last executing test programs:

2.173555826s ago: executing program 1 (id=1126):
bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18) (async)
r0 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000100)={@ipv4={""/10, ""/2, @dev}, <r1=>0x0}, &(0x7f0000000140)=0x14)
pipe(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f00000001c0)) (async)
pipe(&(0x7f00000001c0))
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000240)=@bloom_filter={0x1e, 0x4, 0xf5a6, 0x5, 0x40000, r0, 0xff, '\x00', r1, r3, 0x5, 0x4, 0x1, 0x7, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r2, @ANYRESDEC=r2], &(0x7f0000000200)='syzkaller\x00', 0x8, 0xffd, &(0x7f0000001e40)=""/4093, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.151271325s ago: executing program 2 (id=1127):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r0)
sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000c80)={0x0, 0x40000, &(0x7f0000000c40)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="3400fdff", @ANYRES16=r2, @ANYBLOB="010000009200000000002100000009001f0070687930000000000c0005000000000000000000050020"], 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

2.063261621s ago: executing program 2 (id=1129):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@ipv6_newroute={0x38, 0x18, 0x309, 0x0, 0x0, {}, [@RTA_OIF={0x8, 0x4, r1}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x7}, @RTA_ENCAP={0xc, 0x16, 0x0, 0x1, @SEG6_LOCAL_ACTION={0x8, 0x1, 0x5}}]}, 0x38}, 0x1, 0x0, 0xffffffffffff0000}, 0x10004044)

2.042653862s ago: executing program 1 (id=1130):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan3\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r4=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_KEY(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x44, r1, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040}, 0x80)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$inet(0xffffffffffffffff, &(0x7f0000000240)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
connect$netlink(0xffffffffffffffff, &(0x7f0000000280)=@kern={0x10, 0x0, 0x0, 0x10010000}, 0xc)
r6 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r6, 0x114, 0x8, &(0x7f00000002c0), 0x4)
sendmmsg$inet(r5, &(0x7f0000000500)=[{{&(0x7f0000000300)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000340)="a7e927fa4ed602be31b2418bdbca69e328c787e1590c63e0e944aa2f76a6087916b74058a38cba4bbb7e151d469efb9059fcbdcc897b86d8eeba6958996b5d3ba613899e381113a5d862097d634b9bf168f5430e88cfc3c10020299b5fbba6ca8c934ec940c41654d78e61b4b6e7f6068da0bb880fb367adccc178ed8da49c6fffe90df4cbc1bdbb9202434b0cce71213287f11ca748ab71985b6dcd50ea1e098f88bda4c9fc0e", 0xa7}, {&(0x7f0000000400)="9490d74cfc76d39f64113db0ea71dd96a77d964e2543aa02f3b68a257847eb88e46f7ca87685c9c70648448003ef3f8b5481857ba746efa886d1df84b01e7450", 0x40}], 0x2, &(0x7f0000000480)=[@ip_ttl={{0x14, 0x0, 0x2, 0x40}}, @ip_ttl={{0x14, 0x0, 0x2, 0xfff}}, @ip_ttl={{0x14, 0x0, 0x2, 0x1}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x4}}, @ip_ttl={{0x14, 0x0, 0x2, 0x80}}], 0x78}}], 0x1, 0x800)
setsockopt$RDS_CONG_MONITOR(r6, 0x114, 0x6, &(0x7f0000000540), 0x4)
getsockopt$SO_TIMESTAMP(r6, 0x1, 0x40, &(0x7f0000000580), &(0x7f00000005c0)=0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000e00)={'batadv0\x00', <r7=>0x0})
sendmmsg$inet(r6, &(0x7f0000000f40)=[{{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000600)="eb380eb83ff957488ab361d67f3bd47813795da2d7dbe6f340da0d0539b8a388de60603dee4e56ebf40eb826e732f950c3d89964f6cf6c9625e5cc27287ce727f4c2f0b09372a0c6ec31690731bc599a14d33738ef653a7c51384a8067c883b7a923a17f812df97d6ae008ae8838a9bd2764a503079617d7a589091757183e0168d8903a432363fd0da80a3b8bc737ce3438", 0x92}, {&(0x7f00000006c0)="183fdb00f2d2ac193469097f046fd8a9e18df1d5a4f12d10ef9ee529fc486fa075ec7fa625829e590ff8ce54cc3232a14451a94f0c6acbd74402783abc77ff366c2f13a7823ad79c01906736a1d8fd7d560e6a35c313db", 0x57}, {&(0x7f0000000740)="2766ca105752b92b04d12e051eaf6bccc820ff5ce81aec7dfe4ba0cbaa5cac599702bd9650ea1dcc0aef319c89d0ce12d636452b9f2db3a550d768a194e792c40769c8a50b6c65f55f640bc5f87e8abfb49b7f57af813c6e68277fe18af4b2f86effe27c5a092cdefe019344f3a56ace6d40ed3641b653b1d56eba2e8d8eef984679aa43ca1be1e8a048f6745677c9fdbf11fef306b7bd7e0dde332ac5a067cba5af359a0928d1c7006d0d91182f5788f58ac63b181464e7b0fd3279c3c8c07d147b185fdca6f9ccabfb642dafd2daecad997c3dddff", 0xd6}, {&(0x7f0000000840)="f579c5e7b097c0e23f3162daaf379376ecf90f5e8161697bc026445b6fb214a599704a4020e0819356762c2c7f02d2b6b1256b9aac11dc8745da1a2c7466063264160708f03ea16f580b130c4128f6145f0ca43ebac6ee16cd89877a6485b85df1e7545327292d55b90cfc72cd14cf5cd32ee127a7e254860aa34d9ad070259fa8e451c95cb821eb68843ee7a9c1498520edbc1d17ee44e3a60d9abc53607568b16369c42e7ae2e2e69d8f0e1c9d47f2af7bc06845327877a6d9e7321971ccdcae001d5b897019c098ab63e9d62454a3f3ab5b5241878ec0679fe52d7bc897b331d614c3d589f19d", 0xe8}], 0x4, &(0x7f0000000980)=[@ip_tos_u8={{0x11}}, @ip_retopts={{0x6c, 0x0, 0x7, {[@ssrr={0x89, 0x1f, 0xa6, [@rand_addr=0x64010100, @rand_addr=0x64010100, @multicast2, @local, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, @loopback]}, @timestamp={0x44, 0x14, 0xbd, 0x0, 0x1, [0x3, 0x0, 0x8, 0x9]}, @ssrr={0x89, 0x27, 0x54, [@private=0xa010100, @broadcast, @broadcast, @empty, @broadcast, @multicast1, @loopback, @broadcast, @broadcast]}]}}}], 0x88}}, {{&(0x7f0000000a40)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10, &(0x7f0000000d80)=[{&(0x7f0000000a80)="29d24489bde7939860e02cbff055b79064f7920a79c9dc7e0420e70a137f7e09bb511afaa053fc75f6cdad030134288041ebc46c58d426c09526eb9819ca", 0x3e}, {&(0x7f0000000ac0)="a13d5e85d91f6b659a4eed399340501827113cbdc1c2ed1e5a5110a7fa0a39e13f4ce454970fd131e773f99ce64824b53ff05be525458d7b23d4354f0439f58da3e4f9ef5a5a", 0x46}, {&(0x7f0000000b40)="76c9b92da3f6318aff03b67e2f254ff318d541d02592f1d07ce7b3c2f240c02d005a8a7fe43ba91305463802f1242d9a9cc43184cb94485e55d99378c513a2adb00f65f1aeaebb", 0x47}, {&(0x7f0000000bc0)="05015b5f8c47112fe625f29f651af7a2f5cfdab8ef0c8951255776f99183c16c49326349dc261cce66f8d8ca4d279e65ecece409be3f2f2759ddec38ff4f169ff870fb3931d12b6cdfd1d64be7da24bf897c9b922f298c81b7255c054e956c466f075a2eda0cd5b6f340d697d94cfed1ae81ca3a1fa2ca2a52dfb98753d028b8c20a927c5c4ceea21463c0960a2524840ad1911fc14d3c78b7894f9044858de6b5c5bcae7916393d555408348c", 0xad}, {&(0x7f0000000c80)="04a76ecbae69e0f24d3e481c9c9b3ea04c50cfc378fdb03af8330f86dcce1a0e2053c521d5cab3801b73499c39cbb8ae01258fcfefc14a5ce3fa99a5d45576ee1c5d579517d8f5ee05b8128cfce84382555c0f794579c274e4eee34b777d631b2a54e29449d4faf3bb329d19d782b2d9ac95471044f31f3f39a1ef8a0bd00305df6082cabcdbb739ce559201851e93446300218528b675ca4d130e8aed9340b314a7fe10d19cee8fe269bcd8e3ac28facd967143eed27d080c021d6289dddf27e8d0ed0685c1c236cedb4eccd36589b3234153105be87a", 0xd7}], 0x5, &(0x7f0000000e40)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @local, @private=0xa010100}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x80000001}}, @ip_retopts={{0x80, 0x0, 0x7, {[@ssrr={0x89, 0x13, 0x72, [@loopback, @remote, @multicast2, @dev={0xac, 0x14, 0x14, 0x10}]}, @rr={0x7, 0x23, 0xfb, [@private=0xa010102, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2, @multicast2, @local, @broadcast, @empty]}, @cipso={0x86, 0x24, 0x2, [{0x0, 0x4, "63ba"}, {0x1, 0xc, "b9ec0e45f33faea02fe1"}, {0x6, 0xe, "bc427ca188e414d677811999"}]}, @timestamp_prespec={0x44, 0x14, 0x2d, 0x3, 0x2, [{@private=0xa010102, 0x7}, {@local, 0x7}]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x7}}, @ip_ttl={{0x14, 0x0, 0x2, 0xfed}}], 0xe8}}], 0x2, 0xc000)
setsockopt(0xffffffffffffffff, 0xb8f, 0xff, &(0x7f0000000fc0)="f2db4f1ecaa84f604f7724a25f82fbaee54b49295a4b1aca2da190282fa7a59bf3", 0x21)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r6, 0x8982, &(0x7f0000001000))
socket$igmp(0x2, 0x3, 0x2)
sendto$inet6(0xffffffffffffffff, &(0x7f0000001040)="feb15bb91be97880bfcb2b0e75553be1a04da5f03494df15c051dd0c7c4816ae961e225558766587a5bcc453d97645185fe693bbce0ce817804c69fe4e8ecf8f4dd27315a961020331b89f92e4cab7f1b0696c65d303bf70d7f0a0103a4b60ac89649bb404822d993c99de5b833c5c4b3b6d812f83ac749ca671f63bafb00ec1e3f085a16d5e7b4efc3be2c5ae0d7dfd5ba3026b8b2b6dc5c888a130a358c3b1ee14ff33985f669d895a47a6a2d026e6c3a35c4d83cca2593df54dabc89f46394752f86b999703505e52d6870652efdfa4a4b4fbb311b993536eb6", 0xdb, 0x80, &(0x7f0000001140)={0xa, 0x4e24, 0x2, @private2, 0xfffffffc}, 0x1c)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
r9 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r9, 0x89f1, &(0x7f0000001200)={'ip6_vti0\x00', &(0x7f0000001180)={'ip6tnl0\x00', r7, 0x4, 0x8, 0x5, 0x10001, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x10, 0x10, 0x7, 0x9}})
write(r5, &(0x7f0000001240)="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", 0x1000)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r8, 0x10e, 0x1, &(0x7f0000002240)=0x18, 0x4)
sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(r0, &(0x7f0000002340)={&(0x7f0000002280)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000002300)={&(0x7f00000022c0)={0x3c, 0x0, 0x8, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x9}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x805}, 0x5)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f00000023c0), r0)
sendmsg$NL802154_CMD_DEL_SEC_DEV(r0, &(0x7f0000002480)={&(0x7f0000002380)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000002440)={&(0x7f0000002400)={0x40, r10, 0x10, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_DEVICE={0x10, 0x2e, 0x0, 0x1, {0xc, 0x4, {0xaaaaaaaaaaaa0202}}}, @NL802154_ATTR_SEC_DEVICE={0x10, 0x2e, 0x0, 0x1, {0xc, 0x4, {0xaaaaaaaaaaaa0302}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000}, 0x48000)
r11 = openat$tun(0xffffff9c, &(0x7f00000024c0), 0x1, 0x0)
ioctl$TUNSETQUEUE(r11, 0x400454d9, &(0x7f0000002500)={'bridge_slave_0\x00', 0x200})

1.859632854s ago: executing program 2 (id=1131):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x1ff000, 0x6, 0x7f, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e23, 0x5a1, @local, 0x9}, 0x1c)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x38, &(0x7f0000000000)={&(0x7f0000000200)=@newtaction={0x6c, 0x30, 0xffff, 0x0, 0x0, {}, [{0x58, 0x1, [@m_ife={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}, @TCA_IFE_METALST={0xc, 0x6, [@IFE_META_TCINDEX={0x6, 0x2}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
unshare(0x400)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$FIDEDUPERANGE(r1, 0xc0189436, &(0x7f0000001600)=ANY=[])
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000580)={r0, &(0x7f0000001600), 0x0}, 0x20)
socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000480)={<r3=>0x0, 0xa4, &(0x7f00000003c0)=[@in6={0xa, 0x4e22, 0x10, @loopback, 0xffffa1ee}, @in6={0xa, 0x4e22, 0x5, @dev={0xfe, 0x80, '\x00', 0x27}, 0x6f}, @in6={0xa, 0x4e20, 0x45, @remote, 0xfffff601}, @in={0x2, 0x4e24, @broadcast}, @in={0x2, 0x4e23, @local}, @in={0x2, 0x4e24, @multicast2}, @in={0x2, 0x4e22, @multicast2}, @in={0x2, 0x4e24, @private=0x1}]}, &(0x7f00000004c0)=0x10)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000380)={r3, 0xedae}, &(0x7f0000000500)=0xffffffffffffff94)
r4 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r4, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback, 0xfffffffc}, 0x1c)
listen(r4, 0x20000005)
r5 = socket$inet6(0xa, 0x6, 0x0)
socket$inet6(0xa, 0x3, 0x7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
connect$inet6(r5, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c)
r6 = accept4(r4, 0x0, 0x0, 0x0)
sendmmsg$inet6(r6, &(0x7f00000001c0)=[{{0x0, 0x9b4c, 0x0}}], 0x500, 0x0)
close(r5)
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'veth0_vlan\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', 0x1})
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x4c21a52e}, &(0x7f00000001c0)=0x8)

1.718859543s ago: executing program 2 (id=1133):
socket$inet6(0xa, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000780)={'vcan0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001800210200000000000000001d01000008000900", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00%'], 0x24}}, 0x0)

1.600007085s ago: executing program 2 (id=1134):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x17, 0xe, &(0x7f0000002e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x1}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
unshare(0x700)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bind$can_j1939(0xffffffffffffffff, 0x0, 0x0)
epoll_create(0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000004080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r1}, 0x10)
socket$can_bcm(0x1d, 0x2, 0x2)
socket$inet_icmp(0x2, 0x2, 0x1)
r2 = epoll_create(0x7fffffff)
r3 = epoll_create1(0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r2, &(0x7f0000000140))
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000001180))
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000001200))
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r3, &(0x7f0000001340))
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="14000000520001072dbd70004cd300000a000000"], 0x14}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x12, 0x9, &(0x7f0000000680)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0xba}, @generic={0xa7, 0x0, 0x0, 0x0, 0x3000000}, @initr0, @exit]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x32, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r6)
sendmsg$can_j1939(0xffffffffffffffff, 0x0, 0x4c8c0)
socket$inet6_udp(0xa, 0x2, 0x0)
unshare(0x68060200)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r7, &(0x7f00000001c0)={0xa, 0x4001, 0x80007f, @private1, 0xd}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00010000850000000d000000b7000000000000009500000000000000496cf2827fb43a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe28, 0xfffffffffffffff5, &(0x7f0000000980)="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", 0x0, 0x2f, 0xe8034000, 0xf000, 0xfffffffffffffe2a, &(0x7f0000000000), &(0x7f00000000c0)="c6769e45b7c61302926682c7f9e9bb5ba2b3cdf023e8da0392a4cd62e2370f25ae5ba0dab896bcf5b774cd28bebbde39f796ae27d04582bb7c03e9fe830ea22c9fd03f6d2779515fdad3f5d0de07b7b70996102fdb67b1e77a34a5b7136a212fa2c0ea502588309dc3e42c55a6f93e6ba5e1b492f9db48f0fdd2f9fb937b3e8a63dcf9dd855837433998ba579da27559", 0x5dc}, 0x28)
unshare(0x40400)

1.570834985s ago: executing program 1 (id=1135):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b553850000008500"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
unshare(0x2040400)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff})
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = socket$tipc(0x1e, 0x2, 0x0)
ppoll(&(0x7f0000000480)=[{r1}, {r0}, {r3}], 0x3, &(0x7f0000000100)={0x77359400}, 0x0, 0x2000)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="020f00001500000000000800120000000100"], 0xa8}}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x4)
write(r6, &(0x7f0000000100), 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$BTRFS_IOC_BALANCE(r4, 0x5000940c, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
close(0xffffffffffffffff)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r8, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r9, 0x29, 0x40, &(0x7f0000000e00)=@mangle={'mangle\x00', 0x2, 0x6, 0x810, 0x420, 0x188, 0x350, 0x350, 0x420, 0x740, 0x740, 0x740, 0x740, 0x740, 0x6, 0x0, {[{{@ipv6={@mcast1, @private1, [], [], 'veth1_vlan\x00', 'macvtap0\x00', {}, {}, 0x21}, 0x0, 0x160, 0x188, 0x0, {0x7a00000010000000}, [@common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @local, @mcast2, @empty, [], [], [], 0x1404}}, @common=@inet=@socket1={{0x28}, 0x1}]}, @HL={0x28}}, {{@ipv6={@mcast2, @dev, [], [0x0, 0x0, 0x0, 0xffffffff], 'veth1_macvtap\x00', 'veth1_vlan\x00'}, 0x0, 0x190, 0x1c8, 0x0, {}, [@common=@inet=@dscp={{0x28}, {0x7}}, @common=@unspec=@conntrack2={{0xc0}, {{@ipv6=@local, [0xff, 0xff, 0xffffffff, 0xffffff7f], @ipv4=@private=0xa010102, [0x0, 0x0, 0xff], @ipv4=@local, [0xffffff00, 0xffffffff, 0xffffffff, 0xff000000], @ipv4=@loopback, [0x0, 0xff, 0xffffff00, 0xff], 0x52, 0x7f, 0x1d, 0x4e21, 0x4e22, 0x4e21, 0x4e21, 0x88, 0x80}, 0x82, 0x2444}}]}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0x8000}}}}, {{@ipv6={@ipv4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], '\x00', 'bond_slave_0\x00', {}, {}, 0x32}, 0x0, 0xa8, 0xd0, 0x48000000}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@uncond, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@empty, @ipv4=@loopback, 0x0, 0x32}}}, {{@uncond, 0x0, 0x208, 0x230, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@rt={{0x138}, {0x0, [], 0x0, 0x0, 0x0, [@empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, @empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, @mcast2, @mcast2, @private1, @rand_addr=' \x01\x00', @loopback, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @remote, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private0]}}]}, @HL={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x870)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c000010040305000000000000ffff0100000000", @ANYRES32=0x0, @ANYBLOB="000000000000000014001280090001007663616e000000000400028008000a00", @ANYRES16=r10], 0x3c}}, 0x0)

1.569348535s ago: executing program 0 (id=1136):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r0}, 0x10)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x6a, 0xa, 0xff00}, [@call={0xc}, @exit, @map_fd, @jmp]}, &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2d)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)={@ifindex, r3, 0x11, 0x0, 0x0, @void, @value=r2}, 0x20)

1.473355787s ago: executing program 4 (id=1137):
socket$inet6(0xa, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000780)={'vcan0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001800210200000000000000001d01000008000900", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00%'], 0x24}}, 0x0) (fail_nth: 1)

1.40785825s ago: executing program 3 (id=1138):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
syz_emit_ethernet(0x46, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0)
syz_emit_ethernet(0x6e, &(0x7f0000000080)={@broadcast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @local, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x7d0, {0x0, 0x6, "8cb02b", 0x0, 0x2f, 0x0, @loopback, @local, [@srh]}}}}}}}, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x12, r2, 0x0)
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
getsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f0000000000), &(0x7f0000000040)=0x4)
setsockopt$PNPIPE_ENCAP(r5, 0x113, 0x1, &(0x7f0000000140)=0x5, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000780)={'vcan0\x00', <r6=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001800210200000000000000001d01000008000900", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00%'], 0x24}}, 0x0)

1.405222626s ago: executing program 0 (id=1139):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100)=0x3) (async)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @remote}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[{0x18, 0x110, 0x1, "aa"}], 0x18}, 0x0)
socketpair(0x25, 0x4, 0x7, &(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCPNENABLEPIPE(r2, 0x89ed, 0x0) (async, rerun: 64)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x238440, 0x0) (async, rerun: 64)
ioctl$PPPIOCATTACH(r0, 0x4004743d, &(0x7f0000000040)=0x3) (async, rerun: 64)
r4 = epoll_create1(0x0) (rerun: 64)
close(r0) (async)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0))

1.093249422s ago: executing program 3 (id=1140):
bpf$MAP_CREATE(0xb00000000000000, &(0x7f0000004080)=@base={0x8, 0x4, 0x4, 0xbf22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (fail_nth: 59)

1.049313671s ago: executing program 3 (id=1141):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
r3 = socket$kcm(0x11, 0x3, 0x0)
openat$ppp(0xffffff9c, &(0x7f0000000580), 0x2ea701, 0x0)
setsockopt$sock_attach_bpf(r3, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r3, &(0x7f0000000180)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0xf}, 0x14, &(0x7f0000000500)=[{&(0x7f0000000040)="27031000590400000508002f1eafbcf706e105000000894f000f1102ee1680ca82973d2bd4b8bf4a8291a14b8a34f90186cee844000000080000000819b0fb0bba", 0x41}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b7d050139bf7ada300c9e37eed1153ecb716cdb8981cd819af0b332544658ff47ca531789d65c0e0d33311e2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb0000000000000000", 0xfeb9}, {&(0x7f0000000280)="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", 0x1a1}, {&(0x7f0000000540)="6fe4dd9eeb85271de1b87ef9440284", 0xf}], 0x4}, 0x200400c4)
r4 = openat$tun(0xffffff9c, &(0x7f00000005c0), 0x100, 0x0)
ioctl$TUNSETOFFLOAD(r4, 0x400454d0, 0x8)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000130001000300"/20, @ANYRES32=0x0, @ANYBLOB="000100000000000010001a800c000a800500080080000000140003006772657461703000000000"], 0x44}}, 0x0)
syz_emit_ethernet(0x4f, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010448", 0x19, 0x3a, 0xff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], @ndisc_ns={0x87, 0x0, 0x0, @mcast1, [{0x0, 0x0, "5695c3"}]}}}}}}, 0x0)
connect$vsock_stream(r2, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)={0x3c, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@beacon, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @beacon=[@NL80211_ATTR_FTM_RESPONDER={0x8, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_ENABLED={0x4}]}]]}, 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe1f}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @gre={{0x8}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8}]}, 0x3c}}, 0x40000)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff)

