last executing test programs:

19.679427565s ago: executing program 4:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
writev(r1, &(0x7f0000000680)=[{&(0x7f0000000580)='l', 0x1}], 0x1)
r2 = accept4(r0, 0x0, 0x0, 0x0)
recvmsg$kcm(r2, &(0x7f0000000200)={0x0, 0x4, &(0x7f0000000000)=[{&(0x7f0000000140)=""/150, 0x96}], 0x1}, 0x0)

19.523488763s ago: executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="20003300d000000008021100000108021100090050505050"], 0x3c}}, 0x0)

19.434210363s ago: executing program 4:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000bc0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xa8}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f00000002c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xa8}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r2 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r2, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
setsockopt$sock_attach_bpf(r2, 0x6, 0xa, &(0x7f0000000740), 0x4)
bpf$BPF_PROG_TEST_RUN(0x2, &(0x7f0000000340)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

19.2817212s ago: executing program 4:
r0 = socket$inet6(0xa, 0x0, 0x0) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={0xffffffffffffffff, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) (async, rerun: 32)
r1 = socket$inet(0x2, 0x80001, 0x84) (rerun: 32)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8) (async, rerun: 32)
r3 = socket(0x2, 0x80805, 0x0) (rerun: 32)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r4, r5, 0x2, 0x2}, 0x10)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r6, r7, 0x2, 0x2}, 0x10) (async, rerun: 32)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (rerun: 32)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r8, 0x2, 0x0, 0x0, &(0x7f0000000140)=[0x0, 0x0], 0x2, 0x0, 0x0, 0x0, 0x0}, 0x40) (async)
socket$caif_stream(0x25, 0x1, 0x4) (async)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r3, 0x84, 0x83, &(0x7f0000000280)={r2}, 0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000000)={r2, 0x5, 0x6}, &(0x7f0000000040)=0x8)
getsockopt$bt_BT_POWER(r3, 0x112, 0x9, &(0x7f00000002c0)=0x1, &(0x7f0000000300)=0x1) (async)
r9 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000480), 0xffffffffffffffff) (async, rerun: 32)
r10 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r10, 0x8933, &(0x7f00000001c0)={'wg2\x00', <r11=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01000000000000000000010000004c0008804800008024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c200009801c000080060001000200000008000200ac141400050003000300000008000100", @ANYRES32=r11, @ANYBLOB="94253c8230fc18d0f4ba25001a489341b04cd6332234cec6459f2d53aa29e2c6e2f355f63bc8d265f12c1b3849f0fb01ac686c022088f09ef1bbdccd6cb662"], 0x68}}, 0x0) (async)
sendmsg$WG_CMD_SET_DEVICE(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="0100000000000000000001000000080001009649d2ec251bfd15522e947feb8657947c3f17cc17332f15f38a0bec1a6627b2643fdd8e914821b41a6674730c45a9bb2811ea669477c7654b56c7a99f2a3ba27ce926a68aa6946949022c4b3133337db133ad03501e828d91092dd13344b5aa140d60c64cda9f58693d586d8af6af8f75e1562891e4019794f0968f828c78a28120a0840915d4a8d6524d7874", @ANYRES32=r11, @ANYBLOB="0800050001000000"], 0x24}}, 0x0)

19.009209543s ago: executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000340)={0x0, 0x4, &(0x7f0000000300)={&(0x7f0000001880)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000000ea100009410000004c00180000046162726f6164636173742d6c696e6b"], 0x68}}, 0x0)

13.311501843s ago: executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f0000000080)=0x3, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback={0xfec0ffff00000000}}, 0x1c)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000080)={0xa, 0x14e22, 0x0, @ipv4}, 0x1c)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x80) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_pressure(r2, &(0x7f0000000040)='io.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r3, &(0x7f0000000340)={'some', 0x20, 0x7, 0x20, 0xffffa}, 0x2f)
r4 = epoll_create(0x8000)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000100))
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup/syz0\x00', 0x200002, 0x0)
r5 = openat$cgroup_pressure(r2, &(0x7f0000000180)='io.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r5, &(0x7f0000000340)={'some', 0x20, 0x5, 0x20, 0xffffa}, 0x2f) (async, rerun: 64)
close(r5) (rerun: 64)

13.062646259s ago: executing program 1:
r0 = socket$tipc(0x1e, 0x5, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="190201001800000000000026a70000003c00000002000000000000000100000d000000000000000003000000000000000000000105000000200000000000000000ab340002000000020000007c3a8dd200006498a24a101f63aaf86cbeb300e8694499000000000000"], 0x0, 0x56}, 0x20)
setsockopt$inet6_int(r1, 0x29, 0x18, 0x0, 0x0)
r2 = socket$inet(0xa, 0x6, 0x7)
connect$inet(r2, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000180)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x5f0, 0x1, 0x2, 0x8, 0x6, 0x4}, 0x20)
listen(r0, 0x41)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="180000000000000000000000000000e873121500000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3}, 0x48)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce220000000000"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
unshare(0x72000b80)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r4 = accept4(r2, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xff, 0x0, 0xfa, 0x1, 0x0, 0x0, 0x8}, 0xe)
bind$tipc(r4, &(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x2, {0x0, 0x1, 0x3}}, 0x10)
bind$tipc(r0, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x41, 0x1000002}, 0x200000}}, 0xfffffffffffffe84)
sendmsg$tipc(r4, &(0x7f00000006c0)={&(0x7f0000000540)=@nameseq={0x1e, 0x1, 0x2, {0x1, 0x1, 0x2}}, 0x10, 0x0}, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
r6 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r6, 0x65, 0x2, 0x0, 0x0)
ioctl$F2FS_IOC_DEFRAGMENT(0xffffffffffffffff, 0xc010f508, &(0x7f0000000300)={0x63b6ac27, 0x17d})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)

12.144546096s ago: executing program 1:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000dac595"], &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000680)='contention_end\x00', r1}, 0x10)
sendmmsg$alg(r0, &(0x7f0000000f80)=[{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000240)='D', 0x1}], 0x1}], 0x1, 0x0)
unshare(0x400)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
ioctl$NS_GET_PARENT(r2, 0xb702, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f00000001c0)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x6d, &(0x7f0000000180)={r5}, &(0x7f00000001c0)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f00000002c0)={r5, 0x67}, 0x8)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a322000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a380000001c0a05000000000000000000020000000c00034000000000000000e50900020073797a32000000000900010073797a30"], 0x60}}, 0x0)
socket(0x10, 0x80002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="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"], 0x238}}, 0x0)

11.951302322s ago: executing program 1:
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32=r1, @ANYBLOB="08001b"], 0x34}}, 0x0)

11.804764399s ago: executing program 1:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), 0xffffffffffffffff)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x22, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="0103000000000000000005cf00000079e1365301a70000000044c956fe7160a20fe6b31f8104add902c142b3dab024f023ef6d9a82219062"], 0x14}}, 0x0)

11.675919228s ago: executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x90)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001b00)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad00c8500000000006fa06023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261190899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df40023d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d43000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c3a8b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f91b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee1040000000000000000", @ANYRESDEC=r2, @ANYBLOB="3e1a024d0aebe724a17c833d48f56092a0dd6b491da62ebb82405db63ff51e5ace05f36fdc3e54e1efe97f98b3d26c352e4c4e0ef47a19ed8fa8c3fd8daa7127acc0feb59ead91a6054c9deee2ddf99406587256299e392911847c657392e844225a72abfc37a29690c7ff61717d23d934d9416c0862ea3a021df90b5bc05c77d082c1be4465cc7505e022bdc5ef5b6c2afb623411acabdd76100a9cf93a0c4ec44ab7c62480cb7c54d021d31ce078ddcbbb0e01ae8aceef", @ANYRES16=r0, @ANYRES16=r1], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x7}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r4}, &(0x7f0000000540), &(0x7f0000000580)}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r4, &(0x7f0000000780)}, 0x20)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_freezer_state(r5, &(0x7f0000000140), 0x2, 0x0)
r7 = openat$cgroup_procs(r5, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f00000000c0), 0x12)
write$cgroup_freezer_state(r6, &(0x7f0000000400)='FROZEN\x00', 0x7)
write$cgroup_freezer_state(r6, &(0x7f0000000080)='FROZEN\x00', 0x7)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfc242552f6461cbb)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000880)={0x2, 0x4, 0x8, 0x1, 0x180, 0xffffffffffffffff, 0x4}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000280)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000002c0), 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x12, 0xf, 0x4, 0x2}, 0x48)
sendmsg$unix(r8, &(0x7f0000000700)={&(0x7f0000001840)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000680)=[{&(0x7f00000018c0)="95e8f7934346a045c2959381ee2201017820b21f63334f0f49169766c0181b289edbce524291c98f43275422dfcff93537ac2f69b304564a562c7ab430893f57a7967a632c36a208300300a57b5e8db487ec4d28ccb587928d19a72edbfd66ab6f72b549373da94d4d0d784169f90f465d5b737f66344bff99e4b160f63571e89196e27d12", 0x85}, {&(0x7f0000001980)="397e4ec5cd9e407f9b09240ce24f534dd1a47b4d8b313e5b6e61d94aed8f62e1536f230168d59810717774f4202e835ab36e09fc7e54698870220ec074efbb6eb01699d87fb8caa36b3e8774d9f8dff2ebe2e9ce053d03f8331286534c5b52989c8c62d893ce742adc3d1a1d7450012f77f656ef8784d8ae184a7e8f81ef6d38313af82713f5345b7b67b61d362b277262cd84f8a35e3841e467e9273c269cfed974ba99f41fe3e219c2bf41c406", 0xae}, {&(0x7f0000001a40)="10268ac857762900f007572742c9d63024d316793faeb975c75d13837a7726fa3464ed314bd78abe9bb8189224945e63a5a900043c4f7d942d872fc936065532807f6d9637f8d3b213320c625f6f6fc2bd8889f0530be39c9fcc606aad39fed60421ffd92bb203774c0824f12cd3cce170899a17dfcf452be244eab4406233b592d8666cf5b06b3309674cf221f75b79bac2a26c002f6ff69142c3db2d6c0f789de0465705107f35f853da3999066c688d", 0xb1}], 0x3, 0x0, 0x0, 0x4008000}, 0x0)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000080)={r9, &(0x7f0000000240), 0x20000000}, 0x20)

5.546493016s ago: executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000340)={0x0, 0x4, &(0x7f0000000300)={&(0x7f0000001880)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000000ea100009410000004c00180000046162726f6164636173742d6c696e6b"], 0x68}}, 0x0)

3.829547866s ago: executing program 2:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180100002100000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic-generic\x00'}, 0x58)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000200)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-avx2\x00'}, 0x58)
r2 = accept$alg(r1, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000002040)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000000c0)="793257ca5f90e368e1df779624e29d510dd536a842f881efa33490e8fd1a8d2ab4b9ce271a322a52dbc370eef4d12811d72764f80eba5bdf48bcf3695746cf230565f1abcfcafc8628e4", 0x4a}, {&(0x7f0000000140)="083539bc7d957236f194be85babf285dabfd0d6d5d8e9cbd8a2d59b689c1671b0cc385b2b50b1a449dd20ea8802d40d354171054e97c", 0x36}], 0x2}}], 0x1, 0x20008000)
r3 = socket$inet6_sctp(0xa, 0x0, 0x84)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000040)}], 0x1}}], 0x1, 0x0)
shutdown(r3, 0x1)
setsockopt(r3, 0x84, 0x82, &(0x7f00000002c0)="1a0000000200", 0x6)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000140)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0xd}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0xfffffffffffffffe, r5}, 0x10)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000004300)=@newtaction={0x858, 0x30, 0xffff, 0x0, 0x0, {}, [{0x844, 0x1, [@m_police={0x840, 0x1, 0x0, 0x0, {{0xb}, {0x814, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}], [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff03, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400]}, @TCA_POLICE_AVRATE={0x8}], []]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x858}}, 0x0)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = socket(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r9, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x3c}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newqdisc={0x6c, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x3c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, [@TCA_NETEM_LOSS={0x18, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0xffffffff}}]}, @TCA_NETEM_ECN={0x8, 0x7, 0x1}]}}}]}, 0x6c}}, 0x0)
sendto$packet(r6, &(0x7f0000000380)="49c394f387000100000000004305", 0xe, 0x0, &(0x7f0000000080)={0x11, 0x18, r10, 0x1, 0x4, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x14)
unshare(0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x4}, 0x10)
close(r11)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket(0x10, 0x3, 0x0)

2.68029584s ago: executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYRES32=r2, @ANYBLOB="20003300d0000000080211000001080211000900505050505050"], 0x3c}}, 0x0)

2.419342863s ago: executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000006, 0x8010, r0, 0xd44ad000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x7, &(0x7f0000000180)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x4}, @exit, @initr0, @exit, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @exit], &(0x7f00000000c0)='GPL\x00'}, 0x78)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f000000e0c0), 0x10010)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x7, 0x10012, r5, 0x0)
ioctl$FS_IOC_GETFSMAP(r5, 0x40305839, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000002"])
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={r4, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x1fffffffffffffe4, 0x0, &(0x7f0000001680)=[0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0xc3072, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[@rights={{0x10}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x64}}, 0x0)

