
[  180.616689][T10689]  ? clear_bhb_loop+0x35/0x90
[  180.621368][T10689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.627256][T10689] RIP: 0033:0x7f7008585d29
[  180.631685][T10689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.651372][T10689] RSP: 002b:00007f7009412038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  180.659790][T10689] RAX: ffffffffffffffda RBX: 00007f7008775fa0 RCX: 00007f7008585d29
[  180.667755][T10689] RDX: 0000000000040080 RSI: 0000000020006040 RDI: 0000000000000004
[  180.675734][T10689] RBP: 00007f7009412090 R08: 0000000000000000 R09: 0000000000000000
[  180.683717][T10689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.691695][T10689] R13: 0000000000000000 R14: 00007f7008775fa0 R15: 00007ffc37bad348
[  180.699681][T10689]  </TASK>
[  180.741332][T10690] netlink: 'syz.3.1729': attribute type 12 has an invalid length.
[  180.947907][T10703] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1736'.
[  181.039727][T10706] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  181.073173][T10690] netlink: zone id is out of range
[  181.165930][T10706] netlink: 'syz.3.1729': attribute type 2 has an invalid length.
[  181.198233][T10716] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1740'.
[  181.228733][T10711] netlink: 'syz.0.1738': attribute type 8 has an invalid length.
[  181.235652][T10706] Tq€!7: entered promiscuous mode
[  181.264208][T10711] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1738'.
[  181.369369][T10690] netlink: set zone limit has 4 unknown bytes
[  181.566163][T10732] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1747'.
[  182.114356][T10743] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1751'.
[  182.249360][T10756] FAULT_INJECTION: forcing a failure.
[  182.249360][T10756] name failslab, interval 1, probability 0, space 0, times 0
[  182.271162][T10756] CPU: 1 UID: 0 PID: 10756 Comm: syz.2.1754 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  182.281998][T10756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  182.292086][T10756] Call Trace:
[  182.295391][T10756]  <TASK>
[  182.298342][T10756]  dump_stack_lvl+0x241/0x360
[  182.303057][T10756]  ? __pfx_dump_stack_lvl+0x10/0x10
[  182.308292][T10756]  ? __pfx__printk+0x10/0x10
[  182.312918][T10756]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  182.318932][T10756]  ? __pfx___might_resched+0x10/0x10
[  182.324606][T10756]  should_fail_ex+0x3b0/0x4e0
[  182.329319][T10756]  should_failslab+0xac/0x100
[  182.334031][T10756]  kmem_cache_alloc_node_noprof+0x77/0x380
[  182.339878][T10756]  ? __alloc_skb+0x1c3/0x440
[  182.344506][T10756]  __alloc_skb+0x1c3/0x440
[  182.348956][T10756]  ? __pfx___alloc_skb+0x10/0x10
[  182.353930][T10756]  ? netlink_ack_tlv_len+0x6e/0x200
[  182.359167][T10756]  netlink_ack+0x145/0xa50
[  182.363623][T10756]  ? __kasan_kmalloc+0x98/0xb0
[  182.368416][T10756]  ? nfnetlink_rcv+0x12c6/0x2ab0
[  182.373390][T10756]  nfnetlink_rcv+0x26bd/0x2ab0
[  182.378221][T10756]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  182.383409][T10756]  ? netlink_deliver_tap+0x2e/0x1b0
[  182.388645][T10756]  ? skb_clone+0x240/0x390
[  182.393106][T10756]  ? __pfx_lock_release+0x10/0x10
[  182.398187][T10756]  ? netlink_deliver_tap+0x2e/0x1b0
[  182.403416][T10756]  netlink_unicast+0x7f6/0x990
[  182.408219][T10756]  ? __pfx_netlink_unicast+0x10/0x10
[  182.413534][T10756]  ? __virt_addr_valid+0x45f/0x530
[  182.418675][T10756]  ? __phys_addr_symbol+0x2f/0x70
[  182.423729][T10756]  ? __check_object_size+0x47a/0x730
[  182.429044][T10756]  netlink_sendmsg+0x8e4/0xcb0
[  182.433849][T10756]  ? __pfx_netlink_sendmsg+0x10/0x10
[  182.439251][T10756]  ? aa_sock_msg_perm+0x91/0x160
[  182.444226][T10756]  ? __pfx_netlink_sendmsg+0x10/0x10
[  182.449538][T10756]  __sock_sendmsg+0x221/0x270
[  182.454271][T10756]  ____sys_sendmsg+0x52a/0x7e0
[  182.459079][T10756]  ? __pfx_____sys_sendmsg+0x10/0x10
[  182.464381][T10756]  ? __fget_files+0x2a/0x410
[  182.468978][T10756]  ? __fget_files+0x2a/0x410
[  182.473576][T10756]  __sys_sendmsg+0x269/0x350
[  182.478182][T10756]  ? __pfx_lock_release+0x10/0x10
[  182.483221][T10756]  ? __pfx___sys_sendmsg+0x10/0x10
[  182.488341][T10756]  ? __pfx_vfs_write+0x10/0x10
[  182.493120][T10756]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  182.499451][T10756]  ? do_syscall_64+0x100/0x230
[  182.504216][T10756]  ? do_syscall_64+0xb6/0x230
[  182.508892][T10756]  do_syscall_64+0xf3/0x230
[  182.513394][T10756]  ? clear_bhb_loop+0x35/0x90
[  182.518078][T10756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.523978][T10756] RIP: 0033:0x7f7008585d29
[  182.528402][T10756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.548020][T10756] RSP: 002b:00007f7009412038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  182.556439][T10756] RAX: ffffffffffffffda RBX: 00007f7008775fa0 RCX: 00007f7008585d29
[  182.564414][T10756] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  182.572384][T10756] RBP: 00007f7009412090 R08: 0000000000000000 R09: 0000000000000000
[  182.580351][T10756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  182.588323][T10756] R13: 0000000000000000 R14: 00007f7008775fa0 R15: 00007ffc37bad348
[  182.596304][T10756]  </TASK>
[  182.644829][T10758] syz.1.1755 (10758) used greatest stack depth: 18552 bytes left
[  182.897779][T10768] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1759'.
[  184.141949][T10811] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1772'.
[  184.408795][T10832] FAULT_INJECTION: forcing a failure.
[  184.408795][T10832] name failslab, interval 1, probability 0, space 0, times 0
[  184.422114][T10832] CPU: 0 UID: 0 PID: 10832 Comm: syz.3.1780 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  184.432905][T10832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  184.442975][T10832] Call Trace:
[  184.446280][T10832]  <TASK>
[  184.449239][T10832]  dump_stack_lvl+0x241/0x360
[  184.453949][T10832]  ? __pfx_dump_stack_lvl+0x10/0x10
[  184.459162][T10832]  ? __pfx__printk+0x10/0x10
[  184.463762][T10832]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  184.469750][T10832]  ? __pfx___might_resched+0x10/0x10
[  184.475034][T10832]  ? aa_label_sk_perm+0x4f3/0x6c0
[  184.480068][T10832]  should_fail_ex+0x3b0/0x4e0
[  184.484747][T10832]  should_failslab+0xac/0x100
[  184.489426][T10832]  kmem_cache_alloc_node_noprof+0x77/0x380
[  184.495344][T10832]  ? __alloc_skb+0x1c3/0x440
[  184.499953][T10832]  __alloc_skb+0x1c3/0x440
[  184.504385][T10832]  ? __pfx___alloc_skb+0x10/0x10
[  184.509337][T10832]  netlink_sendmsg+0x638/0xcb0
[  184.514121][T10832]  ? __pfx_netlink_sendmsg+0x10/0x10
[  184.519441][T10832]  ? aa_sock_msg_perm+0x91/0x160
[  184.524399][T10832]  ? __pfx_netlink_sendmsg+0x10/0x10
[  184.529692][T10832]  __sock_sendmsg+0x221/0x270
[  184.534379][T10832]  ____sys_sendmsg+0x52a/0x7e0
[  184.539154][T10832]  ? __pfx_____sys_sendmsg+0x10/0x10
[  184.544447][T10832]  ? __fget_files+0x2a/0x410
[  184.549042][T10832]  ? __fget_files+0x2a/0x410
[  184.553650][T10832]  __sys_sendmsg+0x269/0x350
[  184.558252][T10832]  ? __pfx_lock_release+0x10/0x10
[  184.563279][T10832]  ? __pfx___sys_sendmsg+0x10/0x10
[  184.568410][T10832]  ? __pfx_vfs_write+0x10/0x10
[  184.573193][T10832]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  184.579536][T10832]  ? do_syscall_64+0x100/0x230
[  184.584300][T10832]  ? do_syscall_64+0xb6/0x230
[  184.588976][T10832]  do_syscall_64+0xf3/0x230
[  184.593477][T10832]  ? clear_bhb_loop+0x35/0x90
[  184.598152][T10832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.604080][T10832] RIP: 0033:0x7f4f4c185d29
[  184.608494][T10832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.628117][T10832] RSP: 002b:00007f4f4d091038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  184.636534][T10832] RAX: ffffffffffffffda RBX: 00007f4f4c375fa0 RCX: 00007f4f4c185d29
[  184.644504][T10832] RDX: 0000000000040080 RSI: 0000000020006040 RDI: 0000000000000004
[  184.652475][T10832] RBP: 00007f4f4d091090 R08: 0000000000000000 R09: 0000000000000000
[  184.660445][T10832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  184.668442][T10832] R13: 0000000000000000 R14: 00007f4f4c375fa0 R15: 00007ffc7ab16008
[  184.676425][T10832]  </TASK>
[  184.735547][T10837] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1781'.
[  184.791601][T10837] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1781'.
[  184.805007][T10837] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1781'.
[  184.864325][ T5837] block nbd23: Receive control failed (result -107)
[  184.901200][T10837] nbd23: detected capacity change from 0 to 256
[  184.910842][T10842] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1783'.
[  185.105259][T10848] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1786'.
[  185.217480][T10861] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  185.242691][T10861] FAULT_INJECTION: forcing a failure.
[  185.242691][T10861] name failslab, interval 1, probability 0, space 0, times 0
[  185.280120][T10861] CPU: 0 UID: 0 PID: 10861 Comm: syz.4.1790 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  185.291049][T10861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  185.301137][T10861] Call Trace:
[  185.304446][T10861]  <TASK>
[  185.307401][T10861]  dump_stack_lvl+0x241/0x360
[  185.312115][T10861]  ? __pfx_dump_stack_lvl+0x10/0x10
[  185.317352][T10861]  ? __pfx__printk+0x10/0x10
[  185.321992][T10861]  should_fail_ex+0x3b0/0x4e0
[  185.323326][T10865] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1792'.
[  185.326681][T10861]  should_failslab+0xac/0x100
[  185.340231][T10861]  __kmalloc_cache_noprof+0x70/0x390
[  185.345549][T10861]  ? sctp_add_bind_addr+0x89/0x3a0
[  185.350708][T10861]  sctp_add_bind_addr+0x89/0x3a0
[  185.355683][T10861]  sctp_copy_local_addr_list+0x311/0x500
[  185.361354][T10861]  ? sctp_copy_local_addr_list+0xab/0x500
[  185.367107][T10861]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  185.373297][T10861]  ? sctp_v6_is_any+0x60/0x70
[  185.378008][T10861]  sctp_bind_addr_copy+0xad/0x3b0
[  185.383075][T10861]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  185.389447][T10861]  sctp_connect_new_asoc+0x2f3/0x6c0
[  185.394770][T10861]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  185.400601][T10861]  ? sctp_sendmsg+0xbb9/0x3520
[  185.405397][T10861]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  185.411230][T10861]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  185.416808][T10861]  sctp_sendmsg+0x219a/0x3520
[  185.421513][T10861]  ? __pfx_sctp_sendmsg+0x10/0x10
[  185.426570][T10861]  ? __pfx_aa_sk_perm+0x10/0x10
[  185.431453][T10861]  ? inet_sendmsg+0x330/0x390
[  185.436167][T10861]  __sock_sendmsg+0x1a6/0x270
[  185.440881][T10861]  __sys_sendto+0x363/0x4c0
[  185.445426][T10861]  ? __pfx___sys_sendto+0x10/0x10
[  185.450480][T10861]  ? __mutex_unlock_slowpath+0x21e/0x790
[  185.456154][T10861]  ? __fget_files+0x2a/0x410
[  185.460784][T10861]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  185.466804][T10861]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  185.473174][T10861]  __x64_sys_sendto+0xde/0x100
[  185.477972][T10861]  do_syscall_64+0xf3/0x230
[  185.482502][T10861]  ? clear_bhb_loop+0x35/0x90
[  185.487209][T10861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.493131][T10861] RIP: 0033:0x7f26f7185d29
[  185.497572][T10861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.517208][T10861] RSP: 002b:00007f26f7f47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  185.525659][T10861] RAX: ffffffffffffffda RBX: 00007f26f7375fa0 RCX: 00007f26f7185d29
[  185.533663][T10861] RDX: 0000000000000001 RSI: 0000000020000180 RDI: 0000000000000006
[  185.541660][T10861] RBP: 00007f26f7f47090 R08: 0000000020000200 R09: 000000000000001c
[  185.549661][T10861] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000001
[  185.557665][T10861] R13: 0000000000000000 R14: 00007f26f7375fa0 R15: 00007fff766a8a28
[  185.565689][T10861]  </TASK>
[  185.748008][T10879] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  186.016048][T10890] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1800'.
[  186.167511][T10903] FAULT_INJECTION: forcing a failure.
