last executing test programs:

2.533832906s ago: executing program 2 (id=4017):
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r0 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1, 0x0, 0x20000000}, 0x1c)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b7000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000df00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)

2.290893677s ago: executing program 4 (id=4024):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000002c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000001}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$rxrpc(0x21, 0x2, 0xa)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
r5 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000140)=0x7, 0x4)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f00000018c0)=@newtaction={0x850, 0x31, 0x1, 0x0, 0x0, {}, [{0x83c, 0x1, [@m_police={0x838, 0x0, 0x0, 0x0, {{0xb}, {0x80c, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}], [@TCA_POLICE_RATE={0x404, 0x2, [0xfffffff9, 0x960, 0x1134, 0x3, 0x10, 0x1, 0x4, 0x8, 0x3, 0x5, 0x1, 0x8, 0x5, 0xd1c, 0xffffff80, 0x7f, 0x800, 0xffffffff, 0x4a, 0x2, 0x8, 0x2, 0x40, 0x466, 0xa, 0xdbc, 0x5, 0x1a, 0x7, 0x4, 0x7, 0xfffffdfa, 0x2, 0x0, 0x3, 0x401, 0x8, 0x10, 0x10000, 0xbf, 0xfff, 0x80000000, 0x9e0, 0x0, 0x2, 0xd0, 0xdb, 0x19, 0x1, 0x632, 0x1, 0xd8, 0x0, 0x0, 0x55c9, 0x1a8, 0x1ff, 0x8, 0x7ff0000, 0x2, 0x9, 0x0, 0x1e, 0x80000000, 0x347, 0x2, 0x2, 0xef, 0x401, 0x26af, 0x9, 0x1, 0x4, 0x267f, 0xa2ab, 0x6, 0x8000, 0x4, 0x7fff, 0x2, 0x9, 0x7ff, 0x9, 0x2, 0x3368, 0x0, 0x8, 0x8, 0x8, 0x8, 0x74c7, 0x6, 0x61, 0x4, 0x3, 0x10001, 0xff, 0xc, 0x2, 0x8, 0x68d, 0xbd, 0x4, 0xa0d, 0x3, 0x40, 0x4, 0x3, 0x3e0, 0x6, 0x6, 0x6, 0x7ff, 0x6, 0x8f, 0x72, 0x5, 0x828e, 0x2, 0xcd, 0x10, 0xb, 0x1, 0x8, 0x34, 0x2, 0xe0e7, 0x2, 0x3, 0x1ac0000, 0x5, 0x8, 0x2, 0x99, 0x7, 0x7ff, 0x7fffffff, 0x1, 0xff, 0x8, 0x3, 0xe1, 0x9, 0x2, 0x0, 0xe, 0x4, 0x8, 0x3, 0x6, 0xfffff2c6, 0x400, 0xc, 0xffff, 0x9, 0x3, 0x8, 0x7fffffff, 0x8001, 0x10000, 0x5, 0xffff, 0x4, 0x1, 0x9, 0x2, 0x8, 0x8e, 0xe, 0xfff, 0x3, 0x1, 0x800, 0x8aa, 0x2, 0xfffffffd, 0xb, 0x81, 0x3, 0x0, 0x8, 0x6, 0x7, 0x6, 0x10, 0x4c84c874, 0x0, 0x558, 0x3, 0x1000, 0x1f, 0x5, 0x800, 0x8, 0x0, 0x6, 0x5, 0x3, 0x0, 0x7, 0x8, 0x9, 0x80, 0x800, 0x100, 0x0, 0xa48, 0x9, 0x2, 0x6, 0x0, 0xa, 0x5, 0xff, 0x8, 0x6, 0x1, 0x2, 0xb5, 0x40, 0xd, 0x2, 0x4, 0x400000, 0x96de, 0x8, 0x7, 0x32780, 0x8, 0x1, 0x5, 0x6, 0x8, 0x8, 0x9, 0x80000000, 0x5d7c, 0x6, 0x9, 0x7fff, 0x9, 0x7fff, 0xf, 0x7, 0x1, 0x0, 0x3, 0x80000000, 0x823, 0xd7f2, 0x9, 0x8d7, 0x2, 0x1ff, 0x0, 0x300]}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x850}}, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x40c000)
sendfile(r4, 0xffffffffffffffff, 0x0, 0x6)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r3, 0x110, 0x4, &(0x7f0000006640)=0x1, 0x4)
r7 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000002c0)={0x24, r7, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x401}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x50)

2.11191587s ago: executing program 3 (id=4027):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000002c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000001}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$rxrpc(0x21, 0x2, 0xa)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x40c000)
sendfile(r4, 0xffffffffffffffff, 0x0, 0x6)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r3, 0x110, 0x4, &(0x7f0000006640)=0x1, 0x4)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x104, &(0x7f0000000540)={&(0x7f00000002c0)={0x24, r5, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x401}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x50)

2.111009761s ago: executing program 4 (id=4028):
r0 = socket(0x40000000002, 0x3, 0x2)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f0000000000)='\x00\x00\x00\x00\x00\x00\x00', 0x7)
getsockopt$inet_sctp6_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000780)={0x0, 0x8, 0x4, 0x6, 0x488d, 0x3f29, 0x81, 0x5, {0x0, @in6={{0xa, 0x4e23, 0x6, @private2, 0x80}}, 0x1000, 0xfffffffe, 0xffff, 0x7, 0x6}}, &(0x7f0000000840)=0xb0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
connect$inet(r3, &(0x7f0000000240)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f00000030c0), 0x0, 0x0)
connect$l2tp6(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x2, 0xa, 0x2)
r4 = socket(0x10, 0x80002, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000002c0)={'hsr0\x00', <r6=>0x0})
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f00000000c0)={r6, 0x3, 0x6, @dev}, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x20}}, 0x0)
sendmmsg$inet(r3, &(0x7f0000004d00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf00)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
accept4$phonet_pipe(r0, &(0x7f0000000540), &(0x7f0000000140)=0x10, 0x800)
write(r8, &(0x7f0000003ac0)='j', 0x1)
splice(r8, &(0x7f0000000040), r3, 0x0, 0x800000000fe, 0x0)
write$tun(r8, &(0x7f0000000200)=ANY=[@ANYBLOB="0000886c000000000000000000000000000f050000ad000000000000000f0f0000584512b149b3a67d173840e4cf6d268a72e0bd35ec19fa601713b7cc0b4b88de606d65c14c72dac641f0c19f86a7"], 0x4f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='contention_end\x00'}, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)

1.757129045s ago: executing program 3 (id=4031):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_DIRECTION={0x5}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x0)

1.625567168s ago: executing program 3 (id=4033):
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000), &(0x7f0000000040)=0x4) (async)
r0 = accept4(0xffffffffffffffff, 0x0, &(0x7f0000000080), 0x800)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {{}, {}, {0xc, 0x14, 'syz0\x00'}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)
ioctl$SIOCGSTAMPNS(r0, 0x8907, &(0x7f00000001c0))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f00000005c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000580)={&(0x7f00000002c0)={0x2b8, r2, 0x2, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_REKEY_DATA={0x28, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="d4026034b2249d2d59a64cb3426462128157864e9b37cf733208a1ea21378ead"}]}, @NL80211_ATTR_REKEY_DATA={0x7c, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "61ca8f0fa176d210"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="279d7b7ce7f235f08024f2d1fc5b36f6b255f2673212cf71"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0xe2}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="5b154ea2c1fee9826121f58b811d24d9"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "a7d3384466364aaf"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="ea9a32efb3e95e51c2da76e176965e80"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="9b233607ed8f7edf7b9b27192839afb3"}]}, @NL80211_ATTR_REKEY_DATA={0x14, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x81}, @NL80211_REKEY_DATA_AKM={0x8}]}, @NL80211_ATTR_REKEY_DATA={0xd4, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="ce25f1adc9e902f266f18472aa0f520e2c899eac0086a99008fe7ffa64774854"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="84ed763689a3459fac9e9d6aa18a64782692ed9c4ea005aa"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="97d44a8ed6fc3cb089cb91b0e049600f"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="7ac976394926eded7d841e7d6d66e33d472751d2baa45b2c58b257cc32d2ad65"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="1755f8af22176de837ce7ed1c90d2a41"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "44c925f7e84813ca"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="906f3fb064329000f95f169bc16e12136666239422e8c662"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x6}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "63a4bc650d578910"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x8}]}, @NL80211_ATTR_REKEY_DATA={0x98, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="afc5bfb06bbb490722a01eff87dbdd2d370909f9abe5dba3"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="bdb8622ffab42f9611f2596ad28593327cf114d8fa95b1e30fe3fb7e598b8f3b"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="b2901aecb58988fa18b0cc030cccd6fc"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="f2c92671489b6bf74890707afaa91621a556ac6a875f0768331a39e55cc4a78f"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "deb8537be236c81f"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0xe}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x7fff}]}, @NL80211_ATTR_REKEY_DATA={0x78, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="b65f77fde2d10d09eba35d697bae3c86"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="f0a24b8635ce1c674edfaf78f22f4f96c0b33f0e6f9c5dd6e91550f87509a610"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="55d1182d23cbb53733b29f5f00666ce5"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="9cbb0b6d8c410e48a782fd0317a206f8"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "2117d13bf9ac9544"}, @NL80211_REKEY_DATA_AKM={0x8}]}]}, 0x2b8}, 0x1, 0x0, 0x0, 0x4000040}, 0x4008001) (async)
r4 = accept(r1, 0x0, &(0x7f0000000600)) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000006c0)={{0x1, <r5=>0xffffffffffffffff}, &(0x7f0000000640), &(0x7f0000000680)}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000840)={'batadv_slave_1\x00', <r6=>0x0}) (async)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000940)={&(0x7f0000000880)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x6, [@fwd={0x1}]}, {0x0, [0x30, 0x61, 0x71, 0x61]}}, &(0x7f00000008c0)=""/103, 0x2a, 0x67}, 0x20) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000a00)={0x7, <r8=>0x0}, 0x8) (async)
r9 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000a80)=@generic={&(0x7f0000000a40)='./file0\x00', 0x0, 0x10}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0xc, 0x19, &(0x7f0000000700)=@framed={{0x18, 0x0, 0x0, 0x0, 0x38000000, 0x0, 0x0, 0x0, 0x5}, [@jmp={0x5, 0x1, 0x1, 0x2, 0x7, 0x40, 0xffffffffffffffff}, @tail_call={{0x18, 0x2, 0x1, 0x0, r5}}, @call={0x85, 0x0, 0x0, 0xd1}, @call={0x85, 0x0, 0x0, 0x66}, @call={0x85, 0x0, 0x0, 0x8}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}}]}, &(0x7f0000000800)='GPL\x00', 0x0, 0x0, 0x0, 0x68da772470fb6a48, 0x2, '\x00', r6, 0x15, r7, 0x8, &(0x7f0000000980)={0x9, 0x3}, 0x8, 0x10, &(0x7f00000009c0)={0x0, 0x8, 0x1, 0x8}, 0x10, r8, r9, 0x0, &(0x7f0000000ac0)=[0xffffffffffffffff], 0x0, 0x10, 0x6}, 0x90) (async)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r11 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000bc0)=r8, 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCSIFBR(r10, 0x8941, &(0x7f0000000c40)=@add_del={0x2, &(0x7f0000000c00)='veth0\x00'}) (async)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPCTNL_MSG_EXP_DELETE(r10, &(0x7f0000000f80)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000f40)={&(0x7f0000000cc0)={0x280, 0x2, 0x2, 0x3, 0x0, 0x0, {0x5}, [@CTA_EXPECT_MASTER={0x4c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0x14, 0x4, @local}}}]}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x9}, @CTA_EXPECT_NAT={0x148, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}]}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0xa4, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x1c}}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0x58, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x8}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x5}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8}]}, @CTA_EXPECT_TUPLE={0x70, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x14, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @private=0xa010101}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @CTA_EXPECT_MASK={0x60, 0x3, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x8, 0x2, @private=0xa010101}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0x14, 0x4, @rand_addr=' \x01\x00'}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}]}, 0x280}, 0x1, 0x0, 0x0, 0x14}, 0x40000) (async)
getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000fc0)={<r12=>0x0, @multicast1, @loopback}, &(0x7f0000001000)=0xc)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001040)={0x1b, 0x0, 0x0, 0x7b5, 0x0, 0xffffffffffffffff, 0x9, '\x00', r12, r11, 0x5, 0x3, 0x3}, 0x48) (async)
socket$phonet_pipe(0x23, 0x5, 0x2) (async)
sendmsg$NL80211_CMD_DEL_TX_TS(r0, &(0x7f00000011c0)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001180)={&(0x7f0000001100)={0x58, r2, 0x400, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x100, 0x39}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x58}, 0x1, 0x0, 0x0, 0x5380166ac4b1610d}, 0x2000000) (async)
r13 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000001200)={'bridge_slave_1\x00'}) (async)
r14 = bpf$ITER_CREATE(0x21, &(0x7f0000001240)={r5}, 0x8)
ioctl$SIOCSIFHWADDR(r14, 0x8924, &(0x7f0000001280)={'ip6gretap0\x00', @broadcast}) (async)
setsockopt$inet6_int(r13, 0x29, 0x4b, &(0x7f00000012c0)=0x13d, 0x4)

1.480958645s ago: executing program 2 (id=4035):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000, 0x0, 0x1}, 0x20)
sendmsg$AUDIT_DEL_RULE(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40040000}, 0xc, &(0x7f0000000140)={&(0x7f0000000440)={0x420, 0x3f4, 0x800, 0x70bd28, 0x25dfdbff, {0x2, 0x1, 0x3, [0x7, 0xffffffff, 0x8, 0xc0000, 0x4, 0x7, 0xff, 0x8, 0x1, 0x0, 0x6, 0x8, 0x1, 0x8, 0x80, 0x9, 0x1, 0x1cdf, 0x5, 0x7, 0x9, 0x2, 0x0, 0x54, 0x7, 0x4, 0x4, 0x0, 0x967, 0x9, 0x335b9ba1, 0x6, 0xc2, 0x20e, 0xf, 0x7, 0xfff, 0x7, 0x56, 0x0, 0x10001, 0x9, 0x3, 0xd, 0x0, 0x100, 0x4, 0x1, 0xfffffffc, 0x2, 0xcc, 0x2, 0x7ff, 0x52a, 0x3, 0x7, 0xd561, 0x4, 0x9, 0x8, 0x800, 0x4ee, 0x5, 0x3], [0x3, 0x5, 0x1000, 0x0, 0xf, 0xff, 0x101, 0x4be8, 0x9, 0x1ff, 0x4, 0x5, 0x8, 0xfffffffb, 0x0, 0x80000000, 0x8, 0x3, 0x6, 0x4, 0x7, 0xb, 0x401, 0x1000, 0xd5, 0x400, 0x3, 0x8, 0x4, 0x9, 0x8, 0x4bd0f094, 0xaf, 0x1, 0xad, 0xfd0f, 0x6, 0x4, 0x1000, 0x89, 0x1, 0x7, 0x1, 0x1, 0x2, 0x88, 0x4972, 0x14b, 0x8, 0xfffff001, 0x8001, 0x1, 0x800000, 0xe, 0xb, 0x4, 0x2, 0x0, 0x5, 0xb, 0x4, 0xb, 0x10000, 0x5], [0x100, 0x5, 0x9, 0xfffffffe, 0x0, 0x8000, 0x80000001, 0x9, 0x8000, 0x4, 0x164, 0x0, 0x2c8, 0x0, 0x7f, 0x9, 0x5b13, 0x0, 0x5, 0xfffffff0, 0x9, 0x0, 0x7ff, 0x81, 0xf597, 0x9, 0x10, 0x8, 0x5, 0x7, 0x98, 0x7, 0x4, 0xfffffffa, 0x7fffffff, 0x0, 0x3, 0x80000001, 0x100, 0x4, 0x9, 0x2, 0x800, 0x5, 0x730, 0x1, 0xc7b, 0x6, 0x0, 0x10, 0x0, 0x400, 0xfffffffe, 0x6, 0x8001, 0x4, 0x10001, 0x8, 0x6, 0x2, 0x1, 0x81, 0x4], [0x10, 0x6, 0x2, 0x6, 0x1, 0xfffffff9, 0x8e, 0xdea, 0x8, 0x10001, 0xffffff7f, 0x2cf9400, 0xa, 0x5, 0x10, 0xc, 0xe, 0x47, 0xf, 0x8ea6, 0x8, 0x65, 0x0, 0x8000, 0x4, 0x8, 0x9, 0x8, 0xff, 0x40, 0x7fffffff, 0xc4, 0x7, 0x7fffffff, 0x9, 0x8001, 0x1f43, 0x6, 0xfffffffb, 0x105, 0x5, 0x200, 0x6, 0x9, 0x4, 0xe94f, 0x2, 0x7f, 0xe, 0x3231, 0x5ff8, 0x8, 0x10001, 0x6, 0x5, 0x3, 0x7, 0x7, 0x8, 0x4, 0xbf, 0x7fff, 0x7, 0x4]}}, 0x420}}, 0x30000)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', <r2=>0x0})
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000002c0)={@ifindex, 0xffffffffffffffff, 0xb, 0x0, 0x0, @prog_id}, 0x20)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000002c0)={'team0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000055000100000000000000000007000000", @ANYRES32=r5, @ANYBLOB="20000100", @ANYRES32, @ANYBLOB="000000000000000000002200000000000100000086dd"], 0x38}}, 0x0)
r6 = socket$kcm(0x2, 0x922000000001, 0x106)
setsockopt$sock_attach_bpf(r6, 0x1, 0x42, &(0x7f00000002c0), 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5, 0x2b, 0x3}]}}}]}, 0x3c}}, 0x0)
sendmmsg$inet6(r1, &(0x7f0000000f80)=[{{&(0x7f00000003c0)={0xa, 0x4e24, 0xffff4fa0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x6}, 0x1c, &(0x7f0000000c80)=[{&(0x7f0000000880)="6cb9338408e96b0d259d43d143ccbfb31e5dac797be52f01ed6e406b822445a5dc52ffe2cf41f17325d3782cc8e6bfdd1c01e161190177da5f9df621e1d5835d8bb5e537ebf69d0316d48cd5c02fb30765", 0x51}, {&(0x7f0000000900)="3c797ae1a90780dd0a113337be0dc5772452ff58f549fd564e88189a2f844f9af9e0415453d82ef89a6d787d3f110aeba08d20d7122056b1756d8047945ad4f6f9fdde3a64d05a3b0d26c38a6171eb8b97c1c875beab66282551b9b7a19d727419933b7a6c253f36937f1764d98949c94ea7f9b7a8973e7dfb7eb468c4df7c965f2744b5c9396368dd0dd0ec5c66538dfc123c57caf9038f880f61328e436506b037fc753f065ab0508f7d6981d8372b8a8a3f40f3b1", 0xb6}, {&(0x7f00000009c0)="2416d67c1341dbbbbcb958a32a67052d1708e9c606ac06758a4426782cf1aac8461e2e248db4c3c6409aa94ee3689134899b55a4afcd37aeb7f84d798688641904bf4f3674ca85ad5ef5326e67dc6c13456a41c4192d7bd96464437da13669c85a788bc54a43815c4bdea3068285e30af3146f2ee8801b7aaff0b57c6d598db24f2b1637d43d312b0cd410dace7d6ec8b10963814d16ba6ad731af124ee8fcb89930bebb5dd39c5856f2b636bd9969bfc07a734b35b9de68716750fd98635d5e126e89a940c071e4f7453ac72f4d24ab3cabdbd90a3b4b02615ed3a2ca444fd05271d3511daf4aa3af", 0xe9}, {&(0x7f0000000ac0)="44c8898c99288b5c43b8ddc0510ab5efc7ab9ff218a69d08d54feb01a6886e34a3d9bf7b87c959f1e3f0ca360952b70887b7ca63e57f36e8113d661c13f0ef41b7a3f699f3cf32e886119890e1a1c2f3273954b49e860e2fa1445521a2a7df473da7621faa562c0969f8d26f196c1bcfb1382039d2f8889f7093a861086552b2be0cb98e0dff55ddc52d13c24ebe03767eaf4e", 0x93}, {&(0x7f0000000b80)="31711049991df18a4f52738e3b6336adb7cb1c0c2928c80feae466a33e9e7bb96f5a88035334e4b8dab7932bf30eebd1eecc81d4f7ee58afe8003414e7f1d85baaf79ad0b3bea9c6bb292c90fecad690ad9bb32c61ff04cf575a1ee0c2912c834036ad013548e09bc2a3fc06527593ddd2443da9460c6b240bcbf96cedda4650c929cfb7d271fbcb77da2ffd3e1e0a7c7f26529e9e93fb5e30067321d53d30f08e396e7a4ff27abf1bf06cef94d833d2db9c3b9e3a78586abae945462c05fa255d764d8dc2d08d56e1c94dd789e43207", 0xd0}], 0x5, &(0x7f0000000d00)=[@dstopts_2292={{0xc8, 0x29, 0x4, {0x6, 0x15, '\x00', [@ra={0x5, 0x2, 0xfff9}, @ra={0x5, 0x2, 0x8001}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @calipso={0x7, 0x38, {0x3, 0xc, 0x4, 0x5, [0x7, 0x7, 0x4, 0x9, 0x49a7, 0x6]}}, @calipso={0x7, 0x50, {0x2, 0x12, 0xb, 0xb, [0x3, 0xff, 0xfffffffffffffffa, 0x3, 0x0, 0x9, 0x0, 0x0, 0xfffffffffffff77c]}}, @padn={0x1, 0x1, [0x0]}]}}}, @dstopts_2292={{0x148, 0x29, 0x4, {0x16, 0x25, '\x00', [@generic={0x5f, 0x68, "6b0c7990ae118cf8beeba652993017d9029cff225bc864632cae55b99bfee3ad1f43d94cc90f3e8c5b518c9326bfe7c48295d835265f5397cc11e90cc99974ba7db1504d61e635bbc0e7490623f84c8642e9c678fefeb1ced3c62d8682a12e2b4d14db4245a874ec"}, @padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @generic={0x1, 0x68, "cf173e6a030f18509072b62f157abde1e17a96fd021a4bb778a4d0cbb2931c23957195229902c8cfdf24aaf52b18d4f51fea342034c5815e744f162493699af8f586417d3df753954f8f4c246812d3f439ca308ae10c897c915dee1c3165e61eebdaf588a78b014c"}, @jumbo={0xc2, 0x4, 0xf}, @generic={0x89, 0x38, "b899db11d33cedfeb1b6b7be1d79fbaeb7e48e020e207dbef910c9172b242e0aea8d91a09d50c55447423c8006aabc941e1a050ec85a4be7"}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}, @dstopts_2292={{0x60, 0x29, 0x4, {0x87, 0x8, '\x00', [@hao={0xc9, 0x10, @empty}, @jumbo={0xc2, 0x4, 0x6}, @hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @jumbo={0xc2, 0x4, 0x968f}, @hao={0xc9, 0x10, @private2}, @ra={0x5, 0x2, 0xe8cc}]}}}], 0x270}}], 0x1, 0x20048080)
bind$xdp(r0, &(0x7f0000000400)={0x2c, 0xc, r2, 0x1b, r0}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_SET(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x34, r9, 0x1, 0x70bd2c, 0x0, {}, [@TIPC_NLA_MEDIA={0x20, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}]}]}]}, 0x34}}, 0x0)
r10 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$ARPT_SO_GET_ENTRIES(r10, 0x0, 0x61, &(0x7f00000001c0)=ANY=[@ANYBLOB="66696c746572000000000000000000000000000000000000000000000000000025000000c72df7713b562b4716448ce7ff520d4908632bab210de0efa1c91b4971bebda62af71dc4134ebf20d524b2f6b1a482050928d7deea82992bb1f06fb9ca989a27ff907404165ea6b73b925556e880f6f23ba32b60114a6b7eaa4c734fdb61292d05205a61cc43f977a322f61ddbeac6df62b03636d0d2316721e5233c255763a256b72afe18ad83a08e5cdee32f53efb99b03bfb76f7bd6139669ef5a"], &(0x7f00000000c0)=0x49)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r11, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="6c000000020601020000000600000000000000000e0003006269746d61703a697000000005000400000000000900020073797a3000000000240007800c00028008000140ac1414aa0c0001800800010080ffffff050014000200000005000500020000000500010006"], 0x6c}}, 0x0)