1.857812169s ago: executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r2=>0x0})
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @rand_addr=0x64010101}]}, &(0x7f0000000180)=0x10)
r4 = socket$inet(0x2, 0x80001, 0x84)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000006110000000000000630ae0f70000000095"], &(0x7f0000000100)='GPL\x00', 0x8}, 0x90)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x85, &(0x7f0000001580)={r5, @in={{0x2, 0x0, @empty}}}, &(0x7f0000000540)=0x9c)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="440000001000090400"/20, @ANYRES32=r2, @ANYBLOB="020000000000000024001280110001006272696467655f736c617665000000000c00058005002b"], 0x44}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@newqdisc={0x24, 0x24, 0x0, 0xfffffffe}, 0x24}}, 0x0)
r6 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r6, &(0x7f0000000840)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="08cc6c9ce466c22e1eec39a0ce755f74315fd0835e6dac41295fc8e6bcc815dcfa29479b2b85976c9d8cd311449bf8cb6724fbdc02665d0ff70a5f3affa2f0737435237283ee4d418ae2086ef14d21326c10298dacc6632cc901ba1a62d76beaf4cea7bb50f11e5b8effb91f090f53aed39b5ab90457e50cb46c", 0x7a}], 0x1}}], 0x7ffffff8, 0x0)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001580)=ANY=[@ANYBLOB="1000000009148307"], 0x10}, 0x1, 0xffffff7f00000000}, 0x0)

1.411540505s ago: executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYRES32=r2, @ANYBLOB="20003300d0000000080211000001080211000900505050505050"], 0x3c}}, 0x0)

1.192897636s ago: executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x4000000000080002, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00'})
bind$packet(r1, &(0x7f0000000d00)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1)

671.176417ms ago: executing program 0:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r0, 0x84, 0x6e, &(0x7f00000000c0), 0x8)

639.904173ms ago: executing program 3:
close(0xffffffffffffffff)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0xfe89, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="2404000018000900000000000000000002000000e40000010000000008000500ac1414ff"], 0x24}}, 0x0)

558.896407ms ago: executing program 0:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
sendmsg$NL80211_CMD_SET_PMK(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="50000000030801010000000000000000000000112c48c840000000002c00048008000b4000010000080009400000000008000a400000000008000440000000000800084200000000050003000600d39c00003875632baba4085bde73ab14ee4278d90be2a54b9c1de926a2a45497eb431572a2dff1b3e501073188556195b4ffe54ac58a896167c7cb"], 0x50}}, 0x0)
connect$rose(r0, &(0x7f0000000080)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, 0x1, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, 0x1c)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)

526.885221ms ago: executing program 3:
socket(0x2b, 0x0, 0x0)
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
writev(r1, &(0x7f0000001340)=[{&(0x7f0000000180)="580000001400adfda965131229d0e29ad87434a471ced7ff035af5597780214aa5ebc1da74b51815c0fdb8f77873bb945507c5b34cedb4a195b30d9300"/70, 0x46}, {&(0x7f0000001240)="d778d48847d0e7f5", 0x8}], 0x2)
close(r2)
splice(r0, 0x0, r2, 0x0, 0x80000001, 0x0)

438.48213ms ago: executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), 0xffffffffffffffff)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x22, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1], 0x14}}, 0x0)

367.442034ms ago: executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000e20000000000cc2020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000002c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='block_bio_remap\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.current\x00', 0x7a05, 0x1700)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
getsockopt$TIPC_NODE_RECVQ_DEPTH(r0, 0x10f, 0x83, &(0x7f0000000040), &(0x7f0000000240)=0x4)
write$cgroup_int(r3, &(0x7f0000000100), 0x1001)
write$cgroup_pid(r2, &(0x7f0000000340), 0x1001)

304.547985ms ago: executing program 3:
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'})
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106}, 0x18)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x34}}, 0x0)

254.807012ms ago: executing program 3:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000dac595"], &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000680)='contention_end\x00', r1}, 0x10)
sendmmsg$alg(r0, &(0x7f0000000f80)=[{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000240)='D', 0x1}], 0x1}], 0x1, 0x0)
unshare(0x400)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
ioctl$NS_GET_PARENT(r2, 0xb702, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f00000001c0)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x6d, &(0x7f0000000180)={r5}, &(0x7f00000001c0)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f00000002c0)={r5, 0x67}, 0x8)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a322000000014000000110001"], 0x7c}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ae8000000000a01010000000000000000050000000900010073797a3000000000ba000600e9eec003775c64e64f439fc0b5fb34bcd039590bba579a25436e11f718b64e3e01796b9e930a3d8eefa0bccf8429a311f3ce5ec5a0a7bb9e08c60e03cbcdd726725fb9b1bd1000cf2a77ab6ab91f2294632773ea59b8de2361cdd8045c5fdb81611e843cb814e4cfe672542287ebd3b2ed48dca1a08690b05bb9bbbcc05551bd05e4c6e0625fcae04323e0f29dbad3c57456d2ca020462188e1236ebe6da1442c71ab0a8ebfaacef2710111417370a0f8cd19c5f9e1a00000900010073797a300000000014010000030a01030000000000000000050000000900010073797a30000000000800054000000000af000c008451bef8928cf9ec5c3c0fca5cedf6b9ae811484cd4abbaec9eba3118a64f7b105ab0e5c8e377ddaf98490703415da6a50c72a1434c93ef4daa32cd2b643c4ab99e8adc29f67b58cd27b71b30213e6acd60b8fa2190c3fd64f382e41b97f4b12379ce9470cbfdb02cc2a2d8e0e7aec144e2df705b37b99cafc9b141b0f3176897eba9802e14cc423ecff994b4ff320f5786bd4fba343449446d922b94ac3f8621197db4c2dc061e9278f5a000900030073797a32000000000b00070066696c746572000024000480080002406b10a6210800014000000004080002404e73b858080001400000000014000000020a030000000000000000000500000014000000110001"], 0x238}}, 0x0)

198.038757ms ago: executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000001000000000000000040095"], &(0x7f0000000440)='GPL\x00'}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r0 = socket$l2tp6(0xa, 0x2, 0x73)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f00000014c0)={0x2, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x2, 0x18, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @local}}, @sadb_x_policy={0x8, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@multicast2, @in6=@private1}}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_kmaddress={0x8, 0x19, 0x0, @in6={0xa, 0x0, 0x0, @private0}, @in6={0x2, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}]}, 0xe0}}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x480, 0x2e8, 0x111, 0x4b4, 0x0, 0xd4feffff, 0x3b0, 0x20a, 0x278, 0x3b0, 0x278, 0x3, 0x0, {[{{@ipv6={@empty, @empty, [], [], 'ipvlan0\x00', 'team_slave_0\x00'}, 0x7a, 0x2c0, 0x2e8, 0x0, {}, [@common=@inet=@policy={{0x158}, {[{@ipv4=@loopback, [], @ipv6=@local}, {@ipv6=@loopback, [], @ipv4=@remote}, {@ipv4=@local, [], @ipv6=@empty}, {@ipv4=@multicast1, [], @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}], 0x1, 0xfffe}}, @common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "6d93eb04697dfa39de04767f46614613a407abbf4ed2e83a63b484dbb3bf6b2a850e79009e2905d2f98ba19f91f3c9faee6d3686e9bee067f4e77d9ad66238750c4100d7ee97ec7646259d90edece6e9787a97bc956c01754c34c5c9518c46178ed5f9194454980e579c80eca35a58dc47d1d5e4ff6e216c724e88c702448587"}}]}, @common=@inet=@TCPMSS={0x28}}, {{@ipv6={@private1, @private1, [], [], 'veth1_to_hsr\x00', 'pim6reg1\x00'}, 0x0, 0xa8, 0xc8}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e0)
pipe(&(0x7f0000000080))

145.379512ms ago: executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x5, 0x0, 0x6, 0x0, 0x0, 0xffffffffffffffff, 0x80000000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYRESDEC=0x0, @ANYRESHEX=r0, @ANYRESDEC=r0], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffd2, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x7, 0x0)
close(0xffffffffffffffff)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r4, 0x0, 0x80000000000008, &(0x7f0000000000)="ac", 0x1)
getsockopt$inet_opts(r4, 0x0, 0x9, 0x0, &(0x7f0000000080))
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)=ANY=[@ANYRES16=r2], 0x64}}, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)='Y', 0x1}], 0x1)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$inet6_int(r6, 0x29, 0x50, 0x0, &(0x7f0000003940))
r7 = socket$inet(0x2, 0x3, 0x8d)
setsockopt$inet_msfilter(r7, 0x0, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB='|'], 0x1)
getsockopt$inet_pktinfo(r7, 0x0, 0x8, &(0x7f0000000040)={<r8=>0x0, @local, @local}, &(0x7f0000000140)=0xc)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@local, 0x72, r8})
socket$netlink(0x10, 0x3, 0x0)
getsockopt$inet_int(r3, 0x0, 0x15, &(0x7f00000001c0), &(0x7f00000002c0)=0x4)
r9 = socket(0x2c, 0x4, 0x40)
ioctl(r9, 0x2008916, &(0x7f0000000000))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18e591bd2ec69d17bd785c6b1b00"/27], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
r10 = socket$rxrpc(0x21, 0x2, 0x2)
setsockopt$RXRPC_EXCLUSIVE_CONNECTION(r10, 0x110, 0x3)
connect$rxrpc(r10, &(0x7f00000003c0)=@in6={0x21, 0x4, 0x2, 0x1c, {0xa, 0x4e23, 0x5, @loopback, 0x9}}, 0x24)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=r8, @ANYBLOB="7f000001e000000100000000880000000000000000000000070000008616fffffffe01109bb42a592bdde27387a14bbbfc2b442cafc1e000000220000080ac14142800000005e000000205500000e000000239b03955ffffffff0000000044347083ac1414320000000800000000000005ac1414250000001bac1e0001000000077f00000180000000e000000100000376000034000000000000000000000007000000072338000000007f000001000000000a010100ac1414aa0a0100ffe0000002e00000020000000000140000000000000000010000000001000000000000000000"], 0xf8, 0x4c00}, 0x0)

88.770405ms ago: executing program 0:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x7, 0x4, 0x12}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0xf, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

0s ago: executing program 0:
syz_emit_ethernet(0xa6, &(0x7f00000002c0)=ANY=[], 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f0000000000)={{0x2, 0x0, @empty}, {0x0, @random="4b4bf90ed24a"}, 0x8, {0x2, 0x0, @loopback}, 'wg2\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00'}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c10ecff3e0007012ebd700004101c000100000004000002041001"], 0x101c}}, 0x0)

kernel console output (not intermixed with test programs):