[  186.167511][T10903] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  186.181520][T10903] CPU: 1 UID: 0 PID: 10903 Comm: syz.0.1803 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  186.192314][T10903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  186.202371][T10903] Call Trace:
[  186.205642][T10903]  <TASK>
[  186.208560][T10903]  dump_stack_lvl+0x241/0x360
[  186.213236][T10903]  ? __pfx_dump_stack_lvl+0x10/0x10
[  186.218423][T10903]  ? __pfx__printk+0x10/0x10
[  186.223008][T10903]  ? __pfx_lock_release+0x10/0x10
[  186.228026][T10903]  should_fail_ex+0x3b0/0x4e0
[  186.232694][T10903]  _copy_from_iter+0x1e9/0x1c20
[  186.237534][T10903]  ? __virt_addr_valid+0x183/0x530
[  186.242657][T10903]  ? __alloc_skb+0x28f/0x440
[  186.247285][T10903]  ? __pfx__copy_from_iter+0x10/0x10
[  186.252593][T10903]  ? __virt_addr_valid+0x183/0x530
[  186.257691][T10903]  ? __virt_addr_valid+0x183/0x530
[  186.262844][T10903]  ? __virt_addr_valid+0x45f/0x530
[  186.267966][T10903]  ? __phys_addr_symbol+0x2f/0x70
[  186.273022][T10903]  ? __check_object_size+0x47a/0x730
[  186.278305][T10903]  netlink_sendmsg+0x73d/0xcb0
[  186.283073][T10903]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.288354][T10903]  ? aa_sock_msg_perm+0x91/0x160
[  186.293293][T10903]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.298584][T10903]  __sock_sendmsg+0x221/0x270
[  186.303266][T10903]  ____sys_sendmsg+0x52a/0x7e0
[  186.308061][T10903]  ? __pfx_____sys_sendmsg+0x10/0x10
[  186.313362][T10903]  ? __fget_files+0x2a/0x410
[  186.317976][T10903]  ? __fget_files+0x2a/0x410
[  186.322710][T10903]  __sys_sendmsg+0x269/0x350
[  186.327325][T10903]  ? __pfx_lock_release+0x10/0x10
[  186.332373][T10903]  ? __pfx___sys_sendmsg+0x10/0x10
[  186.337511][T10903]  ? __pfx_vfs_write+0x10/0x10
[  186.342304][T10903]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  186.348644][T10903]  ? do_syscall_64+0x100/0x230
[  186.353411][T10903]  ? do_syscall_64+0xb6/0x230
[  186.358086][T10903]  do_syscall_64+0xf3/0x230
[  186.362589][T10903]  ? clear_bhb_loop+0x35/0x90
[  186.367271][T10903]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.373160][T10903] RIP: 0033:0x7f7a9d185d29
[  186.377570][T10903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.397192][T10903] RSP: 002b:00007f7a9e078038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  186.405615][T10903] RAX: ffffffffffffffda RBX: 00007f7a9d375fa0 RCX: 00007f7a9d185d29
[  186.413604][T10903] RDX: 0000000004004000 RSI: 00000000200002c0 RDI: 0000000000000003
[  186.421584][T10903] RBP: 00007f7a9e078090 R08: 0000000000000000 R09: 0000000000000000
[  186.429584][T10903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.437574][T10903] R13: 0000000000000000 R14: 00007f7a9d375fa0 R15: 00007ffc522294b8
[  186.445584][T10903]  </TASK>
[  186.606478][T10911] netlink: 1688 bytes leftover after parsing attributes in process `syz.2.1807'.
[  186.712659][T10915] openvswitch: netlink: Encap mask attribute is set for non-VLAN frame.
[  187.032502][T10931] ebtables: ebtables: counters copy to user failed while replacing table
[  187.517411][T10971] sock: sock_timestamping_bind_phc: sock not bind to device
[  187.529889][ T5837] block nbd24: Receive control failed (result -107)
[  187.551724][T10962] nbd24: detected capacity change from 0 to 256
[  187.984197][T10990] __nla_validate_parse: 12 callbacks suppressed
[  187.984217][T10990] netlink: 1688 bytes leftover after parsing attributes in process `syz.0.1837'.
[  188.074181][T10992] netlink: 'syz.0.1839': attribute type 2 has an invalid length.
[  188.084669][T10992] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1839'.
[  188.158063][T10998] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1839'.
[  188.338392][T11003] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  188.348803][T11003] FAULT_INJECTION: forcing a failure.
[  188.348803][T11003] name failslab, interval 1, probability 0, space 0, times 0
[  188.376364][T11003] CPU: 0 UID: 0 PID: 11003 Comm: syz.4.1843 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  188.387196][T11003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  188.397282][T11003] Call Trace:
[  188.400578][T11003]  <TASK>
[  188.403535][T11003]  dump_stack_lvl+0x241/0x360
[  188.408241][T11003]  ? __pfx_dump_stack_lvl+0x10/0x10
[  188.413467][T11003]  ? __pfx__printk+0x10/0x10
[  188.418107][T11003]  should_fail_ex+0x3b0/0x4e0
[  188.422820][T11003]  should_failslab+0xac/0x100
[  188.427528][T11003]  __kmalloc_cache_noprof+0x70/0x390
[  188.432842][T11003]  ? sctp_add_bind_addr+0x89/0x3a0
[  188.437989][T11003]  sctp_add_bind_addr+0x89/0x3a0
[  188.443226][T11003]  sctp_copy_local_addr_list+0x311/0x500
[  188.448900][T11003]  ? sctp_copy_local_addr_list+0xab/0x500
[  188.454660][T11003]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  188.460849][T11003]  ? sctp_v6_is_any+0x60/0x70
[  188.465564][T11003]  sctp_bind_addr_copy+0xad/0x3b0
[  188.470642][T11003]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  188.477013][T11003]  sctp_connect_new_asoc+0x2f3/0x6c0
[  188.482342][T11003]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  188.488180][T11003]  ? sctp_sendmsg+0xbb9/0x3520
[  188.492982][T11003]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  188.498810][T11003]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  188.504371][T11003]  sctp_sendmsg+0x219a/0x3520
[  188.509095][T11003]  ? __pfx_sctp_sendmsg+0x10/0x10
[  188.514158][T11003]  ? __pfx_aa_sk_perm+0x10/0x10
[  188.519051][T11003]  ? inet_sendmsg+0x330/0x390
[  188.523766][T11003]  __sock_sendmsg+0x1a6/0x270
[  188.528472][T11003]  __sys_sendto+0x363/0x4c0
[  188.533008][T11003]  ? __pfx___sys_sendto+0x10/0x10
[  188.538056][T11003]  ? __mutex_unlock_slowpath+0x21e/0x790
[  188.543732][T11003]  ? __fget_files+0x2a/0x410
[  188.548364][T11003]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  188.554379][T11003]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  188.560835][T11003]  __x64_sys_sendto+0xde/0x100
[  188.565649][T11003]  do_syscall_64+0xf3/0x230
[  188.570189][T11003]  ? clear_bhb_loop+0x35/0x90
[  188.574903][T11003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.580826][T11003] RIP: 0033:0x7f26f7185d29
[  188.585264][T11003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.604890][T11003] RSP: 002b:00007f26f7f47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  188.613307][T11003] RAX: ffffffffffffffda RBX: 00007f26f7375fa0 RCX: 00007f26f7185d29
[  188.621275][T11003] RDX: 0000000000000001 RSI: 0000000020000180 RDI: 0000000000000006
[  188.629243][T11003] RBP: 00007f26f7f47090 R08: 0000000020000200 R09: 000000000000001c
[  188.637212][T11003] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000002
[  188.645185][T11003] R13: 0000000000000000 R14: 00007f26f7375fa0 R15: 00007fff766a8a28
[  188.653166][T11003]  </TASK>
[  188.849346][T11019] netlink: 'syz.0.1849': attribute type 72 has an invalid length.
[  189.140271][T11033] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1855'.
[  189.237233][T11044] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  189.248934][T11044] bond_slave_0: mtu less than device minimum
[  189.450098][T11055] netlink: 'syz.1.1863': attribute type 72 has an invalid length.
[  189.577285][T11061] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1867'.
[  189.768661][T11067] ebtables: ebtables: counters copy to user failed while replacing table
[  189.893270][T11073] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1870'.
[  189.933760][T11086] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1873'.
[  190.078458][T11097] netlink: 'syz.0.1877': attribute type 72 has an invalid length.
[  190.083093][T11095] FAULT_INJECTION: forcing a failure.
[  190.083093][T11095] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.111791][T11095] CPU: 1 UID: 0 PID: 11095 Comm: syz.3.1875 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  190.122624][T11095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  190.132714][T11095] Call Trace:
[  190.136019][T11095]  <TASK>
[  190.138971][T11095]  dump_stack_lvl+0x241/0x360
[  190.143685][T11095]  ? __pfx_dump_stack_lvl+0x10/0x10
[  190.148914][T11095]  ? __pfx__printk+0x10/0x10
[  190.153539][T11095]  ? __pfx_lock_release+0x10/0x10
[  190.158581][T11095]  should_fail_ex+0x3b0/0x4e0
[  190.163298][T11095]  _copy_from_iter+0x1e9/0x1c20
[  190.168175][T11095]  ? __virt_addr_valid+0x183/0x530
[  190.173332][T11095]  ? __alloc_skb+0x28f/0x440
[  190.177926][T11095]  ? __pfx__copy_from_iter+0x10/0x10
[  190.183227][T11095]  ? __virt_addr_valid+0x183/0x530
[  190.188357][T11095]  ? __virt_addr_valid+0x183/0x530
[  190.193471][T11095]  ? __virt_addr_valid+0x45f/0x530
[  190.198588][T11095]  ? __phys_addr_symbol+0x2f/0x70
[  190.203614][T11095]  ? __check_object_size+0x47a/0x730
[  190.208902][T11095]  netlink_sendmsg+0x73d/0xcb0
[  190.213672][T11095]  ? __pfx_netlink_sendmsg+0x10/0x10
[  190.218959][T11095]  ? aa_sock_msg_perm+0x91/0x160
[  190.223921][T11095]  ? __pfx_netlink_sendmsg+0x10/0x10
[  190.229205][T11095]  __sock_sendmsg+0x221/0x270
[  190.233885][T11095]  ____sys_sendmsg+0x52a/0x7e0
[  190.238655][T11095]  ? __pfx_____sys_sendmsg+0x10/0x10
[  190.243944][T11095]  ? __fget_files+0x2a/0x410
[  190.248537][T11095]  ? __fget_files+0x2a/0x410
[  190.253133][T11095]  __sys_sendmsg+0x269/0x350
[  190.257724][T11095]  ? __pfx_lock_release+0x10/0x10
[  190.262752][T11095]  ? __pfx___sys_sendmsg+0x10/0x10
[  190.267891][T11095]  ? __pfx_vfs_write+0x10/0x10
[  190.272811][T11095]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  190.279179][T11095]  ? do_syscall_64+0x100/0x230
[  190.283953][T11095]  ? do_syscall_64+0xb6/0x230
[  190.288635][T11095]  do_syscall_64+0xf3/0x230
[  190.293138][T11095]  ? clear_bhb_loop+0x35/0x90
[  190.297822][T11095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.303720][T11095] RIP: 0033:0x7f4f4c185d29
[  190.308132][T11095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.327754][T11095] RSP: 002b:00007f4f4d091038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  190.336183][T11095] RAX: ffffffffffffffda RBX: 00007f4f4c375fa0 RCX: 00007f4f4c185d29
[  190.344176][T11095] RDX: 0000000000040080 RSI: 0000000020006040 RDI: 0000000000000004
[  190.352157][T11095] RBP: 00007f4f4d091090 R08: 0000000000000000 R09: 0000000000000000
[  190.360129][T11095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.368124][T11095] R13: 0000000000000000 R14: 00007f4f4c375fa0 R15: 00007ffc7ab16008
[  190.376126][T11095]  </TASK>
[  190.675087][T11114] Bluetooth: MGMT ver 1.23
[  190.685134][T11116] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1882'.
[  190.728338][T11121] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1884'.
[  190.771455][T11116] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1882'.
[  190.824164][   T54] block nbd25: Receive control failed (result -107)
[  190.852026][T11116] nbd25: detected capacity change from 0 to 256
[  191.579986][T11173] macvtap1: entered promiscuous mode
[  191.589178][T11173] macvtap1: entered allmulticast mode
[  191.645504][   T54] Bluetooth: hci2: command 0x0406 tx timeout
[  191.645529][ T5835] Bluetooth: hci3: command 0x0406 tx timeout
[  191.645568][ T5835] Bluetooth: hci1: command 0x0406 tx timeout
[  191.756019][T11184] FAULT_INJECTION: forcing a failure.
[  191.756019][T11184] name failslab, interval 1, probability 0, space 0, times 0
[  191.769008][T11184] CPU: 1 UID: 0 PID: 11184 Comm: syz.0.1904 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  191.780158][T11184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  191.790247][T11184] Call Trace:
[  191.793563][T11184]  <TASK>
[  191.796523][T11184]  dump_stack_lvl+0x241/0x360
[  191.801236][T11184]  ? __pfx_dump_stack_lvl+0x10/0x10
[  191.806494][T11184]  ? __pfx__printk+0x10/0x10
[  191.811132][T11184]  ? __kmalloc_noprof+0xb5/0x4c0
[  191.816110][T11184]  ? __pfx___might_resched+0x10/0x10
[  191.821430][T11184]  ? aa_get_newest_label+0xff/0x6f0
[  191.826664][T11184]  should_fail_ex+0x3b0/0x4e0
[  191.831376][T11184]  should_failslab+0xac/0x100
[  191.836087][T11184]  __kmalloc_noprof+0xdd/0x4c0
[  191.840884][T11184]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  191.847150][T11184]  ? apparmor_capable+0x13b/0x1b0
[  191.852215][T11184]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  191.858323][T11184]  genl_rcv_msg+0x802/0xec0
[  191.862868][T11184]  ? __pfx_genl_rcv_msg+0x10/0x10
[  191.867937][T11184]  ? __pfx_lock_acquire+0x10/0x10
[  191.872993][T11184]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  191.878402][T11184]  ? __pfx_nl80211_set_cqm+0x10/0x10
[  191.883719][T11184]  ? __pfx_nl80211_post_doit+0x10/0x10
[  191.889204][T11184]  ? __pfx___might_resched+0x10/0x10
[  191.894529][T11184]  netlink_rcv_skb+0x1e3/0x430
[  191.899329][T11184]  ? __pfx_genl_rcv_msg+0x10/0x10
[  191.904384][T11184]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  191.909709][T11184]  ? __netlink_deliver_tap+0x7aa/0x7f0
[  191.915209][T11184]  genl_rcv+0x28/0x40
[  191.919223][T11184]  netlink_unicast+0x7f6/0x990
[  191.924031][T11184]  ? __pfx_netlink_unicast+0x10/0x10
[  191.929339][T11184]  ? __virt_addr_valid+0x45f/0x530
[  191.934447][T11184]  ? __phys_addr_symbol+0x2f/0x70
[  191.939469][T11184]  ? __check_object_size+0x47a/0x730
[  191.944757][T11184]  netlink_sendmsg+0x8e4/0xcb0
[  191.949540][T11184]  ? __pfx_netlink_sendmsg+0x10/0x10
[  191.954866][T11184]  ? aa_sock_msg_perm+0x91/0x160
[  191.959845][T11184]  ? __pfx_netlink_sendmsg+0x10/0x10
[  191.965168][T11184]  __sock_sendmsg+0x221/0x270
[  191.969864][T11184]  ____sys_sendmsg+0x52a/0x7e0
[  191.974654][T11184]  ? __pfx_____sys_sendmsg+0x10/0x10
[  191.979971][T11184]  ? __fget_files+0x2a/0x410
[  191.984587][T11184]  ? __fget_files+0x2a/0x410
[  191.989184][T11184]  __sys_sendmsg+0x269/0x350
[  191.993775][T11184]  ? __pfx_lock_release+0x10/0x10
[  191.998795][T11184]  ? __pfx___sys_sendmsg+0x10/0x10
[  192.003911][T11184]  ? __pfx_vfs_write+0x10/0x10
[  192.008682][T11184]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  192.015004][T11184]  ? do_syscall_64+0x100/0x230
[  192.019774][T11184]  ? do_syscall_64+0xb6/0x230
[  192.024533][T11184]  do_syscall_64+0xf3/0x230
[  192.029056][T11184]  ? clear_bhb_loop+0x35/0x90
[  192.033733][T11184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.039625][T11184] RIP: 0033:0x7f7a9d185d29
[  192.044039][T11184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.063647][T11184] RSP: 002b:00007f7a9e078038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  192.072072][T11184] RAX: ffffffffffffffda RBX: 00007f7a9d375fa0 RCX: 00007f7a9d185d29
[  192.080057][T11184] RDX: 0000000004004000 RSI: 00000000200002c0 RDI: 0000000000000003
[  192.088043][T11184] RBP: 00007f7a9e078090 R08: 0000000000000000 R09: 0000000000000000
[  192.096008][T11184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.103975][T11184] R13: 0000000000000000 R14: 00007f7a9d375fa0 R15: 00007ffc522294b8
[  192.111953][T11184]  </TASK>
[  192.167675][T11197] FAULT_INJECTION: forcing a failure.