1.449839904s ago: executing program 0 (id=4036):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket(0x18, 0x0, 0x0)
sendmsg$NFT_MSG_GETGEN(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0x3}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x48000}, 0xc090)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000240)={0x10000000})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f00000005c0)={0x8212})

1.436001677s ago: executing program 4 (id=4037):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1a, 0xcf3b, 0xffffffff, 0x10001, 0x8, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x4}, 0x48)
r1 = socket$kcm(0xa, 0x3, 0x73)
sendmsg$inet(r1, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0x1b, &(0x7f0000001080)=[{&(0x7f0000000040)="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", 0x1000}, {&(0x7f00000011c0)="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", 0x33}], 0x2, &(0x7f00000010c0)=[@ip_tos_int={{0x14, 0x29, 0x3e}}, @ip_tos_u8={{0x38, 0x29, 0x2}}, @ip_tos_u8={{0x100000000000000}}], 0x50}, 0x0)

1.383676167s ago: executing program 3 (id=4038):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000002c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000001}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$rxrpc(0x21, 0x2, 0xa)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x40c000)
sendfile(r4, 0xffffffffffffffff, 0x0, 0x6)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r3, 0x110, 0x4, &(0x7f0000006640)=0x1, 0x4)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000002c0)={0x24, r5, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x401}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x50) (fail_nth: 6)

931.146571ms ago: executing program 0 (id=4039):
r0 = socket(0x1, 0x80802, 0x0)
r1 = socket$kcm(0x10, 0x100000000002, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000001100)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x54}, 0x42)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="ac0000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c00028005000100000000000800074000000000180006801400040020010000000000000000000000000001a898a6"], 0xac}}, 0x0)
pipe(&(0x7f0000000140)={<r4=>0xffffffffffffffff})
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000180)={<r5=>0x0, 0x13, "80483c2f5594d6aa75871c506deb53b650db30"}, &(0x7f00000001c0)=0x1b)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f0000000240)={r5, 0x1}, 0x8)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="b80000000001010400000000000000000a0000003c0001802c000180140003000000000000000000000000000000000014000400ff0100000000000000000000003a00010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8000000000000000000000000000aa0c0002800500010000000000080007400000000024000680140004"], 0xb8}}, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r2, 0x4)
sendmsg$kcm(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000200)="39000000140081ae00002c000500015601618575e285af0180000000171300883795c04a31ba377a1b2cc32b38d3740000ffffffffffffffff", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)

911.15552ms ago: executing program 4 (id=4040):
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r2=>0x0})
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCDELRT(r3, 0x8912, &(0x7f00000001c0)={0x2000000, {0x2, 0x4e20, @private=0xa010102}, {0x2, 0x0, @empty}, {0x2, 0x0, @multicast2}, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0xff7f})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="980000001000010400"/20, @ANYRES32=r2, @ANYBLOB="00000000000000004c001280110001006272696467655f736c61766500000000340005800500190002"], 0x98}}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140604000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

800.682137ms ago: executing program 1 (id=4041):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000049c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xb, &(0x7f0000000340)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x6b}}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000180)={'syztnl2\x00', &(0x7f0000000000)={'syztnl1\x00', <r2=>0x0, 0x7, 0x10, 0x7, 0x3d4e, {{0x6, 0x4, 0x2, 0x23, 0x18, 0x9, 0x0, 0x4, 0x4, 0x0, @local, @empty, {[@noop, @lsrr={0x83, 0x3, 0xb1}]}}}}})
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000032c0)={0x1c, r5, 0x1, 0x0, 0x0, {{0x63}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0)
bind$alg(r4, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast6-avx\x00'}, 0x58)
r8 = accept4(r4, 0x0, 0x0, 0x0)
sendmmsg$alg(r8, &(0x7f0000000540)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000000c0)="e4e32dd2b696733552eca3e954943a18709f72fbd259a936c67ebe806ab21823f4a0c47bff45323c2b30982dfc67b46cc9a5a07c33fc", 0xff6d}, {&(0x7f0000000100)="3a10bd003aba0c7026336b", 0xb}], 0x2, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x60}], 0x1, 0x8001)
recvmmsg(r8, &(0x7f0000001440)=[{{0x0, 0x0, &(0x7f0000000940)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0)
sendmsg$nl_xfrm(r3, 0x0, 0x4000010)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xcaee, @none, 0x0, 0x1}, 0xe)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000001280)=ANY=[@ANYBLOB='D'], 0x4c}}, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r10}, 0x10)
write$binfmt_misc(r9, &(0x7f0000001280)=ANY=[], 0x6)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
setsockopt$MRT6_DEL_MIF(r1, 0x29, 0xcb, &(0x7f00000001c0)={0x1, 0x0, 0x5, r2, 0x804}, 0xc)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r11, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={0x38, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}]}, 0x38}}, 0x0)

693.117788ms ago: executing program 0 (id=4042):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000200)={@in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x22, 0x0, "43cad7b04bde5bbd8035d89034a56bad61a87c614899a37c5d0d7da4d7fc948375f3593dbd21eb7618ffb4ff4984e01eedc37998dd16526edb40eaadabe6cd2bd9f9dfeade7787ea64309c01ae05fb70"}, 0xd8)
r1 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x8, 0x3, 0x458, 0x120, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x388, 0xffffffff, 0xffffffff, 0x388, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [0x0, 0xff], [0x0, 0x0, 0x0, 0xff], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {}, 0x0, 0x0, 0x3}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x2}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x238, 0x268, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x7, 0x0, 0x7, 0x3ff}}}, @common=@rt={{0x138}, {0xcf9a, [0x7fb, 0x6], 0x594, 0x2, 0x4, [@private2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1={0xfc, 0x1, '\x00', 0x1}, @private2={0xfc, 0x2, '\x00', 0x1}, @private1={0xfc, 0x1, '\x00', 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, @empty, @loopback, @mcast2, @ipv4={'\x00', '\xff\xff', @local}, @ipv4={'\x00', '\xff\xff', @broadcast}, @local, @mcast1, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'], 0x6}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x4b8)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @private2}, 0x1c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r3, 0x0, 0x30, &(0x7f0000000680)=ANY=[@ANYBLOB="020000000000000002004e22e00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ac1414aa000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e20ffffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001d10d93a0000026fd217e11509827cc6ae27a8a7faaa9da1c2bf257ca70eb77fd5c2ae2b385b", @ANYRES32=r2, @ANYRESHEX=0x0, @ANYRESHEX=r3, @ANYRES64, @ANYRESHEX], 0x310)
setsockopt$inet_group_source_req(r3, 0x0, 0x2c, &(0x7f0000000240)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @rand_addr=0x64010101}}}, 0x108)
bind$packet(r2, &(0x7f0000000040)={0x10, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
recvmmsg(0xffffffffffffffff, &(0x7f00000005c0)=[{{0x0, 0xfffffffffffffea3, 0x0}}], 0x3ffffffffffff62, 0x0, 0x0)
recvmsg$can_j1939(0xffffffffffffffff, 0x0, 0x10001)
readv(0xffffffffffffffff, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x24048050)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x0)
ioctl(0xffffffffffffffff, 0x8b32, &(0x7f0000000040))
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000600)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x58)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_JOIN_MESH(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000040)
sendmsg$can_raw(0xffffffffffffffff, 0x0, 0x0)

692.786742ms ago: executing program 2 (id=4043):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_DIRECTION={0x5}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x0)

692.566791ms ago: executing program 3 (id=4044):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff00000000030000000000000000000000020000000000000000100000000000040300000000000000000000100c"], 0x0, 0x56, 0x0, 0x0, 0x4}, 0x20)

594.278044ms ago: executing program 3 (id=4045):
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r0 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1, 0x0, 0x20000000}, 0x1c)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b7000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000df00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)

546.777074ms ago: executing program 2 (id=4046):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000000)={0x18, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000fb002900000000000000e500020000000000e500fcff00000000060053000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x8}, 0x90)

485.564324ms ago: executing program 4 (id=4047):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x4, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x23, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
socket(0x2a, 0x2, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000004480)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000f00)=[{{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f00000006c0)="cd8dd389d624e3b2fd80076ff8c45b6ecbe0d2cbd3d8a0aee20d36f4a7cd9a826fb2ffe3c913e4df878573b6b442bba468ff13ff49e07f6037b6161baa473bcb7be02bd7108ef0bb5b77bf175ecce861d4cf243fe775cbf56ba1593a28855655031e64e53ec54b794d5334b02170e238a1ee80de99617264d6813b3b3190c506fddd8ee388f32c42dee623d80cdcc298a653f366634e7c61745fcc9888bea1e1c8639a189078f5695832ad15bec44c19690f1ec6811094b769792ae0443889481a57aa06ae4cce1604e28bf0739f0174af3da237c223942682ac24", 0xdb}, {&(0x7f00000007c0)="111fc226d7f18c326a39fd0090dc702cef0b20eb157d5a06a4ea35e0a5c99c6098e54a4713fac4539480240a507086c6b0ebce7ec6a15bab35307745b6a345f9c6a4a009966497a2b10c16a4e6920216131ee8f49215212f757813f70e9466f82b3ffb9bbc1612a6cc91bd9faa9ad8b01f6354d5c3e520b237dce2b4965e3b916133340fb169277256da09e957e756cb5af830c161bc9ae758558910ef18c72087f9ab0c88366d4741d165b7e3937e57329309420bcc9835badf44d2bcd7314170791b6914709dfc3b11116220b9cf7ddbeafb68587df254dd2a5769934da83b51a55c", 0xe3}, {&(0x7f00000008c0)="7911", 0x2}], 0x3}}], 0x1, 0x0)
socket$unix(0x1, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r2=>0x0})
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000002c0)={0x1d, r2}, 0x10, &(0x7f0000000200)={0x0}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={0x64, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x64}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="40000000240001801400018008000100e000000108000200e00000010c00028005000100000000000800034000000000"], 0x40}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000400)='kfree\x00', r3}, 0x10)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000140), 0x4)
r7 = socket$alg(0x26, 0x5, 0x0)
r8 = accept(r7, 0x0, 0x0)
sendmmsg$inet6(r8, &(0x7f0000002180)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000540)="291f4607208c52023d9f90c087e562f10810d82c38748f8faf41bfd5881033ca3a440fcde810d52983a5892a9086f8fad4136ee1394018af7b4a1dc1c1fe9518304668e5534437492774f4a945d7b157096b5318d5952b8e3fdead674f06e2e8ca9e578e655e0ecf1fc16770a05ce2adbe6252c4c577f7cff8fff0275d865692a21d7d0729b60a49c0fb6f2e97312639fad7ecd135bf31953bfbed7804dcb596c339c7ef2b8db41077d91e7d04f8162bc6632677bfb90fdedd", 0xb9}, {&(0x7f0000000600)="9804cb64109ac2d104edc6c32ccdc005ad666358251f13dc65aa3a9746ce0acb913333cee78ddc54160fdbfa7b061d4bd66a40be0cc1ff4646454e81d43132b8174c42e16317", 0x46}, {&(0x7f00000006c0)="8c", 0x1}], 0x3}}], 0x1, 0x0)
r9 = socket(0x200000100000011, 0x3, 0x0)
r10 = socket$packet(0x11, 0x3, 0x300)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r8, 0xf502, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r10, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r11=>0x0})
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r8, 0x4008941a, &(0x7f0000000180))
bind$packet(r9, &(0x7f0000000040)={0x11, 0x0, r11, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_int(r9, 0x107, 0xf, &(0x7f0000000100)=0x800b, 0x4)
sendmsg$netlink(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000300)={0x2c, 0x0, 0x0, 0x30000, 0x0, "", [@generic="d96e6c8d5e85080045f00d80724e11d569116e3a1ce41e2a56"]}, 0x2c}], 0x1}, 0x0)
close(r6)

484.433096ms ago: executing program 1 (id=4048):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x6, 0x4, 0xfff, 0x7, 0x88}, 0xa3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000e41621eb70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x3f00, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

409.111322ms ago: executing program 0 (id=4049):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="58000000020601080000000000000000000000000500000002000000050005000a000000050004000000000005000400000000000900020073797a310000000016000300686173683a6e65742c706f72742c6e6574000000"], 0x58}, 0x1, 0x0, 0x0, 0x4000001}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$rxrpc(0x21, 0x2, 0xa)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x40c000)
sendfile(r4, 0xffffffffffffffff, 0x0, 0x6)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r3, 0x110, 0x4, &(0x7f0000006640)=0x1, 0x4)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000002c0)={0x24, r5, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x401}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x50)

408.755165ms ago: executing program 2 (id=4050):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000024c0)=ANY=[@ANYBLOB="3801000010000100000000000000009000fc000000000000000000000000000000fe8000000000000000000000000000bb00000000000000000a000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe80000000000000000000000000000000000000320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a"], 0x138}}, 0x0)

376.402439ms ago: executing program 1 (id=4051):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000000)={0x18, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000fb000000000000000000e500020000000000e500fcff00000000060000000000000995"], &(0x7f0000000180)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x8}, 0x90)

292.124631ms ago: executing program 1 (id=4052):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_MARK={0x8, 0x3}, @TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc, 0x10}, {0xc, 0x9, {0xf5}}}}]}]}, 0x68}}, 0x0)

228.380697ms ago: executing program 2 (id=4053):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180100"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0xe, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000000000000000000000000000850000005400000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
unshare(0x22000400)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
bind$x25(r1, &(0x7f0000000040)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x0}}, 0x12)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x5}, 0x48)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={<r3=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(0xffffffffffffffff, 0x84, 0x17, &(0x7f0000000300)=ANY=[@ANYRES32=r3], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x100, 0x100, 0x9, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000000), 0xcff5, r4}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x1b, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000500), 0x0, 0x2, r4}, 0x38)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$IPT_SO_GET_REVISION_MATCH(r6, 0x0, 0x42, &(0x7f0000000080)={'icmp\x00'}, &(0x7f0000000040)=0x1e)
syz_extract_tcp_res$synack(&(0x7f0000000080), 0x1, 0x0)
write$cgroup_type(r5, &(0x7f0000000000), 0x180000)

226.699308ms ago: executing program 0 (id=4054):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xfff3}, {0x3}}, [@TCA_RATE={0x6, 0x5, {0x0, 0x1}}]}, 0x2c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x4, 0x4, 0x4, 0xbf25}, 0x48)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000800000000000000000001811", @ANYRES32=r2], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close(r1)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000056000100000000000000000007"], 0x38}}, 0x0)

168.56835ms ago: executing program 4 (id=4055):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = socket(0x15, 0x3, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000580)={'vxcan1\x00', <r2=>0x0})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000780), 0xb)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000200), r3)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f0000000500)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000300)={&(0x7f0000000a40)=ANY=[@ANYBLOB="9c000000", @ANYRES16=r4, @ANYBLOB="00012bbd7000fedbdf2501000000140002007767300000000000000000000000000014000200776731000000000000000000000000001400020077673000000000000000000000001c0008000500010000000800070039f50000060006004e2000002c000880280000802400020031546f5c2fb0ff7181e90800cd094fa4d2111707b4615ee79e1af79939f6e2f40800050001000000bda553a58e9603c1fe6c734ee6ebbac14a6690521aaf4a6f82ae71ce35a5fb23e46d35f379d298b1620e11a12c699bb94276d34b21de2ba9778303f27cff8b21f5b1"], 0x9c}, 0x1, 0x0, 0x0, 0x4800}, 0x4008051)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000680)=@generic={&(0x7f0000000640)='./file0\x00'}, 0x18)
r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000700)=@generic={&(0x7f00000006c0)='./file0\x00', 0x0, 0x18}, 0x18)
pipe(&(0x7f00000001c0)={<r7=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
splice(r7, 0x0, r8, 0x0, 0x800, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000100))
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x1, 0x803, 0x0)
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x5c, 0x10, 0x609, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r11}, @IFLA_BROADCAST={0xa, 0x2, @random="e1b9039926cc"}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x5c}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0x2, &(0x7f0000000400)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x8}], &(0x7f00000004c0)='GPL\x00', 0x5, 0x87, &(0x7f0000000880)=""/135, 0x41100, 0x58, '\x00', r2, 0x0, r3, 0x8, &(0x7f00000005c0)={0x1, 0x3}, 0x8, 0x10, &(0x7f0000000600)={0x0, 0x3, 0x9, 0x400}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000740)=[r5, r6, r7], &(0x7f0000000780)=[{0x3, 0x5, 0x3, 0x4}, {0x1, 0x1, 0x3, 0x9}, {0x1, 0x5, 0xc, 0x3}], 0x10, 0x9}, 0x90)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x18, 0x52, 0x1, 0x0, 0x0, {0x1c}, [@typed={0x4, 0x1}]}, 0x18}}, 0x0)
sendmsg$key(r0, &(0x7f00000014c0)={0x2, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x2, 0x18, 0x0, 0x0, 0x15, 0x0, 0xffffffff, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_x_policy={0x8, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@loopback, @in6=@private1}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x2, @broadcast}}, @sadb_x_kmaddress={0x5, 0x19, 0x0, @in={0x2, 0x0, @broadcast}, @in={0x2, 0x0, @multicast2}}]}, 0xa8}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x4, 0x4}, 0x48)
r12 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r12, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r13}, 0x10)

129.286462ms ago: executing program 1 (id=4056):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_DIRECTION={0x5}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x0)

610.313µs ago: executing program 0 (id=4057):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$rds(0x15, 0x5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0xc0200, 0x0)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000640)=@mangle={'mangle\x00', 0x10, 0x6, 0x5c0, 0x1f8, 0xd0, 0x0, 0xd0, 0x1f8, 0x4f0, 0x4f0, 0x4f0, 0x4f0, 0x4f0, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x1f8}}, {{@uncond, 0x0, 0x100, 0x128, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@srh={{0x30}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0xfff7, 0x4}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv6=@mcast1}}}, {{@ipv6={@private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'veth1\x00', 'ip6gretap0\x00'}, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@local, @ipv4=@multicast1}}}, {{@ipv6={@mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'wg1\x00', 'vxcan1\x00'}, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@local}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x620)
ioctl$TUNSETOFFLOAD(r4, 0xc004743e, 0x20001403)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000100)=0x3)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x8, 0x10002, 0x102, 0x1}, 0x48)
ioctl$PPPIOCATTACH(r6, 0x4004743d, &(0x7f0000000040)=0x3)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r7, 0xc004743e, &(0x7f0000000340)=0x4)
epoll_create1(0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000002000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
getsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, &(0x7f00000001c0), &(0x7f0000000340)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})