990021][ T9962] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  257.013679][ T9962] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  257.038263][ T9962] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  257.267219][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  257.279220][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  257.344300][ T5217] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  257.353510][ T5217] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  257.481056][T10171] team_slave_1: entered promiscuous mode
[  258.106695][T10210] __nla_validate_parse: 3 callbacks suppressed
[  258.106716][T10210] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  258.297625][T10219] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  258.307135][T10219] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  258.316875][T10219] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  258.326104][T10219] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  258.335339][T10219] geneve2: entered promiscuous mode
[  258.340581][T10219] geneve2: entered allmulticast mode
[  258.430586][T10225] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  258.692182][T10242] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  258.739093][T10242] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  258.748055][T10242] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  258.756881][T10242] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  258.766128][T10242] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  258.790898][T10242] vxlan0: entered promiscuous mode
[  259.013130][T10255] IPv6: Can't replace route, no match found
[  259.022241][ T5126] Bluetooth: hci3: command tx timeout
[  259.128689][T10261] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'.
[  259.335331][T10266] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  259.364811][T10267] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[  259.413357][T10268] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'.
[  259.756429][T10285] sctp: [Deprecated]: syz-executor.0 (pid 10285) Use of struct sctp_assoc_value in delayed_ack socket option.
[  259.756429][T10285] Use struct sctp_sack_info instead
[  259.864473][T10289] netlink: 4792 bytes leftover after parsing attributes in process `syz-executor.4'.
[  259.933253][T10293] team_slave_1: entered promiscuous mode
[  260.019677][T10298] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'.
[  260.221836][T10306] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  260.287457][T10310] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  262.902553][T10386] ebt_among: src integrity fail: 300
[  263.440995][T10406] __nla_validate_parse: 3 callbacks suppressed
[  263.441014][T10406] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  263.782823][T10421] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  264.185787][T10439] IPv6: Can't replace route, no match found
[  264.359964][T10453] ebt_among: src integrity fail: 300
[  264.559677][T10465] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.1'.
[  264.569883][T10465] netlink: 43 bytes leftover after parsing attributes in process `syz-executor.1'.
[  264.580461][T10466] syz-executor.3: vmalloc error: size 6291456, failed to allocated page array size 12288, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[  264.585966][T10465] netlink: 'syz-executor.1': attribute type 5 has an invalid length.
[  264.604248][T10466] CPU: 0 PID: 10466 Comm: syz-executor.3 Not tainted 6.9.0-syzkaller-12147-g13c7c941e729 #0
[  264.617172][T10465] netlink: 43 bytes leftover after parsing attributes in process `syz-executor.1'.
[  264.619423][T10466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  264.619449][T10466] Call Trace:
[  264.619459][T10466]  <TASK>
[  264.619469][T10466]  dump_stack_lvl+0x241/0x360
[  264.649909][T10466]  ? __pfx_dump_stack_lvl+0x10/0x10
[  264.655158][T10466]  ? __pfx__printk+0x10/0x10
[  264.659768][T10466]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  264.666245][T10466]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  264.672749][T10466]  warn_alloc+0x278/0x410
[  264.677105][T10466]  ? __pfx_warn_alloc+0x10/0x10
[  264.681957][T10466]  ? hash_netiface_create+0x356/0x1040
[  264.687467][T10466]  ? __get_vm_area_node+0x23d/0x270
[  264.692690][T10466]  __vmalloc_node_range_noprof+0x6d0/0x1490
[  264.698616][T10466]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  264.704951][T10466]  ? rcu_is_watching+0x15/0xb0
[  264.709808][T10466]  ? trace_kmalloc+0x1f/0xd0
[  264.714422][T10466]  ? __kmalloc_node_noprof+0x247/0x440
[  264.719879][T10466]  ? kvmalloc_node_noprof+0x72/0x190
[  264.725186][T10466]  kvmalloc_node_noprof+0x142/0x190
[  264.730384][T10466]  ? hash_netiface_create+0x356/0x1040
[  264.735844][T10466]  hash_netiface_create+0x356/0x1040
[  264.741140][T10466]  ? __pfx_hash_netiface_create+0x10/0x10
[  264.746862][T10466]  ip_set_create+0xa5c/0x17d0
[  264.751559][T10466]  ? ip_set_create+0x45e/0x17d0
[  264.756415][T10466]  ? __pfx_ip_set_create+0x10/0x10
[  264.761521][T10466]  ? trace_contention_end+0x3c/0x120
[  264.766830][T10466]  ? nfnetlink_rcv_msg+0x225/0x1180
[  264.772075][T10466]  nfnetlink_rcv_msg+0xbec/0x1180
[  264.777124][T10466]  ? 0xffffffffa0000658
[  264.781298][T10466]  ? nfnetlink_rcv_msg+0x225/0x1180
[  264.786523][T10466]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  264.792002][T10466]  ? kasan_save_track+0x51/0x80
[  264.796871][T10466]  ? kasan_save_track+0x3f/0x80
[  264.801717][T10466]  ? kasan_save_free_info+0x40/0x50
[  264.806925][T10466]  ? __dev_queue_xmit+0x1b0e/0x3d30
[  264.812155][T10466]  ? __netlink_deliver_tap+0x54d/0x7c0
[  264.817609][T10466]  ? netlink_deliver_tap+0x19d/0x1b0
[  264.822885][T10466]  ? netlink_unicast+0x7b8/0x980
[  264.827819][T10466]  ? netlink_sendmsg+0x8db/0xcb0
[  264.832750][T10466]  ? ____sys_sendmsg+0x525/0x7d0
[  264.837687][T10466]  netlink_rcv_skb+0x1e3/0x430
[  264.842481][T10466]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  264.847989][T10466]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  264.853298][T10466]  ? apparmor_capable+0x138/0x1b0
[  264.858378][T10466]  ? bpf_lsm_capable+0x9/0x10
[  264.863076][T10466]  ? security_capable+0x90/0xb0
[  264.867976][T10466]  nfnetlink_rcv+0x297/0x2a80
[  264.872677][T10466]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  264.879013][T10466]  ? __local_bh_enable_ip+0x168/0x200
[  264.884411][T10466]  ? lockdep_hardirqs_on+0x99/0x150
[  264.889610][T10466]  ? __local_bh_enable_ip+0x168/0x200
[  264.894974][T10466]  ? dev_hard_start_xmit+0x773/0x7e0
[  264.900259][T10466]  ? __dev_queue_xmit+0x2d2/0x3d30
[  264.905372][T10466]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  264.911092][T10466]  ? __dev_queue_xmit+0x2d2/0x3d30
[  264.916206][T10466]  ? __dev_queue_xmit+0x16c9/0x3d30
[  264.921409][T10466]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  264.926526][T10466]  ? __dev_queue_xmit+0x2d2/0x3d30
[  264.931644][T10466]  ? ref_tracker_free+0x643/0x7e0
[  264.936701][T10466]  ? __asan_memcpy+0x40/0x70
[  264.941306][T10466]  ? __pfx_ref_tracker_free+0x10/0x10
[  264.946684][T10466]  ? netlink_deliver_tap+0x2e/0x1b0
[  264.951875][T10466]  ? skb_clone+0x240/0x390
[  264.956287][T10466]  ? __pfx_lock_release+0x10/0x10
[  264.961309][T10466]  ? __netlink_deliver_tap+0x77e/0x7c0
[  264.966773][T10466]  ? netlink_deliver_tap+0x2e/0x1b0
[  264.971965][T10466]  netlink_unicast+0x7ea/0x980
[  264.976737][T10466]  ? __pfx_netlink_unicast+0x10/0x10
[  264.982016][T10466]  ? __virt_addr_valid+0x183/0x520
[  264.987155][T10466]  ? __check_object_size+0x49c/0x900
[  264.992436][T10466]  ? bpf_lsm_netlink_send+0x9/0x10
[  264.997549][T10466]  netlink_sendmsg+0x8db/0xcb0
[  265.002319][T10466]  ? __pfx_netlink_sendmsg+0x10/0x10
[  265.007604][T10466]  ? __import_iovec+0x536/0x820
[  265.012467][T10466]  ? aa_sock_msg_perm+0x91/0x160
[  265.017407][T10466]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  265.022687][T10466]  ? security_socket_sendmsg+0x87/0xb0
[  265.028146][T10466]  ? __pfx_netlink_sendmsg+0x10/0x10
[  265.033426][T10466]  __sock_sendmsg+0x221/0x270
[  265.038106][T10466]  ____sys_sendmsg+0x525/0x7d0
[  265.042876][T10466]  ? __pfx_____sys_sendmsg+0x10/0x10
[  265.048175][T10466]  __sys_sendmsg+0x2b0/0x3a0
[  265.052767][T10466]  ? __pfx___sys_sendmsg+0x10/0x10
[  265.057911][T10466]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  265.064243][T10466]  ? do_syscall_64+0x100/0x230
[  265.069002][T10466]  ? do_syscall_64+0xb6/0x230
[  265.073674][T10466]  do_syscall_64+0xf3/0x230
[  265.078173][T10466]  ? clear_bhb_loop+0x35/0x90
[  265.082885][T10466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.088778][T10466] RIP: 0033:0x7fb00887cee9
[  265.093190][T10466] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  265.112804][T10466] RSP: 002b:00007fb0096660c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  265.121241][T10466] RAX: ffffffffffffffda RBX: 00007fb0089b4070 RCX: 00007fb00887cee9
[  265.129225][T10466] RDX: 0000000000000000 RSI: 0000000020000600 RDI: 0000000000000003
[  265.137194][T10466] RBP: 00007fb0088c947f R08: 0000000000000000 R09: 0000000000000000
[  265.145187][T10466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  265.153161][T10466] R13: 000000000000000b R14: 00007fb0089b4070 R15: 00007ffed83925d8
[  265.161141][T10466]  </TASK>
[  265.186448][T10466] Mem-Info:
[  265.194689][T10466] active_anon:14294 inactive_anon:0 isolated_anon:0
[  265.194689][T10466]  active_file:0 inactive_file:46889 isolated_file:0
[  265.194689][T10466]  unevictable:768 dirty:73 writeback:16
[  265.194689][T10466]  slab_reclaimable:11208 slab_unreclaimable:94595
[  265.194689][T10466]  mapped:18394 shmem:1636 pagetables:669
[  265.194689][T10466]  sec_pagetables:0 bounce:0
[  265.194689][T10466]  kernel_misc_reclaimable:0
[  265.194689][T10466]  free:1387262 free_pcp:1212 free_cma:0
[  265.253137][T10466] Node 0 active_anon:57176kB inactive_anon:0kB active_file:0kB inactive_file:187384kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:73576kB dirty:288kB writeback:64kB shmem:5008kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10880kB pagetables:2676kB sec_pagetables:0kB all_unreclaimable? no
[  265.296088][T10466] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  265.366833][T10466] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  265.401922][T10466] lowmem_reserve[]: 0 2571 2571 0 0
[  265.418819][T10466] Node 0 DMA32 free:1584828kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:58708kB inactive_anon:0kB active_file:0kB inactive_file:187052kB unevictable:1536kB writepending:232kB present:3129332kB managed:2659880kB mlocked:0kB bounce:0kB free_pcp:4964kB local_pcp:3748kB free_cma:0kB
[  265.496004][T10466] lowmem_reserve[]: 0 0 0 0 0
[  265.500813][T10466] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:316kB unevictable:0kB writepending:4kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  265.540720][T10478] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  265.567137][T10466] lowmem_reserve[]: 0 0 0 0 0
[  265.572243][T10466] Node 1 Normal free:3945856kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  265.602828][T10466] lowmem_reserve[]: 0 0 0 0 0
[  265.607747][T10466] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  265.655987][T10466] Node 0 DMA32: 125*4kB (UME) 0*8kB 138*16kB (ME) 212*32kB (ME) 155*64kB (UME) 64*128kB (UME) 50*256kB (UME) 53*512kB (UME) 31*1024kB (UME) 5*2048kB (UME) 359*4096kB (UM) = 1579988kB
[  265.685513][T10466] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  265.704446][T10466] Node 1 Normal: 2*4kB (U) 3*8kB (U) 10*16kB (U) 10*32kB (U) 8*64kB (UM) 3*128kB (U) 6*256kB (UM) 5*512kB (UM) 2*1024kB (U) 3*2048kB (UM) 960*4096kB (M) = 3945856kB
[  265.744343][T10466] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  265.768936][T10466] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  265.790983][T10466] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  265.808414][T10466] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  265.834271][T10466] 48511 total pagecache pages
[  265.839247][T10466] 0 pages in swap cache
[  265.844026][T10466] Free swap  = 124996kB
[  265.848337][T10466] Total swap = 124996kB
[  265.853194][T10466] 2097051 pages RAM
[  265.858150][T10466] 0 pages HighMem/MovableOnly
[  265.865596][T10466] 400871 pages reserved
[  265.869920][T10466] 0 pages cma reserved
[  266.347365][T10505] xt_hashlimit: max too large, truncated to 1048576
[  266.398482][T10508] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.3'.
[  266.409244][T10508] netlink: 43 bytes leftover after parsing attributes in process `syz-executor.3'.
[  266.418828][T10508] netlink: 'syz-executor.3': attribute type 5 has an invalid length.
[  266.427795][T10508] netlink: 43 bytes leftover after parsing attributes in process `syz-executor.3'.
[  266.727596][T10517] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  266.740809][T10517] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  266.762441][T10520] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[  266.806858][T10520] netlink: 'syz-executor.0': attribute type 8 has an invalid length.
[  266.848772][T10520] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.0'.
[  267.428913][T10534] smc: net device ip6tnl0 applied user defined pnetid SYZ0
[  267.715925][T10541] netlink: 'syz-executor.4': attribute type 5 has an invalid length.
[  268.293846][T10561] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  268.328946][T10561] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  268.635478][T10578] __nla_validate_parse: 4 callbacks suppressed
[  268.635500][T10578] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.3'.
[  268.651217][T10578] netlink: 43 bytes leftover after parsing attributes in process `syz-executor.3'.
[  268.661098][T10578] netlink: 'syz-executor.3': attribute type 5 has an invalid length.
[  268.670190][T10578] netlink: 43 bytes leftover after parsing attributes in process `syz-executor.3'.
[  269.017048][ T5159] IPVS: starting estimator thread 0...
[  269.019851][T10590] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  269.037333][T10590] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  269.111483][T10591] IPVS: using max 20 ests per chain, 48000 per kthread
[  269.325508][T10602] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 2147483648 (only 8 groups)
[  269.799872][T10625] 8021q: adding VLAN 0 to HW filter on device batadv1
[  269.945295][T10631] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
[  269.981505][T10631] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  270.042707][T10633] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  270.074688][T10633] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  270.641651][T10666] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  270.695762][T10666] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  270.737304][T10670] SET target dimension over the limit!
[  270.759533][T10670] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[  271.488520][T10705] tipc: Enabled bearer <eth:vlan0>, priority 10
[  271.497600][T10705] tipc: Resetting bearer <eth:vlan0>
[  271.539138][T10705] tipc: Disabling bearer <eth:vlan0>
[  272.863660][T10750] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  274.060585][T10782] __nla_validate_parse: 3 callbacks suppressed
[  274.060600][T10782] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  274.277471][T10794] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  274.296271][T10794] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  274.315822][T10794] netlink: 'syz-executor.3': attribute type 3 has an invalid length.
[  276.248799][T10828] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'.
[  276.258320][T10828] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  276.267652][T10828] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  276.453759][T10841] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  277.018169][ T5119] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  277.028272][ T5119] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  277.037965][ T5119] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  277.047079][ T5119] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  277.057677][ T5119] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  277.065466][ T5119] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  277.178445][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  277.189978][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.200898][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  277.279653][T10863] chnl_net:caif_netlink_parms(): no params data found
[  277.304853][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  277.315847][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.326562][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  277.416879][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  277.431391][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.443010][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  277.489147][T10863] bridge0: port 1(bridge_slave_0) entered blocking state
[  277.506498][T10863] bridge0: port 1(bridge_slave_0) entered disabled state
[  277.514178][T10863] bridge_slave_0: entered allmulticast mode
[  277.521106][T10863] bridge_slave_0: entered promiscuous mode
[  277.545037][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  277.555643][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.566034][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  277.582008][T10863] bridge0: port 2(bridge_slave_1) entered blocking state
[  277.589167][T10863] bridge0: port 2(bridge_slave_1) entered disabled state
[  277.596851][T10863] bridge_slave_1: entered allmulticast mode
[  277.606601][T10863] bridge_slave_1: entered promiscuous mode
[  277.639242][T10863] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  277.655900][T10863] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  277.722682][T10863] team0: Port device team_slave_0 added
[  277.739207][T10863] team0: Port device team_slave_1 added
[  277.836791][T10863] batman_adv: batadv0: Adding interface: batadv_slave_0