[  192.167675][T11197] name failslab, interval 1, probability 0, space 0, times 0
[  192.182420][T11197] CPU: 1 UID: 0 PID: 11197 Comm: syz.0.1908 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  192.193225][T11197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  192.203285][T11197] Call Trace:
[  192.206566][T11197]  <TASK>
[  192.209494][T11197]  dump_stack_lvl+0x241/0x360
[  192.214180][T11197]  ? __pfx_dump_stack_lvl+0x10/0x10
[  192.219376][T11197]  ? __pfx__printk+0x10/0x10
[  192.223967][T11197]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  192.229946][T11197]  ? __pfx___might_resched+0x10/0x10
[  192.235231][T11197]  should_fail_ex+0x3b0/0x4e0
[  192.239908][T11197]  should_failslab+0xac/0x100
[  192.244590][T11197]  kmem_cache_alloc_node_noprof+0x77/0x380
[  192.250404][T11197]  ? __alloc_skb+0x1c3/0x440
[  192.254996][T11197]  __alloc_skb+0x1c3/0x440
[  192.259409][T11197]  ? __pfx_lock_acquire+0x10/0x10
[  192.264434][T11197]  ? __pfx___alloc_skb+0x10/0x10
[  192.269367][T11197]  ? inet_diag_handler_cmd+0x206/0x2b0
[  192.274828][T11197]  ? netlink_ack_tlv_len+0x6e/0x200
[  192.280024][T11197]  netlink_ack+0x145/0xa50
[  192.284443][T11197]  ? sock_diag_lock_handler+0x19/0x280
[  192.289904][T11197]  ? __pfx_inet_diag_handler_cmd+0x10/0x10
[  192.295712][T11197]  ? sock_diag_rcv_msg+0x3ff/0x5f0
[  192.300827][T11197]  netlink_rcv_skb+0x262/0x430
[  192.305590][T11197]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  192.311048][T11197]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  192.316347][T11197]  ? netlink_deliver_tap+0x2e/0x1b0
[  192.321546][T11197]  netlink_unicast+0x7f6/0x990
[  192.326318][T11197]  ? __pfx_netlink_unicast+0x10/0x10
[  192.331597][T11197]  ? __virt_addr_valid+0x45f/0x530
[  192.336707][T11197]  ? __phys_addr_symbol+0x2f/0x70
[  192.341728][T11197]  ? __check_object_size+0x47a/0x730
[  192.347018][T11197]  netlink_sendmsg+0x8e4/0xcb0
[  192.351795][T11197]  ? __pfx_netlink_sendmsg+0x10/0x10
[  192.357083][T11197]  ? aa_sock_msg_perm+0x91/0x160
[  192.362020][T11197]  ? __pfx_netlink_sendmsg+0x10/0x10
[  192.367305][T11197]  __sock_sendmsg+0x221/0x270
[  192.371979][T11197]  ____sys_sendmsg+0x52a/0x7e0
[  192.376748][T11197]  ? __pfx_____sys_sendmsg+0x10/0x10
[  192.382031][T11197]  ? __fget_files+0x2a/0x410
[  192.386624][T11197]  ? __fget_files+0x2a/0x410
[  192.391219][T11197]  __sys_sendmsg+0x269/0x350
[  192.395809][T11197]  ? __pfx_lock_release+0x10/0x10
[  192.400831][T11197]  ? __pfx___sys_sendmsg+0x10/0x10
[  192.405948][T11197]  ? __pfx_vfs_write+0x10/0x10
[  192.410726][T11197]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  192.417052][T11197]  ? do_syscall_64+0x100/0x230
[  192.421815][T11197]  ? do_syscall_64+0xb6/0x230
[  192.426490][T11197]  do_syscall_64+0xf3/0x230
[  192.430991][T11197]  ? clear_bhb_loop+0x35/0x90
[  192.435673][T11197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.441566][T11197] RIP: 0033:0x7f7a9d185d29
[  192.445979][T11197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.465597][T11197] RSP: 002b:00007f7a9e078038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  192.474039][T11197] RAX: ffffffffffffffda RBX: 00007f7a9d375fa0 RCX: 00007f7a9d185d29
[  192.482005][T11197] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  192.489976][T11197] RBP: 00007f7a9e078090 R08: 0000000000000000 R09: 0000000000000000
[  192.497944][T11197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.505911][T11197] R13: 0000000000000000 R14: 00007f7a9d375fa0 R15: 00007ffc522294b8
[  192.513902][T11197]  </TASK>
[  192.618919][T11203] tipc: Can't bind to reserved service type 2
[  192.817901][T11212] FAULT_INJECTION: forcing a failure.
[  192.817901][T11212] name failslab, interval 1, probability 0, space 0, times 0
[  192.857967][T11212] CPU: 0 UID: 0 PID: 11212 Comm: syz.1.1914 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  192.868792][T11212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  192.878864][T11212] Call Trace:
[  192.882166][T11212]  <TASK>
[  192.885138][T11212]  dump_stack_lvl+0x241/0x360
[  192.889857][T11212]  ? __pfx_dump_stack_lvl+0x10/0x10
[  192.895093][T11212]  ? __pfx__printk+0x10/0x10
[  192.899711][T11212]  should_fail_ex+0x3b0/0x4e0
[  192.904407][T11212]  should_failslab+0xac/0x100
[  192.909118][T11212]  ? skb_clone+0x20c/0x390
[  192.913569][T11212]  kmem_cache_alloc_noprof+0x70/0x380
[  192.918990][T11212]  skb_clone+0x20c/0x390
[  192.923274][T11212]  __netlink_deliver_tap+0x3cc/0x7f0
[  192.928598][T11212]  ? netlink_deliver_tap+0x2e/0x1b0
[  192.933808][T11212]  netlink_deliver_tap+0x19d/0x1b0
[  192.938926][T11212]  netlink_unicast+0x7c4/0x990
[  192.943694][T11212]  ? __pfx_netlink_unicast+0x10/0x10
[  192.948972][T11212]  ? __virt_addr_valid+0x45f/0x530
[  192.954086][T11212]  ? __phys_addr_symbol+0x2f/0x70
[  192.959109][T11212]  ? __check_object_size+0x47a/0x730
[  192.964402][T11212]  netlink_sendmsg+0x8e4/0xcb0
[  192.969179][T11212]  ? __pfx_netlink_sendmsg+0x10/0x10
[  192.974474][T11212]  ? aa_sock_msg_perm+0x91/0x160
[  192.979413][T11212]  ? __pfx_netlink_sendmsg+0x10/0x10
[  192.984722][T11212]  __sock_sendmsg+0x221/0x270
[  192.989417][T11212]  ____sys_sendmsg+0x52a/0x7e0
[  192.994197][T11212]  ? __pfx_____sys_sendmsg+0x10/0x10
[  192.999479][T11212]  ? __fget_files+0x2a/0x410
[  193.004071][T11212]  ? __fget_files+0x2a/0x410
[  193.008666][T11212]  __sys_sendmsg+0x269/0x350
[  193.013257][T11212]  ? __pfx_lock_release+0x10/0x10
[  193.018284][T11212]  ? __pfx___sys_sendmsg+0x10/0x10
[  193.023406][T11212]  ? __pfx_vfs_write+0x10/0x10
[  193.028194][T11212]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  193.034519][T11212]  ? do_syscall_64+0x100/0x230
[  193.039285][T11212]  ? do_syscall_64+0xb6/0x230
[  193.043962][T11212]  do_syscall_64+0xf3/0x230
[  193.048463][T11212]  ? clear_bhb_loop+0x35/0x90
[  193.053147][T11212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.059041][T11212] RIP: 0033:0x7f2d0b185d29
[  193.063457][T11212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.083081][T11212] RSP: 002b:00007f2d0bf54038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  193.091520][T11212] RAX: ffffffffffffffda RBX: 00007f2d0b375fa0 RCX: 00007f2d0b185d29
[  193.099486][T11212] RDX: 0000000000040080 RSI: 0000000020006040 RDI: 0000000000000004
[  193.107453][T11212] RBP: 00007f2d0bf54090 R08: 0000000000000000 R09: 0000000000000000
[  193.115428][T11212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.123411][T11212] R13: 0000000000000000 R14: 00007f2d0b375fa0 R15: 00007ffc0f4a4d78
[  193.131413][T11212]  </TASK>
[  193.140668][T11220] FAULT_INJECTION: forcing a failure.
[  193.140668][T11220] name failslab, interval 1, probability 0, space 0, times 0
[  193.168772][T11220] CPU: 1 UID: 0 PID: 11220 Comm: syz.0.1917 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  193.179608][T11220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  193.189673][T11220] Call Trace:
[  193.193045][T11220]  <TASK>
[  193.195979][T11220]  dump_stack_lvl+0x241/0x360
[  193.200656][T11220]  ? __pfx_dump_stack_lvl+0x10/0x10
[  193.205853][T11220]  ? __pfx__printk+0x10/0x10
[  193.210463][T11220]  ? kmem_cache_alloc_noprof+0x48/0x380
[  193.216008][T11220]  ? __pfx___might_resched+0x10/0x10
[  193.221302][T11220]  should_fail_ex+0x3b0/0x4e0
[  193.226007][T11220]  should_failslab+0xac/0x100
[  193.230701][T11220]  ? ipmr_mfc_add+0xa0e/0x3320
[  193.235471][T11220]  kmem_cache_alloc_noprof+0x70/0x380
[  193.240845][T11220]  ipmr_mfc_add+0xa0e/0x3320
[  193.245469][T11220]  ? ipmr_mfc_add+0x111/0x3320
[  193.250245][T11220]  ? __pfx_ipmr_mfc_add+0x10/0x10
[  193.255262][T11220]  ? __pfx_lock_release+0x10/0x10
[  193.260288][T11220]  ? ip_mroute_setsockopt+0x15b/0x1190
[  193.265772][T11220]  ? __might_fault+0xaa/0x120
[  193.270481][T11220]  ip_mroute_setsockopt+0xda5/0x1190
[  193.275787][T11220]  ? __pfx_ip_mroute_setsockopt+0x10/0x10
[  193.281528][T11220]  do_ip_setsockopt+0x129f/0x3cd0
[  193.286566][T11220]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  193.291945][T11220]  ? aa_sk_perm+0x96d/0xab0
[  193.296457][T11220]  ? __pfx_aa_sk_perm+0x10/0x10
[  193.301321][T11220]  ip_setsockopt+0x63/0x100
[  193.305820][T11220]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  193.311713][T11220]  do_sock_setsockopt+0x3af/0x720
[  193.316742][T11220]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  193.322294][T11220]  ? __fget_files+0x395/0x410
[  193.326970][T11220]  ? __fget_files+0x2a/0x410
[  193.331567][T11220]  __x64_sys_setsockopt+0x1ee/0x280
[  193.336767][T11220]  do_syscall_64+0xf3/0x230
[  193.341271][T11220]  ? clear_bhb_loop+0x35/0x90
[  193.345948][T11220]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.351840][T11220] RIP: 0033:0x7f7a9d185d29
[  193.356254][T11220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.375866][T11220] RSP: 002b:00007f7a9e078038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  193.384287][T11220] RAX: ffffffffffffffda RBX: 00007f7a9d375fa0 RCX: 00007f7a9d185d29
[  193.392258][T11220] RDX: 00000000000000cc RSI: 0000000000000000 RDI: 0000000000000006
[  193.400224][T11220] RBP: 00007f7a9e078090 R08: 000000000000003c R09: 0000000000000000
[  193.408189][T11220] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000001
[  193.416160][T11220] R13: 0000000000000000 R14: 00007f7a9d375fa0 R15: 00007ffc522294b8
[  193.424144][T11220]  </TASK>
[  193.452587][T11217] __nla_validate_parse: 4 callbacks suppressed
[  193.452607][T11217] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1916'.
[  193.488800][T11217] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1916'.
[  193.533711][ T5837] block nbd26: Receive control failed (result -107)
[  193.548090][T11227] FAULT_INJECTION: forcing a failure.