0s ago: executing program 1 (id=4058):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000002c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000001}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$rxrpc(0x21, 0x2, 0xa)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x40c000)
sendfile(r4, 0xffffffffffffffff, 0x0, 0x6)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r3, 0x110, 0x4, &(0x7f0000006640)=0x1, 0x4)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000002c0)={0x24, r5, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x401}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x50) (fail_nth: 7)

kernel console output (not intermixed with test programs):

ing attributes in process `syz.1.3559'.
[  540.427713][T16538] sctp: [Deprecated]: syz.4.3557 (pid 16538) Use of int in maxseg socket option.
[  540.427713][T16538] Use struct sctp_assoc_value instead
[  565.290709][T11405] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  565.316144][T11405] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  565.325118][T11405] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  565.355155][T11405] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  565.386808][T11405] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  565.394402][T11405] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  565.426404][T11405] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  565.436540][ T4627] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  565.459215][T11405] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  565.467278][T11405] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  565.476396][T11405] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  565.484269][T11405] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  565.499631][T11405] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  565.517622][ T5236] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  565.535795][T11405] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  565.551595][T11405] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  565.559634][T11405] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  565.567937][ T5242] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  565.587540][ T5242] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  565.618339][ T5242] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  565.623447][ T5233] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  565.633839][ T5233] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  565.642456][ T5233] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  565.651050][ T5242] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  565.651493][ T5233] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  565.682455][ T5242] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  565.700823][ T5242] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  565.700823][ T5233] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  565.721255][ T5242] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  565.729673][ T5242] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  565.897891][T16562] wg1 speed is unknown, defaulting to 1000
[  565.948699][   T52] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  565.960684][   T52] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.072380][   T52] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  566.093984][   T52] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.118003][T16553] wg1 speed is unknown, defaulting to 1000
[  566.173226][   T52] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  566.188983][   T52] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.294617][   T52] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  566.305193][   T52] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.337771][T16555] wg1 speed is unknown, defaulting to 1000
[  566.515102][T16556] wg1 speed is unknown, defaulting to 1000
[  566.557072][T16562] chnl_net:caif_netlink_parms(): no params data found
[  566.614621][   T52] team0: left allmulticast mode
[  566.622210][   T52] team_slave_0: left allmulticast mode
[  566.629423][   T52] team_slave_1: left allmulticast mode
[  566.634920][   T52] macvlan1: left allmulticast mode
[  566.640391][   T52] veth1_vlan: left allmulticast mode
[  566.646186][   T52] bridge0: port 3(team0) entered disabled state
[  566.660296][   T52] bridge_slave_1: left allmulticast mode
[  566.666006][   T52] bridge_slave_1: left promiscuous mode
[  566.680547][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[  566.690977][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[  567.122749][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  567.134198][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  567.148174][   T52] bond0 (unregistering): (slave vlan2): Releasing backup interface
[  567.163094][   T52] bond0 (unregistering): Released all slaves
[  567.202584][T16558] wg1 speed is unknown, defaulting to 1000
[  567.390653][   T52] tipc: Left network mode
[  567.426820][   T52] IPVS: stopping master sync thread 10820 ...
[  567.518275][T16562] bridge0: port 1(bridge_slave_0) entered blocking state
[  567.528324][T16562] bridge0: port 1(bridge_slave_0) entered disabled state
[  567.535722][T16562] bridge_slave_0: entered allmulticast mode
[  567.543839][T16562] bridge_slave_0: entered promiscuous mode
[  567.555615][T16562] bridge0: port 2(bridge_slave_1) entered blocking state
[  567.563189][T16562] bridge0: port 2(bridge_slave_1) entered disabled state
[  567.570651][T16562] bridge_slave_1: entered allmulticast mode
[  567.577962][T16562] bridge_slave_1: entered promiscuous mode
[  567.583976][ T5242] Bluetooth: hci3: command tx timeout
[  567.591303][ T5242] Bluetooth: hci2: command tx timeout
[  567.659166][ T5242] Bluetooth: hci4: command tx timeout
[  567.682508][T16553] chnl_net:caif_netlink_parms(): no params data found
[  567.728166][T16562] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  567.739367][ T5236] Bluetooth: hci6: command tx timeout
[  567.742898][T16562] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  567.820011][ T5236] Bluetooth: hci5: command tx timeout
[  567.927485][T16562] team0: Port device team_slave_0 added
[  567.986087][T16562] team0: Port device team_slave_1 added
[  568.040229][T16553] bridge0: port 1(bridge_slave_0) entered blocking state
[  568.047415][T16553] bridge0: port 1(bridge_slave_0) entered disabled state
[  568.054787][T16553] bridge_slave_0: entered allmulticast mode
[  568.064174][T16553] bridge_slave_0: entered promiscuous mode
[  568.128045][T16553] bridge0: port 2(bridge_slave_1) entered blocking state
[  568.136113][T16553] bridge0: port 2(bridge_slave_1) entered disabled state
[  568.144832][T16553] bridge_slave_1: entered allmulticast mode
[  568.155357][T16553] bridge_slave_1: entered promiscuous mode
[  568.164436][T16562] batman_adv: batadv0: Adding interface: batadv_slave_0
[  568.171693][T16562] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  568.197736][T16562] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  568.211895][T16562] batman_adv: batadv0: Adding interface: batadv_slave_1
[  568.219397][T16562] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  568.245441][T16562] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  568.257089][T16556] chnl_net:caif_netlink_parms(): no params data found
[  568.350343][T16555] chnl_net:caif_netlink_parms(): no params data found
[  568.483266][T16553] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  568.541718][T16553] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  568.745560][   T52] hsr_slave_0: left promiscuous mode
[  568.751789][   T52] hsr_slave_1: left promiscuous mode
[  568.767130][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  568.776104][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[  568.789679][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  568.797100][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[  568.833347][   T52] veth1_macvtap: left promiscuous mode
[  568.839074][   T52] veth0_macvtap: left promiscuous mode
[  568.844871][   T52] veth1_vlan: left promiscuous mode
[  568.858918][   T52] veth0_vlan: left allmulticast mode
[  568.864265][   T52] veth0_vlan: left promiscuous mode
[  569.234490][   T52] macvlan1 (unregistering): left promiscuous mode
[  569.245208][   T52] team0 (unregistering): Port device macvlan1 removed
[  569.597338][   T52] team_slave_1 (unregistering): left promiscuous mode
[  569.607517][   T52] team0 (unregistering): Port device team_slave_1 removed
[  569.654503][   T52] team_slave_0 (unregistering): left promiscuous mode
[  569.662140][ T5236] Bluetooth: hci2: command tx timeout
[  569.662167][ T5233] Bluetooth: hci3: command tx timeout
[  569.675633][   T52] team0 (unregistering): Port device team_slave_0 removed
[  569.739061][ T5233] Bluetooth: hci4: command tx timeout
[  569.827270][ T5233] Bluetooth: hci6: command tx timeout
[  569.902529][ T5233] Bluetooth: hci5: command tx timeout
[  570.203208][T16562] hsr_slave_0: entered promiscuous mode
[  570.214708][T16562] hsr_slave_1: entered promiscuous mode
[  570.231293][T16562] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  570.238942][T16562] Cannot create hsr debugfs directory
[  570.271117][T16553] team0: Port device team_slave_0 added
[  570.282205][T16553] team0: Port device team_slave_1 added
[  570.412578][T16553] batman_adv: batadv0: Adding interface: batadv_slave_0
[  570.420977][T16553] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  570.447447][T16553] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  570.471720][T16553] batman_adv: batadv0: Adding interface: batadv_slave_1
[  570.478708][T16553] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  570.504855][T16553] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  570.532082][T16556] bridge0: port 1(bridge_slave_0) entered blocking state
[  570.539873][T16556] bridge0: port 1(bridge_slave_0) entered disabled state
[  570.547223][T16556] bridge_slave_0: entered allmulticast mode
[  570.554967][T16556] bridge_slave_0: entered promiscuous mode
[  570.611649][T16556] bridge0: port 2(bridge_slave_1) entered blocking state
[  570.621359][T16556] bridge0: port 2(bridge_slave_1) entered disabled state
[  570.628720][T16556] bridge_slave_1: entered allmulticast mode
[  570.636432][T16556] bridge_slave_1: entered promiscuous mode
[  570.692305][T16555] bridge0: port 1(bridge_slave_0) entered blocking state
[  570.699866][T16555] bridge0: port 1(bridge_slave_0) entered disabled state
[  570.707136][T16555] bridge_slave_0: entered allmulticast mode
[  570.714838][T16555] bridge_slave_0: entered promiscuous mode
[  570.735002][T16558] chnl_net:caif_netlink_parms(): no params data found
[  570.762757][T16555] bridge0: port 2(bridge_slave_1) entered blocking state
[  570.770516][T16555] bridge0: port 2(bridge_slave_1) entered disabled state
[  570.777737][T16555] bridge_slave_1: entered allmulticast mode
[  570.785389][T16555] bridge_slave_1: entered promiscuous mode
[  570.808250][T16556] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  570.825083][T16556] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  570.894786][T16555] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  570.947154][   T52] IPVS: stop unused estimator thread 0...
[  570.960201][T16553] hsr_slave_0: entered promiscuous mode
[  570.966962][T16553] hsr_slave_1: entered promiscuous mode
[  570.973576][T16553] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  570.992558][T16553] Cannot create hsr debugfs directory
[  571.001520][T16555] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  571.091595][T16555] team0: Port device team_slave_0 added
[  571.107030][T16556] team0: Port device team_slave_0 added
[  571.153133][T16558] bridge0: port 1(bridge_slave_0) entered blocking state
[  571.160582][T16558] bridge0: port 1(bridge_slave_0) entered disabled state
[  571.167823][T16558] bridge_slave_0: entered allmulticast mode
[  571.175617][T16558] bridge_slave_0: entered promiscuous mode
[  571.187729][T16558] bridge0: port 2(bridge_slave_1) entered blocking state
[  571.195230][T16558] bridge0: port 2(bridge_slave_1) entered disabled state
[  571.202789][T16558] bridge_slave_1: entered allmulticast mode
[  571.210203][T16558] bridge_slave_1: entered promiscuous mode
[  571.221245][T16555] team0: Port device team_slave_1 added
[  571.231241][T16556] team0: Port device team_slave_1 added
[  571.344902][T16562] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  571.357059][T16562] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  571.402084][T16555] batman_adv: batadv0: Adding interface: batadv_slave_0
[  571.416479][T16555] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  571.444774][T16555] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  571.456961][T16556] batman_adv: batadv0: Adding interface: batadv_slave_0
[  571.464594][T16556] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  571.491535][T16556] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  571.505679][T16556] batman_adv: batadv0: Adding interface: batadv_slave_1
[  571.513344][T16556] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  571.541169][T16556] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  571.589913][T16558] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  571.615388][T16562] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  571.625919][T16562] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  571.643732][T16555] batman_adv: batadv0: Adding interface: batadv_slave_1
[  571.651057][T16555] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  571.678071][T16555] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  571.725585][T16558] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  571.745605][ T5242] Bluetooth: hci2: command tx timeout
[  571.751723][ T5233] Bluetooth: hci3: command tx timeout
[  571.777656][T16562] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  571.788211][T16562] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  571.819996][ T5242] Bluetooth: hci4: command tx timeout
[  571.867194][T16556] hsr_slave_0: entered promiscuous mode
[  571.873894][T16556] hsr_slave_1: entered promiscuous mode
[  571.880808][T16556] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  571.888372][T16556] Cannot create hsr debugfs directory
[  571.899473][ T5242] Bluetooth: hci6: command tx timeout
[  571.912158][T16558] team0: Port device team_slave_0 added
[  571.931277][T16562] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  571.941768][T16562] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  571.964486][T16555] hsr_slave_0: entered promiscuous mode
[  571.970979][T16555] hsr_slave_1: entered promiscuous mode
[  571.977037][T16555] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  571.986678][ T5242] Bluetooth: hci5: command tx timeout
[  571.986711][T16555] Cannot create hsr debugfs directory
[  572.045149][T16558] team0: Port device team_slave_1 added
[  572.226569][ T8215] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.248172][T16558] batman_adv: batadv0: Adding interface: batadv_slave_0
[  572.257499][T16558] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  572.284368][T16558] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  572.337016][T16558] batman_adv: batadv0: Adding interface: batadv_slave_1
[  572.345688][T16558] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  572.373946][T16558] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  572.404569][ T8215] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.516902][T16562] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  572.559827][ T8215] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.594368][T16562] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  572.640345][ T8215] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.661598][T16562] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  572.675724][T13836] infiniband syz1: set down
[  572.729470][T16558] hsr_slave_0: entered promiscuous mode
[  572.736149][T16558] hsr_slave_1: entered promiscuous mode
[  572.747135][T16558] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  572.754781][T16558] Cannot create hsr debugfs directory
[  572.761337][   T25] wg1 speed is unknown, defaulting to 1000
[  572.761409][T16562] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  572.807175][   T25] wg1 speed is unknown, defaulting to 1000
[  572.966398][ T8215] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  573.042189][ T8215] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  573.112120][ T8215] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  573.173276][ T8215] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  573.223688][T16562] 8021q: adding VLAN 0 to HW filter on device bond0
[  573.262430][T16562] 8021q: adding VLAN 0 to HW filter on device team0
[  573.276053][ T2953] bridge0: port 1(bridge_slave_0) entered blocking state
[  573.283231][ T2953] bridge0: port 1(bridge_slave_0) entered forwarding state
[  573.306993][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  573.314217][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  573.445122][ T8215] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  573.455710][ T8215] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  573.551341][ T8215] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  573.575008][ T8215] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  573.671243][ T8215] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  573.682975][ T8215] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  573.713395][T16562] 8021q: adding VLAN 0 to HW filter on device batadv0
[  573.791176][ T8215] bond0: (slave netdevsim0): Releasing backup interface
[  573.803232][ T8215] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  573.814224][ T8215] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  573.819552][ T5233] Bluetooth: hci3: command tx timeout
[  573.830214][ T5242] Bluetooth: hci2: command tx timeout
[  573.899869][ T5233] Bluetooth: hci4: command tx timeout
[  573.978938][ T5233] Bluetooth: hci6: command tx timeout
[  574.017824][ T8215] bridge_slave_1: left allmulticast mode
[  574.023902][ T8215] bridge_slave_1: left promiscuous mode
[  574.030206][ T8215] bridge0: port 2(bridge_slave_1) entered disabled state
[  574.038731][ T8215] bridge_slave_0: left promiscuous mode
[  574.044550][ T8215] bridge0: port 1(bridge_slave_0) entered disabled state
[  574.059393][ T5233] Bluetooth: hci5: command tx timeout
[  574.070060][ T8215] bridge_slave_1: left allmulticast mode
[  574.075731][ T8215] bridge_slave_1: left promiscuous mode
[  574.083844][ T8215] bridge0: port 2(bridge_slave_1) entered disabled state
[  574.096870][ T8215] bridge_slave_0: left allmulticast mode
[  574.104548][ T8215] bridge_slave_0: left promiscuous mode
[  574.110997][ T8215] bridge0: port 1(bridge_slave_0) entered disabled state
[  574.121818][ T8215] bridge_slave_1: left allmulticast mode
[  574.127466][ T8215] bridge_slave_1: left promiscuous mode
[  574.135401][ T8215] bridge0: port 2(bridge_slave_1) entered disabled state
[  574.145939][ T8215] bridge_slave_0: left allmulticast mode
[  574.151924][ T8215] bridge_slave_0: left promiscuous mode
[  574.157643][ T8215] bridge0: port 1(bridge_slave_0) entered disabled state
[  574.170481][ T8215] team0: left allmulticast mode
[  574.175365][ T8215] team_slave_0: left allmulticast mode
[  574.181122][ T8215] team_slave_1: left allmulticast mode
[  574.186785][ T8215] bridge0: port 4(team0) entered disabled state
[  574.196031][ T8215] ip6gretap0: left allmulticast mode
[  574.202153][ T8215] ip6gretap0: left promiscuous mode
[  574.207541][ T8215] bridge0: port 3(ip6gretap0) entered disabled state
[  574.219427][ T8215] bridge_slave_1: left allmulticast mode
[  574.225096][ T8215] bridge_slave_1: left promiscuous mode
[  574.231994][ T8215] bridge0: port 2(bridge_slave_1) entered disabled state
[  574.240779][ T8215] bridge_slave_0: left allmulticast mode
[  574.246412][ T8215] bridge_slave_0: left promiscuous mode
[  574.252668][ T8215] bridge0: port 1(bridge_slave_0) entered disabled state
[  574.773374][ T8215] ip6_vti0 (unregistering): left allmulticast mode
[  575.357334][ T8215] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  576.113671][ T8215] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  576.125975][ T8215] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  576.136975][ T8215] bond0 (unregistering): Released all slaves
[  576.156310][ T8215] bond1 (unregistering): Released all slaves
[  576.292478][ T8215] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  576.305153][ T8215] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  576.317044][ T8215] bond0 (unregistering): Released all slaves
[  576.444371][ T8215] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  576.457581][ T8215] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  576.469800][ T8215] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface
[  576.482112][ T8215] bond0 (unregistering): Released all slaves
[  576.620837][ T8215] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  576.631936][ T8215] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  576.644878][ T8215] bond0 (unregistering): Released all slaves
[  576.849560][ T8215] ÊüðÿG: left promiscuous mode
[  576.865768][T16562] veth0_vlan: entered promiscuous mode
[  576.914151][T16562] veth1_vlan: entered promiscuous mode
[  577.001660][ T8215] tipc: Disabling bearer <udp:syz1>
[  577.012504][ T8215] tipc: Left network mode
[  577.047912][T16562] veth0_macvtap: entered promiscuous mode
[  577.079742][T16562] veth1_macvtap: entered promiscuous mode
[  577.096549][ T8215] IPVS: stopping master sync thread 9783 ...
[  577.104654][ T8215] IPVS: stopping master sync thread 10744 ...
[  577.119326][ T8215] IPVS: stopping master sync thread 9726 ...
[  577.184771][T16562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  577.195423][T16562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.205672][T16562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  577.216383][T16562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.226290][T16562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  577.236882][T16562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.247047][T16562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  577.258095][T16562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.270626][T16562] batman_adv: batadv0: Interface activated: batadv_slave_0