[  277.844238][T10863] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  277.870446][T10863] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  277.883434][   T12] bridge_slave_1: left allmulticast mode
[  277.896416][   T12] bridge_slave_1: left promiscuous mode
[  277.912846][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  277.926922][   T12] bridge_slave_0: left allmulticast mode
[  277.936056][   T12] bridge_slave_0: left promiscuous mode
[  277.945015][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.663791][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  278.675089][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  278.695263][   T12] bond0 (unregistering): Released all slaves
[  278.714294][T10863] batman_adv: batadv0: Adding interface: batadv_slave_1
[  278.721783][T10863] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  278.750392][T10863] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  278.834983][   T12] IPVS: stopping master sync thread 8922 ...
[  278.904048][T10863] hsr_slave_0: entered promiscuous mode
[  278.927144][T10863] hsr_slave_1: entered promiscuous mode
[  278.939536][T10863] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  278.959432][T10863] Cannot create hsr debugfs directory
[  279.106032][ T5119] Bluetooth: hci1: command tx timeout
[  279.254198][T10903] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  279.265532][T10903] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  279.329262][   T12] hsr_slave_0: left promiscuous mode
[  279.336886][   T12] hsr_slave_1: left promiscuous mode
[  279.350231][   T12] batman_adv: batadv0: Removing interface: team0
[  279.358956][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  279.366693][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  279.376050][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  279.384788][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  279.408399][   T12] dummy0: left promiscuous mode
[  279.413769][   T12] veth1_macvtap: left promiscuous mode
[  279.419299][   T12] veth0_macvtap: left promiscuous mode
[  279.425110][   T12] veth1_vlan: left promiscuous mode
[  279.430417][   T12] veth0_vlan: left promiscuous mode
[  279.907208][   T12] team0 (unregistering): Port device team_slave_1 removed
[  279.950430][   T12] team0 (unregistering): Port device team_slave_0 removed
[  280.480017][T10912] netlink: 'syz-executor.3': attribute type 27 has an invalid length.
[  280.937558][T10912] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.945287][T10912] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.957624][ T5126] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  280.967123][ T5126] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  280.977085][ T5126] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  280.991731][ T5126] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  281.000969][ T5126] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  281.009240][ T5126] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  281.181612][ T5126] Bluetooth: hci1: command tx timeout
[  281.340959][T10912] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  281.380792][T10912] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  281.624404][T10912] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  281.640648][T10912] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  281.651093][T10912] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  281.671426][T10912] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  281.840244][T10912] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  281.846653][T10929] netlink: 140 bytes leftover after parsing attributes in process `syz-executor.1'.
[  281.849637][T10912] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  281.868226][T10912] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  281.877473][T10912] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  281.890003][T10912] vxlan0: left promiscuous mode
[  281.902297][T10913] bridge0: port 3(geneve1) entered blocking state
[  281.919269][T10913] bridge0: port 3(geneve1) entered disabled state
[  281.926404][T10913] geneve1: entered allmulticast mode
[  281.950645][T10913] geneve1: entered promiscuous mode
[  282.061163][T10863] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  282.081865][T10863] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  282.093534][   T12] IPVS: stop unused estimator thread 0...
[  282.104488][T10863] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  282.147345][T10863] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  282.173609][T10936] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  282.183247][T10936] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  282.407478][T10919] chnl_net:caif_netlink_parms(): no params data found
[  282.499613][T10919] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.507021][T10919] bridge0: port 1(bridge_slave_0) entered disabled state
[  282.516710][T10919] bridge_slave_0: entered allmulticast mode
[  282.524472][T10919] bridge_slave_0: entered promiscuous mode
[  282.534495][T10919] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.542862][T10919] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.550056][T10919] bridge_slave_1: entered allmulticast mode
[  282.557680][T10919] bridge_slave_1: entered promiscuous mode
[  282.574455][T10863] 8021q: adding VLAN 0 to HW filter on device bond0
[  282.607300][T10919] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  282.621556][T10919] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  282.662965][T10919] team0: Port device team_slave_0 added
[  282.671739][T10919] team0: Port device team_slave_1 added
[  282.714026][T10919] batman_adv: batadv0: Adding interface: batadv_slave_0
[  282.721002][T10919] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  282.748758][T10919] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  282.762897][T10919] batman_adv: batadv0: Adding interface: batadv_slave_1
[  282.769878][T10919] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  282.797415][T10919] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  282.817629][T10863] 8021q: adding VLAN 0 to HW filter on device team0
[  282.837143][ T5163] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.844332][ T5163] bridge0: port 1(bridge_slave_0) entered forwarding state
[  282.886629][ T5211] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.893831][ T5211] bridge0: port 2(bridge_slave_1) entered forwarding state
[  282.909504][T10919] hsr_slave_0: entered promiscuous mode
[  282.916518][T10919] hsr_slave_1: entered promiscuous mode
[  282.927381][T10919] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  282.935862][T10919] Cannot create hsr debugfs directory
[  283.102282][ T5126] Bluetooth: hci5: command tx timeout
[  283.128293][T10919] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  283.211996][T10919] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  283.262458][ T5126] Bluetooth: hci1: command tx timeout
[  283.298990][T10919] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  283.398662][T10919] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  283.439824][T10863] 8021q: adding VLAN 0 to HW filter on device batadv0
[  283.634135][T10919] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  283.659534][T10919] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  283.690600][T10919] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  283.710413][T10919] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  283.883472][T10919] 8021q: adding VLAN 0 to HW filter on device bond0
[  283.919988][T10919] 8021q: adding VLAN 0 to HW filter on device team0
[  283.975586][ T5157] bridge0: port 1(bridge_slave_0) entered blocking state
[  283.982774][ T5157] bridge0: port 1(bridge_slave_0) entered forwarding state
[  284.007825][T10982] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  284.025822][T10982] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  284.056706][ T5211] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.063905][ T5211] bridge0: port 2(bridge_slave_1) entered forwarding state
[  284.089441][T10863] veth0_vlan: entered promiscuous mode
[  284.160752][T10863] veth1_vlan: entered promiscuous mode
[  284.274051][T10863] veth0_macvtap: entered promiscuous mode
[  284.300183][T10863] veth1_macvtap: entered promiscuous mode
[  284.347045][T10863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  284.358538][T10863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.371641][T10863] batman_adv: batadv0: Interface activated: batadv_slave_0
[  284.385186][T10863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.396546][T10863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.407695][T10863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.425223][T10863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.437939][T10863] batman_adv: batadv0: Interface activated: batadv_slave_1
[  284.465743][T10863] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  284.476395][T10863] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  284.485696][T10863] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  284.495502][T10863] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  284.539575][T10919] 8021q: adding VLAN 0 to HW filter on device batadv0
[  284.647935][ T2917] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  284.648258][T10919] veth0_vlan: entered promiscuous mode
[  284.662744][ T2917] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  284.699537][T10919] veth1_vlan: entered promiscuous mode
[  284.717414][ T2917] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  284.730212][ T2917] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  284.776953][T10919] veth0_macvtap: entered promiscuous mode
[  284.796277][T10919] veth1_macvtap: entered promiscuous mode
[  284.820448][T10999] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'.
[  284.837339][T10919] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  284.848181][T10919] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.858854][T10919] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  284.870028][T10919] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.884563][T10919] batman_adv: batadv0: Interface activated: batadv_slave_0
[  284.900239][T10919] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.930538][T10919] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.943667][T10919] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.954386][T10919] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.964313][T10919] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.982821][T10919] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.994839][T10919] batman_adv: batadv0: Interface activated: batadv_slave_1
[  285.010840][T11004] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  285.042388][T11004] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  285.053993][T10919] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  285.068113][T10919] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  285.068449][T11007] raw_sendmsg: syz-executor.1 forgot to set AF_INET. Fix it!
[  285.079992][T10919] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  285.101225][T10919] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  285.190081][ T5126] Bluetooth: hci5: command tx timeout
[  285.236879][T11011] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  285.248691][T11011] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  285.259392][T11011] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  285.339099][ T5211] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  285.347747][ T5126] Bluetooth: hci1: command tx timeout
[  285.358926][ T5211] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  285.433697][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  285.454610][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  285.499030][T11020] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  285.536759][T11020] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  285.886988][T11030] netlink: 'syz-executor.3': attribute type 23 has an invalid length.
[  286.109589][T11035] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  286.362778][T11039] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  286.378806][T11039] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  286.387836][T11039] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  286.396654][T11039] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  286.405409][T11039] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  286.416181][T11039] vxlan0: entered promiscuous mode
[  286.678494][T11056] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[  287.261527][ T5126] Bluetooth: hci5: command tx timeout
[  288.284847][T11100] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  288.698173][T11119] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  288.719462][T11119] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  288.789530][T11119] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  289.030878][T11126] bridge0: port 4(vlan2) entered blocking state
[  289.047724][T11126] bridge0: port 4(vlan2) entered disabled state
[  289.060595][T11126] vlan2: entered allmulticast mode
[  289.069155][T11126] vlan2: left allmulticast mode
[  289.341731][ T5126] Bluetooth: hci5: command tx timeout
[  289.547763][T11138] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  289.746803][T11149] TCP: MD5 Hash mismatch for [fe80::bb].0->[ff02::1].20002 [.]L3 index 0
[  289.775669][T11150] xt_TCPMSS: Only works on TCP SYN packets
[  292.025553][T11214] tipc: Started in network mode
[  292.030671][T11214] tipc: Node identity ac1414aa, cluster identity 4711
[  292.046741][T11214] tipc: New replicast peer: 0.0.0.0
[  292.054031][T11214] tipc: Enabled bearer <udp:syz2>, priority 10
[  292.206358][T11221] __nla_validate_parse: 1 callbacks suppressed
[  292.206381][T11221] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'.
[  292.240778][T11221] vlan2: entered promiscuous mode
[  292.246853][T11221] bond0: entered promiscuous mode
[  292.259412][T11221] bond_slave_0: entered promiscuous mode
[  292.266980][T11221] bond_slave_1: entered promiscuous mode
[  292.711809][   T29] audit: type=1804 audit(1717206638.629:51): pid=11240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir1154788337/syzkaller.1fr89m/315/memory.events" dev="sda1" ino=1967 res=1 errno=0
[  292.764649][   T29] audit: type=1800 audit(1717206638.639:52): pid=11240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="memory.events" dev="sda1" ino=1967 res=0 errno=0
[  293.081374][ T5162] tipc: Node number set to 2886997162
[  293.863983][T11269] ebt_among: dst integrity fail: 101
[  294.979589][T11287] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  295.380294][T11296] 8021q: adding VLAN 0 to HW filter on device batadv1
[  295.596826][T11307] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  295.673333][T11307] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  296.893005][T11337] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  297.163664][T11349] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  297.300979][T11351] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  297.341971][T11351] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  298.355878][T11365] pimreg: entered allmulticast mode
[  298.369741][T11365] pimreg: left allmulticast mode
[  298.544790][T11370] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  298.552163][T11370] IPv6: NLM_F_CREATE should be set when creating new route
[  298.559479][T11370] IPv6: NLM_F_CREATE should be set when creating new route
[  298.573281][T11372] netlink: 'syz-executor.3': attribute type 7 has an invalid length.
[  298.586380][T11372] netlink: 'syz-executor.3': attribute type 39 has an invalid length.
[  298.699805][T11377] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  298.709606][T11377] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  299.244435][T11387] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  299.291099][T11387] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  299.300146][T11387] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  299.308932][T11387] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  299.318455][T11387] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  299.334399][T11387] vxlan0: entered promiscuous mode
[  299.491885][T11394] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  299.542660][T11394] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  299.549988][T11394] IPv6: NLM_F_CREATE should be set when creating new route
[  299.588631][T11394] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  300.460488][T11423] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  300.522844][T11423] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  300.530156][T11423] IPv6: NLM_F_CREATE should be set when creating new route
[  300.553062][T11423] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  300.877879][T11431] wireguard0: entered promiscuous mode
[  300.893146][T11431] wireguard0: entered allmulticast mode
[  301.361046][T11438] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.1'.
[  301.627792][T11446] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[  301.868115][T11456] wireguard0: entered promiscuous mode
[  301.888687][T11456] wireguard0: entered allmulticast mode
[  301.993390][T11462] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  302.760614][T11495] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  302.860059][T11495] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  302.866435][ T5119] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  302.867376][T11495] IPv6: NLM_F_CREATE should be set when creating new route
[  302.882433][ T5119] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  302.894781][ T5119] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  302.909923][ T5119] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  302.921599][ T5119] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  302.929193][ T5119] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  302.980026][T11495] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  303.337800][T11497] chnl_net:caif_netlink_parms(): no params data found