[  193.548090][T11227] name failslab, interval 1, probability 0, space 0, times 0
[  193.561696][T11227] CPU: 0 UID: 0 PID: 11227 Comm: syz.1.1919 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  193.572505][T11227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  193.582589][T11227] Call Trace:
[  193.585893][T11227]  <TASK>
[  193.588842][T11227]  dump_stack_lvl+0x241/0x360
[  193.593556][T11227]  ? __pfx_dump_stack_lvl+0x10/0x10
[  193.598776][T11227]  ? __pfx__printk+0x10/0x10
[  193.603375][T11227]  ? __kmalloc_cache_noprof+0x48/0x390
[  193.608846][T11227]  ? __pfx___might_resched+0x10/0x10
[  193.614136][T11227]  should_fail_ex+0x3b0/0x4e0
[  193.618812][T11227]  should_failslab+0xac/0x100
[  193.623511][T11227]  __kmalloc_cache_noprof+0x70/0x390
[  193.628794][T11227]  ? cgroup_bpf_attach+0xbb8/0x1240
[  193.633991][T11227]  ? bpf_cgroup_storage_alloc+0x191/0x2e0
[  193.639714][T11227]  cgroup_bpf_attach+0xbb8/0x1240
[  193.644755][T11227]  ? __pfx_cgroup_bpf_attach+0x10/0x10
[  193.650255][T11227]  cgroup_bpf_prog_attach+0x179/0x2d0
[  193.655644][T11227]  bpf_prog_attach+0x51c/0x6a0
[  193.660454][T11227]  __sys_bpf+0x325/0x810
[  193.664708][T11227]  ? __pfx___sys_bpf+0x10/0x10
[  193.669480][T11227]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  193.675469][T11227]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  193.681813][T11227]  ? do_syscall_64+0x100/0x230
[  193.686600][T11227]  __x64_sys_bpf+0x7c/0x90
[  193.691032][T11227]  do_syscall_64+0xf3/0x230
[  193.695561][T11227]  ? clear_bhb_loop+0x35/0x90
[  193.700283][T11227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.706180][T11227] RIP: 0033:0x7f2d0b185d29
[  193.710593][T11227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.730219][T11227] RSP: 002b:00007f2d0bf54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  193.738647][T11227] RAX: ffffffffffffffda RBX: 00007f2d0b375fa0 RCX: 00007f2d0b185d29
[  193.746635][T11227] RDX: 0000000000000020 RSI: 0000000020000240 RDI: 0000000000000008
[  193.754629][T11227] RBP: 00007f2d0bf54090 R08: 0000000000000000 R09: 0000000000000000
[  193.755790][T11229] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1920'.
[  193.762608][T11227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.762663][T11227] R13: 0000000000000000 R14: 00007f2d0b375fa0 R15: 00007ffc0f4a4d78
[  193.762692][T11227]  </TASK>
[  193.766594][T11217] nbd26: detected capacity change from 0 to 256
[  193.794373][T11229] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  193.807911][T11229] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  193.816724][T11229] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  193.825504][T11229] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  193.835067][T11229] vxlan0: entered promiscuous mode
[  193.840226][T11229] vxlan0: entered allmulticast mode
[  194.429647][T11266] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT
[  194.652582][T11283] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1939'.
[  194.694039][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  194.991803][T11296] openvswitch: netlink: Duplicate or invalid key (type 0).
[  194.999118][T11296] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  195.361972][T11314] tipc: Enabled bearer <eth:vlan0>, priority 10
[  195.400725][T11314] Cannot find del_set index 286 as target
[  195.623787][T11331] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1961'.
[  195.656767][T11324] lo speed is unknown, defaulting to 1000
[  196.114392][T11349] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1967'.
[  196.239454][T11369] syz.1.1973[11369] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  196.239543][T11369] syz.1.1973[11369] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  196.270529][T11369] syz.1.1973[11369] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  196.613978][T11389] ebtables: ebtables: counters copy to user failed while replacing table
[  197.107962][T11418] netlink: 'syz.0.1993': attribute type 4 has an invalid length.
[  197.152644][T11418] netlink: 'syz.0.1993': attribute type 4 has an invalid length.
[  197.505841][T11438] ebtables: ebtables: counters copy to user failed while replacing table
[  197.593782][T11448] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2002'.
[  197.671297][T11448] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2002'.
[  197.689422][T11448] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2002'.
[  197.757601][ T5830] block nbd27: Receive control failed (result -107)
[  197.791383][T11448] nbd27: detected capacity change from 0 to 256
[  197.953702][T11473] 
: renamed from bond0 (while UP)
[  198.183459][T11487] netlink: 'syz.2.2017': attribute type 1 has an invalid length.
[  198.200858][T11482] ebtables: ebtables: counters copy to user failed while replacing table
[  198.230196][T11487] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2017'.
[  198.785092][T11506] __nla_validate_parse: 1 callbacks suppressed
[  198.785113][T11506] netlink: 1284 bytes leftover after parsing attributes in process `syz.1.2020'.
[  198.811262][T11506] openvswitch: netlink: Missing key (keys=40, expected=80)
[  198.881336][T11514] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2026'.
[  198.906165][T11515] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2020'.
[  198.931562][T11515] vlan2: left allmulticast mode
[  198.941877][T11515] gretap0: left allmulticast mode
[  198.946997][T11515] vlan2: left promiscuous mode
[  198.983642][T11515] gretap0: left promiscuous mode
[  198.989006][T11515] bridge0: port 3(vlan2) entered disabled state
[  199.004939][T11515] bridge_slave_1: left allmulticast mode
[  199.010222][T11514] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2026'.
[  199.016128][T11515] bridge_slave_1: left promiscuous mode
[  199.026320][T11515] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.036218][T11514] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2026'.
[  199.052214][T11515] bridge_slave_0: left allmulticast mode
[  199.058411][T11515] bridge_slave_0: left promiscuous mode
[  199.065890][T11515] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.093312][ T5830] block nbd28: Receive control failed (result -107)
[  199.132000][T11514] nbd28: detected capacity change from 0 to 256
[  199.239363][T11535] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2032'.
[  199.430700][T11545] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2036'.
[  199.869548][T11564] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2042'.
[  199.941871][T11564] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2042'.
[  199.950793][T11564] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2042'.
[  199.993896][ T5830] block nbd29: Receive control failed (result -107)
[  200.021501][T11564] nbd29: detected capacity change from 0 to 256
[  200.647845][T11611] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  200.722562][T11616] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  201.073412][T11637] lo speed is unknown, defaulting to 1000
[  201.084281][T11639] xt_recent: hitcount (4294967167) is larger than allowed maximum (65535)
[  202.412100][T11691] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  202.558835][T11695] FAULT_INJECTION: forcing a failure.
[  202.558835][T11695] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.570540][T11694] FAULT_INJECTION: forcing a failure.
[  202.570540][T11694] name failslab, interval 1, probability 0, space 0, times 0
[  202.576486][T11695] CPU: 0 UID: 0 PID: 11695 Comm: syz.0.2085 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  202.595298][T11695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  202.605380][T11695] Call Trace:
[  202.608665][T11695]  <TASK>
[  202.611607][T11695]  dump_stack_lvl+0x241/0x360
[  202.616317][T11695]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.621553][T11695]  ? __pfx__printk+0x10/0x10
[  202.626171][T11695]  ? __pfx_lock_release+0x10/0x10
[  202.631224][T11695]  should_fail_ex+0x3b0/0x4e0
[  202.635941][T11695]  _copy_from_user+0x2f/0xc0
[  202.640563][T11695]  copy_msghdr_from_user+0xae/0x680
[  202.645786][T11695]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  202.651609][T11695]  ? __fget_files+0x2a/0x410
[  202.656227][T11695]  ? __fget_files+0x2a/0x410
[  202.660861][T11695]  __sys_sendmsg+0x209/0x350
[  202.665476][T11695]  ? __pfx_lock_release+0x10/0x10
[  202.670564][T11695]  ? __pfx___sys_sendmsg+0x10/0x10
[  202.675704][T11695]  ? __pfx_vfs_write+0x10/0x10
[  202.680527][T11695]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  202.686877][T11695]  ? do_syscall_64+0x100/0x230
[  202.691661][T11695]  ? do_syscall_64+0xb6/0x230
[  202.696366][T11695]  do_syscall_64+0xf3/0x230
[  202.700892][T11695]  ? clear_bhb_loop+0x35/0x90
[  202.705591][T11695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.711503][T11695] RIP: 0033:0x7f7a9d185d29
[  202.715935][T11695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.735566][T11695] RSP: 002b:00007f7a9e078038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  202.744016][T11695] RAX: ffffffffffffffda RBX: 00007f7a9d375fa0 RCX: 00007f7a9d185d29
[  202.752017][T11695] RDX: 0000000000004000 RSI: 0000000020000280 RDI: 0000000000000003
[  202.760015][T11695] RBP: 00007f7a9e078090 R08: 0000000000000000 R09: 0000000000000000
[  202.768011][T11695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  202.776009][T11695] R13: 0000000000000000 R14: 00007f7a9d375fa0 R15: 00007ffc522294b8
[  202.784019][T11695]  </TASK>
[  202.788474][T11694] CPU: 1 UID: 0 PID: 11694 Comm: syz.4.2084 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  202.799276][T11694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  202.809339][T11694] Call Trace:
[  202.812617][T11694]  <TASK>
[  202.815546][T11694]  dump_stack_lvl+0x241/0x360
[  202.820258][T11694]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.825498][T11694]  ? __pfx__printk+0x10/0x10
[  202.830101][T11694]  ? __kmalloc_cache_noprof+0x48/0x390
[  202.835573][T11694]  ? __pfx___might_resched+0x10/0x10
[  202.840880][T11694]  should_fail_ex+0x3b0/0x4e0
[  202.845573][T11694]  should_failslab+0xac/0x100
[  202.850255][T11694]  __kmalloc_cache_noprof+0x70/0x390
[  202.855542][T11694]  ? tcf_exts_init_ex+0xf0/0x6b0
[  202.860485][T11694]  tcf_exts_init_ex+0xf0/0x6b0
[  202.865251][T11694]  ? __kasan_kmalloc+0x98/0xb0
[  202.870015][T11694]  ? __kmalloc_cache_noprof+0x243/0x390
[  202.875566][T11694]  fw_change+0x6a2/0xd50
[  202.879814][T11694]  ? __pfx_fw_change+0x10/0x10
[  202.884585][T11694]  ? __pfx_fw_change+0x10/0x10
[  202.889347][T11694]  tc_new_tfilter+0x1112/0x1a70
[  202.894225][T11694]  ? __pfx_tc_new_tfilter+0x10/0x10
[  202.899437][T11694]  ? rcu_read_unlock+0x87/0xa0
[  202.904202][T11694]  ? __dev_queue_xmit+0x1775/0x3f50
[  202.909414][T11694]  ? __pfx_tc_new_tfilter+0x10/0x10
[  202.914620][T11694]  rtnetlink_rcv_msg+0x791/0xcf0
[  202.919560][T11694]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  202.924678][T11694]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  202.930146][T11694]  ? ref_tracker_free+0x643/0x7e0
[  202.935180][T11694]  netlink_rcv_skb+0x1e3/0x430
[  202.939966][T11694]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  202.945431][T11694]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  202.950731][T11694]  ? netlink_deliver_tap+0x2e/0x1b0
[  202.955929][T11694]  netlink_unicast+0x7f6/0x990
[  202.960697][T11694]  ? __pfx_netlink_unicast+0x10/0x10
[  202.965979][T11694]  ? __virt_addr_valid+0x45f/0x530
[  202.971096][T11694]  ? __phys_addr_symbol+0x2f/0x70
[  202.976116][T11694]  ? __check_object_size+0x47a/0x730
[  202.981404][T11694]  netlink_sendmsg+0x8e4/0xcb0
[  202.986180][T11694]  ? __pfx_netlink_sendmsg+0x10/0x10
[  202.991469][T11694]  ? aa_sock_msg_perm+0x91/0x160
[  202.996409][T11694]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.001697][T11694]  __sock_sendmsg+0x221/0x270
[  203.006376][T11694]  ____sys_sendmsg+0x52a/0x7e0
[  203.011145][T11694]  ? __pfx_____sys_sendmsg+0x10/0x10
[  203.016429][T11694]  ? __fget_files+0x2a/0x410
[  203.021030][T11694]  ? __fget_files+0x2a/0x410
[  203.025630][T11694]  __sys_sendmsg+0x269/0x350
[  203.030220][T11694]  ? __pfx_lock_release+0x10/0x10
[  203.035246][T11694]  ? __pfx___sys_sendmsg+0x10/0x10
[  203.040383][T11694]  ? __pfx_vfs_write+0x10/0x10
[  203.045162][T11694]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  203.051492][T11694]  ? do_syscall_64+0x100/0x230
[  203.056254][T11694]  ? do_syscall_64+0xb6/0x230
[  203.060936][T11694]  do_syscall_64+0xf3/0x230
[  203.065437][T11694]  ? clear_bhb_loop+0x35/0x90
[  203.070112][T11694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.076002][T11694] RIP: 0033:0x7f26f7185d29
[  203.080414][T11694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.100021][T11694] RSP: 002b:00007f26f7f47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  203.108439][T11694] RAX: ffffffffffffffda RBX: 00007f26f7375fa0 RCX: 00007f26f7185d29
[  203.116408][T11694] RDX: 0000000000040080 RSI: 0000000020006040 RDI: 0000000000000004
[  203.124378][T11694] RBP: 00007f26f7f47090 R08: 0000000000000000 R09: 0000000000000000
[  203.132344][T11694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  203.140308][T11694] R13: 0000000000000000 R14: 00007f26f7375fa0 R15: 00007fff766a8a28
[  203.148286][T11694]  </TASK>
[  203.171223][ T5830] Bluetooth: hci4: command 0x0406 tx timeout
[  203.296889][T11699] set match dimension is over the limit!
[  203.332234][T11699] pim6reg: entered allmulticast mode
[  203.377435][T11704] (unnamed net_device) (uninitialized): option mode: invalid value (48)
[  203.643125][T11718] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744073709551615)
[  203.678883][T11718] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647
[  203.852636][T11733] FAULT_INJECTION: forcing a failure.
[  203.852636][T11733] name failslab, interval 1, probability 0, space 0, times 0
[  203.890164][T11733] CPU: 1 UID: 0 PID: 11733 Comm: syz.3.2102 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  203.900994][T11733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  203.911075][T11733] Call Trace:
[  203.914375][T11733]  <TASK>
[  203.917330][T11733]  dump_stack_lvl+0x241/0x360
[  203.922043][T11733]  ? __pfx_dump_stack_lvl+0x10/0x10
[  203.927274][T11733]  ? __pfx__printk+0x10/0x10
[  203.928046][T11738] __nla_validate_parse: 4 callbacks suppressed
[  203.928061][T11738] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2100'.