[  577.330545][T16562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.342370][T16562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.352416][T16562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.362962][T16562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.374768][T16562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.386443][T16562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.397121][T16562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.407847][T16562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.417837][T16562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.428325][T16562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.440191][T16562] batman_adv: batadv0: Interface activated: batadv_slave_1
[  577.514518][T16562] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  577.524891][T16562] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  577.534117][T16562] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  577.543052][T16562] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  577.554071][T16555] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  577.567381][T16555] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  577.603616][T16555] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  577.659778][T16555] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  577.808677][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  577.822162][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  577.925088][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  577.933947][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  578.076370][T16606] FAULT_INJECTION: forcing a failure.
[  578.076370][T16606] name failslab, interval 1, probability 0, space 0, times 0
[  578.093376][T16606] CPU: 1 UID: 0 PID: 16606 Comm: syz.4.3565 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  578.104168][T16606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  578.114212][T16606] Call Trace:
[  578.117475][T16606]  <TASK>
[  578.120393][T16606]  dump_stack_lvl+0x241/0x360
[  578.125057][T16606]  ? __pfx_dump_stack_lvl+0x10/0x10
[  578.130243][T16606]  ? __pfx__printk+0x10/0x10
[  578.134824][T16606]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  578.140278][T16606]  ? __pfx___might_resched+0x10/0x10
[  578.145577][T16606]  should_fail_ex+0x3b0/0x4e0
[  578.150258][T16606]  should_failslab+0xac/0x100
[  578.154926][T16606]  ? rfcomm_dlc_alloc+0x76/0x410
[  578.159879][T16606]  __kmalloc_cache_noprof+0x6c/0x2c0
[  578.165150][T16606]  ? bpf_lsm_capable+0x9/0x10
[  578.169826][T16606]  rfcomm_dlc_alloc+0x76/0x410
[  578.174586][T16606]  rfcomm_dev_ioctl+0xf3e/0x2220
[  578.179529][T16606]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  578.184898][T16606]  ? __local_bh_enable_ip+0x168/0x200
[  578.190263][T16606]  ? lockdep_hardirqs_on+0x99/0x150
[  578.195462][T16606]  ? __local_bh_enable_ip+0x168/0x200
[  578.201018][T16606]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  578.206729][T16606]  ? do_raw_spin_unlock+0x13c/0x8b0
[  578.211926][T16606]  rfcomm_sock_ioctl+0x86/0xd0
[  578.216689][T16606]  sock_do_ioctl+0x158/0x460
[  578.221276][T16606]  ? __pfx_sock_do_ioctl+0x10/0x10
[  578.226401][T16606]  sock_ioctl+0x629/0x8e0
[  578.230729][T16606]  ? __pfx_sock_ioctl+0x10/0x10
[  578.235574][T16606]  ? __fget_files+0x29/0x470
[  578.240157][T16606]  ? __fget_files+0x3f6/0x470
[  578.244821][T16606]  ? __fget_files+0x29/0x470
[  578.249408][T16606]  ? bpf_lsm_file_ioctl+0x9/0x10
[  578.254339][T16606]  ? security_file_ioctl+0x87/0xb0
[  578.259449][T16606]  ? __pfx_sock_ioctl+0x10/0x10
[  578.264294][T16606]  __se_sys_ioctl+0xfc/0x170
[  578.268902][T16606]  do_syscall_64+0xf3/0x230
[  578.273396][T16606]  ? clear_bhb_loop+0x35/0x90
[  578.278073][T16606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  578.283959][T16606] RIP: 0033:0x7fa34b37cef9
[  578.288381][T16606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  578.307995][T16606] RSP: 002b:00007fa34c0cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  578.316408][T16606] RAX: ffffffffffffffda RBX: 00007fa34b535f80 RCX: 00007fa34b37cef9
[  578.324370][T16606] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 0000000000000004
[  578.332338][T16606] RBP: 00007fa34c0cc090 R08: 0000000000000000 R09: 0000000000000000
[  578.340304][T16606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  578.348268][T16606] R13: 0000000000000000 R14: 00007fa34b535f80 R15: 00007fff6a5e67b8
[  578.356247][T16606]  </TASK>
[  578.479920][T16556] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  578.535922][T16556] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  578.547992][T16556] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  578.587016][T16556] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  578.744877][T16555] 8021q: adding VLAN 0 to HW filter on device bond0
[  578.753705][T16610] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3567'.
[  578.883385][T16555] 8021q: adding VLAN 0 to HW filter on device team0
[  578.986884][T13836] bridge0: port 1(bridge_slave_0) entered blocking state
[  578.994169][T13836] bridge0: port 1(bridge_slave_0) entered forwarding state
[  579.085535][T16612] wg1 speed is unknown, defaulting to 1000
[  579.163403][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  579.170598][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  579.313127][T16556] 8021q: adding VLAN 0 to HW filter on device bond0
[  579.356333][T16555] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  579.378951][T16555] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  579.404699][T16558] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  579.437786][T16558] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  579.534230][T16558] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  579.617419][T16556] 8021q: adding VLAN 0 to HW filter on device team0
[  579.647263][T16558] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  579.887555][ T1124] bridge0: port 1(bridge_slave_0) entered blocking state
[  579.894768][ T1124] bridge0: port 1(bridge_slave_0) entered forwarding state
[  579.999153][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  580.006316][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  580.260483][T16555] 8021q: adding VLAN 0 to HW filter on device batadv0
[  580.326715][T16553] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  580.404290][ T8215] hsr_slave_0: left promiscuous mode
[  580.422289][ T8215] hsr_slave_1: left promiscuous mode
[  580.428454][ T8215] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  580.439796][ T8215] batman_adv: batadv0: Removing interface: batadv_slave_0
[  580.448444][ T8215] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  580.456834][ T8215] batman_adv: batadv0: Removing interface: batadv_slave_1
[  580.473957][ T8215] hsr_slave_0: left promiscuous mode
[  580.480504][ T8215] hsr_slave_1: left promiscuous mode
[  580.486396][ T8215] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  580.494018][ T8215] batman_adv: batadv0: Removing interface: batadv_slave_0
[  580.506300][ T8215] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  580.513787][ T8215] batman_adv: batadv0: Removing interface: batadv_slave_1
[  580.526166][ T8215] hsr_slave_0: left promiscuous mode
[  580.534390][ T8215] hsr_slave_1: left promiscuous mode
[  580.542264][ T8215] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  580.551560][ T8215] batman_adv: batadv0: Removing interface: batadv_slave_1
[  580.562892][ T8215] hsr_slave_0: left promiscuous mode
[  580.568685][ T8215] hsr_slave_1: left promiscuous mode
[  580.627485][ T8215] veth1_macvtap: left promiscuous mode
[  580.633485][ T8215] veth0_macvtap: left promiscuous mode
[  580.639197][ T8215] veth1_vlan: left promiscuous mode
[  580.648596][ T8215] veth1_macvtap: left promiscuous mode
[  580.655310][ T8215] veth0_macvtap: left promiscuous mode
[  580.661295][ T8215] veth1_vlan: left promiscuous mode
[  580.667660][ T8215] veth0_vlan: left promiscuous mode
[  580.674539][ T8215] veth0_macvtap: left promiscuous mode
[  580.680195][ T8215] veth1_vlan: left promiscuous mode
[  580.685456][ T8215] 
@ÿ: left promiscuous mode
[  580.692047][ T8215] veth1_macvtap: left promiscuous mode
[  580.697560][ T8215] veth0_macvtap: left promiscuous mode
[  580.703867][ T8215] veth1_vlan: left promiscuous mode
[  580.798583][ T8215] infiniband syz1: set down
[  581.604502][ T8215] team0 (unregistering): Port device team_slave_1 removed
[  581.653948][ T8215] team0 (unregistering): Port device team_slave_0 removed
[  581.867090][   T12] smc: removing ib device syz1
[  582.583940][ T8215] pim6reg527 (unregistering): left allmulticast mode
[  583.467233][ T8215] team0 (unregistering): Port device team_slave_1 removed
[  583.514986][ T8215] team0 (unregistering): Port device team_slave_0 removed
[  584.443927][ T8215] team0 (unregistering): Port device team_slave_1 removed
[  584.495464][ T8215] team0 (unregistering): Port device team_slave_0 removed
[  585.480328][ T8215] team_slave_1 (unregistering): left promiscuous mode
[  585.494107][ T8215] team0 (unregistering): Port device team_slave_1 removed
[  585.537444][ T8215] team_slave_0 (unregistering): left promiscuous mode
[  585.547351][ T8215] team0 (unregistering): Port device team_slave_0 removed
[  585.983507][ T8215] vcan0 (unregistering): left allmulticast mode
[  586.010053][T16553] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  586.027589][T16553] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  586.049547][T12541] wg1 speed is unknown, defaulting to 1000
[  586.085243][T16553] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  586.115320][T16556] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  586.403442][T16555] veth0_vlan: entered promiscuous mode
[  586.456954][T16558] 8021q: adding VLAN 0 to HW filter on device bond0
[  586.492691][T16555] veth1_vlan: entered promiscuous mode
[  586.545105][T16558] 8021q: adding VLAN 0 to HW filter on device team0
[  586.653931][T16555] veth0_macvtap: entered promiscuous mode
[  586.687380][T16553] 8021q: adding VLAN 0 to HW filter on device bond0
[  586.727152][T13836] bridge0: port 1(bridge_slave_0) entered blocking state
[  586.734409][T13836] bridge0: port 1(bridge_slave_0) entered forwarding state
[  586.748346][T16555] veth1_macvtap: entered promiscuous mode
[  586.827716][T16556] 8021q: adding VLAN 0 to HW filter on device batadv0
[  586.848352][T16553] 8021q: adding VLAN 0 to HW filter on device team0
[  586.873725][ T1124] bridge0: port 2(bridge_slave_1) entered blocking state
[  586.880950][ T1124] bridge0: port 2(bridge_slave_1) entered forwarding state
[  586.915875][  T146] bridge0: port 1(bridge_slave_0) entered blocking state
[  586.923063][  T146] bridge0: port 1(bridge_slave_0) entered forwarding state
[  586.966498][T16555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  586.980753][T16555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  586.997144][T16555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.012815][T16555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.023031][T16555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.033973][T16555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.055980][T16555] batman_adv: batadv0: Interface activated: batadv_slave_0
[  587.067643][T16555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.080058][T16555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.090032][T16555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.100852][T16555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.112569][T16555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.123073][T16555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.140101][T16555] batman_adv: batadv0: Interface activated: batadv_slave_1
[  587.212207][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  587.219407][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  587.237486][T16555] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  587.247865][T16555] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  587.256744][T16555] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  587.266546][T16555] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  587.355224][T16635] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  587.358699][T16556] veth0_vlan: entered promiscuous mode
[  587.369775][T16635] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  587.378316][T16635] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  587.497101][T16553] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  587.536202][T16556] veth1_vlan: entered promiscuous mode
[  587.728231][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  587.738152][T16556] veth0_macvtap: entered promiscuous mode
[  587.756574][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  587.807991][T16556] veth1_macvtap: entered promiscuous mode
[  587.880440][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  587.892969][T16556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.907824][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  587.921039][T16556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.932166][T16556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.943140][T16556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.953097][T16556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.963620][T16556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.974415][T16556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.977965][T16634] dccp_close: ABORT with 408 bytes unread
[  587.985312][T16556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  588.003363][T16556] batman_adv: batadv0: Interface activated: batadv_slave_0
[  588.019148][T16556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  588.032292][T16556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  588.042232][T16556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  588.052956][T16556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  588.064423][T16556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  588.076098][T16556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  588.093511][T16556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  588.104228][T16556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  588.115810][T16556] batman_adv: batadv0: Interface activated: batadv_slave_1
[  588.153077][T16553] 8021q: adding VLAN 0 to HW filter on device batadv0
[  588.177312][T16646] netlink: 124 bytes leftover after parsing attributes in process `syz.4.3572'.
[  588.202299][T16556] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  588.229487][T16556] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  588.256068][T16556] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  588.282827][T16556] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  588.322335][T16558] 8021q: adding VLAN 0 to HW filter on device batadv0
[  588.387460][ T8215] IPVS: stop unused estimator thread 0...
[  588.430208][ T8215] IPVS: stop unused estimator thread 0...
[  588.482752][ T8215] IPVS: stop unused estimator thread 0...
[  588.539550][ T8215] IPVS: stop unused estimator thread 0...
[  588.682805][  T146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  588.695881][  T146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  588.740066][T16553] veth0_vlan: entered promiscuous mode
[  588.802866][T16558] veth0_vlan: entered promiscuous mode
[  588.830223][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  588.849663][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  588.864758][T16553] veth1_vlan: entered promiscuous mode
[  588.882490][T16558] veth1_vlan: entered promiscuous mode
[  588.996949][T16553] veth0_macvtap: entered promiscuous mode
[  589.011574][T16669] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  589.018868][T16669] IPv6: NLM_F_CREATE should be set when creating new route
[  589.026116][T16669] IPv6: NLM_F_CREATE should be set when creating new route
[  589.054960][T16666] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  589.056760][T16553] veth1_macvtap: entered promiscuous mode
[  589.070650][T16666] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  589.076230][T16558] veth0_macvtap: entered promiscuous mode
[  589.089894][T16666] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  589.105594][   T46] IPVS: starting estimator thread 0...
[  589.121874][T16558] veth1_macvtap: entered promiscuous mode
[  589.155740][T16553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.170990][T16553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.183002][T16553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.194825][T16553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.205412][T16553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.208997][T16671] IPVS: using max 19 ests per chain, 45600 per kthread
[  589.223253][T16553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.228565][T16673] netlink: 209676 bytes leftover after parsing attributes in process `syz.1.3577'.
[  589.240181][T16553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.243034][T16673] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  589.264464][T16553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.270065][T16673] openvswitch: netlink: Key 0 has unexpected len 8 expected 0
[  589.278110][T16553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.293623][T16553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.306093][T16553] batman_adv: batadv0: Interface activated: batadv_slave_0
[  589.322047][T16673] netlink: 'syz.1.3577': attribute type 1 has an invalid length.
[  589.353216][T16553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.366553][T16553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.376580][T16553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.387148][T16553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.397251][T16553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.407818][T16553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.418583][T16553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.429848][T16553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.439986][T16553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.450894][T16553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.464137][T16553] batman_adv: batadv0: Interface activated: batadv_slave_1
[  589.481301][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.492484][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.504886][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.524780][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.538192][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.559066][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.578638][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.591645][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.601688][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.612634][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.622898][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.633833][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.647983][T16558] batman_adv: batadv0: Interface activated: batadv_slave_0
[  589.674573][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.695982][T16665] dccp_close: ABORT with 417 bytes unread
[  589.705263][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.745762][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.787678][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.798893][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.810031][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.826710][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.837645][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.850797][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.864049][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.879320][T16558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.893672][T16558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.907075][T16558] batman_adv: batadv0: Interface activated: batadv_slave_1
[  589.929642][T16558] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  589.948728][T16558] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  589.957575][T16558] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  589.969807][T16558] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  589.996535][T16553] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  590.005664][T16553] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  590.014660][T16553] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  590.023422][T16553] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  590.035024][T16679] netlink: 'syz.4.3580': attribute type 8 has an invalid length.
[  590.045112][T16676] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  590.060457][T16676] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  590.072064][T16681] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3579'.
[  590.086729][T16676] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  590.089286][T16681] netlink: 48 bytes leftover after parsing attributes in process `syz.0.3579'.
[  590.111682][T16681] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3579'.
[  590.128673][T16681] vlan2: entered allmulticast mode
[  590.358450][T16687] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  590.365741][T16687] IPv6: NLM_F_CREATE should be set when creating new route
[  590.373072][T16687] IPv6: NLM_F_CREATE should be set when creating new route
[  590.395246][  T146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.418868][  T146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  590.421822][T16675] dccp_close: ABORT with 397 bytes unread
[  590.481808][ T5281] IPVS: starting estimator thread 0...
[  590.507453][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.531652][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  590.599304][T16689] IPVS: using max 23 ests per chain, 55200 per kthread
[  590.622104][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.646532][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  590.682670][ T8214] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.717130][ T8214] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  590.844876][T16693] bridge0: port 3(vlan2) entered blocking state
[  590.862725][T16693] bridge0: port 3(vlan2) entered disabled state
[  590.871754][T16693] vlan2: entered allmulticast mode
[  590.896695][T16693] vlan2: left allmulticast mode
[  591.077043][T16703] syzkaller1: entered promiscuous mode
[  591.099914][T16703] syzkaller1: entered allmulticast mode
[  591.190199][T16714] pim6reg: entered allmulticast mode
[  591.213781][T16717] netlink: 'syz.1.3589': attribute type 58 has an invalid length.
[  591.224444][T16717] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3589'.
[  591.292462][T16719] pim6reg: left allmulticast mode
[  591.581233][T16723] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  591.596751][T16723] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  591.606290][T16723] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  591.718170][T16733] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  591.934769][T16739] FAULT_INJECTION: forcing a failure.