[  303.363754][T11518] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'.
[  303.405471][T11518] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  303.570401][T11531] netlink: 'syz-executor.2': attribute type 6 has an invalid length.
[  303.580912][T11531] netlink: 199836 bytes leftover after parsing attributes in process `syz-executor.2'.
[  303.615887][T11497] bridge0: port 1(bridge_slave_0) entered blocking state
[  303.631802][T11497] bridge0: port 1(bridge_slave_0) entered disabled state
[  303.639118][T11497] bridge_slave_0: entered allmulticast mode
[  303.658257][T11497] bridge_slave_0: entered promiscuous mode
[  303.682558][T11497] bridge0: port 2(bridge_slave_1) entered blocking state
[  303.690856][T11497] bridge0: port 2(bridge_slave_1) entered disabled state
[  303.715358][T11497] bridge_slave_1: entered allmulticast mode
[  303.733500][T11497] bridge_slave_1: entered promiscuous mode
[  303.880140][T11497] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  303.918050][T11497] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  303.949352][T11538] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  303.985997][T11541] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  303.993434][T11541] IPv6: NLM_F_CREATE should be set when creating new route
[  304.082095][T11542] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  304.094935][T11538] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  304.161139][T11543] 8021q: adding VLAN 0 to HW filter on device batadv1
[  304.278984][T11497] team0: Port device team_slave_0 added
[  304.297425][T11497] team0: Port device team_slave_1 added
[  304.380585][T11497] batman_adv: batadv0: Adding interface: batadv_slave_0
[  304.406048][T11497] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  304.436942][T11497] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  304.454851][T11548] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.4'.
[  304.467412][T11497] batman_adv: batadv0: Adding interface: batadv_slave_1
[  304.483151][T11497] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  304.539170][T11497] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  304.623061][T11497] hsr_slave_0: entered promiscuous mode
[  304.642337][T11497] hsr_slave_1: entered promiscuous mode
[  304.648999][T11497] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  304.657448][T11497] Cannot create hsr debugfs directory
[  304.663581][T11554] tipc: Started in network mode
[  304.670248][T11554] tipc: Node identity ac1414aa, cluster identity 4711
[  304.681479][T11554] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  304.805909][T11565] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'.
[  304.887349][T11567] EXT4-fs warning (device sda1): __ext4_ioctl:1258: Setting inode version is not supported with metadata_csum enabled.
[  305.032090][ T5126] Bluetooth: hci6: command tx timeout
[  305.117991][T11497] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  305.153630][T11577] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  305.177548][T11497] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.253655][T11574] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[  305.381598][T11578] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  305.450870][T11497] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  305.467746][T11497] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.535072][ T5119] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  305.547964][ T5119] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  305.557373][ T5119] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  305.566251][ T5119] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  305.575581][ T5119] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  305.589498][ T5119] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  305.617570][T11497] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  305.628894][T11497] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.737598][T11497] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  305.750444][T11497] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.889098][   T61] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  305.900759][   T61] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.055001][   T61] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  306.065869][   T61] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.123951][T11605] 8021q: adding VLAN 0 to HW filter on device batadv1
[  306.205056][T11606] 8021q: adding VLAN 0 to HW filter on device batadv1
[  306.275825][   T61] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  306.286328][   T61] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.325684][T11609] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  306.352351][T11608] netlink: 'syz-executor.3': attribute type 24 has an invalid length.
[  306.369265][T11608] debugfs: Directory '!' with parent 'ieee80211' already present!
[  306.423336][   T61] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  306.434786][   T61] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.468362][T11497] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  306.497295][T11587] chnl_net:caif_netlink_parms(): no params data found
[  306.518959][T11497] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  306.560799][T11497] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  306.617472][T11497] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  306.790139][T11587] bridge0: port 1(bridge_slave_0) entered blocking state
[  306.797878][T11587] bridge0: port 1(bridge_slave_0) entered disabled state
[  306.805971][T11587] bridge_slave_0: entered allmulticast mode
[  306.815430][T11587] bridge_slave_0: entered promiscuous mode
[  306.828862][T11587] bridge0: port 2(bridge_slave_1) entered blocking state
[  306.843923][T11587] bridge0: port 2(bridge_slave_1) entered disabled state
[  306.851732][T11587] bridge_slave_1: entered allmulticast mode
[  306.859485][T11587] bridge_slave_1: entered promiscuous mode
[  306.974327][T11587] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  307.026029][T11587] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  307.066576][   T61] bridge_slave_1: left allmulticast mode
[  307.076846][   T61] bridge_slave_1: left promiscuous mode
[  307.089570][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.103244][ T5119] Bluetooth: hci6: command tx timeout
[  307.112215][   T61] bridge_slave_0: left allmulticast mode
[  307.118027][   T61] bridge_slave_0: left promiscuous mode
[  307.124059][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.664524][ T5119] Bluetooth: hci1: command tx timeout
[  307.704311][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  307.717995][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  307.730983][   T61] bond0 (unregistering): Released all slaves
[  307.770260][T11587] team0: Port device team_slave_0 added
[  307.803666][T11636] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  307.819701][T11636] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  307.860338][T11643] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  307.945428][T11587] team0: Port device team_slave_1 added
[  307.989818][T11650] xt_TPROXY: Can be used only with -p tcp or -p udp
[  307.998129][   T61] tipc: Left network mode
[  308.066762][T11587] batman_adv: batadv0: Adding interface: batadv_slave_0
[  308.097011][T11587] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  308.123552][T11654] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  308.130714][T11654] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  308.147106][T11587] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  308.284461][T11587] batman_adv: batadv0: Adding interface: batadv_slave_1
[  308.294993][T11587] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  308.324418][T11587] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  308.437956][T11667] __nla_validate_parse: 2 callbacks suppressed
[  308.437974][T11667] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  308.507757][T11669] 8021q: adding VLAN 0 to HW filter on device batadv1
[  308.560337][T11670] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  308.588864][T11587] hsr_slave_0: entered promiscuous mode
[  308.597465][T11587] hsr_slave_1: entered promiscuous mode
[  308.604272][T11587] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  308.619276][T11587] Cannot create hsr debugfs directory
[  308.640375][T11671] 8021q: adding VLAN 0 to HW filter on device batadv1
[  308.724013][   T61] hsr_slave_0: left promiscuous mode
[  308.735143][   T61] hsr_slave_1: left promiscuous mode
[  308.743815][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  308.760851][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  308.769950][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  308.782416][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  308.810339][   T61] veth1_macvtap: left promiscuous mode
[  308.816146][   T61] veth0_macvtap: left promiscuous mode
[  308.821918][   T61] veth1_vlan: left promiscuous mode
[  308.827273][   T61] veth0_vlan: left promiscuous mode
[  308.905102][T11674] netlink: 2060 bytes leftover after parsing attributes in process `syz-executor.3'.
[  308.921348][T11674] netlink: 199836 bytes leftover after parsing attributes in process `syz-executor.3'.
[  309.181668][ T5119] Bluetooth: hci6: command tx timeout
[  309.385058][   T61] team0 (unregistering): Port device team_slave_1 removed
[  309.426028][   T61] team0 (unregistering): Port device team_slave_0 removed
[  309.743619][ T5119] Bluetooth: hci1: command tx timeout
[  310.044078][T11680] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  310.131925][T11497] 8021q: adding VLAN 0 to HW filter on device bond0
[  310.220140][T11497] 8021q: adding VLAN 0 to HW filter on device team0
[  310.244652][T11686] x_tables: ip_tables: icmp match: only valid for protocol 1
[  310.292852][ T5163] bridge0: port 1(bridge_slave_0) entered blocking state
[  310.299982][ T5163] bridge0: port 1(bridge_slave_0) entered forwarding state
[  310.320764][ T5162] bridge0: port 2(bridge_slave_1) entered blocking state
[  310.327957][ T5162] bridge0: port 2(bridge_slave_1) entered forwarding state
[  310.495872][T11688] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  310.503626][T11688] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  310.861819][T11711] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  310.896427][T11713] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  310.907033][T11711] 8021q: adding VLAN 0 to HW filter on device batadv1
[  310.972080][T11587] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  310.996447][T11497] 8021q: adding VLAN 0 to HW filter on device batadv0
[  311.019328][T11587] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  311.060970][T11587] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  311.087278][T11587] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  311.188048][T11497] veth0_vlan: entered promiscuous mode
[  311.233606][T11497] veth1_vlan: entered promiscuous mode
[  311.261707][ T5119] Bluetooth: hci6: command tx timeout
[  311.364733][T11587] 8021q: adding VLAN 0 to HW filter on device bond0
[  311.405800][T11497] veth0_macvtap: entered promiscuous mode
[  311.430326][T11497] veth1_macvtap: entered promiscuous mode
[  311.454454][T11587] 8021q: adding VLAN 0 to HW filter on device team0
[  311.476033][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  311.483343][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  311.514548][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  311.534422][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.548174][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  311.561502][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.578330][T11497] batman_adv: batadv0: Interface activated: batadv_slave_0
[  311.589694][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  311.596840][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  311.629632][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  311.644850][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.667150][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  311.677852][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.687824][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  311.703645][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.724137][T11497] batman_adv: batadv0: Interface activated: batadv_slave_1
[  311.761038][T11497] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  311.783528][T11497] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  311.801362][T11497] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  311.810134][T11497] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  311.822261][ T5119] Bluetooth: hci1: command tx timeout
[  311.883278][   T29] audit: type=1804 audit(1717206657.809:53): pid=11748 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir509252223/syzkaller.TapAgg/163/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[  311.928482][T11741] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'.
[  311.950704][T11748] netlink: 'syz-executor.3': attribute type 6 has an invalid length.
[  311.997332][T11587] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  312.131897][ T5211] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  312.149948][ T5211] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  312.231421][    T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  312.256922][T11760] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  312.258093][    T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  312.276342][T11759] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  312.289362][T11759] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  312.459860][T11587] 8021q: adding VLAN 0 to HW filter on device batadv0
[  312.504474][T11771] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  312.903159][T11790] xt_CT: You must specify a L4 protocol and not use inversions on it
[  312.939236][   T29] audit: type=1804 audit(1717206658.859:54): pid=11793 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir509252223/syzkaller.TapAgg/168/cgroup.controllers" dev="sda1" ino=1964 res=1 errno=0
[  312.942255][T11793] netlink: 'syz-executor.3': attribute type 6 has an invalid length.
[  313.221305][T11587] veth0_vlan: entered promiscuous mode
[  313.273018][T11587] veth1_vlan: entered promiscuous mode
[  313.388671][T11587] veth0_macvtap: entered promiscuous mode
[  313.407318][T11587] veth1_macvtap: entered promiscuous mode
[  313.459174][T11587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  313.487226][T11587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  313.508255][T11587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  313.530874][T11587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  313.542328][T11587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  313.557617][T11587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  313.581120][T11587] batman_adv: batadv0: Interface activated: batadv_slave_0
[  313.634824][T11587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  313.681303][T11587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  313.691171][T11587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  313.767323][T11587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  313.778315][T11587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  313.796331][T11587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  313.806324][T11587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  313.816955][T11587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  313.829066][T11587] batman_adv: batadv0: Interface activated: batadv_slave_1
[  313.841409][T11587] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  313.850165][T11587] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  313.875584][T11587] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  313.901812][T11587] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  313.902317][ T5119] Bluetooth: hci1: command tx timeout
[  314.032135][T11825] netlink: 'syz-executor.2': attribute type 322 has an invalid length.
[  314.062736][T11825] sctp: [Deprecated]: syz-executor.2 (pid 11825) Use of int in maxseg socket option.
[  314.062736][T11825] Use struct sctp_assoc_value instead
[  314.169010][ T2827] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  314.211668][ T2827] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  314.268817][T11836] __nla_validate_parse: 2 callbacks suppressed
[  314.268838][T11836] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'.
[  314.286753][T11834] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  314.303384][T11834] netlink: 200092 bytes leftover after parsing attributes in process `syz-executor.1'.
[  314.305357][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  314.331191][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  314.341662][T11836] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  314.394473][T11836] bridge0: entered promiscuous mode
[  314.828503][T11863] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  315.882798][T11887] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  316.708391][T11902] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  317.046634][T11919] virt_wifi0: mtu less than device minimum
[  317.587874][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  317.601435][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  317.656014][   T29] audit: type=1804 audit(1717206663.579:55): pid=11943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3370063938/syzkaller.1iwft4/8/cgroup.controllers" dev="sda1" ino=1970 res=1 errno=0
[  319.454888][T11993] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  319.480540][T11993] netlink: 199836 bytes leftover after parsing attributes in process `syz-executor.1'.
[  321.294767][T12036] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[  321.365704][T12036] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  321.403559][T12041] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  321.422300][T12041] netlink: 'syz-executor.4': attribute type 14 has an invalid length.