[  203.931881][T11733]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  203.931912][T11733]  ? __pfx___might_resched+0x10/0x10
[  203.931934][T11733]  should_fail_ex+0x3b0/0x4e0
[  203.931958][T11733]  should_failslab+0xac/0x100
[  203.931981][T11733]  kmem_cache_alloc_node_noprof+0x77/0x380
[  203.932003][T11733]  ? __alloc_skb+0x1c3/0x440
[  203.932028][T11733]  __alloc_skb+0x1c3/0x440
[  203.982480][T11733]  ? __pfx___alloc_skb+0x10/0x10
[  203.987451][T11733]  ? netlink_autobind+0xd6/0x2f0
[  203.992416][T11733]  ? netlink_autobind+0x2b0/0x2f0
[  203.997476][T11733]  netlink_sendmsg+0x638/0xcb0
[  204.002281][T11733]  ? __pfx_netlink_sendmsg+0x10/0x10
[  204.007602][T11733]  ? aa_sock_msg_perm+0x91/0x160
[  204.012570][T11733]  ? __pfx_netlink_sendmsg+0x10/0x10
[  204.017879][T11733]  __sock_sendmsg+0x221/0x270
[  204.022664][T11733]  ____sys_sendmsg+0x52a/0x7e0
[  204.027464][T11733]  ? __pfx_____sys_sendmsg+0x10/0x10
[  204.032776][T11733]  ? __fget_files+0x2a/0x410
[  204.037400][T11733]  ? __fget_files+0x2a/0x410
[  204.042025][T11733]  __sys_sendmsg+0x269/0x350
[  204.046642][T11733]  ? __pfx_lock_release+0x10/0x10
[  204.051696][T11733]  ? __pfx___sys_sendmsg+0x10/0x10
[  204.056849][T11733]  ? __pfx_vfs_write+0x10/0x10
[  204.061664][T11733]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  204.068026][T11733]  ? do_syscall_64+0x100/0x230
[  204.072824][T11733]  ? do_syscall_64+0xb6/0x230
[  204.077527][T11733]  do_syscall_64+0xf3/0x230
[  204.081567][T11742] FAULT_INJECTION: forcing a failure.
[  204.081567][T11742] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  204.082037][T11733]  ? clear_bhb_loop+0x35/0x90
[  204.082067][T11733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.105663][T11733] RIP: 0033:0x7f4f4c185d29
[  204.110094][T11733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.129724][T11733] RSP: 002b:00007f4f4d091038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  204.138171][T11733] RAX: ffffffffffffffda RBX: 00007f4f4c375fa0 RCX: 00007f4f4c185d29
[  204.146169][T11733] RDX: 0000000000004000 RSI: 0000000020000280 RDI: 0000000000000003
[  204.154164][T11733] RBP: 00007f4f4d091090 R08: 0000000000000000 R09: 0000000000000000
[  204.162160][T11733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.164852][T11746] netlink: 9 bytes leftover after parsing attributes in process `syz.1.2106'.
[  204.170137][T11733] R13: 0000000000000000 R14: 00007f4f4c375fa0 R15: 00007ffc7ab16008
[  204.170173][T11733]  </TASK>
[  204.200139][T11742] CPU: 0 UID: 0 PID: 11742 Comm: syz.0.2101 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  204.210983][T11742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  204.221067][T11742] Call Trace:
[  204.224371][T11742]  <TASK>
[  204.227327][T11742]  dump_stack_lvl+0x241/0x360
[  204.232039][T11742]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.237270][T11742]  ? __pfx__printk+0x10/0x10
[  204.241891][T11742]  ? __pfx_lock_release+0x10/0x10
[  204.246950][T11742]  should_fail_ex+0x3b0/0x4e0
[  204.251658][T11742]  _copy_from_user+0x2f/0xc0
[  204.256281][T11742]  copy_msghdr_from_user+0xae/0x680
[  204.261509][T11742]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  204.267337][T11742]  ? __fget_files+0x2a/0x410
[  204.271955][T11742]  ? __fget_files+0x2a/0x410
[  204.276579][T11742]  __sys_sendmsg+0x209/0x350
[  204.281199][T11742]  ? __pfx_lock_release+0x10/0x10
[  204.286257][T11742]  ? __pfx___sys_sendmsg+0x10/0x10
[  204.291412][T11742]  ? __pfx_vfs_write+0x10/0x10
[  204.296229][T11742]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  204.302584][T11742]  ? do_syscall_64+0x100/0x230
[  204.307380][T11742]  ? do_syscall_64+0xb6/0x230
[  204.312080][T11742]  do_syscall_64+0xf3/0x230
[  204.316609][T11742]  ? clear_bhb_loop+0x35/0x90
[  204.321309][T11742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.327200][T11742] RIP: 0033:0x7f7a9d185d29
[  204.331620][T11742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.351258][T11742] RSP: 002b:00007f7a9e036038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  204.359681][T11742] RAX: ffffffffffffffda RBX: 00007f7a9d376160 RCX: 00007f7a9d185d29
[  204.367649][T11742] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  204.375617][T11742] RBP: 00007f7a9e036090 R08: 0000000000000000 R09: 0000000000000000
[  204.383583][T11742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.391550][T11742] R13: 0000000000000001 R14: 00007f7a9d376160 R15: 00007ffc522294b8
[  204.399536][T11742]  </TASK>
[  204.407463][T11753] netlink: 5 bytes leftover after parsing attributes in process `syz.1.2106'.
[  204.419475][T11746] gretap0: entered promiscuous mode
[  204.491220][T11753] 0ªX¹¦D: renamed from gretap0
[  204.514929][T11753] 0ªX¹¦D: left promiscuous mode
[  204.532578][T11753] 0ªX¹¦D: entered allmulticast mode
[  204.542945][T11758] netlink: 92 bytes leftover after parsing attributes in process `syz.0.2108'.
[  204.555692][T11753] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[  204.746221][T11768] netlink: 'syz.4.2113': attribute type 2 has an invalid length.
[  204.888806][T11770] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  204.946250][T11770] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.011462][T11782] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2119'.
[  205.030773][T11775] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  205.567594][T11770] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  205.590339][T11770] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.708015][T11770] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  205.731814][T11770] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.756282][T11812] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2126'.
[  205.829109][T11770] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  205.883328][T11770] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.921754][T11820] ebtables: ebtables: counters copy to user failed while replacing table
[  206.046301][T11770] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  206.056012][T11770] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  206.072176][T11770] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  206.080419][T11770] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  206.097287][T11770] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  206.116828][T11770] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  206.155846][T11770] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  206.171520][T11770] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  206.277781][T11832] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2133'.
[  206.607910][T11858] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2144'.
[  206.782969][T11866] IPVS: set_ctl: invalid protocol: 135 0.0.0.0:20000
[  206.869706][T11871] lo speed is unknown, defaulting to 1000
[  206.882208][T11874] netlink: 'syz.0.2150': attribute type 2 has an invalid length.
[  206.895403][T11876] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2151'.
[  206.908754][T11874] netlink: 'syz.0.2150': attribute type 1 has an invalid length.
[  207.022823][T11882] veth0_to_bridge: entered promiscuous mode
[  207.103353][T11890] netlink: 'syz.1.2153': attribute type 1 has an invalid length.
[  207.112030][T11890] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2153'.
[  207.321654][T11873] veth0_to_bridge: left promiscuous mode
[  207.637296][T11913] lo speed is unknown, defaulting to 1000
[  207.763049][ T5830] block nbd30: Receive control failed (result -107)
[  207.801328][T11908] nbd30: detected capacity change from 0 to 256
[  208.117637][T11931] C: renamed from team_slave_0 (while UP)
[  208.162431][T11931] netlink: 'syz.2.2167': attribute type 1 has an invalid length.
[  208.191211][T11931] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  208.788274][T11964] syzkaller1: entered promiscuous mode
[  208.794491][T11964] syzkaller1: entered allmulticast mode
[  209.314728][T11979] netlink: 'syz.2.2181': attribute type 11 has an invalid length.
[  209.340259][T11978] netlink: 'syz.2.2181': attribute type 11 has an invalid length.
[  209.724495][T12001] __nla_validate_parse: 6 callbacks suppressed
[  209.724517][T12001] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2187'.
[  209.761872][T12001] (unnamed net_device) (uninitialized): option primary_reselect: invalid value (11)
[  209.789160][T12001] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  209.966702][T12014] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  210.002898][T12014] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2193'.
[  210.059462][T12020] ebtables: ebtables: counters copy to user failed while replacing table
[  210.317302][T12042] x_tables: duplicate underflow at hook 1
[  210.317308][T12043] x_tables: duplicate underflow at hook 1
[  210.748225][T12063] No such timeout policy "syz0"
[  210.855720][T12069] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  210.915658][T12069] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2212'.
[  211.224825][T12098] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2222'.
[  211.376915][T12107] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  211.436134][T12103] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2224'.
[  211.469863][T12113] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  211.893449][T12143] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2235'.
[  211.970853][T12148] netlink: 452 bytes leftover after parsing attributes in process `syz.3.2238'.
[  212.151490][T12148] netlink: 104 bytes leftover after parsing attributes in process `syz.3.2238'.
[  212.321918][T12164] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  212.586369][T12176] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2249'.
[  212.700737][T12180] ebtables: ebtables: counters copy to user failed while replacing table
[  212.796504][T12191] xt_CT: You must specify a L4 protocol and not use inversions on it
[  212.825282][T12194] FAULT_INJECTION: forcing a failure.
[  212.825282][T12194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  212.856061][T12194] CPU: 1 UID: 0 PID: 12194 Comm: syz.4.2255 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  212.866888][T12194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  212.876971][T12194] Call Trace:
[  212.880268][T12194]  <TASK>
[  212.883217][T12194]  dump_stack_lvl+0x241/0x360
[  212.887928][T12194]  ? __pfx_dump_stack_lvl+0x10/0x10
[  212.893158][T12194]  ? __pfx__printk+0x10/0x10
[  212.897780][T12194]  ? ip_mroute_setsockopt+0x15b/0x1190
[  212.903260][T12194]  should_fail_ex+0x3b0/0x4e0
[  212.907934][T12194]  _copy_from_user+0x2f/0xc0
[  212.912532][T12194]  copy_from_sockptr+0x62/0xa0
[  212.917300][T12194]  ip_mroute_setsockopt+0x77a/0x1190
[  212.922601][T12194]  ? __pfx_ip_mroute_setsockopt+0x10/0x10
[  212.928423][T12194]  do_ip_setsockopt+0x129f/0x3cd0
[  212.933459][T12194]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  212.938842][T12194]  ? aa_sk_perm+0x96d/0xab0
[  212.943353][T12194]  ? __pfx_aa_sk_perm+0x10/0x10
[  212.948214][T12194]  ip_setsockopt+0x63/0x100
[  212.952712][T12194]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  212.958605][T12194]  do_sock_setsockopt+0x3af/0x720
[  212.963630][T12194]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  212.969176][T12194]  ? __fget_files+0x395/0x410
[  212.973855][T12194]  ? __fget_files+0x2a/0x410
[  212.978487][T12194]  __x64_sys_setsockopt+0x1ee/0x280
[  212.983690][T12194]  do_syscall_64+0xf3/0x230
[  212.988192][T12194]  ? clear_bhb_loop+0x35/0x90
[  212.992875][T12194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.998851][T12194] RIP: 0033:0x7f26f7185d29
[  213.003261][T12194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.022863][T12194] RSP: 002b:00007f26f7f47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  213.031276][T12194] RAX: ffffffffffffffda RBX: 00007f26f7375fa0 RCX: 00007f26f7185d29
[  213.039266][T12194] RDX: 00000000000000d4 RSI: 0000000000000000 RDI: 0000000000000005
[  213.047232][T12194] RBP: 00007f26f7f47090 R08: 0000000000000004 R09: 0000000000000000
[  213.055197][T12194] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000001
[  213.063164][T12194] R13: 0000000000000000 R14: 00007f26f7375fa0 R15: 00007fff766a8a28
[  213.071160][T12194]  </TASK>
[  213.101797][T12202] FAULT_INJECTION: forcing a failure.
[  213.101797][T12202] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  213.150986][T12202] CPU: 0 UID: 0 PID: 12202 Comm: syz.0.2257 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  213.161814][T12202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  213.171894][T12202] Call Trace:
[  213.175203][T12202]  <TASK>
[  213.178163][T12202]  dump_stack_lvl+0x241/0x360
[  213.182875][T12202]  ? __pfx_dump_stack_lvl+0x10/0x10
[  213.188190][T12202]  ? __pfx__printk+0x10/0x10
[  213.192811][T12202]  ? snprintf+0xda/0x120
[  213.197086][T12202]  should_fail_ex+0x3b0/0x4e0
[  213.201792][T12202]  _copy_to_user+0x31/0xb0
[  213.206229][T12202]  simple_read_from_buffer+0xca/0x150
[  213.211621][T12202]  proc_fail_nth_read+0x1e9/0x250
[  213.216677][T12202]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  213.222232][T12202]  ? rw_verify_area+0x55e/0x6f0
[  213.227082][T12202]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  213.232625][T12202]  vfs_read+0x1fc/0xb70
[  213.236786][T12202]  ? __pfx___mutex_lock+0x10/0x10
[  213.241811][T12202]  ? __pfx_vfs_read+0x10/0x10
[  213.246748][T12202]  ? __fget_files+0x2a/0x410
[  213.251339][T12202]  ? __fget_files+0x395/0x410
[  213.256009][T12202]  ? __fget_files+0x2a/0x410
[  213.260603][T12202]  ksys_read+0x18f/0x2b0
[  213.264842][T12202]  ? __pfx_ksys_read+0x10/0x10
[  213.269598][T12202]  ? do_syscall_64+0x100/0x230
[  213.274360][T12202]  ? do_syscall_64+0xb6/0x230
[  213.279033][T12202]  do_syscall_64+0xf3/0x230
[  213.283529][T12202]  ? clear_bhb_loop+0x35/0x90
[  213.288203][T12202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.294089][T12202] RIP: 0033:0x7f7a9d18473c
[  213.298497][T12202] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  213.318097][T12202] RSP: 002b:00007f7a9e078030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  213.326509][T12202] RAX: ffffffffffffffda RBX: 00007f7a9d375fa0 RCX: 00007f7a9d18473c
[  213.334476][T12202] RDX: 000000000000000f RSI: 00007f7a9e0780a0 RDI: 0000000000000006
[  213.342444][T12202] RBP: 00007f7a9e078090 R08: 0000000000000000 R09: 0000000000000000
[  213.350410][T12202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.358390][T12202] R13: 0000000000000000 R14: 00007f7a9d375fa0 R15: 00007ffc522294b8
[  213.366370][T12202]  </TASK>
[  213.534385][T12215] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  213.889855][T12236] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2270'.
[  213.961833][T12229] FAULT_INJECTION: forcing a failure.
[  213.961833][T12229] name failslab, interval 1, probability 0, space 0, times 0
[  213.984325][T12229] CPU: 1 UID: 0 PID: 12229 Comm: syz.0.2269 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  213.995144][T12229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  214.005225][T12229] Call Trace:
[  214.007292][T12243] netlink: 'syz.3.2273': attribute type 1 has an invalid length.