[  591.934769][T16739] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  591.948138][T16739] CPU: 0 UID: 0 PID: 16739 Comm: syz.0.3598 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  591.958929][T16739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  591.969007][T16739] Call Trace:
[  591.972301][T16739]  <TASK>
[  591.975251][T16739]  dump_stack_lvl+0x241/0x360
[  591.979960][T16739]  ? __pfx_dump_stack_lvl+0x10/0x10
[  591.985187][T16739]  ? __pfx__printk+0x10/0x10
[  591.989821][T16739]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  591.995834][T16739]  ? shmem_get_folio_gfp+0x19c7/0x2370
[  592.001322][T16739]  ? irqentry_exit+0x63/0x90
[  592.005933][T16739]  ? exc_page_fault+0x590/0x8c0
[  592.010804][T16739]  should_fail_ex+0x3b0/0x4e0
[  592.015508][T16739]  copy_page_from_iter_atomic+0x24f/0x1aa0
[  592.021342][T16739]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  592.027011][T16739]  ? fault_in_readable+0x1a6/0x2b0
[  592.032153][T16739]  ? __pfx_copy_page_from_iter_atomic+0x10/0x10
[  592.038416][T16739]  ? shmem_write_begin+0x23f/0x4d0
[  592.043548][T16739]  ? __pfx_shmem_write_begin+0x10/0x10
[  592.049039][T16739]  generic_perform_write+0x4a1/0x840
[  592.054356][T16739]  ? __pfx_generic_perform_write+0x10/0x10
[  592.060181][T16739]  ? __pfx_generic_write_checks+0x10/0x10
[  592.065927][T16739]  ? rcu_read_lock_any_held+0xb7/0x160
[  592.071413][T16739]  ? file_update_time+0x2a6/0x430
[  592.076456][T16739]  shmem_file_write_iter+0xfc/0x120
[  592.081655][T16739]  vfs_write+0xa72/0xc90
[  592.085901][T16739]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  592.091707][T16739]  ? __pfx_vfs_write+0x10/0x10
[  592.096482][T16739]  ksys_write+0x1a0/0x2c0
[  592.100822][T16739]  ? __pfx_ksys_write+0x10/0x10
[  592.105683][T16739]  ? do_syscall_64+0x100/0x230
[  592.110454][T16739]  ? do_syscall_64+0xb6/0x230
[  592.115130][T16739]  do_syscall_64+0xf3/0x230
[  592.119629][T16739]  ? clear_bhb_loop+0x35/0x90
[  592.124307][T16739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.130201][T16739] RIP: 0033:0x7ff99fb7cef9
[  592.134616][T16739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  592.154222][T16739] RSP: 002b:00007ff9a09e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  592.162629][T16739] RAX: ffffffffffffffda RBX: 00007ff99fd35f80 RCX: 00007ff99fb7cef9
[  592.170594][T16739] RDX: 0000000000180000 RSI: 0000000020000000 RDI: 0000000000000004
[  592.178562][T16739] RBP: 00007ff9a09e8090 R08: 0000000000000000 R09: 0000000000000000
[  592.186525][T16739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  592.194487][T16739] R13: 0000000000000000 R14: 00007ff99fd35f80 R15: 00007ffd57df86e8
[  592.202466][T16739]  </TASK>
[  592.233400][T16722] dccp_close: ABORT with 397 bytes unread
[  592.288205][T16745] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  592.330629][T16747] netlink: 72 bytes leftover after parsing attributes in process `syz.3.3601'.
[  592.508310][T16751] netlink: 'syz.3.3602': attribute type 11 has an invalid length.
[  592.598213][T16759] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  592.605545][T16759] IPv6: NLM_F_CREATE should be set when creating new route
[  592.612853][T16759] IPv6: NLM_F_CREATE should be set when creating new route
[  592.728292][ T6892] IPVS: starting estimator thread 0...
[  592.829002][T16768] IPVS: using max 22 ests per chain, 52800 per kthread
[  592.891427][T16764] syzkaller1: entered promiscuous mode
[  592.897027][T16764] syzkaller1: entered allmulticast mode
[  592.975508][T16777] netlink: 124 bytes leftover after parsing attributes in process `syz.2.3613'.
[  593.075529][T16775] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  593.098743][T16775] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  593.119029][T16775] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  593.516556][T16803] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  593.571521][T16804] FAULT_INJECTION: forcing a failure.
[  593.571521][T16804] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  593.597986][T16804] CPU: 0 UID: 0 PID: 16804 Comm: syz.4.3622 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  593.608801][T16804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  593.618888][T16804] Call Trace:
[  593.622186][T16804]  <TASK>
[  593.625122][T16804]  dump_stack_lvl+0x241/0x360
[  593.629812][T16804]  ? __pfx_dump_stack_lvl+0x10/0x10
[  593.635015][T16804]  ? __pfx__printk+0x10/0x10
[  593.639600][T16804]  ? __pfx_lock_release+0x10/0x10
[  593.644624][T16804]  should_fail_ex+0x3b0/0x4e0
[  593.649312][T16804]  _copy_from_user+0x2f/0xe0
[  593.653906][T16804]  copy_msghdr_from_user+0xae/0x680
[  593.659109][T16804]  ? __pfx___might_resched+0x10/0x10
[  593.664404][T16804]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  593.670211][T16804]  ? __might_fault+0xaa/0x120
[  593.674887][T16804]  do_recvmmsg+0x40f/0xae0
[  593.679304][T16804]  ? __pfx_lock_release+0x10/0x10
[  593.684325][T16804]  ? __pfx_do_recvmmsg+0x10/0x10
[  593.689272][T16804]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  593.695168][T16804]  ? ksys_write+0x23e/0x2c0
[  593.699668][T16804]  ? __pfx_lock_release+0x10/0x10
[  593.704711][T16804]  ? vfs_write+0x7c4/0xc90
[  593.709124][T16804]  ? __mutex_unlock_slowpath+0x21d/0x750
[  593.714758][T16804]  ? __fget_files+0x3f6/0x470
[  593.719441][T16804]  __x64_sys_recvmmsg+0x199/0x250
[  593.724466][T16804]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  593.730009][T16804]  ? do_syscall_64+0x100/0x230
[  593.734769][T16804]  ? do_syscall_64+0xb6/0x230
[  593.739443][T16804]  do_syscall_64+0xf3/0x230
[  593.743939][T16804]  ? clear_bhb_loop+0x35/0x90
[  593.748614][T16804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.754506][T16804] RIP: 0033:0x7fa34b37cef9
[  593.758916][T16804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  593.778518][T16804] RSP: 002b:00007fa34c0cc038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  593.786932][T16804] RAX: ffffffffffffffda RBX: 00007fa34b535f80 RCX: 00007fa34b37cef9
[  593.794896][T16804] RDX: 04000000000002c5 RSI: 0000000020000240 RDI: 0000000000000003
[  593.803466][T16804] RBP: 00007fa34c0cc090 R08: 0000000000000000 R09: 0000000000000000
[  593.811427][T16804] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  593.819389][T16804] R13: 0000000000000000 R14: 00007fa34b535f80 R15: 00007fff6a5e67b8
[  593.827369][T16804]  </TASK>
[  593.833444][T16772] dccp_close: ABORT with 339 bytes unread
[  593.843532][T16809] syzkaller1: entered promiscuous mode
[  593.853398][T16809] syzkaller1: entered allmulticast mode
[  594.001014][T16811] netlink: 124 bytes leftover after parsing attributes in process `syz.4.3626'.
[  594.329294][T16830] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3635'.
[  594.353920][T16832] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  594.582069][T16844] netlink: 124 bytes leftover after parsing attributes in process `syz.2.3642'.
[  594.663997][T16837] xt_HMARK: proto mask must be zero with L3 mode
[  594.744092][T16848] syzkaller1: entered promiscuous mode
[  594.758984][T16848] syzkaller1: entered allmulticast mode
[  594.776561][T16843] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  594.799014][T16843] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  594.814944][T16843] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  594.903198][T16858] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3646'.
[  595.070438][T16863] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3648'.
[  595.241017][T16867] netlink: 80 bytes leftover after parsing attributes in process `syz.0.3649'.
[  595.386405][T16841] dccp_close: ABORT with 379 bytes unread
[  595.445286][T16872] Cannot find add_set index 0 as target
[  595.464072][T16875] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  595.492531][T16880] FAULT_INJECTION: forcing a failure.
[  595.492531][T16880] name failslab, interval 1, probability 0, space 0, times 0
[  595.530111][T16880] CPU: 0 UID: 0 PID: 16880 Comm: syz.4.3653 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  595.540930][T16880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  595.551016][T16880] Call Trace:
[  595.554359][T16880]  <TASK>
[  595.557309][T16880]  dump_stack_lvl+0x241/0x360
[  595.562017][T16880]  ? __pfx_dump_stack_lvl+0x10/0x10
[  595.567246][T16880]  ? __pfx__printk+0x10/0x10
[  595.571868][T16880]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  595.577351][T16880]  ? __pfx___might_resched+0x10/0x10
[  595.582670][T16880]  should_fail_ex+0x3b0/0x4e0
[  595.587384][T16880]  should_failslab+0xac/0x100
[  595.592085][T16880]  ? rfcomm_dev_ioctl+0xc85/0x2220
[  595.597219][T16880]  __kmalloc_cache_noprof+0x6c/0x2c0
[  595.602514][T16880]  rfcomm_dev_ioctl+0xc85/0x2220
[  595.607467][T16880]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  595.612842][T16880]  ? __local_bh_enable_ip+0x168/0x200
[  595.618207][T16880]  ? lockdep_hardirqs_on+0x99/0x150
[  595.623419][T16880]  ? __local_bh_enable_ip+0x168/0x200
[  595.628790][T16880]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  595.634509][T16880]  ? do_raw_spin_unlock+0x13c/0x8b0
[  595.639715][T16880]  rfcomm_sock_ioctl+0x86/0xd0
[  595.644476][T16880]  sock_do_ioctl+0x158/0x460
[  595.649062][T16880]  ? __pfx_sock_do_ioctl+0x10/0x10
[  595.654177][T16880]  sock_ioctl+0x629/0x8e0
[  595.658507][T16880]  ? __pfx_sock_ioctl+0x10/0x10
[  595.663350][T16880]  ? __fget_files+0x29/0x470
[  595.667934][T16880]  ? __fget_files+0x3f6/0x470
[  595.672599][T16880]  ? __fget_files+0x29/0x470
[  595.677187][T16880]  ? bpf_lsm_file_ioctl+0x9/0x10
[  595.682119][T16880]  ? security_file_ioctl+0x87/0xb0
[  595.687223][T16880]  ? __pfx_sock_ioctl+0x10/0x10
[  595.692072][T16880]  __se_sys_ioctl+0xfc/0x170
[  595.696658][T16880]  do_syscall_64+0xf3/0x230
[  595.701171][T16880]  ? clear_bhb_loop+0x35/0x90
[  595.705859][T16880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.711759][T16880] RIP: 0033:0x7fa34b37cef9
[  595.716167][T16880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  595.735783][T16880] RSP: 002b:00007fa34c0cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  595.744192][T16880] RAX: ffffffffffffffda RBX: 00007fa34b535f80 RCX: 00007fa34b37cef9
[  595.752157][T16880] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 0000000000000004
[  595.760119][T16880] RBP: 00007fa34c0cc090 R08: 0000000000000000 R09: 0000000000000000
[  595.768078][T16880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  595.776037][T16880] R13: 0000000000000000 R14: 00007fa34b535f80 R15: 00007fff6a5e67b8
[  595.784011][T16880]  </TASK>
[  595.798471][T16874] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  595.823608][T16874] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  595.839268][T16874] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  595.876369][T16885] netlink: 124 bytes leftover after parsing attributes in process `syz.0.3655'.
[  596.031459][T16892] syzkaller1: entered promiscuous mode
[  596.043732][T16892] syzkaller1: entered allmulticast mode
[  596.136064][T16897] syzkaller1: entered promiscuous mode
[  596.155618][T16897] syzkaller1: entered allmulticast mode
[  596.239075][T16869] dccp_close: ABORT with 372 bytes unread
[  596.382565][T16905] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  596.396461][T16905] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  596.439974][T16905] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  596.552534][T16919] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  596.559860][T16919] IPv6: NLM_F_CREATE should be set when creating new route
[  596.567113][T16919] IPv6: NLM_F_CREATE should be set when creating new route
[  596.597726][ T5235] IPVS: starting estimator thread 0...
[  596.698912][T16921] IPVS: using max 24 ests per chain, 57600 per kthread
[  596.921829][T16929] netlink: 124 bytes leftover after parsing attributes in process `syz.3.3671'.
[  596.964343][T16920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3667'.
[  596.989170][T16920] (unnamed net_device) (uninitialized): option ad_select: invalid value (7)
[  597.042834][T16931] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3672'.
[  597.088489][T16904] dccp_close: ABORT with 379 bytes unread
[  597.295961][T16936] syzkaller1: entered promiscuous mode
[  597.319175][T16936] syzkaller1: entered allmulticast mode
[  597.624683][T16948] FAULT_INJECTION: forcing a failure.
[  597.624683][T16948] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  597.638305][T16948] CPU: 1 UID: 0 PID: 16948 Comm: syz.0.3678 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  597.649099][T16948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  597.659208][T16948] Call Trace:
[  597.662490][T16948]  <TASK>
[  597.665415][T16948]  dump_stack_lvl+0x241/0x360
[  597.670102][T16948]  ? __pfx_dump_stack_lvl+0x10/0x10
[  597.675302][T16948]  ? __pfx__printk+0x10/0x10
[  597.679896][T16948]  ? shmem_get_folio_gfp+0x19c7/0x2370
[  597.685355][T16948]  ? irqentry_exit+0x63/0x90
[  597.689939][T16948]  ? exc_page_fault+0x590/0x8c0
[  597.694784][T16948]  should_fail_ex+0x3b0/0x4e0
[  597.699468][T16948]  copy_page_from_iter_atomic+0x24f/0x1aa0
[  597.705280][T16948]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  597.710917][T16948]  ? fault_in_readable+0x1a6/0x2b0
[  597.716030][T16948]  ? __pfx_copy_page_from_iter_atomic+0x10/0x10
[  597.722265][T16948]  ? shmem_write_begin+0x23f/0x4d0
[  597.727374][T16948]  ? __pfx_shmem_write_begin+0x10/0x10
[  597.732836][T16948]  generic_perform_write+0x4a1/0x840
[  597.738125][T16948]  ? __pfx_generic_perform_write+0x10/0x10
[  597.743926][T16948]  ? mnt_put_write_access_file+0xc2/0x100
[  597.749645][T16948]  ? file_update_time+0x3b8/0x430
[  597.754675][T16948]  shmem_file_write_iter+0xfc/0x120
[  597.759876][T16948]  vfs_write+0xa72/0xc90
[  597.764117][T16948]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  597.769918][T16948]  ? __pfx_vfs_write+0x10/0x10
[  597.774693][T16948]  ksys_write+0x1a0/0x2c0
[  597.779020][T16948]  ? __pfx_ksys_write+0x10/0x10
[  597.783861][T16948]  ? do_syscall_64+0x100/0x230
[  597.788621][T16948]  ? do_syscall_64+0xb6/0x230
[  597.793381][T16948]  do_syscall_64+0xf3/0x230
[  597.797880][T16948]  ? clear_bhb_loop+0x35/0x90
[  597.802558][T16948]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  597.808447][T16948] RIP: 0033:0x7ff99fb7cef9
[  597.812853][T16948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  597.832458][T16948] RSP: 002b:00007ff9a09e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  597.840869][T16948] RAX: ffffffffffffffda RBX: 00007ff99fd35f80 RCX: 00007ff99fb7cef9
[  597.848838][T16948] RDX: 0000000000180000 RSI: 0000000020000000 RDI: 0000000000000004
[  597.856817][T16948] RBP: 00007ff9a09e8090 R08: 0000000000000000 R09: 0000000000000000
[  597.864798][T16948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  597.872768][T16948] R13: 0000000000000000 R14: 00007ff99fd35f80 R15: 00007ffd57df86e8
[  597.880749][T16948]  </TASK>
[  597.925937][T16950] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  597.933319][T16950] IPv6: NLM_F_CREATE should be set when creating new route
[  597.940702][T16950] IPv6: NLM_F_CREATE should be set when creating new route
[  597.977945][  T941] IPVS: starting estimator thread 0...
[  598.128939][T16955] IPVS: using max 25 ests per chain, 60000 per kthread
[  598.528395][T16967] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  598.574859][T16967] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  598.597781][T16967] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  598.616503][T16980] syzkaller1: entered promiscuous mode
[  598.624959][T16980] syzkaller1: entered allmulticast mode
[  598.844069][T16991] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  599.064802][T16964] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  599.142563][T16962] dccp_close: ABORT with 379 bytes unread
[  599.190823][T17002] __nla_validate_parse: 3 callbacks suppressed
[  599.190842][T17002] netlink: 124 bytes leftover after parsing attributes in process `syz.2.3700'.
[  599.462448][T17014] syzkaller1: entered promiscuous mode
[  599.475949][T17014] syzkaller1: entered allmulticast mode
[  599.492262][T17018] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  599.555867][T17021] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3709'.
[  599.695665][T17026] FAULT_INJECTION: forcing a failure.
[  599.695665][T17026] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  599.742789][T17026] CPU: 0 UID: 0 PID: 17026 Comm: syz.1.3710 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  599.753611][T17026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  599.763689][T17026] Call Trace:
[  599.766988][T17026]  <TASK>
[  599.769940][T17026]  dump_stack_lvl+0x241/0x360
[  599.774647][T17026]  ? __pfx_dump_stack_lvl+0x10/0x10
[  599.779872][T17026]  ? __pfx__printk+0x10/0x10
[  599.784489][T17026]  ? __pfx_lock_release+0x10/0x10
[  599.789554][T17026]  should_fail_ex+0x3b0/0x4e0
[  599.794265][T17026]  _copy_from_user+0x2f/0xe0
[  599.798879][T17026]  copy_msghdr_from_user+0xae/0x680
[  599.804096][T17026]  ? __pfx___might_resched+0x10/0x10
[  599.809414][T17026]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  599.815347][T17026]  ? __might_fault+0xaa/0x120
[  599.820055][T17026]  do_recvmmsg+0x40f/0xae0
[  599.824505][T17026]  ? __pfx_lock_release+0x10/0x10
[  599.829556][T17026]  ? __pfx_do_recvmmsg+0x10/0x10
[  599.834537][T17026]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  599.840454][T17026]  ? ksys_write+0x23e/0x2c0
[  599.844976][T17026]  ? __pfx_lock_release+0x10/0x10
[  599.850039][T17026]  ? vfs_write+0x7c4/0xc90
[  599.854490][T17026]  ? __mutex_unlock_slowpath+0x21d/0x750
[  599.860157][T17026]  ? __fget_files+0x3f6/0x470
[  599.864871][T17026]  __x64_sys_recvmmsg+0x199/0x250
[  599.869928][T17026]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  599.875498][T17026]  ? do_syscall_64+0x100/0x230
[  599.880280][T17026]  ? do_syscall_64+0xb6/0x230
[  599.884977][T17026]  do_syscall_64+0xf3/0x230
[  599.889504][T17026]  ? clear_bhb_loop+0x35/0x90
[  599.894207][T17026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  599.900124][T17026] RIP: 0033:0x7f595f97cef9
[  599.904553][T17026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  599.924177][T17026] RSP: 002b:00007f596080f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  599.932622][T17026] RAX: ffffffffffffffda RBX: 00007f595fb35f80 RCX: 00007f595f97cef9
[  599.940684][T17026] RDX: 04000000000002c5 RSI: 0000000020000240 RDI: 0000000000000003
[  599.948677][T17026] RBP: 00007f596080f090 R08: 0000000000000000 R09: 0000000000000000
[  599.956683][T17026] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  599.964848][T17026] R13: 0000000000000000 R14: 00007f595fb35f80 R15: 00007ffdebb7e158
[  599.972853][T17026]  </TASK>
[  600.058747][T17031] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  600.097385][T17031] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  600.125251][T17031] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  600.144980][T17051] netlink: 124 bytes leftover after parsing attributes in process `syz.2.3718'.
[  600.375931][T17060] syzkaller1: entered promiscuous mode
[  600.395579][T17060] syzkaller1: entered allmulticast mode
[  600.415061][T17062] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3723'.
[  600.447517][T17065] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  600.557594][T17030] dccp_close: ABORT with 399 bytes unread
[  600.881317][T17082] netlink: 124 bytes leftover after parsing attributes in process `syz.3.3732'.
[  600.976760][T17078] veth0_vlan: left promiscuous mode
[  601.005562][T17078] veth0_vlan: entered promiscuous mode
[  601.096965][T17094] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  601.121288][T17095] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  601.122023][T17096] IPVS: sync thread started: state = MASTER, mcast_ifn = vlan0, syncid = 0, id = 0
[  601.330004][T17099] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3734'.
[  601.392998][T17099] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3734'.
[  601.447568][T17099] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3734'.
[  601.475442][T17099] vlan0: entered allmulticast mode
[  601.533827][T17099] veth0_vlan: entered allmulticast mode
[  602.075708][T17120] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  602.126126][T17120] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  602.171151][T17120] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  602.498563][T17139] netlink: 124 bytes leftover after parsing attributes in process `syz.3.3751'.
[  602.595101][T17143] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  602.696767][T17117] dccp_close: ABORT with 399 bytes unread
[  602.720205][T17131] dccp_close: ABORT with 396 bytes unread
[  602.931706][T17152] syzkaller1: entered promiscuous mode
[  602.948494][T17157] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3759'.
[  602.969938][T17152] syzkaller1: entered allmulticast mode
[  603.126086][T17164] FAULT_INJECTION: forcing a failure.
[  603.126086][T17164] name failslab, interval 1, probability 0, space 0, times 0
[  603.147281][T17164] CPU: 0 UID: 0 PID: 17164 Comm: syz.2.3763 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  603.155109][T17162] netlink: 'syz.3.3762': attribute type 4 has an invalid length.
[  603.158079][T17164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  603.158139][T17164] Call Trace:
[  603.179204][T17164]  <TASK>
[  603.182158][T17164]  dump_stack_lvl+0x241/0x360
[  603.186875][T17164]  ? __pfx_dump_stack_lvl+0x10/0x10
[  603.192110][T17164]  ? __pfx__printk+0x10/0x10
[  603.196723][T17164]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  603.202201][T17164]  ? __pfx___might_resched+0x10/0x10
[  603.207516][T17164]  should_fail_ex+0x3b0/0x4e0
[  603.212221][T17164]  should_failslab+0xac/0x100
[  603.216911][T17164]  ? rfcomm_dev_ioctl+0xc85/0x2220
[  603.222015][T17164]  __kmalloc_cache_noprof+0x6c/0x2c0
[  603.227321][T17164]  rfcomm_dev_ioctl+0xc85/0x2220
[  603.232274][T17164]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  603.237652][T17164]  ? __local_bh_enable_ip+0x168/0x200
[  603.243029][T17164]  ? lockdep_hardirqs_on+0x99/0x150
[  603.248243][T17164]  ? __local_bh_enable_ip+0x168/0x200
[  603.253653][T17164]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  603.259386][T17164]  ? do_raw_spin_unlock+0x13c/0x8b0
[  603.264599][T17164]  rfcomm_sock_ioctl+0x86/0xd0
[  603.269395][T17164]  sock_do_ioctl+0x158/0x460
[  603.273998][T17164]  ? __pfx_sock_do_ioctl+0x10/0x10
[  603.279112][T17164]  sock_ioctl+0x629/0x8e0
[  603.283452][T17164]  ? __pfx_sock_ioctl+0x10/0x10
[  603.288322][T17164]  ? __fget_files+0x29/0x470