927.733496ms ago: executing program 4 (id=1142):
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x800, 0x1)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg(r0, &(0x7f0000001040)=[{{&(0x7f0000000440)=@tipc=@name={0x1e, 0x2, 0x2, {{0x43, 0x1}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)="36d960cccb", 0x5}, {&(0x7f0000000200)="9832a273", 0x4}, {&(0x7f0000002900)="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", 0x1000}, {&(0x7f0000000300)="14c32be08139", 0x6}], 0x4, &(0x7f00000006c0)}}, {{&(0x7f0000000540)=@can, 0x80, &(0x7f0000000980)=[{&(0x7f00000005c0)="bce6d6df4fa4f0b16caa23339df6228229c15d9aa693e1f9501301c6c0d8d5e940829e1da75e04540b7e6423a72e6729f6f44dc9e5c5c53365ca677ea52984098420a7ef0addc8e4b869e494fc42b663b4ae825c06347e0bf5af6967abf6add4b96732c37eeb8cb0848abc1f80d8c1761e20356590cde4435ef9b17d24397962185615a7cc673588e9b7ddbef078af286f7bf6ac472174a3e70b5fd2c9a279f248a2e4cab4137f3c90298adf4047cf", 0xaf}], 0x1, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x1c8}}, {{&(0x7f00000009c0)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x4e24, @remote}, 0x2, 0x2, 0x1, 0x3}}, 0x80, &(0x7f0000000a40)=[{&(0x7f0000003900)="6dd5d278cf2bd86f6045c1b35af6d6b95ed62fc6ba55bfd192fc1606190ac7a3bf2276c373c0b014b9922fdefbd4838bc21c637000cc49efe1512951218d0e66647a54da8be61bbde05da858e858123fac59e4d726de6c0a3686f7e6b656d3f7115faac72f284629a6906281ce0dc05da6da637a436c95f996a118fee5d495f7a1366b286d6cf9afc578df3ad493e0eae81ebb3b3ed4475e2b83ecde90f62d4a92d89c2f8f63cefdf6a4d7ab6d9eb55387e5e0f27ec6f5c0a0150ab969ae1181e0dcaa6ed4bd0687ae8849031bb893035aaa136e26781bd55308c958cb84aac86d12e16257e4df8a8b9ffdf410437e23ff14174ef34355576cc58eddad54e89e805a4a67fbcfbf771b1296ec32214e651965a87c7bfe6570f31ddd7f68c465e55584a9e23659c7136b2df25d9362dd23d942740a1a5308b9d619b9e858a7d2fefbc32c12cedd207113dab70eb84453b5d0b2548a6631609bb96052d4c72311bfea698f18ef08668c5858e798c9c619b4b7711ebcf5e6dba3d97996879bf125e6124121c8916fcffa97373e1c502cb7388a06a3310ec5bc8973d9023f9b951b00545d2d4392a13d66208a518bd5c81713453199497f0bc23debd48ad90df77ced3c0fe0aaa3aca78459636ab5c4810e001d3b899bcc8cdd046453ec479728deaabd5c51ea50a0c5815fb49ccaedc655462fe5673f186dfb65bd00cfb2818bac16933f8db39018c6ba6b9e0dfd7b06d98d928e9925c7f6c72b1eac2cfcd4d906c730cdd435477f4e8d80391783b3b16be763ea5a397a7dd7880cf679554f43df4d753146ef5ececdf7557b7332b4d419915140ad7d44cbd71cf73b272871838bc08aa22a23b53fa1c1e07b14accb9edd709519304a6dafd9f8896f5f01a3916ad9d72e35927ca5fa94350957925c1e7ce80375b12295da5eb04bc08960a95f921cb3dfe12f1729839de61c32eb98aed5c85a38355321ffab74ed187007e1a8c02972eff9c971c53569ce4e5658e7ce5422c79f89241738a63e267262508a5a78b0368964f707c63ba27d448ec0db7712c6c879988fbe98fff1044c932cc11b10e71fcb14f6a2e66bf20995ac3c5037de34fc74310b7986d867cf755877ab8c88ba693dfd6de3cd7e75b468af47b467dc6171443bfbad6355a1954991e2085e79d9f9444cb11d5907622809ea8998cd66de628c7f3932b4263abde45820869c7299eb9ca8a84c0443f22e8d275949bfe9a425331ea6221ab094debdfa7c71318332f53ffb66a434c345257bcdf36380b4431b4c384fe6855fd1aeeff1b03a2e1d78ab2f8880ffb54b718a03ce41a4fc1462ce0769476078c43cfe38f1f90faa6dbf32ea50255c878b04ccd5b03acefb5d779a91abeeb04d690fe365d5f14a0cb56763e9681a93e7323d75658eb37c429203b6d9ba72bdc44faf7c7f842956f7776724f6bc2a30fcff1f7b55d768f5d92e5519b9159402652457c7946fb934cd241a43dc1fd4b8210a31ca3a2a1cf8ba8ca6f5f3d8caf9c0d1e3c8a0b0467092119abdc22e8c9c72e4b45632147fa85da4a9be6183641f19bfc562f8bc6c1445e3fa1def3f1052f96f91d8cbe1d4276029052884c26f9f142f619f5a89fb3250861a71fa68662670a830cef541ae2ddd18e71c4f7976e47bbdd03c9ed11c3643ce2974623b971eb47db44d2121a58453c06eb959adcd4cd6d143acb12b3fc52fbd9f05f92b1f860239a4b712e4bc97ec1b03d86234bed4368014732bd654cb38d434a6d0242894aae19e183af83210c7f5b8dc150bfdf5f1977efefec537120e5e45e29708d29c406135ccae6a1dd82bbfd29f5949de29dc70ec38ec5db911b502a1441282875a37cff3a51eed568789efebbacd00360c5f5f31a32c8ab576716ac22f59ebe09035634e2857608bbe8359da145651ed249b64e900e95ed69ab945c474d358264b8a0cc95a0f350da3f379df6e4ffbb8962a603e0730428d60b01a934226f2a63c1e89e3c94ea13e620fb1f75eadf515c97b123d7a5fd7490ca7b6122b690097d0ebdee6da262869e99d2131b5f39c6e4c44ee3b99a542a842f7edab0b6102f9d18fc900d0d40b74ffaed4e2d224a04d3a36961762b28e56ed1b1f1043d4c9d9f2987ba590401e3ad5807bef80df1f0aadf37c8f8e09ea32602d3fa1e865960ab341632281cd40693427712c4c4cdf694a607d5f6ebda87ac746eaf1bcf07fa666b5e03cc1e8262bb56f2d9d33f00032d4c347b2587b1037633df053d423e7941d3f9cd49632df07f70974209ceacca8a4dfe5dfceac80b68235ea7ed0d08082e923bbdf3ed85253afc90e5e7d8a685b8b6fe2d45ecac869dac70dbdbc8d24b3daa15c2a78324d3b47ed5710871bf0eb660e0152837a9512d174aa6fba8d399188ae30686f8ede80a7b1507573afce1fb18fb141de96933dafcd973f20f503ee67bbd6c7067a796a086cfc1530cdd1a20e01f1685a5acf3ec586c945dc3a8ac6bee267640da360bc3306023c60bc4aad54b068b844615c557da4aaef52bc763dbe2aa8c9b1afaf6f86209cf8fa9532e2e0858410d4ad0d0699f1c67626776c666b8405357152793f66e249c354f0ae54dce6ca5368983df2638aa3d36d571895ddb6625fec51ad20fe58f5cd68e020dd86b5be9bd35b6af215554e56b8a4bc68e90615b18e39c959e242088ad81aafaa5f5910f3cc9c926309b16a5371ff11c2925b6287f24b2050f2c9b3c88abdc4301239d2ff5703e7c3acb1af876972fc8121ca5d2aaae40553952a4fbec50c7a5d2ded973151ce657939ec75c549cbd619aabd590c5013a3363029ad068f1bae9a18c7f9def84907da1b23003e3b22740dc098e5bbb7fc99324e777e27f2d2505442d020e1c4e4ed6d64ea182ea560541a99339643de6ccb46f29fd55fe3ee2ac382ad65416ff358f16673cca75afc8f0471aa8555e4e0220cb46dd4989ac6c5a69c029c67e800a9675a85f38d981dc9a1ec588c5a9487d21273df7924b28c62c6885a46f068d7830e4e3dfadd32feead41ee9d7406814c59e1986829ba3970e07c86765836f36b3919fcd34c47a57c015603f96d2dcf3c847d2364e9e447232e585da0dbb030282838de21c88eb7151e170af0e6932370adecc21d24c71361ba06007a92bd62b9b88897fa91f8f468f6381e9cdd60aa3221442484bf34fb12662898c92b7d6197c7dfe3de66a94b3cf883c74f2721045844fc7723387592c0eda1cc2eb68354d0e6aa7f9e638b42c64d90272389070a365941eb45f8bde738005aa4a7574d972a97a138adef555e7dc927e59756cbce95d615e6289fc752b9e9d056312e0b0b41fe7927db3b1d3258c83890467a90b48bddc6d5dc25349e2ca1e525510d0bcf0dc4fb61dcfcbe129ca21f13123f79f17460a2fea36f47365e1cb59a3f9aced751a5e90dffda8130ffd798bce9cd7d6e9751a73e99088b528ab9cfc2a93ff6a19e52cd1760abcf55c070f9ce739fa0cb12381dc83af84680c4ed7962e4ae2c49c291f331b788bf02d9e04a676b83864a0847dcb9209813a3ef1eebd91dc99729c072bc5ad9cbdf36173b9bdeb148402f66a6f46b106702758e4e1c20f744a75f809300077f99dfa55ad2fa479ec954d3ba1a395f6b7ac452f8992c69aa48a5ed51c9e81947aa956b48d2bc30356c5887ca8d9a3c1906e110382f55a78376db5c4c379845ea0c51fe9395f35ea1ec9dc49e66e5e11a5a6832379ce53aae52b8ef9b521c6858b67b49efd6352e898ef3c8736cfee8b7db2ba0ced4dce567293ebf809ac7efb9290f102695375dff8dd8c0f82cfcc6577976fd8b59a7b273684d77f50d0a0667629a57fca97f5888527863c2c590b4b9bbd485822906ae2d7a1d190bf71bfd661e28352e06dc16e6fb2f6893b42a6b6b71b23fe34676b0cf9286e1831244aff5684d8fb54512e5464b98c3be4da62144be02f2547f993caa71887857af8526239f2e179395490d078a7817fd6d652d3c36bd316f60e364ea4c3c0e8c32b233e1646f3d4930b7b9370af2e81e95ee7cd87ca5b7d1616b855bb2ddf04faa617892b2421e08cbe6a4dea48b33a138bebb7e6faf12dc4552120535316ebb48e6745495ad2e8fd7c418c3a55cff38dd4d626106adb34a3a8aec75d7261e6024a59cd81d29a969e6ba743c32e7c4959670e07f807bb8f9f6fb688c0a991acf7144d80164abcfc5c3f9ee3d141cd955bbd2d62b9c00b709e1ced05594118638ce276da177ce6137913c18dd977b9189bee5cf5cbd447641e3a10ba1a5c2811e8cc21a35eca2a2178c03508e3d011e432a50ddb870bac8398507cc153ced27267b6506cd0413d3735e3e0ccc4b4c9ab06577b01e7a1fe3051d083dbb23c43aa9f0af2ca5eb498721a9d84ef86096444668ebd2dbf5085e4c3509d572de34c36acaf0c838a7a2bcf36d402cddabd23497440581df9527d05c24ecdde976040bd6b1403e555e0509f5c69ce0eb5a18eb88f49841ff18f895c7ac416e617992beb920f6850cf671f696066ac058de5ee0abfa60bea3b93d61c8bf8e4deb179f340c2ddc5afcc17f1f5efd55ad4519cf2781a5526f3269a6e36cbb0e9840f5f3b83b62243b9ca6d5e09d4f00585f595c94f337a6ef38dd188d461486a3421c56fc2c519e9ee86bcd7b0b8931a0998a76caae1b531993bcea3dfbcf4e76b8dbb5061b4d20c84042d8a771b8dd901e9da0bfecb7302eb2919995fc79fc5b86e9645881dc52ddce36bf4df9e123ff28da9c67eed46c0a9e582b3cdd986a97e17f5219668b18d13b1984bda36f1a40110b91e30100ec35763b99f72c8ca9eaae562429e41c6a3910fdbccb759521f458519e01693bde7c75029f746ad93b873d2758a52e3b2879b66e4631d67f5588795461a144a79dcef1a2ae4358018bc67326deae9b1d630360e5c7363daf545cf2765b306cbad95aca9be44b54a11f5ae286888a606819b6f4df9836cb20d3d24dade53c8578c485424a5a202b282b862f8577ccb9a8c48f0c62868263f088c2e629d0ec929d420e2f6414c76206e1cdab2295463bf2e3548e4f8caff1f5bd7b9ad5a50ab1fe235c645109d289308933242023d97e1414d1968102c1273892d9f3027afe07779baf8b12bd0121aaecc5a4fb5bbaf4a0eea1f730fa32c8e0f8f8d4f28d9533b768d151e5e1be32bb2b3f7d0e32c86e7607b9398a0f0d555a997635eaf0d48f5bdc88b320e0c1d87dd2dd182c9c37f218587467be99b11e432833f7c36baf0e0a0e047ebebc9276d054d856ae17cc7c356fc666a46f91b0a82e5962456b75f2a09f42a898b6236b1a8d4dd2f67221e1acf92eb8dfa5da11e191fab4fb62117f08ba18cffd755fd30c9f354be05c9e5d8bfdd18bb430f02695e874648e7613b71a57683839d44f41f23e73da755ddd0a6ef84edf9e7363b4c7b436e77a5a26eb9e5225ce2522e96af09dfe618e8dd06ce629cff34a41a7119988e88c80b5171125035dbebf0e48e5bdebd4e64a0e975f9616840b488dc88a635b76402bb5f9c657ba725ed17ef5f20757b1c489f8a8e2648fa9242a9d5377104b49cd2dbe2f7f9e94ca4ac3200b8741a6105faa3372a0d2399acf726edaa2fc7d0bb7b4947b1c6e12f6cc82fb775988db19a349ecc22a26eb391df37c6001812065e3f89128cd687ae602009b8c2e5a92ccbf867f4f825cd9b03065542bc88d0ed5af6107eb5db0196e31484400a34d78df120d90904ca7726077162f4bdf38850899bd81a145eb4aff843a0798f1b25c5b9b333d01312a1dc85e0f7", 0x1000}, {&(0x7f0000000cc0)="65f20ea35a5ca97d3c9c2eab3d9d814c41296bd7004ca8f05455705565bee1a3ec2dbac46bb1349317b6c1a5d6a6ccf4d2fb86df44d7ebfe5a41fc0354172496e70c20ec726913491a435e8201fffcf7c20f6a8e561f1ecb9bc48c1eb8160ebaf82f2877994baa715b0e40a2dfd269400437f79e0f73c4394703b4b5d9457341a1ba922ca983afa3c81b4bd7c8390859fc211f7137f992bfb001a27b6b5b4584271b00c30ef108992f84d2effb1bf1b3cb0ad6416b0ffaed511a460011df0e6b7c0c8b7a06afeab5ed59cd111272ca99b6a27023ba8f9f3b624812ccaf96253db7160a28dacaeaa4aabf", 0xea}, {&(0x7f0000004900)="8962c2400dbb6b17a0de6a5a1b193e3dbb831101bce9106a92fa1c06cc6611422db2c7be432276c57876781027292809dfbc9b6bed7922f8173c3391e15447ab63eeab9641ecbf8e508af4712f7204b4d90f2a7b18446d4180499175dec599484837477e25b376ca420f03cd083c46b93c4b773a30870f30c4d904edf7a6de4d4ec5189ade471155a0190c0e5a42e4bd51eb01cf8d0002f08185146f22efa59967a052feef1e32161e7d100c09d0d3b350df3d116123dbd0d35e0e67d5eeba6bcb7cbb0043639f4e9d185093c1c67bc4338df66768dcb1246309e439f6c77901c95329cd82072eb230bd0d4f9950f4ffbda29169721eba6b6b55816acf104183252eb3ee524aa8f4fd6c58573b9f4ab93ba275c99f4d447ea4766518ba3b23f7ffa12c3ecdb5500463b7c8b70ad2bb54feb682b5193a32f57b54780ff43bad69141393285d0d522bfce2b4599953b63c695677fb20dcc4daa3af3ea36a72127d43f535ef35cc773e5492eb6efabebd9967329d3a8dc80ed273c04b9ffbb47ae33a888da1a507875bd9b52d595d4d0c9d2ff1b24654a3b3c38a3330c3cfff198a8945bdfd556d44dadb7fe0556b2643bcbdfe875e1edc909b2a6898536b8bd1d3af48a24d7bef7afbef9ff9d2f3f4a7d07a8574ea29bbfcebf80e735fd464a64e2d73912d5e06ec24e89d50e7eeaba1be750bf4e35fafb1b261d485299b70182e08179eb389e355b3fd2b06820d4b7b9dc8aa55ceef16589afd969cdc2a2b9a65aaef6d7f9fe0b9547891c8805fbb4d02056b1e39c947bb00ef19a521851ce42e1f986d25263cf4c294b6b6c021c0eb438e51cba93285e81d15a08c736b8c8e409f2c9785b78bf365b80e0959bca8afce0155f7f2d945370a387199b7d40c01eb4b2ef1e05d038d8749ecd173c923bd599fd6f47a1ac8ff9f980c470eada5f9708cda88f3321432044e7ea56036d3b4f39ab4c1d641c3aec5236df4be1b046e8cf4057dac1294a6d3aa2e36a090b1450e1f2782d3d48b203ed4f38df179d241f596921f52313b109c04051dcea1b821f73a2f421f2d61f66daafc0d72d79344085ec709e40191c6d03071e08ef96e23690e452900d765b429120b93db71c7b6461983aa99318f64f6b24d2a5da3a6f0cdf3a056d55b51041d5d5ccbbe47d8bc17552f38a040f8faecbdfc693f727a1ca2d1b001e044e0a86018162186d06344117241401df4da7ae68a6ef8c812b545cae314f536d2fb0998db1e26c495e0a0af702d93c4a82a4a9ac10029a3899060ffa1cee40b1a8ff808dbc1fcc5ae778cd16d33fe52886df3fc814c66e06164e262c703d5a8cff7eed5b38c210fd34851f7e9d0a4f6a3b90203570edbef7dd89ed6bf91400a7520671a94f6ce31550a958097adc828da5ce7faf4014ceb3e857070e648d874f6e5fe9ad035c8eccebb42ab3cf72d988c723bd2ec8a5279991a500207e62528c1922cf038c8c54c1acb42d3b1b092a4ef5160a4c80bde87d0189730cc8e6dd3552e7a5c0426adfec149f41d4185ceb5dc4876edbaad44b969e89732224a129850f1aa5bc0432504af8ba924ba6f648bc39994a58c1e992ed14c010cbbc80f2f334d74777d264b23f3ad1befb9509394178b508229a39f8680e3e2a61a8f665d0c632b39b46722afbf6ebe7f970ff30a470f528dbf92821d869aba1b2338dc30d8718a099c0ec0d26cf0a5818e5f898c34c35ca7e3bde6deb88317524ce0c27e3cdac33a75f0c5b0fb7ec3e905b0719d0d02a7b00766699755136435568b28e2f0dafb7f073b10fa9038f6fc4a6f3b0a8828e94c187695fec082afdd5ffece6f5c3b375e40e1486e7d07a74408849338bd6766d71f6e6956fd5fd961fb348367301090359855fc575a110d2ec3ece19f0e65cb7e6122f44eb6e3402e4d83a4fc16d3b520e9c8201b4caef1f5f92b2f142916c1dbcda1d21f73d3f5b769e36f3bf078c2a6b11ffa0af688931b90656241be984327c5a883eec9e37b0e901026efe61ca9aedef562e75f3cfa38d55330a7550650e9361da6942adc108f3099ef38eaf06f6aa4e0185380cbab2d5c6356d00b5258147795d6d287b1bb889584965b883e5c38c50a817cbe58328880e0a46aa88775853b9e944e405b7e65b7e9bb8c2d060b8372032c180ee2e5d16854deb04fe3d67ccb6d1b725e739abd0020180b0176fd9cd93a856947127a98ad04f571285e3e8f6c1cd0c5461bde66d5488e08592581faceeda0bf6193df700ec35c5ec3170a8437e5413bddca82f4769b60d7840dff9cb42a0ec30af98e7d267a1c306e51a6a2aa3c41b9359cb1f9db1f54f0a75606faa493ededebb5a7a768fc885f8d511c8bb28fa7ca238eb960a9fe39b76f38f4474d72a64537be01bc935ec503375c09645c22aecbcff66e1c82e8eb80980061112c5c215620d300caff9525b3d17e96fc893d0fea9f82d866f56b928a1e80cad53ac2b8ca80a3a175d92919ade7d9c085dc6590015fa1ff4d17e73db0ced4c129ec5d4e54bcffdb1675abf3039b8093cb15f420b2b2c9fd080a4585b622daed738b8b3f886303f5291c89ad4ccf5e1de059c0193dec5f64c6797082324cec99b48031cccb440a05e31747e69c0b01d588613884f6d2c5c835fc36a54d39be9611c047dfd273d3c7cd64b2a6e8ff6d5a18124a29cf45bad7ee7cf5ea786ba6b0e684f3aabfc1dde1b97d6e5712570e2e25690de9eb4cc517a2dbeb63b8701d87b4e1afe601dc31bc7c4c8a9e471c3bb7566941c15d2978ed4f3f385adcd7ed7df32c7d3dfb7ac1ec6848b2fd15965adb2fb2ff7b942a158a6aae6fd0152b9425471c84480572339d68cc57ac502261a78f7dbeb082aefbb23285ff19ffca90879e7a3e4cf03e59d9d5a0478e93b71fbdf74793f27830cd8e0baf64e3ddf40beb38ab2d47a17d5ef65a6b601691087bee6409615ec73a1e8b8aaeb2e5368a2b96e3eadb3cd8961ee7e5a61ddb2bb9c171d45214800c27c26fbcccd3d314a21784478b8d5093d8b797318adae7f531103b627fdcba3d450e90c7ee7cbda85ffc0a345397b370e2bf5285f2716612d7aa361d0354b9f1daa043b7020c77b037d909fc1309cc4a7e2c362566384a27cf7ba2be9a22eac3cc5f263217ad6122551cd76b807805cc57b8f613ca5c68c92e7d9028306d3773982bbbc8879da2a46b9d5580c2a0ec674ad1bcf26636cf5e67481fd7d7c34e6b932b934667050e1c8917a9f5022404e840b0b746914a03515cd4f4e4c1290a1ce7ad765bbd8cc727931930e95368e9124b30988ea0d418b55c8a077475ba18e72355c4ecc5feeb3411d2512927c12cdf6bdc9364b4c760cd0f4ab172497bdc9c79966cfecce4ceaaff7beb5e31a1683d0b02d8e468bfd76f9536e2993cac3f035dd6bfa1770f910acf1e84c6eebf651e403a38ad519bc88d067ddd64f46cd59fcf4786cbf575a3b2fe705eb64fcf1ffdfbe0835affe9a882b10c626a3497ff9f104761325c0c8584e6668d630679f45e97932c8ae5be956190af35e9b6a9484b862ea67209b4d4d470de64141bdb2df95079e43837dfaffab39ac3be8dac8c382c617497decaee407ceefd0187bdc52b9d4fa7dfd1054d2b57406e1337c3822d612dfff77eec27da3ed9c82161fe2484ddd315be0ebaa15e816f48e3e8cffd1328d59a46fe71ea444982d124f9bec08a1ac1be9143724f0e95b962cee8d744dada1d0e1964cdc72b5e97e92cb0956b1bf5526b0c455a7786c9bc7332f12419990b9a0e88494c9dcb7a806e8dc7844ebd6254302b028ea09985be828d284d879f3cccc5e66037d253b89c61c73f30446cbeb72c2ce9d1a05d747044b1cbcfdb46c06a9c4f2ed2fd4b993654eef7852bd856a779eb0d4401b69421c90c3fc1b6396c285b1a06a366f55d9be38881691a2a0bd8b399e470c7ac7ea6fb6768d5cc07999431e645ae8fe6d4bc96d6c75af60b646287dacf29f2bebb1ead97237281918ac382bf8c3227a2472eacee8b3c8fd9e55741ca54e6b55558cf02f88f9872bcaf989b9c5bb05f0dfbd6ef0b84d43648e5e4c8017cced0528c695aa8e7472a53b6ae072596528fd8263fae64f3ecc0848b9264a064671e2300537caa55bab153c86cae28990d810b9ff9a6c69bda3664c9a329ae5d6101fa5582f5e448df6b72132640f629eec2b26cd6e8a94f542cf27bd03079adc005e19d690faa421cccbe022ab5f811b87b9fd85fce7652330de649994f050e054293827bcf919a378988af1648f1fb9e4ed1d418e8b7cba4dff774a5d5adb6cf306c723affd7f55609ea7191a4a90e8722c51cdd5c4a3688d3c7e71cef30d0ee3041f23626cb6ec7f90653c695e4e655add8244882b31018d01924b74e677d2293b8517d186298d48715088cca4a7e28ba2533bce31dd3bc91c23693d1d37b0aab12a7be957db7100d63a9597ca6cc6b0e4c418a6be166ad73c7a35d8ed82be37de6189452e527751921b28a8ae28c8b425dfdc874dda8793f8f26de2bbce33a6b037ae7dd8e9699ee5e3a64ea272048a54b7c26a6eea2086a8633d1b8846978fc586ccea5d081932f07108aea954774ec63798696c03fae37c2106d37fb52883e445b4b91bf9a6ccc188157219951acd0bd13f1099715e8f4ebdde0414b7f9c38d48f57a6100553441bc4398b35e48822e909d3023f083ac2c7a19dbe8e7aafe49735608e271a12cf9332846b1d03ce3aca7847241d5199a050adccb2a328e70b41f9ee55c274c7523d417fd2540ae317f153350599cbb3ff92eebc25aeba45d539cc2f244cf3a0c42a57677a17810bf180ce3e945cd8ae1b72c531334ccfbe29c96bee218e53e83efe8b251d1b0b5285c515c583de21b74ffe79f355dec942e09a2cffc104761a36ee28c27a866d434866da6af36163cde1d343026667f5f09a32b5d7cf8e36cd5c20343af74ed6f85022971a3299bc4218ba9a742a4efd6698ecb7f630eb7bf001002fbe96d008d493dd3e02122d9ad1d096bcaa067ffa52a6253f09d55177805a08121dd76a39414ea4ab7700f5653145c0ecf5b339f6e96ac053197d455bd5f8c4f15796cf47f64ebcf604d7e15b27f9182c82897a224561bc4648d8bf55db224f66f6bdae4177b9df5ae2a5216753bfc6e2162c88243b508a2c530dfaefd59d702393663436dd0bf116287a5bd5c668ac4646974a06b24de4b6f50a0224d2b46e395b1519a17c964e12eda232a7240163b6d98d9a3e9f0bd7422e271bb2a9cd578a443dd30784681456101d95c007dd6c81fa95f6911856ef246fe8aa7171308b2cbfa932d2033cdbbc20b8363baa94ff7ec313223254df69b7e9005a0fd563ca452557b7d93fc495b42bd3d965ba8028de5a7b7a0b74d80ec51b91a9c688300bfaa6d126c7a09e234be6f7785ae1078ddacaa140e3369aba73514782899539564ad68afbade34de446e9d9bdf4939808322852e957853aaa0888c3714d28407a704e1bdb27f20274ad4fdfeda849c6ff30a7423d4a7a4c483700f3aa74ab6f83ff6e4c111146245a5d2e921634b29c3f0ee221e0e31a744152a550956da55a9b31b2639a18407cc52bdb135c9cc422623becfe3e01acbe903c67af16f9f96142e2882e977e55905f0d48c7f3ceb13bbb14b0f3f819dcbe34437b5d1035853235d3fc1117028398242eb9ccc0598de4f6bc600c79f1fccda8cadeaf0c1f79a81f259bde1f75b819f52e3ac822125ed4ddbd9a0421f9bad9f195753049f49ba8a8eb59e1e8bd53dab379b97cf476a75c730e610dc7", 0x1000}, {&(0x7f0000000dc0)="53fa1b752e45b6013cc8d1197838345832d5a6ea04c4a14fd4cb7525876146cf04da77d454aef593c7c7c8f95bbdeb6379ac1ab55e431ebefc2476cd162dce17427e83a1566e0252d91d07127b7e981ef7c037f659dcba6b5c79b3a743fb7b077773db74eeeb2d778e96a4b168d732d76b452987abbc67be871dbb2d86df79fcc20d049a6837be148959f99a40b6ba8c1973e289176ab9bf44590f1152d2cee0bdb21a42b7c86c225f4f7ae429d524ced45cbdd633d79d31797b6b4717c950674f1a38bbf0920efc1d51d27aadf5874ae0956c", 0xd3}], 0x4, &(0x7f0000000ec0)=[{0x38, 0x10b, 0x39, "56557acbdfb65f22fb6e0ba561ce3002b20bf051d2082aa3815073011343ff226163ee"}, {0x68, 0x112, 0x5, "3d9073b351b0d8dab680ffdcf44ccc189d0f1bd500f9d9286c95f9222cffc726db8430ad51390e2e1e7121424204cf96f929953dc37be6732ab9a2f69c95b6ccf1632975fbfb3875902ca4bf47f6b11953924808"}, {0x68, 0x6, 0x5, "26495f4e604c9868818335a9b7e98d09ee12dcdff4089bd4d3fce12ed538965478e2eeaa12edf242b2febe44309b36e4ba0203c31a668dfdc2da3dbfb2a6212299f7283dec4530776964ac3042705bc8444a6520"}, {0x68, 0x10d, 0xd86, "4615932a2d9458b5b57038094f117c5ab418874845820a509263bfe7274ab3724fe09da4ea49242c079bca0f15f387e8639512ac60c340758407dc26b49852f69a3871b9ef22bd7c4a9defe93f3084dc99fc076e23bf702a"}], 0x170}}], 0x3, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r1)
setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000340)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000000000)={0x1}, 0x8)
close(r2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x9, &(0x7f00000014c0)=ANY=[@ANYBLOB="18010000756c6c2500000000002020207b1af8ff00000000bfa10000000000000701000000feffffb702000008000000b70300000000000700000000c70000008510000004000000"], &(0x7f0000001540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f00000000c0)=0x4d, 0x4)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x2a, &(0x7f0000000100)=r6, 0x4)
sendmsg$unix(r5, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000280)="826d87688c04", 0x6}, {&(0x7f0000001a40)="c81f3665b9884e5bddaf615ce8091fbcc02e2e7da20c62da6350898572063cf3000fd5b6bd20a2031f91689578948f105a8d7c2a149353f4bc3388527d326f878ab2271715496bc596dc80fc86b0875a8733eac0c9961e4d2240fe8b21288f916cb9391f58a23266db362b09758e69996f3d432f5aeca5a605ef33d58ea9c0f96dd28d75da590f37619b76f0c21743a73a3b8498c9646d4e988a8e40b866b4d5ae01e92f6cef93854de50f4257deea6048bf8237cd5ee3e499cd8083f1be444025c0306d8cbab1895c71dc05993c32a736e1ee6214ca04725d68461eaa290de9666d30277d628f3cf439f3cb511f89514e0b3ff599f9a379f4f743586af2cc0b88c2681018a2e6ef8f7f46f4b522fab8a3e1c0e799d2bd3574cc9798985a5cfbf477a9ef8e6a21796051c1bbb2d2c12b87060df82f15172509463b563b74fd9de450e6138be4a33fbcf262cb793c044cfbf22e631a52df878f611082549aed4acb47a87f95a8c1ba70bbb7da52ac5ff64572bbe1eee8299a874a9a9bb1d95d6df111ee312294567f3d3c32ab48be463421a8d9f97db3014051ca034366d76c07903f241c689567dc1d69e2a53429a5b4458f13013868666421ba39432e46c36e5721310f11006036e33c2fb20aed5904cbe13a4056274a209f218f1a39641eb5212ff47e9684e46bf6fba68744aa1beda590caee654df571abb7d7045b02b9fa7f943b7bf5e4dab43dfd5ae75a065a30d61b60077aecc54ea4050c067a47a4a4f708b8fa130638399c5737f1700f9da410f18f23029da99071b4a6f0da08d07130413d19f9821bbc5e12b76c87822b727b4aa10a7b3d77f9bd2af19488f42fcd6b3258e8eb69adbd36f1bdf88c7357ae78fac44a8cf882250bfa4029e08fa060051b28790190ec482bf0e0133041e9b8fa6e3b03c4758813b2c58fafdeb746d1e649c0ee43e878981cd2c689f3ed31f33b7b00edb387e2891c1cf504cdc3ba116e7eae6ca36ace429b4cc4aed198df32ac9b508bfbb6a665251711bd5bcae7c7d65956149a665eabbc161152317d0b58f0a5c8bee203d27df5843c5eedf980c9ee8fbf37def9d34256bbfa2ee2466302b901cc09dad9c87481be804ca69e467ff10789ecc22c7621c0800ba642acefdb85e66bcdc4177996a1e376e21b7df8041140180d8592d99eca647ff71064591e7d6f37d7139dfb10b4a16a225e538db334e45ab9ac612d0678031fa6b782acd3ae2c1af1baa99e2289ce895653e86f4c2522e953b5ad71e377ccb5f2fba2bb27671214578e19b6f68f66461b882ddecd09e181c7e768b44405159108ece20341c415acdb41236f08f92c541a23e138fd3ae3fa969575415245d3f648b02db900832a609d55cc04558c36e875872e06d1449bcc721f5235e4a158c3597ca1fe0870b053d3c79ba6b075bf5978299d859c9815c2315349e0f0e6d729708893adc5590291f79f445df4fd90fe2975a6b4ba23eb11dd0a3a0facb1b0708a3900a212612b48df130d4c1642509b450a6061100b7a640151a8836f91476abb8d366b9e94dc2f7d5a7a038556a168dbfac95fd8b3b9eb2cbcee52390d0e89c428b88464cf95ecd5a671b0d10c850999ee5c26a4db66262df8f2e23a7ac1c0fa65f18d7f3db445ecf15e3ee3981dbd90fbcc14eb69a42c0ed9aad6140847d3cd9db39f5a18aaebfc045e62716ff7a919fd1caf6f741cfd9844efe0a6f9b725e08e7b8fb1f8ff2e878e189a4c4d85fdd6d7508dbe1caca3612e411530456c4918b671e6003f809e91e8a866e7aa3108a111c273e551309f96bc4034c2823c484d665b91c118990275b835d3fd0cdcdbf73343a41b44076f35626e87f841c13fcfc255d9615574760c93b19f35c4c36ecb5520c7796cb840e24672b8082d54a2cdc316b952b6d3384605242578f3cda658b40d005a2e53140e772ebd5a4050d04b225dcb18da80c3c5068562d4f78e5a2f636f38756c5981af011d937152172b4c46de37ac8a4633ea457189841ef0a3db775ef59ec056c2cb7ecbfc08481715cdf455eb915ba07c40abd5bb8ab5726932212b67d43e7364975e3265db758f9d609ba9ef5d9b8f0db841e3116a74830d78c9fec7b5d3e253e33500fb11190278f9789378f4d13003327ae437a5968b87d145953eefe2c14886fa9cec6cfd3b39f484150437fafe0ce1b92b482eeed7576c2e9e58cba5132f97eafa8718d102248c24ec442846a4a5c40166c3132f2936c7fec8261dfc21e7965fc995418d871dea6d5428372abf8c087eec222ec886cccc6b48b2526778058b90e5140c501c3e2eeb61d3595cbf4bb353d423bbeb3f7a45f1d717ef04ec5dcdff163114856719932f058299a1b43995bc4e33d5c1ed5c35ada8ef4326ee488593c8e01acc88ac3112e2fc897bf0d31c46825052aab0f31096532e9e4b46cd382efd0ec9983f3792eaa590366a2b480b080e0371607f298cbcc24ecbc4c2bc05ab231d8c2b347d736a567d056a19ce444273e3942fd69273c58c7ee199fe3edddc50f93fed6a592584e5ef579acdbd4de55c0e5c63a654371134857853f89650d09ad142e513b8e6e8be4f50cbd39abdb08447d59eced8fcddb1ab60d5e906d3051797097f7841ed38e5c9669d9ab3cf3ec5b13f7296292eace0397a68c9554848b2afa56b11d43227fc0acaeb6aedbdc064e320e92c137172907d1861ccf4ad21dacd647c2a0e3d9bca386d647bf8f17e9f4bf5d7f3336fb4f67fee52e1977f077557602a64ba1f4c66faa5165f354da9b941d3e872e0603f123d2bdd8ffe4b4b04dc91a37afc156d626c081f0e0bd4bd91d10558f36e9a02231bfc90ebda4a289c7f55898ccb6f6af46fd811f8ac027734a73c7dcf10f5d160f53e5b2ce54d0f3e7c2bac45a487c8b11ed982153ee9b298dbaeb2579c7a51ebba2ecafe641c7f4a3883eb0007f0e10092210861b0d833e10446c6f38c82e4b07423321eb7cfbdab9660d716c8518f55a57c90d81c81b83cbd2e950749878277d4ab27e521ad6b2b31ae7aac8aad44b118337974ab0f7390e19e7dc27e03d180c7b0de1a01d7b7487cb4220eb9375db6b9c3bd0690f614e5edfc8eb3f10d06c2e7348f4b1158bb13e1d97df4dea0c3dd2ea9addee9166c2aa31fe7f7302668feb8621d1ceac533bdc692f026a1ccc1136c9aeb2842511f6ebfc7d01ec0edec855270f47cdc0beaefa5566d71879ea084bdbcb1c98196995c714143e5c17818593796c65a7d40cb574f73c4290022d8ceea712e2f492bcf5f9126dc9f553adbf7506a204f4e6de7c06174eee9e98720e1222459130a6d2a82bc9802148dc4b32fcb56e3c5675cfb516d307b4366f7d862b5de3c0162f943a140c5376a8a8ede0d373e7bceb5f9d2b17caa98ef2dce6d72ce6f78e532060a79879455cfe39ce1c92a6c2c0fc47baa45d3c6b235a966c120d1938478d8b25cff1d1b83fb0a96e909168eadc3da960eabef6d75cfa02af2cf2885ce421b501d6c53546fa6228b81fc579673032631c91bd00e30bb2a582273c9a4cc0bd9aa2916deafbe0398135c3f2bce66dfd6642bedd33bf2de5b5cb825f3b7eced6e5aab36e57c4aa0e13b9520720f9e4948890bf0bd9ca6fe050ddf12ff4ef5fca826f90d2b37e6a589403515f9c7002d7a9430acf034a1d9b5c29d48ff6f792c230cfeb8c5b9675c84ebab3cdeb210345e3209aad74524ce84f8b82307dd4e90c7de90a38deb008b393757cea1110a224e7238bfcdec0bdbf1533ffce7b954b9b86791ad602e01346a7eb927a0996edd01b15142fd73955cc0c49c73eb32cddde7f85cae8c99ba3eb78d16354304b13b48965ef25ff5324c4d99eb8e86a667c94593d3cbd98575be5722a1c77a506bf0f0877c4e1ace01fa54673c9930d00a1e129ac2aab94dd1aebefbd8ea23a8bfcee391f3a6cb01bd773bf6ca1503e9d5f7d6ea4a19ea61efe4eb611ea0598203fe45296e8d1062702840a418c3c920ed885fb4b4af0fa493d6246e0c98751d6ae0c1dbe4bf9f1b5e88714b53a2afe4f0437e9a03ef74c05362c7a248f0b9f4ec55370efba40f322beffb257068f8907c91cbf78f7bec1b2ae6479c52f0b9ce37ccd09335df17521401ae11054140cf40544e1ed2c9e6aa8b6016cd4a8f660808a2279f27f2214e18ebbc8a60dc4cfaac784b2c340ddb0088222174f468cacff73539e34acadf07dd203690f0cc14800514358c389eb8975fbcda2ba723cd01751cc217444f767174a38cc4957036f3369ef6fb0104e2709de496363166065de0cf99bce096716b837a15801ba97da7209881409010c24ffdc80e24ffe0a3b0adaf8de59639865f318f0ede31472628c51e4e6396c2e17f0993b4c1a170593d2314b928d084bd4060be2e46e1d63c4228448bebf2c36f5e1ff79ccd8b7f7016c4c7a8aa88d62b669faebf7fc73ba8a5e25ab0e344e1215ad20c2a9045e37897d9c41bd7e74c18921930f426af513eafcadff3caa06017fef79d41e327ff0941fdbbe97ecac2fe88834123b4154afedf342cae2658edab88ab9dd767c63e8f5d2f0aab55d60c5200ce0d1bda97fb45195fbe13c987d7b5e09216578d5f91dd1fa254866d4c058ac473511019288fdc21bb2d8453c4a47e78a6de2146ec3509a4d13750473dfe7778cc5ea933a91c98d33ac8c7f66b6c2f2baa3a072cb65fad2fe3692edf33f006f49b4a61fab385870a7af24260b16fbefc1e88b2b0a5ac979118b5a6cbb1b190e27a5dfbf15bd241645c36af7cd38ad28eef1fb90730047efb110cd67e92bec42dd65aed66e38e68450d9bb2f2c372371a4a8b10dd2020bdaba328841f705443928313b143530f03661f3979cf86f7f1ac693d9e01be256ea98f8cbbd78a407c768669e99485d7e4fa857c56ec6d3e8351eb4be36ba5ce3fea356b3aaaca6820d677a6c247cfbfce0beffa023ad1c3277de715a96dca51ca7de5305249a89e2acae240285dcf9f611e73f172583732b015248a1e5ba98e97e5c3e2cdac46e5f39763636882233830b61c1d63845419feff9beed39d9b74eb900873ac12c14b730d4be0cbf7f8cadfb34418f5677dec8865b17576081d8087fc273d0987b027e1329fab4c4720dba0ce2f0eb0a7cf94212ec711942c57612f2233f6f38f1344f6550805a0d5b0aeac9f93924c668f540dc1f5e57fed46873e15f59b80482b4ad268a959694224464983caf18b1be151d44d2537d552b4ad4c267ad9614a544338526a978480d8fb6797ed1a78ae9bf99f9b6d22377413f5eda8c12d26dec298a52300aacaaba74d732245e54e7f8bebc2f2e3a236", 0xebb}], 0x2, &(0x7f00000002c0)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
recvmsg(r4, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), r6)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000006c0)=ANY=[@ANYBLOB, @ANYRES16=r8, @ANYBLOB, @ANYRES32=r9, @ANYRESOCT=0x0], 0x20}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})

913.781146ms ago: executing program 0 (id=1143):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x41}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r1}, 0x10)
r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
close(r3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$PROG_LOAD(0x1c, &(0x7f00000003c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r0, 0x0, 0x0}, 0x10)
close(r4) (fail_nth: 2)

593.910498ms ago: executing program 3 (id=1144):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x41}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r1}, 0x10)
r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
close(r3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$PROG_LOAD(0x1c, &(0x7f00000003c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r0, 0x0, 0x0}, 0x10)
close(r4)

497.113273ms ago: executing program 4 (id=1145):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
accept$inet6(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000000000000000009000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x8001000d, 0xad, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x8d, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = socket$kcm(0x2, 0xa, 0x2)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000740))
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000640)={@map, 0xffffffffffffffff, 0x12, 0x0, 0xffffffffffffffff, @void, @value}, 0x20)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x22, 0x0, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000080)="7800000018002507b9409b14ffff00000200be04020506056402040c5c0009003f0020030a0000000d0085a168d0bf46d32345653600648d27000b000a00000049935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000402160008000a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0xa00000000000000)
listen(0xffffffffffffffff, 0x0)
socket$unix(0x1, 0x1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='cgroup.freeze\x00', 0x0, 0x0)
ioctl$TUNGETSNDBUF(r2, 0x800454d3, &(0x7f0000000240))
accept(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$cgroup_ro(r2, &(0x7f00000002c0)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000480)={'tunl0\x00', &(0x7f00000003c0)={'gre0\x00', <r4=>0x0, 0x80, 0x700, 0x5, 0xe5d6, {{0x22, 0x4, 0x0, 0x1f, 0x88, 0x67, 0x0, 0x3, 0x2f, 0x0, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@timestamp_addr={0x44, 0x24, 0x7, 0x1, 0x6, [{@dev={0xac, 0x14, 0x14, 0x12}, 0x5}, {@private=0xa010100, 0x401}, {@multicast2, 0x2}, {@multicast1, 0x6}]}, @end, @end, @cipso={0x86, 0x21, 0x3, [{0x7, 0x9, "6c7061537a8ea1"}, {0x1, 0xa, "a34f9ca831c2a5b0"}, {0x5, 0x8, "edca27329728"}]}, @timestamp_prespec={0x44, 0x1c, 0xac, 0x3, 0x4, [{@empty, 0x7}, {@rand_addr=0x64010101, 0xc29}, {@empty, 0x1}]}, @lsrr={0x83, 0xf, 0x5c, [@rand_addr=0x64010100, @broadcast, @multicast1]}]}}}}})
sendmsg$nl_route_sched_retired(r3, &(0x7f0000000580)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)=@newtclass={0x80, 0x28, 0x400, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0x1}, {0xa, 0x9}, {0x5}}, [@c_cbq={{0x8}, {0x3c, 0x2, [@TCA_CBQ_LSSOPT={0x18, 0x1, {0x5, 0x3, 0x19, 0x7, 0x5797, 0x5, 0x5, 0x1}}, @TCA_CBQ_RATE={0x10, 0x5, {0x4, 0x0, 0x3ff, 0x1ff, 0x8, 0x6}}, @TCA_CBQ_RATE={0x10, 0x5, {0x1, 0x2, 0x2, 0x7, 0x15, 0x4}}]}}, @c_dsmark={{0xb}, {0xc, 0x2, @TCA_DSMARK_MASK={0x5, 0x4, 0x2}}}]}, 0x80}, 0x1, 0x0, 0x0, 0x24040810}, 0x4000801)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x8, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x8, 0x76}, [@call={0x27}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffed8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3f)
bpf$MAP_CREATE(0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="0f00000004000000080000000100000000000000", @ANYRES32, @ANYBLOB="0000000000003af800310d66b8ba4f6d722a0326", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x37)
close(r5)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000004008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500"], &(0x7f0000001440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

493.888321ms ago: executing program 1 (id=1146):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x30, 0x1e, 0xa, 0x105, 0x2000000, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xb4}}, 0x0)