[  214.008506][T12229]  <TASK>
[  214.008519][T12229]  dump_stack_lvl+0x241/0x360
[  214.023883][T12229]  ? __pfx_dump_stack_lvl+0x10/0x10
[  214.029116][T12229]  ? __pfx__printk+0x10/0x10
[  214.033736][T12229]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  214.039750][T12229]  ? __pfx___might_resched+0x10/0x10
[  214.045073][T12229]  should_fail_ex+0x3b0/0x4e0
[  214.049783][T12229]  should_failslab+0xac/0x100
[  214.054496][T12229]  kmem_cache_alloc_node_noprof+0x77/0x380
[  214.060335][T12229]  ? __alloc_skb+0x1c3/0x440
[  214.064959][T12229]  __alloc_skb+0x1c3/0x440
[  214.069406][T12229]  ? __pfx___alloc_skb+0x10/0x10
[  214.074366][T12229]  ? netlink_ack_tlv_len+0x6e/0x200
[  214.079589][T12229]  netlink_ack+0x145/0xa50
[  214.084050][T12229]  netlink_rcv_skb+0x262/0x430
[  214.088840][T12229]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  214.094341][T12229]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  214.099676][T12229]  ? netlink_deliver_tap+0x2e/0x1b0
[  214.104902][T12229]  netlink_unicast+0x7f6/0x990
[  214.109700][T12229]  ? __pfx_netlink_unicast+0x10/0x10
[  214.115005][T12229]  ? __virt_addr_valid+0x45f/0x530
[  214.120142][T12229]  ? __phys_addr_symbol+0x2f/0x70
[  214.125194][T12229]  ? __check_object_size+0x47a/0x730
[  214.130536][T12229]  netlink_sendmsg+0x8e4/0xcb0
[  214.135347][T12229]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.140669][T12229]  ? aa_sock_msg_perm+0x91/0x160
[  214.145633][T12229]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.150946][T12229]  __sock_sendmsg+0x221/0x270
[  214.155652][T12229]  ____sys_sendmsg+0x52a/0x7e0
[  214.160452][T12229]  ? __pfx_____sys_sendmsg+0x10/0x10
[  214.165765][T12229]  ? __fget_files+0x2a/0x410
[  214.170388][T12229]  ? __fget_files+0x2a/0x410
[  214.175013][T12229]  __sys_sendmsg+0x269/0x350
[  214.179634][T12229]  ? __pfx_lock_release+0x10/0x10
[  214.184685][T12229]  ? __pfx___sys_sendmsg+0x10/0x10
[  214.189835][T12229]  ? __pfx_vfs_write+0x10/0x10
[  214.194648][T12229]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  214.200999][T12229]  ? do_syscall_64+0x100/0x230
[  214.205786][T12229]  ? do_syscall_64+0xb6/0x230
[  214.210491][T12229]  do_syscall_64+0xf3/0x230
[  214.215013][T12229]  ? clear_bhb_loop+0x35/0x90
[  214.219714][T12229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.225634][T12229] RIP: 0033:0x7f7a9d185d29
[  214.230072][T12229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.249704][T12229] RSP: 002b:00007f7a9e078038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  214.258153][T12229] RAX: ffffffffffffffda RBX: 00007f7a9d375fa0 RCX: 00007f7a9d185d29
[  214.266156][T12229] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  214.274152][T12229] RBP: 00007f7a9e078090 R08: 0000000000000000 R09: 0000000000000000
[  214.282153][T12229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.290150][T12229] R13: 0000000000000000 R14: 00007f7a9d375fa0 R15: 00007ffc522294b8
[  214.298167][T12229]  </TASK>
[  214.360324][T12259] x_tables: arp_tables: .0 target: invalid size 8 (kernel) != (user) 0
[  214.576198][T12277] pimreg: entered allmulticast mode
[  214.638966][T12277] pimreg: left allmulticast mode
[  214.813193][T12290] lo speed is unknown, defaulting to 1000
[  215.592520][T12309] __nla_validate_parse: 7 callbacks suppressed
[  215.592540][T12309] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2290'.
[  215.624117][T12328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2293'.
[  215.633450][T12328] FAULT_INJECTION: forcing a failure.
[  215.633450][T12328] name failslab, interval 1, probability 0, space 0, times 0
[  215.653131][T12328] CPU: 1 UID: 0 PID: 12328 Comm: syz.1.2293 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  215.663942][T12328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  215.674022][T12328] Call Trace:
[  215.677320][T12328]  <TASK>
[  215.680274][T12328]  dump_stack_lvl+0x241/0x360
[  215.684988][T12328]  ? __pfx_dump_stack_lvl+0x10/0x10
[  215.690230][T12328]  ? __pfx__printk+0x10/0x10
[  215.694850][T12328]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  215.700856][T12328]  ? __pfx___might_resched+0x10/0x10
[  215.706168][T12328]  should_fail_ex+0x3b0/0x4e0
[  215.710870][T12328]  should_failslab+0xac/0x100
[  215.715582][T12328]  kmem_cache_alloc_node_noprof+0x77/0x380
[  215.721424][T12328]  ? __alloc_skb+0x1c3/0x440
[  215.726055][T12328]  __alloc_skb+0x1c3/0x440
[  215.730503][T12328]  ? __pfx___alloc_skb+0x10/0x10
[  215.735476][T12328]  ? netlink_ack_tlv_len+0x6e/0x200
[  215.740703][T12328]  netlink_ack+0x145/0xa50
[  215.745174][T12328]  netlink_rcv_skb+0x262/0x430
[  215.749965][T12328]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  215.755465][T12328]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  215.760800][T12328]  ? netlink_deliver_tap+0x2e/0x1b0
[  215.766023][T12328]  netlink_unicast+0x7f6/0x990
[  215.770818][T12328]  ? __pfx_netlink_unicast+0x10/0x10
[  215.776130][T12328]  ? __virt_addr_valid+0x45f/0x530
[  215.781360][T12328]  ? __phys_addr_symbol+0x2f/0x70
[  215.786413][T12328]  ? __check_object_size+0x47a/0x730
[  215.791743][T12328]  netlink_sendmsg+0x8e4/0xcb0
[  215.796552][T12328]  ? __pfx_netlink_sendmsg+0x10/0x10
[  215.801873][T12328]  ? aa_sock_msg_perm+0x91/0x160
[  215.806836][T12328]  ? __pfx_netlink_sendmsg+0x10/0x10
[  215.812166][T12328]  __sock_sendmsg+0x221/0x270
[  215.816877][T12328]  ____sys_sendmsg+0x52a/0x7e0
[  215.821678][T12328]  ? __pfx_____sys_sendmsg+0x10/0x10
[  215.826992][T12328]  ? __fget_files+0x2a/0x410
[  215.831615][T12328]  ? __fget_files+0x2a/0x410
[  215.836245][T12328]  __sys_sendmsg+0x269/0x350
[  215.840864][T12328]  ? __pfx_lock_release+0x10/0x10
[  215.845927][T12328]  ? __pfx___sys_sendmsg+0x10/0x10
[  215.851075][T12328]  ? __pfx_vfs_write+0x10/0x10
[  215.855892][T12328]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  215.862249][T12328]  ? do_syscall_64+0x100/0x230
[  215.867041][T12328]  ? do_syscall_64+0xb6/0x230
[  215.871749][T12328]  do_syscall_64+0xf3/0x230
[  215.876279][T12328]  ? clear_bhb_loop+0x35/0x90
[  215.880982][T12328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.886896][T12328] RIP: 0033:0x7f2d0b185d29
[  215.891335][T12328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.910976][T12328] RSP: 002b:00007f2d0bf12038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  215.919449][T12328] RAX: ffffffffffffffda RBX: 00007f2d0b376160 RCX: 00007f2d0b185d29
[  215.927448][T12328] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  215.935437][T12328] RBP: 00007f2d0bf12090 R08: 0000000000000000 R09: 0000000000000000
[  215.943434][T12328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.951431][T12328] R13: 0000000000000001 R14: 00007f2d0b376160 R15: 00007ffc0f4a4d78
[  215.959444][T12328]  </TASK>
[  216.641817][T12356] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2303'.
[  216.663988][T12356] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2303'.
[  216.832862][T12366] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2305'.
[  216.874703][T12366] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2305'.
[  216.902722][T12371] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2305'.
[  216.995295][T12375] netlink: 'syz.1.2310': attribute type 3 has an invalid length.
[  217.003526][T12375] netlink: 'syz.1.2310': attribute type 1 has an invalid length.
[  217.315608][T12384] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2313'.
[  217.466027][T12396] bridge2: entered promiscuous mode
[  217.477093][T12397] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2313'.
[  217.499358][T12396] bridge2: entered allmulticast mode
[  217.543309][T12399] netlink: 'syz.0.2315': attribute type 10 has an invalid length.
[  217.609366][T12389] bridge0: port 4(ip6gretap0) entered blocking state
[  217.619443][T12389] bridge0: port 4(ip6gretap0) entered disabled state
[  217.627978][T12389] ip6gretap0: entered allmulticast mode
[  217.644427][T12389] ip6gretap0: entered promiscuous mode
[  217.654766][T12389] bridge0: port 4(ip6gretap0) entered blocking state
[  217.661892][T12389] bridge0: port 4(ip6gretap0) entered forwarding state
[  217.933277][T12409] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2320'.
[  218.039406][T12413] bridge0: port 1(vlan5) entered blocking state
[  218.061144][T12413] bridge0: port 1(vlan5) entered disabled state
[  218.067641][T12413] vlan5: entered allmulticast mode
[  218.089088][T12413] vlan5: entered promiscuous mode
[  218.097629][T12413] 0ªX¹¦D: entered promiscuous mode
[  218.423166][ T5830] block nbd31: Receive control failed (result -107)
[  218.472326][T12426] nbd31: detected capacity change from 0 to 256
[  218.535344][T12428] ax25_connect(): syz.2.2327 uses autobind, please contact jreuter@yaina.de
[  218.548319][T12435] hsr_slave_0: left promiscuous mode
[  218.555874][T12435] hsr_slave_1: left promiscuous mode
[  218.677781][T12430] lo speed is unknown, defaulting to 1000
[  218.878799][T12445] netlink: 'syz.2.2334': attribute type 1 has an invalid length.
[  218.915471][T12445] bond0 (unregistering): Released all slaves
[  218.977977][T12450] dvmrp0: entered allmulticast mode
[  219.018142][T12454] ieee802154 phy1 wpan1: encryption failed: -22
[  219.135829][T12430] openvswitch: netlink: Multiple metadata blocks provided
[  219.502859][   T35] bond0 (unregistering): Released all slaves
[  219.655785][ T5830] block nbd32: Receive control failed (result -107)
[  219.721600][T12475] nbd32: detected capacity change from 0 to 256
[  219.746900][T12485] dccp_v6_rcv: dropped packet with invalid checksum
[  219.979075][T12497] RDS: rds_bind could not find a transport for ::ffff:10.1.1.1, load rds_tcp or rds_rdma?
[  220.055998][T12497] Bluetooth: hci0: Opcode 0x0401 failed: -22
[  220.450231][ T5830] block nbd33: Receive control failed (result -107)
[  220.462435][T12518] nbd33: detected capacity change from 0 to 256
[  221.143237][T12539] SET target dimension over the limit!
[  221.327885][T12547] __nla_validate_parse: 11 callbacks suppressed
[  221.327907][T12547] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2365'.
[  221.444939][T12553] syzkaller1: entered promiscuous mode
[  221.450475][T12553] syzkaller1: entered allmulticast mode
[  221.454814][T12555] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2369'.
[  221.628735][T12561] netlink: 'syz.4.2371': attribute type 1 has an invalid length.
[  221.657033][ T5880] IPVS: starting estimator thread 0...
[  221.664502][T12561] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2371'.
[  221.771445][T12565] IPVS: using max 21 ests per chain, 50400 per kthread
[  221.782337][T12564] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2373'.
[  221.917616][T12578] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2376'.
[  222.013399][T12578] macvlan0: entered promiscuous mode
[  222.020028][T12578] ipvlan0: entered promiscuous mode
[  222.028824][T12578] ipvlan0: left promiscuous mode
[  222.052457][T12578] macvlan0: left promiscuous mode
[  222.076231][T12590] netlink: 'syz.1.2376': attribute type 15 has an invalid length.
[  222.083071][T12589] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2379'.
[  222.129972][ T5830] Bluetooth: hci0: command tx timeout
[  222.161438][T12589] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2379'.
[  222.176310][T12589] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2379'.
[  222.222309][ T5830] block nbd34: Receive control failed (result -107)
[  222.272126][T12589] nbd34: detected capacity change from 0 to 256
[  222.398066][T12603] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2383'.
[  222.441236][T12606] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2386'.
[  223.245816][T12640] sctp: [Deprecated]: syz.2.2395 (pid 12640) Use of struct sctp_assoc_value in delayed_ack socket option.
[  223.245816][T12640] Use struct sctp_sack_info instead
[  223.737052][T12656] vxcan1: MTU too low for tipc bearer
[  223.756214][T12656] tipc: Enabling of bearer <eth:vxcan1> rejected, failed to enable media
[  223.798554][T12651] vxcan1: MTU too low for tipc bearer
[  223.840476][T12651] tipc: Enabling of bearer <eth:vxcan1> rejected, failed to enable media
[  224.009796][T12661] netlink: 'syz.2.2402': attribute type 1 has an invalid length.
[  224.041406][T12662] netlink: 'syz.2.2402': attribute type 1 has an invalid length.
[  224.733399][T12686] raw_sendmsg: syz.4.2408 forgot to set AF_INET. Fix it!
[  225.423738][T12702] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  225.450375][T12705] bridge_slave_0 (unregistering): left allmulticast mode
[  225.465514][T12705] bridge_slave_0 (unregistering): left promiscuous mode
[  225.489083][T12705] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.500338][T12702] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  225.607489][T12702] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  225.891351][T12714] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode
[  225.898737][T12714] macvlan2: entered allmulticast mode
[  225.921034][T12714] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode
[  225.941646][T12714] bridge1: port 1(macvlan2) entered blocking state
[  225.961123][T12714] bridge1: port 1(macvlan2) entered disabled state
[  225.969045][T12714] macvlan2: entered promiscuous mode
[  226.126955][T12721] bridge0: port 1(vlan5) entered blocking state
[  226.141445][T12721] bridge0: port 1(vlan5) entered disabled state
[  226.165582][T12721] vlan5: entered allmulticast mode
[  226.191239][T12721] gretap0: entered allmulticast mode
[  226.203091][T12721] vlan5: entered promiscuous mode
[  226.208305][T12721] gretap0: entered promiscuous mode
[  226.237609][T12721] bridge0: port 1(vlan5) entered blocking state
[  226.244018][T12721] bridge0: port 1(vlan5) entered forwarding state
[  226.318906][T12726] tipc: Started in network mode
[  226.354721][T12726] tipc: Node identity 7, cluster identity 4711
[  226.381029][T12726] tipc: Node number set to 7
[  226.551859][T12737] netlink: 'syz.4.2428': attribute type 2 has an invalid length.