[  603.292915][T17164]  ? __fget_files+0x3f6/0x470
[  603.297601][T17164]  ? __fget_files+0x29/0x470
[  603.302220][T17164]  ? bpf_lsm_file_ioctl+0x9/0x10
[  603.307187][T17164]  ? security_file_ioctl+0x87/0xb0
[  603.312322][T17164]  ? __pfx_sock_ioctl+0x10/0x10
[  603.317191][T17164]  __se_sys_ioctl+0xfc/0x170
[  603.321780][T17164]  do_syscall_64+0xf3/0x230
[  603.326278][T17164]  ? clear_bhb_loop+0x35/0x90
[  603.330952][T17164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  603.336842][T17164] RIP: 0033:0x7f963cf7cef9
[  603.341250][T17164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  603.360869][T17164] RSP: 002b:00007f963de27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  603.369311][T17164] RAX: ffffffffffffffda RBX: 00007f963d135f80 RCX: 00007f963cf7cef9
[  603.377288][T17164] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 0000000000000004
[  603.385343][T17164] RBP: 00007f963de27090 R08: 0000000000000000 R09: 0000000000000000
[  603.393314][T17164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  603.401296][T17164] R13: 0000000000000000 R14: 00007f963d135f80 R15: 00007ffe4790de98
[  603.409288][T17164]  </TASK>
[  603.572288][T17173] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  603.769990][T17170] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  603.790155][T17170] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  603.808097][T17170] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  603.923215][T17191] syzkaller1: entered promiscuous mode
[  603.939024][T17191] syzkaller1: entered allmulticast mode
[  604.086705][T17198] netlink: 'syz.4.3779': attribute type 8 has an invalid length.
[  604.191132][T17202] syzkaller1: entered promiscuous mode
[  604.196894][T17202] syzkaller1: entered allmulticast mode
[  604.238074][T17203] nbd: must specify at least one socket
[  604.246884][T17205] __nla_validate_parse: 3 callbacks suppressed
[  604.246903][T17205] netlink: 72 bytes leftover after parsing attributes in process `syz.3.3782'.
[  604.383164][T17169] dccp_close: ABORT with 399 bytes unread
[  604.407610][T17211] FAULT_INJECTION: forcing a failure.
[  604.407610][T17211] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  604.421914][T17211] CPU: 0 UID: 0 PID: 17211 Comm: syz.3.3786 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  604.432718][T17211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  604.442800][T17211] Call Trace:
[  604.446101][T17211]  <TASK>
[  604.449065][T17211]  dump_stack_lvl+0x241/0x360
[  604.453783][T17211]  ? __pfx_dump_stack_lvl+0x10/0x10
[  604.459109][T17211]  ? __pfx__printk+0x10/0x10
[  604.463736][T17211]  ? shmem_get_folio_gfp+0x19c7/0x2370
[  604.469249][T17211]  ? irqentry_exit+0x63/0x90
[  604.473859][T17211]  ? exc_page_fault+0x590/0x8c0
[  604.478723][T17211]  should_fail_ex+0x3b0/0x4e0
[  604.483420][T17211]  copy_page_from_iter_atomic+0x24f/0x1aa0
[  604.489258][T17211]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  604.494907][T17211]  ? fault_in_readable+0x1a6/0x2b0
[  604.500015][T17211]  ? __pfx_copy_page_from_iter_atomic+0x10/0x10
[  604.506248][T17211]  ? shmem_write_begin+0x23f/0x4d0
[  604.511355][T17211]  ? __pfx_shmem_write_begin+0x10/0x10
[  604.516838][T17211]  generic_perform_write+0x4a1/0x840
[  604.522130][T17211]  ? __pfx_generic_perform_write+0x10/0x10
[  604.527941][T17211]  ? __pfx_generic_write_checks+0x10/0x10
[  604.533684][T17211]  ? rcu_read_lock_any_held+0xb7/0x160
[  604.539171][T17211]  ? file_update_time+0x2a6/0x430
[  604.544230][T17211]  shmem_file_write_iter+0xfc/0x120
[  604.549436][T17211]  vfs_write+0xa72/0xc90
[  604.553673][T17211]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  604.559472][T17211]  ? __pfx_vfs_write+0x10/0x10
[  604.564238][T17211]  ksys_write+0x1a0/0x2c0
[  604.568561][T17211]  ? __pfx_ksys_write+0x10/0x10
[  604.573399][T17211]  ? do_syscall_64+0x100/0x230
[  604.578153][T17211]  ? do_syscall_64+0xb6/0x230
[  604.582834][T17211]  do_syscall_64+0xf3/0x230
[  604.587359][T17211]  ? clear_bhb_loop+0x35/0x90
[  604.592063][T17211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  604.597975][T17211] RIP: 0033:0x7f813fd7cef9
[  604.602383][T17211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  604.621982][T17211] RSP: 002b:00007f8140b22038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  604.630402][T17211] RAX: ffffffffffffffda RBX: 00007f813ff35f80 RCX: 00007f813fd7cef9
[  604.638391][T17211] RDX: 0000000000180000 RSI: 0000000020000000 RDI: 0000000000000004
[  604.646368][T17211] RBP: 00007f8140b22090 R08: 0000000000000000 R09: 0000000000000000
[  604.654328][T17211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  604.662291][T17211] R13: 0000000000000000 R14: 00007f813ff35f80 R15: 00007fff96d27988
[  604.670263][T17211]  </TASK>
[  604.771683][T17224] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3788'.
[  605.001434][T17234] x_tables: duplicate underflow at hook 1
[  605.049043][T17238] nbd: must specify at least one socket
[  605.119508][T17241] syzkaller1: entered promiscuous mode
[  605.136099][T17241] syzkaller1: entered allmulticast mode
[  605.264534][T17247] netlink: 'syz.3.3797': attribute type 3 has an invalid length.
[  605.284107][T17247] netlink: 'syz.3.3797': attribute type 3 has an invalid length.
[  605.299650][T17247] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3797'.
[  605.517621][T17258] FAULT_INJECTION: forcing a failure.
[  605.517621][T17258] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  605.564251][T17258] CPU: 0 UID: 0 PID: 17258 Comm: syz.1.3801 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  605.575065][T17258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  605.585117][T17258] Call Trace:
[  605.588387][T17258]  <TASK>
[  605.591309][T17258]  dump_stack_lvl+0x241/0x360
[  605.595986][T17258]  ? __pfx_dump_stack_lvl+0x10/0x10
[  605.601179][T17258]  ? __pfx__printk+0x10/0x10
[  605.605762][T17258]  ? __pfx_lock_release+0x10/0x10
[  605.610787][T17258]  should_fail_ex+0x3b0/0x4e0
[  605.615462][T17258]  _copy_from_user+0x2f/0xe0
[  605.620054][T17258]  copy_msghdr_from_user+0xae/0x680
[  605.625333][T17258]  ? __pfx___might_resched+0x10/0x10
[  605.630614][T17258]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  605.636504][T17258]  ? __might_fault+0xaa/0x120
[  605.641183][T17258]  do_recvmmsg+0x40f/0xae0
[  605.645599][T17258]  ? __pfx_lock_release+0x10/0x10
[  605.650623][T17258]  ? __pfx_do_recvmmsg+0x10/0x10
[  605.655569][T17258]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  605.661460][T17258]  ? ksys_write+0x23e/0x2c0
[  605.665955][T17258]  ? __pfx_lock_release+0x10/0x10
[  605.670982][T17258]  ? vfs_write+0x7c4/0xc90
[  605.675398][T17258]  ? __mutex_unlock_slowpath+0x21d/0x750
[  605.681029][T17258]  ? __fget_files+0x3f6/0x470
[  605.685709][T17258]  __x64_sys_recvmmsg+0x199/0x250
[  605.690732][T17258]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  605.696273][T17258]  ? do_syscall_64+0x100/0x230
[  605.701030][T17258]  ? do_syscall_64+0xb6/0x230
[  605.705702][T17258]  do_syscall_64+0xf3/0x230
[  605.710196][T17258]  ? clear_bhb_loop+0x35/0x90
[  605.714870][T17258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  605.720774][T17258] RIP: 0033:0x7f595f97cef9
[  605.725189][T17258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  605.744795][T17258] RSP: 002b:00007f596080f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  605.753210][T17258] RAX: ffffffffffffffda RBX: 00007f595fb35f80 RCX: 00007f595f97cef9
[  605.761176][T17258] RDX: 04000000000002c5 RSI: 0000000020000240 RDI: 0000000000000003
[  605.769136][T17258] RBP: 00007f596080f090 R08: 0000000000000000 R09: 0000000000000000
[  605.777099][T17258] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  605.785059][T17258] R13: 0000000000000000 R14: 00007f595fb35f80 R15: 00007ffdebb7e158
[  605.793035][T17258]  </TASK>
[  605.881041][T17269] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3803'.
[  606.000149][T17277] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3803'.
[  606.089720][T17279] nbd: must specify at least one socket
[  606.231025][T17287] netlink: 124 bytes leftover after parsing attributes in process `syz.2.3812'.
[  606.250647][T17288] syzkaller1: entered promiscuous mode
[  606.259839][T17288] syzkaller1: entered allmulticast mode
[  606.406544][T17296] FAULT_INJECTION: forcing a failure.
[  606.406544][T17296] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  606.434508][T17296] CPU: 1 UID: 0 PID: 17296 Comm: syz.1.3814 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  606.445336][T17296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  606.455419][T17296] Call Trace:
[  606.458723][T17296]  <TASK>
[  606.461678][T17296]  dump_stack_lvl+0x241/0x360
[  606.466383][T17296]  ? __pfx_dump_stack_lvl+0x10/0x10
[  606.471608][T17296]  ? __pfx__printk+0x10/0x10
[  606.476229][T17296]  ? __pfx_lock_release+0x10/0x10
[  606.481279][T17296]  ? __lock_acquire+0x137a/0x2040
[  606.486337][T17296]  should_fail_ex+0x3b0/0x4e0
[  606.491038][T17296]  _copy_from_user+0x2f/0xe0
[  606.495636][T17296]  kstrtouint_from_user+0xc6/0x190
[  606.500748][T17296]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  606.506564][T17296]  ? __pfx_lock_acquire+0x10/0x10
[  606.511592][T17296]  proc_fail_nth_write+0xaa/0x2d0
[  606.516608][T17296]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  606.522502][T17296]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  606.528132][T17296]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  606.533758][T17296]  vfs_write+0x2a2/0xc90
[  606.538000][T17296]  ? __pfx_vfs_write+0x10/0x10
[  606.542764][T17296]  ? __fget_files+0x29/0x470
[  606.547350][T17296]  ? __fget_files+0x3f6/0x470
[  606.552029][T17296]  ksys_write+0x1a0/0x2c0
[  606.556356][T17296]  ? __pfx_ksys_write+0x10/0x10
[  606.561203][T17296]  ? do_syscall_64+0x100/0x230
[  606.566054][T17296]  ? do_syscall_64+0xb6/0x230
[  606.570729][T17296]  do_syscall_64+0xf3/0x230
[  606.575232][T17296]  ? clear_bhb_loop+0x35/0x90
[  606.579907][T17296]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  606.585792][T17296] RIP: 0033:0x7f595f97b9df
[  606.590200][T17296] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  606.609812][T17296] RSP: 002b:00007f596080f030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  606.618225][T17296] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f595f97b9df
[  606.626192][T17296] RDX: 0000000000000001 RSI: 00007f596080f0a0 RDI: 0000000000000003
[  606.634155][T17296] RBP: 00007f596080f090 R08: 0000000000000000 R09: 0000000000000000
[  606.642119][T17296] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  606.650165][T17296] R13: 0000000000000000 R14: 00007f595fb35f80 R15: 00007ffdebb7e158
[  606.658143][T17296]  </TASK>
[  606.757038][T17301] syzkaller1: entered promiscuous mode
[  606.767957][T17301] syzkaller1: entered allmulticast mode
[  607.084338][T17311] FAULT_INJECTION: forcing a failure.
[  607.084338][T17311] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  607.138956][T17311] CPU: 0 UID: 0 PID: 17311 Comm: syz.2.3821 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  607.149773][T17311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  607.159837][T17311] Call Trace:
[  607.163117][T17311]  <TASK>
[  607.166038][T17311]  dump_stack_lvl+0x241/0x360
[  607.170718][T17311]  ? __pfx_dump_stack_lvl+0x10/0x10
[  607.175912][T17311]  ? __pfx__printk+0x10/0x10
[  607.180514][T17311]  should_fail_ex+0x3b0/0x4e0
[  607.185195][T17311]  prepare_alloc_pages+0x1da/0x5d0
[  607.190311][T17311]  __alloc_pages_noprof+0x166/0x6c0
[  607.195511][T17311]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  607.201230][T17311]  ? __lock_acquire+0x137a/0x2040
[  607.206264][T17311]  alloc_pages_mpol_noprof+0x3e8/0x680
[  607.211730][T17311]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  607.217711][T17311]  ? filemap_get_entry+0x123/0x3b0
[  607.222819][T17311]  ? __pfx_lock_release+0x10/0x10
[  607.227841][T17311]  folio_alloc_mpol_noprof+0x36/0x50
[  607.233124][T17311]  shmem_alloc_and_add_folio+0x2cf/0x14f0
[  607.238842][T17311]  ? filemap_get_entry+0x328/0x3b0
[  607.243953][T17311]  ? __pfx_filemap_get_entry+0x10/0x10
[  607.249406][T17311]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  607.255379][T17311]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  607.261529][T17311]  ? __pfx___up_read+0x10/0x10
[  607.266289][T17311]  shmem_get_folio_gfp+0x8dc/0x2370
[  607.271492][T17311]  ? irqentry_exit+0x63/0x90
[  607.276094][T17311]  ? exc_page_fault+0x590/0x8c0
[  607.280972][T17311]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  607.286620][T17311]  ? fault_in_readable+0x1a6/0x2b0
[  607.291740][T17311]  shmem_write_begin+0x170/0x4d0
[  607.296685][T17311]  ? __pfx_shmem_write_begin+0x10/0x10
[  607.302148][T17311]  ? fault_in_iov_iter_readable+0x229/0x280
[  607.308038][T17311]  generic_perform_write+0x399/0x840
[  607.313326][T17311]  ? __pfx_generic_perform_write+0x10/0x10
[  607.319141][T17311]  ? __pfx_generic_write_checks+0x10/0x10
[  607.324878][T17311]  ? rcu_read_lock_any_held+0xb7/0x160
[  607.330348][T17311]  ? file_update_time+0x2a6/0x430
[  607.335381][T17311]  shmem_file_write_iter+0xfc/0x120
[  607.340579][T17311]  vfs_write+0xa72/0xc90
[  607.344816][T17311]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  607.350616][T17311]  ? __pfx_vfs_write+0x10/0x10
[  607.355393][T17311]  ksys_write+0x1a0/0x2c0
[  607.359724][T17311]  ? __pfx_ksys_write+0x10/0x10
[  607.364567][T17311]  ? do_syscall_64+0x100/0x230
[  607.369326][T17311]  ? do_syscall_64+0xb6/0x230
[  607.373995][T17311]  do_syscall_64+0xf3/0x230
[  607.378495][T17311]  ? clear_bhb_loop+0x35/0x90
[  607.383177][T17311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.389075][T17311] RIP: 0033:0x7f963cf7cef9
[  607.393493][T17311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  607.413092][T17311] RSP: 002b:00007f963de27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  607.421499][T17311] RAX: ffffffffffffffda RBX: 00007f963d135f80 RCX: 00007f963cf7cef9
[  607.429462][T17311] RDX: 0000000000180000 RSI: 0000000020000000 RDI: 0000000000000004
[  607.437423][T17311] RBP: 00007f963de27090 R08: 0000000000000000 R09: 0000000000000000
[  607.445385][T17311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  607.453355][T17311] R13: 0000000000000000 R14: 00007f963d135f80 R15: 00007ffe4790de98
[  607.461337][T17311]  </TASK>
[  607.520169][T17314] nbd: must specify a size in bytes for the device
[  607.667748][T17322] netlink: 124 bytes leftover after parsing attributes in process `syz.4.3825'.
[  607.877297][T17329] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  607.903146][T17331] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  608.309508][T17349] netlink: 124 bytes leftover after parsing attributes in process `syz.2.3840'.
[  608.353708][T17350] nbd: must specify a size in bytes for the device
[  608.466326][T17354] netlink: 'syz.1.3842': attribute type 2 has an invalid length.
[  608.484649][T17354] netlink: 'syz.1.3842': attribute type 8 has an invalid length.
[  608.505266][T17354] netlink: 104 bytes leftover after parsing attributes in process `syz.1.3842'.
[  608.536921][T17357] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  608.596436][T17362] netlink: 72 bytes leftover after parsing attributes in process `syz.4.3845'.
[  608.610285][   T11] tipc: Subscription rejected, illegal request
[  608.930455][T17375] syzkaller1: entered promiscuous mode
[  608.946296][T17375] syzkaller1: entered allmulticast mode
[  609.179207][T17384] nbd: must specify a size in bytes for the device
[  609.432487][T17396] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  609.511974][T17394] dccp_close: ABORT with 80 bytes unread
[  609.896482][T17412] __nla_validate_parse: 6 callbacks suppressed
[  609.896501][T17412] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3865'.
[  609.898629][T17414] netlink: 124 bytes leftover after parsing attributes in process `syz.3.3867'.
[  610.071524][T17417] FAULT_INJECTION: forcing a failure.
[  610.071524][T17417] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  610.089197][T17417] CPU: 1 UID: 0 PID: 17417 Comm: syz.2.3868 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  610.100006][T17417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  610.110076][T17417] Call Trace:
[  610.113367][T17417]  <TASK>
[  610.116309][T17417]  dump_stack_lvl+0x241/0x360
[  610.121009][T17417]  ? __pfx_dump_stack_lvl+0x10/0x10
[  610.126226][T17417]  ? __pfx__printk+0x10/0x10
[  610.130835][T17417]  ? __pfx_lock_release+0x10/0x10
[  610.135887][T17417]  should_fail_ex+0x3b0/0x4e0
[  610.140594][T17417]  _copy_from_user+0x2f/0xe0
[  610.145204][T17417]  copy_msghdr_from_user+0xae/0x680
[  610.150420][T17417]  ? __pfx___might_resched+0x10/0x10
[  610.155748][T17417]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  610.161580][T17417]  ? __might_fault+0xaa/0x120
[  610.166279][T17417]  do_recvmmsg+0x40f/0xae0
[  610.170714][T17417]  ? __pfx_lock_release+0x10/0x10
[  610.175741][T17417]  ? __pfx_do_recvmmsg+0x10/0x10
[  610.180701][T17417]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  610.186620][T17417]  ? ksys_write+0x23e/0x2c0
[  610.191115][T17417]  ? __pfx_lock_release+0x10/0x10
[  610.196138][T17417]  ? vfs_write+0x7c4/0xc90
[  610.200551][T17417]  ? __mutex_unlock_slowpath+0x21d/0x750
[  610.206185][T17417]  ? __fget_files+0x3f6/0x470
[  610.210869][T17417]  __x64_sys_recvmmsg+0x199/0x250
[  610.215895][T17417]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  610.221436][T17417]  ? do_syscall_64+0x100/0x230
[  610.226202][T17417]  ? do_syscall_64+0xb6/0x230
[  610.230874][T17417]  do_syscall_64+0xf3/0x230
[  610.235371][T17417]  ? clear_bhb_loop+0x35/0x90
[  610.240044][T17417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  610.245929][T17417] RIP: 0033:0x7f963cf7cef9
[  610.250337][T17417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  610.269936][T17417] RSP: 002b:00007f963de27038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  610.278344][T17417] RAX: ffffffffffffffda RBX: 00007f963d135f80 RCX: 00007f963cf7cef9
[  610.286319][T17417] RDX: 04000000000002c5 RSI: 0000000020000240 RDI: 0000000000000003
[  610.294298][T17417] RBP: 00007f963de27090 R08: 0000000000000000 R09: 0000000000000000
[  610.302283][T17417] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  610.310260][T17417] R13: 0000000000000000 R14: 00007f963d135f80 R15: 00007ffe4790de98
[  610.318247][T17417]  </TASK>
[  610.371885][T17421] batadv_slave_1: entered promiscuous mode
[  610.382898][T17423] syzkaller1: entered promiscuous mode
[  610.398846][T17423] syzkaller1: entered allmulticast mode
[  610.496928][T17427] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  610.508280][T17419] batadv_slave_1: left promiscuous mode
[  610.730700][T17438] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3879'.
[  610.793227][T17433] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  610.839665][T17433] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  610.869125][T17433] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  611.003759][T17449] netlink: 124 bytes leftover after parsing attributes in process `syz.4.3882'.
[  611.417328][T17459] FAULT_INJECTION: forcing a failure.
[  611.417328][T17459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  611.447616][T17459] CPU: 1 UID: 0 PID: 17459 Comm: syz.4.3885 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  611.458442][T17459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  611.468519][T17459] Call Trace:
[  611.471818][T17459]  <TASK>
[  611.474764][T17459]  dump_stack_lvl+0x241/0x360
[  611.479469][T17459]  ? __pfx_dump_stack_lvl+0x10/0x10
[  611.484671][T17459]  ? __pfx__printk+0x10/0x10
[  611.489260][T17459]  ? __pfx_lock_release+0x10/0x10
[  611.494284][T17459]  should_fail_ex+0x3b0/0x4e0
[  611.498968][T17459]  _copy_from_user+0x2f/0xe0
[  611.503555][T17459]  copy_msghdr_from_user+0xae/0x680
[  611.508755][T17459]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  611.514575][T17459]  __sys_sendmsg+0x23d/0x3a0
[  611.519164][T17459]  ? __pfx___sys_sendmsg+0x10/0x10
[  611.524268][T17459]  ? vfs_write+0x7c4/0xc90
[  611.528705][T17459]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  611.535030][T17459]  ? do_syscall_64+0x100/0x230
[  611.539789][T17459]  ? do_syscall_64+0xb6/0x230
[  611.544459][T17459]  do_syscall_64+0xf3/0x230
[  611.548956][T17459]  ? clear_bhb_loop+0x35/0x90
[  611.553630][T17459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.559517][T17459] RIP: 0033:0x7fa34b37cef9
[  611.563926][T17459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  611.583531][T17459] RSP: 002b:00007fa34c0cc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  611.591965][T17459] RAX: ffffffffffffffda RBX: 00007fa34b535f80 RCX: 00007fa34b37cef9
[  611.600111][T17459] RDX: 0000000000000050 RSI: 00000000200001c0 RDI: 0000000000000009
[  611.608074][T17459] RBP: 00007fa34c0cc090 R08: 0000000000000000 R09: 0000000000000000
[  611.616129][T17459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  611.624110][T17459] R13: 0000000000000000 R14: 00007fa34b535f80 R15: 00007fff6a5e67b8
[  611.632108][T17459]  </TASK>
[  611.641198][T17432] dccp_close: ABORT with 414 bytes unread
[  611.869447][T17464] syzkaller1: entered promiscuous mode
[  611.874959][T17464] syzkaller1: entered allmulticast mode
[  611.910598][T17469] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  612.239362][T17477] netlink: 124 bytes leftover after parsing attributes in process `syz.2.3893'.
[  612.269866][T17478] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3894'.
[  612.359870][T17480] FAULT_INJECTION: forcing a failure.
[  612.359870][T17480] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  612.382642][T17480] CPU: 1 UID: 0 PID: 17480 Comm: syz.3.3895 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  612.393454][T17480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  612.403513][T17480] Call Trace:
[  612.406786][T17480]  <TASK>
[  612.409710][T17480]  dump_stack_lvl+0x241/0x360
[  612.414390][T17480]  ? __pfx_dump_stack_lvl+0x10/0x10
[  612.419583][T17480]  ? __pfx__printk+0x10/0x10
[  612.424173][T17480]  should_fail_ex+0x3b0/0x4e0
[  612.428850][T17480]  prepare_alloc_pages+0x1da/0x5d0
[  612.433967][T17480]  __alloc_pages_noprof+0x166/0x6c0
[  612.439170][T17480]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  612.444886][T17480]  ? __lock_acquire+0x137a/0x2040
[  612.449920][T17480]  alloc_pages_mpol_noprof+0x3e8/0x680
[  612.455382][T17480]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  612.461380][T17480]  ? filemap_get_entry+0x123/0x3b0
[  612.466516][T17480]  ? __pfx_lock_release+0x10/0x10
[  612.471551][T17480]  folio_alloc_mpol_noprof+0x36/0x50
[  612.476838][T17480]  shmem_alloc_and_add_folio+0x2cf/0x14f0