427.753096ms ago: executing program 0 (id=1147):
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$cgroup_int(r0, &(0x7f00000000c0)=0x4, 0x12)
setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000240)={{0xfffffffe, 0xfffffffa}, 0x49}, 0x10)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d0000009500000000000000e05efde577a368a219ba4a76be5a915309261b3339e57fda6e534e38"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000280)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = socket$kcm(0x10, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000004d40)=ANY=[@ANYBLOB="bf16000000000000b7070000000100004870000000000000500000000000000095000000000000002ba728041598fbd30cb599e83d24a3aa81d36bb3019c13bd23212fb56fa54f2641d8b02c3815e79c1414eb07eae6f0711e6bd917487960717142fa9ea4318123f602000000000080de89e661168c1886d0d4d94f204e345c65c26e278ef5b915395b19284a1a4bc72fbc1626e3a2a2ad358061d0ae0209e62f51ee988e6ea604ce974a22a550d6f97080980400003e05db3ceb9f1feae5737ecaa80a666963c474c2a100c788b277beee1cbf9b0a4d3881dcc7b1b85f3c3d44aeaccd3641110bec4e90a6341965c39e4b3431abe8023c889fd4cf6c662ed4048d3b3e22278d00a54ad26867527aca62c2951257b85802189d74005d2a1bcf9436e192e23fd275985bf31b714f000bcab6fcd610f25f5888000000003f11afc9bd08c6ebfbb89432fb465bc52f49129b9b6150e320c9901de2ebb9000000018e3095c4c5c7a102000000667dccaff950ca1e5efdd4c9c2eb45f9be7f981ab1041d06f6b0097c430481824a3f4fddd3c643f630ba175d876defd3541772f26e27c44cfdb2d85d6d29983e830a9cdd79837b3468e8c67a571d0a017c100344c52a6f387a1340bdc8889464f90cc4cd1f570dd39877dfb2ff1ae66e1ce917474b2e650ae630afd014a337ac5d58bcb5e51723257c872c5255f201000000000000000141b665ab21372c8d8b7bac5b5c784d20a4a24d8dbd75062e1daef9dead619cc6e7baa72707157791c3d2a286ffb8d35452bb5d36c2a8682bf7ecbd53f950ef4709ec01e230d2f53594ef4839c6130c4c13a0cca84b9935f771fd49e480cd9d48aeb12b1d6acabd38a817bcd222614d1f62734d679039a97d2b74f9e8e997ccd314000f743e783df8b8a17e3aa9fe1f662aef87a0308a3cfb65b4dfe4f1b56e1f23128d743753a1de172d683d5892ce9414a1d98ea93e3d35dbb6c23b90cf36e83b8a434a97d09343d7f83079ccb02e69d384146056d125cfa788237874dd42dae334bda042819a2aa24dba1c25be2794448b4f63483026b5e36644705b76ef29241adab0dd7d68bf975e02069f6f2425e1bc97a3d588085f16bef63a06578d4f5de7bfb6aaa75f16996d536256c02284cb1d3a6fb8cae87691fae365a7abe646f738bebd69413afc9d8a5edd7aaa000000000000001e6c2f2a287c5278a218dbfaffffff00a14db5cfa6819eb1d39c48cfdc80d215c9e16e0c4736c819363154cca4e2f89800d18c89d7f46f679df6c9e2952ae1ebfd0ca88368ee6ce139e8b5822c22cf2e9dde943d34c432e1001171792c65986146666a5490928441f47e0fe5eac41824ca1fd0eb71aa243c88d5000000004bf6ea8a86da707b03bddb491ba0cc98f6be92c50008a2b50025419d140ee5fa039e5abb80d97943934c92497476c73132ca7ca26ce8a7e3ffb700f09e157f9b844051f1a642aca9ff98c9036471ccff0522903e7bcf62e17f7696bbc280b95e8e0d6fd5644b0ebde3a95b06548862de809d3dae3cccf109f7c78e8479a345e800000000000000000000009455bf417627ce723a5d9103706aba69279500bb82f6b5a3ddc0bd9856712945b70c75cee1722578820820d010d7a3cffc99fc647d0b82ef26ab708c0b19ed140800000000000000b7a30006000000cba12953d58cff0f0378740fe6662f377b97d8e7cdb047acd068d3cd3856476a60a49ad127ba6570bafc2bbcf9ee721fd9cb647ff071e5604fbf0491245c0000007d932d7a64de4c4aa433fc0840aff7c47da3a4c6966d0000000000000000f6bfbae29e8a6e2a889f6ef6869d82d6bd73eb76b65c7a35a54a066b8ad4600e3a972a0bb5971a5f16590b0a03dafa3fd1118765cc8ab9fccf3b51c41a339f200f2fa33006910a679a9ae0187b4d750c4bd244cb0cbfd23b265f4d4da448a7a0d19c5e43eae50a31609dfa2dde2675514689b6475293dd7012cc449009981f22820e57a0eff234ccfe21d7a2302e000669753d3c3432cc14ee1abe724adb6b5431befedd3e22971118f0e21aed1823cb7dde8212a8531bd9691dd4cc6a370e9eb56b3d790b98f2bd0db1e5de6a146597b2cbb7103040d2a39d7965d34df524b760ab92efcce7dd1574052c735935bf6a752c015c7f5ffee9ff66e5dd2866b15b6e0d17618cb1f5c1ee4b05ebf1445ea110f499f840a5c965443d725556351ee25fe09f69494b053678dcadcf02e063dff2fa4bef1ac3bbbebe6c74d71ec3b23e29895eff1d1017024fe3e8cc759b05785adc346b7ffd05963f92c1d0d7d90ba878ad89e490f3e29ac51d30632869a534418f916bf6fe8167827a8e6c8f8b391c822805cb0adf1b8bd6947ff208753eb0d208ce14f7b206b2e02c21e963abc5ceb735c1b3c46b0a843de589020000dfb663a8d8ee9c2b2705c1a81d9d3b9656b219c8cd99c9cafcd0d0540884d97aecb19983fc6af29ab44a82aff9cba921192c665b877a539bdb1b567f481ba07982e7ad758f4e1eac69e7e88a63960975f490e161e371ec8534791e3b61c685d900a9c0839208356b53750e76fcc3c2d1bddcbd83897921414d0c02e8188f3df79ea2a5c5444004830e6cb227ca1bdafb977c00000000003a417193b8c5d793687335a930867094fd6a78218218e04b705ec62f1608cb569b81914e68f175b392af6bc4fd2121d7fd27e7a0687d98b8e76d8d0d231e4fe00be1de76bd19cc12bd938eb681ed6bc951c1b4f7c51af59eea4d40c6000000000200778a677b72786311153271a3313da02645e11761699e4d04ac86dd14ff7b9a10d3fa74696fe3953a5b7706bf5d1faba448b2844728b18808d9cb0e9db696dec4e0820ee4028d7225a2c9c427cf64cbde6fba056b2006b7a37c1181d530fb865e235cd302f3b4071ee5237ada986b9e5e3144bf479f277f10656ad3744037ccc9c63685a6f1109d2ea73773d3635f61497f1fa1ea4a16f601800bf3e59141fbf05a96113320c445f9ba8596970d5254727e804fbd99ccefb7c09229dd2c5c25e56e169ac15980f3f85f7ca36dd5950ef5b64fd46f123311829534a82940994199b3cf7a8fabea9930952f5da9b909c1946e55289f668c423fcbb31ae91864c892313151741a67538c9689dc8ecc9903c7041e5c0704e2fa55a756487517a7445cbd9e3f5175e41c00000000000000000000000000bf98efd587fffe326f474b0b089c017b16c0062cbce96f5adebec52a79f9363909842f79c50a1520be46d87003137e4c5031f00123e812a5e37cd52c9eb7336281cb8c6ce9934b157d7875a70eaf103cb3138e2361c51cd1eab8a26b232acf6bf0ab829c26dab637538b2eb1420d812d2b80c777710ba0f18e4661681aa218d9ba54023ab4305d77eb15611ae2545835e9d30e9f6d4fb43a291c69545a1eea0f8720431132d8549f99bf6c5cb060da70cbb59d0a000000000034d083fc37d2449f72de0cbea4bc1dc89c136cdbc504f849d5502d77a95c7bfff4cd9c03058d0d4d07ea64824f1acf2b39389f675f39d01719cdbab3f1ce10609c8d7b3e37cb99b41da5e485a441b6a103549f55ab09dc987606000000000000007d2b40050d1f8292f4ddec6d0000000000003932062290f4996fdd55b06023437e9e2072daf7f5d82f6f1b5b89a41134f4dc2e65bb11272fdf8c8141f41d6160b3d8b6ecd16d14269861b4881adee7f07f3d6af5ae79e16fe2c3f55ac7a6392d2e1d9b4286b6c3e1f5a76b85ed6e1f0000c67e6c5fcdc8c39381be4799b8cb2d08b8262c807dd755e22b801162381aa9d1af2bbc9cfd497585337eac408b8475b47a392a10cae349160f128e5f873a58064eb400c36a90624f6aed398a215e9c5cdb2b039c4abf349d2c0f88a42e9189bbfa7f5cf35b6e7ef8f9d33163b7ea87550fb1ba33770ce3aec4714c9c4ca3ecb04f2720237615a28bf310b58ffa2a103216fdcc8c2d8f5d55e5e7ebf147105272aaae56e86d856b3cf79a3f7306436762dd1a08ce873e07cebc7892ec6f9f696da38feed3dc0001500e34adae1ba89a3269a9f1af301792c48f9f86c54c75cfbad2af9030f840f1ba4664f35547cdadd5cbacc59352c290f55d971b65953533668c25f21d8d62d849e9058eaa97c63491568887548f668cdbca2abf01a361a0b64d8b523e669da350e3ec7445dfbf366b0b3bc5e76824a1e43eaaeca70db90f2fa39596443447671933079a24fe3681ad9ac361f71ac279a688f10a1cc4df1112105edebc5e3bbc394c8305ab129ca2dfb9b7c5e9d097bd01b495cccefddce569117f7f5d6a6270ff0f0f4c371029ca8489571b55841bf3dd003bc81460eee57ceb3c33f4e9300b0144fe040cf5fcfcbb616c2070237881afdb314cecd1623f3e55ab8b7627fa1be349145a8d6313cbc790eefe2020138e82fb9d351be4ddcbcc9bc0485d3db5828d16baec6e07a007f0030f34ea3cfd524d6fa1d45da5641d6c94e1d3ae7fba1c85035d2a60ef1696e0d96aa1c60019f73ae0aa6113cd66ef26b5777337c26e1461405d86fdf091edd526f25cada439bb3609ed5635ab60a539ade786bd6004d0ea3edbd6c4da0d8e8be8c771c8c8a0b07d9859e04adb18964dcce9bce546074c26dffbc2df372a016e8c845d4257000000000000000000000000000000000000f29657697d9c2b132b2dc2f5ea5122836582a7e85fe2bc166f17aefd9d861de0191f5277d4a3b5afb6f23d9eea2459f7844606e1202768d83c24cc791bde44a448022bbfa571fe029a7b2d5152639ee283894ab6168992ff0acc01b39a078f285ce615351f262019586eb9447bb3eaffd7b53d8f37ca6c5f1027dd5b7592996c8a7789ba108979cc9ad07ed86682843e2eaa855dd01443ee6ffde1811f10039d5d14458177096e15cc4d8f2582a1bea5cc98d992f3de7d1cdfb24384b9f10f615c87c442dc970ec896a5af6bf69b50090000000000000098045c5db71cae9868c3079bafe69769000000000000000000e99b63029d219cd3545a8426b56554a9f265d3557eefb3602894507c256cb8ee9ebadfecb6afeb84ba757bfa8d00a5af0dd6aa1e8144ef8ef04410d52204c335408941b8eccc5c734cc6a05247142ed647f89bcb5c043acfb382b9cc918bc3cdc368983157851cdf678800aa7eb2a6cbc12c7ae23bc88b8f10223ab2a093429fe587ffbc5af0114cf6f2460000000000000000000000000000000000000000000000000000000000c1ca42b906cdff54d2c8abac212984cffd0582dcb5bebe97c071c41ca107564f4497d3ce49557bd595091cd60622651bc88163f855d339fe76e6c51092ff20f6345522cec97b15bb54e8a6c8cb950d9fdbf861c526cbda98db9ae5f3da5483b4f1c298ac8ca018618d147ef0ef312680d43ad0c598a613a4f81b12b6a1bc245c503646f52ea67c08bbafcb7e11512614fdea1bd8543311cd2d4fcaeaa716b9b11e929d3f595c7ec992ae6e2182be06a4dd10a4a3583036f49941a10927072859b3171341793ebd399c45aea75bedc9deceed214ebfe04c53a9248bfea65ee458fad35137a710bc4281f14b2cec726608339b118e45f7167b31a38d898d162f53fc9ff05e16b5cf6a27f2ea51b57cf169e68c20b2764d411bc69eb335f28d6bb1e26537f8a2d1847cacd5523b5f6ca2c2df186894d475f8f7e10550c5ed45efb92c4e87aea88c6e4620f07632f30107f07ae189b9c92383e9381923b4ebe62d1a9546a5bd921dfca3a9cf14435ac33c02b03b87b6318b17ead30a5216e30c3ccfb35a1bf9e2e53213df45abaa9e1e95408edb3d6e8bf692fefa3dcde2d6be16acdccf7364fb122659ebc30b33cb6758fabfad3ff6f574a650ac2d1a04f8e19a4c681758e5d1cb6200a1f69e36cf44dbc7a42e3055bd9578887be6df39a2ed767084cea79bf6ca7e1b9ec3efa945d31c1eb7f06bdffd98a2e0c8d1c62063829f8d477f7685f9f3d90f61b489faaaa545d970cfac3cadc768dc22cba51955816dc83811ea59c094fa3ac7c67f76c33adbb50e7677d569ddc580d11732d4dc38e863932c08170aa5aa7d44efa7bcfe731d0cee0dcef8f3229dc504696c22c22e733496cf0000000000000000000000000000000000000000000000000000000000e4c1df500ed39d2f3078f3a2666c167d850519414688f4088f196ee875004d7ed16fce78fdaba8c6ead5cfa1b2fecbfb80ac85a5a297b9aabcc1e99520f37c89d07000c3b719e0cb1fd601dd96081e4bffe98e06f409b5771a2d3017a245726e48ce284fefb53eb94ab408a814d43f9bf0c64d3087d776763cc8a4238681e700256ec1357b268699d6e0cb7100a9c028f300cf018cbc549bb7174b3245567964217c496241f011a911bcac7e0f0e9fc8c59dfaa183cad62ae31f97aaa89051c4f2bb6dfe5a489d5fb5f4443405b03a12ee225492cfbe"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000040)=r7, 0x4)
write$cgroup_subtree(r6, &(0x7f0000000180)=ANY=[@ANYBLOB="043900002000ef"], 0x33fe0)
close(r5)
close(r4)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x10, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="7a0a00ff0000000071"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$NFT_BATCH(r8, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101080000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff08000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x2}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x7c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r9 = socket$inet6(0xa, 0x3, 0x2)
connect$inet6(r9, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x1f}}}, 0x75)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r9, 0x29, 0x6, 0x0, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="44000000100003052bbd7000249d020000000000", @ANYRES32=0x0, @ANYBLOB="15010000ad190800140012800b0001006d61637365630000ff00028008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n'], 0x44}}, 0x0)

420.314164ms ago: executing program 3 (id=1148):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={<r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
bind$packet(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r6, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=ANY=[@ANYBLOB="0500000003080000000000", @ANYRES64=0x0, @ANYRES64=r6], 0x80}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000700)={'bridge_slave_1\x00', <r7=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3800000054000147880000000000000007008209", @ANYRES32, @ANYBLOB="20000100", @ANYRES32=r7, @ANYBLOB="00001000e000030000010001000000000000000008"], 0x38}}, 0x0)
getsockopt$sock_buf(r1, 0x1, 0x2d, &(0x7f0000000100)=""/96, &(0x7f0000000000)=0x60)
ppoll(&(0x7f0000000100), 0x0, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f00000000c0)={[0xb1]}, 0x8)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002680)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=r2, @ANYBLOB="ea02000000000000280012800b00010062726964676500001800028005001900800000000c00"], 0x48}}, 0x0)

319.820043ms ago: executing program 1 (id=1149):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r0}, 0x10)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x6a, 0xa, 0xff00}, [@call={0xc}, @exit, @map_fd, @jmp]}, &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2d)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)={@ifindex, r3, 0x11, 0x0, 0x0, @void, @value=r2}, 0x20)

263.949998ms ago: executing program 4 (id=1150):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="c4000000190001000000200000000000ffffffff00000000000000000000000000000000000000000000000002000000000000008000000002"], 0xc4}, 0x1, 0x0, 0x0, 0x2001}, 0x0)

213.853777ms ago: executing program 3 (id=1151):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
close(0xffffffffffffffff)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r1, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, r2, 0x8, 0x70bd29, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x3, 0x20}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x4a}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xc}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xffff}]]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x80c0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000080)=0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

196.397827ms ago: executing program 2 (id=1152):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="b40800000000000073114120000000008510000002000000b7000000000000009500c200000000009500001200000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r1}, 0x10)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000040)={@dev, @loopback, <r4=>0x0}, &(0x7f00000000c0)=0xc)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r5, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="310300000000000000000b"], 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000000)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000280)={'syztnl0\x00', &(0x7f0000000140)={'ip6gre0\x00', r4, 0x2f, 0x3, 0x5, 0x401, 0x44, @ipv4={'\x00', '\xff\xff', @remote}, @remote, 0x8000, 0x88, 0x80000001, 0x5}})
r7 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
close(r7)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = bpf$PROG_LOAD(0x1c, &(0x7f00000003c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r0, 0x0, 0x0}, 0x10)
close(r8)

167.427327ms ago: executing program 0 (id=1153):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="9800000010000104000000000000000011000000", @ANYRES32=r1, @ANYBLOB="00000000000000004c001280110001006272696467655f736c617665000000003400058005001900030000000500090000000000050001"], 0x98}}, 0x0)

107.780352ms ago: executing program 1 (id=1154):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000a80)=ANY=[@ANYBLOB="1800000000000000000000000000000071120f0000000000950000000000000047c7e0fcca42f2bf7bc5faea210c2ce6b3ccd7ecfdf73d298c0a19cb1c400e60263be5c17c269a8d604096d4452b5004b3eb4dbd1f3d3f21aff898d31c90bb8e3c5163e2fea16c2c9e8e60cc7d"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x13, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
socket$kcm(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_POOL_SET(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan0\x00', <r3=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000d76ea2057f274bcc000000001850000085145200000000000000000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32=r6, @ANYBLOB="0c000280060001"], 0x24}}, 0x0)
syz_genetlink_get_family_id$devlink(0x0, r0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r3], 0x38}}, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x10}, 0x10)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r0, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20020230}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x4c, r7, 0x800, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x7c}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x8}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x46}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x17}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x80c1)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000880)={0x1c, r7, 0x1, 0x0, 0x0, {{0x8}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0)

107.378606ms ago: executing program 4 (id=1155):
ppoll(&(0x7f0000000280), 0x1, &(0x7f0000002d00)={0x0, 0x989680}, 0x0, 0x4f)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000340)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
accept4(r6, 0x0, 0x0, 0x0)
accept4$alg(r6, 0x0, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="7c85f258", @ANYRES16=r5, @ANYBLOB="010000000000000000000100000020000180060001000a0000001400040000000000000000000000ffff00000000"], 0x34}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x14, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x1}]}, @TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x4}]}]}}]}, 0x48}}, 0x2004c090)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000100)={'gre0\x00', &(0x7f0000000080)={'sit0\x00', <r7=>r3, 0x1, 0x3f, 0x4, 0x6, {{0x13, 0x4, 0x0, 0x5, 0x4c, 0x67, 0x0, 0x8, 0x29, 0x0, @broadcast, @local, {[@ssrr={0x89, 0x13, 0x70, [@local, @broadcast, @empty, @local]}, @lsrr={0x83, 0xb, 0xc0, [@remote, @empty]}, @timestamp_prespec={0x44, 0xc, 0xbb, 0x3, 0x6, [{@dev={0xac, 0x14, 0x14, 0x2c}, 0x9}]}, @generic={0x82, 0xe, "270bfe2d9bb80be5642adb37"}]}}}}})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000001c0)={'gretap0\x00', &(0x7f0000000140)={'gre0\x00', <r8=>0x0, 0x7, 0x8000, 0xf, 0x6, {{0x17, 0x4, 0x1, 0x3b, 0x5c, 0x68, 0x0, 0x1, 0x4, 0x0, @loopback, @dev={0xac, 0x14, 0x14, 0x24}, {[@timestamp_addr={0x44, 0xc, 0xe2, 0x1, 0x8, [{@broadcast, 0x10001}]}, @timestamp={0x44, 0x28, 0x4f, 0x0, 0xd, [0x1ff, 0x7f, 0x5, 0xaa31, 0x9e80, 0x7, 0x7, 0x7fff, 0x5]}, @lsrr={0x83, 0x13, 0x69, [@remote, @local, @rand_addr=0x64010102, @loopback]}]}}}}})
sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fbdbdf25180000fa040006000000000024000180080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r7, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB], 0x40}}, 0x90)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), r0)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000480)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r4, &(0x7f0000000580)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x28, r9, 0x400, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r10}, @val={0xc, 0x99, {0x8000, 0x4}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x11}, 0x8000)

12.745674ms ago: executing program 4 (id=1156):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001900000020000180140002006e657464657673696d30000000000000080003"], 0x34}}, 0x200000000000000)

0s ago: executing program 0 (id=1157):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b7000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
unshare(0x2040400)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff})
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = socket$tipc(0x1e, 0x2, 0x0)
ppoll(&(0x7f0000000480)=[{r1}, {r0}, {r3}], 0x3, &(0x7f0000000100)={0x77359400}, 0x0, 0x2000)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="020f00001500000000000800120000000100"], 0xa8}}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x4)
write(r6, &(0x7f0000000100), 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$BTRFS_IOC_BALANCE(r4, 0x5000940c, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
close(0xffffffffffffffff)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r8, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r9, 0x29, 0x40, &(0x7f0000000e00)=@mangle={'mangle\x00', 0x2, 0x6, 0x810, 0x420, 0x188, 0x350, 0x350, 0x420, 0x740, 0x740, 0x740, 0x740, 0x740, 0x6, 0x0, {[{{@ipv6={@mcast1, @private1, [], [], 'veth1_vlan\x00', 'macvtap0\x00', {}, {}, 0x21}, 0x0, 0x160, 0x188, 0x0, {0x7a00000010000000}, [@common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @local, @mcast2, @empty, [], [], [], 0x1404}}, @common=@inet=@socket1={{0x28}, 0x1}]}, @HL={0x28}}, {{@ipv6={@mcast2, @dev, [], [0x0, 0x0, 0x0, 0xffffffff], 'veth1_macvtap\x00', 'veth1_vlan\x00'}, 0x0, 0x190, 0x1c8, 0x0, {}, [@common=@inet=@dscp={{0x28}, {0x7}}, @common=@unspec=@conntrack2={{0xc0}, {{@ipv6=@local, [0xff, 0xff, 0xffffffff, 0xffffff7f], @ipv4=@private=0xa010102, [0x0, 0x0, 0xff], @ipv4=@local, [0xffffff00, 0xffffffff, 0xffffffff, 0xff000000], @ipv4=@loopback, [0x0, 0xff, 0xffffff00, 0xff], 0x52, 0x7f, 0x1d, 0x4e21, 0x4e22, 0x4e21, 0x4e21, 0x88, 0x80}, 0x82, 0x2444}}]}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0x8000}}}}, {{@ipv6={@ipv4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], '\x00', 'bond_slave_0\x00', {}, {}, 0x32}, 0x0, 0xa8, 0xd0, 0x48000000}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@uncond, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@empty, @ipv4=@loopback, 0x0, 0x32}}}, {{@uncond, 0x0, 0x208, 0x230, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@rt={{0x138}, {0x0, [], 0x0, 0x0, 0x0, [@empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, @empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, @mcast2, @mcast2, @private1, @rand_addr=' \x01\x00', @loopback, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @remote, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private0]}}]}, @HL={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x870)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c000010040305000000000000ffff0100000000", @ANYRES32=0x0, @ANYBLOB="000000000000000014001280090001007663616e000000000400028008000a00", @ANYRES16=r10], 0x3c}}, 0x0)

kernel console output (not intermixed with test programs):