[  226.570940][T12737] __nla_validate_parse: 8 callbacks suppressed
[  226.570958][T12737] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2428'.
[  226.616148][T12744] netlink: 88 bytes leftover after parsing attributes in process `syz.0.2429'.
[  226.708625][T12737] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2428'.
[  226.786514][T12753] netlink: 1196 bytes leftover after parsing attributes in process `syz.3.2434'.
[  226.817841][T12753] openvswitch: netlink: Message has 5 unknown bytes.
[  227.463447][T12778] lo speed is unknown, defaulting to 1000
[  227.584940][T12783] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2443'.
[  227.682400][T12778] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2442'.
[  227.724435][T12778] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2442'.
[  227.803790][T12778] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  228.035134][T12794] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2446'.
[  228.052607][T12794] netlink: 92 bytes leftover after parsing attributes in process `syz.0.2446'.
[  228.053592][T12796] netlink: 'syz.4.2447': attribute type 2 has an invalid length.
[  228.096623][T12796] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2447'.
[  228.210328][T12800] netlink: 'syz.0.2448': attribute type 2 has an invalid length.
[  228.669204][T12807] netlink: 'syz.2.2450': attribute type 3 has an invalid length.
[  229.076818][T12826] netlink: 'syz.2.2456': attribute type 2 has an invalid length.
[  229.234171][ T5830] block nbd35: Receive control failed (result -107)
[  229.256488][T12831] ebtables: ebtables: counters copy to user failed while replacing table
[  229.261158][T12828] nbd35: detected capacity change from 0 to 256
[  230.464584][T12868] ebtables: ebtables: counters copy to user failed while replacing table
[  230.699245][T12885] vxcan0: tx drop: invalid da for name 0xffffffffffffffff
[  231.359173][T12918] netlink: 'syz.1.2488': attribute type 2 has an invalid length.
[  231.368354][T12909] ebtables: ebtables: counters copy to user failed while replacing table
[  231.530837][T12922] (unnamed net_device) (uninitialized): option ad_select: invalid value (7)
[  231.659458][T12930] __nla_validate_parse: 16 callbacks suppressed
[  231.659479][T12930] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2492'.
[  231.678136][T12930] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2492'.
[  231.846371][T12930] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2492'.
[  231.876166][T12930] IPVS: length: 251 != 86040
[  232.671315][T12969] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2505'.
[  232.821462][T12969] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2505'.
[  232.833927][T12969] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2505'.
[  232.873453][ T5830] block nbd36: Receive control failed (result -107)
[  232.951354][T12969] nbd36: detected capacity change from 0 to 256
[  233.449429][T12989] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  233.595043][T12993] netlink: 'syz.4.2513': attribute type 2 has an invalid length.
[  234.243656][T13031] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2529'.
[  234.308610][T13034] netlink: 324 bytes leftover after parsing attributes in process `syz.3.2531'.
[  234.453907][    C1] vxcan0: j1939_tp_rxtimer: 0xffff88814d453800: rx timeout, send abort
[  234.462685][    C1] vxcan0: j1939_tp_rxtimer: 0xffff88814d453000: rx timeout, send abort
[  234.471372][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff88814d453800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  234.485867][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff88814d453000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  234.507893][T13045] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  234.578059][T13050] netlink: 'syz.3.2535': attribute type 3 has an invalid length.
[  234.712544][T13052] IPVS: Unknown mcast interface: nr0
[  234.858951][T13059] netlink: 'syz.3.2539': attribute type 2 has an invalid length.
[  234.881436][T13059] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2539'.
[  234.907445][T13062] netlink: 'syz.0.2540': attribute type 2 has an invalid length.
[  234.938721][T13062] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2540'.
[  234.970991][T13066] dccp_close: ABORT with 214 bytes unread
[  235.429722][T13079] netlink: 'syz.1.2545': attribute type 2 has an invalid length.
[  235.703764][T13104] netlink: 'syz.3.2552': attribute type 3 has an invalid length.
[  235.793087][T13114] dccp_close: ABORT with 214 bytes unread
[  235.977101][T13126] syzkaller1: entered promiscuous mode
[  235.984218][T13126] syzkaller1: entered allmulticast mode
[  236.148382][T13130] netlink: 'syz.1.2560': attribute type 2 has an invalid length.
[  236.269030][T13136] sctp: [Deprecated]: syz.1.2562 (pid 13136) Use of struct sctp_assoc_value in delayed_ack socket option.
[  236.269030][T13136] Use struct sctp_sack_info instead
[  236.302196][T13133] ebtables: ebtables: counters copy to user failed while replacing table
[  236.346511][T13140] netlink: 'syz.0.2563': attribute type 2 has an invalid length.
[  236.584418][T13155] netlink: 'syz.2.2569': attribute type 3 has an invalid length.
[  236.748140][T13165] netlink: 'syz.1.2572': attribute type 2 has an invalid length.
[  236.756693][T13165] __nla_validate_parse: 6 callbacks suppressed
[  236.756709][T13165] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2572'.
[  236.777115][T13165] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2572'.
[  237.007234][T13181] gtp0: entered promiscuous mode
[  237.013863][T13181] gtp0: entered allmulticast mode
[  237.027216][T13181] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2577'.
[  237.207119][T13192] IPVS: sync thread started: state = BACKUP, mcast_ifn = gre0, syncid = 4, id = 0
[  237.272160][T13193] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2581'.
[  237.299802][T13193] IPVS: stopping backup sync thread 13192 ...
[  237.325433][T13193] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2581'.
[  237.598226][T13200] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2585'.
[  237.617513][T13199] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  237.631022][T13199] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  237.771379][T13209] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2587'.
[  237.802568][T13209] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2587'.
[  237.895690][T13214] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2589'.
[  237.991283][T13214] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2589'.
[  238.052958][ T5830] block nbd37: Receive control failed (result -107)
[  238.091313][T13214] nbd37: detected capacity change from 0 to 256
[  238.917408][T13257] ebtables: ebtables: counters copy to user failed while replacing table
[  239.198476][T13274] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 40
[  239.847982][T13317] ebtables: ebtables: counters copy to user failed while replacing table
[  240.093416][ T5830] block nbd38: Receive control failed (result -107)
[  240.161461][T13330] nbd38: detected capacity change from 0 to 256
[  240.654542][T13358] 0ªX¹¦D: left allmulticast mode
[  240.659561][T13358] 0ªX¹¦D: left promiscuous mode
[  240.756901][T13358] sit0: left promiscuous mode
[  240.925038][T13366] ebtables: ebtables: counters copy to user failed while replacing table
[  241.432527][T13358] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  241.467185][T13358] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  241.504775][ T5830] block nbd39: Receive control failed (result -107)
[  241.541228][T13385] nbd39: detected capacity change from 0 to 256
[  241.637422][T13358] tipc: Resetting bearer <eth:vlan0>
[  241.801183][T13358] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  241.817507][T13358] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  241.826625][T13358] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  241.835786][T13358] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  241.854695][T13358] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[  241.905745][T13358] vlan3: left promiscuous mode
[  241.914420][T13358] vlan4: left promiscuous mode
[  241.919209][T13358] vlan4: left allmulticast mode
[  241.925559][T13358] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  241.942786][T13358] gtp0: left promiscuous mode
[  241.947529][T13358] gtp0: left allmulticast mode
[  242.035258][T13396] __nla_validate_parse: 11 callbacks suppressed
[  242.035278][T13396] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2646'.
[  242.552053][T13431] x_tables: ip_tables: udp match: only valid for protocol 17
[  242.562436][T13428] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2656'.
[  242.950719][T13446] validate_nla: 3 callbacks suppressed
[  242.950740][T13446] netlink: 'syz.2.2661': attribute type 13 has an invalid length.
[  243.610151][T13464] lo speed is unknown, defaulting to 1000
[  243.647177][T13463] lo speed is unknown, defaulting to 1000
[  243.664042][T13472] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2668'.
[  243.687363][T13474] netlink: 'syz.0.2672': attribute type 3 has an invalid length.
[  243.924822][T13486] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2677'.
[  244.005135][T13488] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  244.608345][T13518] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2691'.
[  244.618393][T13518] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2691'.
[  244.631415][T13518] gtp0: entered promiscuous mode
[  244.636400][T13518] gtp0: entered allmulticast mode
[  244.655621][T13518] syzkaller1: tun_chr_ioctl cmd 2147767521
[  244.750143][T13522] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2693'.
[  244.765737][T13522] netlink: 'syz.4.2693': attribute type 1 has an invalid length.
[  244.777745][T13522] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2693'.
[  245.086432][T13541] bridge0: port 1(vlan1) entered blocking state
[  245.119704][T13541] bridge0: port 1(vlan1) entered disabled state
[  245.141342][T13541] vlan1: entered allmulticast mode
[  245.146523][T13541] gretap0: entered allmulticast mode
[  245.159041][T13541] vlan1: entered promiscuous mode
[  245.164612][T13541] gretap0: entered promiscuous mode
[  245.272382][T13551] netlink: 'syz.3.2706': attribute type 21 has an invalid length.
[  245.280635][T13551] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2706'.
[  245.438947][T13564] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2710'.
[  245.455031][T13565] netlink: 'syz.2.2709': attribute type 21 has an invalid length.
[  245.544329][ T5830] block nbd40: Receive control failed (result -107)
[  245.591231][T13564] nbd40: detected capacity change from 0 to 256
[  245.639017][T13577] netlink: 'syz.1.2713': attribute type 2 has an invalid length.
[  245.865932][T13589] netlink: 'syz.1.2716': attribute type 2 has an invalid length.
[  245.932382][T13588] netlink: 'syz.0.2717': attribute type 1 has an invalid length.
[  245.940443][T13588] netlink: 'syz.0.2717': attribute type 8 has an invalid length.
[  245.953662][T13588] netlink: 'syz.0.2717': attribute type 6 has an invalid length.
[  246.265335][T13613] sctp: [Deprecated]: syz.1.2724 (pid 13613) Use of int in maxseg socket option.
[  246.265335][T13613] Use struct sctp_assoc_value instead
[  246.363449][ T5830] block nbd41: Receive control failed (result -107)
[  246.394596][T13614] nbd41: detected capacity change from 0 to 256
[  246.870447][T13646] x_tables: duplicate underflow at hook 1
[  247.161532][   T30] INFO: task udevd:6347 blocked for more than 143 seconds.