[  321.432114][T12041] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[  321.476746][T12041] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  321.485875][T12041] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  321.494857][T12041] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  321.504156][T12041] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  321.562025][T12041] vxlan1: entered promiscuous mode
[  322.946233][T12082] SET target dimension over the limit!
[  323.274003][T12092] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[  323.334098][T12095] bridge0: port 3(geneve1) entered blocking state
[  323.381059][T12095] bridge0: port 3(geneve1) entered disabled state
[  323.405964][T12095] geneve1: entered allmulticast mode
[  323.469977][T12095] geneve1: entered promiscuous mode
[  323.555178][T12095] bridge0: port 3(geneve1) entered blocking state
[  323.562221][T12095] bridge0: port 3(geneve1) entered forwarding state
[  323.792263][T12104] x_tables: unsorted entry at hook 2
[  323.818129][T12104] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  324.252192][T12118] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  324.259309][T12118] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  324.823843][T12142] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  324.872150][T12147] pim6reg: entered allmulticast mode
[  326.397767][T12201] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[  326.419023][T12200] vlan4: entered promiscuous mode
[  326.434050][T12200] vlan4: entered allmulticast mode
[  326.758204][T12213] netlink: 'syz-executor.3': attribute type 3 has an invalid length.
[  326.828933][T12216] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  326.938604][T12216] team0: Port device bridge1 added
[  326.986302][T12222] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  327.075500][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  327.363025][T12239] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  327.396238][T12239] bridge0: port 4(team0) entered blocking state
[  327.415680][T12239] bridge0: port 4(team0) entered disabled state
[  327.425122][T12239] team0: entered allmulticast mode
[  327.443345][T12239] team_slave_0: entered allmulticast mode
[  327.469581][T12239] team_slave_1: entered allmulticast mode
[  327.512263][T12239] team0: entered promiscuous mode
[  327.525729][T12239] team_slave_0: entered promiscuous mode
[  327.550877][T12239] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  327.583307][T12239] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  327.602958][T12239] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  327.618437][T12239] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  327.628539][T12239] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  327.655057][T12239] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  327.677516][T12239] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  327.687222][T12249] netlink: 'syz-executor.4': attribute type 3 has an invalid length.
[  329.040520][T12306] netlink: 199836 bytes leftover after parsing attributes in process `syz-executor.3'.
[  329.635972][T12332] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.3'.
[  330.272233][T12348] syz-executor.1 (12348) used greatest stack depth: 17432 bytes left
[  330.768652][T12371] netlink: 1212 bytes leftover after parsing attributes in process `syz-executor.3'.
[  330.869995][T12375] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.2'.
[  331.158170][T12387] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  331.326654][T12401] vxcan1: tx drop: invalid sa for name 0x0000000000000003
[  331.349339][T12402] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  331.756753][T12410] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.0'.
[  331.836820][T12410] validate_nla: 31 callbacks suppressed
[  331.836841][T12410] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  332.028686][T12412] netlink: 1212 bytes leftover after parsing attributes in process `syz-executor.0'.
[  332.793074][T12429] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  332.814134][T12429] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  332.815030][T12430] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  333.116191][T12437] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[  333.199480][T12439] netlink: 'syz-executor.4': attribute type 4 has an invalid length.
[  333.656009][T12459] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  333.702964][T12467] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  334.003073][T12482] af_packet: tpacket_rcv: packet too big, clamped from 212960 to 3952. macoff=96
[  334.030539][T12482] netlink: 'syz-executor.2': attribute type 29 has an invalid length.
[  334.056618][T12488] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[  334.076351][T12482] netlink: 1280 bytes leftover after parsing attributes in process `syz-executor.2'.
[  334.087493][T12488] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.0'.
[  334.107293][T12488] 0·: renamed from hsr_slave_1 (while UP)
[  334.124482][T12488] 0·: entered allmulticast mode
[  334.142385][T12488] A link change request failed with some changes committed already. Interface 
c0· may have been left with an inconsistent configuration, please check.
[  334.174218][T12482] netlink: 'syz-executor.2': attribute type 29 has an invalid length.
[  334.207213][T12482] netlink: 1280 bytes leftover after parsing attributes in process `syz-executor.2'.
[  334.507809][T12502] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  334.768422][T12504] vlan3: entered promiscuous mode
[  334.770945][T12506] netlink: 209840 bytes leftover after parsing attributes in process `syz-executor.3'.
[  335.019215][T12504] macvtap0: entered promiscuous mode
[  335.174047][T12504] vlan3: entered allmulticast mode
[  335.179247][T12504] macvtap0: entered allmulticast mode
[  335.395704][T12504] veth0_macvtap: entered allmulticast mode
[  335.408374][T12504] macvtap0: left allmulticast mode
[  335.414977][T12504] veth0_macvtap: left allmulticast mode
[  335.421430][T12504] macvtap0: left promiscuous mode
[  335.666822][T12529] netlink: 1212 bytes leftover after parsing attributes in process `syz-executor.3'.
[  336.087823][T12545] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  336.097460][T12545] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  336.106683][T12545] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  336.115818][T12545] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  336.133916][T12545] vxlan0: entered promiscuous mode
[  336.209250][T12547] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  336.437224][T12560] erspan0: vlans aren't supported yet for dev_uc|mc_add()
[  336.503199][T12565] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  336.534990][T12560] can: request_module (can-proto-4) failed.
[  337.399433][T12588] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  337.642586][T12598] __nla_validate_parse: 1 callbacks suppressed
[  337.642609][T12598] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
[  338.025304][T12606] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  338.334616][T12608] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  338.387949][T12608] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[  338.677275][T12619] netlink: 'syz-executor.0': attribute type 9 has an invalid length.
[  338.687236][T12621] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  338.699150][T12621] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  338.724277][T12619] netlink: 209836 bytes leftover after parsing attributes in process `syz-executor.0'.
[  338.894706][T12622] netlink: 'syz-executor.0': attribute type 9 has an invalid length.
[  338.928416][T12622] netlink: 209836 bytes leftover after parsing attributes in process `syz-executor.0'.
[  339.158872][T12635] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  339.232080][T12643] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[  339.287773][T12649] tipc: Can't bind to reserved service type 2
[  339.412056][T12656] netlink: 192 bytes leftover after parsing attributes in process `syz-executor.0'.
[  339.435111][T12658] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  339.453297][T12658] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  339.648189][T12671] netlink: 'syz-executor.0': attribute type 9 has an invalid length.
[  339.679707][T12671] netlink: 209836 bytes leftover after parsing attributes in process `syz-executor.0'.
[  339.820620][T12675] netlink: 'syz-executor.0': attribute type 9 has an invalid length.
[  339.842627][T12675] netlink: 209836 bytes leftover after parsing attributes in process `syz-executor.0'.
[  340.027384][T12677] openvswitch: netlink: Missing key (keys=40, expected=80)
[  340.268623][T12683] x_tables: duplicate underflow at hook 2
[  340.745743][T12689] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  340.766270][T12687] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  340.856003][T12692] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[  340.892531][   T29] audit: type=1800 audit(1717206686.809:56): pid=12691 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="memory.events" dev="sda1" ino=1972 res=0 errno=0
[  340.987217][   T29] audit: type=1804 audit(1717206686.859:57): pid=12689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3370063938/syzkaller.1iwft4/66/cgroup.controllers" dev="sda1" ino=1945 res=1 errno=0
[  341.615546][T12715] x_tables: duplicate underflow at hook 2
[  341.665571][T12711] bond0: (slave vlan0): Opening slave failed
[  342.114761][T12735] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  342.118126][T12738] netlink: 'syz-executor.3': attribute type 9 has an invalid length.
[  342.212312][T12740] netlink: 'syz-executor.3': attribute type 9 has an invalid length.
[  342.217495][T12739] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  343.125706][T12767] __nla_validate_parse: 5 callbacks suppressed
[  343.125729][T12767] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  343.161517][T12777] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  343.194486][T12779] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  343.519302][T12788] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  343.581138][T12789] netlink: 'syz-executor.3': attribute type 3 has an invalid length.
[  343.892147][T12794] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  344.474416][T12813] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
[  344.492065][T12813] netlink: 'syz-executor.0': attribute type 3 has an invalid length.
[  344.501045][T12813] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.0'.
[  344.532190][T12813] NCSI netlink: No device for ifindex 32770
[  344.635783][T12820] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  344.652560][T12820] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  344.678106][T12825] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  344.794470][T12830] netlink: 'syz-executor.1': attribute type 29 has an invalid length.
[  344.820400][T12830] netlink: 'syz-executor.1': attribute type 29 has an invalid length.
[  344.848588][T12837] netlink: 'syz-executor.1': attribute type 29 has an invalid length.
[  344.867112][T12830] netlink: 'syz-executor.1': attribute type 29 has an invalid length.
[  344.974807][T12846] netlink: 'syz-executor.0': attribute type 3 has an invalid length.
[  345.377134][T12858] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  346.441910][T12900] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[  346.804981][T12920] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  347.105716][T12933] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
[  347.492497][T12961] netlink: 'syz-executor.4': attribute type 10 has an invalid length.
[  348.011861][T12977] Cannot find add_set index 0 as target
[  348.287732][T12984] tun0: tun_chr_ioctl cmd 1074025692
[  348.683451][T13008] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[  348.920592][T13013] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  348.946503][T13013] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  348.963742][T13017] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.2'.
[  348.982019][T13017] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes.
[  349.750454][T13049] netlink: 200 bytes leftover after parsing attributes in process `syz-executor.2'.
[  350.107736][T13064] netlink: 277 bytes leftover after parsing attributes in process `syz-executor.0'.
[  350.243020][T13070] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  351.991204][T13106] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  353.027000][T13168] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  353.052986][T13169] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  353.461693][T13183] validate_nla: 1 callbacks suppressed
[  353.461714][T13183] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[  353.524847][T13183] netlink: 168864 bytes leftover after parsing attributes in process `syz-executor.1'.
[  353.664555][T13188] netlink: 'syz-executor.1': attribute type 29 has an invalid length.
[  353.681824][T13188] netlink: 'syz-executor.1': attribute type 29 has an invalid length.
[  353.718885][T13183] netlink: 'syz-executor.1': attribute type 29 has an invalid length.
[  353.839312][T13197] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  354.096001][   T29] audit: type=1804 audit(1717206700.019:58): pid=13202 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir1154788337/syzkaller.1fr89m/470/cgroup.controllers" dev="sda1" ino=1971 res=1 errno=0
[  354.555034][T13215] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  354.812304][T13222] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[  354.904727][T13231] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition
[  354.967871][T13231] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0)
[  354.997106][T13240] Cannot find add_set index 0 as target
[  355.014796][T13236] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  355.058276][T13236] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  355.089486][T13236] block nbd0: Unsupported socket: shutdown callout must be supported.
[  355.288716][T13259] xt_policy: output policy not valid in PREROUTING and INPUT
[  355.405412][T13265] netlink: 'syz-executor.0': attribute type 7 has an invalid length.
[  355.423319][T13264] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  355.433896][T13265] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  355.484105][T13268] bridge1: port 1(gretap1) entered blocking state
[  355.497044][T13268] bridge1: port 1(gretap1) entered disabled state
[  355.511404][ T5119] Bluetooth: hci4: command 0x0406 tx timeout
[  355.525176][T13268] gretap1: entered allmulticast mode
[  355.585451][T13268] gretap1: entered promiscuous mode
[  355.750190][T13274] veth1_macvtap: left promiscuous mode
[  355.763081][T13274] macsec0: entered promiscuous mode
[  355.773947][T13274] macsec0: entered allmulticast mode
[  355.834614][T13274] veth1_macvtap: entered promiscuous mode
[  355.841187][T13274] veth1_macvtap: entered allmulticast mode
[  355.867009][T13276] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[  355.881670][T13274] macsec0: left promiscuous mode
[  355.895462][T13274] macsec0: left allmulticast mode
[  355.901162][T13274] veth1_macvtap: left allmulticast mode
[  356.056467][T13282] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[  356.246968][T13296] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.4'.
[  356.447672][T13305] netlink: 4176 bytes leftover after parsing attributes in process `syz-executor.4'.
[  356.784275][T13320] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
[  356.787810][T13319] macsec0: entered promiscuous mode
[  356.792617][T13320] netlink: 9352 bytes leftover after parsing attributes in process `syz-executor.4'.
[  356.792656][T13320] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
[  356.792669][T13320] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
[  356.835782][T13319] macsec0: entered allmulticast mode
[  356.854272][T13323] veth1_macvtap: entered allmulticast mode
[  356.874770][T13323] macsec0: left promiscuous mode
[  356.880150][T13323] macsec0: left allmulticast mode
[  356.886521][T13323] veth1_macvtap: left allmulticast mode
[  356.923213][T13325] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[  357.270845][T13341] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  357.302421][T13344] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.3'.
[  357.414923][T13349] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  357.582302][T13357] macsec0: entered promiscuous mode
[  357.590177][T13357] macsec0: entered allmulticast mode
[  357.613222][T13357] veth1_macvtap: entered allmulticast mode
[  357.627247][T13357] macsec0: left promiscuous mode
[  357.636931][T13357] macsec0: left allmulticast mode
[  357.645824][T13357] veth1_macvtap: left allmulticast mode
[  357.862657][T13368] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[  358.582674][T13384] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[  358.881808][T13397] Bluetooth: MGMT ver 1.22
[  358.886341][T13397] Bluetooth: hci3: invalid length 0, exp 2 for type 29
[  359.106375][T13404] Bluetooth: hci3: invalid length 0, exp 2 for type 29
[  359.221590][T13411] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  359.229149][T13411] IPv6: NLM_F_CREATE should be set when creating new route
[  359.237591][T13411] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  359.244914][T13411] IPv6: NLM_F_CREATE should be set when creating new route
[  359.678320][T13428] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
[  359.989623][T13439] __nla_validate_parse: 9 callbacks suppressed
[  359.989642][T13439] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.2'.
[  360.308299][T13420] syz-executor.1 (13420) used greatest stack depth: 17016 bytes left
[  360.911923][T13469] xt_HMARK: proto mask must be zero with L3 mode
[  361.278397][T13478] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
[  361.757473][T13492] netlink: 209844 bytes leftover after parsing attributes in process `syz-executor.2'.