n_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.886518][ T5230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.899513][ T5230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.918678][ T5230] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.965579][ T5230] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.981240][ T5230] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.011756][ T5230] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.031544][ T5230] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.064380][ T5232] Bluetooth: hci0: command tx timeout
[   61.100072][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.118566][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.146764][ T5234] Bluetooth: hci2: command tx timeout
[   61.148386][ T5333] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.10'.
[   61.152190][ T5234] Bluetooth: hci4: command tx timeout
[   61.170353][ T5245] Bluetooth: hci3: command tx timeout
[   61.182848][ T5232] Bluetooth: hci1: command tx timeout
[   61.198132][ T2928] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.217428][ T5333] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10'.
[   61.235246][ T5333] syz_tun: entered promiscuous mode
[   61.240854][ T5333] macsec1: entered promiscuous mode
[   61.246600][ T2928] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.271057][ T5333] syz_tun: left promiscuous mode
[   61.448214][ T5343] netlink: 14568 bytes leftover after parsing attributes in process `syz.0.11'.
[   61.480197][ T2928] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.510858][ T2928] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.569018][ T5343] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11'.
[   61.612539][ T5343] syz_tun: entered promiscuous mode
[   61.638874][ T5343] macsec1: entered promiscuous mode
[   61.665401][ T5343] syz_tun: left promiscuous mode
[   61.721137][ T5334] DRBG: could not allocate digest TFM handle: hmac(sha512)
[   61.743803][ T2988] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.784087][ T2988] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.791527][ T5353] netlink: 'syz.1.2': attribute type 1 has an invalid length.
[   61.857845][ T5353] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2'.
[   62.033664][ T5351] netlink: 'syz.2.12': attribute type 1 has an invalid length.
[   62.088777][ T5351] netlink: 224 bytes leftover after parsing attributes in process `syz.2.12'.
[   62.283158][ T5370] netlink: 'syz.4.5': attribute type 1 has an invalid length.
[   62.317945][ T5370] netlink: 224 bytes leftover after parsing attributes in process `syz.4.5'.
[   62.332423][ T5378] Zero length message leads to an empty skb
[   62.367481][ T5378] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   62.395809][ T5378] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   62.426191][ T5382] Cannot find add_set index 32768 as target
[   62.456961][ T5378] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[   62.639159][ T5391] netlink: 14568 bytes leftover after parsing attributes in process `syz.1.19'.
[   62.645070][ T5390] netlink: 'syz.4.20': attribute type 1 has an invalid length.
[   62.656633][ T5390] netlink: 224 bytes leftover after parsing attributes in process `syz.4.20'.
[   62.723162][ T5391] syz_tun: entered promiscuous mode
[   62.741967][ T5391] macsec1: entered promiscuous mode
[   62.776525][ T5391] syz_tun: left promiscuous mode
[   63.101281][ T5403] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   63.143805][ T5232] Bluetooth: hci0: command tx timeout
[   63.162894][ T5404] syz_tun: entered promiscuous mode
[   63.175349][ T5404] macsec1: entered promiscuous mode
[   63.224390][ T5232] Bluetooth: hci1: command tx timeout
[   63.229841][ T5232] Bluetooth: hci2: command tx timeout
[   63.236430][ T5232] Bluetooth: hci4: command tx timeout
[   63.242219][ T5232] Bluetooth: hci3: command tx timeout
[   63.275293][ T5404] syz_tun: left promiscuous mode
[   63.454780][ T5412] vlan2: entered promiscuous mode
[   63.653799][ T5420] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   63.752592][ T5420] wireguard0: entered promiscuous mode
[   63.762379][ T5420] wireguard0: entered allmulticast mode
[   63.849813][ T5424] syz_tun: entered promiscuous mode
[   63.894387][ T5424] macsec1: entered promiscuous mode
[   63.924973][ T5424] syz_tun: left promiscuous mode
[   64.210590][ T5435] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   64.263014][ T5435] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   64.266632][ T5442] Cannot find add_set index 32768 as target
[   64.336427][ T5444] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   64.360901][ T5435] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[   64.389634][ T5444] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.398631][ T5444] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.446931][ T5444] bridge0: entered allmulticast mode
[   64.529204][ T5452] Cannot find add_set index 32768 as target
[   64.698738][ T5456] syz_tun: entered promiscuous mode
[   64.705146][ T5456] macsec1: entered promiscuous mode
[   64.716372][ T5456] syz_tun: left promiscuous mode
[   64.849841][ T5460] ip6gretap0: entered promiscuous mode
[   64.855838][ T5460] vlan2: entered promiscuous mode
[   64.865521][ T5460] ip6gretap0: left promiscuous mode
[   65.198224][ T5466] netlink: 'syz.0.43': attribute type 1 has an invalid length.
[   65.332697][ T5473] syz_tun: entered promiscuous mode
[   65.346124][ T5473] macsec1: entered promiscuous mode
[   65.380689][ T5473] syz_tun: left promiscuous mode
[   65.420793][ T5472] bridge0: entered promiscuous mode
[   65.431842][ T5472] vlan2: entered promiscuous mode
[   65.439332][ T5472] bridge0: port 3(vlan2) entered blocking state
[   65.452438][ T5472] bridge0: port 3(vlan2) entered disabled state
[   65.470344][ T5472] vlan2: entered allmulticast mode
[   65.475745][ T5472] bridge0: entered allmulticast mode
[   65.494718][ T5472] vlan2: left allmulticast mode
[   65.499624][ T5472] bridge0: left allmulticast mode
[   65.526974][ T5472] bridge0: left promiscuous mode
[   66.066719][ T5497] __nla_validate_parse: 10 callbacks suppressed
[   66.066738][ T5497] netlink: 14568 bytes leftover after parsing attributes in process `syz.3.55'.
[   66.099669][ T5497] netlink: 4 bytes leftover after parsing attributes in process `syz.3.55'.
[   66.122500][ T5497] syz_tun: entered promiscuous mode
[   66.128188][ T5497] macsec1: entered promiscuous mode
[   66.159498][ T5497] syz_tun: left promiscuous mode
[   66.260314][ T5502] netlink: 'syz.1.56': attribute type 1 has an invalid length.
[   66.306345][ T5502] netlink: 224 bytes leftover after parsing attributes in process `syz.1.56'.
[   66.557633][ T5517] netlink: 4 bytes leftover after parsing attributes in process `syz.1.59'.
[   66.572022][ T5517] syz_tun: entered promiscuous mode
[   66.579141][ T5517] macsec1: entered promiscuous mode
[   66.592850][ T5517] syz_tun: left promiscuous mode
[   66.956229][ T5527] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   66.972351][ T5527] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   67.003512][ T5527] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[   67.017262][ T5530] Cannot find add_set index 32768 as target
[   67.057347][ T5532] netlink: 'syz.2.62': attribute type 4 has an invalid length.
[   67.094635][ T5532] netlink: 'syz.2.62': attribute type 4 has an invalid length.
[   67.159080][ T5534] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[   67.210256][ T5533] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[   67.514343][ T5543] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.67'.
[   67.539850][ T5546] netlink: 'syz.0.69': attribute type 49 has an invalid length.
[   67.576268][ T5543] netlink: 4 bytes leftover after parsing attributes in process `syz.2.67'.
[   67.602289][ T5543] syz_tun: entered promiscuous mode
[   67.608919][ T5543] macsec1: entered promiscuous mode
[   67.620104][ T5543] syz_tun: left promiscuous mode
[   67.886979][ T5558] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   67.926064][ T5558] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   67.974451][ T5566] Cannot find add_set index 32768 as target
[   68.013595][ T5558] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[   68.145520][ T5573] netlink: 76 bytes leftover after parsing attributes in process `syz.2.76'.
[   68.276614][ T5575] FAULT_INJECTION: forcing a failure.
[   68.276614][ T5575] name failslab, interval 1, probability 0, space 0, times 1
[   68.323576][ T5575] CPU: 1 UID: 0 PID: 5575 Comm: syz.1.77 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[   68.333800][ T5575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   68.343976][ T5575] Call Trace:
[   68.347287][ T5575]  <TASK>
[   68.350248][ T5575]  dump_stack_lvl+0x241/0x360
[   68.354974][ T5575]  ? __pfx_dump_stack_lvl+0x10/0x10
[   68.360206][ T5575]  ? __pfx__printk+0x10/0x10
[   68.364829][ T5575]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[   68.370834][ T5575]  ? __pfx___might_resched+0x10/0x10
[   68.376145][ T5575]  should_fail_ex+0x3b0/0x4e0
[   68.380832][ T5575]  should_failslab+0xac/0x100
[   68.385510][ T5575]  ? __alloc_skb+0x1c3/0x440
[   68.390098][ T5575]  kmem_cache_alloc_node_noprof+0x71/0x320
[   68.395899][ T5575]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   68.401876][ T5575]  __alloc_skb+0x1c3/0x440
[   68.406295][ T5575]  ? __pfx___alloc_skb+0x10/0x10
[   68.411224][ T5575]  ? lockdep_hardirqs_on+0x99/0x150
[   68.416429][ T5575]  dccp_send_close+0x92/0x370
[   68.421108][ T5575]  dccp_close+0x78c/0x1070
[   68.425530][ T5575]  ? __pfx_dccp_close+0x10/0x10
[   68.430378][ T5575]  ? down_write+0x18c/0x220
[   68.434880][ T5575]  ? ip_mc_drop_socket+0x25f/0x280
[   68.439989][ T5575]  inet_release+0x17d/0x200
[   68.444491][ T5575]  sock_close+0xbc/0x240
[   68.448734][ T5575]  ? __pfx_sock_close+0x10/0x10
[   68.453578][ T5575]  __fput+0x23f/0x880
[   68.457566][ T5575]  __x64_sys_close+0x7f/0x110
[   68.462235][ T5575]  do_syscall_64+0xf3/0x230
[   68.466733][ T5575]  ? clear_bhb_loop+0x35/0x90
[   68.471404][ T5575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.477299][ T5575] RIP: 0033:0x7f23e2b7dff9
[   68.481715][ T5575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.501500][ T5575] RSP: 002b:00007f23e3a20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[   68.509911][ T5575] RAX: ffffffffffffffda RBX: 00007f23e2d35f80 RCX: 00007f23e2b7dff9
[   68.517876][ T5575] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[   68.525851][ T5575] RBP: 00007f23e3a20090 R08: 0000000000000000 R09: 0000000000000000
[   68.533817][ T5575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.541780][ T5575] R13: 0000000000000000 R14: 00007f23e2d35f80 R15: 00007ffdbc4fcc58
[   68.549759][ T5575]  </TASK>
[   68.554701][ T5579] netlink: 'syz.0.80': attribute type 4 has an invalid length.
[   68.617891][ T5581] netlink: 28 bytes leftover after parsing attributes in process `syz.2.79'.
[   68.634668][ T5579] netlink: 'syz.0.80': attribute type 4 has an invalid length.
[   68.742710][ T5581] dccp_close: ABORT with 64 bytes unread
[   68.971844][ T5596] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   68.998290][ T5596] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   69.025408][ T5601] Cannot find add_set index 32768 as target
[   69.037462][ T5596] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[   69.110527][ T5602] gre1: entered allmulticast mode
[   69.260805][ T5616] netlink: 12 bytes leftover after parsing attributes in process `syz.0.93'.
[   69.306682][ T5609] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[   69.321169][ T5610] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[   69.422462][ T5630] netlink: 48 bytes leftover after parsing attributes in process `syz.3.95'.
[   69.553102][ T5637] netlink: 'syz.0.97': attribute type 10 has an invalid length.
[   69.845722][ T5650] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   69.881432][ T5650] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   69.892550][ T5654] Cannot find add_set index 32768 as target
[   69.906455][ T5650] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[   70.100945][ T5662] warning: `syz.3.107' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   70.390118][ T5674] syz.4.112 uses obsolete (PF_INET,SOCK_PACKET)
[   70.899632][ T5696] netlink: zone id is out of range
[   70.900753][ T5697] netlink: zone id is out of range
[   70.906230][ T5696] netlink: zone id is out of range
[   70.920319][ T5697] netlink: zone id is out of range
[   70.931712][ T5696] netlink: zone id is out of range
[   70.937595][ T5697] netlink: zone id is out of range
[   70.946241][ T5697] netlink: zone id is out of range
[   70.976603][ T5696] netlink: zone id is out of range
[   70.981206][ T5697] netlink: zone id is out of range
[   71.170197][ T5710] __nla_validate_parse: 2 callbacks suppressed
[   71.170217][ T5710] netlink: 212 bytes leftover after parsing attributes in process `syz.3.123'.
[   71.328783][ T5716] netlink: 14568 bytes leftover after parsing attributes in process `syz.1.124'.
[   71.396862][ T5716] netlink: 4 bytes leftover after parsing attributes in process `syz.1.124'.
[   71.431477][ T5716] syz_tun: entered promiscuous mode
[   71.437326][ T5716] macsec1: entered promiscuous mode
[   71.526608][ T5716] syz_tun: left promiscuous mode
[   71.639988][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[   71.736467][ T5724] netlink: 'syz.3.131': attribute type 1 has an invalid length.
[   71.765708][ T5724] netlink: 224 bytes leftover after parsing attributes in process `syz.3.131'.
[   71.889205][ T5743] netlink: 'syz.0.134': attribute type 10 has an invalid length.
[   72.020971][ T5750] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   72.031625][ T5750] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   72.040959][ T5750] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[   72.079850][ T5754] Cannot find add_set index 32768 as target
[   72.119938][ T5231] IPVS: starting estimator thread 0...
[   72.223837][ T5756] IPVS: using max 20 ests per chain, 48000 per kthread
[   72.482027][ T5769] netlink: 16 bytes leftover after parsing attributes in process `syz.0.145'.
[   72.507402][ T5769] netlink: 48 bytes leftover after parsing attributes in process `syz.0.145'.
[   72.537737][ T5769] bridge1: entered promiscuous mode
[   72.550409][ T5770] netlink: 14568 bytes leftover after parsing attributes in process `syz.3.146'.
[   72.562113][ T5774] netlink: 4 bytes leftover after parsing attributes in process `syz.3.146'.
[   72.588238][ T5774] syz_tun: entered promiscuous mode
[   72.608194][ T5774] macsec1: entered promiscuous mode
[   72.675313][ T5774] syz_tun: left promiscuous mode
[   73.112818][ T5797] netlink: 4 bytes leftover after parsing attributes in process `syz.4.153'.
[   73.158824][ T5797] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   73.176484][ T5797] batman_adv: batadv0: Removing interface: batadv_slave_0
[   73.272437][ T5797] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   73.286152][ T5797] batman_adv: batadv0: Removing interface: batadv_slave_1
[   73.930307][ T5823] netlink: 'syz.1.160': attribute type 1 has an invalid length.
[   73.938331][ T5823] netlink: 224 bytes leftover after parsing attributes in process `syz.1.160'.
[   74.007205][ T5827] syz_tun: entered promiscuous mode
[   74.028496][ T5826] netlink: 'syz.0.161': attribute type 1 has an invalid length.
[   74.039500][ T5827] macsec1: entered promiscuous mode
[   74.057793][ T5827] syz_tun: left promiscuous mode
[   74.436709][ T5848] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   74.459953][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.467527][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.478173][ T5848] bridge0: entered allmulticast mode
[   74.648197][ T5858] netlink: 'syz.4.175': attribute type 1 has an invalid length.
[   75.071596][ T5883] x_tables: ip_tables: udp match: only valid for protocol 17
[   75.076590][ T5884] macsec1: entered promiscuous mode
[   75.109026][ T5884] syz_tun: entered promiscuous mode
[   75.130946][ T5884] syz_tun: left promiscuous mode
[   75.237762][ T5889] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   75.246885][ T5889] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   75.260400][ T5889] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[   75.299305][ T5892] Cannot find add_set index 32768 as target
[   75.470129][ T5898] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   75.495572][ T5898] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.503159][ T5898] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.512630][ T5898] bridge0: entered allmulticast mode
[   75.923191][ T5914] Driver unsupported XDP return value 0 on prog  (id 156) dev N/A, expect packet loss!
[   76.219974][    C1] net_ratelimit: 78 callbacks suppressed
[   76.219993][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[   76.252602][ T5925] __nla_validate_parse: 8 callbacks suppressed
[   76.252621][ T5925] netlink: 4 bytes leftover after parsing attributes in process `syz.2.198'.
[   76.327496][ T5931] netlink: 'syz.1.201': attribute type 1 has an invalid length.
[   76.344757][ T5931] netlink: 224 bytes leftover after parsing attributes in process `syz.1.201'.
[   76.554870][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[   76.658395][ T5945] FAULT_INJECTION: forcing a failure.
[   76.658395][ T5945] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   76.673665][ T5945] CPU: 0 UID: 0 PID: 5945 Comm: syz.3.207 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[   76.683954][ T5945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   76.694039][ T5945] Call Trace:
[   76.697344][ T5945]  <TASK>
[   76.700294][ T5945]  dump_stack_lvl+0x241/0x360
[   76.705020][ T5945]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.710258][ T5945]  ? __pfx__printk+0x10/0x10
[   76.714885][ T5945]  ? __pfx_lock_release+0x10/0x10
[   76.719945][ T5945]  should_fail_ex+0x3b0/0x4e0
[   76.724663][ T5945]  _copy_from_user+0x2f/0xe0
[   76.729295][ T5945]  copy_msghdr_from_user+0xae/0x680
[   76.734523][ T5945]  ? __pfx___might_resched+0x10/0x10
[   76.739850][ T5945]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   76.745685][ T5945]  ? rcu_is_watching+0x15/0xb0
[   76.750473][ T5945]  ? __might_fault+0xaa/0x120
[   76.755185][ T5945]  do_recvmmsg+0x3f9/0xad0
[   76.759642][ T5945]  ? __pfx_do_recvmmsg+0x10/0x10
[   76.764709][ T5945]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   76.770621][ T5945]  ? ksys_write+0x229/0x2b0
[   76.775147][ T5945]  ? __pfx_lock_release+0x10/0x10
[   76.780197][ T5945]  ? vfs_write+0x7bf/0xc90
[   76.784632][ T5945]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   76.790624][ T5945]  __x64_sys_recvmmsg+0x199/0x250
[   76.795665][ T5945]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[   76.801207][ T5945]  ? do_syscall_64+0x100/0x230
[   76.805972][ T5945]  ? do_syscall_64+0xb6/0x230
[   76.810685][ T5945]  do_syscall_64+0xf3/0x230
[   76.815180][ T5945]  ? clear_bhb_loop+0x35/0x90
[   76.819854][ T5945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.825748][ T5945] RIP: 0033:0x7f6d1fb7dff9
[   76.830160][ T5945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.849768][ T5945] RSP: 002b:00007f6d2094d038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   76.858186][ T5945] RAX: ffffffffffffffda RBX: 00007f6d1fd35f80 RCX: 00007f6d1fb7dff9
[   76.866152][ T5945] RDX: 0000000000000f00 RSI: 0000000020000400 RDI: 000000000000000d
[   76.874123][ T5945] RBP: 00007f6d2094d090 R08: 0000000000000000 R09: 0000000000000000
[   76.882085][ T5945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   76.890048][ T5945] R13: 0000000000000000 R14: 00007f6d1fd35f80 R15: 00007fff42757588
[   76.898026][ T5945]  </TASK>
[   76.939444][  T940] cfg80211: failed to load regulatory.db
[   76.983666][ T5960] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.213'.
[   77.014104][ T5961] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   77.025339][ T5960] netlink: 4 bytes leftover after parsing attributes in process `syz.2.213'.
[   77.033670][ T5961] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   77.042574][ T5961] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[   77.047363][ T5960] syz_tun: entered promiscuous mode
[   77.062072][ T5960] macsec1: entered promiscuous mode
[   77.080849][ T5960] syz_tun: left promiscuous mode
[   77.125951][ T5966] Cannot find add_set index 32768 as target
[   77.188026][ T5968] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   77.272631][ T5972] netlink: 28 bytes leftover after parsing attributes in process `syz.1.218'.
[   77.289296][ T5970] netlink: 'syz.4.217': attribute type 1 has an invalid length.
[   77.311323][ T5970] netlink: 224 bytes leftover after parsing attributes in process `syz.4.217'.
[   77.491085][ T5976] netlink: 'syz.3.220': attribute type 9 has an invalid length.
[   77.500995][ T5981] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[   77.511712][ T5976] netlink: 134660 bytes leftover after parsing attributes in process `syz.3.220'.
[   77.540284][ T5977] netdevsim netdevsim2 netdevsim0: left promiscuous mode
[   77.876656][ T5999] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.230'.
[   77.909184][ T5999] netlink: 4 bytes leftover after parsing attributes in process `syz.2.230'.
[   77.922965][ T5999] syz_tun: entered promiscuous mode
[   77.929103][ T5999] macsec1: entered promiscuous mode
[   77.967601][ T5999] syz_tun: left promiscuous mode
[   78.035241][ T6001] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   78.096437][ T6012] netlink: 'syz.4.234': attribute type 1 has an invalid length.
[   78.104487][ T6012] netlink: 224 bytes leftover after parsing attributes in process `syz.4.234'.
[   78.386634][ T6022] vlan2: entered promiscuous mode
[   78.663615][ T6038] syz_tun: entered promiscuous mode
[   78.669896][ T6038] macsec1: entered promiscuous mode
[   78.691494][ T6038] syz_tun: left promiscuous mode
[   78.741143][ T6040] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   78.865371][ T6042] netlink: 'syz.1.247': attribute type 1 has an invalid length.
[   79.163170][ T6058] netlink: 'syz.2.256': attribute type 4 has an invalid length.
[   79.197066][ T6058] netlink: 'syz.2.256': attribute type 4 has an invalid length.
[   79.420470][ T6066] syz_tun: entered promiscuous mode
[   79.442949][ T6066] macsec1: entered promiscuous mode
[   79.480082][ T6066] syz_tun: left promiscuous mode
[   79.733338][ T6074] netlink: 'syz.3.263': attribute type 1 has an invalid length.
[   79.895880][ T6097] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[   79.920941][ T6097] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   80.035677][ T6104] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   80.059126][ T6104] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   80.076820][ T6104] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[   80.117819][ T6111] Cannot find add_set index 32768 as target
[   80.130410][ T6110] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.147443][ T6110] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.154750][ T6110] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.325981][ T6115] syz_tun: entered promiscuous mode
[   80.345552][ T6115] macsec1: entered promiscuous mode
[   80.371267][ T6115] syz_tun: left promiscuous mode
[   80.450680][ T6122] netlink: 'syz.0.279': attribute type 1 has an invalid length.
[   80.949649][ T6146] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   81.206254][ T6153] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   81.326581][ T6161] netlink: 'syz.2.293': attribute type 1 has an invalid length.
[   81.348738][ T6161] __nla_validate_parse: 15 callbacks suppressed
[   81.348756][ T6161] netlink: 224 bytes leftover after parsing attributes in process `syz.2.293'.
[   81.437283][ T6175] Cannot find add_set index 32768 as target
[   81.486166][ T6172] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   81.531594][ T6172] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   81.561394][ T6172] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[   82.457812][ T6206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.310'.
[   83.381776][ T6203] netlink: 'syz.0.309': attribute type 10 has an invalid length.
[   83.604340][ T6236] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   83.681308][ T6236] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   83.684074][ T6238] Cannot find add_set index 32768 as target
[   83.727951][ T6236] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[   83.772437][ T6242] nlmon0: entered promiscuous mode
[   83.789767][ T6242] vlan2: entered promiscuous mode
[   83.817867][ T6242] nlmon0: left promiscuous mode
[   84.067538][ T6253] trusted_key: syz.3.328 sent an empty control message without MSG_MORE.
[   84.227258][ T6258] No such timeout policy "syz0"
[   84.356914][ T6264] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.333'.
[   84.382371][ T6265] netlink: 8 bytes leftover after parsing attributes in process `syz.3.331'.
[   84.401449][ T6263] netlink: 14568 bytes leftover after parsing attributes in process `syz.1.332'.
[   84.432054][ T6265] netlink: 28 bytes leftover after parsing attributes in process `syz.3.331'.
[   84.478076][ T6264] netlink: 4 bytes leftover after parsing attributes in process `syz.2.333'.
[   84.546564][ T6264] syz_tun: entered promiscuous mode
[   84.576356][ T6264] macsec1: entered promiscuous mode
[   84.610557][ T6264] syz_tun: left promiscuous mode
[   84.681439][ T6263] netlink: 4 bytes leftover after parsing attributes in process `syz.1.332'.
[   84.731304][ T6263] syz_tun: entered promiscuous mode
[   84.737755][ T6263] macsec1: entered promiscuous mode
[   84.749152][ T6263] syz_tun: left promiscuous mode
[   84.781902][ T6277] netlink: 'syz.0.337': attribute type 1 has an invalid length.
[   84.794428][ T6277] netlink: 224 bytes leftover after parsing attributes in process `syz.0.337'.
[   84.864697][ T6287] FAULT_INJECTION: forcing a failure.
[   84.864697][ T6287] name failslab, interval 1, probability 0, space 0, times 0
[   84.899459][ T6287] CPU: 1 UID: 0 PID: 6287 Comm: syz.4.340 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[   84.909748][ T6287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   84.919810][ T6287] Call Trace:
[   84.923086][ T6287]  <TASK>
[   84.926017][ T6287]  dump_stack_lvl+0x241/0x360
[   84.930700][ T6287]  ? __pfx_dump_stack_lvl+0x10/0x10
[   84.935900][ T6287]  ? __pfx__printk+0x10/0x10
[   84.940492][ T6287]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[   84.946473][ T6287]  ? __pfx___might_resched+0x10/0x10
[   84.951760][ T6287]  should_fail_ex+0x3b0/0x4e0
[   84.956441][ T6287]  should_failslab+0xac/0x100
[   84.961111][ T6287]  ? __alloc_skb+0x1c3/0x440
[   84.965702][ T6287]  kmem_cache_alloc_node_noprof+0x71/0x320
[   84.971508][ T6287]  __alloc_skb+0x1c3/0x440
[   84.975924][ T6287]  ? __pfx___alloc_skb+0x10/0x10
[   84.980865][ T6287]  ? netlink_autobind+0xd6/0x2f0
[   84.985884][ T6287]  ? netlink_autobind+0x2b0/0x2f0
[   84.990904][ T6287]  netlink_sendmsg+0x638/0xcb0
[   84.995676][ T6287]  ? __pfx_netlink_sendmsg+0x10/0x10
[   85.000998][ T6287]  ? aa_sock_msg_perm+0x91/0x160
[   85.005953][ T6287]  ? __pfx_netlink_sendmsg+0x10/0x10
[   85.011254][ T6287]  __sock_sendmsg+0x221/0x270
[   85.015936][ T6287]  ____sys_sendmsg+0x52a/0x7e0
[   85.020710][ T6287]  ? __pfx_____sys_sendmsg+0x10/0x10
[   85.026007][ T6287]  __sys_sendmsg+0x292/0x380
[   85.030594][ T6287]  ? __pfx___sys_sendmsg+0x10/0x10
[   85.035707][ T6287]  ? __pfx_vfs_write+0x10/0x10
[   85.040487][ T6287]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   85.046818][ T6287]  ? do_syscall_64+0x100/0x230
[   85.051580][ T6287]  ? do_syscall_64+0xb6/0x230
[   85.056250][ T6287]  do_syscall_64+0xf3/0x230
[   85.060746][ T6287]  ? clear_bhb_loop+0x35/0x90
[   85.065421][ T6287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.071316][ T6287] RIP: 0033:0x7fe52cb7dff9
[   85.075726][ T6287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.095327][ T6287] RSP: 002b:00007fe52da46038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   85.103738][ T6287] RAX: ffffffffffffffda RBX: 00007fe52cd35f80 RCX: 00007fe52cb7dff9
[   85.111701][ T6287] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[   85.119674][ T6287] RBP: 00007fe52da46090 R08: 0000000000000000 R09: 0000000000000000
[   85.127666][ T6287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.135650][ T6287] R13: 0000000000000000 R14: 00007fe52cd35f80 R15: 00007fffee0561c8
[   85.143635][ T6287]  </TASK>
[   85.174019][ T6291] netlink: 128 bytes leftover after parsing attributes in process `syz.2.342'.
[   85.269428][ T6289] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   85.401526][ T6298] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   85.410145][ T6298] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   85.420989][ T6298] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[   85.812337][ T6323] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   85.884269][ T6323] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.891860][ T6323] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.934290][ T6323] bridge0: entered allmulticast mode
[   86.027554][ T6333] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   86.074006][ T6333] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   86.438959][ T6353] pimreg: entered allmulticast mode
[   86.461006][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[   86.473923][ T6353] pimreg: left allmulticast mode
[   86.767989][ T6374] Cannot find add_set index 32768 as target
[   86.824661][ T6372] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   86.864341][ T6379] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   86.865977][ T6372] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   86.908409][ T6372] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[   87.118880][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[   87.201398][ T6388] FAULT_INJECTION: forcing a failure.
[   87.201398][ T6388] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   87.243833][ T6388] CPU: 1 UID: 0 PID: 6388 Comm: syz.0.372 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[   87.254133][ T6388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   87.264197][ T6388] Call Trace:
[   87.267472][ T6388]  <TASK>
[   87.270398][ T6388]  dump_stack_lvl+0x241/0x360
[   87.275090][ T6388]  ? __pfx_dump_stack_lvl+0x10/0x10
[   87.280297][ T6388]  ? __pfx__printk+0x10/0x10
[   87.284887][ T6388]  ? __pfx_lock_release+0x10/0x10
[   87.289918][ T6388]  should_fail_ex+0x3b0/0x4e0
[   87.294598][ T6388]  _copy_from_user+0x2f/0xe0
[   87.299210][ T6388]  copy_msghdr_from_user+0xae/0x680
[   87.304418][ T6388]  ? __pfx___might_resched+0x10/0x10
[   87.309724][ T6388]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   87.315539][ T6388]  ? rcu_is_watching+0x15/0xb0
[   87.320307][ T6388]  ? __might_fault+0xaa/0x120
[   87.325007][ T6388]  do_recvmmsg+0x3f9/0xad0
[   87.329431][ T6388]  ? __pfx_do_recvmmsg+0x10/0x10
[   87.334376][ T6388]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   87.340262][ T6388]  ? ksys_write+0x229/0x2b0
[   87.344764][ T6388]  ? __pfx_lock_release+0x10/0x10
[   87.349791][ T6388]  ? vfs_write+0x7bf/0xc90
[   87.354205][ T6388]  ? kmem_cache_free+0x1a2/0x420
[   87.359143][ T6388]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   87.365126][ T6388]  __x64_sys_recvmmsg+0x199/0x250
[   87.370146][ T6388]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[   87.375692][ T6388]  ? do_syscall_64+0x100/0x230
[   87.380457][ T6388]  ? do_syscall_64+0xb6/0x230
[   87.385128][ T6388]  do_syscall_64+0xf3/0x230
[   87.389623][ T6388]  ? clear_bhb_loop+0x35/0x90
[   87.394297][ T6388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.400188][ T6388] RIP: 0033:0x7fbecb37dff9
[   87.404597][ T6388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.424198][ T6388] RSP: 002b:00007fbecc1ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   87.432695][ T6388] RAX: ffffffffffffffda RBX: 00007fbecb535f80 RCX: 00007fbecb37dff9
[   87.440662][ T6388] RDX: 0000000000000f00 RSI: 0000000020000400 RDI: 000000000000000d
[   87.448628][ T6388] RBP: 00007fbecc1ff090 R08: 0000000000000000 R09: 0000000000000000
[   87.456592][ T6388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   87.464558][ T6388] R13: 0000000000000000 R14: 00007fbecb535f80 R15: 00007ffccf9b8018
[   87.472536][ T6388]  </TASK>
[   87.537695][ T6396] __nla_validate_parse: 4 callbacks suppressed
[   87.537713][ T6396] netlink: 14568 bytes leftover after parsing attributes in process `syz.3.375'.
[   87.582035][ T6401] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.376'.
[   87.619420][ T6396] netlink: 4 bytes leftover after parsing attributes in process `syz.3.375'.
[   87.640252][ T6396] syz_tun: entered promiscuous mode
[   87.646849][ T6396] macsec1: entered promiscuous mode
[   87.666046][ T6396] syz_tun: left promiscuous mode
[   87.684994][ T6401] netlink: 4 bytes leftover after parsing attributes in process `syz.2.376'.
[   87.698502][ T6401] syz_tun: entered promiscuous mode
[   87.702800][ T6406] netlink: 8 bytes leftover after parsing attributes in process `syz.1.380'.
[   87.705006][ T6401] macsec1: entered promiscuous mode
[   87.727487][ T6406] netlink: 8 bytes leftover after parsing attributes in process `syz.1.380'.
[   87.743302][ T6401] syz_tun: left promiscuous mode
[   87.937028][ T6414] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   88.142785][ T6433] netlink: 8 bytes leftover after parsing attributes in process `syz.2.388'.
[   88.342516][ T6442] netlink: 14568 bytes leftover after parsing attributes in process `syz.3.392'.
[   88.401324][ T6442] netlink: 4 bytes leftover after parsing attributes in process `syz.3.392'.
[   88.420865][ T6442] syz_tun: entered promiscuous mode
[   88.441271][ T6442] macsec1: entered promiscuous mode
[   88.457178][ T6442] syz_tun: left promiscuous mode
[   88.576464][ T6452] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   88.597630][ T6452] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   88.620511][ T6452] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[   88.622512][ T6455] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[   88.652348][ T6456] Cannot find add_set index 32768 as target
[   88.672636][ T6454] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   88.819570][ T6462] hsr0: entered promiscuous mode
[   88.889248][ T6464] netlink: 8 bytes leftover after parsing attributes in process `syz.3.401'.
[   89.055969][ T6469] vlan2: entered promiscuous mode
[   89.418162][ T6487] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   89.468219][ T6489] syz_tun: entered promiscuous mode
[   89.490050][ T6489] macsec1: entered promiscuous mode
[   89.542880][ T6489] syz_tun: left promiscuous mode
[   89.831705][ T6511] unsupported nlmsg_type 40
[   90.136561][ T6532] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   90.159710][ T6534] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   90.178913][ T6532] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   90.206399][ T6538] Cannot find add_set index 32768 as target
[   90.240958][ T6532] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[   92.461673][ T6542] netlink: 'syz.3.426': attribute type 4 has an invalid length.
[   92.490113][ T6543] netlink: 'syz.3.426': attribute type 4 has an invalid length.
[   92.721607][ T6560] __nla_validate_parse: 9 callbacks suppressed
[   92.721627][ T6560] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.431'.
[   92.782218][ T6560] netlink: 4 bytes leftover after parsing attributes in process `syz.2.431'.
[   92.817394][ T6560] syz_tun: entered promiscuous mode
[   92.836854][ T6560] macsec1: entered promiscuous mode
[   92.844833][ T6560] syz_tun: left promiscuous mode
[   92.896425][ T6570] FAULT_INJECTION: forcing a failure.
[   92.896425][ T6570] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.944688][ T6572] netlink: 32 bytes leftover after parsing attributes in process `syz.4.436'.
[   92.946084][ T6570] CPU: 0 UID: 0 PID: 6570 Comm: syz.0.434 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[   92.963810][ T6570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   92.964710][ T6572] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   92.973866][ T6570] Call Trace:
[   92.973881][ T6570]  <TASK>
[   92.973889][ T6570]  dump_stack_lvl+0x241/0x360
[   92.973922][ T6570]  ? __pfx_dump_stack_lvl+0x10/0x10
[   92.973946][ T6570]  ? __pfx__printk+0x10/0x10
[   92.973970][ T6570]  ? __pfx_lock_release+0x10/0x10
[   93.009520][ T6570]  should_fail_ex+0x3b0/0x4e0
[   93.014237][ T6570]  _copy_from_user+0x2f/0xe0
[   93.018859][ T6570]  copy_msghdr_from_user+0xae/0x680
[   93.024088][ T6570]  ? __pfx___might_resched+0x10/0x10
[   93.029400][ T6570]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   93.035215][ T6570]  ? rcu_is_watching+0x15/0xb0
[   93.039977][ T6570]  ? __might_fault+0xaa/0x120
[   93.044667][ T6570]  do_recvmmsg+0x3f9/0xad0
[   93.049106][ T6570]  ? __pfx_do_recvmmsg+0x10/0x10
[   93.054073][ T6570]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   93.059993][ T6570]  ? ksys_write+0x229/0x2b0
[   93.064523][ T6570]  ? __pfx_lock_release+0x10/0x10
[   93.069583][ T6570]  ? vfs_write+0x7bf/0xc90
[   93.074030][ T6570]  ? kmem_cache_free+0x1a2/0x420
[   93.079004][ T6570]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   93.085007][ T6570]  __x64_sys_recvmmsg+0x199/0x250
[   93.090030][ T6570]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[   93.095572][ T6570]  ? do_syscall_64+0x100/0x230
[   93.100329][ T6570]  ? do_syscall_64+0xb6/0x230
[   93.105011][ T6570]  do_syscall_64+0xf3/0x230
[   93.109551][ T6570]  ? clear_bhb_loop+0x35/0x90
[   93.114248][ T6570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.120165][ T6570] RIP: 0033:0x7fbecb37dff9
[   93.124602][ T6570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.144225][ T6570] RSP: 002b:00007fbecc1de038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   93.152667][ T6570] RAX: ffffffffffffffda RBX: 00007fbecb536058 RCX: 00007fbecb37dff9
[   93.160639][ T6570] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[   93.168611][ T6570] RBP: 00007fbecc1de090 R08: 0000000000000000 R09: 0000000000000000
[   93.176577][ T6570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.184555][ T6570] R13: 0000000000000000 R14: 00007fbecb536058 R15: 00007ffccf9b8018
[   93.192541][ T6570]  </TASK>
[   93.337019][ T6582] netlink: 8 bytes leftover after parsing attributes in process `syz.2.440'.
[   93.351465][ T6578] FAULT_INJECTION: forcing a failure.
[   93.351465][ T6578] name failslab, interval 1, probability 0, space 0, times 0
[   93.369356][ T6578] CPU: 1 UID: 0 PID: 6578 Comm: syz.3.441 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[   93.379655][ T6578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   93.389742][ T6578] Call Trace:
[   93.393046][ T6578]  <TASK>
[   93.396002][ T6578]  dump_stack_lvl+0x241/0x360
[   93.400714][ T6578]  ? __pfx_dump_stack_lvl+0x10/0x10
[   93.405941][ T6578]  ? __pfx__printk+0x10/0x10
[   93.410564][ T6578]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[   93.416142][ T6578]  ? __pfx___might_resched+0x10/0x10
[   93.420915][ T6588] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   93.421440][ T6578]  should_fail_ex+0x3b0/0x4e0
[   93.434275][ T6578]  ? skb_clone+0x20c/0x390
[   93.438720][ T6578]  should_failslab+0xac/0x100
[   93.442904][ T6588] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   93.443407][ T6578]  ? skb_clone+0x20c/0x390
[   93.443434][ T6578]  kmem_cache_alloc_noprof+0x6c/0x2a0
[   93.443456][ T6578]  ? __pfx___alloc_skb+0x10/0x10
[   93.443480][ T6578]  skb_clone+0x20c/0x390
[   93.443500][ T6578]  dccp_send_close+0x1f6/0x370
[   93.443529][ T6578]  dccp_close+0x78c/0x1070
[   93.443553][ T6578]  ? __pfx_dccp_close+0x10/0x10
[   93.443572][ T6578]  ? down_write+0x18c/0x220
[   93.457764][ T6588] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[   93.461805][ T6578]  ? ip_mc_drop_socket+0x25f/0x280
[   93.461840][ T6578]  inet_release+0x17d/0x200
[   93.475805][ T6591] Cannot find add_set index 32768 as target
[   93.512510][ T6578]  sock_close+0xbc/0x240
[   93.516763][ T6578]  ? __pfx_sock_close+0x10/0x10
[   93.521629][ T6578]  __fput+0x23f/0x880
[   93.525622][ T6578]  __x64_sys_close+0x7f/0x110
[   93.530299][ T6578]  do_syscall_64+0xf3/0x230
[   93.534833][ T6578]  ? clear_bhb_loop+0x35/0x90
[   93.539521][ T6578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.545431][ T6578] RIP: 0033:0x7f6d1fb7dff9
[   93.549839][ T6578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.569531][ T6578] RSP: 002b:00007f6d2094d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[   93.577941][ T6578] RAX: ffffffffffffffda RBX: 00007f6d1fd35f80 RCX: 00007f6d1fb7dff9
[   93.585911][ T6578] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[   93.593880][ T6578] RBP: 00007f6d2094d090 R08: 0000000000000000 R09: 0000000000000000
[   93.601848][ T6578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.609821][ T6578] R13: 0000000000000000 R14: 00007f6d1fd35f80 R15: 00007fff42757588
[   93.617817][ T6578]  </TASK>
[   93.822349][ T6594] netlink: 8 bytes leftover after parsing attributes in process `syz.2.444'.
[   93.871183][ T6599] syz.0.445[6599] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.871279][ T6599] syz.0.445[6599] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.911112][ T6599] syz.0.445[6599] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.991537][ T6605] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.447'.
[   94.042885][ T6605] netlink: 4 bytes leftover after parsing attributes in process `syz.2.447'.
[   94.082193][ T6605] syz_tun: entered promiscuous mode
[   94.095963][ T6605] macsec1: entered promiscuous mode
[   94.117572][ T6605] syz_tun: left promiscuous mode
[   94.175618][ T6608] netlink: 32 bytes leftover after parsing attributes in process `syz.0.449'.
[   94.209467][ T6608] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   94.299998][ T6611] netlink: 172 bytes leftover after parsing attributes in process `syz.4.451'.
[   94.361412][ T6615] netlink: 8 bytes leftover after parsing attributes in process `syz.2.453'.
[   94.868753][ T6639] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   94.888257][ T6639] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.895843][ T6639] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.922522][ T6639] bridge0: entered allmulticast mode
[   94.955301][ T6648] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   94.970313][ T6645] syz_tun: entered promiscuous mode
[   94.996820][ T6645] macsec1: entered promiscuous mode
[   95.006157][ T6648] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   95.046308][ T6650] Cannot find add_set index 32768 as target
[   95.054341][ T6645] syz_tun: left promiscuous mode
[   95.074770][ T6648] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[   95.630321][ T6669] gre1: entered allmulticast mode
[   95.674524][ T6676] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   95.857872][ T6684] macsec1: entered promiscuous mode
[   95.875049][ T6684] syz_tun: entered promiscuous mode
[   95.900852][ T6684] syz_tun: left promiscuous mode
[   96.078099][ T6695] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.352589][ T6714] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   96.416264][ T6716] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   96.455043][ T6716] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   96.495268][ T6716] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[   96.516256][ T6722] Cannot find add_set index 32768 as target
[   96.607324][ T6729] syz_tun: entered promiscuous mode
[   96.635908][ T6729] macsec1: entered promiscuous mode
[   96.677821][ T6729] syz_tun: left promiscuous mode
[   97.040297][ T6749] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   97.375119][ T6767] dccp_invalid_packet: P.type (SYNC) not Data || [Data]Ack, while P.X == 0
[   97.532195][ T6773] macsec1: entered promiscuous mode
[   97.551563][ T6773] syz_tun: entered promiscuous mode
[   97.595980][ T6773] syz_tun: left promiscuous mode
[   97.750163][ T6785] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   97.773982][ T6771] __nla_validate_parse: 24 callbacks suppressed