[  612.482554][T17480]  ? filemap_get_entry+0x328/0x3b0
[  612.487662][T17480]  ? __pfx_filemap_get_entry+0x10/0x10
[  612.493115][T17480]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  612.499097][T17480]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  612.505258][T17480]  ? __pfx___up_read+0x10/0x10
[  612.510024][T17480]  shmem_get_folio_gfp+0x8dc/0x2370
[  612.515224][T17480]  ? irqentry_exit+0x63/0x90
[  612.519813][T17480]  ? exc_page_fault+0x590/0x8c0
[  612.524667][T17480]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  612.530300][T17480]  ? fault_in_readable+0x1a6/0x2b0
[  612.535408][T17480]  shmem_write_begin+0x170/0x4d0
[  612.540344][T17480]  ? __pfx_shmem_write_begin+0x10/0x10
[  612.545800][T17480]  ? fault_in_iov_iter_readable+0x229/0x280
[  612.551689][T17480]  generic_perform_write+0x399/0x840
[  612.556979][T17480]  ? __pfx_generic_perform_write+0x10/0x10
[  612.562779][T17480]  ? __pfx_generic_write_checks+0x10/0x10
[  612.568494][T17480]  ? rcu_read_lock_any_held+0xb7/0x160
[  612.573960][T17480]  ? file_update_time+0x2a6/0x430
[  612.578991][T17480]  shmem_file_write_iter+0xfc/0x120
[  612.584185][T17480]  vfs_write+0xa72/0xc90
[  612.588450][T17480]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  612.594276][T17480]  ? __pfx_vfs_write+0x10/0x10
[  612.599062][T17480]  ksys_write+0x1a0/0x2c0
[  612.603397][T17480]  ? __pfx_ksys_write+0x10/0x10
[  612.608247][T17480]  ? do_syscall_64+0x100/0x230
[  612.613019][T17480]  ? do_syscall_64+0xb6/0x230
[  612.617701][T17480]  do_syscall_64+0xf3/0x230
[  612.622199][T17480]  ? clear_bhb_loop+0x35/0x90
[  612.626880][T17480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  612.632767][T17480] RIP: 0033:0x7f813fd7cef9
[  612.637174][T17480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  612.656777][T17480] RSP: 002b:00007f8140b22038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  612.665188][T17480] RAX: ffffffffffffffda RBX: 00007f813ff35f80 RCX: 00007f813fd7cef9
[  612.673157][T17480] RDX: 0000000000180000 RSI: 0000000020000000 RDI: 0000000000000004
[  612.681124][T17480] RBP: 00007f8140b22090 R08: 0000000000000000 R09: 0000000000000000
[  612.689086][T17480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  612.697046][T17480] R13: 0000000000000000 R14: 00007f813ff35f80 R15: 00007fff96d27988
[  612.705026][T17480]  </TASK>
[  612.812013][T17486] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3898'.
[  613.036005][T17503] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  613.247383][T17512] netlink: 124 bytes leftover after parsing attributes in process `syz.0.3908'.
[  613.283209][T17509] netlink: 'syz.2.3907': attribute type 7 has an invalid length.
[  613.322402][T17509] netlink: 'syz.2.3907': attribute type 39 has an invalid length.
[  613.405315][T17514] netlink: 'syz.2.3907': attribute type 7 has an invalid length.
[  613.429263][T17514] netlink: 'syz.2.3907': attribute type 39 has an invalid length.
[  613.910255][T17547] syzkaller1: entered promiscuous mode
[  613.929936][T17547] syzkaller1: entered allmulticast mode
[  614.039685][T17551] netlink: 312 bytes leftover after parsing attributes in process `syz.3.3924'.
[  614.296993][T17557] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3925'.
[  614.649233][T17570] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  615.222237][T17595] FAULT_INJECTION: forcing a failure.
[  615.222237][T17595] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  615.235645][T17595] CPU: 1 UID: 0 PID: 17595 Comm: syz.1.3937 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  615.246437][T17595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  615.256522][T17595] Call Trace:
[  615.259822][T17595]  <TASK>
[  615.262767][T17595]  dump_stack_lvl+0x241/0x360
[  615.267479][T17595]  ? __pfx_dump_stack_lvl+0x10/0x10
[  615.272713][T17595]  ? __pfx__printk+0x10/0x10
[  615.277346][T17595]  ? shmem_get_folio_gfp+0x19c7/0x2370
[  615.282839][T17595]  ? irqentry_exit+0x63/0x90
[  615.287454][T17595]  ? exc_page_fault+0x590/0x8c0
[  615.292336][T17595]  should_fail_ex+0x3b0/0x4e0
[  615.297049][T17595]  copy_page_from_iter_atomic+0x24f/0x1aa0
[  615.302891][T17595]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  615.308561][T17595]  ? fault_in_readable+0x1a6/0x2b0
[  615.313714][T17595]  ? __pfx_copy_page_from_iter_atomic+0x10/0x10
[  615.319975][T17595]  ? shmem_write_begin+0x23f/0x4d0
[  615.325090][T17595]  ? __pfx_shmem_write_begin+0x10/0x10
[  615.330555][T17595]  generic_perform_write+0x4a1/0x840
[  615.335846][T17595]  ? __pfx_generic_perform_write+0x10/0x10
[  615.341647][T17595]  ? __pfx_generic_write_checks+0x10/0x10
[  615.347460][T17595]  ? rcu_read_lock_any_held+0xb7/0x160
[  615.352918][T17595]  ? file_update_time+0x2a6/0x430
[  615.357947][T17595]  shmem_file_write_iter+0xfc/0x120
[  615.363141][T17595]  vfs_write+0xa72/0xc90
[  615.367384][T17595]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  615.373191][T17595]  ? __pfx_vfs_write+0x10/0x10
[  615.377972][T17595]  ksys_write+0x1a0/0x2c0
[  615.382301][T17595]  ? __pfx_ksys_write+0x10/0x10
[  615.387147][T17595]  ? do_syscall_64+0x100/0x230
[  615.391910][T17595]  ? do_syscall_64+0xb6/0x230
[  615.396584][T17595]  do_syscall_64+0xf3/0x230
[  615.401095][T17595]  ? clear_bhb_loop+0x35/0x90
[  615.405771][T17595]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  615.411659][T17595] RIP: 0033:0x7f595f97cef9
[  615.416067][T17595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  615.435662][T17595] RSP: 002b:00007f596080f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  615.444073][T17595] RAX: ffffffffffffffda RBX: 00007f595fb35f80 RCX: 00007f595f97cef9
[  615.452035][T17595] RDX: 0000000000180000 RSI: 0000000020000000 RDI: 0000000000000004
[  615.459998][T17595] RBP: 00007f596080f090 R08: 0000000000000000 R09: 0000000000000000
[  615.467977][T17595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  615.475961][T17595] R13: 0000000000000000 R14: 00007f595fb35f80 R15: 00007ffdebb7e158
[  615.483948][T17595]  </TASK>
[  615.813406][T17604] FAULT_INJECTION: forcing a failure.
[  615.813406][T17604] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  615.830599][T17604] CPU: 0 UID: 0 PID: 17604 Comm: syz.3.3940 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  615.841417][T17604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  615.851518][T17604] Call Trace:
[  615.854815][T17604]  <TASK>
[  615.857764][T17604]  dump_stack_lvl+0x241/0x360
[  615.862473][T17604]  ? __pfx_dump_stack_lvl+0x10/0x10
[  615.867695][T17604]  ? __pfx__printk+0x10/0x10
[  615.872303][T17604]  ? __pfx_lock_release+0x10/0x10
[  615.877356][T17604]  should_fail_ex+0x3b0/0x4e0
[  615.882057][T17604]  _copy_from_user+0x2f/0xe0
[  615.886645][T17604]  copy_msghdr_from_user+0xae/0x680
[  615.891853][T17604]  ? __pfx___might_resched+0x10/0x10
[  615.897166][T17604]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  615.902991][T17604]  ? __might_fault+0xaa/0x120
[  615.907667][T17604]  do_recvmmsg+0x40f/0xae0
[  615.912078][T17604]  ? __pfx_lock_release+0x10/0x10
[  615.917111][T17604]  ? __pfx_do_recvmmsg+0x10/0x10
[  615.922096][T17604]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  615.928021][T17604]  ? ksys_write+0x23e/0x2c0
[  615.932552][T17604]  ? __pfx_lock_release+0x10/0x10
[  615.937623][T17604]  ? vfs_write+0x7c4/0xc90
[  615.942072][T17604]  ? __mutex_unlock_slowpath+0x21d/0x750
[  615.947725][T17604]  ? __fget_files+0x3f6/0x470
[  615.952410][T17604]  __x64_sys_recvmmsg+0x199/0x250
[  615.957433][T17604]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  615.962977][T17604]  ? do_syscall_64+0x100/0x230
[  615.967735][T17604]  ? do_syscall_64+0xb6/0x230
[  615.972407][T17604]  do_syscall_64+0xf3/0x230
[  615.976903][T17604]  ? clear_bhb_loop+0x35/0x90
[  615.981588][T17604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  615.987510][T17604] RIP: 0033:0x7f813fd7cef9
[  615.991920][T17604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  616.011537][T17604] RSP: 002b:00007f8140b22038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  616.019944][T17604] RAX: ffffffffffffffda RBX: 00007f813ff35f80 RCX: 00007f813fd7cef9
[  616.027904][T17604] RDX: 04000000000002c5 RSI: 0000000020000240 RDI: 0000000000000003
[  616.035868][T17604] RBP: 00007f8140b22090 R08: 0000000000000000 R09: 0000000000000000
[  616.043830][T17604] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  616.051793][T17604] R13: 0000000000000000 R14: 00007f813ff35f80 R15: 00007fff96d27988
[  616.059772][T17604]  </TASK>
[  616.133484][T17611] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  616.148157][T17611] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  616.157054][T17611] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  616.292144][T17620] netlink: 'syz.1.3947': attribute type 2 has an invalid length.
[  616.591224][T17636] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  616.612679][T17633] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  616.656668][T17607] dccp_close: ABORT with 417 bytes unread
[  616.962428][T17651] netlink: 124 bytes leftover after parsing attributes in process `syz.0.3959'.
[  617.395982][T17668] bridge0: port 2(bridge_slave_1) entered disabled state
[  617.403706][T17668] bridge0: port 1(bridge_slave_0) entered disabled state
[  617.452646][T17673] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3966'.
[  617.584170][T17680] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  617.672609][T17684] netlink: 124 bytes leftover after parsing attributes in process `syz.2.3971'.
[  617.691771][T17679] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  617.704880][T17679] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  617.714216][T17679] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  617.935712][T17694] FAULT_INJECTION: forcing a failure.
[  617.935712][T17694] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  617.949560][T17694] CPU: 1 UID: 0 PID: 17694 Comm: syz.2.3976 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  617.960353][T17694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  617.970432][T17694] Call Trace:
[  617.973712][T17694]  <TASK>
[  617.976641][T17694]  dump_stack_lvl+0x241/0x360
[  617.981322][T17694]  ? __pfx_dump_stack_lvl+0x10/0x10
[  617.986602][T17694]  ? __pfx__printk+0x10/0x10
[  617.991187][T17694]  ? __pfx_lock_release+0x10/0x10
[  617.996213][T17694]  should_fail_ex+0x3b0/0x4e0
[  618.000893][T17694]  _copy_from_user+0x2f/0xe0
[  618.005482][T17694]  copy_msghdr_from_user+0xae/0x680
[  618.010675][T17694]  ? __pfx___might_resched+0x10/0x10
[  618.015958][T17694]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  618.021764][T17694]  ? __might_fault+0xaa/0x120
[  618.026470][T17694]  do_recvmmsg+0x40f/0xae0
[  618.030892][T17694]  ? __pfx_lock_release+0x10/0x10
[  618.035916][T17694]  ? __pfx_do_recvmmsg+0x10/0x10
[  618.040866][T17694]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  618.046759][T17694]  ? ksys_write+0x23e/0x2c0
[  618.051274][T17694]  ? __pfx_lock_release+0x10/0x10
[  618.056299][T17694]  ? vfs_write+0x7c4/0xc90
[  618.060713][T17694]  ? __mutex_unlock_slowpath+0x21d/0x750
[  618.066346][T17694]  ? __fget_files+0x3f6/0x470
[  618.071031][T17694]  __x64_sys_recvmmsg+0x199/0x250
[  618.076054][T17694]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  618.081594][T17694]  ? do_syscall_64+0x100/0x230
[  618.086352][T17694]  ? do_syscall_64+0xb6/0x230
[  618.091023][T17694]  do_syscall_64+0xf3/0x230
[  618.095519][T17694]  ? clear_bhb_loop+0x35/0x90
[  618.100195][T17694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  618.106081][T17694] RIP: 0033:0x7f963cf7cef9
[  618.110488][T17694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  618.130090][T17694] RSP: 002b:00007f963de27038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  618.138502][T17694] RAX: ffffffffffffffda RBX: 00007f963d135f80 RCX: 00007f963cf7cef9
[  618.146472][T17694] RDX: 04000000000002c5 RSI: 0000000020000240 RDI: 0000000000000003
[  618.154438][T17694] RBP: 00007f963de27090 R08: 0000000000000000 R09: 0000000000000000
[  618.162401][T17694] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  618.170371][T17694] R13: 0000000000000000 R14: 00007f963d135f80 R15: 00007ffe4790de98
[  618.178346][T17694]  </TASK>
[  618.374629][T17677] dccp_close: ABORT with 417 bytes unread
[  618.376970][T17706] netlink: 72 bytes leftover after parsing attributes in process `syz.3.3980'.
[  618.431057][T17709] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3982'.
[  618.570057][T17713] netlink: 'syz.0.3985': attribute type 10 has an invalid length.
[  618.588921][T17713] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3985'.
[  618.619409][T17713] bridge0: port 3(macvlan1) entered blocking state
[  618.632133][T17713] bridge0: port 3(macvlan1) entered disabled state
[  618.645685][T17713] macvlan1: entered allmulticast mode
[  618.653070][T17713] veth1_vlan: entered allmulticast mode
[  618.661593][T17713] macvlan1: entered promiscuous mode
[  618.668360][T17713] bridge0: port 3(macvlan1) entered blocking state
[  618.675104][T17713] bridge0: port 3(macvlan1) entered forwarding state
[  618.810515][T17720] syzkaller1: entered promiscuous mode
[  618.851307][T17720] syzkaller1: entered allmulticast mode
[  618.876436][T17733] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3989'.
[  618.911323][T17722] ebtables: ebtables: counters copy to user failed while replacing table
[  618.948241][T17733] netlink: 'syz.1.3989': attribute type 8 has an invalid length.
[  619.064980][T17733] Dead loop on virtual device ip6_vti0, fix it urgently!
[  619.393866][T17761] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3995'.
[  619.403371][T17755] team0: entered promiscuous mode
[  619.409005][T17755] team_slave_0: entered promiscuous mode
[  619.414878][T17755] team_slave_1: entered promiscuous mode
[  619.451419][T17761] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3995'.
[  619.467717][T17755] dummy0: entered promiscuous mode
[  619.810883][T17778] bond0: (slave bond_slave_0): Releasing backup interface
[  619.865874][T17781] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  619.876698][T17781] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  619.886601][T17781] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  619.895420][T17781] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  619.922510][T17781] vxlan0: entered promiscuous mode
[  619.952957][T17781] vxlan0: entered allmulticast mode
[  620.118420][T17781] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  620.127708][T17781] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  620.136761][T17781] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  620.145723][T17781] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  620.251005][T17803] FAULT_INJECTION: forcing a failure.
[  620.251005][T17803] name failslab, interval 1, probability 0, space 0, times 0
[  620.264300][T17803] CPU: 1 UID: 0 PID: 17803 Comm: syz.4.4014 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  620.275083][T17803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  620.285143][T17803] Call Trace:
[  620.288422][T17803]  <TASK>
[  620.291352][T17803]  dump_stack_lvl+0x241/0x360
[  620.296074][T17803]  ? __pfx_dump_stack_lvl+0x10/0x10
[  620.301268][T17803]  ? __pfx__printk+0x10/0x10
[  620.305855][T17803]  ? __kmalloc_noprof+0xb0/0x400
[  620.310786][T17803]  ? __pfx___might_resched+0x10/0x10
[  620.316061][T17803]  ? __mutex_lock+0x2ef/0xd70
[  620.320735][T17803]  should_fail_ex+0x3b0/0x4e0
[  620.325411][T17803]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  620.331669][T17803]  should_failslab+0xac/0x100
[  620.336375][T17803]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  620.342627][T17803]  __kmalloc_noprof+0xd8/0x400
[  620.347389][T17803]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  620.353459][T17803]  genl_rcv_msg+0x802/0xec0
[  620.357962][T17803]  ? mark_lock+0x9a/0x350
[  620.362297][T17803]  ? __pfx_genl_rcv_msg+0x10/0x10
[  620.367337][T17803]  ? __pfx_lock_acquire+0x10/0x10
[  620.372358][T17803]  ? __pfx_nbd_genl_connect+0x10/0x10
[  620.377725][T17803]  ? __pfx___might_resched+0x10/0x10
[  620.383018][T17803]  netlink_rcv_skb+0x1e3/0x430
[  620.387785][T17803]  ? __pfx_genl_rcv_msg+0x10/0x10
[  620.392811][T17803]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  620.398117][T17803]  genl_rcv+0x28/0x40
[  620.402094][T17803]  netlink_unicast+0x7f6/0x990
[  620.406862][T17803]  ? __pfx_netlink_unicast+0x10/0x10
[  620.412275][T17803]  ? __virt_addr_valid+0x183/0x530
[  620.417379][T17803]  ? __check_object_size+0x49c/0x900
[  620.422661][T17803]  ? bpf_lsm_netlink_send+0x9/0x10
[  620.427769][T17803]  netlink_sendmsg+0x8e4/0xcb0
[  620.432535][T17803]  ? __pfx_netlink_sendmsg+0x10/0x10
[  620.437816][T17803]  ? __import_iovec+0x536/0x820
[  620.442661][T17803]  ? aa_sock_msg_perm+0x91/0x160
[  620.447592][T17803]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  620.452872][T17803]  ? security_socket_sendmsg+0x87/0xb0
[  620.458349][T17803]  ? __pfx_netlink_sendmsg+0x10/0x10
[  620.463650][T17803]  __sock_sendmsg+0x221/0x270
[  620.468338][T17803]  ____sys_sendmsg+0x525/0x7d0
[  620.473111][T17803]  ? __pfx_____sys_sendmsg+0x10/0x10
[  620.478405][T17803]  __sys_sendmsg+0x2b0/0x3a0
[  620.482997][T17803]  ? __pfx___sys_sendmsg+0x10/0x10
[  620.488103][T17803]  ? vfs_write+0x7c4/0xc90
[  620.492550][T17803]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  620.498875][T17803]  ? do_syscall_64+0x100/0x230
[  620.503637][T17803]  ? do_syscall_64+0xb6/0x230
[  620.508306][T17803]  do_syscall_64+0xf3/0x230
[  620.512805][T17803]  ? clear_bhb_loop+0x35/0x90
[  620.517482][T17803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  620.523369][T17803] RIP: 0033:0x7fa34b37cef9
[  620.527776][T17803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  620.547376][T17803] RSP: 002b:00007fa34c0cc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  620.555784][T17803] RAX: ffffffffffffffda RBX: 00007fa34b535f80 RCX: 00007fa34b37cef9
[  620.563745][T17803] RDX: 0000000000000050 RSI: 00000000200001c0 RDI: 0000000000000009
[  620.571708][T17803] RBP: 00007fa34c0cc090 R08: 0000000000000000 R09: 0000000000000000
[  620.579676][T17803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  620.587643][T17803] R13: 0000000000000000 R14: 00007fa34b535f80 R15: 00007fff6a5e67b8
[  620.595628][T17803]  </TASK>
[  620.673294][T17801] netlink: 36 bytes leftover after parsing attributes in process `syz.3.4013'.
[  621.275068][T17835] hsr0: entered promiscuous mode
[  621.420981][T17838] tipc: Started in network mode
[  621.426367][T17838] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  621.441757][T17838] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  621.959498][T17867] FAULT_INJECTION: forcing a failure.
[  621.959498][T17867] name failslab, interval 1, probability 0, space 0, times 0
[  621.988297][T17867] CPU: 1 UID: 0 PID: 17867 Comm: syz.3.4038 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  621.999106][T17867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  622.009164][T17867] Call Trace:
[  622.012465][T17867]  <TASK>
[  622.015389][T17867]  dump_stack_lvl+0x241/0x360
[  622.020072][T17867]  ? __pfx_dump_stack_lvl+0x10/0x10
[  622.025277][T17867]  ? __pfx__printk+0x10/0x10
[  622.029868][T17867]  ? fs_reclaim_acquire+0x93/0x140
[  622.034978][T17867]  ? __pfx___might_resched+0x10/0x10
[  622.040257][T17867]  ? __mutex_lock+0x2ef/0xd70
[  622.044935][T17867]  should_fail_ex+0x3b0/0x4e0
[  622.049614][T17867]  should_failslab+0xac/0x100
[  622.054292][T17867]  ? nbd_alloc_and_init_config+0x88/0x260
[  622.060012][T17867]  __kmalloc_cache_noprof+0x6c/0x2c0
[  622.065296][T17867]  nbd_alloc_and_init_config+0x88/0x260
[  622.070843][T17867]  nbd_genl_connect+0xcba/0x1c80
[  622.075798][T17867]  ? __pfx_nbd_genl_connect+0x10/0x10
[  622.081171][T17867]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  622.087412][T17867]  ? __nla_parse+0x40/0x60
[  622.091829][T17867]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  622.098161][T17867]  genl_rcv_msg+0xb14/0xec0
[  622.102660][T17867]  ? mark_lock+0x9a/0x350
[  622.106991][T17867]  ? __pfx_genl_rcv_msg+0x10/0x10
[  622.112036][T17867]  ? __pfx_lock_acquire+0x10/0x10
[  622.117063][T17867]  ? __pfx_nbd_genl_connect+0x10/0x10
[  622.122431][T17867]  ? __pfx___might_resched+0x10/0x10
[  622.127721][T17867]  netlink_rcv_skb+0x1e3/0x430
[  622.132486][T17867]  ? __pfx_genl_rcv_msg+0x10/0x10
[  622.137509][T17867]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  622.142814][T17867]  genl_rcv+0x28/0x40
[  622.146795][T17867]  netlink_unicast+0x7f6/0x990
[  622.151568][T17867]  ? __pfx_netlink_unicast+0x10/0x10
[  622.156848][T17867]  ? __virt_addr_valid+0x183/0x530
[  622.161956][T17867]  ? __check_object_size+0x49c/0x900
[  622.167239][T17867]  ? bpf_lsm_netlink_send+0x9/0x10
[  622.172348][T17867]  netlink_sendmsg+0x8e4/0xcb0
[  622.177115][T17867]  ? __pfx_netlink_sendmsg+0x10/0x10
[  622.182396][T17867]  ? __import_iovec+0x536/0x820
[  622.187326][T17867]  ? aa_sock_msg_perm+0x91/0x160
[  622.192259][T17867]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  622.197539][T17867]  ? security_socket_sendmsg+0x87/0xb0
[  622.203002][T17867]  ? __pfx_netlink_sendmsg+0x10/0x10
[  622.208276][T17867]  __sock_sendmsg+0x221/0x270
[  622.212952][T17867]  ____sys_sendmsg+0x525/0x7d0
[  622.217718][T17867]  ? __pfx_____sys_sendmsg+0x10/0x10
[  622.223011][T17867]  __sys_sendmsg+0x2b0/0x3a0
[  622.227613][T17867]  ? __pfx___sys_sendmsg+0x10/0x10
[  622.232734][T17867]  ? vfs_write+0x7c4/0xc90
[  622.237186][T17867]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  622.243512][T17867]  ? do_syscall_64+0x100/0x230
[  622.248283][T17867]  ? do_syscall_64+0xb6/0x230
[  622.252980][T17867]  do_syscall_64+0xf3/0x230
[  622.257494][T17867]  ? clear_bhb_loop+0x35/0x90
[  622.262181][T17867]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  622.268076][T17867] RIP: 0033:0x7f813fd7cef9
[  622.272485][T17867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  622.292083][T17867] RSP: 002b:00007f8140b22038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  622.300489][T17867] RAX: ffffffffffffffda RBX: 00007f813ff35f80 RCX: 00007f813fd7cef9
[  622.308477][T17867] RDX: 0000000000000050 RSI: 00000000200001c0 RDI: 0000000000000009
[  622.316450][T17867] RBP: 00007f8140b22090 R08: 0000000000000000 R09: 0000000000000000
[  622.324416][T17867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  622.332382][T17867] R13: 0000000000000000 R14: 00007f813ff35f80 R15: 00007fff96d27988
[  622.340369][T17867]  </TASK>
[  622.390193][T17867] nbd: couldn't allocate config
[  622.395640][T17870] __nla_validate_parse: 1 callbacks suppressed
[  622.395655][T17870] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4040'.