[  362.076187][T13504] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  362.094395][    C0] vcan0: j1939_tp_rxtimer: 0xffff88807f92fc00: rx timeout, send abort
[  362.235259][T13512] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'.
[  362.472811][T13521] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[  362.603901][    C0] vcan0: j1939_tp_rxtimer: 0xffff88807f92fc00: abort rx timeout. Force session deactivation
[  363.409799][T13559] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.3'.
[  363.505120][T13565] netlink: 'syz-executor.3': attribute type 21 has an invalid length.
[  363.513792][T13565] netlink: 156 bytes leftover after parsing attributes in process `syz-executor.3'.
[  363.537927][T13565] xt_hashlimit: max too large, truncated to 1048576
[  364.023406][T13589] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'.
[  364.757440][T13624] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  365.158018][T13645] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  365.684334][   T29] audit: type=1804 audit(1717206711.609:59): pid=13664 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir509252223/syzkaller.TapAgg/285/cgroup.controllers" dev="sda1" ino=1950 res=1 errno=0
[  365.729425][T13669] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  365.757143][T13669] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  365.895589][T13673] bond0: entered promiscuous mode
[  365.920288][T13673] bond_slave_0: entered promiscuous mode
[  365.938398][T13673] bond_slave_1: entered promiscuous mode
[  365.961616][T13682] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  366.236761][T13705] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.1'.
[  366.359960][T13711] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  366.605996][T13722] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[  366.621203][T13722] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[  367.642522][T13743] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  367.856229][T13748] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  367.883094][T13748] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  367.933327][T13751] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'.
[  368.000727][T13751] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'.
[  368.184099][T13759] syz-executor.4[13759] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  368.184335][T13759] syz-executor.4[13759] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  368.544705][T13782] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
[  368.571660][T13782] netlink: 168864 bytes leftover after parsing attributes in process `syz-executor.4'.
[  368.583434][T13782] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.4'.
[  368.600594][T13773] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  369.379226][   T29] audit: type=1804 audit(1717206715.299:60): pid=13816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3370063938/syzkaller.1iwft4/129/cgroup.controllers" dev="sda1" ino=1970 res=1 errno=0
[  369.642956][   T29] audit: type=1804 audit(1717206715.569:61): pid=13822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir509252223/syzkaller.TapAgg/292/cgroup.controllers" dev="sda1" ino=1973 res=1 errno=0
[  369.809808][T13824] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[  370.633486][T13845] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  371.516222][T13908] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  371.546390][T13908] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  371.581509][T13908] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  371.780324][T13918] netlink: 'syz-executor.4': attribute type 21 has an invalid length.
[  371.794911][T13918] netlink: 156 bytes leftover after parsing attributes in process `syz-executor.4'.
[  372.094736][T13934] bridge0: port 1(bridge_slave_0) entered disabled state
[  372.277545][T13943] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  373.377727][T13971] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.3'.
[  373.683657][T13991] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  373.793963][T13991] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  375.983099][ T5126] Bluetooth: hci3: command 0x0405 tx timeout
[  376.002652][   T29] audit: type=1804 audit(1717206721.929:62): pid=14062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3370063938/syzkaller.1iwft4/144/cgroup.controllers" dev="sda1" ino=1971 res=1 errno=0
[  376.116939][T14062] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.0'.
[  376.149739][T14062] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'.
[  376.185079][T14068] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.0'.
[  377.050533][T14107] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  377.113674][T14109] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  377.342291][ T5126] Bluetooth: hci1: command tx timeout
[  377.685055][T14130] geneve2: entered promiscuous mode
[  377.690351][T14130] geneve2: entered allmulticast mode
[  379.028770][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  379.035284][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  379.802091][T14191] syz-executor.0[14191] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  379.804061][T14191] syz-executor.0[14191] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  380.708091][T14219] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  380.785025][T14229] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  380.948921][T14230] syz-executor.3[14230] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  380.949067][T14230] syz-executor.3[14230] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  381.933892][T14295] vlan1: entered promiscuous mode
[  381.975868][T14295] veth0_vlan: left promiscuous mode
[  382.053601][T14295] vlan1 (unregistering): left promiscuous mode
[  382.094430][T14300] netlink: 200 bytes leftover after parsing attributes in process `syz-executor.0'.
[  382.343595][T14310] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.4'.
[  382.363828][T14310] netlink: 43 bytes leftover after parsing attributes in process `syz-executor.4'.
[  382.375167][T14310] netlink: 43 bytes leftover after parsing attributes in process `syz-executor.4'.
[  383.642712][T14359] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[  383.967412][T14381] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  384.284082][T14403] netlink: 144 bytes leftover after parsing attributes in process `syz-executor.0'.
[  384.334453][T14410] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  385.458458][T14452] ip6tnl1: entered promiscuous mode
[  385.502988][T14452] ip6tnl1: entered allmulticast mode
[  385.791826][T14463] xt_CT: You must specify a L4 protocol and not use inversions on it
[  385.969410][T14468] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  386.154231][T14471] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  386.312799][T14475] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[  386.633621][T14487] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'.
[  386.741983][T14487] netlink: 'syz-executor.1': attribute type 2 has an invalid length.
[  387.054140][T14510] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  387.469210][T14526] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  387.522411][T14532] tap0: tun_chr_ioctl cmd 2147767507
[  387.788695][T14549] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  388.018561][T14562] netlink: 276 bytes leftover after parsing attributes in process `syz-executor.1'.
[  388.447940][T14584] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  388.471243][T14587] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  388.488346][T14589] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  388.489365][T14584] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  388.511484][T14584] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  388.522393][T14584] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  388.532956][T14584] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  388.546254][T14584] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  388.557458][T14584] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  388.568365][T14584] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  388.578741][T14584] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  388.589663][T14584] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  388.979845][T14610] netlink: 276 bytes leftover after parsing attributes in process `syz-executor.3'.
[  389.016830][T14613] bridge0: port 2(bridge_slave_1) entered disabled state
[  389.178093][T14622] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  389.720708][T14653] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  390.097920][T14669] bridge0: port 2(bridge_slave_1) entered blocking state
[  390.105166][T14669] bridge0: port 2(bridge_slave_1) entered forwarding state
[  390.783264][T14707] bridge0: port 3(geneve1) entered blocking state
[  390.799728][T14707] bridge0: port 3(geneve1) entered disabled state
[  390.807406][T14707] geneve1: entered allmulticast mode
[  390.827165][T14707] geneve1: entered promiscuous mode
[  390.845014][T14707] bridge0: port 3(geneve1) entered blocking state
[  390.851659][T14707] bridge0: port 3(geneve1) entered forwarding state
[  391.736471][T14759] __nla_validate_parse: 8 callbacks suppressed
[  391.736491][T14759] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'.
[  391.759097][T14759] vlan0: entered promiscuous mode
[  391.788165][T14761] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[  391.931521][T14765] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  392.107786][T14776] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.4'.
[  392.118443][T14776] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  392.762063][T14817] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.3'.
[  392.772817][T14818] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  393.298617][T14851] netlink: 'syz-executor.3': attribute type 64 has an invalid length.
[  393.307382][T14851] netlink: 164 bytes leftover after parsing attributes in process `syz-executor.3'.
[  393.501578][T14866] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'.
[  393.521745][T14866] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  394.150687][T14904] sctp: [Deprecated]: syz-executor.0 (pid 14904) Use of int in maxseg socket option.
[  394.150687][T14904] Use struct sctp_assoc_value instead
[  394.355213][   T29] audit: type=1800 audit(1717206740.279:63): pid=14919 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="memory.events" dev="sda1" ino=1966 res=0 errno=0
[  394.443441][   T29] audit: type=1800 audit(1717206740.279:64): pid=14920 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="memory.events" dev="sda1" ino=1966 res=0 errno=0
[  394.505551][   T29] audit: type=1804 audit(1717206740.279:65): pid=14919 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir3370063938/syzkaller.1iwft4/196/memory.events" dev="sda1" ino=1966 res=1 errno=0
[  394.796205][T14945] netlink: 'syz-executor.0': attribute type 10 has an invalid length.
[  394.816817][T14945] openvswitch: netlink: Flow key attr not present in new flow.
[  395.912279][T15004] SET target dimension over the limit!
[  396.100284][T15019] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  396.125806][T15013] bond_slave_0: entered promiscuous mode
[  396.132027][T15013] bond_slave_1: entered promiscuous mode
[  396.666676][T15046] SET target dimension over the limit!
[  396.872903][T15011] bond_slave_0: left promiscuous mode
[  396.878783][T15011] bond_slave_1: left promiscuous mode
[  397.254838][T15086] __nla_validate_parse: 11 callbacks suppressed
[  397.254859][T15086] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  398.102135][T15136] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  398.182622][T15139] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  398.365434][T15150] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  398.382661][T15150] netlink: 'syz-executor.1': attribute type 12 has an invalid length.
[  398.794142][T15172] netlink: 'syz-executor.2': attribute type 3 has an invalid length.
[  398.816644][T15172] netlink: 130984 bytes leftover after parsing attributes in process `syz-executor.2'.
[  399.304226][T15196] (unnamed net_device) (uninitialized): option arp_validate: mode dependency failed, not supported in mode 802.3ad(4)
[  399.350888][T15199] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  399.720187][T15217] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  400.273144][T15253] (unnamed net_device) (uninitialized): option arp_validate: mode dependency failed, not supported in mode 802.3ad(4)
[  401.115323][T15315] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  401.216898][T15310] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  401.363198][T15323] netlink: 'syz-executor.1': attribute type 10 has an invalid length.
[  401.412891][T15323] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  401.457821][T15323] netlink: 'syz-executor.1': attribute type 3 has an invalid length.
[  401.501741][T15323] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  401.880397][T15357] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  401.929836][T15357] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  402.073473][   T29] audit: type=1804 audit(1717206747.999:66): pid=15368 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir2548114972/syzkaller.TIEUsl/231/cgroup.controllers" dev="sda1" ino=1949 res=1 errno=0
[  402.260384][T15380] bond_slave_0: entered promiscuous mode
[  402.266321][T15380] bond_slave_1: entered promiscuous mode
[  404.290730][T15369] bond_slave_0: left promiscuous mode
[  404.296257][T15369] bond_slave_1: left promiscuous mode
[  404.307005][T15392] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  404.443787][T15396] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  404.513622][T15396] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  404.659225][T15413] netlink: 100 bytes leftover after parsing attributes in process `syz-executor.3'.
[  404.673122][T15413] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  404.721363][   T29] audit: type=1804 audit(1717206750.639:67): pid=15409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3370063938/syzkaller.1iwft4/236/cgroup.controllers" dev="sda1" ino=1967 res=1 errno=0
[  404.852096][T15419] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[  404.927426][T15428] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  405.198214][T15441] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  405.244153][T15443] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  405.296539][T15445] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  405.329644][T15441] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  405.493123][T15451] netlink: 100 bytes leftover after parsing attributes in process `syz-executor.0'.
[  405.521510][T15451] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  405.863687][T15470] netem: incorrect gi model size
[  405.869216][T15470] netem: change failed
[  405.899199][T15477] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  405.918541][T15477] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  406.007704][T15481] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  406.036684][T15484] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  406.073169][T15484] Can't find ip_set type h
[  406.190088][T15498] netlink: 100 bytes leftover after parsing attributes in process `syz-executor.1'.
[  406.382571][   T29] audit: type=1804 audit(1717206752.299:68): pid=15506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir509252223/syzkaller.TapAgg/424/cgroup.controllers" dev="sda1" ino=1942 res=1 errno=0
[  406.511949][T15513] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  406.598210][T15519] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  406.702394][ T5119] Bluetooth: hci5: command 0x0406 tx timeout
[  407.283044][T15563] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  407.332438][T15565] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  407.565356][ T2827] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  407.585882][ T2827] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.755020][ T2827] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  407.774612][ T2827] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.972285][ T2827] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  407.997434][ T2827] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.106702][ T2827] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  408.138919][ T2827] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.204100][T15589] vlan0: entered promiscuous mode
[  408.209194][T15589] veth1_to_team: entered promiscuous mode
[  408.260095][T15589] veth1_to_team: left promiscuous mode
[  408.368979][ T5119] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  408.415302][ T5119] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  408.425449][ T5119] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  408.448417][ T5119] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  408.462803][ T5119] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  408.470430][ T5119] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  408.655923][ T2827] bridge_slave_1: left allmulticast mode
[  408.664211][ T2827] bridge_slave_1: left promiscuous mode
[  408.670114][ T2827] bridge0: port 2(bridge_slave_1) entered disabled state
[  408.695367][ T2827] bridge_slave_0: left allmulticast mode
[  408.701180][ T2827] bridge_slave_0: left promiscuous mode
[  408.714549][ T2827] bridge0: port 1(bridge_slave_0) entered disabled state
[  409.290767][ T2827] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  409.300003][ T2827] bond_slave_0: left promiscuous mode
[  409.308666][ T2827] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  409.320843][ T2827] bond_slave_1: left promiscuous mode
[  409.330108][ T2827] bond0 (unregistering): Released all slaves
[  409.669164][T15638] validate_nla: 2 callbacks suppressed
[  409.669185][T15638] netlink: 'syz-executor.3': attribute type 29 has an invalid length.