[   97.774002][ T6771] netlink: 4 bytes leftover after parsing attributes in process `syz.4.514'.
[   98.050175][ T6795] can: request_module (can-proto-5) failed.
[   98.090902][ T6805] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   98.111236][ T6805] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   98.139415][ T6805] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[   98.171416][ T6807] Cannot find add_set index 32768 as target
[   98.344928][ T6815] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   98.378617][ T6819] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.533'.
[   98.409534][ T6819] netlink: 4 bytes leftover after parsing attributes in process `syz.2.533'.
[   98.440502][ T6819] syz_tun: entered promiscuous mode
[   98.449933][ T6819] macsec1: entered promiscuous mode
[   98.465218][ T6819] syz_tun: left promiscuous mode
[   98.498458][ T6823] netlink: 4 bytes leftover after parsing attributes in process `syz.0.538'.
[   98.819751][ T6833] netlink: 4 bytes leftover after parsing attributes in process `syz.0.542'.
[   98.849665][ T6835] xt_CT: You must specify a L4 protocol and not use inversions on it
[   98.856082][ T6833] bridge_slave_1: left allmulticast mode
[   98.875928][ T6833] bridge_slave_1: left promiscuous mode
[   98.881826][ T6833] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.901682][ T6833] bridge_slave_0: left allmulticast mode
[   98.923590][ T6833] bridge_slave_0: left promiscuous mode
[   98.929591][ T6833] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.036093][ T6838] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[   99.049367][ T6842] nlmon0: entered promiscuous mode
[   99.054801][ T6842] vlan2: entered promiscuous mode
[   99.062421][ T6842] nlmon0: left promiscuous mode
[   99.097196][ T6846] netlink: 8 bytes leftover after parsing attributes in process `syz.3.547'.
[   99.126657][ T6844] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   99.215200][ T6850] netlink: 14568 bytes leftover after parsing attributes in process `syz.0.550'.
[   99.274616][ T6850] netlink: 4 bytes leftover after parsing attributes in process `syz.0.550'.
[   99.317489][ T6859] FAULT_INJECTION: forcing a failure.
[   99.317489][ T6859] name failslab, interval 1, probability 0, space 0, times 0
[   99.331770][ T6850] macsec1: entered promiscuous mode
[   99.354111][ T6850] syz_tun: entered promiscuous mode
[   99.374377][ T6859] CPU: 1 UID: 0 PID: 6859 Comm: syz.2.553 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[   99.384672][ T6859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   99.394755][ T6859] Call Trace:
[   99.398408][ T6859]  <TASK>
[   99.401358][ T6859]  dump_stack_lvl+0x241/0x360
[   99.406095][ T6859]  ? __pfx_dump_stack_lvl+0x10/0x10
[   99.411336][ T6859]  ? __pfx__printk+0x10/0x10
[   99.415955][ T6859]  ? fs_reclaim_acquire+0x93/0x140
[   99.421121][ T6859]  ? __pfx___might_resched+0x10/0x10
[   99.426415][ T6859]  should_fail_ex+0x3b0/0x4e0
[   99.431124][ T6859]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[   99.436864][ T6859]  should_failslab+0xac/0x100
[   99.441568][ T6859]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[   99.447308][ T6859]  __kmalloc_noprof+0xd8/0x400
[   99.452091][ T6859]  tomoyo_realpath_from_path+0xcf/0x5e0
[   99.457651][ T6859]  tomoyo_path_number_perm+0x23a/0x880
[   99.463128][ T6859]  ? tomoyo_path_number_perm+0x208/0x880
[   99.468772][ T6859]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   99.474784][ T6859]  ? __fget_files+0x29/0x470
[   99.479372][ T6859]  ? __fget_files+0x3f3/0x470
[   99.484055][ T6859]  security_file_ioctl+0xc6/0x2a0
[   99.489082][ T6859]  __se_sys_ioctl+0x47/0x170
[   99.493674][ T6859]  do_syscall_64+0xf3/0x230
[   99.498177][ T6859]  ? clear_bhb_loop+0x35/0x90
[   99.502845][ T6859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.508774][ T6859] RIP: 0033:0x7fdcf4f7dff9
[   99.513192][ T6859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.532790][ T6859] RSP: 002b:00007fdcf5e32038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   99.541201][ T6859] RAX: ffffffffffffffda RBX: 00007fdcf5135f80 RCX: 00007fdcf4f7dff9
[   99.549164][ T6859] RDX: 0000000020000180 RSI: 00000000000089e0 RDI: 0000000000000004
[   99.557129][ T6859] RBP: 00007fdcf5e32090 R08: 0000000000000000 R09: 0000000000000000
[   99.565110][ T6859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.573101][ T6859] R13: 0000000000000000 R14: 00007fdcf5135f80 R15: 00007ffcb5ea6948
[   99.581106][ T6859]  </TASK>
[   99.593679][ T6859] ERROR: Out of memory at tomoyo_realpath_from_path.
[   99.704149][ T6850] syz_tun: left promiscuous mode
[   99.732207][ T6873] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   99.739801][ T6873] IPv6: NLM_F_CREATE should be set when creating new route
[   99.903190][ T6883] Cannot find add_set index 32768 as target
[   99.933149][ T6879] nlmon0: entered promiscuous mode
[   99.940990][ T6879] vlan2: entered promiscuous mode
[  100.000707][ T6879] nlmon0: left promiscuous mode
[  100.039664][ T6878] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  100.040283][ T6888] netlink: 8 bytes leftover after parsing attributes in process `syz.0.561'.
[  100.048478][ T6878] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  100.093771][ T6878] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  100.139774][ T6890] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  100.212011][ T6892] netlink: 'syz.0.563': attribute type 10 has an invalid length.
[  100.308530][ T6894] A link change request failed with some changes committed already. Interface veth1_to_batadv may have been left with an inconsistent configuration, please check.
[  100.350965][ T6894] netlink: 168 bytes leftover after parsing attributes in process `syz.1.564'.
[  100.410650][ T6903] netlink: 'syz.4.567': attribute type 13 has an invalid length.
[  100.695973][ T6916] syz_tun: entered promiscuous mode
[  100.701993][ T6916] macsec1: entered promiscuous mode
[  100.713658][ T6916] syz_tun: left promiscuous mode
[  100.875656][ T6922] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  101.170019][ T6937] netlink: 'syz.3.579': attribute type 1 has an invalid length.
[  101.574710][ T6957] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  101.593607][ T6957] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  101.602086][ T6957] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  101.626643][ T6962] Cannot find add_set index 32768 as target
[  101.737794][ T6964] syz_tun: entered promiscuous mode
[  101.754294][ T6964] macsec1: entered promiscuous mode
[  101.770510][ T6964] syz_tun: left promiscuous mode
[  101.789385][ T6968] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.797615][ T6967] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  102.311975][ T6995] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  102.434209][ T7001] No such timeout policy "syz0"
[  102.559341][ T7006] syz_tun: entered promiscuous mode
[  102.587907][ T7006] macsec1: entered promiscuous mode
[  102.621749][ T7006] syz_tun: left promiscuous mode
[  102.649074][ T7014] vlan2: entered promiscuous mode
[  102.655069][ T7014] macvtap0: entered promiscuous mode
[  102.660761][ T7014] vlan2: entered allmulticast mode
[  102.667983][ T7014] macvtap0: entered allmulticast mode
[  102.675680][ T7014] veth0_macvtap: entered allmulticast mode
[  102.686257][ T7014] macvtap0: left allmulticast mode
[  102.692507][ T7014] veth0_macvtap: left allmulticast mode
[  102.700461][ T7014] macvtap0: left promiscuous mode
[  102.721374][ T7009] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  103.115155][ T7030] __nla_validate_parse: 16 callbacks suppressed
[  103.115173][ T7030] netlink: 4 bytes leftover after parsing attributes in process `syz.2.614'.
[  103.117323][ T7035] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  103.164163][ T7035] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  103.171675][ T7036] Cannot find add_set index 32768 as target
[  103.213297][ T7038] netlink: 128 bytes leftover after parsing attributes in process `syz.4.617'.
[  103.228550][ T7035] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  103.390400][ T7049] netlink: 14568 bytes leftover after parsing attributes in process `syz.4.620'.
[  103.438842][ T7054] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  103.456578][ T7049] netlink: 4 bytes leftover after parsing attributes in process `syz.4.620'.
[  103.469464][ T7049] syz_tun: entered promiscuous mode
[  103.475407][ T7049] macsec1: entered promiscuous mode
[  103.498619][ T7049] syz_tun: left promiscuous mode
[  103.588417][ T7060] netlink: 48 bytes leftover after parsing attributes in process `syz.0.625'.
[  103.650640][ T7066] FAULT_INJECTION: forcing a failure.
[  103.650640][ T7066] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  103.676641][ T7066] CPU: 0 UID: 0 PID: 7066 Comm: syz.4.626 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  103.686954][ T7066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  103.697041][ T7066] Call Trace:
[  103.700345][ T7066]  <TASK>
[  103.703290][ T7066]  dump_stack_lvl+0x241/0x360
[  103.707974][ T7066]  ? __pfx_dump_stack_lvl+0x10/0x10
[  103.713178][ T7066]  ? __pfx__printk+0x10/0x10
[  103.717772][ T7066]  ? snprintf+0xda/0x120
[  103.722024][ T7066]  should_fail_ex+0x3b0/0x4e0
[  103.726706][ T7066]  _copy_to_user+0x2f/0xb0
[  103.731121][ T7066]  simple_read_from_buffer+0xca/0x150
[  103.736501][ T7066]  proc_fail_nth_read+0x1e9/0x250
[  103.741530][ T7066]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  103.747103][ T7066]  ? rw_verify_area+0x55e/0x6f0
[  103.751988][ T7066]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  103.757585][ T7066]  vfs_read+0x201/0xbc0
[  103.761786][ T7066]  ? __pfx_lock_release+0x10/0x10
[  103.766859][ T7066]  ? __pfx_vfs_read+0x10/0x10
[  103.771584][ T7066]  ? __fget_files+0x3f3/0x470
[  103.776304][ T7066]  ? fdget_pos+0x24e/0x320
[  103.780746][ T7066]  ksys_read+0x183/0x2b0
[  103.785115][ T7066]  ? __pfx_ksys_read+0x10/0x10
[  103.789917][ T7066]  ? do_syscall_64+0x100/0x230
[  103.789946][ T7068] netlink: 12 bytes leftover after parsing attributes in process `syz.0.627'.
[  103.794693][ T7066]  ? do_syscall_64+0xb6/0x230
[  103.794744][ T7066]  do_syscall_64+0xf3/0x230
[  103.794761][ T7066]  ? clear_bhb_loop+0x35/0x90
[  103.794779][ T7066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.794803][ T7066] RIP: 0033:0x7fe52cb7ca3c
[  103.827806][ T7066] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  103.847447][ T7066] RSP: 002b:00007fe52da46030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  103.855903][ T7066] RAX: ffffffffffffffda RBX: 00007fe52cd35f80 RCX: 00007fe52cb7ca3c
[  103.863910][ T7066] RDX: 000000000000000f RSI: 00007fe52da460a0 RDI: 0000000000000006
[  103.871916][ T7066] RBP: 00007fe52da46090 R08: 0000000000000000 R09: 0000000000000000
[  103.879923][ T7066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.887930][ T7066] R13: 0000000000000000 R14: 00007fe52cd35f80 R15: 00007fffee0561c8
[  103.895946][ T7066]  </TASK>
[  104.095916][ T7085] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  104.117793][ T7087] netlink: 16 bytes leftover after parsing attributes in process `syz.0.632'.
[  104.346192][ T7096] netlink: 14568 bytes leftover after parsing attributes in process `syz.4.636'.
[  104.352011][ T7098] ieee802154 phy1 wpan1: encryption failed: -22
[  104.393623][ T7096] netlink: 4 bytes leftover after parsing attributes in process `syz.4.636'.
[  104.422324][ T7096] syz_tun: entered promiscuous mode
[  104.438171][ T7096] macsec1: entered promiscuous mode
[  104.479002][ T7096] syz_tun: left promiscuous mode
[  104.683188][ T7112] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  104.720986][ T7112] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  104.730788][ T7115] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  104.755949][ T7112] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  104.777419][ T7119] Cannot find add_set index 32768 as target
[  105.003178][ T7133] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  105.413319][ T7147] (unnamed net_device) (uninitialized): option lp_interval: invalid value (0)
[  105.447270][ T7147] (unnamed net_device) (uninitialized): option lp_interval: allowed values 1 - 2147483647
[  105.507791][ T7150] netlink: 14568 bytes leftover after parsing attributes in process `syz.4.656'.
[  105.539810][ T7150] syz_tun: entered promiscuous mode
[  105.552473][ T7150] macsec1: entered promiscuous mode
[  105.585639][ T7150] syz_tun: left promiscuous mode
[  105.693342][ T7160] ip6gretap0: entered promiscuous mode
[  105.700269][ T7160] vlan2: entered promiscuous mode
[  105.712878][ T7160] ip6gretap0: left promiscuous mode
[  105.750721][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[  105.999417][ T7172] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  106.027730][ T7172] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  106.057802][ T7172] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  106.087164][ T7176] netlink: 'syz.1.666': attribute type 1 has an invalid length.
[  106.090899][ T7178] Cannot find add_set index 32768 as target
[  106.297299][ T7189] Cannot find add_set index 32768 as target
[  106.362294][ T7194] syz_tun: entered promiscuous mode
[  106.371108][ T7194] macsec1: entered promiscuous mode
[  106.381798][ T7194] syz_tun: left promiscuous mode
[  106.790648][ T7204] syz_tun: entered promiscuous mode
[  106.816565][ T7204] macsec1: entered promiscuous mode
[  106.879986][ T7206] netlink: 'syz.4.674': attribute type 34 has an invalid length.
[  106.889002][ T7204] syz_tun: left promiscuous mode
[  106.996539][ T7213] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  107.068389][ T7216] macvlan7: entered allmulticast mode
[  107.684272][ T7249] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  107.701814][ T7248] macsec1: entered promiscuous mode
[  107.702446][ T7249] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  107.709308][ T7248] syz_tun: entered promiscuous mode
[  107.715894][ T7249] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  107.732099][ T7248] syz_tun: left promiscuous mode
[  107.741816][ T7250] Cannot find add_set index 32768 as target
[  108.067699][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[  108.133878][ T7266] FAULT_INJECTION: forcing a failure.
[  108.133878][ T7266] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.147646][ T7266] CPU: 0 UID: 0 PID: 7266 Comm: syz.0.698 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  108.157930][ T7266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  108.168015][ T7266] Call Trace:
[  108.171322][ T7266]  <TASK>
[  108.174271][ T7266]  dump_stack_lvl+0x241/0x360
[  108.178979][ T7266]  ? __pfx_dump_stack_lvl+0x10/0x10
[  108.184208][ T7266]  ? __pfx__printk+0x10/0x10
[  108.188826][ T7266]  ? __pfx_lock_release+0x10/0x10
[  108.193886][ T7266]  should_fail_ex+0x3b0/0x4e0
[  108.198592][ T7266]  _copy_from_user+0x2f/0xe0
[  108.203208][ T7266]  copy_msghdr_from_user+0xae/0x680
[  108.208438][ T7266]  ? __pfx___might_resched+0x10/0x10
[  108.213757][ T7266]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  108.219581][ T7266]  ? rcu_is_watching+0x15/0xb0
[  108.224343][ T7266]  ? __might_fault+0xaa/0x120
[  108.229013][ T7266]  do_recvmmsg+0x3f9/0xad0
[  108.233447][ T7266]  ? __pfx_do_recvmmsg+0x10/0x10
[  108.238416][ T7266]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  108.244306][ T7266]  ? ksys_write+0x229/0x2b0
[  108.248828][ T7266]  ? __pfx_lock_release+0x10/0x10
[  108.253882][ T7266]  ? vfs_write+0x7bf/0xc90
[  108.258325][ T7266]  ? kmem_cache_free+0x1a2/0x420
[  108.263310][ T7266]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  108.269303][ T7266]  __x64_sys_recvmmsg+0x199/0x250
[  108.274325][ T7266]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  108.279871][ T7266]  ? do_syscall_64+0x100/0x230
[  108.284632][ T7266]  ? do_syscall_64+0xb6/0x230
[  108.289326][ T7266]  do_syscall_64+0xf3/0x230
[  108.293855][ T7266]  ? clear_bhb_loop+0x35/0x90
[  108.298538][ T7266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.304444][ T7266] RIP: 0033:0x7fbecb37dff9
[  108.308868][ T7266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.328478][ T7266] RSP: 002b:00007fbecc1ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  108.336892][ T7266] RAX: ffffffffffffffda RBX: 00007fbecb535f80 RCX: 00007fbecb37dff9
[  108.344950][ T7266] RDX: 0000000000000f00 RSI: 0000000020000400 RDI: 000000000000000d
[  108.352917][ T7266] RBP: 00007fbecc1ff090 R08: 0000000000000000 R09: 0000000000000000
[  108.360885][ T7266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  108.368872][ T7266] R13: 0000000000000000 R14: 00007fbecb535f80 R15: 00007ffccf9b8018
[  108.376851][ T7266]  </TASK>
[  108.445505][ T7270] netlink: 'syz.0.699': attribute type 4 has an invalid length.
[  108.467903][ T7270] netlink: 'syz.0.699': attribute type 4 has an invalid length.
[  108.515180][ T7272] __nla_validate_parse: 11 callbacks suppressed
[  108.515201][ T7272] netlink: 8 bytes leftover after parsing attributes in process `syz.4.700'.
[  108.534584][ T7272] netlink: 8 bytes leftover after parsing attributes in process `syz.4.700'.
[  108.632953][ T7276] netlink: 14568 bytes leftover after parsing attributes in process `syz.0.702'.
[  108.666385][ T7276] netlink: 4 bytes leftover after parsing attributes in process `syz.0.702'.
[  108.679343][ T7276] macsec1: entered promiscuous mode
[  108.685271][ T7276] syz_tun: entered promiscuous mode
[  108.694744][ T7276] syz_tun: left promiscuous mode
[  108.712807][ T7280] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  108.851891][ T7286] netlink: 14568 bytes leftover after parsing attributes in process `syz.1.706'.
[  108.913155][ T7291] netlink: 16 bytes leftover after parsing attributes in process `syz.0.707'.
[  108.933720][ T7286] netlink: 4 bytes leftover after parsing attributes in process `syz.1.706'.
[  108.952382][ T7286] syz_tun: entered promiscuous mode
[  108.958001][ T7286] macsec1: entered promiscuous mode
[  108.994271][ T7286] syz_tun: left promiscuous mode
[  109.063919][ T7295] netlink: 4 bytes leftover after parsing attributes in process `syz.4.710'.
[  109.091702][ T7295] syz_tun: entered promiscuous mode
[  109.098445][ T7295] macsec1: entered promiscuous mode
[  109.117151][ T7295] syz_tun: left promiscuous mode
[  109.238430][ T7302] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  109.256246][ T7302] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  109.265107][ T7302] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  109.290133][ T7305] Cannot find add_set index 32768 as target
[  109.330047][ T7307] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  109.561681][ T7318] netlink: 16 bytes leftover after parsing attributes in process `syz.0.719'.
[  109.663324][ T7315] netlink: 'syz.2.721': attribute type 29 has an invalid length.
[  109.678335][ T7315] netlink: 8 bytes leftover after parsing attributes in process `syz.2.721'.
[  109.701531][ T7324] macsec1: entered promiscuous mode
[  109.707523][ T7324] syz_tun: entered promiscuous mode
[  109.718160][ T7324] syz_tun: left promiscuous mode
[  109.826618][ T7327] netlink: 'syz.4.724': attribute type 4 has an invalid length.
[  109.861074][ T7327] netlink: 'syz.4.724': attribute type 4 has an invalid length.
[  109.984069][ T7334] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  110.301626][ T7351] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  110.306429][ T7354] syz_tun: entered promiscuous mode
[  110.322928][ T7351] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  110.325715][ T7354] macsec1: entered promiscuous mode
[  110.332620][ T7351] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  110.359632][ T7354] syz_tun: left promiscuous mode
[  110.672163][ T7376] Cannot find add_set index 32768 as target
[  110.846855][ T7380] Cannot find add_set index 32768 as target
[  110.951422][ T7382] netlink: 'syz.1.744': attribute type 49 has an invalid length.
[  111.382924][ T7397] syz_tun: entered promiscuous mode
[  111.410679][ T7397] macsec1: entered promiscuous mode
[  111.439116][ T7397] syz_tun: left promiscuous mode
[  112.065029][ T7431] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  112.072177][ T7430] netlink: 'syz.2.762': attribute type 4 has an invalid length.
[  112.073532][ T7431] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  112.090130][ T7431] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  112.111449][ T7430] netlink: 'syz.2.762': attribute type 4 has an invalid length.
[  112.122441][ T7432] Cannot find add_set index 32768 as target
[  112.232556][ T7436] syz_tun: entered promiscuous mode
[  112.241548][ T7436] macsec1: entered promiscuous mode
[  112.257951][ T7436] syz_tun: left promiscuous mode
[  112.978824][ T7467] FAULT_INJECTION: forcing a failure.
[  112.978824][ T7467] name failslab, interval 1, probability 0, space 0, times 0
[  112.993502][ T7467] CPU: 1 UID: 0 PID: 7467 Comm: syz.0.776 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  113.003792][ T7467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  113.013919][ T7467] Call Trace:
[  113.015160][ T7470] FAULT_INJECTION: forcing a failure.
[  113.015160][ T7470] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.017201][ T7467]  <TASK>
[  113.017214][ T7467]  dump_stack_lvl+0x241/0x360
[  113.017247][ T7467]  ? __pfx_dump_stack_lvl+0x10/0x10
[  113.043115][ T7467]  ? __pfx__printk+0x10/0x10
[  113.047723][ T7467]  ? debug_object_assert_init+0x2d0/0x440
[  113.053468][ T7467]  should_fail_ex+0x3b0/0x4e0
[  113.058158][ T7467]  ? dccp_ackvec_update_records+0x2d/0x450
[  113.063988][ T7467]  should_failslab+0xac/0x100
[  113.068676][ T7467]  ? dccp_ackvec_update_records+0x2d/0x450
[  113.074495][ T7467]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  113.079887][ T7467]  ? __pfx_dccp_feat_insert_opts+0x10/0x10
[  113.085709][ T7467]  dccp_ackvec_update_records+0x2d/0x450
[  113.091376][ T7467]  dccp_insert_options+0x10eb/0x18f0
[  113.096702][ T7467]  dccp_transmit_skb+0x5ab/0x16a0
[  113.101747][ T7467]  ? sk_reset_timer+0x37/0xc0
[  113.106449][ T7467]  dccp_close+0x78c/0x1070
[  113.110895][ T7467]  ? __pfx_dccp_close+0x10/0x10
[  113.115765][ T7467]  ? down_write+0x18c/0x220
[  113.120274][ T7467]  ? ip_mc_drop_socket+0x25f/0x280
[  113.125400][ T7467]  inet_release+0x17d/0x200
[  113.129922][ T7467]  sock_close+0xbc/0x240
[  113.134172][ T7467]  ? __pfx_sock_close+0x10/0x10
[  113.139047][ T7467]  __fput+0x23f/0x880
[  113.143068][ T7467]  __x64_sys_close+0x7f/0x110
[  113.147755][ T7467]  do_syscall_64+0xf3/0x230
[  113.152268][ T7467]  ? clear_bhb_loop+0x35/0x90
[  113.156954][ T7467]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.162857][ T7467] RIP: 0033:0x7fbecb37dff9
[  113.167283][ T7467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.186897][ T7467] RSP: 002b:00007fbecc1ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  113.195493][ T7467] RAX: ffffffffffffffda RBX: 00007fbecb535f80 RCX: 00007fbecb37dff9
[  113.203459][ T7467] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[  113.211424][ T7467] RBP: 00007fbecc1ff090 R08: 0000000000000000 R09: 0000000000000000
[  113.219419][ T7467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.227401][ T7467] R13: 0000000000000000 R14: 00007fbecb535f80 R15: 00007ffccf9b8018
[  113.235392][ T7467]  </TASK>
[  113.239916][ T7470] CPU: 1 UID: 0 PID: 7470 Comm: syz.2.775 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  113.250198][ T7470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  113.260289][ T7470] Call Trace:
[  113.263590][ T7470]  <TASK>
[  113.266536][ T7470]  dump_stack_lvl+0x241/0x360
[  113.271256][ T7470]  ? __pfx_dump_stack_lvl+0x10/0x10
[  113.276485][ T7470]  ? __pfx__printk+0x10/0x10
[  113.281119][ T7470]  ? __pfx_lock_release+0x10/0x10
[  113.286188][ T7470]  should_fail_ex+0x3b0/0x4e0
[  113.290911][ T7470]  _copy_from_user+0x2f/0xe0
[  113.295531][ T7470]  copy_msghdr_from_user+0xae/0x680
[  113.300761][ T7470]  ? __pfx___might_resched+0x10/0x10
[  113.306079][ T7470]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  113.311931][ T7470]  ? rcu_is_watching+0x15/0xb0
[  113.316720][ T7470]  ? __might_fault+0xaa/0x120
[  113.321429][ T7470]  do_recvmmsg+0x3f9/0xad0
[  113.325883][ T7470]  ? __pfx_do_recvmmsg+0x10/0x10
[  113.330874][ T7470]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  113.336801][ T7470]  ? ksys_write+0x229/0x2b0
[  113.341335][ T7470]  ? __pfx_lock_release+0x10/0x10
[  113.346390][ T7470]  ? vfs_write+0x7bf/0xc90
[  113.350842][ T7470]  ? kmem_cache_free+0x1a2/0x420
[  113.355828][ T7470]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  113.361863][ T7470]  __x64_sys_recvmmsg+0x199/0x250
[  113.366930][ T7470]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  113.372505][ T7470]  ? do_syscall_64+0x100/0x230
[  113.377296][ T7470]  ? do_syscall_64+0xb6/0x230
[  113.382001][ T7470]  do_syscall_64+0xf3/0x230
[  113.386534][ T7470]  ? clear_bhb_loop+0x35/0x90
[  113.391212][ T7470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.397106][ T7470] RIP: 0033:0x7fdcf4f7dff9
[  113.401519][ T7470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.421216][ T7470] RSP: 002b:00007fdcf5e11038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  113.429629][ T7470] RAX: ffffffffffffffda RBX: 00007fdcf5136058 RCX: 00007fdcf4f7dff9
[  113.437594][ T7470] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  113.445560][ T7470] RBP: 00007fdcf5e11090 R08: 0000000000000000 R09: 0000000000000000
[  113.453525][ T7470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.461489][ T7470] R13: 0000000000000000 R14: 00007fdcf5136058 R15: 00007ffcb5ea6948
[  113.469465][ T7470]  </TASK>
[  113.522771][ T7473] syz_tun: entered promiscuous mode
[  113.532980][ T7473] macsec1: entered promiscuous mode
[  113.543264][ T7473] syz_tun: left promiscuous mode
[  113.831084][ T7495] FAULT_INJECTION: forcing a failure.
[  113.831084][ T7495] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.849412][ T7495] CPU: 1 UID: 0 PID: 7495 Comm: syz.0.784 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  113.859699][ T7495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  113.862265][ T7493] __nla_validate_parse: 14 callbacks suppressed
[  113.862280][ T7493] netlink: 76 bytes leftover after parsing attributes in process `syz.1.785'.
[  113.869760][ T7495] Call Trace:
[  113.869773][ T7495]  <TASK>
[  113.869783][ T7495]  dump_stack_lvl+0x241/0x360
[  113.869815][ T7495]  ? __pfx_dump_stack_lvl+0x10/0x10
[  113.869838][ T7495]  ? __pfx__printk+0x10/0x10
[  113.869875][ T7495]  should_fail_ex+0x3b0/0x4e0
[  113.869903][ T7495]  _copy_from_user+0x2f/0xe0
[  113.869926][ T7495]  sctp_setsockopt+0xcc/0x11c0
[  113.869949][ T7495]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  113.869970][ T7495]  do_sock_setsockopt+0x3af/0x720
[  113.869992][ T7495]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  113.870008][ T7495]  ? __fget_files+0x29/0x470
[  113.870027][ T7495]  ? __fget_files+0x3f3/0x470
[  113.870044][ T7495]  ? __fget_files+0x29/0x470
[  113.870072][ T7495]  __sys_setsockopt+0x1a2/0x250
[  113.870096][ T7495]  __x64_sys_setsockopt+0xb5/0xd0
[  113.870116][ T7495]  do_syscall_64+0xf3/0x230
[  113.870133][ T7495]  ? clear_bhb_loop+0x35/0x90
[  113.870153][ T7495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.870176][ T7495] RIP: 0033:0x7fbecb37dff9
[  113.870194][ T7495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.870210][ T7495] RSP: 002b:00007fbecc1ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  113.870232][ T7495] RAX: ffffffffffffffda RBX: 00007fbecb535f80 RCX: 00007fbecb37dff9
[  113.870246][ T7495] RDX: 0000000000000017 RSI: 0000000000000084 RDI: 0000000000000006
[  113.870257][ T7495] RBP: 00007fbecc1ff090 R08: 0000000000000009 R09: 0000000000000000
[  113.870269][ T7495] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000001
[  113.870281][ T7495] R13: 0000000000000000 R14: 00007fbecb535f80 R15: 00007ffccf9b8018
[  113.870309][ T7495]  </TASK>
[  114.065296][ T7498] netlink: 8 bytes leftover after parsing attributes in process `syz.4.787'.
[  114.172116][ T7507] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  114.201888][ T7507] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  114.220952][ T7507] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  114.229189][ T7511] Cannot find add_set index 32768 as target
[  114.363665][ T7518] netlink: 4 bytes leftover after parsing attributes in process `syz.4.793'.
[  114.385300][ T7518] syz_tun: entered promiscuous mode
[  114.391080][ T7518] macsec1: entered promiscuous mode
[  114.404941][ T7518] syz_tun: left promiscuous mode
[  114.676992][ T7531] netlink: 8 bytes leftover after parsing attributes in process `syz.0.799'.
[  115.003806][ T7546] netlink: 'syz.2.806': attribute type 10 has an invalid length.
[  115.022603][ T7548] netlink: 244 bytes leftover after parsing attributes in process `syz.0.817'.
[  115.167611][ T7551] netlink: 4 bytes leftover after parsing attributes in process `syz.2.808'.
[  115.192153][ T7551] macsec1: entered promiscuous mode
[  115.213549][ T7551] syz_tun: entered promiscuous mode
[  115.227791][ T7551] syz_tun: left promiscuous mode
[  115.256816][ T7557] netlink: 8 bytes leftover after parsing attributes in process `syz.0.811'.
[  115.440682][ T7563] gre2: entered allmulticast mode
[  115.546833][ T7573] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  115.562846][ T7575] FAULT_INJECTION: forcing a failure.
[  115.562846][ T7575] name failslab, interval 1, probability 0, space 0, times 0
[  115.578357][ T7573] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  115.586919][ T7575] CPU: 1 UID: 0 PID: 7575 Comm: syz.1.819 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  115.597192][ T7575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  115.607265][ T7575] Call Trace:
[  115.610538][ T7575]  <TASK>
[  115.613465][ T7575]  dump_stack_lvl+0x241/0x360
[  115.618147][ T7575]  ? __pfx_dump_stack_lvl+0x10/0x10
[  115.623342][ T7575]  ? __pfx__printk+0x10/0x10
[  115.627939][ T7575]  ? __kmalloc_noprof+0xb0/0x400
[  115.632871][ T7575]  ? __pfx___might_resched+0x10/0x10
[  115.638158][ T7575]  should_fail_ex+0x3b0/0x4e0
[  115.642837][ T7575]  ? compute_effective_progs+0x260/0x5b0
[  115.648471][ T7575]  should_failslab+0xac/0x100
[  115.653146][ T7575]  ? compute_effective_progs+0x260/0x5b0
[  115.658771][ T7575]  __kmalloc_noprof+0xd8/0x400
[  115.663537][ T7575]  compute_effective_progs+0x260/0x5b0
[  115.668996][ T7575]  update_effective_progs+0x53/0x210
[  115.674279][ T7575]  __cgroup_bpf_detach+0x3cb/0xa50
[  115.679395][ T7575]  bpf_cgroup_link_release+0x9d/0x260
[  115.684765][ T7575]  bpf_link_free+0xf5/0x250
[  115.689264][ T7575]  bpf_link_release+0x78/0x90
[  115.693934][ T7575]  ? __pfx_bpf_link_release+0x10/0x10
[  115.699300][ T7575]  __fput+0x23f/0x880
[  115.703288][ T7575]  __x64_sys_close+0x7f/0x110
[  115.707966][ T7575]  do_syscall_64+0xf3/0x230
[  115.712463][ T7575]  ? clear_bhb_loop+0x35/0x90
[  115.717135][ T7575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.723024][ T7575] RIP: 0033:0x7f23e2b7dff9
[  115.727432][ T7575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.747035][ T7575] RSP: 002b:00007f23e3a20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  115.755446][ T7575] RAX: ffffffffffffffda RBX: 00007f23e2d35f80 RCX: 00007f23e2b7dff9
[  115.763413][ T7575] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  115.771377][ T7575] RBP: 00007f23e3a20090 R08: 0000000000000000 R09: 0000000000000000
[  115.779341][ T7575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.787309][ T7575] R13: 0000000000000000 R14: 00007f23e2d35f80 R15: 00007ffdbc4fcc58
[  115.795293][ T7575]  </TASK>
[  115.820975][ T7577] Cannot find add_set index 32768 as target
[  115.832440][ T7573] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  115.889149][ T7582] netlink: 'syz.1.822': attribute type 1 has an invalid length.
[  115.913693][ T7582] netlink: 224 bytes leftover after parsing attributes in process `syz.1.822'.
[  115.923038][ T7582] netlink: 8 bytes leftover after parsing attributes in process `syz.1.822'.
[  116.055519][ T7586] netlink: 'syz.1.822': attribute type 4 has an invalid length.
[  116.270787][ T7594] netlink: 12 bytes leftover after parsing attributes in process `syz.1.826'.
[  116.500490][ T7600] macsec1: entered promiscuous mode
[  116.510321][ T7600] syz_tun: entered promiscuous mode
[  116.585425][ T7600] syz_tun: left promiscuous mode
[  116.639438][ T7606] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.800368][ T7614] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  116.947175][ T7624] netlink: 'syz.0.840': attribute type 10 has an invalid length.
[  116.962075][ T7624] 8021q: adding VLAN 0 to HW filter on device batadv0
[  116.976424][ T7624] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  116.989596][ T7626] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  117.001052][ T7626] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  117.016719][ T7626] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  117.038284][ T7629] Cannot find add_set index 32768 as target
[  117.083460][ T7624] syz.0.840 (7624) used greatest stack depth: 18416 bytes left
[  117.351298][ T7644] macsec2: entered promiscuous mode
[  117.361442][ T7644] syz_tun: entered promiscuous mode
[  117.378356][ T7644] syz_tun: left promiscuous mode
[  118.067278][ T7678] netlink: 'syz.4.857': attribute type 5 has an invalid length.
[  118.121896][ T7678] : entered promiscuous mode
[  118.407774][ T5232] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  118.416926][ T5232] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  118.427008][ T5232] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  118.435278][ T5232] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  118.446577][ T5232] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  118.454419][ T5232] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  118.551197][ T7702] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  118.590395][ T7702] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  118.604858][ T7702] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  118.646690][ T7706] Cannot find add_set index 32768 as target
[  118.722489][ T7693] chnl_net:caif_netlink_parms(): no params data found
[  118.763066][ T7715] Cannot find add_set index 32768 as target
[  118.787556][ T7693] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.794979][ T7693] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.802368][ T7693] bridge_slave_0: entered allmulticast mode
[  118.822995][ T7693] bridge_slave_0: entered promiscuous mode
[  118.847592][ T7693] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.858767][ T7693] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.866682][ T7693] bridge_slave_1: entered allmulticast mode
[  118.876954][ T7693] bridge_slave_1: entered promiscuous mode
[  118.922951][ T7693] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.946520][ T7693] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  119.021476][ T7693] team0: Port device team_slave_0 added
[  119.045287][ T7693] team0: Port device team_slave_1 added
[  119.094097][ T7693] batman_adv: batadv0: Adding interface: batadv_slave_0
[  119.102138][ T7693] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.130392][ T7693] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  119.151491][ T7722] dccp_invalid_packet: P.type (SYNC) not Data || [Data]Ack, while P.X == 0
[  119.151530][ T7693] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.167865][ T7693] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.195203][ T7693] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  119.320438][ T7693] hsr_slave_0: entered promiscuous mode
[  119.329247][ T7693] hsr_slave_1: entered promiscuous mode
[  119.496673][ T7693] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.520956][ T7733] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  119.533697][ T7733] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  119.543293][ T7734] Cannot find add_set index 32768 as target
[  119.549758][ T7733] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  119.602494][ T7693] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.642870][ T7738] __nla_validate_parse: 9 callbacks suppressed
[  119.642888][ T7738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.871'.
[  119.718610][ T7693] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.840355][ T7693] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.093765][ T7693] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  120.113255][ T7693] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  120.146040][ T7693] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  120.169637][ T7693] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  120.414416][ T7693] 8021q: adding VLAN 0 to HW filter on device bond0
[  120.460838][ T7693] 8021q: adding VLAN 0 to HW filter on device team0
[  120.461206][ T7767] netlink: 212 bytes leftover after parsing attributes in process `syz.2.883'.
[  120.496385][ T7771] netlink: 4 bytes leftover after parsing attributes in process `syz.0.884'.
[  120.527274][ T5232] Bluetooth: hci5: command tx timeout
[  120.558533][ T2928] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.565705][ T2928] bridge0: port 1(bridge_slave_0) entered forwarding state
[  120.642531][ T2988] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.649736][ T2988] bridge0: port 2(bridge_slave_1) entered forwarding state
[  120.674978][ T7778] netlink: 332 bytes leftover after parsing attributes in process `syz.1.885'.
[  120.719035][ T7778] netlink: 104 bytes leftover after parsing attributes in process `syz.1.885'.
[  120.762735][ T7778] netlink: 32 bytes leftover after parsing attributes in process `syz.1.885'.
[  120.875142][ T7791] FAULT_INJECTION: forcing a failure.
[  120.875142][ T7791] name failslab, interval 1, probability 0, space 0, times 0
[  120.896174][ T7791] CPU: 1 UID: 0 PID: 7791 Comm: syz.0.888 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  120.906467][ T7791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  120.916550][ T7791] Call Trace:
[  120.919850][ T7791]  <TASK>
[  120.922801][ T7791]  dump_stack_lvl+0x241/0x360
[  120.927514][ T7791]  ? __pfx_dump_stack_lvl+0x10/0x10
[  120.932753][ T7791]  ? __pfx__printk+0x10/0x10
[  120.937366][ T7791]  ? ipt_do_table+0x312/0x1860
[  120.942163][ T7791]  should_fail_ex+0x3b0/0x4e0
[  120.946870][ T7791]  ? ___neigh_create+0x691/0x2470
[  120.951918][ T7791]  should_failslab+0xac/0x100
[  120.956629][ T7791]  ? ___neigh_create+0x691/0x2470
[  120.961687][ T7791]  __kmalloc_noprof+0xd8/0x400
[  120.966483][ T7791]  ___neigh_create+0x691/0x2470
[  120.971387][ T7791]  ip_neigh_gw4+0x366/0x500
[  120.975923][ T7791]  ? __pfx_ip_neigh_gw4+0x10/0x10
[  120.980980][ T7791]  ? ip_finish_output2+0x45f/0x1390
[  120.986206][ T7791]  ip_finish_output2+0x10c5/0x1390
[  120.991346][ T7791]  ? nf_hook+0x9e/0x450
[  120.995539][ T7791]  ? __pfx_ip_finish_output2+0x10/0x10
[  121.001021][ T7791]  ? ip_fast_csum+0x1f0/0x2b0
[  121.005717][ T7791]  ? ip_skb_dst_mtu+0x6ba/0x9b0
[  121.010594][ T7791]  ? __ip_finish_output+0x349/0x400
[  121.015827][ T7791]  ip_send_skb+0x74/0x100
[  121.020182][ T7791]  udp_send_skb+0xacf/0x1650
[  121.024817][ T7791]  udp_sendmsg+0x1c21/0x2a60
[  121.029450][ T7791]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  121.035024][ T7791]  ? __pfx_udp_sendmsg+0x10/0x10
[  121.039989][ T7791]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  121.046355][ T7791]  ? __local_bh_enable_ip+0x168/0x200
[  121.051778][ T7791]  ? inet_sendmsg+0x16b/0x390
[  121.056494][ T7791]  ? do_raw_spin_unlock+0x13c/0x8b0
[  121.059268][ T7693] 8021q: adding VLAN 0 to HW filter on device batadv0
[  121.061709][ T7791]  ? inet_sendmsg+0x2ba/0x390
[  121.073170][ T7791]  __sock_sendmsg+0x1a6/0x270
[  121.077879][ T7791]  ____sys_sendmsg+0x52a/0x7e0
[  121.082670][ T7791]  ? __pfx_____sys_sendmsg+0x10/0x10
[  121.087994][ T7791]  __sys_sendmsg+0x292/0x380
[  121.092611][ T7791]  ? __pfx___sys_sendmsg+0x10/0x10
[  121.097848][ T7791]  ? __pfx_vfs_write+0x10/0x10
[  121.102753][ T7791]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  121.109119][ T7791]  ? do_syscall_64+0x100/0x230
[  121.113912][ T7791]  ? do_syscall_64+0xb6/0x230
[  121.118610][ T7791]  do_syscall_64+0xf3/0x230
[  121.123135][ T7791]  ? clear_bhb_loop+0x35/0x90
[  121.127842][ T7791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.133766][ T7791] RIP: 0033:0x7fbecb37dff9
[  121.138206][ T7791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.157837][ T7791] RSP: 002b:00007fbecc1ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.158446][ T7693] veth0_vlan: entered promiscuous mode
[  121.167300][ T7791] RAX: ffffffffffffffda RBX: 00007fbecb535f80 RCX: 00007fbecb37dff9
[  121.167319][ T7791] RDX: 0000000000000000 RSI: 0000000020007940 RDI: 0000000000000003
[  121.167332][ T7791] RBP: 00007fbecc1ff090 R08: 0000000000000000 R09: 0000000000000000
[  121.167343][ T7791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  121.167353][ T7791] R13: 0000000000000000 R14: 00007fbecb535f80 R15: 00007ffccf9b8018
[  121.167381][ T7791]  </TASK>
[  121.257397][ T7693] veth1_vlan: entered promiscuous mode
[  121.338778][ T7693] veth0_macvtap: entered promiscuous mode
[  121.393221][ T7693] veth1_macvtap: entered promiscuous mode
[  121.420766][ T7805] vxcan0: tx drop: invalid da for name 0x0000000000000002
[  121.426230][ T7693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.468987][ T7693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.482204][ T7693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.495929][ T7693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.508796][ T7693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.509189][ T7812] Cannot find add_set index 32768 as target
[  121.520044][ T7693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.535588][ T7693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.549955][ T7693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.583249][ T7693] batman_adv: batadv0: Interface activated: batadv_slave_0
[  121.619334][ T7807] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  121.633921][ T7807] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  121.634741][ T7693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.658018][ T7693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.668405][ T7807] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  121.669367][ T7693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.688166][ T7693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.702213][ T7693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.720190][ T7693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.730246][ T7693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.747177][ T7693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.760409][ T7693] batman_adv: batadv0: Interface activated: batadv_slave_1
[  121.770113][ T7811] netlink: 40 bytes leftover after parsing attributes in process `syz.0.895'.
[  121.781914][ T7817] netlink: 4 bytes leftover after parsing attributes in process `syz.1.896'.
[  121.814922][ T7817] syz_tun: entered promiscuous mode
[  121.820785][ T7817] macsec1: entered promiscuous mode
[  121.833273][ T7817] syz_tun: left promiscuous mode
[  121.887562][ T7693] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  121.921647][ T7693] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  121.932015][ T7693] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  121.940982][ T7693] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  122.091915][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.120671][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.158804][ T7833] xt_CT: You must specify a L4 protocol and not use inversions on it
[  122.192200][ T2988] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.234248][ T2988] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.464897][ T7842] x_tables: duplicate underflow at hook 2
[  122.520112][ T7842] netlink: 'syz.1.906': attribute type 9 has an invalid length.
[  122.602460][ T5232] Bluetooth: hci5: command tx timeout
[  122.615741][ T7849] netlink: 'syz.4.909': attribute type 10 has an invalid length.