[  622.407158][T17871] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4039'.
[  622.420318][T17870] netlink: 40 bytes leftover after parsing attributes in process `syz.4.4040'.
[  622.476251][T17860] tipc: MTU too low for tipc bearer
[  622.500354][T17870] netlink: 'syz.4.4040': attribute type 10 has an invalid length.
[  622.549969][T17870] bridge0: port 2(bridge_slave_1) entered disabled state
[  622.557727][T17870] bridge0: port 1(bridge_slave_0) entered disabled state
[  622.621541][T17877] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  622.645154][T17870] bridge0: port 2(bridge_slave_1) entered blocking state
[  622.652413][T17870] bridge0: port 2(bridge_slave_1) entered forwarding state
[  622.660126][T17870] bridge0: port 1(bridge_slave_0) entered blocking state
[  622.667332][T17870] bridge0: port 1(bridge_slave_0) entered forwarding state
[  622.694185][T17870] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  622.783923][ T5233] Bluetooth: hci6: command 0x0405 tx timeout
[  622.928533][T17891] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4050'.
[  623.170252][T17904] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4054'.
[  624.051410][T17915] FAULT_INJECTION: forcing a failure.
[  624.051410][T17915] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  624.052980][T17915] 
[  624.052989][T17915] ======================================================
[  624.052995][T17915] WARNING: possible circular locking dependency detected
[  624.053003][T17915] 6.11.0-rc5-syzkaller-00859-g780801200300 #0 Not tainted
[  624.053014][T17915] ------------------------------------------------------
[  624.053020][T17915] syz.1.4058/17915 is trying to acquire lock:
[  624.053029][T17915] ffffffff8e92c400 (console_owner){..-.}-{0:0}, at: console_flush_all+0x152/0xfd0
[  624.053076][T17915] 
[  624.053076][T17915] but task is already holding lock:
[  624.053081][T17915] ffff8880b893e9d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  624.053128][T17915] 
[  624.053128][T17915] which lock already depends on the new lock.
[  624.053128][T17915] 
[  624.053134][T17915] 
[  624.053134][T17915] the existing dependency chain (in reverse order) is:
[  624.053140][T17915] 
[  624.053140][T17915] -> #4 (&rq->__lock){-.-.}-{2:2}:
[  624.053163][T17915]        lock_acquire+0x1ed/0x550
[  624.053183][T17915]        _raw_spin_lock_nested+0x31/0x40
[  624.053201][T17915]        raw_spin_rq_lock_nested+0x2a/0x140
[  624.053220][T17915]        task_fork_fair+0x61/0x1e0
[  624.053241][T17915]        sched_cgroup_fork+0x37c/0x410
[  624.053255][T17915]        copy_process+0x2217/0x3dc0
[  624.053275][T17915]        kernel_clone+0x226/0x8f0
[  624.053294][T17915]        user_mode_thread+0x132/0x1a0
[  624.053314][T17915]        rest_init+0x23/0x300
[  624.053331][T17915]        start_kernel+0x47a/0x500
[  624.053348][T17915]        x86_64_start_reservations+0x2a/0x30
[  624.053363][T17915]        x86_64_start_kernel+0x9f/0xa0
[  624.053376][T17915]        common_startup_64+0x13e/0x147
[  624.053392][T17915] 
[  624.053392][T17915] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  624.053413][T17915]        lock_acquire+0x1ed/0x550
[  624.053432][T17915]        _raw_spin_lock_irqsave+0xd5/0x120
[  624.053448][T17915]        try_to_wake_up+0xb0/0x1470
[  624.053469][T17915]        __wake_up_common_lock+0x130/0x1e0
[  624.053489][T17915]        tty_port_default_wakeup+0xa6/0xf0
[  624.053512][T17915]        serial8250_tx_chars+0x6e2/0x930
[  624.053530][T17915]        serial8250_handle_irq+0x558/0x710
[  624.053549][T17915]        serial8250_default_handle_irq+0xd1/0x1f0
[  624.053572][T17915]        serial8250_interrupt+0xa9/0x1f0
[  624.053589][T17915]        __handle_irq_event_percpu+0x29a/0xa80
[  624.053606][T17915]        handle_irq_event+0x89/0x1f0
[  624.053621][T17915]        handle_edge_irq+0x25f/0xc20
[  624.053643][T17915]        __common_interrupt+0x136/0x230
[  624.053662][T17915]        common_interrupt+0xa5/0xd0
[  624.053683][T17915]        asm_common_interrupt+0x26/0x40
[  624.053704][T17915]        acpi_safe_halt+0x21/0x30
[  624.053722][T17915]        acpi_idle_enter+0xe4/0x140
[  624.053741][T17915]        cpuidle_enter_state+0x112/0x480
[  624.053759][T17915]        cpuidle_enter+0x5d/0xa0
[  624.053776][T17915]        do_idle+0x375/0x5d0
[  624.053792][T17915]        cpu_startup_entry+0x42/0x60
[  624.053809][T17915]        __pfx_ap_starting+0x0/0x10
[  624.053827][T17915]        common_startup_64+0x13e/0x147
[  624.053841][T17915] 
[  624.053841][T17915] -> #2 (&tty->write_wait){-.-.}-{2:2}:
[  624.053861][T17915]        lock_acquire+0x1ed/0x550
[  624.053878][T17915]        _raw_spin_lock_irqsave+0xd5/0x120
[  624.053893][T17915]        __wake_up_common_lock+0x25/0x1e0
[  624.053913][T17915]        tty_port_default_wakeup+0xa6/0xf0
[  624.053934][T17915]        serial8250_tx_chars+0x6e2/0x930
[  624.053953][T17915]        serial8250_handle_irq+0x558/0x710
[  624.053979][T17915]        serial8250_default_handle_irq+0xd1/0x1f0
[  624.054002][T17915]        serial8250_interrupt+0xa9/0x1f0
[  624.054019][T17915]        __handle_irq_event_percpu+0x29a/0xa80
[  624.054035][T17915]        handle_irq_event+0x89/0x1f0
[  624.054051][T17915]        handle_edge_irq+0x25f/0xc20
[  624.054072][T17915]        __common_interrupt+0x136/0x230
[  624.054092][T17915]        common_interrupt+0xa5/0xd0
[  624.054117][T17915]        asm_common_interrupt+0x26/0x40
[  624.054136][T17915]        acpi_safe_halt+0x21/0x30
[  624.054155][T17915]        acpi_idle_enter+0xe4/0x140
[  624.054173][T17915]        cpuidle_enter_state+0x112/0x480
[  624.054191][T17915]        cpuidle_enter+0x5d/0xa0
[  624.054207][T17915]        do_idle+0x375/0x5d0
[  624.054223][T17915]        cpu_startup_entry+0x42/0x60
[  624.054240][T17915]        __pfx_ap_starting+0x0/0x10
[  624.054258][T17915]        common_startup_64+0x13e/0x147
[  624.054275][T17915] 
[  624.054275][T17915] -> #1 (&port_lock_key){-.-.}-{2:2}:
[  624.054297][T17915]        lock_acquire+0x1ed/0x550
[  624.054317][T17915]        _raw_spin_lock_irqsave+0xd5/0x120
[  624.054333][T17915]        serial8250_console_write+0x1a8/0x1770
[  624.054354][T17915]        console_flush_all+0x867/0xfd0
[  624.054371][T17915]        console_unlock+0x13b/0x4d0
[  624.054387][T17915]        vprintk_emit+0x5dc/0x7c0
[  624.054403][T17915]        _printk+0xd5/0x120
[  624.054419][T17915]        register_console+0x727/0xcf0
[  624.054436][T17915]        univ8250_console_init+0x52/0x90
[  624.054458][T17915]        console_init+0x1b8/0x6f0
[  624.054479][T17915]        start_kernel+0x2d3/0x500
[  624.054499][T17915]        x86_64_start_reservations+0x2a/0x30
[  624.054516][T17915]        x86_64_start_kernel+0x9f/0xa0
[  624.054531][T17915]        common_startup_64+0x13e/0x147
[  624.054547][T17915] 
[  624.054547][T17915] -> #0 (console_owner){..-.}-{0:0}:
[  624.054569][T17915]        validate_chain+0x18e0/0x5900
[  624.054585][T17915]        __lock_acquire+0x137a/0x2040
[  624.054605][T17915]        lock_acquire+0x1ed/0x550
[  624.054623][T17915]        console_flush_all+0x810/0xfd0
[  624.054640][T17915]        console_unlock+0x13b/0x4d0
[  624.054656][T17915]        vprintk_emit+0x5dc/0x7c0
[  624.054671][T17915]        _printk+0xd5/0x120
[  624.054686][T17915]        should_fail_ex+0x391/0x4e0
[  624.054708][T17915]        strncpy_from_user+0x36/0x2e0
[  624.054728][T17915]        strncpy_from_user_nofault+0x71/0x140
[  624.054749][T17915]        bpf_probe_read_compat_str+0xe9/0x180
[  624.054769][T17915]        bpf_prog_f2ce78ec2d45df6f+0x3d/0x3f
[  624.054782][T17915]        bpf_trace_run4+0x334/0x590
[  624.054799][T17915]        __traceiter_sched_switch+0x98/0xd0
[  624.054815][T17915]        __schedule+0x2591/0x4a60
[  624.054831][T17915]        schedule+0x14b/0x320
[  624.054845][T17915]        blk_mq_freeze_queue_wait+0xff/0x190
[  624.054863][T17915]        nbd_set_size+0xe2/0x7b0
[  624.054882][T17915]        nbd_genl_size_set+0x332/0x410
[  624.054899][T17915]        nbd_genl_connect+0xd1b/0x1c80
[  624.054915][T17915]        genl_rcv_msg+0xb14/0xec0
[  624.054935][T17915]        netlink_rcv_skb+0x1e3/0x430
[  624.054950][T17915]        genl_rcv+0x28/0x40
[  624.054967][T17915]        netlink_unicast+0x7f6/0x990
[  624.054989][T17915]        netlink_sendmsg+0x8e4/0xcb0
[  624.055005][T17915]        __sock_sendmsg+0x221/0x270
[  624.055021][T17915]        ____sys_sendmsg+0x525/0x7d0
[  624.055041][T17915]        __sys_sendmsg+0x2b0/0x3a0
[  624.055060][T17915]        do_syscall_64+0xf3/0x230
[  624.055077][T17915]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  624.055098][T17915] 
[  624.055098][T17915] other info that might help us debug this:
[  624.055098][T17915] 
[  624.055109][T17915] Chain exists of:
[  624.055109][T17915]   console_owner --> &p->pi_lock --> &rq->__lock
[  624.055109][T17915] 
[  624.055140][T17915]  Possible unsafe locking scenario:
[  624.055140][T17915] 
[  624.055146][T17915]        CPU0                    CPU1
[  624.055151][T17915]        ----                    ----
[  624.055157][T17915]   lock(&rq->__lock);
[  624.055168][T17915]                                lock(&p->pi_lock);
[  624.055180][T17915]                                lock(&rq->__lock);
[  624.055192][T17915]   lock(console_owner);
[  624.055204][T17915] 
[  624.055204][T17915]  *** DEADLOCK ***
[  624.055204][T17915] 
[  624.055209][T17915] 7 locks held by syz.1.4058/17915:
[  624.055220][T17915]  #0: ffffffff8fcf1cf0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  624.055263][T17915]  #1: ffffffff8fcf1ba8 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x121/0xec0
[  624.055306][T17915]  #2: ffff8880264dc198 (&nbd->config_lock){+.+.}-{3:3}, at: nbd_genl_connect+0xc26/0x1c80
[  624.055346][T17915]  #3: ffff8880b893e9d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  624.055388][T17915]  #4: ffffffff8e938320 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0x244/0x590
[  624.055429][T17915]  #5: ffffffff8e813d20 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120
[  624.055467][T17915]  #6: ffffffff8e813950 (console_srcu){....}-{0:0}, at: console_flush_all+0x152/0xfd0
[  624.055507][T17915] 
[  624.055507][T17915] stack backtrace:
[  624.055515][T17915] CPU: 1 UID: 0 PID: 17915 Comm: syz.1.4058 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  624.055536][T17915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  624.055546][T17915] Call Trace:
[  624.055554][T17915]  <TASK>
[  624.055561][T17915]  dump_stack_lvl+0x241/0x360
[  624.055584][T17915]  ? __pfx_dump_stack_lvl+0x10/0x10
[  624.055609][T17915]  ? print_circular_bug+0x130/0x1a0
[  624.055630][T17915]  check_noncircular+0x36a/0x4a0
[  624.055651][T17915]  ? __pfx_check_noncircular+0x10/0x10
[  624.055670][T17915]  ? lockdep_lock+0x123/0x2b0
[  624.055692][T17915]  ? add_lock_to_list+0x1de/0x2e0
[  624.055715][T17915]  validate_chain+0x18e0/0x5900
[  624.055745][T17915]  ? __pfx_validate_chain+0x10/0x10
[  624.055763][T17915]  ? sprintf+0xda/0x120
[  624.055784][T17915]  ? vsnprintf+0x1cc3/0x1da0
[  624.055813][T17915]  ? info_print_prefix+0x204/0x310
[  624.055838][T17915]  ? mark_lock+0x9a/0x350
[  624.055862][T17915]  __lock_acquire+0x137a/0x2040
[  624.055893][T17915]  lock_acquire+0x1ed/0x550
[  624.055914][T17915]  ? console_flush_all+0x152/0xfd0
[  624.055937][T17915]  ? __pfx_lock_acquire+0x10/0x10
[  624.055959][T17915]  ? __pfx_lock_release+0x10/0x10
[  624.055979][T17915]  ? do_raw_spin_lock+0x14f/0x370
[  624.056003][T17915]  ? do_raw_spin_unlock+0x13c/0x8b0
[  624.056022][T17915]  ? console_flush_all+0x3a8/0xfd0
[  624.056044][T17915]  console_flush_all+0x810/0xfd0
[  624.056062][T17915]  ? console_flush_all+0x152/0xfd0
[  624.056089][T17915]  ? console_flush_all+0x152/0xfd0
[  624.056118][T17915]  ? __pfx_console_flush_all+0x10/0x10
[  624.056139][T17915]  ? __pfx_lock_acquire+0x10/0x10
[  624.056163][T17915]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  624.056186][T17915]  console_unlock+0x13b/0x4d0
[  624.056207][T17915]  ? __pfx_console_unlock+0x10/0x10
[  624.056224][T17915]  ? _printk+0xd5/0x120
[  624.056241][T17915]  ? _printk+0xd5/0x120
[  624.056258][T17915]  ? __pfx___down_trylock_console_sem+0x10/0x10
[  624.056282][T17915]  ? __pfx_validate_chain+0x10/0x10
[  624.056302][T17915]  vprintk_emit+0x5dc/0x7c0
[  624.056321][T17915]  ? __pfx_vprintk_emit+0x10/0x10
[  624.056348][T17915]  _printk+0xd5/0x120
[  624.056367][T17915]  ? __pfx__printk+0x10/0x10
[  624.056393][T17915]  should_fail_ex+0x391/0x4e0
[  624.056420][T17915]  strncpy_from_user+0x36/0x2e0
[  624.056445][T17915]  strncpy_from_user_nofault+0x71/0x140
[  624.056472][T17915]  bpf_probe_read_compat_str+0xe9/0x180
[  624.056496][T17915]  ? bpf_trace_run4+0x244/0x590
[  624.056515][T17915]  bpf_prog_f2ce78ec2d45df6f+0x3d/0x3f
[  624.056531][T17915]  bpf_trace_run4+0x334/0x590
[  624.056550][T17915]  ? psi_group_change+0xb88/0x11c0
[  624.056571][T17915]  ? __pfx_bpf_trace_run4+0x10/0x10
[  624.056595][T17915]  ? __pfx_probe_sched_switch+0x10/0x10
[  624.056617][T17915]  ? tracing_record_taskinfo_sched_switch+0x7b/0x390
[  624.056637][T17915]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  624.056656][T17915]  __traceiter_sched_switch+0x98/0xd0
[  624.056678][T17915]  __schedule+0x2591/0x4a60
[  624.056707][T17915]  ? __pfx___schedule+0x10/0x10
[  624.056727][T17915]  ? __pfx_lock_release+0x10/0x10
[  624.056749][T17915]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  624.056774][T17915]  ? schedule+0x90/0x320
[  624.056792][T17915]  schedule+0x14b/0x320
[  624.056812][T17915]  blk_mq_freeze_queue_wait+0xff/0x190
[  624.056832][T17915]  ? __pfx_blk_mq_freeze_queue_wait+0x10/0x10
[  624.056851][T17915]  ? percpu_ref_put+0x1f/0x250
[  624.056868][T17915]  ? __pfx_autoremove_wake_function+0x10/0x10
[  624.056893][T17915]  ? percpu_ref_kill_and_confirm+0xa0/0x130
[  624.056916][T17915]  nbd_set_size+0xe2/0x7b0
[  624.056935][T17915]  ? netlink_rcv_skb+0x1e3/0x430
[  624.056952][T17915]  ? genl_rcv+0x28/0x40
[  624.056971][T17915]  ? ____sys_sendmsg+0x525/0x7d0
[  624.056992][T17915]  ? __sys_sendmsg+0x2b0/0x3a0
[  624.057014][T17915]  ? __pfx_nbd_set_size+0x10/0x10
[  624.057042][T17915]  ? __asan_memset+0x23/0x50
[  624.057067][T17915]  ? nla_memcpy+0x5d/0xc0
[  624.057087][T17915]  ? __asan_memcpy+0x40/0x70
[  624.057112][T17915]  ? nla_memcpy+0x8b/0xc0
[  624.057133][T17915]  nbd_genl_size_set+0x332/0x410
[  624.057156][T17915]  ? __pfx_nbd_genl_size_set+0x10/0x10
[  624.057177][T17915]  ? __init_waitqueue_head+0xae/0x150
[  624.057201][T17915]  ? nbd_alloc_and_init_config+0x185/0x260
[  624.057223][T17915]  nbd_genl_connect+0xd1b/0x1c80
[  624.057249][T17915]  ? __pfx_nbd_genl_connect+0x10/0x10
[  624.057273][T17915]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  624.057298][T17915]  ? __nla_parse+0x40/0x60
[  624.057320][T17915]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  624.057347][T17915]  genl_rcv_msg+0xb14/0xec0
[  624.057367][T17915]  ? mark_lock+0x9a/0x350
[  624.057394][T17915]  ? __pfx_genl_rcv_msg+0x10/0x10
[  624.057429][T17915]  ? __pfx_lock_acquire+0x10/0x10
[  624.057451][T17915]  ? __pfx_nbd_genl_connect+0x10/0x10
[  624.057471][T17915]  ? __pfx___might_resched+0x10/0x10
[  624.057497][T17915]  netlink_rcv_skb+0x1e3/0x430
[  624.057516][T17915]  ? __pfx_genl_rcv_msg+0x10/0x10
[  624.057539][T17915]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  624.057573][T17915]  genl_rcv+0x28/0x40
[  624.057594][T17915]  netlink_unicast+0x7f6/0x990
[  624.057622][T17915]  ? __pfx_netlink_unicast+0x10/0x10
[  624.057645][T17915]  ? __virt_addr_valid+0x183/0x530
[  624.057664][T17915]  ? __check_object_size+0x49c/0x900
[  624.057685][T17915]  ? bpf_lsm_netlink_send+0x9/0x10
[  624.057707][T17915]  netlink_sendmsg+0x8e4/0xcb0
[  624.057732][T17915]  ? __pfx_netlink_sendmsg+0x10/0x10
[  624.057752][T17915]  ? __import_iovec+0x536/0x820
[  624.057771][T17915]  ? aa_sock_msg_perm+0x91/0x160
[  624.057791][T17915]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  624.057812][T17915]  ? security_socket_sendmsg+0x87/0xb0
[  624.057836][T17915]  ? __pfx_netlink_sendmsg+0x10/0x10
[  624.057853][T17915]  __sock_sendmsg+0x221/0x270
[  624.057873][T17915]  ____sys_sendmsg+0x525/0x7d0
[  624.057900][T17915]  ? __pfx_____sys_sendmsg+0x10/0x10
[  624.057931][T17915]  __sys_sendmsg+0x2b0/0x3a0
[  624.057953][T17915]  ? __pfx___sys_sendmsg+0x10/0x10
[  624.057974][T17915]  ? vfs_write+0x7c4/0xc90
[  624.058014][T17915]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  624.058038][T17915]  ? do_syscall_64+0x100/0x230
[  624.058059][T17915]  ? do_syscall_64+0xb6/0x230
[  624.058080][T17915]  do_syscall_64+0xf3/0x230
[  624.058099][T17915]  ? clear_bhb_loop+0x35/0x90
[  624.058128][T17915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  624.058150][T17915] RIP: 0033:0x7f595f97cef9
[  624.058166][T17915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  624.058181][T17915] RSP: 002b:00007f596080f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  624.058199][T17915] RAX: ffffffffffffffda RBX: 00007f595fb35f80 RCX: 00007f595f97cef9
[  624.058213][T17915] RDX: 0000000000000050 RSI: 00000000200001c0 RDI: 0000000000000009
[  624.058226][T17915] RBP: 00007f596080f090 R08: 0000000000000000 R09: 0000000000000000
[  624.058238][T17915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  624.058249][T17915] R13: 0000000000000000 R14: 00007f595fb35f80 R15: 00007ffdebb7e158
[  624.058268][T17915]  </TASK>
[  625.554936][T17915] CPU: 1 UID: 0 PID: 17915 Comm: syz.1.4058 Not tainted 6.11.0-rc5-syzkaller-00859-g780801200300 #0
[  625.565687][T17915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  625.575801][T17915] Call Trace:
[  625.579076][T17915]  <TASK>
[  625.582003][T17915]  dump_stack_lvl+0x241/0x360
[  625.586670][T17915]  ? __pfx_dump_stack_lvl+0x10/0x10
[  625.591849][T17915]  ? __pfx__printk+0x10/0x10
[  625.596421][T17915]  should_fail_ex+0x3b0/0x4e0
[  625.601080][T17915]  strncpy_from_user+0x36/0x2e0
[  625.605912][T17915]  strncpy_from_user_nofault+0x71/0x140
[  625.611438][T17915]  bpf_probe_read_compat_str+0xe9/0x180
[  625.616961][T17915]  ? bpf_trace_run4+0x244/0x590
[  625.621785][T17915]  bpf_prog_f2ce78ec2d45df6f+0x3d/0x3f
[  625.627215][T17915]  bpf_trace_run4+0x334/0x590
[  625.631872][T17915]  ? psi_group_change+0xb88/0x11c0
[  625.636960][T17915]  ? __pfx_bpf_trace_run4+0x10/0x10
[  625.642135][T17915]  ? __pfx_probe_sched_switch+0x10/0x10
[  625.647654][T17915]  ? tracing_record_taskinfo_sched_switch+0x7b/0x390
[  625.654304][T17915]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  625.660345][T17915]  __traceiter_sched_switch+0x98/0xd0
[  625.665696][T17915]  __schedule+0x2591/0x4a60
[  625.670183][T17915]  ? __pfx___schedule+0x10/0x10
[  625.675014][T17915]  ? __pfx_lock_release+0x10/0x10
[  625.680040][T17915]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  625.685915][T17915]  ? schedule+0x90/0x320
[  625.690134][T17915]  schedule+0x14b/0x320
[  625.694268][T17915]  blk_mq_freeze_queue_wait+0xff/0x190
[  625.699705][T17915]  ? __pfx_blk_mq_freeze_queue_wait+0x10/0x10
[  625.705768][T17915]  ? percpu_ref_put+0x1f/0x250
[  625.710519][T17915]  ? __pfx_autoremove_wake_function+0x10/0x10
[  625.716568][T17915]  ? percpu_ref_kill_and_confirm+0xa0/0x130
[  625.722459][T17915]  nbd_set_size+0xe2/0x7b0
[  625.726853][T17915]  ? netlink_rcv_skb+0x1e3/0x430
[  625.731765][T17915]  ? genl_rcv+0x28/0x40
[  625.735898][T17915]  ? ____sys_sendmsg+0x525/0x7d0
[  625.740833][T17915]  ? __sys_sendmsg+0x2b0/0x3a0
[  625.745575][T17915]  ? __pfx_nbd_set_size+0x10/0x10
[  625.750583][T17915]  ? __asan_memset+0x23/0x50
[  625.755151][T17915]  ? nla_memcpy+0x5d/0xc0
[  625.759458][T17915]  ? __asan_memcpy+0x40/0x70
[  625.764025][T17915]  ? nla_memcpy+0x8b/0xc0
[  625.768332][T17915]  nbd_genl_size_set+0x332/0x410
[  625.773252][T17915]  ? __pfx_nbd_genl_size_set+0x10/0x10
[  625.778695][T17915]  ? __init_waitqueue_head+0xae/0x150
[  625.784048][T17915]  ? nbd_alloc_and_init_config+0x185/0x260
[  625.789840][T17915]  nbd_genl_connect+0xd1b/0x1c80
[  625.794759][T17915]  ? __pfx_nbd_genl_connect+0x10/0x10
[  625.800197][T17915]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  625.806420][T17915]  ? __nla_parse+0x40/0x60
[  625.810815][T17915]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  625.817126][T17915]  genl_rcv_msg+0xb14/0xec0
[  625.821609][T17915]  ? mark_lock+0x9a/0x350
[  625.825921][T17915]  ? __pfx_genl_rcv_msg+0x10/0x10
[  625.830930][T17915]  ? __pfx_lock_acquire+0x10/0x10
[  625.835934][T17915]  ? __pfx_nbd_genl_connect+0x10/0x10
[  625.841283][T17915]  ? __pfx___might_resched+0x10/0x10
[  625.846550][T17915]  netlink_rcv_skb+0x1e3/0x430
[  625.851378][T17915]  ? __pfx_genl_rcv_msg+0x10/0x10
[  625.856400][T17915]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  625.861673][T17915]  genl_rcv+0x28/0x40
[  625.865635][T17915]  netlink_unicast+0x7f6/0x990
[  625.870386][T17915]  ? __pfx_netlink_unicast+0x10/0x10
[  625.875652][T17915]  ? __virt_addr_valid+0x183/0x530
[  625.880745][T17915]  ? __check_object_size+0x49c/0x900
[  625.886009][T17915]  ? bpf_lsm_netlink_send+0x9/0x10
[  625.891098][T17915]  netlink_sendmsg+0x8e4/0xcb0
[  625.895842][T17915]  ? __pfx_netlink_sendmsg+0x10/0x10
[  625.901104][T17915]  ? __import_iovec+0x536/0x820
[  625.905930][T17915]  ? aa_sock_msg_perm+0x91/0x160
[  625.910845][T17915]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  625.916108][T17915]  ? security_socket_sendmsg+0x87/0xb0
[  625.921566][T17915]  ? __pfx_netlink_sendmsg+0x10/0x10
[  625.926829][T17915]  __sock_sendmsg+0x221/0x270
[  625.931486][T17915]  ____sys_sendmsg+0x525/0x7d0
[  625.936236][T17915]  ? __pfx_____sys_sendmsg+0x10/0x10
[  625.941541][T17915]  __sys_sendmsg+0x2b0/0x3a0
[  625.946112][T17915]  ? __pfx___sys_sendmsg+0x10/0x10
[  625.951203][T17915]  ? vfs_write+0x7c4/0xc90
[  625.955611][T17915]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  625.961919][T17915]  ? do_syscall_64+0x100/0x230
[  625.966663][T17915]  ? do_syscall_64+0xb6/0x230
[  625.971335][T17915]  do_syscall_64+0xf3/0x230
[  625.975817][T17915]  ? clear_bhb_loop+0x35/0x90
[  625.980474][T17915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.986345][T17915] RIP: 0033:0x7f595f97cef9
[  625.990739][T17915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  626.010341][T17915] RSP: 002b:00007f596080f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  626.018732][T17915] RAX: ffffffffffffffda RBX: 00007f595fb35f80 RCX: 00007f595f97cef9
[  626.026680][T17915] RDX: 0000000000000050 RSI: 00000000200001c0 RDI: 0000000000000009
[  626.034630][T17915] RBP: 00007f596080f090 R08: 0000000000000000 R09: 0000000000000000
[  626.042583][T17915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  626.050530][T17915] R13: 0000000000000000 R14: 00007f595fb35f80 R15: 00007ffdebb7e158
[  626.058491][T17915]  </TASK>