[  409.696581][T15640] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  409.722415][T15638] netlink: 'syz-executor.3': attribute type 29 has an invalid length.
[  409.770739][T15640] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  409.796978][T15641] netlink: 'syz-executor.3': attribute type 29 has an invalid length.
[  410.000866][T15652] __nla_validate_parse: 7 callbacks suppressed
[  410.000887][T15652] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  410.256401][T15602] chnl_net:caif_netlink_parms(): no params data found
[  410.364579][ T2827] hsr_slave_0: left promiscuous mode
[  410.390877][ T2827] hsr_slave_1: left promiscuous mode
[  410.410960][ T2827] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  410.440867][ T2827] batman_adv: batadv0: Removing interface: batadv_slave_0
[  410.463509][ T2827] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  410.497822][ T2827] batman_adv: batadv0: Removing interface: batadv_slave_1
[  410.544166][ T5119] Bluetooth: hci1: command tx timeout
[  410.593120][ T2827] veth1_macvtap: left promiscuous mode
[  410.599160][ T2827] veth0_macvtap: left promiscuous mode
[  410.605129][ T2827] veth1_vlan: left promiscuous mode
[  410.611775][ T2827] veth0_vlan: left promiscuous mode
[  411.646706][ T2827] team0 (unregistering): Port device team_slave_1 removed
[  411.737698][ T2827] team0 (unregistering): Port device team_slave_0 removed
[  412.622310][ T5119] Bluetooth: hci1: command tx timeout
[  412.662216][T15688] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  412.743880][T15690] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  413.013145][T15602] bridge0: port 1(bridge_slave_0) entered blocking state
[  413.020356][T15602] bridge0: port 1(bridge_slave_0) entered disabled state
[  413.065262][T15602] bridge_slave_0: entered allmulticast mode
[  413.079957][T15602] bridge_slave_0: entered promiscuous mode
[  413.111580][T15602] bridge0: port 2(bridge_slave_1) entered blocking state
[  413.118839][T15602] bridge0: port 2(bridge_slave_1) entered disabled state
[  413.163883][T15602] bridge_slave_1: entered allmulticast mode
[  413.209485][T15602] bridge_slave_1: entered promiscuous mode
[  413.294060][T15716] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  413.857281][T15602] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  413.899419][T15602] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  414.130068][T15602] team0: Port device team_slave_0 added
[  414.168648][T15602] team0: Port device team_slave_1 added
[  414.305968][T15602] batman_adv: batadv0: Adding interface: batadv_slave_0
[  414.335889][T15602] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  414.392528][T15602] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  414.404810][T15736] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  414.457785][T15741] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  414.505636][T15602] batman_adv: batadv0: Adding interface: batadv_slave_1
[  414.521241][T15602] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  414.557527][T15602] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  414.701941][ T5119] Bluetooth: hci1: command tx timeout
[  414.736018][T15602] hsr_slave_0: entered promiscuous mode
[  414.774841][T15602] hsr_slave_1: entered promiscuous mode
[  414.818414][T15602] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  414.831331][T15602] Cannot create hsr debugfs directory
[  414.834109][T15752] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.0'.
[  414.983035][T15755] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  415.139352][T15759] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  415.212410][T15758] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  415.766490][T15602] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  415.796967][T15773] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  415.874262][T15602] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  415.887047][T15775] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  415.923406][T15602] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  415.959673][T15776] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[  416.000887][T15602] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  416.178032][T15785] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.2'.
[  416.229971][T15787] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.0'.
[  416.590465][T15793] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  416.692015][T15602] 8021q: adding VLAN 0 to HW filter on device bond0
[  416.756182][T15602] 8021q: adding VLAN 0 to HW filter on device team0
[  416.782093][ T5119] Bluetooth: hci1: command tx timeout
[  416.833057][ T5211] bridge0: port 1(bridge_slave_0) entered blocking state
[  416.840244][ T5211] bridge0: port 1(bridge_slave_0) entered forwarding state
[  416.900272][ T5211] bridge0: port 2(bridge_slave_1) entered blocking state
[  416.907505][ T5211] bridge0: port 2(bridge_slave_1) entered forwarding state
[  416.974735][T15801] gretap0 speed is unknown, defaulting to 1000
[  417.016196][T15801] gretap0 speed is unknown, defaulting to 1000
[  417.069282][T15801] gretap0 speed is unknown, defaulting to 1000
[  417.104984][T15809] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  417.138039][T15811] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  417.155729][T15809] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  417.385194][T15817] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[  417.468275][T15602] 8021q: adding VLAN 0 to HW filter on device batadv0
[  417.596600][ T5211] gretap0 speed is unknown, defaulting to 1000
[  417.604392][T15825] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'.
[  417.613984][T15801] infiniband syz2: set active
[  417.619211][T15801] infiniband syz2: added gretap0
[  417.636413][T15801] syz2: rxe_create_cq: returned err = -12
[  417.654453][T15801] infiniband syz2: Couldn't create ib_mad CQ
[  417.675927][T15801] infiniband syz2: Couldn't open port 1
[  417.751857][T15801] RDS/IB: syz2: added
[  417.757013][T15801] smc: adding ib device syz2 with port count 1
[  417.776412][T15801] smc:    ib device syz2 port 1 has pnetid 
[  417.795367][ T5211] gretap0 speed is unknown, defaulting to 1000
[  417.813991][T15801] gretap0 speed is unknown, defaulting to 1000
[  417.905523][T15602] veth0_vlan: entered promiscuous mode
[  417.950104][T15602] veth1_vlan: entered promiscuous mode
[  418.018212][T15602] veth0_macvtap: entered promiscuous mode
[  418.035841][T15602] veth1_macvtap: entered promiscuous mode
[  418.058371][T15602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  418.084508][T15602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.103723][T15602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  418.121119][T15602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.142611][T15602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  418.157096][T15602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.183592][T15602] batman_adv: batadv0: Interface activated: batadv_slave_0
[  418.207710][T15837] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  418.220854][T15602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  418.257618][T15602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.279620][T15602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  418.290452][T15602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.316772][T15602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  418.327709][T15602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.342999][T15602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  418.353966][T15602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.366814][T15602] batman_adv: batadv0: Interface activated: batadv_slave_1
[  418.379411][T15843] bridge0: port 2(bridge_slave_1) entered disabled state
[  418.400585][T15801] gretap0 speed is unknown, defaulting to 1000
[  418.404155][T15843] bridge0: port 2(bridge_slave_1) entered blocking state
[  418.414198][T15843] bridge0: port 2(bridge_slave_1) entered forwarding state
[  418.454828][T15602] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  418.488261][T15602] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  418.504768][T15602] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  418.522800][T15602] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  418.540882][T15848] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  418.640536][T15850] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  418.675642][T15851] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  418.697912][T15852] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  418.715253][T15801] gretap0 speed is unknown, defaulting to 1000
[  418.905167][ T2827] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  418.940125][ T2827] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  418.982662][T15854] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[  419.055469][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  419.079019][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  419.254437][T15801] gretap0 speed is unknown, defaulting to 1000
[  419.266439][T15868] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  419.503014][T15801] gretap0 speed is unknown, defaulting to 1000
[  419.687494][T15801] gretap0 speed is unknown, defaulting to 1000
[  419.803689][T15880] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  419.908209][T15801] gretap0 speed is unknown, defaulting to 1000
[  420.104393][T15887] validate_nla: 1 callbacks suppressed
[  420.104411][T15887] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  420.192809][T15887] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  420.446569][T15914] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  420.516448][T15918] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  420.603121][T15922] __nla_validate_parse: 1 callbacks suppressed
[  420.603141][T15922] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  420.656873][T15926] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  420.723400][T15927] syz2: rxe_newlink: already configured on gretap0
[  420.799100][   T61] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  420.823611][T15928] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  420.918417][T15930] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.3'.
[  421.073009][T15932] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.3'.
[  421.253083][ T5126] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  421.267464][ T5126] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  421.278223][ T5126] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  421.290015][ T5126] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  421.298339][ T5126] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  421.306984][ T5126] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  421.355788][T15937] gretap0 speed is unknown, defaulting to 1000
[  421.469635][T15946] netlink: 203452 bytes leftover after parsing attributes in process `syz-executor.2'.
[  421.512935][T15946] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  421.632025][T15956] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  421.685216][T15952] netdevsim netdevsim0 netdevsim0: Caught tx_queue_len zero misconfig
[  421.749581][   T61] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  421.792845][T15956] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  421.864404][   T61] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  421.887109][T15963] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.2'.
[  421.976111][T15965] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.2'.
[  422.128138][   T61] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  422.211807][T15977] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  422.511678][T15986] syz2: rxe_newlink: already configured on gretap0
[  422.629731][   T61] bridge_slave_1: left allmulticast mode
[  422.644729][   T61] bridge_slave_1: left promiscuous mode
[  422.652809][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  422.675155][   T61] bridge_slave_0: left allmulticast mode
[  422.681019][   T61] bridge_slave_0: left promiscuous mode
[  422.697916][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  423.345996][ T5119] Bluetooth: hci1: command tx timeout
[  423.509294][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  423.526338][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  423.541159][   T61] bond0 (unregistering): Released all slaves
[  423.638906][T15998] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.3'.
[  423.718509][T16006] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  424.304558][T16017] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  424.339775][T15937] chnl_net:caif_netlink_parms(): no params data found
[  424.609854][T16037] ieee802154 phy0 wpan0: encryption failed: -90
[  424.656724][T16028] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  424.672270][T16037] ieee802154 phy0 wpan0: encryption failed: -22
[  424.766875][T16032] bridge0: port 2(bridge_slave_1) entered disabled state
[  425.120292][T15937] bridge0: port 1(bridge_slave_0) entered blocking state
[  425.147428][T15937] bridge0: port 1(bridge_slave_0) entered disabled state
[  425.193958][T15937] bridge_slave_0: entered allmulticast mode
[  425.229024][T15937] bridge_slave_0: entered promiscuous mode
[  425.261671][T16056] validate_nla: 2 callbacks suppressed
[  425.261692][T16056] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  425.377283][   T61] hsr_slave_0: left promiscuous mode
[  425.422711][ T5119] Bluetooth: hci1: command tx timeout
[  425.428258][   T61] hsr_slave_1: left promiscuous mode
[  425.443728][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  425.451210][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  425.502302][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  425.509790][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  425.662589][   T61] veth1_macvtap: left promiscuous mode
[  425.668234][   T61] veth0_macvtap: left promiscuous mode
[  425.683524][   T61] veth1_vlan: left promiscuous mode
[  425.688916][   T61] veth0_vlan: left promiscuous mode
[  425.803830][T16075] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[  426.122400][T16087] xt_policy: too many policy elements
[  426.383507][   T30] INFO: task syz-executor.0:10729 blocked for more than 143 seconds.
[  426.402761][   T30]       Not tainted 6.9.0-syzkaller-12147-g13c7c941e729 #0
[  426.410287][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  426.419540][   T30] task:syz-executor.0  state:D stack:25344 pid:10729 tgid:10728 ppid:9255   flags:0x00000006
[  426.430228][   T30] Call Trace:
2024/06/01 01:52:52 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  426.439357][   T30]  <TASK>
[  426.456442][   T30]  __schedule+0x17e8/0x4a20
[  426.479909][   T30]  ? __pfx___schedule+0x10/0x10
[  426.495096][   T30]  ? __pfx_lock_release+0x10/0x10
[  426.507534][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  426.518934][   T30]  ? schedule+0x90/0x320
[  426.528622][   T30]  schedule+0x14b/0x320
[  426.536957][   T30]  schedule_preempt_disabled+0x13/0x30
[  426.551670][   T30]  __mutex_lock+0x6a4/0xd70
[  426.564703][   T30]  ? __mutex_lock+0x527/0xd70
[  426.573192][   T30]  ? nfsd_nl_rpc_status_get_start+0x8d/0xe0
[  426.579384][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  426.586266][   T30]  ? net_generic+0x1f/0x240
[  426.591045][   T30]  nfsd_nl_rpc_status_get_start+0x8d/0xe0
[  426.598322][   T30]  genl_start+0x4d6/0x6d0
[  426.605314][   T30]  __netlink_dump_start+0x45c/0x780
[  426.610792][   T30]  genl_rcv_msg+0x88c/0xec0
[  426.620924][   T30]  ? mark_lock+0x9a/0x350
[  426.631639][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  426.642822][   T30]  ? __pfx_genl_start+0x10/0x10
[  426.653466][   T30]  ? __pfx_genl_dumpit+0x10/0x10
[  426.664439][   T30]  ? __pfx_genl_done+0x10/0x10
[  426.671033][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  426.690803][   T30]  ? __pfx_nfsd_nl_rpc_status_get_start+0x10/0x10
[  426.698078][   T30]  ? __pfx_nfsd_nl_rpc_status_get_dumpit+0x10/0x10
[  426.706202][   T30]  ? __pfx_nfsd_nl_rpc_status_get_done+0x10/0x10
[  426.718012][   T30]  ? __pfx___might_resched+0x10/0x10
[  426.724615][   T30]  netlink_rcv_skb+0x1e3/0x430
[  426.729656][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  426.740660][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  426.746419][   T30]  ? __netlink_deliver_tap+0x77e/0x7c0
[  426.752372][   T30]  genl_rcv+0x28/0x40
[  426.757739][   T30]  netlink_unicast+0x7ea/0x980
[  426.771469][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  426.787785][   T30]  ? __virt_addr_valid+0x183/0x520
[  426.803515][   T30]  ? __check_object_size+0x49c/0x900
[  426.813571][   T30]  ? bpf_lsm_netlink_send+0x9/0x10
[  426.818957][   T30]  netlink_sendmsg+0x8db/0xcb0
[  426.824384][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  426.829941][   T30]  ? __import_iovec+0x536/0x820
[  426.845211][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  426.850342][   T30]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  426.860469][   T30]  ? security_socket_sendmsg+0x87/0xb0
[  426.870817][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  426.880957][   T30]  __sock_sendmsg+0x221/0x270
[  426.903695][   T30]  ____sys_sendmsg+0x525/0x7d0
[  426.921174][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  426.932593][   T30]  __sys_sendmsg+0x2b0/0x3a0
[  426.937556][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  426.943921][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  426.950384][   T30]  ? do_syscall_64+0x100/0x230
[  426.955371][   T30]  ? do_syscall_64+0xb6/0x230
[  426.960174][   T30]  do_syscall_64+0xf3/0x230
[  426.964944][   T30]  ? clear_bhb_loop+0x35/0x90
[  426.969762][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.975933][   T30] RIP: 0033:0x7fdef387cee9
[  426.980465][   T30] RSP: 002b:00007fdef46bc0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  426.989211][   T30] RAX: ffffffffffffffda RBX: 00007fdef39b3fa0 RCX: 00007fdef387cee9
[  426.997996][   T30] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0