[  122.663640][ T7854] netlink: 4 bytes leftover after parsing attributes in process `syz.2.911'.
[  122.687920][ T7854] macsec2: entered promiscuous mode
[  122.693175][ T7854] syz_tun: entered promiscuous mode
[  122.720003][ T7854] syz_tun: left promiscuous mode
[  122.736160][ T7857] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  122.785840][ T7853] netlink: 40 bytes leftover after parsing attributes in process `syz.3.910'.
[  122.808600][ T7847] netlink: 'syz.0.908': attribute type 1 has an invalid length.
[  122.869930][ T7862] nlmon0: entered promiscuous mode
[  122.880854][ T7862] vlan2: entered promiscuous mode
[  122.902674][ T7862] nlmon0: left promiscuous mode
[  123.022594][ T7868] batadv_slave_1: entered allmulticast mode
[  123.029481][ T7868] batadv_slave_1: left allmulticast mode
[  123.128357][ T7876] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  123.137029][ T7876] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  123.188069][ T7876] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  123.193008][ T7879] nlmon0: entered promiscuous mode
[  123.205383][ T7881] Cannot find add_set index 32768 as target
[  123.208964][ T7882] FAULT_INJECTION: forcing a failure.
[  123.208964][ T7882] name failslab, interval 1, probability 0, space 0, times 0
[  123.216403][ T7884] netlink: 'syz.4.922': attribute type 1 has an invalid length.
[  123.227889][ T7879] vlan2: entered promiscuous mode
[  123.250026][ T7882] CPU: 0 UID: 0 PID: 7882 Comm: syz.3.917 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  123.260308][ T7882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  123.270389][ T7882] Call Trace:
[  123.273685][ T7882]  <TASK>
[  123.276636][ T7882]  dump_stack_lvl+0x241/0x360
[  123.281357][ T7882]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.286590][ T7882]  ? __pfx__printk+0x10/0x10
[  123.291216][ T7882]  ? fs_reclaim_acquire+0x93/0x140
[  123.296353][ T7882]  ? __pfx___might_resched+0x10/0x10
[  123.301664][ T7882]  ? dynamic_dname+0x141/0x1b0
[  123.306455][ T7882]  should_fail_ex+0x3b0/0x4e0
[  123.311132][ T7882]  ? tomoyo_encode+0x26f/0x540
[  123.315891][ T7882]  should_failslab+0xac/0x100
[  123.320566][ T7882]  ? tomoyo_encode+0x26f/0x540
[  123.325322][ T7882]  __kmalloc_noprof+0xd8/0x400
[  123.330082][ T7882]  tomoyo_encode+0x26f/0x540
[  123.334666][ T7882]  ? __pfx_sockfs_dname+0x10/0x10
[  123.339686][ T7882]  tomoyo_realpath_from_path+0x59e/0x5e0
[  123.345341][ T7882]  tomoyo_path_number_perm+0x23a/0x880
[  123.350806][ T7882]  ? tomoyo_path_number_perm+0x208/0x880
[  123.356447][ T7882]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  123.362465][ T7882]  ? __fget_files+0x29/0x470
[  123.367055][ T7882]  ? __fget_files+0x3f3/0x470
[  123.371732][ T7882]  security_file_ioctl+0xc6/0x2a0
[  123.376759][ T7882]  __se_sys_ioctl+0x47/0x170
[  123.381354][ T7882]  do_syscall_64+0xf3/0x230
[  123.385853][ T7882]  ? clear_bhb_loop+0x35/0x90
[  123.390525][ T7882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.396413][ T7882] RIP: 0033:0x7f8f8757dff9
[  123.400820][ T7882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.420423][ T7882] RSP: 002b:00007f8f88398038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  123.428843][ T7882] RAX: ffffffffffffffda RBX: 00007f8f87735f80 RCX: 00007f8f8757dff9
[  123.436810][ T7882] RDX: 0000000020000180 RSI: 00000000000089e0 RDI: 0000000000000004
[  123.444774][ T7882] RBP: 00007f8f88398090 R08: 0000000000000000 R09: 0000000000000000
[  123.452738][ T7882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.460701][ T7882] R13: 0000000000000000 R14: 00007f8f87735f80 R15: 00007ffe09984cf8
[  123.468678][ T7882]  </TASK>
[  123.478105][ T7882] ERROR: Out of memory at tomoyo_realpath_from_path.
[  123.494094][ T7879] nlmon0: left promiscuous mode
[  123.532671][ T7886] netlink: 'syz.4.923': attribute type 10 has an invalid length.
[  123.616208][ T7888] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (511)
[  123.656742][ T7888] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255
[  123.680968][ T7888] netlink: zone id is out of range
[  123.692781][ T7888] netlink: zone id is out of range
[  123.699303][ T7888] netlink: zone id is out of range
[  123.714559][ T7888] netlink: zone id is out of range
[  123.720201][ T7888] netlink: zone id is out of range
[  123.726915][ T7888] netlink: zone id is out of range
[  123.738247][ T7888] netlink: zone id is out of range
[  123.754330][ T7888] netlink: zone id is out of range
[  123.941310][ T7901] syz_tun: entered promiscuous mode
[  123.973777][ T7901] macsec1: entered promiscuous mode
[  124.001802][ T7901] syz_tun: left promiscuous mode
[  124.419455][ T7929] IPVS: set_ctl: invalid protocol: 43 100.1.1.2:20004
[  124.591365][ T7935] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  124.600240][ T7935] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  124.620745][ T7935] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  124.654024][ T7936] Cannot find add_set index 32768 as target
[  124.664392][ T5232] Bluetooth: hci5: command tx timeout
[  124.949597][ T7948] __nla_validate_parse: 7 callbacks suppressed
[  124.949610][ T7948] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.944'.
[  124.984843][ T7948] netlink: 4 bytes leftover after parsing attributes in process `syz.2.944'.
[  125.000450][ T7948] macsec2: entered promiscuous mode
[  125.006168][ T7948] syz_tun: entered promiscuous mode
[  125.014789][ T7948] syz_tun: left promiscuous mode
[  125.039638][ T7950] netlink: 44 bytes leftover after parsing attributes in process `syz.1.945'.
[  125.048925][ T7950] netlink: 24 bytes leftover after parsing attributes in process `syz.1.945'.
[  125.059027][ T7950] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.296474][ T7959] netlink: 40 bytes leftover after parsing attributes in process `syz.1.949'.
[  125.308113][ T7961] netlink: 9412 bytes leftover after parsing attributes in process `syz.2.950'.
[  125.614265][ T7971] netlink: 'syz.1.954': attribute type 1 has an invalid length.
[  125.633676][ T7971] netlink: 224 bytes leftover after parsing attributes in process `syz.1.954'.
[  125.702858][ T7978] netlink: 14568 bytes leftover after parsing attributes in process `syz.4.958'.
[  125.721701][ T7978] netlink: 4 bytes leftover after parsing attributes in process `syz.4.958'.
[  125.740675][ T7978] macsec1: entered promiscuous mode
[  125.748326][ T7978] syz_tun: entered promiscuous mode
[  125.759918][ T7978] syz_tun: left promiscuous mode
[  125.800864][ T7984] netlink: 40 bytes leftover after parsing attributes in process `syz.1.961'.
[  125.898653][ T7989] No such timeout policy "syz0"
[  126.042839][ T7998] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  126.075493][ T7998] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  126.089688][ T7998] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  126.095895][ T8001] Cannot find add_set index 32768 as target
[  126.425709][ T8020] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.433283][ T8020] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.457857][ T8020] bridge0: entered allmulticast mode
[  126.743617][ T5232] Bluetooth: hci5: command tx timeout
[  126.851349][ T8035] netlink: 'syz.3.980': attribute type 1 has an invalid length.
[  126.860080][ T8037] x_tables: ip_tables: udp match: only valid for protocol 17
[  127.023603][ T8043] FAULT_INJECTION: forcing a failure.
[  127.023603][ T8043] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.062134][ T8043] CPU: 0 UID: 0 PID: 8043 Comm: syz.3.984 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  127.072428][ T8043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  127.082502][ T8043] Call Trace:
[  127.085794][ T8043]  <TASK>
[  127.088722][ T8043]  dump_stack_lvl+0x241/0x360
[  127.093411][ T8043]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.098613][ T8043]  ? __pfx__printk+0x10/0x10
[  127.103222][ T8043]  ? __pfx_lock_release+0x10/0x10
[  127.108271][ T8043]  should_fail_ex+0x3b0/0x4e0
[  127.113060][ T8043]  _copy_from_iter+0x1ed/0x1d60
[  127.117927][ T8043]  ? __virt_addr_valid+0x183/0x530
[  127.123043][ T8043]  ? __pfx_lock_release+0x10/0x10
[  127.128081][ T8043]  ? __alloc_skb+0x28f/0x440
[  127.132682][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[  127.137965][ T8043]  ? __virt_addr_valid+0x183/0x530
[  127.143070][ T8043]  ? __virt_addr_valid+0x183/0x530
[  127.148177][ T8043]  ? __virt_addr_valid+0x45f/0x530
[  127.153281][ T8043]  ? __check_object_size+0x48e/0x900
[  127.158567][ T8043]  netlink_sendmsg+0x73d/0xcb0
[  127.163341][ T8043]  ? __pfx_netlink_sendmsg+0x10/0x10
[  127.168635][ T8043]  ? aa_sock_msg_perm+0x91/0x160
[  127.173573][ T8043]  ? __pfx_netlink_sendmsg+0x10/0x10
[  127.178852][ T8043]  __sock_sendmsg+0x221/0x270
[  127.183531][ T8043]  ____sys_sendmsg+0x52a/0x7e0
[  127.188296][ T8043]  ? __pfx_____sys_sendmsg+0x10/0x10
[  127.193590][ T8043]  __sys_sendmsg+0x292/0x380
[  127.198180][ T8043]  ? __pfx___sys_sendmsg+0x10/0x10
[  127.203294][ T8043]  ? __pfx_vfs_write+0x10/0x10
[  127.208082][ T8043]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  127.214415][ T8043]  ? do_syscall_64+0x100/0x230
[  127.219184][ T8043]  ? do_syscall_64+0xb6/0x230
[  127.223858][ T8043]  do_syscall_64+0xf3/0x230
[  127.228353][ T8043]  ? clear_bhb_loop+0x35/0x90
[  127.233027][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.238918][ T8043] RIP: 0033:0x7f8f8757dff9
[  127.243330][ T8043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.262932][ T8043] RSP: 002b:00007f8f88398038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  127.271342][ T8043] RAX: ffffffffffffffda RBX: 00007f8f87735f80 RCX: 00007f8f8757dff9
[  127.279315][ T8043] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  127.287282][ T8043] RBP: 00007f8f88398090 R08: 0000000000000000 R09: 0000000000000000
[  127.295349][ T8043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.303349][ T8043] R13: 0000000000000000 R14: 00007f8f87735f80 R15: 00007ffe09984cf8
[  127.311343][ T8043]  </TASK>
[  127.467039][ T8054] macsec1: entered promiscuous mode
[  127.472301][ T8054] syz_tun: entered promiscuous mode
[  127.502541][ T8054] syz_tun: left promiscuous mode
[  127.739361][ T8070] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  127.752826][ T8070] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  127.765944][ T8073] ax25_connect(): syz.2.995 uses autobind, please contact jreuter@yaina.de
[  127.775576][ T8070] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  127.793078][ T8075] Cannot find add_set index 32768 as target
[  128.150185][ T8089] netlink: 'syz.2.998': attribute type 1 has an invalid length.
[  128.479514][ T8104] syz_tun: entered promiscuous mode
[  128.485518][ T8104] macsec1: entered promiscuous mode
[  128.505987][ T8104] syz_tun: left promiscuous mode
[  128.572328][ T8108] nbd: must specify at least one socket
[  128.657908][ T8110] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  128.684559][ T8110] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  128.693201][ T8110] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  128.998345][ T8133] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  129.009810][ T8133] batman_adv: batadv0: Removing interface: batadv_slave_0
[  129.023020][ T8133] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  129.033112][ T8133] batman_adv: batadv0: Removing interface: batadv_slave_1
[  129.139025][    C1] net_ratelimit: 81 callbacks suppressed
[  129.139042][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[  129.191675][ T8143] Cannot find add_set index 32768 as target
[  129.365980][ T8148] syz_tun: entered promiscuous mode
[  129.373764][ T8148] macsec1: entered promiscuous mode
[  129.391609][ T8148] syz_tun: left promiscuous mode
[  129.763962][ T8163] netlink: 'syz.0.1025': attribute type 1 has an invalid length.
[  129.806639][ T8161] macsec1: entered promiscuous mode
[  129.822680][ T8161] syz_tun: entered promiscuous mode
[  129.873906][ T8161] syz_tun: left promiscuous mode
[  129.992257][ T8169] __nla_validate_parse: 26 callbacks suppressed
[  129.992280][ T8169] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1029'.
[  130.287170][ T8180] netlink: 14568 bytes leftover after parsing attributes in process `syz.3.1034'.
[  130.352019][ T8180] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1034'.
[  130.370490][ T8180] syz_tun: entered promiscuous mode
[  130.377842][ T8180] macsec1: entered promiscuous mode
[  130.387573][ T8180] syz_tun: left promiscuous mode
[  130.442833][ T8188] macvlan9: entered allmulticast mode
[  130.615045][ T8197] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  130.630924][ T8197] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  130.673273][ T8197] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  130.711570][ T8201] Cannot find add_set index 32768 as target
[  130.718546][ T8204] xt_hashlimit: size too large, truncated to 1048576
[  130.738924][ T8208] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1042'.
[  131.470154][ T8223] bond0: entered promiscuous mode
[  131.485620][ T8223] bond_slave_0: entered promiscuous mode
[  131.491394][ T8223] bond_slave_1: entered promiscuous mode
[  131.505049][ T8222] bond0: left promiscuous mode
[  131.510349][ T8222] bond_slave_0: left promiscuous mode
[  131.528030][ T8222] bond_slave_1: left promiscuous mode
[  131.624310][ T8236] netlink: 14568 bytes leftover after parsing attributes in process `syz.3.1047'.
[  131.650053][ T8236] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1047'.
[  131.668875][ T8236] syz_tun: entered promiscuous mode
[  131.677838][ T8236] macsec1: entered promiscuous mode
[  131.705660][ T8236] syz_tun: left promiscuous mode
[  132.074532][ T8246] FAULT_INJECTION: forcing a failure.
[  132.074532][ T8246] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.103555][ T8246] CPU: 1 UID: 0 PID: 8246 Comm: syz.1.1049 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  132.113941][ T8246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  132.124025][ T8246] Call Trace:
[  132.127341][ T8246]  <TASK>
[  132.130288][ T8246]  dump_stack_lvl+0x241/0x360
[  132.134999][ T8246]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.140221][ T8246]  ? __pfx__printk+0x10/0x10
[  132.144831][ T8246]  ? __pfx_lock_release+0x10/0x10
[  132.149892][ T8246]  should_fail_ex+0x3b0/0x4e0
[  132.154605][ T8246]  _copy_from_user+0x2f/0xe0
[  132.159224][ T8246]  copy_msghdr_from_user+0xae/0x680
[  132.164452][ T8246]  ? __pfx___might_resched+0x10/0x10
[  132.169764][ T8246]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  132.175589][ T8246]  ? rcu_is_watching+0x15/0xb0
[  132.180366][ T8246]  ? __might_fault+0xaa/0x120
[  132.185058][ T8246]  do_recvmmsg+0x3f9/0xad0
[  132.189510][ T8246]  ? __pfx_do_recvmmsg+0x10/0x10
[  132.194491][ T8246]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  132.200401][ T8246]  ? ksys_write+0x229/0x2b0
[  132.204933][ T8246]  ? __pfx_lock_release+0x10/0x10
[  132.209980][ T8246]  ? vfs_write+0x7bf/0xc90
[  132.214408][ T8246]  ? kmem_cache_free+0x1a2/0x420
[  132.219370][ T8246]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  132.225370][ T8246]  __x64_sys_recvmmsg+0x199/0x250
[  132.230415][ T8246]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  132.235979][ T8246]  ? do_syscall_64+0x100/0x230
[  132.240767][ T8246]  ? do_syscall_64+0xb6/0x230
[  132.245448][ T8246]  do_syscall_64+0xf3/0x230
[  132.249956][ T8246]  ? clear_bhb_loop+0x35/0x90
[  132.254661][ T8246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.260607][ T8246] RIP: 0033:0x7f23e2b7dff9
[  132.265017][ T8246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.284848][ T8246] RSP: 002b:00007f23e39ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  132.293298][ T8246] RAX: ffffffffffffffda RBX: 00007f23e2d36058 RCX: 00007f23e2b7dff9
[  132.301288][ T8246] RDX: 0000000000000f00 RSI: 0000000020000400 RDI: 000000000000000d
[  132.309255][ T8246] RBP: 00007f23e39ff090 R08: 0000000000000000 R09: 0000000000000000
[  132.317228][ T8246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  132.325219][ T8246] R13: 0000000000000000 R14: 00007f23e2d36058 R15: 00007ffdbc4fcc58
[  132.333235][ T8246]  </TASK>
[  132.593332][ T8264] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1055'.
[  132.602435][ T8264] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1055'.
[  132.871281][ T8269] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1057'.
[  133.065901][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  133.092833][ T8278] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  133.102305][ T8275] netlink: 14568 bytes leftover after parsing attributes in process `syz.1.1059'.
[  133.131312][ T8278] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  133.143327][ T8278] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  133.178143][ T8275] syz_tun: entered promiscuous mode
[  133.183553][ T8275] macsec1: entered promiscuous mode
[  133.224127][ T8279] Cannot find add_set index 32768 as target
[  133.372374][ T8283] Cannot find add_set index 32768 as target
[  133.439409][ T8275] syz_tun: left promiscuous mode
[  134.727289][ T8314] syz_tun: entered promiscuous mode
[  134.733911][ T8314] macsec1: entered promiscuous mode
[  134.751277][ T8314] syz_tun: left promiscuous mode
[  134.883720][ T8343] netlink: 'syz.0.1075': attribute type 29 has an invalid length.
[  134.905324][ T8352] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  134.914631][ T8343] netlink: 'syz.0.1075': attribute type 29 has an invalid length.
[  134.937490][ T8352] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  134.948294][ T8352] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  134.959661][ T8355] Cannot find add_set index 32768 as target
[  135.205891][ T8373] __nla_validate_parse: 4 callbacks suppressed
[  135.205909][ T8373] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1084'.
[  135.269630][ T8376] netlink: 'syz.3.1086': attribute type 4 has an invalid length.
[  135.302286][ T8376] netlink: 'syz.3.1086': attribute type 4 has an invalid length.
[  135.427790][ T8381] unknown channel width for channel at 909000KHz?
[  135.454213][ T8381] netlink: 'syz.4.1089': attribute type 4 has an invalid length.
[  135.485599][ T8381] netlink: 'syz.4.1089': attribute type 2 has an invalid length.
[  135.534096][ T8389] netlink: 14568 bytes leftover after parsing attributes in process `syz.3.1093'.
[  135.550558][ T8389] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1093'.
[  135.565751][ T8389] syz_tun: entered promiscuous mode
[  135.573557][ T8389] macsec1: entered promiscuous mode
[  135.587729][ T8389] syz_tun: left promiscuous mode
[  135.618861][ T8392] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.1094'.
[  135.637882][ T8392] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1094'.
[  135.666300][ T8392] macsec2: entered promiscuous mode
[  135.671544][ T8392] syz_tun: entered promiscuous mode
[  135.730324][ T8392] syz_tun: left promiscuous mode
[  135.830343][ T8399] netlink: 'syz.1.1097': attribute type 10 has an invalid length.
[  135.847069][ T8399] netlink: 212848 bytes leftover after parsing attributes in process `syz.1.1097'.
[  135.893025][ T8395] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1095'.
[  136.011436][ T8409] netlink: 'syz.3.1101': attribute type 9 has an invalid length.
[  136.025067][ T8409] netlink: 134640 bytes leftover after parsing attributes in process `syz.3.1101'.
[  136.173088][ T8416] netlink: 'syz.1.1103': attribute type 1 has an invalid length.
[  136.192789][ T8421] FAULT_INJECTION: forcing a failure.
[  136.192789][ T8421] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.213509][ T8416] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1103'.
[  136.233987][ T8421] CPU: 1 UID: 0 PID: 8421 Comm: syz.3.1105 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  136.244368][ T8421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  136.254452][ T8421] Call Trace:
[  136.257735][ T8421]  <TASK>
[  136.260662][ T8421]  dump_stack_lvl+0x241/0x360
[  136.265356][ T8421]  ? __pfx_dump_stack_lvl+0x10/0x10
[  136.270563][ T8421]  ? __pfx__printk+0x10/0x10
[  136.275159][ T8421]  ? __pfx_lock_release+0x10/0x10
[  136.280192][ T8421]  should_fail_ex+0x3b0/0x4e0
[  136.284880][ T8421]  _copy_from_user+0x2f/0xe0
[  136.289475][ T8421]  copy_msghdr_from_user+0xae/0x680
[  136.294671][ T8421]  ? __pfx___might_resched+0x10/0x10
[  136.299962][ T8421]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  136.305785][ T8421]  ? rcu_is_watching+0x15/0xb0
[  136.310570][ T8421]  ? __might_fault+0xaa/0x120
[  136.315264][ T8421]  do_recvmmsg+0x3f9/0xad0
[  136.319706][ T8421]  ? __pfx_do_recvmmsg+0x10/0x10
[  136.324679][ T8421]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  136.330587][ T8421]  ? ksys_write+0x229/0x2b0
[  136.335093][ T8421]  ? __pfx_lock_release+0x10/0x10
[  136.340137][ T8421]  ? vfs_write+0x7bf/0xc90
[  136.344559][ T8421]  ? kmem_cache_free+0x1a2/0x420
[  136.349508][ T8421]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  136.355493][ T8421]  __x64_sys_recvmmsg+0x199/0x250
[  136.360603][ T8421]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  136.366149][ T8421]  ? do_syscall_64+0x100/0x230
[  136.370907][ T8421]  ? do_syscall_64+0xb6/0x230
[  136.375578][ T8421]  do_syscall_64+0xf3/0x230
[  136.380074][ T8421]  ? clear_bhb_loop+0x35/0x90
[  136.384757][ T8421]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.390646][ T8421] RIP: 0033:0x7f8f8757dff9
[  136.395056][ T8421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.414658][ T8421] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  136.423071][ T8421] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  136.431040][ T8421] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  136.439008][ T8421] RBP: 00007f8f88377090 R08: 0000000000000000 R09: 0000000000000000
[  136.446973][ T8421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  136.454939][ T8421] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  136.462917][ T8421]  </TASK>
[  136.569659][ T8430] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  136.579027][ T8430] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  136.589960][ T8430] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  136.625807][ T8431] netlink: 'syz.2.1110': attribute type 10 has an invalid length.
[  136.635720][ T8434] Cannot find add_set index 32768 as target
[  136.682848][ T8431] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  136.767083][ T8443] FAULT_INJECTION: forcing a failure.
[  136.767083][ T8443] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.768988][ T8437] netlink: 14568 bytes leftover after parsing attributes in process `syz.0.1112'.
[  136.780452][ T8443] CPU: 1 UID: 0 PID: 8443 Comm: syz.2.1114 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  136.780480][ T8443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  136.780492][ T8443] Call Trace:
[  136.780500][ T8443]  <TASK>
[  136.780509][ T8443]  dump_stack_lvl+0x241/0x360
[  136.780544][ T8443]  ? __pfx_dump_stack_lvl+0x10/0x10
[  136.826333][ T8443]  ? __pfx__printk+0x10/0x10
[  136.830936][ T8443]  ? snprintf+0xda/0x120
[  136.835183][ T8443]  should_fail_ex+0x3b0/0x4e0
[  136.839870][ T8443]  _copy_to_user+0x2f/0xb0
[  136.844289][ T8443]  simple_read_from_buffer+0xca/0x150
[  136.849662][ T8443]  proc_fail_nth_read+0x1e9/0x250
[  136.854687][ T8443]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  136.860234][ T8443]  ? rw_verify_area+0x55e/0x6f0
[  136.865082][ T8443]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  136.870630][ T8443]  vfs_read+0x201/0xbc0
[  136.874788][ T8443]  ? __pfx_lock_release+0x10/0x10
[  136.879815][ T8443]  ? __pfx_vfs_read+0x10/0x10
[  136.884496][ T8443]  ? __fget_files+0x3f3/0x470
[  136.889174][ T8443]  ? fdget_pos+0x24e/0x320
[  136.893587][ T8443]  ksys_read+0x183/0x2b0
[  136.897827][ T8443]  ? __pfx_ksys_read+0x10/0x10
[  136.902587][ T8443]  ? do_syscall_64+0x100/0x230
[  136.907352][ T8443]  ? do_syscall_64+0xb6/0x230
[  136.912030][ T8443]  do_syscall_64+0xf3/0x230
[  136.916532][ T8443]  ? clear_bhb_loop+0x35/0x90
[  136.921206][ T8443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.927097][ T8443] RIP: 0033:0x7fdcf4f7ca3c
[  136.931510][ T8443] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  136.951203][ T8443] RSP: 002b:00007fdcf5e32030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  136.959618][ T8443] RAX: ffffffffffffffda RBX: 00007fdcf5135f80 RCX: 00007fdcf4f7ca3c
[  136.967585][ T8443] RDX: 000000000000000f RSI: 00007fdcf5e320a0 RDI: 0000000000000007
[  136.975635][ T8443] RBP: 00007fdcf5e32090 R08: 0000000000000000 R09: 0000000000000000
[  136.983599][ T8443] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000001
[  136.991562][ T8443] R13: 0000000000000000 R14: 00007fdcf5135f80 R15: 00007ffcb5ea6948
[  136.999540][ T8443]  </TASK>
[  137.362811][ T8462] wg2: entered promiscuous mode
[  137.378974][ T8462] team0: Device wg2 is of different type
[  137.741836][ T8478] macsec1: entered promiscuous mode
[  137.754076][ T8478] syz_tun: entered promiscuous mode
[  137.805363][ T8478] syz_tun: left promiscuous mode
[  138.225140][ T8508] FAULT_INJECTION: forcing a failure.
[  138.225140][ T8508] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.266459][ T8510] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  138.274882][ T8510] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  138.283328][ T8510] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  138.299071][ T8508] CPU: 1 UID: 0 PID: 8508 Comm: syz.4.1137 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  138.309428][ T8508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  138.316069][ T8514] Cannot find add_set index 32768 as target
[  138.319468][ T8508] Call Trace:
[  138.319482][ T8508]  <TASK>
[  138.319490][ T8508]  dump_stack_lvl+0x241/0x360
[  138.336283][ T8508]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.341482][ T8508]  ? __pfx__printk+0x10/0x10
[  138.346084][ T8508]  ? __pfx_lock_release+0x10/0x10
[  138.351127][ T8508]  should_fail_ex+0x3b0/0x4e0
[  138.355818][ T8508]  _copy_from_user+0x2f/0xe0
[  138.360442][ T8508]  copy_msghdr_from_user+0xae/0x680
[  138.365674][ T8508]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  138.371496][ T8508]  __sys_sendmsg+0x22d/0x380
[  138.376089][ T8508]  ? __pfx___sys_sendmsg+0x10/0x10
[  138.381206][ T8508]  ? __pfx_vfs_write+0x10/0x10
[  138.386077][ T8508]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  138.392406][ T8508]  ? do_syscall_64+0x100/0x230
[  138.397168][ T8508]  ? do_syscall_64+0xb6/0x230
[  138.401837][ T8508]  do_syscall_64+0xf3/0x230
[  138.406333][ T8508]  ? clear_bhb_loop+0x35/0x90
[  138.411005][ T8508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.416897][ T8508] RIP: 0033:0x7fe52cb7dff9
[  138.421304][ T8508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.440927][ T8508] RSP: 002b:00007fe52da46038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  138.449355][ T8508] RAX: ffffffffffffffda RBX: 00007fe52cd35f80 RCX: 00007fe52cb7dff9
[  138.457355][ T8508] RDX: 0000000000000000 RSI: 0000000020000880 RDI: 0000000000000004
[  138.465327][ T8508] RBP: 00007fe52da46090 R08: 0000000000000000 R09: 0000000000000000
[  138.473384][ T8508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.481358][ T8508] R13: 0000000000000000 R14: 00007fe52cd35f80 R15: 00007fffee0561c8
[  138.489336][ T8508]  </TASK>
[  138.697996][ T8521] gre1: entered allmulticast mode
[  138.735751][ T8525] FAULT_INJECTION: forcing a failure.
[  138.735751][ T8525] name failslab, interval 1, probability 0, space 0, times 0
[  138.776280][ T8525] CPU: 1 UID: 0 PID: 8525 Comm: syz.0.1143 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  138.786702][ T8525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  138.796774][ T8525] Call Trace:
[  138.800061][ T8525]  <TASK>
[  138.802986][ T8525]  dump_stack_lvl+0x241/0x360
[  138.807671][ T8525]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.812872][ T8525]  ? __pfx__printk+0x10/0x10
[  138.817464][ T8525]  ? __kmalloc_noprof+0xb0/0x400
[  138.822397][ T8525]  ? __pfx___might_resched+0x10/0x10
[  138.827687][ T8525]  should_fail_ex+0x3b0/0x4e0
[  138.832369][ T8525]  ? compute_effective_progs+0x260/0x5b0
[  138.837998][ T8525]  should_failslab+0xac/0x100
[  138.842673][ T8525]  ? compute_effective_progs+0x260/0x5b0
[  138.848300][ T8525]  __kmalloc_noprof+0xd8/0x400
[  138.853064][ T8525]  compute_effective_progs+0x260/0x5b0
[  138.858531][ T8525]  update_effective_progs+0x53/0x210
[  138.863905][ T8525]  __cgroup_bpf_detach+0x3cb/0xa50
[  138.869024][ T8525]  bpf_cgroup_link_release+0x9d/0x260
[  138.874400][ T8525]  bpf_link_free+0xf5/0x250
[  138.878903][ T8525]  bpf_link_release+0x78/0x90
[  138.883589][ T8525]  ? __pfx_bpf_link_release+0x10/0x10
[  138.888964][ T8525]  __fput+0x23f/0x880
[  138.893039][ T8525]  __x64_sys_close+0x7f/0x110
[  138.897713][ T8525]  do_syscall_64+0xf3/0x230
[  138.902209][ T8525]  ? clear_bhb_loop+0x35/0x90
[  138.906886][ T8525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.912778][ T8525] RIP: 0033:0x7fbecb37dff9
[  138.917208][ T8525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.936902][ T8525] RSP: 002b:00007fbecc1ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  138.945317][ T8525] RAX: ffffffffffffffda RBX: 00007fbecb535f80 RCX: 00007fbecb37dff9
[  138.953286][ T8525] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  138.961336][ T8525] RBP: 00007fbecc1ff090 R08: 0000000000000000 R09: 0000000000000000
[  138.969298][ T8525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.977264][ T8525] R13: 0000000000000000 R14: 00007fbecb535f80 R15: 00007ffccf9b8018
[  138.985255][ T8525]  </TASK>
[  139.659617][ T8561] BUG: Bad page state in process syz.3.1151  pfn:24c3b
[  139.666916][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888024c3b7c0 pfn:0x24c3b
[  139.677087][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  139.684300][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  139.692928][ T8561] raw: ffff888024c3b7c0 0000000000000001 00000000ffffffff 0000000000000000
[  139.701619][ T8561] page dumped because: page_pool leak
[  139.707129][ T8561] page_owner tracks the page as allocated
[  139.712886][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628255630, free_ts 139411100676
[  139.730031][ T8561]  post_alloc_hook+0x1f3/0x230
[  139.734890][ T8561]  get_page_from_freelist+0x3045/0x3190
[  139.740478][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  139.745771][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  139.751267][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  139.757272][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  139.762499][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  139.767930][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  139.773381][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  139.778354][ T8561]  __sys_bpf+0x48d/0x810
[  139.782612][ T8561]  __x64_sys_bpf+0x7c/0x90
[  139.787077][ T8561]  do_syscall_64+0xf3/0x230
[  139.791601][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.797553][ T8561] page last free pid 8536 tgid 8536 stack trace:
[  139.803945][ T8561]  free_unref_folios+0xf12/0x18d0
[  139.809000][ T8561]  folios_put_refs+0x76c/0x860
[  139.813832][ T8561]  free_pages_and_swap_cache+0x2ea/0x690
[  139.819497][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  139.824152][ T8561]  tlb_finish_mmu+0xd4/0x200
[  139.828763][ T8561]  exit_mmap+0x496/0xc40
[  139.833000][ T8561]  __mmput+0x115/0x390
[  139.835785][ T8569] Cannot find add_set index 32768 as target
[  139.837121][ T8561]  exit_mm+0x220/0x310
[  139.847130][ T8561]  do_exit+0x9b2/0x28e0
[  139.851284][ T8561]  do_group_exit+0x207/0x2c0
[  139.855903][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  139.860984][ T8561]  x64_sys_call+0x2634/0x2640
[  139.865716][ T8561]  do_syscall_64+0xf3/0x230
[  139.870241][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.876177][ T8561] Modules linked in:
[  139.880085][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Not tainted 6.11.0-syzkaller-11504-g44badc908f2c #0
[  139.890416][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  139.900466][ T8561] Call Trace:
[  139.903749][ T8561]  <TASK>
[  139.906687][ T8561]  dump_stack_lvl+0x241/0x360
[  139.911371][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  139.916573][ T8561]  ? __pfx_print_modules+0x10/0x10
[  139.921687][ T8561]  ? pcpu_memcg_post_alloc_hook+0x12a/0x720
[  139.927596][ T8561]  bad_page+0x166/0x1b0
[  139.931771][ T8561]  free_unref_page+0xed0/0xf20
[  139.936542][ T8561]  skb_release_data+0x6dc/0x8a0
[  139.941399][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  139.946456][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  139.952178][ T8561]  ? mark_lock+0x9a/0x360
[  139.956513][ T8561]  ? __lock_acquire+0x1384/0x2050
[  139.961567][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  139.967665][ T8561]  ? mark_lock+0x9a/0x360
[  139.971999][ T8561]  ? __lock_acquire+0x1384/0x2050
[  139.977064][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  139.983049][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  139.989645][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  139.996148][ T8561]  ? read_tsc+0x9/0x20
[  140.000257][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  140.005499][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  140.011830][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  140.017998][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  140.024346][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  140.031034][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  140.036245][ T8561]  ? __phys_addr+0xba/0x170
[  140.040744][ T8561]  ? build_skb_around+0x111/0x260
[  140.045884][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  140.051789][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  140.057080][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  140.062542][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  140.068450][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  140.074009][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  140.079848][ T8561]  ? synchronize_rcu+0x11b/0x360
[  140.084809][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  140.090151][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  140.096431][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  140.102339][ T8561]  ? _copy_from_user+0xa6/0xe0
[  140.107112][ T8561]  ? bpf_test_init+0x15a/0x180
[  140.111884][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  140.117343][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  140.122734][ T8561]  ? __pfx_lock_release+0x10/0x10
[  140.127778][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  140.133609][ T8561]  ? __fget_files+0x29/0x470
[  140.138256][ T8561]  ? fput+0x1a8/0x230
[  140.142356][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  140.148175][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  140.153130][ T8561]  __sys_bpf+0x48d/0x810
[  140.157395][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  140.162184][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  140.168189][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  140.174519][ T8561]  ? do_syscall_64+0x100/0x230
[  140.179279][ T8561]  __x64_sys_bpf+0x7c/0x90
[  140.183705][ T8561]  do_syscall_64+0xf3/0x230
[  140.188222][ T8561]  ? clear_bhb_loop+0x35/0x90
[  140.192906][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.198821][ T8561] RIP: 0033:0x7f8f8757dff9
[  140.203236][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.222941][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  140.231381][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  140.239358][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  140.247332][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  140.255304][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  140.263272][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  140.271260][ T8561]  </TASK>
[  140.274351][ T8561] Disabling lock debugging due to kernel taint
[  140.280532][ T8561] BUG: Bad page state in process syz.3.1151  pfn:60839
[  140.287441][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888060839000 pfn:0x60839
[  140.297567][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  140.304711][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  140.313303][ T8561] raw: ffff888060839000 0000000000000001 00000000ffffffff 0000000000000000
[  140.321938][ T8561] page dumped because: page_pool leak
[  140.327341][ T8561] page_owner tracks the page as allocated
[  140.333059][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628244129, free_ts 139411110774
[  140.350157][ T8561]  post_alloc_hook+0x1f3/0x230
[  140.354972][ T8561]  get_page_from_freelist+0x3045/0x3190
[  140.360538][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  140.365785][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  140.371316][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  140.377278][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  140.382496][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  140.387932][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  140.393322][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  140.398321][ T8561]  __sys_bpf+0x48d/0x810
[  140.402568][ T8561]  __x64_sys_bpf+0x7c/0x90
[  140.407010][ T8561]  do_syscall_64+0xf3/0x230
[  140.411526][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.417461][ T8561] page last free pid 8536 tgid 8536 stack trace:
[  140.423808][ T8561]  free_unref_folios+0xf12/0x18d0
[  140.428834][ T8561]  folios_put_refs+0x76c/0x860
[  140.433637][ T8561]  free_pages_and_swap_cache+0x2ea/0x690
[  140.439283][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  140.443974][ T8561]  tlb_finish_mmu+0xd4/0x200
[  140.448568][ T8561]  exit_mmap+0x496/0xc40
[  140.452800][ T8561]  __mmput+0x115/0x390
[  140.456897][ T8561]  exit_mm+0x220/0x310
[  140.460970][ T8561]  do_exit+0x9b2/0x28e0
[  140.465155][ T8561]  do_group_exit+0x207/0x2c0
[  140.469748][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  140.474813][ T8561]  x64_sys_call+0x2634/0x2640
[  140.479509][ T8561]  do_syscall_64+0xf3/0x230
[  140.484037][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.489939][ T8561] Modules linked in:
[  140.493868][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  140.505677][ T8561] Tainted: [B]=BAD_PAGE
[  140.509811][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  140.519859][ T8561] Call Trace:
[  140.523122][ T8561]  <TASK>
[  140.526040][ T8561]  dump_stack_lvl+0x241/0x360
[  140.530713][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  140.535899][ T8561]  ? __pfx_print_modules+0x10/0x10
[  140.541002][ T8561]  bad_page+0x166/0x1b0
[  140.545155][ T8561]  free_unref_page+0xed0/0xf20
[  140.549926][ T8561]  skb_release_data+0x6dc/0x8a0
[  140.554873][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  140.559884][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  140.565593][ T8561]  ? mark_lock+0x9a/0x360
[  140.569908][ T8561]  ? __lock_acquire+0x1384/0x2050
[  140.574924][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  140.580981][ T8561]  ? mark_lock+0x9a/0x360
[  140.585294][ T8561]  ? __lock_acquire+0x1384/0x2050
[  140.590309][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  140.596277][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  140.602870][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  140.609361][ T8561]  ? read_tsc+0x9/0x20
[  140.613417][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  140.618606][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  140.624925][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  140.631076][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  140.637394][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  140.644058][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  140.649242][ T8561]  ? __phys_addr+0xba/0x170
[  140.653733][ T8561]  ? build_skb_around+0x111/0x260
[  140.658748][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  140.664630][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  140.669905][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  140.675353][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  140.681237][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  140.686780][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  140.692576][ T8561]  ? synchronize_rcu+0x11b/0x360
[  140.697539][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  140.702837][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  140.709072][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  140.714967][ T8561]  ? _copy_from_user+0xa6/0xe0
[  140.719719][ T8561]  ? bpf_test_init+0x15a/0x180
[  140.724477][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  140.729927][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  140.735298][ T8561]  ? __pfx_lock_release+0x10/0x10
[  140.740319][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  140.746117][ T8561]  ? __fget_files+0x29/0x470
[  140.750695][ T8561]  ? fput+0x1a8/0x230
[  140.754678][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  140.760499][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  140.765430][ T8561]  __sys_bpf+0x48d/0x810
[  140.769684][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  140.774457][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  140.780433][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  140.786751][ T8561]  ? do_syscall_64+0x100/0x230
[  140.791518][ T8561]  __x64_sys_bpf+0x7c/0x90
[  140.795924][ T8561]  do_syscall_64+0xf3/0x230
[  140.800411][ T8561]  ? clear_bhb_loop+0x35/0x90
[  140.805076][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.810981][ T8561] RIP: 0033:0x7f8f8757dff9
[  140.815383][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.835338][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  140.843764][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  140.851742][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  140.859713][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  140.867704][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  140.875664][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  140.883630][ T8561]  </TASK>
[  140.886740][ T8561] BUG: Bad page state in process syz.3.1151  pfn:24536
[  140.893657][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888024536dc0 pfn:0x24536
[  140.903782][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  140.910907][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  140.919523][ T8561] raw: ffff888024536dc0 0000000000000001 00000000ffffffff 0000000000000000
[  140.928139][ T8561] page dumped because: page_pool leak
[  140.933531][ T8561] page_owner tracks the page as allocated
[  140.939247][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628231800, free_ts 139411199844
[  140.956501][ T8561]  post_alloc_hook+0x1f3/0x230
[  140.961276][ T8561]  get_page_from_freelist+0x3045/0x3190
[  140.966854][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  140.972054][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  140.977546][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  140.983471][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  140.988662][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  140.994087][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  140.999472][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  141.004436][ T8561]  __sys_bpf+0x48d/0x810
[  141.008683][ T8561]  __x64_sys_bpf+0x7c/0x90
[  141.013083][ T8561]  do_syscall_64+0xf3/0x230
[  141.017631][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.023556][ T8561] page last free pid 8536 tgid 8536 stack trace:
[  141.029875][ T8561]  free_unref_folios+0xf12/0x18d0
[  141.034971][ T8561]  folios_put_refs+0x76c/0x860
[  141.039735][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  141.045415][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  141.050010][ T8561]  tlb_finish_mmu+0xd4/0x200
[  141.054656][ T8561]  exit_mmap+0x496/0xc40
[  141.058911][ T8561]  __mmput+0x115/0x390
[  141.062970][ T8561]  exit_mm+0x220/0x310
[  141.067068][ T8561]  do_exit+0x9b2/0x28e0
[  141.071245][ T8561]  do_group_exit+0x207/0x2c0