[  247.169144][   T30]       Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  247.177509][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  247.194570][   T30] task:udevd           state:D stack:22064 pid:6347  tgid:6347  ppid:1      flags:0x00004002
[  247.207853][   T30] Call Trace:
[  247.214427][   T30]  <TASK>
[  247.217611][   T30]  __schedule+0x1850/0x4c30
[  247.225377][   T30]  ? __pfx___schedule+0x10/0x10
[  247.230490][   T30]  ? __blk_flush_plug+0x449/0x500
[  247.239888][   T30]  ? __pfx_lock_release+0x10/0x10
[  247.251613][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  247.258223][   T30]  ? schedule+0x90/0x320
[  247.263507][   T30]  schedule+0x14b/0x320
[  247.267916][   T30]  schedule_timeout+0x15a/0x290
[  247.273699][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[  247.279327][   T30]  ? __pfx_process_timeout+0x10/0x10
[  247.285620][   T30]  ? prepare_to_wait_event+0x3bd/0x400
[  247.291686][   T30]  nbd_queue_rq+0x7d9/0x2ef0
[  247.296733][   T30]  ? validate_chain+0x11e/0x5920
[  247.304770][   T30]  ? mark_lock+0x9a/0x360
[  247.309539][   T30]  ? __pfx_nbd_queue_rq+0x10/0x10
[  247.316263][   T30]  ? __lock_acquire+0x1397/0x2100
[  247.326242][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  247.336388][   T30]  blk_mq_dispatch_rq_list+0xad3/0x19d0
[  247.346366][   T30]  ? sbitmap_get+0x289/0x3f0
[  247.352870][   T30]  ? __pfx_blk_mq_dispatch_rq_list+0x10/0x10
[  247.359265][   T30]  ? __blk_mq_alloc_driver_tag+0x32d/0x730
[  247.369419][   T30]  __blk_mq_sched_dispatch_requests+0xb8a/0x1840
[  247.377724][   T30]  ? __pfx___blk_mq_sched_dispatch_requests+0x10/0x10
[  247.388790][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  247.396081][   T30]  ? __pfx___might_resched+0x10/0x10
[  247.405765][   T30]  ? sbitmap_any_bit_set+0x155/0x190
[  247.412311][   T30]  ? blk_mq_hw_queue_need_run+0x14d/0x6d0
[  247.418295][   T30]  blk_mq_sched_dispatch_requests+0xd6/0x190
[  247.424967][   T30]  ? blk_mq_run_hw_queue+0x32b/0x500
[  247.430518][   T30]  blk_mq_run_hw_queue+0x354/0x500
[  247.436916][   T30]  blk_mq_flush_plug_list+0x118e/0x1870
[  247.443220][   T30]  ? __pfx_update_io_ticks+0x10/0x10
[  247.448678][   T30]  ? blk_add_rq_to_plug+0x308/0x4b0
[  247.454751][   T30]  ? __pfx_blk_mq_flush_plug_list+0x10/0x10
[  247.460778][   T30]  ? blk_mq_submit_bio+0xf74/0x2390
[  247.466934][   T30]  __blk_flush_plug+0x420/0x500
[  247.472316][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  247.478570][   T30]  ? __pfx___blk_flush_plug+0x10/0x10
[  247.484653][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  247.491577][   T30]  __submit_bio+0x46a/0x560
[  247.496221][   T30]  ? __pfx___submit_bio+0x10/0x10
[  247.502033][   T30]  submit_bio_noacct_nocheck+0x4d3/0xe30
[  247.507806][   T30]  ? bio_associate_blkg_from_css+0x182/0xc70
[  247.514536][   T30]  ? __pfx___might_resched+0x10/0x10
[  247.519963][   T30]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[  247.527070][   T30]  block_read_full_folio+0x9b3/0xae0
[  247.532821][   T30]  ? __pfx_blkdev_get_block+0x10/0x10
[  247.540664][   T30]  ? __pfx_block_read_full_folio+0x10/0x10
[  247.546954][   T30]  filemap_read_folio+0x148/0x3b0
[  247.552996][   T30]  ? __pfx_blkdev_read_folio+0x10/0x10
[  247.558762][   T30]  ? __pfx_filemap_read_folio+0x10/0x10
[  247.578183][   T30]  ? __filemap_get_folio+0x848/0x940
[  247.583839][   T30]  do_read_cache_folio+0x373/0x5b0
[  247.589103][   T30]  ? __pfx_blkdev_read_folio+0x10/0x10
[  247.599307][   T30]  read_part_sector+0xb3/0x260
[  247.604315][   T30]  adfspart_check_ICS+0xd9/0x9a0
[  247.609490][   T30]  ? __pfx_vsnprintf+0x10/0x10
[  247.618990][   T30]  ? __pfx_adfspart_check_ICS+0x10/0x10
[  247.627129][   T30]  ? snprintf+0xda/0x120
[  247.636270][   T30]  ? alloc_pages_mpol_noprof+0x58e/0x780
[  247.655577][   T30]  ? vsnprintf+0x1cc3/0x1da0
[  247.665815][   T30]  ? vsnprintf+0x184/0x1da0
[  247.675140][   T30]  ? __pfx_snprintf+0x10/0x10
[  247.684997][   T30]  ? __kasan_kmalloc+0x98/0xb0
[  247.694597][   T30]  bdev_disk_changed+0x72c/0x13f0
[  247.699793][   T30]  ? __pfx___might_resched+0x10/0x10
[  247.705424][   T30]  ? __pfx_bdev_disk_changed+0x10/0x10
[  247.711134][   T30]  ? wait_on_inode+0xc1/0x230
[  247.715957][   T30]  ? __pfx_wait_on_inode+0x10/0x10
[  247.721462][   T30]  ? do_raw_spin_unlock+0x13c/0x8b0
[  247.726828][   T30]  blkdev_get_whole+0x2d2/0x450
[  247.731918][   T30]  bdev_open+0x2d4/0xc50
[  247.736290][   T30]  blkdev_open+0x389/0x4f0
[  247.740850][   T30]  ? __pfx_blkdev_open+0x10/0x10
[  247.746663][   T30]  do_dentry_open+0xbe1/0x1b70
[  247.751676][   T30]  vfs_open+0x3e/0x330
[  247.755841][   T30]  path_openat+0x2c84/0x3590
[  247.760597][   T30]  ? __pfx_path_openat+0x10/0x10
[  247.765985][   T30]  do_filp_open+0x27f/0x4e0
[  247.770676][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  247.780511][   T30]  ? do_raw_spin_lock+0x14f/0x370
[  247.786296][   T30]  do_sys_openat2+0x13e/0x1d0
[  247.795935][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  247.801589][   T30]  __x64_sys_openat+0x247/0x2a0
[  247.806615][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  247.816722][   T30]  ? do_syscall_64+0x100/0x230
[  247.822863][   T30]  ? do_syscall_64+0xb6/0x230
[  247.827718][   T30]  do_syscall_64+0xf3/0x230
[  247.836039][   T30]  ? clear_bhb_loop+0x35/0x90
[  247.842107][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.848792][   T30] RIP: 0033:0x7ff94bf979a4
[  247.853490][   T30] RSP: 002b:00007ffca7030340 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  247.862213][   T30] RAX: ffffffffffffffda RBX: 000055692033c8f0 RCX: 00007ff94bf979a4
[  247.870335][   T30] RDX: 00000000000a0800 RSI: 00005569203335a0 RDI: 00000000ffffff9c
[  247.878557][   T30] RBP: 00005569203335a0 R08: 0000000000000001 R09: 7fffffffffffffff
[  247.887570][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000a0800
[  247.897006][   T30] R13: 000055692033dce0 R14: 0000000000000001 R15: 0000556920332910
[  247.909030][   T30]  </TASK>
[  247.929237][   T30] 
[  247.929237][   T30] Showing all locks held in the system:
[  247.944642][   T30] 1 lock held by khungtaskd/30:
[  247.959482][   T30]  #0: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0
[  247.969903][   T30] 2 locks held by getty/5588:
[  247.974705][   T30]  #0: ffff88814e0f50a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  247.984689][   T30]  #1: ffffc90002fee2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00
[  247.995039][   T30] 3 locks held by udevd/5843:
[  247.999742][   T30]  #0: ffff88802539c4c8 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0xf0/0xc50
[  248.017463][   T30]  #1: ffff8880251fa510 (set->srcu){.+.+}-{0:0}, at: blk_mq_run_hw_queue+0x32b/0x500
[  248.028606][   T30]  #2: ffff8880258a0178 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xfe/0x2ef0
[  248.042390][   T30] 3 locks held by udevd/6343:
[  248.047097][   T30]  #0: ffff8880258804c8 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0xf0/0xc50
[  248.059101][   T30]  #1: ffff8880251fab10 (set->srcu){.+.+}-{0:0}, at: blk_mq_run_hw_queue+0x32b/0x500
[  248.070994][   T30]  #2: ffff8880258e51f8 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xfe/0x2ef0
[  248.080032][   T30] 3 locks held by udevd/6345:
[  248.088209][   T30]  #0: ffff8880253984c8 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0xf0/0xc50
[  248.097591][   T30]  #1: ffff8881443d1f10 (set->srcu){.+.+}-{0:0}, at: blk_mq_run_hw_queue+0x32b/0x500
[  248.107935][   T30]  #2: ffff8880258551f8 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xfe/0x2ef0
[  248.117175][   T30] 3 locks held by udevd/6347:
[  248.122001][   T30]  #0: ffff8880253b04c8 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0xf0/0xc50
[  248.131379][   T30]  #1: ffff8880246dd490 (set->srcu){.+.+}-{0:0}, at: blk_mq_run_hw_queue+0x32b/0x500
[  248.141016][   T30]  #2: ffff888025810178 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xfe/0x2ef0
[  248.154542][   T30] 2 locks held by syz.3.2731/13632:
[  248.159770][   T30] 2 locks held by syz.1.2733/13637:
[  248.169430][   T30]  #0: ffff88807ac73208 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x90/0x240
[  248.179787][   T30]  #1: ffffffff8e93cff8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x381/0x830
[  248.195414][   T30] 
[  248.197770][   T30] =============================================
[  248.197770][   T30] 
[  248.208284][   T30] NMI backtrace for cpu 0
[  248.212638][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  248.223165][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  248.233248][   T30] Call Trace:
[  248.236549][   T30]  <TASK>
[  248.239500][   T30]  dump_stack_lvl+0x241/0x360
[  248.244220][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  248.249472][   T30]  ? __pfx__printk+0x10/0x10
[  248.254097][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  248.259063][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  248.264548][   T30]  ? _printk+0xd5/0x120
[  248.268728][   T30]  ? __pfx__printk+0x10/0x10
[  248.273339][   T30]  ? __wake_up_klogd+0xcc/0x110
[  248.278210][   T30]  ? __pfx__printk+0x10/0x10
[  248.282829][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  248.287874][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  248.293876][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  248.299884][   T30]  watchdog+0xff6/0x1040
[  248.304150][   T30]  ? watchdog+0x1ea/0x1040
[  248.308591][   T30]  ? __pfx_watchdog+0x10/0x10
[  248.313289][   T30]  kthread+0x2f0/0x390
[  248.317380][   T30]  ? __pfx_watchdog+0x10/0x10
[  248.322073][   T30]  ? __pfx_kthread+0x10/0x10
[  248.326688][   T30]  ret_from_fork+0x4b/0x80
[  248.331120][   T30]  ? __pfx_kthread+0x10/0x10
[  248.335728][   T30]  ret_from_fork_asm+0x1a/0x30
[  248.340521][   T30]  </TASK>
[  248.344415][   T30] Sending NMI from CPU 0 to CPUs 1:
[  248.349668][    C1] NMI backtrace for cpu 1
[  248.349680][    C1] CPU: 1 UID: 0 PID: 13632 Comm: syz.3.2731 Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  248.349700][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  248.349709][    C1] RIP: 0010:get_stack_info_noinstr+0x5/0x130
[  248.349735][    C1] Code: e8 60 59 00 00 65 c6 05 02 46 36 74 00 eb 9a 66 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 55 <41> 57 41 56 41 54 53 49 89 d4 48 89 f3 48 89 fd e8 26 01 00 00 41
[  248.349749][    C1] RSP: 0018:ffffc9001b05f338 EFLAGS: 00000282
[  248.349764][    C1] RAX: 1ffff9200360be83 RBX: ffffc9001b05f3e0 RCX: ffffc9001b05f400
[  248.349780][    C1] RDX: ffffc9001b05f3e0 RSI: ffff8880525bbc00 RDI: ffffc9001b05f380
[  248.349792][    C1] RBP: ffff8880525bbc00 R08: ffffc9001b05f43f R09: 0000000000000000
[  248.349804][    C1] R10: ffffc9001b05f3e0 R11: fffff5200360be88 R12: ffffc9001b05f400
[  248.349816][    C1] R13: ffffc9001b05f408 R14: ffffc9001b05f400 R15: 1ffff9200360be81
[  248.349829][    C1] FS:  00007f4f4d0916c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  248.349843][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  248.349855][    C1] CR2: 0000000020378030 CR3: 000000002715a000 CR4: 00000000003526f0
[  248.349869][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  248.349879][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  248.349890][    C1] Call Trace:
[  248.349895][    C1]  <NMI>
[  248.349902][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  248.349923][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  248.349942][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  248.349962][    C1]  ? nmi_handle+0x2a/0x5a0
[  248.349988][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  248.350003][    C1]  ? nmi_handle+0x14f/0x5a0
[  248.350021][    C1]  ? nmi_handle+0x2a/0x5a0
[  248.350039][    C1]  ? get_stack_info_noinstr+0x5/0x130
[  248.350058][    C1]  ? default_do_nmi+0x63/0x160
[  248.350078][    C1]  ? exc_nmi+0x123/0x1f0
[  248.350097][    C1]  ? end_repeat_nmi+0xf/0x53
[  248.350121][    C1]  ? get_stack_info_noinstr+0x5/0x130
[  248.350141][    C1]  ? get_stack_info_noinstr+0x5/0x130
[  248.350162][    C1]  ? get_stack_info_noinstr+0x5/0x130
[  248.350182][    C1]  </NMI>
[  248.350187][    C1]  <TASK>
[  248.350193][    C1]  get_stack_info+0x3c/0xf0
[  248.350210][    C1]  __unwind_start+0x434/0x740
[  248.350230][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  248.350247][    C1]  arch_stack_walk+0xe5/0x150
[  248.350267][    C1]  ? __unwind_start+0xf8/0x740
[  248.350286][    C1]  stack_trace_save+0x118/0x1d0
[  248.350301][    C1]  ? mark_lock+0x9a/0x360
[  248.350319][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  248.350341][    C1]  kasan_save_track+0x3f/0x80
[  248.350384][    C1]  __kasan_kmalloc+0x98/0xb0
[  248.350402][    C1]  __kmalloc_noprof+0x285/0x4c0
[  248.350421][    C1]  ? sock_kmalloc+0xd7/0x160
[  248.350442][    C1]  sock_kmalloc+0xd7/0x160
[  248.350463][    C1]  hash_recvmsg+0x287/0x7d0
[  248.350485][    C1]  ? __pfx_hash_recvmsg+0x10/0x10
[  248.350501][    C1]  sock_recvmsg_nosec+0x18e/0x1d0
[  248.350520][    C1]  ____sys_recvmsg+0x3cd/0x480
[  248.350544][    C1]  ? __pfx_____sys_recvmsg+0x10/0x10
[  248.350569][    C1]  ? do_recvmmsg+0x44e/0xab0
[  248.350588][    C1]  ? __might_fault+0xaa/0x120
[  248.350605][    C1]  do_recvmmsg+0x426/0xab0
[  248.350630][    C1]  ? __pfx_do_recvmmsg+0x10/0x10
[  248.350658][    C1]  ? futex_wake+0x523/0x5c0
[  248.350680][    C1]  ? __pfx_futex_wake+0x10/0x10
[  248.350709][    C1]  ? __pfx_do_futex+0x10/0x10
[  248.350732][    C1]  __x64_sys_recvmmsg+0x199/0x250
[  248.350754][    C1]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  248.350774][    C1]  ? do_syscall_64+0x100/0x230
[  248.350792][    C1]  ? do_syscall_64+0xb6/0x230
[  248.350809][    C1]  do_syscall_64+0xf3/0x230
[  248.350825][    C1]  ? clear_bhb_loop+0x35/0x90
[  248.350844][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.350861][    C1] RIP: 0033:0x7f4f4c185d29
[  248.350873][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.350886][    C1] RSP: 002b:00007f4f4d091038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  248.350903][    C1] RAX: ffffffffffffffda RBX: 00007f4f4c375fa0 RCX: 00007f4f4c185d29
[  248.350915][    C1] RDX: 03ffffffffffff67 RSI: 0000000020002440 RDI: 000000000000000a
[  248.350925][    C1] RBP: 00007f4f4c201b08 R08: 0000000000000000 R09: 0000000000000000
[  248.350935][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  248.350946][    C1] R13: 0000000000000000 R14: 00007f4f4c375fa0 R15: 00007ffc7ab16008
[  248.350965][    C1]  </TASK>
[  248.803217][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  248.810368][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc7-syzkaller-01544-g544c9394065f #0
[  248.820933][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  248.831012][   T30] Call Trace:
[  248.834296][   T30]  <TASK>
[  248.837228][   T30]  dump_stack_lvl+0x241/0x360
[  248.841921][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  248.847124][   T30]  ? __pfx__printk+0x10/0x10
[  248.851728][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  248.857736][   T30]  ? vscnprintf+0x5d/0x90
[  248.862080][   T30]  panic+0x349/0x880
[  248.865980][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  248.872139][   T30]  ? __pfx_panic+0x10/0x10
[  248.876569][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  248.881951][   T30]  ? __irq_work_queue_local+0x137/0x410
[  248.887583][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  248.892948][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  248.899100][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  248.905256][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  248.911410][   T30]  watchdog+0x1035/0x1040
[  248.915736][   T30]  ? watchdog+0x1ea/0x1040
[  248.920154][   T30]  ? __pfx_watchdog+0x10/0x10
[  248.924826][   T30]  kthread+0x2f0/0x390
[  248.928892][   T30]  ? __pfx_watchdog+0x10/0x10
[  248.933562][   T30]  ? __pfx_kthread+0x10/0x10
[  248.938157][   T30]  ret_from_fork+0x4b/0x80
[  248.942570][   T30]  ? __pfx_kthread+0x10/0x10
[  248.947159][   T30]  ret_from_fork_asm+0x1a/0x30
[  248.951925][   T30]  </TASK>
[  248.955189][   T30] Kernel Offset: disabled
[  248.959509][   T30] Rebooting in 86400 seconds..