[  141.075875][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  141.080902][ T8561]  x64_sys_call+0x2634/0x2640
[  141.085610][ T8561]  do_syscall_64+0xf3/0x230
[  141.090115][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.096047][ T8561] Modules linked in:
[  141.099946][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  141.111735][ T8561] Tainted: [B]=BAD_PAGE
[  141.115906][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  141.125950][ T8561] Call Trace:
[  141.129219][ T8561]  <TASK>
[  141.132131][ T8561]  dump_stack_lvl+0x241/0x360
[  141.136804][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.142079][ T8561]  ? __pfx_print_modules+0x10/0x10
[  141.147180][ T8561]  bad_page+0x166/0x1b0
[  141.151321][ T8561]  free_unref_page+0xed0/0xf20
[  141.156088][ T8561]  skb_release_data+0x6dc/0x8a0
[  141.160945][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  141.165961][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  141.171679][ T8561]  ? mark_lock+0x9a/0x360
[  141.175993][ T8561]  ? __lock_acquire+0x1384/0x2050
[  141.181009][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  141.187063][ T8561]  ? mark_lock+0x9a/0x360
[  141.191372][ T8561]  ? __lock_acquire+0x1384/0x2050
[  141.196386][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  141.202370][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  141.208948][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  141.215462][ T8561]  ? read_tsc+0x9/0x20
[  141.219540][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  141.224727][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  141.231043][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  141.237196][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  141.243550][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  141.250214][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  141.255408][ T8561]  ? __phys_addr+0xba/0x170
[  141.259896][ T8561]  ? build_skb_around+0x111/0x260
[  141.264911][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  141.270790][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  141.276062][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  141.281508][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  141.287390][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  141.292923][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  141.298725][ T8561]  ? synchronize_rcu+0x11b/0x360
[  141.303662][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  141.308958][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  141.315199][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  141.321105][ T8561]  ? _copy_from_user+0xa6/0xe0
[  141.325860][ T8561]  ? bpf_test_init+0x15a/0x180
[  141.330718][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  141.336168][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  141.341539][ T8561]  ? __pfx_lock_release+0x10/0x10
[  141.346555][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  141.352346][ T8561]  ? __fget_files+0x29/0x470
[  141.356925][ T8561]  ? fput+0x1a8/0x230
[  141.360896][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  141.366693][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  141.371617][ T8561]  __sys_bpf+0x48d/0x810
[  141.375841][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  141.380591][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  141.386558][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  141.392872][ T8561]  ? do_syscall_64+0x100/0x230
[  141.397619][ T8561]  __x64_sys_bpf+0x7c/0x90
[  141.402194][ T8561]  do_syscall_64+0xf3/0x230
[  141.406685][ T8561]  ? clear_bhb_loop+0x35/0x90
[  141.411353][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.417242][ T8561] RIP: 0033:0x7f8f8757dff9
[  141.421641][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.441336][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  141.449765][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  141.457724][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  141.465944][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  141.473912][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  141.481876][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  141.489844][ T8561]  </TASK>
[  141.492969][ T8561] BUG: Bad page state in process syz.3.1151  pfn:2d359
[  141.499854][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88802d359c80 pfn:0x2d359
[  141.509990][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  141.517162][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  141.525785][ T8561] raw: ffff88802d359c80 0000000000000001 00000000ffffffff 0000000000000000
[  141.534387][ T8561] page dumped because: page_pool leak
[  141.539756][ T8561] page_owner tracks the page as allocated
[  141.545519][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628220405, free_ts 139411210158
[  141.562573][ T8561]  post_alloc_hook+0x1f3/0x230
[  141.567362][ T8561]  get_page_from_freelist+0x3045/0x3190
[  141.572912][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  141.578146][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  141.583639][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  141.589542][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  141.594760][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  141.600145][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  141.605554][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  141.610494][ T8561]  __sys_bpf+0x48d/0x810
[  141.614753][ T8561]  __x64_sys_bpf+0x7c/0x90
[  141.619178][ T8561]  do_syscall_64+0xf3/0x230
[  141.623712][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.629614][ T8561] page last free pid 8536 tgid 8536 stack trace:
[  141.635957][ T8561]  free_unref_folios+0xf12/0x18d0
[  141.640989][ T8561]  folios_put_refs+0x76c/0x860
[  141.645787][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  141.651429][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  141.656052][ T8561]  tlb_finish_mmu+0xd4/0x200
[  141.660660][ T8561]  exit_mmap+0x496/0xc40
[  141.665255][ T8561]  __mmput+0x115/0x390
[  141.669339][ T8561]  exit_mm+0x220/0x310
[  141.673453][ T8561]  do_exit+0x9b2/0x28e0
[  141.677619][ T8561]  do_group_exit+0x207/0x2c0
[  141.682202][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  141.687258][ T8561]  x64_sys_call+0x2634/0x2640
[  141.691948][ T8561]  do_syscall_64+0xf3/0x230
[  141.696487][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.702394][ T8561] Modules linked in:
[  141.706342][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  141.718151][ T8561] Tainted: [B]=BAD_PAGE
[  141.722284][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  141.732413][ T8561] Call Trace:
[  141.735678][ T8561]  <TASK>
[  141.738594][ T8561]  dump_stack_lvl+0x241/0x360
[  141.743263][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.748454][ T8561]  ? __pfx_print_modules+0x10/0x10
[  141.753558][ T8561]  bad_page+0x166/0x1b0
[  141.757695][ T8561]  free_unref_page+0xed0/0xf20
[  141.762449][ T8561]  skb_release_data+0x6dc/0x8a0
[  141.767286][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  141.772306][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  141.778027][ T8561]  ? mark_lock+0x9a/0x360
[  141.782349][ T8561]  ? __lock_acquire+0x1384/0x2050
[  141.787374][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  141.793439][ T8561]  ? mark_lock+0x9a/0x360
[  141.797842][ T8561]  ? __lock_acquire+0x1384/0x2050
[  141.802862][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  141.808856][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  141.815437][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  141.821923][ T8561]  ? read_tsc+0x9/0x20
[  141.825982][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  141.831269][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  141.837584][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  141.843729][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  141.850050][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  141.856715][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  141.861895][ T8561]  ? __phys_addr+0xba/0x170
[  141.866385][ T8561]  ? build_skb_around+0x111/0x260
[  141.871417][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  141.877298][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  141.882567][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  141.888017][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  141.893927][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  141.899482][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  141.905279][ T8561]  ? synchronize_rcu+0x11b/0x360
[  141.910203][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  141.915477][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  141.921719][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  141.927633][ T8561]  ? _copy_from_user+0xa6/0xe0
[  141.932386][ T8561]  ? bpf_test_init+0x15a/0x180
[  141.937165][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  141.942613][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  141.948006][ T8561]  ? __pfx_lock_release+0x10/0x10
[  141.953025][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  141.958825][ T8561]  ? __fget_files+0x29/0x470
[  141.963408][ T8561]  ? fput+0x1a8/0x230
[  141.967398][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  141.973192][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  141.978117][ T8561]  __sys_bpf+0x48d/0x810
[  141.982344][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  141.987098][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  141.993082][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  141.999398][ T8561]  ? do_syscall_64+0x100/0x230
[  142.004147][ T8561]  __x64_sys_bpf+0x7c/0x90
[  142.008548][ T8561]  do_syscall_64+0xf3/0x230
[  142.013033][ T8561]  ? clear_bhb_loop+0x35/0x90
[  142.017712][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.023609][ T8561] RIP: 0033:0x7f8f8757dff9
[  142.028005][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.047599][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  142.056001][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  142.063962][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  142.071924][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  142.079891][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  142.087854][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  142.095819][ T8561]  </TASK>
[  142.098900][ T8561] BUG: Bad page state in process syz.3.1151  pfn:66519
[  142.105809][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888066519c80 pfn:0x66519
[  142.115903][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  142.123005][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  142.131788][ T8561] raw: ffff888066519c80 0000000000000001 00000000ffffffff 0000000000000000
[  142.140399][ T8561] page dumped because: page_pool leak
[  142.145784][ T8561] page_owner tracks the page as allocated
[  142.151499][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628208881, free_ts 139411219315
[  142.168564][ T8561]  post_alloc_hook+0x1f3/0x230
[  142.173387][ T8561]  get_page_from_freelist+0x3045/0x3190
[  142.178963][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  142.184190][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  142.189661][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  142.195610][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  142.200821][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  142.206231][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  142.211616][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  142.216588][ T8561]  __sys_bpf+0x48d/0x810
[  142.220842][ T8561]  __x64_sys_bpf+0x7c/0x90
[  142.225307][ T8561]  do_syscall_64+0xf3/0x230
[  142.229830][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.235806][ T8561] page last free pid 8536 tgid 8536 stack trace:
[  142.242242][ T8561]  free_unref_folios+0xf12/0x18d0
[  142.247304][ T8561]  folios_put_refs+0x76c/0x860
[  142.252081][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  142.257751][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  142.262350][ T8561]  tlb_finish_mmu+0xd4/0x200
[  142.266998][ T8561]  exit_mmap+0x496/0xc40
[  142.271272][ T8561]  __mmput+0x115/0x390
[  142.275385][ T8561]  exit_mm+0x220/0x310
[  142.279463][ T8561]  do_exit+0x9b2/0x28e0
[  142.283670][ T8561]  do_group_exit+0x207/0x2c0
[  142.288292][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  142.293453][ T8561]  x64_sys_call+0x2634/0x2640
[  142.298151][ T8561]  do_syscall_64+0xf3/0x230
[  142.302677][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.308614][ T8561] Modules linked in:
[  142.312518][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  142.324309][ T8561] Tainted: [B]=BAD_PAGE
[  142.328439][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  142.338479][ T8561] Call Trace:
[  142.341746][ T8561]  <TASK>
[  142.344662][ T8561]  dump_stack_lvl+0x241/0x360
[  142.349327][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  142.354514][ T8561]  ? __pfx_print_modules+0x10/0x10
[  142.359614][ T8561]  bad_page+0x166/0x1b0
[  142.363772][ T8561]  free_unref_page+0xed0/0xf20
[  142.368552][ T8561]  skb_release_data+0x6dc/0x8a0
[  142.373399][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  142.378406][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  142.384120][ T8561]  ? mark_lock+0x9a/0x360
[  142.388435][ T8561]  ? __lock_acquire+0x1384/0x2050
[  142.393451][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  142.399500][ T8561]  ? mark_lock+0x9a/0x360
[  142.403837][ T8561]  ? __lock_acquire+0x1384/0x2050
[  142.408850][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  142.414820][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  142.421393][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  142.427900][ T8561]  ? read_tsc+0x9/0x20
[  142.431981][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  142.437169][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  142.443485][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  142.449625][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  142.455937][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  142.462690][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  142.467883][ T8561]  ? __phys_addr+0xba/0x170
[  142.472377][ T8561]  ? build_skb_around+0x111/0x260
[  142.477406][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  142.483290][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  142.488560][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  142.494007][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  142.499886][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  142.505422][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  142.511216][ T8561]  ? synchronize_rcu+0x11b/0x360
[  142.516160][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  142.521437][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  142.527682][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  142.533586][ T8561]  ? _copy_from_user+0xa6/0xe0
[  142.538355][ T8561]  ? bpf_test_init+0x15a/0x180
[  142.543112][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  142.548560][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  142.553926][ T8561]  ? __pfx_lock_release+0x10/0x10
[  142.558955][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  142.564755][ T8561]  ? __fget_files+0x29/0x470
[  142.569339][ T8561]  ? fput+0x1a8/0x230
[  142.573313][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  142.579116][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  142.584045][ T8561]  __sys_bpf+0x48d/0x810
[  142.588277][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  142.593035][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  142.599022][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  142.605343][ T8561]  ? do_syscall_64+0x100/0x230
[  142.610095][ T8561]  __x64_sys_bpf+0x7c/0x90
[  142.614498][ T8561]  do_syscall_64+0xf3/0x230
[  142.618991][ T8561]  ? clear_bhb_loop+0x35/0x90
[  142.623652][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.629532][ T8561] RIP: 0033:0x7f8f8757dff9
[  142.633936][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.653540][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  142.661941][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  142.669906][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  142.677877][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  142.685837][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  142.693795][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  142.701759][ T8561]  </TASK>
[  142.704849][ T8561] BUG: Bad page state in process syz.3.1151  pfn:6667a
[  142.711707][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x20017 pfn:0x6667a
[  142.720859][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  142.728013][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  142.736635][ T8561] raw: 0000000000020017 0000000000000001 00000000ffffffff 0000000000000000
[  142.745248][ T8561] page dumped because: page_pool leak
[  142.750614][ T8561] page_owner tracks the page as allocated
[  142.756377][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628197381, free_ts 139411228476
[  142.773435][ T8561]  post_alloc_hook+0x1f3/0x230
[  142.778211][ T8561]  get_page_from_freelist+0x3045/0x3190
[  142.783813][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  142.789021][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  142.794504][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  142.800419][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  142.805694][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  142.811098][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  142.816536][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  142.821490][ T8561]  __sys_bpf+0x48d/0x810
[  142.825759][ T8561]  __x64_sys_bpf+0x7c/0x90
[  142.830176][ T8561]  do_syscall_64+0xf3/0x230
[  142.834698][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.840603][ T8561] page last free pid 8536 tgid 8536 stack trace:
[  142.846986][ T8561]  free_unref_folios+0xf12/0x18d0
[  142.852030][ T8561]  folios_put_refs+0x76c/0x860
[  142.856828][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  142.862472][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  142.867099][ T8561]  tlb_finish_mmu+0xd4/0x200
[  142.871695][ T8561]  exit_mmap+0x496/0xc40
[  142.875969][ T8561]  __mmput+0x115/0x390
[  142.880094][ T8561]  exit_mm+0x220/0x310
[  142.884210][ T8561]  do_exit+0x9b2/0x28e0
[  142.888366][ T8561]  do_group_exit+0x207/0x2c0
[  142.892937][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  142.897988][ T8561]  x64_sys_call+0x2634/0x2640
[  142.902677][ T8561]  do_syscall_64+0xf3/0x230
[  142.907218][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.913124][ T8561] Modules linked in:
[  142.917046][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  142.928854][ T8561] Tainted: [B]=BAD_PAGE
[  142.932983][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  142.943029][ T8561] Call Trace:
[  142.946302][ T8561]  <TASK>
[  142.949223][ T8561]  dump_stack_lvl+0x241/0x360
[  142.953904][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  142.959091][ T8561]  ? __pfx_print_modules+0x10/0x10
[  142.964214][ T8561]  bad_page+0x166/0x1b0
[  142.968358][ T8561]  free_unref_page+0xed0/0xf20
[  142.973113][ T8561]  skb_release_data+0x6dc/0x8a0
[  142.977958][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  142.982973][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  142.988763][ T8561]  ? mark_lock+0x9a/0x360
[  142.993096][ T8561]  ? __lock_acquire+0x1384/0x2050
[  142.998107][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  143.004157][ T8561]  ? mark_lock+0x9a/0x360
[  143.008467][ T8561]  ? __lock_acquire+0x1384/0x2050
[  143.013488][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  143.019470][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  143.026051][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  143.032535][ T8561]  ? read_tsc+0x9/0x20
[  143.036590][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  143.041769][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  143.048098][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  143.054236][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  143.060543][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  143.067195][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  143.072397][ T8561]  ? __phys_addr+0xba/0x170
[  143.076900][ T8561]  ? build_skb_around+0x111/0x260
[  143.081927][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  143.087819][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  143.093122][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  143.098679][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  143.104575][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  143.110108][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  143.115898][ T8561]  ? synchronize_rcu+0x11b/0x360
[  143.120815][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  143.126097][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  143.132340][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  143.138239][ T8561]  ? _copy_from_user+0xa6/0xe0
[  143.142998][ T8561]  ? bpf_test_init+0x15a/0x180
[  143.147753][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  143.153198][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  143.158559][ T8561]  ? __pfx_lock_release+0x10/0x10
[  143.163572][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  143.169360][ T8561]  ? __fget_files+0x29/0x470
[  143.173989][ T8561]  ? fput+0x1a8/0x230
[  143.177980][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  143.183805][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  143.188730][ T8561]  __sys_bpf+0x48d/0x810
[  143.192958][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  143.197705][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  143.203670][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  143.209982][ T8561]  ? do_syscall_64+0x100/0x230
[  143.214728][ T8561]  __x64_sys_bpf+0x7c/0x90
[  143.219130][ T8561]  do_syscall_64+0xf3/0x230
[  143.223630][ T8561]  ? clear_bhb_loop+0x35/0x90
[  143.228305][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.234204][ T8561] RIP: 0033:0x7f8f8757dff9
[  143.238601][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.258190][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  143.266587][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  143.274543][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  143.282495][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  143.290456][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  143.298431][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  143.306402][ T8561]  </TASK>
[  143.309509][ T8561] BUG: Bad page state in process syz.3.1151  pfn:4197b
[  143.316416][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4197b
[  143.325213][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  143.332344][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  143.340982][ T8561] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[  143.349593][ T8561] page dumped because: page_pool leak
[  143.354989][ T8561] page_owner tracks the page as allocated
[  143.360701][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628185443, free_ts 139411237933
[  143.377845][ T8561]  post_alloc_hook+0x1f3/0x230
[  143.382644][ T8561]  get_page_from_freelist+0x3045/0x3190
[  143.388230][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  143.393470][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  143.398919][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  143.404840][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  143.410050][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  143.415455][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  143.420835][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  143.425807][ T8561]  __sys_bpf+0x48d/0x810
[  143.430055][ T8561]  __x64_sys_bpf+0x7c/0x90
[  143.434491][ T8561]  do_syscall_64+0xf3/0x230
[  143.438993][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.444915][ T8561] page last free pid 8536 tgid 8536 stack trace:
[  143.451244][ T8561]  free_unref_folios+0xf12/0x18d0
[  143.456298][ T8561]  folios_put_refs+0x76c/0x860
[  143.461070][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  143.466738][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  143.471335][ T8561]  tlb_finish_mmu+0xd4/0x200
[  143.475947][ T8561]  exit_mmap+0x496/0xc40
[  143.480189][ T8561]  __mmput+0x115/0x390
[  143.484277][ T8561]  exit_mm+0x220/0x310
[  143.488349][ T8561]  do_exit+0x9b2/0x28e0
[  143.492486][ T8561]  do_group_exit+0x207/0x2c0
[  143.497105][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  143.502131][ T8561]  x64_sys_call+0x2634/0x2640
[  143.506862][ T8561]  do_syscall_64+0xf3/0x230
[  143.511400][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.517329][ T8561] Modules linked in:
[  143.521250][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  143.533059][ T8561] Tainted: [B]=BAD_PAGE
[  143.537191][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  143.547226][ T8561] Call Trace:
[  143.550488][ T8561]  <TASK>
[  143.553403][ T8561]  dump_stack_lvl+0x241/0x360
[  143.558069][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  143.563251][ T8561]  ? __pfx_print_modules+0x10/0x10
[  143.568348][ T8561]  bad_page+0x166/0x1b0
[  143.572485][ T8561]  free_unref_page+0xed0/0xf20
[  143.577240][ T8561]  skb_release_data+0x6dc/0x8a0
[  143.582078][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  143.587083][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  143.592794][ T8561]  ? mark_lock+0x9a/0x360
[  143.597110][ T8561]  ? __lock_acquire+0x1384/0x2050
[  143.602122][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  143.608172][ T8561]  ? mark_lock+0x9a/0x360
[  143.612478][ T8561]  ? __lock_acquire+0x1384/0x2050
[  143.617518][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  143.623495][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  143.630070][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  143.636553][ T8561]  ? read_tsc+0x9/0x20
[  143.640603][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  143.645784][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  143.652090][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  143.658226][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  143.664557][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  143.671212][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  143.676394][ T8561]  ? __phys_addr+0xba/0x170
[  143.680879][ T8561]  ? build_skb_around+0x111/0x260
[  143.685890][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  143.691767][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  143.697042][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  143.702489][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  143.708368][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  143.713925][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  143.719731][ T8561]  ? synchronize_rcu+0x11b/0x360
[  143.724664][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  143.729967][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  143.736195][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  143.742074][ T8561]  ? _copy_from_user+0xa6/0xe0
[  143.746845][ T8561]  ? bpf_test_init+0x15a/0x180
[  143.751592][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  143.757036][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  143.762392][ T8561]  ? __pfx_lock_release+0x10/0x10
[  143.767401][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  143.773188][ T8561]  ? __fget_files+0x29/0x470
[  143.777763][ T8561]  ? fput+0x1a8/0x230
[  143.781730][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  143.787521][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  143.792467][ T8561]  __sys_bpf+0x48d/0x810
[  143.796700][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  143.801454][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  143.807420][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  143.813753][ T8561]  ? do_syscall_64+0x100/0x230
[  143.818498][ T8561]  __x64_sys_bpf+0x7c/0x90
[  143.822895][ T8561]  do_syscall_64+0xf3/0x230
[  143.827388][ T8561]  ? clear_bhb_loop+0x35/0x90
[  143.832070][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.838035][ T8561] RIP: 0033:0x7f8f8757dff9
[  143.842429][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.862015][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  143.870518][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  143.878478][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  143.886433][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  143.894385][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  143.902344][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  143.910306][ T8561]  </TASK>
[  143.913390][ T8561] BUG: Bad page state in process syz.3.1151  pfn:3250c
[  143.920242][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88803250c500 pfn:0x3250c
[  143.930333][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  143.937474][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  143.946099][ T8561] raw: ffff88803250c500 0000000000000001 00000000ffffffff 0000000000000000
[  143.954726][ T8561] page dumped because: page_pool leak
[  143.960078][ T8561] page_owner tracks the page as allocated
[  143.965836][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628173857, free_ts 139411246961
[  143.982888][ T8561]  post_alloc_hook+0x1f3/0x230
[  143.987685][ T8561]  get_page_from_freelist+0x3045/0x3190
[  143.993235][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  143.998473][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  144.003960][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  144.009842][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  144.015059][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  144.020438][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  144.025842][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  144.030783][ T8561]  __sys_bpf+0x48d/0x810
[  144.035051][ T8561]  __x64_sys_bpf+0x7c/0x90
[  144.039476][ T8561]  do_syscall_64+0xf3/0x230
[  144.044005][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.049908][ T8561] page last free pid 8536 tgid 8536 stack trace:
[  144.056255][ T8561]  free_unref_folios+0xf12/0x18d0
[  144.061288][ T8561]  folios_put_refs+0x76c/0x860
[  144.066097][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  144.071742][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  144.076380][ T8561]  tlb_finish_mmu+0xd4/0x200
[  144.080986][ T8561]  exit_mmap+0x496/0xc40
[  144.085264][ T8561]  __mmput+0x115/0x390
[  144.089342][ T8561]  exit_mm+0x220/0x310
[  144.093443][ T8561]  do_exit+0x9b2/0x28e0
[  144.097608][ T8561]  do_group_exit+0x207/0x2c0
[  144.102195][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  144.107269][ T8561]  x64_sys_call+0x2634/0x2640
[  144.111961][ T8561]  do_syscall_64+0xf3/0x230
[  144.116494][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.122401][ T8561] Modules linked in:
[  144.126327][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  144.138138][ T8561] Tainted: [B]=BAD_PAGE
[  144.142276][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  144.152332][ T8561] Call Trace:
[  144.155708][ T8561]  <TASK>
[  144.158625][ T8561]  dump_stack_lvl+0x241/0x360
[  144.163292][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  144.168474][ T8561]  ? __pfx_print_modules+0x10/0x10
[  144.173660][ T8561]  bad_page+0x166/0x1b0
[  144.177798][ T8561]  free_unref_page+0xed0/0xf20
[  144.182550][ T8561]  skb_release_data+0x6dc/0x8a0
[  144.187390][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  144.192419][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  144.198126][ T8561]  ? mark_lock+0x9a/0x360
[  144.202438][ T8561]  ? __lock_acquire+0x1384/0x2050
[  144.207457][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  144.213516][ T8561]  ? mark_lock+0x9a/0x360
[  144.217825][ T8561]  ? __lock_acquire+0x1384/0x2050
[  144.222837][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  144.228803][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  144.235378][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  144.241868][ T8561]  ? read_tsc+0x9/0x20
[  144.245924][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  144.251105][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  144.257430][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  144.263581][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  144.269903][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  144.276567][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  144.281750][ T8561]  ? __phys_addr+0xba/0x170
[  144.286240][ T8561]  ? build_skb_around+0x111/0x260
[  144.291253][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  144.297130][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  144.302396][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  144.307849][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  144.313764][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  144.319299][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  144.325108][ T8561]  ? synchronize_rcu+0x11b/0x360
[  144.330028][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  144.335303][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  144.341530][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  144.347411][ T8561]  ? _copy_from_user+0xa6/0xe0
[  144.352158][ T8561]  ? bpf_test_init+0x15a/0x180
[  144.356914][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  144.362374][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  144.367733][ T8561]  ? __pfx_lock_release+0x10/0x10
[  144.372742][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  144.378536][ T8561]  ? __fget_files+0x29/0x470
[  144.383107][ T8561]  ? fput+0x1a8/0x230
[  144.387076][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  144.392871][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  144.397795][ T8561]  __sys_bpf+0x48d/0x810
[  144.402018][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  144.406766][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  144.412736][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  144.419077][ T8561]  ? do_syscall_64+0x100/0x230
[  144.423910][ T8561]  __x64_sys_bpf+0x7c/0x90
[  144.428308][ T8561]  do_syscall_64+0xf3/0x230
[  144.432788][ T8561]  ? clear_bhb_loop+0x35/0x90
[  144.437447][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.443326][ T8561] RIP: 0033:0x7f8f8757dff9
[  144.447733][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.467327][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  144.475726][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  144.483684][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  144.491637][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  144.499598][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  144.507549][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  144.515514][ T8561]  </TASK>
[  144.518620][ T8561] BUG: Bad page state in process syz.3.1151  pfn:7cdfb
[  144.525520][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88807cdfbaa8 pfn:0x7cdfb
[  144.535636][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  144.542738][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  144.551346][ T8561] raw: ffff88807cdfbaa8 0000000000000001 00000000ffffffff 0000000000000000
[  144.559957][ T8561] page dumped because: page_pool leak
[  144.565337][ T8561] page_owner tracks the page as allocated
[  144.571059][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628161901, free_ts 139411273927
[  144.588125][ T8561]  post_alloc_hook+0x1f3/0x230
[  144.592903][ T8561]  get_page_from_freelist+0x3045/0x3190
[  144.598496][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  144.603723][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  144.609169][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  144.615088][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  144.620303][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  144.625719][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  144.631106][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  144.636075][ T8561]  __sys_bpf+0x48d/0x810
[  144.640323][ T8561]  __x64_sys_bpf+0x7c/0x90
[  144.644860][ T8561]  do_syscall_64+0xf3/0x230
[  144.649366][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.655287][ T8561] page last free pid 8536 tgid 8536 stack trace:
[  144.661610][ T8561]  free_unref_folios+0xf12/0x18d0
[  144.666665][ T8561]  folios_put_refs+0x76c/0x860
[  144.671439][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  144.677101][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  144.681714][ T8561]  tlb_finish_mmu+0xd4/0x200
[  144.686331][ T8561]  exit_mmap+0x496/0xc40
[  144.690572][ T8561]  __mmput+0x115/0x390
[  144.694672][ T8561]  exit_mm+0x220/0x310
[  144.698742][ T8561]  do_exit+0x9b2/0x28e0
[  144.702881][ T8561]  do_group_exit+0x207/0x2c0
[  144.707500][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  144.712526][ T8561]  x64_sys_call+0x2634/0x2640
[  144.717239][ T8561]  do_syscall_64+0xf3/0x230
[  144.721756][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.727679][ T8561] Modules linked in:
[  144.731585][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  144.743381][ T8561] Tainted: [B]=BAD_PAGE
[  144.747513][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  144.757545][ T8561] Call Trace:
[  144.760815][ T8561]  <TASK>
[  144.763752][ T8561]  dump_stack_lvl+0x241/0x360
[  144.768421][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  144.773604][ T8561]  ? __pfx_print_modules+0x10/0x10
[  144.778702][ T8561]  bad_page+0x166/0x1b0
[  144.782838][ T8561]  free_unref_page+0xed0/0xf20
[  144.787597][ T8561]  skb_release_data+0x6dc/0x8a0
[  144.792447][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  144.797452][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  144.803157][ T8561]  ? mark_lock+0x9a/0x360
[  144.807468][ T8561]  ? __lock_acquire+0x1384/0x2050
[  144.812482][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  144.818534][ T8561]  ? mark_lock+0x9a/0x360
[  144.822853][ T8561]  ? __lock_acquire+0x1384/0x2050
[  144.827872][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  144.833842][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  144.840432][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  144.846915][ T8561]  ? read_tsc+0x9/0x20
[  144.850968][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  144.856146][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  144.862457][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  144.868592][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  144.874903][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  144.881575][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  144.886756][ T8561]  ? __phys_addr+0xba/0x170
[  144.891240][ T8561]  ? build_skb_around+0x111/0x260
[  144.896251][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  144.902133][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  144.907404][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  144.912846][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  144.918725][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  144.924267][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  144.930065][ T8561]  ? synchronize_rcu+0x11b/0x360
[  144.935001][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  144.940293][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  144.946541][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  144.952422][ T8561]  ? _copy_from_user+0xa6/0xe0
[  144.957167][ T8561]  ? bpf_test_init+0x15a/0x180
[  144.961913][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  144.967360][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  144.972718][ T8561]  ? __pfx_lock_release+0x10/0x10
[  144.977728][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  144.983527][ T8561]  ? __fget_files+0x29/0x470
[  144.988115][ T8561]  ? fput+0x1a8/0x230
[  144.992077][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  144.997868][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  145.002790][ T8561]  __sys_bpf+0x48d/0x810
[  145.007017][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  145.011768][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  145.017740][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  145.024064][ T8561]  ? do_syscall_64+0x100/0x230
[  145.028816][ T8561]  __x64_sys_bpf+0x7c/0x90
[  145.033212][ T8561]  do_syscall_64+0xf3/0x230
[  145.037697][ T8561]  ? clear_bhb_loop+0x35/0x90
[  145.042362][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.048241][ T8561] RIP: 0033:0x7f8f8757dff9
[  145.052658][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.072246][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  145.080640][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  145.088606][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  145.096586][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  145.104545][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  145.112495][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  145.120481][ T8561]  </TASK>
[  145.123613][ T8561] BUG: Bad page state in process syz.3.1151  pfn:61c74
[  145.130462][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88807b7b6880 pfn:0x61c74
[  145.140597][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  145.147807][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  145.156424][ T8561] raw: ffff88807b7b6880 0000000000000001 00000000ffffffff 0000000000000000
[  145.165026][ T8561] page dumped because: page_pool leak
[  145.170380][ T8561] page_owner tracks the page as allocated
[  145.176115][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628149561, free_ts 139411380412
[  145.193253][ T8561]  post_alloc_hook+0x1f3/0x230
[  145.198050][ T8561]  get_page_from_freelist+0x3045/0x3190
[  145.203637][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  145.208852][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  145.214339][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  145.220244][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  145.225473][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  145.230869][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  145.236291][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  145.241237][ T8561]  __sys_bpf+0x48d/0x810
[  145.245518][ T8561]  __x64_sys_bpf+0x7c/0x90
[  145.249940][ T8561]  do_syscall_64+0xf3/0x230
[  145.254465][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.260371][ T8561] page last free pid 8536 tgid 8536 stack trace:
[  145.266742][ T8561]  free_unref_folios+0xf12/0x18d0
[  145.271783][ T8561]  folios_put_refs+0x76c/0x860
[  145.276656][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  145.282315][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  145.287040][ T8561]  tlb_finish_mmu+0xd4/0x200
[  145.291666][ T8561]  exit_mmap+0x496/0xc40
[  145.295937][ T8561]  __mmput+0x115/0x390
[  145.300014][ T8561]  exit_mm+0x220/0x310
[  145.304101][ T8561]  do_exit+0x9b2/0x28e0
[  145.308256][ T8561]  do_group_exit+0x207/0x2c0
[  145.312863][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  145.317915][ T8561]  x64_sys_call+0x2634/0x2640
[  145.322657][ T8561]  do_syscall_64+0xf3/0x230
[  145.327194][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.333107][ T8561] Modules linked in:
[  145.337031][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  145.348844][ T8561] Tainted: [B]=BAD_PAGE
[  145.352976][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  145.363010][ T8561] Call Trace:
[  145.366276][ T8561]  <TASK>
[  145.369191][ T8561]  dump_stack_lvl+0x241/0x360
[  145.373867][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  145.379049][ T8561]  ? __pfx_print_modules+0x10/0x10
[  145.384170][ T8561]  bad_page+0x166/0x1b0
[  145.388315][ T8561]  free_unref_page+0xed0/0xf20
[  145.393065][ T8561]  skb_release_data+0x6dc/0x8a0
[  145.397908][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  145.402917][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  145.408631][ T8561]  ? mark_lock+0x9a/0x360
[  145.412946][ T8561]  ? __lock_acquire+0x1384/0x2050
[  145.417957][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  145.424012][ T8561]  ? mark_lock+0x9a/0x360
[  145.428322][ T8561]  ? __lock_acquire+0x1384/0x2050
[  145.433348][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  145.439334][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  145.445938][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  145.452426][ T8561]  ? read_tsc+0x9/0x20
[  145.456494][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  145.461698][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  145.468137][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  145.474288][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  145.480604][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  145.487272][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  145.492451][ T8561]  ? __phys_addr+0xba/0x170
[  145.496943][ T8561]  ? build_skb_around+0x111/0x260
[  145.501977][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  145.507876][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  145.513157][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  145.518601][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  145.524479][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  145.530015][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  145.535812][ T8561]  ? synchronize_rcu+0x11b/0x360
[  145.540752][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  145.546027][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  145.552250][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  145.558130][ T8561]  ? _copy_from_user+0xa6/0xe0
[  145.562875][ T8561]  ? bpf_test_init+0x15a/0x180
[  145.567622][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  145.573063][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  145.578421][ T8561]  ? __pfx_lock_release+0x10/0x10
[  145.583437][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  145.589226][ T8561]  ? __fget_files+0x29/0x470
[  145.593813][ T8561]  ? fput+0x1a8/0x230
[  145.597809][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  145.603693][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  145.608619][ T8561]  __sys_bpf+0x48d/0x810
[  145.612846][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  145.617596][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  145.623561][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  145.629869][ T8561]  ? do_syscall_64+0x100/0x230
[  145.634617][ T8561]  __x64_sys_bpf+0x7c/0x90
[  145.639021][ T8561]  do_syscall_64+0xf3/0x230
[  145.643518][ T8561]  ? clear_bhb_loop+0x35/0x90
[  145.648173][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.654137][ T8561] RIP: 0033:0x7f8f8757dff9
[  145.658619][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.678204][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  145.686603][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  145.694559][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  145.702517][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  145.710470][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  145.718454][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  145.726428][ T8561]  </TASK>
[  145.729541][ T8561] BUG: Bad page state in process syz.3.1151  pfn:5e7e4
[  145.736442][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88805e7e4000 pfn:0x5e7e4
[  145.746550][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  145.753686][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  145.762270][ T8561] raw: ffff88805e7e4000 0000000000000001 00000000ffffffff 0000000000000000
[  145.770872][ T8561] page dumped because: page_pool leak
[  145.776269][ T8561] page_owner tracks the page as allocated
[  145.781968][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628131399, free_ts 139593826377
[  145.799016][ T8561]  post_alloc_hook+0x1f3/0x230
[  145.803814][ T8561]  get_page_from_freelist+0x3045/0x3190
[  145.809344][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  145.814579][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  145.820043][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  145.825979][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  145.831187][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  145.836582][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  145.841958][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  145.846956][ T8561]  __sys_bpf+0x48d/0x810
[  145.851238][ T8561]  __x64_sys_bpf+0x7c/0x90
[  145.855683][ T8561]  do_syscall_64+0xf3/0x230
[  145.860194][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.866115][ T8561] page last free pid 8549 tgid 8549 stack trace:
[  145.872435][ T8561]  free_unref_folios+0xf12/0x18d0
[  145.877499][ T8561]  folios_put_refs+0x76c/0x860
[  145.882266][ T8561]  free_pages_and_swap_cache+0x2ea/0x690
[  145.887932][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  145.892526][ T8561]  tlb_finish_mmu+0xd4/0x200
[  145.897169][ T8561]  exit_mmap+0x496/0xc40
[  145.901516][ T8561]  __mmput+0x115/0x390
[  145.905629][ T8561]  exit_mm+0x220/0x310
[  145.909706][ T8561]  do_exit+0x9b2/0x28e0
[  145.913968][ T8561]  do_group_exit+0x207/0x2c0
[  145.918556][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  145.923701][ T8561]  x64_sys_call+0x2634/0x2640
[  145.928390][ T8561]  do_syscall_64+0xf3/0x230
[  145.932888][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.938808][ T8561] Modules linked in:
[  145.942706][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  145.954500][ T8561] Tainted: [B]=BAD_PAGE
[  145.958632][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  145.968667][ T8561] Call Trace:
[  145.971927][ T8561]  <TASK>
[  145.974848][ T8561]  dump_stack_lvl+0x241/0x360
[  145.979515][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  145.984701][ T8561]  ? __pfx_print_modules+0x10/0x10
[  145.989802][ T8561]  bad_page+0x166/0x1b0
[  145.993953][ T8561]  free_unref_page+0xed0/0xf20
[  145.998728][ T8561]  skb_release_data+0x6dc/0x8a0
[  146.003603][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  146.008614][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  146.014317][ T8561]  ? mark_lock+0x9a/0x360
[  146.018630][ T8561]  ? __lock_acquire+0x1384/0x2050
[  146.023662][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  146.029733][ T8561]  ? mark_lock+0x9a/0x360
[  146.034048][ T8561]  ? __lock_acquire+0x1384/0x2050
[  146.039059][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  146.045044][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  146.051636][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  146.058152][ T8561]  ? read_tsc+0x9/0x20
[  146.062214][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  146.067414][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  146.073750][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  146.079909][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  146.086225][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  146.092902][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  146.098087][ T8561]  ? __phys_addr+0xba/0x170
[  146.102626][ T8561]  ? build_skb_around+0x111/0x260
[  146.107654][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  146.113721][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  146.118989][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  146.124517][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  146.130392][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  146.135924][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  146.141711][ T8561]  ? synchronize_rcu+0x11b/0x360
[  146.146637][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  146.151917][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  146.158147][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  146.164030][ T8561]  ? _copy_from_user+0xa6/0xe0
[  146.168773][ T8561]  ? bpf_test_init+0x15a/0x180
[  146.173516][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  146.178972][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  146.184328][ T8561]  ? __pfx_lock_release+0x10/0x10
[  146.189369][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  146.195163][ T8561]  ? __fget_files+0x29/0x470
[  146.199740][ T8561]  ? fput+0x1a8/0x230
[  146.203714][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  146.209505][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  146.214604][ T8561]  __sys_bpf+0x48d/0x810
[  146.218841][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  146.223587][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  146.229547][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  146.235858][ T8561]  ? do_syscall_64+0x100/0x230
[  146.240617][ T8561]  __x64_sys_bpf+0x7c/0x90
[  146.245029][ T8561]  do_syscall_64+0xf3/0x230
[  146.249521][ T8561]  ? clear_bhb_loop+0x35/0x90
[  146.254189][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.260079][ T8561] RIP: 0033:0x7f8f8757dff9
[  146.264477][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.284070][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  146.292474][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  146.300526][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  146.308747][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  146.316703][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  146.324681][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  146.332638][ T8561]  </TASK>
[  146.335733][ T8561] BUG: Bad page state in process syz.3.1151  pfn:31c5f
[  146.342581][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888031c5fe58 pfn:0x31c5f
[  146.352675][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  146.359825][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  146.368434][ T8561] raw: ffff888031c5fe58 0000000000000001 00000000ffffffff 0000000000000000
[  146.377034][ T8561] page dumped because: page_pool leak
[  146.382393][ T8561] page_owner tracks the page as allocated
[  146.388129][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628119786, free_ts 139593835011
[  146.405175][ T8561]  post_alloc_hook+0x1f3/0x230
[  146.409931][ T8561]  get_page_from_freelist+0x3045/0x3190
[  146.415502][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  146.420708][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  146.426191][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  146.432091][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  146.437317][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  146.442697][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  146.448099][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  146.453037][ T8561]  __sys_bpf+0x48d/0x810
[  146.457313][ T8561]  __x64_sys_bpf+0x7c/0x90
[  146.461735][ T8561]  do_syscall_64+0xf3/0x230
[  146.466260][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.472158][ T8561] page last free pid 8549 tgid 8549 stack trace:
[  146.478500][ T8561]  free_unref_folios+0xf12/0x18d0
[  146.483566][ T8561]  folios_put_refs+0x76c/0x860
[  146.488311][ T8561]  free_pages_and_swap_cache+0x2ea/0x690
[  146.493979][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  146.498569][ T8561]  tlb_finish_mmu+0xd4/0x200
[  146.503137][ T8561]  exit_mmap+0x496/0xc40
[  146.507405][ T8561]  __mmput+0x115/0x390
[  146.511475][ T8561]  exit_mm+0x220/0x310
[  146.515572][ T8561]  do_exit+0x9b2/0x28e0
[  146.519730][ T8561]  do_group_exit+0x207/0x2c0
[  146.524378][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  146.529406][ T8561]  x64_sys_call+0x2634/0x2640
[  146.534125][ T8561]  do_syscall_64+0xf3/0x230
[  146.538641][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.544575][ T8561] Modules linked in:
[  146.548478][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  146.560275][ T8561] Tainted: [B]=BAD_PAGE
[  146.564410][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  146.574485][ T8561] Call Trace:
[  146.577761][ T8561]  <TASK>
[  146.580687][ T8561]  dump_stack_lvl+0x241/0x360
[  146.585358][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  146.590541][ T8561]  ? __pfx_print_modules+0x10/0x10
[  146.595636][ T8561]  bad_page+0x166/0x1b0
[  146.599777][ T8561]  free_unref_page+0xed0/0xf20
[  146.604533][ T8561]  skb_release_data+0x6dc/0x8a0
[  146.609370][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  146.614374][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  146.620074][ T8561]  ? mark_lock+0x9a/0x360
[  146.624382][ T8561]  ? __lock_acquire+0x1384/0x2050
[  146.629387][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  146.635438][ T8561]  ? mark_lock+0x9a/0x360
[  146.639744][ T8561]  ? __lock_acquire+0x1384/0x2050
[  146.644754][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  146.650717][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  146.657291][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  146.663888][ T8561]  ? read_tsc+0x9/0x20
[  146.667940][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  146.673118][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  146.679428][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  146.685581][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  146.691973][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  146.698627][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  146.703823][ T8561]  ? __phys_addr+0xba/0x170
[  146.708307][ T8561]  ? build_skb_around+0x111/0x260
[  146.713311][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  146.719278][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  146.724547][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  146.730076][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  146.735951][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  146.741481][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  146.747266][ T8561]  ? synchronize_rcu+0x11b/0x360
[  146.752185][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  146.757459][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  146.763686][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  146.769572][ T8561]  ? _copy_from_user+0xa6/0xe0
[  146.774323][ T8561]  ? bpf_test_init+0x15a/0x180
[  146.779066][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  146.784512][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  146.789870][ T8561]  ? __pfx_lock_release+0x10/0x10
[  146.794881][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  146.800670][ T8561]  ? __fget_files+0x29/0x470
[  146.805261][ T8561]  ? fput+0x1a8/0x230
[  146.809249][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  146.815042][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  146.819962][ T8561]  __sys_bpf+0x48d/0x810
[  146.824183][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  146.828926][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  146.834891][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  146.841203][ T8561]  ? do_syscall_64+0x100/0x230
[  146.845943][ T8561]  __x64_sys_bpf+0x7c/0x90
[  146.850357][ T8561]  do_syscall_64+0xf3/0x230
[  146.854841][ T8561]  ? clear_bhb_loop+0x35/0x90
[  146.859498][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.865374][ T8561] RIP: 0033:0x7f8f8757dff9
[  146.869776][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.889377][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  146.897863][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  146.905819][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  146.913779][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  146.921740][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  146.929876][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  146.937834][ T8561]  </TASK>
[  146.940917][ T8561] BUG: Bad page state in process syz.3.1151  pfn:5e677
[  146.947792][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88805e677280 pfn:0x5e677
[  146.957884][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  146.965017][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  146.973652][ T8561] raw: ffff88805e677280 0000000000000001 00000000ffffffff 0000000000000000
[  146.982230][ T8561] page dumped because: page_pool leak
[  146.987617][ T8561] page_owner tracks the page as allocated
[  146.993324][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628107830, free_ts 139593844096
[  147.010445][ T8561]  post_alloc_hook+0x1f3/0x230
[  147.015332][ T8561]  get_page_from_freelist+0x3045/0x3190
[  147.020991][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  147.026224][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  147.031686][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  147.037610][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  147.042821][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  147.048259][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  147.053674][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  147.058624][ T8561]  __sys_bpf+0x48d/0x810
[  147.062850][ T8561]  __x64_sys_bpf+0x7c/0x90
[  147.067288][ T8561]  do_syscall_64+0xf3/0x230
[  147.071806][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.077754][ T8561] page last free pid 8549 tgid 8549 stack trace:
[  147.084096][ T8561]  free_unref_folios+0xf12/0x18d0
[  147.089135][ T8561]  folios_put_refs+0x76c/0x860
[  147.093913][ T8561]  free_pages_and_swap_cache+0x2ea/0x690
[  147.099562][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  147.104182][ T8561]  tlb_finish_mmu+0xd4/0x200
[  147.108774][ T8561]  exit_mmap+0x496/0xc40
[  147.112997][ T8561]  __mmput+0x115/0x390
[  147.117087][ T8561]  exit_mm+0x220/0x310
[  147.121155][ T8561]  do_exit+0x9b2/0x28e0
[  147.125331][ T8561]  do_group_exit+0x207/0x2c0
[  147.129923][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  147.134969][ T8561]  x64_sys_call+0x2634/0x2640
[  147.139657][ T8561]  do_syscall_64+0xf3/0x230
[  147.144184][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.150085][ T8561] Modules linked in:
[  147.154108][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  147.165916][ T8561] Tainted: [B]=BAD_PAGE
[  147.170045][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  147.180093][ T8561] Call Trace:
[  147.183361][ T8561]  <TASK>
[  147.186287][ T8561]  dump_stack_lvl+0x241/0x360
[  147.190954][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  147.196155][ T8561]  ? __pfx_print_modules+0x10/0x10
[  147.201253][ T8561]  bad_page+0x166/0x1b0
[  147.205482][ T8561]  free_unref_page+0xed0/0xf20
[  147.210230][ T8561]  skb_release_data+0x6dc/0x8a0
[  147.215077][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  147.220104][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  147.225839][ T8561]  ? mark_lock+0x9a/0x360
[  147.230149][ T8561]  ? __lock_acquire+0x1384/0x2050
[  147.235160][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  147.241228][ T8561]  ? mark_lock+0x9a/0x360
[  147.245555][ T8561]  ? __lock_acquire+0x1384/0x2050
[  147.250567][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  147.256532][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  147.263128][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  147.269628][ T8561]  ? read_tsc+0x9/0x20
[  147.273699][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  147.278903][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  147.285257][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  147.291489][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  147.297802][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  147.304486][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  147.309668][ T8561]  ? __phys_addr+0xba/0x170
[  147.314157][ T8561]  ? build_skb_around+0x111/0x260
[  147.319168][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  147.325045][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  147.330312][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  147.335757][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  147.341808][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  147.347339][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  147.353125][ T8561]  ? synchronize_rcu+0x11b/0x360
[  147.358047][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  147.363318][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  147.369565][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  147.375451][ T8561]  ? _copy_from_user+0xa6/0xe0
[  147.380204][ T8561]  ? bpf_test_init+0x15a/0x180
[  147.384957][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  147.390401][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  147.395759][ T8561]  ? __pfx_lock_release+0x10/0x10
[  147.400773][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  147.406561][ T8561]  ? __fget_files+0x29/0x470
[  147.411132][ T8561]  ? fput+0x1a8/0x230
[  147.415107][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  147.420920][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  147.425846][ T8561]  __sys_bpf+0x48d/0x810
[  147.430078][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  147.434915][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  147.440879][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  147.447195][ T8561]  ? do_syscall_64+0x100/0x230
[  147.451939][ T8561]  __x64_sys_bpf+0x7c/0x90
[  147.456356][ T8561]  do_syscall_64+0xf3/0x230
[  147.460853][ T8561]  ? clear_bhb_loop+0x35/0x90
[  147.465520][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.471407][ T8561] RIP: 0033:0x7f8f8757dff9
[  147.475810][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.495410][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  147.503813][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  147.511766][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  147.519728][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  147.527691][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  147.535644][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  147.543605][ T8561]  </TASK>
[  147.546690][ T8561] BUG: Bad page state in process syz.3.1151  pfn:21f5b
[  147.553568][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x20048 pfn:0x21f5b
[  147.562668][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  147.569807][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  147.578419][ T8561] raw: 0000000000020048 0000000000000001 00000000ffffffff 0000000000000000
[  147.587034][ T8561] page dumped because: page_pool leak
[  147.592402][ T8561] page_owner tracks the page as allocated
[  147.598141][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628096735, free_ts 139593954216
[  147.615189][ T8561]  post_alloc_hook+0x1f3/0x230
[  147.619943][ T8561]  get_page_from_freelist+0x3045/0x3190
[  147.625509][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  147.630712][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  147.636228][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  147.642131][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  147.647360][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  147.652745][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  147.658153][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  147.663095][ T8561]  __sys_bpf+0x48d/0x810
[  147.667368][ T8561]  __x64_sys_bpf+0x7c/0x90
[  147.671791][ T8561]  do_syscall_64+0xf3/0x230
[  147.676317][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.682241][ T8561] page last free pid 8549 tgid 8549 stack trace:
[  147.688597][ T8561]  free_unref_folios+0xf12/0x18d0
[  147.693650][ T8561]  folios_put_refs+0x76c/0x860
[  147.698403][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  147.704056][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  147.708651][ T8561]  tlb_finish_mmu+0xd4/0x200
[  147.713223][ T8561]  exit_mmap+0x496/0xc40
[  147.717490][ T8561]  __mmput+0x115/0x390
[  147.721562][ T8561]  exit_mm+0x220/0x310
[  147.725676][ T8561]  do_exit+0x9b2/0x28e0
[  147.729865][ T8561]  do_group_exit+0x207/0x2c0
[  147.734475][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  147.739531][ T8561]  x64_sys_call+0x2634/0x2640
[  147.744254][ T8561]  do_syscall_64+0xf3/0x230
[  147.748760][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.754684][ T8561] Modules linked in:
[  147.758579][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  147.770368][ T8561] Tainted: [B]=BAD_PAGE
[  147.774499][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  147.784535][ T8561] Call Trace:
[  147.787795][ T8561]  <TASK>
[  147.790729][ T8561]  dump_stack_lvl+0x241/0x360
[  147.795415][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  147.800599][ T8561]  ? __pfx_print_modules+0x10/0x10
[  147.805695][ T8561]  bad_page+0x166/0x1b0
[  147.809834][ T8561]  free_unref_page+0xed0/0xf20
[  147.814598][ T8561]  skb_release_data+0x6dc/0x8a0
[  147.819445][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  147.824627][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  147.830329][ T8561]  ? mark_lock+0x9a/0x360
[  147.834638][ T8561]  ? __lock_acquire+0x1384/0x2050
[  147.839646][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  147.845786][ T8561]  ? mark_lock+0x9a/0x360
[  147.850117][ T8561]  ? __lock_acquire+0x1384/0x2050
[  147.855133][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  147.861105][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  147.867681][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  147.874168][ T8561]  ? read_tsc+0x9/0x20
[  147.878217][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  147.883404][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  147.889714][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  147.895853][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  147.902170][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  147.908848][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  147.914044][ T8561]  ? __phys_addr+0xba/0x170
[  147.918537][ T8561]  ? build_skb_around+0x111/0x260
[  147.923549][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  147.929431][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  147.934815][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  147.940289][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  147.946174][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  147.951702][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  147.957491][ T8561]  ? synchronize_rcu+0x11b/0x360
[  147.962434][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  147.967706][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  147.973956][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  147.979836][ T8561]  ? _copy_from_user+0xa6/0xe0
[  147.984584][ T8561]  ? bpf_test_init+0x15a/0x180
[  147.989338][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  147.994784][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  148.000231][ T8561]  ? __pfx_lock_release+0x10/0x10
[  148.005273][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  148.011067][ T8561]  ? __fget_files+0x29/0x470
[  148.015649][ T8561]  ? fput+0x1a8/0x230
[  148.019616][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  148.025412][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  148.030335][ T8561]  __sys_bpf+0x48d/0x810
[  148.034585][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  148.039442][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  148.045470][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  148.051806][ T8561]  ? do_syscall_64+0x100/0x230
[  148.056557][ T8561]  __x64_sys_bpf+0x7c/0x90
[  148.060957][ T8561]  do_syscall_64+0xf3/0x230
[  148.065446][ T8561]  ? clear_bhb_loop+0x35/0x90
[  148.070121][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.076017][ T8561] RIP: 0033:0x7f8f8757dff9
[  148.080532][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.100136][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  148.108547][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  148.116537][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  148.124492][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  148.132444][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  148.140396][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  148.148354][ T8561]  </TASK>
[  148.151442][ T8561] BUG: Bad page state in process syz.3.1151  pfn:5fdad
[  148.158328][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5fdad
[  148.167113][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  148.174258][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  148.182844][ T8561] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[  148.191549][ T8561] page dumped because: page_pool leak
[  148.196941][ T8561] page_owner tracks the page as allocated
[  148.202643][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628085357, free_ts 139593963295
[  148.219691][ T8561]  post_alloc_hook+0x1f3/0x230
[  148.224488][ T8561]  get_page_from_freelist+0x3045/0x3190
[  148.230025][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  148.235241][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  148.240701][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  148.246620][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  148.251823][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  148.257223][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  148.262604][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  148.267572][ T8561]  __sys_bpf+0x48d/0x810
[  148.271819][ T8561]  __x64_sys_bpf+0x7c/0x90
[  148.276268][ T8561]  do_syscall_64+0xf3/0x230
[  148.280781][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.286759][ T8561] page last free pid 8549 tgid 8549 stack trace:
[  148.293092][ T8561]  free_unref_folios+0xf12/0x18d0
[  148.298155][ T8561]  folios_put_refs+0x76c/0x860
[  148.302925][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  148.308597][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  148.313191][ T8561]  tlb_finish_mmu+0xd4/0x200
[  148.317817][ T8561]  exit_mmap+0x496/0xc40
[  148.322065][ T8561]  __mmput+0x115/0x390
[  148.326162][ T8561]  exit_mm+0x220/0x310
[  148.330235][ T8561]  do_exit+0x9b2/0x28e0
[  148.334413][ T8561]  do_group_exit+0x207/0x2c0
[  148.339002][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  148.344048][ T8561]  x64_sys_call+0x2634/0x2640
[  148.348732][ T8561]  do_syscall_64+0xf3/0x230
[  148.353219][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.359163][ T8561] Modules linked in:
[  148.363071][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  148.374856][ T8561] Tainted: [B]=BAD_PAGE
[  148.378987][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  148.389027][ T8561] Call Trace:
[  148.392292][ T8561]  <TASK>
[  148.395205][ T8561]  dump_stack_lvl+0x241/0x360
[  148.399873][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  148.405061][ T8561]  ? __pfx_print_modules+0x10/0x10
[  148.410158][ T8561]  bad_page+0x166/0x1b0
[  148.414309][ T8561]  free_unref_page+0xed0/0xf20
[  148.419085][ T8561]  skb_release_data+0x6dc/0x8a0
[  148.423924][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  148.428926][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  148.434626][ T8561]  ? mark_lock+0x9a/0x360
[  148.438937][ T8561]  ? __lock_acquire+0x1384/0x2050
[  148.443949][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  148.450000][ T8561]  ? mark_lock+0x9a/0x360
[  148.454311][ T8561]  ? __lock_acquire+0x1384/0x2050
[  148.459319][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  148.465300][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  148.471889][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  148.478424][ T8561]  ? read_tsc+0x9/0x20
[  148.482476][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  148.487680][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  148.493990][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  148.500130][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  148.506446][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  148.513106][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  148.518289][ T8561]  ? __phys_addr+0xba/0x170
[  148.522776][ T8561]  ? build_skb_around+0x111/0x260
[  148.527809][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  148.533687][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  148.538955][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  148.544405][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  148.550280][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  148.555819][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  148.561607][ T8561]  ? synchronize_rcu+0x11b/0x360
[  148.566532][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  148.571811][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  148.578034][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  148.583919][ T8561]  ? _copy_from_user+0xa6/0xe0
[  148.588666][ T8561]  ? bpf_test_init+0x15a/0x180
[  148.593415][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  148.598857][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  148.604211][ T8561]  ? __pfx_lock_release+0x10/0x10
[  148.609227][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  148.615022][ T8561]  ? __fget_files+0x29/0x470
[  148.619600][ T8561]  ? fput+0x1a8/0x230
[  148.623564][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  148.629354][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  148.634275][ T8561]  __sys_bpf+0x48d/0x810
[  148.638501][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  148.643249][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  148.649220][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  148.655552][ T8561]  ? do_syscall_64+0x100/0x230
[  148.660301][ T8561]  __x64_sys_bpf+0x7c/0x90
[  148.664700][ T8561]  do_syscall_64+0xf3/0x230
[  148.669270][ T8561]  ? clear_bhb_loop+0x35/0x90
[  148.673932][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.679809][ T8561] RIP: 0033:0x7f8f8757dff9
[  148.684207][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.703794][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  148.712195][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  148.720159][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  148.728114][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  148.736065][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  148.744017][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  148.751973][ T8561]  </TASK>
[  148.755051][ T8561] BUG: Bad page state in process syz.3.1151  pfn:33aca
[  148.761895][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x33aca
[  148.770686][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  148.777861][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  148.786464][ T8561] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[  148.795061][ T8561] page dumped because: page_pool leak
[  148.800412][ T8561] page_owner tracks the page as allocated
[  148.806148][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628073917, free_ts 139593972679
[  148.823197][ T8561]  post_alloc_hook+0x1f3/0x230
[  148.827992][ T8561]  get_page_from_freelist+0x3045/0x3190
[  148.833576][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  148.838776][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  148.844257][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  148.850158][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  148.855382][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  148.860763][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  148.866166][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  148.871106][ T8561]  __sys_bpf+0x48d/0x810
[  148.875384][ T8561]  __x64_sys_bpf+0x7c/0x90
[  148.879800][ T8561]  do_syscall_64+0xf3/0x230
[  148.884343][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.890242][ T8561] page last free pid 8549 tgid 8549 stack trace:
[  148.896585][ T8561]  free_unref_folios+0xf12/0x18d0
[  148.901619][ T8561]  folios_put_refs+0x76c/0x860
[  148.906433][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  148.912081][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  148.916700][ T8561]  tlb_finish_mmu+0xd4/0x200
[  148.921293][ T8561]  exit_mmap+0x496/0xc40
[  148.925555][ T8561]  __mmput+0x115/0x390
[  148.929625][ T8561]  exit_mm+0x220/0x310
[  148.933709][ T8561]  do_exit+0x9b2/0x28e0
[  148.937866][ T8561]  do_group_exit+0x207/0x2c0
[  148.942458][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  148.947561][ T8561]  x64_sys_call+0x2634/0x2640
[  148.952247][ T8561]  do_syscall_64+0xf3/0x230
[  148.956808][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.962710][ T8561] Modules linked in:
[  148.966629][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  148.978437][ T8561] Tainted: [B]=BAD_PAGE
[  148.982566][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  148.992617][ T8561] Call Trace:
[  148.995879][ T8561]  <TASK>
[  148.998791][ T8561]  dump_stack_lvl+0x241/0x360
[  149.003476][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  149.008664][ T8561]  ? __pfx_print_modules+0x10/0x10
[  149.013759][ T8561]  bad_page+0x166/0x1b0
[  149.017907][ T8561]  free_unref_page+0xed0/0xf20
[  149.022666][ T8561]  skb_release_data+0x6dc/0x8a0
[  149.027504][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  149.032513][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  149.038216][ T8561]  ? mark_lock+0x9a/0x360
[  149.042527][ T8561]  ? __lock_acquire+0x1384/0x2050
[  149.047543][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  149.053628][ T8561]  ? mark_lock+0x9a/0x360
[  149.057974][ T8561]  ? __lock_acquire+0x1384/0x2050
[  149.063001][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  149.068975][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  149.075565][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  149.082054][ T8561]  ? read_tsc+0x9/0x20
[  149.086105][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  149.091286][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  149.097594][ T8561]  netif_receive_skb_list_internal+0xa51/0xe30
[  149.103818][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[  149.110124][ T8561]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  149.116780][ T8561]  ? __pfx_eth_type_trans+0x10/0x10
[  149.121965][ T8561]  ? __phys_addr+0xba/0x170
[  149.126456][ T8561]  ? build_skb_around+0x111/0x260
[  149.131466][ T8561]  ? __xdp_build_skb_from_frame+0x338/0x650
[  149.137348][ T8561]  netif_receive_skb_list+0x55/0x4b0
[  149.142615][ T8561]  bpf_test_run_xdp_live+0x1b0d/0x2160
[  149.148060][ T8561]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[  149.153939][ T8561]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[  149.159470][ T8561]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  149.165257][ T8561]  ? synchronize_rcu+0x11b/0x360
[  149.170172][ T8561]  ? __pfx_synchronize_rcu+0x10/0x10
[  149.175448][ T8561]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  149.181680][ T8561]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  149.187564][ T8561]  ? _copy_from_user+0xa6/0xe0
[  149.192308][ T8561]  ? bpf_test_init+0x15a/0x180
[  149.197055][ T8561]  ? xdp_convert_md_to_buff+0x5b/0x330
[  149.202495][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  149.207941][ T8561]  ? __pfx_lock_release+0x10/0x10
[  149.212949][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  149.218756][ T8561]  ? __fget_files+0x29/0x470
[  149.223339][ T8561]  ? fput+0x1a8/0x230
[  149.227328][ T8561]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  149.233121][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  149.238042][ T8561]  __sys_bpf+0x48d/0x810
[  149.242265][ T8561]  ? __pfx___sys_bpf+0x10/0x10
[  149.247023][ T8561]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  149.253000][ T8561]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  149.259322][ T8561]  ? do_syscall_64+0x100/0x230
[  149.264076][ T8561]  __x64_sys_bpf+0x7c/0x90
[  149.268480][ T8561]  do_syscall_64+0xf3/0x230
[  149.272967][ T8561]  ? clear_bhb_loop+0x35/0x90
[  149.277643][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.283528][ T8561] RIP: 0033:0x7f8f8757dff9
[  149.287924][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.307524][ T8561] RSP: 002b:00007f8f88377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  149.315930][ T8561] RAX: ffffffffffffffda RBX: 00007f8f87736058 RCX: 00007f8f8757dff9
[  149.323892][ T8561] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  149.331856][ T8561] RBP: 00007f8f875f0296 R08: 0000000000000000 R09: 0000000000000000
[  149.339816][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  149.347774][ T8561] R13: 0000000000000000 R14: 00007f8f87736058 R15: 00007ffe09984cf8
[  149.355758][ T8561]  </TASK>
[  149.358845][ T8561] BUG: Bad page state in process syz.3.1151  pfn:644f3
[  149.365721][ T8561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880644f3640 pfn:0x644f3
[  149.375891][ T8561] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  149.383009][ T8561] raw: 00fff00000000000 dead000000000040 ffff8880622fb000 0000000000000000
[  149.391619][ T8561] raw: ffff8880644f3640 0000000000000001 00000000ffffffff 0000000000000000
[  149.400224][ T8561] page dumped because: page_pool leak
[  149.405606][ T8561] page_owner tracks the page as allocated
[  149.411317][ T8561] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8561, tgid 8550 (syz.3.1151), ts 139628061989, free_ts 139593981539
[  149.428369][ T8561]  post_alloc_hook+0x1f3/0x230
[  149.433157][ T8561]  get_page_from_freelist+0x3045/0x3190
[  149.438732][ T8561]  __alloc_pages_noprof+0x256/0x6c0
[  149.444043][ T8561]  alloc_pages_bulk_noprof+0x729/0xd40
[  149.449485][ T8561]  __page_pool_alloc_pages_slow+0x122/0x690
[  149.455396][ T8561]  page_pool_alloc_pages+0xd0/0x1c0
[  149.460606][ T8561]  bpf_test_run_xdp_live+0x950/0x2160
[  149.466003][ T8561]  bpf_prog_test_run_xdp+0x805/0x11e0
[  149.471382][ T8561]  bpf_prog_test_run+0x2e4/0x360
[  149.476348][ T8561]  __sys_bpf+0x48d/0x810
[  149.480598][ T8561]  __x64_sys_bpf+0x7c/0x90
[  149.485037][ T8561]  do_syscall_64+0xf3/0x230
[  149.489572][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.495494][ T8561] page last free pid 8549 tgid 8549 stack trace:
[  149.501813][ T8561]  free_unref_folios+0xf12/0x18d0
[  149.506868][ T8561]  folios_put_refs+0x76c/0x860
[  149.511635][ T8561]  free_pages_and_swap_cache+0x5c8/0x690
[  149.517295][ T8561]  tlb_flush_mmu+0x3a3/0x680
[  149.521892][ T8561]  tlb_finish_mmu+0xd4/0x200
[  149.526507][ T8561]  exit_mmap+0x496/0xc40
[  149.530752][ T8561]  __mmput+0x115/0x390
[  149.534843][ T8561]  exit_mm+0x220/0x310
[  149.538910][ T8561]  do_exit+0x9b2/0x28e0
[  149.543047][ T8561]  do_group_exit+0x207/0x2c0
[  149.547656][ T8561]  __x64_sys_exit_group+0x3f/0x40
[  149.552682][ T8561]  x64_sys_call+0x2634/0x2640
[  149.557409][ T8561]  do_syscall_64+0xf3/0x230
[  149.561919][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.567842][ T8561] Modules linked in:
[  149.571740][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.1151 Tainted: G    B              6.11.0-syzkaller-11504-g44badc908f2c #0
[  149.583522][ T8561] Tainted: [B]=BAD_PAGE
[  149.587650][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  149.597683][ T8561] Call Trace:
[  149.600942][ T8561]  <TASK>
[  149.603858][ T8561]  dump_stack_lvl+0x241/0x360
[  149.608524][ T8561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  149.613703][ T8561]  ? __pfx_print_modules+0x10/0x10
[  149.618799][ T8561]  bad_page+0x166/0x1b0
[  149.622934][ T8561]  free_unref_page+0xed0/0xf20
[  149.627689][ T8561]  skb_release_data+0x6dc/0x8a0
[  149.632539][ T8561]  sk_skb_reason_drop+0x1c9/0x380
[  149.637550][ T8561]  __netif_receive_skb_core+0x3edd/0x4570
[  149.643252][ T8561]  ? mark_lock+0x9a/0x360
[  149.647561][ T8561]  ? __lock_acquire+0x1384/0x2050
[  149.652570][ T8561]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  149.658638][ T8561]  ? mark_lock+0x9a/0x360
[  149.662945][ T8561]  ? __lock_acquire+0x1384/0x2050
[  149.667955][ T8561]  __netif_receive_skb_list_core+0x2b1/0x980
[  149.673919][ T8561]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  149.680490][ T8561]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  149.686990][ T8561]  ? read_tsc+0x9/0x20
[  149.691041][ T8561]  ? timekeeping_get_ns+0x2c0/0x420
[  149.696222][ T8561]  ? netif_receive_skb_list_internal+0x4e8/0xe30